Jump to content
Tinklo

Possible malware

Recommended Posts

Hi there, 

Recently I have been noticing some strange things going on with my computer. There are files with the "last modified" date which are not correct. The date and time when the file was modified is when my computer was in sleep mode. There has also been some connections to some IP addresses which I find suspicious. I have ran Malwarebytes and it detects nothing. So I was wondering if I could get some help in verifying that my computer is malware free. Thank you.

Share this post


Link to post
Share on other sites
HelloTinklo and welcome to Malwarebytes,

Continue with the following:

If you do not have Malwarebytes installed do the following:

Download Malwarebytes version 3 from the following link:

https://www.malwarebytes.com/mwb-download/thankyou/

Double click on the installer and follow the prompts. If necessary select the Blue Help tab for video instructions....

When the install completes or Malwarebytes is already installed do the following:

Open Malwarebytes, select > "settings" > "protection tab"

Scroll down to "Scan Options" ensure Scan for Rootkits and Scan within Archives are both on....

Go back to "DashBoard" select the Blue "Scan Now" tab......

When the scan completes quarantine any found entries...

To get the log from Malwarebytes do the following:
 
  • Click on the Report tab > from main interface.
  • Double click on the Scan log which shows the Date and time of the scan just performed.
  • Click Export > From export you have two options:
    Copy to Clipboard - if seleted right click to your reply and select "Paste" log will be pasted to your reply
    Text file (*.txt) - if selected you will have to name the file and save to a place of choice, recommend "Desktop" then attach to reply

     
  • Please use "Copy to Clipboard, then Right click to your reply > select "Paste" that will copy the log to your reply…


Next,

Download AdwCleaner by Malwarebytes onto your Desktop.

Or from this Mirror
 
  • Right-click on AdwCleaner.exe and select user posted imageRun as Administrator (for Windows Vista, 7, 8, 8.1 and 10 users)
  • Accept the EULA (I accept), then click on Scan
  • Let the scan complete. Once it's done, make sure that every item listed in the different tabs is checked and click on the Clean button. This will kill all the active processes
  • Once the cleaning process is complete, AdwCleaner will ask to restart your computer, do it
  • After the restart, a log will open when logging in. Please copy/paste the content of that log in your next reply


Next,

Download Farbar Recovery Scan Tool and save it to your desktop.

Alternative download option: http://www.techspot.com/downloads/6731-farbar-recovery-scan-tool.html

Note: You need to run the version compatible with your system (32 bit or 64 bit). If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

If your security alerts to FRST either, accept the alert or turn your security off to allow FRST to run. It is not malicious or infected in any way...

Be aware FRST must be run from an account with Administrator status...
 
  • Double-click to run it. When the tool opens click Yes to disclaimer.(Windows 8/10 users will be prompted about Windows SmartScreen protection - click More information and Run.)
  • Make sure Addition.txt is checkmarked under "Optional scans"
    user posted image
     
  • Press Scan button to run the tool....
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The tool will also make a log named (Addition.txt) Please attach that log to your reply.


Let me see those logs in your reply...

Thank you,

Kevin....

Share this post


Link to post
Share on other sites

Hi, here is the malwarebytes log

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 1/3/19
Scan Time: 10:13 AM
Log File: f4ca0e5e-0f7a-11e9-901a-d48564a5eba8.json

-Software Information-
Version: 3.6.1.2711
Components Version: 1.0.482
Update Package Version: 1.0.8257
License: Free

-System Information-
OS: Windows 10 (Build 17763.194)
CPU: x64
File System: NTFS
User: ZY\Zheng Yang

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 303857
Threats Detected: 0
Threats Quarantined: 0
Time Elapsed: 21 min, 11 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 0
(No malicious items detected)

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)


(end)

Share this post


Link to post
Share on other sites

The log for ADWCleaner did not show up after my reboot. After the scan it said it found nothing. Here is the log I found from the Log Tab on the right hand side.

# -------------------------------
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build:    12-18-2018
# Database: 2019-01-02.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    01-03-2019
# Duration: 00:00:14
# OS:       Windows 10 Home
# Scanned:  32243
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.


AdwCleaner[S00].txt - [1252 octets] - [06/09/2018 18:31:02]
AdwCleaner[C00].txt - [1418 octets] - [06/09/2018 18:31:28]
AdwCleaner[S01].txt - [1374 octets] - [22/10/2018 18:34:21]
AdwCleaner[C01].txt - [1540 octets] - [22/10/2018 18:35:31]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S02].txt ##########

 

 

Share this post


Link to post
Share on other sites

Sorry for the delay I had to go out for a bit. The scan is running now, I will upload the log shortly

Share this post


Link to post
Share on other sites

Here is the FRST log.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01.01.2019
Ran by ZYA (administrator) on ZY (03-01-2019 16:53:28)
Running from C:\Users\ZYA\Desktop
Loaded Profiles: ZYA (Available Profiles: ZYA)
Platform: Windows 10 Home Version 1809 17763.195 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MsMpEng.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\InputMethod\CHS\ChsIME.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Microsoft Corporation) C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe
(Corsair Components Inc) C:\Program Files (x86)\Corsair\M60 Mouse\M60Hid.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Corsair Components Inc) C:\Program Files (x86)\Corsair\M60 Mouse\CorsTra.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163800 2016-07-30] (IvoSoft)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc.)
HKLM-x32\...\Run: [Corsair M60 Mouse] => C:\Program Files (x86)\Corsair\M60 Mouse\M60Hid.exe [1766912 2013-06-05] (Corsair Components Inc)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1371359750-744929930-1737868572-1001\...\Run: [f.lux] => "C:\Users\Zheng Yang\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2019-01-03] (Google Inc.)
Startup: C:\Users\ZYA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2017-07-27]
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Rainmeter)
GroupPolicy: Restriction ? <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ad703af6-dddc-460a-bb1a-a0e229b11238}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f75354a0-40e6-49c3-b873-dad9a5e84ee7}: [DhcpNameServer] 8.8.8.8

Internet Explorer:
==================
HKU\S-1-5-21-1371359750-744929930-1737868572-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/en-ca/?ocid=iehp
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-11-30] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-11-30] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-11-30] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-11-30] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-11-30] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-11-30] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: i1wkibk0.default
FF ProfilePath: C:\Users\ZYA\AppData\Roaming\Mozilla\Firefox\Profiles\i1wkibk0.default [2019-01-03]
FF Extension: (HTTPS Everywhere) - C:\Users\ZYA\AppData\Roaming\Mozilla\Firefox\Profiles\i1wkibk0.default\Extensions\https-everywhere@eff.org.xpi [2018-11-04]
FF Extension: (Privacy Badger) - C:\Users\ZYA\AppData\Roaming\Mozilla\Firefox\Profiles\i1wkibk0.default\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2019-01-03]
FF Extension: (Reddit Enhancement Suite) - C:\Users\ZYA\AppData\Roaming\Mozilla\Firefox\Profiles\i1wkibk0.default\Extensions\jid1-xUfzOsOFlzSOXg@jetpack.xpi [2018-11-29]
FF Extension: (uBlock Origin) - C:\Users\ZYA\AppData\Roaming\Mozilla\Firefox\Profiles\i1wkibk0.default\Extensions\uBlock0@raymondhill.net.xpi [2018-12-01]
FF Extension: (NoScript) - C:\Users\ZYA\AppData\Roaming\Mozilla\Firefox\Profiles\i1wkibk0.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2019-01-03]
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-09-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-09-10] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2019-01-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2019-01-03] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-19] (Adobe Systems Inc.)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [No File]

Chrome:
=======
CHR Profile: C:\Users\ZYA\AppData\Local\Google\Chrome\User Data\Default [2018-12-10]
CHR Extension: (BetterTTV) - C:\Users\ZYA\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2017-12-24]
CHR Extension: (Google Drive) - C:\Users\ZYA\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-13]
CHR Extension: (YouTube) - C:\Users\ZYA\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-13]
CHR Extension: (uBlock Origin) - C:\Users\ZYA\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2018-10-13]
CHR Extension: (HTTPS Everywhere) - C:\Users\ZYA\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2018-11-02]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\ZYA\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2018-12-01]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\ZYA\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2017-07-23]
CHR Extension: (Chrome Web Store Payments) - C:\Users\ZYA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-02]
CHR Extension: (Material Dark) - C:\Users\ZYA\AppData\Local\Google\Chrome\User Data\Default\Extensions\npadhaijchjemiifipabpmeebeelbmpd [2018-11-17]
CHR Extension: (Gmail) - C:\Users\ZYA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-13]
CHR Extension: (Chrome Media Router) - C:\Users\ZYA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-19]
CHR Extension: (Privacy Badger) - C:\Users\ZYA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkehgijcmpdhfbdbbnkijodmdjhbjlgp [2018-12-05]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2018-03-02] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9646240 2018-11-20] (Microsoft Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21304 2017-09-28] (Microsoft Corporation)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [384512 2018-09-15] ()
S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [187904 2017-09-28] (Microsoft Corporation) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2018-12-10] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2018-12-10] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [2252232 2018-09-24] (Wacom Technology, Corp.)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc.)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [260480 2019-01-03] (Malwarebytes)
R3 netr28x; C:\WINDOWS\System32\drivers\netr28x.sys [2537984 2018-09-15] (MediaTek Inc.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [605696 2018-09-15] (Realtek )
R3 WacHidRouterPro; C:\WINDOWS\System32\drivers\wachidrouter.sys [115672 2018-05-30] (Wacom Technology, Corp.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46680 2018-12-10] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [330936 2018-12-10] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2018-12-10] (Microsoft Corporation)
R3 WIMBLEMS; C:\WINDOWS\system32\drivers\WIMBLEMS.sys [25600 2012-03-27] ( )
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [203680 2017-09-21] (Zemana Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-03 16:53 - 2019-01-03 16:53 - 000014336 _____ C:\Users\ZYA\Desktop\FRST.txt
2019-01-03 16:28 - 2019-01-03 16:28 - 000000000 ____D C:\Users\ZYA\Desktop\malwareFRST
2019-01-03 16:26 - 2019-01-03 16:27 - 000000000 ____D C:\Users\ZYA\Desktop\br
2019-01-03 16:24 - 2019-01-03 16:24 - 000000000 ____D C:\Users\t\AppData\Roaming\ClassicShell
2019-01-03 16:24 - 2019-01-03 16:24 - 000000000 ____D C:\Users\t\AppData\Local\ClassicShell
2019-01-03 16:22 - 2019-01-03 16:22 - 000003342 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1371359750-744929930-1737868572-1008
2019-01-03 16:22 - 2019-01-03 16:22 - 000000000 ___RD C:\Users\t\OneDrive
2019-01-03 16:21 - 2019-01-03 16:21 - 000000000 ____D C:\Users\t\AppData\Local\Logitech
2019-01-03 16:21 - 2019-01-03 16:21 - 000000000 ____D C:\Users\t\AppData\Local\AMD
2019-01-03 16:21 - 2019-01-03 16:21 - 000000000 ____D C:\Users\Public\Logi
2019-01-03 16:20 - 2019-01-03 16:20 - 000001446 _____ C:\Users\t\Desktop\Microsoft Edge.lnk
2019-01-03 16:20 - 2019-01-03 16:20 - 000000000 ____D C:\Users\t\AppData\Local\MicrosoftEdge
2019-01-03 16:19 - 2019-01-03 16:19 - 000000000 ____D C:\Users\t\AppData\Local\Publishers
2019-01-03 16:18 - 2019-01-03 16:22 - 000002351 _____ C:\Users\t\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-03 16:18 - 2019-01-03 16:22 - 000000000 ____D C:\Users\t
2019-01-03 16:18 - 2019-01-03 16:20 - 000000000 ____D C:\Users\t\AppData\Local\Packages
2019-01-03 16:18 - 2019-01-03 16:19 - 000000000 ____D C:\Users\t\AppData\Roaming\WTablet
2019-01-03 16:18 - 2019-01-03 16:19 - 000000000 ____D C:\Users\t\AppData\Local\ConnectedDevicesPlatform
2019-01-03 16:18 - 2019-01-03 16:18 - 000002332 _____ C:\Users\t\Desktop\Google Chrome.lnk
2019-01-03 16:18 - 2019-01-03 16:18 - 000000020 ___SH C:\Users\t\ntuser.ini
2019-01-03 16:18 - 2019-01-03 16:18 - 000000000 ___RD C:\Users\t\3D Objects
2019-01-03 16:18 - 2019-01-03 16:18 - 000000000 ____D C:\Users\t\AppData\Roaming\Adobe
2019-01-03 16:18 - 2019-01-03 16:18 - 000000000 ____D C:\Users\t\AppData\Local\Wacom
2019-01-03 16:18 - 2019-01-03 16:18 - 000000000 ____D C:\Users\t\AppData\Local\VirtualStore
2019-01-03 16:18 - 2019-01-03 16:18 - 000000000 ____D C:\Users\t\AppData\Local\mbamtray
2019-01-03 16:18 - 2019-01-03 16:18 - 000000000 ____D C:\Users\t\AppData\Local\Google
2019-01-03 16:18 - 2019-01-03 16:18 - 000000000 ____D C:\Users\t\.android
2019-01-03 16:18 - 2018-12-10 23:21 - 000000000 ____D C:\Users\t\AppData\Roaming\ATI
2019-01-03 16:18 - 2018-12-10 23:21 - 000000000 ____D C:\Users\t\AppData\Local\ATI
2019-01-03 16:18 - 2018-09-10 14:59 - 000002227 _____ C:\Users\t\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive (1).lnk
2019-01-03 15:55 - 2019-01-03 16:32 - 000260480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-01-03 11:11 - 2019-01-03 16:53 - 000000000 ____D C:\FRST
2019-01-03 10:47 - 2019-01-03 10:47 - 009677624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-01-03 10:47 - 2019-01-03 10:47 - 007856640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-01-03 10:47 - 2019-01-03 10:47 - 007645584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-01-03 10:47 - 2019-01-03 10:47 - 006541440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-01-03 10:47 - 2019-01-03 10:47 - 006057984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-01-03 10:47 - 2019-01-03 10:47 - 005732352 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2019-01-03 10:47 - 2019-01-03 10:47 - 005439808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-01-03 10:47 - 2019-01-03 10:47 - 004520960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe
2019-01-03 10:47 - 2019-01-03 10:47 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-01-03 10:47 - 2019-01-03 10:47 - 002469632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-01-03 10:47 - 2019-01-03 10:47 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-01-03 10:47 - 2019-01-03 10:47 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-01-03 10:47 - 2019-01-03 10:47 - 001255952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-01-03 10:47 - 2019-01-03 10:47 - 001051176 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-01-03 10:47 - 2019-01-03 10:47 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-01-03 10:47 - 2019-01-03 10:47 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-01-03 10:47 - 2019-01-03 10:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-01-03 10:47 - 2019-01-03 10:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-01-03 10:47 - 2019-01-03 10:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-01-03 10:47 - 2019-01-03 10:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-01-03 10:47 - 2019-01-03 10:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-01-03 10:47 - 2019-01-03 10:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-01-03 10:47 - 2019-01-03 10:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-01-03 10:47 - 2019-01-03 10:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-01-03 10:22 - 2019-01-03 10:22 - 002426368 _____ (Farbar) C:\Users\ZYA\Desktop\FRST64.exe
2019-01-03 10:21 - 2019-01-03 10:22 - 007320272 _____ (Malwarebytes) C:\Users\ZYA\Desktop\adwcleaner_7.2.6.0.exe
2019-01-02 15:39 - 2018-12-12 20:24 - 000835688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-01-02 15:39 - 2018-12-12 20:24 - 000179808 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-12-12 20:22 - 2018-12-12 20:22 - 024617472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 023440384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 019284992 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 019024384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 012858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 012151296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 004588736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-12-12 20:22 - 2018-12-12 20:22 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 001699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 001696216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-12-12 20:22 - 2018-12-12 20:22 - 001674688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 001672056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 001641592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 001483264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 001467344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 001466872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-12-12 20:22 - 2018-12-12 20:22 - 001341376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-12-12 20:22 - 2018-12-12 20:22 - 001259000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2018-12-12 20:22 - 2018-12-12 20:22 - 001180760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 001177632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-12-12 20:22 - 2018-12-12 20:22 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 001057976 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 000854784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2018-12-12 20:22 - 2018-12-12 20:22 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 000515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 000454160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-12-12 20:22 - 2018-12-12 20:22 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2018-12-12 20:22 - 2018-12-12 20:22 - 000301096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 000241680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 000114344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 000094224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2018-12-12 20:22 - 2018-12-12 20:22 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2018-12-12 20:22 - 2018-12-12 20:22 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2018-12-12 20:21 - 2018-12-12 20:22 - 001056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 003983360 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 003662336 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-12-12 20:21 - 2018-12-12 20:21 - 003556352 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 003380224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 003379000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-12-12 20:21 - 2018-12-12 20:21 - 002721792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-12-12 20:21 - 2018-12-12 20:21 - 002435296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 002186752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 002020560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 001884672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 001671680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 001602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 001496064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 001315840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 001219584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2018-12-12 20:21 - 2018-12-12 20:21 - 001053352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-12-12 20:21 - 2018-12-12 20:21 - 000918304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000897848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000836096 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000756640 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2018-12-12 20:21 - 2018-12-12 20:21 - 000752128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-12-12 20:21 - 2018-12-12 20:21 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000650040 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-12-12 20:21 - 2018-12-12 20:21 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000582240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000566584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000531976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2018-12-12 20:21 - 2018-12-12 20:21 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000506408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000473616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2018-12-12 20:21 - 2018-12-12 20:21 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\eeprov.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000402576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000398416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000306704 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000151872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000140600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2018-12-12 20:21 - 2018-12-12 20:21 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2018-12-12 20:21 - 2018-12-12 20:21 - 000102392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2018-12-12 20:21 - 2018-12-12 20:21 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2018-12-12 20:21 - 2018-12-12 20:21 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2018-12-12 20:21 - 2018-12-12 20:21 - 000083472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2018-12-12 20:21 - 2018-12-12 20:21 - 000055608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2018-12-12 20:21 - 2018-12-12 20:21 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys
2018-12-12 20:21 - 2018-12-12 20:21 - 000046392 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2018-12-12 20:21 - 2018-12-12 20:21 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnsruprov.dll
2018-12-12 19:55 - 2018-12-12 19:55 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-12-12 19:55 - 2018-12-12 19:55 - 000000000 ____D C:\ProgramData\ATI
2018-12-10 23:49 - 2018-12-10 23:49 - 000000020 ___SH C:\Users\ZYA\ntuser.ini
2018-12-10 23:47 - 2019-01-03 16:31 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-12-10 23:47 - 2019-01-03 11:10 - 000004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2018-12-10 23:47 - 2019-01-03 10:23 - 000003418 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-12-10 23:47 - 2019-01-03 10:23 - 000003294 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-12-10 23:47 - 2018-12-10 23:48 - 000002218 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2018-12-10 23:47 - 2018-12-10 23:47 - 000003232 _____ C:\WINDOWS\System32\Tasks\MATLAB R2017a Startup Accelerator
2018-12-10 23:47 - 2018-12-10 23:47 - 000000000 ____D C:\WINDOWS\System32\Tasks\S-1-5-21-1371359750-744929930-1737868572-1001
2018-12-10 23:46 - 2018-12-10 23:47 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2018-12-10 23:46 - 2018-12-10 23:47 - 000007623 _____ C:\WINDOWS\diagerr.xml
2018-12-10 23:35 - 2019-01-02 15:42 - 001390714 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-12-10 23:25 - 2018-12-10 23:25 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2018-12-10 23:23 - 2018-12-10 23:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2018-12-10 23:23 - 2018-12-10 23:23 - 000000000 ____D C:\Program Files\ATI Technologies
2018-12-10 23:22 - 2018-12-10 23:49 - 000000000 ____D C:\Users\ZYA
2018-12-10 23:22 - 2018-12-10 23:21 - 000000000 ____D C:\Users\ZYA\AppData\Roaming\ATI
2018-12-10 23:22 - 2018-12-10 23:21 - 000000000 ____D C:\Users\ZYA\AppData\Local\ATI
2018-12-10 23:22 - 2018-09-15 00:29 - 000001105 _____ C:\Users\ZYA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-12-10 23:21 - 2018-12-10 23:21 - 000000000 ____D C:\Users\Default\AppData\Roaming\ATI
2018-12-10 23:21 - 2018-12-10 23:21 - 000000000 ____D C:\Users\Default\AppData\Local\ATI
2018-12-10 23:21 - 2018-12-10 23:21 - 000000000 ____D C:\Users\Default User\AppData\Roaming\ATI
2018-12-10 23:21 - 2018-12-10 23:21 - 000000000 ____D C:\Users\Default User\AppData\Local\ATI
2018-12-10 23:19 - 2018-09-15 00:28 - 002864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2018-12-10 23:18 - 2018-12-10 23:18 - 000000000 ____D C:\ProgramData\USOShared
2018-12-10 23:14 - 2019-01-02 22:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-12-10 23:14 - 2019-01-02 15:35 - 000635392 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-12-10 21:44 - 2018-12-10 21:45 - 002300895 _____ C:\Users\ZYA\Downloads\cit0007e-2.pdf
2018-12-07 19:51 - 2018-12-07 19:51 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\ZYA\Desktop\rkill.exe
2018-12-07 19:25 - 2019-01-03 16:27 - 000000000 ____D C:\Users\ZYA\Desktop\mbar
2018-12-07 19:22 - 2018-12-07 19:23 - 000143274 _____ C:\TDSSKiller.3.1.0.24_07.12.2018_19.22.14_log.txt
2018-12-07 19:20 - 2018-12-03 06:49 - 005073992 _____ (AO Kaspersky Lab) C:\Users\ZYA\Desktop\TDSSKiller.exe
2018-12-07 17:29 - 2018-12-07 17:29 - 014178840 _____ (Malwarebytes Corp.) C:\Users\ZYA\Desktop\mbar-1.10.3.1001.exe
2018-12-07 17:28 - 2018-12-07 17:28 - 004983122 _____ C:\Users\ZYA\Desktop\tdsskiller.zip
2018-12-07 17:25 - 2019-01-03 10:44 - 000000000 ____D C:\Users\ZYA\Desktop\tcplogview-x64
2018-12-07 17:25 - 2018-12-07 17:25 - 000096052 _____ C:\Users\ZYA\Desktop\tcplogview-x64.zip
2018-12-07 15:23 - 2018-12-11 00:12 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2018-12-07 15:22 - 2018-12-07 15:23 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2018-12-07 15:17 - 2018-12-07 15:17 - 007724776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-12-07 15:17 - 2018-12-07 15:17 - 005113008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2018-12-07 15:17 - 2018-12-07 15:17 - 004918784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-12-07 15:17 - 2018-12-07 15:17 - 004488192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-12-07 15:17 - 2018-12-07 15:17 - 003566080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2018-12-07 15:17 - 2018-12-07 15:17 - 003442176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2018-12-07 15:17 - 2018-12-07 15:17 - 003176448 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2018-12-07 15:17 - 2018-12-07 15:17 - 002473984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2018-12-07 15:17 - 2018-12-07 15:17 - 002429752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2018-12-07 15:17 - 2018-12-07 15:17 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-12-07 15:17 - 2018-12-07 15:17 - 002160160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2018-12-07 15:17 - 2018-12-07 15:17 - 001294864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-12-07 15:17 - 2018-12-07 15:17 - 001289400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2018-12-07 15:17 - 2018-12-07 15:17 - 001282432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2018-12-07 15:17 - 2018-12-07 15:17 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-12-07 15:17 - 2018-12-07 15:17 - 001166336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2018-12-07 15:17 - 2018-12-07 15:17 - 001073448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2018-12-07 15:17 - 2018-12-07 15:17 - 001024920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2018-12-07 15:17 - 2018-12-07 15:17 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-12-07 15:17 - 2018-12-07 15:17 - 000763032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2018-12-07 15:17 - 2018-12-07 15:17 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2018-12-07 15:17 - 2018-12-07 15:17 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2018-12-07 15:17 - 2018-12-07 15:17 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2018-12-07 15:16 - 2018-12-07 15:17 - 002985328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 026807296 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 022112072 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 020811776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 015224832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 006925824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 006306152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 005585056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 005565440 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 004886016 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 004765184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 004306432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 003951192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 003744256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 003730352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2018-12-07 15:16 - 2018-12-07 15:16 - 003577856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 003504640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 003427328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 003108864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 002927104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-12-07 15:16 - 2018-12-07 15:16 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 002883584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 002832896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 002777224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 002702536 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 002689536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 002626360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-12-07 15:16 - 2018-12-07 15:16 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 002275896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 002072384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001969464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2018-12-07 15:16 - 2018-12-07 15:16 - 001899160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001863168 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001819136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001762816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001749504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001720936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001688576 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001675712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001590288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001476096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001456736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001395248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001391096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2018-12-07 15:16 - 2018-12-07 15:16 - 001360696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-12-07 15:16 - 2018-12-07 15:16 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001294848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001279024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2018-12-07 15:16 - 2018-12-07 15:16 - 001254912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2018-12-07 15:16 - 2018-12-07 15:16 - 001192448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2018-12-07 15:16 - 2018-12-07 15:16 - 001162280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001097312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001026992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 001019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000964976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000953856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2018-12-07 15:16 - 2018-12-07 15:16 - 000833536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-12-07 15:16 - 2018-12-07 15:16 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000654848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000604248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000535048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2018-12-07 15:16 - 2018-12-07 15:16 - 000514112 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000430904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2018-12-07 15:16 - 2018-12-07 15:16 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000429056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000373768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coml2.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\regedit.exe
2018-12-07 15:16 - 2018-12-07 15:16 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2018-12-07 15:16 - 2018-12-07 15:16 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regedit.exe
2018-12-07 15:16 - 2018-12-07 15:16 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2018-12-07 15:16 - 2018-12-07 15:16 - 000252536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2018-12-07 15:16 - 2018-12-07 15:16 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastingShellExt.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CastingShellExt.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000091640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfts.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfts.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 017520640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 007685016 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 006132736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 005312512 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 005130752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 004300800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 004245280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-12-07 15:15 - 2018-12-07 15:15 - 003337800 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 003092480 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 002988544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 002879488 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 002843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 002654208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 002630656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 002618880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 002594872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 002488320 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-12-07 15:15 - 2018-12-07 15:15 - 002466304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 002185728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 002149352 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 002085168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001975296 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001903616 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001842600 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001830912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001824768 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001797128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001664904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001520208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001462272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001387496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001287776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001249792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001199104 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-12-07 15:15 - 2018-12-07 15:15 - 001051960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2018-12-07 15:15 - 2018-12-07 15:15 - 001048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 001005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000863752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-12-07 15:15 - 2018-12-07 15:15 - 000854016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000850960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000818832 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000660496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-12-07 15:15 - 2018-12-07 15:15 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000604336 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-12-07 15:15 - 2018-12-07 15:15 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\coml2.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-12-07 15:15 - 2018-12-07 15:15 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-12-07 15:15 - 2018-12-07 15:15 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-12-07 15:15 - 2018-12-07 15:15 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000300024 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000298536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2018-12-07 15:15 - 2018-12-07 15:15 - 000294072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2018-12-07 15:15 - 2018-12-07 15:15 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000193016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2018-12-07 15:15 - 2018-12-07 15:15 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000175096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2018-12-07 15:15 - 2018-12-07 15:15 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2018-12-07 15:15 - 2018-12-07 15:15 - 000164344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2018-12-07 15:15 - 2018-12-07 15:15 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2018-12-07 15:15 - 2018-12-07 15:15 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000130088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-12-07 15:15 - 2018-12-07 15:15 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000114648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-12-07 15:15 - 2018-12-07 15:15 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2018-12-07 15:15 - 2018-12-07 15:15 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2018-12-07 15:15 - 2018-12-07 15:15 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2018-12-07 15:15 - 2018-12-07 15:15 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2018-12-07 15:15 - 2018-12-07 15:15 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-12-07 15:15 - 2018-12-07 15:15 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-12-07 15:08 - 2019-01-02 15:42 - 000430202 _____ C:\WINDOWS\system32\prfh0804.dat
2018-12-07 15:08 - 2019-01-02 15:42 - 000136470 _____ C:\WINDOWS\system32\prfc0804.dat
2018-12-07 15:08 - 2018-12-07 15:06 - 000113218 _____ C:\WINDOWS\system32\prfi0804.dat
2018-12-07 15:08 - 2018-12-07 15:06 - 000033402 _____ C:\WINDOWS\system32\prfd0804.dat
2018-12-07 15:07 - 2018-12-07 15:07 - 000000000 ____D C:\WINDOWS\SysWOW64\zh-HANS
2018-12-07 15:07 - 2018-12-07 15:07 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2018-12-07 15:07 - 2018-12-07 15:07 - 000000000 ____D C:\WINDOWS\system32\zh-HANS
2018-12-07 14:39 - 2018-12-07 14:39 - 003427840 _____ (Microsoft Corporation) C:\WINDOWS\system32\NL7Data0804.dll
2018-12-07 14:39 - 2018-12-07 14:39 - 003350528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NL7Data0804.dll
2018-12-07 14:39 - 2018-12-07 14:39 - 002963968 _____ (Microsoft Corporation) C:\WINDOWS\system32\NL7Models0804.dll
2018-12-07 14:39 - 2018-12-07 14:39 - 000700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB70804.dll
2018-12-07 14:39 - 2018-12-07 14:39 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSWB70804.dll
2018-12-07 14:39 - 2018-12-07 14:39 - 000409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NL7Lexicons0804.dll
2018-12-07 14:39 - 2018-12-07 14:39 - 000001696 _____ C:\WINDOWS\system32\NOISE.CHS
2018-12-07 14:37 - 2018-12-07 14:37 - 017761792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCaptureReplay.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 013942784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCaptureReplay.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 004850688 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe
2018-12-07 14:37 - 2018-12-07 14:37 - 003631616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsRemoteEngine.exe
2018-12-07 14:37 - 2018-12-07 14:37 - 002273280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData000c.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 002006016 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 001419776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsOfflineAnalysis.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 001366016 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11_3SDKLayers.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 001176064 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCap.exe
2018-12-07 14:37 - 2018-12-07 14:37 - 001089024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11_3SDKLayers.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCap.exe
2018-12-07 14:37 - 2018-12-07 14:37 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1debug3.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1debug3.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000410624 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2018-12-07 14:37 - 2018-12-07 14:37 - 000386560 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2018-12-07 14:37 - 2018-12-07 14:37 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf_gputiming.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXGIDebug.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsExperiment.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf_gputiming.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXGIDebug.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsExperiment.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsMonitor.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsReporting.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsCapture.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsMonitor.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsCapture.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsReporting.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxToolsReportGenerator.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxToolsReportGenerator.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsProxyStub.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARPDebug.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARPDebug.dll
2018-12-07 14:37 - 2018-12-07 14:37 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsProxyStub.dll
2018-12-07 14:36 - 2018-12-07 14:36 - 006238208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons000c.dll
2018-12-07 14:36 - 2018-12-07 14:36 - 002344448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData000c.dll
2018-12-07 14:34 - 2018-12-07 14:34 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2018-12-07 14:34 - 2018-12-07 14:34 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2018-12-07 14:34 - 2018-12-07 14:34 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2018-12-07 14:34 - 2018-12-07 14:34 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2018-12-07 14:34 - 2018-12-07 14:34 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2018-12-07 14:34 - 2018-12-07 14:34 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2018-12-07 14:33 - 2018-12-11 00:12 - 000000000 ____D C:\Program Files (x86)\MSBuild
2018-12-07 14:33 - 2018-12-07 14:33 - 000000000 ____D C:\Program Files\Reference Assemblies
2018-12-07 14:33 - 2018-12-07 14:33 - 000000000 ____D C:\Program Files\MSBuild
2018-12-07 14:33 - 2018-12-07 14:33 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2018-12-07 14:32 - 2018-12-07 14:32 - 001167960 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2018-12-07 14:32 - 2018-12-07 14:32 - 000780376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2018-12-07 14:32 - 2018-12-07 14:32 - 000126064 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2018-12-07 14:32 - 2018-12-07 14:32 - 000104560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2018-12-07 14:32 - 2018-12-07 14:32 - 000036896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2018-12-07 14:31 - 2018-12-07 14:31 - 000035440 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2018-12-07 14:16 - 2018-12-07 14:16 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2018-12-07 13:00 - 2018-12-10 23:49 - 000000000 ___DC C:\WINDOWS\Panther
2018-12-07 03:20 - 2018-12-12 20:05 - 000042904 _____ (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\Drivers\PROCEXP152.SYS
2018-12-07 02:55 - 2018-12-07 19:20 - 000000000 ____D C:\Users\ZYA\Desktop\check
2018-12-07 02:55 - 2018-12-07 02:55 - 000000000 ____D C:\Users\ZYA\Desktop\ProcessExplorer
2018-12-07 02:54 - 2018-12-07 02:54 - 001828569 _____ C:\Users\ZYA\Desktop\ProcessExplorer.zip
2018-12-07 00:34 - 2018-12-07 00:35 - 007321808 _____ (Malwarebytes) C:\Users\ZYA\Desktop\adwcleaner_7.2.5.0.exe
2018-12-07 00:31 - 2018-12-07 19:57 - 000001872 _____ C:\Users\ZYA\Desktop\Rkill.txt

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-03 16:53 - 2017-09-21 19:47 - 000034810 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2019-01-03 16:53 - 2016-11-30 15:12 - 000000000 ____D C:\Users\ZYA\AppData\LocalLow\Mozilla
2019-01-03 16:44 - 2018-09-15 00:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-01-03 16:34 - 2018-04-25 08:02 - 000000000 ____D C:\Users\ZYA\AppData\Roaming\WTablet
2019-01-03 16:29 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-01-03 16:29 - 2018-09-14 23:09 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2019-01-03 16:19 - 2018-09-15 00:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-01-03 16:19 - 2018-09-15 00:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-01-03 16:18 - 2015-09-03 10:18 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-01-03 15:55 - 2017-02-13 22:13 - 000000000 ____D C:\Users\ZYA\AppData\Local\ConnectedDevicesPlatform
2019-01-03 15:53 - 2017-02-13 23:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-01-03 15:53 - 2017-02-13 23:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-01-03 11:17 - 2018-09-15 00:31 - 000000000 ____D C:\WINDOWS\INF
2019-01-03 11:09 - 2018-09-16 19:54 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-01-03 11:03 - 2017-02-13 22:43 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-01-03 10:58 - 2017-02-13 23:27 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-01-03 10:49 - 2018-09-15 02:11 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2019-01-03 10:49 - 2018-09-15 02:11 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2019-01-03 10:49 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-01-03 10:49 - 2018-09-15 00:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-01-03 10:12 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\appcompat
2019-01-02 17:24 - 2017-04-23 11:45 - 000000000 ____D C:\Users\ZYA\AppData\Local\ElevatedDiagnostics
2019-01-02 15:41 - 2017-03-09 23:20 - 000000258 __RSH C:\ProgramData\ntuser.pol
2018-12-12 20:48 - 2018-09-15 00:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2018-12-12 20:48 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-12-12 20:48 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-12-12 20:44 - 2018-09-14 23:09 - 000000000 ____D C:\WINDOWS\servicing
2018-12-12 20:35 - 2017-02-13 22:59 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-12-12 20:25 - 2017-02-13 22:59 - 137260640 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-12-12 19:59 - 2018-06-20 14:55 - 000000000 ____D C:\ProgramData\Packages
2018-12-12 19:59 - 2017-12-06 21:35 - 000000000 ____D C:\Users\ZYA\AppData\Local\Packages
2018-12-11 00:12 - 2018-11-30 18:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2018-12-11 00:12 - 2018-11-24 21:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2018-12-11 00:12 - 2018-11-08 17:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2018-12-11 00:12 - 2018-10-19 13:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-12-11 00:12 - 2018-10-13 14:51 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wacom Tablet
2018-12-11 00:12 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2018-12-11 00:12 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2018-12-11 00:12 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\system32\spool
2018-12-11 00:12 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-12-11 00:12 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\Registration
2018-12-11 00:12 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-12-11 00:12 - 2018-09-15 00:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-12-11 00:12 - 2018-09-15 00:31 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2018-12-11 00:12 - 2018-07-10 14:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2017 Tools for Unity
2018-12-11 00:12 - 2018-07-10 13:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 2018.1.6f1 (64-bit)
2018-12-11 00:12 - 2018-07-10 13:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2018-12-11 00:12 - 2018-07-10 13:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.0
2018-12-11 00:12 - 2018-04-11 16:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2018-12-11 00:12 - 2018-03-23 00:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PuTTY (64-bit)
2018-12-11 00:12 - 2018-01-12 16:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2018-12-11 00:12 - 2017-11-15 18:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
2018-12-11 00:12 - 2017-11-14 19:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2018-12-11 00:12 - 2017-09-21 14:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBrains
2018-12-11 00:12 - 2017-06-30 17:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016 Tools
2018-12-11 00:12 - 2017-06-24 11:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2018-12-11 00:12 - 2017-06-13 17:33 - 000000000 ____D C:\Program Files\UNP
2018-12-11 00:12 - 2017-04-27 16:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Action Replay PowerSaves 3DS
2018-12-11 00:12 - 2017-04-15 17:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MATLAB R2017a
2018-12-11 00:12 - 2017-02-14 20:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell
2018-12-11 00:12 - 2017-02-14 01:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2018-12-11 00:12 - 2017-02-13 23:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2018-12-11 00:12 - 2017-02-13 23:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grinding Gear Games
2018-12-11 00:12 - 2017-02-13 23:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2018-12-11 00:12 - 2017-02-13 23:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-12-11 00:12 - 2017-02-13 22:03 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2018-12-10 23:50 - 2017-12-06 22:30 - 000000000 ___RD C:\Users\ZYA\3D Objects
2018-12-10 23:48 - 2018-09-14 23:09 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-12-10 23:47 - 2018-09-15 00:33 - 000000000 ___RD C:\Program Files\Windows Defender
2018-12-10 23:45 - 2018-01-24 18:03 - 000000000 ____D C:\Users\ZYA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)
2018-12-10 23:45 - 2018-01-12 16:48 - 000000000 ____D C:\Users\ZYA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eclipse
2018-12-10 23:42 - 2018-09-15 00:33 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-12-10 23:27 - 2018-07-10 13:40 - 000000000 ____D C:\Users\ZYA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blender
2018-12-10 23:27 - 2018-04-12 00:34 - 000000000 ____D C:\Users\ZYA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitHub, Inc
2018-12-10 23:27 - 2017-10-31 22:26 - 000000000 ____D C:\Users\ZYA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2018-12-10 23:27 - 2017-09-18 17:59 - 000000000 ____D C:\Users\ZYA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.6
2018-12-10 23:27 - 2017-06-05 15:04 - 000000000 ____D C:\Users\ZYA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Twitch Games
2018-12-10 23:27 - 2017-02-13 23:43 - 000000000 ____D C:\Users\ZYA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Katawa Shoujo
2018-12-10 23:27 - 2017-02-13 23:27 - 000000000 ____D C:\Users\ZYA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-12-10 23:24 - 2017-12-01 23:16 - 000000000 ____D C:\Users\ZYA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2018-12-10 23:22 - 2017-06-15 12:01 - 000000000 ____D C:\ProgramData\AMD
2018-12-10 23:22 - 2017-06-15 12:00 - 000000000 ____D C:\Program Files (x86)\ATI Technologies
2018-12-10 23:20 - 2017-06-15 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2018-12-10 23:20 - 2015-09-03 12:28 - 000000000 ____D C:\AMD
2018-12-10 23:19 - 2018-09-15 00:33 - 000000000 ____D C:\ProgramData\USOPrivate
2018-12-10 23:16 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\ServiceState
2018-12-10 16:52 - 2018-02-28 13:51 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-12-10 16:52 - 2017-02-13 23:01 - 000592616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2018-12-08 12:20 - 2017-02-16 19:19 - 000000000 ____D C:\Users\ZYA\AppData\Roaming\vlc
2018-12-07 21:39 - 2017-02-14 01:43 - 000000000 ____D C:\Users\ZYA\AppData\Roaming\obs-studio
2018-12-07 17:33 - 2017-02-13 23:31 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-12-07 16:41 - 2018-11-16 14:52 - 000000000 ____D C:\Users\ZYA\Documents\Mom
2018-12-07 15:40 - 2018-09-15 00:36 - 000000000 ____D C:\WINDOWS\Setup
2018-12-07 15:31 - 2018-09-15 00:33 - 000000000 __RHD C:\Users\Public\Libraries
2018-12-07 15:31 - 2018-04-11 16:38 - 000000000 ____D C:\WINDOWS\InfusedApps
2018-12-07 15:24 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\Resources
2018-12-07 15:24 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\Help
2018-12-07 15:24 - 2018-07-10 14:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2018-12-07 15:24 - 2018-07-10 14:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2017
2018-12-07 15:24 - 2017-06-15 12:00 - 000000000 ____D C:\Program Files\Realtek
2018-12-07 15:24 - 2017-02-13 22:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corsair
2018-12-07 15:23 - 2017-06-15 11:59 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2018-12-07 15:23 - 2017-06-15 11:59 - 000000000 ____D C:\Program Files\AMD
2018-12-07 15:20 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\TextInput
2018-12-07 15:20 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-12-07 15:20 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-12-07 15:20 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2018-12-07 15:07 - 2018-09-15 02:08 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2018-12-07 15:07 - 2018-09-15 02:08 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2018-12-07 15:07 - 2018-09-15 02:08 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2018-12-07 15:07 - 2018-09-15 02:08 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2018-12-07 15:07 - 2018-09-15 02:08 - 000000000 ____D C:\WINDOWS\system32\winrm
2018-12-07 15:07 - 2018-09-15 02:08 - 000000000 ____D C:\WINDOWS\system32\WCN
2018-12-07 15:07 - 2018-09-15 02:08 - 000000000 ____D C:\WINDOWS\system32\slmgr
2018-12-07 15:07 - 2018-09-15 02:08 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2018-12-07 15:07 - 2018-09-15 00:33 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-12-07 15:07 - 2018-09-15 00:33 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2018-12-07 15:07 - 2018-09-15 00:33 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-12-07 15:07 - 2018-09-15 00:33 - 000000000 ___SD C:\WINDOWS\system32\dsc
2018-12-07 15:07 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2018-12-07 15:07 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2018-12-07 15:07 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2018-12-07 15:07 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\SysWOW64\com
2018-12-07 15:07 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-12-07 15:07 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2018-12-07 15:07 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2018-12-07 15:07 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\system32\MUI
2018-12-07 15:07 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\system32\com
2018-12-07 15:07 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2018-12-07 15:07 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\IME
2018-12-07 15:07 - 2018-09-15 00:33 - 000000000 ____D C:\Program Files\Common Files\system
2018-12-07 15:07 - 2018-09-15 00:33 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2018-12-07 15:07 - 2018-09-14 23:09 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2018-12-07 15:07 - 2018-09-14 23:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-12-07 14:34 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2018-12-07 14:34 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2018-12-07 14:34 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2018-12-07 14:34 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2018-12-07 14:34 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2018-12-07 14:34 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2018-12-07 14:34 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\system32\et-EE
2018-12-07 14:34 - 2018-09-15 00:33 - 000000000 ____D C:\WINDOWS\system32\es-MX
2018-12-07 14:29 - 2018-09-15 02:10 - 000000000 ____D C:\WINDOWS\OCR
2018-12-07 00:31 - 2016-07-05 14:48 - 000000000 ____D C:\Users\ZYA\Downloads\Mal
2018-12-06 23:15 - 2017-02-13 23:44 - 000000000 ____D C:\Users\ZYA\AppData\Local\osu!
2018-12-06 22:18 - 2018-11-16 11:37 - 000000000 ____D C:\Program Files\rempl

==================== Files in the root of some directories =======

2018-07-20 17:34 - 2018-07-20 17:34 - 000005953 _____ () C:\Users\ZYA\AppData\Local\recently-used.xbel

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

Share this post


Link to post
Share on other sites

Here is the Addition.txt

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01.01.2019
Ran by ZYA (03-01-2019 16:54:09)
Running from C:\Users\ZYA\Desktop
Windows 10 Home Version 1809 17763.195 (X64) (2018-12-11 06:49:01)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1371359750-744929930-1737868572-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1371359750-744929930-1737868572-503 - Limited - Disabled)
Guest (S-1-5-21-1371359750-744929930-1737868572-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1371359750-744929930-1737868572-504 - Limited - Disabled)
ZYA (S-1-5-21-1371359750-744929930-1737868572-1001 - Administrator - Enabled) => C:\Users\ZYA

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Action Replay PowerSaves 3DS version 1.51 (HKLM-x32\...\{CD24B06F-0A4D-410A-AEF2-DFE6A28AB4C0}_is1) (Version: 1.51 - Datel Design & Development)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 19.010.20069 - Adobe Systems Incorporated)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Application Verifier x64 External Package (HKLM\...\{D9908CED-5ABB-FEE9-FC84-743F4D38637C}) (Version: 10.1.16299.15 - Microsoft) Hidden
Audacity 2.2.2 (HKLM-x32\...\Audacity_is1) (Version: 2.2.2 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Blender (HKLM\...\{E29A1273-2E7A-40E7-AA63-428A11D59429}) (Version: 2.79.2 - Blender Foundation)
CCleaner (HKLM\...\CCleaner) (Version: 5.34 - Piriform)
Classic Shell (HKLM\...\{383BB30A-B4A7-4666-9A83-22CFA8640097}) (Version: 4.3.0 - IvoSoft)
Corsair M60 Gaming Mouse Driver V1.0 (HKLM-x32\...\{337CDF25-8F3C-4DEF-8A94-5A9BFC961368}_is1) (Version: 1.00.00.37 - )
Discord (HKU\S-1-5-21-1371359750-744929930-1737868572-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
f.lux (HKU\S-1-5-21-1371359750-744929930-1737868572-1001\...\Flux) (Version:  - f.lux Software LLC)
GIMP 2.8.20 (HKLM\...\GIMP-2_is1) (Version: 2.8.20 - The GIMP Team)
GitHub Desktop (HKU\S-1-5-21-1371359750-744929930-1737868572-1001\...\GitHubDesktop) (Version: 1.1.1 - GitHub, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Java SE Development Kit 8 Update 152 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180152}) (Version: 8.0.1520.16 - Oracle Corporation)
JetBrains PyCharm Community Edition 2017.2.3 (HKLM-x32\...\PyCharm Community Edition 2017.2.3) (Version: 172.3968.37 - JetBrains s.r.o.)
Katawa Shoujo (HKLM-x32\...\Katawa Shoujo) (Version:  - )
Kits Configuration Installer (HKLM-x32\...\{86E59C8F-61D5-1782-A3CE-60AE7E4D7791}) (Version: 10.1.16299.15 - Microsoft) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
LibreOffice 6.0.4.2 (HKLM\...\{CBC4E8DF-CCBD-4260-A6A5-B682BA706DC4}) (Version: 6.0.4.2 - The Document Foundation)
Logitech Gaming Software 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.)
Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
MATLAB R2017a (HKLM\...\Matlab R2017a) (Version: 9.2 - MathWorks)
Microsoft Office 365 ProPlus - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 16.0.11029.20079 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.16.1251.625 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{756E195A-CB58-4B99-917F-0DDA0D881204}) (Version: 1.0.4.0 - Mojang)
Mozilla Firefox 64.0 (x64 en-GB) (HKLM\...\Mozilla Firefox 64.0 (x64 en-GB)) (Version: 64.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 64.0.0.6914 - Mozilla)
MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD)
MSI Development Tools (HKLM-x32\...\{973CACA2-E018-065B-0580-F2784802E299}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Nexon Launcher (HKLM-x32\...\Nexon Nexon Launcher) (Version: 2.0.0 - Nexon)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 19.0.2 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11029.20079 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11029.20079 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11029.20079 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.11029.20079 - Microsoft Corporation) Hidden
Oracle VM VirtualBox 5.2.16 (HKLM\...\{9BDE6621-5201-47E9-8394-FF44CBD66A1E}) (Version: 5.2.16 - Oracle Corporation)
osu! (HKLM-x32\...\{000a8883-6ec5-41c0-8081-340a6b3cb35e}) (Version: latest - ppy Pty Ltd)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 2.3.3.60831 - Grinding Gear Games) Hidden
Path of Exile (HKLM-x32\...\{b7c46ac2-5621-457a-af1b-0247114154db}) (Version: 2.3.3.60831 - Grinding Gear Games)
PuTTY release 0.70 (64-bit) (HKLM\...\{45B3032F-22CC-40CD-9E97-4DA7095FA5A2}) (Version: 0.70.0.0 - Simon Tatham)
Python 3.6.2 (32-bit) (HKU\S-1-5-21-1371359750-744929930-1737868572-1001\...\{8388fa07-1617-4b8d-8ad8-6a940ad8052c}) (Version: 3.6.2150.0 - Python Software Foundation)
Python 3.6.2 Add to Path (32-bit) (HKLM-x32\...\{5FEE3F00-F984-49A6-880C-CDEB3A9DC308}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Core Interpreter (32-bit) (HKLM-x32\...\{4542573C-6216-4584-BA90-72BAF7954404}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Development Libraries (32-bit) (HKLM-x32\...\{69E3E4A6-2A0F-4A32-9C2D-591EEC107289}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Documentation (32-bit) (HKLM-x32\...\{796410A7-1669-4FE4-8332-F684B61269E2}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Executables (32-bit) (HKLM-x32\...\{348C0EFF-60B1-4E68-88B8-33D7DF70DFCF}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 pip Bootstrap (32-bit) (HKLM-x32\...\{6B2D61BA-C42D-4324-B23F-1D7B5A2808EF}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Standard Library (32-bit) (HKLM-x32\...\{79B4337D-166F-4BC0-B67A-F73806CC730E}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Tcl/Tk Support (32-bit) (HKLM-x32\...\{DF24AFFD-23AB-4A7D-A0E0-6410CE3B6B9D}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Test Suite (32-bit) (HKLM-x32\...\{433FD2E2-839C-4211-88B7-45C90F738842}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Utility Scripts (32-bit) (HKLM-x32\...\{9B79DE7E-E864-4758-8DFC-85DA43B19671}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.3 (Anaconda3 5.0.1 64-bit) (HKU\S-1-5-21-1371359750-744929930-1737868572-1001\...\Python 3.6.3 (Anaconda3 5.0.1 64-bit)) (Version: 5.0.1 - Anaconda, Inc.)
Python Launcher (HKLM-x32\...\{2636F1E4-2BC5-4B19-BFFD-A08F72598309}) (Version: 3.6.6032.0 - Python Software Foundation)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.0 r2746 - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
SDK ARM Additions (HKLM-x32\...\{7922BB77-0B59-840A-AC80-D560A34D75C5}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
SDK ARM Redistributables (HKLM-x32\...\{C87DF65C-A672-7E08-A083-E7D48FE8DB70}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Sid Meier's Civilization V (HKLM-x32\...\steam app 8930) (Version:  - 2K Games, Inc.)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tales from the Borderlands (HKLM-x32\...\{B24F49F9-D7FE-40B6-8F4D-65B0C6BF6A6B}) (Version:  - Telltale Games)
The Banner Saga (HKLM-x32\...\{0C0126BF-8D56-46C0-AC10-FA07A4F2AD70}) (Version:  - Versus Evil, LLC.)
The Banner Saga 2 (HKLM-x32\...\{8530321B-A8DD-4A74-BAA3-24A247454C36}) (Version:  - Versus Evil, LLC.)
The Red Strings Club (HKLM-x32\...\{C619A4F5-37A3-4314-AEEA-F63D599CE3B4}) (Version:  - Devolver Digital)
Twitch (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Twitch Interactive, Inc.)
Unity (HKLM-x32\...\Unity) (Version: 2018.1.6f1 - Unity Technologies ApS)
Universal CRT Extension SDK (HKLM-x32\...\{A5FA2886-1925-133F-0D41-B9A8ECEA0A2D}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{B739B4C5-EEEC-8E70-0276-38C4779AF398}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{A9D6F52C-694E-3E41-7AB8-5BEB644742A5}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM\...\{E053089E-7953-3219-814F-F485FC151C54}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32\...\{B9424F08-0617-C4F6-A798-5A9250C1A738}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32\...\{D261CEA1-AB8D-9CFA-4407-BCEFC78661AC}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
vcpp_crt.redist.clickonce (HKLM-x32\...\{163FD3E7-A4F2-472F-A127-9082A5F32150}) (Version: 14.14.26405 - Microsoft Corporation) Hidden
Visual Studio Community 2017 (HKLM-x32\...\123cadc1) (Version: 15.7.27703.2042 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
VS Script Debugging Common (HKLM\...\{48C2D1FA-9F23-40E1-9F16-6A3CA6A78915}) (Version: 16.0.94.0 - Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32\...\{5DFEB1ED-29B8-44F0-8615-DE758242B0E2}) (Version: 15.7.27617 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{40040E64-50EB-4FCF-B209-DA0B20821759}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{BFFA2FFB-1095-4ADD-A352-368806D2412B}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{B6600254-A9D1-4265-826B-28B0E28C1F37}) (Version: 15.7.27617 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{EF15DAFE-8E43-48E6-AE94-CBA196675318}) (Version: 15.7.27617 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{8EB2C670-04C2-482D-BACD-B4095E27FD39}) (Version: 15.6.27309 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{9B1DD088-CF09-46A1-8B42-18D231B19E39}) (Version: 15.7.27604 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{F5BCAD30-D22C-4B08-A581-1EBE3A35C6B1}) (Version: 15.7.27617 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{6DFE6F8D-B61D-4348-AB70-4ABF1210DFD5}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32\...\{1AC6CC3D-7724-4D84-9270-798A2191AB1C}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.31-4 - Wacom Technology Corp.)
WinAppDeploy (HKLM-x32\...\{9690D51C-4435-1C20-7819-66CCAB0F03F9}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Windows Driver Package - Sony Computer Entertainment Inc. Wireless controller for PLAYSTATION(R)3 Driver Package (01/20/2012 1.4.0.0) (HKLM\...\D5410AE5FA467EF0F19558D5F60C991A79E11B51) (Version: 01/20/2012 1.4.0.0 - Sony Computer Entertainment Inc.)
Windows SDK AddOn (HKLM-x32\...\{350F0ECD-0783-4529-8797-98F0AD33EAC0}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.16299.15 (HKLM-x32\...\{6195c203-b53c-4bb7-983a-6070a902e704}) (Version: 10.1.16299.15 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
WinRT Intellisense Desktop - en-us (HKLM-x32\...\{385A1387-A488-9E90-3635-086129610034}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{D7DD3171-DA58-52A1-95B2-4769640855AF}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (HKLM-x32\...\{7336279F-8F8F-5530-A543-3BE963846C0A}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{E414A474-0A87-4F66-C409-A4D9857CFD34}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense Mobile - en-us (HKLM-x32\...\{CE760B86-975B-F514-5673-0ED4332B801B}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (HKLM-x32\...\{5E67F8BE-D8D2-257F-CE19-419A2D5125C7}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{A2AA063E-AF50-A1F5-8925-A06EB1556644}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (HKLM-x32\...\{7D4C7F4A-02A9-E434-6451-C8787DF28C1F}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{BC467065-9374-5345-DA3F-FCF073304A25}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1371359750-744929930-1737868572-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Zheng Yang\AppData\Local\Microsoft\OneDrive\18.091.0506.0007\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-1371359750-744929930-1737868572-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Zheng Yang\AppData\Local\Microsoft\OneDrive\18.091.0506.0007\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-1371359750-744929930-1737868572-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Zheng Yang\AppData\Local\Microsoft\OneDrive\18.091.0506.0007\amd64\FileSyncShell64.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\System32\StartMenuHelper64.dll [2016-07-30] (IvoSoft)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {05446458-E893-4E54-A78C-6A3F8E6B5784} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-13] (Google Inc.)
Task: {05CFEDD7-6E10-4563-8549-403A89D0C7BA} - System32\Tasks\MATLAB R2017a Startup Accelerator => C:\Program Files\MATLAB\R2017a\bin\win64\MATLABStartupAccelerator.exe [2017-01-19] ()
Task: {148C6AD8-E331-47E7-A2A3-8538F2A96A86} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {18945EFA-E6DE-4C6E-A639-CF75F4133677} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [2018-12-10] (Microsoft Corporation)
Task: {1ED1DD98-0C78-4822-BC74-50C326D9EE29} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-15] (Microsoft Corporation)
Task: {386BF70C-4AAF-4467-B669-5332E3550455} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-13] (Google Inc.)
Task: {44F7F0E2-AB6A-4D21-8075-F0016615CA5C} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1371359750-744929930-1737868572-1008 => C:\Users\ZYA\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {6A4E82B2-13AD-4ED0-9D7A-D579FF0AC9DB} - System32\Tasks\S-1-5-21-1371359750-744929930-1737868572-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-09-15] (Microsoft Corporation)
Task: {6E52FD83-CDEF-4A18-98B4-0BC7491B5569} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-15] (Microsoft Corporation)
Task: {7686B7E7-0227-4CB3-99C1-F6197DE39E67} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-30] (Microsoft Corporation)
Task: {95AB9816-D852-473D-A96B-F0301D2B4C57} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-09-07] (Piriform Ltd)
Task: {A6479C00-D9FA-42C3-BD9F-84E74BDA1075} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-30] (Microsoft Corporation)
Task: {AC09C575-8BCD-4388-BE2E-E8DD7605039D} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-30] (Microsoft Corporation)
Task: {B706987C-1675-497B-9435-5DEE3C6B3616} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-30] (Microsoft Corporation)
Task: {C315F5A7-D589-4332-9764-E2130718CB24} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {C65C3C9E-BD2D-4D23-9369-2FA3F2358EBA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [2018-12-10] (Microsoft Corporation)
Task: {E16EEA5B-3566-4856-8561-869E9971B5B4} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-11-30] (Microsoft Corporation)
Task: {E2E36E88-CBBE-4D93-8927-39DE4863E05B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-11-30] (Microsoft Corporation)
Task: {E39F8E32-F4B6-44B2-B8AF-D84A6CFEB7B8} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-09-15] ()
Task: {F1A9BE21-8DC2-4D3B-86B6-723FBD7F785D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [2018-12-10] (Microsoft Corporation)
Task: {FCD8E617-1584-4BD7-A568-513287F675A2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-11-30] (Microsoft Corporation)
Task: {FEE23DC3-931C-4DE0-A846-35464A740184} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [2018-12-10] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\MATLAB R2017a Startup Accelerator.job => C:\Program Files\MATLAB\R2017a\bin\win64\MATLABStartupAccelerator.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\ZYA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Anaconda Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> "/K" "C:\Users\Zheng Yang\Anaconda3\Scripts\activate.bat" "C:\Users\Zheng Yang\Anaconda3"
ShortcutWithArgument: C:\Users\ZYA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\2fae1f4995fc9e7f\NexonLauncher.lnk -> C:\Program Files (x86)\Nexon\Nexon Launcher\bin\nexon_client\nexon_client.exe (Nexon) -> --user-data-dir="C:\Users\Zheng Yang\AppData\Local\NexonLauncher\User Data" --profile-directory=Default --app-id=dobbaijafcbikgimjpakclacfgeagffm

==================== Loaded Modules (Whitelisted) ==============

2015-11-04 16:43 - 2015-11-04 16:43 - 000214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 06:08 - 2014-02-11 06:08 - 000817152 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2014-02-11 06:08 - 2014-02-11 06:08 - 003650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2015-11-04 16:43 - 2015-11-04 16:43 - 000127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2018-10-19 13:17 - 2018-11-02 21:12 - 002695360 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-09-15 00:28 - 2018-09-15 00:28 - 000834088 _____ () C:\Windows\System32\InputHost.dll
2018-09-15 00:28 - 2018-09-15 00:28 - 000474624 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-12-07 15:16 - 2018-12-07 15:16 - 002801152 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-09-15 00:28 - 2018-09-15 00:28 - 001740288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-04-24 20:04 - 2018-09-24 09:08 - 002318792 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2015-03-06 17:07 - 2015-03-06 17:07 - 000908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2018-10-05 01:43 - 2018-10-05 01:43 - 001096840 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-06 17:07 - 2015-03-06 17:07 - 000060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2018-10-05 01:43 - 2018-10-05 01:43 - 000241800 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2015-11-04 16:43 - 2015-11-04 16:43 - 000102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2017-02-13 22:34 - 2012-05-14 12:41 - 000043008 _____ () C:\Program Files (x86)\Corsair\M60 Mouse\hidGetKey.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\AppData:CSM [474]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-02-13 22:03 - 2017-02-13 22:00 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\MATLAB\R2017a\runtime\win64;C:\Program Files\MATLAB\R2017a\bin;C:\Program Files\PuTTY\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1371359750-744929930-1737868572-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Zheng Yang\Pictures\Wallpaper\075204ef64a7d8273421dd32951e8b2e0d0606a0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run32: => "LeagueDisplays"
HKU\S-1-5-21-1371359750-744929930-1737868572-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-1371359750-744929930-1737868572-1001\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{CF8E3564-DC16-4548-8078-247CE215ABF7}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation)
FirewallRules: [{A5165FE2-ECE1-44A0-9613-39BC26C48A87}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation)
FirewallRules: [{4E82DB0F-F158-45CA-A162-0C7DD746A4E1}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation)
FirewallRules: [{A50DBAEB-4143-43B0-A1C8-4999FF550832}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation)
FirewallRules: [{259EDFFC-B258-422A-A2AA-694A77318C28}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation)
FirewallRules: [UDP Query User{106770FB-0B10-4445-BCD8-4A5454B559D4}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe] => (Block) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe ()
FirewallRules: [TCP Query User{A0390D64-01FA-4859-9481-A35EBD270288}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe] => (Block) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe ()
FirewallRules: [UDP Query User{8B7919D7-6B90-4299-A048-E93B53D36685}C:\program files\logitech gaming software\lcore.exe] => (Block) C:\program files\logitech gaming software\lcore.exe (Logitech Inc.)
FirewallRules: [TCP Query User{3B177982-5E1D-438A-A412-6282174334C8}C:\program files\logitech gaming software\lcore.exe] => (Block) C:\program files\logitech gaming software\lcore.exe (Logitech Inc.)
FirewallRules: [UDP Query User{41B4C51A-609D-4166-9253-649DFF461412}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe] => (Block) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe ()
FirewallRules: [TCP Query User{975AD41F-BC84-41D9-AE12-F6A8345D7C45}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe] => (Block) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe ()
FirewallRules: [{F78F3F80-2F5B-4F24-8051-2CCED946ED23}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{C474D02E-96D0-49AD-89CF-D65EE4FE9E22}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{7B437BEF-5DE5-4EDE-8A87-90AE5EF3E736}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)

==================== Restore Points =========================

12-12-2018 20:12:02 Windows Update
03-01-2019 10:38:45 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/03/2019 04:29:24 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program FRST64.exe version 1.1.2019.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 2734

Start Time: 01d4a3bc0c27096e

Termination Time: 4294967295

Application Path: C:\Users\ZYA\Desktop\FRST64.exe

Report Id: 84811c15-1980-4ebe-967b-b18228f7062d

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (01/03/2019 04:22:36 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest".Error in manifest or policy file "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (01/03/2019 04:20:13 PM) (Source: ESENT) (EventID: 522) (User: )
Description: ShellExperienceHost (2424,P,98) TILEREPOSITORYS-1-5-21-1371359750-744929930-1737868572-1008: An attempt to open the device with name "\\.\C:" containing "C:\" failed with system error 5 (0x00000005): "Access is denied. ". The operation will fail with error -1032 (0xfffffbf8).

Error: (01/03/2019 04:18:06 PM) (Source: WTabletServicePro) (EventID: 1) (User: )
Description: Event-ID 1

Error: (01/03/2019 03:55:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Wacom_Tablet.exe, version: 6.3.31.4, time stamp: 0x5ba8fba5
Faulting module name: Wacom_Touch_Tablet.dll, version: 6.3.31.4, time stamp: 0x5ba8fc13
Exception code: 0xc0000005
Fault offset: 0x0000000000003ab7
Faulting process ID: 0x145c
Faulting application start time: 0x01d4a3b76adb2124
Faulting application path: C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
Faulting module path: C:\WINDOWS\SYSTEM32\Wacom_Touch_Tablet.dll
Report ID: 3f46f7e0-2207-49cb-9d30-985b3fcb908b
Faulting package full name:
Faulting package-relative application ID:

Error: (01/03/2019 03:40:47 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (01/03/2019 10:12:39 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (12/12/2018 08:01:09 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0


System errors:
=============
Error: (01/03/2019 04:36:38 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscDataProtection
 and APPID
Unavailable
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/03/2019 04:36:38 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.SecurityAppBroker
 and APPID
Unavailable
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/03/2019 04:36:38 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscBrokerManager
 and APPID
Unavailable
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/03/2019 04:13:58 PM) (Source: DCOM) (EventID: 10016) (User: ZY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 to the user ZY\ZYA SID (S-1-5-21-1371359750-744929930-1737868572-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/03/2019 04:13:58 PM) (Source: DCOM) (EventID: 10016) (User: ZY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 to the user ZY\ZYA SID (S-1-5-21-1371359750-744929930-1737868572-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/03/2019 04:00:48 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscBrokerManager
 and APPID
Unavailable
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/03/2019 04:00:48 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.SecurityAppBroker
 and APPID
Unavailable
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/03/2019 04:00:15 PM) (Source: DCOM) (EventID: 10016) (User: ZY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 to the user ZY\ZYA SID (S-1-5-21-1371359750-744929930-1737868572-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.


Windows Defender:
===================================
Date: 2019-01-02 20:48:06.056
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {9D8E545F-B97D-47C4-AA2B-2B955F251AAD}
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2019-01-02 18:28:30.977
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {9533C860-24C8-4E86-87FA-C9BE16BC0AA9}
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2019-01-02 18:11:17.034
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {8A02C99D-ED34-4CAC-9C86-376AD6F7ADDD}
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2019-01-02 18:05:55.756
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {594D9FFD-E4A0-4D2C-B2FC-309589030048}
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2019-01-02 17:58:26.336
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {60AE7E2B-BBAC-46A2-8CCE-B838B93C8277}
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2019-01-03 16:42:40.219
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.283.2165.0
Update Source: Microsoft Update Server
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.15500.2
Error code: 0x80240438
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

Date: 2019-01-03 10:06:41.705
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.283.465.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.15500.2
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

Date: 2019-01-03 10:06:41.705
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.283.465.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.15500.2
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

Date: 2019-01-03 10:06:41.704
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.283.465.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.15500.2
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

Date: 2019-01-03 10:06:41.696
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.283.465.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.15500.2
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

==================== Memory info ===========================

Processor: AMD Phenom(tm) II X6 1090T Processor
Percentage of memory in use: 35%
Total physical RAM: 8183.89 MB
Available physical RAM: 5239 MB
Total Virtual: 10103.89 MB
Available Virtual: 7397.85 MB

==================== Drives ================================

Drive 😄 () (Fixed) (Total:1366.74 GB) (Free:580.58 GB) NTFS

\\?\Volume{d074363f-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{d074363f-0000-0000-0000-a0ce55010000}\ () (Fixed) (Total:0.46 GB) (Free:0.06 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 1397 GB) (Disk ID: D074363F)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1366.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=467 MB) - (Type=27)
Partition 4: (Not Active) - (Size=29.6 GB) - (Type=05)

==================== End of Addition.txt ============================

Share this post


Link to post
Share on other sites

Thanks for those logs, continue:

Download attached fixlist.txt file (end of reply) and save it to the Desktop, or the folder you saved FRST into. "Do not open that file when running FRST fix"
NOTE. It's important that both FRST and fixlist.txt are in the same location or the fix will not work.

Open FRST and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt) or the folder it was ran from. Please post it to your reply.

Next,

Download Sophos Free Virus Removal Tool and save it to your desktop.

If your security alerts to this scan either accept the alert or turn off your security to allow Sophos to run and complete.....

Please Do Not use your PC whilst the scan is in progress.... This scan is very thorough so may take several hours...
 
  • Double click the icon and select Run
  • Click Next
  • Select I accept the terms in this license agreement, then click Next twice
  • Click Install
  • Click Finish to launch the program
  • Once the virus database has been updated click Start Scanning
  • If any threats are found click Details, then View log file... (bottom left hand corner)
  • Copy and paste the results in your reply
  • Close the Notepad document, close the Threat Details screen, then click Start cleanup
  • Click Exit to close the program
  • If no threats were found please confirm that result....



The Virus Removal Tool scans the following areas of your computer:
  • Memory, including system memory on 32-bit (x86) versions of Windows
  • The Windows registry
  • All local hard drives, fixed and removable
  • Mapped network drives are not scanned.


Note: If threats are found in the computer memory, the scan stops. This is because further scanning could enable the threat to spread. You will be asked to click Start Cleanup to remove the threats before continuing the scan.

Saved logs are found here: C:\ProgramData\Sophos\Sophos Virus Removal Tool\Logs

Post those logs, also let me know if there are any remaining issues or concerns...

Thank you,

Kevin..

fixlist.txt

Share this post


Link to post
Share on other sites

Hi, here is the Fixlog.txt

Fix result of Farbar Recovery Scan Tool (x64) Version: 01.01.2019
Ran by ZYA (03-01-2019 18:37:03) Run:1
Running from C:\Users\ZYA\Desktop
Loaded Profiles: ZYA (Available Profiles: ZYA)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
Tcpip\..\Interfaces\{f75354a0-40e6-49c3-b873-dad9a5e84ee7}: [DhcpNameServer] 8.8.8.8
CustomCLSID: HKU\S-1-5-21-1371359750-744929930-1737868572-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Zheng Yang\AppData\Local\Microsoft\OneDrive\18.091.0506.0007\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-1371359750-744929930-1737868572-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Zheng Yang\AppData\Local\Microsoft\OneDrive\18.091.0506.0007\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-1371359750-744929930-1737868572-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Zheng Yang\AppData\Local\Microsoft\OneDrive\18.091.0506.0007\amd64\FileSyncShell64.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
AlternateDataStreams: C:\Users\Public\AppData:CSM [474]
CMD: "%WINDIR%\SYSTEM32\lodctr.exe" /R
CMD: "%WINDIR%\SysWOW64\lodctr.exe" /R
RemoveProxy:
EmptyTemp:
Hosts:
CMD: ipconfig /flushDNS
end



*****************

Restore point was successfully created.
Processes closed successfully.
"HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{f75354a0-40e6-49c3-b873-dad9a5e84ee7}\\DhcpNameServer" => removed successfully
HKU\S-1-5-21-1371359750-744929930-1737868572-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E} => removed successfully
HKU\S-1-5-21-1371359750-744929930-1737868572-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C} => removed successfully
HKU\S-1-5-21-1371359750-744929930-1737868572-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => not found
C:\Users\Public\AppData => ":CSM" ADS removed successfully

========= "%WINDIR%\SYSTEM32\lodctr.exe" /R =========


Error: Unable to rebuild performance counter setting from system backup store, error code is 2
========= End of CMD: =========


========= "%WINDIR%\SysWOW64\lodctr.exe" /R =========


Info: Successfully rebuilt performance counter setting from system backup store
========= End of CMD: =========


========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-1371359750-744929930-1737868572-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-1371359750-744929930-1737868572-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

========= ipconfig /flushDNS =========


Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========= End of CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 6578176 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 16990662 B
Java, Flash, Steam htmlcache => 394791797 B
Windows/system/drivers => 4893104 B
Edge => 95328 B
Chrome => 74069197 B
Firefox => 796785818 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 960 B
LocalService => 0 B
NetworkService => 30544 B
NetworkService => 0 B
ZYA => 4582547 B
t => 613227 B

RecycleBin => 154018 B
EmptyTemp: => 1.2 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:43:32 ====

Share this post


Link to post
Share on other sites

Thanks for that log, post Sophos log when ready. Also give update on any remaining issues or concerns...

Share this post


Link to post
Share on other sites

Hi Kevin,

I have ran the offline scan and it didn't give me any results. The only information was the last quick scan I ran. So I ran a full system scan. I left it running and when I came back, the computer was very slugish. I opened task manager and memory was all used up. Windows defender then crashed. The computer was non responsive when I tried to scared the screenshot of the task manager. Eventually it worked but the save file directory automatically jumped to System32 folder. I had to force the computer to restart since it got stuck. After checking event logs it appears the full scan was stopped before completion.

Share this post


Link to post
Share on other sites

I forgot to mention that the time when the full scan was stopped was when I was away from the computer.

Share this post


Link to post
Share on other sites

Hi Kevin, 

I tried to run the offline scan again, the computer reboots and it appears as if the offline scan is starting, but then nothing happens and the computer just reboots.

Share this post


Link to post
Share on other sites

Hello Tinklo,

Try the following scan...

Please read carefully and follow these steps.
  • Download TDSSKiller from here  http://support.kaspersky.com/downloads/utils/tdsskiller.exe and save it to your Desktop.
  • Doubleclick on user posted image to run the application.
  • The "Ready to scan" window will open, Click on "Change parameters"

    user posted image

     
  • Ensure all entries are Checkmarked under Additionl Options, Ensure all entries are Checkmarked under Objects to scan When Loaded Modules is checkmarked a re-boot will be offered, allow that to happen...

    user posted image

     
  • Continue after reboot select "Change Parameters" make sure entries are checkmarked and then Select "Start Scan"

    user posted image

     
  • If an infected file is detected, the default action will be Cure, click on Continue.

    user posted image

     
  • If a suspicious file is detected, the default action will be Skip, click on Continue.

    user posted image

     
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.

    user posted image

     
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Thank you,

Kevin..

Share this post


Link to post
Share on other sites

15:05:14.0091 0x14b8 TDSS rootkit removing tool 3.1.0.25 Dec 24 2018 06:31:07
15:05:16.0091 0x14b8 ============================================================
15:05:16.0091 0x14b8 Current date / time: 2019/01/06 15:05:16.0091
15:05:16.0091 0x14b8 SystemInfo:
15:05:16.0154 0x14b8
15:05:16.0154 0x14b8 OS Version: 10.0.17763 ServicePack: 0.0
15:05:16.0154 0x14b8 Product type: Workstation
15:05:16.0154 0x14b8 ComputerName: ZY
15:05:16.0154 0x14b8 UserName: ZYA
15:05:16.0154 0x14b8 Windows directory: C:\WINDOWS
15:05:16.0154 0x14b8 System windows directory: C:\WINDOWS
15:05:16.0154 0x14b8 Running under WOW64
15:05:16.0154 0x14b8 Processor architecture: Intel x64
15:05:16.0154 0x14b8 Number of processors: 6
15:05:16.0154 0x14b8 Page size: 0x1000
15:05:16.0154 0x14b8 Boot type: Normal boot
15:05:16.0154 0x14b8 CodeIntegrityOptions = 0x00000001
15:05:16.0154 0x14b8 ============================================================
15:05:16.0154 0x14b8 KLMD ARK init status: drvProperties = 0xFFFF00, osBuild = 17763.1, osProperties = 0x19
15:05:16.0154 0x14b8 KLMD BG init status: drvProperties = 0xFFFF00, osBuild = 17763.1, osProperties = 0x19
15:05:16.0154 0x14b8 BG loaded
15:05:19.0154 0x14b8 System UUID: {F8226EFE-B91E-939D-A01F-D056A94C2C71}
15:05:22.0091 0x14b8 Drive \Device\Harddisk0\DR0 - Size: 0x15D3EF70000 ( 1396.98 Gb ), SectorSize: 0x200, Cylinders: 0x2C85C, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:05:22.0138 0x14b8 ============================================================
15:05:22.0138 0x14b8 \Device\Harddisk0\DR0:
15:05:22.0170 0x14b8 MBR partitions:
15:05:22.0170 0x14b8 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xFA000
15:05:22.0170 0x14b8 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xFA800, BlocksNum 0xAAD7A3F9
15:05:22.0326 0x14b8 ============================================================
15:05:22.0560 0x14b8 C: <-> \Device\Harddisk0\DR0\Partition2
15:05:22.0560 0x14b8 ============================================================
15:05:22.0560 0x14b8 Initialize success
15:05:22.0560 0x14b8 ============================================================
15:05:44.0935 0x1a1c ============================================================
15:05:44.0935 0x1a1c Scan started
15:05:44.0935 0x1a1c Mode: Manual; SigCheck; TDLFS;
15:05:44.0935 0x1a1c ============================================================
15:05:44.0935 0x1a1c KSN ping started
15:05:45.0138 0x1a1c KSN ping finished: true
15:05:51.0340 0x1a1c ================ Scan BIOS =================================
15:05:51.0355 0x1a1c BIOS info: vendor = American Megatrends Inc., version = 6.09, releaseDate = 09/07/2010
15:05:51.0355 0x1a1c Base board info: manufacturer = FOXCONN, product = 2A92 , version = 1.01
15:05:52.0684 0x1a1c [ 8B91BB353BAFC1AD6D524C57519D550E, 2226168638E87B55AB3C81D0CE619CE2CF77BDEC05D60C5F5487A57AF94E230F ] BIOS
15:05:53.0371 0x1a1c BIOS - ok
15:05:53.0371 0x1a1c ================ Scan system memory ========================
15:05:53.0371 0x1a1c System memory - ok
15:05:53.0371 0x1a1c ================ Scan services =============================
15:06:07.0228 0x1a1c 1394ohci - ok
15:06:07.0297 0x1a1c [ 81639B18EB7C4FB1C49B35CCA7F80EE8, 08213BB451D685C68B797FDE827055C013D728D1282F4E18CCBCB2A486997031 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
15:06:07.0799 0x1a1c 3ware - ok
15:06:08.0239 0x1a1c [ 52166C84DA4BBD0FB70EF15F84D8A5B7, AAAF37C1F8DBEE6B248BB5F6EB51E54BBEF8254494CB531E4CCDBFB596890266 ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
15:06:08.0325 0x1a1c ACPI - ok
15:06:08.0374 0x1a1c [ C3807173110FCDD0B877D23F5FD28138, EB8D2F7BEC9EEEBDEEBCFB70D3F803DC83A1648A2B9BAC7C1B546D2849945D6E ] AcpiDev C:\WINDOWS\System32\drivers\AcpiDev.sys
15:06:08.0544 0x1a1c AcpiDev - ok
15:06:08.0675 0x1a1c acpiex - ok
15:06:08.0804 0x1a1c [ 8F56B78F502BA54DF0E7F252D007A33B, 16658B71F45051BD618CCE2865377CED1DA7B694151113D4EA30A5A2A3FB85C1 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
15:06:08.0994 0x1a1c acpipagr - ok
15:06:09.0214 0x1a1c [ 6253BFF71CE081511CE362714B21F24F, B40834CF2A59E817E34AFF7CA436FE70AA01B39ED4A0C66FB8D09D50D85B05D6 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
15:06:09.0469 0x1a1c AcpiPmi - ok
15:06:09.0516 0x1a1c [ 9E85604FC93AFC1237C29CF9EFA83D60, 2612FB1222B02B0DD8A98C520E758550213BA1EDAC9AD397641228DE12AC5D3E ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
15:06:09.0751 0x1a1c acpitime - ok
15:06:10.0954 0x1a1c [ 696A8431DD22EDE385D7AB84E0EAF4C9, E5892B346904C7A392A0B1C8F4C9066BC535A2C70307123C8E1F2157353333F0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:06:10.0985 0x1a1c AdobeARMservice - ok
15:06:12.0438 0x1a1c [ 1E56666C11164E0BE83A2330D85D65A9, 5570BDAB57A15E48491517FF6FF7DD02EEC7337F481DFAB66160667B409D3015 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
15:06:12.0782 0x1a1c ADP80XX - ok
15:06:12.0891 0x1a1c AFD - ok
15:06:12.0985 0x1a1c [ 5194BF2FEDA9F6BE6F7691EDA1F910DE, C4DE61BE40BF51F07FE79E840BBF57A7ACBE4D0E14C5FC914A03640FEB58B725 ] afunix C:\WINDOWS\system32\drivers\afunix.sys
15:06:13.0063 0x1a1c afunix - ok
15:06:13.0266 0x1a1c [ AE0B2FAC90C4DF325F24A7BE70CE5609, 9089D3F30F23DA2D031817CD60615CDC6036BA52E1B0F7656939112AD8C62EB5 ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
15:06:13.0438 0x1a1c ahcache - ok
15:06:13.0626 0x1a1c [ 3D93A13387EE4F6B2D5B6E883E0EA770, 3E17935F169CE91BAF6EDE5832BCAA2AE0DBBBF9F2D70C1BD3A9DA516D47D99C ] ahcix64s C:\WINDOWS\system32\drivers\ahcix64s.sys
15:06:13.0641 0x1a1c ahcix64s - ok
15:06:13.0860 0x1a1c [ 50137D32AACD4D73AC3BC2BBBED9B135, F3BD3ABFFC1BF350B61A640954DD31500968D4E66B73B89153CF29345ECBA727 ] AJRouter C:\WINDOWS\System32\AJRouter.dll
15:06:14.0391 0x1a1c AJRouter - ok
15:06:14.0485 0x1a1c [ E67AEB5F9FA81EE896EC3F0EB837BB12, 0EEFD2619D77D7BAFED95197E0C0EF30147ACADDCD81EB2761EE9893FD55F91B ] ALG C:\WINDOWS\System32\alg.exe
15:06:14.0641 0x1a1c ALG - ok
15:06:14.0798 0x1a1c [ BBADD85854BFB5D43C60B7AC8EEA3DBA, 968C043ABEA46F5C79525863B3FE2681AC0FA4202036C9EFD20B408DECF407E2 ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
15:06:15.0079 0x1a1c AMD External Events Utility - ok
15:06:15.0469 0x1a1c [ DE51F5BB5C05D4C831ECB6E1A70E1B5E, 465834210ACE469481F75EDBB8532386029BD5277C41D084134E9E71B9BD8371 ] AMD FUEL Service C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
15:06:15.0485 0x1a1c AMD FUEL Service - ok
15:06:15.0641 0x1a1c [ F88D3AF78AE83F9206D60ACC8D735DC0, 8F4EE699504060440A63FE0E501212AE834EA04FAC97FA7498B7B22D0244AB23 ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
15:06:15.0688 0x1a1c AmdK8 - ok
15:06:15.0798 0x1a1c amdkmdag - ok
15:06:16.0048 0x1a1c [ 17BA5C907E14947574CBB788F4CEB85F, EAA3DBF436637C58666A91905E388287FC54334EBB2589A00727EB09AC4870E3 ] amdkmdap C:\WINDOWS\system32\DRIVERS\atikmpag.sys
15:06:16.0110 0x1a1c amdkmdap - ok
15:06:16.0110 0x1a1c AmdPPM - ok
15:06:16.0266 0x1a1c [ 89D675A01B6A4E1AEEB563DD8450E8CD, 663A28936088FF96A695073CC3DDFCEDD44DE3AD76490517E0B2F0EFBE1EA212 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
15:06:16.0360 0x1a1c amdsata - ok
15:06:16.0407 0x1a1c [ EFB766859B1A4A14EA65528AAFFD1549, 8F79F9E99E1507A8D1BFF1FF96C609F7A4601BBF8B3F8B7C5815F5F9F9A6BAFD ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
15:06:16.0516 0x1a1c amdsbs - ok
15:06:16.0579 0x1a1c [ 1085914F24F74234C16BF12E7BBFC403, B0FF3ACD05539A6392107AB311895F5DE336FD2498231B2EE4DED93425E51A19 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
15:06:16.0594 0x1a1c amdxata - ok
15:06:16.0688 0x1a1c [ C3D487827E48CC5EC17994FEC5BDFF87, 5FCEA3EEA583755D0C9F6005ED3032E9DFECB57F504DC67701AE7D2D2631C30E ] AODDriver4.3 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
15:06:16.0704 0x1a1c AODDriver4.3 - ok
15:06:16.0860 0x1a1c [ 056C68D7ED2270EF12990B80A47592B5, CA8E98E3E91A0F90BD3784EAA08B5845838BF66A189BBBDE5CDDF9B792D74304 ] AppID C:\WINDOWS\system32\drivers\appid.sys
15:06:16.0938 0x1a1c AppID - ok
15:06:17.0001 0x1a1c [ C891C2BE30DF2EF1E3769D4EEDB27A9C, 6A2A2FB3B404A317B7AD068DAC6634B6880E34B0A92CEE9898039182F3500074 ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
15:06:17.0219 0x1a1c AppIDSvc - ok
15:06:17.0376 0x1a1c [ A939CDAB068CF5775E29D8B915042BA2, 7E52E1947D487DB772315DCA0FEB463A994142DFE439468DB31E037248BB4BCA ] Appinfo C:\WINDOWS\System32\appinfo.dll
15:06:17.0907 0x1a1c Appinfo - ok
15:06:18.0032 0x1a1c [ DF8F48328EFA4EFB04CC5528629DE585, 0AF16409D67B85191C25C45A7EC5639C4385E7E34269BE34FF3FD9148E077D9F ] applockerfltr C:\WINDOWS\system32\drivers\applockerfltr.sys
15:06:18.0126 0x1a1c applockerfltr - ok
15:06:18.0344 0x1a1c [ 425280AF4EB1F4A105097A4DEBD84B18, C086F13D778D6B6D98A89B4165C73E0E8268BE34C55054C0A08F99FCB0D1DDDB ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
15:06:18.0516 0x1a1c AppReadiness - ok
15:06:18.0610 0x1a1c AppXSvc - ok
15:06:18.0673 0x1a1c [ F543CC0BDF5EBAF462C77FED31593C3C, 804F8BC178B827F7C975051871FEBBC306FF6834D2BE33F764F73297550FFBFC ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
15:06:18.0719 0x1a1c arcsas - ok
15:06:18.0766 0x1a1c AsyncMac - ok
15:06:18.0891 0x1a1c [ A39C05B19C079401A9AF8A2EF3067B64, D9D2181FDB7EA3356075BCE11B4FA06292BC14AFB122B6E25138EFCDCD7A5AC9 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
15:06:18.0907 0x1a1c atapi - ok
15:06:19.0048 0x1a1c [ FD9A5BCC3AFB02E87668B749546B6229, 4BE969A11CEE8033F40EDE7E06A5904B328D3FC1842855C0DB38D5EEF458219C ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdWT6.sys
15:06:19.0110 0x1a1c AtiHDAudioService - ok
15:06:19.0204 0x1a1c AudioEndpointBuilder - ok
15:06:19.0204 0x1a1c Audiosrv - ok
15:06:19.0485 0x1a1c [ E129358A0BE95CBF9EB0742173E72665, 87F2512CF94CFCC735BBF3C5408902BF05015212A2BEAF07C418AB6EF85ABB02 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
15:06:19.0751 0x1a1c AxInstSV - ok
15:06:20.0204 0x1a1c [ 2BBDBBA403F23A4197BFB1147AF566C1, 0F9339E2ACB21078187EA033DBBA95C6C87A077FCE82B786D81A429DB7FDF148 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
15:06:20.0407 0x1a1c b06bdrv - ok
15:06:20.0548 0x1a1c [ E42AF3C735EFBAB61D00B5101190ACE8, A2088B36CCF6E28E072C471E635CAB153F6D889B41E25642F8943C1A32A54F28 ] bam C:\WINDOWS\system32\drivers\bam.sys
15:06:20.0594 0x1a1c bam - ok
15:06:22.0860 0x1a1c BasicDisplay - ok
15:06:22.0876 0x1a1c BasicRender - ok
15:06:23.0173 0x1a1c BcastDVRUserService - ok
15:06:23.0391 0x1a1c [ 739D089777D2B66DBE7201E5EA4BA2D7, 9AD12E18A042C5B8EFB19297BC2E7BD1FEF75A138FEFB64C6BF0261FD3E53AB1 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
15:06:23.0501 0x1a1c bcmfn2 - ok
15:06:23.0563 0x1a1c BDESVC - ok
15:06:23.0641 0x1a1c [ B02C098721C7A12C959E16850641F783, 93283B4DDBCC56B823DE99DF75302E2F418757ABDA3978EFC7541662145929C2 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
15:06:23.0798 0x1a1c Beep - ok
15:06:26.0360 0x1a1c [ 615C34C71FA4637849BB61DE4193C462, A091970578884E12763968CBD876578D3598AFCA784A43A07B1773F006DFB348 ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
15:06:26.0751 0x1a1c BEService - ok
15:06:26.0844 0x1a1c BFE - ok
15:06:26.0891 0x1a1c bindflt - ok
15:06:27.0423 0x1a1c [ 762E1319019E9E3D61127533FA3F3A07, 465D3592174660D8144B640E0B3ACEAAA607361D112386B34FEAE72FE8AEC009 ] BITS C:\WINDOWS\System32\qmgr.dll
15:06:40.0173 0x1a1c BITS - ok
15:06:40.0501 0x1a1c [ B5704DC9DC9E87DB736DB103456C0E61, 3FEACED6B153D70411410C10B03313A3ED907FC70817A332E968F35A23B5DEEF ] BluetoothUserService C:\WINDOWS\System32\Microsoft.Bluetooth.UserService.dll
15:06:40.0673 0x1a1c BluetoothUserService - ok
15:06:40.0704 0x1a1c bowser - ok
15:06:40.0735 0x1a1c BrokerInfrastructure - ok
15:06:40.0938 0x1a1c [ 07176C2B95E1E9E6114956084EBAE9AD, 5ABF6645012FA5F73C0752BBA88770E0C7F4E9F8197E24444C7F24CE05857295 ] BTAGService C:\WINDOWS\System32\BTAGService.dll
15:06:41.0032 0x1a1c BTAGService - ok
15:06:41.0173 0x1a1c [ 43F1CDBE6650A2989E1C2F6F02F0E4F1, A909747A78875A4619613FD4313045F8ADA15C5C4E429A0764D8573AE8BA7DF9 ] BthAvctpSvc C:\WINDOWS\System32\BthAvctpSvc.dll
15:06:41.0282 0x1a1c BthAvctpSvc - ok
15:06:41.0360 0x1a1c [ 0A40527B981A83D705B6976E9F3A4236, 7DC9D5798CD60E9E8D2C148E2AD40423FD0AD994E3AF19EC268D62811BAE0E79 ] BthEnum C:\WINDOWS\System32\drivers\BthEnum.sys
15:06:42.0063 0x1a1c BthEnum - ok
15:06:42.0204 0x1a1c [ F8D27297A01AB57929BC3F39E61281DE, 0EED4106B6EA8DD32071309CAB448CA0E8EBE596B2037D836A2F37B54B8C5871 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
15:06:42.0423 0x1a1c BthHFEnum - ok
15:06:42.0594 0x1a1c [ ED1393D406757F6533257476F27209E9, 5386EF506AA8400E76885C58CE0F14233556DCCDF4F26191576A9A124D4F2D5A ] BthLEEnum C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
15:06:43.0376 0x1a1c BthLEEnum - ok
15:06:43.0610 0x1a1c [ 1A0AF89F61538B833075FEB438EBC33D, 2E1F4FBBD27A207FE85AFD4C9CB49B894082D4BECEB6C8AD7CFC5CE1564B8B2C ] BthMini C:\WINDOWS\System32\drivers\BTHMINI.sys
15:06:43.0673 0x1a1c BthMini - ok
15:06:43.0907 0x1a1c [ AE60FA63282CFB1825C68D2F44737A1B, A9EB059AAF466F389FCB7AA11B70C15E66547D24885E4F07ADEA9DF3CC12A601 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
15:06:44.0032 0x1a1c BTHMODEM - ok
15:06:44.0423 0x1a1c [ 80CEAA4033F2D4A7DE7BE929CA9BFC8B, C140D981F495724DB5D4631F305FA7E8983B6E588ACEFB779CF6B8EDAC94DA06 ] BTHPORT C:\WINDOWS\System32\drivers\BTHport.sys
15:06:44.0719 0x1a1c BTHPORT - ok
15:06:44.0844 0x1a1c bthserv - ok
15:06:44.0923 0x1a1c [ 8FA206A2891883E610B8501CF9880F07, F0DA85EC2900906833F18135D0010D1CF393CA9C34AAF7F8434B10898F51A563 ] BTHUSB C:\WINDOWS\System32\drivers\BTHUSB.sys
15:06:45.0079 0x1a1c BTHUSB - ok
15:06:45.0141 0x1a1c [ E0F9E50058E4EA6B1CD7002310B00F0D, 2E8B80A5EBD8C3ED14DC2A6E7EEB710216DFF0D04251D8E452F68E6D35BFC6F7 ] bttflt C:\WINDOWS\system32\drivers\bttflt.sys
15:06:45.0251 0x1a1c bttflt - ok
15:06:45.0329 0x1a1c [ DB01E910747D4AB7B59842AF88D7F86A, 854269A9F47563A9E243101483E9FEB09A7765BCB7B860D38D441519E9719C9E ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
15:06:45.0454 0x1a1c buttonconverter - ok
15:06:45.0548 0x1a1c [ F50AFEFFB3DB2BDC549AF4A230A3ADB5, 61E1197A153BA92CAD49F46ECDB76F4EB613BFA875B161C906ABC5CFC939F7C1 ] CAD C:\WINDOWS\System32\drivers\CAD.sys
15:06:45.0641 0x1a1c CAD - ok
15:06:45.0719 0x1a1c [ 20AF2F885AE06DDBB31BF586D0333047, D799851C5B825C8C52FE32A653FA39B287951F885E211231EE79C80BD052FB21 ] camsvc C:\WINDOWS\system32\CapabilityAccessManager.dll
15:06:45.0798 0x1a1c camsvc - ok
15:06:45.0876 0x1a1c [ 7014CEFB8F3652B2AA0533D33D94F936, F0975032BB9DAA0420E2A1A91C34DB5C57F840E127FAF7A5AF775E2602927328 ] CapImg C:\WINDOWS\System32\drivers\capimg.sys
15:06:45.0891 0x1a1c CapImg - ok
15:06:45.0969 0x1a1c [ 61E4F7601980AA8396D608EFABF1FAFF, E4887D903F93B829A1DDD8ECA5F9702AA8F546E1D4F6CAA34D2E60CD51BFDE52 ] CaptureService C:\WINDOWS\System32\CaptureService.dll
15:06:46.0032 0x1a1c CaptureService - ok
15:06:46.0454 0x1a1c [ FED9AB89CEA58D22566DBF65DB3A5BDC, 7CA9DA0A52781FBB3A811C851A3A89079FA800B93B767B6B5B88469CA197463C ] cbdhsvc C:\WINDOWS\System32\cbdhsvc.dll
15:06:46.0532 0x1a1c cbdhsvc - ok
15:06:46.0579 0x1a1c cdfs - ok
15:06:47.0126 0x1a1c [ 72DCA3EF93EAB7A87D3EBE9DD94C959F, B1B37F1EEACCCA08BBF5DF1F55E58899EE18C15773B774034FEFA7794ED56A69 ] CDPSvc C:\WINDOWS\System32\CDPSvc.dll
15:06:47.0204 0x1a1c CDPSvc - ok
15:06:47.0298 0x1a1c CDPUserSvc - ok
15:06:47.0344 0x1a1c cdrom - ok
15:06:47.0438 0x1a1c [ 0AA32D46BBEC1509B13FFBFB00C26116, 5B14509A04B3D5DF44A0CC35CFB68F91852C7E0712AD6A10EE5D8930DF62B84A ] CertPropSvc C:\WINDOWS\System32\certprop.dll
15:06:47.0798 0x1a1c CertPropSvc - ok
15:06:48.0032 0x1a1c [ F9BA5E23AAE945513581594BB7A947C1, 730B56EB762AC98C738A7EE740C615F4DCFC5424B29CAD20D69C048D1A601C0E ] cht4iscsi C:\WINDOWS\system32\drivers\cht4sx64.sys
15:06:48.0063 0x1a1c cht4iscsi - ok
15:06:48.0126 0x1a1c [ E37576C5716151B03D9B374D40ECBFA4, 60C6B2CDB194433D1D01022CF91A7FFEDCBA37071DCB77832E0D736BB6152C76 ] cht4vbd C:\WINDOWS\System32\drivers\cht4vx64.sys
15:06:48.0266 0x1a1c cht4vbd - ok
15:06:48.0344 0x1a1c [ C93B6F7C1D03400315AEA8530698FF57, F7C07900C38B7BB4F5DE3D7E2A96D64548FD9DF4DC951B3228FDA31BF7190473 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
15:06:48.0407 0x1a1c circlass - ok
15:06:48.0501 0x1a1c [ 769ACDF8CE8BBA378B9D32C123CCE647, 00552779E9CED999E657187D458CA120CE2BDBE804DDA24E88BB11E1A40DFA92 ] CldFlt C:\WINDOWS\system32\drivers\cldflt.sys
15:06:48.0594 0x1a1c CldFlt - ok
15:06:48.0594 0x1a1c CLFS - ok
15:06:49.0751 0x1a1c [ 08D343C9D37FA5584330714DF6C8A6C1, 546A062DF1244A1228DE60C8EAE49C6AD64021A23F53A3B6B344693C586FF4B5 ] ClickToRunSvc C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
15:06:50.0751 0x1a1c ClickToRunSvc - ok
15:06:51.0344 0x1a1c [ 759E47EE37B5C8368A5CA39F95F3B0B8, 8739D32942C3EF51A2CA629C187A388569FE60C3733FC23E4DE318267040CA4C ] ClipSVC C:\WINDOWS\System32\ClipSVC.dll
15:06:51.0391 0x1a1c ClipSVC - ok
15:06:51.0860 0x1a1c [ EBD069FB399EE8EAC498D5F9B129AAA5, 021F5755CE0FBFC9373B2B92B128D34AC7D792974DF09F08E4AF8D5A760C58A7 ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
15:06:52.0485 0x1a1c CmBatt - ok
15:06:52.0719 0x1a1c CNG - ok
15:06:52.0860 0x1a1c [ DF2E93BD5CD438688ADAA3AEBFBBDC9F, 3CE7D32A0CB4F7D7E6D6A7DD9900EE665D273C899E6E80A0BD6E2BE2CB875F19 ] cnghwassist C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
15:06:52.0876 0x1a1c cnghwassist - ok
15:06:53.0032 0x1a1c [ 7841121E05EE3D540266092A6E86AE77, 41B0B102769C73694E1BF9D45E59806638591EE9B42F2E1DBF3CFB50D61B5EAD ] CompositeBus C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_e4d35af746093dc3\CompositeBus.sys
15:06:53.0079 0x1a1c CompositeBus - ok
15:06:53.0079 0x1a1c COMSysApp - ok
15:06:53.0094 0x1a1c condrv - ok
15:06:53.0313 0x1a1c [ EBD5C968ADCCE803DED93A1B7F6A62BC, DD478D6F8C3473E68666A24C8DED8A508585ED11DF96F9AC022B157FFA4605F5 ] ConsentUxUserSvc C:\WINDOWS\System32\ConsentUxClient.dll
15:06:53.0391 0x1a1c ConsentUxUserSvc - ok
15:06:53.0688 0x1a1c CoreMessagingRegistrar - ok
15:06:54.0001 0x1a1c CryptSvc - ok
15:06:54.0141 0x1a1c [ 567EBEC0D1127D2E48A68273DF9049B2, 26E9BE8D6F381C56CDD6870FB1ACF28808BE59B0AFF0413CD1961FE8236C87DA ] dam C:\WINDOWS\system32\drivers\dam.sys
15:06:54.0157 0x1a1c dam - ok
15:06:54.0235 0x1a1c DcomLaunch - ok
15:06:54.0407 0x1a1c defragsvc - ok
15:06:54.0704 0x1a1c [ 35A20D48D8A84AF8154B47CBCEACBCCC, C98B0EC44813B7B459E233C084FAE2ADA1507B01C236603625EDB3FBDB6B5C35 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
15:06:54.0766 0x1a1c DeviceAssociationService - ok
15:06:54.0907 0x1a1c DeviceInstall - ok
15:06:55.0173 0x1a1c [ 4035C0ECBC2FA54845DBA9D2D732978D, EAE3D556ADDB141D885ED42F52FD08A8E026EAF67B259F17EF2390D033CBF98F ] DevicePickerUserSvc C:\WINDOWS\System32\Windows.Devices.Picker.dll
15:06:57.0611 0x1a1c DevicePickerUserSvc - ok
15:06:57.0861 0x1a1c [ B11044B116BC28695B426DFFFB2BA728, C7F019634F5245C51A371691CFD4B996B64091766D401C755560D4B2F91408D0 ] DevicesFlowUserSvc C:\WINDOWS\System32\DevicesFlowBroker.dll
15:06:58.0080 0x1a1c DevicesFlowUserSvc - ok
15:06:58.0174 0x1a1c [ D3FB829B5D8A01790661A17D19626290, 38F4FEA427636CE24D2E16B2F8065AD7B244640CF5A6B8F562F5A64BF8956A8F ] DevQueryBroker C:\WINDOWS\system32\DevQueryBroker.dll
15:06:58.0345 0x1a1c DevQueryBroker - ok
15:06:58.0392 0x1a1c Dfsc - ok
15:06:58.0502 0x1a1c Dhcp - ok
15:06:58.0767 0x1a1c diagnosticshub.standardcollector.service - ok
15:06:58.0924 0x1a1c [ F7AD25F7667C1B5C1D681A48AED0FF0F, C48A57E6939885F387EA31B2239B30DD18104C786EB4D94F435E39F6E380685C ] diagsvc C:\WINDOWS\system32\DiagSvc.dll
15:06:59.0220 0x1a1c diagsvc - ok
15:06:59.0299 0x1a1c DiagTrack - ok
15:06:59.0455 0x1a1c [ CD76072EE8E1E91099ADF566DC4DBC5C, 2F7A53C0FB21D34726F4DB84C286A13DE4B43957D5311726F0470DED3252E83B ] Disk C:\WINDOWS\system32\drivers\disk.sys
15:06:59.0502 0x1a1c Disk - ok
15:06:59.0580 0x1a1c DisplayEnhancementService - ok
15:06:59.0658 0x1a1c DmEnrollmentSvc - ok
15:06:59.0752 0x1a1c [ 048980E575F5228248511B3E0ACC1749, E0A3E8D17934DBB82810D2F384DE7A6064EB0CEA7D61F84A7AEBFEDE9BE62AA8 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
15:06:59.0783 0x1a1c dmvsc - ok
15:06:59.0892 0x1a1c [ 18286E4DF795E502905EC5218E5726F8, ED78F342355B2D57826BE03CA306F2E36A0C770065043881C44997BC61455458 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
15:07:00.0017 0x1a1c dmwappushservice - ok
15:07:00.0095 0x1a1c Dnscache - ok
15:07:00.0220 0x1a1c [ 7231A7C8515B00D2708EC68B2A792EBE, 0A0787FE435520AE6087B195A36FF0008AF3B71FFA907CC3047C722442A1DC40 ] dot3svc C:\WINDOWS\System32\dot3svc.dll
15:07:00.0283 0x1a1c dot3svc - ok
15:07:00.0345 0x1a1c [ 449075E8889DE1D57714B8177457D533, 17E9941BD5B949951270B46C428D72570A54EF219063FB746AC6E5018C2D74E2 ] DPS C:\WINDOWS\system32\dps.dll
15:07:00.0486 0x1a1c DPS - ok
15:07:00.0564 0x1a1c [ B41EDC7CDD2C1F35BB36CD384C3985AB, DF2F6BE9DD5E720D75666991A23860DD39C32EC6D436C336944D59ACBA4F2EA7 ] drmkaud C:\WINDOWS\System32\drivers\drmkaud.sys
15:07:00.0595 0x1a1c drmkaud - ok
15:07:00.0689 0x1a1c [ B440713B9913F70952CD75B776B95E29, 9F3CAD7435675599F456F047BAA0D36004EC25A9237488BC9F6B772CCA473534 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
15:07:00.0752 0x1a1c DsmSvc - ok
15:07:00.0799 0x1a1c DsSvc - ok
15:07:00.0799 0x1a1c DusmSvc - ok
15:07:00.0861 0x1a1c DXGKrnl - ok
15:07:00.0924 0x1a1c Eaphost - ok
15:07:01.0845 0x1a1c [ F314609DBF8A3AA9EA69EF40C7FE7762, C4932C42320782BBEFDD35E235172F24CFB2F4F38924D9C7205D2EFF517FF378 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
15:07:02.0127 0x1a1c ebdrv - ok
15:07:02.0142 0x1a1c EFS - ok
15:07:02.0220 0x1a1c EhStorClass - ok
15:07:02.0283 0x1a1c [ 2B24FC41E7ED5BB730DDF8D78AA73A52, BC1938CF0B926CDD12EA0DEC57AC0A2E35DFA1FB74A1FFC21BC044A5020839EE ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
15:07:02.0330 0x1a1c EhStorTcgDrv - ok
15:07:02.0814 0x1a1c [ 27C0AB2D8630F45877837537367673C5, EAC392F03679F57DD1F6875C9A1F7A8BFF812BCC7242FD9FE9CB3B7997DA298E ] embeddedmode C:\WINDOWS\System32\embeddedmodesvc.dll
15:07:02.0970 0x1a1c embeddedmode - ok
15:07:03.0642 0x1a1c [ 8402DB01BA4000DF70FC05E8CFF2B91F, 1B86E8986F6C0DE7FD12F33BD9B7ABF494BD402C8C02EC6A04A2B43B62D734BB ] EntAppSvc C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
15:07:03.0939 0x1a1c EntAppSvc - ok
15:07:04.0283 0x1a1c [ F7193E7F929653AD4CE636FCFBDBEEDC, 30E2E6192DF43FAE48831132ED43131AED5C14E6F2DA4043AE404F5A965C67AF ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
15:07:04.0564 0x1a1c ErrDev - ok
15:07:04.0752 0x1a1c EventLog - ok
15:07:05.0236 0x1a1c [ 25222B73D463284A85D32A56F002BD62, 94732D9115F65147862D8B06D76AF1E8246E2B0FB8E5AF3D3C7F461B0A4A8483 ] EventSystem C:\WINDOWS\system32\es.dll
15:07:05.0424 0x1a1c EventSystem - ok
15:07:05.0486 0x1a1c exfat - ok
15:07:05.0502 0x1a1c fastfat - ok
15:07:05.0877 0x1a1c [ 15BE7070232B1187345AEA3EA27811D2, 02550C0AAD3F86F5C6EFB1F5043C358D78C6D847539755D95672935D974D5AE8 ] Fax C:\WINDOWS\system32\fxssvc.exe
15:07:06.0392 0x1a1c Fax - ok
15:07:06.0439 0x1a1c [ 6CBC38EC80F2976F7EF23602308FA644, 02B0D843D61D8ADE06BCEAE4E721B35E786A088AB96C59D9E579D997948A6527 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
15:07:06.0502 0x1a1c fdc - ok
15:07:06.0595 0x1a1c [ B76160030D8254639E5FA949CE00850B, 7B52BF6828F8EEBAA5EC0A7593FC02979F65C916B678F92CBD358E3545AB6314 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
15:07:06.0674 0x1a1c fdPHost - ok
15:07:06.0720 0x1a1c [ 8CED235DE8C2F476022E04DEA1AA786B, 38C3663C9837B2135FF08D8B4731241868C371F01093D128A45156BA9C09E267 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
15:07:06.0939 0x1a1c FDResPub - ok
15:07:07.0127 0x1a1c [ 738BF8CD600B313FBC40FCDEF5C81550, 3AECE13A40458103A334BF118F1A19220299D5FF59E891819D163FA1D4F6F890 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
15:07:07.0752 0x1a1c fhsvc - ok
15:07:08.0033 0x1a1c [ D64F99DD8480935CDA61ADC66C81FE87, B6DB41FB3D863C53E92BAF60DD6CED702C29594F66673582DA986E7648080E3E ] FileCrypt C:\WINDOWS\system32\drivers\filecrypt.sys
15:07:08.0095 0x1a1c FileCrypt - ok
15:07:08.0158 0x1a1c FileInfo - ok
15:07:08.0299 0x1a1c Filetrace - ok
15:07:08.0408 0x1a1c [ A751D0D8462665969C43337435A26711, FB17F920A000035B392A1CC2FDC1E65816D862AF26D91A261C0A53E2BD0DEDBA ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
15:07:08.0564 0x1a1c flpydisk - ok
15:07:08.0564 0x1a1c FltMgr - ok
15:07:08.0705 0x1a1c FontCache - ok
15:07:09.0455 0x1a1c FontCache3.0.0.0 - ok
15:07:09.0533 0x1a1c FrameServer - ok
15:07:09.0580 0x1a1c FsDepends - ok
15:07:09.0595 0x1a1c Fs_Rec - ok
15:07:09.0611 0x1a1c fvevol - ok
15:07:09.0752 0x1a1c [ 0B7CFD2F8B043740CE20A23B666DE408, DED6E078C59F112922185C7708E0B2E110B284CBA13524AA0E4A72C13DB046C0 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
15:07:10.0049 0x1a1c gencounter - ok
15:07:10.0345 0x1a1c [ 4EF5EA4643076475D1B34345FA245930, 2710F015497C3265A52AEDC4FCDD4BEEE68B1DD73B994C2F89980B1B51BC1511 ] genericusbfn C:\WINDOWS\System32\drivers\genericusbfn.sys
15:07:10.0408 0x1a1c genericusbfn - ok
15:07:10.0674 0x1a1c [ DDD204D449710B6A54E42F9630A10A29, 8C18C0E2C32111D2166B36B710FFDB09DA176E6339445F92BA3195AD4987A247 ] GoogleChromeElevationService C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe
15:07:10.0767 0x1a1c GoogleChromeElevationService - ok
15:07:10.0814 0x1a1c GPIOClx0101 - ok
15:07:10.0970 0x1a1c gpsvc - ok
15:07:11.0064 0x1a1c [ FB0B8778A55ED71728D28E9B3889A11E, CDCBDCB961632C003A6B449C48BF94AFB265CBBD38C50FB51F476A2149C16002 ] GpuEnergyDrv C:\WINDOWS\system32\drivers\gpuenergydrv.sys
15:07:11.0142 0x1a1c GpuEnergyDrv - ok
15:07:11.0252 0x1a1c [ D2133D061486A8AD29234A21F50CEB1E, 42B2DE2BF299E21D711754F39D458E7CAA0E415EB131358929AC75DE72A80199 ] GraphicsPerfSvc C:\WINDOWS\System32\GraphicsPerfSvc.dll
15:07:11.0377 0x1a1c GraphicsPerfSvc - ok
15:07:11.0861 0x1a1c [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:07:11.0892 0x1a1c gupdate - ok
15:07:12.0095 0x1a1c [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:07:12.0111 0x1a1c gupdatem - ok
15:07:12.0174 0x1a1c HDAudBus - ok
15:07:12.0236 0x1a1c [ 8BE5EBA8A54B789690B9493BF7DE1DCF, F86A6EBB842C2C52FD479E8690CE2F232A013C9E581CF14FC5F34AD9B794DC09 ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
15:07:12.0236 0x1a1c HidBatt - ok
15:07:12.0299 0x1a1c [ 34A4E4C0D8DBB733F14CB5B7186B9975, F84112B32780840507A788733E6674EE068D23766C8536578AA8D9959EC3F981 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
15:07:12.0314 0x1a1c HidBth - ok
15:07:12.0330 0x1a1c [ 24075C6DA27D05D869C56102E8220E92, 8B184E295A20199DEC0EBABABAFB0A2C84FF00337B78ACE7E9A23C50ABAC5C48 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
15:07:12.0345 0x1a1c hidi2c - ok
15:07:12.0377 0x1a1c [ 96FC1329E286E2309AA94D970C962EC7, 287727878DF5F8E8B772756E110BB5534028CD5A9EBF6DC157C3B4FCED90106F ] hidinterrupt C:\WINDOWS\System32\drivers\hidinterrupt.sys
15:07:12.0439 0x1a1c hidinterrupt - ok
15:07:12.0564 0x1a1c [ 7DFC088DEDC2232C36562CCAAFC26824, 9E041F4E97DA4C779EEB2FFBFB6D5E1AA6DB5F36ABDD9DC308697C1F05144E03 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
15:07:12.0720 0x1a1c HidIr - ok
15:07:12.0970 0x1a1c [ 32D8D4EFE2951A14DDD559B91A517053, 126E8E5FCC6593D6199BF30BFEBEBEA83E0D8750A0B682294D9C903B11CF1749 ] hidkmdf C:\WINDOWS\System32\drivers\hidkmdf.sys
15:07:13.0002 0x1a1c hidkmdf - ok
15:07:13.0049 0x1a1c hidserv - ok
15:07:13.0127 0x1a1c [ 12DB9F4C1ABB1B8F7AC7203C049528CB, 75CD8EEDD6E7873C65DD9D19CFDDCCCAFD18E606A45D12095B5B96816E714813 ] hidspi C:\WINDOWS\System32\drivers\hidspi.sys
15:07:13.0220 0x1a1c hidspi - ok
15:07:13.0299 0x1a1c HidUsb - ok
15:07:13.0767 0x1a1c [ 8EFE5647D0CDD02A0F456C15D5ECF979, BF376BB5AC7AEDBAA7C3A12105BBAAE128A31A6B1B7528186EFC02BF32C9B847 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
15:07:13.0799 0x1a1c HpSAMD - ok
15:07:13.0814 0x1a1c HTTP - ok
15:07:13.0861 0x1a1c [ F023C1F4A112B912D3625324CAA8B616, 5AEC0E1656CC1AB15926BE9C4474ED7C02B16837EF85E522F42EF018149156DB ] hvcrash C:\WINDOWS\System32\drivers\hvcrash.sys
15:07:13.0877 0x1a1c hvcrash - ok
15:07:14.0017 0x1a1c [ 94C01CBB754697F97452205222B0170E, 6A7332F0248FEB6D53E27F3D3D0ADD8F79BBAFDB7C1E7185171D0014D2548FD2 ] HvHost C:\WINDOWS\System32\hvhostsvc.dll
15:07:14.0111 0x1a1c HvHost - ok
15:07:14.0377 0x1a1c [ FDAA6E61D35A03AB7EA08A8D99845EF3, B82296D484194F3BECAFF0EC49BA61C845B63EB696F21FBE4A8DCC0D4414B01B ] hvservice C:\WINDOWS\system32\drivers\hvservice.sys
15:07:14.0455 0x1a1c hvservice - ok
15:07:14.0564 0x1a1c [ 07C51C8E403121E63E3F7CC2B19840A6, D6766B59B6952EA3F23205F19B0C9D8615821B77D1B1F24A289C83E9A0F76862 ] HwNClx0101 C:\WINDOWS\system32\Drivers\mshwnclx.sys
15:07:14.0627 0x1a1c HwNClx0101 - ok
15:07:14.0674 0x1a1c hwpolicy - ok
15:07:14.0924 0x1a1c [ 2B8FD5359FB5A1FA2EE9504D53C0D286, FF419ACCC15D44341B95D24CB0BEF009D3F3356CA29FEB802973705A888240A5 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
15:07:15.0049 0x1a1c hyperkbd - ok
15:07:15.0080 0x1a1c [ D2BCEA4C0513E098277F10CCBAC8FAF2, 6F53F9D0E0A3C46A7DBF76092254F0ECE9343B3EABA89845CF5F08B35DBBFE48 ] HyperVideo C:\WINDOWS\System32\drivers\HyperVideo.sys
15:07:15.0236 0x1a1c HyperVideo - ok
15:07:15.0267 0x1a1c [ 7EF070F21CAB7E8DC906F9CA8516CE5B, 810BC30C63F954BC5E612C53B6F51FDEC6AFFBE932F0332B63FE02A6987521EF ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
15:07:15.0377 0x1a1c i8042prt - ok
15:07:15.0424 0x1a1c [ 9E5AECAB5F05218D9AC923E7CEA1CE15, FAAA46F22944E043A90AE6E9F0F86AF187FC2819C563DA375B2A409347BB2C35 ] iagpio C:\WINDOWS\System32\drivers\iagpio.sys
15:07:15.0439 0x1a1c iagpio - ok
15:07:15.0486 0x1a1c [ 48EDB9B5DAB7D294951A520330F13715, 9296A14590DFD94A3C728CAF3CA91BA211F27974F9CFF8417CDDC00D1453315C ] iai2c C:\WINDOWS\System32\drivers\iai2c.sys
15:07:15.0736 0x1a1c iai2c - ok
15:07:15.0783 0x1a1c [ 6C3EDE394C71D5A67A504F55E35B6F47, 6FF5D13EF69E8FBCB4772C7B5C4D5770C78E0B29F9164FA1611EFDE91CE876BE ] iaLPSS2i_GPIO2 C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys
15:07:15.0924 0x1a1c iaLPSS2i_GPIO2 - ok
15:07:15.0955 0x1a1c [ 806D14CEAF25E5F2DFCBA8E7E33B86BB, 2141DE558461B592D4111A0388D1AAC8062FA72CD1E2A2D2D68279A9633288E9 ] iaLPSS2i_GPIO2_BXT_P C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys
15:07:16.0049 0x1a1c iaLPSS2i_GPIO2_BXT_P - ok
15:07:16.0095 0x1a1c [ 87DDDAE1693484BD0A210C877BDA00C2, E353D90D0B79A70F976FD5EA1CB7E25A97835E25116962EA035424715B2F43FE ] iaLPSS2i_GPIO2_CNL C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys
15:07:16.0174 0x1a1c iaLPSS2i_GPIO2_CNL - ok
15:07:16.0205 0x1a1c [ 8D3E3C431367E3BA632B4396CA662E1A, 71FDC25244298D62A335769D6ED43394C33FBD8DB05AA54CA924A2977F37858F ] iaLPSS2i_GPIO2_GLK C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys
15:07:16.0267 0x1a1c iaLPSS2i_GPIO2_GLK - ok
15:07:16.0377 0x1a1c [ 149F1260537C4F68C3F67C363B62F3C5, 3F1F9EC7571D0F82D3F5BBA298965491260708F05EBAAA2CC23483521A5FF079 ] iaLPSS2i_I2C C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys
15:07:16.0470 0x1a1c iaLPSS2i_I2C - ok
15:07:16.0611 0x1a1c [ 3E641E905A6DBF29CBA1E72BBE349808, BF354297A55713D9E2DD4044D42810C007733EE54D5A80D58B96DD279D92C716 ] iaLPSS2i_I2C_BXT_P C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys
15:07:16.0674 0x1a1c iaLPSS2i_I2C_BXT_P - ok
15:07:16.0720 0x1a1c [ B78D6AF79045B0DAB58596AF75037516, F99CAA667A832173BE4C879712360937BF7267CEAF88D5C4798A500861E4018A ] iaLPSS2i_I2C_CNL C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys
15:07:16.0814 0x1a1c iaLPSS2i_I2C_CNL - ok
15:07:16.0908 0x1a1c [ 2ED3B41C7CB4101ACB15D84D8AB5AA9D, A92487129B81376471C842B9932FF3A7B3ABBBB89797978E3FDEAF71A6FD5E3F ] iaLPSS2i_I2C_GLK C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys
15:07:17.0033 0x1a1c iaLPSS2i_I2C_GLK - ok
15:07:17.0127 0x1a1c [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
15:07:17.0158 0x1a1c iaLPSSi_GPIO - ok
15:07:17.0220 0x1a1c [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
15:07:17.0314 0x1a1c iaLPSSi_I2C - ok
15:07:17.0408 0x1a1c [ 42B660654149FB181E49EA160808D3BC, 99AA2499C8D9CAF17BCDC49766DD559E2086EE065552D6A59B0DC86113EF956A ] iaStorAVC C:\WINDOWS\system32\drivers\iaStorAVC.sys
15:07:17.0517 0x1a1c iaStorAVC - ok
15:07:17.0674 0x1a1c [ E47022690D960CA022F0ADAD3CEE7028, 8AB7613067A9A12302819B54AC0590F159467EADD761958D2E60D2D830845886 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
15:07:17.0720 0x1a1c iaStorV - ok
15:07:17.0939 0x1a1c [ 1382FAA11F64E6AEE553D6889DC2ED2C, 6D29EF889244DA8F2F22A4253D8AED7275CEA361B73A12BF6DC3AA3C25238180 ] ibbus C:\WINDOWS\System32\drivers\ibbus.sys
15:07:18.0033 0x1a1c ibbus - ok
15:07:18.0095 0x1a1c icssvc - ok
15:07:18.0236 0x1a1c IKEEXT - ok
15:07:18.0361 0x1a1c [ 3B0C7978321F691DCA332A3A30D3D34D, 73004FF12CAB74ACD9C6059FF42EC02E2930693E61200094B0192ECC230DDB41 ] IndirectKmd C:\WINDOWS\System32\drivers\IndirectKmd.sys
15:07:18.0470 0x1a1c IndirectKmd - ok
15:07:19.0361 0x1a1c [ 2E8DB0FC5D0A8D70ED1953A1BB8C6810, 719B2A9B3269541B40E4D2997CFC266795312E4C922F190BA6E8EB5079A0F04D ] InstallService C:\WINDOWS\system32\InstallService.dll
15:07:19.0564 0x1a1c InstallService - ok
15:07:20.0955 0x1a1c [ C2F868881D48A568B525255F084EF063, EFB1704AE223CF886EDA5F1411C8178EDE4B5E1F7EE373E3DA89A6EA1A57D91D ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
15:07:21.0033 0x1a1c IntcAzAudAddService - ok
15:07:21.0205 0x1a1c [ 9E3EFA9EC7C87D20706E7A545773415A, 955AC981EDA18678074B82EB30746723F1FF3C818EF650C0E6A13B87275A6F33 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
15:07:21.0299 0x1a1c intelide - ok
15:07:21.0439 0x1a1c [ 1FD5F56938424E3D437F2DD7FFE68A58, 2750FFF4AEF0E01F318CB6A45AB970EF087523879EE7E4C391A1C9C195EC9064 ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
15:07:21.0470 0x1a1c intelpep - ok
15:07:21.0595 0x1a1c [ 84BD903F361891CB3C3CEB1DA5198130, 8F3A77CE673A43B996BD257B755A158E76E4BABCBB5475C7764104242004F529 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
15:07:21.0674 0x1a1c intelppm - ok
15:07:21.0705 0x1a1c iorate - ok
15:07:21.0783 0x1a1c [ A25F081BFDB86B48AAF36C4BAA398466, 04C6CD091ACED90A2905A6CE13E62BC6116F1E999316D49B352BB389B2848378 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:07:21.0830 0x1a1c IpFilterDriver - ok
15:07:22.0017 0x1a1c [ 70124ABD0EA0C710F1F10706E2FDE73D, 6547675909355D3CAC10C2FC86BF10FA8AD75334C15277762A5457FD54A75E69 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
15:07:22.0049 0x1a1c iphlpsvc - ok
15:07:22.0205 0x1a1c [ EC972A6A764579EF04D28D70675D11A9, 29084F5114C3C231B62F4946D48ABF2A6C4DECB58944E71A3E32E0CA1C9D77D2 ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
15:07:22.0314 0x1a1c IPMIDRV - ok
15:07:22.0549 0x1a1c [ CEC63D8B8E7A525233D2AEE19EF9A5A8, CA2EDA41764FEC2B243E3B6E2C0A228A252D49F7271E5EFE328EDF7AB2E2D36F ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
15:07:22.0689 0x1a1c IPNAT - ok
15:07:23.0002 0x1a1c [ 22896D7BC9E2B0027DF0CA860E9547C8, 50607E9B752B03289893EF9F4882A10C560E8A3413A237D890697FC25545DFC5 ] IpOverUsbSvc C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
15:07:23.0002 0x1a1c IpOverUsbSvc - ok
15:07:23.0127 0x1a1c [ 5AAD8A0ABC294C7A547F1C903AC04716, 8A841A2A563682CE93777348E0CCFFA856FA11689D4F4897C6100A26D5795AD2 ] IPT C:\WINDOWS\System32\drivers\ipt.sys
15:07:23.0314 0x1a1c IPT - ok
15:07:23.0470 0x1a1c [ 77C6BD7E7524D80F5BC6E1BF7E21FD14, 4510699C3794E2AE4C1998F14C81500AAD0D7A91D463880C9FBAB8B3A9381D93 ] IpxlatCfgSvc C:\WINDOWS\System32\IpxlatCfg.dll
15:07:23.0564 0x1a1c IpxlatCfgSvc - ok
15:07:23.0674 0x1a1c [ 35FD8315E03C4B5FB4C81B3F5AA6793E, E44B043729352F6958A394830214473F36C0AE778E214B62DF692D3BFBE6B95E ] irda C:\WINDOWS\system32\drivers\irda.sys
15:07:23.0799 0x1a1c irda - ok
15:07:23.0877 0x1a1c [ C48B4FD5F9D4A0AEF69A691558BF30A4, 530B40A6B5FA47B2532959B307A1A11F551AFD92E3C869B20EAA54B8B797E089 ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
15:07:24.0017 0x1a1c IRENUM - ok
15:07:24.0127 0x1a1c [ CA956BB7374CB74F5CADD56DF7039AC3, 99D62C73D5D4E125B1C7D4528D55700A61696817CFB38627D6B5F62993DF02A0 ] irmon C:\WINDOWS\System32\irmon.dll
15:07:24.0158 0x1a1c irmon - ok
15:07:24.0236 0x1a1c [ 6FC797BC9152E34D3C1C1AB6F7C3FD33, ADC311D9420A92AD6A114DAAFD1A299D60CA63B1AE39E78B5FF79630F69C5C63 ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
15:07:24.0424 0x1a1c isapnp - ok
15:07:24.0611 0x1a1c [ E9013D05C43A68E4820540D413569415, 0C767747001653FCAD95487B254DF3C1EF179152C093E7E13369CF07CA55F857 ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
15:07:24.0674 0x1a1c iScsiPrt - ok
15:07:24.0767 0x1a1c [ 08E5CBEAC1E11CBB4A27823F031B7E61, E24DD7C25B8B694FC495D17E61C9AEA0FA2AC8EC04E53E1C3F120D306A18A2FF ] ItSas35i C:\WINDOWS\system32\drivers\ItSas35i.sys
15:07:24.0845 0x1a1c ItSas35i - ok
15:07:24.0908 0x1a1c kbdclass - ok
15:07:24.0955 0x1a1c kbdhid - ok
15:07:25.0049 0x1a1c kdnic - ok
15:07:25.0049 0x1a1c KeyIso - ok
15:07:25.0174 0x1a1c KSecDD - ok
15:07:25.0189 0x1a1c KSecPkg - ok
15:07:25.0205 0x1a1c ksthunk - ok
15:07:25.0252 0x1a1c [ 50AC18BB0C9B6097076001A96D1838B5, 63A6B5A94756D328BA1F5BB0B479792FE56DDE0905AEE7D5AA0D60CC6EFF2E82 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
15:07:25.0392 0x1a1c KtmRm - ok
15:07:25.0439 0x1a1c LanmanServer - ok
15:07:25.0517 0x1a1c LanmanWorkstation - ok
15:07:25.0752 0x1a1c [ CDEFD75D8A313646B7073C0BCDA5855C, D7DDEB545C9B3898B01AC495E90116C0CE2B803183D4623A8F29B5996EFD5F44 ] lfsvc C:\WINDOWS\System32\lfsvc.dll
15:07:26.0127 0x1a1c lfsvc - ok
15:07:26.0314 0x1a1c [ A6F294B38F3DFB67D6B6E1D1E60A402A, 11C51B35DB2A3510258F3B722C12326BF068360CFA1E81FF552BA0BD19DE38E8 ] LGBusEnum C:\WINDOWS\system32\drivers\LGBusEnum.sys
15:07:26.0345 0x1a1c LGBusEnum - ok
15:07:26.0924 0x1a1c [ 2D7F1C02B94D6F0F3E10107E5EA8E141, 93B266F38C3C3EAAB475D81597ABBD7CC07943035068BB6FD670DBBE15DE0131 ] LGCoreTemp C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys
15:07:26.0924 0x1a1c LGCoreTemp - ok
15:07:27.0002 0x1a1c [ 2A9F60E6531F42B31874618743037719, BFD61AD03ADEF69421ECB07820EDB79D425048EC01A65A0D1E8A4527699196DC ] LGJoyXlCore C:\WINDOWS\system32\drivers\LGJoyXlCore.sys
15:07:27.0002 0x1a1c LGJoyXlCore - ok
15:07:27.0064 0x1a1c [ FA59A7421049F5852C1182345A4B8C4F, 6E7DFBF8382187E01CA0AE9CB7A175B563DA6807909A8A7E67779C045F290A06 ] LGVirHid C:\WINDOWS\system32\drivers\LGVirHid.sys
15:07:27.0064 0x1a1c LGVirHid - ok
15:07:27.0220 0x1a1c [ 112EFD0CCFA2994491F4D877D2DBA582, 0641E880FF37DE20A212CAB5D848FD8A7C1AF31F0180CE62AC0A4AE249460B8E ] LicenseManager C:\WINDOWS\system32\LicenseManagerSvc.dll
15:07:27.0424 0x1a1c LicenseManager - ok
15:07:27.0642 0x1a1c [ 91563B08A4FF7013420A14A1446264AE, 75A537094EEBF79C1E383D03016E6A4ACA6019BF78D8E86370A67CC50D49D606 ] lltdio C:\WINDOWS\system32\drivers\lltdio.sys
15:07:27.0767 0x1a1c lltdio - ok
15:07:28.0095 0x1a1c [ DBFDAB4925BA2D54DC7C840EADDC64EC, 87C47E69465E27615918E49835C0E51E81B63EE65CDA35D338281ECE90FE694D ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
15:07:28.0424 0x1a1c lltdsvc - ok
15:07:28.0517 0x1a1c lmhosts - ok
15:07:28.0627 0x1a1c [ CEDF1C2E1AE31E63C4F83F8486F59E53, A5D2420B62F2478A97CFC72BE0F17996CCABDC9EB77ADAF57C66E7D29F5CC0C9 ] LogiRegistryService C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
15:07:28.0642 0x1a1c LogiRegistryService - ok
15:07:28.0814 0x1a1c [ 1BBADB9591080518596B9E57E6867DA9, F661E647C0352D2B73B73F63203150A9E9E23DC8361E1CFEC93DD1238E9E7182 ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
15:07:29.0095 0x1a1c LSI_SAS - ok
15:07:29.0377 0x1a1c [ 7C1D1CB733DE28F7D15D69C5112B983D, 5D6090AEC77BECA54E130950FD6F84D7F4B711A98417F808B67814F30DD8C24C ] LSI_SAS2i C:\WINDOWS\system32\drivers\lsi_sas2i.sys
15:07:29.0564 0x1a1c LSI_SAS2i - ok
15:07:29.0642 0x1a1c [ C18F1929FB5594233CCA71FC624428FF, 971B3A1E09C96A8988C254E89F6B3ACE11988E5DE470E3F104854A7FBFAA435C ] LSI_SAS3i C:\WINDOWS\system32\drivers\lsi_sas3i.sys
15:07:29.0720 0x1a1c LSI_SAS3i - ok
15:07:29.0752 0x1a1c [ 4D322612CB0E3E8DFFDE8B78A5CAA841, 08ED922DB3C413C1352881B193E0F53FEB67E2F1BEA1D4FD8FD94C8ABDE5CC7C ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
15:07:29.0799 0x1a1c LSI_SSS - ok
15:07:30.0064 0x1a1c LSM - ok
15:07:30.0299 0x1a1c [ 03D9EDE1E96D1D158BD984D88B1095CC, 95FCF42C00F0D96704526387F722D64444FA49EE8F2DA192FCA2B02FAB2608BA ] luafv C:\WINDOWS\system32\drivers\luafv.sys
15:07:30.0533 0x1a1c luafv - ok
15:07:30.0924 0x1a1c [ 5508D816271F24857897497F109E11C9, 0CE87E67EC4E7172DFFB030D86529B8F845276EC194644603413D38A58BAA0AC ] LxpSvc C:\WINDOWS\System32\LanguageOverlayServer.dll
15:07:31.0142 0x1a1c LxpSvc - ok
15:07:31.0283 0x1a1c [ 10967D62F419CA0EB6EB9DA57D91286B, E7C6A3003104D07E9F62C3580AC89973DD9F27D0250FA50177180026B0BC0D4C ] MapsBroker C:\WINDOWS\System32\moshost.dll
15:07:31.0517 0x1a1c MapsBroker - ok
15:07:32.0017 0x1a1c [ CBC57FDBD22DD92B3B7B71DC44304301, 92EFEA89370B21823000F2E3E27C05A640BC0D18EF556075735E5D47587A258C ] mausbhost C:\WINDOWS\System32\drivers\mausbhost.sys
15:07:32.0330 0x1a1c mausbhost - ok
15:07:32.0517 0x1a1c [ 4C71C550AC2CD9E0201BCBFCF19DB0D7, E3C19F74A6E5D62D6ED8181BDD9C2381B402EB5D0A9268FD844221FBD61B6A0A ] mausbip C:\WINDOWS\System32\drivers\mausbip.sys
15:07:32.0627 0x1a1c mausbip - ok
15:07:34.0424 0x1a1c [ ECB760B2391608BA4E0A7987ADA70CCF, 03B39EA56CD46666CFA8467AA246A63924C0F4AACD27E51FD5E1192000B4A577 ] MBAMService C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
15:07:34.0705 0x1a1c MBAMService - ok
15:07:34.0845 0x1a1c [ CB258766E99AB3B57E6FDF32177804A2, 61833AF290A3E10B0ABF9773625C1DD89B337D8F65BC6650B5BBB7393B77652B ] MBAMSwissArmy C:\WINDOWS\System32\Drivers\mbamswissarmy.sys
15:07:34.0861 0x1a1c MBAMSwissArmy - ok
15:07:34.0986 0x1a1c [ 5EA3D977905D88627B5667E761C51F50, 9E1FC38E5D472E3CB8C18589CB2DB563AA3AE01601438F77D7BACE80EBE19B6C ] MbbCx C:\WINDOWS\system32\drivers\MbbCx.sys
15:07:35.0205 0x1a1c MbbCx - ok
15:07:35.0314 0x1a1c [ 7DC0311FA450D54C5D345CE19778EA8A, 20A900FBC9173D33E979A71CACC6C6731441BCD557FED984350A76EACD1DEB00 ] megasas C:\WINDOWS\system32\drivers\megasas.sys
15:07:35.0361 0x1a1c megasas - ok
15:07:35.0455 0x1a1c [ 660C8651E6D9A15062A497364CA4A329, 7649FC916BD15EE0712746EA12C7BF4BCA32D548FDED61917B874B4D28B7B808 ] megasas2i C:\WINDOWS\system32\drivers\MegaSas2i.sys
15:07:35.0517 0x1a1c megasas2i - ok
15:07:35.0549 0x1a1c [ 329C1C69386412444D05C82A6062F9AD, 4D08C62AC493C93B6175A97EA43BF71C8F0AA1D7D665069E09FA0A343C6C0A27 ] megasas35i C:\WINDOWS\system32\drivers\megasas35i.sys
15:07:35.0564 0x1a1c megasas35i - ok
15:07:35.0611 0x1a1c [ E8DDD6B4FB2F20780B41B117F689A44E, 53338D67D74AC5911057516C8078C4FC613DC79AC2FA60971C242ACA07568452 ] megasr C:\WINDOWS\system32\drivers\megasr.sys
15:07:35.0705 0x1a1c megasr - ok
15:07:35.0783 0x1a1c [ EAB4B99D5C81402572A410AEDB1590BE, 5F2553F9297601701168B0DA3C21121CFC555E95DFD08DCDB67535E2978C3812 ] MessagingService C:\WINDOWS\System32\MessagingService.dll
15:07:35.0845 0x1a1c MessagingService - ok
15:07:35.0908 0x1a1c [ 9089316A8C1D2F4A604470DFD1B6865D, 2D2A06AB057F6BAE9B8C94108EF7575C953A1BF8F0E978BBBB0DC583805D4A17 ] Microsoft_Bluetooth_AvrcpTransport C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys
15:07:36.0064 0x1a1c Microsoft_Bluetooth_AvrcpTransport - ok
15:07:36.0283 0x1a1c [ 9117B78500C6A09F16EDC604ABD71F38, E1C861C6ED185099D1ACBA47027C4E604837E7A802AA5620D7A5866C5EAEAD3D ] mlx4_bus C:\WINDOWS\System32\drivers\mlx4_bus.sys
15:07:36.0408 0x1a1c mlx4_bus - ok
15:07:36.0439 0x1a1c MMCSS - ok
15:07:36.0533 0x1a1c [ 5F37CEDED43E3816BA38809E062134E1, B48192982D67124952D93B18608BB229E9B5F538BBD5CF18485E7DD34901B4FE ] Modem C:\WINDOWS\system32\drivers\modem.sys
15:07:36.0611 0x1a1c Modem - ok
15:07:36.0658 0x1a1c [ 753917AE790F884EE62D5E1F8EBFCC44, 73413CF9BE955A794172086B842B07B7E293896D11428425544A6899631DC2D2 ] monitor C:\WINDOWS\System32\drivers\monitor.sys
15:07:36.0689 0x1a1c monitor - ok
15:07:36.0736 0x1a1c mouclass - ok
15:07:36.0752 0x1a1c mouhid - ok
15:07:36.0752 0x1a1c mountmgr - ok
15:07:36.0892 0x1a1c [ 96959E7C586523B04F54C867B242E35C, 91B021EC1A776FE273496CDA385B42438F597BEF62010BB41D25BBEB809EC0F7 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:07:36.0939 0x1a1c MozillaMaintenance - ok
15:07:36.0986 0x1a1c mpsdrv - ok
15:07:36.0986 0x1a1c mpssvc - ok
15:07:37.0080 0x1a1c [ E7219627FF618544FEAF5CE61D99581B, 06C01AA68F24BD9AA0244C8BC5DFF8FBAAC90F03A10D61C3FD303C771FF1972B ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
15:07:37.0174 0x1a1c MRxDAV - ok
15:07:37.0299 0x1a1c mrxsmb - ok
15:07:37.0314 0x1a1c mrxsmb20 - ok
15:07:37.0455 0x1a1c [ 7D44193A9ABD39FD7D7427414B845855, 108B55E3EA6966A99A5D830A0027815A3DF9F099B0E2245DC071BA3540CB1EA7 ] MsBridge C:\WINDOWS\system32\drivers\bridge.sys
15:07:38.0017 0x1a1c MsBridge - ok
15:07:38.0174 0x1a1c [ 7215CE218BDEAD41B708F098258CF972, 1EAB4B9691E9EFA1DA02BDCB84035F65EDA4B525E5AEE925A6E1E4107F8E4F31 ] MSDTC C:\WINDOWS\System32\msdtc.exe
15:07:38.0267 0x1a1c MSDTC - ok
15:07:38.0314 0x1a1c Msfs - ok
15:07:38.0408 0x1a1c [ 07B8BAF680467BAB0607245E68D59805, 4AE5F1A910A30A38AF7C2972DC8AE256556C4C707BD1EFE6F0742E509769F569 ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
15:07:38.0455 0x1a1c msgpiowin32 - ok
15:07:38.0486 0x1a1c mshidkmdf - ok
15:07:38.0705 0x1a1c [ 05F3DCB8F90EF90C59E616F1D4C7585D, 4CB648627AD33CC0A693FE0792852A22217A4E24D36F36D364397733EB03BA08 ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
15:07:38.0783 0x1a1c mshidumdf - ok
15:07:38.0814 0x1a1c [ E64484CBBEF329B919D9E78B8CB58CF5, EA30BDC77BEDBFBE839A51E3B65458D79B289E17F15C90113C02675DB4A4AFB8 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
15:07:38.0845 0x1a1c msisadrv - ok
15:07:38.0986 0x1a1c MSiSCSI - ok
15:07:38.0986 0x1a1c msiserver - ok
15:07:39.0017 0x1a1c MSKSSRV - ok
15:07:39.0142 0x1a1c [ 6479443BB89DBAC3BBCE9C2517EFAD0D, D0AFDD114C5B8A9D2C880D258CED9E99187B21836BDB004003B44E33042B6710 ] MsLldp C:\WINDOWS\system32\drivers\mslldp.sys
15:07:39.0580 0x1a1c MsLldp - ok
15:07:39.0580 0x1a1c MSPCLOCK - ok
15:07:39.0595 0x1a1c MSPQM - ok
15:07:39.0627 0x1a1c MsRPC - ok
15:07:39.0689 0x1a1c mssmbios - ok
15:07:39.0705 0x1a1c MSTEE - ok
15:07:39.0814 0x1a1c [ DA4A165EFD14AB23DC9210A806252B41, 1EAD85D06D6E9668994AEFFE50670AC9341851AD010AFD2612431D4903F0A32D ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
15:07:39.0908 0x1a1c MTConfig - ok
15:07:39.0939 0x1a1c Mup - ok
15:07:40.0142 0x1a1c [ 724459B4B727662A5F69A12AD31FC197, AFA2C1AB9F966440D149CA337B47B5E9730DB4560D45DC02C3E559A5C7FE2F3B ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
15:07:40.0205 0x1a1c mvumis - ok
15:07:40.0283 0x1a1c NativeWifiP - ok
15:07:40.0642 0x1a1c [ 7A0872F5645541A1CD1879199B0489E2, DBF8B309A5F74794FBAE6BD07DA62ED17C2ED81B236DD39FF87AAA282A11FB02 ] NaturalAuthentication C:\WINDOWS\System32\NaturalAuth.dll
15:07:40.0845 0x1a1c NaturalAuthentication - ok
15:07:40.0970 0x1a1c [ 20FAE1EACA6E5E9D1B940D7578CA4499, CE88E5F2597577D3670E8B59D95E801CD0D5CBF98CA770DFCE52A910D17847AF ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
15:07:41.0439 0x1a1c NcaSvc - ok
15:07:41.0627 0x1a1c [ 0E7C317DD9F8E46E0C90B88A3C536BA6, 89750450EA6C7D2C0E80B97D621613F471BE55086A7FFA3DFC80A39A064F74D2 ] NcbService C:\WINDOWS\System32\ncbservice.dll
15:07:41.0658 0x1a1c NcbService - ok
15:07:41.0924 0x1a1c [ 136B0632385280CA2ED8F9E5D17167AB, D7E688083EB80195EA1DC1E7770EAD5425903E9B83EB7E013709376ECBEF5CCA ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
15:07:42.0424 0x1a1c NcdAutoSetup - ok
15:07:42.0549 0x1a1c [ 1599EAB4DC6DE373BC57F768A6AE770F, 8D4571CF78EF6BAAFA4C096475FA96B31E6BA7CE6B57CBFC3187668C5EA393A4 ] ndfltr C:\WINDOWS\System32\drivers\ndfltr.sys
15:07:42.0627 0x1a1c ndfltr - ok
15:07:42.0674 0x1a1c NDIS - ok
15:07:42.0861 0x1a1c [ 10D7989C206DFB0CB7AF85C38EE323D3, 2AEE5C3652115E5069A1FF929EE47B19A91F52E3534BC9CD8020FB769A34226C ] NdisCap C:\WINDOWS\system32\drivers\ndiscap.sys
15:07:42.0939 0x1a1c NdisCap - ok
15:07:43.0189 0x1a1c [ D51A226E5E7803894596683F6E0DC5B6, 58F62ADED2BD53EB939D9E3F70B4E569D56EFE52B569DB5027A7B8F564872163 ] NdisImPlatform C:\WINDOWS\system32\drivers\NdisImPlatform.sys
15:07:43.0299 0x1a1c NdisImPlatform - ok
15:07:43.0345 0x1a1c NdisTapi - ok
15:07:43.0361 0x1a1c Ndisuio - ok
15:07:43.0377 0x1a1c NdisVirtualBus - ok
15:07:43.0392 0x1a1c NdisWan - ok
15:07:43.0392 0x1a1c ndiswanlegacy - ok
15:07:43.0408 0x1a1c ndproxy - ok
15:07:43.0533 0x1a1c [ 5DFB139945F70FA15CAF7F3929B932AD, 3F7789FD0B00E95FB98F7952317E7993FA66CACF4FFD847068F0447ECEA1B811 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
15:07:43.0611 0x1a1c Ndu - ok
15:07:43.0642 0x1a1c NetAdapterCx - ok
15:07:43.0720 0x1a1c NetBIOS - ok
15:07:43.0767 0x1a1c NetBT - ok
15:07:43.0830 0x1a1c Netlogon - ok
15:07:43.0877 0x1a1c Netman - ok
15:07:44.0064 0x1a1c netprofm - ok
15:07:45.0564 0x1a1c [ A3F8BF8193D36C4C8CEF20AFF28411E9, E6C6321820AFB4D3ABF2DAF894EFE0E8FC308F5DE6F9FE2FFE56F89A319C8C0E ] netr28x C:\WINDOWS\System32\drivers\netr28x.sys
15:07:45.0658 0x1a1c netr28x - ok
15:07:45.0814 0x1a1c NetSetupSvc - ok
15:07:46.0720 0x1a1c [ 65EA3086C7F28BA5982043D2491B8856, 7EBB32B3609E340231E626DCB2F3443A9FC38F75ECCF2A9AD699CB689B45A1DD ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:07:47.0174 0x1a1c NetTcpPortSharing - ok
15:07:47.0377 0x1a1c [ C0AD5C89FA61DD92E40BDD9A802C9DC6, F36D7137423BDA3F84B8706ED8EA9BBAD31A5855C558F4268B9D43124F65123F ] netvsc C:\WINDOWS\System32\drivers\netvsc.sys
15:07:47.0408 0x1a1c netvsc - ok
15:07:47.0580 0x1a1c [ 56C91F8EA5C83A5AFE83AACF2586B875, C5133D74E03D36A888980319B864FE4D4F8E97AD26BEB1B11285B06646507C66 ] NgcCtnrSvc C:\WINDOWS\System32\NgcCtnrSvc.dll
15:07:47.0627 0x1a1c NgcCtnrSvc - ok
15:07:47.0970 0x1a1c [ 7963A81757459412B08C6DD6A72D5FC1, C47DD7D9953D4FDE0D3CCB895A2FBD7D46C9EEA33E1D96C010F078B515EDED0A ] NgcSvc C:\WINDOWS\system32\ngcsvc.dll
15:07:48.0033 0x1a1c NgcSvc - ok
15:07:48.0127 0x1a1c NlaSvc - ok
15:07:48.0189 0x1a1c Npfs - ok
15:07:48.0189 0x1a1c npsvctrig - ok
15:07:48.0220 0x1a1c nsi - ok
15:07:48.0236 0x1a1c nsiproxy - ok
15:07:48.0299 0x1a1c Ntfs - ok
15:07:48.0377 0x1a1c Null - ok
15:07:48.0486 0x1a1c [ E52627112D11E7F96879FA0245902209, 2BBA54409E4F0F0D540B5588AEF8B3B173A2E4862DCFCBEB1C50512B2BD5F505 ] nvdimm C:\WINDOWS\System32\drivers\nvdimm.sys
15:07:48.0642 0x1a1c nvdimm - ok
15:07:48.0814 0x1a1c [ BE048641E0F24F422B8A269AC3CBDA83, 45D817F51ED15C30065B13C33DF97E97EA2DAA2FDD676853B8B7CBE3BCF1F364 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
15:07:48.0908 0x1a1c nvraid - ok
15:07:49.0064 0x1a1c [ 1D08E2FFF4F950CF303B981C97D921D6, 01F6B7B9A272474D474389368ECE2BDE35AB9149B872D1C35300B6F5567E197B ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
15:07:49.0111 0x1a1c nvstor - ok
15:07:49.0361 0x1a1c [ 43C9CCAA6BE7AED7E2957A7FCFB4AC54, 9DACC5C8EF3035D8249AA96162485FEC2A45E14370B3A79D3945A42CB98E857A ] OneSyncSvc C:\WINDOWS\System32\APHostService.dll
15:07:49.0720 0x1a1c OneSyncSvc - ok
15:07:49.0814 0x1a1c [ 9B4003B4FE073422F459A2AD37B20FE2, 3480C3F8B0F4DFC4AF457C0BED2E145869FB785336663B7985D6C7FE98B702C0 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:07:49.0955 0x1a1c ose - ok
15:07:50.0064 0x1a1c [ 2B7F843E9FD1CFD5F1DAA523B2573698, F7F1F89E9C4D3D6856F52C9AF7D3DCE12AF22A116888BE0AD4E724D2E73B1A04 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
15:07:50.0142 0x1a1c p2pimsvc - ok
15:07:50.0299 0x1a1c [ 3B28A64AC649EA67E9946BDFE8EF513A, 1F3A57BC1864DC73C28326001F1D3140C11E111BD3F4F13F28FD5A047D17ED75 ] p2psvc C:\WINDOWS\system32\p2psvc.dll
15:07:50.0377 0x1a1c p2psvc - ok
15:07:50.0439 0x1a1c [ 838C9F2D2EB6D29776AF1AC78B4AA1D7, A7DB9612DFB3E584AF21FD3740599C94377B6540175B29B701881E1DBE32E7B1 ] Parport C:\WINDOWS\System32\drivers\parport.sys
15:07:50.0470 0x1a1c Parport - ok
15:07:50.0486 0x1a1c partmgr - ok
15:07:50.0720 0x1a1c [ FB953BD1C9B60607B9CBEE70EAFC7ABA, 826F58BBD984DFD89C8FF0DF36CA6198C427BF03C1DD4E24F56101452770C2AE ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
15:07:50.0752 0x1a1c PcaSvc - ok
15:07:50.0830 0x1a1c [ F80F7733ACC0D15AA4E959173E16D6C8, EE7A453C6EF09D148C91A34927077CF155092984A9A87B33BF8883494CF5BA1B ] pci C:\WINDOWS\system32\drivers\pci.sys
15:07:50.0861 0x1a1c pci - ok
15:07:51.0033 0x1a1c [ D72B9224E91AD87B88ABAFE5B8E1885A, E95AD1D64C45663DC0C14FDD9D8DF72520E2150374307208C9A138B835D08DBE ] pciide C:\WINDOWS\system32\drivers\pciide.sys
15:07:51.0080 0x1a1c pciide - ok
15:07:51.0127 0x1a1c [ F0638A0AB447F0A46D36F28E8F817AAC, 21A8A15C2BB61E3DCB4D6AA5D9AA4671A7103E92F901FA06EDB8C9B9ED64731C ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
15:07:51.0174 0x1a1c pcmcia - ok
15:07:51.0174 0x1a1c pcw - ok
15:07:51.0205 0x1a1c pdc - ok
15:07:51.0470 0x1a1c [ E4518C35D159A468A789AB216A03AE8C, 09D3B2B0021AB47C36BF7784DAE62EC1C90FA94AC4E276D17D7D51C9EE624D63 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
15:07:51.0517 0x1a1c PEAUTH - ok
15:07:51.0642 0x1a1c [ 51EC6CBC4A2B1C82A60A742D52F7B5EB, 7B5583BFA1184142ECBA28948B5DD2083A09C5D262841CEA7B5AEE9695293413 ] perceptionsimulation C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe
15:07:51.0814 0x1a1c perceptionsimulation - ok
15:07:51.0845 0x1a1c [ B289D34C47978B8AB473BF19DB66BB91, C5A74F05461AB7F19159B6E7DF98E1680F5F0818B49D017931E5F7E6FA718D8F ] percsas2i C:\WINDOWS\system32\drivers\percsas2i.sys
15:07:51.0877 0x1a1c percsas2i - ok
15:07:51.0892 0x1a1c [ 446B72ACD460A1B8C46DA7FF2F018A82, E2D81AFF592E2246B55ED1ABDD4E781BD4013A35DC7707D2CE7A02216E08A778 ] percsas3i C:\WINDOWS\system32\drivers\percsas3i.sys
15:07:51.0924 0x1a1c percsas3i - ok
15:07:52.0595 0x1a1c [ CC037C3D8F265E65F7200D9665D653FD, 68654262029A6F62DEE7F9D296A69A99DD6811C7AA6056DE40CE34440D4513CE ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
15:07:55.0220 0x1a1c PerfHost - ok
15:07:55.0267 0x1a1c PhoneSvc - ok
15:07:55.0361 0x1a1c [ 68594C1DBB617C2F9669016DE4B5BA78, AC1DD7E295BDD08543482A20A4D3337A7D989C7DB4A3D882BFE6C7F2E2E03616 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
15:07:55.0439 0x1a1c PimIndexMaintenanceSvc - ok
15:07:55.0486 0x1a1c [ 5CD0064D4642934BC5979EF8135180DC, 1386D93FBDF7E8C801688C853073D8632B2CF57F4B7CEEE6F31AE160FE6D0892 ] PktMon C:\WINDOWS\system32\drivers\PktMon.sys
15:07:55.0564 0x1a1c PktMon - ok
15:07:55.0845 0x1a1c [ 8ADDEE39782CBEB49B4C3A8E9AA2DF56, 28A24A90C618E6004F32A20A2B13D0FAF3D71D1977FC2A1EF94A0585E318FD0F ] pla C:\WINDOWS\system32\pla.dll
15:07:56.0095 0x1a1c pla - ok
15:07:56.0127 0x1a1c PlugPlay - ok
15:07:56.0236 0x1a1c [ DA8CB2643EDD2DA82BB804A8712796D0, 42CC179F77264DE2F7BD654AF220587F68A265BAF7CCC50A94427A10F5D569AE ] pmem C:\WINDOWS\System32\drivers\pmem.sys
15:07:56.0314 0x1a1c pmem - ok
15:07:56.0361 0x1a1c [ BE7468019B1731CA2FAA030C13DB1913, 8AA97FB41C4EDE3586784266CDEF3B2A71962667DEB713E1BB57BE8C1B78554A ] PNPMEM C:\WINDOWS\System32\drivers\pnpmem.sys
15:07:56.0439 0x1a1c PNPMEM - ok
15:07:56.0642 0x1a1c [ 142CF57538077D313B4B6226D2F7AFE3, BAA1D2550529F259DCF2CCDECC8592271D4B7CD2365196AD99D75DB0CE7865B8 ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
15:07:56.0736 0x1a1c PNRPAutoReg - ok
15:07:56.0799 0x1a1c [ 2B7F843E9FD1CFD5F1DAA523B2573698, F7F1F89E9C4D3D6856F52C9AF7D3DCE12AF22A116888BE0AD4E724D2E73B1A04 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
15:07:56.0814 0x1a1c PNRPsvc - ok
15:07:56.0861 0x1a1c PolicyAgent - ok
15:07:56.0877 0x1a1c Power - ok
15:07:56.0892 0x1a1c PptpMiniport - ok
15:07:57.0642 0x1a1c [ 66A0B1A55F21A275B7D5DECD295BD92A, 03295C986A204DF13CB38ABA4A0790A463FAC8BACAF37E9D2B072AB16D6AD129 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
15:07:57.0877 0x1a1c PrintNotify - ok
15:07:57.0986 0x1a1c [ 3BEDBD3B2544074AB63F646618853A94, 5B8A97453021906CCDAF27E65B16933ECACB38F22CA88106A676C5AC7CEB4ADC ] PrintWorkflowUserSvc C:\WINDOWS\System32\PrintWorkflowService.dll
15:07:58.0002 0x1a1c PrintWorkflowUserSvc - ok
15:07:58.0158 0x1a1c [ 738FD8811518AC7A630A277BF1CCF389, 56738AA6D1B44040EC205DEB0D5D51B41B7A6D7DB8335FCDF8ADC69063E73EB6 ] Processor C:\WINDOWS\System32\drivers\processr.sys
15:07:58.0236 0x1a1c Processor - ok
15:07:58.0267 0x1a1c ProfSvc - ok
15:07:58.0408 0x1a1c [ 14D167238A8C42EA8E951A5A956DEF42, 91C1406818442D9C3C4CEF8C908DEFD49C213D86489782722B5E17A90F8B2136 ] Psched C:\WINDOWS\system32\drivers\pacer.sys
15:07:58.0439 0x1a1c Psched - ok
15:07:58.0549 0x1a1c [ 9507F059F53CA14F496C025AF536EE95, AC994FAB7BBCC1EB8D630644B19C6906BF77EEB8E7CFEFC11F0EDC1E3CFABD44 ] PushToInstall C:\WINDOWS\system32\PushToInstall.dll
15:07:58.0611 0x1a1c PushToInstall - ok
15:07:58.0736 0x1a1c [ 1CCA2B375CD44A6A0389B9288F60E96D, ECEE1937E181FFB29E34EB8FDA38EC588C40A6A6481E3F369A6E341FACAD9727 ] QWAVE C:\WINDOWS\system32\qwave.dll
15:07:58.0799 0x1a1c QWAVE - ok
15:07:58.0877 0x1a1c [ 4DAB92FD311B9F841EE40EF7B967DF8E, F46E4842EC1F8F6DBD0A8B6548EB2B3639148DB4F79775EB6D28FDC8A8135868 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
15:07:58.0970 0x1a1c QWAVEdrv - ok
15:07:59.0017 0x1a1c Ramdisk - ok
15:07:59.0017 0x1a1c RasAcd - ok
15:07:59.0408 0x1a1c RasAgileVpn - ok
15:07:59.0486 0x1a1c RasAuto - ok
15:07:59.0517 0x1a1c Rasl2tp - ok
15:07:59.0549 0x1a1c RasMan - ok
15:07:59.0564 0x1a1c RasPppoe - ok
15:07:59.0611 0x1a1c RasSstp - ok
15:07:59.0689 0x1a1c rdbss - ok
15:07:59.0814 0x1a1c [ 76C18F3B4EB5BC611FA7F249CF676911, 2EB981688FCCB1F6ABF0C4300DFD7CBB495899A9D0461F91C5054AF173AC34F3 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
15:07:59.0892 0x1a1c rdpbus - ok
15:08:00.0017 0x1a1c [ 1AEE22C5FBF18F53C47AC4373F0DB542, 640D23BEEA33B2C25A0981BBE9234D9F1FAE23DCE12A9B41C018532A5F8C8369 ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
15:08:00.0095 0x1a1c RDPDR - ok
15:08:00.0174 0x1a1c [ 0631645A1C5196BA5D5AC6C186CF55FA, 45F56CFD5C9A8482A48B98161E4B7DBAF32BF33E47411E371222C80466975E3A ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
15:08:00.0205 0x1a1c RdpVideoMiniport - ok
15:08:00.0252 0x1a1c [ 88FC2D00DE5A999E29B8FD432DE3A071, 0B1ABAB0AE1E6398D6E17A018FB6FD05703DDFA8C59F20A52D3C028ECD3404A4 ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
15:08:00.0299 0x1a1c rdyboost - ok
15:08:00.0345 0x1a1c ReFS - ok
15:08:00.0392 0x1a1c ReFSv1 - ok
15:08:00.0595 0x1a1c [ C76CBDE7EBE13EA8D51FDA3EF3EB22C1, A8B41AE79E4DFD73C596B999AADB0F842A4D299F76656CC453AE6FD4A27FB862 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
15:08:00.0689 0x1a1c RemoteAccess - ok
15:08:00.0908 0x1a1c [ 7D58DC151856B3474B160B7ABD2B1C96, 6228C9F0006D009E240568FDFE2AD21625EFEC5D7F55AAAE2846657709AA4F29 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
15:08:00.0986 0x1a1c RemoteRegistry - ok
15:08:01.0142 0x1a1c [ 1DA817E5217CD0C05DE9EE377E059705, 70AF029D76B2FB439D88618434C21C380A64E32CCE39E0EA1A8CBD60EE23EABE ] RetailDemo C:\WINDOWS\system32\RDXService.dll
15:08:01.0220 0x1a1c RetailDemo - ok
15:08:01.0361 0x1a1c [ D8D7FEED713C25F089CE0768C266EAA1, C404ED841D47E0041CF7CB2E7DAC99FC383655297BBB50247C1EE7757DC7FCFD ] RFCOMM C:\WINDOWS\System32\drivers\rfcomm.sys
15:08:01.0424 0x1a1c RFCOMM - ok
15:08:01.0486 0x1a1c [ DF8FE557182A7B2C2D7ED893A04A63E9, 40416F2843E18F725BFA08CB9E5A025826A05015AB52F9CC42912A8C2820B8D6 ] rhproxy C:\WINDOWS\System32\drivers\rhproxy.sys
15:08:01.0533 0x1a1c rhproxy - ok
15:08:01.0642 0x1a1c [ 65C2ADC8A39C3F0D77FA611B4053EC4D, 8B6E3DC6CD7D2719385EBA112CA20D6909D2DC2F631ECBE46956F30DCD69F4DA ] RmSvc C:\WINDOWS\System32\RMapi.dll
15:08:01.0799 0x1a1c RmSvc - ok
15:08:01.0830 0x1a1c RpcEptMapper - ok
15:08:01.0908 0x1a1c [ A0DD6042F7734F61D55D6A62D60FE498, 8B5743D4ACF8C571F039F83464672306D9F899E4C8512FAB9538807C43DF4A67 ] RpcLocator C:\WINDOWS\system32\locator.exe
15:08:01.0955 0x1a1c RpcLocator - ok
15:08:01.0986 0x1a1c RpcSs - ok
15:08:02.0064 0x1a1c [ 7936E95FFEA1758638715C6465B2A739, 6F8582EF105FC5B35A086F8433E0D08BF1D8955986835A9C94CC509D7BB6809C ] rspndr C:\WINDOWS\system32\drivers\rspndr.sys
15:08:02.0127 0x1a1c rspndr - ok
15:08:02.0220 0x1a1c rt640x64 - ok
15:08:02.0314 0x1a1c [ FC7A59A1AA07632AF8E9DC254918F879, 5B10D3CD2767466D47598F962575583DEEDAD44EB9BEACCF5A1952CAB4F2C6A4 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
15:08:02.0361 0x1a1c s3cap - ok
15:08:02.0424 0x1a1c SamSs - ok
15:08:02.0549 0x1a1c [ 9C7CECCEED1FF5818CD5A118258EE0C5, E0658C00A54AAC2BC245BF688D1C02D4C7E5F69C91C2ED92EDCA00C8A7785095 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
15:08:02.0611 0x1a1c sbp2port - ok
15:08:02.0705 0x1a1c [ 92FB066DF4943FDDC571CD9EE434B390, 45BD7E3610CA078268D1B224596EA5A9D361CF9B3CB2C97F4EADEC3B82318806 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
15:08:02.0767 0x1a1c SCardSvr - ok
15:08:02.0830 0x1a1c [ 0713B90453D4D465F67DEF4A2FC8EFB5, C04D14A53BA8823485DCC1B9DB215B04621AD89920BB1E4667E98E7AB1CF5101 ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
15:08:02.0908 0x1a1c ScDeviceEnum - ok
15:08:02.0970 0x1a1c [ EFBD152E3DBA02D06C7D2FF1E034919B, 8F346C7A7D743436636EFB321F24873A3F4B764681D05C82D1B30D2D18EDC5BD ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
15:08:03.0049 0x1a1c scfilter - ok
15:08:03.0049 0x1a1c Schedule - ok
15:08:03.0095 0x1a1c [ 6274ED5017EEFE775FDDF9082271472E, 3E2C6F47D68C0C69F7A4CC87288A2C4F06C1708B633FC173C09C36776B069A12 ] scmbus C:\WINDOWS\system32\drivers\scmbus.sys
15:08:03.0127 0x1a1c scmbus - ok
15:08:03.0205 0x1a1c [ 0AA32D46BBEC1509B13FFBFB00C26116, 5B14509A04B3D5DF44A0CC35CFB68F91852C7E0712AD6A10EE5D8930DF62B84A ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
15:08:03.0252 0x1a1c SCPolicySvc - ok
15:08:03.0502 0x1a1c [ 1A3CFA3494AEDDEB5E4B044D89B53C43, A5BEE5B7E42A57A89861B9B7AEA6E48DB4C6387EABE2C2A8FCDBA4ACCD491D76 ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
15:08:03.0611 0x1a1c sdbus - ok
15:08:03.0705 0x1a1c [ 1E7ECD63D209EE5CE02E582CA8918023, 49AA1B53FC2C670EA1D6A393BB4DF8EAB3A3373231E38DD3B930CE4A097774DD ] SDFRd C:\WINDOWS\System32\drivers\SDFRd.sys
15:08:03.0720 0x1a1c SDFRd - ok
15:08:03.0783 0x1a1c [ 5443C69569DB315B5015DD8E9004071B, 805A50808F24F2CFDF506BFAAC78AE4768AF5098D157FD7A6493F958C170D8B3 ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
15:08:03.0830 0x1a1c SDRSVC - ok
15:08:03.0861 0x1a1c [ 7B58DD1E1CF8E1AE2A22C8CFFBDA3DB3, B0537D68865860AEC80BB22AD1E308549EB710CD76CECEA5AFAB35A14664C210 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
15:08:03.0892 0x1a1c sdstor - ok
15:08:03.0939 0x1a1c [ F3F8232DF651CFC4DBCF4C5BAB61CFCC, F1555CA0D23D9FC065AF0D02355AFECEA9161029B402F74016B3F69E0BEBAD09 ] seclogon C:\WINDOWS\system32\seclogon.dll
15:08:04.0033 0x1a1c seclogon - ok
15:08:04.0127 0x1a1c [ 6C294BA4F53127DF5060D3DD057A2DCA, F185B8492341D7248E683CA3ED5F386D3ECB24D53AB2B2F201A343B40537AF85 ] SecurityHealthService C:\WINDOWS\system32\SecurityHealthService.exe
15:08:04.0158 0x1a1c SecurityHealthService - ok
15:08:04.0455 0x1a1c [ DB10A49052B94A7D55B5A60E7F18CC36, 6E633AC158FAADAB55908B029BA516B3D7C9FCFF3DCA555510024B4C8992B282 ] SEMgrSvc C:\WINDOWS\system32\SEMgrSvc.dll
15:08:04.0549 0x1a1c SEMgrSvc - ok
15:08:04.0580 0x1a1c [ EE711439FD0F1293B43F0FE195E5C073, 9F96ACC449D72C08212756E422C2037F82C2135CCD0907E00EB16582F0AB1A6D ] SENS C:\WINDOWS\System32\sens.dll
15:08:04.0627 0x1a1c SENS - ok
15:08:04.0767 0x1a1c [ E77A116240C022634504C54ACA876E62, 071E545DAAE61B9ADED9D889BF4E8D953D825C1203793F9B4C09E02550544216 ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
15:08:04.0861 0x1a1c SensorDataService - ok
15:08:05.0017 0x1a1c [ 0BB8E709234B5309556A4B6A7C26ABA6, 4D900CF49FB662000D37D27BE28F1905B4F0F1E51D9829DD89A65487A2613517 ] SensorService C:\WINDOWS\system32\SensorService.dll
15:08:05.0080 0x1a1c SensorService - ok
15:08:05.0205 0x1a1c [ 03CC1E13F3FB31E17FE97392DA2AD74B, DA8CD92DB96537EAFE6336385237E7DCA4E0CE4ED5F3A7AA021B734B0A0585FA ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
15:08:05.0299 0x1a1c SensrSvc - ok
15:08:05.0361 0x1a1c SerCx - ok
15:08:05.0361 0x1a1c SerCx2 - ok
15:08:05.0424 0x1a1c [ 51B9B16E99B1EF7D2107629DB8C4B578, 0DFBEA7E446970D451442A6DF8F40C5FB79AD2CE7F839FE280CC18AC8A891C4B ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
15:08:05.0502 0x1a1c Serenum - ok
15:08:05.0549 0x1a1c [ 6D581AD1593B35711075886F153A8BAE, 82F5046E5895DB263A0CD7E820EC9595FE260220A6B5C2BA10C2308C2D8B9DD8 ] Serial C:\WINDOWS\System32\drivers\serial.sys
15:08:05.0564 0x1a1c Serial - ok
15:08:05.0580 0x1a1c [ 43E10E093B3249C78D649A4096271AA0, 74284C115D819FE573628680604905870334882EFFBA1E4B659F85E639BA6AFD ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
15:08:05.0611 0x1a1c sermouse - ok
15:08:05.0720 0x1a1c [ 9EE7998CF17E4059B9857B9C37361C2F, 36A284E48EA20B7C9110B89F8DB281EC5444A1A645FC6BCCDFDB04B1F271C295 ] SessionEnv C:\WINDOWS\system32\sessenv.dll
15:08:05.0799 0x1a1c SessionEnv - ok
15:08:05.0814 0x1a1c [ BDDF94AB15E77B54ED2CC60CCCE8F922, C09071A73F5BF81A39DC4B5619854EB34FFB40AAFFD2719493CE79FF2F49BAA3 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
15:08:05.0861 0x1a1c sfloppy - ok
15:08:05.0908 0x1a1c [ 01D980C33003B078324E3FE032C8A42A, EC90E67A2D5055FB6792D28B0CCFE3A47F2D3EBD8C643966DD857C289F2E26A3 ] SgrmAgent C:\WINDOWS\system32\drivers\SgrmAgent.sys
15:08:05.0924 0x1a1c SgrmAgent - ok
15:08:05.0986 0x1a1c [ 1760AE8C5D731819A4BB1CF0448AC57C, FFFC540EAB0035A188E47B8F2FA25BBE0C367A97B459BC0C440651388DD42647 ] SgrmBroker C:\WINDOWS\system32\SgrmBroker.exe
15:08:06.0002 0x1a1c SgrmBroker - ok
15:08:06.0127 0x1a1c [ DBDD7F9912067B099485E1B428CCF17F, C5BFDD192EAAC8FFA8C0EE9C5FBB719EB739518A0635DC5CBA42F52AB7EFEFA9 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
15:08:06.0220 0x1a1c SharedAccess - ok
15:08:06.0361 0x1a1c [ DF00D18142A1A3315A264521D8E3801A, EF3281ABA12B51B5BC431369553B281CB553DC36D1BC8A08D027CF22D0EE7036 ] SharedRealitySvc C:\WINDOWS\System32\SharedRealitySvc.dll
15:08:06.0533 0x1a1c SharedRealitySvc - ok
15:08:06.0705 0x1a1c [ 7BB985D3D68A423CE05E007B14E225AB, 1FCA633889F61B7F18C2FCDF401846EE3B34E1EDFE8D428700DC45CE3F45E5BD ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
15:08:06.0799 0x1a1c ShellHWDetection - ok
15:08:06.0892 0x1a1c [ 82BE61D6660F4259606371E73027AAEA, 14E6F055491EA5CCE49AE4C37D664F778B4325EB761B55251F156B8E90190E76 ] shpamsvc C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
15:08:07.0064 0x1a1c shpamsvc - ok
15:08:07.0142 0x1a1c [ 8C61B219882C9C9ECA09BEDB82B0DDB1, 711681040D9CD93D603F55AB8D62371F5D51917C14818F27859E23E2D60EB18F ] silabenm C:\WINDOWS\System32\drivers\silabenm.sys
15:08:07.0783 0x1a1c silabenm - ok
15:08:07.0877 0x1a1c [ 12E42E20BC0ABF8FC2AA5D13609ED0E7, 9E32D5541A5A637EA186BCE44F87FB63E8B2E58E03B1B85FD754565534D31754 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
15:08:07.0892 0x1a1c SiSRaid2 - ok
15:08:07.0924 0x1a1c [ E156CB3AAF1E2C397A8F93EA9ACD8290, EF6F424AEE3E66476937D86E3BCDF00323A49F7E23085AEC407769F1C7E07B0C ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
15:08:07.0939 0x1a1c SiSRaid4 - ok
15:08:07.0955 0x1a1c [ CFFE219F9CA183C40AA5D44DC26E6F2D, D87D149808A1F7D40E8363AF5B3A314D39D883582AF42C9F827E47336BAC38B7 ] SmartSAMD C:\WINDOWS\system32\drivers\SmartSAMD.sys
15:08:07.0986 0x1a1c SmartSAMD - ok
15:08:08.0017 0x1a1c smphost - ok
15:08:08.0158 0x1a1c [ 827088445274D2F1660750C4E71A5DEF, 3549E3CF6778E2B3999989F2335B0D6DB11DF2D8FA64AF4F01D80B5B31B77FF5 ] SmsRouter C:\WINDOWS\system32\SmsRouterSvc.dll
15:08:08.0252 0x1a1c SmsRouter - ok
15:08:08.0330 0x1a1c [ 58983BFDDDB09E21AF8F3BA3EC45FC7D, 9CFC867BECEC3E1FCE830526108F7A7C3E9B0E2FC001EE6CDE6E49C956F781E9 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
15:08:08.0377 0x1a1c SNMPTRAP - ok
15:08:08.0455 0x1a1c [ AB03DDEBFEEFB55E50CAE58B52A4BFA7, 6377DD20D76D324D00FD876F71BC21491F7C9D037A9EFC916DE3E6E16DE0EF00 ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
15:08:08.0517 0x1a1c spaceport - ok
15:08:08.0595 0x1a1c [ 7EFD2145C9AD88BD2528E4DC91D55A04, B3E60C6D8118F65BFDA87A4560A093B836F3A5FC501CC1F86A93116E83772216 ] SpatialGraphFilter C:\WINDOWS\system32\drivers\SpatialGraphFilter.sys
15:08:08.0642 0x1a1c SpatialGraphFilter - ok
15:08:08.0674 0x1a1c SpbCx - ok
15:08:08.0752 0x1a1c [ 1609C84BD8592CFF07225C088859480B, FB85FAD33E989F58345632E9FC022447032A5F476E3233F03345D322831263BD ] spectrum C:\WINDOWS\system32\spectrum.exe
15:08:08.0830 0x1a1c spectrum - ok
15:08:09.0049 0x1a1c [ B54A80B1A307CE44C843EDD080FEA03E, BC7F9F33041C4594B25FF937F385C6E8A6BA870D25F781283C2147BB80A60919 ] Spooler C:\WINDOWS\System32\spoolsv.exe
15:08:09.0127 0x1a1c Spooler - ok
15:08:09.0158 0x1a1c sppsvc - ok
15:08:09.0205 0x1a1c srv2 - ok
15:08:09.0252 0x1a1c srvnet - ok
15:08:09.0330 0x1a1c [ 06B6E9408BCE355CE4DA24FD7609F93C, 3BFA6EBED16F8CF5D4798B2BC9B028F58DC05FDD4276EFE31E190C201C6D5C9D ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
15:08:09.0455 0x1a1c SSDPSRV - ok
15:08:09.0611 0x1a1c [ 9FFECD197D09FF33B00D5E5B78A48146, 79C03E83B42E3C0402680B47A2493C3C506E2D212062859BD7C4EBACA46F3AD5 ] ssh-agent C:\WINDOWS\System32\OpenSSH\ssh-agent.exe
15:08:09.0783 0x1a1c ssh-agent - ok
15:08:09.0814 0x1a1c SstpSvc - ok
15:08:10.0095 0x1a1c [ D41B7D3152E4ED1A32FA8939A828BAF7, E89B5C8392AA3458D998673835DF79DFAFA110F2F2E3E3A747B079C7C07A4C6C ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
15:08:10.0236 0x1a1c StateRepository - ok
15:08:10.0517 0x1a1c [ 9B49D456415FBB6388D4CAE4F45F22F8, 514FCB3AA100DDA568C4DE136401DEBBF17C233264C0F6019B79CDE0E2F85213 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
15:08:10.0580 0x1a1c Steam Client Service - ok
15:08:10.0705 0x1a1c [ CE0F176C7C3DC2AEA1C75EF6A7583B67, 7BB6CB17DCC58268D823FD76BFB8FFB68C5D4AFFDE5D0050F8DDFCBBA4E04F23 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
15:08:11.0205 0x1a1c stexstor - ok
15:08:11.0299 0x1a1c [ 697B0D4078F0F70AC4829B4EBA0538B1, 52C51705ADD389342D89AD4E872F9F844EBB5EFE4A29A1824AA534EDBDEC7724 ] stisvc C:\WINDOWS\System32\wiaservc.dll
15:08:11.0408 0x1a1c stisvc - ok
15:08:11.0470 0x1a1c [ 9DA9203768E6961AB5DB302DAF9D3347, B16936F26D1243FE34573EFE9215E530A31E9ACA5E3289F3BED3FA50375C8B3C ] storahci C:\WINDOWS\system32\drivers\storahci.sys
15:08:11.0549 0x1a1c storahci - ok
15:08:11.0658 0x1a1c [ 6CC21AB292E58758F151456D0ED3A628, D2D6FCEABFE57965F5AB7BCF0F6A11178D78221FEB5C1D57C79D6B4BDD6E50FC ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
15:08:11.0720 0x1a1c storflt - ok
15:08:11.0767 0x1a1c [ C79111F77A97F2D966BCF628CECAE893, 86E90DEAC9F1D623E03F48969004B79AB0A18B01279FAA49DA759CE1DC75EE37 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
15:08:11.0799 0x1a1c stornvme - ok
15:08:11.0845 0x1a1c storqosflt - ok
15:08:12.0033 0x1a1c [ F36E3D11E41D785E13225C63E9D46261, 57C0A54CA23B920474EC4C430FAC7F857C8A041BB206D373FF54CC6FE8B33EFF ] StorSvc C:\WINDOWS\system32\storsvc.dll
15:08:12.0439 0x1a1c StorSvc - ok
15:08:12.0517 0x1a1c [ BC74E93B52526753408BC578C01CC786, 71671E977BAF95331AB0F469213582144989A70857B71E3A6BD0D728898A7A6F ] storufs C:\WINDOWS\system32\drivers\storufs.sys
15:08:12.0580 0x1a1c storufs - ok
15:08:12.0580 0x1a1c [ C58DC01DBBFB0DC058AC1AB792D88AC2, F45D6D020E3B45C04DD8828047E0FCDF82F32B0E01538BE0286DA5A640730E62 ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
15:08:12.0595 0x1a1c storvsc - ok
15:08:12.0658 0x1a1c svsvc - ok
15:08:12.0892 0x1a1c swenum - ok
15:08:12.0908 0x1a1c swprv - ok
15:08:13.0002 0x1a1c [ 7B4BF4CC6C96749124984A9E0AE1896A, AE59BAE1A921DC85E5447D383A42850DBA8F48AB020198C1F6E10D853864CE22 ] Synth3dVsc C:\WINDOWS\System32\drivers\Synth3dVsc.sys
15:08:13.0064 0x1a1c Synth3dVsc - ok
15:08:13.0095 0x1a1c SysMain - ok
15:08:13.0158 0x1a1c SystemEventsBroker - ok
15:08:13.0330 0x1a1c [ 626A1593186D839054720C0D116C682E, 1D3091E00B0AA4F7D1D73373BEF1C265F6C61AE987AD03E7AC3418BDCDF1256A ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
15:08:13.0377 0x1a1c TabletInputService - ok
15:08:13.0424 0x1a1c [ 9CEB8FC77A7FBEC5ED344EEC9227A10C, 5F1D6F7DF1CC7040200DB5D887223D612966A1B3560DB13C8D9C442AF677221D ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
15:08:13.0611 0x1a1c TapiSrv - ok
15:08:13.0674 0x1a1c Tcpip - ok
15:08:13.0674 0x1a1c Tcpip6 - ok
15:08:13.0752 0x1a1c [ A8766E18A1E2D41301E7A8EEFBABCDDD, 0762E146944C40C9D295A11DFBDDD72270E75619D209451AAD619A531A0EACF2 ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
15:08:13.0799 0x1a1c tcpipreg - ok
15:08:13.0830 0x1a1c tdx - ok
15:08:14.0017 0x1a1c [ 7D87A129A6F4FA468244F0D812B1D0A5, E5F09091CC28C0F26B2D229ABEF29026B1A73ABCDDA819AE9A9B4D329C5E4D4D ] Te.Service C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe
15:08:14.0127 0x1a1c Te.Service - detected UnsignedFile.Multi.Generic ( 1 )
15:08:14.0345 0x1a1c Detect skipped due to KSN trusted
15:08:14.0345 0x1a1c Te.Service - ok
15:08:14.0439 0x1a1c [ DC451F4DC01E116C35121EBD6813618E, 0A727D884164BA5A45679B6BB7C67D10A22B2E2203709ACCFB20C7086BF38F80 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
15:08:14.0549 0x1a1c terminpt - ok
15:08:14.0580 0x1a1c TermService - ok
15:08:14.0611 0x1a1c [ A90774D7D465E1085A95326FAD89B25C, 503EE739A30D67CA4EC27416D4A43F76BA8BC75A8DB175BAFD282307920E944F ] Themes C:\WINDOWS\system32\themeservice.dll
15:08:14.0642 0x1a1c Themes - ok
15:08:14.0705 0x1a1c [ 33E60A1BD76A877683FCD7DC93A10635, 917F104892FF1890BE2AB218B99C2DFED8287AB93EA6895BA74090783D4E341C ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
15:08:14.0845 0x1a1c TieringEngineService - ok
15:08:14.0908 0x1a1c TimeBrokerSvc - ok
15:08:15.0002 0x1a1c TokenBroker - ok
15:08:15.0127 0x1a1c [ BF97F92E1043BC92073FAED0752B70A2, 4DC7A38DFDF44E64C65C2C2629FE835A28204FBA0FE6E54FAC5C34702FEB161A ] TPM C:\WINDOWS\System32\drivers\tpm.sys
15:08:15.0142 0x1a1c TPM - ok
15:08:15.0236 0x1a1c [ BCA97819779D7876B6F98C29844CF505, EEF76BD38F90D6846FC17E13F3981FF0EA9768BE7D142430488A2F0850853833 ] TrkWks C:\WINDOWS\System32\trkwks.dll
15:08:15.0299 0x1a1c TrkWks - ok
15:08:15.0424 0x1a1c TrustedInstaller - ok
15:08:15.0486 0x1a1c [ 19DC44DF9C859396B3608F5CF5C83D82, B3898F2B03FB8F0705CE729385F9836A39E3E995481E152C3CF61A2CFE80B4B1 ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
15:08:15.0549 0x1a1c TsUsbFlt - ok
15:08:15.0595 0x1a1c [ C7E9FAB0880D66EFB62C2B6314284D47, DEC664E32E400BBB22C95632A1A71EB7A929660BCBD624B9092F5AA5AF53CF36 ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
15:08:15.0674 0x1a1c TsUsbGD - ok
15:08:15.0752 0x1a1c [ 4227DDD821E0A81448CD187B80265927, CC70A120832045666A6730B552586407BBA2F6533C56914C2CE137AB8D4D4BBD ] tunnel C:\WINDOWS\system32\drivers\tunnel.sys
15:08:15.0799 0x1a1c tunnel - ok
15:08:15.0877 0x1a1c [ 0D7B0A007BCC65CF6CC20E25A43D151A, D1C9DF8B557CCC087937622D30049A95A28A1D0B1EEC66E06D05653460C5B8EF ] tzautoupdate C:\WINDOWS\system32\tzautoupdate.dll
15:08:16.0158 0x1a1c tzautoupdate - ok
15:08:16.0189 0x1a1c [ 4631D2B2B5567A768389796A267ABED9, 105F0A028F955029275FA34B8D7BF3E8D75BD2D661A4E1D81CA32252A685886E ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
15:08:16.0236 0x1a1c UASPStor - ok
15:08:16.0267 0x1a1c [ B5A296C6DE5A56B62FB98859A8AB6C10, 2B945D4A279D3C4D3FC47BCB97F00C8C4A8113E52F9647808A61BFA253CD1AC1 ] UcmCx0101 C:\WINDOWS\system32\Drivers\UcmCx.sys
15:08:16.0299 0x1a1c UcmCx0101 - ok
15:08:16.0345 0x1a1c [ 9E8CC2A2F39A6C5377B4A2D3A061A429, 231408808BD731328C4A0601E2D781CA241D39845393A4BB194C9B76B91EA0F1 ] UcmTcpciCx0101 C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
15:08:16.0424 0x1a1c UcmTcpciCx0101 - ok
15:08:16.0533 0x1a1c [ EB21892E714A16FAA18642F3A53A26B8, 212582DE1DEB0DFC660AEAF10268A915FBC6CD5BA433FA8D934756881B38E05C ] UcmUcsi C:\WINDOWS\System32\drivers\UcmUcsi.sys
15:08:16.0611 0x1a1c UcmUcsi - ok
15:08:16.0767 0x1a1c [ 41ED24E49525CB10312C707112E34C98, 70A974F1549399E5EE4E432EAA2FFDFBE991F24A80367DE19D42FDF85A7BD222 ] UcmUcsiAcpiClient C:\WINDOWS\System32\drivers\UcmUcsiAcpiClient.sys
15:08:16.0845 0x1a1c UcmUcsiAcpiClient - ok
15:08:16.0892 0x1a1c [ B107AD3336E791B7B0F8E87301D23E44, 35112A473C84FEC3B66FED03B56D0CF6E1A91D04ABEAF69125075B289F695784 ] UcmUcsiCx0101 C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys
15:08:16.0939 0x1a1c UcmUcsiCx0101 - ok
15:08:16.0939 0x1a1c Ucx01000 - ok
15:08:16.0970 0x1a1c UdeCx - ok
15:08:16.0986 0x1a1c udfs - ok
15:08:17.0017 0x1a1c [ E1D26FA75626B66D0020E07E30CDEC8C, 034EA90B95BC78EF0A2EED3D196B048AA0CD4D07007D4A899F9C8AA099987CB1 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
15:08:17.0080 0x1a1c UEFI - ok
15:08:17.0127 0x1a1c [ D88BCBABE51CCB450B3DD1C696D9DD80, CD22085BC8D2B471628928B38EBF4453C961F3E83794D83C682898132724DEEC ] Ufx01000 C:\WINDOWS\system32\drivers\ufx01000.sys
15:08:17.0189 0x1a1c Ufx01000 - ok
15:08:17.0236 0x1a1c [ D5E1A8CB08CEF619E0949535C917621C, 10904C6AD79906FA86869F0E11960927ED6990D346D0F10307B764D3778B9464 ] UfxChipidea C:\WINDOWS\System32\drivers\UfxChipidea.sys
15:08:17.0330 0x1a1c UfxChipidea - ok
15:08:17.0361 0x1a1c [ EC86C5BF1EBE408BA39730EDAAC93353, AED44C537D2787294E3AE5916A4671249B0D860EA1B95A9B37E097027AED6BA7 ] ufxsynopsys C:\WINDOWS\System32\drivers\ufxsynopsys.sys
15:08:17.0424 0x1a1c ufxsynopsys - ok
15:08:17.0470 0x1a1c umbus - ok
15:08:17.0486 0x1a1c [ 826827B952041E884774E0A87AA3D216, B52A21A288E18EB2517A09FD94BF5B720D88FC571F8609C8181D0A419C6D2172 ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
15:08:17.0549 0x1a1c UmPass - ok
15:08:17.0689 0x1a1c [ 86F5651C8448134FE32C9B34A9273EBD, C58AE91447A3408F0A8FF96409F7AB8383E43B8AB0287575A6FB879783B15D53 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
15:08:17.0877 0x1a1c UmRdpService - ok
15:08:18.0127 0x1a1c [ 8B4DC02D01400255E6CFB53C51689557, 485152A9B286ADB04331DE52412E038F777D403C66AADFB7A7CA4B9B395054A2 ] UnistoreSvc C:\WINDOWS\System32\unistore.dll
15:08:18.0252 0x1a1c UnistoreSvc - ok
15:08:18.0533 0x1a1c [ BD627E48043957D70AA7100EC8DF0974, 07B1C8D39FE82A1CD2723BD7290344BCEF12AB990D0EF4E1767B24B986176BC3 ] upnphost C:\WINDOWS\System32\upnphost.dll
15:08:18.0658 0x1a1c upnphost - ok
15:08:18.0799 0x1a1c [ AF79E1A4747418B190F36877977485F6, 9B97D43CE1015F4B7C961BAD3E7B1115C639A70562CD19066C7DFD79FFA97B2D ] UrsChipidea C:\WINDOWS\System32\drivers\urschipidea.sys
15:08:18.0861 0x1a1c UrsChipidea - ok
15:08:18.0924 0x1a1c [ 0BA7174544F4064EF5C9383BA8EDAC78, 64AE6123771AEA57B3666E96DAFB7A319E45067587F9A78DC2C4FDB06BC9EF3B ] UrsCx01000 C:\WINDOWS\system32\drivers\urscx01000.sys
15:08:18.0955 0x1a1c UrsCx01000 - ok
15:08:19.0017 0x1a1c [ 7DDE04DB56833A97492DC3013D4B3239, F7D092CD065ED5BDE2E672E48BF479B1D33033BC7EE636DEDCE5C166540A343A ] UrsSynopsys C:\WINDOWS\System32\drivers\urssynopsys.sys
15:08:19.0127 0x1a1c UrsSynopsys - ok
15:08:19.0158 0x1a1c usbccgp - ok
15:08:19.0205 0x1a1c [ E7BFC2CCC6D416673A1698781991C656, 5395A6990DE75E5BAF23ABB6FC4B532F975B751DD3324EC89043CEF7658D42F5 ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
15:08:19.0236 0x1a1c usbcir - ok
15:08:19.0252 0x1a1c usbehci - ok
15:08:19.0252 0x1a1c usbhub - ok
15:08:19.0377 0x1a1c [ 6C5563F34424790A8F23985D837D18C0, F8AD3DF705735FE3DFCF758E8CB1688929FB7B09C957DA0873DABB944C24C679 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
15:08:19.0408 0x1a1c USBHUB3 - ok
15:08:19.0424 0x1a1c usbohci - ok
15:08:19.0502 0x1a1c [ AB3AD5D5F58FF144094052349E85459D, 1E9B60EC013A8A145E33970B0A7AD96F4E59A77EED754A8B11EC640267015EA2 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
15:08:19.0627 0x1a1c usbprint - ok
15:08:19.0689 0x1a1c [ EE67BDAA526DB1538D514C1BB8EE227F, 5C1C4F90981628954A0881C3AFB1F923FC64C7959449EA579A97C0C3B5EC0BC1 ] usbser C:\WINDOWS\System32\drivers\usbser.sys
15:08:19.0767 0x1a1c usbser - ok
15:08:19.0830 0x1a1c USBSTOR - ok
15:08:19.0924 0x1a1c [ 2DAEB3D979208B3DDA0C480BFD1D6A3B, A2041411FDD1BAA48FCEE5823A81A4475ED301EBD8DA1E6C1519422431A7751D ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
15:08:20.0080 0x1a1c usbuhci - ok
15:08:20.0377 0x1a1c [ 10165ECCC7A1DF3C1B6AA53C8EB2A87F, D6F34032ECEFCC7E80CCCD111A9FBA14B00D89C6A33CFC5FB0247C1E48307869 ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
15:08:20.0486 0x1a1c USBXHCI - ok
15:08:21.0095 0x1a1c [ C05A20A037C6675E854FFE8282BE9B20, 6ACDDA4FB354F2713A559BE4F6E061A2D207E43EA9F0849BFD7110EDE70A8E0B ] UserDataSvc C:\WINDOWS\System32\userdataservice.dll
15:08:21.0189 0x1a1c UserDataSvc - ok
15:08:21.0345 0x1a1c UserManager - ok
15:08:21.0705 0x1a1c [ AF2979208ABA46C5DAAF254DD0919EC7, 4E3AF47DB38624D3DBD1DCD858EE5C2B2CE50871E490A663D58E024A73C9DB6C ] UsoSvc C:\WINDOWS\system32\usocore.dll
15:08:22.0033 0x1a1c UsoSvc - ok
15:08:22.0283 0x1a1c [ F7B1BC5C7799E1247DC7CB5FD2C0F921, 373370AAAC27CC5A8CAC25A4F9C97A13A433B9E0DF10FEB4C0B6591D1EB05C22 ] VacSvc C:\WINDOWS\System32\vac.dll
15:08:22.0392 0x1a1c VacSvc - ok
15:08:22.0392 0x1a1c VaultSvc - ok
15:08:22.0924 0x1a1c [ 157406548DD44E9391B384C3EFAE9299, 9BCBE3515529B8B995665486F3F15D5223E494DE58147CC0627AB4EE506CA40A ] VBoxDrv C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys
15:08:22.0955 0x1a1c VBoxDrv - ok
15:08:23.0127 0x1a1c [ 63084E96C5FE3C37AA157990299049D6, 7EAF78C054786F102394FB5692D3A7D864DDD03B814B97CD469D1343AFBEDAE8 ] VBoxUSBMon C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys
15:08:23.0142 0x1a1c VBoxUSBMon - ok
15:08:23.0174 0x1a1c [ C06E30A8EE21D4E8AB184F985DD50C12, 107BE98743DA2F16D2900ED26A562E5F5F35E3851E8A5B03DF89665E84E1B3B4 ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
15:08:23.0236 0x1a1c vdrvroot - ok
15:08:23.0299 0x1a1c vds - ok
15:08:23.0330 0x1a1c VerifierExt - ok
15:08:23.0892 0x1a1c [ 1D4C6F5720786A0FB80E6CE8A778000F, C56701C8A836F38D230BEA5EB1DB410DD2F6D9D1EF41D825D52E62DD08FE407D ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
15:08:24.0392 0x1a1c vhdmp - ok
15:08:24.0549 0x1a1c [ 562C0C9FFF08A6DF60D858E6482E35CE, 67860AA759312674571F56D80A43E998A7F8352AD71588292CD405FE301E7494 ] vhf C:\WINDOWS\System32\drivers\vhf.sys
15:08:24.0642 0x1a1c vhf - ok
15:08:24.0674 0x1a1c Vid - ok
15:08:24.0736 0x1a1c [ A898490F7840AB1012D70887DEB20106, A75B89DA6E3C3E1DA86445587ABC44D6C0213D9B0E2AC765EE98200A1BCB8D9B ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
15:08:24.0767 0x1a1c vmbus - ok
15:08:24.0814 0x1a1c [ C3B4E43D5283D32E1D3890D101C70C1C, DA6B43864C1B867B56FAC04843620A7959912B29D9DCA9B0AC5F4E3903C1E8C0 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
15:08:24.0908 0x1a1c VMBusHID - ok
15:08:25.0017 0x1a1c [ 634A15C2B5CC3BBB151F2AFE9C3AE031, 5ED3F31C3726B0448D57A06703CEE71B844857C5B2E14CAF3A01C7206F1A4991 ] vmgid C:\WINDOWS\System32\drivers\vmgid.sys
15:08:25.0127 0x1a1c vmgid - ok
15:08:25.0158 0x1a1c vmicguestinterface - ok
15:08:25.0174 0x1a1c vmicheartbeat - ok
15:08:25.0174 0x1a1c vmickvpexchange - ok
15:08:25.0189 0x1a1c vmicrdv - ok
15:08:25.0189 0x1a1c vmicshutdown - ok
15:08:25.0189 0x1a1c vmictimesync - ok
15:08:25.0205 0x1a1c vmicvmsession - ok
15:08:25.0205 0x1a1c vmicvss - ok
15:08:25.0267 0x1a1c [ 88AFCF1B2C10A5175AE5F7FC22B64851, 84F636D284ABFF65BF5D11E72CFD404DC7EAE1D3CEB866100F94438AA7709CC0 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
15:08:25.0408 0x1a1c volmgr - ok
15:08:25.0455 0x1a1c volmgrx - ok
15:08:25.0455 0x1a1c volsnap - ok
15:08:25.0533 0x1a1c [ C0F4049CBD0632DA2B3E1F515A460531, 568376E3B714E5A40B8FE45C6CACA392F8D954343B53185D7939C3DBD36599E9 ] volume C:\WINDOWS\system32\drivers\volume.sys
15:08:25.0627 0x1a1c volume - ok
15:08:25.0689 0x1a1c [ F4B06615CAF9B34DDEEA4937278FFEB7, 2EE4186067D97BAC452ECD6D4B90C51F461154F4A44728F9384CB4E427C274EB ] vpci C:\WINDOWS\System32\drivers\vpci.sys
15:08:26.0049 0x1a1c vpci - ok
15:08:26.0142 0x1a1c [ EE4D650D73A565F7921C6F097ED6E709, 599B6386BC7695979B83F6BB615142878677343068DA36E285C733EFBE403992 ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
15:08:26.0189 0x1a1c vsmraid - ok
15:08:26.0236 0x1a1c VSS - ok
15:08:26.0252 0x1a1c [ B4E3EB14D422A128EE2C391A05C8958A, 6DF4A8BB9A02B41464D22ADAD2F96998DC3E1B93FB6975DF543B414EC7059582 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
15:08:26.0283 0x1a1c VSTXRAID - ok
15:08:26.0283 0x1a1c vwifibus - ok
15:08:26.0283 0x1a1c vwififlt - ok
15:08:26.0455 0x1a1c vwifimp - ok
15:08:26.0486 0x1a1c W32Time - ok
15:08:26.0627 0x1a1c [ 3C662445E3B925A7519805E74317DDB9, 2930D93F22CA3FC8F6D852AB8CDDC15616A9EBBB8676BD18C0E242F4D5415503 ] WaaSMedicSvc C:\WINDOWS\System32\WaaSMedicSvc.dll
15:08:26.0720 0x1a1c WaaSMedicSvc - ok
15:08:26.0783 0x1a1c [ 168A32D53F2BB06AE598AEBD744928BB, 0912D5556A22137602DF960BA7377256448D63FB825003C237061A346D4ADD37 ] WacHidRouterPro C:\WINDOWS\System32\drivers\wachidrouter.sys
15:08:26.0799 0x1a1c WacHidRouterPro - ok
15:08:26.0814 0x1a1c [ 4943F603998D4AF78D403A3461D89508, B06B779ED6C14787EF333DAED9A32F2087EC389D67A89C709DE4006B306B5557 ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
15:08:26.0877 0x1a1c WacomPen - ok
15:08:26.0924 0x1a1c [ BDE9A45B2B5D38B610ED2600B91F93AE, 5B9DC5248CD390E2D6527C6BBB7B39CD271DC6538830B6A5A581DC168DA38A33 ] wacomrouterfilter C:\WINDOWS\System32\drivers\wacomrouterfilter.sys
15:08:26.0924 0x1a1c wacomrouterfilter - ok
15:08:27.0345 0x1a1c [ B7BB14302C5BE67EA6E79E5B48284A12, 8EDA37E1CFD09A17F7E8F478D0AE606BF13AB18676E734950945CA6FBEFE4290 ] WalletService C:\WINDOWS\system32\WalletService.dll
15:08:27.0470 0x1a1c WalletService - ok
15:08:27.0470 0x1a1c wanarp - ok
15:08:27.0486 0x1a1c wanarpv6 - ok
15:08:27.0564 0x1a1c [ 6A775E36973111923169368CC7299E30, 54F35A47CC4058FB9C0AE89CC0E38A429B2E5FC880DA70CC46DCE55B105BF9AD ] WarpJITSvc C:\WINDOWS\System32\Windows.WARP.JITService.dll
15:08:27.0705 0x1a1c WarpJITSvc - ok
15:08:27.0736 0x1a1c wbengine - ok
15:08:27.0799 0x1a1c WbioSrvc - ok
15:08:27.0939 0x1a1c [ 95C4DB08A740015BB3FB5659F16EF321, 1E86C40F8AB13DD2433F13CC321C9352C7BF4A114FFF9E910F10DE684DF4E9CD ] wcifs C:\WINDOWS\system32\drivers\wcifs.sys
15:08:27.0970 0x1a1c wcifs - ok
15:08:28.0252 0x1a1c [ BF3A1962EDDB3C139133D0B0928B3761, 0DF08A1C1A1DE4ED62A2CC6A576390A11C9067FBFEF0D2781EE93299001285C4 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
15:08:28.0299 0x1a1c Wcmsvc - ok
15:08:28.0361 0x1a1c wcncsvc - ok
15:08:28.0408 0x1a1c wcnfs - ok
15:08:28.0533 0x1a1c [ E7E16778C8440BB459C94B5AD8282491, 728B2208884B4244E3481DDD82F9B353FC27DAC77488DBC8224AB1630616676A ] WdBoot C:\WINDOWS\system32\drivers\wd\WdBoot.sys
15:08:28.0595 0x1a1c WdBoot - ok
15:08:28.0611 0x1a1c Wdf01000 - ok
15:08:28.0674 0x1a1c [ 421A69C03BEB260A1CCAFFD3435AD587, 821FE66B3BB102BF7FDAF2F9A53ADEF89D677FEB4564C6E6EBE08FADF354ED36 ] WdFilter C:\WINDOWS\system32\drivers\wd\WdFilter.sys
15:08:29.0033 0x1a1c WdFilter - ok
15:08:29.0127 0x1a1c [ 2DF1213455A71E2C453575C425EEE079, 82FAD5020C4D43F152EB95063C653CDC94B38E01F0BE47180F34A4E90B250908 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
15:08:29.0174 0x1a1c WdiServiceHost - ok
15:08:29.0205 0x1a1c [ 2DF1213455A71E2C453575C425EEE079, 82FAD5020C4D43F152EB95063C653CDC94B38E01F0BE47180F34A4E90B250908 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
15:08:29.0220 0x1a1c WdiSystemHost - ok
15:08:29.0283 0x1a1c wdiwifi - ok
15:08:29.0377 0x1a1c [ 76C194DFF2EDEFE3BD0C731C267BC6F8, 3A88DF7E3141C6D3BAB53E45985B3B3926E3E88F39922E9A3114D84F4653C9E5 ] WdmCompanionFilter C:\WINDOWS\system32\drivers\WdmCompanionFilter.sys
15:08:29.0502 0x1a1c WdmCompanionFilter - ok
15:08:29.0517 0x1a1c WdNisDrv - ok
15:08:30.0017 0x1a1c WdNisSvc - ok
15:08:30.0127 0x1a1c [ 0714DD5FEC336CBFC3E8C0B2C1A25A95, 5AF366813608AB8FE54A2B1F0BCD98B15EED04A85D72915C70AD91634BDFE06C ] WebClient C:\WINDOWS\System32\webclnt.dll
15:08:30.0174 0x1a1c WebClient - ok
15:08:30.0299 0x1a1c [ 92A0CB8C13014D9589855A1B1FAE789E, 623E124F5987EB07BCA9ED33098868A25127AAD01A8983EC373ED6D05A3F6738 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
15:08:30.0424 0x1a1c Wecsvc - ok
15:08:30.0502 0x1a1c [ C40BC5164317312AEFC3A37376B696E6, F1E0BCA1ADD47DB08AABDFB8BDE5DD1A42C00F4535ACCD455763D575E92FCAFB ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
15:08:30.0595 0x1a1c WEPHOSTSVC - ok
15:08:30.0658 0x1a1c [ 5CE5CBC5A85BB319F278737BB20054AE, 1783EDEDCAE346E0FFA9FCA3F554682BCE285C035F6D71430809F1594CBA15E2 ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
15:08:30.0720 0x1a1c wercplsupport - ok
15:08:30.0767 0x1a1c WerSvc - ok
15:08:31.0017 0x1a1c [ 76E43A1AABB4CEB6DB83224F19CC4681, E8B37E989940151E887210142F50D8A19896372F91C0A46F87734FC4C50532D0 ] WFDSConMgrSvc C:\WINDOWS\System32\wfdsconmgrsvc.dll
15:08:31.0095 0x1a1c WFDSConMgrSvc - ok
15:08:31.0174 0x1a1c [ F2E1963A78B8CCDF8B70A4FD235A7576, F1AB882EE44504A4BB0106C834CB5B02BB1A4436521858F409347A4B288AA5B5 ] WFPLWFS C:\WINDOWS\system32\drivers\wfplwfs.sys
15:08:31.0267 0x1a1c WFPLWFS - ok
15:08:31.0330 0x1a1c [ E2C1DB0AB6F9C3C592BC3540687389C4, ADAB6DF0702BDC0A6A74A01B58C5248978DCF93D539BAA856225C0DACE00C6D6 ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
15:08:31.0392 0x1a1c WiaRpc - ok
15:08:31.0470 0x1a1c [ A8DD94CB385BBA9FE76A5A16842E95EB, 59362E84AB16150582DC2E6DB2108B0C120A4C584CB447AF56D9F28C8FB1E24D ] WIMBLEMS C:\WINDOWS\system32\drivers\WIMBLEMS.sys
15:08:31.0580 0x1a1c WIMBLEMS - ok
15:08:31.0658 0x1a1c WIMMount - ok
15:08:31.0689 0x1a1c WinDefend - ok
15:08:31.0783 0x1a1c [ 7D35D1A936E3D291851A8D01D5F7AA79, 217392DE13208375F4A2C99290FF53A70C8AB3C3B7954D59AB0CAC034553646B ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
15:08:31.0830 0x1a1c WindowsTrustedRT - ok
15:08:31.0924 0x1a1c [ F179027B9FE048633A60D782E1132AAA, 8ABA2FF51D098231FC9E4CB2E62445515A75432D90682B5D0842924355158E43 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
15:08:31.0939 0x1a1c WindowsTrustedRTProxy - ok
15:08:31.0955 0x1a1c WinHttpAutoProxySvc - ok
15:08:32.0033 0x1a1c [ C2610A6427166E0999CEA79A3128B915, 31CBA9B0057D725137F81D951D4BD941119092DB7BA8696BC386328F63899D72 ] WinMad C:\WINDOWS\System32\drivers\winmad.sys
15:08:32.0095 0x1a1c WinMad - ok
15:08:32.0252 0x1a1c Winmgmt - ok
15:08:32.0314 0x1a1c [ B7FEA2CC1333D4C30E58E89F682D8BCB, 41E1324E477D81CC8A6AF52C37EF29179EE86C453027A7DA361B50E672ADBBE0 ] WinNat C:\WINDOWS\system32\drivers\winnat.sys
15:08:32.0689 0x1a1c WinNat - ok
15:08:32.0705 0x1a1c WinQuic - ok
15:08:32.0752 0x1a1c WinRM - ok
15:08:32.0814 0x1a1c [ 9A0D43B4E4530C8BE34DAC3119FD5780, 9734AC33EE74F93D80126D7DD6A234B406C2930DE54092D015CB149A5373655E ] WINUSB C:\WINDOWS\System32\drivers\WinUSB.SYS
15:08:32.0908 0x1a1c WINUSB - ok
15:08:32.0939 0x1a1c [ D805E030EC7503ABD98158E0C28E1092, 2E74772BC2C2AC51AC5B346C526FD9DC213CD9BEFB57E480ACD88C06F0AA3D10 ] WinVerbs C:\WINDOWS\System32\drivers\winverbs.sys
15:08:33.0017 0x1a1c WinVerbs - ok
15:08:33.0095 0x1a1c wisvc - ok
15:08:33.0142 0x1a1c WlanSvc - ok
15:08:33.0189 0x1a1c wlidsvc - ok
15:08:33.0439 0x1a1c [ C087C499C922144DA2198EC4B1BCB90C, 775489CC40F231474A2730F1CC9F9A3ED180F2B30DDA8B0C4BF444571B245DCA ] wlpasvc C:\WINDOWS\System32\lpasvc.dll
15:08:33.0533 0x1a1c wlpasvc - ok
15:08:33.0611 0x1a1c [ 09C7796D31DCFF582064829CB59E35BF, C5DEFD31E5B10A6DCA8A7EC076727DC9444EA8EE8CAE9ED531C48AD97959A220 ] WManSvc C:\WINDOWS\system32\Windows.Management.Service.dll
15:08:33.0752 0x1a1c WManSvc - ok
15:08:33.0767 0x1a1c WmiAcpi - ok
15:08:33.0799 0x1a1c wmiApSrv - ok
15:08:33.0845 0x1a1c WMPNetworkSvc - ok
15:08:33.0970 0x1a1c [ 7BDD8CD05D67CDC66E00D061F0F5F010, E80B5FF710AF9F6502822470A5FE6EED21889F039052B2E8CAC4866F74500838 ] Wof C:\WINDOWS\system32\drivers\Wof.sys
15:08:34.0033 0x1a1c Wof - ok
15:08:34.0392 0x1a1c [ 3EFA1DCA6A3731ECC84F024B0DF17CEB, 1C685B1A7CEB9DF4B747B80CB1D4EADDF2C70EB1861A2B5F6AA27813D66F5DCE ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
15:08:35.0080 0x1a1c workfolderssvc - ok
15:08:35.0267 0x1a1c [ 56A1AC9C2DB9B440743C7F13DCEDD4F1, E88B614633543E1929AC143FDE57240D7A0BA373E46B6494EA349C2B8A8BF293 ] WpcMonSvc C:\WINDOWS\System32\WpcDesktopMonSvc.dll
15:08:35.0377 0x1a1c WpcMonSvc - ok
15:08:35.0439 0x1a1c [ B4F8ED117D5120009972A470AF4FA323, 61BF1500B54145B7CFB8461078A14735DB617B7EDA82AA5250CA0D10865ED865 ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
15:08:35.0642 0x1a1c WPDBusEnum - ok
15:08:35.0720 0x1a1c [ 4D5E154DE168E4A3B90F86A1966CE5D1, BA21BF38DD0AE9CC2017BC013053ABECB9CA3C20A6C39CDF8EE4B9C66E796438 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
15:08:35.0752 0x1a1c WpdUpFltr - ok
15:08:35.0814 0x1a1c [ 96142856700EC9BD02D2EA30208D1934, 1C8050DA53DFA42551BB4637632AA0110B06575CA1AAAFD94AE8AE37E815BE8E ] WpnService C:\WINDOWS\system32\WpnService.dll
15:08:35.0877 0x1a1c WpnService - ok
15:08:35.0939 0x1a1c [ 48FB3FFACCD2194CDD6B04CE84361C29, 3095991A288A977E203256B87AEDD6A4B3B54E4C0726FC47AD5BDD6DDBEB6151 ] WpnUserService C:\WINDOWS\System32\WpnUserService.dll
15:08:36.0002 0x1a1c WpnUserService - ok
15:08:36.0033 0x1a1c ws2ifsl - ok
15:08:36.0142 0x1a1c [ ADAD15298AD0D593FAF61BB89D538D73, 8E636F9BA12D8E53D6214D7F84687694F32E2EFABC2E22818A59D6D656207E11 ] wscsvc C:\WINDOWS\System32\wscsvc.dll
15:08:36.0174 0x1a1c wscsvc - ok
15:08:36.0174 0x1a1c WSearch - ok
15:08:36.0939 0x1a1c [ BE8D133E2E6EA2B90EC48BBCBBF77174, 4278D851EC5C6FBDDEBAD3F6DEB6D1347A3C8D09F5E9D36650D077D32C6675EE ] WTabletServicePro C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
15:08:37.0033 0x1a1c WTabletServicePro - ok
15:08:37.0064 0x1a1c wuauserv - ok
15:08:37.0174 0x1a1c [ 5A632AFC20B5BCF9D33A60AA3F2B85A6, 65F999083C7B78D0AA753B882A50D9EEFEA6A29D5A2EB7882F8B5177B47D1935 ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
15:08:37.0330 0x1a1c WudfPf - ok
15:08:37.0486 0x1a1c [ 6C3D8C8C991B62588C52336C5F60423C, 7388249315DFFF87045E55CE79CA1764E5E305C6F0418BD5077957B2E32F5569 ] WUDFRd C:\WINDOWS\system32\drivers\WudfRd.sys
15:08:37.0611 0x1a1c WUDFRd - ok
15:08:37.0642 0x1a1c [ 6C3D8C8C991B62588C52336C5F60423C, 7388249315DFFF87045E55CE79CA1764E5E305C6F0418BD5077957B2E32F5569 ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
15:08:37.0658 0x1a1c WUDFWpdFs - ok
15:08:37.0674 0x1a1c WwanSvc - ok
15:08:37.0892 0x1a1c [ 5F69A7DE728668CD6A80FCB0EB3B7EB2, D2A1CAE8B7D8B4B89F85023ADD16F00D7CCBC7B936CBF958073C329CF9732E28 ] XblAuthManager C:\WINDOWS\System32\XblAuthManager.dll
15:08:38.0205 0x1a1c XblAuthManager - ok
15:08:38.0252 0x1a1c [ 9AD74ADD767D1FF755F52E4F5778C641, 2FB3187FA1BE7B10C3E832D913267513F5616C4ADAE7DD466C9393EF8B5EE92E ] XblGameSave C:\WINDOWS\System32\XblGameSave.dll
15:08:38.0377 0x1a1c XblGameSave - ok
15:08:38.0549 0x1a1c [ A56ABFB5B8FC315A63B599B2273B7444, 576CDEF854DAB6C459E07439626074E1636F4AC0AA382EB299CB995356A56439 ] xboxgip C:\WINDOWS\System32\drivers\xboxgip.sys
15:08:38.0658 0x1a1c xboxgip - ok
15:08:38.0720 0x1a1c [ 9266191829E944E4E7F474C9A8FC3947, 4B7D64E596BFE2FCCA65FCFB4F024E68A9966D049530B33E75775ED9433BDE48 ] XboxGipSvc C:\WINDOWS\System32\XboxGipSvc.dll
15:08:38.0861 0x1a1c XboxGipSvc - ok
15:08:39.0080 0x1a1c [ 42DCAA6173FC1447A298637C16C973FC, 48BAA58EBC579812C3C6B1C1AD9DE4193B24167D3A708E96C49ADFFC58566568 ] XboxNetApiSvc C:\WINDOWS\system32\XboxNetApiSvc.dll
15:08:39.0174 0x1a1c XboxNetApiSvc - ok
15:08:39.0252 0x1a1c [ 30FE2A17957C4D5466FBE684F83730E6, 6FE0736320A3E44DA654B37D157DE0E04545288ABBD1E8DE0AD56D8558F8847E ] xinputhid C:\WINDOWS\System32\drivers\xinputhid.sys
15:08:39.0345 0x1a1c xinputhid - ok
15:08:39.0439 0x1a1c [ 21E13F2CB269DEFEAE5E1D09887D47BB, 543991CA8D1C65113DFF039B85AE3F9A87F503DAEC30F46929FD454BC57E5A91 ] ZAM_Guard C:\WINDOWS\System32\drivers\zamguard64.sys
15:08:39.0486 0x1a1c ZAM_Guard - ok
15:08:39.0486 0x1a1c ================ Scan global ===============================
15:08:39.0674 0x1a1c [ Global ] - ok
15:08:39.0674 0x1a1c ================ Scan MBR ==================================
15:08:39.0689 0x1a1c [ EA923EB0EC0060F1451E9AD7B5762CFE ] \Device\Harddisk0\DR0
15:08:40.0642 0x1a1c \Device\Harddisk0\DR0 - ok
15:08:40.0642 0x1a1c ================ Scan VBR ==================================
15:08:40.0674 0x1a1c [ AA3606474C1B2E91D6481FB63F3C9EEA ] \Device\Harddisk0\DR0\Partition1
15:08:40.0674 0x1a1c \Device\Harddisk0\DR0\Partition1 - ok
15:08:40.0689 0x1a1c [ FE0A5E522A1DA5C97EF49CF7020148E6 ] \Device\Harddisk0\DR0\Partition2
15:08:40.0705 0x1a1c \Device\Harddisk0\DR0\Partition2 - ok
15:08:40.0705 0x1a1c ================ Scan active images ========================
15:08:40.0705 0x1a1c [ 3BA076BB4839EF21100BE56F7109CACC, 0B86BBF5B2D1A1626448F619F0494438ED8CE92B79BC02EAE45B4D088B558B01 ] C:\Windows\System32\drivers\crashdmp.sys
15:08:40.0705 0x1a1c C:\Windows\System32\drivers\crashdmp.sys - ok
15:08:40.0720 0x1a1c [ 3D93A13387EE4F6B2D5B6E883E0EA770, 3E17935F169CE91BAF6EDE5832BCAA2AE0DBBBF9F2D70C1BD3A9DA516D47D99C ] C:\Windows\System32\drivers\ahcix64s.sys
15:08:40.0720 0x1a1c C:\Windows\System32\drivers\ahcix64s.sys - ok
15:08:40.0720 0x1a1c [ 0D27911CA375F7F522F019CE0497653A, B897311F8A3436B0ECC71206790BB018479748C61947652479A6E815EFFE415E ] C:\Windows\System32\drivers\Diskdump.sys
15:08:40.0720 0x1a1c C:\Windows\System32\drivers\Diskdump.sys - ok
15:08:40.0720 0x1a1c [ 0EB206A82C0CD88C8C53CA8891B491C2, 71BB86877D5A899DB3141C126F42C2FC21A91BD45552A2957B1CD7F3C1DB1FEF ] C:\Windows\System32\drivers\dumpfve.sys
15:08:40.0720 0x1a1c C:\Windows\System32\drivers\dumpfve.sys - ok
15:08:40.0736 0x1a1c [ D7FAEE38C867DFDAA626B886A7AEA89A, FB6C546B23C3225BC2E634DF5C043C9CADEBAEAC1E221C156A7E27B8CB896858 ] C:\Windows\System32\drivers\cdrom.sys
15:08:40.0736 0x1a1c C:\Windows\System32\drivers\cdrom.sys - ok
15:08:40.0736 0x1a1c [ D64F99DD8480935CDA61ADC66C81FE87, B6DB41FB3D863C53E92BAF60DD6CED702C29594F66673582DA986E7648080E3E ] C:\Windows\System32\drivers\filecrypt.sys
15:08:40.0736 0x1a1c C:\Windows\System32\drivers\filecrypt.sys - ok
15:08:40.0736 0x1a1c [ 218B208F753FC7411787D33C0E4D76BD, 336B7EDFC2DEA526DBC0FF3166DEB52836DAE421F9B9792434A70859D0A31685 ] C:\Windows\System32\drivers\tbs.sys
15:08:40.0736 0x1a1c C:\Windows\System32\drivers\tbs.sys - ok
15:08:40.0736 0x1a1c [ ECCCCEC473E9BB8778E6BD0DC5EDA2B8, 732C714DD5588E5CDACC6980044D2A66A28C42B0D5208AC2FFBAC5D64BE95568 ] C:\Windows\System32\drivers\null.sys
15:08:40.0736 0x1a1c C:\Windows\System32\drivers\null.sys - ok
15:08:40.0752 0x1a1c [ B02C098721C7A12C959E16850641F783, 93283B4DDBCC56B823DE99DF75302E2F418757ABDA3978EFC7541662145929C2 ] C:\Windows\System32\drivers\beep.sys
15:08:40.0752 0x1a1c C:\Windows\System32\drivers\beep.sys - ok
15:08:40.0752 0x1a1c [ E09D70A934EB943ACCD278D904054592, 913CDDAFC914A1AB24F4C1B064FD7173658B67577A6E3DC4E8BB75BAE765E8DE ] C:\Windows\System32\drivers\dxgkrnl.sys
15:08:40.0752 0x1a1c C:\Windows\System32\drivers\dxgkrnl.sys - ok
15:08:40.0752 0x1a1c [ DC3EEF7AC28A107FABC987A198433D30, B7973547FF1746FB767AD7F34961E773CA12B81CD1DB7A701BC2A9171EBB51F9 ] C:\Windows\System32\drivers\watchdog.sys
15:08:40.0752 0x1a1c C:\Windows\System32\drivers\watchdog.sys - ok
15:08:40.0767 0x1a1c [ 5D97E67BAA0EE0AA78EDDE8BE78344B6, 61CF7558F62B88339A2202EFF3B9DCC12950348E279D586DEEB2D6113B59C12F ] C:\Windows\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_5103ac179273be89\BasicDisplay.sys
15:08:40.0767 0x1a1c C:\Windows\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_5103ac179273be89\BasicDisplay.sys - ok
15:08:40.0767 0x1a1c [ 5DA606023922A06B1C4160761EDF5AF3, 0E11FB7E192010D92C18D3A7A4BEE947B65099E05D92C94415785513FE284365 ] C:\Windows\System32\DriverStore\FileRepository\basicrender.inf_amd64_0b8d03c3bc0e7fd9\BasicRender.sys
15:08:40.0767 0x1a1c C:\Windows\System32\DriverStore\FileRepository\basicrender.inf_amd64_0b8d03c3bc0e7fd9\BasicRender.sys - ok
15:08:40.0767 0x1a1c [ 5E10BB1772C8E21C9B2ECD99BF3BF997, 55C1F20F2FB3B1775B9D24607096EAEAC0B9A55BDA76FEB84BC7E8080BB15A0A ] C:\Windows\System32\drivers\msfs.sys
15:08:40.0767 0x1a1c C:\Windows\System32\drivers\msfs.sys - ok
15:08:40.0783 0x1a1c [ CAA1D0E95B7F11811141E17EC7D1E45F, 917096E25C8D2DCCB6562085CC15558F8B9B4A1F6FE001DC78F0325C0F3A7E6F ] C:\Windows\System32\drivers\npfs.sys
15:08:40.0783 0x1a1c C:\Windows\System32\drivers\npfs.sys - ok
15:08:40.0783 0x1a1c [ 10E10E26125C35FEE359B463B3AD30B6, 5D025C928A8CC8B0D29B2B7698BBEDEAD6C23D3E2D1C82EC011859BA7456060A ] C:\Windows\System32\drivers\tdi.sys
15:08:40.0783 0x1a1c C:\Windows\System32\drivers\tdi.sys - ok
15:08:40.0783 0x1a1c [ E5CE3388A455ED80480EAE3A8ADD53A9, 91DCAD9EAC504C893FDB73ECD7AF38C1A40F295D4A388E91D74F3F6B7EB4FBAF ] C:\Windows\System32\drivers\tdx.sys
15:08:40.0783 0x1a1c C:\Windows\System32\drivers\tdx.sys - ok
15:08:40.0783 0x1a1c [ 717FC248242BDCBB3B8159B8098BD34F, EAF8A0E9418E225EC52CC5920EC712E20DD77C93A75B99B79DB4C38879CF2925 ] C:\Windows\System32\drivers\netbt.sys
15:08:40.0783 0x1a1c C:\Windows\System32\drivers\netbt.sys - ok
15:08:40.0799 0x1a1c [ 5194BF2FEDA9F6BE6F7691EDA1F910DE, C4DE61BE40BF51F07FE79E840BBF57A7ACBE4D0E14C5FC914A03640FEB58B725 ] C:\Windows\System32\drivers\afunix.sys
15:08:40.0799 0x1a1c C:\Windows\System32\drivers\afunix.sys - ok
15:08:40.0799 0x1a1c [ 5AFE650194C07BE81CB5A01B72549A1B, 21BBA202DF36B578416BD9F3A461F838F5C5B0AF2B3D5CBEE55C6BA99021E2F7 ] C:\Windows\System32\drivers\afd.sys
15:08:40.0799 0x1a1c C:\Windows\System32\drivers\afd.sys - ok
15:08:40.0799 0x1a1c [ 510865271FDA73ACE622A4E74CEDC32E, 525AAA9844C22DEAD5CD195C931CB67C32DFE6D4F61C14520D8E69D01E2723C5 ] C:\Windows\System32\drivers\vwififlt.sys
15:08:40.0799 0x1a1c C:\Windows\System32\drivers\vwififlt.sys - ok
15:08:40.0814 0x1a1c [ 14D167238A8C42EA8E951A5A956DEF42, 91C1406818442D9C3C4CEF8C908DEFD49C213D86489782722B5E17A90F8B2136 ] C:\Windows\System32\drivers\pacer.sys
15:08:40.0814 0x1a1c C:\Windows\System32\drivers\pacer.sys - ok
15:08:40.0814 0x1a1c [ 1680BBF697C0F93857131292C134A99F, DEFC40CC24AF488E404E40E908578F4CF8EFA928C05EEC54E7610C43FC79091E ] C:\Windows\System32\drivers\netbios.sys
15:08:40.0814 0x1a1c C:\Windows\System32\drivers\netbios.sys - ok
15:08:40.0814 0x1a1c [ 59D0951107DFC90B37FEFD24ACFB631C, 7B8DB144D0C97920699A5BF0BB3EE13BD73C9A5D613A6F56DB5A4111A5AE5C7B ] C:\Windows\System32\drivers\rdbss.sys
15:08:40.0814 0x1a1c C:\Windows\System32\drivers\rdbss.sys - ok
15:08:40.0814 0x1a1c [ 21E13F2CB269DEFEAE5E1D09887D47BB, 543991CA8D1C65113DFF039B85AE3F9A87F503DAEC30F46929FD454BC57E5A91 ] C:\Windows\System32\drivers\zamguard64.sys
15:08:40.0814 0x1a1c C:\Windows\System32\drivers\zamguard64.sys - ok
15:08:40.0830 0x1a1c [ 157406548DD44E9391B384C3EFAE9299, 9BCBE3515529B8B995665486F3F15D5223E494DE58147CC0627AB4EE506CA40A ] C:\Windows\System32\drivers\VBoxDrv.sys
15:08:40.0830 0x1a1c C:\Windows\System32\drivers\VBoxDrv.sys - ok
15:08:40.0830 0x1a1c [ 63084E96C5FE3C37AA157990299049D6, 7EAF78C054786F102394FB5692D3A7D864DDD03B814B97CD469D1343AFBEDAE8 ] C:\Windows\System32\drivers\VBoxUSBMon.sys
15:08:40.0830 0x1a1c C:\Windows\System32\drivers\VBoxUSBMon.sys - ok
15:08:40.0830 0x1a1c [ 6EE73A7918BC1EC7EFAC4A32DCFC8B13, 63F2057BB327C2FA3DD1B06B09E66F61F991A6D3DCB23AC8908F8E677A39232B ] C:\Windows\System32\drivers\mssmbios.sys
15:08:40.0830 0x1a1c C:\Windows\System32\drivers\mssmbios.sys - ok
15:08:40.0845 0x1a1c [ 720633286CA7E9E1FD1456338317AD8A, 9B89EE13A9D6B1CC36B0ECF874DCFB0D40222414ADF7A8589C4EDD978210A6ED ] C:\Windows\System32\drivers\npsvctrig.sys
15:08:40.0845 0x1a1c C:\Windows\System32\drivers\npsvctrig.sys - ok
15:08:40.0845 0x1a1c [ 7782D0BEEF87BFF841B5684E3FBCAC1B, EA0A9643B158CB56D2DE74AD61B49E82E0C71E96393797B891FA5E5985E0E120 ] C:\Windows\System32\drivers\nsiproxy.sys
15:08:40.0845 0x1a1c C:\Windows\System32\drivers\nsiproxy.sys - ok
15:08:40.0845 0x1a1c [ FB0B8778A55ED71728D28E9B3889A11E, CDCBDCB961632C003A6B449C48BF94AFB265CBBD38C50FB51F476A2149C16002 ] C:\Windows\System32\drivers\gpuenergydrv.sys
15:08:40.0845 0x1a1c C:\Windows\System32\drivers\gpuenergydrv.sys - ok
15:08:40.0845 0x1a1c [ C7E85EEDBC05491FF1CDD3ACA98FA1DE, 00B5AA11D450F1BC58AD94E583B281747BA5A3106345309A5E4CBCA5EA139BE6 ] C:\Windows\System32\drivers\dfsc.sys
15:08:40.0845 0x1a1c C:\Windows\System32\drivers\dfsc.sys - ok
15:08:40.0861 0x1a1c [ 567EBEC0D1127D2E48A68273DF9049B2, 26E9BE8D6F381C56CDD6870FB1ACF28808BE59B0AFF0413CD1961FE8236C87DA ] C:\Windows\System32\drivers\dam.sys
15:08:40.0861 0x1a1c C:\Windows\System32\drivers\dam.sys - ok
15:08:40.0861 0x1a1c [ E42AF3C735EFBAB61D00B5101190ACE8, A2088B36CCF6E28E072C471E635CAB153F6D889B41E25642F8943C1A32A54F28 ] C:\Windows\System32\drivers\bam.sys
15:08:40.0861 0x1a1c C:\Windows\System32\drivers\bam.sys - ok
15:08:40.0861 0x1a1c [ AE0B2FAC90C4DF325F24A7BE70CE5609, 9089D3F30F23DA2D031817CD60615CDC6036BA52E1B0F7656939112AD8C62EB5 ] C:\Windows\System32\drivers\ahcache.sys
15:08:40.0861 0x1a1c C:\Windows\System32\drivers\ahcache.sys - ok
15:08:40.0877 0x1a1c [ EFF6A344D0633A443C677E6CFD4CAE39, EB517CB1B820ADC06016DE7257199E24CC5259C13D9722400D04AECBD54D48D1 ] C:\Windows\System32\drivers\Vid.sys
15:08:40.0877 0x1a1c C:\Windows\System32\drivers\Vid.sys - ok
15:08:40.0877 0x1a1c [ D6A5065C892CC1A72826EEA5C322A2D6, E779A4F3C7F627FF62EA8E1FB1C5148281E95128D24A312B07B732BE52836AAF ] C:\Windows\System32\drivers\winhvr.sys
15:08:40.0877 0x1a1c C:\Windows\System32\drivers\winhvr.sys - ok
15:08:40.0877 0x1a1c [ 7841121E05EE3D540266092A6E86AE77, 41B0B102769C73694E1BF9D45E59806638591EE9B42F2E1DBF3CFB50D61B5EAD ] C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_e4d35af746093dc3\CompositeBus.sys
15:08:40.0877 0x1a1c C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_e4d35af746093dc3\CompositeBus.sys - ok
15:08:40.0877 0x1a1c [ 92DBC56CF0C981AAAAADDEAA6A563E39, E4E13D6992D2AACF39461F55D9FD45FE2CC7A4445CA1B72639BFBB716CEBC460 ] C:\Windows\System32\drivers\kdnic.sys
15:08:40.0877 0x1a1c C:\Windows\System32\drivers\kdnic.sys - ok
15:08:40.0892 0x1a1c [ 07B0CD801BBF164F36DA3EE9F25C721D, A8844F880DEE54ADD0CC19486556848A24E7F734AAB9BFD392C0DD5AFF0909DC ] C:\Windows\System32\drivers\umbus.sys
15:08:40.0892 0x1a1c C:\Windows\System32\drivers\umbus.sys - ok
15:08:40.0892 0x1a1c [ BB5A205BFB6AC39CE965322B27D07915, 246917DBE85BAAC5C2B26AFAB6F9127F6847DFD6D95C4BE702F96030C7C03E04 ] C:\Windows\System32\drivers\amdppm.sys
15:08:40.0892 0x1a1c C:\Windows\System32\drivers\amdppm.sys - ok
15:08:40.0892 0x1a1c [ 17BA5C907E14947574CBB788F4CEB85F, EAA3DBF436637C58666A91905E388287FC54334EBB2589A00727EB09AC4870E3 ] C:\Windows\System32\drivers\atikmpag.sys
15:08:40.0892 0x1a1c C:\Windows\System32\drivers\atikmpag.sys - ok
15:08:40.0908 0x1a1c [ F992CE57F4D2A2F988135A1F87337EBC, BBABDDBA2A0CEA39C843D084337ED594C4EF1735D08744332BC8C3925CCBE83F ] C:\Windows\System32\drivers\atikmdag.sys
15:08:40.0908 0x1a1c C:\Windows\System32\drivers\atikmdag.sys - ok
15:08:40.0908 0x1a1c [ 9A03DD73B5539B788AD243AF07E7305B, 5B58F50147A78AB76127030D8AD745AC2EC1BDE2487BF379430A6E8A79A20CC2 ] C:\Windows\System32\ntdll.dll
15:08:40.0908 0x1a1c C:\Windows\System32\ntdll.dll - ok
15:08:40.0908 0x1a1c [ 03CE2BA7D96391AEA2BFD935D243260F, 7AA02AC1227E1C9817340ED06CB50CAF3F93BE476BC9D475A6B3A6F80B6743BE ] C:\Windows\System32\smss.exe
15:08:40.0908 0x1a1c C:\Windows\System32\smss.exe - ok
15:08:40.0924 0x1a1c [ BC779BE4E60B7D8DE754804DB622F6F8, 0FC58E8B65CCDF8EC005FE8F51C61BDBFCA053131647D576956DD2F2E2BB87F1 ] C:\Windows\System32\drivers\drmk.sys
15:08:40.0924 0x1a1c C:\Windows\System32\drivers\drmk.sys - ok
15:08:40.0924 0x1a1c [ 41E3E18177FBEADE3A4EDE153C4F8160, 12F71CACA6E69B644B0CBD3E53DF40D93D6A971EE5374AA10F08D281A093A25F ] C:\Windows\System32\drivers\ks.sys
15:08:40.0924 0x1a1c C:\Windows\System32\drivers\ks.sys - ok
15:08:40.0924 0x1a1c [ 855678C1760AE7DCE0CF2BAFD989176E, D16AB9065E1F23B8715E62CD4677369C6A696E261771E42240E0D178A9C31F0C ] C:\Windows\System32\drivers\hdaudbus.sys
15:08:40.0924 0x1a1c C:\Windows\System32\drivers\hdaudbus.sys - ok
15:08:40.0924 0x1a1c [ 0FBBB090A5CA64A32BB05D58CB872F36, 8FCAE69AE6F76903AC9183D872FF26A9B209DDA0D0CBD6BB3A36683A4AA943B4 ] C:\Windows\System32\drivers\portcls.sys
15:08:40.0924 0x1a1c C:\Windows\System32\drivers\portcls.sys - ok
15:08:40.0939 0x1a1c [ A3F8BF8193D36C4C8CEF20AFF28411E9, E6C6321820AFB4D3ABF2DAF894EFE0E8FC308F5DE6F9FE2FFE56F89A319C8C0E ] C:\Windows\System32\drivers\netr28x.sys
15:08:40.0939 0x1a1c C:\Windows\System32\drivers\netr28x.sys - ok
15:08:40.0939 0x1a1c [ F978AE0389352BEA2EA921600AF64C16, 183E6EC489331E21CDFA16CE4BE94489DE6A3F12F6823112206BE4E807B99558 ] C:\Windows\System32\drivers\vwifibus.sys
15:08:40.0939 0x1a1c C:\Windows\System32\drivers\vwifibus.sys - ok
15:08:40.0939 0x1a1c [ 7E29520C0B9E3E4039C8D2946557CF3D, 371F93A934B0274D0B30E846C7ED21C750E485FA16B45AEFF1310B178FDFA4DE ] C:\Windows\System32\drivers\rt640x64.sys
15:08:40.0939 0x1a1c C:\Windows\System32\drivers\rt640x64.sys - ok
15:08:40.0939 0x1a1c [ 8075806A5A0C495CE6BA57C60A88A72D, 8628522EB9139580C126EBD3EC206D635E05434DDF626237D4B72FD371C58F36 ] C:\Windows\System32\drivers\usbport.sys
15:08:40.0955 0x1a1c C:\Windows\System32\drivers\usbport.sys - ok
15:08:40.0955 0x1a1c [ 9B0EA8FC801305EB23E8611785BBE847, C4C20D33A758DFD5D22675C50BA2C4A156C587357362A2BBC90BC26C59E491D3 ] C:\Windows\System32\drivers\1394ohci.sys
15:08:40.0955 0x1a1c C:\Windows\System32\drivers\1394ohci.sys - ok
15:08:40.0955 0x1a1c [ 4CABA64DF4B1F3E772E70FD4FAE6CA0C, D9C414C26CFA69E18A3996573B8A40714EF7433C3634BF7DD8140BFA9872A07D ] C:\Windows\System32\drivers\usbehci.sys
15:08:40.0955 0x1a1c C:\Windows\System32\drivers\usbehci.sys - ok
15:08:40.0955 0x1a1c [ DCEB4F28AE40D0D9B80177C2072545D4, 120B958CB295F629ABD8276D8D71347734976053B35E1AD7B3B005BC3AD1C6AF ] C:\Windows\System32\drivers\usbohci.sys
15:08:40.0955 0x1a1c C:\Windows\System32\drivers\usbohci.sys - ok
15:08:40.0970 0x1a1c [ 69E1E41C47B2B11C53A6193E49ADEF11, 0DEB21F5A40C71217B0C1717E19C0FC7D49A10B363B9ABE1BC56F6F77505F16F ] C:\Windows\System32\drivers\NdisVirtualBus.sys
15:08:40.0970 0x1a1c C:\Windows\System32\drivers\NdisVirtualBus.sys - ok
15:08:40.0970 0x1a1c [ 8943C52909164A64195645C618C276BE, 8FF7B41A68CD4E2D6C5553E224C59C8F5A6C20B2508940D5F0E8E64EA85051AC ] C:\Windows\System32\drivers\wmiacpi.sys
15:08:40.0970 0x1a1c C:\Windows\System32\drivers\wmiacpi.sys - ok
15:08:40.0970 0x1a1c [ B8ACABC8939CB50047C2BF0272B5156C, 36D8E38C6E5BE6CCB235E8C38E54ECDCE377E6E96895C13F1BBEDB4441A2BC2B ] C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_31f554b660026323\swenum.sys
15:08:40.0970 0x1a1c C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_31f554b660026323\swenum.sys - ok
15:08:40.0970 0x1a1c [ A6F294B38F3DFB67D6B6E1D1E60A402A, 11C51B35DB2A3510258F3B722C12326BF068360CFA1E81FF552BA0BD19DE38E8 ] C:\Windows\System32\drivers\LGBusEnum.sys
15:08:40.0970 0x1a1c C:\Windows\System32\drivers\LGBusEnum.sys - ok
15:08:40.0986 0x1a1c [ 2A9F60E6531F42B31874618743037719, BFD61AD03ADEF69421ECB07820EDB79D425048EC01A65A0D1E8A4527699196DC ] C:\Windows\System32\drivers\LGJoyXlCore.sys
15:08:40.0986 0x1a1c C:\Windows\System32\drivers\LGJoyXlCore.sys - ok
15:08:40.0986 0x1a1c [ 1B0A56B28A0DBAAE729F51C50511A614, E2FAFBCD459A49ECAEC72A45BDC9DCD1376EA38AAF5CDBFF16F3BBFD8871A97D ] C:\Windows\System32\GdiPlus.dll
15:08:40.0986 0x1a1c C:\Windows\System32\GdiPlus.dll - ok
15:08:40.0986 0x1a1c [ 76C18F3B4EB5BC611FA7F249CF676911, 2EB981688FCCB1F6ABF0C4300DFD7CBB495899A9D0461F91C5054AF173AC34F3 ] C:\Windows\System32\drivers\rdpbus.sys
15:08:40.0986 0x1a1c C:\Windows\System32\drivers\rdpbus.sys - ok
15:08:41.0002 0x1a1c [ 180FAF69B9AD13BA08E20BE87544D606, 9D2ACDBFCCF2B70C4E69114D73D33189037A298FEF80F2ADF841601649CAE6F7 ] C:\Windows\System32\shell32.dll
15:08:41.0002 0x1a1c C:\Windows\System32\shell32.dll - ok
15:08:41.0002 0x1a1c [ 12112113BDFAF0CC03517604440217D5, C5D4F3DFA14DEABD6A845E6F0B04C39A9A539C1A4D6C71B25943EB9BF9C9A3F5 ] C:\Windows\System32\clbcatq.dll
15:08:41.0002 0x1a1c C:\Windows\System32\clbcatq.dll - ok
15:08:41.0002 0x1a1c [ 14E4FCFCE2465FC30B2B58A072568400, CFDDAFC19A8C7CB0DF0848479CEA155B35258755AC9FCB7A71370BDA5CF7757E ] C:\Windows\System32\wow64.dll
15:08:41.0002 0x1a1c C:\Windows\System32\wow64.dll - ok
15:08:41.0017 0x1a1c [ BF0F47FB6368A2275816F8823E16E414, FFAF105094BA954FA9B72BB0526135CC386314D9ACC12000098FB34A8736747A ] C:\Windows\System32\drivers\usbd.sys
15:08:41.0017 0x1a1c C:\Windows\System32\drivers\usbd.sys - ok
15:08:41.0017 0x1a1c [ 04A34578BC8A70B5698D1D950C4F22FB, 183FB5DB96F97498AF6E89A4B7129582C5F2DCA1AD0C17ED114F758B4518D187 ] C:\Windows\System32\drivers\usbhub.sys
15:08:41.0017 0x1a1c C:\Windows\System32\drivers\usbhub.sys - ok
15:08:41.0017 0x1a1c [ 1BB728819E20BA1B951682EE4ABF5034, 8BADF8E4E018394A9003BE5428A7420A534E7265CC6F545AF1EF2AFB532ED4E4 ] C:\Windows\System32\combase.dll
15:08:41.0017 0x1a1c C:\Windows\System32\combase.dll - ok
15:08:41.0017 0x1a1c [ 4E68997189FD4655EE566A1C5DD74419, 28176CB9C7E4436BDD29C5CAACB82EF981AEA4DC5780B46A272FD12A96720B97 ] C:\Windows\System32\nsi.dll
15:08:41.0017 0x1a1c C:\Windows\System32\nsi.dll - ok
15:08:41.0033 0x1a1c [ CEDD2C232AA5F18C7917497361E76F61, 1690C0AF6E6AA9925AC75DA610053AEB50F060A872A702F8F97AF3B5B79CFA7B ] C:\Windows\System32\sechost.dll
15:08:41.0033 0x1a1c C:\Windows\System32\sechost.dll - ok
15:08:41.0033 0x1a1c [ CC6C389834B7835AC734C05AAB8411C4, 8F8CA854C5F45E5F829125B6F39C3D03BDB55D9FB0896B526FB89E7D3513C9C1 ] C:\Windows\System32\msctf.dll
15:08:41.0033 0x1a1c C:\Windows\System32\msctf.dll - ok
15:08:41.0033 0x1a1c [ 68ABA37C3B6EB6E27BCE6493AD690396, F1A9EE9CC8C07289C2214F734B1566F9783A6E3CC93AE371B3280AA883F7ECC3 ] C:\Windows\System32\imagehlp.dll
15:08:41.0033 0x1a1c C:\Windows\System32\imagehlp.dll - ok
15:08:41.0049 0x1a1c [ A5398A699E617D6F6440E3EEF9060507, F7378B11FD894AC1931F8E49AEEBEC341F6DC02D1A08A758F2EE93C305D46892 ] C:\Windows\System32\Wldap32.dll
15:08:41.0049 0x1a1c C:\Windows\System32\Wldap32.dll - ok
15:08:41.0049 0x1a1c [ D77AFFFFADCE023AA3B8E9AAD2759A99, BEAD3AC7A1903269DB4D0C06FD5C62396BF5724D3F12BD266C24E732F643FBBD ] C:\Windows\System32\ole32.dll
15:08:41.0049 0x1a1c C:\Windows\System32\ole32.dll - ok
15:08:41.0049 0x1a1c [ CABC32218756D2FE73DA9D343D676729, 462083FAF17D701F8F337B73F09A60A8CB0643AED8B050873B45B73BCA4D7486 ] C:\Windows\System32\SHCore.dll
15:08:41.0049 0x1a1c C:\Windows\System32\SHCore.dll - ok
15:08:41.0049 0x1a1c [ 14FBF8BA6DF05FCDB75F5E981C2B031A, FAE7F170429952777D45641E68F4E0B8E5CE31A38159179CB17B2CB84D8E63F0 ] C:\Windows\System32\advapi32.dll
15:08:41.0049 0x1a1c C:\Windows\System32\advapi32.dll - ok
15:08:41.0064 0x1a1c [ FD9A5BCC3AFB02E87668B749546B6229, 4BE969A11CEE8033F40EDE7E06A5904B328D3FC1842855C0DB38D5EEF458219C ] C:\Windows\System32\drivers\AtihdWT6.sys
15:08:41.0064 0x1a1c C:\Windows\System32\drivers\AtihdWT6.sys - ok
15:08:41.0064 0x1a1c [ 7E3BEDEF17FFC3DA9E2E306138C5250F, D717CE30EE9E1FAAA59837E0755ED57FD76629AA28E241C23269BBBFC430EF0E ] C:\Windows\System32\drivers\ksthunk.sys
15:08:41.0064 0x1a1c C:\Windows\System32\drivers\ksthunk.sys - ok
15:08:41.0064 0x1a1c [ 6F432A26C3998A0BE71916955F0F29B8, F3E3BDF50B9E54A1449BE0DA21600C371082804A5EEB937A6BC8D97A1F73781F ] C:\Windows\System32\coml2.dll
15:08:41.0064 0x1a1c C:\Windows\System32\coml2.dll - ok
15:08:41.0064 0x1a1c [ C2F868881D48A568B525255F084EF063, EFB1704AE223CF886EDA5F1411C8178EDE4B5E1F7EE373E3DA89A6EA1A57D91D ] C:\Windows\System32\drivers\RTKVHD64.sys
15:08:41.0064 0x1a1c C:\Windows\System32\drivers\RTKVHD64.sys - ok
15:08:41.0080 0x1a1c [ D385B6882BFE47BEDF2A2B9547C91A16, A4E40C348031047B966C18F2761EE0460A226905721D2F29327528CB2B213CB1 ] C:\Windows\System32\kernel32.dll
15:08:41.0080 0x1a1c C:\Windows\System32\kernel32.dll - ok
15:08:41.0080 0x1a1c [ 00B22901A8C6D1C67DD7B0E2D63763AB, 9E349F813AF29D06EAB70B2D5C547762A101E0C6924C4FE69D52E596E0EE44F7 ] C:\Windows\System32\gdi32.dll
15:08:41.0080 0x1a1c C:\Windows\System32\gdi32.dll - ok
15:08:41.0080 0x1a1c [ 07A2782251672AC335122A8BD0F498F1, 10B640AEEB310263D5418F65EC05E6127F2C224C0AC837E71816D03DB207C510 ] C:\Windows\System32\psapi.dll
15:08:41.0080 0x1a1c C:\Windows\System32\psapi.dll - ok
15:08:41.0095 0x1a1c [ 453866E559F1E327981D2404A107225C, F2086B3BA8E8DB1DEE9919B2BCD768C93C71CADDEF78041848939D661B865C14 ] C:\Windows\System32\difxapi.dll
15:08:41.0095 0x1a1c C:\Windows\System32\difxapi.dll - ok
15:08:41.0095 0x1a1c [ A7777BE61702923E539E5EAA58A44240, 74656439887E9D377BA5F1FBC8E0D71795B5A59EC190DE014F83D5C3D20CF308 ] C:\Windows\System32\rpcrt4.dll
15:08:41.0095 0x1a1c C:\Windows\System32\rpcrt4.dll - ok
15:08:41.0095 0x1a1c [ C606984BA4C7201B6DA39F17B548DB79, DC4193318D2AAFC20C3DF8E5848800426836AAB78A831AB7915EE7AEB4030E3B ] C:\Windows\System32\normaliz.dll
15:08:41.0095 0x1a1c C:\Windows\System32\normaliz.dll - ok
15:08:41.0095 0x1a1c [ 65DF7E29BE633FFE01AE506F5C730B21, 6D66A6E08981F714B05A2140EFA775C36E38B13BA8987201940C6133717E116A ] C:\Windows\System32\setupapi.dll
15:08:41.0095 0x1a1c C:\Windows\System32\setupapi.dll - ok
15:08:41.0111 0x1a1c [ 076BE40E22F302758A4E37E8C2F2CD57, 16F22C87393DBEAFABA7F7C5239EC12AF9E4FA99DDFCE8B2A8240C598AB4249E ] C:\Windows\System32\oleaut32.dll
15:08:41.0111 0x1a1c C:\Windows\System32\oleaut32.dll - ok
15:08:41.0111 0x1a1c [ 9B2B0E1D4965C3C6C9E699A9F6738FFB, 23008F528D0039B3590E54246A9A332F66EF691E207B1221F8C2F0B19F9B85ED ] C:\Windows\System32\msvcrt.dll
15:08:41.0111 0x1a1c C:\Windows\System32\msvcrt.dll - ok
15:08:41.0111 0x1a1c [ 34DCFB57777F1FA6FFDA6E266A3D6D93, B299F2BEF08CD1404D79B166AA2DAD42396CB78B21E91536691886F3274A3356 ] C:\Windows\System32\comdlg32.dll
15:08:41.0111 0x1a1c C:\Windows\System32\comdlg32.dll - ok
15:08:41.0127 0x1a1c [ F4F4B38D0ECB0EA465DFA1244BE8D7CD, A9809B5ED6920B8B28ABF0F7B3904AAA19A6EA661F10E5C66A952F5D74516CEB ] C:\Windows\System32\wow64cpu.dll
15:08:41.0127 0x1a1c C:\Windows\System32\wow64cpu.dll - ok
15:08:41.0127 0x1a1c [ 7443BB4055522A25CC73B7AC18F826FC, ED88BF9360F25B96C6BF5E5E54B7959FFF07B11DC75A4F036F21AB67B596672A ] C:\Windows\System32\ws2_32.dll
15:08:41.0127 0x1a1c C:\Windows\System32\ws2_32.dll - ok
15:08:41.0127 0x1a1c [ A5CF51E5938BC3B36F035678EADFFAD3, 78973633CEAC4EFC9273534ABA95C45FCC2120FDC76DAE23A6A44D169EEDEAEA ] C:\Windows\System32\imm32.dll
15:08:41.0127 0x1a1c C:\Windows\System32\imm32.dll - ok
15:08:41.0127 0x1a1c [ 137720CDB7208AA880CD5C749C2D4B11, 58051CF5CB419BBA3804B6D69240BA22C3B0AA8259FDD42BDC53623B747ED1F9 ] C:\Windows\System32\wow64win.dll
15:08:41.0127 0x1a1c C:\Windows\System32\wow64win.dll - ok
15:08:41.0142 0x1a1c [ ECA7D40680C32FD41FB7A1B30AA5E114, F9BA12ACCE850AFFC6C9F1EC81568A57DE50C0B7317B4C4C3955A0CA8F707B25 ] C:\Windows\System32\shlwapi.dll
15:08:41.0142 0x1a1c C:\Windows\System32\shlwapi.dll - ok
15:08:41.0142 0x1a1c [ F9068469C512AB3B8EE0306A1B40CB56, DA784E3F5B59C3CADDCCBB61CD1C206B5747223E4E02FD73BC0E8D0AA0268906 ] C:\Windows\System32\user32.dll
15:08:41.0142 0x1a1c C:\Windows\System32\user32.dll - ok
15:08:41.0142 0x1a1c [ 65D63D5F9A9D6988C9E3DB4862D8C1E0, 208FBE0136AEBC989748B526A4BB0C656B73A10E46EF640A93E3AB8F02358B98 ] C:\Windows\System32\win32u.dll
15:08:41.0142 0x1a1c C:\Windows\System32\win32u.dll - ok
15:08:41.0142 0x1a1c [ 96DA7F379B07DC2496D48D55CF3C0DD8, 045679986C4ECB5D3148B3303076EDF2FEC47F52C775F9F077106830426DC6D0 ] C:\Windows\System32\bcryptprimitives.dll
15:08:41.0142 0x1a1c C:\Windows\System32\bcryptprimitives.dll - ok
15:08:41.0158 0x1a1c [ 02411B2016D3A537759143033C2D3AA6, DF1C3927C42A1C7B8B5EA009783BB3FCB1FF48FC8542A1EF5D18ECAF78AD5D3E ] C:\Windows\System32\cfgmgr32.dll
15:08:41.0158 0x1a1c C:\Windows\System32\cfgmgr32.dll - ok
15:08:41.0158 0x1a1c [ 1496601A77E4F569733C33F5F27DDD53, E2267734B6FF4A08D6C619B9E9D173B9ACD46681602D88979A4866A4CA63DD46 ] C:\Windows\System32\ucrtbase.dll
15:08:41.0158 0x1a1c C:\Windows\System32\ucrtbase.dll - ok
15:08:41.0158 0x1a1c [ 60AF5455C0A180E95DAD7E851D7407DB, 4682B99FD63617241BDE436554C5B9D2BA0247BE4ED958EF05785D1A12E50E01 ] C:\Windows\System32\bcrypt.dll
15:08:41.0158 0x1a1c C:\Windows\System32\bcrypt.dll - ok
15:08:41.0174 0x1a1c [ B3DDDAD6989A581853CAA3D380198EDD, E8D763341FF4395CD5E3B503490F53B3349A122148C01ED5AA1450528AD4931E ] C:\Windows\System32\msvcp_win.dll
15:08:41.0174 0x1a1c C:\Windows\System32\msvcp_win.dll - ok
15:08:41.0174 0x1a1c [ F90316FE094F4AB2FEF98CA624A04654, 78D6A1CD068F5DE2A3DE7F83A975667FA332AA65EC59DD5991CEA1D021BD47C5 ] C:\Windows\System32\cryptsp.dll
15:08:41.0174 0x1a1c C:\Windows\System32\cryptsp.dll - ok
15:08:41.0174 0x1a1c [ F48F301256CCAE86210FD3CD5EF4220A, B547E08FD901CAD611C12DB4DF8E1C5E49A6D52942E71B83897D17D2AA438481 ] C:\Windows\System32\gdi32full.dll
15:08:41.0174 0x1a1c C:\Windows\System32\gdi32full.dll - ok
15:08:41.0174 0x1a1c [ B485EB4CB562840A434112D7F89D9106, A19845AB7773F5A5F9AFC16F3CF3658E86009FA576B0E5E0AB2A536AAA4103B2 ] C:\Windows\System32\wintrust.dll
15:08:41.0174 0x1a1c C:\Windows\System32\wintrust.dll - ok
15:08:41.0189 0x1a1c [ 1EF329663D4102B61849CDF42E6A2370, AC56B7287E8D29ECE175F671AE0B4BFD2B444CD59BDA8499A063A2E3F6997247 ] C:\Windows\System32\windows.storage.dll
15:08:41.0189 0x1a1c C:\Windows\System32\windows.storage.dll - ok
15:08:41.0189 0x1a1c [ B116EC25D7AD2EDD602A6EDEA8D7681C, 6E1D3D27E58CB7F770550C9E732B7DDBAA2ADDE8E8A56107FD68E20C42FEE8D9 ] C:\Windows\System32\drivers\usbccgp.sys
15:08:41.0189 0x1a1c C:\Windows\System32\drivers\usbccgp.sys - ok
15:08:41.0189 0x1a1c [ C478E26761EEF315C298F4986E58C818, 12AE93F2B5CB784E9DCA1958AB75900A7A879EDCEE7F33959BCF1772ECD4F718 ] C:\Windows\System32\crypt32.dll
15:08:41.0189 0x1a1c C:\Windows\System32\crypt32.dll - ok
15:08:41.0189 0x1a1c [ 17619390692C442BD0EC85374E702A18, EC7FC981C222E8037048F5D1410D14E6427FCC7C66639A2721E4BDDE7745C69E ] C:\Windows\System32\drivers\hidclass.sys
15:08:41.0189 0x1a1c C:\Windows\System32\drivers\hidclass.sys - ok
15:08:41.0205 0x1a1c [ 188E1969285094EDF3506948F1DE001E, B4E3B3ED2198CA40BC8DBDF7C5B9BE71F4DD694536BDA866E52C4F16B8042CE5 ] C:\Windows\System32\drivers\hidparse.sys
15:08:41.0205 0x1a1c C:\Windows\System32\drivers\hidparse.sys - ok
15:08:41.0205 0x1a1c [ 69EDC8900C69E2BBB13D2FD24B3A085C, EA95EA30FEE4788C3D41C723597519B380C7D3E71C89E19DB9F53944E4F4118C ] C:\Windows\System32\drivers\hidusb.sys
15:08:41.0205 0x1a1c C:\Windows\System32\drivers\hidusb.sys - ok
15:08:41.0205 0x1a1c [ 46708375D885CDD367CB6027A515D0E0, E36FF90109B18FC0F5549885134DC5D787DD6246F88C8B896F6C91199BA45F66 ] C:\Windows\System32\drivers\mouclass.sys
15:08:41.0205 0x1a1c C:\Windows\System32\drivers\mouclass.sys - ok
15:08:41.0205 0x1a1c [ 165AE5452B9155025814BAE5535E3019, 53860753238F6F953FE3B8F64B0953AA885FDCAE58C9EAD7E29EBDAABC4F96AD ] C:\Windows\System32\drivers\mouhid.sys
15:08:41.0205 0x1a1c C:\Windows\System32\drivers\mouhid.sys - ok
15:08:41.0220 0x1a1c [ 8F16F4D9D8E57AF55D42E182E8F83BCA, 0C1DE89A478945DEAA3CBE7D89B4552A3A7DA5275B9F2A044F1B4FE1525279EB ] C:\Windows\System32\drivers\kbdhid.sys
15:08:41.0220 0x1a1c C:\Windows\System32\drivers\kbdhid.sys - ok
15:08:41.0220 0x1a1c [ 38EDAC4667F2616442770D8DB0B2DC25, 0B23BA25B76EB2EC4D57F0F1DDBD29A515A865C201050B3A00B50C232BE9BCA0 ] C:\Windows\System32\drivers\kbdclass.sys
15:08:41.0220 0x1a1c C:\Windows\System32\drivers\kbdclass.sys - ok
15:08:41.0220 0x1a1c [ 50D683EA444698985E5E88A304658A86, E91161625A4EAEDD062532C55486F1336C60267EBD50043A209843C4D1902EF8 ] C:\Windows\System32\KernelBase.dll
15:08:41.0220 0x1a1c C:\Windows\System32\KernelBase.dll - ok
15:08:41.0236 0x1a1c [ E9BCF3B07E211C4548F4382735EF4DA7, 261CE3F1BBBF33074450004DF9D560498484317ED44E1E75DE8C3D2DFD772387 ] C:\Windows\System32\comctl32.dll
15:08:41.0236 0x1a1c C:\Windows\System32\comctl32.dll - ok
15:08:41.0236 0x1a1c [ 56753185D301D7718470A4ADF780395B, CA954AC516F91F28301378214335FF808D0E9331018A6474DFAA25D18D0FD6A8 ] C:\Windows\System32\kernel.appcore.dll
15:08:41.0236 0x1a1c C:\Windows\System32\kernel.appcore.dll - ok
15:08:41.0236 0x1a1c [ 6C2EE08E0066A9DCBC77612CACF76EED, DC1C77C7DEC3271B9AA2F136E0262E49770B586458F89CFDBA48D3DC4B5425C0 ] C:\Windows\System32\msasn1.dll
15:08:41.0236 0x1a1c C:\Windows\System32\msasn1.dll - ok
15:08:41.0236 0x1a1c [ 082136DC077FAD6C3D1ED64BF46888A6, F9C97CFFAB7D3A61175F902CF0062CA945BC8CECFC825BF3B6096864855D43D9 ] C:\Windows\System32\powrprof.dll
15:08:41.0236 0x1a1c C:\Windows\System32\powrprof.dll - ok
15:08:41.0252 0x1a1c [ 68E256F56C74B31867E23B8143B509C3, 14B733E344394B1C5753AF0E58026B50BCFB19868F9380197442FDABA4BC974E ] C:\Windows\System32\profapi.dll
15:08:41.0252 0x1a1c C:\Windows\System32\profapi.dll - ok
15:08:41.0252 0x1a1c [ 0A68189FC5A0A09FF3BF7CA60278864C, 0837A792B16051C05CB4D9B2B190BDA66AE3E7FF879F468FDD4A2967D8DFD3DA ] C:\Windows\System32\drivers\mshidkmdf.sys
15:08:41.0252 0x1a1c C:\Windows\System32\drivers\mshidkmdf.sys - ok
15:08:41.0252 0x1a1c [ 168A32D53F2BB06AE598AEBD744928BB, 0912D5556A22137602DF960BA7377256448D63FB825003C237061A346D4ADD37 ] C:\Windows\System32\drivers\wachidrouter.sys
15:08:41.0252 0x1a1c C:\Windows\System32\drivers\wachidrouter.sys - ok
15:08:41.0252 0x1a1c [ BDE9A45B2B5D38B610ED2600B91F93AE, 5B9DC5248CD390E2D6527C6BBB7B39CD271DC6538830B6A5A581DC168DA38A33 ] C:\Windows\System32\drivers\wacomrouterfilter.sys
15:08:41.0252 0x1a1c C:\Windows\System32\drivers\wacomrouterfilter.sys - ok
15:08:41.0267 0x1a1c [ A8DD94CB385BBA9FE76A5A16842E95EB, 59362E84AB16150582DC2E6DB2108B0C120A4C584CB447AF56D9F28C8FB1E24D ] C:\Windows\System32\drivers\WIMBLEMS.sys
15:08:41.0267 0x1a1c C:\Windows\System32\drivers\WIMBLEMS.sys - ok
15:08:41.0267 0x1a1c [ 990D01F2A6D10A33C382191A24BBAAAF, 644417B839762A3325920A87C3D955CA974A4EC1D6F008216910267435921255 ] C:\Windows\System32\autochk.exe
15:08:41.0267 0x1a1c C:\Windows\System32\autochk.exe - ok
15:08:41.0267 0x1a1c [ FF22D57250991143E6E969EE7BFAC0F1, A190BEEDE012625FC7EB26B65BBABEE03DC937B1719A2B2B2CD8AB9220DA72C3 ] C:\Windows\System32\drivers\USBSTOR.SYS
15:08:41.0267 0x1a1c C:\Windows\System32\drivers\USBSTOR.SYS - ok
15:08:41.0283 0x1a1c [ 106290B54A85834C0E6EB005BC54AD31, 3078E5A5AEE958550A0E21E68FFB09EB8B28E150D63D4D36D1FF0EEA74750D2A ] C:\Windows\System32\drivers\EhStorClass.sys
15:08:41.0283 0x1a1c C:\Windows\System32\drivers\EhStorClass.sys - ok
15:08:41.0283 0x1a1c [ 795E4FBF6EC770F064550270C5BEBC75, C2B8B5E82EF3829FD6C1300947DE17BFD2CA62695108A0D747B623D807899C07 ] C:\Windows\System32\win32kbase.sys
15:08:41.0283 0x1a1c C:\Windows\System32\win32kbase.sys - ok
15:08:41.0283 0x1a1c [ D2A46F11D77A2C59636F3DF3CFE79005, F949329C4A0D63DDB89469A3AB9B86A2F4445DFC4D0E56651C98BAFCFFEE97FA ] C:\Windows\System32\win32kfull.sys
15:08:41.0283 0x1a1c C:\Windows\System32\win32kfull.sys - ok
15:08:41.0283 0x1a1c [ FF142BF1AC7F5BAE34ECF919B57BC148, 49E43AF513907ACF83F74F96F9C5FBE2C5EC787F22CC88DEACC710B060E964EE ] C:\Windows\System32\win32k.sys
15:08:41.0283 0x1a1c C:\Windows\System32\win32k.sys - ok
15:08:41.0299 0x1a1c [ DBB2180297DAE7D0FC57EECACB2029F4, 5EAEC2E0162CC8A83848D8D8EA6121BD5B3FF4EEE0F458171C2DB0D78FE0F1DE ] C:\Windows\System32\basesrv.dll
15:08:41.0299 0x1a1c C:\Windows\System32\basesrv.dll - ok
15:08:41.0299 0x1a1c [ D5AE22FDFB0549BCA4676F171D1972F1, 4F315302DBA388E4C4643F09F12333C7DAEB9BCE64DCFCBABF4D57E2643D90E1 ] C:\Windows\System32\csrsrv.dll
15:08:41.0299 0x1a1c C:\Windows\System32\csrsrv.dll - ok
15:08:41.0299 0x1a1c [ 7D64128BC1EECE41196858897596EBC8, FB40ED0FFA6BC795923A941DAB6B7D6B43583D0F152A6DF4D8953D2C1A0CB417 ] C:\Windows\System32\csrss.exe
15:08:41.0299 0x1a1c C:\Windows\System32\csrss.exe - ok
15:08:41.0299 0x1a1c [ BD37FD9CEA66D6649333997383DBB829, 601B32297E6159FC82A93633A93CE240A1D20A06CB22AF8E332E3DEC6513B65F ] C:\Windows\System32\winsrv.dll
15:08:41.0299 0x1a1c C:\Windows\System32\winsrv.dll - ok
15:08:41.0314 0x1a1c [ 553E9A2C23BB661BCF61B9FC926B1376, 8D25C6013A433719475E1320C4C178AC07B7E6E08A90C0C3F34FC26C735E3D56 ] C:\Windows\System32\winsrvext.dll
15:08:41.0314 0x1a1c C:\Windows\System32\winsrvext.dll - ok
15:08:41.0314 0x1a1c [ FB6269E733D774D5AF378870032239A9, 314E040BB268C20210D0897819FE185D3B74557D9806CCAFDCA055D01ECF595C ] C:\Windows\System32\drivers\dxgmms1.sys
15:08:41.0314 0x1a1c C:\Windows\System32\drivers\dxgmms1.sys - ok
15:08:41.0314 0x1a1c [ 753917AE790F884EE62D5E1F8EBFCC44, 73413CF9BE955A794172086B842B07B7E293896D11428425544A6899631DC2D2 ] C:\Windows\System32\drivers\monitor.sys
15:08:41.0314 0x1a1c C:\Windows\System32\drivers\monitor.sys - ok
15:08:41.0330 0x1a1c [ D52A0AAD2FD855A92A8854FC48C996D1, 27B7B8F070AA5263CD777FCABAD57A0F752393F268CD326DB5BB48F573A99C02 ] C:\Windows\System32\drivers\dxgmms2.sys
15:08:41.0330 0x1a1c C:\Windows\System32\drivers\dxgmms2.sys - ok
15:08:41.0330 0x1a1c [ 4BA612035DDA63F8F12CA6DD485FEE35, 176F70FE40B5584CACAB1DD1BDC0E895FF25A62E312DDADC8A259531CA92EB52 ] C:\Windows\System32\sxssrv.dll
15:08:41.0330 0x1a1c C:\Windows\System32\sxssrv.dll - ok
15:08:41.0330 0x1a1c [ 4E20895E641F2C3E68AB3DB91A1A16F1, 13AD43EE6D19DFC9709C3106D796BC3F21791A564E443D042A5AA117F2680649 ] C:\Windows\System32\wininit.exe
15:08:41.0330 0x1a1c C:\Windows\System32\wininit.exe - ok
15:08:41.0330 0x1a1c [ 3561F3AFBF527F27620FB432B7E59699, FF5277B0C9BDF1F6E63037846A3D24F931BFD26D18C05CABEC5C6CD2AE05430D ] C:\Windows\System32\sspicli.dll
15:08:41.0330 0x1a1c C:\Windows\System32\sspicli.dll - ok
15:08:41.0345 0x1a1c [ FF62E35039CCDDB9F5E1283AE1741363, FDE8CCBA098FA7873A641E6980592DEB58894643742CB0EE12DC50E375DB4307 ] C:\Windows\System32\userenv.dll
15:08:41.0345 0x1a1c C:\Windows\System32\userenv.dll - ok
15:08:41.0345 0x1a1c [ 8280B281BB5C869C57D3C1064F064AB4, B50E542FC13EBE71EA5E2884DA5D8F7B9A4D7D5B81F1905635884CCC92364F51 ] C:\Windows\System32\wininitext.dll
15:08:41.0345 0x1a1c C:\Windows\System32\wininitext.dll - ok
15:08:41.0345 0x1a1c [ 7A82544B1D4FDFA62067FD126070BD65, 2251AE5DE74996495D472E1DAE9795C09E0E2D942145253E489EB13DB4C6181D ] C:\Windows\System32\KBDCA.DLL
15:08:41.0345 0x1a1c C:\Windows\System32\KBDCA.DLL - ok
15:08:41.0345 0x1a1c [ 6E49143CFFB41BE4DB19688EF2E61F97, 993AE2B1303C908B0382867A9EEAF6A2C47D4EDD72810CECFCA67B5D0BFA7FB1 ] C:\Windows\System32\KBDCAN.DLL
15:08:41.0345 0x1a1c C:\Windows\System32\KBDCAN.DLL - ok
15:08:41.0361 0x1a1c [ EB0AE6E31D3F7C12A13D7FA98185B734, A4CBD236FF56AD13036AAC5EB8B5B0CA2422C45264712F8CED5BEFE758EA3890 ] C:\Windows\System32\KBDUS.DLL
15:08:41.0361 0x1a1c C:\Windows\System32\KBDUS.DLL - ok
15:08:41.0361 0x1a1c [ 92813D01CD2D19003BDB4B978DFFF2A7, E727DEC14A3A29FBF9B67E0A06FB92101975EA063BAD4F6784415386556261F1 ] C:\Windows\System32\sxs.dll
15:08:41.0361 0x1a1c C:\Windows\System32\sxs.dll - ok
15:08:41.0361 0x1a1c [ 7A20DA1F1406492A70E9C8243634467B, BF74B5707C2F035DA0A348658A60E22C32D0F57340826FC4EFCBA3B41EA9C8F3 ] C:\Windows\System32\services.exe
15:08:41.0361 0x1a1c C:\Windows\System32\services.exe - ok
15:08:41.0361 0x1a1c [ 38DB36BD867B3D24FDA2AF64D083F27E, 125659572EC4631A21BD2575C866D22EA2A49F4AAA4DD790F2333AFAB8CA889C ] C:\Windows\System32\lsasrv.dll
15:08:41.0361 0x1a1c C:\Windows\System32\lsasrv.dll - ok
15:08:41.0377 0x1a1c [ 568C5CBF9877F6B9E39D1E7CA0FF0A36, BBC83E4759D4B82BAD31E371AD679AA414C72273BF97CEE5AED8337ED8A4D79F ] C:\Windows\System32\lsass.exe
15:08:41.0377 0x1a1c C:\Windows\System32\lsass.exe - ok
15:08:41.0377 0x1a1c [ 81D45C45F9F8E5D8700311EAB24738C6, 675F56EA3CA673C52D4EA2F478DDEF3F660A8E426F5999CE8CE345B5FE306362 ] C:\Windows\System32\devobj.dll
15:08:41.0377 0x1a1c C:\Windows\System32\devobj.dll - ok
15:08:41.0377 0x1a1c [ 7AB5E2C554495DB5309BB74B6EAABF85, 8C23D9B636FFC880326F6BC3BEFAEA782F79CFA6531D6CECFA7A604C27A6FD7B ] C:\Windows\System32\EventAggregation.dll
15:08:41.0377 0x1a1c C:\Windows\System32\EventAggregation.dll - ok
15:08:41.0392 0x1a1c [ 54AE7DA8C6138FBFC37570EEE6E65D4C, EFBD46C411ADB350EEB99B5BBB6E6BC26DA8D144A231FB61F53B0794395560C1 ] C:\Windows\System32\samsrv.dll
15:08:41.0392 0x1a1c C:\Windows\System32\samsrv.dll - ok
15:08:41.0392 0x1a1c [ 41A13529436ADA43E9B805CBE36A2B3E, C78621E53E1E92586039285014864C04AFD2F7E4AC90F4E1A80405A60144BAD0 ] C:\Windows\System32\cdd.dll
15:08:41.0392 0x1a1c C:\Windows\System32\cdd.dll - ok
15:08:41.0392 0x1a1c [ 5E2B0EE7F62779521BBECF6EF4B7B3AC, 78CAA858F31D6514BEF3AF9B2FA374F6FB1F0650B7DD381148447A834BD88ED2 ] C:\Windows\System32\ncrypt.dll
15:08:41.0392 0x1a1c C:\Windows\System32\ncrypt.dll - ok
15:08:41.0408 0x1a1c [ 92419F3B74C6C3D7304B7665DA984552, 01075068DC177AE38293A76C9DA5B2E09426093ECA4F6A53281CB6EC2FC6CD17 ] C:\Windows\System32\winlogon.exe
15:08:41.0408 0x1a1c C:\Windows\System32\winlogon.exe - ok
15:08:41.0408 0x1a1c [ 1AA3971C69A554471DFAE297DBAC1CD4, ADF2CAD7E6705B318034390898F74CFC73EAB40652019CA698843A4EEF7BE95C ] C:\Windows\System32\ntasn1.dll
15:08:41.0408 0x1a1c C:\Windows\System32\ntasn1.dll - ok
15:08:41.0408 0x1a1c [ D811B1BB95E0F41B11ECB0B90ADBC29E, C4B73721500EF492C8BAFD2BB4EEF4C989C64A8B8E8A37C7314E2860A0ADCC9B ] C:\Windows\System32\msprivs.dll
15:08:41.0408 0x1a1c C:\Windows\System32\msprivs.dll - ok
15:08:41.0424 0x1a1c [ 8916FD91A6D9569444B6380B6721BEFF, 3FC22547F75CF6F1B8732297D6F381E6916285B989D403FC5FD4026536E36AA0 ] C:\Windows\System32\netprovfw.dll
15:08:41.0424 0x1a1c C:\Windows\System32\netprovfw.dll - ok
15:08:41.0424 0x1a1c [ 63817869F82F4F08B7929C8E14560549, 789309508D3B45B0D3EC21E5DB2C3E0A66197500BA29E2E88FB21358A6155315 ] C:\Windows\System32\wldp.dll
15:08:41.0424 0x1a1c C:\Windows\System32\wldp.dll - ok
15:08:41.0424 0x1a1c [ 40349C0CC1A2D08E9E5FFF65296E29DF, F53C04CF0EE4943D4EA82D94604CB46816BEB53545D3357C718D2A46516B1BDB ] C:\Windows\System32\cryptbase.dll
15:08:41.0424 0x1a1c C:\Windows\System32\cryptbase.dll - ok
15:08:41.0424 0x1a1c [ 7CC01D973BE85B6E1C8F74E7B316E016, 2D36698D24277F8DD85AB30F6F91D2C0B81BE0B8036140A7890D4ABE3FF7033A ] C:\Windows\System32\joinutil.dll
15:08:41.0424 0x1a1c C:\Windows\System32\joinutil.dll - ok
15:08:41.0439 0x1a1c [ 1FAB81F8395BFF5D1BDD12FF1D36B43D, 74DEBCC55EC4DD0D2979F5A94195066B6C5F4908B14530DC7EAF24DAE01A6893 ] C:\Windows\System32\kerberos.dll
15:08:41.0439 0x1a1c C:\Windows\System32\kerberos.dll - ok
15:08:41.0439 0x1a1c [ E09D65A9FC5D9BFC2324DD58FA4DF152, 8778EB7D3A1E0076924F85A08E3B69A4D48F42AC572D8CB89511C507BCA57771 ] C:\Windows\System32\negoexts.dll
15:08:41.0439 0x1a1c C:\Windows\System32\negoexts.dll - ok
15:08:41.0439 0x1a1c [ DD706196DC651EE6A0D07487354062B4, 5B6EC3C933668A74EF2F1A53AFDE154C397AD00888EBF77BE4DB5085687E48C1 ] C:\Windows\System32\KerbClientShared.dll
15:08:41.0439 0x1a1c C:\Windows\System32\KerbClientShared.dll - ok
15:08:41.0439 0x1a1c [ 38D351DEC41BDF90A22C50F5A5E33F4C, BB548B91A3E92D570180EA91462ACDB941297E341DAF08267E8693C716225E03 ] C:\Windows\System32\cryptdll.dll
15:08:41.0439 0x1a1c C:\Windows\System32\cryptdll.dll - ok
15:08:41.0455 0x1a1c [ DA5868EABB74AEC4354647D45F97C0AF, 32B249CB9D7A76AC9AB0D9254256268353E128FC429AD09543217F58E0C2AC84 ] C:\Windows\System32\mswsock.dll
15:08:41.0455 0x1a1c C:\Windows\System32\mswsock.dll - ok
15:08:41.0455 0x1a1c [ D4271E4F7CD572DEAE58DEC8301D42F7, C13DA4DE69EA8D9AFE2161C6F796B82685BB2CD1215C82FE0C12B4BFFE113F78 ] C:\Windows\System32\winsta.dll
15:08:41.0455 0x1a1c C:\Windows\System32\winsta.dll - ok
15:08:41.0455 0x1a1c [ 5DD456F7EE32C2BBE6780575D826C139, FBEC9A7640EE0E7761622C8F3C306BFE48AB242A9F1DF80C406438AD228AB056 ] C:\Windows\System32\msv1_0.dll
15:08:41.0455 0x1a1c C:\Windows\System32\msv1_0.dll - ok
15:08:41.0455 0x1a1c [ A325A3E768FAA14AEDBBA0709E8105F4, A1FD284BEC7A41EF20D1FDA6472EF83656E597B35E7B3B74DA7FB82AF52A6841 ] C:\Windows\System32\NtlmShared.dll
15:08:41.0455 0x1a1c C:\Windows\System32\NtlmShared.dll - ok
15:08:41.0470 0x1a1c [ 3BA9E57811BBB9C92880D7D5EF2E0685, 70A7EC72427D9BBF008ADEF412B09EFD4ACE3A95538327B77A19F9619FBC3BA5 ] C:\Windows\System32\netlogon.dll
15:08:41.0470 0x1a1c C:\Windows\System32\netlogon.dll - ok
15:08:41.0470 0x1a1c [ 018D6E7BA23E28ECA0CB7F071A9FF291, 96D581035FF077D1B44BCBBC7F0671579501ADB6637646483BB980E57C07FA51 ] C:\Windows\System32\dnsapi.dll
15:08:41.0470 0x1a1c C:\Windows\System32\dnsapi.dll - ok
15:08:41.0470 0x1a1c [ 41BED58F73ABB36B3BB506D3D0767D31, 82650DC54E2F41CC50AF59561A4ED1F240EB5F828CF9710C2162C27E86481D68 ] C:\Windows\System32\gmsaclient.dll
15:08:41.0470 0x1a1c C:\Windows\System32\gmsaclient.dll - ok
15:08:41.0486 0x1a1c [ 6BD99B341B0749CD702EF46B372AB2AA, FA48DDB46AA0B5CD64AC0D9FEBA77A94CF0A0DA554ACB9DC9C80FB8104414C2D ] C:\Windows\System32\netutils.dll
15:08:41.0486 0x1a1c C:\Windows\System32\netutils.dll - ok
15:08:41.0486 0x1a1c [ 190053992A600E1E07D82B3AFD59A855, 0ECEB84EDC1DD0D456048CFAE5970DCF0B3083CEC2462AB6BD60632F151E298F ] C:\Windows\System32\IPHLPAPI.DLL
15:08:41.0486 0x1a1c C:\Windows\System32\IPHLPAPI.DLL - ok
15:08:41.0486 0x1a1c [ 67763B8E509EC2E746DE293B3D5F6EAF, E22FE684A8C86CBF832B59B15CC4B37338F7862A6D1BC906606C09E835E1F9D2 ] C:\Windows\System32\pku2u.dll
15:08:41.0486 0x1a1c C:\Windows\System32\pku2u.dll - ok
15:08:41.0486 0x1a1c [ 8AE65590322D36848C66C8BD75037E1E, B6D50B26DC1F00B493B4DBA6C6D9A800DF705862527E4FF15127FF71291DD428 ] C:\Windows\System32\TSpkg.dll
15:08:41.0486 0x1a1c C:\Windows\System32\TSpkg.dll - ok
15:08:41.0502 0x1a1c [ 19AE8C07F407A943ACA507C5BD46A190, B667CC2A9473A2B20644D049012B4DB27036446D87F07AA0675B4CEE0F193BD9 ] C:\Windows\System32\cloudAP.dll
15:08:41.0502 0x1a1c C:\Windows\System32\cloudAP.dll - ok
15:08:41.0502 0x1a1c [ CF864B08CEA15894A4E6E676A7FE89A3, 0D1488B2FF471C1EF2F8F2742D685A8778B2C1512A044BDF2606C3ED92E0B512 ] C:\Windows\System32\dpapi.dll
15:08:41.0502 0x1a1c C:\Windows\System32\dpapi.dll - ok
15:08:41.0502 0x1a1c [ D4353522D93393167D3436B61291C2E8, F0AC705C256998311DB64C5E2CBCDF84286E1875DD0BD113559401D17DFDCBAC ] C:\Windows\System32\MicrosoftAccountCloudAP.dll
15:08:41.0502 0x1a1c C:\Windows\System32\MicrosoftAccountCloudAP.dll - ok
15:08:41.0502 0x1a1c [ D7092CBCC43E59C6C73E632CE64A7845, 4B925FCAF87C3D539292319AB9BAE6EABF2FEA5B7A7FDB364BC2648E1B5F6AE8 ] C:\Windows\System32\rsaenh.dll
15:08:41.0502 0x1a1c C:\Windows\System32\rsaenh.dll - ok
15:08:41.0517 0x1a1c [ 5845DDD030E1FD55ADCA725ACDD34055, EA0EC796607087FE8EA482B246AFCFE30B49B87ABBC706D8FCD949261EA00B1A ] C:\Windows\System32\wdigest.dll
15:08:41.0517 0x1a1c C:\Windows\System32\wdigest.dll - ok
15:08:41.0517 0x1a1c [ 165148243DCE0BCEEB56F275DCEB9C77, CD8DBC2B6D5B2DA26E5AAC58E211D7469712374FD886BD8CCDF635E456D90581 ] C:\Windows\System32\schannel.dll
15:08:41.0517 0x1a1c C:\Windows\System32\schannel.dll - ok
15:08:41.0517 0x1a1c [ D4B374080CC47C584B03828A2B09E9EC, 3F95A8DB5823DE29E43515B235BB8ABC8B27D789C9B3B4FF611040A07BE257A7 ] C:\Windows\System32\credssp.dll
15:08:41.0517 0x1a1c C:\Windows\System32\credssp.dll - ok
15:08:41.0533 0x1a1c [ E77B3A6D8C385EAF39804939E5F396CA, EA4AB615741EC548A62A3BB2BE5CC65B8A20F06E242333E1D51D5E809AA73C29 ] C:\Windows\System32\dpapisrv.dll
15:08:41.0533 0x1a1c C:\Windows\System32\dpapisrv.dll - ok
15:08:41.0533 0x1a1c [ 079BBD9CB1CD27926A86152AE2C94F9F, 2927687CC6C64D700CA7F2A9F1C35C60879A0660FA11BC91E18E884AD7B02FE6 ] C:\Windows\System32\efslsaext.dll
15:08:41.0533 0x1a1c C:\Windows\System32\efslsaext.dll - ok
15:08:41.0533 0x1a1c [ A7501147E54FE1A001E8362B644AF45F, 508C25D16ADD709D638C063F5C519B7D925A80E72129A3C9F56B543D5D9A6D44 ] C:\Windows\System32\sspisrv.dll
15:08:41.0533 0x1a1c C:\Windows\System32\sspisrv.dll - ok
15:08:41.0533 0x1a1c [ 87C0BB3C6463B58C6B82E1C49157AC39, 9C161E12CF2A4B69D37BDC50888BFD576277B537A9C21638D4A1388F993706B6 ] C:\Windows\System32\kdcpw.dll
15:08:41.0533 0x1a1c C:\Windows\System32\kdcpw.dll - ok
15:08:41.0549 0x1a1c [ D6CE62F271345D40472A002E0AAE1C07, B565D52A95D310B0429CE0EB701B29A17941212D562E1EC6DC451F2196DA7B14 ] C:\Windows\System32\scecli.dll
15:08:41.0549 0x1a1c C:\Windows\System32\scecli.dll - ok
15:08:41.0549 0x1a1c [ C0B268E0CB698F85A8DC5C4559349D3B, 64E3123FE75AB32637B82CFA71B5AAED69FAA6C4B672FEE09516BE4754F439B5 ] C:\Windows\System32\scesrv.dll
15:08:41.0549 0x1a1c C:\Windows\System32\scesrv.dll - ok
15:08:41.0549 0x1a1c [ D9EC03945EF428E6EEB040F9024A6EC6, 5866CCE48652967B7251B2D4E0569650429ECCDAE19582D7E61008BA8F84C87F ] C:\Windows\System32\ntmarta.dll
15:08:41.0549 0x1a1c C:\Windows\System32\ntmarta.dll - ok
15:08:41.0549 0x1a1c [ 0B1583B6323083B1D2D769D991DC3489, 7EF8B4867209DCBBF279EA4929FCB428886ACAF7DE47E6CF665D926BBEB240D4 ] C:\Windows\System32\authz.dll
15:08:41.0549 0x1a1c C:\Windows\System32\authz.dll - ok
15:08:41.0564 0x1a1c [ EF9C968E92F0E58D40BCA40B18FB5F49, EB851932931F5DF8C289B66795B0B50A2C4DC172CD7EB245BCA4BCFB5A65F2B3 ] C:\Windows\System32\profext.dll
15:08:41.0564 0x1a1c C:\Windows\System32\profext.dll - ok
15:08:41.0564 0x1a1c [ F27598A99128A2B97B7E195AD625EDA8, EDED3A84076DE4379FD55373D74EDCF94589442957EDF774C638A584A4E094AF ] C:\Windows\System32\FirewallAPI.dll
15:08:41.0564 0x1a1c C:\Windows\System32\FirewallAPI.dll - ok
15:08:41.0564 0x1a1c [ 8A0A29438052FAED8A2532DA50455756, 7FD065BAC18C5278777AE44908101CDFED72D26FA741367F0AD4D02020787AB6 ] C:\Windows\System32\svchost.exe
15:08:41.0564 0x1a1c C:\Windows\System32\svchost.exe - ok
15:08:41.0580 0x1a1c [ 4BA3C60F01AEA85C29942931F1933DB4, 216E528817EBEECC74875356BC69B3688A0F6D7DB91D8137877A4EFA59F8CF30 ] C:\Windows\System32\WUDFPlatform.dll
15:08:41.0580 0x1a1c C:\Windows\System32\WUDFPlatform.dll - ok
15:08:41.0580 0x1a1c [ 91EC32FE33962A61258ED1E4BC50CDD1, DF0702AD8B173DC3368168DB16535DB42E14614BC550805A5DF33D486ED030AC ] C:\Windows\System32\fwbase.dll
15:08:41.0580 0x1a1c C:\Windows\System32\fwbase.dll - ok
15:08:41.0580 0x1a1c [ 03BA8BB294CE2B52D9E8F64E94B4B402, A9E8217D7B1554A606D05510D5CE1DDE60944922A45401A8652F50218D4EC5CB ] C:\Windows\System32\umpnpmgr.dll
15:08:41.0580 0x1a1c C:\Windows\System32\umpnpmgr.dll - ok
15:08:41.0580 0x1a1c [ 73ECFC63D23D8A07A982DDA099209605, 6A8912751EE3E032860AC5F0726C9E8D1E10DEE00E63DECC5F2D0C342FBCB911 ] C:\Windows\System32\slc.dll
15:08:41.0580 0x1a1c C:\Windows\System32\slc.dll - ok
15:08:41.0595 0x1a1c [ C1ADDE298CF5146E367CDE9C3FB0E940, 411C12C0AD8035CE91E247239864A95593958FE3BBB6B73C313E16F6F9EFA017 ] C:\Windows\System32\umpo.dll
15:08:41.0595 0x1a1c C:\Windows\System32\umpo.dll - ok
15:08:41.0595 0x1a1c [ 5708BFDDB5E37B98E65D71E404138937, 2F12419A7D9D7F2F02688C76063DC081CE08DC79574C485717B38F65DE199781 ] C:\Windows\System32\fontdrvhost.exe
15:08:41.0595 0x1a1c C:\Windows\System32\fontdrvhost.exe - ok
15:08:41.0595 0x1a1c [ E675ECAA0F8E8F4282259227CA126671, 74020DD4AC69712C6FA189E057326724F3C98557AFA33CDA4FAE48ED4146F75F ] C:\Windows\System32\sppc.dll
15:08:41.0595 0x1a1c C:\Windows\System32\sppc.dll - ok
15:08:41.0595 0x1a1c [ FE386753853BC8A910726E938AAC3B99, 7D64C315F059CCD56B4A0C760EE9043640B60A0F762F92D5058DB579846F70FE ] C:\Windows\System32\dxgi.dll
15:08:41.0595 0x1a1c C:\Windows\System32\dxgi.dll - ok
15:08:41.0611 0x1a1c [ C59DB40B2C26AD60EE521328B2DB4C4E, 444F9CA2D839FEEF1E7D136EA9CCD7DBEDEAD884C977C7EE129F788B41B4DC0B ] C:\Windows\System32\tdh.dll
15:08:41.0611 0x1a1c C:\Windows\System32\tdh.dll - ok
15:08:41.0611 0x1a1c [ 03A28DF93ECF146A5A9280EEB923AB52, 5891B0D6253022F1C7CA3F3C80E5340F43070439B53C01D724C76E0F423ADF39 ] C:\Windows\System32\umpoext.dll
15:08:41.0611 0x1a1c C:\Windows\System32\umpoext.dll - ok
15:08:41.0611 0x1a1c [ 748B31AA6C41115B38614B672950672F, 8153D2703394870BEB0C20ECAFE80362E8E17C3E56FAEFC5F66B9C62CFA5BC78 ] C:\Windows\System32\mintdh.dll
15:08:41.0611 0x1a1c C:\Windows\System32\mintdh.dll - ok
15:08:41.0627 0x1a1c [ E74AF2023B1F35D5C24739BBC69AFD07, D38C9148A104820805028C2613B67FC9876DF5D9FE06DEF2AF4ECECCCE8FB558 ] C:\Windows\System32\gpapi.dll
15:08:41.0627 0x1a1c C:\Windows\System32\gpapi.dll - ok
15:08:41.0627 0x1a1c [ 926524690062BE42A2C8E84519A0614C, 6876192646F8F79516BF69165E6D119F93E98EBF510CD1E5C17482C588CF15A1 ] C:\Windows\System32\umpo-overrides.dll
15:08:41.0627 0x1a1c C:\Windows\System32\umpo-overrides.dll - ok
15:08:41.0627 0x1a1c [ 2ED59EDA2D134C143ADFF53B5B09AE0C, 94226E24684D14E334797D43C24EFB1B4B0762AF098B57A74370ACE26ECB97EB ] C:\Windows\System32\hid.dll
15:08:41.0627 0x1a1c C:\Windows\System32\hid.dll - ok
15:08:41.0627 0x1a1c [ 5EA4EC00F765C3208AA08116FF6CC6C6, 21EB123C9EFF7D88B0F04C6BB486F884DA1089CB0F731E049E823E1A7570DCF6 ] C:\Windows\System32\rpcss.dll
15:08:41.0627 0x1a1c C:\Windows\System32\rpcss.dll - ok
15:08:41.0642 0x1a1c [ F5645D54232AFA55E57927C9E0D24267, 5790D6821D9F8DD44F53F4DEDCF1C9F0746D890F14874BAA8B7239F64C13A0E2 ] C:\Windows\System32\RpcEpMap.dll
15:08:41.0642 0x1a1c C:\Windows\System32\RpcEpMap.dll - ok
15:08:41.0642 0x1a1c [ E8CF9A94340334B36540E269A249EB96, 081F899449BA00CAD489DBC31508FD53D88DCEA5C2F434EE123829A8D2BE7065 ] C:\Windows\System32\RpcRtRemote.dll
15:08:41.0642 0x1a1c C:\Windows\System32\RpcRtRemote.dll - ok
15:08:41.0642 0x1a1c [ C9E9A7EC257A3C7F9C76502F78D38360, 3CB65885245E1E5DE7B1E0087CE8DF23E75E8DF14A3C858E5DD590E1C7C2A5B9 ] C:\Windows\System32\lsm.dll
15:08:41.0642 0x1a1c C:\Windows\System32\lsm.dll - ok
15:08:41.0642 0x1a1c [ 0C8BF24048358ED09FBD4A99ADD88934, 59FAEB808C9795DA892E5849CE1669F34E4F750716C7DF4578056859BAEB2EA5 ] C:\Windows\System32\psmsrv.dll
15:08:41.0642 0x1a1c C:\Windows\System32\psmsrv.dll - ok
15:08:41.0658 0x1a1c [ 5222670AE76A3D413B0BEE2BD459DA86, 1B77772A28FEE9F6178A6F3846DC2B31C5C37E9EEFB261038D24A429DC6DB8C9 ] C:\Windows\System32\bisrv.dll
15:08:41.0658 0x1a1c C:\Windows\System32\bisrv.dll - ok
15:08:41.0658 0x1a1c [ A0CE190F2CA2E64CA4F14DD570B24203, 4643CD13ACE4583FFC5F6E77B28DED3786B89763E14AFCE7662389DB473B0A61 ] C:\Windows\System32\dwmapi.dll
15:08:41.0658 0x1a1c C:\Windows\System32\dwmapi.dll - ok
15:08:41.0658 0x1a1c [ 62EC30E7F30B048A6AD4F49CEE882CA9, 09ACC23981AF2F92D702D02103B81E3F96D6ED7B261FA3203CD4A4DB60428036 ] C:\Windows\System32\ResourcePolicyClient.dll
15:08:41.0658 0x1a1c C:\Windows\System32\ResourcePolicyClient.dll - ok
15:08:41.0674 0x1a1c [ A5437C626D9CC0C30CDA466C12520E07, C0B024DFB029D655FD4EC505316FEB0CACA305219616A8EF76E67650916D148C ] C:\Windows\System32\rmclient.dll
15:08:41.0674 0x1a1c C:\Windows\System32\rmclient.dll - ok
15:08:41.0674 0x1a1c [ 985B3DF5A1157080309D3F80D8308531, B03338A81A80D2EF5B8374EA98BAC7B7BA361FEDF752C71E2BC7DCAD08C63802 ] C:\Windows\System32\sysntfy.dll
15:08:41.0674 0x1a1c C:\Windows\System32\sysntfy.dll - ok
15:08:41.0674 0x1a1c [ EF1CB652721FB0C816F5B987134B1B8E, 577FEA98A9CFA486C581A632B01F2817B74FB8A34762767BB9F2C32BAE396FCB ] C:\Windows\System32\twinapi.appcore.dll
15:08:41.0674 0x1a1c C:\Windows\System32\twinapi.appcore.dll - ok
15:08:41.0674 0x1a1c [ 95DB0187C4D5A82F96611FF52B8B2BF5, A8D6048FAFEBEB99C077823E3EF1D575356797D8206E1276163A3A8C6BFCA91A ] C:\Windows\System32\UXInit.dll
15:08:41.0674 0x1a1c C:\Windows\System32\UXInit.dll - ok
15:08:41.0689 0x1a1c [ 9473F2B5794F0A81C7C7FB602D7B34ED, A635109301F1013287C203CFC50484C87AC8E446C8924F1FB3D21B2080F57BD5 ] C:\Windows\System32\uxtheme.dll
15:08:41.0689 0x1a1c C:\Windows\System32\uxtheme.dll - ok
15:08:41.0689 0x1a1c [ B2AADB32967C713E8DA3B4A9CE2638DF, D229F5C62DEDA787A764D0DCD101B80F1430EE6DB2C553D77005BB47834E0F50 ] C:\Windows\System32\embeddedmodesvcapi.dll
15:08:41.0689 0x1a1c C:\Windows\System32\embeddedmodesvcapi.dll - ok
15:08:41.0689 0x1a1c [ 94469D6381946484A4CD6603BC8FBE1F, 7C6F0B64347123144C194828A0062056EB5C1F2BFF606527DAC85B578D933D09 ] C:\Windows\System32\PsmServiceExtHost.dll
15:08:41.0689 0x1a1c C:\Windows\System32\PsmServiceExtHost.dll - ok
15:08:41.0689 0x1a1c [ 3641EF0EE7984EB13018EBEE3F49F2DA, BE2E0F1E100764D4B88688640E96862E7B01013274A58F6F50DC64704CC46DF8 ] C:\Windows\System32\apphelp.dll
15:08:41.0689 0x1a1c C:\Windows\System32\apphelp.dll - ok
15:08:41.0705 0x1a1c [ 527B862E746E47990DE7AB053E7345E0, E95F383D3EC3AA75D56521CBCD92D24A3970BD9790158108CC877382DE24C26B ] C:\Windows\System32\dwminit.dll
15:08:41.0705 0x1a1c C:\Windows\System32\dwminit.dll - ok
15:08:41.0705 0x1a1c [ 33F89DD9629CB0422A2C17268376232D, 9358EF8CB7FB08581D74274005263BD8FA2E6E0FC443930B25FD345CF6CE9071 ] C:\Windows\System32\LogonUI.exe
15:08:41.0705 0x1a1c C:\Windows\System32\LogonUI.exe - ok
15:08:41.0705 0x1a1c [ 5F710D1E260D584F66DDE427916E64E6, 5BA9FBE93E6042C5E647B21C7A48667EBEC55E9D190EFC528F6B6170DF87F44C ] C:\Windows\System32\wer.dll
15:08:41.0705 0x1a1c C:\Windows\System32\wer.dll - ok
15:08:41.0720 0x1a1c [ 5E60483A58EC3B6EB6F8BEE67FA25B6D, 1853BB40DFD6CE4BB1B28511461788105B27D7C99DCFDD03FDB72B35B458B101 ] C:\Windows\System32\LogonController.dll
15:08:41.0720 0x1a1c C:\Windows\System32\LogonController.dll - ok
15:08:41.0720 0x1a1c [ 38833EC9E139654135BD183DFBABC36B, 43DC58AF302374F77C3FAEAC2FB446B1D813712D2650D9618E8D80E312F2E6FD ] C:\Windows\System32\dwm.exe
15:08:41.0720 0x1a1c C:\Windows\System32\dwm.exe - ok
15:08:41.0720 0x1a1c [ 1C257A647B2CFF58548FB29EE98D1D29, 3741FF73D0F68FC966A0F1FE28A9B303D19F3F69AA2E4F5D7CC2644B8CFB9BE8 ] C:\Windows\System32\dwmredir.dll
15:08:41.0720 0x1a1c C:\Windows\System32\dwmredir.dll - ok
15:08:41.0720 0x1a1c [ 2FD6702212DDFF9DF7BE76FBD25A4781, 7C0F260DF429E3FBAF318340CA30055C93705694D56AD7461FB4AD8F5B615935 ] C:\Windows\System32\uDWM.dll
15:08:41.0720 0x1a1c C:\Windows\System32\uDWM.dll - ok
15:08:41.0736 0x1a1c [ 3435760A3FF620CD420CBD1F7CF4C9FE, D5AB6057F2769B17B1895F1B4637B12C4AA9A99E74D8B271C5BFC79196F39A04 ] C:\Windows\System32\winmm.dll
15:08:41.0736 0x1a1c C:\Windows\System32\winmm.dll - ok
15:08:41.0736 0x1a1c [ DFF77B2AE66E97E264D1C640C8717B5E, 5743D040D6323DA4772C4819C8BACAA1BA599FCEF04A5E918FD84F0229EFCF92 ] C:\Windows\System32\winmmbase.dll
15:08:41.0736 0x1a1c C:\Windows\System32\winmmbase.dll - ok
15:08:41.0736 0x1a1c [ AAC12CE0F53541B393049247122025D1, DC55F91B22D22A0490D7653D835CAE082AB17E92E7809ADA4A4B84BB9A4B7789 ] C:\Windows\System32\audioresourceregistrar.dll
15:08:41.0736 0x1a1c C:\Windows\System32\audioresourceregistrar.dll - ok
15:08:41.0736 0x1a1c [ 2AE691E3E25CA8E5B6D0D89DD4F5C4E1, ACEFEF067FC983E6827C542FAF4CB4360CAFCEF556C76F53E53FFB3D66212033 ] C:\Windows\System32\CoreMessaging.dll
15:08:41.0736 0x1a1c C:\Windows\System32\CoreMessaging.dll - ok
15:08:41.0752 0x1a1c [ F4E56DC5BE93F94319CB2F3F2BAE5C2E, B622CA6777CF68C9FCFCC6443E8163713B64A771395EFEB4CB540648EC7BAD67 ] C:\Windows\System32\dwmcore.dll
15:08:41.0752 0x1a1c C:\Windows\System32\dwmcore.dll - ok
15:08:41.0752 0x1a1c [ C20C1085C11B4F06E613B4D41FC36C8A, 6D1300A2CCA6B7BEEFAFE1A5E239321E57E8EF3BA47007C52463D9706EFB8766 ] C:\Windows\System32\xmllite.dll
15:08:41.0752 0x1a1c C:\Windows\System32\xmllite.dll - ok
15:08:41.0752 0x1a1c [ 7B4AC70A42393A3C25A890F7CBC1DD4F, 1C991D302F250081E70A7D6F6AE133C0DEE36A39CE49BC5CDA0028E30CF0CF4A ] C:\Windows\System32\ResourcePolicyServer.dll
15:08:41.0752 0x1a1c C:\Windows\System32\ResourcePolicyServer.dll - ok
15:08:41.0767 0x1a1c [ D29258C88EB950DC8EA64B3C8DEED7F4, AC9718A52D5D5CA2BDCD7D4FFF4512055EE2FB73C1457436388329DA1B1271A3 ] C:\Windows\System32\dsreg.dll
15:08:41.0767 0x1a1c C:\Windows\System32\dsreg.dll - ok
15:08:41.0767 0x1a1c [ AC0B2F6759DD8D3EF8A643620901E535, FD9AC7CC5526904B0375922A678CF85B10F2E2D6C66BD1FD78E16257279CCB60 ] C:\Windows\System32\dcomp.dll
15:08:41.0767 0x1a1c C:\Windows\System32\dcomp.dll - ok
15:08:41.0767 0x1a1c [ B415E405015D1EEBD188475A2E975595, C048EFAEAFEA7A9AC97FB9823DC1001C1F15C9E35225B1FF32D5A710A0165489 ] C:\Windows\System32\SystemEventsBrokerServer.dll
15:08:41.0767 0x1a1c C:\Windows\System32\SystemEventsBrokerServer.dll - ok
15:08:41.0767 0x1a1c [ 45C13611EBC323820E44E7B03DA14ADD, E08B31E81D7B8590CABF84015D52EE641A3FE8791EAAC238377965BD9C4A8524 ] C:\Windows\System32\BrokerLib.dll
15:08:41.0767 0x1a1c C:\Windows\System32\BrokerLib.dll - ok
15:08:41.0783 0x1a1c [ 5D5A39FB5842499F59BF0E25C7757310, EE7A10FAC00BA52923D29CF3809891D5BC76B48D2E4F9E5C8799F51A74B952D7 ] C:\Windows\System32\dab.dll
15:08:41.0783 0x1a1c C:\Windows\System32\dab.dll - ok
15:08:41.0783 0x1a1c [ 92DCE2A95A6B6A0C275B7951ED4BC1C9, E39217D34A6633543E48BD9CA89A7B0B0C38D54C2B180F52271786343724A211 ] C:\Windows\System32\dabapi.dll
15:08:41.0783 0x1a1c C:\Windows\System32\dabapi.dll - ok
15:08:41.0783 0x1a1c [ 8DB0D25C79E2B17885878F4AE3E1AB83, 82223F20686932236B15B3278D85E5A92BB333C616C3FA11AD08EF25464141FC ] C:\Windows\System32\d2d1.dll
15:08:41.0783 0x1a1c C:\Windows\System32\d2d1.dll - ok
15:08:41.0783 0x1a1c [ 38EA19A3B635B35B282857317234FD48, 4AA54CA27B1192DFE35459562694485942B3197E112B7E872805E1CBDCD9793C ] C:\Windows\System32\d3d11.dll
15:08:41.0783 0x1a1c C:\Windows\System32\d3d11.dll - ok
15:08:41.0799 0x1a1c [ 81DC4B6282E7464297E88C20A6901E21, 631C05943124771105D43EF0CFCEE1DAB3F68EDEF12CEB5F7C825E2A7BDE15F5 ] C:\Windows\System32\D3DCompiler_47.dll
15:08:41.0799 0x1a1c C:\Windows\System32\D3DCompiler_47.dll - ok
15:08:41.0799 0x1a1c [ 38347B004B8802BA77B1D357EEBDB936, C0C42626E8541697875A54D0B8224F2F82F3F7E5F23D2DBADBEF2D0ABC99000E ] C:\Windows\System32\msvcp110_win.dll
15:08:41.0799 0x1a1c C:\Windows\System32\msvcp110_win.dll - ok
15:08:41.0799 0x1a1c [ B440713B9913F70952CD75B776B95E29, 9F3CAD7435675599F456F047BAA0D36004EC25A9237488BC9F6B772CCA473534 ] C:\Windows\System32\DeviceSetupManager.dll
15:08:41.0799 0x1a1c C:\Windows\System32\DeviceSetupManager.dll - ok
15:08:41.0799 0x1a1c [ DB0D6123F4561125AF4CC1D24A36B9C1, DA8CBC454B0C065E227ED93EA2B0F23E0E6092D808280DE0A1D6B063EC0497D3 ] C:\Windows\System32\gpsvc.dll
15:08:41.0799 0x1a1c C:\Windows\System32\gpsvc.dll - ok
15:08:41.0814 0x1a1c [ 0E7C317DD9F8E46E0C90B88A3C536BA6, 89750450EA6C7D2C0E80B97D621613F471BE55086A7FFA3DFC80A39A064F74D2 ] C:\Windows\System32\ncbservice.dll
15:08:41.0814 0x1a1c C:\Windows\System32\ncbservice.dll - ok
15:08:41.0814 0x1a1c [ 67A2CB5FDBF7A4C244185DDDA11A3ACF, 5404883B972C55F0C25FD873E6075CF78B25CE7B18163B01974F9B537D173C25 ] C:\Windows\System32\shacct.dll
15:08:41.0814 0x1a1c C:\Windows\System32\shacct.dll - ok
15:08:41.0814 0x1a1c [ A42E28138937660A2575217CE1C7D807, BA81055B56E5DA344BB8798F9D497064C541DD1043AFDCA49F4B7ECF8D57FBD1 ] C:\Windows\System32\wtsapi32.dll
15:08:41.0814 0x1a1c C:\Windows\System32\wtsapi32.dll - ok
15:08:41.0830 0x1a1c [ D6482F9D1E4739E0EFAFD036288CA114, 1D95324354B1EFBA404CFE56EE25E01639F5AEC81EDFD2F0E1AD78EE6CE9E16E ] C:\Windows\System32\netprofm.dll
15:08:41.0830 0x1a1c C:\Windows\System32\netprofm.dll - ok
15:08:41.0830 0x1a1c [ F8A0579BCFCBA29E3EB77B444473F7C9, 99A6911C87DF3A942F46D6CB1E156DBE7958F1C42B3A99CA3A592E8FEA4F0A77 ] C:\Windows\System32\propsys.dll
15:08:41.0830 0x1a1c C:\Windows\System32\propsys.dll - ok
15:08:41.0830 0x1a1c [ 48840D0BC95A0E375C08EA30720D489C, 5C081543E589365A9805B3AB8CC40828D8EB7A6F58609BEF15FDC7F0286E9225 ] C:\Windows\System32\samlib.dll
15:08:41.0830 0x1a1c C:\Windows\System32\samlib.dll - ok
15:08:41.0830 0x1a1c [ 912B0E47A24DA1C1CEB786F0A3BF094B, 29E646F85BF2BBB4548C3F240C5440DE79D7D2FEA9A3F6C4FD161C52AAE1F5F8 ] C:\Windows\System32\dsrole.dll
15:08:41.0830 0x1a1c C:\Windows\System32\dsrole.dll - ok
15:08:41.0845 0x1a1c [ 7FC7B6767D7AE919B26FB1F393F2F11B, 98151F9F099B42C1765D44BDAE7574D09F826CE701A91CB2947492CA1357D154 ] C:\Windows\System32\nlaapi.dll
15:08:41.0845 0x1a1c C:\Windows\System32\nlaapi.dll - ok
15:08:41.0845 0x1a1c [ 53EF8EDA28F68671B5011DBF39B93A86, 3BC597E00573908B4E424208805449E08A2AE830D396F0C64D8C1F32B6CD9F1A ] C:\Windows\System32\SystemEventsBrokerClient.dll
15:08:41.0845 0x1a1c C:\Windows\System32\SystemEventsBrokerClient.dll - ok
15:08:41.0845 0x1a1c [ 9A0C13D674AB2D72193653EF38D8FB8E, 15817A5CB717D4846AE753A27CD8859BCE63004143083027FA5EC9324DFC5188 ] C:\Windows\System32\taskschd.dll
15:08:41.0845 0x1a1c C:\Windows\System32\taskschd.dll - ok
15:08:41.0845 0x1a1c [ 3B55CC03BF82C34F0C1F1AC2AAFC793E, 1499A910290C1735A1C8F2AE43506023AB79AE9814E672604FFE5EB084780054 ] C:\Windows\System32\usermgrcli.dll
15:08:41.0845 0x1a1c C:\Windows\System32\usermgrcli.dll - ok
15:08:41.0861 0x1a1c [ 888F4306C26EA59C3BB09F045CA659C3, B6D259AD0E9D845BECDA5BE39558EA64A979B046D7FA7D375C8305EBE3D38ABB ] C:\Windows\System32\Windows.Devices.Radios.dll
15:08:41.0861 0x1a1c C:\Windows\System32\Windows.Devices.Radios.dll - ok
15:08:41.0861 0x1a1c [ 21A372ADF9F00D33E98FFFAFE9BEBC6B, 3B081FFF4796D89811AFCF53E2B446D04EE1F12972A61598990887AF5D2B792B ] C:\Windows\System32\hidserv.dll
15:08:41.0861 0x1a1c C:\Windows\System32\hidserv.dll - ok
15:08:41.0861 0x1a1c [ 03D9EDE1E96D1D158BD984D88B1095CC, 95FCF42C00F0D96704526387F722D64444FA49EE8F2DA192FCA2B02FAB2608BA ] C:\Windows\System32\drivers\luafv.sys
15:08:41.0861 0x1a1c C:\Windows\System32\drivers\luafv.sys - ok
15:08:41.0877 0x1a1c [ 95C4DB08A740015BB3FB5659F16EF321, 1E86C40F8AB13DD2433F13CC321C9352C7BF4A114FFF9E910F10DE684DF4E9CD ] C:\Windows\System32\drivers\wcifs.sys
15:08:41.0877 0x1a1c C:\Windows\System32\drivers\wcifs.sys - ok
15:08:41.0877 0x1a1c [ AC3DA8AAC02C94DC65ECDF9548E6372D, AE4B0E81C601521DA974D53E44295C98331CED7C9CC2F260434E6BC0C475DDA3 ] C:\Windows\System32\upfc.exe
15:08:41.0877 0x1a1c C:\Windows\System32\upfc.exe - ok
15:08:41.0877 0x1a1c [ A9C18F7D907645183D6194E1A85AB7DE, FB29CE5B84E6309D9A59126CB58EE389A2E2E539DF80E0A2636DA2412FD6D669 ] C:\Windows\System32\wevtsvc.dll
15:08:41.0877 0x1a1c C:\Windows\System32\wevtsvc.dll - ok
15:08:41.0877 0x1a1c [ AB50CB570A483C6FF9D10BC3454E8ADA, 2B7B62976DB5E01B695C132A3179239C631507F45DC27FB12AAF5746DCE08484 ] C:\Windows\System32\BluetoothApis.dll
15:08:41.0877 0x1a1c C:\Windows\System32\BluetoothApis.dll - ok
15:08:41.0892 0x1a1c [ 61D5D4DC825D61179937CB2D7C6DEE86, 38A2C9E26873F73EA853F39D12C7399807B8BA86DFEEC9447C8C1377BD7C78AF ] C:\Windows\System32\BthRadioMedia.dll
15:08:41.0892 0x1a1c C:\Windows\System32\BthRadioMedia.dll - ok
15:08:41.0892 0x1a1c [ 769ACDF8CE8BBA378B9D32C123CCE647, 00552779E9CED999E657187D458CA120CE2BDBE804DDA24E88BB11E1A40DFA92 ] C:\Windows\System32\drivers\cldflt.sys
15:08:41.0892 0x1a1c C:\Windows\System32\drivers\cldflt.sys - ok
15:08:41.0892 0x1a1c [ 4B67BFC2FC5CEBEFF5F7F04BCF085F94, 5A0898BD4384B04DDB7F0154E328BEFBF101DFDB9EFCD587F75857390ED1B36B ] C:\Windows\System32\dwmghost.dll
15:08:41.0892 0x1a1c C:\Windows\System32\dwmghost.dll - ok
15:08:41.0892 0x1a1c [ C17D74D282D5DD848C39696CBCE0B80C, 4CA3E359B863BB1CB7B0BC2CE87E6FA9E1FED4BC94674F093B7539B1F4A97F04 ] C:\Windows\System32\PortableDeviceApi.dll
15:08:41.0892 0x1a1c C:\Windows\System32\PortableDeviceApi.dll - ok
15:08:41.0908 0x1a1c [ A3AD9741C70ADDA664F704A38B5D7C38, D594A3EAA90372C223F26716D01D20F8EFF4FF4D2EF920FDD8B7D199A728314D ] C:\Windows\System32\profsvc.dll
15:08:41.0908 0x1a1c C:\Windows\System32\profsvc.dll - ok
15:08:41.0908 0x1a1c [ 626A1593186D839054720C0D116C682E, 1D3091E00B0AA4F7D1D73373BEF1C265F6C61AE987AD03E7AC3418BDCDF1256A ] C:\Windows\System32\TabSvc.dll
15:08:41.0908 0x1a1c C:\Windows\System32\TabSvc.dll - ok
15:08:41.0908 0x1a1c [ B4F8ED117D5120009972A470AF4FA323, 61BF1500B54145B7CFB8461078A14735DB617B7EDA82AA5250CA0D10865ED865 ] C:\Windows\System32\wpdbusenum.dll
15:08:41.0908 0x1a1c C:\Windows\System32\wpdbusenum.dll - ok
15:08:41.0924 0x1a1c [ BBADD85854BFB5D43C60B7AC8EEA3DBA, 968C043ABEA46F5C79525863B3FE2681AC0FA4202036C9EFD20B408DECF407E2 ] C:\Windows\System32\atiesrxx.exe
15:08:41.0924 0x1a1c C:\Windows\System32\atiesrxx.exe - ok
15:08:41.0924 0x1a1c [ D5FFAA526C05066EE342801EA404465A, 98D9B50E4E55257082110DC4F0492CA723354802D7BD8DC64594E06DF1389ED4 ] C:\Windows\System32\drivers\storqosflt.sys
15:08:41.0924 0x1a1c C:\Windows\System32\drivers\storqosflt.sys - ok
15:08:41.0924 0x1a1c [ F14F0B66D520B59C967B6731EF2030FB, 46C2A7D1A3C838F77CCC5B5A52546FB4B80F7925DAACC63081B296712C6F3293 ] C:\Windows\System32\avrt.dll
15:08:41.0924 0x1a1c C:\Windows\System32\avrt.dll - ok
15:08:41.0924 0x1a1c [ ECCE5D2A2B84B65F1A04E978C51DBDD1, C5AE0B65EE61A2548AB2164797F25D1E013ACA46338D22A852F3F3EC1CE7FEE6 ] C:\Windows\System32\ISM.dll
15:08:41.0924 0x1a1c C:\Windows\System32\ISM.dll - ok
15:08:41.0939 0x1a1c [ 1B16FF627B77542662EED7129C06C63E, C5E9D8E4AAA528CEF83965684183833DF37D0192AFC1E5E2C576CE69079998CD ] C:\Windows\System32\schedsvc.dll
15:08:41.0939 0x1a1c C:\Windows\System32\schedsvc.dll - ok
15:08:41.0939 0x1a1c [ B3AB2D5B98E67EC56ED4EB9D2A3199BF, ADB9574CE3CE8837AD5A4B3684D266FBF5CFDE7EE27E1D7E01B73A0B104ADF5B ] C:\Windows\System32\atieclxx.exe
15:08:41.0939 0x1a1c C:\Windows\System32\atieclxx.exe - ok
15:08:41.0939 0x1a1c [ 2A798A380EE1187CBD27321C6FDA5AF0, 98A5BC46A573660189ECDA50D73490750BB831EF32A6041EEEB343FF4A41478F ] C:\Windows\System32\lmhsvc.dll
15:08:41.0939 0x1a1c C:\Windows\System32\lmhsvc.dll - ok
15:08:41.0955 0x1a1c [ 884858FFD2D469B96FD6B3AF6CEEE93D, D27F6BBE87F5FFECE582FF59F12966B743946B20B76261BA988E6C0E5DDB9B86 ] C:\Windows\System32\mstask.dll
15:08:41.0955 0x1a1c C:\Windows\System32\mstask.dll - ok
15:08:41.0955 0x1a1c [ 50251275995BD9A037D7A33F0907E9FC, 5A280F83E83F60CCCAA3AC37744BA471C624415BDE15BF21EB0D16FA50C28058 ] C:\Windows\System32\bi.dll
15:08:41.0955 0x1a1c C:\Windows\System32\bi.dll - ok
15:08:41.0955 0x1a1c [ C7664DCF42C8A07AD3C99DC7868ECF13, 67479437FF151396BB2C5B86338A3F17279C80AE4D374D5AC1B88B2720D307CE ] C:\Windows\System32\CoreUIComponents.dll
15:08:41.0955 0x1a1c C:\Windows\System32\CoreUIComponents.dll - ok
15:08:41.0955 0x1a1c [ 6C5A19781655964BEE21CFDFFF99369D, E3FC4DECA28D34697FA67D5DF5BA233B884EE0608BA4F6DD61B82F9592F0B8F8 ] C:\Windows\System32\httpprxc.dll
15:08:41.0955 0x1a1c C:\Windows\System32\httpprxc.dll - ok
15:08:41.0970 0x1a1c [ 9C9C952B6596BEF756BB39452F971C93, 456F2DD489ACA8DC93C80E837B92FF81081B3816599609E48A5003B805E97AB8 ] C:\Windows\System32\ninput.dll
15:08:41.0970 0x1a1c C:\Windows\System32\ninput.dll - ok
15:08:41.0970 0x1a1c [ C2AB514FAB220BB63A3755C44E20A56A, 0E4C8D4E45D4886E7905DC21EC292CC8E0D4F139B42566586A00EB180E57D139 ] C:\Windows\System32\profsvcext.dll
15:08:41.0970 0x1a1c C:\Windows\System32\profsvcext.dll - ok
15:08:41.0970 0x1a1c [ 4BC7EF3AB403AAB1771911E3EB3B7CD7, B38A0C00B433B0073C72FCDF364963A822AEDEB20068DA74F2FAB03AE6404D06 ] C:\Windows\System32\ubpm.dll
15:08:41.0970 0x1a1c C:\Windows\System32\ubpm.dll - ok
15:08:41.0986 0x1a1c [ 25222B73D463284A85D32A56F002BD62, 94732D9115F65147862D8B06D76AF1E8246E2B0FB8E5AF3D3C7F461B0A4A8483 ] C:\Windows\System32\es.dll
15:08:41.0986 0x1a1c C:\Windows\System32\es.dll - ok
15:08:41.0986 0x1a1c [ 8B90714713B88C65AB9580031E23A3EA, 1EB03B86CD5B1B6CD1B700A7A074B45BCEB6C359439B2B4DC6418D6324733999 ] C:\Windows\System32\sysmain.dll
15:08:41.0986 0x1a1c C:\Windows\System32\sysmain.dll - ok
15:08:41.0986 0x1a1c [ B79E2A4394F5459582C928916EE9A1AF, 4B473C359A6C9AE38DCF2CBFC3E8EBA209CDB6B4C98091FED30FCBC23982FB3E ] C:\Windows\System32\taskcomp.dll
15:08:41.0986 0x1a1c C:\Windows\System32\taskcomp.dll - ok
15:08:41.0986 0x1a1c [ A90774D7D465E1085A95326FAD89B25C, 503EE739A30D67CA4EC27416D4A43F76BA8BC75A8DB175BAFD282307920E944F ] C:\Windows\System32\themeservice.dll
15:08:41.0986 0x1a1c C:\Windows\System32\themeservice.dll - ok
15:08:42.0002 0x1a1c [ 786159CC1143E56BDAB09FE275D0152D, 39ACB7CBB27720497EF805526EEC67DB5BC258A0661E692EADC31D65EC76FD7B ] C:\Windows\System32\wmiclnt.dll
15:08:42.0002 0x1a1c C:\Windows\System32\wmiclnt.dll - ok
15:08:42.0002 0x1a1c [ 45DAD5B77AA25CC41DE606CB23D56492, 3BE1AC18A5F6DC9833C5BDC72A21716E2C246ED97485749693843E2B59E9DA4F ] C:\Windows\System32\policymanager.dll
15:08:42.0002 0x1a1c C:\Windows\System32\policymanager.dll - ok
15:08:42.0002 0x1a1c [ 5FC3A698DE6BA51AB9709E1403F1A8DB, BC3EC88DC49A4A933EFC28FCF8A3281ECFB39AF53AC17176B6FB74624DF7E299 ] C:\Windows\System32\nsisvc.dll
15:08:42.0002 0x1a1c C:\Windows\System32\nsisvc.dll - ok
15:08:42.0002 0x1a1c [ EE711439FD0F1293B43F0FE195E5C073, 9F96ACC449D72C08212756E422C2037F82C2135CCD0907E00EB16582F0AB1A6D ] C:\Windows\System32\Sens.dll
15:08:42.0002 0x1a1c C:\Windows\System32\Sens.dll - ok
15:08:42.0017 0x1a1c [ 7A5388F4E7CB37108543070D41235E5C, EF0EAD9D26BB69F5BACDD37DDE7A1450B59F179D600595269789031DFB1694E8 ] C:\Windows\System32\dhcpcore.dll
15:08:42.0017 0x1a1c C:\Windows\System32\dhcpcore.dll - ok
15:08:42.0017 0x1a1c [ 6A19231D8FD2D70091330401DAE88017, 193297CDCA2ED230FE9C02072C98B19F9DE3AF6FB3EE8BE88E18759DD78E91FF ] C:\Windows\System32\AudioEndpointBuilder.dll
15:08:42.0017 0x1a1c C:\Windows\System32\AudioEndpointBuilder.dll - ok
15:08:42.0017 0x1a1c [ F1C993E0CECA8F8E7DD3872D6B2CAC7B, 5261738679EC0F84FAFB8488CB275B121607D9920851CC847D303254EB386EB8 ] C:\Windows\System32\FntCache.dll
15:08:42.0017 0x1a1c C:\Windows\System32\FntCache.dll - ok
15:08:42.0033 0x1a1c [ 6779F33803DBD88EC4DEE0E06E41A927, 254A40FE3237699E97F17EC7C8CD6638C33BA1D981C0F413BAB4B5720B63C31A ] C:\Windows\System32\dhcpcore6.dll
15:08:42.0033 0x1a1c C:\Windows\System32\dhcpcore6.dll - ok
15:08:42.0033 0x1a1c [ 4D5E154DE168E4A3B90F86A1966CE5D1, BA21BF38DD0AE9CC2017BC013053ABECB9CA3C20A6C39CDF8EE4B9C66E796438 ] C:\Windows\System32\drivers\WpdUpFltr.sys
15:08:42.0033 0x1a1c C:\Windows\System32\drivers\WpdUpFltr.sys - ok
15:08:42.0033 0x1a1c [ 6C3D8C8C991B62588C52336C5F60423C, 7388249315DFFF87045E55CE79CA1764E5E305C6F0418BD5077957B2E32F5569 ] C:\Windows\System32\drivers\WUDFRd.sys
15:08:42.0033 0x1a1c C:\Windows\System32\drivers\WUDFRd.sys - ok
15:08:42.0033 0x1a1c [ 296AAEE6AB4C73A46E820D416BC29184, 1FA8532882235FE9AC11234BC98597D267A25191EF66EE0F1DC53BB80DB2AE59 ] C:\Windows\System32\PortableDeviceConnectApi.dll
15:08:42.0033 0x1a1c C:\Windows\System32\PortableDeviceConnectApi.dll - ok
15:08:42.0049 0x1a1c [ DDAFEE7A99146D7F5F888F78D700F225, BEF6C1A0766CA5B2D63FB211E73CACEA780386124BBC488C524983DCE2FDE0F4 ] C:\Windows\System32\dhcpcsvc.dll
15:08:42.0049 0x1a1c C:\Windows\System32\dhcpcsvc.dll - ok
15:08:42.0049 0x1a1c [ 01446D49B82AD357F2786D90D02C83AA, 3200C858C4A5187902279C81DE464261CA84D3499C25F5DBBDD416C649E2B423 ] C:\Windows\System32\dhcpcsvc6.dll
15:08:42.0049 0x1a1c C:\Windows\System32\dhcpcsvc6.dll - ok
15:08:42.0049 0x1a1c [ 9061E02072E5AA9862BAAB295227470E, 2624FEA2040AB5D42EF2FC6CD0085B415282434148F9AAC5B96D1583DC56017B ] C:\Windows\System32\winnsi.dll
15:08:42.0049 0x1a1c C:\Windows\System32\winnsi.dll - ok
15:08:42.0049 0x1a1c [ 902D7BA5FADD42DB2DC6C7DD5F9C0CF7, 2E9EDAC8AD372BD9ADFFE852A18F5FBD25DE804C0CA39C2F5B88365CC443C138 ] C:\Windows\System32\WUDFHost.exe
15:08:42.0049 0x1a1c C:\Windows\System32\WUDFHost.exe - ok
15:08:42.0064 0x1a1c [ ECF241DFFBAA6860EBBBFC1560D1F9D3, 7F58CD9A88432240B8ACC65F17EE234C38CDB01AA9A3E55BBF95850E4C5D442E ] C:\Windows\System32\nlasvc.dll
15:08:42.0064 0x1a1c C:\Windows\System32\nlasvc.dll - ok
15:08:42.0064 0x1a1c [ 77E286164BAFE1FA0AE28B6BBAB94146, 324553EBC48D3E69FFC6B319C66ED206C095FFBE4E464F351AD1E1227F875C25 ] C:\Windows\System32\wshhyperv.dll
15:08:42.0064 0x1a1c C:\Windows\System32\wshhyperv.dll - ok
15:08:42.0064 0x1a1c [ 6C32704C67F34B2E5FDC7760DA868020, 72D237D23DF537AF96E0EBA7963A6755A4FB24F37A6969544ECDCADF923BE640 ] C:\Windows\System32\CSystemEventsBrokerClient.dll
15:08:42.0064 0x1a1c C:\Windows\System32\CSystemEventsBrokerClient.dll - ok
15:08:42.0080 0x1a1c [ 2D06B7F6F72790BF0E58CAB865428AE7, 3E495F4E0CA54437B95A59868B8B1EEE2A3401D02F04C1DB4CDA8A06B453D02C ] C:\Windows\System32\dnsrslvr.dll
15:08:42.0080 0x1a1c C:\Windows\System32\dnsrslvr.dll - ok
15:08:42.0080 0x1a1c [ 2AB4FF71BC330FC5583F8987FA8EFDF0, 3EC5DF3F8006252BA816973B5F77009F3920D235B6FB9A812D6A116F8852BE61 ] C:\Windows\System32\logoncli.dll
15:08:42.0080 0x1a1c C:\Windows\System32\logoncli.dll - ok
15:08:42.0080 0x1a1c [ CD6321735DAF22CE2C57604EFBBFB254, F5938E82A6D55C1FABB8E8E5D7EFAA36D282049044FEF67587975A605B05D388 ] C:\Windows\System32\ncsi.dll
15:08:42.0080 0x1a1c C:\Windows\System32\ncsi.dll - ok
15:08:42.0080 0x1a1c [ 1C48440F540AB6870E7810E0ED59B47A, 23CB8D1D0A35324E145F88F4E9AA37B66DAD597A9F3A85BEEC8DF99A30E41FAB ] C:\Windows\System32\wkscli.dll
15:08:42.0080 0x1a1c C:\Windows\System32\wkscli.dll - ok
15:08:42.0095 0x1a1c [ 5947BA35AD1EC19CB97B3E18CA0A3D03, F2DD96E74132532B33463DBF0288C74432B9A3C343282E105005ADE0C3FE35D6 ] C:\Windows\System32\MMDevAPI.dll
15:08:42.0095 0x1a1c C:\Windows\System32\MMDevAPI.dll - ok
15:08:42.0095 0x1a1c [ 2D19D3F2091DA9DC6D422C80BC4208DC, C40307CE1C7CB389CBEA56B05F35133C955EBB1EFDAD904777C8C8EF3E3ACC56 ] C:\Windows\System32\TimeBrokerClient.dll
15:08:42.0095 0x1a1c C:\Windows\System32\TimeBrokerClient.dll - ok
15:08:42.0095 0x1a1c [ 1CC19A0D776DBB7196B88A12EB56641A, EBC90BC0A6FB4F7B44A02EDEDE53A2C544C35FD70F6C4A1BFDD91A56A85FCD5A ] C:\Windows\System32\nrpsrv.dll
15:08:42.0095 0x1a1c C:\Windows\System32\nrpsrv.dll - ok
15:08:42.0095 0x1a1c [ 9F5AC57CE868C5E7E58F496D5947BFBC, 815B1887CE547A67C22C3F818F7897E60A58B626B62803439CDF8A2D623FB372 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
15:08:42.0095 0x1a1c C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
15:08:42.0111 0x1a1c [ 6B50241793122402D063A17FFEC04C01, A51FEF488BEDC8FDBF445C08D87BDD7B209C8A28980990D88F3267445BBFF4B1 ] C:\Windows\System32\TimeBrokerServer.dll
15:08:42.0111 0x1a1c C:\Windows\System32\TimeBrokerServer.dll - ok
15:08:42.0111 0x1a1c [ 306E880F2A2BAC0717C89EB5D85359BA, D8FEAC3D578AF0E34556A88E90E6891D70408EE8885756760D4A91C8572A487D ] C:\Windows\System32\FWPUCLNT.DLL
15:08:42.0111 0x1a1c C:\Windows\System32\FWPUCLNT.DLL - ok
15:08:42.0111 0x1a1c [ E0DCAD4EF7CDD32F200CB16D7A9BBAAE, 54D9CCDBB2E7F6907F712E8B841F13E2DB3078F4121C6A86F13F5B3B86071ACA ] C:\Windows\System32\WPTaskScheduler.dll
15:08:42.0111 0x1a1c C:\Windows\System32\WPTaskScheduler.dll - ok
15:08:42.0127 0x1a1c [ 377A9B900A742D89A1C31135619304CE, 58B01E5186764EF390AFC061E5294CEA559A3EFF1C119EBE7B4BC0DDAB22A687 ] C:\Windows\System32\FontProvider.dll
15:08:42.0127 0x1a1c C:\Windows\System32\FontProvider.dll - ok
15:08:42.0127 0x1a1c [ 2FFB9EFAD1D42077D34DF04DDE22D474, 5F2479A1413623723140AA0C2FFA9E85D4C373EC8E685457AE58B5BCC7D6DFAF ] C:\Windows\System32\netjoin.dll
15:08:42.0127 0x1a1c C:\Windows\System32\netjoin.dll - ok
15:08:42.0127 0x1a1c [ 4DEAB471FDFB7B45FC9E0FB1710A3FAF, 27041EF8C19644E3AA911BAFFA8EB171AC521A846D18B0A2A7B21F34CD85D7EE ] C:\Windows\System32\ssdpapi.dll
15:08:42.0127 0x1a1c C:\Windows\System32\ssdpapi.dll - ok
15:08:42.0127 0x1a1c [ 9E78FF24C05874B3EA4C8029879C28AC, 01EB54FC614BEB800ED547A00F6BF7434267DB5BE880D025ADEDE36EDF9D7FA4 ] C:\Windows\System32\usermgr.dll
15:08:42.0127 0x1a1c C:\Windows\System32\usermgr.dll - ok
15:08:42.0142 0x1a1c [ E51EA7E9C514F915327E2499D98065F2, D7F294D14B2EB0EF2128B7A84E216DD40488E628C06FA59D0C1E6B516AEC5A6D ] C:\Windows\System32\wlanapi.dll
15:08:42.0142 0x1a1c C:\Windows\System32\wlanapi.dll - ok
15:08:42.0142 0x1a1c [ BDFC8877195C6A4D4BD9118286CC7B49, 192E2CCB42CA13F5A6F481E8ABDE135B20418FFEEAC496554F0545E63ECB1794 ] C:\Windows\System32\netprofmsvc.dll
15:08:42.0142 0x1a1c C:\Windows\System32\netprofmsvc.dll - ok
15:08:42.0142 0x1a1c [ 7162C0C2240A8493C6FDE2BA2346ADAA, 533E15A7E49A2B88EC8A8C92D36F5D2CAACC205914262E6980DFC569A05179BD ] C:\Windows\System32\WMVCORE.DLL
15:08:42.0142 0x1a1c C:\Windows\System32\WMVCORE.DLL - ok
15:08:42.0142 0x1a1c [ F225F37717C8D714B56CF21C7C1E9C34, E272D0E33299BCA60479683EAE0D9B5D880293C01B337D5759FEE812EA631A39 ] C:\Windows\System32\taskhostw.exe
15:08:42.0142 0x1a1c C:\Windows\System32\taskhostw.exe - ok
15:08:42.0158 0x1a1c [ B23963938989724C916E4AF1E8E3268F, 6DDE27EC04DC5EF0A93521DD2354C8ADAD5218C4813DC0D90E7214FFCB801349 ] C:\Windows\System32\wship6.dll
15:08:42.0158 0x1a1c C:\Windows\System32\wship6.dll - ok
15:08:42.0158 0x1a1c [ DAC6849C4D6D7CD412CA5C11E94CAC39, 431272B8D077882F6C051A1D7C0771150B8D6F04D856766853CC0E831652C6AB ] C:\Windows\System32\wshqos.dll
15:08:42.0158 0x1a1c C:\Windows\System32\wshqos.dll - ok
15:08:42.0158 0x1a1c [ EF867286D0E1CF1990B7400BA80FAD77, C1CEC4845FE8AE0E3EF1AE82953F7931F09014D0EB8D6514769F944BDB9D40F2 ] C:\Windows\System32\WSHTCPIP.DLL
15:08:42.0158 0x1a1c C:\Windows\System32\WSHTCPIP.DLL - ok
15:08:42.0174 0x1a1c [ 5D09EC87CC3CFA05A3E12D95E7127DD9, 15CBE38AA7EDC72790993390E40E2E4E575C9D6FF32947C8C3BF61F46E2512DA ] C:\Windows\System32\npmproxy.dll
15:08:42.0174 0x1a1c C:\Windows\System32\npmproxy.dll - ok
15:08:42.0174 0x1a1c [ 22D054056DBA9DB0752409A7FD5A8929, AAE0D838848764E810862A2F038FB4737685AE9510D9BABB9C97052B955CA501 ] C:\Windows\System32\WinTypes.dll
15:08:42.0174 0x1a1c C:\Windows\System32\WinTypes.dll - ok
15:08:42.0174 0x1a1c [ 112E5F91B9904C53F1A4CEA38055BCCC, 7B720474A1D131AE509E341CF67BC289C06A07B6ACED13C41EBE5A6D15B3E76F ] C:\Windows\System32\DeviceDriverRetrievalClient.dll
15:08:42.0174 0x1a1c C:\Windows\System32\DeviceDriverRetrievalClient.dll - ok
15:08:42.0174 0x1a1c [ 259D5F15DA8B4D3A1712059D417A25AE, 4F6584474572D2CD930FBDAD168B9A16D29D077B198265502D6F883611FA9EB8 ] C:\Windows\System32\DevPropMgr.dll
15:08:42.0174 0x1a1c C:\Windows\System32\DevPropMgr.dll - ok
15:08:42.0189 0x1a1c [ 7B27C4F1C201F510B4D115059E11355C, 0A0C5605848443B30422064EA60303B0326AFCF4B8ED8DA65A06889596E89E11 ] C:\Windows\System32\MitigationConfiguration.dll
15:08:42.0189 0x1a1c C:\Windows\System32\MitigationConfiguration.dll - ok
15:08:42.0189 0x1a1c [ 85CB3019514B7903359A7C1F068B4F93, 5EB51996BBE6B334AF881BF0B2FF6DB8E42D3D1A210DA29C88D53A20ACCE2F58 ] C:\Windows\System32\urlmon.dll
15:08:42.0189 0x1a1c C:\Windows\System32\urlmon.dll - ok
15:08:42.0189 0x1a1c [ ECE9EDC1A9118C0D2C8BF33EB8EE6C6D, DC71FD456589F93B8ADBA5E5D8853796569137B1A38A28D8C8B90A47BC96C954 ] C:\Windows\System32\wevtapi.dll
15:08:42.0189 0x1a1c C:\Windows\System32\wevtapi.dll - ok
15:08:42.0205 0x1a1c [ 824E2337116D2CBFD2205706DB536A98, E39EA4A01FC2320ECB5F0D6E3689F1F0E2A4FC0E10CE9F31558BE014AA6E6C30 ] C:\Windows\System32\newdev.dll
15:08:42.0205 0x1a1c C:\Windows\System32\newdev.dll - ok
15:08:42.0205 0x1a1c [ 15CD90AEB634FB53991035812AA4713F, 59CD1B5807E2A8C21116D26AF2F9B58195F3CEFCE1DAB86F27D0643323017A24 ] C:\Windows\System32\audiosrv.dll
15:08:42.0205 0x1a1c C:\Windows\System32\audiosrv.dll - ok
15:08:42.0205 0x1a1c [ 4C89C2FDFC9FA730CC1CA5B79D45D36E, 8B2E673C80837113A598A5BDD5C6E8A44A7CAE97C53CEE587DF56FB9FA761588 ] C:\Windows\System32\samcli.dll
15:08:42.0205 0x1a1c C:\Windows\System32\samcli.dll - ok
15:08:42.0205 0x1a1c [ 1B3AE44FBDD6BE65C64B97F21475C4E1, 1FCA6FC5D2E25B522E633AAE4F55456B4F6CDE25A22F0C6C01FBD34C9825ADDE ] C:\Windows\System32\AppXDeploymentClient.dll
15:08:42.0205 0x1a1c C:\Windows\System32\AppXDeploymentClient.dll - ok
15:08:42.0220 0x1a1c [ 91563B08A4FF7013420A14A1446264AE, 75A537094EEBF79C1E383D03016E6A4ACA6019BF78D8E86370A67CC50D49D606 ] C:\Windows\System32\drivers\lltdio.sys
15:08:42.0220 0x1a1c C:\Windows\System32\drivers\lltdio.sys - ok
15:08:42.0220 0x1a1c [ FF91879639B18FEBC6F509401686FCDD, AC33DAAEC577E0D73C08D2599DEC23516B11FF3FFADB56083356FF6FDB7DE61B ] C:\Windows\System32\drivers\wanarp.sys
15:08:42.0220 0x1a1c C:\Windows\System32\drivers\wanarp.sys - ok
15:08:42.0220 0x1a1c [ E6710A8A9EFB4B12D941353922E06C10, 36848FE29A48BE37B432E735565EEBBEDF54E100611ED2FA1C71855AB3F11DB9 ] C:\Windows\System32\iertutil.dll
15:08:42.0220 0x1a1c C:\Windows\System32\iertutil.dll - ok
15:08:42.0236 0x1a1c [ CE2476875C701A6EE2525663761481BB, F22CF0C94462CF43B5598885625E6F3EAE8DE33E735E07AF10853F5CE410F7DB ] C:\Windows\System32\WindowsCodecs.dll
15:08:42.0236 0x1a1c C:\Windows\System32\WindowsCodecs.dll - ok
15:08:42.0236 0x1a1c [ 37634E945C23CC12DD2364652F5CC007, 2B969B0F6A9FE4FB9666DA782177E9EA9B3002FC79D4A76C3D098C90A771F745 ] C:\Windows\System32\AudioSrvPolicyManager.dll
15:08:42.0236 0x1a1c C:\Windows\System32\AudioSrvPolicyManager.dll - ok
15:08:42.0236 0x1a1c [ 519C70A90D88799E6DAD7AA394FA4699, 922B5CBF483DE1D65E600E179D17FB42D98CAFF477F94D541C1BF911A049FDAC ] C:\Windows\System32\devrtl.dll
15:08:42.0236 0x1a1c C:\Windows\System32\devrtl.dll - ok
15:08:42.0236 0x1a1c [ 6479443BB89DBAC3BBCE9C2517EFAD0D, D0AFDD114C5B8A9D2C880D258CED9E99187B21836BDB004003B44E33042B6710 ] C:\Windows\System32\drivers\mslldp.sys
15:08:42.0236 0x1a1c C:\Windows\System32\drivers\mslldp.sys - ok
15:08:42.0252 0x1a1c [ 3BBF4C8BB52DCB265EF71E4F75369C65, E992646C21C84CF5262C2C08B18859E97DB918C190CF960E90DA13E920486417 ] C:\Windows\System32\drivers\ndisuio.sys
15:08:42.0252 0x1a1c C:\Windows\System32\drivers\ndisuio.sys - ok
15:08:42.0252 0x1a1c [ 5B8D57A3FA8AFD8EA21240E10E570E4E, 563AB539E0B5F7F8AEA203AC4ACAFFA5834B614EC08415A9A201F9D0B616B088 ] C:\Windows\System32\drivers\nwifi.sys
15:08:42.0252 0x1a1c C:\Windows\System32\drivers\nwifi.sys - ok
15:08:42.0252 0x1a1c [ 7936E95FFEA1758638715C6465B2A739, 6F8582EF105FC5B35A086F8433E0D08BF1D8955986835A9C94CC509D7BB6809C ] C:\Windows\System32\drivers\rspndr.sys
15:08:42.0252 0x1a1c C:\Windows\System32\drivers\rspndr.sys - ok
15:08:42.0267 0x1a1c [ D4962D5E80352D877D83350F49918A5F, 2D76DC11AA93F347ED6878F896D39F7A51940289DBD764CDF1CF4E4E8618CC5B ] C:\Windows\System32\DeviceSoftwareInstallationClient.dll
15:08:42.0267 0x1a1c C:\Windows\System32\DeviceSoftwareInstallationClient.dll - ok
15:08:42.0267 0x1a1c [ 61A61ED80D52421DAE4F6E32137508B4, B62659907FC43BB73843EEA2655A99DD92E6B1C91A676022FED29A9762D9B5B5 ] C:\Windows\System32\winhttp.dll
15:08:42.0267 0x1a1c C:\Windows\System32\winhttp.dll - ok
15:08:42.0267 0x1a1c [ 186FA38A6DA726A52BE481B92C0E6912, C900F43DB244AF29EA50AD0F33ED4F7B58B946C5F267692C3802DBA521793B9C ] C:\Windows\System32\dusmsvc.dll
15:08:42.0267 0x1a1c C:\Windows\System32\dusmsvc.dll - ok
15:08:42.0267 0x1a1c [ BF3A1962EDDB3C139133D0B0928B3761, 0DF08A1C1A1DE4ED62A2CC6A576390A11C9067FBFEF0D2781EE93299001285C4 ] C:\Windows\System32\wcmsvc.dll
15:08:42.0267 0x1a1c C:\Windows\System32\wcmsvc.dll - ok
15:08:42.0283 0x1a1c [ 88C05FEA4377D827269EC592BB25DCF3, 4757114C9D3FFFC75C22BCE832C655C4FA24ABB729AB116F8CEBCF627AFCF34B ] C:\Windows\System32\coreaudiopolicymanagerext.dll
15:08:42.0283 0x1a1c C:\Windows\System32\coreaudiopolicymanagerext.dll - ok
15:08:42.0283 0x1a1c [ F8159853823DE11456AAB35F6F2FC055, 3D915902B75C40E3084D578C6A019C87C254E379E80BDD155CC202F20957C959 ] C:\Windows\System32\mobilenetworking.dll
15:08:42.0283 0x1a1c C:\Windows\System32\mobilenetworking.dll - ok
15:08:42.0283 0x1a1c [ E95FD05979C7A6E62273C7F0ED473F3E, 7D62F9B2E4857803079A5A1156F64194596CC501CCA0A958988E93CD35F89FE3 ] C:\Windows\System32\OnDemandConnRouteHelper.dll
15:08:42.0283 0x1a1c C:\Windows\System32\OnDemandConnRouteHelper.dll - ok
15:08:42.0283 0x1a1c [ 1004EAD5D7DF56ADA24CB5015DAF48D2, 3B3816359F4386E2644A7B73F10DEE45CAF275FB262A067F2172AB593A8CDD76 ] C:\Windows\System32\Windows.ApplicationModel.dll
15:08:42.0283 0x1a1c C:\Windows\System32\Windows.ApplicationModel.dll - ok
15:08:42.0299 0x1a1c [ B697457756096E04A4B534EBEED6B291, A6A533340A5D6CB75F45176281FE2E5DBC11545D3E972603A867A8873F967FC7 ] C:\Windows\System32\drvstore.dll
15:08:42.0299 0x1a1c C:\Windows\System32\drvstore.dll - ok
15:08:42.0299 0x1a1c [ 1464A9D9C13215132BE9F8281CCC3AA8, B3A52538233A1D5BD1262113FE04AE850979CED4BCD4C31CABC3CB7A70576C1F ] C:\Windows\System32\mfperfhelper.dll
15:08:42.0299 0x1a1c C:\Windows\System32\mfperfhelper.dll - ok
15:08:42.0299 0x1a1c [ 79E2068FB1E925B013EE28ACA7D1BEEE, 8899B7C7268188F33BCB639CD58FB14DAB6E39A0EB5C4A0C587E779F74A03D15 ] C:\Windows\System32\rasadhlp.dll
15:08:42.0299 0x1a1c C:\Windows\System32\rasadhlp.dll - ok
15:08:42.0314 0x1a1c [ B9EC5BC3FAFF207324CCFC803851AB93, 920B2C41BF551D46F40B8440137AD267FF4EF5EE71BF859CD4B0294CD162B50E ] C:\Windows\System32\Windows.Gaming.Input.dll
15:08:42.0314 0x1a1c C:\Windows\System32\Windows.Gaming.Input.dll - ok
15:08:42.0314 0x1a1c [ FC54018CBA99701535DD08C1D6F6CB30, C36AA6F2E98FCD3D22382406CF4635CCC706BCAB8353E28B24D2F66ACEAC3C57 ] C:\Windows\System32\WMASF.DLL
15:08:42.0314 0x1a1c C:\Windows\System32\WMASF.DLL - ok
15:08:42.0314 0x1a1c [ 610EA9176B42FF8650CDE5DCF3213989, D080E3A11F1A7EC75B32B5329A09CA1585716EB26CF10D45579D4606376FE29E ] C:\Windows\System32\cmintegrator.dll
15:08:42.0314 0x1a1c C:\Windows\System32\cmintegrator.dll - ok
15:08:42.0314 0x1a1c [ C69E9512640F990F8350303235A16474, BFBA47F482AB1963A4677E9EB45BE88FAB8250FC5F359187DD34B489E17E6C5D ] C:\Windows\System32\wcmcsp.dll
15:08:42.0314 0x1a1c C:\Windows\System32\wcmcsp.dll - ok
15:08:42.0330 0x1a1c [ 90A8FBC526772EEF031A95BFD236DD4E, 8CAABB00014CF377CA4BB838520851330DFB1E3856021AF28190A5AA78CE6FD2 ] C:\Windows\System32\StateRepository.Core.dll
15:08:42.0330 0x1a1c C:\Windows\System32\StateRepository.Core.dll - ok
15:08:42.0330 0x1a1c [ CAFA5E74679EC39037B5C00F2AB82D7E, 37C531C77C84894D671BB2531B9F2D5491251BFA7F4077EA26C1D0EE7CA54D09 ] C:\Windows\System32\wlansvc.dll
15:08:42.0330 0x1a1c C:\Windows\System32\wlansvc.dll - ok
15:08:42.0330 0x1a1c [ F22ECAE2E79EEB94C51A16AB42D3525F, BB259C649D501159D9B40558EF5D2C6BC0D8211C1BA4DBB9C94A28F8D5F58259 ] C:\Windows\System32\UserMgrProxy.dll
15:08:42.0330 0x1a1c C:\Windows\System32\UserMgrProxy.dll - ok
15:08:42.0330 0x1a1c [ D41B7D3152E4ED1A32FA8939A828BAF7, E89B5C8392AA3458D998673835DF79DFAFA110F2F2E3E3A747B079C7C07A4C6C ] C:\Windows\System32\Windows.StateRepository.dll
15:08:42.0330 0x1a1c C:\Windows\System32\Windows.StateRepository.dll - ok
15:08:42.0345 0x1a1c [ BD008510936DD85058E195984CFDCC17, 3B60360550155774111869D6B71C660D6267AFD01349E093B865150F0D26DB82 ] C:\Windows\System32\wermgr.exe
15:08:42.0345 0x1a1c C:\Windows\System32\wermgr.exe - ok
15:08:42.0345 0x1a1c [ C8EF808C787D82789F713BF5C80F48B4, F023DA10846878EFB77690E9DF3CA3809CE796E18D82AA05AC632155498DC504 ] C:\Windows\System32\UIAnimation.dll
15:08:42.0345 0x1a1c C:\Windows\System32\UIAnimation.dll - ok
15:08:42.0345 0x1a1c [ 09B71B9B20A931049E92CAA8B0198E16, 776F2B032C3000105A727D83FC17F498FC0CC752755F34ED640D7951B995A652 ] C:\Windows\System32\DDORes.dll
15:08:42.0345 0x1a1c C:\Windows\System32\DDORes.dll - ok
15:08:42.0361 0x1a1c [ 00AD33C25ABF7E7BE7C4982CBE8AF7DF, 975E3871CEC841977B9237A5D38CE0707511EBA052BA8EEF0DFEC97BE98238A6 ] C:\Windows\System32\eappprxy.dll
15:08:42.0361 0x1a1c C:\Windows\System32\eappprxy.dll - ok
15:08:42.0361 0x1a1c [ A851F55E240E5FD5CF444FDA72045A5E, 5BDE53D6347397297C6ECB2B19696752FE851F1A9C7144BE4D8AD481642B8AD2 ] C:\Windows\System32\onex.dll
15:08:42.0361 0x1a1c C:\Windows\System32\onex.dll - ok
15:08:42.0361 0x1a1c [ FF0D68C6ED4A6316256BB6E716C767F0, 7775DC5299D2558703A0B403867E1FB39638A4296D315343269A492020920EB1 ] C:\Windows\System32\wlanmsm.dll
15:08:42.0361 0x1a1c C:\Windows\System32\wlanmsm.dll - ok
15:08:42.0361 0x1a1c [ E83991B17E9EE25DFFCFDA57883A5002, C22CDF1C62EB4F973383736E538A2C2244345D5869A866B7D09092295D81CF63 ] C:\Windows\System32\wlansec.dll
15:08:42.0361 0x1a1c C:\Windows\System32\wlansec.dll - ok
15:08:42.0377 0x1a1c [ 546FE1A4993DC7384ABA28129790FE39, B61B1AFFF6E3B701038890EE5CE92E51900319197B42B89EF2EB0BF178D789B0 ] C:\Windows\System32\WUDFx.dll
15:08:42.0377 0x1a1c C:\Windows\System32\WUDFx.dll - ok
15:08:42.0377 0x1a1c [ FA6AA982DDF1B76DE85E7DCEE1A929A7, 4F13048A6699D50C780DB9D072A2CA3C30294CCEDCC411167E49C4E8FDEDCA6E ] C:\Windows\System32\netapi32.dll
15:08:42.0377 0x1a1c C:\Windows\System32\netapi32.dll - ok
15:08:42.0377 0x1a1c [ 7DEDAFD826DEE03C941604E98A9B4BE3, C2E36C346B29F50376F3F487F5C18489A7A46158F55D72B8DB79CF493C4FE160 ] C:\Windows\System32\ClipRenew.exe
15:08:42.0377 0x1a1c C:\Windows\System32\ClipRenew.exe - ok
15:08:42.0377 0x1a1c [ C513432207191FDB95C18629BB3DF018, EDE7DCA4AC74BEA32FF3D83AC23AB63770F161A61ACB94237DAFAC9ED75D7ECC ] C:\Windows\System32\msxml6.dll
15:08:42.0377 0x1a1c C:\Windows\System32\msxml6.dll - ok
15:08:42.0392 0x1a1c [ 3550AFAB149B34A7FD023E2E1ABE26A8, 7F2D7EF2856D0EE8E71E0684D1DE2938DF309B1B44FA83CB99472DE5271B4508 ] C:\Windows\System32\OneCoreUAPCommonProxyStub.dll
15:08:42.0392 0x1a1c C:\Windows\System32\OneCoreUAPCommonProxyStub.dll - ok
15:08:42.0392 0x1a1c [ 040679147F6EA3928D4643AA598BFA0C, 6F5B43F69FF0E4043C7D10B278F766588DAE9D00C6954B3CE54733F39C96870E ] C:\Windows\System32\wlansvcpal.dll
15:08:42.0392 0x1a1c C:\Windows\System32\wlansvcpal.dll - ok
15:08:42.0392 0x1a1c [ CEA17E28EFF3B2EED6B49B5DDCC7327F, BA598EFD9D9C4449DEAC83F78CEC893AA127F31767902D6DD69A157B65450240 ] C:\Windows\System32\dxgiadaptercache.exe
15:08:42.0392 0x1a1c C:\Windows\System32\dxgiadaptercache.exe - ok
15:08:42.0392 0x1a1c [ FFE2D9D08A057C0864615FDD3DD2E0C6, DC251343978C9CC179981D4525CFC96B960FF0C7D08DA085C0FCCE2F415EF881 ] C:\Windows\System32\D3D12.dll
15:08:42.0392 0x1a1c C:\Windows\System32\D3D12.dll - ok
15:08:42.0408 0x1a1c [ F397CF83B694289BA27D7D54BCB34C73, 7A29296FD062E295CFED8EC9A0728068B306FA877EC3CF7CEF7D1E48756D06C3 ] C:\Windows\System32\PortableDeviceClassExtension.dll
15:08:42.0408 0x1a1c C:\Windows\System32\PortableDeviceClassExtension.dll - ok
15:08:42.0408 0x1a1c [ 1D656E3132B1F02A9A64600B56266FE4, F9244573EAEC79662EA36151132B5F559931960CB5ADBEB4758A8A9D6A9AFD25 ] C:\Windows\System32\PortableDeviceTypes.dll
15:08:42.0408 0x1a1c C:\Windows\System32\PortableDeviceTypes.dll - ok
15:08:42.0408 0x1a1c [ 60F89282E7289582C294D77F8C2F3EC5, E3F4C433DCA4EA2E4300EFD050F1CFAC630522F80E9719B4817420FC12086FBB ] C:\Windows\System32\CompatTelRunner.exe
15:08:42.0408 0x1a1c C:\Windows\System32\CompatTelRunner.exe - ok
15:08:42.0424 0x1a1c [ 2DF79B34F34BEC3031609B7B60805AC9, A3EF7B8259A4CDF258E42657EF69DC51591B028A057D98F0157C57A1C8B37072 ] C:\Windows\System32\TetheringIeProvider.dll
15:08:42.0424 0x1a1c C:\Windows\System32\TetheringIeProvider.dll - ok
15:08:42.0424 0x1a1c [ CA3BDB2DF8F62C689F94A5D3B2936C8E, 36DA2BEDF3BB298A3A45CCC0F00F5678C5B026AC1FB2DDF70ED55A44499C8A5D ] C:\Windows\System32\WiFiDisplay.dll
15:08:42.0424 0x1a1c C:\Windows\System32\WiFiDisplay.dll - ok
15:08:42.0424 0x1a1c [ 12391938757D942289D793B30E4935DB, BCDF0BC001EADBE2D1C0096F35368E4DE5656F459C6049E4B07DC65BDC7D6C9C ] C:\Windows\System32\spinf.dll
15:08:42.0424 0x1a1c C:\Windows\System32\spinf.dll - ok
15:08:42.0424 0x1a1c [ 6C7D2659605761D1B2898A6E09583902, EE04A0AFED4F1615E4991AB67C65961CA326010BD727FE51D6E2BD3E708B02B1 ] C:\Windows\System32\Windows.UI.Logon.dll
15:08:42.0424 0x1a1c C:\Windows\System32\Windows.UI.Logon.dll - ok
15:08:42.0439 0x1a1c [ 4C41666923A14DC687DEEE3B143AFB55, 4DD0F069254FE5577D5A478B70093049B4E062BB7760094E50090F6790456DAE ] C:\Windows\System32\conhost.exe
15:08:42.0439 0x1a1c C:\Windows\System32\conhost.exe - ok
15:08:42.0439 0x1a1c [ 912B28456292AF00A8EBF2B0F90E42B5, EAF349DC12A5368204838BE68348EC76512C1AB8D1AAA1B976D59B4478F0B3D5 ] C:\Windows\System32\drivers\condrv.sys
15:08:42.0439 0x1a1c C:\Windows\System32\drivers\condrv.sys - ok
15:08:42.0439 0x1a1c [ DCE1626DED5C7E08C733BAC6561BD12D, D6B01DB456B01D1576809E33A5C0E9F10B99830E2EB7EF4F430071653369DAA0 ] C:\Windows\System32\wlgpclnt.dll
15:08:42.0439 0x1a1c C:\Windows\System32\wlgpclnt.dll - ok
15:08:42.0455 0x1a1c [ 8AE77361DA429B75CB56F20E2B1CA044, D38D2CE5BD97B9C2760151FE91A1B3281C84ADC32B5A9AF680F46AD053F185D6 ] C:\Windows\System32\aticfx64.dll
15:08:42.0455 0x1a1c C:\Windows\System32\aticfx64.dll - ok
15:08:42.0455 0x1a1c [ 2173BFC80F82F06D55A2A0E72B63DDB3, 9758D0ADB84F95F4A1359E0D68CA43F8C367031212067892D69978D3E1643194 ] C:\Windows\System32\wifinetworkmanager.dll
15:08:42.0455 0x1a1c C:\Windows\System32\wifinetworkmanager.dll - ok
15:08:42.0455 0x1a1c [ 95AA2DE6A0E2F58A97F064BAF83CF78A, 6696426371243B248759046A9D140C72CC54E4FAFB1E4AE32E828E557651A6D2 ] C:\Windows\System32\wlanhlp.dll
15:08:42.0455 0x1a1c C:\Windows\System32\wlanhlp.dll - ok
15:08:42.0455 0x1a1c [ 039F154D7AA72CB03405F50EB5E5B44D, AC854829AA440A555BFB962FBFDCF3F1AEC48BEB3A85459E94619CF141C03DC4 ] C:\Windows\System32\WlanRadioManager.dll
15:08:42.0455 0x1a1c C:\Windows\System32\WlanRadioManager.dll - ok
15:08:42.0470 0x1a1c [ 155FF40C279B9C1D8DFC4C9A2A87841C, 3F66FD328608FFD25F2EFB1F402119ACA40DDF3F8928B9AC90C4BD6611D46082 ] C:\Windows\System32\NetSetupShim.dll
15:08:42.0470 0x1a1c C:\Windows\System32\NetSetupShim.dll - ok
15:08:42.0470 0x1a1c [ 7BB985D3D68A423CE05E007B14E225AB, 1FCA633889F61B7F18C2FCDF401846EE3B34E1EDFE8D428700DC45CE3F45E5BD ] C:\Windows\System32\shsvcs.dll
15:08:42.0470 0x1a1c C:\Windows\System32\shsvcs.dll - ok
15:08:42.0470 0x1a1c [ 33FB24F528B7B48AC594B95557922D6A, 272DE0DBF81F72C3215ED7B7BD62AEB9CB9E1A4513668E2858CF2F70470E2160 ] C:\Windows\System32\drivers\winquic.sys
15:08:42.0470 0x1a1c C:\Windows\System32\drivers\winquic.sys - ok
15:08:42.0470 0x1a1c [ E3E53B226DCC3D0F8A714929C45F068B, 5FF4A2D24058BF2A863995BCECF65F5631C29432B5D477959FFA47AD75820338 ] C:\Windows\System32\drivers\http.sys
15:08:42.0470 0x1a1c C:\Windows\System32\drivers\http.sys - ok
15:08:42.0486 0x1a1c [ C6CD2B6C8888942EF23D087E101F18BB, 5902547FCA2F001597928BD60D917C7D3A76F003C18631CEE4A7F204EB0B6505 ] C:\Windows\System32\fveapi.dll
15:08:42.0486 0x1a1c C:\Windows\System32\fveapi.dll - ok
15:08:42.0486 0x1a1c [ B54A80B1A307CE44C843EDD080FEA03E, BC7F9F33041C4594B25FF937F385C6E8A6BA870D25F781283C2147BB80A60919 ] C:\Windows\System32\spoolsv.exe
15:08:42.0486 0x1a1c C:\Windows\System32\spoolsv.exe - ok
15:08:42.0486 0x1a1c [ 020D5B7E60C39A98983733C520A6AB7A, 8FB4B6855E90FD4C3C7E21D7631A7C301D250325BE08A442959C463FC6564CC0 ] C:\Windows\System32\NetSetupApi.dll
15:08:42.0486 0x1a1c C:\Windows\System32\NetSetupApi.dll - ok
15:08:42.0486 0x1a1c [ 708DD306B5BEEE0D45E0EAE553257D2E, 25A7094AD4F97ED6EBD1302518F0975CEB3DA73B3796D7C7270F96577D1AF2F4 ] C:\Windows\System32\wincorlib.dll
15:08:42.0486 0x1a1c C:\Windows\System32\wincorlib.dll - ok
15:08:42.0502 0x1a1c [ 3414EAC66A02A3FAB5F61F17AEC156D5, B278F1F01AC245BBFEACB5944BB09E5DA326B8EF9E7B88180C3013B9473714F0 ] C:\Windows\System32\wwapi.dll
15:08:42.0502 0x1a1c C:\Windows\System32\wwapi.dll - ok
15:08:42.0502 0x1a1c [ A8F1C360A20D044BFF28E54C981330FF, D5626692261E12D610AFD9506B25C9FD6ACB6322AA35C1C5A522F2088FB4C571 ] C:\Windows\System32\NetSetupEngine.dll
15:08:42.0502 0x1a1c C:\Windows\System32\NetSetupEngine.dll - ok
15:08:42.0502 0x1a1c [ E70F61018BE3052491DF2E1879C5B7FE, 2388FFA2B7B7FCEFA2848AD78E0CE6DDA08110EBC535A5D7F1D1E5D3D2395FC3 ] C:\Windows\System32\BCP47Langs.dll
15:08:42.0502 0x1a1c C:\Windows\System32\BCP47Langs.dll - ok
15:08:42.0517 0x1a1c [ DAFF6F23D321DF8106CEC03BC0E9E964, 44A81200C3068E3A13448DEAA8387B5208299B6D120C42158FA15FA216C83753 ] C:\Windows\System32\drivers\bowser.sys
15:08:42.0517 0x1a1c C:\Windows\System32\drivers\bowser.sys - ok
15:08:42.0517 0x1a1c [ 3C5E2B48021E9D45CCB35B8987F3A399, BD7E591E1612F5FC51193D468543F1E008BD0A7AFBCF9E205CC66B8D27DB358E ] C:\Windows\System32\BFE.DLL
15:08:42.0517 0x1a1c C:\Windows\System32\BFE.DLL - ok
15:08:42.0517 0x1a1c [ AB7C450FA26544AB6D9344A81597B30B, 39139A19188EA85B39AA1DDA33B82B5F4A6ED543C7E11811EC9CE9DB8A41DADC ] C:\Windows\System32\drivers\mpsdrv.sys
15:08:42.0517 0x1a1c C:\Windows\System32\drivers\mpsdrv.sys - ok
15:08:42.0517 0x1a1c [ 4805FE481F8BA0E9EE23D568CDF0511F, D2EB6DAB8B2FB49FE7E84BEA4A46155F1594C8E76BA2A58EBA6C8A98724F117C ] C:\Windows\System32\drivers\mrxsmb.sys
15:08:42.0517 0x1a1c C:\Windows\System32\drivers\mrxsmb.sys - ok
15:08:42.0533 0x1a1c [ D12F8DF3F9CBB945AF07C5E966264D2D, DF0387B1F6A253D27422130C9E7AB16BECAA8966093611F9FB7C5A7A4E7D4BF4 ] C:\Windows\System32\drivers\mrxsmb20.sys
15:08:42.0533 0x1a1c C:\Windows\System32\drivers\mrxsmb20.sys - ok
15:08:42.0533 0x1a1c [ 5719B3ABD0FC28E1284F2515AE17613A, 5B4C567DFD75EEB75CD4D59436E748AA14EC9F9FC7655F915093813332E93AB4 ] C:\Windows\System32\version.dll
15:08:42.0533 0x1a1c C:\Windows\System32\version.dll - ok
15:08:42.0533 0x1a1c [ 25DB83722B01C0614679ACAC8C59D51A, 999A907B990EB769BE547A2E35B355FB20C0A5124CE9BE4EBBE2FF1F481C31C4 ] C:\Windows\System32\atiuxp64.dll
15:08:42.0533 0x1a1c C:\Windows\System32\atiuxp64.dll - ok
15:08:42.0533 0x1a1c [ 6728B2B1867B0607DFA28C13E625E355, C091519D82EC90EE44339B7BCFF2D2D5A33E9FB882EA2A54F312984834EBDCE2 ] C:\Windows\System32\wkssvc.dll
15:08:42.0533 0x1a1c C:\Windows\System32\wkssvc.dll - ok
15:08:42.0549 0x1a1c [ C6D64FDB19A235BF9D0F0CA526BA9129, 76FBB9642D83BFCE8918AB0F7DFAE720CA68D8CE9D0128A59886BF000B39FA9C ] C:\Windows\System32\NetSetupSvc.dll
15:08:42.0549 0x1a1c C:\Windows\System32\NetSetupSvc.dll - ok
15:08:42.0549 0x1a1c [ 6486011E637E07934F3E51482DC747C5, E26B5B6ECAB1D9534F52CA17889CBA0424B70B2E3303A6F934D41019F0E393EC ] C:\Windows\System32\Windows.UI.XamlHost.dll
15:08:42.0549 0x1a1c C:\Windows\System32\Windows.UI.XamlHost.dll - ok
15:08:42.0549 0x1a1c [ C7DC8A97E4D79109B6A57116A48B3D3D, 26B7748F520C5A40889EAFFA39279A1588E3812B841A8D49AACD53A0332FCA88 ] C:\Windows\System32\MrmCoreR.dll
15:08:42.0549 0x1a1c C:\Windows\System32\MrmCoreR.dll - ok
15:08:42.0564 0x1a1c [ 0301F99122692B658DA76145ACDB2F4B, 312A60ACA9E908BD82CA6B4A92D470BA1B5759B10ADBCBADD0111383ECE938E8 ] C:\Windows\System32\atidxx64.dll
15:08:42.0564 0x1a1c C:\Windows\System32\atidxx64.dll - ok
15:08:42.0564 0x1a1c [ E2B73F1C900896050EC7B1DD3E6276F7, 67ACD93C7961EB8F5C5DFBE8988881D3A930BFCCA5FA230CE9183A652899FECD ] C:\Windows\System32\dsparse.dll
15:08:42.0564 0x1a1c C:\Windows\System32\dsparse.dll - ok
15:08:42.0564 0x1a1c [ C4A4CCDD5EE11DA9398ADC321D200A71, 694729DA6BE83C60E97CEC8B91C90CBB2E2A0DA3D0F98F990A24AA7553F1AFBC ] C:\Windows\System32\ProximityService.dll
15:08:42.0564 0x1a1c C:\Windows\System32\ProximityService.dll - ok
15:08:42.0564 0x1a1c [ A52716A8E7EA25415F27BBEB0EBD0803, 0A4B57BC669FA2248D01C0B310A020B63651249664C39B34C4C836383B4B9FC5 ] C:\Windows\System32\MPSSVC.dll
15:08:42.0564 0x1a1c C:\Windows\System32\MPSSVC.dll - ok
15:08:42.0580 0x1a1c [ 79A0938227611146A4ACE36060BCDC14, 2E3324776290D671230D3ADD99B299AEE4961D0B0314DF51207C2BDD7D62FEF6 ] C:\Windows\System32\DeviceMetadataRetrievalClient.dll
15:08:42.0580 0x1a1c C:\Windows\System32\DeviceMetadataRetrievalClient.dll - ok
15:08:42.0580 0x1a1c [ C3D487827E48CC5EC17994FEC5BDFF87, 5FCEA3EEA583755D0C9F6005ED3032E9DFECB57F504DC67701AE7D2D2631C30E ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys
15:08:42.0580 0x1a1c C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys - ok
15:08:42.0580 0x1a1c [ DE51F5BB5C05D4C831ECB6E1A70E1B5E, 465834210ACE469481F75EDBB8532386029BD5277C41D084134E9E71B9BD8371 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
15:08:42.0580 0x1a1c C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe - ok
15:08:42.0580 0x1a1c [ CEDF1C2E1AE31E63C4F83F8486F59E53, A5D2420B62F2478A97CFC72BE0F17996CCABDC9EB77ADAF57C66E7D29F5CC0C9 ] C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
15:08:42.0580 0x1a1c C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe - ok
15:08:42.0595 0x1a1c [ A79265A2CF42790393832EB1771E0967, F74CC673FA6A87B9DB6173600F3C1D08C4119040E2792B1E9295A68541841F69 ] C:\Windows\System32\drivers\srvnet.sys
15:08:42.0595 0x1a1c C:\Windows\System32\drivers\srvnet.sys - ok
15:08:42.0595 0x1a1c [ D58A41151E5A0900453FD67B3C8D83ED, 6FCA24F6029BE4F7DE93326A520726388ED3EE36B9DF266396E5543EEF79E922 ] C:\Windows\System32\ImplatSetup.dll
15:08:42.0595 0x1a1c C:\Windows\System32\ImplatSetup.dll - ok
15:08:42.0595 0x1a1c [ 22896D7BC9E2B0027DF0CA860E9547C8, 50607E9B752B03289893EF9F4882A10C560E8A3413A237D890697FC25545DFC5 ] C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
15:08:42.0595 0x1a1c C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe - ok
15:08:42.0611 0x1a1c [ 2D7F1C02B94D6F0F3E10107E5EA8E141, 93B266F38C3C3EAAB475D81597ABBD7CC07943035068BB6FD670DBBE15DE0131 ] C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys
15:08:42.0611 0x1a1c C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys - ok
15:08:42.0611 0x1a1c [ 88980D5263DDF81E9BA4E50C288A421C, 332FC323735807B9714AEF1FCDCB56AE9691ED51AD9922EDC4EE56E2C5CA99D1 ] C:\Windows\System32\drivers\mmcss.sys
15:08:42.0611 0x1a1c C:\Windows\System32\drivers\mmcss.sys - ok
15:08:42.0611 0x1a1c [ 5DFB139945F70FA15CAF7F3929B932AD, 3F7789FD0B00E95FB98F7952317E7993FA66CACF4FFD847068F0447ECEA1B811 ] C:\Windows\System32\drivers\Ndu.sys
15:08:42.0611 0x1a1c C:\Windows\System32\drivers\Ndu.sys - ok
15:08:42.0611 0x1a1c [ 696A8431DD22EDE385D7AB84E0EAF4C9, E5892B346904C7A392A0B1C8F4C9066BC535A2C70307123C8E1F2157353333F0 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:08:42.0611 0x1a1c C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
15:08:42.0627 0x1a1c [ 08D343C9D37FA5584330714DF6C8A6C1, 546A062DF1244A1228DE60C8EAE49C6AD64021A23F53A3B6B344693C586FF4B5 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
15:08:42.0627 0x1a1c C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe - ok
15:08:42.0627 0x1a1c [ 16CFD4A701607ADE443A8BA2A00EF555, 9C891751F3EDCD165AF08659567F35C03E0AF661FBB2567C931DC1BE839798EF ] C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MsMpEng.exe
15:08:42.0627 0x1a1c C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MsMpEng.exe - ok
15:08:42.0627 0x1a1c [ E4518C35D159A468A789AB216A03AE8C, 09D3B2B0021AB47C36BF7784DAE62EC1C90FA94AC4E276D17D7D51C9EE624D63 ] C:\Windows\System32\drivers\PEAuth.sys
15:08:42.0627 0x1a1c C:\Windows\System32\drivers\PEAuth.sys - ok
15:08:42.0642 0x1a1c [ EDD39C19EFA8F01CBBCCFFADE4674C21, 3F0E1898ECBE2AB8E126C71DF281C5F8C0B25AFFADFC7D8525FE84C06E27730C ] C:\Windows\SysWOW64\ntdll.dll
15:08:42.0642 0x1a1c C:\Windows\SysWOW64\ntdll.dll - ok
15:08:42.0642 0x1a1c [ BE8D133E2E6EA2B90EC48BBCBBF77174, 4278D851EC5C6FBDDEBAD3F6DEB6D1347A3C8D09F5E9D36650D077D32C6675EE ] C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
15:08:42.0642 0x1a1c C:\Program Files\Tablet\Wacom\WTabletServicePro.exe - ok
15:08:42.0642 0x1a1c [ 817E69FA0C14EDCD06BC32E9EDE21631, F2C4A1BDF3C5CEAF1BE2BA739B060926F256A94B72512ABAC221F83AB974EE79 ] C:\Windows\System32\cryptcatsvc.dll
15:08:42.0642 0x1a1c C:\Windows\System32\cryptcatsvc.dll - ok
15:08:42.0642 0x1a1c [ E8A9C2E4DCCFA92B197A5FC6D3B5249A, E6288151F398248D3B474701F26A8D5E5587DB632493559A1DE5277F15A43731 ] C:\Windows\System32\cryptsvc.dll
15:08:42.0642 0x1a1c C:\Windows\System32\cryptsvc.dll - ok
15:08:42.0658 0x1a1c [ 0B18AD88FFFAC208FD6CAEBCEA66BB31, EA3FE499807F97E59FF10D0ECEF1E76C3ABA958F9859C2B4294A74561BEF7B17 ] C:\Windows\System32\crypttpmeksvc.dll
15:08:42.0658 0x1a1c C:\Windows\System32\crypttpmeksvc.dll - ok
15:08:42.0658 0x1a1c [ 449075E8889DE1D57714B8177457D533, 17E9941BD5B949951270B46C428D72570A54EF219063FB746AC6E5018C2D74E2 ] C:\Windows\System32\dps.dll
15:08:42.0658 0x1a1c C:\Windows\System32\dps.dll - ok
15:08:42.0658 0x1a1c [ A55C4EC26B4B05A9AFF4C26C74343795, B6F3B80220AB837D099A1A576F711E49B7EA7C4CA067EE7094FB2EEFFDB08AEA ] C:\Windows\System32\drivers\srv2.sys
15:08:42.0658 0x1a1c C:\Windows\System32\drivers\srv2.sys - ok
15:08:42.0674 0x1a1c [ ABA4B3C8252BE9D3A6F1E9A1D9756213, D40663F63B098A737D611695092CB93CC3E9217817A1A370D837C7430191D850 ] C:\Windows\System32\wbem\WMIsvc.dll
15:08:42.0674 0x1a1c C:\Windows\System32\wbem\WMIsvc.dll - ok
15:08:42.0674 0x1a1c [ AADA62B840D622CCEA4D613F5AA39820, 3F2D9AEACB4F692586BE5F1CDA56E9C4608350698316E8194DA989C2B3A213CD ] C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MpSvc.dll
15:08:42.0674 0x1a1c C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MpSvc.dll - ok
15:08:42.0674 0x1a1c [ 4C02D7CF0BF5476C05BD1F56E2DDDCD1, B2A4AAA1EA329FDF9281CA89312787F2EC9FAA89FAC0D38B8A488818D5F1180B ] C:\Windows\System32\diagtrack.dll
15:08:42.0674 0x1a1c C:\Windows\System32\diagtrack.dll - ok
15:08:42.0674 0x1a1c [ A8766E18A1E2D41301E7A8EEFBABCDDD, 0762E146944C40C9D295A11DFBDDD72270E75619D209451AAD619A531A0EACF2 ] C:\Windows\System32\drivers\tcpipreg.sys
15:08:42.0674 0x1a1c C:\Windows\System32\drivers\tcpipreg.sys - ok
15:08:42.0689 0x1a1c [ 93FECF4BD3A622DDBBA203FEE51500AA, 16847026405A03E8CFD05E99F23BE30FF0622C56B9517ED0CE57012A3FF28D86 ] C:\Windows\System32\webauthn.dll
15:08:42.0689 0x1a1c C:\Windows\System32\webauthn.dll - ok
15:08:42.0689 0x1a1c [ 96142856700EC9BD02D2EA30208D1934, 1C8050DA53DFA42551BB4637632AA0110B06575CA1AAAFD94AE8AE37E815BE8E ] C:\Windows\System32\wpnservice.dll
15:08:42.0689 0x1a1c C:\Windows\System32\wpnservice.dll - ok
15:08:42.0689 0x1a1c [ 623A715A4B528D82315CB8541DBCBF14, CBA003800734541C9C4A73493A71B93412BF1C3BEAAAAA1EE876BE65133CF9F4 ] C:\Windows\System32\httpapi.dll
15:08:42.0689 0x1a1c C:\Windows\System32\httpapi.dll - ok
15:08:42.0689 0x1a1c [ 3A531D7F1EB99031DDCAB68B4869FAFE, 2905600C08BD5B9DDC83D37A9DD28928C640AA643199C11452204A4CE479351F ] C:\Windows\System32\rtutils.dll
15:08:42.0689 0x1a1c C:\Windows\System32\rtutils.dll - ok
15:08:42.0705 0x1a1c [ 1C546EB2083C14C6EE79F10A16685F67, F6816CBBCED28927A481D24F7FB132762C4E3D8AFD046240092DFE240F444957 ] C:\Windows\System32\srvsvc.dll
15:08:42.0705 0x1a1c C:\Windows\System32\srvsvc.dll - ok
15:08:42.0705 0x1a1c [ 2CA5A7BECA0433EB10ECB4F2F03BB29F, 6A20A1DDEB406432C700891C07E1278C293AEBCD66C670B16D73028F562CBA4E ] C:\Windows\System32\sstpsvc.dll
15:08:42.0705 0x1a1c C:\Windows\System32\sstpsvc.dll - ok
15:08:42.0705 0x1a1c [ 9D6DB6038C76BDDCFB563535D08A62C4, 819E2C4C4CF4C6E08800560B15D0026CB096E6FF6C6C48DF01318522913E8C1B ] C:\Windows\System32\webio.dll
15:08:42.0705 0x1a1c C:\Windows\System32\webio.dll - ok
15:08:42.0720 0x1a1c [ 0A1F736D28F209F23D5319626A52225A, 7992D7292B8DE740F9F58B339561A28CBD8143420B25CEFF93AECFC3E6264EC2 ] C:\Windows\System32\cabinet.dll
15:08:42.0720 0x1a1c C:\Windows\System32\cabinet.dll - ok
15:08:42.0720 0x1a1c [ A6ABB00431242A35EA866A182C33B0B0, 9AC9D0109E57D9307A64DE09143A49DCD15E066D8018DCDCDF0806C8C2B04C14 ] C:\Windows\System32\mi.dll
15:08:42.0720 0x1a1c C:\Windows\System32\mi.dll - ok
15:08:42.0720 0x1a1c [ 471846A04C7C4B727828BBD5DD30624C, F56CF13792690CB8EDCCBC8CD41F4C561EFBF3A5360183C9235F1B93C636D77D ] C:\Windows\System32\sscore.dll
15:08:42.0720 0x1a1c C:\Windows\System32\sscore.dll - ok
15:08:42.0720 0x1a1c [ 75CF509D00B8D648E97F853522F3A9B7, 497F37A26053B0935BDF1F6025940A4358E6D8A62BD4F4DD34D9187C3CCE65DD ] C:\Windows\System32\sscoreext.dll
15:08:42.0720 0x1a1c C:\Windows\System32\sscoreext.dll - ok
15:08:42.0736 0x1a1c [ BCA97819779D7876B6F98C29844CF505, EEF76BD38F90D6846FC17E13F3981FF0EA9768BE7D142430488A2F0850853833 ] C:\Windows\System32\trkwks.dll
15:08:42.0736 0x1a1c C:\Windows\System32\trkwks.dll - ok
15:08:42.0736 0x1a1c [ EF93553049A0DC9619315EDECD96A3C8, E8E6F028995645125D7C4B2678018E3600D392DDE6BA2627A0560999209A7E96 ] C:\Windows\System32\miutils.dll
15:08:42.0736 0x1a1c C:\Windows\System32\miutils.dll - ok
15:08:42.0736 0x1a1c [ 4E2DBBE6338CFF92A07E157AD43DAB35, D8975D50614DFA772CBA7D8525B471C05B94D333A33D3D900FB8457D6676A020 ] C:\Windows\System32\Windows.UI.dll
15:08:42.0736 0x1a1c C:\Windows\System32\Windows.UI.dll - ok
15:08:42.0736 0x1a1c [ 2DF1213455A71E2C453575C425EEE079, 82FAD5020C4D43F152EB95063C653CDC94B38E01F0BE47180F34A4E90B250908 ] C:\Windows\System32\wdi.dll
15:08:42.0736 0x1a1c C:\Windows\System32\wdi.dll - ok
15:08:42.0752 0x1a1c [ 4867E864E822A578B2BBC8F1FC7BAFD2, 16F1A03C983DFE7983F84C8D60ABEB186165BCE8B1E53EE24AF9841917F47760 ] C:\Windows\System32\fwpolicyiomgr.dll
15:08:42.0752 0x1a1c C:\Windows\System32\fwpolicyiomgr.dll - ok
15:08:42.0752 0x1a1c [ 73767B27742C208B6F9B81071C0DBE39, 6ACD000B6A94731A6F92B7BD018B96CE4180D6A238E9FE2F0AAEF24E5839CCBB ] C:\Windows\System32\wpncore.dll
15:08:42.0752 0x1a1c C:\Windows\System32\wpncore.dll - ok
15:08:42.0752 0x1a1c [ 5446957748D7A41D9121E00BF0A7CABD, 3572DA02EC9E04CAB7EF36CEB6BFA558C535E05397624A5D5E5C783AB1562E58 ] C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MpClient.dll
15:08:42.0752 0x1a1c C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MpClient.dll - ok
15:08:42.0767 0x1a1c [ CE7E2BD9759702F635CB7F268DDD449A, 2F9B6BFF6C99366F6FD8CA6CFD85DD41DB13DCD6342767D5C815D13FDFE45FB7 ] C:\Windows\System32\drivers\vwifimp.sys
15:08:42.0767 0x1a1c C:\Windows\System32\drivers\vwifimp.sys - ok
15:08:42.0767 0x1a1c [ 7CAA1B97A3311EB5A695E3C9028616E7, 27F394AE01D12F851F1DEE3632DEE3C5AFA1D267F7A96321D35FD43105B035AD ] C:\Windows\System32\msvcp110.dll
15:08:42.0767 0x1a1c C:\Windows\System32\msvcp110.dll - ok
15:08:42.0767 0x1a1c [ 7C3B449F661D99A9B1033A14033D2987, AE996EDB9B050677C4F82D56092EFDC75F0ADDC97A14E2C46753E2DB3F6BD732 ] C:\Windows\System32\msvcr110.dll
15:08:42.0767 0x1a1c C:\Windows\System32\msvcr110.dll - ok
15:08:42.0767 0x1a1c [ CD023B633F9005F65C0FB396E1DF0F79, 36ECE0DD0CDB0E6668E5BEAA8D239B4D601258A996979E6B9D26C67AC570C965 ] C:\Windows\System32\tetheringclient.dll
15:08:42.0767 0x1a1c C:\Windows\System32\tetheringclient.dll - ok
15:08:42.0783 0x1a1c [ 351D0D5CA2BECF579D7424273B7A6F55, 5132B382557EE5B45ED14EBB083C8B3F955E11943C58FFE332C7B6DC94EE0F53 ] C:\Windows\System32\CellularAPI.dll
15:08:42.0783 0x1a1c C:\Windows\System32\CellularAPI.dll - ok
15:08:42.0783 0x1a1c [ A2DE12A3A8ABC9E63AB553318083D3DD, CB04DE8E660A9BFA26510B6D244ACFA2BBE1580B309EC8925419EC95C7CE05AC ] C:\Windows\SysWOW64\kernel32.dll
15:08:42.0783 0x1a1c C:\Windows\SysWOW64\kernel32.dll - ok
15:08:42.0783 0x1a1c [ 208B18B92C068377F5EB21CD72FBC993, 95DB24AC4FADDCFC1A1FC57ED68DB3092F5AC1976642C1B4099C46B59B093B7D ] C:\Windows\SysWOW64\mscoree.dll
15:08:42.0783 0x1a1c C:\Windows\SysWOW64\mscoree.dll - ok
15:08:42.0799 0x1a1c [ D90C347C6F88D0E21955BC682CA06918, CC3572343E88CA3276BB83353A49AC32FF5073C95E7D804CAFB42463BABBFB67 ] C:\Windows\System32\diagperf.dll
15:08:42.0799 0x1a1c C:\Windows\System32\diagperf.dll - ok
15:08:42.0799 0x1a1c [ 45AB0125043D92394ECD784978AF5E5A, 4EA69A53E97BA597D44A55A5E73563D6EE8931690AE22399CED34694467201F1 ] C:\Windows\System32\perftrack.dll
15:08:42.0799 0x1a1c C:\Windows\System32\perftrack.dll - ok
15:08:42.0799 0x1a1c [ 6280948D414C59397D9AA7127611743C, 320F9CA069C562818E180324AA2693B5C26A220A5BBFC232AC10762C66FB4FE1 ] C:\Windows\System32\wbemcomn.dll
15:08:42.0799 0x1a1c C:\Windows\System32\wbemcomn.dll - ok
15:08:42.0799 0x1a1c [ ECB760B2391608BA4E0A7987ADA70CCF, 03B39EA56CD46666CFA8467AA246A63924C0F4AACD27E51FD5E1192000B4A577 ] C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
15:08:42.0799 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe - ok
15:08:42.0814 0x1a1c [ 35A20D48D8A84AF8154B47CBCEACBCCC, C98B0EC44813B7B459E233C084FAE2ADA1507B01C236603625EDB3FBDB6B5C35 ] C:\Windows\System32\das.dll
15:08:42.0814 0x1a1c C:\Windows\System32\das.dll - ok
15:08:42.0814 0x1a1c [ 70124ABD0EA0C710F1F10706E2FDE73D, 6547675909355D3CAC10C2FC86BF10FA8AD75334C15277762A5457FD54A75E69 ] C:\Windows\System32\iphlpsvc.dll
15:08:42.0814 0x1a1c C:\Windows\System32\iphlpsvc.dll - ok
15:08:42.0814 0x1a1c [ 71A6C25E3B9C7BDF0ACE20958F2CF8C4, 5028098E5FAAE0D7B43983907708E9E68C27C87D182B37A084CF9F1044D3E47F ] C:\Windows\System32\drivers\rassstp.sys
15:08:42.0814 0x1a1c C:\Windows\System32\drivers\rassstp.sys - ok
15:08:42.0814 0x1a1c [ 438BB0743B2AA510D616AD81ECE2FA08, 2BE797019D8CB50650E09080E21644B32CA0B411CADBCE606B3364F81C42E319 ] C:\Windows\System32\drivers\ndproxy.sys
15:08:42.0814 0x1a1c C:\Windows\System32\drivers\ndproxy.sys - ok
15:08:42.0830 0x1a1c [ 437B8732902A8DF6E14101AA963A5D4F, 9021B9CC0A5488BB02C0798ABE2A8269C1D22A01F4AC3B923F935ADB383AAF74 ] C:\Windows\System32\InputHost.dll
15:08:42.0830 0x1a1c C:\Windows\System32\InputHost.dll - ok
15:08:42.0830 0x1a1c [ 8DE1F41261511E7EE98DDBA047EAAD32, 64D420814A27DA8DDC453127A4B0914EBACDF357561EFFDF0395BB8A7005EE98 ] C:\Windows\System32\TextInputFramework.dll
15:08:42.0830 0x1a1c C:\Windows\System32\TextInputFramework.dll - ok
15:08:42.0830 0x1a1c [ 1BC5A7FC08C5456354F2C4B238769783, B2895B93A392CE20DF7DE8C20EF97DB922903549D7BBC0FF583543AF6932A36C ] C:\Windows\System32\mpr.dll
15:08:42.0830 0x1a1c C:\Windows\System32\mpr.dll - ok
15:08:42.0830 0x1a1c [ 5EE2E34A4E6E46E0D748E6C1D3BA4EC6, 96096A8894EE7B2161432B027612AA5B79965189A88B333C57F0E65CF30297F2 ] C:\Windows\System32\cscapi.dll
15:08:42.0830 0x1a1c C:\Windows\System32\cscapi.dll - ok
15:08:42.0845 0x1a1c [ 19E0B5B6202CE85796EA6C0EBB7334DF, 8625DAC11461BCBC13BEA1799A1B9236AF268D97BB31F525B20A5B91F7669603 ] C:\Program Files\Tablet\Wacom\WacomHost.exe
15:08:42.0845 0x1a1c C:\Program Files\Tablet\Wacom\WacomHost.exe - ok
15:08:42.0845 0x1a1c [ 0C097317DFDAA4EE20167884368F74AD, 0042F186A07DC64FE804022E6D62B2801DFD04355106D5BDE455B82364709326 ] C:\Windows\SysWOW64\KernelBase.dll
15:08:42.0845 0x1a1c C:\Windows\SysWOW64\KernelBase.dll - ok
15:08:42.0845 0x1a1c [ CCFAEF5BA0718F07FAC1B6282C40B5D8, E6A1CD06D6C14AD0E823E003F7CDC1343E91882812221D334C0D5C65246CA0F9 ] C:\Windows\System32\cdp.dll
15:08:42.0845 0x1a1c C:\Windows\System32\cdp.dll - ok
15:08:42.0861 0x1a1c [ 9A896F90132B1C538A23093EDF0524E5, 49E514CF9BA90CA928446413DAB59F311A37541E43681AB2CFB0C781850AC9CB ] C:\Windows\System32\httpprxm.dll
15:08:42.0861 0x1a1c C:\Windows\System32\httpprxm.dll - ok
15:08:42.0861 0x1a1c [ 48EA934776B5AA3BEE2510A3C88DBD62, 97AADDF66617A5F64C9AB9F51085380B46449B1C5604942CEAB101E3828BF5A8 ] C:\Windows\System32\pnpts.dll
15:08:42.0861 0x1a1c C:\Windows\System32\pnpts.dll - ok
15:08:42.0861 0x1a1c [ 42CC1E04E5B97022215A9724018A58E9, 912D3C19A915A4C960F539F3B451726BE47B91659567C67DE756E32D7731F509 ] C:\Windows\System32\ProximityCommon.dll
15:08:42.0861 0x1a1c C:\Windows\System32\ProximityCommon.dll - ok
15:08:42.0861 0x1a1c [ 132DBA978096923AC29275ACD818D4DC, 16B790964E49F50A568E34FE2D7DD5EB61242AAD6350B6B65F9A5EAFB9EF1732 ] C:\Windows\System32\rasmans.dll
15:08:42.0861 0x1a1c C:\Windows\System32\rasmans.dll - ok
15:08:42.0877 0x1a1c [ 190014BE660BF0C53226607D156C9A54, 87B61A126B85AA15B5E204CF5F22204E40361931713767B62F9FD783295D43DD ] C:\Windows\System32\vssapi.dll
15:08:42.0877 0x1a1c C:\Windows\System32\vssapi.dll - ok
15:08:42.0877 0x1a1c [ CBC95B94E0C7525042795F01E3AAF2C6, 2B3A4433194AA28B756C89B917B2FFE48C286763FBD3C2EB526508D6926B7E55 ] C:\Windows\System32\weretw.dll
15:08:42.0877 0x1a1c C:\Windows\System32\weretw.dll - ok
15:08:42.0877 0x1a1c [ B25FAED5F3E6796C909DB4D09BAD3F0C, B5C7494EA55D5266B23502BA6C156FC24E86679E60E49D8C7E8FA55E29B91E5A ] C:\Windows\System32\windowsperformancerecordercontrol.dll
15:08:42.0877 0x1a1c C:\Windows\System32\windowsperformancerecordercontrol.dll - ok
15:08:42.0877 0x1a1c [ 8C1C9E02A14A5E1CB1D1671119455023, 384F0FE652494E2DAABFE23DB74A739E2218B6A99BC42CF5503AFA0B7C977739 ] C:\Windows\System32\winsqlite3.dll
15:08:42.0877 0x1a1c C:\Windows\System32\winsqlite3.dll - ok
15:08:42.0892 0x1a1c [ A9BC5F3E3C6406C3C5ABE804FBF7BC76, A0177FD4B7690A680E5EAC9BDC78E21117B523622607BCA47305EB74984CF901 ] C:\Windows\System32\wmidcom.dll
15:08:42.0892 0x1a1c C:\Windows\System32\wmidcom.dll - ok
15:08:42.0892 0x1a1c [ 1DECC4E876796408E6399F7A46E943B1, 496E6D949AD0BA16D20ED67281F23818C2B4D04D0D0B9B6B286DC471E1D5A90A ] C:\Windows\System32\adhsvc.dll
15:08:42.0892 0x1a1c C:\Windows\System32\adhsvc.dll - ok
15:08:42.0892 0x1a1c [ 5EE4663BAEB8A64CFA303288EFA2E802, 72969C9A6CF748D54187ED8AA838A1BDEE1651ED34D2EDB31CE6642DF9FEA47D ] C:\Windows\System32\netwphelper.dll
15:08:42.0892 0x1a1c C:\Windows\System32\netwphelper.dll - ok
15:08:42.0908 0x1a1c [ 02620016F5AB7CE7EA7EA6341E6CA0D9, AE5A6471369FB1B62B46F30682740B38E131168461201A1369761F590AD25084 ] C:\Windows\System32\rilproxy.dll
15:08:42.0908 0x1a1c C:\Windows\System32\rilproxy.dll - ok
15:08:42.0908 0x1a1c [ C35448FA3C43DA8530D80BD0962A6EBB, 0DBF39B17AE4D6A4D269E7CA24577B407823A403BD5112223D3D9D0F7ECEE9E4 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\device.dll
15:08:42.0908 0x1a1c C:\Program Files\ATI Technologies\ATI.ACE\Fuel\device.dll - ok
15:08:42.0908 0x1a1c [ 66B2DD368ADA06D29044BCD9A396CA42, EDA863C3DBC92C18A3FA36E130FF7A8A6B129728F4DBFC5178A440FF82199EDE ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
15:08:42.0908 0x1a1c C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll - ok
15:08:42.0908 0x1a1c [ D3F27BC412760F184619B492C7998547, BC78C295FB0C400F07A1F085FBB6F84E7553497E04DEED24041F8DF83C2E0475 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\platform.dll
15:08:42.0908 0x1a1c C:\Program Files\ATI Technologies\ATI.ACE\Fuel\platform.dll - ok
15:08:42.0924 0x1a1c [ 66193AC2000AAFECE6B9055E72E8FB54, F6A32D21867DE68374E3CF53267F59C5422BD739BB15D0665A4E1530148F405B ] C:\Windows\System32\HNetCfgClient.dll
15:08:42.0924 0x1a1c C:\Windows\System32\HNetCfgClient.dll - ok
15:08:42.0924 0x1a1c [ AD42210CADBCE525050ACBA450AC5ABE, 58833295116E0FD14FBE2FC0F87BF5A992CD1F04DE8205A332DD88AEF4086693 ] C:\Windows\System32\srumsvc.dll
15:08:42.0924 0x1a1c C:\Windows\System32\srumsvc.dll - ok
15:08:42.0924 0x1a1c [ 8186B18F85C08601EA488C0C28FE2F34, E0078246E8A340C55C5FFDC1603B77C6562F79622201935F5578084597EE9614 ] C:\Windows\System32\esent.dll
15:08:42.0924 0x1a1c C:\Windows\System32\esent.dll - ok
15:08:42.0924 0x1a1c [ 22965E609D8D0EC76E56737F4980F8B9, 834FFABF1B3181C57194A28CDB40A8CCD140EF014DEC217CA919275420A4EB72 ] C:\Windows\System32\ProximityCommonPal.dll
15:08:42.0939 0x1a1c C:\Windows\System32\ProximityCommonPal.dll - ok
15:08:42.0939 0x1a1c [ B725F73C165A07163F3359E1A6B6E870, 38C3FBA535A491197E8C1B01CF054FF0657FE463FD79D24D95E306DD93B95DCF ] C:\Windows\System32\ProximityServicePal.dll
15:08:42.0939 0x1a1c C:\Windows\System32\ProximityServicePal.dll - ok
15:08:42.0939 0x1a1c [ 075E91DAE108281C18BA4B447D0B3092, 6B5AE3649365CBC0CACBE0E4FF50C80B4EB58EC29B1447D4583274715884384C ] C:\Windows\System32\resutils.dll
15:08:42.0939 0x1a1c C:\Windows\System32\resutils.dll - ok
15:08:42.0939 0x1a1c [ 8A241A1AA5C9D3048DCED3D1B91BD4E6, 86B6DB0A5DB872856E3CCD2063F4E29CC5FE684B3AD33C8E8A0B1792B8448C7A ] C:\Program Files\Common Files\microsoft shared\ClickToRun\ApiClient.dll
15:08:42.0939 0x1a1c C:\Program Files\Common Files\microsoft shared\ClickToRun\ApiClient.dll - ok
15:08:42.0955 0x1a1c [ E3DFB67351E42781F48CE94DCEF81FC4, 77DF2328893C8463E930E7D83B6703ADD9E4694D5680749CD85AB4E5BD1F1E4A ] C:\Program Files\Common Files\microsoft shared\ClickToRun\msvcp140.dll
15:08:42.0955 0x1a1c C:\Program Files\Common Files\microsoft shared\ClickToRun\msvcp140.dll - ok
15:08:42.0955 0x1a1c [ 66836116657794D2B4192A808E112ABA, 5F6AA949DA677552DBFBD759CD92183D274EE4BA78C97FB6581D55DD6FD7DB3C ] C:\Program Files\Common Files\microsoft shared\ClickToRun\vcruntime140.dll
15:08:42.0955 0x1a1c C:\Program Files\Common Files\microsoft shared\ClickToRun\vcruntime140.dll - ok
15:08:42.0955 0x1a1c [ CB96C2BC9EC2B7354505E10361E78679, 9D5697D0F50670F79583B6250499B37BC858378020D87B73C20BBF615AF9A02C ] C:\Windows\System32\RstrtMgr.dll
15:08:42.0955 0x1a1c C:\Windows\System32\RstrtMgr.dll - ok
15:08:42.0970 0x1a1c [ 98F3983F878B337B5EF9AA983873A76A, 5660FD93C77B4405A86F56EF6CC044BFFC133B3170F154BF687528416C2A4579 ] C:\Windows\System32\wbem\wbemprox.dll
15:08:42.0970 0x1a1c C:\Windows\System32\wbem\wbemprox.dll - ok
15:08:42.0970 0x1a1c [ 5A2D67889BE4F31082E25EF6C64C2D8C, 768F81E0228975B3C51930CF8D42B874C9227378540BB0A1AD6506E4D13C6D86 ] C:\Windows\System32\LanguageOverlayUtil.dll
15:08:42.0970 0x1a1c C:\Windows\System32\LanguageOverlayUtil.dll - ok
15:08:42.0970 0x1a1c [ FE2F20BDEE067AC8B8B1EF8B204FE072, F1BDAB25366C6BA42B325D03CDF8EE68C40169738043683E675B9EAAF47AD3E6 ] C:\Windows\System32\vsstrace.dll
15:08:42.0970 0x1a1c C:\Windows\System32\vsstrace.dll - ok
15:08:42.0970 0x1a1c [ 0F47E1EAB1410C0C2F7639C1D157B212, 93BB854BF9AA9B0950473B6D4F8DA4E68EA8A33C7D1A5B5D16A871B89B85F85F ] C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9554_none_88e038cb2fae7c50\msvcp80.dll
15:08:42.0970 0x1a1c C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9554_none_88e038cb2fae7c50\msvcp80.dll - ok
15:08:42.0986 0x1a1c [ 722D541E4BA00F081204F08543C07308, 9D4B59358C8349D18C2FDD6EE62C91386B65C89E24F57EA737413C8808DA79AC ] C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9554_none_88e038cb2fae7c50\msvcr80.dll
15:08:42.0986 0x1a1c C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9554_none_88e038cb2fae7c50\msvcr80.dll - ok
15:08:42.0986 0x1a1c [ DE374A5418EF27445DCD478256345DA9, 59CE92290E4E49C0488616D58EB70258B8E760DAB7A7CEF5B8AD2DCFEEBCD2CF ] C:\Windows\System32\adhapi.dll
15:08:42.0986 0x1a1c C:\Windows\System32\adhapi.dll - ok
15:08:42.0986 0x1a1c [ E253F28F332087AD1E5811D6273545AB, 1EEB10637C8AF3FC27CDED1DCF92D23E2856C94C6AD966F446ACDAC285D83C9E ] C:\Windows\System32\BCP47mrm.dll
15:08:42.0986 0x1a1c C:\Windows\System32\BCP47mrm.dll - ok
15:08:42.0986 0x1a1c [ AF17F63DFDE9F19BBE730A1ED86DFEF0, 56A5A50EA9408AE16E1F8FF62D568A021BDE56EA2533E931CC70A8D1DBFF2CDE ] C:\Windows\System32\drivers\agilevpn.sys
15:08:42.0986 0x1a1c C:\Windows\System32\drivers\agilevpn.sys - ok
15:08:43.0002 0x1a1c [ C91265B3F0BB4C6355AED8A6B735EC2F, 536F5CF94FA20523214D78AC8F8525C1CDC15EA3AE309805F6C6A321A64BC931 ] C:\Windows\System32\ReAgent.dll
15:08:43.0002 0x1a1c C:\Windows\System32\ReAgent.dll - ok
15:08:43.0002 0x1a1c [ 6E28E1CE915FE617D4F38BFB8543696F, 12775FC49B33658013FDF2D6F07DCFBEBBF1D384073501FA160564E3417AF965 ] C:\Windows\System32\drivers\rasl2tp.sys
15:08:43.0002 0x1a1c C:\Windows\System32\drivers\rasl2tp.sys - ok
15:08:43.0002 0x1a1c [ 3515CD197282D7C867DCBD973CD44E3E, 00C9BBD6976A89217998E98F6C235F01B563464F0D3579D73B6C56ED4FB6A1A9 ] C:\Windows\System32\drivers\raspptp.sys
15:08:43.0002 0x1a1c C:\Windows\System32\drivers\raspptp.sys - ok
15:08:43.0017 0x1a1c [ 252FDEF9B98564F47A36CF11911D926C, 310C97A590D0229AC975C9E6A26A3B1046BAF02F69380CEFA7320F34BBEBB413 ] C:\Windows\System32\drivers\raspppoe.sys
15:08:43.0017 0x1a1c C:\Windows\System32\drivers\raspppoe.sys - ok
15:08:43.0017 0x1a1c [ 5F524E5F9EAA6F347F41D4F3214A20A8, 8B5EF4CA36646EBA4F63C76CF293D5EBB7F0425B252471B95E9999277DA6F905 ] C:\Windows\System32\wfapigp.dll
15:08:43.0017 0x1a1c C:\Windows\System32\wfapigp.dll - ok
15:08:43.0017 0x1a1c [ E997374B5EBB4FC5528B4F653B2E6CAB, 26456C1B6E485F876898C596CCEA7F48D611D5F116A49E5350581F17B429792C ] C:\Windows\System32\drivers\ndistapi.sys
15:08:43.0017 0x1a1c C:\Windows\System32\drivers\ndistapi.sys - ok
15:08:43.0017 0x1a1c [ F9FACC5EA4D793F8265F30C2DA0EDBA7, 116ADCA5E1BC154842F547DE96B67D8CC244B7804203B1DEBD2093FF21CF673F ] C:\Windows\System32\drivers\ndiswan.sys
15:08:43.0017 0x1a1c C:\Windows\System32\drivers\ndiswan.sys - ok
15:08:43.0033 0x1a1c [ 8D256A720AFDB1099CB9A6A46809BCF4, 554F3ECC322E4116A624AE22D3CA3E37901AF1A9F068613F13985D6A1B8F3C8E ] C:\Windows\System32\wbem\wbemcore.dll
15:08:43.0033 0x1a1c C:\Windows\System32\wbem\wbemcore.dll - ok
15:08:43.0033 0x1a1c [ 0C623C912BCF1DA4CE0CE826DDBBACAF, 7A992A02718315F98ABDBB89A849D2DA75A67E266183FAB499A0163CA2F231E1 ] C:\Windows\System32\rastapi.dll
15:08:43.0033 0x1a1c C:\Windows\System32\rastapi.dll - ok
15:08:43.0033 0x1a1c [ F5F38C2FDD1A4632A4E5042C109B88E5, 6DF631B08B1C39366185BFAEEF249B3C6870F476F5CF6705086451CC1452F201 ] C:\Windows\SysWOW64\advapi32.dll
15:08:43.0033 0x1a1c C:\Windows\SysWOW64\advapi32.dll - ok
15:08:43.0033 0x1a1c [ F0D05651268F96C4CC4CE5D813159DC5, 3A8CF23B61DBFB5053B0858B4BF1A4B2A1CBD95D369A0825590ADF3BC26F62C4 ] C:\Windows\SysWOW64\user32.dll
15:08:43.0033 0x1a1c C:\Windows\SysWOW64\user32.dll - ok
15:08:43.0049 0x1a1c [ ACC5828872876B1FAB0132A92B18781A, C9E202B5AC870B251910E84F3C03A6BEB52CB1784E16A7D71E01C01FDC4FF9F1 ] C:\Windows\System32\clusapi.dll
15:08:43.0049 0x1a1c C:\Windows\System32\clusapi.dll - ok
15:08:43.0049 0x1a1c [ 578973A75B1C8E3E57ED0BAF53B0EF02, 7F6E8C01AA4694331C1C20EA542E881B38B945E3A7D4D574329A87AE2DEF230A ] C:\Windows\System32\rasppp.dll
15:08:43.0049 0x1a1c C:\Windows\System32\rasppp.dll - ok
15:08:43.0049 0x1a1c [ 9FAE1189A51D762E51E7E772B3C9706C, B8410BD7DD9AF4BFE518E264616047AEA6DFEB44B4F2FA491C31E5C87ECAF51F ] C:\Windows\System32\eappcfg.dll
15:08:43.0049 0x1a1c C:\Windows\System32\eappcfg.dll - ok
15:08:43.0064 0x1a1c [ A44D27D03056EEC97CF2AFDC658EAB45, 89E19D50C562BF0DD31F8CE1100CCEBA3D2181609D8AAA2A50A96C0DB6B23385 ] C:\Windows\System32\rasapi32.dll
15:08:43.0064 0x1a1c C:\Windows\System32\rasapi32.dll - ok
15:08:43.0064 0x1a1c [ BF7D0605A7C7843FA066BB11AB886088, D9433BBCE35C45DF7B0C120D10A2B0C1CD56B5732267CE41E854DF582513DE5C ] C:\Windows\System32\rasman.dll
15:08:43.0064 0x1a1c C:\Windows\System32\rasman.dll - ok
15:08:43.0064 0x1a1c [ 746BE1DBD9E0D0129F52D798C567ABDE, 2F21A13481FCCC4E20F359FBE7489CAAA87183BBA17354091E4F716CD05F2DA0 ] C:\Windows\System32\msi.dll
15:08:43.0064 0x1a1c C:\Windows\System32\msi.dll - ok
15:08:43.0064 0x1a1c [ 1B273E4EBC3B7EC9DF300CBF4AE5AB15, 65FE0981833BEB9D699CEE21DD44EB8B13D6C0F9B4CD3ED4878C46A36EECB068 ] C:\Windows\SysWOW64\shell32.dll
15:08:43.0064 0x1a1c C:\Windows\SysWOW64\shell32.dll - ok
15:08:43.0080 0x1a1c [ A0761C57B99EA4819241B0837EDB0C54, CC5ED97209E7EFCA1360BFD9876CAD8A093C857F84304F826CE8D892C00D88E1 ] C:\Windows\System32\Windows.UI.Xaml.dll
15:08:43.0080 0x1a1c C:\Windows\System32\Windows.UI.Xaml.dll - ok
15:08:43.0080 0x1a1c [ 8C823222D66AB394677A0B88820AB779, FA2CE3E4D384E2CF0BAD65A3C2A591BFDBD6293F84F96F20DD07D89269C50AC8 ] C:\Program Files\Malwarebytes\Anti-Malware\PoliciesControllerImpl.dll
15:08:43.0080 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\PoliciesControllerImpl.dll - ok
15:08:43.0080 0x1a1c [ F88677EE53EBADE947945C5F894EC740, 4853C991D7DFDC2D332656BF1FDF9AE132521B857F18E57E073F6CDFAB08A636 ] C:\Windows\SysWOW64\msvcrt.dll
15:08:43.0080 0x1a1c C:\Windows\SysWOW64\msvcrt.dll - ok
15:08:43.0080 0x1a1c [ 1DC07F184D09BCB4D87DDA2FE182EFD5, FB5227D869795995D2C52466F59BFC20C3D6FB57E8A46BC6F2A75FEB532E3FD6 ] C:\Windows\System32\wbem\esscli.dll
15:08:43.0080 0x1a1c C:\Windows\System32\wbem\esscli.dll - ok
15:08:43.0095 0x1a1c [ 12ABB40F3E15A6826DFBBDC0D9967A8C, 68969D2C011D9CD98D56952ACF8A067027A491A77C6FAA68A72A23771EC9C305 ] C:\Windows\System32\wbem\fastprox.dll
15:08:43.0095 0x1a1c C:\Windows\System32\wbem\fastprox.dll - ok
15:08:43.0095 0x1a1c [ 9ED90819195699D64BC5E05D74D246FF, 1AA55A018A5C7E9D28944DF97561DC101F1BEDB7FFA06A8F5ABE38C0630C72D8 ] C:\Windows\SysWOW64\gdi32.dll
15:08:43.0095 0x1a1c C:\Windows\SysWOW64\gdi32.dll - ok
15:08:43.0095 0x1a1c [ 5B2896BBECB512FDA881E8CB450643C3, 08F1F6621F393F396489DFE2FD6C9F7741AF959B95751A2E5086196E1D133A69 ] C:\Windows\SysWOW64\win32u.dll
15:08:43.0095 0x1a1c C:\Windows\SysWOW64\win32u.dll - ok
15:08:43.0095 0x1a1c [ E90D56CBBF0C34F0F3B54717703F079C, 97C629DF065740429333C5A8A05E7ECD99B5DB6E10B22FE642F2B36A51B3B369 ] C:\Windows\System32\edputil.dll
15:08:43.0095 0x1a1c C:\Windows\System32\edputil.dll - ok
15:08:43.0111 0x1a1c [ 544D43BE0496904174022368E7ADDC5D, B6D131B877CBE4398C68BEF4896F34CD8DC81B68B6AFCAB67D111DBDDF2D6529 ] C:\Windows\SysWOW64\gdi32full.dll
15:08:43.0111 0x1a1c C:\Windows\SysWOW64\gdi32full.dll - ok
15:08:43.0111 0x1a1c [ 33F1D32F00AF483D93A7F314C2C2B6FC, B65F9BA97B0BE97F99A03D838D7876689126B19768F6B4F73D8E926C07A5F2EF ] C:\Program Files\Malwarebytes\Anti-Malware\LicenseControllerImpl.dll
15:08:43.0111 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\LicenseControllerImpl.dll - ok
15:08:43.0127 0x1a1c [ B0A68C5BB8D5493F1AF967F0FDD80382, 2CF0972DC8A67D863AD1A6205B66C80865ACC11F7E3F67B4A76C162655EE0FEE ] C:\Windows\System32\dbghelp.dll
15:08:43.0127 0x1a1c C:\Windows\System32\dbghelp.dll - ok
15:08:43.0127 0x1a1c [ 6856D006AD379B4A21197434AFBB150C, 6EE4AD0E5A049618291814F21A2E6A79395693296D31DC3579C3DE95C75AA524 ] C:\Windows\System32\vpnike.dll
15:08:43.0127 0x1a1c C:\Windows\System32\vpnike.dll - ok
15:08:43.0127 0x1a1c [ 129699FE1177E5270804C067623D7F30, 12E25C421B612B7239DBDB29F2929C13692318ADA385F126DCBCBB2A8CEF04A5 ] C:\Windows\System32\wdscore.dll
15:08:43.0127 0x1a1c C:\Windows\System32\wdscore.dll - ok
15:08:43.0142 0x1a1c [ CD8CCD2C6BD2F3CD3118DC57FCE4373B, B9F1B1136ADD3C505FD65707CCDDC8C4A3A781E8A92C7EA86A822154D9829751 ] C:\Windows\System32\Windows.UI.Immersive.dll
15:08:43.0142 0x1a1c C:\Windows\System32\Windows.UI.Immersive.dll - ok
15:08:43.0142 0x1a1c [ 98B9C96E43D23843A912878C345E7A56, 28D448B91CEB9333D8ECE3F5A441061A83464AAB309C5974AE6AA70845975933 ] C:\Windows\System32\wbem\wbemsvc.dll
15:08:43.0142 0x1a1c C:\Windows\System32\wbem\wbemsvc.dll - ok
15:08:43.0142 0x1a1c [ A081AAD3A296EB414CB6839B744C67C9, 3D77E7769CFC8B4A1098E9A1F2BDE4432A6A70253EA6C2A58C8F8403A9038288 ] C:\Windows\System32\wbem\wmiutils.dll
15:08:43.0142 0x1a1c C:\Windows\System32\wbem\wmiutils.dll - ok
15:08:43.0158 0x1a1c [ F2613D5060BAFCD5394A6780A4286D34, C6520029BD3C1DB993272D3D026154493DE1D44248AEECFCE9D02D162CB19FC1 ] C:\Windows\System32\wbem\repdrvfs.dll
15:08:43.0158 0x1a1c C:\Windows\System32\wbem\repdrvfs.dll - ok
15:08:43.0158 0x1a1c [ 4C57428054987E043D00A485EFCE90D2, ABC6FA518A119867B8A0D671B17D51FBE65A2E3B3085861DF00C0ADCF933FF5C ] C:\Windows\SysWOW64\sechost.dll
15:08:43.0158 0x1a1c C:\Windows\SysWOW64\sechost.dll - ok
15:08:43.0158 0x1a1c [ 212A6AE506593F30AD5ADF829F4F4B37, 083A78588AA4666C2EF4A470A67254E47D9C2BCC9CA6A0A15D48959721D50C28 ] C:\Program Files\Malwarebytes\Anti-Malware\UpdateControllerImpl.dll
15:08:43.0158 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\UpdateControllerImpl.dll - ok
15:08:43.0158 0x1a1c [ FB1C8BD20DF9B4AE34F0A3EABD500337, 0C30356CA8FB7F6EADE43A4337653B51DBBA9FC9DC4C82806C1DFC7917FB0A78 ] C:\Windows\System32\rascustom.dll
15:08:43.0158 0x1a1c C:\Windows\System32\rascustom.dll - ok
15:08:43.0174 0x1a1c [ 2E3069BE1E0918C2DDBC4F85CB7CFA43, F9C451AD8C29FFCD378442BA43981E60C4C227103F82102F57AC81A9FC06D08C ] C:\Windows\SysWOW64\rpcrt4.dll
15:08:43.0174 0x1a1c C:\Windows\SysWOW64\rpcrt4.dll - ok
15:08:43.0174 0x1a1c [ 0E9C81D55E8C0640C4A0F88B55B077A7, F65A71C132C0AA1E2006D80B76AE877C015E6FEFD701C2C9FC4ADA6C7DEB6BC0 ] C:\Windows\SysWOW64\cfgmgr32.dll
15:08:43.0174 0x1a1c C:\Windows\SysWOW64\cfgmgr32.dll - ok
15:08:43.0174 0x1a1c [ 2211BB5549B98D3E1846FB8AF44C8BF7, FDC1973C4BD46D73C6F4EBAA46B1F494187BAC85519982E7BEB73BFB62B534B9 ] C:\Windows\System32\DWrite.dll
15:08:43.0174 0x1a1c C:\Windows\System32\DWrite.dll - ok
15:08:43.0174 0x1a1c [ 295C7DA4999478F882F75C00F3BBAAD5, 41094424258FC2874A13B352D1706991EB3B9C071C6BF4F5A80D9384C1C98982 ] C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17763.195_none_05b436ac07203599\comctl32.dll
15:08:43.0189 0x1a1c C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17763.195_none_05b436ac07203599\comctl32.dll - ok
15:08:43.0189 0x1a1c [ 76B2F08DCABA8508AF1491E7B36CEF6C, 68DAC4FE21A3242872F365561B8B2B34463261D4466D23BDCDFDCD6A532A2280 ] C:\Windows\SysWOW64\msvcp_win.dll
15:08:43.0189 0x1a1c C:\Windows\SysWOW64\msvcp_win.dll - ok
15:08:43.0189 0x1a1c [ 88E88D8C1C663769BDD722000A7EB5A7, C84BECA73EA45D3C53D9C42CD6A37CC0CC07FF57D9CFEE113CDF70F640572AEF ] C:\Windows\System32\dbgcore.dll
15:08:43.0189 0x1a1c C:\Windows\System32\dbgcore.dll - ok
15:08:43.0189 0x1a1c [ 81ED6D8A9B50F7F143DD50AC59BD8546, 7A985C7AFCD7F1C5DCD948D74311A2C6247DFB5EC007B98361A478AF097878B8 ] C:\Windows\SysWOW64\cryptbase.dll
15:08:43.0189 0x1a1c C:\Windows\SysWOW64\cryptbase.dll - ok
15:08:43.0205 0x1a1c [ 615785B5CC653B2E926FD350F4AACFAF, 1DB3773A09CDC4258DCA2398B0BD3C6BA0A45E87A53A09AA1BBB6E8791F8F888 ] C:\Windows\SysWOW64\sspicli.dll
15:08:43.0205 0x1a1c C:\Windows\SysWOW64\sspicli.dll - ok
15:08:43.0205 0x1a1c [ A9C6F300AA2E8259CB5E9D92FFE25F49, 7C915D3AB1AFB5A7F763223EC1E602FF2A74732AEE61B0F5543A2951631529FB ] C:\Windows\SysWOW64\ucrtbase.dll
15:08:43.0205 0x1a1c C:\Windows\SysWOW64\ucrtbase.dll - ok
15:08:43.0205 0x1a1c [ ED04B3391D18A6B3B5D0EA78BB84A36C, 8BC6E325A4C81791F7669538A189E8C83C5BEFD8CCCFCC1FDA89E85DCBC33FB5 ] C:\Windows\SysWOW64\bcryptprimitives.dll
15:08:43.0205 0x1a1c C:\Windows\SysWOW64\bcryptprimitives.dll - ok
15:08:43.0205 0x1a1c [ 20AA8A4C048AE151B9B0F6C945DA1C5D, 248D14643CB584129D3BB78D8556A7DF121C11D945B3E45933B5BE27366E42A2 ] C:\Windows\System32\dmcmnutils.dll
15:08:43.0205 0x1a1c C:\Windows\System32\dmcmnutils.dll - ok
15:08:43.0220 0x1a1c [ 9225DC176C3ADCD36E207E1805364404, D97D3E87FA2314CEF7A4C6063E3F4A59E6EF0F2775CC1D916F8D47429F69266C ] C:\Windows\System32\dmenrollengine.dll
15:08:43.0220 0x1a1c C:\Windows\System32\dmenrollengine.dll - ok
15:08:43.0220 0x1a1c [ CA1F576E793243525382B91FDC334583, D7E9AB4D47CEBC76799CDF0B831B40D509C64C75321F4AEB00A9AA75F6D9F624 ] C:\Windows\System32\dmprocessxmlfiltered.dll
15:08:43.0220 0x1a1c C:\Windows\System32\dmprocessxmlfiltered.dll - ok
15:08:43.0220 0x1a1c [ 4183E6559FDF1DF9426E40281F3A89C7, 94FCF67D63E106005340164B8A5564511D0CA183CD6C3F3D4E0C1666B9E09F28 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
15:08:43.0220 0x1a1c C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
15:08:43.0236 0x1a1c [ E41EA5075F60BDF088A76112BB34A8DC, 077F9D6BA31A7793947140E80DFA87846DAE8B7F099D6B65C2961839EC11E3AE ] C:\Windows\System32\wbem\WmiPrvSD.dll
15:08:43.0236 0x1a1c C:\Windows\System32\wbem\WmiPrvSD.dll - ok
15:08:43.0236 0x1a1c [ 9542C4EA92C3ACB7EDCE251499B97519, 27FF2B577B670224DB0188CE3457FFD4343DA817EDDB42F7146A9D512AC5D29C ] C:\Windows\SysWOW64\shlwapi.dll
15:08:43.0236 0x1a1c C:\Windows\SysWOW64\shlwapi.dll - ok
15:08:43.0236 0x1a1c [ 0413CF6BEE547090698997075EDF4694, C3A2874FF5B1710BB704F92A896F2324C27886784C5703C1601E19029CC07468 ] C:\Windows\System32\ncobjapi.dll
15:08:43.0236 0x1a1c C:\Windows\System32\ncobjapi.dll - ok
15:08:43.0236 0x1a1c [ 6E13163214C64BD6453FBE3AF96F8944, 1CAFA15CBA7A29317359C6851292470E01B36FF92D9DF2E2C9474C3B02036305 ] C:\Windows\System32\secur32.dll
15:08:43.0236 0x1a1c C:\Windows\System32\secur32.dll - ok
15:08:43.0252 0x1a1c [ F62DB6C153A6B66ADD1D17C13AAEAF7B, 116B8EA56A5B5D782ED7F57AE22929A628B520502287944BC2CB2D8D69A8B8C6 ] C:\Windows\System32\wbem\wbemess.dll
15:08:43.0252 0x1a1c C:\Windows\System32\wbem\wbemess.dll - ok
15:08:43.0252 0x1a1c [ 9CE82AE1935A7C7E09F51E712E8E8F48, 79C6E964CAD5CBF3D4975F246BE09F953B86D4E4D6B2D371634ACC1B2B98D079 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\StreamServer.dll
15:08:43.0252 0x1a1c C:\Program Files\Common Files\microsoft shared\ClickToRun\StreamServer.dll - ok
15:08:43.0252 0x1a1c [ AC18B38A8371584DE427EF6831DDC447, A898F2597E4EB05B85398D42DABF1EA7D24559352263422458E3A597BA94979C ] C:\Windows\SysWOW64\SHCore.dll
15:08:43.0252 0x1a1c C:\Windows\SysWOW64\SHCore.dll - ok
15:08:43.0252 0x1a1c [ 4AE9D6EDAE84ED6E0D6876023DCD232B, 99A7A57CD26270E3065037CFC3D980186269A0D663E0C723F5994ED51F862FB7 ] C:\Windows\System32\Windows.UI.Xaml.Controls.dll
15:08:43.0252 0x1a1c C:\Windows\System32\Windows.UI.Xaml.Controls.dll - ok
15:08:43.0267 0x1a1c [ FFC3963ED3CD84C38B1F1286FC1BD42E, A89CBA2C89DE123058F715601C32F39F6F16F114A0747947A6B9887AD0A40DCF ] C:\Windows\System32\raschap.dll
15:08:43.0267 0x1a1c C:\Windows\System32\raschap.dll - ok
15:08:43.0267 0x1a1c [ 06C66FF5CCDC2D22344A3EB761A4D38A, B5C78BEF3883E3099F7EF844DA1446DB29107E5C0223B97F29E7FAFAB5527F15 ] C:\Windows\System32\wbem\WmiPrvSE.exe
15:08:43.0267 0x1a1c C:\Windows\System32\wbem\WmiPrvSE.exe - ok
15:08:43.0267 0x1a1c [ 525A1F7BE5A73D4006619F1B0712E8B7, F4BCB48E7081EE720007AEDC333621FFFB0A70A5126270B73D7F910D4849F4AE ] C:\Windows\SysWOW64\combase.dll
15:08:43.0267 0x1a1c C:\Windows\SysWOW64\combase.dll - ok
15:08:43.0283 0x1a1c [ D7B51B1B48357D4243D1B540E0487E24, 7BB39D020ABBF57807223D76F2D877FF41FEAC2483F9F5E2FB0F05606D6D888A ] C:\Windows\System32\wbem\cimwin32.dll
15:08:43.0283 0x1a1c C:\Windows\System32\wbem\cimwin32.dll - ok
15:08:43.0283 0x1a1c [ 4268CC1FBDD2947725521853602E3351, A72E8D1C111616CE5F3B9E8C45EA5B7EBE5D89D4EC830078820F0D1DCBD9A922 ] C:\Windows\System32\msdelta.dll
15:08:43.0283 0x1a1c C:\Windows\System32\msdelta.dll - ok
15:08:43.0283 0x1a1c [ 472DCFDE05EC04510C9957D89CAC82BA, A7C5D4874F1FBCD5FFF83F3FFE611F88C81A7BBB7F09CFD0D9AA12A002BB9470 ] C:\Windows\SysWOW64\windows.storage.dll
15:08:43.0283 0x1a1c C:\Windows\SysWOW64\windows.storage.dll - ok
15:08:43.0283 0x1a1c [ E81112B7B68B175C729330429FC51663, A9C13E40FA60B731269B2B81E752A77D9BD02BDD26872403339D4B7101E5FDB3 ] C:\Windows\SysWOW64\kernel.appcore.dll
15:08:43.0283 0x1a1c C:\Windows\SysWOW64\kernel.appcore.dll - ok
15:08:43.0299 0x1a1c [ C5ED50A4404864F135F08D2BE9638194, FA269BAF40D86E954DCDE0677925C714ED754ED565ADEA174FF795B942D525B5 ] C:\Windows\SysWOW64\version.dll
15:08:43.0299 0x1a1c C:\Windows\SysWOW64\version.dll - ok
15:08:43.0299 0x1a1c [ 50AE2E0CF8FC199F5BE78B157466106A, 93ED33089CB11B8270B3E74760112F01547603FC470A0687B0B16687B18A82DE ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
15:08:43.0299 0x1a1c C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok
15:08:43.0299 0x1a1c [ F9FE24E0F0A1EE769052DDDF77FD05A4, F0AA0A6A28621F63038DD9947D1419BBB28938DA1897F3EABB693197A04D2ACD ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvApi.dll
15:08:43.0299 0x1a1c C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvApi.dll - ok
15:08:43.0299 0x1a1c [ 3EEFFDCCD84B20BD045756B1BD5F0071, 23230005E750C4118005E0BB1777D91085CACD6A0519C7F39B206E2FB0E81A21 ] C:\Windows\System32\Windows.Globalization.dll
15:08:43.0299 0x1a1c C:\Windows\System32\Windows.Globalization.dll - ok
15:08:43.0314 0x1a1c [ 368D14219C2F13DF11BE71924632B9CE, 12B25E4BCF7180F5CECABEBD7F3A5890770D9DD87926397F347E3A6AB1F742BE ] C:\Windows\System32\framedynos.dll
15:08:43.0314 0x1a1c C:\Windows\System32\framedynos.dll - ok
15:08:43.0314 0x1a1c [ 056B35B0C3DD81E8F014BD88D8593899, 1EFCB98D580EB5A27BFBC47D00B34780CF318480D18EDDA5DAA0F7A38021FC9D ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVPolicy.dll
15:08:43.0314 0x1a1c C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVPolicy.dll - ok
15:08:43.0314 0x1a1c [ 8C8D1140787DA60A343DD11C1CDF4992, 6AA1ECE9DD340D05AEC43248592A78B70D21959DE8727F506D21A3A962348583 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\msvcp120.dll
15:08:43.0314 0x1a1c C:\Program Files\Common Files\microsoft shared\ClickToRun\msvcp120.dll - ok
15:08:43.0330 0x1a1c [ 49FB6E786B2F9DF8812E0E317CED55CB, 9461F2E4ADD5C650102ACDE0C62377FF86D9B19FC20D0003F326CCD474E8B7B9 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\msvcr120.dll
15:08:43.0330 0x1a1c C:\Program Files\Common Files\microsoft shared\ClickToRun\msvcr120.dll - ok
15:08:43.0330 0x1a1c [ 7297BD64865B7458EB432331FDFD42BC, 14AA345C6A3E535D8066CA41A3F91D74D8020B42007E8713D507188B593377A6 ] C:\Windows\System32\Windows.StateRepositoryCore.dll
15:08:43.0330 0x1a1c C:\Windows\System32\Windows.StateRepositoryCore.dll - ok
15:08:43.0330 0x1a1c [ 82FF065F045FADE1EB3F76FFEDA4297B, 8E6C84758433B38E94863D0031FF45B5DC391C122A73EC7AB0730B6919CDDED2 ] C:\Windows\System32\wbem\wmiprov.dll
15:08:43.0330 0x1a1c C:\Windows\System32\wbem\wmiprov.dll - ok
15:08:43.0330 0x1a1c [ 97481B8BE5AACE26A3CEBE8AB92C002D, 096BB11E285A0DD58DF820F7D8A52956314508D70838CD4A4D89053F4F5707BA ] C:\Windows\System32\directmanipulation.dll
15:08:43.0330 0x1a1c C:\Windows\System32\directmanipulation.dll - ok
15:08:43.0345 0x1a1c [ 67A8B47F5BCCB6BB63D7242F80B0F548, 2D7ACC69ED114468A53C4679FC28C32F0E7D812A59389E41115C20C06574A4D8 ] C:\Windows\System32\wmi.dll
15:08:43.0345 0x1a1c C:\Windows\System32\wmi.dll - ok
15:08:43.0345 0x1a1c [ B435DD24C8D3F1699B017843E0D89623, 245A2591896A6CE3D2BFC792C51F3088F4F08FF3FCF651C8A52AA418178CB92E ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVOrchestration.dll
15:08:43.0345 0x1a1c C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVOrchestration.dll - ok
15:08:43.0345 0x1a1c [ E2D1485287284F4F5ABA3664656073BD, E873A8EAA2179F0D628CE29E07EC16AB9678F1D223E7F7636259552E0DFB9C21 ] C:\Windows\SysWOW64\powrprof.dll
15:08:43.0345 0x1a1c C:\Windows\SysWOW64\powrprof.dll - ok
15:08:43.0361 0x1a1c [ 491197DCF15ED46F9D5594C376613C3B, 20FA2A080E2E1FA2C0EEB964BE4DA164CEFCD5281AF188D32DA2DA24BEC181B0 ] C:\Windows\SysWOW64\profapi.dll
15:08:43.0361 0x1a1c C:\Windows\SysWOW64\profapi.dll - ok
15:08:43.0361 0x1a1c [ 05D721CABA1C90ACDA8A780DA97602E2, DC18CC80C68D13EF9030730688AE15FE7D9AA8D9273AE299EAD5C49766E4FCE1 ] C:\Windows\SysWOW64\msvcr120_clr0400.dll
15:08:43.0361 0x1a1c C:\Windows\SysWOW64\msvcr120_clr0400.dll - ok
15:08:43.0361 0x1a1c [ 4A8202A62E00E313CE26DBFE9A4C9BF9, 6D01131CBA1151DAC9BE311619BB2D8F1E37BB3D896BB9BE657208F385475ABB ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvStreamingManager.dll
15:08:43.0361 0x1a1c C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvStreamingManager.dll - ok
15:08:43.0361 0x1a1c [ B2F1E917FE98D84BE43CF333830EADD6, 16A3EE1B4277469B24A9EDB71A1F2D41C7EAE79F42CAE9F62E52C88E7C151607 ] C:\Windows\SysWOW64\cryptsp.dll
15:08:43.0361 0x1a1c C:\Windows\SysWOW64\cryptsp.dll - ok
15:08:43.0377 0x1a1c [ CB9BFBE6A61F6A9A5CAAC18C133270CD, CDA412FDCF28503D0B9DD78C8E969A61F4B79CA4A8CC2721F8D055E25B3F9921 ] C:\Windows\SysWOW64\imm32.dll
15:08:43.0377 0x1a1c C:\Windows\SysWOW64\imm32.dll - ok
15:08:43.0377 0x1a1c [ 120FEF415AE56EDB4AB485B66015261A, C0CAB382779FF9309244F44E04B807DF7CBD3F2F5A5E11FF0C02691FCBB97863 ] C:\Windows\SysWOW64\ole32.dll
15:08:43.0377 0x1a1c C:\Windows\SysWOW64\ole32.dll - ok
15:08:43.0377 0x1a1c [ 67EA4B7552324CB68268B78A17A92045, 914D5123A8097504E2FB6B91E4F097AA1121C7AFADF8EDC673264E43F42C1B5C ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVManifest.dll
15:08:43.0377 0x1a1c C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVManifest.dll - ok
15:08:43.0377 0x1a1c [ 1D9EEA34B352E494866CD6529F2EC66F, F132A5225DED6531383E766A5705A48123FB9C2211CABFC8D1795718458D6704 ] C:\Windows\SysWOW64\oleaut32.dll
15:08:43.0377 0x1a1c C:\Windows\SysWOW64\oleaut32.dll - ok
15:08:43.0392 0x1a1c [ 8412671AADE74110F385242CD2BAEA1D, 7E6B600398484A761D79078ED68F500F4376D421C9A36BE8F93F52E50499F775 ] C:\Windows\System32\FlightSettings.dll
15:08:43.0392 0x1a1c C:\Windows\System32\FlightSettings.dll - ok
15:08:43.0392 0x1a1c [ EE9D3A1ECC57C0044C4911E47E5E087A, FF1FD36ECD4AA6F95259E3899A3E9C33755565753787FEE6B20B8806DC00D913 ] C:\Windows\System32\FontGlyphAnimator.dll
15:08:43.0392 0x1a1c C:\Windows\System32\FontGlyphAnimator.dll - ok
15:08:43.0392 0x1a1c [ 1EED0AC8BE35C771C5BA7A647EA0CC2E, D769186D5D1C3B33941D809E1F55346C106F1606B9C4ACA04062EBA02651BCF2 ] C:\Windows\System32\Windows.StateRepositoryPS.dll
15:08:43.0392 0x1a1c C:\Windows\System32\Windows.StateRepositoryPS.dll - ok
15:08:43.0408 0x1a1c [ 02B7D98CB2229EC74E416679F5108585, 8B430EFDDD359CA389CFF5673D4BA0D5ED9E1F1D110C3F5C4141254E857FAE4D ] C:\Windows\SysWOW64\crypt32.dll
15:08:43.0408 0x1a1c C:\Windows\SysWOW64\crypt32.dll - ok
15:08:43.0408 0x1a1c [ E22F6470D0B31ABE10C777FF8551C0FD, 4568417A06C64C2AB20B44138EDB97D8E19B2CD1F2195E18D5CAFC188F8ECF9C ] C:\Windows\SysWOW64\uxtheme.dll
15:08:43.0408 0x1a1c C:\Windows\SysWOW64\uxtheme.dll - ok
15:08:43.0408 0x1a1c [ 82A2C4C1C419B0CD7D62D80967AE9ACA, 3E8E2F71E1F3FE1F6807763678879FF4529CA83EACFE97C415E47B36B9869D62 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVCatalog.dll
15:08:43.0408 0x1a1c C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVCatalog.dll - ok
15:08:43.0408 0x1a1c [ F0B1C3C50F3E729ECBB62284D2AFE11E, 666B4AEF0C1B460E666AE53A82F6857E3F4219AE548B8D997F2876F403A6DC3C ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\6715dc4d04e35f16d482900c355325e9\mscorlib.ni.dll
15:08:43.0408 0x1a1c C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\6715dc4d04e35f16d482900c355325e9\mscorlib.ni.dll - ok
15:08:43.0424 0x1a1c [ E28141004B5FF318CDCEFF8972562E90, EF1E1F11EF6DB36588D8634F25288A3F1AD2FE9A519017EDCACE4FB14192E7DF ] C:\Windows\System32\AppXDeploymentServer.dll
15:08:43.0424 0x1a1c C:\Windows\System32\AppXDeploymentServer.dll - ok
15:08:43.0424 0x1a1c [ 503B5791D3687C305A4ECC60882BE726, 698132AC43B021F886144EE4BEC1135BD18F427D9938370A917ED6569E6C92BC ] C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MpCommu.dll
15:08:43.0424 0x1a1c C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MpCommu.dll - ok
15:08:43.0424 0x1a1c [ CF912158810C6C526D4B295EA0D8B5B0, 3D8DE4C70D14D79143A9E3CF5E37A3F95D2EE2E9D3DFC360C6110E62DD026116 ] C:\Windows\System32\cldapi.dll
15:08:43.0424 0x1a1c C:\Windows\System32\cldapi.dll - ok
15:08:43.0439 0x1a1c [ C029276FFA2389C0DC0571243B00BEEF, 5AF9EC3A4F8724083EDB3F020807C36A45BE2A0EBF0CF6A40417F46086467F3C ] C:\Windows\System32\fltLib.dll
15:08:43.0439 0x1a1c C:\Windows\System32\fltLib.dll - ok
15:08:43.0439 0x1a1c [ DAADBC77E8F0B0871AF343A6A1A3CC47, A949A43B3215052026BD9280FC60FEDACCD0CE2F4E5008E80FC3EE170C3685BA ] C:\Windows\System32\AppResolver.dll
15:08:43.0439 0x1a1c C:\Windows\System32\AppResolver.dll - ok
15:08:43.0439 0x1a1c [ 52E51E0945F7C5BEC5C64C20D282CA38, 86D3ABF121EAD887D40D96E96C5A306685AB871EA3A6636A77B8799F468BE485 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvVirtualization.dll
15:08:43.0439 0x1a1c C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvVirtualization.dll - ok
15:08:43.0439 0x1a1c [ 2954F9AB7689F458EC2B9BF743AA3C55, D60BC22FA02FF007E3416000A97D11A875FC34E94B8BC8D83D82B0F28799CF20 ] C:\Windows\SysWOW64\propsys.dll
15:08:43.0439 0x1a1c C:\Windows\SysWOW64\propsys.dll - ok
15:08:43.0455 0x1a1c [ 3C495160B408D154389ACC2A7F5C26F4, F277312A50141009F69BCBFFBC449C2D2B5F4169A87BB5195836E6114916A968 ] C:\Windows\System32\bcdedit.exe
15:08:43.0455 0x1a1c C:\Windows\System32\bcdedit.exe - ok
15:08:43.0455 0x1a1c [ 20958D22D3A1642F6039716D545251E3, 1ACDD6AC5AD07A80A04951E99B615E20FC0E4D4FB7622592C438602A6DCA1E50 ] C:\Windows\System32\msxml3.dll
15:08:43.0455 0x1a1c C:\Windows\System32\msxml3.dll - ok
15:08:43.0455 0x1a1c [ B3A17BF375F35123F3CDAD743D59FEDC, 029CAA1137B68DE0B1D53FD4959BC13824C4C691CBC5A022FED95EBD33D7C892 ] C:\Windows\System32\bcd.dll
15:08:43.0455 0x1a1c C:\Windows\System32\bcd.dll - ok
15:08:43.0470 0x1a1c [ 5485A575FFB0DE1DCDD0090E0892D14A, 9A164C79A6BA513C56533629929D69D5EC74B05262178599C3352EFD717E153F ] C:\Windows\System32\srvcli.dll
15:08:43.0470 0x1a1c C:\Windows\System32\srvcli.dll - ok
15:08:43.0470 0x1a1c [ 896947CDF5ACF111B60C154815406E6D, 4FB974EB9BD6D4B52E29B55EE04CCA4CDAF61B8FA95E7D5A620FDB85085CD6D7 ] C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MpRtp.dll
15:08:43.0470 0x1a1c C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MpRtp.dll - ok
15:08:43.0470 0x1a1c [ F26BBD782A1CDAE50E9D0752EBC85CD7, ABCF26EEBE07BA6D333B83A3FC136DFC1FFC1E27DAACA447DBD516D09142BF5E ] C:\Windows\SysWOW64\msasn1.dll
15:08:43.0470 0x1a1c C:\Windows\SysWOW64\msasn1.dll - ok
15:08:43.0470 0x1a1c [ 8CAC6DE99F1D24E04EA5243E04427F41, E080BBDF5286F661884EA2B8844F78A2141D4AB3485E71D3B7FCA48C7BE2EACF ] C:\Windows\SysWOW64\wintrust.dll
15:08:43.0470 0x1a1c C:\Windows\SysWOW64\wintrust.dll - ok
15:08:43.0486 0x1a1c [ 1EB64B85605E3609B8C554ECB23E1435, BE03563C08387B2F00514765AF0224DD5FAB6D26EBDB18334709D3E305CA3D27 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIntegration.dll
15:08:43.0486 0x1a1c C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIntegration.dll - ok
15:08:43.0486 0x1a1c [ F639BC7932F6AA0BB3EA1485061C30C5, 19B91B3A0A3088069F0BD2008E32FCF7B3AAAD161E5EA163032F40DDEA19F998 ] C:\Windows\System32\MrmDeploy.dll
15:08:43.0486 0x1a1c C:\Windows\System32\MrmDeploy.dll - ok
15:08:43.0486 0x1a1c [ 11D49148A302DE4104DED6A92B78B0ED, CEB0947D898BC2A55A50F092F5ED3F7BE64AC1CD4661022EEFD3EDD4029213B0 ] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9518_none_508db366bcbd18c4\msvcr90.dll
15:08:43.0486 0x1a1c C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9518_none_508db366bcbd18c4\msvcr90.dll - ok
15:08:43.0486 0x1a1c [ C571A3FC4DFB061BC717CAAA82F891E7, 5C3FA1BFB751FD8D27CCA20E5B10FFA9181EC68F9147F80E37CB7454AD06BD2C ] C:\Windows\System32\wininet.dll
15:08:43.0486 0x1a1c C:\Windows\System32\wininet.dll - ok
15:08:43.0502 0x1a1c [ 01747E0A84F32EBD769A3461A6A27AF3, 4103749613FA6FAB8472B865B4A87AB046DEB41EAA6C1AE59210DE90A721AD68 ] C:\Windows\SysWOW64\clbcatq.dll
15:08:43.0502 0x1a1c C:\Windows\SysWOW64\clbcatq.dll - ok
15:08:43.0502 0x1a1c [ D82E4A59A084B8B18CB5C17F3D218FE7, F462BDA313221B0A6373C4CC5A90DA47D08C7D6CC3575C0E96FAE2B7FFDDE8FA ] C:\Windows\System32\eeprov.dll
15:08:43.0502 0x1a1c C:\Windows\System32\eeprov.dll - ok
15:08:43.0502 0x1a1c [ AB9F419F4545FD6E8A3B8CE714021A37, CF5ACD7837E0C23F081716A078EDD5A8421E77CA4B57E5D218912872172D47F3 ] C:\Windows\SysWOW64\edputil.dll
15:08:43.0502 0x1a1c C:\Windows\SysWOW64\edputil.dll - ok
15:08:43.0517 0x1a1c [ 6E9D092513444F5D48F25B14784DEB4D, 38917E2893DF05B1E1C24FFB23C5822786D2A5C93C7E1B9ED22C63BB0EEDA088 ] C:\Windows\System32\vfuprov.dll
15:08:43.0517 0x1a1c C:\Windows\System32\vfuprov.dll - ok
15:08:43.0517 0x1a1c [ 1F4C968470C4565325A5925A598495AE, BD78A0BDA16574A90A3E65639D41ED6CE8C310B4537B13C7453CC225A2BB7BC8 ] C:\Windows\System32\Windows.Media.Devices.dll
15:08:43.0517 0x1a1c C:\Windows\System32\Windows.Media.Devices.dll - ok
15:08:43.0517 0x1a1c [ 321D4EB5A86DC41CA600203087DC370E, F8B90F095F15F049D83C39C86A330C4E83B7B95B0AEC4D28D9F1980F7A1EF42A ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvSubsystemController.dll
15:08:43.0517 0x1a1c C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvSubsystemController.dll - ok
15:08:43.0517 0x1a1c [ BD453526ADCC0560505F75E8AF31CAE7, EA496C79B24B8ED0B00A27BDB43BF9C4C143B86865FA02800D4079465CC9C71C ] C:\Windows\System32\appsruprov.dll
15:08:43.0517 0x1a1c C:\Windows\System32\appsruprov.dll - ok
15:08:43.0533 0x1a1c [ 9AFD38E3F223C730888F3B634FA9E833, 7453FC54A38BEA23E7C978DECB52191CC7FD85E2B35A92B61EE7794668D3AAFB ] C:\Windows\System32\nduprov.dll
15:08:43.0533 0x1a1c C:\Windows\System32\nduprov.dll - ok
15:08:43.0533 0x1a1c [ D65CD0BD7C0D036419D2D931C9BB21C2, 425A51EE2B76E0E3B44074EBC761D3CF0860705653D1A5ED3CCFA6D33EF6FA61 ] C:\Windows\System32\wpnsruprov.dll
15:08:43.0533 0x1a1c C:\Windows\System32\wpnsruprov.dll - ok
15:08:43.0533 0x1a1c [ C36267AA7873A95AC2285D856ADA83C6, 2C5A7F9F2C9AA32785D39A04FBB631B48942532CE932C392DC38130D51191EE6 ] C:\Windows\System32\ncuprov.dll
15:08:43.0533 0x1a1c C:\Windows\System32\ncuprov.dll - ok
15:08:43.0549 0x1a1c [ 4B830F84061081EC2ABBA664787B973B, 07EE457708516557DBDF11CC7B2255CF94AD051062973A10652B433D91C5FFAC ] C:\Windows\System32\energyprov.dll
15:08:43.0549 0x1a1c C:\Windows\System32\energyprov.dll - ok
15:08:43.0549 0x1a1c [ 9D88A3254E21A049504E726B9BF989B1, D3EE2D6A35C6AB5B450C8035C963A41CF253B4B5EA22DE871C41B8B9449CF1B0 ] C:\Windows\SysWOW64\urlmon.dll
15:08:43.0549 0x1a1c C:\Windows\SysWOW64\urlmon.dll - ok
15:08:43.0549 0x1a1c [ ABFBF896D4A98CE326532E04CCB569EA, 0B654DE4789E27E110245088FA7F8C923AAF798F8C442F76AE7C93C3A20499AE ] C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
15:08:43.0549 0x1a1c C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL - ok
15:08:43.0549 0x1a1c [ 6E2B2DDB1BC783122018D99D38497298, 02FCB91909ED2ECC68B62BCEACA7B8D8319E7D625E599756C170DB631237DA69 ] C:\Windows\System32\vcruntime140.dll
15:08:43.0549 0x1a1c C:\Windows\System32\vcruntime140.dll - ok
15:08:43.0564 0x1a1c [ 1E0BB25D7DADF12650965C3D40E8B8E6, 3E9E953BE64C690F55495709C99BA63E91789CBA4413587BFE203A50604CA269 ] C:\Windows\System32\HrtfApo.dll
15:08:43.0564 0x1a1c C:\Windows\System32\HrtfApo.dll - ok
15:08:43.0564 0x1a1c [ F615744727B5CA62B7D2C706A49736D1, 8F45783B043F99BBEB054DD8D7D9876FF31443FC3E0706C1D4FD775CD4601200 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVFileSystemMetadata.dll
15:08:43.0564 0x1a1c C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVFileSystemMetadata.dll - ok
15:08:43.0564 0x1a1c [ 1D4BA86D41C7C0F8241745DAF4DBC074, 6486AD6F0DC8FEEC91AE965D0F127BCE1FC33E7D4321E0D75ABC205B540C3366 ] C:\Windows\SysWOW64\iertutil.dll
15:08:43.0564 0x1a1c C:\Windows\SysWOW64\iertutil.dll - ok
15:08:43.0564 0x1a1c [ FD20A0999BF34351279EAFD4E43D16B5, 59ADC06203B47BDC56F890AE51B52613E7A3AB46CF3BF9B58FD0BE79734A72CA ] C:\Windows\System32\CompPkgSup.dll
15:08:43.0564 0x1a1c C:\Windows\System32\CompPkgSup.dll - ok
15:08:43.0580 0x1a1c [ 51286895A049B0E46D2984E74A20D950, E7505821F4071B1D65323FF1CC364CA31EED07D2A846014794AA27472DA10675 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
15:08:43.0580 0x1a1c C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll - ok
15:08:43.0580 0x1a1c [ 4EFA552F8835571C94E16EBD7839248A, F048947F0358E058E94403C9EA6913BBCCAA717EA6FDB557A198B3511C5C8426 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1DDCBDDC-0D4E-40B2-99EC-E6DF9650D156}\mpengine.dll
15:08:43.0580 0x1a1c C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1DDCBDDC-0D4E-40B2-99EC-E6DF9650D156}\mpengine.dll - ok
15:08:43.0580 0x1a1c [ DCF1B40EC318A038106D4B5A77234A97, AFD957DE47E67FD766698DEEA596F62257992E00E08E897C7EEC946CB86150FD ] C:\Windows\SysWOW64\rsaenh.dll
15:08:43.0580 0x1a1c C:\Windows\SysWOW64\rsaenh.dll - ok
15:08:43.0595 0x1a1c [ E79E0BCCA6DAEB922BD447A806CC541A, F023657E57844F7B6456F070F92094538290B7A8CD042510EE06102768663AC9 ] C:\Windows\SysWOW64\Windows.StateRepositoryPS.dll
15:08:43.0595 0x1a1c C:\Windows\SysWOW64\Windows.StateRepositoryPS.dll - ok
15:08:43.0595 0x1a1c [ 889B0E44B9513F8FD0D8CBC6DD4DD4D5, 5FD40D1ACCBF911868A980B86EBCC5535339996646EC7892BA6D48D0441B38BF ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
15:08:43.0595 0x1a1c C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll - ok
15:08:43.0595 0x1a1c [ 473C5E2851F0DBB106F02B8F35DB5EFC, F07481532E1D666CD24552C7CBC00ACECFE3CB7ACF1B8111EB2D3FF5DCF51D3E ] C:\Windows\System32\srumapi.dll
15:08:43.0595 0x1a1c C:\Windows\System32\srumapi.dll - ok
15:08:43.0595 0x1a1c [ 9BC6ED820DF8335A1BBAEB4F7B26AAD5, 6978F42157714AE031A5A31B9F3F8725D0DBB220F0F7DB966ECAD65B73CDA3BE ] C:\Windows\SysWOW64\bcrypt.dll
15:08:43.0595 0x1a1c C:\Windows\SysWOW64\bcrypt.dll - ok
15:08:43.0611 0x1a1c [ CEEAA1AA6C9F90DE0EB292FB6B70E2FA, 073E3621F117B0701DF1FB944B973AAD447C2A17E71BEFD11A85C4B4641B3683 ] C:\Windows\SysWOW64\cldapi.dll
15:08:43.0611 0x1a1c C:\Windows\SysWOW64\cldapi.dll - ok
15:08:43.0611 0x1a1c [ BE954C86E8F094169E32C0FE14D18909, 4654D420144F09AF5F7785AFC1F6CD2D818714A939ABC26803E7E50553F414D9 ] C:\Windows\SysWOW64\fltLib.dll
15:08:43.0611 0x1a1c C:\Windows\SysWOW64\fltLib.dll - ok
15:08:43.0611 0x1a1c [ 96DBBF44CEA4F17E564095C191F493AC, 13B06B7EDC058CB889A3304C8771D8B4D8B46A9A65793C003534A51FBC8E49EC ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceProcess\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
15:08:43.0611 0x1a1c C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceProcess\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll - ok
15:08:43.0611 0x1a1c [ 5A168BC0B98170B516D7CFE837C849CC, C678AA68DC5AB6CC65B9B7CAC92C3496DD6CBCC905F56FC76847285FE57C830F ] C:\Windows\SysWOW64\WinTypes.dll
15:08:43.0611 0x1a1c C:\Windows\SysWOW64\WinTypes.dll - ok
15:08:43.0627 0x1a1c [ BBE7610E48D3B40CE416FBC109E819E0, C472AA341BF9B603DD63C18D8890535E14DBB6193707F603E7557BFF2FC4E421 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\cc73d352d1edf9cfc86a915829e56f81\System.ni.dll
15:08:43.0627 0x1a1c C:\Windows\assembly\NativeImages_v4.0.30319_32\System\cc73d352d1edf9cfc86a915829e56f81\System.ni.dll - ok
15:08:43.0627 0x1a1c [ E534219E8F2117FA6175CBA89DD9EF17, 14F48E40080DA0A3CC04BF447813AB4F493AC6BCAFA9F8F999DDF3EB352F3556 ] C:\Windows\System32\dimsjob.dll
15:08:43.0627 0x1a1c C:\Windows\System32\dimsjob.dll - ok
15:08:43.0627 0x1a1c [ CBB4B3CC8A003302671E8BB88F9958EA, 660BDD4F6B2D04CDE70024AE90837D57D5BF321886739727DE3B0AE1FE0FE31C ] C:\Windows\SysWOW64\AppResolver.dll
15:08:43.0627 0x1a1c C:\Windows\SysWOW64\AppResolver.dll - ok
15:08:43.0642 0x1a1c [ A0802D3B0E895030460479EA30148A94, FF9328C227073EB6CD9BEF850CCAC2F0889562BFA5D283A73986B4E241B0E7F2 ] C:\Windows\SysWOW64\BCP47Langs.dll
15:08:43.0642 0x1a1c C:\Windows\SysWOW64\BCP47Langs.dll - ok
15:08:43.0642 0x1a1c [ F268FF22B277E2F414A8BE283E8B034E, 060FC8A75206796404E7D7AEA3B16A84147E15EDC37B0DBD9E76E8F31068FC44 ] C:\Windows\SysWOW64\slc.dll
15:08:43.0642 0x1a1c C:\Windows\SysWOW64\slc.dll - ok
15:08:43.0642 0x1a1c [ 82452E32EA660F327814683BDEA66DA4, DE555C96D3B594197A2F6C58B463BAAA9A32063A6F2A736F9D4183E827314854 ] C:\Windows\SysWOW64\userenv.dll
15:08:43.0642 0x1a1c C:\Windows\SysWOW64\userenv.dll - ok
15:08:43.0642 0x1a1c [ FCA983940C0949B7BDF7246992A40B01, 73866152826EE1ABD565A85D7784846777D012BF30C68BE3EE4035D40C30F956 ] C:\Windows\SysWOW64\sppc.dll
15:08:43.0642 0x1a1c C:\Windows\SysWOW64\sppc.dll - ok
15:08:43.0658 0x1a1c [ 789F6D8F34C68888B131EB779CD68D26, 1A383DCB43B14E2BC4B2A37B5ED5B3F2556D51480B81C3D3FC5885DB3BA1C283 ] C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
15:08:43.0658 0x1a1c C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe - ok
15:08:43.0658 0x1a1c [ DDB6156CC9726A0A8BDEAA4E80D7936B, BF2B3A0CD9E05F7D9CD776267AD82408ABF0970D1B883F384FDF1654812F210F ] C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbPc.dll
15:08:43.0658 0x1a1c C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbPc.dll - ok
15:08:43.0658 0x1a1c [ 2D223410D597C2EAABA71C0809D346C5, 7F660A552CF7146A72381B736F844B60AF94A6F358BAF36905536FCBD3CEC0C2 ] C:\Windows\SysWOW64\ws2_32.dll
15:08:43.0658 0x1a1c C:\Windows\SysWOW64\ws2_32.dll - ok
15:08:43.0658 0x1a1c [ 6F10F72890CF07008B98E05A9CA74ADD, 0ED22B3B511D827D3B126C8CA27917A98CB2842F44C8FEB60E8D336769620BC8 ] C:\Windows\System32\pautoenr.dll
15:08:43.0658 0x1a1c C:\Windows\System32\pautoenr.dll - ok
15:08:43.0674 0x1a1c [ 80F2A1191FF909612F6B2149BC34D25D, DD51257116F07C4A683A0E95A084E2F9D5860D7C0A6D928EAF9C705F5A78FD6D ] C:\Windows\SysWOW64\mswsock.dll
15:08:43.0674 0x1a1c C:\Windows\SysWOW64\mswsock.dll - ok
15:08:43.0674 0x1a1c [ B21C78DD62190CDD351399276879C7C0, 4072651E706FB89E91A732A0026034EA0266EB35C6BE6B9701BC21661234600C ] C:\Windows\SysWOW64\setupapi.dll
15:08:43.0674 0x1a1c C:\Windows\SysWOW64\setupapi.dll - ok
15:08:43.0674 0x1a1c [ 708198EA6AC0BB519AFA3A95A419E31A, 61C4AD648963588385BF27C23EB8D083CD8BF5241FB9E20907DC58B671A5D3BF ] C:\Windows\System32\aepic.dll
15:08:43.0674 0x1a1c C:\Windows\System32\aepic.dll - ok
15:08:43.0674 0x1a1c [ EFB7E4B51D8D617424BC2E8D46AA7ECE, 7B7AD7176A864ACB6F7A051500DFF646BE19A384D889A07092217A34940C70D1 ] C:\Windows\SysWOW64\mpr.dll
15:08:43.0674 0x1a1c C:\Windows\SysWOW64\mpr.dll - ok
15:08:43.0689 0x1a1c [ A939CDAB068CF5775E29D8B915042BA2, 7E52E1947D487DB772315DCA0FEB463A994142DFE439468DB31E037248BB4BCA ] C:\Windows\System32\appinfo.dll
15:08:43.0689 0x1a1c C:\Windows\System32\appinfo.dll - ok
15:08:43.0689 0x1a1c [ B83734F1BC8DB4BD033F213F715CDCA9, 5C758BAC576E39782E1FB242295B9020974A6990072214A8CB8AB9FBD26931E4 ] C:\Windows\SysWOW64\winusb.dll
15:08:43.0689 0x1a1c C:\Windows\SysWOW64\winusb.dll - ok
15:08:43.0689 0x1a1c [ D1ABDA319DB3670FA0B6A33BF0A5C270, 3299B9E566F930BA67C06C1F5BB33064430EF64F2106B336F6D2F69B808DE28F ] C:\Windows\SysWOW64\fundisc.dll
15:08:43.0689 0x1a1c C:\Windows\SysWOW64\fundisc.dll - ok
15:08:43.0705 0x1a1c [ 6B4BE68B00DA5E2776AB1F06D589AC84, B0EE63D9E2378CC74726A28C2D3D573C30BD148709DB136EB3A5FEA0AE4CC24C ] C:\Windows\System32\appinfoext.dll
15:08:43.0705 0x1a1c C:\Windows\System32\appinfoext.dll - ok
15:08:43.0705 0x1a1c [ 748E1969C6B7637AB39AD505DFE600C1, 6DF9BBEE22B10F164B6087F005BC0F7C8DC648AD68B80E62C48E1C0D18531A54 ] C:\Windows\System32\consent.exe
15:08:43.0705 0x1a1c C:\Windows\System32\consent.exe - ok
15:08:43.0705 0x1a1c [ 21EAA9941DB9CA4B41A5FFCBFE4CA9A5, F675D2A8686A7CFD7A7056AC490E159A17D6B728420CF15C4EE26C670437370A ] C:\Windows\System32\amsi.dll
15:08:43.0705 0x1a1c C:\Windows\System32\amsi.dll - ok
15:08:43.0705 0x1a1c [ F9B3EEC0677A727CD6D30F1915269BBB, 1B0C2B029EE07D49DD34DEC327AD6484F2C73F9E090E8110C3FA0ACD9C1D6EE6 ] C:\Windows\System32\MsCtfMonitor.dll
15:08:43.0705 0x1a1c C:\Windows\System32\MsCtfMonitor.dll - ok
15:08:43.0720 0x1a1c [ D17F6C945AF73BEAC7A6FFAD6E30859F, E5CFDF285C0913CCB49899E1B8D64CF698B617FDB6ED12F16269A94CE63836F2 ] C:\Windows\System32\msimg32.dll
15:08:43.0720 0x1a1c C:\Windows\System32\msimg32.dll - ok
15:08:43.0720 0x1a1c [ E880590195709592ED739B5A1B7A3883, 93D698065F40311064524D71EF0888C0F9331A155BF4949D0E0654A46B1710A6 ] C:\Windows\System32\msutb.dll
15:08:43.0720 0x1a1c C:\Windows\System32\msutb.dll - ok
15:08:43.0720 0x1a1c [ 2DE622139E98BECFE54746A00AF4031D, EEAF1BCE93F0238151F194391B866AB25942636D9014E3D6CDDA48B4473DE6F1 ] C:\Windows\System32\wmsgapi.dll
15:08:43.0720 0x1a1c C:\Windows\System32\wmsgapi.dll - ok
15:08:43.0720 0x1a1c [ E327DFE84FB12CB253BF093A3E4AC4D5, 3945904ECD84E54F368230D966A5DF557D65B778757C242B57D1235F86B4CED9 ] C:\Windows\SysWOW64\xmllite.dll
15:08:43.0720 0x1a1c C:\Windows\SysWOW64\xmllite.dll - ok
15:08:43.0736 0x1a1c [ 716870555E38130F5BF6CFB26026D3BC, 89CF3C06CB0DC1C6BFB81461815B41C4BD27C71EE8C642A929AA17B46DB430D0 ] C:\Windows\System32\CertEnroll.dll
15:08:43.0736 0x1a1c C:\Windows\System32\CertEnroll.dll - ok
15:08:43.0736 0x1a1c [ EEE23E14ABF0324FC540C05430BAA3FA, BC89C378C922121FF1554CA585793697AD6CD45BF41744387213FA8933927BCA ] C:\Windows\SysWOW64\atl.dll
15:08:43.0736 0x1a1c C:\Windows\SysWOW64\atl.dll - ok
15:08:43.0736 0x1a1c [ 812CE60896D20430B851526F04BCD6C9, 4DC441EE9D26FD5B6BE227B7BC4EBD60046C1B6BECA30616541FFDAC2FCAA95A ] C:\Windows\SysWOW64\devobj.dll
15:08:43.0736 0x1a1c C:\Windows\SysWOW64\devobj.dll - ok
15:08:43.0752 0x1a1c [ 759938AD9E7859BA6917C8589AD1BF44, F4FFF888568F68340F0477DA8232BF487AC36D08D642F89D4D1BA03A06D2AE90 ] C:\Windows\SysWOW64\fdPnp.dll
15:08:43.0752 0x1a1c C:\Windows\SysWOW64\fdPnp.dll - ok
15:08:43.0752 0x1a1c [ 7FC1D513557EBF656C52BB4CD236EFEE, 62501DAD3A6EB96EE9751A178684B0B238DCD49AE475277AEA35FEF066F980CA ] C:\Windows\System32\amsiproxy.dll
15:08:43.0752 0x1a1c C:\Windows\System32\amsiproxy.dll - ok
15:08:43.0752 0x1a1c [ 3EF9D06EE1B3B7C43180230321323978, BF428B2B5C2686A5B631DC055BFDD11AF605FA9C0202D2E941DA10307B6301FA ] C:\Windows\System32\cryptnet.dll
15:08:43.0752 0x1a1c C:\Windows\System32\cryptnet.dll - ok
15:08:43.0752 0x1a1c [ DBFF13F89B8A5ECC33CBFC61A5CDFA10, 8F65FA71E927D5C9B55F07616A2BBFDE51BCAC01DB7D925CA42C4183B1DAC787 ] C:\Windows\SysWOW64\pcacli.dll
15:08:43.0752 0x1a1c C:\Windows\SysWOW64\pcacli.dll - ok
15:08:43.0767 0x1a1c [ 1311999033B01B21B53463AFC28FCE9C, F6F7966978F2D78BFA9AE90689267B0DDD4A28EEB8BAC85DC22920B5B4A10740 ] C:\Windows\SysWOW64\sfc_os.dll
15:08:43.0767 0x1a1c C:\Windows\SysWOW64\sfc_os.dll - ok
15:08:43.0767 0x1a1c [ FB953BD1C9B60607B9CBEE70EAFC7ABA, 826F58BBD984DFD89C8FF0DF36CA6198C427BF03C1DD4E24F56101452770C2AE ] C:\Windows\System32\pcasvc.dll
15:08:43.0767 0x1a1c C:\Windows\System32\pcasvc.dll - ok
15:08:43.0767 0x1a1c [ 8260A0FF7EDD2A499D0613761F624980, BFDADF0E4EF2E1C769A6587B3A1253F5960FB922657C30CCC81DF2556A0CBF66 ] C:\Windows\System32\certca.dll
15:08:43.0767 0x1a1c C:\Windows\System32\certca.dll - ok
15:08:43.0767 0x1a1c [ 3CBFC940DBE6540691F8528046CFEC53, 9369DA668A77B88C2BFCCED16F6D05C74C166DC57249D82FAE95724E4B594406 ] C:\Program Files\Tablet\Wacom\libxml2.dll
15:08:43.0767 0x1a1c C:\Program Files\Tablet\Wacom\libxml2.dll - ok
15:08:43.0783 0x1a1c [ 12EB70FD51361171DB16869803BCA8A1, A5236B1C1E4A299E6240A64187B0A8AC798E5916A5338DA07F00A9EB6B5E510E ] C:\Windows\System32\CredProvDataModel.dll
15:08:43.0783 0x1a1c C:\Windows\System32\CredProvDataModel.dll - ok
15:08:43.0783 0x1a1c [ 8A8C771ACBDB1D4D25C62846AE5ECFAD, 2443D753040B4D16CA9D259067469DF1902DD1AD59581D60530596AF1C7B4FE0 ] C:\Windows\System32\AuthExt.dll
15:08:43.0783 0x1a1c C:\Windows\System32\AuthExt.dll - ok
15:08:43.0783 0x1a1c [ 51CB50D02CA7C2F73DC09C6471844C7A, 06ECCBF0DB942F05BDD27BAF7D5EECC0597568E3350279EAC07217A8F05C68B4 ] C:\Windows\System32\threadpoolwinrt.dll
15:08:43.0783 0x1a1c C:\Windows\System32\threadpoolwinrt.dll - ok
15:08:43.0783 0x1a1c [ D1484F8A54B3E8E19A76B7C80B0D238C, BA2D3EEC23DF27587E6A7313D481EF05508F37C584849BC86FDCC6DA70900B32 ] C:\Windows\System32\NetworkStatus.dll
15:08:43.0783 0x1a1c C:\Windows\System32\NetworkStatus.dll - ok
15:08:43.0799 0x1a1c [ 5A56585C356F0ABE6192B361F6E5228B, 60980284ACC7E93CB5C1926307968D5B3767D2A2D71643F885BB5C244DD80F6C ] C:\Windows\System32\credprovhost.dll
15:08:43.0799 0x1a1c C:\Windows\System32\credprovhost.dll - ok
15:08:43.0799 0x1a1c [ EA96C96FA6009EEE2736696996443F6B, BEAFCCD1ED3B45453FCE3D64D7FB748354F6F5864D0D2975C8BBF9CC5ADFD915 ] C:\Windows\System32\ftd2xx.dll
15:08:43.0799 0x1a1c C:\Windows\System32\ftd2xx.dll - ok
15:08:43.0799 0x1a1c [ 107095F501EFDE7A3082F03CA9F7AA44, 196D8FC875ACAB06F36D078D7CB34541538C6FA80CE6B442BEFF6EE01892DAF3 ] C:\Windows\System32\credprovs.dll
15:08:43.0799 0x1a1c C:\Windows\System32\credprovs.dll - ok
15:08:43.0814 0x1a1c [ 5E156BEDCE089689C204055DD9918D24, 1CF0D769EA0F31FFC80CE0BB9337A2CBDB75ECEC41FD7BCFB68A2C084B7F7895 ] C:\Windows\System32\credprovslegacy.dll
15:08:43.0814 0x1a1c C:\Windows\System32\credprovslegacy.dll - ok
15:08:43.0814 0x1a1c [ DA6FA2215B694FD1D3D8B076A48C8BC5, BE0AEFA70D678140862A8CC84906DD05EE946419CEB877EC54E44580FE4E0B96 ] C:\Windows\System32\facecredentialprovider.dll
15:08:43.0814 0x1a1c C:\Windows\System32\facecredentialprovider.dll - ok
15:08:43.0814 0x1a1c [ 5F2F0A5FD46A7E2F5862ECFE764F4654, 33CAC549F4E24D51C957EA31783FF29D5139BA0C082C9DA4414C3ABC401A2B2A ] C:\Windows\System32\Windows.Devices.Enumeration.dll
15:08:43.0814 0x1a1c C:\Windows\System32\Windows.Devices.Enumeration.dll - ok
15:08:43.0814 0x1a1c [ 2334A4A65CD7B53EEE185C75A1B65F2B, 9078C1269E32FE99C91374FB020FBDA80AE9E656530AF2F70AF4A6C65E9B2432 ] C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.17763.195_none_369f299161b2af67\GdiPlus.dll
15:08:43.0814 0x1a1c C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.17763.195_none_369f299161b2af67\GdiPlus.dll - ok
15:08:43.0830 0x1a1c [ 3E98082656F68B4B16555C308B09E118, 62723F2D0D106F19A0C2575FC71D5CEA71DADC28D8792C8A0853E301478FE51D ] C:\Windows\System32\deviceassociation.dll
15:08:43.0830 0x1a1c C:\Windows\System32\deviceassociation.dll - ok
15:08:43.0830 0x1a1c [ 0423DC0B8058F0BA7E2714A1A05D0F83, 859CFE72B145076914D700EC4579CB0448F457B9D9E994DC74DC5A82A39A93C8 ] C:\Windows\System32\PhotoMetadataHandler.dll
15:08:43.0830 0x1a1c C:\Windows\System32\PhotoMetadataHandler.dll - ok
15:08:43.0830 0x1a1c [ 9DC0E579A781FEBBFF18E1858BE9CA5D, 819AE47F29ADCE61F2C7AE716260CBF464436574EBC2D014C83FFBEDC685296D ] C:\Windows\System32\SmartcardCredentialProvider.dll
15:08:43.0830 0x1a1c C:\Windows\System32\SmartcardCredentialProvider.dll - ok
15:08:43.0830 0x1a1c [ C2F5CFD41F9EABC3E73B9E3A67D633F7, 3798934C36698F3D8C605C8A25088BDBD817D9623D5CBBB6E1C3DE7D084C1414 ] C:\Program Files\Tablet\PenInst.dll
15:08:43.0830 0x1a1c C:\Program Files\Tablet\PenInst.dll - ok
15:08:43.0845 0x1a1c [ 4D89DB62F5F850ACDFB07DE8DBA41278, 4AA8B06792F071E1CC8881224C7FF3C794712E98FA5F80827727151C30F2D719 ] C:\Windows\System32\StructuredQuery.dll
15:08:43.0845 0x1a1c C:\Windows\System32\StructuredQuery.dll - ok
15:08:43.0845 0x1a1c [ 55469B903AB8BCBB44C02E5B02F6F902, A1DC0F977518BE828E9ACDC8DB67044E5687C34A7A82C87BD6A6866287153E0C ] C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
15:08:43.0845 0x1a1c C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe - ok
15:08:43.0845 0x1a1c [ 1486B012666EF1F6C30B39EE4B8A7EE2, 7AF79AACA12E291071312FECB7C0221920BA477042825706F51A57DCFFA4DCEB ] C:\Windows\System32\atlthunk.dll
15:08:43.0845 0x1a1c C:\Windows\System32\atlthunk.dll - ok
15:08:43.0845 0x1a1c [ E036F11292C502143683E1473FC08AE1, E0F6289DEEDA8A99F39DAFC43C9F21BF939481298E50EEDAB390CE2032737B5D ] C:\Windows\System32\BioCredProv.dll
15:08:43.0845 0x1a1c C:\Windows\System32\BioCredProv.dll - ok
15:08:43.0861 0x1a1c [ 1878F086570487BA1BA211A763BA50E6, EF778A401DCA13DC11BFF09BBDA5889E31BBFC0A22684898DE5047824F901D38 ] C:\Windows\System32\ngckeyenum.dll
15:08:43.0861 0x1a1c C:\Windows\System32\ngckeyenum.dll - ok
15:08:43.0861 0x1a1c [ B90BD7049D6BC7FE388D6F61D3148A10, D4D6CA55A04B66B60C30D3BF122A1E6CCE19BCA27044A4053E0A80FB044F0C7E ] C:\Windows\System32\MSWB7.dll
15:08:43.0861 0x1a1c C:\Windows\System32\MSWB7.dll - ok
15:08:43.0861 0x1a1c [ 0BE8327EC0A7FCB7498E0184A868A56E, A4C83DF09134102422EBB7B9A48D39968CB51F075F27626798B44F9A22848F4B ] C:\Windows\System32\Wacom_Touch_Tablet.dll
15:08:43.0861 0x1a1c C:\Windows\System32\Wacom_Touch_Tablet.dll - ok
15:08:43.0877 0x1a1c [ 7C20F5246E716A44326140A3B8D7EDB4, 9B92AA63C738A27D3578B53C0EE3567F2A2E72DDB8B1C1365FF5F2E8FBB49612 ] C:\Windows\System32\cxcredprov.dll
15:08:43.0877 0x1a1c C:\Windows\System32\cxcredprov.dll - ok
15:08:43.0877 0x1a1c [ C7ECB8D0D1BAF0533B7A02044FAE5AE7, E6AD1DBCE4E77CCD68B37820598E871E3756EF357D46C464508BFF86050D3CA5 ] C:\Windows\System32\Wacom_Tablet.dll
15:08:43.0877 0x1a1c C:\Windows\System32\Wacom_Tablet.dll - ok
15:08:43.0877 0x1a1c [ A2AEDAB3C67AD899DEA49D3D92E47E93, F8C6BBFD1F07C40ECAD6A8C3AD0CA4B428DC5BAFF246D4050E5D528553FBF982 ] C:\Windows\System32\ngccredprov.dll
15:08:43.0877 0x1a1c C:\Windows\System32\ngccredprov.dll - ok
15:08:43.0877 0x1a1c [ B4463285B6259CB3211D15F21F9F9ABC, 18BE393D0143C8121110278A256844B85D82B7FE0AAF8AE5162FE0CEC8A94D89 ] C:\Windows\System32\WofUtil.dll
15:08:43.0877 0x1a1c C:\Windows\System32\WofUtil.dll - ok
15:08:43.0892 0x1a1c [ F2E685815DDFE8D86821271F85BF596E, 1793ACD47AE690717270B711076604BE2E71F973B434248FE699745CCE3AAEC6 ] C:\Windows\System32\wscapi.dll
15:08:43.0892 0x1a1c C:\Windows\System32\wscapi.dll - ok
15:08:43.0892 0x1a1c [ 2D57B22F2E411FB2A72E899E6402BB51, 1112DFD8FB594EF771D276BA5E2B48C1540FFFC1F813E77920A173B06E678642 ] C:\Program Files\Malwarebytes\Anti-Malware\CloudControllerImpl.dll
15:08:43.0892 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\CloudControllerImpl.dll - ok
15:08:43.0892 0x1a1c [ A2CC0A771F7507D28D4EA0131695186A, 2D9B0F8632C6DF2EC2AA1E75D839A6D61128A7724B5509F939078F3A52005E92 ] C:\Program Files\Malwarebytes\Anti-Malware\7z.dll
15:08:43.0892 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\7z.dll - ok
15:08:43.0908 0x1a1c [ 3C08BFF3E2BCDCD5C72AD5659B2A6AEC, 0B70B06DDEEF5B87C27B813718F60277DF892785F8BFDD40ABAEF3530B835711 ] C:\Program Files\Malwarebytes\Anti-Malware\TelemetryControllerImpl.dll
15:08:43.0908 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\TelemetryControllerImpl.dll - ok
15:08:43.0908 0x1a1c [ 3AD75B231FF0FAD82E278023A3407A24, A1D8570FE960EAC3CBFDD48FE8E2B7B47B7402C497CA005837BE7B881E64AD43 ] C:\Windows\System32\wlidcredprov.dll
15:08:43.0908 0x1a1c C:\Windows\System32\wlidcredprov.dll - ok
15:08:43.0908 0x1a1c [ 2424A6D8BD2CFA24A12EB98A9362F997, D7B2C7FB2DF8B3F4F914FFD3C5F22739832F622A34249729DEA8F053A5F35196 ] C:\Program Files\Malwarebytes\Anti-Malware\CleanControllerImpl.dll
15:08:43.0908 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\CleanControllerImpl.dll - ok
15:08:43.0908 0x1a1c [ 8379C13050D22856136825E80B637CBB, 95B4C38A10AD03CF0C87FF89F47B8FD9D12C72D6C8B7F14B4615531947BCEF19 ] C:\Windows\System32\rasplap.dll
15:08:43.0908 0x1a1c C:\Windows\System32\rasplap.dll - ok
15:08:43.0924 0x1a1c [ B70A38BD67559162182958E35DBFAF30, A27F7E8E4184B5E28546A1B89D4BF2CEE3A29A44E47DE96532C73B66A655DE2C ] C:\Windows\System32\sfc.dll
15:08:43.0924 0x1a1c C:\Windows\System32\sfc.dll - ok
15:08:43.0924 0x1a1c [ 455E89E79F99BC944F7915D6452B0801, F8B62891D71E112E2D20E0E20410E9FD11E485EE52BE2AFFFA61575A5A8C51D2 ] C:\Windows\System32\sfc_os.dll
15:08:43.0924 0x1a1c C:\Windows\System32\sfc_os.dll - ok
15:08:43.0924 0x1a1c [ 894EE0E342C298033EFCB31D955FBF07, 984653D01821CDC34F70212597382DB99C172FAD268AF9151660E16097488633 ] C:\Windows\System32\Wintab32.dll
15:08:43.0924 0x1a1c C:\Windows\System32\Wintab32.dll - ok
15:08:43.0939 0x1a1c [ 628FC29985B8B22C92D1F85B8C13A1EF, 9061959C925EB25716F2A0B4932D932D5194085384CBAD6E5FEFECC1664DF17F ] C:\Program Files\Malwarebytes\Anti-Malware\ActionsShim.dll
15:08:43.0939 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\ActionsShim.dll - ok
15:08:43.0939 0x1a1c [ 48C63C5AFCD211F2836A953B22CAAA27, D6E55B134AF1072531BC329E7684454DFB8745BA8F47A7FCA00377A26DB4894A ] C:\Program Files\Malwarebytes\Anti-Malware\ScanControllerImpl.dll
15:08:43.0939 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\ScanControllerImpl.dll - ok
15:08:43.0939 0x1a1c [ 73A90462B7BA7491CF9B64FF071FCB39, C68223EC0C9362C869ED64931D2499A0EA49F1D04CF2F8949FCA7D46D21E8F40 ] C:\Program Files\Malwarebytes\Anti-Malware\Actions.dll
15:08:43.0939 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\Actions.dll - ok
15:08:43.0939 0x1a1c [ 93944174D4F71B32201AC1C7A829FF28, 7F4F649959DAD2C691C465B75D9AB4EB676B6EE032A804A73C33BFC21469F5C3 ] C:\Windows\System32\Winlangdb.dll
15:08:43.0939 0x1a1c C:\Windows\System32\Winlangdb.dll - ok
15:08:43.0955 0x1a1c [ 364AB28422013B10C812F856E2B08223, C4F1F5BEF0CBD6F37EE415F72E8E7A61F7F9E021DB458BDB54A9E0DF8CBD42A9 ] C:\Program Files\Malwarebytes\Anti-Malware\MBAMShim.dll
15:08:43.0955 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\MBAMShim.dll - ok
15:08:43.0955 0x1a1c [ FB08D78F22C84CD911EB3F6E43F2A095, CC21F138EE6224D952BC62E1B21F71B2989AE72FC8917FD4791648855C5831F1 ] C:\Program Files\Malwarebytes\Anti-Malware\SwissarmyShim.dll
15:08:43.0955 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\SwissarmyShim.dll - ok
15:08:43.0955 0x1a1c [ 136FC2194A90B508B69ED6E64AA2BAED, 3D38E63BB913CAD4F89EB13A8605897C3DC9825FD528D7C3317CBE928FF844C7 ] C:\Windows\System32\CredProv2faHelper.dll
15:08:43.0955 0x1a1c C:\Windows\System32\CredProv2faHelper.dll - ok
15:08:43.0970 0x1a1c [ CC3074A26B40D9847A59AF6B18CB4B3F, 334427F76F46F101A6F5A26B8CBC8F8C959E895FC3461DDC352F93D5B4CCC4C7 ] C:\Windows\System32\CredProvHelper.dll
15:08:43.0970 0x1a1c C:\Windows\System32\CredProvHelper.dll - ok
15:08:43.0970 0x1a1c [ EFE462301384876898BC1598E7007A87, 52015CD898E7B91BE45002FE519AE7429069CBF595246F4F4ECDACA21DCCE55C ] C:\Program Files\Malwarebytes\Anti-Malware\Swissarmy.dll
15:08:43.0970 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\Swissarmy.dll - ok
15:08:43.0970 0x1a1c [ D7C68326D4E7A346E697CB89BBA9970D, 4957437CEAFF6A68C3792CC63A1814EF983E5B44CC556C02EECE50E8F6A2ABEB ] C:\Windows\System32\spfileq.dll
15:08:43.0970 0x1a1c C:\Windows\System32\spfileq.dll - ok
15:08:43.0970 0x1a1c [ C7C45610F644906E6F7D664EF2E45B08, 4808F1101F4E42387D8DDB7A355668BAE3BF6F781C42D3BCD82E23446B1DEB3E ] C:\Windows\System32\IDStore.dll
15:08:43.0970 0x1a1c C:\Windows\System32\IDStore.dll - ok
15:08:43.0986 0x1a1c [ FBE2041F621D0BEB985D27791E64E5B4, F385575F7542124199E83C9AFFCB36E117BB6A0CD5324A26344F954658077BF1 ] C:\Windows\System32\globinputhost.dll
15:08:43.0986 0x1a1c C:\Windows\System32\globinputhost.dll - ok
15:08:43.0986 0x1a1c [ 71BDD3255FEF64E493548056115E62FB, 3EBA9FBAA11E8D69A069E2A56778456BA22B7146EC97EB18F743D9007888B47B ] C:\Windows\System32\winbio.dll
15:08:43.0986 0x1a1c C:\Windows\System32\winbio.dll - ok
15:08:43.0986 0x1a1c [ 1FBBB23C02306AB1FE1D38C66007F9AC, 3AEEDED64B50A231F44ED2EF2ED383C961469B9DA658057D7372FC45B4A292AF ] C:\Windows\System32\InputSwitch.dll
15:08:43.0986 0x1a1c C:\Windows\System32\InputSwitch.dll - ok
15:08:43.0986 0x1a1c [ F653C99D4A0C61D4B2C64358B8213BD8, AE6351A712719286C4E636B35A79AA47A769D8562DE721893D9CFB0769506EB8 ] C:\Windows\System32\InputMethod\CHS\ChsIME.exe
15:08:43.0986 0x1a1c C:\Windows\System32\InputMethod\CHS\ChsIME.exe - ok
15:08:44.0002 0x1a1c [ 50EE79CF7C9C820094F0F9F5920A6AB9, 52D830273F2058068F7F0FADC2DA849775BFAD22D55304A7FB8BE5375217C8D0 ] C:\Windows\System32\msctfp.dll
15:08:44.0002 0x1a1c C:\Windows\System32\msctfp.dll - ok
15:08:44.0002 0x1a1c [ 19C4CE79A016457D3A70EA5B9D9091DB, D3759E806BA36FFB9FF01CFFD91EB4D1102AC7EEE8DD22275C443EBC22CFA939 ] C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
15:08:44.0002 0x1a1c C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe - ok
15:08:44.0002 0x1a1c [ F05162F9877CAC90EABF1565BF2C3F28, 480238F80D6A0A36721FA292582789F83C5EB3589EB255A1460C44CE794DE88B ] C:\Program Files\Common Files\microsoft shared\ink\tipskins.dll
15:08:44.0002 0x1a1c C:\Program Files\Common Files\microsoft shared\ink\tipskins.dll - ok
15:08:44.0017 0x1a1c [ CB258766E99AB3B57E6FDF32177804A2, 61833AF290A3E10B0ABF9773625C1DD89B337D8F65BC6650B5BBB7393B77652B ] C:\Windows\System32\drivers\mbamswissarmy.sys
15:08:44.0017 0x1a1c C:\Windows\System32\drivers\mbamswissarmy.sys - ok
15:08:44.0017 0x1a1c [ 4E6987B5D0678F77CEE802ACC780C51D, AFB301623A69EA45F7146027082225E0EEC7202917A7EC6C2F7D84DED0227790 ] C:\Program Files\Malwarebytes\Anti-Malware\BrowserSDKDLLShim.dll
15:08:44.0017 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\BrowserSDKDLLShim.dll - ok
15:08:44.0017 0x1a1c [ 3FBB96DCA2AB609E30AA64385D2B1ECF, 9A3EC7322697B4896E1FA685E1000C3A6CFAEE287931DF699CDE790E7F3D9D0E ] C:\Windows\System32\twinapi.dll
15:08:44.0017 0x1a1c C:\Windows\System32\twinapi.dll - ok
15:08:44.0017 0x1a1c [ 00B0A7E23AFB9EB2C42FBF6150D4F28F, 83CDCF045E76DD2728D8A1307CA24CAA7C0CBAA9D2CCC9D54CCCB8C841CDB01F ] C:\Program Files\Malwarebytes\Anti-Malware\BrowserSDKDLL.dll
15:08:44.0017 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\BrowserSDKDLL.dll - ok
15:08:44.0033 0x1a1c [ C5B4B172D043BFE3C5FA33961B6CBC8C, 890896118137C88346F3BE62435FF0ED3AA70C52475DDA2BFA466402C95FC01C ] C:\Program Files\Malwarebytes\Anti-Malware\RTPControllerImpl.dll
15:08:44.0033 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\RTPControllerImpl.dll - ok
15:08:44.0033 0x1a1c [ 13CD071B97458A30A2A5F433CE5AA1B7, FBA5CFD9A35F0B4E6425794E80695B0699528591E25D67E78242082449525BE3 ] C:\Program Files\Common Files\microsoft shared\ink\TipRes.dll
15:08:44.0033 0x1a1c C:\Program Files\Common Files\microsoft shared\ink\TipRes.dll - ok
15:08:44.0033 0x1a1c [ 52DF0AD4EF80F78A18651C0ECB1DE63B, B7E1A017AB213E6D2E919B8AF67FA9E9F057ABE3BD0503789E89859551A9EDCC ] C:\Program Files\Malwarebytes\Anti-Malware\MWACControllerImpl.dll
15:08:44.0033 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\MWACControllerImpl.dll - ok
15:08:44.0049 0x1a1c [ C1301F0B6ECD1102F6FFF7F46916777B, 487F3D96EE71015BD0D0A91EFB660356C224F13B1C0FEBBBC51842D970FFDC28 ] C:\Program Files\Malwarebytes\Anti-Malware\ArwControllerImpl.dll
15:08:44.0049 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\ArwControllerImpl.dll - ok
15:08:44.0049 0x1a1c [ 0DA2C8DAC82F8F4A87E832F123BDF5CD, BC104E3DC8F3F065CCE1F34551A3B1C236C9C3CAF248B68EC6264E44FC8B081B ] C:\Program Files\Malwarebytes\Anti-Malware\AEControllerImpl.dll
15:08:44.0049 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\AEControllerImpl.dll - ok
15:08:44.0049 0x1a1c [ D64FE562A9554C345572F2CEA8250641, ABCF905D64CD5E4E35D6781C669DAF4174B4238854B5D3C1A58C5E9B4FB4A301 ] C:\Program Files\Malwarebytes\Anti-Malware\SPControllerImpl.dll
15:08:44.0049 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\SPControllerImpl.dll - ok
15:08:44.0049 0x1a1c [ 9F7EC8ACEBF336B6431AD3FD4E423658, 27885B6521A3A20230476729516C0421586A1410B5508A04FBAAB8CBEAF71730 ] C:\Windows\System32\DevDispItemProvider.dll
15:08:44.0049 0x1a1c C:\Windows\System32\DevDispItemProvider.dll - ok
15:08:44.0064 0x1a1c [ 3E8050844CC2B3C66DEF5694E2AC0EC8, 157FA2883FDE88DF63D458A676751C5EE3DE943FFE1E01EEC8FAE03E6A7C450D ] C:\Program Files\Malwarebytes\Anti-Malware\SelfProtectionShim.dll
15:08:44.0064 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\SelfProtectionShim.dll - ok
15:08:44.0064 0x1a1c [ C309A0B32177191D46CE2DC9AC11A944, F11DDB6431F269BE8ECF6403B2F7093B4F771053AE2D0D943F71ED95507679C3 ] C:\Windows\System32\Windows.Media.dll
15:08:44.0064 0x1a1c C:\Windows\System32\Windows.Media.dll - ok
15:08:44.0064 0x1a1c [ 1D7E40FDA8515B610F0A3979A0FED1EF, E0E219ACE9B775C1A2AD353704D78B8E1DFB384D3FC7EE0E20543F9CC6D16E0D ] C:\Program Files\Malwarebytes\Anti-Malware\SelfProtectionSdk.dll
15:08:44.0064 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\SelfProtectionSdk.dll - ok
15:08:44.0080 0x1a1c [ C64C3F9DC6EE1BA373020AA08371FD75, 49E79C70057F41D5E3DF952D373288A5614B8946136326E0763BDF04B05099F9 ] C:\Windows\System32\RTWorkQ.dll
15:08:44.0080 0x1a1c C:\Windows\System32\RTWorkQ.dll - ok
15:08:44.0080 0x1a1c [ 47BCA861EC17CBE5AF8C61D297790A20, 44428D71697FA0F1C3648A761CA272A6B9A5DBA7FCCB9E357C2A8C2AFAE0D7DF ] C:\Windows\System32\msftedit.dll
15:08:44.0080 0x1a1c C:\Windows\System32\msftedit.dll - ok
15:08:44.0080 0x1a1c [ BB96E5E1ECCD7FD0FE7D7F04445381DE, 4BB00CD26943B5CD2EC39D3CF350ED4C6D1A7B1A586F0AFE334CCFD7CDA8FE40 ] C:\Windows\System32\DeviceCredential.dll
15:08:44.0080 0x1a1c C:\Windows\System32\DeviceCredential.dll - ok
15:08:44.0080 0x1a1c [ E475530C814FE2651F550D7DC21B8845, A4B32D326B975D237F92E8F2E423DDD64D1803B1D13BA931308713BF2080B142 ] C:\Windows\System32\radardt.dll
15:08:44.0080 0x1a1c C:\Windows\System32\radardt.dll - ok
15:08:44.0095 0x1a1c [ E385410A4C16A62E9B6CC2DFF3C7C921, AAE3270025C7A0EC0490504B51C2FBF6C24AA44415DD836B9F49BE5614E20FA6 ] C:\Windows\System32\drivers\wd\WdNisDrv.sys
15:08:44.0095 0x1a1c C:\Windows\System32\drivers\wd\WdNisDrv.sys - ok
15:08:44.0095 0x1a1c [ EEA2B1A523CBBC3579BE6280026C513D, C6B1B0FECD0BE2BA2370A3A0F268AE33A8359896B840DD76CCAFD40D3D06A51F ] C:\Windows\System32\Windows.CloudStore.dll
15:08:44.0095 0x1a1c C:\Windows\System32\Windows.CloudStore.dll - ok
15:08:44.0095 0x1a1c [ 70B7F03A4BA29DE32300554B43006F80, 26B14BC75C30DAACC424748A176E9A0C4AE8B6B2458E856129E792E4E3594481 ] C:\Windows\System32\CredentialMigrationHandler.dll
15:08:44.0095 0x1a1c C:\Windows\System32\CredentialMigrationHandler.dll - ok
15:08:44.0111 0x1a1c [ D2AB39EA2C0FCD172751F84BDA723A97, C4E078607DB2784BE7761C86048DFFA6F3EF04B551354A32FCDEC3B6A3450905 ] C:\Windows\System32\dllhost.exe
15:08:44.0111 0x1a1c C:\Windows\System32\dllhost.exe - ok
15:08:44.0111 0x1a1c [ FC166471116FF52B9EB17F3CDF962787, 56E27E5A583345D07BFAC3EAC0FA560157E250CE18985C8924C6A35BE177F57B ] C:\Windows\System32\SettingSync.dll
15:08:44.0111 0x1a1c C:\Windows\System32\SettingSync.dll - ok
15:08:44.0111 0x1a1c [ 766D3C67CDDD1649455E2A3BB0DA2F3A, 5367FFB066851601D71E0623FD1D3E17526F0389E54066257275F97C4D5A95BB ] C:\Windows\System32\shacctprofile.dll
15:08:44.0111 0x1a1c C:\Windows\System32\shacctprofile.dll - ok
15:08:44.0127 0x1a1c [ FFE8B72C98A4508AB8C719CA939D816D, 40A16FA6E48CA9DE188D21AEC4E8395175F2C3C5A74AA0D5CBC6225C5006D4D1 ] C:\Windows\System32\AppxAllUserStore.dll
15:08:44.0127 0x1a1c C:\Windows\System32\AppxAllUserStore.dll - ok
15:08:44.0127 0x1a1c [ 0764AEE9E736C5040B47DB84D3C182BA, 500B26947AE1FCBA26E033C354E96FD582FFBD0B31432CF44F05CC308B9010F1 ] C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
15:08:44.0127 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe - ok
15:08:44.0127 0x1a1c [ A8902F0BAE538AAE47EC4EDD7796B4B0, 550C6C449F101E9EEBF00906EF04DE5427F9E8DC27FEF57BD03CB02F8CD3A0F7 ] C:\Windows\SysWOW64\psapi.dll
15:08:44.0127 0x1a1c C:\Windows\SysWOW64\psapi.dll - ok
15:08:44.0127 0x1a1c [ 8D3849E1837FCC289B744EC29D41FDC5, F6147E9C9BBCB8470F88C48AF75272A7D531344B737C5AE50FE2D5786A93AD55 ] C:\Windows\System32\cdpusersvc.dll
15:08:44.0127 0x1a1c C:\Windows\System32\cdpusersvc.dll - ok
15:08:44.0142 0x1a1c [ 8B6722980E0C5A06312E00BD0565B692, 09D94357241EBB37E4510C3A168178822C9458530A30D0E829F5759D6202834D ] C:\Windows\System32\sihost.exe
15:08:44.0142 0x1a1c C:\Windows\System32\sihost.exe - ok
15:08:44.0142 0x1a1c [ 48FB3FFACCD2194CDD6B04CE84361C29, 3095991A288A977E203256B87AEDD6A4B3B54E4C0726FC47AD5BDD6DDBEB6151 ] C:\Windows\System32\WpnUserService.dll
15:08:44.0142 0x1a1c C:\Windows\System32\WpnUserService.dll - ok
15:08:44.0142 0x1a1c [ 74518EB383D389BE739482B61D6A60FA, A09FC6E5B1F7F3FE2C25EB880BEC592AA6365F231EEF118E6B2EF5AA2E75A54B ] C:\Windows\System32\DesktopShellExt.dll
15:08:44.0142 0x1a1c C:\Windows\System32\DesktopShellExt.dll - ok
15:08:44.0158 0x1a1c [ EDC442731FB45E870F9F14D7A6FF8931, 5A67659B7E353A06E4D199565230D479E5CB4C02034EC9E85F8B56F5F6761AFB ] C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll
15:08:44.0158 0x1a1c C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll - ok
15:08:44.0158 0x1a1c [ D1885BB83D385265EBD45BDC9BF42667, F26FE48050B0BAABF42A927A7B91482C88AAE2B79F16B7BB907144081A2955D0 ] C:\Windows\System32\MDMAgent.exe
15:08:44.0158 0x1a1c C:\Windows\System32\MDMAgent.exe - ok
15:08:44.0158 0x1a1c [ 4CBC8D95DA14F280645B94C1F192FD2E, 9CD71C1F63361CCE1AB2BE1FD731F968EA6A69815FF185393B2302812EA86729 ] C:\Windows\System32\PlaySndSrv.dll
15:08:44.0158 0x1a1c C:\Windows\System32\PlaySndSrv.dll - ok
15:08:44.0158 0x1a1c [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:08:44.0158 0x1a1c C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
15:08:44.0174 0x1a1c [ 241CBF975FB1D6E46921FF8A724A7917, D4ABCCA645F7A09872A8413A0B5F96EE67D550A53ACAC50FA052483F387C0C8C ] C:\Windows\System32\omadmapi.dll
15:08:44.0174 0x1a1c C:\Windows\System32\omadmapi.dll - ok
15:08:44.0174 0x1a1c [ 30FC4392B98F2B8728460AD078C49465, 686BF1774B5C836356D355F0685C9EF7E937283A0064F703249A5086BAE27531 ] C:\Program Files\MATLAB\R2017a\bin\win64\MATLABStartupAccelerator.exe
15:08:44.0174 0x1a1c C:\Program Files\MATLAB\R2017a\bin\win64\MATLABStartupAccelerator.exe - ok
15:08:44.0174 0x1a1c [ 6C45B798514633713EFF0AFEC662D68B, 879E9031D5A7E27B9F9F6847E8EF102C6835CCA8A2512B523C8EC36B9805B0AA ] C:\Windows\System32\iri.dll
15:08:44.0174 0x1a1c C:\Windows\System32\iri.dll - ok
15:08:44.0174 0x1a1c [ 2B6E36CD13D06B32926BA2AE4150AF2A, BD3D61A248667C8B893C30C2E55BB22F8BD065E7A1582F87230B50D44DC9F898 ] C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll
15:08:44.0174 0x1a1c C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll - ok
15:08:44.0189 0x1a1c [ F2D18248B5772A008C78A0430145BF73, 91385C58840C7131A43874778F7119EDE3FBF9003998125F4BB81274D9AE9CB3 ] C:\Windows\System32\pnpui.dll
15:08:44.0189 0x1a1c C:\Windows\System32\pnpui.dll - ok
15:08:44.0189 0x1a1c [ 3E07E4194A4AB407AF3B0538D5AF2066, 3A95E6C9C4FD33F6CCDA9BE806A883D54FE9044B6A9200D0FAA84860B5EDFFEC ] C:\Windows\System32\Windows.Internal.Management.dll
15:08:44.0189 0x1a1c C:\Windows\System32\Windows.Internal.Management.dll - ok
15:08:44.0189 0x1a1c [ AB03C16AACB670BD63F6426F169D1B0D, 73ED1F3536A5578A751DB4F4D0734FE108E8F9175AF06347910344C318436176 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
15:08:44.0189 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll - ok
15:08:44.0205 0x1a1c [ 921F26FF8E53DE8790B8D5E6DFF5A026, 2D31E78C325DE8758B7DF7E4AEADB7193D7B3D715FC2CFD53141435A0AE7F4B3 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
15:08:44.0205 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll - ok
15:08:44.0205 0x1a1c [ 44017D29603B61CAACFE78161070403F, 14164CFF744C9B1D1C423E749B66F44354D8668EF52FC9ED2695AD8B51D8AC5C ] C:\Windows\System32\dui70.dll
15:08:44.0205 0x1a1c C:\Windows\System32\dui70.dll - ok
15:08:44.0205 0x1a1c [ 6C1A1E9C7C20EB652B2B8804282E045E, B0A46CE25DDC4F4374EC59D310397A03737CACD3C8416E766DFBF935CDED1FD3 ] C:\Windows\System32\ncryptsslp.dll
15:08:44.0205 0x1a1c C:\Windows\System32\ncryptsslp.dll - ok
15:08:44.0205 0x1a1c [ 0CF7A2BCF2E40E9FC81668CE3796CD24, 09058EF4278F6DF9E2A2E0E9C587A5D59E2BFAEEC5AC0CC22BCB4CB734287AD9 ] C:\Windows\System32\mdmmigrator.dll
15:08:44.0205 0x1a1c C:\Windows\System32\mdmmigrator.dll - ok
15:08:44.0220 0x1a1c [ 32DC3C08E3CF9B75D8AC3FCE947AEDD1, A5A2D1E14273A3648A0C22BE05D0C2ABE8AF0BF67333311F1FDDC542A4F3049E ] C:\Windows\System32\ncryptprov.dll
15:08:44.0220 0x1a1c C:\Windows\System32\ncryptprov.dll - ok
15:08:44.0220 0x1a1c [ 171D55444F35EB903900CFCE0E1BE83A, 48651EFFB6FF0090B513A84F21CA85689C412A68A8A6F8C0F2EA391B97BB28A2 ] C:\Windows\System32\duser.dll
15:08:44.0220 0x1a1c C:\Windows\System32\duser.dll - ok
15:08:44.0220 0x1a1c [ DFDC0F7FB807FAD35308E83D95EB68A6, 39E018EBE1FAEB76D2E7E6E67354BEDA587F801D197D32938EE39BD130485CE2 ] C:\Program Files (x86)\Google\Update\1.3.33.23\goopdate.dll
15:08:44.0220 0x1a1c C:\Program Files (x86)\Google\Update\1.3.33.23\goopdate.dll - ok
15:08:44.0236 0x1a1c [ 26BBBE6CB5F57D25AA67296B63B455BF, 80E58D478BD48E7E8558CABB0FA337405128612FD983EAB41C0925AABA995A8E ] C:\Windows\System32\dssenh.dll
15:08:44.0236 0x1a1c C:\Windows\System32\dssenh.dll - ok
15:08:44.0236 0x1a1c [ A4877383A1FC39F77D1A406B5848EBBA, 7FDF3BB08420B266869272CECE9316BF07BB4A82F3391C649A88AB91E5663074 ] C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe
15:08:44.0236 0x1a1c C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe - ok
15:08:44.0236 0x1a1c [ 63E8BE92F87780A669A24F4BFC324D31, BFB9E796C4311FDCE52317F98F1D7DC8DD23AC8C2C62F65D86EFF60CC82CB738 ] C:\Windows\System32\mskeyprotect.dll
15:08:44.0236 0x1a1c C:\Windows\System32\mskeyprotect.dll - ok
15:08:44.0236 0x1a1c [ CE3C36C029B3FC7EA45762991CDB3DF7, 4E53091FBA8C0EC388054A8F1BFCC094A49B6F34891DBCA9D4B7C9DD19BB3C11 ] C:\Windows\SysWOW64\netapi32.dll
15:08:44.0236 0x1a1c C:\Windows\SysWOW64\netapi32.dll - ok
15:08:44.0252 0x1a1c [ FEAAE0CB0F8B9572CA43D1AFDEA172B8, 593F3BA722957FB5D797734B06E920D1AA5B9A3E8073C011E22CCA29CA83C5DB ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
15:08:44.0252 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll - ok
15:08:44.0252 0x1a1c [ 51B5563BEF5E549B7FA097B082251C01, B69D817A73BB5B0A4981B8491E3E8FE454D81F33B9DFA29F2FFBD98F2ECE8055 ] C:\Windows\SysWOW64\wtsapi32.dll
15:08:44.0252 0x1a1c C:\Windows\SysWOW64\wtsapi32.dll - ok
15:08:44.0252 0x1a1c [ E6D805DDF9EC64E0CE3650EBD76FA64C, 56D1522AE82019C9D27FDF51A69F2D1538DD66C21F4926F1005852E361048154 ] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
15:08:44.0252 0x1a1c C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll - ok
15:08:44.0267 0x1a1c [ F6F7E2A663482CECE4B9B98A249D28B5, CE3343A8C910C12833302458B06725B4E8EB5C816CF9219AC1AC3D7CB5862D7B ] C:\Windows\System32\SecureTimeAggregator.dll
15:08:44.0267 0x1a1c C:\Windows\System32\SecureTimeAggregator.dll - ok
15:08:44.0267 0x1a1c [ E1CC2A5F9D781778DFEDD171A4EF0AF9, 424AA2D1DA040AED6E17C64B47879D6612340B180434811ECC96EC31D087B7BD ] C:\Windows\SysWOW64\msi.dll
15:08:44.0267 0x1a1c C:\Windows\SysWOW64\msi.dll - ok
15:08:44.0267 0x1a1c [ 65996A0AFAD353EC43FFE1CA69A2BE88, CC5A2877559A3439EBE961E493E9383237556CD6D793251E81ED4452FC87C62F ] C:\Windows\System32\UIAutomationCore.dll
15:08:44.0267 0x1a1c C:\Windows\System32\UIAutomationCore.dll - ok
15:08:44.0283 0x1a1c [ 210795681ED3F5840032C1BE629C4DC1, BFEDB788A9FEE0B7D0B59B30FBDDF4B5293A66CAA12A50496D7B31694B7A8634 ] C:\Program Files\Common Files\microsoft shared\ink\tabskb.dll
15:08:44.0283 0x1a1c C:\Program Files\Common Files\microsoft shared\ink\tabskb.dll - ok
15:08:44.0283 0x1a1c [ 6362D90DA142ED5F8CA68B5D7BC92F21, 0DA84E3DD4E71A79489BF5E621A167EB16CA53AAB3E8191F5E655DF9F2354789 ] C:\Windows\System32\oleacc.dll
15:08:44.0283 0x1a1c C:\Windows\System32\oleacc.dll - ok
15:08:44.0283 0x1a1c [ 93DB8019B4958076EBD0896DE6B5CEE9, 308326AEEEEEB653DE9CF957B3B4D7722B85C2EBC959159A6BDA6EC166AF505B ] C:\Program Files\Common Files\microsoft shared\ink\tipresx.dll
15:08:44.0283 0x1a1c C:\Program Files\Common Files\microsoft shared\ink\tipresx.dll - ok
15:08:44.0283 0x1a1c [ 4D8EF05AE2BFBD2747DEA08535B1887C, F98A1350BCD5DC46EC6F9A058275851DC32FC5A04B6254A189F34FE1DAEB7D27 ] C:\Windows\System32\ClipboardServer.dll
15:08:44.0283 0x1a1c C:\Windows\System32\ClipboardServer.dll - ok
15:08:44.0299 0x1a1c [ 74A80402692C7C6FA8151162F692EF66, 0ADA892985770272BE6D20750D8D791DE65080568E92E5D3D630CCD53C2AE6F4 ] C:\Windows\SysWOW64\wininet.dll
15:08:44.0299 0x1a1c C:\Windows\SysWOW64\wininet.dll - ok
15:08:44.0299 0x1a1c [ E79EF25890B214B13A7473E52330D0EC, 7A114A9C1CA86E532D7F38E81C48F24EF2BFE6084F6056B3D4C3566BA43003D6 ] C:\Windows\SysWOW64\vcruntime140.dll
15:08:44.0299 0x1a1c C:\Windows\SysWOW64\vcruntime140.dll - ok
15:08:44.0299 0x1a1c [ 581F9B1A44A6F342E45DFC9507E09B2E, AE0FB3973B274E5D2AEE40E8565C0868919CA38CD245745841C2DFDF109982A0 ] C:\Windows\SysWOW64\msimg32.dll
15:08:44.0299 0x1a1c C:\Windows\SysWOW64\msimg32.dll - ok
15:08:44.0314 0x1a1c [ 9DDA681B0406C3575E666F52CBDE4F80, 1ECD899F18B58A7915069E17582B8BF9F491A907C3FDF22B1BA1CBB2727B69B3 ] C:\Windows\SysWOW64\msvcp140.dll
15:08:44.0314 0x1a1c C:\Windows\SysWOW64\msvcp140.dll - ok
15:08:44.0314 0x1a1c [ D6C7B2A83B1BE2F033E7BB781CF98904, 9CC7E1A2216F69142336975045D41570D52A11BE6DCF6BE9A273548CD25C33E3 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
15:08:44.0314 0x1a1c C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
15:08:44.0314 0x1a1c [ 9C861C079DD81762B6C54E37597B7712, AD32240BB1DE55C3F5FCAC8789F583A17057F9D14914C538C2A7A5AD346B341C ] C:\Program Files\MATLAB\R2017a\bin\win64\msvcr120.dll
15:08:44.0314 0x1a1c C:\Program Files\MATLAB\R2017a\bin\win64\msvcr120.dll - ok
15:08:44.0314 0x1a1c [ 46060C35F697281BC5E7337AEE3722B1, 2ABF0AAB5A3C5AE9424B64E9D19D9D6D4AEBC67814D7E92E4927B9798FEF2848 ] C:\Program Files\MATLAB\R2017a\bin\win64\msvcp120.dll
15:08:44.0314 0x1a1c C:\Program Files\MATLAB\R2017a\bin\win64\msvcp120.dll - ok
15:08:44.0330 0x1a1c [ 1695661A5FE530890AC22762980D2DFB, 26B8CF7168C05424DAE25AB855BB8FEB0449EDE13884B614135AD4B597574F52 ] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.17763.195_none_58951aff78a74a16\comctl32.dll
15:08:44.0330 0x1a1c C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.17763.195_none_58951aff78a74a16\comctl32.dll - ok
15:08:44.0330 0x1a1c [ B5634C8C6AB3A0C33D2EE72644105022, 7D81032666AC2BA71852DDACEAABEC7B2B0FAA66C1EC3AB7046ADE9C24C9BA42 ] C:\Windows\System32\NotificationController.dll
15:08:44.0330 0x1a1c C:\Windows\System32\NotificationController.dll - ok
15:08:44.0330 0x1a1c [ 02DB9159042346C9AAD5A585745578F5, B894FC8486DB697308AAD2546A5070BB2FA3FC5E35761E1F34E7D05972516E2C ] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17763.195_none_4d616d831b9c5e9f\comctl32.dll
15:08:44.0330 0x1a1c C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17763.195_none_4d616d831b9c5e9f\comctl32.dll - ok
15:08:44.0345 0x1a1c [ 6906C191B40C8077B9A54A439455D87D, 566A8A2AC4787446B760DE72D0056F6882A4CA67CDD9B7583E3FCE3EC68B098B ] C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\NisSrv.exe
15:08:44.0345 0x1a1c C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\NisSrv.exe - ok
15:08:44.0345 0x1a1c [ F31B6E4762E1134514FE4B84D0B644D9, FD58DDDFA66C85B1FD58ECBD06227EEFA7457A2FE1B27DBB2D2ECCBAB5324EB4 ] C:\Windows\System32\mscms.dll
15:08:44.0345 0x1a1c C:\Windows\System32\mscms.dll - ok
15:08:44.0345 0x1a1c [ 1B1BDAFE1719D14944AEBA8E05006D73, B65080D1568B1692602C03566E098B5C1637CAE52B5E7D1BD431B08C53FF3439 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
15:08:44.0345 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll - ok
15:08:44.0345 0x1a1c [ 507E4773BE8BB3AE81897EFB05220833, 4B16F94E8D8F0B02CED218E16D1D4F862CF6F538B0962E25F44475B85F35DBFB ] C:\Windows\System32\coloradapterclient.dll
15:08:44.0345 0x1a1c C:\Windows\System32\coloradapterclient.dll - ok
15:08:44.0361 0x1a1c [ E2C59907C0F44F7B71A96E4BF62FD321, 7A0D2A695A9FBEC43F666CD73792A297A254AFBF856E511B986CA1852F9109C5 ] C:\Windows\SysWOW64\wkscli.dll
15:08:44.0361 0x1a1c C:\Windows\SysWOW64\wkscli.dll - ok
15:08:44.0361 0x1a1c [ 5085527E8EF1C245782509DF5259A635, F4B1D07E8BD1EACF80143241FE2D086792F1E43387E94DA826E0DCAAACF77D3E ] C:\Windows\SysWOW64\netutils.dll
15:08:44.0361 0x1a1c C:\Windows\SysWOW64\netutils.dll - ok
15:08:44.0361 0x1a1c [ 96BD7C23645E7186B66E5A0A008DFD0F, 8C84E20184D007928C1A6ED8A8C6E14541AD8D3FB78CA0299E1D8BF990B1BFAD ] C:\Windows\System32\dxva2.dll
15:08:44.0361 0x1a1c C:\Windows\System32\dxva2.dll - ok
15:08:44.0377 0x1a1c [ E328808139E9D0C68AF088E79B8DDC5E, 128E62479DCE818B295F6F58B4BB71AB3A0D8815F159D14192DAA7023B80F29B ] C:\Windows\SysWOW64\dwmapi.dll
15:08:44.0377 0x1a1c C:\Windows\SysWOW64\dwmapi.dll - ok
15:08:44.0377 0x1a1c [ C16800A2A05724119FE9A8978FD85F4B, 61FC99D512719533C51EECCE8AC07581F9AB6EACC9676BF8F96AA72A43DF0F20 ] C:\Windows\SysWOW64\cscapi.dll
15:08:44.0377 0x1a1c C:\Windows\SysWOW64\cscapi.dll - ok
15:08:44.0377 0x1a1c [ 8DCA160E6FC187BAED3A7EF22622301D, 3E5806E91BDDFFD71989C5D69D79A12E164DBF77E6AD124BE4BA591623CAD84B ] C:\Windows\SysWOW64\ntmarta.dll
15:08:44.0377 0x1a1c C:\Windows\SysWOW64\ntmarta.dll - ok
15:08:44.0377 0x1a1c [ 938E4C65CD23CCD6297B0EA8781E45F4, 4A5512034B216BD17D8FFD9DF042E882247A5E1B95E3AB17F0085A05B8C66204 ] C:\Windows\System32\winspool.drv
15:08:44.0377 0x1a1c C:\Windows\System32\winspool.drv - ok
15:08:44.0392 0x1a1c [ F4010006BFAC7676BDB51CD0B267EE50, BFDEC4D9D415B7A816BC6408FB776E9EA93508E2F0F3C8DC3CB12B5CAE557DE1 ] C:\Windows\System32\localspl.dll
15:08:44.0392 0x1a1c C:\Windows\System32\localspl.dll - ok
15:08:44.0392 0x1a1c [ 8CC17D1FF70048480066718EA850C72C, 07BD8A903D5751D67E07EE29D64DE9D5F50C069FFEB14741FFC3652546693BB6 ] C:\Windows\System32\spoolss.dll
15:08:44.0392 0x1a1c C:\Windows\System32\spoolss.dll - ok
15:08:44.0392 0x1a1c [ 47E98D4E4CE12FD350A7592D7AC937B9, F0DDE6E873564199BDAFE676836F56049DC6FA20DDBAF6CBE6B03877782B9869 ] C:\Windows\SysWOW64\dbghelp.dll
15:08:44.0392 0x1a1c C:\Windows\SysWOW64\dbghelp.dll - ok
15:08:44.0408 0x1a1c [ AAA689A385A8CDE02D5D3F619F03F970, 4AC3B73AB0C8AE60CA2910D03857319155971FA4E48DB01BCA7BF897FCB5F6E9 ] C:\Windows\System32\PrintIsolationProxy.dll
15:08:44.0408 0x1a1c C:\Windows\System32\PrintIsolationProxy.dll - ok
15:08:44.0408 0x1a1c [ AB518A60BD7BBFEB12930F7BF048B018, B7CD34F69DE1AFCE4B22A4B010E92C5694C26F4E159F4A8C0DE4E7E9601F660B ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
15:08:44.0408 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll - ok
15:08:44.0408 0x1a1c [ B27279D58FF5801DF02F83E7E51C53C9, 47F75B3C78487695C6C0389129ED7D3E758AE34FA7ABA55D82F085FFE67665D7 ] C:\Windows\System32\AppMon.dll
15:08:44.0408 0x1a1c C:\Windows\System32\AppMon.dll - ok
15:08:44.0408 0x1a1c [ 8CEA1C5D51D7FAC2626171604998D520, 10278C0203F8F5725186D035234310B453F58B436290F933068C93B35FCAE2FE ] C:\Windows\System32\wshirda.dll
15:08:44.0408 0x1a1c C:\Windows\System32\wshirda.dll - ok
15:08:44.0424 0x1a1c [ E390C844FFD78351AD78F17B3DA9A712, 8DEC452DB542C8809377CBB18F6F4AB433876613C6BDBBFD09863AE11FA92B65 ] C:\Windows\System32\FXSMON.dll
15:08:44.0424 0x1a1c C:\Windows\System32\FXSMON.dll - ok
15:08:44.0424 0x1a1c [ AC139E08070885A2F021E30FAB609EEE, EEA2DF0C3D2BF84EE8BC811439A81578F6521C8B28B6CC815C93FB870AC7A0D7 ] C:\Program Files\Malwarebytes\Anti-Malware\vcruntime140.dll
15:08:44.0424 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\vcruntime140.dll - ok
15:08:44.0424 0x1a1c [ C0A22C631462B3122957FB34DC71AA85, FA4D818C0C3732066B0FE93DB01200DC953DFC49C5364215B8762DF2BAA9EE12 ] C:\Windows\System32\tcpmon.dll
15:08:44.0424 0x1a1c C:\Windows\System32\tcpmon.dll - ok
15:08:44.0424 0x1a1c [ 65BC40A32D26ECB1BA4DF0731CD02560, 1B2EF72A294C7EDAC6EEC30F144E288070351575E90CADF9B2B52BC6610B821C ] C:\Windows\System32\snmpapi.dll
15:08:44.0424 0x1a1c C:\Windows\System32\snmpapi.dll - ok
15:08:44.0439 0x1a1c [ A8458E7BF9124E03FE5402B93D01810B, 42496F7E4D0EAE9FFD7B8DBCB28E5924BE45CEAC8E2ED3F98DBBB90A2A5B24FA ] C:\Windows\System32\wsnmp32.dll
15:08:44.0439 0x1a1c C:\Windows\System32\wsnmp32.dll - ok
15:08:44.0439 0x1a1c [ 2517371801167619C066D910B98B7EB8, 0F4E9A020C69A2B81994B7EB3AC45154EC74699743A0B59C72D60B69829D0921 ] C:\Windows\System32\usbmon.dll
15:08:44.0439 0x1a1c C:\Windows\System32\usbmon.dll - ok
15:08:44.0439 0x1a1c [ 10699E358B3D682FDE7D0E6A0585C0BC, B6B012A9D7740B82AA47E4F29ABBA4ACA4B0A92B088C392023BD7C98C6DE2D2A ] C:\Windows\System32\APMon.dll
15:08:44.0439 0x1a1c C:\Windows\System32\APMon.dll - ok
15:08:44.0455 0x1a1c [ 5239A6D00B42DE861C4B2232812A952B, 48D89B01D378861EC0770B77ABD605B1B0C782D7AC4BEA4E39CF6595DB3E63EA ] C:\Windows\System32\WSDApi.dll
15:08:44.0455 0x1a1c C:\Windows\System32\WSDApi.dll - ok
15:08:44.0455 0x1a1c [ 53BBDF58A4F75F38BEC1BF4FCB0C946C, B8CC7505AE9F31F494963735829F66C799A2553843A36000E9600AE02F400E2D ] C:\Windows\SysWOW64\dbgcore.dll
15:08:44.0455 0x1a1c C:\Windows\SysWOW64\dbgcore.dll - ok
15:08:44.0455 0x1a1c [ 8CC02ACC755E3700F5BB328C1F21CE06, 49D1A59EE2E33FF155A6FD05ED38F0C8E4DFDC16865FD12930A928E2A36CACDD ] C:\Windows\System32\webservices.dll
15:08:44.0455 0x1a1c C:\Windows\System32\webservices.dll - ok
15:08:44.0470 0x1a1c [ 03838AADC5FEF7A3354490C18C94E446, FE161D7943C53AD4EA3082C93529C31C574E191D2D5402230F6D11038B935ADC ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
15:08:44.0470 0x1a1c C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
15:08:44.0470 0x1a1c [ 444E04F1E4DC85DC20CF4DE1B9B77041, EBDA322C75FEA2D990155B39D0472A873BD74D4ACAA9C64D0EFCFB111F13D068 ] C:\Windows\SysWOW64\apphelp.dll
15:08:44.0470 0x1a1c C:\Windows\SysWOW64\apphelp.dll - ok
15:08:44.0470 0x1a1c [ E43B5F4FB1B872F4705179B32F5AB23F, CDEC9B206EA1CA4CE755BF9B967A0C5861DE77A80962AF79C4181F42FCE09706 ] C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
15:08:44.0470 0x1a1c C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe - ok
15:08:44.0470 0x1a1c [ 936F80B51DE6971431BA390D07EAE688, E98B3692497F674D8782BCDC7A59C55C81514DC5D4A171F7E07C8571DC30219D ] C:\Windows\System32\win32spl.dll
15:08:44.0470 0x1a1c C:\Windows\System32\win32spl.dll - ok
15:08:44.0486 0x1a1c [ 32D5589FB273DCE6422F56E4DB2DE367, 9CBD0395E540E2DCFC5681FF4CBA2BA4CEAD845FEFC4F78C443258570D0CC031 ] C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
15:08:44.0486 0x1a1c C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe - ok
15:08:44.0486 0x1a1c [ D0CA5F8FBC01102ACB15FD6CCEC416A4, B9EC4451D13EB4282112ACB44D5D16C19AA136074C14B090D7D2D437C9591113 ] C:\Windows\System32\inetpp.dll
15:08:44.0486 0x1a1c C:\Windows\System32\inetpp.dll - ok
15:08:44.0486 0x1a1c [ 11AA47D31724CEE8BF60DBE6A90B87BE, A0AB9E1D4929573C39DED417710216757B7088529ADE539F50CE174CF207292A ] C:\Windows\System32\ActivationManager.dll
15:08:44.0486 0x1a1c C:\Windows\System32\ActivationManager.dll - ok
15:08:44.0502 0x1a1c [ 5F956C336A969FB4E07A124A3FD3F778, 38088E307BEA20FC659216C4946D8BFE8BBBE52E2C864C886304D9750ABC8D16 ] C:\Windows\System32\AppointmentActivation.dll
15:08:44.0502 0x1a1c C:\Windows\System32\AppointmentActivation.dll - ok
15:08:44.0502 0x1a1c [ 4C10D7C0CAC3B1499BF0B69153593777, E45328A769314540922E19B49BB3ED70D5DD568AEE9B99A96F5CC5E903C51FF6 ] C:\Windows\System32\sti.dll
15:08:44.0502 0x1a1c C:\Windows\System32\sti.dll - ok
15:08:44.0502 0x1a1c [ 23146E6D040B1AB5A9D93255D2789AD0, F9704277AF23D58382AEB209174F79C8FD091984B3A9599DA1663E7ADE5AB9D9 ] C:\Windows\SysWOW64\taskschd.dll
15:08:44.0502 0x1a1c C:\Windows\SysWOW64\taskschd.dll - ok
15:08:44.0502 0x1a1c [ 0E816BB1420C72BF28677576B80B7294, F9A8390D0DE7A2FDD34566BB6C18EF364D7699D9F9BD9BCD702522C576092304 ] C:\Windows\SysWOW64\secur32.dll
15:08:44.0502 0x1a1c C:\Windows\SysWOW64\secur32.dll - ok
15:08:44.0517 0x1a1c [ F027303816D6D2AFEAB12183C67B1348, 75DDC9778C23EE95B6C57DB6B689F11C07D164D5A4C158D4C0ACB87A520B8004 ] C:\Program Files\Malwarebytes\Anti-Malware\msvcp140.dll
15:08:44.0517 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\msvcp140.dll - ok
15:08:44.0517 0x1a1c [ ADA47C31727C5ED6E6E9508EBC5D9ACE, A2C0ADB8ED81279BF1E4B2201C00F236E4E1D473B569780BC18A0BBDFD967AF9 ] C:\Program Files\Malwarebytes\Anti-Malware\mbcut.dll
15:08:44.0517 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\mbcut.dll - ok
15:08:44.0517 0x1a1c [ AA472F222ABB4A6558BA0C0AB06FB14F, 32F041C17BBE569DF9626AD5772792C3ACD4F0D1048AE81E7096DAD3A9854BF1 ] C:\Windows\System32\QuietHours.dll
15:08:44.0517 0x1a1c C:\Windows\System32\QuietHours.dll - ok
15:08:44.0517 0x1a1c [ CD96663D2549BB939B9B442D43B7DEFE, 01674565E48FD0A2D9AC01CEA55FCB7DC18D4EA1604E8CD5350871A8633BE142 ] C:\Windows\System32\modernexecserver.dll
15:08:44.0517 0x1a1c C:\Windows\System32\modernexecserver.dll - ok
15:08:44.0533 0x1a1c [ BDE20B076C13C9470D578E62438647B6, 135CE55E021B73C5B13AA0070E3E96994D108B1E71533F574649E3D31EAC3207 ] C:\Windows\System32\NotificationControllerPS.dll
15:08:44.0533 0x1a1c C:\Windows\System32\NotificationControllerPS.dll - ok
15:08:44.0533 0x1a1c [ 0BEA8D3DDAC0A5DD69EBA9DA6C4852D6, BC251516EFA7758D6DDBFA0CDBD4811B8D8A25FB9E3683C8E368027B76DAEE66 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
15:08:44.0533 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll - ok
15:08:44.0533 0x1a1c [ CDA9FDD2B0A8E40E6DA067A890017131, C4D21C9AEFE28C26C87935BA79432C608DE2C1C14BADC734422BAAEEF90DFE1B ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
15:08:44.0533 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll - ok
15:08:44.0549 0x1a1c [ 7F4C4B7967B4BA61CBD5531442105B01, C049531D105E422C29FB973E6D273E671880D5F7184D4E78D5A88D290424EA24 ] C:\Windows\System32\TokenBroker.dll
15:08:44.0549 0x1a1c C:\Windows\System32\TokenBroker.dll - ok
15:08:44.0549 0x1a1c [ BABA279E10F36C6EDA28806A13167FFE, 51BAF22FAEA07D1A85B0AA42625BA27388B4530CAB9FEF542314C69C245F3527 ] C:\Windows\System32\tokenbinding.dll
15:08:44.0549 0x1a1c C:\Windows\System32\tokenbinding.dll - ok
15:08:44.0549 0x1a1c [ 73A3D8F4FA767C992CA7EA36A51EEF6C, E02BA6E117D68890A4A31822C1CCA15EB47797EBEF8FA26306451A2582EF583F ] C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
15:08:44.0549 0x1a1c C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe - ok
15:08:44.0549 0x1a1c [ 70D23659307F729B78D9AF1313981F14, B608876F30E5F68581600BB14D7690F601D6DCBE3F9222E873F79A04650A97D5 ] C:\Windows\System32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
15:08:44.0549 0x1a1c C:\Windows\System32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll - ok
15:08:44.0564 0x1a1c [ 0496AEF0912D5E4DA978FD0F6D7CC33F, F1F8E456D386AE5672FB06E177B26CAA524D7636A53F480BEEA5E3627E9857BE ] C:\Windows\System32\ACPBackgroundManagerPolicy.dll
15:08:44.0564 0x1a1c C:\Windows\System32\ACPBackgroundManagerPolicy.dll - ok
15:08:44.0564 0x1a1c [ 06C1C523059A8C2873851E9A84AF2B9B, 1976C0423A44ACE93A2CF4AF5DBA8F83A52ED63F09E3E1B9805BD4111FF773EC ] C:\Windows\System32\BackgroundMediaPolicy.dll
15:08:44.0564 0x1a1c C:\Windows\System32\BackgroundMediaPolicy.dll - ok
15:08:44.0564 0x1a1c [ 77146B21F39956858AEFF33FBD813D79, 92E88C96BFAE39B78D3FC30D175EAB2C938D1B2FB5F3914A6C90F4FEAF72D37F ] C:\Windows\System32\SebBackgroundManagerPolicy.dll
15:08:44.0564 0x1a1c C:\Windows\System32\SebBackgroundManagerPolicy.dll - ok
15:08:44.0580 0x1a1c [ 1F2B35BAAD10EDE6999B5657379AD8CF, ACCEDE4E444C557077F6B1DBE11762C3935E7DD6B4B38CE2F929B58F23897F25 ] C:\Windows\System32\SmartCardBackgroundPolicy.dll
15:08:44.0580 0x1a1c C:\Windows\System32\SmartCardBackgroundPolicy.dll - ok
15:08:44.0580 0x1a1c [ 6FD17D434122FA21BDC334AE5920DE81, C5519E6DB3447B72EA567A78ED4340B765166A199B2F2DFFF54E91B05E6B13B7 ] C:\Windows\System32\ExecModelClient.dll
15:08:44.0580 0x1a1c C:\Windows\System32\ExecModelClient.dll - ok
15:08:44.0580 0x1a1c [ FA354DD1E56A73D2728FCE9D27836333, 60F216F90BBE5DF260D1946C74C756BDFCB0AFA4B24C8CF06D2F55E3E8FA8D61 ] C:\Windows\System32\OneCoreCommonProxyStub.dll
15:08:44.0580 0x1a1c C:\Windows\System32\OneCoreCommonProxyStub.dll - ok
15:08:44.0580 0x1a1c [ 052495BF199C5369F9C86BF9B26F2A3A, 2042E62B3585AA54ED8D284625FEFA98086C0860DD768CA0CCE3E39688A24EE0 ] C:\Windows\SysWOW64\dnsapi.dll
15:08:44.0580 0x1a1c C:\Windows\SysWOW64\dnsapi.dll - ok
15:08:44.0595 0x1a1c [ 33F846041820FC098D5FFA08941A05B3, 32618C94078E51766A2EE3E34BF197516A494EB4D379F2A2E83DA7AA30DF2BE2 ] C:\Windows\SysWOW64\winmm.dll
15:08:44.0595 0x1a1c C:\Windows\SysWOW64\winmm.dll - ok
15:08:44.0595 0x1a1c [ 28DC4F094E7769441FB891367AB4BB84, 14FEB28A9586C62F089E8DF568F449AFA0A39342CE165D63673CCF2F3D322855 ] C:\Windows\SysWOW64\opengl32.dll
15:08:44.0595 0x1a1c C:\Windows\SysWOW64\opengl32.dll - ok
15:08:44.0595 0x1a1c [ 6E146DC2BB21D37E1AD6CC1D256FE14A, B16BEB916740D50FA76C524A0249D0BCC62685656DD8C67BF6023B1B8E6A1DF6 ] C:\Windows\System32\WindowManagement.dll
15:08:44.0595 0x1a1c C:\Windows\System32\WindowManagement.dll - ok
15:08:44.0611 0x1a1c [ 68937E92D32C58DF54168807045E0CBC, 38B424E1D8CB599EB14AC532A7F3848E99E81676E96C3F7C62F9FCB991150A67 ] C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll
15:08:44.0611 0x1a1c C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll - ok
15:08:44.0611 0x1a1c [ D84223729B588252D9F8BD8C996D32A1, 86EB506BC706DBEB0EB9234A2C1D4BA7589B1ABE0A9CA83D49A0B8E51A9EC78E ] C:\Windows\SysWOW64\nsi.dll
15:08:44.0611 0x1a1c C:\Windows\SysWOW64\nsi.dll - ok
15:08:44.0611 0x1a1c [ 2C8AEB65A99D1CB12A22254F36B51973, 03BB36C7688C39B91FC3FE7A6563C7606E36B0EDB5C7A790030A7F0C13960B0D ] C:\Windows\SysWOW64\winmmbase.dll
15:08:44.0611 0x1a1c C:\Windows\SysWOW64\winmmbase.dll - ok
15:08:44.0611 0x1a1c [ 4E2306EE0D512E4F6E261883A3E1A809, BB450A3E31EDE5739ED2284936A112CE1E11AC83E4D507D443C1509FCE060FDA ] C:\Windows\System32\execmodelproxy.dll
15:08:44.0611 0x1a1c C:\Windows\System32\execmodelproxy.dll - ok
15:08:44.0627 0x1a1c [ 1294534CF5622F0ECA2ECCE8831D22A7, 1A8C82E4E1B6A581B7C94A40ACA4CCFE75B1681B4A375D113ED9D656EFE27305 ] C:\Windows\System32\wlidprov.dll
15:08:44.0627 0x1a1c C:\Windows\System32\wlidprov.dll - ok
15:08:44.0627 0x1a1c [ 41ACC60FF3EF6D8D5D29D79D0481B0F1, A73FDAA011669A0F5B0E45A1B8ED44CD6DDE4B4F827C40073917FCAB1BBC754F ] C:\Windows\SysWOW64\srvcli.dll
15:08:44.0627 0x1a1c C:\Windows\SysWOW64\srvcli.dll - ok
15:08:44.0627 0x1a1c [ 8D1CA4AF379687E2D7B45779AF3CB487, 94B8A0F2195FE39F2B01F3D2AE3193F6B4F616A9C4145D48714A48958C363C30 ] C:\Windows\System32\notificationplatformcomponent.dll
15:08:44.0627 0x1a1c C:\Windows\System32\notificationplatformcomponent.dll - ok
15:08:44.0627 0x1a1c [ 6855C86D80B379CD3DF523AF36AA6EC5, 706FCD2D69B09DBF7844A1DF2E672B8FE1422918DE4594EC9398332FA9840223 ] C:\Windows\SysWOW64\glu32.dll
15:08:44.0627 0x1a1c C:\Windows\SysWOW64\glu32.dll - ok
15:08:44.0642 0x1a1c [ 0732F46BACBC745C192BFEF934DCD41D, A385F3FAFEEF4581362D889658DAF170B254D3238E87482476ADF169F9DD4C30 ] C:\Windows\System32\AppContracts.dll
15:08:44.0642 0x1a1c C:\Windows\System32\AppContracts.dll - ok
15:08:44.0642 0x1a1c [ EDA212897AD206B6D2B4429BDDD433E8, 67E02D200B77ACDCDDE8CF5F5511E16D3B065EC8A4A171D5A98B38CDD8F84877 ] C:\Windows\System32\Windows.Networking.Connectivity.dll
15:08:44.0642 0x1a1c C:\Windows\System32\Windows.Networking.Connectivity.dll - ok
15:08:44.0642 0x1a1c [ 5629E055C199162850C3F037B64FE501, F3E82265D307FC627DA4AB36FC326EC3EE7ADD8DD1BEDE7F76A016252C38B16C ] C:\Windows\System32\ShareHost.dll
15:08:44.0642 0x1a1c C:\Windows\System32\ShareHost.dll - ok
15:08:44.0642 0x1a1c [ 0EF812C7B135C8155A3619171AC4BD19, 133EF046270B9F355B83A2E015D5B52956CB39D861A20B7DABA90F4DF072FC76 ] C:\Windows\System32\Windows.System.Launcher.dll
15:08:44.0642 0x1a1c C:\Windows\System32\Windows.System.Launcher.dll - ok
15:08:44.0658 0x1a1c [ 4EBB9EDE225E0859A7285BF143E8968B, 83D39C05308FAAC0AACF7B125E91E75FDE4CEC0A59340ACC6BBD56E3C42B591A ] C:\Windows\System32\TileDataRepository.dll
15:08:44.0658 0x1a1c C:\Windows\System32\TileDataRepository.dll - ok
15:08:44.0658 0x1a1c [ 316757F8A1C4C6D2F9B1D340FE97D628, 0F30A4227538696A897250C74463E52F59F0F201E3064D1CACA82A086C9E3C24 ] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
15:08:44.0658 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll - ok
15:08:44.0658 0x1a1c [ DCF2193778F189C281807A670EED47EE, 18C599BB2714505F65C57614BEE774033FE7A6F4E4955AE398114ACD9823D788 ] C:\Windows\System32\dusmapi.dll
15:08:44.0658 0x1a1c C:\Windows\System32\dusmapi.dll - ok
15:08:44.0674 0x1a1c [ F8D1CFC92AC0C05FCB8D6F791498E4C9, F10E717A61538B99AB043D8D629C49DC73DA006246490709F04A02220E4CA38D ] C:\Windows\System32\wpnprv.dll
15:08:44.0674 0x1a1c C:\Windows\System32\wpnprv.dll - ok
15:08:44.0674 0x1a1c [ 05B56AECD414080CDCD39AD110D75323, A3AAA4DDBBA9BDB150DD1FB493C8A04FC2D77593859669FE1C2104DAEBFD19FF ] C:\Windows\System32\twinui.appcore.dll
15:08:44.0674 0x1a1c C:\Windows\System32\twinui.appcore.dll - ok
15:08:44.0674 0x1a1c [ 72DCA3EF93EAB7A87D3EBE9DD94C959F, B1B37F1EEACCCA08BBF5DF1F55E58899EE18C15773B774034FEFA7794ED56A69 ] C:\Windows\System32\cdpsvc.dll
15:08:44.0674 0x1a1c C:\Windows\System32\cdpsvc.dll - ok
15:08:44.0674 0x1a1c [ AB490605552765724BA29BE9F97B6737, 00D07F0CDFF89CA8545722FFAB76FD6E124A7EEDE04294DD960B1CBAB33FC8E9 ] C:\Windows\System32\Windows.StateRepositoryClient.dll
15:08:44.0674 0x1a1c C:\Windows\System32\Windows.StateRepositoryClient.dll - ok
15:08:44.0689 0x1a1c [ 10D6A83AA5128254F557FCA0331CF4C7, B5D4BA851C6716CF4B626A20F2C859C248707A366988024EB9950A0DE1608D6F ] C:\Windows\System32\UiaManager.dll
15:08:44.0689 0x1a1c C:\Windows\System32\UiaManager.dll - ok
15:08:44.0689 0x1a1c [ 814A312ED278D67A5AE033500065F49F, 83107A1D17D215EE4B8675C4C9B0EE7D2D847D40938001ABC1846EC72ABE1388 ] C:\Windows\System32\keyiso.dll
15:08:44.0689 0x1a1c C:\Windows\System32\keyiso.dll - ok
15:08:44.0689 0x1a1c [ AC9DEF8BC6E3303F0ED7A3633C4E44D5, 3CBF334B4AE1A477DCFEB206CA3C4AD73452F95AD28DF68A0804DC7D14B6D478 ] C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll
15:08:44.0689 0x1a1c C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll - ok
15:08:44.0705 0x1a1c [ 78AA5FEDC6ECA8269093F4D1EE2A27B3, FE00144C4DEDB9537E883F71F47FCF404023424D51334E78B02B26918E61567A ] C:\Windows\System32\wshbth.dll
15:08:44.0705 0x1a1c C:\Windows\System32\wshbth.dll - ok
15:08:44.0705 0x1a1c [ 3FB1A87F34F3EE005ECCF3CA841949CC, 010C9608108DEC4A735D638B2348AE74050CB27B48178AADC3C7FC9FD1EDDC7E ] C:\Windows\System32\sbservicetrigger.dll
15:08:44.0705 0x1a1c C:\Windows\System32\sbservicetrigger.dll - ok
15:08:44.0705 0x1a1c [ D7A0CD5805B04748FA4103B323B5F3F3, 90DA65CFF932BA50DC2D19369E031AF1002D53A834E2DCC778C97B984DA1A8B5 ] C:\Windows\System32\AudioSes.dll
15:08:44.0705 0x1a1c C:\Windows\System32\AudioSes.dll - ok
15:08:44.0705 0x1a1c [ 049B1BFF95AC05D79EA829CBDA5DE0EA, 3AFF35D6A89BB0A8B192F03453CFB2B3F8B7DC295F41CC2782F8A18142CBC7D6 ] C:\Windows\System32\Windows.StateRepositoryBroker.dll
15:08:44.0705 0x1a1c C:\Windows\System32\Windows.StateRepositoryBroker.dll - ok
15:08:44.0720 0x1a1c [ 83A1C50FE909C904EEA69851CE56D4F4, 268075B056DABFBED56A32DA2A8AF812FE5C6A7944D900EEE81E191804EBD380 ] C:\Windows\System32\Windows.CloudStore.Schema.Shell.dll
15:08:44.0720 0x1a1c C:\Windows\System32\Windows.CloudStore.Schema.Shell.dll - ok
15:08:44.0720 0x1a1c [ EC8CC81AC2BADEFA3C6CF5386BE69D67, 1003434D91D7DA895F444AA5C53DD513A40AE85E7C4F0A12D884AA20BB81C98F ] C:\Windows\System32\daxexec.dll
15:08:44.0720 0x1a1c C:\Windows\System32\daxexec.dll - ok
15:08:44.0720 0x1a1c [ 872D45930605CC77225C713072D2A694, EC11BCB4693A82086187B1B7D5C36C5817C57CE0356B5A6AC442DB0AC8718A3F ] C:\Windows\System32\wpnclient.dll
15:08:44.0720 0x1a1c C:\Windows\System32\wpnclient.dll - ok
15:08:44.0720 0x1a1c [ A75CF6A7F30DE42BB4DD50BCC92566E0, B3F7CE3225DA593D5EFF3DA0557EDB25E715AFEECA80BEA632C8D8E918CA2148 ] C:\Windows\System32\vaultcli.dll
15:08:44.0720 0x1a1c C:\Windows\System32\vaultcli.dll - ok
15:08:44.0736 0x1a1c [ 234B2BE9857DD92EE5C075224991A486, 3214CEADD1B8F037526355B95A4318F1945B317226F65AA53887C53C7BBD0650 ] C:\Windows\System32\container.dll
15:08:44.0736 0x1a1c C:\Windows\System32\container.dll - ok
15:08:44.0736 0x1a1c [ CB0BD82ECE6072BFD119A2730E1B6AFC, 0CAA15F1E26D45F208FA12455741F67670E5B005F81EAD66321189B95E1E19EB ] C:\Windows\System32\wpnapps.dll
15:08:44.0736 0x1a1c C:\Windows\System32\wpnapps.dll - ok
15:08:44.0736 0x1a1c [ 6380675C1C5661ED1B2681DC8EDD3191, C5BA9B610E888D3DF29F847C441FE8B0254E74EE732B3EBFA9603F11EDABB00A ] C:\Windows\System32\mssrch.dll
15:08:44.0736 0x1a1c C:\Windows\System32\mssrch.dll - ok
15:08:44.0752 0x1a1c [ 45F1B2C26C32D5A5A0C3D415E8988CA5, AEECEDF57FA359587D16BD8D75A2700086E96E583FF7E749E608EB6D88266704 ] C:\Windows\System32\ContentDeliveryManager.Utilities.dll
15:08:44.0752 0x1a1c C:\Windows\System32\ContentDeliveryManager.Utilities.dll - ok
15:08:44.0752 0x1a1c [ 8375AE0D59124029F9E6E17B8CCC4248, A7969085700FA0A9E1D3B422DF521A7EDBC5FA550C77EE9499E11F9014D6091F ] C:\Windows\System32\tquery.dll
15:08:44.0752 0x1a1c C:\Windows\System32\tquery.dll - ok
15:08:44.0752 0x1a1c [ D69688A6CAA1D184AF6D6E647804DDE6, 94F5398D377A33267529F00BFC19F271C9F3F013C4F43EA3C7608CA558349CBE ] C:\Windows\SysWOW64\Wintab32.dll
15:08:44.0752 0x1a1c C:\Windows\SysWOW64\Wintab32.dll - ok
15:08:44.0752 0x1a1c [ AFCC015A62EE0A679CF618D9D20B41A5, EC1088AD751CA9CCB17525F8F1356DC959F1A67346E39D437D29A32F69E5B96F ] C:\Windows\SysWOW64\hid.dll
15:08:44.0752 0x1a1c C:\Windows\SysWOW64\hid.dll - ok
15:08:44.0767 0x1a1c [ 26250F30D52E1B65F76C437445A333F1, 42247A011AA1529DB646BD71C5CEBCA6FBB9B1E4CCD86EF80005420D2C676F98 ] C:\Windows\System32\twinui.pcshell.dll
15:08:44.0767 0x1a1c C:\Windows\System32\twinui.pcshell.dll - ok
15:08:44.0767 0x1a1c [ AD04FAB2E458E2A7E81CCCFE4B4ACAEB, D207E939C836CF773CEC826A34B01E69D45650182AA59D7B51C22CD280C1B23A ] C:\Windows\System32\CoreShellExtFramework.dll
15:08:44.0767 0x1a1c C:\Windows\System32\CoreShellExtFramework.dll - ok
15:08:44.0767 0x1a1c [ BF8825D08BC235F0609CA8BBEF4E179C, 1FE7F7C59EC7EAA276739FA85F7DDA6136D81184E0AEB385B6AC9FEAAA8C4394 ] C:\Windows\System32\userinit.exe
15:08:44.0767 0x1a1c C:\Windows\System32\userinit.exe - ok
15:08:44.0767 0x1a1c [ B9450D9F1E9ACB75E25FC57027FDDE26, F8E9958B4AC8F06EFF9EBB05B03447370C50D33C50462AC4F79E70AA8A320CEC ] C:\Windows\System32\userinitext.dll
15:08:44.0767 0x1a1c C:\Windows\System32\userinitext.dll - ok
15:08:44.0783 0x1a1c [ D033CC75DD4CC0856E89B2A87559C2CC, 1C27BFB278716E82819BD13401D20EF97B6835E32689240A4072489E3E14735B ] C:\Windows\explorer.exe
15:08:44.0783 0x1a1c C:\Windows\explorer.exe - ok
15:08:44.0783 0x1a1c [ 324A2DF5DD618A66E05DB703BA5E24C3, 4D3F53D99F2216D3A664ED75D5CD86EC3DD74235EE6D096815EE43A4DA85D470 ] C:\Windows\SysWOW64\Wacom_Tablet.dll
15:08:44.0783 0x1a1c C:\Windows\SysWOW64\Wacom_Tablet.dll - ok
15:08:44.0783 0x1a1c [ 3D06BC0E3798AC8012C450758E1FF492, 01FA80960088528FEC05E86003A784A0A8AB76A79166839B7DC4058672FE31FF ] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll
15:08:44.0783 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll - ok
15:08:44.0799 0x1a1c [ 1086E38673702DB310012EF5E21897D3, 5E01FB5AFF5F07C553DD522C9DB8EC4F8B0D1D2596541EBB6A0F5232736D1FD9 ] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
15:08:44.0799 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll - ok
15:08:44.0799 0x1a1c [ 9F37C22E0F9BCBBC5EA2A6C0B1AC1F08, CC5442706BA4ABA032602EA058F26437AA893370A809DA60C7E1C43FBBEB8262 ] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
15:08:44.0799 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll - ok
15:08:44.0799 0x1a1c [ DA4EB5C1E312A8484A5DB567E7E4C61E, 7AA8ABA69E707A25B4CF4CB6301ADAAFD6481FB3DA8571E75A05EB9876D94804 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
15:08:44.0799 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll - ok
15:08:44.0799 0x1a1c [ F65A9FD335CC25726F35B279E36E724D, D1B00C8DE7C529EAAF59F8397966A19BF4649BB1A856F268272C72E9A7F9105C ] C:\Windows\SysWOW64\msctf.dll
15:08:44.0799 0x1a1c C:\Windows\SysWOW64\msctf.dll - ok
15:08:44.0814 0x1a1c [ 3B803CA4C9A470654DCC784200AFF2BD, 10FC6C3F959C3A3195852C6DC480F249F353B657311B58E731141AA4E28E49DE ] C:\Windows\SysWOW64\ExplorerFrame.dll
15:08:44.0814 0x1a1c C:\Windows\SysWOW64\ExplorerFrame.dll - ok
15:08:44.0814 0x1a1c [ 3D95350B6FECC856A432C8442B95AA84, 71EE17079E7545472BF13422B213F75B4B1A0C78724A7CE8402CE3A8AC08B552 ] C:\Windows\System32\SettingSyncCore.dll
15:08:44.0814 0x1a1c C:\Windows\System32\SettingSyncCore.dll - ok
15:08:44.0814 0x1a1c [ D2EA25068A1D111DEACF938FBF4E4281, C29345010FF6AA0F7BAA68CB94ACEE064750C69C995D7502652AB9A196A52089 ] C:\Windows\SysWOW64\TextInputFramework.dll
15:08:44.0814 0x1a1c C:\Windows\SysWOW64\TextInputFramework.dll - ok
15:08:44.0814 0x1a1c [ EE236301A8285BE652C19F4CFF09AC17, 0F9BA9F3908396567CDEAAC0A50325643937F2973554D0E75BB94B4335B1A829 ] C:\Windows\SysWOW64\CoreUIComponents.dll
15:08:44.0814 0x1a1c C:\Windows\SysWOW64\CoreUIComponents.dll - ok
15:08:44.0830 0x1a1c [ 94806CBBCBEF9E09EC6CE73AC64F23E3, BFEA36A4803F44CD9EE1225837BA57EC4DF8EF83FD70C715D083E1973988AE3C ] C:\Windows\System32\StartTileData.dll
15:08:44.0830 0x1a1c C:\Windows\System32\StartTileData.dll - ok
15:08:44.0830 0x1a1c [ 6C3E889EB117F0C07409998BE33F7638, DB0D0F0851CEDB59867E07E2C49CD165CBDEFF4B38D6FB7116D2DF3036C252D9 ] C:\Windows\SysWOW64\CoreMessaging.dll
15:08:44.0830 0x1a1c C:\Windows\SysWOW64\CoreMessaging.dll - ok
15:08:44.0830 0x1a1c [ B3BB45842114787BF4CE5935769F4085, 335A2B2E9D5F97F3E736B7A03311C0C9C2C1C0FF0A88FBCCAF6DBEC410477658 ] C:\Windows\SysWOW64\sxs.dll
15:08:44.0830 0x1a1c C:\Windows\SysWOW64\sxs.dll - ok
15:08:44.0845 0x1a1c [ 05B30AB4768E5108E18986A5867C68F7, E4AFEF687BCEFB9A581299FB35946C869C6D0E000966E688589A48907C352432 ] C:\Windows\System32\runonce.exe
15:08:44.0845 0x1a1c C:\Windows\System32\runonce.exe - ok
15:08:44.0845 0x1a1c [ F3B8FA56C28691DB4AABDAE96F9D9FC1, 06A25C254F4814172D3E65CF10E0D85A60200B088427B6580C0F6FFF3FC91ADA ] C:\Windows\System32\SettingSyncPolicy.dll
15:08:44.0845 0x1a1c C:\Windows\System32\SettingSyncPolicy.dll - ok
15:08:44.0845 0x1a1c [ 994F0AC771D118A9D087201D8C02C4F8, E0D571FA2511D72542BD76C8673396EA95905CCD85B5990A6086DCCECB44132A ] C:\Windows\System32\SndVolSSO.dll
15:08:44.0845 0x1a1c C:\Windows\System32\SndVolSSO.dll - ok
15:08:44.0845 0x1a1c [ 7C0B0898904ED2E371B805AC9A05887B, 3EFB5DC665012CB9893571F4A4259D04B85029F79B1A2E92754C9835262D8A92 ] C:\Windows\System32\DataExchange.dll
15:08:44.0845 0x1a1c C:\Windows\System32\DataExchange.dll - ok
15:08:44.0861 0x1a1c [ 6FEF96ED9F43ADB12929A3E84856C6FB, 78B8D920926EBCC685865A5AC91F21ED40889D538DDE6A4092764F44D7C015F4 ] C:\Windows\SysWOW64\runonce.exe
15:08:44.0861 0x1a1c C:\Windows\SysWOW64\runonce.exe - ok
15:08:44.0861 0x1a1c [ 8C70C412056C347F3C79CD212114B61F, B6F8E1DA7F420FFC14626AFBFD9910E24EAFE0F1FD34EEA274A4FF4692DBF2D9 ] C:\Windows\System32\ExplorerFrame.dll
15:08:44.0861 0x1a1c C:\Windows\System32\ExplorerFrame.dll - ok
15:08:44.0861 0x1a1c [ 13AF5E5D911A78EEDB05071C024CAB8A, F7A8B258D01D3EFF9E583195D8D95A38F46B84DAC07C0862A94AFEF8FB50616F ] C:\Windows\System32\thumbcache.dll
15:08:44.0861 0x1a1c C:\Windows\System32\thumbcache.dll - ok
15:08:44.0877 0x1a1c [ E08B558F9C73A447DA68715A2647FD7D, 26689FCAC2E73051178F2B9D12E1E3C61F9C8FC553065B82E4E8B5218E6D6E2B ] C:\Windows\System32\Tabbtn.dll
15:08:44.0877 0x1a1c C:\Windows\System32\Tabbtn.dll - ok
15:08:44.0877 0x1a1c [ AC0A7C44A392A9CC4FA0AE783F4C7097, 9F04D6D405267B797A67258D4F04CF83EA0B72237CC89BF03DFCADBB86E37B51 ] C:\Windows\System32\TabbtnEx.dll
15:08:44.0877 0x1a1c C:\Windows\System32\TabbtnEx.dll - ok
15:08:44.0877 0x1a1c [ AB1EC3FD9A545D762BEFAACB97B6D912, 5BBFF2360B2DD908E10F6E6476A657D7B34E25F0B488935081D2B101C97D4495 ] C:\Windows\System32\windows.immersiveshell.serviceprovider.dll
15:08:44.0877 0x1a1c C:\Windows\System32\windows.immersiveshell.serviceprovider.dll - ok
15:08:44.0877 0x1a1c [ 49A39B84AFF09FEE66BB853130BD860D, E51AD741825534E972A6BE69AF13599C2FA3AFAC95BDD605C9617D21DF895EFB ] C:\Windows\SysWOW64\cmd.exe
15:08:44.0877 0x1a1c C:\Windows\SysWOW64\cmd.exe - ok
15:08:44.0892 0x1a1c [ A42F35E91EAA866757AFDA8C405C7C40, E55AE715435960C3089188FA5D815A9C9A440C24094E21411A8553032A74FD4A ] C:\Windows\System32\wuceffects.dll
15:08:44.0892 0x1a1c C:\Windows\System32\wuceffects.dll - ok
15:08:44.0892 0x1a1c [ FED9AB89CEA58D22566DBF65DB3A5BDC, 7CA9DA0A52781FBB3A811C851A3A89079FA800B93B767B6B5B88469CA197463C ] C:\Windows\System32\CBDHSvc.dll
15:08:44.0892 0x1a1c C:\Windows\System32\CBDHSvc.dll - ok
15:08:44.0892 0x1a1c [ 482EFCAB2FBFEB13770ABA366CC3C39D, 2EED21ABDD9D0D8400A403179313AACC102075C9EC5E2747D3D098F58427729B ] C:\Windows\System32\twinui.dll
15:08:44.0892 0x1a1c C:\Windows\System32\twinui.dll - ok
15:08:44.0892 0x1a1c [ 2EA591DA2D1BFC467C173538249176F0, 5D8A7BAB5D65769FEDF4D58D847AC0BCDADEA3469A48058F83EE077D6A1EFF8D ] C:\Windows\System32\pdh.dll
15:08:44.0908 0x1a1c C:\Windows\System32\pdh.dll - ok
15:08:44.0908 0x1a1c [ B25B71B6A6CB3E48B2F1129F064B1F32, 2AFB06B3A72E9CBEE24EE0A807E282C135607CA1E4D91423308CC5B44F9F595B ] C:\Windows\System32\windows.applicationmodel.datatransfer.dll
15:08:44.0908 0x1a1c C:\Windows\System32\windows.applicationmodel.datatransfer.dll - ok
15:08:44.0908 0x1a1c [ 3A957A2346619C402B4528E2211DBB0D, 63F3E1044DFA3853F4D0713C651E4E84FA7892B2FFA8E320A0314946527FB61F ] C:\Windows\System32\ApplicationFrame.dll
15:08:44.0908 0x1a1c C:\Windows\System32\ApplicationFrame.dll - ok
15:08:44.0908 0x1a1c [ 005B5F4FF4AAB4FC3CDE47762F1616EB, E5A003EFB14120D908052F64FDAD3B0701BE5F4CC3212D0F7D632CAC287852EB ] C:\Windows\System32\ntshrui.dll
15:08:44.0908 0x1a1c C:\Windows\System32\ntshrui.dll - ok
15:08:44.0924 0x1a1c [ 95B5E8A264F91EDE2795B7FF8DAC1013, 6E43933DE5169549B404B5D6A48D98DF06EE56D6FE69CB9807024669DB4A0A58 ] C:\Windows\System32\HolographicExtensions.dll
15:08:44.0924 0x1a1c C:\Windows\System32\HolographicExtensions.dll - ok
15:08:44.0924 0x1a1c [ D7B3F90F922173697717EC7800117E60, 1C7C40274717C448DB39C581B2B12B384D4D3E8EACF9A9AB6976FA215EC13110 ] C:\Windows\System32\AboveLockAppHost.dll
15:08:44.0924 0x1a1c C:\Windows\System32\AboveLockAppHost.dll - ok
15:08:44.0924 0x1a1c [ E4ECDB7A312806D1750D5A6CA0762547, 7B723CABEAC4B860F1F7DCBAC1799B607868A13FF834E2A56B130B62EB8DEBDE ] C:\Windows\System32\NPSM.dll
15:08:44.0924 0x1a1c C:\Windows\System32\NPSM.dll - ok
15:08:44.0924 0x1a1c [ C760EE98293826A357026E8B4BD51B62, 2083EBFC1DF7C51EF0A5BC2DA17812089C814AD6E8395334BDFA61FD7DDFE502 ] C:\Windows\System32\Windows.Shell.BlueLightReduction.dll
15:08:44.0924 0x1a1c C:\Windows\System32\Windows.Shell.BlueLightReduction.dll - ok
15:08:44.0939 0x1a1c [ F0E9EBC2A438C7990AA778F111C102BB, 7C200615313403FDB699B5ECF3B0B09795F5EB896B82C042DF5C4B52D8513FF4 ] C:\Windows\System32\Windows.Web.dll
15:08:44.0939 0x1a1c C:\Windows\System32\Windows.Web.dll - ok
15:08:44.0939 0x1a1c [ 2ADFC9707416C373244F7900B927CAFF, 5385E333B16FD4384D5E66A2356348BE90E5C7534A24197F94E27AECEBE10B4D ] C:\Windows\System32\EhStorShell.dll
15:08:44.0939 0x1a1c C:\Windows\System32\EhStorShell.dll - ok
15:08:44.0939 0x1a1c [ E3FEE579A3E7F34EBDF6D8CEDA97F950, 0C7DC5F494EB2F2F4BDF0290023E21D86C6C007E969B98C2EA9566030507DC6B ] C:\Windows\System32\Windows.Internal.Signals.dll
15:08:44.0939 0x1a1c C:\Windows\System32\Windows.Internal.Signals.dll - ok
15:08:44.0955 0x1a1c [ E236BC25E0F5C92C228E3E2193D1F8D7, 7B8F2A2927BE1DCC1300AE945E880F0728C4231AD6937CE0CBCE0A146F8797D0 ] C:\Windows\System32\TaskFlowDataEngine.dll
15:08:44.0955 0x1a1c C:\Windows\System32\TaskFlowDataEngine.dll - ok
15:08:44.0955 0x1a1c [ ABFB7822253696878452643A7B213DF7, 6D860E000CF6ABA7084223F794F41CB293509DD360BEEE41CE3EEF3BD84076C3 ] C:\Windows\SysWOW64\winhttp.dll
15:08:44.0955 0x1a1c C:\Windows\SysWOW64\winhttp.dll - ok
15:08:44.0955 0x1a1c [ 7D57315B924DF8C4D5CC270543BDD134, B1D34386B06B3CD712D7589AB0511ED4B729352102EED8B135DB7E5CABBC64CF ] C:\Windows\System32\actxprxy.dll
15:08:44.0955 0x1a1c C:\Windows\System32\actxprxy.dll - ok
15:08:44.0955 0x1a1c [ B4EA684594613C5D2C600A50D8C62D83, 24ADC1000C16B39D2825AF4DB038DDF4FDB37EA480550C47F33E30BA1EA82941 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
15:08:44.0955 0x1a1c C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
15:08:44.0970 0x1a1c [ F25D2E11A8AFF3C76931E9A1AED93016, F7D0C00E7602E4A1BFA3D7C745E5A7880DC4F81DB525A9B4503B9E59E854790A ] C:\Windows\System32\Windows.Data.Activities.dll
15:08:44.0970 0x1a1c C:\Windows\System32\Windows.Data.Activities.dll - ok
15:08:44.0970 0x1a1c [ 42F2BDE4F307A91E6E5AA22A56B3133A, 354EAA6FDFCB2C453F9B8F1F1A32B144A4F222D5CBE7A2A1C1FBC2D57DA38AEB ] C:\Windows\SysWOW64\dhcpcsvc.dll
15:08:44.0970 0x1a1c C:\Windows\SysWOW64\dhcpcsvc.dll - ok
15:08:44.0970 0x1a1c [ F878DA721D14A7668E2898343F62FA19, B0B77179455CAB1A704B63DB705D61EC970764BD296E131A8608091F5F412531 ] C:\Windows\SysWOW64\OnDemandConnRouteHelper.dll
15:08:44.0970 0x1a1c C:\Windows\SysWOW64\OnDemandConnRouteHelper.dll - ok
15:08:44.0970 0x1a1c [ C222443BA793F4C2DD92AF5B20EF0820, DB309D41734376D888D6277B66698BC83992F1D109479AD86CA72F836CE19A3E ] C:\Windows\SysWOW64\NapiNSP.dll
15:08:44.0970 0x1a1c C:\Windows\SysWOW64\NapiNSP.dll - ok
15:08:44.0986 0x1a1c [ D43032BCCDA09360AA5BAAFF3039AEA6, 44397439A6E36DB319A9DA2A9077CAD10FFB303CCF456691900A9C1875E1211F ] C:\Windows\SysWOW64\pnrpnsp.dll
15:08:44.0986 0x1a1c C:\Windows\SysWOW64\pnrpnsp.dll - ok
15:08:44.0986 0x1a1c [ 5D8056CE269CDC09733F228883A8279D, F0B284ED98E7A1B1CDF2D2E8F3C13D1DC7EEF9034C39FAC2689C15FC7CC4A38C ] C:\Windows\SysWOW64\winrnr.dll
15:08:44.0986 0x1a1c C:\Windows\SysWOW64\winrnr.dll - ok
15:08:44.0986 0x1a1c [ 986CF69C96F3B82F7993F927443410FA, D348405567E4071797C2B1C49113324E2DD3C5D26170BD7DB523B7116EF27A42 ] C:\Users\Zheng Yang\AppData\Local\Temp\{5041C96D-66A1-4F12-88B2-0C815D2698BB}\{E2CCBA19-DB98-401C-83C9-4379366B25D9}.exe
15:08:44.0986 0x1a1c C:\Users\Zheng Yang\AppData\Local\Temp\{5041C96D-66A1-4F12-88B2-0C815D2698BB}\{E2CCBA19-DB98-401C-83C9-4379366B25D9}.exe - ok
15:08:45.0002 0x1a1c [ B258A1F67F21FF57F6688248552539CF, BA492DB1F83E56BF01A3657B73406F2DA145D74C8642E98ECF1B2A4232451C33 ] C:\Windows\SysWOW64\nlaapi.dll
15:08:45.0002 0x1a1c C:\Windows\SysWOW64\nlaapi.dll - ok
15:08:45.0002 0x1a1c [ 9A6F2B715C1D5E6F88A34A805F5088EE, BA80DF943347641A9B5A84C3D1053FBD1913B30B73EFEAB58C95F2B9E0BB6E6D ] C:\Windows\System32\Windows.UI.Core.TextInput.dll
15:08:45.0002 0x1a1c C:\Windows\System32\Windows.UI.Core.TextInput.dll - ok
15:08:45.0002 0x1a1c [ 3F361BE7140B83974AB4FA9B7E09D0DC, 586059A9ED9F2991D68904ACB3F4257794D1FA8A94E15E85A6CA21EC36ECBA0A ] C:\Windows\SysWOW64\wshbth.dll
15:08:45.0002 0x1a1c C:\Windows\SysWOW64\wshbth.dll - ok
15:08:45.0002 0x1a1c [ 10E74C88B3366DE2140DAA1FCFCD08FE, 6A5379DC710F55F7B2AA92F28826885A07D3BBBD4C14F91353FD6ED088A5AB25 ] C:\Windows\SysWOW64\rasadhlp.dll
15:08:45.0002 0x1a1c C:\Windows\SysWOW64\rasadhlp.dll - ok
15:08:45.0017 0x1a1c [ F687CBDC805890CED9DAB5F2C193F004, CF245BE448C7A4F1043A12E32D3E80D53FC6F3D68D47919807D2EF00ADFFEE6C ] C:\Windows\SysWOW64\FWPUCLNT.DLL
15:08:45.0017 0x1a1c C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
15:08:45.0017 0x1a1c [ C73575187D18D3AD11E57A9E13F3BDE0, ABC1D1CA6876CD0A35E19C5CE444E14095D516F9C9BE70A72B4BBE516F70B654 ] C:\Windows\System32\ShellCommonCommonProxyStub.dll
15:08:45.0017 0x1a1c C:\Windows\System32\ShellCommonCommonProxyStub.dll - ok
15:08:45.0017 0x1a1c [ 51FCC511892DAB3E310A28DDB4915F0D, 9647F91EF1100BC882F603D14506DCD5C44BEE92AAD731E6278277D14711EC33 ] C:\Windows\System32\cryptngc.dll
15:08:45.0017 0x1a1c C:\Windows\System32\cryptngc.dll - ok
15:08:45.0017 0x1a1c [ 6716A4E967A7AC4281E6FD946A726D30, FFB3217B806ECC9B1445C600B81828DE5663287EC1EB0FF86E8E0969002D191D ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
15:08:45.0017 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll - ok
15:08:45.0033 0x1a1c [ BE339F2BC247BDB461A9210549758B5C, 2FFC8088662B65E80CECA9E33416ECA68074D1256F424302B333521F97E52E7C ] C:\Windows\System32\LicenseManagerApi.dll
15:08:45.0033 0x1a1c C:\Windows\System32\LicenseManagerApi.dll - ok
15:08:45.0033 0x1a1c [ E3092741F0416C03C4F8E8BD78036D9D, FBF9F4EE56DAE4DE7220E26DC47516C27BB557DBF59A5520EAE611F9586E9BEF ] C:\Windows\System32\capauthz.dll
15:08:45.0033 0x1a1c C:\Windows\System32\capauthz.dll - ok
15:08:45.0033 0x1a1c [ A8813C01C119B3583140D92A76A53650, C6AA63EC5DAEA80E80230583E0B2EA5E6517664EDA2075907CB1E42C133BCB43 ] C:\Windows\System32\cflapi.dll
15:08:45.0033 0x1a1c C:\Windows\System32\cflapi.dll - ok
15:08:45.0033 0x1a1c [ DE6DC86EDD7D169C70BB5422BA525CB7, F88DF844D50AA2440FD86E9C6F78C303B3354EBA6CBD783A0C2BE9BC6B75777D ] C:\Windows\SysWOW64\webio.dll
15:08:45.0033 0x1a1c C:\Windows\SysWOW64\webio.dll - ok
15:08:45.0049 0x1a1c [ 74E70DF48918A2F90343CD8EDC557743, F2BAE3137E412A8811C9A06B7B615E318F5474F7AE92EED33BE0B8CA7C2979F3 ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
15:08:45.0049 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll - ok
15:08:45.0049 0x1a1c [ 665BF8D8ADB897ECA267842BFEE36CD2, B8FA98DEABA95D1F86E2704DFACFE57A5268B30A13F64E5C42203E00AB2AE713 ] C:\Windows\SysWOW64\winnsi.dll
15:08:45.0049 0x1a1c C:\Windows\SysWOW64\winnsi.dll - ok
15:08:45.0049 0x1a1c [ 78AC970D7765FD11580FF67DF518197B, FAC55FCEA6448A425F833806F1A31C4AA9FD839DC98B5200D94E926D0E5F3BFD ] C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
15:08:45.0049 0x1a1c C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe - ok
15:08:45.0064 0x1a1c [ 8B1899DFF4121EFB4DE18AD446E0AB81, D47343247AC6573A35C5EB1703ABB798250F4936E709E187B9FCC0AF8431E9C6 ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
15:08:45.0064 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll - ok
15:08:45.0064 0x1a1c [ 349A42C19107E32C3A467B7B86F143E2, BF48CFA9E5BA88B2229649E9BA1B2B06F5F4CFC467832904F9E7F988A19D93B0 ] C:\Windows\SysWOW64\schannel.dll
15:08:45.0064 0x1a1c C:\Windows\SysWOW64\schannel.dll - ok
15:08:45.0064 0x1a1c [ A6D5768C1C44B79B042CD965FF784C65, C5E89AFBB305069084FE59F00636AAFC23D7C7844BA7CBD75D782DA459037F17 ] C:\Windows\SysWOW64\mskeyprotect.dll
15:08:45.0064 0x1a1c C:\Windows\SysWOW64\mskeyprotect.dll - ok
15:08:45.0064 0x1a1c [ 58CBBED6DC46310C7196313D994929D6, 4CD96EFA6AA0D549F2460CE5510BAFA829DA6F73117ADBD84CF210718C82A0C9 ] C:\Windows\SysWOW64\ncrypt.dll
15:08:45.0064 0x1a1c C:\Windows\SysWOW64\ncrypt.dll - ok
15:08:45.0080 0x1a1c [ E38AC0A1E0FF30BD14BBF401BEA707BB, F50BB29CFFEBC544F35C6CC3916B1C426BD59271A116FBF58A362DD8A31E6DF4 ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
15:08:45.0080 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll - ok
15:08:45.0080 0x1a1c [ 94DDDB96EC3E28FEFCC27FFD7080E1D1, EC4F6B053AB6DD3A1C29B78ABB21035848A67E85A099E2E044C0BE9349DF1F07 ] C:\Windows\SysWOW64\ntasn1.dll
15:08:45.0080 0x1a1c C:\Windows\SysWOW64\ntasn1.dll - ok
15:08:45.0080 0x1a1c [ ADB1BAB297CF8629E6BAAB7B256721B6, 8957F7F980DEB39FFF2A001F29A952F735C018BE9BE720515FF7749360E57784 ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
15:08:45.0080 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll - ok
15:08:45.0095 0x1a1c [ E027A6E99EF709AFD195FD6329224C47, B31B85BF369DC36363B0E527AE3B8E95B33699D17D09C6313C43E7373A3E6874 ] C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{BE30F811-331D-48E7-9043-D14ACA433E1E}.tmp
15:08:45.0095 0x1a1c C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{BE30F811-331D-48E7-9043-D14ACA433E1E}.tmp - ok
15:08:45.0095 0x1a1c [ 31301CDB65E0A320B35A36C303E4BDAC, AF9299176A34066045D4D346C27DEFAF550D5B831AAD268607DF0DFE4DE62E5D ] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
15:08:45.0095 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll - ok
15:08:45.0095 0x1a1c [ 5B428EBEB61F1BEAD570655C47D0448E, D1B8340C9ED91B2C87861F6C8891CB604882DA30749443B259033C4AC5FFDC83 ] C:\Windows\SysWOW64\ncryptsslp.dll
15:08:45.0095 0x1a1c C:\Windows\SysWOW64\ncryptsslp.dll - ok
15:08:45.0095 0x1a1c [ AC6503853A66FAD60188DC726F2EFB7C, 848FBDBE91A9FB0793C24C855832A0109B9D164B29795428CD2518613812AB30 ] C:\Windows\SysWOW64\dpapi.dll
15:08:45.0095 0x1a1c C:\Windows\SysWOW64\dpapi.dll - ok
15:08:45.0111 0x1a1c [ AB67816718E5C65CC326BE56AC0B9E73, D6F19026CB87C9BB5521D668B13347B68F297FCE34C5F1BFE530574B16ADB2D5 ] C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{E8D63735-80B0-4FDC-92A0-BFEF2856A9F3}.tmp
15:08:45.0111 0x1a1c C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{E8D63735-80B0-4FDC-92A0-BFEF2856A9F3}.tmp - ok
15:08:45.0111 0x1a1c [ FA17EC109029B01C1DC956FF3BD6FC77, D657D71001E5ECDA4BBBC4C35B2B17BF7FC87E90C965A115D59670A3EDD5F8CD ] C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{E4918599-4BAB-480A-BF7E-9E2BD6A7B06E}.tmp
15:08:45.0111 0x1a1c C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{E4918599-4BAB-480A-BF7E-9E2BD6A7B06E}.tmp - ok
15:08:45.0111 0x1a1c [ DC6DB08D85337C9675F94B01043279AE, B09E491113F9E95F4EE00BB51BB21D4967BAC333C0DCD030A10AEA9B9E52032B ] C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{BB75BEBF-D38B-4BDD-9858-6669E9DA3D13}.tmp
15:08:45.0111 0x1a1c C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{BB75BEBF-D38B-4BDD-9858-6669E9DA3D13}.tmp - ok
15:08:45.0127 0x1a1c [ C74D46C1F542F5FEB9B7E1A8EC04986D, FA83733A81BA8D96EDFD15C1914D5A6056D73C61540C8747E9AE1343DA47A63D ] C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{55E34D56-6ED9-48DE-A33C-BA31E88BBD08}.tmp
15:08:45.0127 0x1a1c C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{55E34D56-6ED9-48DE-A33C-BA31E88BBD08}.tmp - ok
15:08:45.0127 0x1a1c [ 517ECD823EB9A03368294C6C33A695D0, 7BA4EF2C5E9D15A4EE8ACC169CA233010DF8D1BC7088665E06C9E71BBA0CD40C ] C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{140D0231-197F-496B-B887-3B6EBB6FA3E5}.tmp
15:08:45.0127 0x1a1c C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{140D0231-197F-496B-B887-3B6EBB6FA3E5}.tmp - ok
15:08:45.0127 0x1a1c [ 3428F170E1953B4C4EA10A5F58B55908, B554E04021472C3C2BBDED2B4BBB4F6648932356F8DA409A2A7F6AC02E54B306 ] C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{BB881F87-0926-4EC7-9821-8C9E93ADF0D5}.tmp
15:08:45.0127 0x1a1c C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{BB881F87-0926-4EC7-9821-8C9E93ADF0D5}.tmp - ok
15:08:45.0127 0x1a1c [ 96D681B7DE0BA6BFA1DC55915003CD05, 26CDA6A9A67F20A494F0EF3577D14F5DDA1F0D4428891DBD271A757833285939 ] C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{F9654384-C988-4ADC-85DB-1EE6C0A1F2C0}.tmp
15:08:45.0127 0x1a1c C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{F9654384-C988-4ADC-85DB-1EE6C0A1F2C0}.tmp - ok
15:08:45.0142 0x1a1c [ 85D8D497E3CFCD66607DAD332378DE8B, FEB2FF9315B41A7D13C9F3EB4CFDD612C951CA02330BC5A9129881E148769C7F ] C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{5D7F2A03-38B3-4168-9FA0-05271490AE8C}.tmp
15:08:45.0142 0x1a1c C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{5D7F2A03-38B3-4168-9FA0-05271490AE8C}.tmp - ok
15:08:45.0142 0x1a1c [ CD0DAF878147B723108C428370FF0355, A5C3D8A516FD0A15DAAB442DA424E996112C355239B985413EAA4DC1FAB76303 ] C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{25FAAD93-8B2B-4595-91EB-BD4FFD76C137}.tmp
15:08:45.0142 0x1a1c C:\Users\ZHENGY~1\AppData\Local\Temp\{D6CE8D00-2DBA-4EF6-B1CA-5214D888A37E}\{25FAAD93-8B2B-4595-91EB-BD4FFD76C137}.tmp - ok
15:08:45.0142 0x1a1c [ F8689F2DEF90B10DC1924546054A2E33, F3CC0503ACB4E4143E70219C7A650171BEDE5191779373CB806A2C94BA2DB251 ] C:\Windows\System32\wbem\NCProv.dll
15:08:45.0142 0x1a1c C:\Windows\System32\wbem\NCProv.dll - ok
15:08:45.0142 0x1a1c [ 175398FCF92E94A8E5E628069F57CD22, 41409EE0596E7F1056922498D07F975C95AF70723201C4DD8293161124E20817 ] C:\Windows\SysWOW64\riched20.dll
15:08:45.0142 0x1a1c C:\Windows\SysWOW64\riched20.dll - ok
15:08:45.0158 0x1a1c [ 89AE139011B7B4673FF9A33D189C9282, 3A6710BFFCC02A1CB89DD7F2B5D6C2FA3812AE63868DC3AD16C60CC7B1377690 ] C:\Windows\System32\appraiser.dll
15:08:45.0158 0x1a1c C:\Windows\System32\appraiser.dll - ok
15:08:45.0158 0x1a1c [ 5B5EAFEF9CB05D3A1187D72901CF6D24, D13B68D539096ED37D0789C2E35F934751FF11B3FAB08B69339A4E68C51C80B5 ] C:\Windows\SysWOW64\usp10.dll
15:08:45.0158 0x1a1c C:\Windows\SysWOW64\usp10.dll - ok
15:08:45.0158 0x1a1c [ ACCD854D0163622E1E5269C0BF2591B3, FC38A5FB87EAFA2754EFD0546EF42BF3293FF13EAFDA4DE4DD0BF3B170516213 ] C:\Windows\SysWOW64\msls31.dll
15:08:45.0158 0x1a1c C:\Windows\SysWOW64\msls31.dll - ok
15:08:45.0174 0x1a1c [ B45ECC19DF425E0E34E0DC646B4AFFE4, 4BA76E0D4405B7222A043C275F05AB9C9DF7FA72D08EDF89CB51D3B97FDBE11E ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll
15:08:45.0174 0x1a1c C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll - ok
15:08:45.0174 0x1a1c [ 4B3982A5C0F265D16B3725F9030DD83D, C8D558C7CF31BCAEA8832F56056DD051E9024D09731E0154F0FBD639A891842A ] C:\Windows\SysWOW64\DataExchange.dll
15:08:45.0174 0x1a1c C:\Windows\SysWOW64\DataExchange.dll - ok
15:08:45.0174 0x1a1c [ BCA2B8589EAE945156EB4435B92EBEB3, 31E913D6507029A0F941BBE8F51E839055DDB30014C03111B24A6646BD06E5EE ] C:\Windows\SysWOW64\dcomp.dll
15:08:45.0174 0x1a1c C:\Windows\SysWOW64\dcomp.dll - ok
15:08:45.0189 0x1a1c [ C6FF6DD06566994B4FB53F210083874A, F8BC360FCA42B6E550DBA8F3A75BD0412143E3D4A30FA711FF53228F81A3FD88 ] C:\Windows\SysWOW64\d3d11.dll
15:08:45.0189 0x1a1c C:\Windows\SysWOW64\d3d11.dll - ok
15:08:45.0189 0x1a1c [ 2A3A760C03A44873B4DCD6057C4EEA16, 2D0BC9ACA6991BE2ECC632E270568FD88E4DCD347C4E7A13CD4C56C48BCE0FBB ] C:\Windows\ShellExperiences\StartUI.dll
15:08:45.0189 0x1a1c C:\Windows\ShellExperiences\StartUI.dll - ok
15:08:45.0189 0x1a1c [ C6C742DCB64892659D51F6CBA3376D84, 7F0A8FF165E5A4C95F3EF091463F6327EEF2195CFDD89048384269A8245197AE ] C:\Windows\SysWOW64\dxgi.dll
15:08:45.0189 0x1a1c C:\Windows\SysWOW64\dxgi.dll - ok
15:08:45.0189 0x1a1c [ A795DA8E000C9CAB2CC7B2242C8075E9, 633EEAB9B55D059A63BEC8D3684CB9C388765CA6D02B6C107CD7A1A686E3A057 ] C:\Windows\System32\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
15:08:45.0189 0x1a1c C:\Windows\System32\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll - ok
15:08:45.0205 0x1a1c [ B7EEAE4364FB175C3809FDC93F0643C4, 354C880DB5799F448B263F2C66518E4BC9D22AD2079AEABC91D025FC7705D214 ] C:\Windows\ShellExperiences\QuickActions.dll
15:08:45.0205 0x1a1c C:\Windows\ShellExperiences\QuickActions.dll - ok
15:08:45.0205 0x1a1c [ 413BC3013B2F02CD95976900EB4071A1, 55E4DA1DA48D5F277B35FECBD8F5CA6CB83B8A5E8E6007142651380A4F58BB39 ] C:\Windows\SysWOW64\twinapi.appcore.dll
15:08:45.0205 0x1a1c C:\Windows\SysWOW64\twinapi.appcore.dll - ok
15:08:45.0205 0x1a1c [ 26F7877377A6840C8EFC671561DE25C3, 02115D73F16E4BD09861AFB96D67114238C04CB001A632DEDCF5D49334048A7E ] C:\Windows\ShellExperiences\Windows.UI.ActionCenter.dll
15:08:45.0205 0x1a1c C:\Windows\ShellExperiences\Windows.UI.ActionCenter.dll - ok
15:08:45.0220 0x1a1c [ FF6E2BA4257F6E56020302F47D75E067, F8C510E1E338415AE6B19492A5E97F14980B6C4FC8BCB7B911D532F90D49EAB4 ] C:\Windows\SysWOW64\rmclient.dll
15:08:45.0220 0x1a1c C:\Windows\SysWOW64\rmclient.dll - ok
15:08:45.0220 0x1a1c [ 549684ED7A727161CE9BC8E7D830849B, D0A3FB7BFBCBC1C56836ED351140936A82782AA8B7426069B8CB0B86E4922E1D ] C:\Windows\System32\QuickActionsDataModel.dll
15:08:45.0220 0x1a1c C:\Windows\System32\QuickActionsDataModel.dll - ok
15:08:45.0220 0x1a1c [ 6578118EC014895388AB06D9B2B6C695, 7AC244ADA2EB4BEA00F90D0BBD629AE289AA8C96A054663631A0F084516B5B04 ] C:\Windows\System32\Windows.Storage.ApplicationData.dll
15:08:45.0220 0x1a1c C:\Windows\System32\Windows.Storage.ApplicationData.dll - ok
15:08:45.0220 0x1a1c [ 6D66AFEF886392CE79C1A61F3AF835A1, 4878E0AD8DE8D90C990EB78EAC56435D11AAEBDEA65AB8EFBB1AA43C30E44E50 ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
15:08:45.0220 0x1a1c C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe - ok
15:08:45.0236 0x1a1c [ 319A850CC5741CDA9F657857E936A3AF, 7CC451D2756ABFC885D0F01907F91ABA3BFA45DD58A074070731CF7C1BC8F41F ] C:\Windows\System32\biwinrt.dll
15:08:45.0236 0x1a1c C:\Windows\System32\biwinrt.dll - ok
15:08:45.0236 0x1a1c [ B514935F552EF895F5534ED307EF3C11, 43CEC3F9D28D28FA169E6C9D5470710FBB48BDF703F2FA5D6B88EF4F9E32EA14 ] C:\Windows\System32\Windows.Graphics.dll
15:08:45.0236 0x1a1c C:\Windows\System32\Windows.Graphics.dll - ok
15:08:45.0236 0x1a1c [ E65CF7F26B2FCC4C0CE7B4F24106A17B, B20AFF2A172A5EB758E937230FCE76D9C94576395168E568850C70FCA19DA49C ] C:\Windows\System32\Windows.Globalization.Fontgroups.dll
15:08:45.0236 0x1a1c C:\Windows\System32\Windows.Globalization.Fontgroups.dll - ok
15:08:45.0236 0x1a1c [ D56532EC57850FFF07DBE8931FC31F70, FCA0332E6EE969EFA17626604FBF873A0E3789BADAC2550B45EBA7346D494EE4 ] C:\Windows\System32\fontgroupsoverride.dll
15:08:45.0236 0x1a1c C:\Windows\System32\fontgroupsoverride.dll - ok
15:08:45.0252 0x1a1c [ 882231FB6CBA90C631892A5AA33A88C3, E86DEE6C68262FA957C6C6763CEDD631E46B3158D07426EA10B9F21E89D8A235 ] C:\Windows\System32\Windows.Services.TargetedContent.dll
15:08:45.0252 0x1a1c C:\Windows\System32\Windows.Services.TargetedContent.dll - ok
15:08:45.0252 0x1a1c [ 2879BF3F6F6CE63477135F7C061B14F3, 3F82D416FBEE431B0AE798078F9C354711577F48B38901788C784A5EC0DD13B3 ] C:\Windows\System32\RuntimeBroker.exe
15:08:45.0252 0x1a1c C:\Windows\System32\RuntimeBroker.exe - ok
15:08:45.0252 0x1a1c [ E7B730573DEC94E3859DA9E9C15CEBD8, 46EC8C1033EB856B14283BB8AB11F10995F084594BCFE38F3E0C34560C67486F ] C:\Windows\System32\RTMediaFrame.dll
15:08:45.0252 0x1a1c C:\Windows\System32\RTMediaFrame.dll - ok
15:08:45.0267 0x1a1c [ AFE653CCC2592633C22DD5DA4124AB59, 2D88AB60714D7CAA53B06653CDD31E14093121CEBF3BB7EB7CA0F1B9F04A3A8A ] C:\Windows\System32\ctfmon.exe
15:08:45.0267 0x1a1c C:\Windows\System32\ctfmon.exe - ok
15:08:45.0267 0x1a1c [ C3EA3A704669F6C72876D7B05CDC0166, 9A7442FDA20E4D25ACD1024E65BA4BE5DCCFDC6FE5124542ADFAA32EC3ECB1A0 ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
15:08:45.0267 0x1a1c C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll - ok
15:08:45.0267 0x1a1c [ 07D6263F2D0E81B4618207EEF1B34456, 95D0459C414D88123AE06B9EF0A057B7F884CACB959B0EE061AAC002B968EF2E ] C:\Windows\System32\Speech_OneCore\common\sapi_onecore.dll
15:08:45.0267 0x1a1c C:\Windows\System32\Speech_OneCore\common\sapi_onecore.dll - ok
15:08:45.0267 0x1a1c [ 6E9DD22BB3D5FAEB53CA08678935A8A4, 430B47A9ED1A25300FE14FE7B96688616227248909353874751B6B86091DB706 ] C:\Windows\System32\InputService.dll
15:08:45.0267 0x1a1c C:\Windows\System32\InputService.dll - ok
15:08:45.0283 0x1a1c [ 4F661DB85F4C037362FAF958A4E218C6, 0F5A27E63C95DB70A8A845B8A06408B34340558B2D3AD196DA9F5CDED5D4DAC4 ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll
15:08:45.0283 0x1a1c C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll - ok
15:08:45.0283 0x1a1c [ 1D1F0C231972C2F2302EC32FF47EAA66, 9C66281027CCDD5D5495139A308F7741D95731BDE7262074F1B63C04C74ABA27 ] C:\Windows\System32\MTFServer.dll
15:08:45.0283 0x1a1c C:\Windows\System32\MTFServer.dll - ok
15:08:45.0283 0x1a1c [ 4E858BF2FE10072B75CCAC064FF02B74, DEC703524A963E1FC44A86A71AC2E99307288A423372919E60ABA1138DC09DEB ] C:\Windows\System32\Windows.Cortana.PAL.Desktop.dll
15:08:45.0283 0x1a1c C:\Windows\System32\Windows.Cortana.PAL.Desktop.dll - ok
15:08:45.0299 0x1a1c [ C5C2D7E924D91BDF6F48E12F102E6814, 940E12F45BDE12516825A3B754D8592C15C38870CD08CF4C5966EA3C797546FF ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
15:08:45.0299 0x1a1c C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll - ok
15:08:45.0299 0x1a1c [ 7604962C0AD25D07102FE51214588990, 90195E19F5EE600E63F18CB95D1DA059D9843D6EB9C7E7470663339DC29B2DB6 ] C:\Windows\System32\InputLocaleManager.dll
15:08:45.0299 0x1a1c C:\Windows\System32\InputLocaleManager.dll - ok
15:08:45.0299 0x1a1c [ 577AC525B0DE2FD1D4D850B2349DEA24, 377B20EBAEE58D1A856158A1007DD93E7B1FBDB4F5E2B4CAE1CBC6C6475A067D ] C:\Windows\System32\ActionMgr.dll
15:08:45.0299 0x1a1c C:\Windows\System32\ActionMgr.dll - ok
15:08:45.0314 0x1a1c [ F2376080917DFE8AA704E8FE60F9F08C, 650E493BA02DE75C5FC6439D246403E59C5A3B766C648494B211FBD3C45B8613 ] C:\Windows\System32\Clipc.dll
15:08:45.0314 0x1a1c C:\Windows\System32\Clipc.dll - ok
15:08:45.0314 0x1a1c [ 518A0A95CB79138B99C6DE13D986E20F, 74730B6D70619C241DA685B0A12E5BE2022A54CA3CA5FF05E7AA836D187A8F0F ] C:\Windows\System32\PersonaX.dll
15:08:45.0314 0x1a1c C:\Windows\System32\PersonaX.dll - ok
15:08:45.0314 0x1a1c [ 8BE89FCB007157834E15AD3868F6D405, 9597A7D05761B501EA02FE72CE166EFEF4253630391D173FF37E0D61285109F0 ] C:\Windows\System32\MTF.dll
15:08:45.0314 0x1a1c C:\Windows\System32\MTF.dll - ok
15:08:45.0330 0x1a1c [ BDAD08AA85A7F85B58A87454101600FE, 8C91480B58AF0523CA56F8FAE6E0F8CA73A50762953B6129B94F19EE963A935C ] C:\Windows\System32\ConstraintIndex.Search.dll
15:08:45.0330 0x1a1c C:\Windows\System32\ConstraintIndex.Search.dll - ok
15:08:45.0330 0x1a1c [ 20A99C58D3CF89AD2AF69B58AB130E19, 6CA76214316F04C0B6C91A6CAEE82CB48EA38D5BA122238BA9C8632C4D4E2DB3 ] C:\Windows\System32\Windows.Web.Http.dll
15:08:45.0330 0x1a1c C:\Windows\System32\Windows.Web.Http.dll - ok
15:08:45.0330 0x1a1c [ 17C1FCBCC3F46DCBFBD86F0A87E3912D, 1A02C84CD217B18030F91142CCEA515C523260380D4B2C77C7BB1B1F25CA9B3B ] C:\Windows\System32\Windows.UI.Input.Inking.dll
15:08:45.0330 0x1a1c C:\Windows\System32\Windows.UI.Input.Inking.dll - ok
15:08:45.0345 0x1a1c [ 3223D201F9950FC8298AC13013DDC8D6, D63502CC2677D107F4A73B1531F0E28536BDEAE0A9A5D0946AF3D6E96DA7B7A2 ] C:\Windows\System32\Windows.Cortana.OneCore.dll
15:08:45.0345 0x1a1c C:\Windows\System32\Windows.Cortana.OneCore.dll - ok
15:08:45.0345 0x1a1c [ 0A9A2359648EBD80287A39984D9E2480, 4B8F77A656FBABD0DA95B7B45A79888481AD1FEAAA17B78FB473E3F05E954247 ] C:\Windows\System32\mfplat.dll
15:08:45.0345 0x1a1c C:\Windows\System32\mfplat.dll - ok
15:08:45.0345 0x1a1c [ EFEE3782C7698E22494C288D7291108B, 1D87FD7759AC993BD0C5239DACA27795EE7BE6B38E43C1AD042477DB59E7DA9E ] C:\Windows\System32\Windows.Cortana.ProxyStub.dll
15:08:45.0345 0x1a1c C:\Windows\System32\Windows.Cortana.ProxyStub.dll - ok
15:08:45.0345 0x1a1c [ 23B1D49F28D6034B7742EC33A3F5E310, D6407E9710422837B8C54FF612D7125402B2F663E69E26BC100E2E92D23F647C ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
15:08:45.0345 0x1a1c C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll - ok
15:08:45.0361 0x1a1c [ 4ADBE980CC440695BDB9C0E0D0EA58D4, C48A6DD914AA70D906D72E350476D6B94417D2010168518EB63F9F3CF828ACE0 ] C:\Windows\System32\stobject.dll
15:08:45.0361 0x1a1c C:\Windows\System32\stobject.dll - ok
15:08:45.0361 0x1a1c [ 4DC82F4268EE339A06AC50F6D9500D95, 70BBA0426036DFE4D7AA214068FD915BAC1962E5614499C6A0843559D9A082E7 ] C:\Windows\System32\EdgeManager.dll
15:08:45.0361 0x1a1c C:\Windows\System32\EdgeManager.dll - ok
15:08:45.0361 0x1a1c [ E2416A02A8FF217D5C02727B735E42DD, FD8A36F4EB16BE2FFFB479DB6A9F9F3DED8CA67D4C9A9002CB25F17CC285DF8E ] C:\Windows\System32\batmeter.dll
15:08:45.0361 0x1a1c C:\Windows\System32\batmeter.dll - ok
15:08:45.0361 0x1a1c [ E85C8737760101278D59BFAA66C09D1C, 9E77AE07A68326ADCE5184AD75A02421D0AC0CE0BC27C5CAF480B231D6F1297E ] C:\Windows\System32\edgehtml.dll
15:08:45.0361 0x1a1c C:\Windows\System32\edgehtml.dll - ok
15:08:45.0377 0x1a1c [ 536B4D3FC42D9F56AB3CAB7A2E6AE2BB, 429D78D59F6AA6617FE8298393DCE8A26703A97361EE188EF34977FAF4B60625 ] C:\Windows\System32\Windows.UI.Shell.dll
15:08:45.0377 0x1a1c C:\Windows\System32\Windows.UI.Shell.dll - ok
15:08:45.0377 0x1a1c [ C2458E8FC59D3853858ED6F8136F46FB, 6E09AA57F2530C80B3D6BB0735F115602795AEE1516FD0BD9DDD16F67B7BBDCD ] C:\Windows\System32\prnfldr.dll
15:08:45.0377 0x1a1c C:\Windows\System32\prnfldr.dll - ok
15:08:45.0377 0x1a1c [ 10AB7A550947F700C8777973C9B3ABEA, 509294953488D499BFA2AE5E5053FA286580AD0C6259AB7C56DD608565FE8BEE ] C:\Windows\System32\Windows.Internal.Shell.Broker.dll
15:08:45.0377 0x1a1c C:\Windows\System32\Windows.Internal.Shell.Broker.dll - ok
15:08:45.0392 0x1a1c [ 27DD99AD9186B1753A17BEF87FE14160, E6497CB8AEBE06A0476E93340DA066C75DA05D2CC52D515DC62B743EC2FCEC88 ] C:\Windows\System32\DXP.dll
15:08:45.0392 0x1a1c C:\Windows\System32\DXP.dll - ok
15:08:45.0392 0x1a1c [ ED08905B91230BB536A7049B8D0473AB, 9A81DE4E07D331BE2C4E31A63EA7ED8A567A39C85BAC8EFEF1DC38E9F65C6E96 ] C:\Windows\System32\shdocvw.dll
15:08:45.0392 0x1a1c C:\Windows\System32\shdocvw.dll - ok
15:08:45.0392 0x1a1c [ 8D8010C4A0940844794270AC727F81D9, 659A814FC42A429B3FEB1540B9B55C1426F8E0E5607125AC8AE567D01D1B8354 ] C:\Windows\System32\ActionCenter.dll
15:08:45.0392 0x1a1c C:\Windows\System32\ActionCenter.dll - ok
15:08:45.0408 0x1a1c [ CC0A3DBE0464B1AF67CEB55D5F8A146E, 4644C63730F28DADB7E848021C6739CB22DEEC377F519B9EB97ED6B1CF0E7E3A ] C:\Windows\System32\linkinfo.dll
15:08:45.0408 0x1a1c C:\Windows\System32\linkinfo.dll - ok
15:08:45.0408 0x1a1c [ 7AAA4845CA3B7F6E85EA0521D7C88CA6, 0E83631E8A8104C07E15AE48A1BF6BE6BCFAE70A8F97F92EF4191F19CED48A27 ] C:\Windows\System32\Chakra.dll
15:08:45.0408 0x1a1c C:\Windows\System32\Chakra.dll - ok
15:08:45.0408 0x1a1c [ 57F5ABA6803A03D89E35284E9EFE7CF3, 8B85ABC3A828FDD1C78F35F83EDB7FFDF67D8B2D1672095061DBADAF3E01E17B ] C:\Windows\System32\rometadata.dll
15:08:45.0408 0x1a1c C:\Windows\System32\rometadata.dll - ok
15:08:45.0424 0x1a1c [ ED880E432131DDD321E5549192F55A3D, 96846243C7BCA397DDCB5400DE08863BCBA0CFF9B3987BF3DBE3BD808A8CB5B3 ] C:\Windows\System32\Syncreg.dll
15:08:45.0424 0x1a1c C:\Windows\System32\Syncreg.dll - ok
15:08:45.0424 0x1a1c [ C6934B5D232079D629B04AD892A3405B, BD437235E28C5F059DCB38B697EBFCEC6BA577A224458204E82A630F3281F66C ] C:\Windows\System32\WPDShServiceObj.dll
15:08:45.0424 0x1a1c C:\Windows\System32\WPDShServiceObj.dll - ok
15:08:45.0424 0x1a1c [ 76B121357A8058A236920A3F9E674281, 844701660970377A6E1E5DECD94E51476CDD2729D9EAB7AA1EA1323F1D1E70C7 ] C:\Windows\System32\authui.dll
15:08:45.0424 0x1a1c C:\Windows\System32\authui.dll - ok
15:08:45.0424 0x1a1c [ 4E8DC385E4272D240107F7FAAA5AFB6D, A30C8BEF457B966AC1A767163FE1F7C4F89CB40727A819E5633E3290752FEFC9 ] C:\Windows\System32\icuin.dll
15:08:45.0424 0x1a1c C:\Windows\System32\icuin.dll - ok
15:08:45.0439 0x1a1c [ 18FDD8D8C5BFA9B1767C2BFE97E74090, 39B210CC0EC16A04C21764E4E10CF01410F7258A77A61C55BF2C661731D9CAEE ] C:\Windows\System32\icuuc.dll
15:08:45.0439 0x1a1c C:\Windows\System32\icuuc.dll - ok
15:08:45.0439 0x1a1c [ 3D1E3D72FAC062B2676AF5EAD1BF27A5, B13721476AF8A81267C468E927DA8943493A4DEA786964A30FB47484A432A270 ] C:\Windows\System32\SettingMonitor.dll
15:08:45.0439 0x1a1c C:\Windows\System32\SettingMonitor.dll - ok
15:08:45.0439 0x1a1c [ 69B50947FE6174B28AD7FD12D9B1EB80, E4980438DC8AA1AABE5287A01A093B655B1D07743E6BC95C8903722CCBD16E0B ] C:\Windows\System32\d3d10warp.dll
15:08:45.0439 0x1a1c C:\Windows\System32\d3d10warp.dll - ok
15:08:45.0455 0x1a1c [ ACF2E22E631CE881FC45FC1A6EAD5240, 15BC68BF3F422B61EA685325452A142295A27CF92CB8D2849168A90F17787B45 ] C:\Windows\System32\srpapi.dll
15:08:45.0455 0x1a1c C:\Windows\System32\srpapi.dll - ok
15:08:45.0455 0x1a1c [ 493C50B1A37B45B2A6600D95B4884505, 440178A86FC1170EEC32FA8D356CBE91B0A73BDF9FD104E6D506552D6FD75055 ] C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
15:08:45.0455 0x1a1c C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe - ok
15:08:45.0455 0x1a1c [ 94C1F6828CBBC3D91D2DC4F89F0A0BCD, B9EA80A7044455AD94E436FC4A70D36FDD8DCC6781F55ACAE7F4406FFC7EAEE1 ] C:\Windows\System32\Windows.Internal.SecurityMitigationsBroker.dll
15:08:45.0455 0x1a1c C:\Windows\System32\Windows.Internal.SecurityMitigationsBroker.dll - ok
15:08:45.0455 0x1a1c [ B4EECC79460FE3DC001D36B65D2D9823, E2309CFDC5C49218BEF9BDDA30104DD0271B595031F5D6E343CEF344A1B84AB2 ] C:\Windows\System32\edgeIso.dll
15:08:45.0455 0x1a1c C:\Windows\System32\edgeIso.dll - ok
15:08:45.0470 0x1a1c [ 7F587767C593AC39B3723C08B46284BA, FDD6C09DBB3940A196E3B9CA0038FD39F94410D2C1F43C59F7744E07208B8A4D ] C:\Windows\System32\msimtf.dll
15:08:45.0470 0x1a1c C:\Windows\System32\msimtf.dll - ok
15:08:45.0470 0x1a1c [ 39C467F5BDC0F05AF6F82431551D8592, E05F0AE8E085B6B39AB538D5D7EBD467E8888900C5A0107DB59EF137C0F3963F ] C:\Windows\System32\srchadmin.dll
15:08:45.0470 0x1a1c C:\Windows\System32\srchadmin.dll - ok
15:08:45.0470 0x1a1c [ 1B0DCBE679AC32E61CE8C8609B948F34, 07657D4D1742A676142D65DDDE6B2562C083189B9F38D1C7F122640216FBF11D ] C:\Windows\System32\pnidui.dll
15:08:45.0470 0x1a1c C:\Windows\System32\pnidui.dll - ok
15:08:45.0486 0x1a1c [ 069F2FA958C87D936AC4B390A9234814, 483703DA131D8992D779EB6256924DE9ED1F6265A2046CA01795B195C0B527ED ] C:\Windows\System32\Windows.Storage.Search.dll
15:08:45.0486 0x1a1c C:\Windows\System32\Windows.Storage.Search.dll - ok
15:08:45.0486 0x1a1c [ 3BC94575DBC3649CFCEE571783A45EAA, AD6761AF9371772D561DEDB0522598549762DDCA3240F882ED423413EFBC7FC6 ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Internal.Search.winmd
15:08:45.0486 0x1a1c C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Internal.Search.winmd - ok
15:08:45.0486 0x1a1c [ 9FC4A2B85EF22216F700958BA878A3DF, 77F61453AD57D2FBF04EFD397FB911C9B181164DD41FA013D283A400C5142848 ] C:\Windows\TextInput\WindowsInternal.ComposableShell.Experiences.TextInput.dll
15:08:45.0486 0x1a1c C:\Windows\TextInput\WindowsInternal.ComposableShell.Experiences.TextInput.dll - ok
15:08:45.0486 0x1a1c [ 41AC65F370211EC8519FC65B4183281C, 4F9B14695C4E40B1E8CD97AE1F74E30870338C8021F6CE014C4F431CB4A6DE36 ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Search.winmd
15:08:45.0486 0x1a1c C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Search.winmd - ok
15:08:45.0502 0x1a1c [ 2459D09C499EA71EC62917DEB84A011C, 216867FC2693B602FA15E100D8A4F94636DD79FA3FC53729B3611BE49C908170 ] C:\Windows\System32\NetworkUXBroker.dll
15:08:45.0502 0x1a1c C:\Windows\System32\NetworkUXBroker.dll - ok
15:08:45.0502 0x1a1c [ 2D89D15D2C9D1494607317B4B2ECB572, 1D4A3240D3713EA95AAD110FA351027238D35D97BA76DB417FC53763704DF6EE ] C:\Windows\System32\WinMetadata\Windows.Foundation.winmd
15:08:45.0502 0x1a1c C:\Windows\System32\WinMetadata\Windows.Foundation.winmd - ok
15:08:45.0502 0x1a1c [ 1A60978D3DD1BC1279030F97ED2F7AAC, 113CEF8EC777DE9232C92C604F8F7FFFB01A4DDCEC8B3FE4626A1662E363339D ] C:\Windows\System32\WinMetadata\Windows.Security.winmd
15:08:45.0517 0x1a1c C:\Windows\System32\WinMetadata\Windows.Security.winmd - ok
15:08:45.0517 0x1a1c [ 683277EBCEADE1A03E44E1E9AABB7F17, 69B9A6441FF236D2A6CD7995002AF1EBC1357B1D1BF22871CFA96FFCB6758AE1 ] C:\Windows\SysWOW64\oleacc.dll
15:08:45.0517 0x1a1c C:\Windows\SysWOW64\oleacc.dll - ok
15:08:45.0517 0x1a1c [ 9DF1DE40A6108BB60F0310A52177B837, BBED8436B0F00702AF7C844CCD88699224E09BD44B4A9E5574053D13C0978655 ] C:\Windows\System32\WinMetadata\Windows.Storage.winmd
15:08:45.0517 0x1a1c C:\Windows\System32\WinMetadata\Windows.Storage.winmd - ok
15:08:45.0517 0x1a1c [ AB3A51D8EF8563FF24BBAE086B7EE315, 03166542AD791E8150094F293F003C27AFBDACB2811EB5B92ACF847025A71748 ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Tips.winmd
15:08:45.0517 0x1a1c C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Tips.winmd - ok
15:08:45.0533 0x1a1c [ EE084595DE6CF800DDE95B0E7C7E0239, FE1D51B3735DC35193EC1CA520FD6E1F9B87DB2944D7C97683A4A272C73A5F7C ] C:\Windows\System32\SyncCenter.dll
15:08:45.0533 0x1a1c C:\Windows\System32\SyncCenter.dll - ok
15:08:45.0533 0x1a1c [ 62D6AF6800CE783C1BB20F51F051C2A3, 319A0D644A62594749D569EE0A6A1472DB34ECF344DEB077EB8D170212D13772 ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.SPA.winmd
15:08:45.0533 0x1a1c C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.SPA.winmd - ok
15:08:45.0533 0x1a1c [ EF72B718EB7F48D58DB26D1E94131EE9, CF3F379F32ECAD50DEA8BAC6DFBB9B648F327CEAA6414C3D60E740DA01A0C26C ] C:\Windows\System32\WinMetadata\Windows.System.winmd
15:08:45.0533 0x1a1c C:\Windows\System32\WinMetadata\Windows.System.winmd - ok
15:08:45.0549 0x1a1c [ E903B32A9DB92993FA0DF3090A707012, C53FF7DB20A4033D77E822808055C11CEC505CEC91FDE1721388698ADE609A39 ] C:\Windows\System32\DictationManager.dll
15:08:45.0549 0x1a1c C:\Windows\System32\DictationManager.dll - ok
15:08:45.0549 0x1a1c [ B8E6AB6F58911BAD71A4D6EEA356159B, D2F320E19375775204C3E2538B221DC216ADC24C28C73689B497DB167E119DA0 ] C:\Windows\System32\EthernetMediaManager.dll
15:08:45.0549 0x1a1c C:\Windows\System32\EthernetMediaManager.dll - ok
15:08:45.0549 0x1a1c [ 7797FF28ADF050C8EAC1D3CEAB19E19A, BF059FFD8AD7F86899B96A33E60DC29CFE9539ECF9F563CE1BC9215A457D36AE ] C:\Windows\System32\WinMetadata\Windows.Web.winmd
15:08:45.0549 0x1a1c C:\Windows\System32\WinMetadata\Windows.Web.winmd - ok
15:08:45.0549 0x1a1c [ E30BE1231813D7FB16259CEA3DFCBBEE, FB086A4FF11E2549DBA7583D4A6D8CAB763421B09143A06C61121B9E51042351 ] C:\Windows\System32\WinMetadata\Windows.UI.winmd
15:08:45.0549 0x1a1c C:\Windows\System32\WinMetadata\Windows.UI.winmd - ok
15:08:45.0564 0x1a1c [ 11D61F8FAD6838FF9E61335E0DADB41E, 8AF49200850A8389EE91E3FA5D33F2851049891890DA3793477A1A14C212C411 ] C:\Windows\TextInput\WindowsInternal.ComposableShell.Experiences.TextInput.LayoutData.dll
15:08:45.0564 0x1a1c C:\Windows\TextInput\WindowsInternal.ComposableShell.Experiences.TextInput.LayoutData.dll - ok
15:08:45.0564 0x1a1c [ 09267268924A2CB0312E62F55591082F, 688CB918BA23CCB0F17A7300997046A59E333BEA7758B4E40AA7B2DEE6F0D58D ] C:\Windows\System32\WlanMediaManager.dll
15:08:45.0564 0x1a1c C:\Windows\System32\WlanMediaManager.dll - ok
15:08:45.0564 0x1a1c [ 07E20601E3DB73763BF8D91AF154FA97, E3EE28952C5ED666C89362FCEE950FCC28938CB859DE00E25EA8D05BB0AB56C6 ] C:\Windows\System32\WindowsInternal.ComposableShell.DesktopHosting.dll
15:08:45.0564 0x1a1c C:\Windows\System32\WindowsInternal.ComposableShell.DesktopHosting.dll - ok
15:08:45.0580 0x1a1c [ 60184AAD5DEBDF6C19605AFD833DA1DB, A5CA767E45EF6AC879F9DEB86B6FF13C7B45878859DF2EC35C8E78DE7FB4E997 ] C:\Windows\System32\WinMetadata\Windows.ApplicationModel.winmd
15:08:45.0580 0x1a1c C:\Windows\System32\WinMetadata\Windows.ApplicationModel.winmd - ok
15:08:45.0580 0x1a1c [ FC0EA2AE97519B6159DB2181B6C608AD, 89F387713FB7CED4958AB5FCC0F04AA2A06DB5EDAC0C6C92110B7D23A452778F ] C:\Windows\System32\imapi2.dll
15:08:45.0580 0x1a1c C:\Windows\System32\imapi2.dll - ok
15:08:45.0580 0x1a1c [ A637ED8FEA76712ABF09C32B5D1C3249, 498E6775CBED7BA46904A801B5949D7F683DE68FBE10A85FAFED84A3CA747450 ] C:\Windows\System32\CapabilityAccessManagerClient.dll
15:08:45.0580 0x1a1c C:\Windows\System32\CapabilityAccessManagerClient.dll - ok
15:08:45.0595 0x1a1c [ 9C6D2F1DFD3B5AF160FD06E45E4A2DE4, E04D0840BF62167F095EE74E8D08DADB6A8FBA0C91CD390CB4D94121A2693E7A ] C:\Windows\System32\bthprops.cpl
15:08:45.0595 0x1a1c C:\Windows\System32\bthprops.cpl - ok
15:08:45.0595 0x1a1c [ 02163E16B1FF20BFADCAFDCB24960233, 8857FCB08671DA65BD537554F0F6B8CE6593A7DB1C696AD91B1FEA6F4B3CC197 ] C:\Windows\ShellComponents\WindowsInternal.ComposableShell.Experiences.Switcher.dll
15:08:45.0595 0x1a1c C:\Windows\ShellComponents\WindowsInternal.ComposableShell.Experiences.Switcher.dll - ok
15:08:45.0595 0x1a1c [ 119428E22976076437DF0EE2A24FC989, BECD18E707ED5ABD7AA0A246CFBE0822C657E9D6D7AE03B9CBA860103FEF0092 ] C:\Windows\System32\TetheringStation.dll
15:08:45.0595 0x1a1c C:\Windows\System32\TetheringStation.dll - ok
15:08:45.0595 0x1a1c [ ACD62A0ADC44658A2C2CDF8CEBC1B795, 6E34A56B4F54896791F3CAD23AD52C1BE7038369F108C1552330378EFE75E236 ] C:\Windows\ShellExperiences\TileControl.dll
15:08:45.0595 0x1a1c C:\Windows\ShellExperiences\TileControl.dll - ok
15:08:45.0611 0x1a1c [ BAB2E875DA50B7A13A0790094ADE3A23, 5F2CEC4C3ED7EFC2D4FD68F16D878E624A6A2E9E779027BDC67C463B81B7E9B5 ] C:\Windows\ShellComponents\TaskFlowUI.dll
15:08:45.0611 0x1a1c C:\Windows\ShellComponents\TaskFlowUI.dll - ok
15:08:45.0611 0x1a1c ================ Scan generic autorun ======================
15:08:45.0674 0x1a1c [ 09F3F2298DDA6EBB57B12C530D35C52C, 48F852164EF4747FCDDFF463034CAD33167E341D241536B122AE74FC8841C941 ] C:\WINDOWS\system32\SecurityHealthSystray.exe
15:08:45.0720 0x1a1c SecurityHealth - ok
15:08:45.0799 0x1a1c [ 5677C8C60F4659E8626AC9036EEF38DF, 1C7D3EC3BCB3E34900DD9556A3EBAF449C68585DC8E07682E680790497105B8B ] C:\Program Files\Classic Shell\ClassicStartMenu.exe
15:08:45.0908 0x1a1c Classic Start Menu - detected UnsignedFile.Multi.Generic ( 1 )
15:08:46.0361 0x1a1c Detect skipped due to KSN trusted
15:08:46.0361 0x1a1c Classic Start Menu - ok
15:08:48.0720 0x1a1c [ 723EB88FCA501ECD191605F5374D0575, 39D7DBBDF5934FA139A177ECB12B418DFFAC43B4BFD9734947876CA8E613516C ] C:\Program Files\Logitech Gaming Software\LCore.exe
15:08:49.0220 0x1a1c Launch LCore - ok
15:08:49.0517 0x1a1c [ 6F2486D8C59DBE40F67B03D7BC834AB9, 90E246C0F6F17A480E4FFE969D697C8013ADC19616DD9618B6FC1191A22EFE3B ] C:\Program Files (x86)\Corsair\M60 Mouse\M60Hid.exe
15:08:49.0595 0x1a1c Corsair M60 Mouse - detected UnsignedFile.Multi.Generic ( 1 )
15:08:49.0861 0x1a1c Detect skipped due to KSN trusted
15:08:49.0861 0x1a1c Corsair M60 Mouse - ok
15:08:50.0345 0x1a1c [ 4C6AAABB264526A9C845A39AEBB79B69, B27F869E8B44CC5F1F9ADCA53AA848C16D706587ED9C7F995AE59BF9B0426523 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
15:08:50.0377 0x1a1c StartCCC - ok
15:08:50.0939 0x1a1c OneDriveSetup - ok
15:08:50.0939 0x1a1c OneDriveSetup - ok
15:08:51.0564 0x1a1c [ 29811477701F98E2E36D892836F8F6F0, 3C7CF91A0A285374CD1472C42958EFED765D94A531F47C28126CE6E6D1BBBFAB ] C:\Users\Zheng Yang\AppData\Local\FluxSoftware\Flux\flux.exe
15:08:51.0611 0x1a1c f.lux - ok
15:08:51.0611 0x1a1c Waiting for KSN requests completion. In queue: 3
15:08:52.0642 0x1a1c AV detected via SS2: Windows Defender, windowsdefender:// ( ), 0x61100 ( enabled : updated )
15:08:52.0830 0x1a1c Win FW state via NFP2: enabled ( trusted )
15:08:53.0439 0x1a1c ============================================================
15:08:53.0439 0x1a1c Scan finished
15:08:53.0439 0x1a1c ============================================================
15:08:53.0470 0x1a14 Detected object count: 0
15:08:53.0470 0x1a14 Actual detected object count: 0

Share this post


Link to post
Share on other sites

Hi Kevin, here is the attached log

15:05:14.0091 0x14b8  TDSS rootkit removing tool 3.1.0.25 Dec 24 2018 06:31:07
15:05:16.0091 0x14b8  ============================================================
15:05:16.0091 0x14b8  Current date / time: 2019/01/06 15:05:16.0091
15:05:16.0091 0x14b8  SystemInfo:
15:05:16.0154 0x14b8  
15:05:16.0154 0x14b8  OS Version: 10.0.17763 ServicePack: 0.0
15:05:16.0154 0x14b8  Product type: Workstation
15:05:16.0154 0x14b8  ComputerName: ZY
15:05:16.0154 0x14b8  UserName: ZYA
15:05:16.0154 0x14b8  Windows directory: C:\WINDOWS
15:05:16.0154 0x14b8  System windows directory: C:\WINDOWS
15:05:16.0154 0x14b8  Running under WOW64
15:05:16.0154 0x14b8  Processor architecture: Intel x64
15:05:16.0154 0x14b8  Number of processors: 6
15:05:16.0154 0x14b8  Page size: 0x1000
15:05:16.0154 0x14b8  Boot type: Normal boot
15:05:16.0154 0x14b8  CodeIntegrityOptions = 0x00000001
15:05:16.0154 0x14b8  ============================================================
15:05:16.0154 0x14b8  KLMD ARK init status: drvProperties = 0xFFFF00, osBuild = 17763.1, osProperties = 0x19
15:05:16.0154 0x14b8  KLMD BG init status: drvProperties = 0xFFFF00, osBuild = 17763.1, osProperties = 0x19
15:05:16.0154 0x14b8  BG loaded
15:05:19.0154 0x14b8  System UUID: {F8226EFE-B91E-939D-A01F-D056A94C2C71}
15:05:22.0091 0x14b8  Drive \Device\Harddisk0\DR0 - Size: 0x15D3EF70000 ( 1396.98 Gb ), SectorSize: 0x200, Cylinders: 0x2C85C, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:05:22.0138 0x14b8  ============================================================
15:05:22.0138 0x14b8  \Device\Harddisk0\DR0:
15:05:22.0170 0x14b8  MBR partitions:
15:05:22.0170 0x14b8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xFA000
15:05:22.0170 0x14b8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xFA800, BlocksNum 0xAAD7A3F9
15:05:22.0326 0x14b8  ============================================================
15:05:22.0560 0x14b8  😄 <-> \Device\Harddisk0\DR0\Partition2
15:05:22.0560 0x14b8  ============================================================
15:05:22.0560 0x14b8  Initialize success
15:05:22.0560 0x14b8  ============================================================
15:05:44.0935 0x1a1c  ============================================================
15:05:44.0935 0x1a1c  Scan started
15:05:44.0935 0x1a1c  Mode: Manual; SigCheck; TDLFS;
15:05:44.0935 0x1a1c  ============================================================
15:05:44.0935 0x1a1c  KSN ping started
15:05:45.0138 0x1a1c  KSN ping finished: true
15:05:51.0340 0x1a1c  ================ Scan BIOS =================================
15:05:51.0355 0x1a1c  BIOS info: vendor = American Megatrends Inc., version = 6.09, releaseDate = 09/07/2010
15:05:51.0355 0x1a1c  Base board info: manufacturer = FOXCONN, product = 2A92 , version = 1.01
15:05:52.0684 0x1a1c  [ 8B91BB353BAFC1AD6D524C57519D550E, 2226168638E87B55AB3C81D0CE619CE2CF77BDEC05D60C5F5487A57AF94E230F ] BIOS
15:05:53.0371 0x1a1c  BIOS - ok
15:05:53.0371 0x1a1c  ================ Scan system memory ========================
15:05:53.0371 0x1a1c  System memory - ok
15:05:53.0371 0x1a1c  ================ Scan services =============================
15:06:07.0228 0x1a1c  1394ohci - ok
15:06:07.0297 0x1a1c  [ 81639B18EB7C4FB1C49B35CCA7F80EE8, 08213BB451D685C68B797FDE827055C013D728D1282F4E18CCBCB2A486997031 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
15:06:07.0799 0x1a1c  3ware - ok
15:06:08.0239 0x1a1c  [ 52166C84DA4BBD0FB70EF15F84D8A5B7, AAAF37C1F8DBEE6B248BB5F6EB51E54BBEF8254494CB531E4CCDBFB596890266 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
15:06:08.0325 0x1a1c  ACPI - ok
15:06:08.0374 0x1a1c  [ C3807173110FCDD0B877D23F5FD28138, EB8D2F7BEC9EEEBDEEBCFB70D3F803DC83A1648A2B9BAC7C1B546D2849945D6E ] AcpiDev         C:\WINDOWS\System32\drivers\AcpiDev.sys
15:06:08.0544 0x1a1c  AcpiDev - ok
15:06:08.0675 0x1a1c  acpiex - ok
15:06:08.0804 0x1a1c  [ 8F56B78F502BA54DF0E7F252D007A33B, 16658B71F45051BD618CCE2865377CED1DA7B694151113D4EA30A5A2A3FB85C1 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
15:06:08.0994 0x1a1c  acpipagr - ok
15:06:09.0214 0x1a1c  [ 6253BFF71CE081511CE362714B21F24F, B40834CF2A59E817E34AFF7CA436FE70AA01B39ED4A0C66FB8D09D50D85B05D6 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
15:06:09.0469 0x1a1c  AcpiPmi - ok
15:06:09.0516 0x1a1c  [ 9E85604FC93AFC1237C29CF9EFA83D60, 2612FB1222B02B0DD8A98C520E758550213BA1EDAC9AD397641228DE12AC5D3E ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
15:06:09.0751 0x1a1c  acpitime - ok
15:06:10.0954 0x1a1c  [ 696A8431DD22EDE385D7AB84E0EAF4C9, E5892B346904C7A392A0B1C8F4C9066BC535A2C70307123C8E1F2157353333F0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:06:10.0985 0x1a1c  AdobeARMservice - ok
15:06:12.0438 0x1a1c  [ 1E56666C11164E0BE83A2330D85D65A9, 5570BDAB57A15E48491517FF6FF7DD02EEC7337F481DFAB66160667B409D3015 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
15:06:12.0782 0x1a1c  ADP80XX - ok
15:06:12.0891 0x1a1c  AFD - ok
15:06:12.0985 0x1a1c  [ 5194BF2FEDA9F6BE6F7691EDA1F910DE, C4DE61BE40BF51F07FE79E840BBF57A7ACBE4D0E14C5FC914A03640FEB58B725 ] afunix          C:\WINDOWS\system32\drivers\afunix.sys
15:06:13.0063 0x1a1c  afunix - ok
15:06:13.0266 0x1a1c  [ AE0B2FAC90C4DF325F24A7BE70CE5609, 9089D3F30F23DA2D031817CD60615CDC6036BA52E1B0F7656939112AD8C62EB5 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
15:06:13.0438 0x1a1c  ahcache - ok
15:06:13.0626 0x1a1c  [ 3D93A13387EE4F6B2D5B6E883E0EA770, 3E17935F169CE91BAF6EDE5832BCAA2AE0DBBBF9F2D70C1BD3A9DA516D47D99C ] ahcix64s        C:\WINDOWS\system32\drivers\ahcix64s.sys
15:06:13.0641 0x1a1c  ahcix64s - ok
15:06:13.0860 0x1a1c  [ 50137D32AACD4D73AC3BC2BBBED9B135, F3BD3ABFFC1BF350B61A640954DD31500968D4E66B73B89153CF29345ECBA727 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
15:06:14.0391 0x1a1c  AJRouter - ok
15:06:14.0485 0x1a1c  [ E67AEB5F9FA81EE896EC3F0EB837BB12, 0EEFD2619D77D7BAFED95197E0C0EF30147ACADDCD81EB2761EE9893FD55F91B ] ALG             C:\WINDOWS\System32\alg.exe
15:06:14.0641 0x1a1c  ALG - ok
15:06:14.0798 0x1a1c  [ BBADD85854BFB5D43C60B7AC8EEA3DBA, 968C043ABEA46F5C79525863B3FE2681AC0FA4202036C9EFD20B408DECF407E2 ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
15:06:15.0079 0x1a1c  AMD External Events Utility - ok
15:06:15.0469 0x1a1c  [ DE51F5BB5C05D4C831ECB6E1A70E1B5E, 465834210ACE469481F75EDBB8532386029BD5277C41D084134E9E71B9BD8371 ] AMD FUEL Service C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
15:06:15.0485 0x1a1c  AMD FUEL Service - ok
15:06:15.0641 0x1a1c  [ F88D3AF78AE83F9206D60ACC8D735DC0, 8F4EE699504060440A63FE0E501212AE834EA04FAC97FA7498B7B22D0244AB23 ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
15:06:15.0688 0x1a1c  AmdK8 - ok
15:06:15.0798 0x1a1c  amdkmdag - ok
15:06:16.0048 0x1a1c  [ 17BA5C907E14947574CBB788F4CEB85F, EAA3DBF436637C58666A91905E388287FC54334EBB2589A00727EB09AC4870E3 ] amdkmdap        C:\WINDOWS\system32\DRIVERS\atikmpag.sys
15:06:16.0110 0x1a1c  amdkmdap - ok
15:06:16.0110 0x1a1c  AmdPPM - ok
15:06:16.0266 0x1a1c  [ 89D675A01B6A4E1AEEB563DD8450E8CD, 663A28936088FF96A695073CC3DDFCEDD44DE3AD76490517E0B2F0EFBE1EA212 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
15:06:16.0360 0x1a1c  amdsata - ok
15:06:16.0407 0x1a1c  [ EFB766859B1A4A14EA65528AAFFD1549, 8F79F9E99E1507A8D1BFF1FF96C609F7A4601BBF8B3F8B7C5815F5F9F9A6BAFD ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
15:06:16.0516 0x1a1c  amdsbs - ok
15:06:16.0579 0x1a1c  [ 1085914F24F74234C16BF12E7BBFC403, B0FF3ACD05539A6392107AB311895F5DE336FD2498231B2EE4DED93425E51A19 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
15:06:16.0594 0x1a1c  amdxata - ok
15:06:16.0688 0x1a1c  [ C3D487827E48CC5EC17994FEC5BDFF87, 5FCEA3EEA583755D0C9F6005ED3032E9DFECB57F504DC67701AE7D2D2631C30E ] AODDriver4.3    C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
15:06:16.0704 0x1a1c  AODDriver4.3 - ok
15:06:16.0860 0x1a1c  [ 056C68D7ED2270EF12990B80A47592B5, CA8E98E3E91A0F90BD3784EAA08B5845838BF66A189BBBDE5CDDF9B792D74304 ] AppID           C:\WINDOWS\system32\drivers\appid.sys
15:06:16.0938 0x1a1c  AppID - ok
15:06:17.0001 0x1a1c  [ C891C2BE30DF2EF1E3769D4EEDB27A9C, 6A2A2FB3B404A317B7AD068DAC6634B6880E34B0A92CEE9898039182F3500074 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
15:06:17.0219 0x1a1c  AppIDSvc - ok
15:06:17.0376 0x1a1c  [ A939CDAB068CF5775E29D8B915042BA2, 7E52E1947D487DB772315DCA0FEB463A994142DFE439468DB31E037248BB4BCA ] Appinfo         C:\WINDOWS\System32\appinfo.dll
15:06:17.0907 0x1a1c  Appinfo - ok
15:06:18.0032 0x1a1c  [ DF8F48328EFA4EFB04CC5528629DE585, 0AF16409D67B85191C25C45A7EC5639C4385E7E34269BE34FF3FD9148E077D9F ] applockerfltr   C:\WINDOWS\system32\drivers\applockerfltr.sys
15:06:18.0126 0x1a1c  applockerfltr - ok
15:06:18.0344 0x1a1c  [ 425280AF4EB1F4A105097A4DEBD84B18, C086F13D778D6B6D98A89B4165C73E0E8268BE34C55054C0A08F99FCB0D1DDDB ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
15:06:18.0516 0x1a1c  AppReadiness - ok
15:06:18.0610 0x1a1c  AppXSvc - ok
15:06:18.0673 0x1a1c  [ F543CC0BDF5EBAF462C77FED31593C3C, 804F8BC178B827F7C975051871FEBBC306FF6834D2BE33F764F73297550FFBFC ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
15:06:18.0719 0x1a1c  arcsas - ok
15:06:18.0766 0x1a1c  AsyncMac - ok
15:06:18.0891 0x1a1c  [ A39C05B19C079401A9AF8A2EF3067B64, D9D2181FDB7EA3356075BCE11B4FA06292BC14AFB122B6E25138EFCDCD7A5AC9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
15:06:18.0907 0x1a1c  atapi - ok
15:06:19.0048 0x1a1c  [ FD9A5BCC3AFB02E87668B749546B6229, 4BE969A11CEE8033F40EDE7E06A5904B328D3FC1842855C0DB38D5EEF458219C ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdWT6.sys
15:06:19.0110 0x1a1c  AtiHDAudioService - ok
15:06:19.0204 0x1a1c  AudioEndpointBuilder - ok
15:06:19.0204 0x1a1c  Audiosrv - ok
15:06:19.0485 0x1a1c  [ E129358A0BE95CBF9EB0742173E72665, 87F2512CF94CFCC735BBF3C5408902BF05015212A2BEAF07C418AB6EF85ABB02 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
15:06:19.0751 0x1a1c  AxInstSV - ok
15:06:20.0204 0x1a1c  [ 2BBDBBA403F23A4197BFB1147AF566C1, 0F9339E2ACB21078187EA033DBBA95C6C87A077FCE82B786D81A429DB7FDF148 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
15:06:20.0407 0x1a1c  b06bdrv - ok
15:06:20.0548 0x1a1c  [ E42AF3C735EFBAB61D00B5101190ACE8, A2088B36CCF6E28E072C471E635CAB153F6D889B41E25642F8943C1A32A54F28 ] bam             C:\WINDOWS\system32\drivers\bam.sys
15:06:20.0594 0x1a1c  bam - ok
15:06:22.0860 0x1a1c  BasicDisplay - ok
15:06:22.0876 0x1a1c  BasicRender - ok
15:06:23.0173 0x1a1c  BcastDVRUserService - ok
15:06:23.0391 0x1a1c  [ 739D089777D2B66DBE7201E5EA4BA2D7, 9AD12E18A042C5B8EFB19297BC2E7BD1FEF75A138FEFB64C6BF0261FD3E53AB1 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
15:06:23.0501 0x1a1c  bcmfn2 - ok
15:06:23.0563 0x1a1c  BDESVC - ok
15:06:23.0641 0x1a1c  [ B02C098721C7A12C959E16850641F783, 93283B4DDBCC56B823DE99DF75302E2F418757ABDA3978EFC7541662145929C2 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
15:06:23.0798 0x1a1c  Beep - ok
15:06:26.0360 0x1a1c  [ 615C34C71FA4637849BB61DE4193C462, A091970578884E12763968CBD876578D3598AFCA784A43A07B1773F006DFB348 ] BEService       C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
15:06:26.0751 0x1a1c  BEService - ok
15:06:26.0844 0x1a1c  BFE - ok
15:06:26.0891 0x1a1c  bindflt - ok
15:06:27.0423 0x1a1c  [ 762E1319019E9E3D61127533FA3F3A07, 465D3592174660D8144B640E0B3ACEAAA607361D112386B34FEAE72FE8AEC009 ] BITS            C:\WINDOWS\System32\qmgr.dll
15:06:40.0173 0x1a1c  BITS - ok
15:06:40.0501 0x1a1c  [ B5704DC9DC9E87DB736DB103456C0E61, 3FEACED6B153D70411410C10B03313A3ED907FC70817A332E968F35A23B5DEEF ] BluetoothUserService C:\WINDOWS\System32\Microsoft.Bluetooth.UserService.dll
15:06:40.0673 0x1a1c  BluetoothUserService - ok
15:06:40.0704 0x1a1c  bowser - ok
15:06:40.0735 0x1a1c  BrokerInfrastructure - ok
15:06:40.0938 0x1a1c  [ 07176C2B95E1E9E6114956084EBAE9AD, 5ABF6645012FA5F73C0752BBA88770E0C7F4E9F8197E24444C7F24CE05857295 ] BTAGService     C:\WINDOWS\System32\BTAGService.dll
15:06:41.0032 0x1a1c  BTAGService - ok
15:06:41.0173 0x1a1c  [ 43F1CDBE6650A2989E1C2F6F02F0E4F1, A909747A78875A4619613FD4313045F8ADA15C5C4E429A0764D8573AE8BA7DF9 ] BthAvctpSvc     C:\WINDOWS\System32\BthAvctpSvc.dll
15:06:41.0282 0x1a1c  BthAvctpSvc - ok
15:06:41.0360 0x1a1c  [ 0A40527B981A83D705B6976E9F3A4236, 7DC9D5798CD60E9E8D2C148E2AD40423FD0AD994E3AF19EC268D62811BAE0E79 ] BthEnum         C:\WINDOWS\System32\drivers\BthEnum.sys
15:06:42.0063 0x1a1c  BthEnum - ok
15:06:42.0204 0x1a1c  [ F8D27297A01AB57929BC3F39E61281DE, 0EED4106B6EA8DD32071309CAB448CA0E8EBE596B2037D836A2F37B54B8C5871 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
15:06:42.0423 0x1a1c  BthHFEnum - ok
15:06:42.0594 0x1a1c  [ ED1393D406757F6533257476F27209E9, 5386EF506AA8400E76885C58CE0F14233556DCCDF4F26191576A9A124D4F2D5A ] BthLEEnum       C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
15:06:43.0376 0x1a1c  BthLEEnum - ok
15:06:43.0610 0x1a1c  [ 1A0AF89F61538B833075FEB438EBC33D, 2E1F4FBBD27A207FE85AFD4C9CB49B894082D4BECEB6C8AD7CFC5CE1564B8B2C ] BthMini         C:\WINDOWS\System32\drivers\BTHMINI.sys
15:06:43.0673 0x1a1c  BthMini - ok
15:06:43.0907 0x1a1c  [ AE60FA63282CFB1825C68D2F44737A1B, A9EB059AAF466F389FCB7AA11B70C15E66547D24885E4F07ADEA9DF3CC12A601 ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
15:06:44.0032 0x1a1c  BTHMODEM - ok
15:06:44.0423 0x1a1c  [ 80CEAA4033F2D4A7DE7BE929CA9BFC8B, C140D981F495724DB5D4631F305FA7E8983B6E588ACEFB779CF6B8EDAC94DA06 ] BTHPORT         C:\WINDOWS\System32\drivers\BTHport.sys
15:06:44.0719 0x1a1c  BTHPORT - ok
15:06:44.0844 0x1a1c  bthserv - ok
15:06:44.0923 0x1a1c  [ 8FA206A2891883E610B8501CF9880F07, F0DA85EC2900906833F18135D0010D1CF393CA9C34AAF7F8434B10898F51A563 ] BTHUSB          C:\WINDOWS\System32\drivers\BTHUSB.sys
15:06:45.0079 0x1a1c  BTHUSB - ok
15:06:45.0141 0x1a1c  [ E0F9E50058E4EA6B1CD7002310B00F0D, 2E8B80A5EBD8C3ED14DC2A6E7EEB710216DFF0D04251D8E452F68E6D35BFC6F7 ] bttflt          C:\WINDOWS\system32\drivers\bttflt.sys
15:06:45.0251 0x1a1c  bttflt - ok
15:06:45.0329 0x1a1c  [ DB01E910747D4AB7B59842AF88D7F86A, 854269A9F47563A9E243101483E9FEB09A7765BCB7B860D38D441519E9719C9E ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
15:06:45.0454 0x1a1c  buttonconverter - ok
15:06:45.0548 0x1a1c  [ F50AFEFFB3DB2BDC549AF4A230A3ADB5, 61E1197A153BA92CAD49F46ECDB76F4EB613BFA875B161C906ABC5CFC939F7C1 ] CAD             C:\WINDOWS\System32\drivers\CAD.sys
15:06:45.0641 0x1a1c  CAD - ok
15:06:45.0719 0x1a1c  [ 20AF2F885AE06DDBB31BF586D0333047, D799851C5B825C8C52FE32A653FA39B287951F885E211231EE79C80BD052FB21 ] camsvc          C:\WINDOWS\system32\CapabilityAccessManager.dll
15:06:45.0798 0x1a1c  camsvc - ok
15:06:45.0876 0x1a1c  [ 7014CEFB8F3652B2AA0533D33D94F936, F0975032BB9DAA0420E2A1A91C34DB5C57F840E127FAF7A5AF775E2602927328 ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
15:06:45.0891 0x1a1c  CapImg - ok
15:06:45.0969 0x1a1c  [ 61E4F7601980AA8396D608EFABF1FAFF, E4887D903F93B829A1DDD8ECA5F9702AA8F546E1D4F6CAA34D2E60CD51BFDE52 ] CaptureService  C:\WINDOWS\System32\CaptureService.dll
15:06:46.0032 0x1a1c  CaptureService - ok
15:06:46.0454 0x1a1c  [ FED9AB89CEA58D22566DBF65DB3A5BDC, 7CA9DA0A52781FBB3A811C851A3A89079FA800B93B767B6B5B88469CA197463C ] cbdhsvc         C:\WINDOWS\System32\cbdhsvc.dll
15:06:46.0532 0x1a1c  cbdhsvc - ok
15:06:46.0579 0x1a1c  cdfs - ok
15:06:47.0126 0x1a1c  [ 72DCA3EF93EAB7A87D3EBE9DD94C959F, B1B37F1EEACCCA08BBF5DF1F55E58899EE18C15773B774034FEFA7794ED56A69 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
15:06:47.0204 0x1a1c  CDPSvc - ok
15:06:47.0298 0x1a1c  CDPUserSvc - ok
15:06:47.0344 0x1a1c  cdrom - ok
15:06:47.0438 0x1a1c  [ 0AA32D46BBEC1509B13FFBFB00C26116, 5B14509A04B3D5DF44A0CC35CFB68F91852C7E0712AD6A10EE5D8930DF62B84A ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
15:06:47.0798 0x1a1c  CertPropSvc - ok
15:06:48.0032 0x1a1c  [ F9BA5E23AAE945513581594BB7A947C1, 730B56EB762AC98C738A7EE740C615F4DCFC5424B29CAD20D69C048D1A601C0E ] cht4iscsi       C:\WINDOWS\system32\drivers\cht4sx64.sys
15:06:48.0063 0x1a1c  cht4iscsi - ok
15:06:48.0126 0x1a1c  [ E37576C5716151B03D9B374D40ECBFA4, 60C6B2CDB194433D1D01022CF91A7FFEDCBA37071DCB77832E0D736BB6152C76 ] cht4vbd         C:\WINDOWS\System32\drivers\cht4vx64.sys
15:06:48.0266 0x1a1c  cht4vbd - ok
15:06:48.0344 0x1a1c  [ C93B6F7C1D03400315AEA8530698FF57, F7C07900C38B7BB4F5DE3D7E2A96D64548FD9DF4DC951B3228FDA31BF7190473 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
15:06:48.0407 0x1a1c  circlass - ok
15:06:48.0501 0x1a1c  [ 769ACDF8CE8BBA378B9D32C123CCE647, 00552779E9CED999E657187D458CA120CE2BDBE804DDA24E88BB11E1A40DFA92 ] CldFlt          C:\WINDOWS\system32\drivers\cldflt.sys
15:06:48.0594 0x1a1c  CldFlt - ok
15:06:48.0594 0x1a1c  CLFS - ok
15:06:49.0751 0x1a1c  [ 08D343C9D37FA5584330714DF6C8A6C1, 546A062DF1244A1228DE60C8EAE49C6AD64021A23F53A3B6B344693C586FF4B5 ] ClickToRunSvc   C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
15:06:50.0751 0x1a1c  ClickToRunSvc - ok
15:06:51.0344 0x1a1c  [ 759E47EE37B5C8368A5CA39F95F3B0B8, 8739D32942C3EF51A2CA629C187A388569FE60C3733FC23E4DE318267040CA4C ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
15:06:51.0391 0x1a1c  ClipSVC - ok
15:06:51.0860 0x1a1c  [ EBD069FB399EE8EAC498D5F9B129AAA5, 021F5755CE0FBFC9373B2B92B128D34AC7D792974DF09F08E4AF8D5A760C58A7 ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
15:06:52.0485 0x1a1c  CmBatt - ok
15:06:52.0719 0x1a1c  CNG - ok
15:06:52.0860 0x1a1c  [ DF2E93BD5CD438688ADAA3AEBFBBDC9F, 3CE7D32A0CB4F7D7E6D6A7DD9900EE665D273C899E6E80A0BD6E2BE2CB875F19 ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
15:06:52.0876 0x1a1c  cnghwassist - ok
15:06:53.0032 0x1a1c  [ 7841121E05EE3D540266092A6E86AE77, 41B0B102769C73694E1BF9D45E59806638591EE9B42F2E1DBF3CFB50D61B5EAD ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_e4d35af746093dc3\CompositeBus.sys
15:06:53.0079 0x1a1c  CompositeBus - ok
15:06:53.0079 0x1a1c  COMSysApp - ok
15:06:53.0094 0x1a1c  condrv - ok
15:06:53.0313 0x1a1c  [ EBD5C968ADCCE803DED93A1B7F6A62BC, DD478D6F8C3473E68666A24C8DED8A508585ED11DF96F9AC022B157FFA4605F5 ] ConsentUxUserSvc C:\WINDOWS\System32\ConsentUxClient.dll
15:06:53.0391 0x1a1c  ConsentUxUserSvc - ok
15:06:53.0688 0x1a1c  CoreMessagingRegistrar - ok
15:06:54.0001 0x1a1c  CryptSvc - ok
15:06:54.0141 0x1a1c  [ 567EBEC0D1127D2E48A68273DF9049B2, 26E9BE8D6F381C56CDD6870FB1ACF28808BE59B0AFF0413CD1961FE8236C87DA ] dam             C:\WINDOWS\system32\drivers\dam.sys
15:06:54.0157 0x1a1c  dam - ok
15:06:54.0235 0x1a1c  DcomLaunch - ok
15:06:54.0407 0x1a1c  defragsvc - ok
15:06:54.0704 0x1a1c  [ 35A20D48D8A84AF8154B47CBCEACBCCC, C98B0EC44813B7B459E233C084FAE2ADA1507B01C236603625EDB3FBDB6B5C35 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
15:06:54.0766 0x1a1c  DeviceAssociationService - ok
15:06:54.0907 0x1a1c  DeviceInstall - ok
15:06:55.0173 0x1a1c  [ 4035C0ECBC2FA54845DBA9D2D732978D, EAE3D556ADDB141D885ED42F52FD08A8E026EAF67B259F17EF2390D033CBF98F ] DevicePickerUserSvc C:\WINDOWS\System32\Windows.Devices.Picker.dll
15:06:57.0611 0x1a1c  DevicePickerUserSvc - ok
15:06:57.0861 0x1a1c  [ B11044B116BC28695B426DFFFB2BA728, C7F019634F5245C51A371691CFD4B996B64091766D401C755560D4B2F91408D0 ] DevicesFlowUserSvc C:\WINDOWS\System32\DevicesFlowBroker.dll
15:06:58.0080 0x1a1c  DevicesFlowUserSvc - ok
15:06:58.0174 0x1a1c  [ D3FB829B5D8A01790661A17D19626290, 38F4FEA427636CE24D2E16B2F8065AD7B244640CF5A6B8F562F5A64BF8956A8F ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
15:06:58.0345 0x1a1c  DevQueryBroker - ok
15:06:58.0392 0x1a1c  Dfsc - ok
15:06:58.0502 0x1a1c  Dhcp - ok
15:06:58.0767 0x1a1c  diagnosticshub.standardcollector.service - ok
15:06:58.0924 0x1a1c  [ F7AD25F7667C1B5C1D681A48AED0FF0F, C48A57E6939885F387EA31B2239B30DD18104C786EB4D94F435E39F6E380685C ] diagsvc         C:\WINDOWS\system32\DiagSvc.dll
15:06:59.0220 0x1a1c  diagsvc - ok
15:06:59.0299 0x1a1c  DiagTrack - ok
15:06:59.0455 0x1a1c  [ CD76072EE8E1E91099ADF566DC4DBC5C, 2F7A53C0FB21D34726F4DB84C286A13DE4B43957D5311726F0470DED3252E83B ] Disk            C:\WINDOWS\system32\drivers\disk.sys
15:06:59.0502 0x1a1c  Disk - ok
15:06:59.0580 0x1a1c  DisplayEnhancementService - ok
15:06:59.0658 0x1a1c  DmEnrollmentSvc - ok
15:06:59.0752 0x1a1c  [ 048980E575F5228248511B3E0ACC1749, E0A3E8D17934DBB82810D2F384DE7A6064EB0CEA7D61F84A7AEBFEDE9BE62AA8 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
15:06:59.0783 0x1a1c  dmvsc - ok
15:06:59.0892 0x1a1c  [ 18286E4DF795E502905EC5218E5726F8, ED78F342355B2D57826BE03CA306F2E36A0C770065043881C44997BC61455458 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
15:07:00.0017 0x1a1c  dmwappushservice - ok
15:07:00.0095 0x1a1c  Dnscache - ok
15:07:00.0220 0x1a1c  [ 7231A7C8515B00D2708EC68B2A792EBE, 0A0787FE435520AE6087B195A36FF0008AF3B71FFA907CC3047C722442A1DC40 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
15:07:00.0283 0x1a1c  dot3svc - ok
15:07:00.0345 0x1a1c  [ 449075E8889DE1D57714B8177457D533, 17E9941BD5B949951270B46C428D72570A54EF219063FB746AC6E5018C2D74E2 ] DPS             C:\WINDOWS\system32\dps.dll
15:07:00.0486 0x1a1c  DPS - ok
15:07:00.0564 0x1a1c  [ B41EDC7CDD2C1F35BB36CD384C3985AB, DF2F6BE9DD5E720D75666991A23860DD39C32EC6D436C336944D59ACBA4F2EA7 ] drmkaud         C:\WINDOWS\System32\drivers\drmkaud.sys
15:07:00.0595 0x1a1c  drmkaud - ok
15:07:00.0689 0x1a1c  [ B440713B9913F70952CD75B776B95E29, 9F3CAD7435675599F456F047BAA0D36004EC25A9237488BC9F6B772CCA473534 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
15:07:00.0752 0x1a1c  DsmSvc - ok
15:07:00.0799 0x1a1c  DsSvc - ok
15:07:00.0799 0x1a1c  DusmSvc - ok
15:07:00.0861 0x1a1c  DXGKrnl - ok
15:07:00.0924 0x1a1c  Eaphost - ok
15:07:01.0845 0x1a1c  [ F314609DBF8A3AA9EA69EF40C7FE7762, C4932C42320782BBEFDD35E235172F24CFB2F4F38924D9C7205D2EFF517FF378 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
15:07:02.0127 0x1a1c  ebdrv - ok
15:07:02.0142 0x1a1c  EFS - ok
15:07:02.0220 0x1a1c  EhStorClass - ok
15:07:02.0283 0x1a1c  [ 2B24FC41E7ED5BB730DDF8D78AA73A52, BC1938CF0B926CDD12EA0DEC57AC0A2E35DFA1FB74A1FFC21BC044A5020839EE ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
15:07:02.0330 0x1a1c  EhStorTcgDrv - ok
15:07:02.0814 0x1a1c  [ 27C0AB2D8630F45877837537367673C5, EAC392F03679F57DD1F6875C9A1F7A8BFF812BCC7242FD9FE9CB3B7997DA298E ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
15:07:02.0970 0x1a1c  embeddedmode - ok
15:07:03.0642 0x1a1c  [ 8402DB01BA4000DF70FC05E8CFF2B91F, 1B86E8986F6C0DE7FD12F33BD9B7ABF494BD402C8C02EC6A04A2B43B62D734BB ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
15:07:03.0939 0x1a1c  EntAppSvc - ok
15:07:04.0283 0x1a1c  [ F7193E7F929653AD4CE636FCFBDBEEDC, 30E2E6192DF43FAE48831132ED43131AED5C14E6F2DA4043AE404F5A965C67AF ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
15:07:04.0564 0x1a1c  ErrDev - ok
15:07:04.0752 0x1a1c  EventLog - ok
15:07:05.0236 0x1a1c  [ 25222B73D463284A85D32A56F002BD62, 94732D9115F65147862D8B06D76AF1E8246E2B0FB8E5AF3D3C7F461B0A4A8483 ] EventSystem     C:\WINDOWS\system32\es.dll
15:07:05.0424 0x1a1c  EventSystem - ok
15:07:05.0486 0x1a1c  exfat - ok
15:07:05.0502 0x1a1c  fastfat - ok
15:07:05.0877 0x1a1c  [ 15BE7070232B1187345AEA3EA27811D2, 02550C0AAD3F86F5C6EFB1F5043C358D78C6D847539755D95672935D974D5AE8 ] Fax             C:\WINDOWS\system32\fxssvc.exe
15:07:06.0392 0x1a1c  Fax - ok
15:07:06.0439 0x1a1c  [ 6CBC38EC80F2976F7EF23602308FA644, 02B0D843D61D8ADE06BCEAE4E721B35E786A088AB96C59D9E579D997948A6527 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
15:07:06.0502 0x1a1c  fdc - ok
15:07:06.0595 0x1a1c  [ B76160030D8254639E5FA949CE00850B, 7B52BF6828F8EEBAA5EC0A7593FC02979F65C916B678F92CBD358E3545AB6314 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
15:07:06.0674 0x1a1c  fdPHost - ok
15:07:06.0720 0x1a1c  [ 8CED235DE8C2F476022E04DEA1AA786B, 38C3663C9837B2135FF08D8B4731241868C371F01093D128A45156BA9C09E267 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
15:07:06.0939 0x1a1c  FDResPub - ok
15:07:07.0127 0x1a1c  [ 738BF8CD600B313FBC40FCDEF5C81550, 3AECE13A40458103A334BF118F1A19220299D5FF59E891819D163FA1D4F6F890 ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
15:07:07.0752 0x1a1c  fhsvc - ok
15:07:08.0033 0x1a1c  [ D64F99DD8480935CDA61ADC66C81FE87, B6DB41FB3D863C53E92BAF60DD6CED702C29594F66673582DA986E7648080E3E ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
15:07:08.0095 0x1a1c  FileCrypt - ok
15:07:08.0158 0x1a1c  FileInfo - ok
15:07:08.0299 0x1a1c  Filetrace - ok
15:07:08.0408 0x1a1c  [ A751D0D8462665969C43337435A26711, FB17F920A000035B392A1CC2FDC1E65816D862AF26D91A261C0A53E2BD0DEDBA ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
15:07:08.0564 0x1a1c  flpydisk - ok
15:07:08.0564 0x1a1c  FltMgr - ok
15:07:08.0705 0x1a1c  FontCache - ok
15:07:09.0455 0x1a1c  FontCache3.0.0.0 - ok
15:07:09.0533 0x1a1c  FrameServer - ok
15:07:09.0580 0x1a1c  FsDepends - ok
15:07:09.0595 0x1a1c  Fs_Rec - ok
15:07:09.0611 0x1a1c  fvevol - ok
15:07:09.0752 0x1a1c  [ 0B7CFD2F8B043740CE20A23B666DE408, DED6E078C59F112922185C7708E0B2E110B284CBA13524AA0E4A72C13DB046C0 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
15:07:10.0049 0x1a1c  gencounter - ok
15:07:10.0345 0x1a1c  [ 4EF5EA4643076475D1B34345FA245930, 2710F015497C3265A52AEDC4FCDD4BEEE68B1DD73B994C2F89980B1B51BC1511 ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
15:07:10.0408 0x1a1c  genericusbfn - ok
15:07:10.0674 0x1a1c  [ DDD204D449710B6A54E42F9630A10A29, 8C18C0E2C32111D2166B36B710FFDB09DA176E6339445F92BA3195AD4987A247 ] GoogleChromeElevationService C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe
15:07:10.0767 0x1a1c  GoogleChromeElevationService - ok
15:07:10.0814 0x1a1c  GPIOClx0101 - ok
15:07:10.0970 0x1a1c  gpsvc - ok
15:07:11.0064 0x1a1c  [ FB0B8778A55ED71728D28E9B3889A11E, CDCBDCB961632C003A6B449C48BF94AFB265CBBD38C50FB51F476A2149C16002 ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
15:07:11.0142 0x1a1c  GpuEnergyDrv - ok
15:07:11.0252 0x1a1c  [ D2133D061486A8AD29234A21F50CEB1E, 42B2DE2BF299E21D711754F39D458E7CAA0E415EB131358929AC75DE72A80199 ] GraphicsPerfSvc C:\WINDOWS\System32\GraphicsPerfSvc.dll
15:07:11.0377 0x1a1c  GraphicsPerfSvc - ok
15:07:11.0861 0x1a1c  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:07:11.0892 0x1a1c  gupdate - ok
15:07:12.0095 0x1a1c  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:07:12.0111 0x1a1c  gupdatem - ok
15:07:12.0174 0x1a1c  HDAudBus - ok
15:07:12.0236 0x1a1c  [ 8BE5EBA8A54B789690B9493BF7DE1DCF, F86A6EBB842C2C52FD479E8690CE2F232A013C9E581CF14FC5F34AD9B794DC09 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
15:07:12.0236 0x1a1c  HidBatt - ok
15:07:12.0299 0x1a1c  [ 34A4E4C0D8DBB733F14CB5B7186B9975, F84112B32780840507A788733E6674EE068D23766C8536578AA8D9959EC3F981 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
15:07:12.0314 0x1a1c  HidBth - ok
15:07:12.0330 0x1a1c  [ 24075C6DA27D05D869C56102E8220E92, 8B184E295A20199DEC0EBABABAFB0A2C84FF00337B78ACE7E9A23C50ABAC5C48 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
15:07:12.0345 0x1a1c  hidi2c - ok
15:07:12.0377 0x1a1c  [ 96FC1329E286E2309AA94D970C962EC7, 287727878DF5F8E8B772756E110BB5534028CD5A9EBF6DC157C3B4FCED90106F ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
15:07:12.0439 0x1a1c  hidinterrupt - ok
15:07:12.0564 0x1a1c  [ 7DFC088DEDC2232C36562CCAAFC26824, 9E041F4E97DA4C779EEB2FFBFB6D5E1AA6DB5F36ABDD9DC308697C1F05144E03 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
15:07:12.0720 0x1a1c  HidIr - ok
15:07:12.0970 0x1a1c  [ 32D8D4EFE2951A14DDD559B91A517053, 126E8E5FCC6593D6199BF30BFEBEBEA83E0D8750A0B682294D9C903B11CF1749 ] hidkmdf         C:\WINDOWS\System32\drivers\hidkmdf.sys
15:07:13.0002 0x1a1c  hidkmdf - ok
15:07:13.0049 0x1a1c  hidserv - ok
15:07:13.0127 0x1a1c  [ 12DB9F4C1ABB1B8F7AC7203C049528CB, 75CD8EEDD6E7873C65DD9D19CFDDCCCAFD18E606A45D12095B5B96816E714813 ] hidspi          C:\WINDOWS\System32\drivers\hidspi.sys
15:07:13.0220 0x1a1c  hidspi - ok
15:07:13.0299 0x1a1c  HidUsb - ok
15:07:13.0767 0x1a1c  [ 8EFE5647D0CDD02A0F456C15D5ECF979, BF376BB5AC7AEDBAA7C3A12105BBAAE128A31A6B1B7528186EFC02BF32C9B847 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
15:07:13.0799 0x1a1c  HpSAMD - ok
15:07:13.0814 0x1a1c  HTTP - ok
15:07:13.0861 0x1a1c  [ F023C1F4A112B912D3625324CAA8B616, 5AEC0E1656CC1AB15926BE9C4474ED7C02B16837EF85E522F42EF018149156DB ] hvcrash         C:\WINDOWS\System32\drivers\hvcrash.sys
15:07:13.0877 0x1a1c  hvcrash - ok
15:07:14.0017 0x1a1c  [ 94C01CBB754697F97452205222B0170E, 6A7332F0248FEB6D53E27F3D3D0ADD8F79BBAFDB7C1E7185171D0014D2548FD2 ] HvHost          C:\WINDOWS\System32\hvhostsvc.dll
15:07:14.0111 0x1a1c  HvHost - ok
15:07:14.0377 0x1a1c  [ FDAA6E61D35A03AB7EA08A8D99845EF3, B82296D484194F3BECAFF0EC49BA61C845B63EB696F21FBE4A8DCC0D4414B01B ] hvservice       C:\WINDOWS\system32\drivers\hvservice.sys
15:07:14.0455 0x1a1c  hvservice - ok
15:07:14.0564 0x1a1c  [ 07C51C8E403121E63E3F7CC2B19840A6, D6766B59B6952EA3F23205F19B0C9D8615821B77D1B1F24A289C83E9A0F76862 ] HwNClx0101      C:\WINDOWS\system32\Drivers\mshwnclx.sys
15:07:14.0627 0x1a1c  HwNClx0101 - ok
15:07:14.0674 0x1a1c  hwpolicy - ok
15:07:14.0924 0x1a1c  [ 2B8FD5359FB5A1FA2EE9504D53C0D286, FF419ACCC15D44341B95D24CB0BEF009D3F3356CA29FEB802973705A888240A5 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
15:07:15.0049 0x1a1c  hyperkbd - ok
15:07:15.0080 0x1a1c  [ D2BCEA4C0513E098277F10CCBAC8FAF2, 6F53F9D0E0A3C46A7DBF76092254F0ECE9343B3EABA89845CF5F08B35DBBFE48 ] HyperVideo      C:\WINDOWS\System32\drivers\HyperVideo.sys
15:07:15.0236 0x1a1c  HyperVideo - ok
15:07:15.0267 0x1a1c  [ 7EF070F21CAB7E8DC906F9CA8516CE5B, 810BC30C63F954BC5E612C53B6F51FDEC6AFFBE932F0332B63FE02A6987521EF ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
15:07:15.0377 0x1a1c  i8042prt - ok
15:07:15.0424 0x1a1c  [ 9E5AECAB5F05218D9AC923E7CEA1CE15, FAAA46F22944E043A90AE6E9F0F86AF187FC2819C563DA375B2A409347BB2C35 ] iagpio          C:\WINDOWS\System32\drivers\iagpio.sys
15:07:15.0439 0x1a1c  iagpio - ok
15:07:15.0486 0x1a1c  [ 48EDB9B5DAB7D294951A520330F13715, 9296A14590DFD94A3C728CAF3CA91BA211F27974F9CFF8417CDDC00D1453315C ] iai2c           C:\WINDOWS\System32\drivers\iai2c.sys
15:07:15.0736 0x1a1c  iai2c - ok
15:07:15.0783 0x1a1c  [ 6C3EDE394C71D5A67A504F55E35B6F47, 6FF5D13EF69E8FBCB4772C7B5C4D5770C78E0B29F9164FA1611EFDE91CE876BE ] iaLPSS2i_GPIO2  C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys
15:07:15.0924 0x1a1c  iaLPSS2i_GPIO2 - ok
15:07:15.0955 0x1a1c  [ 806D14CEAF25E5F2DFCBA8E7E33B86BB, 2141DE558461B592D4111A0388D1AAC8062FA72CD1E2A2D2D68279A9633288E9 ] iaLPSS2i_GPIO2_BXT_P C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys
15:07:16.0049 0x1a1c  iaLPSS2i_GPIO2_BXT_P - ok
15:07:16.0095 0x1a1c  [ 87DDDAE1693484BD0A210C877BDA00C2, E353D90D0B79A70F976FD5EA1CB7E25A97835E25116962EA035424715B2F43FE ] iaLPSS2i_GPIO2_CNL C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys
15:07:16.0174 0x1a1c  iaLPSS2i_GPIO2_CNL - ok
15:07:16.0205 0x1a1c  [ 8D3E3C431367E3BA632B4396CA662E1A, 71FDC25244298D62A335769D6ED43394C33FBD8DB05AA54CA924A2977F37858F ] iaLPSS2i_GPIO2_GLK C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys
15:07:16.0267 0x1a1c  iaLPSS2i_GPIO2_GLK - ok
15:07:16.0377 0x1a1c  [ 149F1260537C4F68C3F67C363B62F3C5, 3F1F9EC7571D0F82D3F5BBA298965491260708F05EBAAA2CC23483521A5FF079 ] iaLPSS2i_I2C    C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys
15:07:16.0470 0x1a1c  iaLPSS2i_I2C - ok
15:07:16.0611 0x1a1c  [ 3E641E905A6DBF29CBA1E72BBE349808, BF354297A55713D9E2DD4044D42810C007733EE54D5A80D58B96DD279D92C716 ] iaLPSS2i_I2C_BXT_P C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys
15:07:16.0674 0x1a1c  iaLPSS2i_I2C_BXT_P - ok
15:07:16.0720 0x1a1c  [ B78D6AF79045B0DAB58596AF75037516, F99CAA667A832173BE4C879712360937BF7267CEAF88D5C4798A500861E4018A ] iaLPSS2i_I2C_CNL C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys
15:07:16.0814 0x1a1c  iaLPSS2i_I2C_CNL - ok
15:07:16.0908 0x1a1c  [ 2ED3B41C7CB4101ACB15D84D8AB5AA9D, A92487129B81376471C842B9932FF3A7B3ABBBB89797978E3FDEAF71A6FD5E3F ] iaLPSS2i_I2C_GLK C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys
15:07:17.0033 0x1a1c  iaLPSS2i_I2C_GLK - ok
15:07:17.0127 0x1a1c  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
15:07:17.0158 0x1a1c  iaLPSSi_GPIO - ok
15:07:17.0220 0x1a1c  [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
15:07:17.0314 0x1a1c  iaLPSSi_I2C - ok
15:07:17.0408 0x1a1c  [ 42B660654149FB181E49EA160808D3BC, 99AA2499C8D9CAF17BCDC49766DD559E2086EE065552D6A59B0DC86113EF956A ] iaStorAVC       C:\WINDOWS\system32\drivers\iaStorAVC.sys
15:07:17.0517 0x1a1c  iaStorAVC - ok
15:07:17.0674 0x1a1c  [ E47022690D960CA022F0ADAD3CEE7028, 8AB7613067A9A12302819B54AC0590F159467EADD761958D2E60D2D830845886 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
15:07:17.0720 0x1a1c  iaStorV - ok
15:07:17.0939 0x1a1c  [ 1382FAA11F64E6AEE553D6889DC2ED2C, 6D29EF889244DA8F2F22A4253D8AED7275CEA361B73A12BF6DC3AA3C25238180 ] ibbus           C:\WINDOWS\System32\drivers\ibbus.sys
15:07:18.0033 0x1a1c  ibbus - ok
15:07:18.0095 0x1a1c  icssvc - ok
15:07:18.0236 0x1a1c  IKEEXT - ok
15:07:18.0361 0x1a1c  [ 3B0C7978321F691DCA332A3A30D3D34D, 73004FF12CAB74ACD9C6059FF42EC02E2930693E61200094B0192ECC230DDB41 ] IndirectKmd     C:\WINDOWS\System32\drivers\IndirectKmd.sys
15:07:18.0470 0x1a1c  IndirectKmd - ok
15:07:19.0361 0x1a1c  [ 2E8DB0FC5D0A8D70ED1953A1BB8C6810, 719B2A9B3269541B40E4D2997CFC266795312E4C922F190BA6E8EB5079A0F04D ] InstallService  C:\WINDOWS\system32\InstallService.dll
15:07:19.0564 0x1a1c  InstallService - ok
15:07:20.0955 0x1a1c  [ C2F868881D48A568B525255F084EF063, EFB1704AE223CF886EDA5F1411C8178EDE4B5E1F7EE373E3DA89A6EA1A57D91D ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
15:07:21.0033 0x1a1c  IntcAzAudAddService - ok
15:07:21.0205 0x1a1c  [ 9E3EFA9EC7C87D20706E7A545773415A, 955AC981EDA18678074B82EB30746723F1FF3C818EF650C0E6A13B87275A6F33 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
15:07:21.0299 0x1a1c  intelide - ok
15:07:21.0439 0x1a1c  [ 1FD5F56938424E3D437F2DD7FFE68A58, 2750FFF4AEF0E01F318CB6A45AB970EF087523879EE7E4C391A1C9C195EC9064 ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
15:07:21.0470 0x1a1c  intelpep - ok
15:07:21.0595 0x1a1c  [ 84BD903F361891CB3C3CEB1DA5198130, 8F3A77CE673A43B996BD257B755A158E76E4BABCBB5475C7764104242004F529 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
15:07:21.0674 0x1a1c  intelppm - ok
15:07:21.0705 0x1a1c  iorate - ok
15:07:21.0783 0x1a1c  [ A25F081BFDB86B48AAF36C4BAA398466, 04C6CD091ACED90A2905A6CE13E62BC6116F1E999316D49B352BB389B2848378 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:07:21.0830 0x1a1c  IpFilterDriver - ok
15:07:22.0017 0x1a1c  [ 70124ABD0EA0C710F1F10706E2FDE73D, 6547675909355D3CAC10C2FC86BF10FA8AD75334C15277762A5457FD54A75E69 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
15:07:22.0049 0x1a1c  iphlpsvc - ok
15:07:22.0205 0x1a1c  [ EC972A6A764579EF04D28D70675D11A9, 29084F5114C3C231B62F4946D48ABF2A6C4DECB58944E71A3E32E0CA1C9D77D2 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
15:07:22.0314 0x1a1c  IPMIDRV - ok
15:07:22.0549 0x1a1c  [ CEC63D8B8E7A525233D2AEE19EF9A5A8, CA2EDA41764FEC2B243E3B6E2C0A228A252D49F7271E5EFE328EDF7AB2E2D36F ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
15:07:22.0689 0x1a1c  IPNAT - ok
15:07:23.0002 0x1a1c  [ 22896D7BC9E2B0027DF0CA860E9547C8, 50607E9B752B03289893EF9F4882A10C560E8A3413A237D890697FC25545DFC5 ] IpOverUsbSvc    C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
15:07:23.0002 0x1a1c  IpOverUsbSvc - ok
15:07:23.0127 0x1a1c  [ 5AAD8A0ABC294C7A547F1C903AC04716, 8A841A2A563682CE93777348E0CCFFA856FA11689D4F4897C6100A26D5795AD2 ] IPT             C:\WINDOWS\System32\drivers\ipt.sys
15:07:23.0314 0x1a1c  IPT - ok
15:07:23.0470 0x1a1c  [ 77C6BD7E7524D80F5BC6E1BF7E21FD14, 4510699C3794E2AE4C1998F14C81500AAD0D7A91D463880C9FBAB8B3A9381D93 ] IpxlatCfgSvc    C:\WINDOWS\System32\IpxlatCfg.dll
15:07:23.0564 0x1a1c  IpxlatCfgSvc - ok
15:07:23.0674 0x1a1c  [ 35FD8315E03C4B5FB4C81B3F5AA6793E, E44B043729352F6958A394830214473F36C0AE778E214B62DF692D3BFBE6B95E ] irda            C:\WINDOWS\system32\drivers\irda.sys
15:07:23.0799 0x1a1c  irda - ok
15:07:23.0877 0x1a1c  [ C48B4FD5F9D4A0AEF69A691558BF30A4, 530B40A6B5FA47B2532959B307A1A11F551AFD92E3C869B20EAA54B8B797E089 ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
15:07:24.0017 0x1a1c  IRENUM - ok
15:07:24.0127 0x1a1c  [ CA956BB7374CB74F5CADD56DF7039AC3, 99D62C73D5D4E125B1C7D4528D55700A61696817CFB38627D6B5F62993DF02A0 ] irmon           C:\WINDOWS\System32\irmon.dll
15:07:24.0158 0x1a1c  irmon - ok
15:07:24.0236 0x1a1c  [ 6FC797BC9152E34D3C1C1AB6F7C3FD33, ADC311D9420A92AD6A114DAAFD1A299D60CA63B1AE39E78B5FF79630F69C5C63 ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
15:07:24.0424 0x1a1c  isapnp - ok
15:07:24.0611 0x1a1c  [ E9013D05C43A68E4820540D413569415, 0C767747001653FCAD95487B254DF3C1EF179152C093E7E13369CF07CA55F857 ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
15:07:24.0674 0x1a1c  iScsiPrt - ok
15:07:24.0767 0x1a1c  [ 08E5CBEAC1E11CBB4A27823F031B7E61, E24DD7C25B8B694FC495D17E61C9AEA0FA2AC8EC04E53E1C3F120D306A18A2FF ] ItSas35i        C:\WINDOWS\system32\drivers\ItSas35i.sys
15:07:24.0845 0x1a1c  ItSas35i - ok
15:07:24.0908 0x1a1c  kbdclass - ok
15:07:24.0955 0x1a1c  kbdhid - ok
15:07:25.0049 0x1a1c  kdnic - ok
15:07:25.0049 0x1a1c  KeyIso - ok
15:07:25.0174 0x1a1c  KSecDD - ok
15:07:25.0189 0x1a1c  KSecPkg - ok
15:07:25.0205 0x1a1c  ksthunk - ok
15:07:25.0252 0x1a1c  [ 50AC18BB0C9B6097076001A96D1838B5, 63A6B5A94756D328BA1F5BB0B479792FE56DDE0905AEE7D5AA0D60CC6EFF2E82 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
15:07:25.0392 0x1a1c  KtmRm - ok
15:07:25.0439 0x1a1c  LanmanServer - ok
15:07:25.0517 0x1a1c  LanmanWorkstation - ok
15:07:25.0752 0x1a1c  [ CDEFD75D8A313646B7073C0BCDA5855C, D7DDEB545C9B3898B01AC495E90116C0CE2B803183D4623A8F29B5996EFD5F44 ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
15:07:26.0127 0x1a1c  lfsvc - ok
15:07:26.0314 0x1a1c  [ A6F294B38F3DFB67D6B6E1D1E60A402A, 11C51B35DB2A3510258F3B722C12326BF068360CFA1E81FF552BA0BD19DE38E8 ] LGBusEnum       C:\WINDOWS\system32\drivers\LGBusEnum.sys
15:07:26.0345 0x1a1c  LGBusEnum - ok
15:07:26.0924 0x1a1c  [ 2D7F1C02B94D6F0F3E10107E5EA8E141, 93B266F38C3C3EAAB475D81597ABBD7CC07943035068BB6FD670DBBE15DE0131 ] LGCoreTemp      C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys
15:07:26.0924 0x1a1c  LGCoreTemp - ok
15:07:27.0002 0x1a1c  [ 2A9F60E6531F42B31874618743037719, BFD61AD03ADEF69421ECB07820EDB79D425048EC01A65A0D1E8A4527699196DC ] LGJoyXlCore     C:\WINDOWS\system32\drivers\LGJoyXlCore.sys
15:07:27.0002 0x1a1c  LGJoyXlCore - ok
15:07:27.0064 0x1a1c  [ FA59A7421049F5852C1182345A4B8C4F, 6E7DFBF8382187E01CA0AE9CB7A175B563DA6807909A8A7E67779C045F290A06 ] LGVirHid        C:\WINDOWS\system32\drivers\LGVirHid.sys
15:07:27.0064 0x1a1c  LGVirHid - ok
15:07:27.0220 0x1a1c  [ 112EFD0CCFA2994491F4D877D2DBA582, 0641E880FF37DE20A212CAB5D848FD8A7C1AF31F0180CE62AC0A4AE249460B8E ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
15:07:27.0424 0x1a1c  LicenseManager - ok
15:07:27.0642 0x1a1c  [ 91563B08A4FF7013420A14A1446264AE, 75A537094EEBF79C1E383D03016E6A4ACA6019BF78D8E86370A67CC50D49D606 ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
15:07:27.0767 0x1a1c  lltdio - ok
15:07:28.0095 0x1a1c  [ DBFDAB4925BA2D54DC7C840EADDC64EC, 87C47E69465E27615918E49835C0E51E81B63EE65CDA35D338281ECE90FE694D ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
15:07:28.0424 0x1a1c  lltdsvc - ok
15:07:28.0517 0x1a1c  lmhosts - ok
15:07:28.0627 0x1a1c  [ CEDF1C2E1AE31E63C4F83F8486F59E53, A5D2420B62F2478A97CFC72BE0F17996CCABDC9EB77ADAF57C66E7D29F5CC0C9 ] LogiRegistryService C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
15:07:28.0642 0x1a1c  LogiRegistryService - ok
15:07:28.0814 0x1a1c  [ 1BBADB9591080518596B9E57E6867DA9, F661E647C0352D2B73B73F63203150A9E9E23DC8361E1CFEC93DD1238E9E7182 ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
15:07:29.0095 0x1a1c  LSI_SAS - ok
15:07:29.0377 0x1a1c  [ 7C1D1CB733DE28F7D15D69C5112B983D, 5D6090AEC77BECA54E130950FD6F84D7F4B711A98417F808B67814F30DD8C24C ] LSI_SAS2i       C:\WINDOWS\system32\drivers\lsi_sas2i.sys
15:07:29.0564 0x1a1c  LSI_SAS2i - ok
15:07:29.0642 0x1a1c  [ C18F1929FB5594233CCA71FC624428FF, 971B3A1E09C96A8988C254E89F6B3ACE11988E5DE470E3F104854A7FBFAA435C ] LSI_SAS3i       C:\WINDOWS\system32\drivers\lsi_sas3i.sys
15:07:29.0720 0x1a1c  LSI_SAS3i - ok
15:07:29.0752 0x1a1c  [ 4D322612CB0E3E8DFFDE8B78A5CAA841, 08ED922DB3C413C1352881B193E0F53FEB67E2F1BEA1D4FD8FD94C8ABDE5CC7C ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
15:07:29.0799 0x1a1c  LSI_SSS - ok
15:07:30.0064 0x1a1c  LSM - ok
15:07:30.0299 0x1a1c  [ 03D9EDE1E96D1D158BD984D88B1095CC, 95FCF42C00F0D96704526387F722D64444FA49EE8F2DA192FCA2B02FAB2608BA ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
15:07:30.0533 0x1a1c  luafv - ok
15:07:30.0924 0x1a1c  [ 5508D816271F24857897497F109E11C9, 0CE87E67EC4E7172DFFB030D86529B8F845276EC194644603413D38A58BAA0AC ] LxpSvc          C:\WINDOWS\System32\LanguageOverlayServer.dll
15:07:31.0142 0x1a1c  LxpSvc - ok
15:07:31.0283 0x1a1c  [ 10967D62F419CA0EB6EB9DA57D91286B, E7C6A3003104D07E9F62C3580AC89973DD9F27D0250FA50177180026B0BC0D4C ] MapsBroker      C:\WINDOWS\System32\moshost.dll
15:07:31.0517 0x1a1c  MapsBroker - ok
15:07:32.0017 0x1a1c  [ CBC57FDBD22DD92B3B7B71DC44304301, 92EFEA89370B21823000F2E3E27C05A640BC0D18EF556075735E5D47587A258C ] mausbhost       C:\WINDOWS\System32\drivers\mausbhost.sys
15:07:32.0330 0x1a1c  mausbhost - ok
15:07:32.0517 0x1a1c  [ 4C71C550AC2CD9E0201BCBFCF19DB0D7, E3C19F74A6E5D62D6ED8181BDD9C2381B402EB5D0A9268FD844221FBD61B6A0A ] mausbip         C:\WINDOWS\System32\drivers\mausbip.sys
15:07:32.0627 0x1a1c  mausbip - ok
15:07:34.0424 0x1a1c  [ ECB760B2391608BA4E0A7987ADA70CCF, 03B39EA56CD46666CFA8467AA246A63924C0F4AACD27E51FD5E1192000B4A577 ] MBAMService     C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
15:07:34.0705 0x1a1c  MBAMService - ok
15:07:34.0845 0x1a1c  [ CB258766E99AB3B57E6FDF32177804A2, 61833AF290A3E10B0ABF9773625C1DD89B337D8F65BC6650B5BBB7393B77652B ] MBAMSwissArmy   C:\WINDOWS\System32\Drivers\mbamswissarmy.sys
15:07:34.0861 0x1a1c  MBAMSwissArmy - ok
15:07:34.0986 0x1a1c  [ 5EA3D977905D88627B5667E761C51F50, 9E1FC38E5D472E3CB8C18589CB2DB563AA3AE01601438F77D7BACE80EBE19B6C ] MbbCx           C:\WINDOWS\system32\drivers\MbbCx.sys
15:07:35.0205 0x1a1c  MbbCx - ok
15:07:35.0314 0x1a1c  [ 7DC0311FA450D54C5D345CE19778EA8A, 20A900FBC9173D33E979A71CACC6C6731441BCD557FED984350A76EACD1DEB00 ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
15:07:35.0361 0x1a1c  megasas - ok
15:07:35.0455 0x1a1c  [ 660C8651E6D9A15062A497364CA4A329, 7649FC916BD15EE0712746EA12C7BF4BCA32D548FDED61917B874B4D28B7B808 ] megasas2i       C:\WINDOWS\system32\drivers\MegaSas2i.sys
15:07:35.0517 0x1a1c  megasas2i - ok
15:07:35.0549 0x1a1c  [ 329C1C69386412444D05C82A6062F9AD, 4D08C62AC493C93B6175A97EA43BF71C8F0AA1D7D665069E09FA0A343C6C0A27 ] megasas35i      C:\WINDOWS\system32\drivers\megasas35i.sys
15:07:35.0564 0x1a1c  megasas35i - ok
15:07:35.0611 0x1a1c  [ E8DDD6B4FB2F20780B41B117F689A44E, 53338D67D74AC5911057516C8078C4FC613DC79AC2FA60971C242ACA07568452 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
15:07:35.0705 0x1a1c  megasr - ok
15:07:35.0783 0x1a1c  [ EAB4B99D5C81402572A410AEDB1590BE, 5F2553F9297601701168B0DA3C21121CFC555E95DFD08DCDB67535E2978C3812 ] MessagingService C:\WINDOWS\System32\MessagingService.dll
15:07:35.0845 0x1a1c  MessagingService - ok
15:07:35.0908 0x1a1c  [ 9089316A8C1D2F4A604470DFD1B6865D, 2D2A06AB057F6BAE9B8C94108EF7575C953A1BF8F0E978BBBB0DC583805D4A17 ] Microsoft_Bluetooth_AvrcpTransport C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys
15:07:36.0064 0x1a1c  Microsoft_Bluetooth_AvrcpTransport - ok
15:07:36.0283 0x1a1c  [ 9117B78500C6A09F16EDC604ABD71F38, E1C861C6ED185099D1ACBA47027C4E604837E7A802AA5620D7A5866C5EAEAD3D ] mlx4_bus        C:\WINDOWS\System32\drivers\mlx4_bus.sys
15:07:36.0408 0x1a1c  mlx4_bus - ok
15:07:36.0439 0x1a1c  MMCSS - ok
15:07:36.0533 0x1a1c  [ 5F37CEDED43E3816BA38809E062134E1, B48192982D67124952D93B18608BB229E9B5F538BBD5CF18485E7DD34901B4FE ] Modem           C:\WINDOWS\system32\drivers\modem.sys
15:07:36.0611 0x1a1c  Modem - ok
15:07:36.0658 0x1a1c  [ 753917AE790F884EE62D5E1F8EBFCC44, 73413CF9BE955A794172086B842B07B7E293896D11428425544A6899631DC2D2 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
15:07:36.0689 0x1a1c  monitor - ok
15:07:36.0736 0x1a1c  mouclass - ok
15:07:36.0752 0x1a1c  mouhid - ok
15:07:36.0752 0x1a1c  mountmgr - ok
15:07:36.0892 0x1a1c  [ 96959E7C586523B04F54C867B242E35C, 91B021EC1A776FE273496CDA385B42438F597BEF62010BB41D25BBEB809EC0F7 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:07:36.0939 0x1a1c  MozillaMaintenance - ok
15:07:36.0986 0x1a1c  mpsdrv - ok
15:07:36.0986 0x1a1c  mpssvc - ok
15:07:37.0080 0x1a1c  [ E7219627FF618544FEAF5CE61D99581B, 06C01AA68F24BD9AA0244C8BC5DFF8FBAAC90F03A10D61C3FD303C771FF1972B ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
15:07:37.0174 0x1a1c  MRxDAV - ok
15:07:37.0299 0x1a1c  mrxsmb - ok
15:07:37.0314 0x1a1c  mrxsmb20 - ok
15:07:37.0455 0x1a1c  [ 7D44193A9ABD39FD7D7427414B845855, 108B55E3EA6966A99A5D830A0027815A3DF9F099B0E2245DC071BA3540CB1EA7 ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
15:07:38.0017 0x1a1c  MsBridge - ok
15:07:38.0174 0x1a1c  [ 7215CE218BDEAD41B708F098258CF972, 1EAB4B9691E9EFA1DA02BDCB84035F65EDA4B525E5AEE925A6E1E4107F8E4F31 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
15:07:38.0267 0x1a1c  MSDTC - ok
15:07:38.0314 0x1a1c  Msfs - ok
15:07:38.0408 0x1a1c  [ 07B8BAF680467BAB0607245E68D59805, 4AE5F1A910A30A38AF7C2972DC8AE256556C4C707BD1EFE6F0742E509769F569 ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
15:07:38.0455 0x1a1c  msgpiowin32 - ok
15:07:38.0486 0x1a1c  mshidkmdf - ok
15:07:38.0705 0x1a1c  [ 05F3DCB8F90EF90C59E616F1D4C7585D, 4CB648627AD33CC0A693FE0792852A22217A4E24D36F36D364397733EB03BA08 ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
15:07:38.0783 0x1a1c  mshidumdf - ok
15:07:38.0814 0x1a1c  [ E64484CBBEF329B919D9E78B8CB58CF5, EA30BDC77BEDBFBE839A51E3B65458D79B289E17F15C90113C02675DB4A4AFB8 ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
15:07:38.0845 0x1a1c  msisadrv - ok
15:07:38.0986 0x1a1c  MSiSCSI - ok
15:07:38.0986 0x1a1c  msiserver - ok
15:07:39.0017 0x1a1c  MSKSSRV - ok
15:07:39.0142 0x1a1c  [ 6479443BB89DBAC3BBCE9C2517EFAD0D, D0AFDD114C5B8A9D2C880D258CED9E99187B21836BDB004003B44E33042B6710 ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
15:07:39.0580 0x1a1c  MsLldp - ok
15:07:39.0580 0x1a1c  MSPCLOCK - ok
15:07:39.0595 0x1a1c  MSPQM - ok
15:07:39.0627 0x1a1c  MsRPC - ok
15:07:39.0689 0x1a1c  mssmbios - ok
15:07:39.0705 0x1a1c  MSTEE - ok
15:07:39.0814 0x1a1c  [ DA4A165EFD14AB23DC9210A806252B41, 1EAD85D06D6E9668994AEFFE50670AC9341851AD010AFD2612431D4903F0A32D ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
15:07:39.0908 0x1a1c  MTConfig - ok
15:07:39.0939 0x1a1c  Mup - ok
15:07:40.0142 0x1a1c  [ 724459B4B727662A5F69A12AD31FC197, AFA2C1AB9F966440D149CA337B47B5E9730DB4560D45DC02C3E559A5C7FE2F3B ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
15:07:40.0205 0x1a1c  mvumis - ok
15:07:40.0283 0x1a1c  NativeWifiP - ok
15:07:40.0642 0x1a1c  [ 7A0872F5645541A1CD1879199B0489E2, DBF8B309A5F74794FBAE6BD07DA62ED17C2ED81B236DD39FF87AAA282A11FB02 ] NaturalAuthentication C:\WINDOWS\System32\NaturalAuth.dll
15:07:40.0845 0x1a1c  NaturalAuthentication - ok
15:07:40.0970 0x1a1c  [ 20FAE1EACA6E5E9D1B940D7578CA4499, CE88E5F2597577D3670E8B59D95E801CD0D5CBF98CA770DFCE52A910D17847AF ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
15:07:41.0439 0x1a1c  NcaSvc - ok
15:07:41.0627 0x1a1c  [ 0E7C317DD9F8E46E0C90B88A3C536BA6, 89750450EA6C7D2C0E80B97D621613F471BE55086A7FFA3DFC80A39A064F74D2 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
15:07:41.0658 0x1a1c  NcbService - ok
15:07:41.0924 0x1a1c  [ 136B0632385280CA2ED8F9E5D17167AB, D7E688083EB80195EA1DC1E7770EAD5425903E9B83EB7E013709376ECBEF5CCA ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
15:07:42.0424 0x1a1c  NcdAutoSetup - ok
15:07:42.0549 0x1a1c  [ 1599EAB4DC6DE373BC57F768A6AE770F, 8D4571CF78EF6BAAFA4C096475FA96B31E6BA7CE6B57CBFC3187668C5EA393A4 ] ndfltr          C:\WINDOWS\System32\drivers\ndfltr.sys
15:07:42.0627 0x1a1c  ndfltr - ok
15:07:42.0674 0x1a1c  NDIS - ok
15:07:42.0861 0x1a1c  [ 10D7989C206DFB0CB7AF85C38EE323D3, 2AEE5C3652115E5069A1FF929EE47B19A91F52E3534BC9CD8020FB769A34226C ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
15:07:42.0939 0x1a1c  NdisCap - ok
15:07:43.0189 0x1a1c  [ D51A226E5E7803894596683F6E0DC5B6, 58F62ADED2BD53EB939D9E3F70B4E569D56EFE52B569DB5027A7B8F564872163 ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
15:07:43.0299 0x1a1c  NdisImPlatform - ok
15:07:43.0345 0x1a1c  NdisTapi - ok
15:07:43.0361 0x1a1c  Ndisuio - ok
15:07:43.0377 0x1a1c  NdisVirtualBus - ok
15:07:43.0392 0x1a1c  NdisWan - ok
15:07:43.0392 0x1a1c  ndiswanlegacy - ok
15:07:43.0408 0x1a1c  ndproxy - ok
15:07:43.0533 0x1a1c  [ 5DFB139945F70FA15CAF7F3929B932AD, 3F7789FD0B00E95FB98F7952317E7993FA66CACF4FFD847068F0447ECEA1B811 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
15:07:43.0611 0x1a1c  Ndu - ok
15:07:43.0642 0x1a1c  NetAdapterCx - ok
15:07:43.0720 0x1a1c  NetBIOS - ok
15:07:43.0767 0x1a1c  NetBT - ok
15:07:43.0830 0x1a1c  Netlogon - ok
15:07:43.0877 0x1a1c  Netman - ok
15:07:44.0064 0x1a1c  netprofm - ok
15:07:45.0564 0x1a1c  [ A3F8BF8193D36C4C8CEF20AFF28411E9, E6C6321820AFB4D3ABF2DAF894EFE0E8FC308F5DE6F9FE2FFE56F89A319C8C0E ] netr28x         C:\WINDOWS\System32\drivers\netr28x.sys
15:07:45.0658 0x1a1c  netr28x - ok
15:07:45.0814 0x1a1c  NetSetupSvc - ok
15:07:46.0720 0x1a1c  [ 65EA3086C7F28BA5982043D2491B8856, 7EBB32B3609E340231E626DCB2F3443A9FC38F75ECCF2A9AD699CB689B45A1DD ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:07:47.0174 0x1a1c  NetTcpPortSharing - ok
15:07:47.0377 0x1a1c  [ C0AD5C89FA61DD92E40BDD9A802C9DC6, F36D7137423BDA3F84B8706ED8EA9BBAD31A5855C558F4268B9D43124F65123F ] netvsc          C:\WINDOWS\System32\drivers\netvsc.sys
15:07:47.0408 0x1a1c  netvsc - ok
15:07:47.0580 0x1a1c  [ 56C91F8EA5C83A5AFE83AACF2586B875, C5133D74E03D36A888980319B864FE4D4F8E97AD26BEB1B11285B06646507C66 ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
15:07:47.0627 0x1a1c  NgcCtnrSvc - ok
15:07:47.0970 0x1a1c  [ 7963A81757459412B08C6DD6A72D5FC1, C47DD7D9953D4FDE0D3CCB895A2FBD7D46C9EEA33E1D96C010F078B515EDED0A ] NgcSvc          C:\WINDOWS\system32\ngcsvc.dll
15:07:48.0033 0x1a1c  NgcSvc - ok
15:07:48.0127 0x1a1c  NlaSvc - ok
15:07:48.0189 0x1a1c  Npfs - ok
15:07:48.0189 0x1a1c  npsvctrig - ok
15:07:48.0220 0x1a1c  nsi - ok
15:07:48.0236 0x1a1c  nsiproxy - ok
15:07:48.0299 0x1a1c  Ntfs - ok
15:07:48.0377 0x1a1c  Null - ok
15:07:48.0486 0x1a1c  [ E52627112D11E7F96879FA0245902209, 2BBA54409E4F0F0D540B5588AEF8B3B173A2E4862DCFCBEB1C50512B2BD5F505 ] nvdimm          C:\WINDOWS\System32\drivers\nvdimm.sys
15:07:48.0642 0x1a1c  nvdimm - ok
15:07:48.0814 0x1a1c  [ BE048641E0F24F422B8A269AC3CBDA83, 45D817F51ED15C30065B13C33DF97E97EA2DAA2FDD676853B8B7CBE3BCF1F364 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
15:07:48.0908 0x1a1c  nvraid - ok
15:07:49.0064 0x1a1c  [ 1D08E2FFF4F950CF303B981C97D921D6, 01F6B7B9A272474D474389368ECE2BDE35AB9149B872D1C35300B6F5567E197B ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
15:07:49.0111 0x1a1c  nvstor - ok
15:07:49.0361 0x1a1c  [ 43C9CCAA6BE7AED7E2957A7FCFB4AC54, 9DACC5C8EF3035D8249AA96162485FEC2A45E14370B3A79D3945A42CB98E857A ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
15:07:49.0720 0x1a1c  OneSyncSvc - ok
15:07:49.0814 0x1a1c  [ 9B4003B4FE073422F459A2AD37B20FE2, 3480C3F8B0F4DFC4AF457C0BED2E145869FB785336663B7985D6C7FE98B702C0 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:07:49.0955 0x1a1c  ose - ok
15:07:50.0064 0x1a1c  [ 2B7F843E9FD1CFD5F1DAA523B2573698, F7F1F89E9C4D3D6856F52C9AF7D3DCE12AF22A116888BE0AD4E724D2E73B1A04 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
15:07:50.0142 0x1a1c  p2pimsvc - ok
15:07:50.0299 0x1a1c  [ 3B28A64AC649EA67E9946BDFE8EF513A, 1F3A57BC1864DC73C28326001F1D3140C11E111BD3F4F13F28FD5A047D17ED75 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
15:07:50.0377 0x1a1c  p2psvc - ok
15:07:50.0439 0x1a1c  [ 838C9F2D2EB6D29776AF1AC78B4AA1D7, A7DB9612DFB3E584AF21FD3740599C94377B6540175B29B701881E1DBE32E7B1 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
15:07:50.0470 0x1a1c  Parport - ok
15:07:50.0486 0x1a1c  partmgr - ok
15:07:50.0720 0x1a1c  [ FB953BD1C9B60607B9CBEE70EAFC7ABA, 826F58BBD984DFD89C8FF0DF36CA6198C427BF03C1DD4E24F56101452770C2AE ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
15:07:50.0752 0x1a1c  PcaSvc - ok
15:07:50.0830 0x1a1c  [ F80F7733ACC0D15AA4E959173E16D6C8, EE7A453C6EF09D148C91A34927077CF155092984A9A87B33BF8883494CF5BA1B ] pci             C:\WINDOWS\system32\drivers\pci.sys
15:07:50.0861 0x1a1c  pci - ok
15:07:51.0033 0x1a1c  [ D72B9224E91AD87B88ABAFE5B8E1885A, E95AD1D64C45663DC0C14FDD9D8DF72520E2150374307208C9A138B835D08DBE ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
15:07:51.0080 0x1a1c  pciide - ok
15:07:51.0127 0x1a1c  [ F0638A0AB447F0A46D36F28E8F817AAC, 21A8A15C2BB61E3DCB4D6AA5D9AA4671A7103E92F901FA06EDB8C9B9ED64731C ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
15:07:51.0174 0x1a1c  pcmcia - ok
15:07:51.0174 0x1a1c  pcw - ok
15:07:51.0205 0x1a1c  pdc - ok
15:07:51.0470 0x1a1c  [ E4518C35D159A468A789AB216A03AE8C, 09D3B2B0021AB47C36BF7784DAE62EC1C90FA94AC4E276D17D7D51C9EE624D63 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
15:07:51.0517 0x1a1c  PEAUTH - ok
15:07:51.0642 0x1a1c  [ 51EC6CBC4A2B1C82A60A742D52F7B5EB, 7B5583BFA1184142ECBA28948B5DD2083A09C5D262841CEA7B5AEE9695293413 ] perceptionsimulation C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe
15:07:51.0814 0x1a1c  perceptionsimulation - ok
15:07:51.0845 0x1a1c  [ B289D34C47978B8AB473BF19DB66BB91, C5A74F05461AB7F19159B6E7DF98E1680F5F0818B49D017931E5F7E6FA718D8F ] percsas2i       C:\WINDOWS\system32\drivers\percsas2i.sys
15:07:51.0877 0x1a1c  percsas2i - ok
15:07:51.0892 0x1a1c  [ 446B72ACD460A1B8C46DA7FF2F018A82, E2D81AFF592E2246B55ED1ABDD4E781BD4013A35DC7707D2CE7A02216E08A778 ] percsas3i       C:\WINDOWS\system32\drivers\percsas3i.sys
15:07:51.0924 0x1a1c  percsas3i - ok
15:07:52.0595 0x1a1c  [ CC037C3D8F265E65F7200D9665D653FD, 68654262029A6F62DEE7F9D296A69A99DD6811C7AA6056DE40CE34440D4513CE ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
15:07:55.0220 0x1a1c  PerfHost - ok
15:07:55.0267 0x1a1c  PhoneSvc - ok
15:07:55.0361 0x1a1c  [ 68594C1DBB617C2F9669016DE4B5BA78, AC1DD7E295BDD08543482A20A4D3337A7D989C7DB4A3D882BFE6C7F2E2E03616 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
15:07:55.0439 0x1a1c  PimIndexMaintenanceSvc - ok
15:07:55.0486 0x1a1c  [ 5CD0064D4642934BC5979EF8135180DC, 1386D93FBDF7E8C801688C853073D8632B2CF57F4B7CEEE6F31AE160FE6D0892 ] PktMon          C:\WINDOWS\system32\drivers\PktMon.sys
15:07:55.0564 0x1a1c  PktMon - ok
15:07:55.0845 0x1a1c  [ 8ADDEE39782CBEB49B4C3A8E9AA2DF56, 28A24A90C618E6004F32A20A2B13D0FAF3D71D1977FC2A1EF94A0585E318FD0F ] pla             C:\WINDOWS\system32\pla.dll
15:07:56.0095 0x1a1c  pla - ok
15:07:56.0127 0x1a1c  PlugPlay - ok
15:07:56.0236 0x1a1c  [ DA8CB2643EDD2DA82BB804A8712796D0, 42CC179F77264DE2F7BD654AF220587F68A265BAF7CCC50A94427A10F5D569AE ] pmem            C:\WINDOWS\System32\drivers\pmem.sys
15:07:56.0314 0x1a1c  pmem - ok
15:07:56.0361 0x1a1c  [ BE7468019B1731CA2FAA030C13DB1913, 8AA97FB41C4EDE3586784266CDEF3B2A71962667DEB713E1BB57BE8C1B78554A ] PNPMEM          C:\WINDOWS\System32\drivers\pnpmem.sys
15:07:56.0439 0x1a1c  PNPMEM - ok
15:07:56.0642 0x1a1c  [ 142CF57538077D313B4B6226D2F7AFE3, BAA1D2550529F259DCF2CCDECC8592271D4B7CD2365196AD99D75DB0CE7865B8 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
15:07:56.0736 0x1a1c  PNRPAutoReg - ok
15:07:56.0799 0x1a1c  [ 2B7F843E9FD1CFD5F1DAA523B2573698, F7F1F89E9C4D3D6856F52C9AF7D3DCE12AF22A116888BE0AD4E724D2E73B1A04 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
15:07:56.0814 0x1a1c  PNRPsvc - ok
15:07:56.0861 0x1a1c  PolicyAgent - ok
15:07:56.0877 0x1a1c  Power - ok
15:07:56.0892 0x1a1c  PptpMiniport - ok
15:07:57.0642 0x1a1c  [ 66A0B1A55F21A275B7D5DECD295BD92A, 03295C986A204DF13CB38ABA4A0790A463FAC8BACAF37E9D2B072AB16D6AD129 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
15:07:57.0877 0x1a1c  PrintNotify - ok
15:07:57.0986 0x1a1c  [ 3BEDBD3B2544074AB63F646618853A94, 5B8A97453021906CCDAF27E65B16933ECACB38F22CA88106A676C5AC7CEB4ADC ] PrintWorkflowUserSvc C:\WINDOWS\System32\PrintWorkflowService.dll
15:07:58.0002 0x1a1c  PrintWorkflowUserSvc - ok
15:07:58.0158 0x1a1c  [ 738FD8811518AC7A630A277BF1CCF389, 56738AA6D1B44040EC205DEB0D5D51B41B7A6D7DB8335FCDF8ADC69063E73EB6 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
15:07:58.0236 0x1a1c  Processor - ok
15:07:58.0267 0x1a1c  ProfSvc - ok
15:07:58.0408 0x1a1c  [ 14D167238A8C42EA8E951A5A956DEF42, 91C1406818442D9C3C4CEF8C908DEFD49C213D86489782722B5E17A90F8B2136 ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
15:07:58.0439 0x1a1c  Psched - ok
15:07:58.0549 0x1a1c  [ 9507F059F53CA14F496C025AF536EE95, AC994FAB7BBCC1EB8D630644B19C6906BF77EEB8E7CFEFC11F0EDC1E3CFABD44 ] PushToInstall   C:\WINDOWS\system32\PushToInstall.dll
15:07:58.0611 0x1a1c  PushToInstall - ok
15:07:58.0736 0x1a1c  [ 1CCA2B375CD44A6A0389B9288F60E96D, ECEE1937E181FFB29E34EB8FDA38EC588C40A6A6481E3F369A6E341FACAD9727 ] QWAVE           C:\WINDOWS\system32\qwave.dll
15:07:58.0799 0x1a1c  QWAVE - ok
15:07:58.0877 0x1a1c  [ 4DAB92FD311B9F841EE40EF7B967DF8E, F46E4842EC1F8F6DBD0A8B6548EB2B3639148DB4F79775EB6D28FDC8A8135868 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
15:07:58.0970 0x1a1c  QWAVEdrv - ok
15:07:59.0017 0x1a1c  Ramdisk - ok
15:07:59.0017 0x1a1c  RasAcd - ok
15:07:59.0408 0x1a1c  RasAgileVpn - ok
15:07:59.0486 0x1a1c  RasAuto - ok
15:07:59.0517 0x1a1c  Rasl2tp - ok
15:07:59.0549 0x1a1c  RasMan - ok
15:07:59.0564 0x1a1c  RasPppoe - ok
15:07:59.0611 0x1a1c  RasSstp - ok
15:07:59.0689 0x1a1c  rdbss - ok
15:07:59.0814 0x1a1c  [ 76C18F3B4EB5BC611FA7F249CF676911, 2EB981688FCCB1F6ABF0C4300DFD7CBB495899A9D0461F91C5054AF173AC34F3 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
15:07:59.0892 0x1a1c  rdpbus - ok
15:08:00.0017 0x1a1c  [ 1AEE22C5FBF18F53C47AC4373F0DB542, 640D23BEEA33B2C25A0981BBE9234D9F1FAE23DCE12A9B41C018532A5F8C8369 ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
15:08:00.0095 0x1a1c  RDPDR - ok
15:08:00.0174 0x1a1c  [ 0631645A1C5196BA5D5AC6C186CF55FA, 45F56CFD5C9A8482A48B98161E4B7DBAF32BF33E47411E371222C80466975E3A ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
15:08:00.0205 0x1a1c  RdpVideoMiniport - ok
15:08:00.0252 0x1a1c  [ 88FC2D00DE5A999E29B8FD432DE3A071, 0B1ABAB0AE1E6398D6E17A018FB6FD05703DDFA8C59F20A52D3C028ECD3404A4 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
15:08:00.0299 0x1a1c  rdyboost - ok
15:08:00.0345 0x1a1c  ReFS - ok
15:08:00.0392 0x1a1c  ReFSv1 - ok
15:08:00.0595 0x1a1c  [ C76CBDE7EBE13EA8D51FDA3EF3EB22C1, A8B41AE79E4DFD73C596B999AADB0F842A4D299F76656CC453AE6FD4A27FB862 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
15:08:00.0689 0x1a1c  RemoteAccess - ok
15:08:00.0908 0x1a1c  [ 7D58DC151856B3474B160B7ABD2B1C96, 6228C9F0006D009E240568FDFE2AD21625EFEC5D7F55AAAE2846657709AA4F29 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
15:08:00.0986 0x1a1c  RemoteRegistry - ok
15:08:01.0142 0x1a1c  [ 1DA817E5217CD0C05DE9EE377E059705, 70AF029D76B2FB439D88618434C21C380A64E32CCE39E0EA1A8CBD60EE23EABE ] RetailDemo      C:\WINDOWS\system32\RDXService.dll
15:08:01.0220 0x1a1c  RetailDemo - ok
15:08:01.0361 0x1a1c  [ D8D7FEED713C25F089CE0768C266EAA1, C404ED841D47E0041CF7CB2E7DAC99FC383655297BBB50247C1EE7757DC7FCFD ] RFCOMM          C:\WINDOWS\System32\drivers\rfcomm.sys
15:08:01.0424 0x1a1c  RFCOMM - ok
15:08:01.0486 0x1a1c  [ DF8FE557182A7B2C2D7ED893A04A63E9, 40416F2843E18F725BFA08CB9E5A025826A05015AB52F9CC42912A8C2820B8D6 ] rhproxy         C:\WINDOWS\System32\drivers\rhproxy.sys
15:08:01.0533 0x1a1c  rhproxy - ok
15:08:01.0642 0x1a1c  [ 65C2ADC8A39C3F0D77FA611B4053EC4D, 8B6E3DC6CD7D2719385EBA112CA20D6909D2DC2F631ECBE46956F30DCD69F4DA ] RmSvc           C:\WINDOWS\System32\RMapi.dll
15:08:01.0799 0x1a1c  RmSvc - ok
15:08:01.0830 0x1a1c  RpcEptMapper - ok
15:08:01.0908 0x1a1c  [ A0DD6042F7734F61D55D6A62D60FE498, 8B5743D4ACF8C571F039F83464672306D9F899E4C8512FAB9538807C43DF4A67 ] RpcLocator      C:\WINDOWS\system32\locator.exe
15:08:01.0955 0x1a1c  RpcLocator - ok
15:08:01.0986 0x1a1c  RpcSs - ok
15:08:02.0064 0x1a1c  [ 7936E95FFEA1758638715C6465B2A739, 6F8582EF105FC5B35A086F8433E0D08BF1D8955986835A9C94CC509D7BB6809C ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
15:08:02.0127 0x1a1c  rspndr - ok
15:08:02.0220 0x1a1c  rt640x64 - ok
15:08:02.0314 0x1a1c  [ FC7A59A1AA07632AF8E9DC254918F879, 5B10D3CD2767466D47598F962575583DEEDAD44EB9BEACCF5A1952CAB4F2C6A4 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
15:08:02.0361 0x1a1c  s3cap - ok
15:08:02.0424 0x1a1c  SamSs - ok
15:08:02.0549 0x1a1c  [ 9C7CECCEED1FF5818CD5A118258EE0C5, E0658C00A54AAC2BC245BF688D1C02D4C7E5F69C91C2ED92EDCA00C8A7785095 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
15:08:02.0611 0x1a1c  sbp2port - ok
15:08:02.0705 0x1a1c  [ 92FB066DF4943FDDC571CD9EE434B390, 45BD7E3610CA078268D1B224596EA5A9D361CF9B3CB2C97F4EADEC3B82318806 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
15:08:02.0767 0x1a1c  SCardSvr - ok
15:08:02.0830 0x1a1c  [ 0713B90453D4D465F67DEF4A2FC8EFB5, C04D14A53BA8823485DCC1B9DB215B04621AD89920BB1E4667E98E7AB1CF5101 ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
15:08:02.0908 0x1a1c  ScDeviceEnum - ok
15:08:02.0970 0x1a1c  [ EFBD152E3DBA02D06C7D2FF1E034919B, 8F346C7A7D743436636EFB321F24873A3F4B764681D05C82D1B30D2D18EDC5BD ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
15:08:03.0049 0x1a1c  scfilter - ok
15:08:03.0049 0x1a1c  Schedule - ok
15:08:03.0095 0x1a1c  [ 6274ED5017EEFE775FDDF9082271472E, 3E2C6F47D68C0C69F7A4CC87288A2C4F06C1708B633FC173C09C36776B069A12 ] scmbus          C:\WINDOWS\system32\drivers\scmbus.sys
15:08:03.0127 0x1a1c  scmbus - ok
15:08:03.0205 0x1a1c  [ 0AA32D46BBEC1509B13FFBFB00C26116, 5B14509A04B3D5DF44A0CC35CFB68F91852C7E0712AD6A10EE5D8930DF62B84A ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
15:08:03.0252 0x1a1c  SCPolicySvc - ok
15:08:03.0502 0x1a1c  [ 1A3CFA3494AEDDEB5E4B044D89B53C43, A5BEE5B7E42A57A89861B9B7AEA6E48DB4C6387EABE2C2A8FCDBA4ACCD491D76 ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
15:08:03.0611 0x1a1c  sdbus - ok
15:08:03.0705 0x1a1c  [ 1E7ECD63D209EE5CE02E582CA8918023, 49AA1B53FC2C670EA1D6A393BB4DF8EAB3A3373231E38DD3B930CE4A097774DD ] SDFRd           C:\WINDOWS\System32\drivers\SDFRd.sys
15:08:03.0720 0x1a1c  SDFRd - ok
15:08:03.0783 0x1a1c  [ 5443C69569DB315B5015DD8E9004071B, 805A50808F24F2CFDF506BFAAC78AE4768AF5098D157FD7A6493F958C170D8B3 ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
15:08:03.0830 0x1a1c  SDRSVC - ok
15:08:03.0861 0x1a1c  [ 7B58DD1E1CF8E1AE2A22C8CFFBDA3DB3, B0537D68865860AEC80BB22AD1E308549EB710CD76CECEA5AFAB35A14664C210 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
15:08:03.0892 0x1a1c  sdstor - ok
15:08:03.0939 0x1a1c  [ F3F8232DF651CFC4DBCF4C5BAB61CFCC, F1555CA0D23D9FC065AF0D02355AFECEA9161029B402F74016B3F69E0BEBAD09 ] seclogon        C:\WINDOWS\system32\seclogon.dll
15:08:04.0033 0x1a1c  seclogon - ok
15:08:04.0127 0x1a1c  [ 6C294BA4F53127DF5060D3DD057A2DCA, F185B8492341D7248E683CA3ED5F386D3ECB24D53AB2B2F201A343B40537AF85 ] SecurityHealthService C:\WINDOWS\system32\SecurityHealthService.exe
15:08:04.0158 0x1a1c  SecurityHealthService - ok
15:08:04.0455 0x1a1c  [ DB10A49052B94A7D55B5A60E7F18CC36, 6E633AC158FAADAB55908B029BA516B3D7C9FCFF3DCA555510024B4C8992B282 ] SEMgrSvc        C:\WINDOWS\system32\SEMgrSvc.dll
15:08:04.0549 0x1a1c  SEMgrSvc - ok
15:08:04.0580 0x1a1c  [ EE711439FD0F1293B43F0FE195E5C073, 9F96ACC449D72C08212756E422C2037F82C2135CCD0907E00EB16582F0AB1A6D ] SENS            C:\WINDOWS\System32\sens.dll
15:08:04.0627 0x1a1c  SENS - ok
15:08:04.0767 0x1a1c  [ E77A116240C022634504C54ACA876E62, 071E545DAAE61B9ADED9D889BF4E8D953D825C1203793F9B4C09E02550544216 ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
15:08:04.0861 0x1a1c  SensorDataService - ok
15:08:05.0017 0x1a1c  [ 0BB8E709234B5309556A4B6A7C26ABA6, 4D900CF49FB662000D37D27BE28F1905B4F0F1E51D9829DD89A65487A2613517 ] SensorService   C:\WINDOWS\system32\SensorService.dll
15:08:05.0080 0x1a1c  SensorService - ok
15:08:05.0205 0x1a1c  [ 03CC1E13F3FB31E17FE97392DA2AD74B, DA8CD92DB96537EAFE6336385237E7DCA4E0CE4ED5F3A7AA021B734B0A0585FA ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
15:08:05.0299 0x1a1c  SensrSvc - ok
15:08:05.0361 0x1a1c  SerCx - ok
15:08:05.0361 0x1a1c  SerCx2 - ok
15:08:05.0424 0x1a1c  [ 51B9B16E99B1EF7D2107629DB8C4B578, 0DFBEA7E446970D451442A6DF8F40C5FB79AD2CE7F839FE280CC18AC8A891C4B ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
15:08:05.0502 0x1a1c  Serenum - ok
15:08:05.0549 0x1a1c  [ 6D581AD1593B35711075886F153A8BAE, 82F5046E5895DB263A0CD7E820EC9595FE260220A6B5C2BA10C2308C2D8B9DD8 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
15:08:05.0564 0x1a1c  Serial - ok
15:08:05.0580 0x1a1c  [ 43E10E093B3249C78D649A4096271AA0, 74284C115D819FE573628680604905870334882EFFBA1E4B659F85E639BA6AFD ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
15:08:05.0611 0x1a1c  sermouse - ok
15:08:05.0720 0x1a1c  [ 9EE7998CF17E4059B9857B9C37361C2F, 36A284E48EA20B7C9110B89F8DB281EC5444A1A645FC6BCCDFDB04B1F271C295 ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
15:08:05.0799 0x1a1c  SessionEnv - ok
15:08:05.0814 0x1a1c  [ BDDF94AB15E77B54ED2CC60CCCE8F922, C09071A73F5BF81A39DC4B5619854EB34FFB40AAFFD2719493CE79FF2F49BAA3 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
15:08:05.0861 0x1a1c  sfloppy - ok
15:08:05.0908 0x1a1c  [ 01D980C33003B078324E3FE032C8A42A, EC90E67A2D5055FB6792D28B0CCFE3A47F2D3EBD8C643966DD857C289F2E26A3 ] SgrmAgent       C:\WINDOWS\system32\drivers\SgrmAgent.sys
15:08:05.0924 0x1a1c  SgrmAgent - ok
15:08:05.0986 0x1a1c  [ 1760AE8C5D731819A4BB1CF0448AC57C, FFFC540EAB0035A188E47B8F2FA25BBE0C367A97B459BC0C440651388DD42647 ] SgrmBroker      C:\WINDOWS\system32\SgrmBroker.exe
15:08:06.0002 0x1a1c  SgrmBroker - ok
15:08:06.0127 0x1a1c  [ DBDD7F9912067B099485E1B428CCF17F, C5BFDD192EAAC8FFA8C0EE9C5FBB719EB739518A0635DC5CBA42F52AB7EFEFA9 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
15:08:06.0220 0x1a1c  SharedAccess - ok
15:08:06.0361 0x1a1c  [ DF00D18142A1A3315A264521D8E3801A, EF3281ABA12B51B5BC431369553B281CB553DC36D1BC8A08D027CF22D0EE7036 ] SharedRealitySvc C:\WINDOWS\System32\SharedRealitySvc.dll
15:08:06.0533 0x1a1c  SharedRealitySvc - ok
15:08:06.0705 0x1a1c  [ 7BB985D3D68A423CE05E007B14E225AB, 1FCA633889F61B7F18C2FCDF401846EE3B34E1EDFE8D428700DC45CE3F45E5BD ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
15:08:06.0799 0x1a1c  ShellHWDetection - ok
15:08:06.0892 0x1a1c  [ 82BE61D6660F4259606371E73027AAEA, 14E6F055491EA5CCE49AE4C37D664F778B4325EB761B55251F156B8E90190E76 ] shpamsvc        C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
15:08:07.0064 0x1a1c  shpamsvc - ok
15:08:07.0142 0x1a1c  [ 8C61B219882C9C9ECA09BEDB82B0DDB1, 711681040D9CD93D603F55AB8D62371F5D51917C14818F27859E23E2D60EB18F ] silabenm        C:\WINDOWS\System32\drivers\silabenm.sys
15:08:07.0783 0x1a1c  silabenm - ok
15:08:07.0877 0x1a1c  [ 12E42E20BC0ABF8FC2AA5D13609ED0E7, 9E32D5541A5A637EA186BCE44F87FB63E8B2E58E03B1B85FD754565534D31754 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
15:08:07.0892 0x1a1c  SiSRaid2 - ok
15:08:07.0924 0x1a1c  [ E156CB3AAF1E2C397A8F93EA9ACD8290, EF6F424AEE3E66476937D86E3BCDF00323A49F7E23085AEC407769F1C7E07B0C ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
15:08:07.0939 0x1a1c  SiSRaid4 - ok
15:08:07.0955 0x1a1c  [ CFFE219F9CA183C40AA5D44DC26E6F2D, D87D149808A1F7D40E8363AF5B3A314D39D883582AF42C9F827E47336BAC38B7 ] SmartSAMD       C:\WINDOWS\system32\drivers\SmartSAMD.sys
15:08:07.0986 0x1a1c  SmartSAMD - ok
15:08:08.0017 0x1a1c  smphost - ok
15:08:08.0158 0x1a1c  [ 827088445274D2F1660750C4E71A5DEF, 3549E3CF6778E2B3999989F2335B0D6DB11DF2D8FA64AF4F01D80B5B31B77FF5 ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
15:08:08.0252 0x1a1c  SmsRouter - ok
15:08:08.0330 0x1a1c  [ 58983BFDDDB09E21AF8F3BA3EC45FC7D, 9CFC867BECEC3E1FCE830526108F7A7C3E9B0E2FC001EE6CDE6E49C956F781E9 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
15:08:08.0377 0x1a1c  SNMPTRAP - ok
15:08:08.0455 0x1a1c  [ AB03DDEBFEEFB55E50CAE58B52A4BFA7, 6377DD20D76D324D00FD876F71BC21491F7C9D037A9EFC916DE3E6E16DE0EF00 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
15:08:08.0517 0x1a1c  spaceport - ok
15:08:08.0595 0x1a1c  [ 7EFD2145C9AD88BD2528E4DC91D55A04, B3E60C6D8118F65BFDA87A4560A093B836F3A5FC501CC1F86A93116E83772216 ] SpatialGraphFilter C:\WINDOWS\system32\drivers\SpatialGraphFilter.sys
15:08:08.0642 0x1a1c  SpatialGraphFilter - ok
15:08:08.0674 0x1a1c  SpbCx - ok
15:08:08.0752 0x1a1c  [ 1609C84BD8592CFF07225C088859480B, FB85FAD33E989F58345632E9FC022447032A5F476E3233F03345D322831263BD ] spectrum        C:\WINDOWS\system32\spectrum.exe
15:08:08.0830 0x1a1c  spectrum - ok
15:08:09.0049 0x1a1c  [ B54A80B1A307CE44C843EDD080FEA03E, BC7F9F33041C4594B25FF937F385C6E8A6BA870D25F781283C2147BB80A60919 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
15:08:09.0127 0x1a1c  Spooler - ok
15:08:09.0158 0x1a1c  sppsvc - ok
15:08:09.0205 0x1a1c  srv2 - ok
15:08:09.0252 0x1a1c  srvnet - ok
15:08:09.0330 0x1a1c  [ 06B6E9408BCE355CE4DA24FD7609F93C, 3BFA6EBED16F8CF5D4798B2BC9B028F58DC05FDD4276EFE31E190C201C6D5C9D ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
15:08:09.0455 0x1a1c  SSDPSRV - ok
15:08:09.0611 0x1a1c  [ 9FFECD197D09FF33B00D5E5B78A48146, 79C03E83B42E3C0402680B47A2493C3C506E2D212062859BD7C4EBACA46F3AD5 ] ssh-agent       C:\WINDOWS\System32\OpenSSH\ssh-agent.exe
15:08:09.0783 0x1a1c  ssh-agent - ok
15:08:09.0814 0x1a1c  SstpSvc - ok
15:08:10.0095 0x1a1c  [ D41B7D3152E4ED1A32FA8939A828BAF7, E89B5C8392AA3458D998673835DF79DFAFA110F2F2E3E3A747B079C7C07A4C6C ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
15:08:10.0236 0x1a1c  StateRepository - ok
15:08:10.0517 0x1a1c  [ 9B49D456415FBB6388D4CAE4F45F22F8, 514FCB3AA100DDA568C4DE136401DEBBF17C233264C0F6019B79CDE0E2F85213 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
15:08:10.0580 0x1a1c  Steam Client Service - ok
15:08:10.0705 0x1a1c  [ CE0F176C7C3DC2AEA1C75EF6A7583B67, 7BB6CB17DCC58268D823FD76BFB8FFB68C5D4AFFDE5D0050F8DDFCBBA4E04F23 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
15:08:11.0205 0x1a1c  stexstor - ok
15:08:11.0299 0x1a1c  [ 697B0D4078F0F70AC4829B4EBA0538B1, 52C51705ADD389342D89AD4E872F9F844EBB5EFE4A29A1824AA534EDBDEC7724 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
15:08:11.0408 0x1a1c  stisvc - ok
15:08:11.0470 0x1a1c  [ 9DA9203768E6961AB5DB302DAF9D3347, B16936F26D1243FE34573EFE9215E530A31E9ACA5E3289F3BED3FA50375C8B3C ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
15:08:11.0549 0x1a1c  storahci - ok
15:08:11.0658 0x1a1c  [ 6CC21AB292E58758F151456D0ED3A628, D2D6FCEABFE57965F5AB7BCF0F6A11178D78221FEB5C1D57C79D6B4BDD6E50FC ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
15:08:11.0720 0x1a1c  storflt - ok
15:08:11.0767 0x1a1c  [ C79111F77A97F2D966BCF628CECAE893, 86E90DEAC9F1D623E03F48969004B79AB0A18B01279FAA49DA759CE1DC75EE37 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
15:08:11.0799 0x1a1c  stornvme - ok
15:08:11.0845 0x1a1c  storqosflt - ok
15:08:12.0033 0x1a1c  [ F36E3D11E41D785E13225C63E9D46261, 57C0A54CA23B920474EC4C430FAC7F857C8A041BB206D373FF54CC6FE8B33EFF ] StorSvc         C:\WINDOWS\system32\storsvc.dll
15:08:12.0439 0x1a1c  StorSvc - ok
15:08:12.0517 0x1a1c  [ BC74E93B52526753408BC578C01CC786, 71671E977BAF95331AB0F469213582144989A70857B71E3A6BD0D728898A7A6F ] storufs         C:\WINDOWS\system32\drivers\storufs.sys
15:08:12.0580 0x1a1c  storufs - ok
15:08:12.0580 0x1a1c  [ C58DC01DBBFB0DC058AC1AB792D88AC2, F45D6D020E3B45C04DD8828047E0FCDF82F32B0E01538BE0286DA5A640730E62 ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
15:08:12.0595 0x1a1c  storvsc - ok
15:08:12.0658 0x1a1c  svsvc - ok
15:08:12.0892 0x1a1c  swenum - ok
15:08:12.0908 0x1a1c  swprv - ok
15:08:13.0002 0x1a1c  [ 7B4BF4CC6C96749124984A9E0AE1896A, AE59BAE1A921DC85E5447D383A42850DBA8F48AB020198C1F6E10D853864CE22 ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
15:08:13.0064 0x1a1c  Synth3dVsc - ok
15:08:13.0095 0x1a1c  SysMain - ok
15:08:13.0158 0x1a1c  SystemEventsBroker - ok
15:08:13.0330 0x1a1c  [ 626A1593186D839054720C0D116C682E, 1D3091E00B0AA4F7D1D73373BEF1C265F6C61AE987AD03E7AC3418BDCDF1256A ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
15:08:13.0377 0x1a1c  TabletInputService - ok
15:08:13.0424 0x1a1c  [ 9CEB8FC77A7FBEC5ED344EEC9227A10C, 5F1D6F7DF1CC7040200DB5D887223D612966A1B3560DB13C8D9C442AF677221D ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
15:08:13.0611 0x1a1c  TapiSrv - ok
15:08:13.0674 0x1a1c  Tcpip - ok
15:08:13.0674 0x1a1c  Tcpip6 - ok
15:08:13.0752 0x1a1c  [ A8766E18A1E2D41301E7A8EEFBABCDDD, 0762E146944C40C9D295A11DFBDDD72270E75619D209451AAD619A531A0EACF2 ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
15:08:13.0799 0x1a1c  tcpipreg - ok
15:08:13.0830 0x1a1c  tdx - ok
15:08:14.0017 0x1a1c  [ 7D87A129A6F4FA468244F0D812B1D0A5, E5F09091CC28C0F26B2D229ABEF29026B1A73ABCDDA819AE9A9B4D329C5E4D4D ] Te.Service      C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe
15:08:14.0127 0x1a1c  Te.Service - detected UnsignedFile.Multi.Generic ( 1 )
15:08:14.0345 0x1a1c  Detect skipped due to KSN trusted
15:08:14.0345 0x1a1c  Te.Service - ok
15:08:14.0439 0x1a1c  [ DC451F4DC01E116C35121EBD6813618E, 0A727D884164BA5A45679B6BB7C67D10A22B2E2203709ACCFB20C7086BF38F80 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
15:08:14.0549 0x1a1c  terminpt - ok
15:08:14.0580 0x1a1c  TermService - ok
15:08:14.0611 0x1a1c  [ A90774D7D465E1085A95326FAD89B25C, 503EE739A30D67CA4EC27416D4A43F76BA8BC75A8DB175BAFD282307920E944F ] Themes          C:\WINDOWS\system32\themeservice.dll
15:08:14.0642 0x1a1c  Themes - ok
15:08:14.0705 0x1a1c  [ 33E60A1BD76A877683FCD7DC93A10635, 917F104892FF1890BE2AB218B99C2DFED8287AB93EA6895BA74090783D4E341C ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
15:08:14.0845 0x1a1c  TieringEngineService - ok
15:08:14.0908 0x1a1c  TimeBrokerSvc - ok
15:08:15.0002 0x1a1c  TokenBroker - ok
15:08:15.0127 0x1a1c  [ BF97F92E1043BC92073FAED0752B70A2, 4DC7A38DFDF44E64C65C2C2629FE835A28204FBA0FE6E54FAC5C34702FEB161A ] TPM             C:\WINDOWS\System32\drivers\tpm.sys
15:08:15.0142 0x1a1c  TPM - ok
15:08:15.0236 0x1a1c  [ BCA97819779D7876B6F98C29844CF505, EEF76BD38F90D6846FC17E13F3981FF0EA9768BE7D142430488A2F0850853833 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
15:08:15.0299 0x1a1c  TrkWks - ok
15:08:15.0424 0x1a1c  TrustedInstaller - ok
15:08:15.0486 0x1a1c  [ 19DC44DF9C859396B3608F5CF5C83D82, B3898F2B03FB8F0705CE729385F9836A39E3E995481E152C3CF61A2CFE80B4B1 ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
15:08:15.0549 0x1a1c  TsUsbFlt - ok
15:08:15.0595 0x1a1c  [ C7E9FAB0880D66EFB62C2B6314284D47, DEC664E32E400BBB22C95632A1A71EB7A929660BCBD624B9092F5AA5AF53CF36 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
15:08:15.0674 0x1a1c  TsUsbGD - ok
15:08:15.0752 0x1a1c  [ 4227DDD821E0A81448CD187B80265927, CC70A120832045666A6730B552586407BBA2F6533C56914C2CE137AB8D4D4BBD ] tunnel          C:\WINDOWS\system32\drivers\tunnel.sys
15:08:15.0799 0x1a1c  tunnel - ok
15:08:15.0877 0x1a1c  [ 0D7B0A007BCC65CF6CC20E25A43D151A, D1C9DF8B557CCC087937622D30049A95A28A1D0B1EEC66E06D05653460C5B8EF ] tzautoupdate    C:\WINDOWS\system32\tzautoupdate.dll
15:08:16.0158 0x1a1c  tzautoupdate - ok
15:08:16.0189 0x1a1c  [ 4631D2B2B5567A768389796A267ABED9, 105F0A028F955029275FA34B8D7BF3E8D75BD2D661A4E1D81CA32252A685886E ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
15:08:16.0236 0x1a1c  UASPStor - ok
15:08:16.0267 0x1a1c  [ B5A296C6DE5A56B62FB98859A8AB6C10, 2B945D4A279D3C4D3FC47BCB97F00C8C4A8113E52F9647808A61BFA253CD1AC1 ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
15:08:16.0299 0x1a1c  UcmCx0101 - ok
15:08:16.0345 0x1a1c  [ 9E8CC2A2F39A6C5377B4A2D3A061A429, 231408808BD731328C4A0601E2D781CA241D39845393A4BB194C9B76B91EA0F1 ] UcmTcpciCx0101  C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
15:08:16.0424 0x1a1c  UcmTcpciCx0101 - ok
15:08:16.0533 0x1a1c  [ EB21892E714A16FAA18642F3A53A26B8, 212582DE1DEB0DFC660AEAF10268A915FBC6CD5BA433FA8D934756881B38E05C ] UcmUcsi         C:\WINDOWS\System32\drivers\UcmUcsi.sys
15:08:16.0611 0x1a1c  UcmUcsi - ok
15:08:16.0767 0x1a1c  [ 41ED24E49525CB10312C707112E34C98, 70A974F1549399E5EE4E432EAA2FFDFBE991F24A80367DE19D42FDF85A7BD222 ] UcmUcsiAcpiClient C:\WINDOWS\System32\drivers\UcmUcsiAcpiClient.sys
15:08:16.0845 0x1a1c  UcmUcsiAcpiClient - ok
15:08:16.0892 0x1a1c  [ B107AD3336E791B7B0F8E87301D23E44, 35112A473C84FEC3B66FED03B56D0CF6E1A91D04ABEAF69125075B289F695784 ] UcmUcsiCx0101   C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys
15:08:16.0939 0x1a1c  UcmUcsiCx0101 - ok
15:08:16.0939 0x1a1c  Ucx01000 - ok
15:08:16.0970 0x1a1c  UdeCx - ok
15:08:16.0986 0x1a1c  udfs - ok
15:08:17.0017 0x1a1c  [ E1D26FA75626B66D0020E07E30CDEC8C, 034EA90B95BC78EF0A2EED3D196B048AA0CD4D07007D4A899F9C8AA099987CB1 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
15:08:17.0080 0x1a1c  UEFI - ok
15:08:17.0127 0x1a1c  [ D88BCBABE51CCB450B3DD1C696D9DD80, CD22085BC8D2B471628928B38EBF4453C961F3E83794D83C682898132724DEEC ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
15:08:17.0189 0x1a1c  Ufx01000 - ok
15:08:17.0236 0x1a1c  [ D5E1A8CB08CEF619E0949535C917621C, 10904C6AD79906FA86869F0E11960927ED6990D346D0F10307B764D3778B9464 ] UfxChipidea     C:\WINDOWS\System32\drivers\UfxChipidea.sys
15:08:17.0330 0x1a1c  UfxChipidea - ok
15:08:17.0361 0x1a1c  [ EC86C5BF1EBE408BA39730EDAAC93353, AED44C537D2787294E3AE5916A4671249B0D860EA1B95A9B37E097027AED6BA7 ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
15:08:17.0424 0x1a1c  ufxsynopsys - ok
15:08:17.0470 0x1a1c  umbus - ok
15:08:17.0486 0x1a1c  [ 826827B952041E884774E0A87AA3D216, B52A21A288E18EB2517A09FD94BF5B720D88FC571F8609C8181D0A419C6D2172 ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
15:08:17.0549 0x1a1c  UmPass - ok
15:08:17.0689 0x1a1c  [ 86F5651C8448134FE32C9B34A9273EBD, C58AE91447A3408F0A8FF96409F7AB8383E43B8AB0287575A6FB879783B15D53 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
15:08:17.0877 0x1a1c  UmRdpService - ok
15:08:18.0127 0x1a1c  [ 8B4DC02D01400255E6CFB53C51689557, 485152A9B286ADB04331DE52412E038F777D403C66AADFB7A7CA4B9B395054A2 ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
15:08:18.0252 0x1a1c  UnistoreSvc - ok
15:08:18.0533 0x1a1c  [ BD627E48043957D70AA7100EC8DF0974, 07B1C8D39FE82A1CD2723BD7290344BCEF12AB990D0EF4E1767B24B986176BC3 ] upnphost        C:\WINDOWS\System32\upnphost.dll
15:08:18.0658 0x1a1c  upnphost - ok
15:08:18.0799 0x1a1c  [ AF79E1A4747418B190F36877977485F6, 9B97D43CE1015F4B7C961BAD3E7B1115C639A70562CD19066C7DFD79FFA97B2D ] UrsChipidea     C:\WINDOWS\System32\drivers\urschipidea.sys
15:08:18.0861 0x1a1c  UrsChipidea - ok
15:08:18.0924 0x1a1c  [ 0BA7174544F4064EF5C9383BA8EDAC78, 64AE6123771AEA57B3666E96DAFB7A319E45067587F9A78DC2C4FDB06BC9EF3B ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
15:08:18.0955 0x1a1c  UrsCx01000 - ok
15:08:19.0017 0x1a1c  [ 7DDE04DB56833A97492DC3013D4B3239, F7D092CD065ED5BDE2E672E48BF479B1D33033BC7EE636DEDCE5C166540A343A ] UrsSynopsys     C:\WINDOWS\System32\drivers\urssynopsys.sys
15:08:19.0127 0x1a1c  UrsSynopsys - ok
15:08:19.0158 0x1a1c  usbccgp - ok
15:08:19.0205 0x1a1c  [ E7BFC2CCC6D416673A1698781991C656, 5395A6990DE75E5BAF23ABB6FC4B532F975B751DD3324EC89043CEF7658D42F5 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
15:08:19.0236 0x1a1c  usbcir - ok
15:08:19.0252 0x1a1c  usbehci - ok
15:08:19.0252 0x1a1c  usbhub - ok
15:08:19.0377 0x1a1c  [ 6C5563F34424790A8F23985D837D18C0, F8AD3DF705735FE3DFCF758E8CB1688929FB7B09C957DA0873DABB944C24C679 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
15:08:19.0408 0x1a1c  USBHUB3 - ok
15:08:19.0424 0x1a1c  usbohci - ok
15:08:19.0502 0x1a1c  [ AB3AD5D5F58FF144094052349E85459D, 1E9B60EC013A8A145E33970B0A7AD96F4E59A77EED754A8B11EC640267015EA2 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
15:08:19.0627 0x1a1c  usbprint - ok
15:08:19.0689 0x1a1c  [ EE67BDAA526DB1538D514C1BB8EE227F, 5C1C4F90981628954A0881C3AFB1F923FC64C7959449EA579A97C0C3B5EC0BC1 ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
15:08:19.0767 0x1a1c  usbser - ok
15:08:19.0830 0x1a1c  USBSTOR - ok
15:08:19.0924 0x1a1c  [ 2DAEB3D979208B3DDA0C480BFD1D6A3B, A2041411FDD1BAA48FCEE5823A81A4475ED301EBD8DA1E6C1519422431A7751D ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
15:08:20.0080 0x1a1c  usbuhci - ok
15:08:20.0377 0x1a1c  [ 10165ECCC7A1DF3C1B6AA53C8EB2A87F, D6F34032ECEFCC7E80CCCD111A9FBA14B00D89C6A33CFC5FB0247C1E48307869 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
15:08:20.0486 0x1a1c  USBXHCI - ok
15:08:21.0095 0x1a1c  [ C05A20A037C6675E854FFE8282BE9B20, 6ACDDA4FB354F2713A559BE4F6E061A2D207E43EA9F0849BFD7110EDE70A8E0B ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
15:08:21.0189 0x1a1c  UserDataSvc - ok
15:08:21.0345 0x1a1c  UserManager - ok
15:08:21.0705 0x1a1c  [ AF2979208ABA46C5DAAF254DD0919EC7, 4E3AF47DB38624D3DBD1DCD858EE5C2B2CE50871E490A663D58E024A73C9DB6C ] UsoSvc          C:\WINDOWS\system32\usocore.dll
15:08:22.0033 0x1a1c  UsoSvc - ok
15:08:22.0283 0x1a1c  [ F7B1BC5C7799E1247DC7CB5FD2C0F921, 373370AAAC27CC5A8CAC25A4F9C97A13A433B9E0DF10FEB4C0B6591D1EB05C22 ] VacSvc          C:\WINDOWS\System32\vac.dll
15:08:22.0392 0x1a1c  VacSvc - ok
15:08:22.0392 0x1a1c  VaultSvc - ok
15:08:22.0924 0x1a1c  [ 157406548DD44E9391B384C3EFAE9299, 9BCBE3515529B8B995665486F3F15D5223E494DE58147CC0627AB4EE506CA40A ] VBoxDrv         C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys
15:08:22.0955 0x1a1c  VBoxDrv - ok
15:08:23.0127 0x1a1c  [ 63084E96C5FE3C37AA157990299049D6, 7EAF78C054786F102394FB5692D3A7D864DDD03B814B97CD469D1343AFBEDAE8 ] VBoxUSBMon      C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys
15:08:23.0142 0x1a1c  VBoxUSBMon - ok
15:08:23.0174 0x1a1c  [ C06E30A8EE21D4E8AB184F985DD50C12, 107BE98743DA2F16D2900ED26A562E5F5F35E3851E8A5B03DF89665E84E1B3B4 ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
15:08:23.0236 0x1a1c  vdrvroot - ok
15:08:23.0299 0x1a1c  vds - ok
15:08:23.0330 0x1a1c  VerifierExt - ok
15:08:23.0892 0x1a1c  [ 1D4C6F5720786A0FB80E6CE8A778000F, C56701C8A836F38D230BEA5EB1DB410DD2F6D9D1EF41D825D52E62DD08FE407D ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
15:08:24.0392 0x1a1c  vhdmp - ok
15:08:24.0549 0x1a1c  [ 562C0C9FFF08A6DF60D858E6482E35CE, 67860AA759312674571F56D80A43E998A7F8352AD71588292CD405FE301E7494 ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
15:08:24.0642 0x1a1c  vhf - ok
15:08:24.0674 0x1a1c  Vid - ok
15:08:24.0736 0x1a1c  [ A898490F7840AB1012D70887DEB20106, A75B89DA6E3C3E1DA86445587ABC44D6C0213D9B0E2AC765EE98200A1BCB8D9B ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
15:08:24.0767 0x1a1c  vmbus - ok
15:08:24.0814 0x1a1c  [ C3B4E43D5283D32E1D3890D101C70C1C, DA6B43864C1B867B56FAC04843620A7959912B29D9DCA9B0AC5F4E3903C1E8C0 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
15:08:24.0908 0x1a1c  VMBusHID - ok
15:08:25.0017 0x1a1c  [ 634A15C2B5CC3BBB151F2AFE9C3AE031, 5ED3F31C3726B0448D57A06703CEE71B844857C5B2E14CAF3A01C7206F1A4991 ] vmgid           C:\WINDOWS\System32\drivers\vmgid.sys
15:08:25.0127 0x1a1c  vmgid - ok
15:08:25.0158 0x1a1c  vmicguestinterface - ok
15:08:25.0174 0x1a1c  vmicheartbeat - ok
15:08:25.0174 0x1a1c  vmickvpexchange - ok
15:08:25.0189 0x1a1c  vmicrdv - ok
15:08:25.0189 0x1a1c  vmicshutdown - ok
15:08:25.0189 0x1a1c  vmictimesync - ok
15:08:25.0205 0x1a1c  vmicvmsession - ok
15:08:25.0205 0x1a1c  vmicvss - ok
15:08:25.0267 0x1a1c  [ 88AFCF1B2C10A5175AE5F7FC22B64851, 84F636D284ABFF65BF5D11E72CFD404DC7EAE1D3CEB866100F94438AA7709CC0 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
15:08:25.0408 0x1a1c  volmgr - ok
15:08:25.0455 0x1a1c  volmgrx - ok
15:08:25.0455 0x1a1c  volsnap - ok
15:08:25.0533 0x1a1c  [ C0F4049CBD0632DA2B3E1F515A460531, 568376E3B714E5A40B8FE45C6CACA392F8D954343B53185D7939C3DBD36599E9 ] volume          C:\WINDOWS\system32\drivers\volume.sys
15:08:25.0627 0x1a1c  volume - ok
15:08:25.0689 0x1a1c  [ F4B06615CAF9B34DDEEA4937278FFEB7, 2EE4186067D97BAC452ECD6D4B90C51F461154F4A44728F9384CB4E427C274EB ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
15:08:26.0049 0x1a1c  vpci - ok
15:08:26.0142 0x1a1c  [ EE4D650D73A565F7921C6F097ED6E709, 599B6386BC7695979B83F6BB615142878677343068DA36E285C733EFBE403992 ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
15:08:26.0189 0x1a1c  vsmraid - ok
15:08:26.0236 0x1a1c  VSS - ok
15:08:26.0252 0x1a1c  [ B4E3EB14D422A128EE2C391A05C8958A, 6DF4A8BB9A02B41464D22ADAD2F96998DC3E1B93FB6975DF543B414EC7059582 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
15:08:26.0283 0x1a1c  VSTXRAID - ok
15:08:26.0283 0x1a1c  vwifibus - ok
15:08:26.0283 0x1a1c  vwififlt - ok
15:08:26.0455 0x1a1c  vwifimp - ok
15:08:26.0486 0x1a1c  W32Time - ok
15:08:26.0627 0x1a1c  [ 3C662445E3B925A7519805E74317DDB9, 2930D93F22CA3FC8F6D852AB8CDDC15616A9EBBB8676BD18C0E242F4D5415503 ] WaaSMedicSvc    C:\WINDOWS\System32\WaaSMedicSvc.dll
15:08:26.0720 0x1a1c  WaaSMedicSvc - ok
15:08:26.0783 0x1a1c  [ 168A32D53F2BB06AE598AEBD744928BB, 0912D5556A22137602DF960BA7377256448D63FB825003C237061A346D4ADD37 ] WacHidRouterPro C:\WINDOWS\System32\drivers\wachidrouter.sys
15:08:26.0799 0x1a1c  WacHidRouterPro - ok
15:08:26.0814 0x1a1c  [ 4943F603998D4AF78D403A3461D89508, B06B779ED6C14787EF333DAED9A32F2087EC389D67A89C709DE4006B306B5557 ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
15:08:26.0877 0x1a1c  WacomPen - ok
15:08:26.0924 0x1a1c  [ BDE9A45B2B5D38B610ED2600B91F93AE, 5B9DC5248CD390E2D6527C6BBB7B39CD271DC6538830B6A5A581DC168DA38A33 ] wacomrouterfilter C:\WINDOWS\System32\drivers\wacomrouterfilter.sys
15:08:26.0924 0x1a1c  wacomrouterfilter - ok
15:08:27.0345 0x1a1c  [ B7BB14302C5BE67EA6E79E5B48284A12, 8EDA37E1CFD09A17F7E8F478D0AE606BF13AB18676E734950945CA6FBEFE4290 ] WalletService   C:\WINDOWS\system32\WalletService.dll
15:08:27.0470 0x1a1c  WalletService - ok
15:08:27.0470 0x1a1c  wanarp - ok
15:08:27.0486 0x1a1c  wanarpv6 - ok
15:08:27.0564 0x1a1c  [ 6A775E36973111923169368CC7299E30, 54F35A47CC4058FB9C0AE89CC0E38A429B2E5FC880DA70CC46DCE55B105BF9AD ] WarpJITSvc      C:\WINDOWS\System32\Windows.WARP.JITService.dll
15:08:27.0705 0x1a1c  WarpJITSvc - ok
15:08:27.0736 0x1a1c  wbengine - ok
15:08:27.0799 0x1a1c  WbioSrvc - ok
15:08:27.0939 0x1a1c  [ 95C4DB08A740015BB3FB5659F16EF321, 1E86C40F8AB13DD2433F13CC321C9352C7BF4A114FFF9E910F10DE684DF4E9CD ] wcifs           C:\WINDOWS\system32\drivers\wcifs.sys
15:08:27.0970 0x1a1c  wcifs - ok
15:08:28.0252 0x1a1c  [ BF3A1962EDDB3C139133D0B0928B3761, 0DF08A1C1A1DE4ED62A2CC6A576390A11C9067FBFEF0D2781EE93299001285C4 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
15:08:28.0299 0x1a1c  Wcmsvc - ok
15:08:28.0361 0x1a1c  wcncsvc - ok
15:08:28.0408 0x1a1c  wcnfs - ok
15:08:28.0533 0x1a1c  [ E7E16778C8440BB459C94B5AD8282491, 728B2208884B4244E3481DDD82F9B353FC27DAC77488DBC8224AB1630616676A ] WdBoot          C:\WINDOWS\system32\drivers\wd\WdBoot.sys
15:08:28.0595 0x1a1c  WdBoot - ok
15:08:28.0611 0x1a1c  Wdf01000 - ok
15:08:28.0674 0x1a1c  [ 421A69C03BEB260A1CCAFFD3435AD587, 821FE66B3BB102BF7FDAF2F9A53ADEF89D677FEB4564C6E6EBE08FADF354ED36 ] WdFilter        C:\WINDOWS\system32\drivers\wd\WdFilter.sys
15:08:29.0033 0x1a1c  WdFilter - ok
15:08:29.0127 0x1a1c  [ 2DF1213455A71E2C453575C425EEE079, 82FAD5020C4D43F152EB95063C653CDC94B38E01F0BE47180F34A4E90B250908 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
15:08:29.0174 0x1a1c  WdiServiceHost - ok
15:08:29.0205 0x1a1c  [ 2DF1213455A71E2C453575C425EEE079, 82FAD5020C4D43F152EB95063C653CDC94B38E01F0BE47180F34A4E90B250908 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
15:08:29.0220 0x1a1c  WdiSystemHost - ok
15:08:29.0283 0x1a1c  wdiwifi - ok
15:08:29.0377 0x1a1c  [ 76C194DFF2EDEFE3BD0C731C267BC6F8, 3A88DF7E3141C6D3BAB53E45985B3B3926E3E88F39922E9A3114D84F4653C9E5 ] WdmCompanionFilter C:\WINDOWS\system32\drivers\WdmCompanionFilter.sys
15:08:29.0502 0x1a1c  WdmCompanionFilter - ok
15:08:29.0517 0x1a1c  WdNisDrv - ok
15:08:30.0017 0x1a1c  WdNisSvc - ok
15:08:30.0127 0x1a1c  [ 0714DD5FEC336CBFC3E8C0B2C1A25A95, 5AF366813608AB8FE54A2B1F0BCD98B15EED04A85D72915C70AD91634BDFE06C ] WebClient       C:\WINDOWS\System32\webclnt.dll
15:08:30.0174 0x1a1c  WebClient - ok
15:08:30.0299 0x1a1c  [ 92A0CB8C13014D9589855A1B1FAE789E, 623E124F5987EB07BCA9ED33098868A25127AAD01A8983EC373ED6D05A3F6738 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
15:08:30.0424 0x1a1c  Wecsvc - ok
15:08:30.0502 0x1a1c  [ C40BC5164317312AEFC3A37376B696E6, F1E0BCA1ADD47DB08AABDFB8BDE5DD1A42C00F4535ACCD455763D575E92FCAFB ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
15:08:30.0595 0x1a1c  WEPHOSTSVC - ok
15:08:30.0658 0x1a1c  [ 5CE5CBC5A85BB319F278737BB20054AE, 1783EDEDCAE346E0FFA9FCA3F554682BCE285C035F6D71430809F1594CBA15E2 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
15:08:30.0720 0x1a1c  wercplsupport - ok
15:08:30.0767 0x1a1c  WerSvc - ok
15:08:31.0017 0x1a1c  [ 76E43A1AABB4CEB6DB83224F19CC4681, E8B37E989940151E887210142F50D8A19896372F91C0A46F87734FC4C50532D0 ] WFDSConMgrSvc   C:\WINDOWS\System32\wfdsconmgrsvc.dll
15:08:31.0095 0x1a1c  WFDSConMgrSvc - ok
15:08:31.0174 0x1a1c  [ F2E1963A78B8CCDF8B70A4FD235A7576, F1AB882EE44504A4BB0106C834CB5B02BB1A4436521858F409347A4B288AA5B5 ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
15:08:31.0267 0x1a1c  WFPLWFS - ok
15:08:31.0330 0x1a1c  [ E2C1DB0AB6F9C3C592BC3540687389C4, ADAB6DF0702BDC0A6A74A01B58C5248978DCF93D539BAA856225C0DACE00C6D6 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
15:08:31.0392 0x1a1c  WiaRpc - ok
15:08:31.0470 0x1a1c  [ A8DD94CB385BBA9FE76A5A16842E95EB, 59362E84AB16150582DC2E6DB2108B0C120A4C584CB447AF56D9F28C8FB1E24D ] WIMBLEMS        C:\WINDOWS\system32\drivers\WIMBLEMS.sys
15:08:31.0580 0x1a1c  WIMBLEMS - ok
15:08:31.0658 0x1a1c  WIMMount - ok
15:08:31.0689 0x1a1c  WinDefend - ok
15:08:31.0783 0x1a1c  [ 7D35D1A936E3D291851A8D01D5F7AA79, 217392DE13208375F4A2C99290FF53A70C8AB3C3B7954D59AB0CAC034553646B ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
15:08:31.0830 0x1a1c  WindowsTrustedRT - ok
15:08:31.0924 0x1a1c  [ F179027B9FE048633A60D782E1132AAA, 8ABA2FF51D098231FC9E4CB2E62445515A75432D90682B5D0842924355158E43 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
15:08:31.0939 0x1a1c  WindowsTrustedRTProxy - ok
15:08:31.0955 0x1a1c  WinHttpAutoProxySvc - ok
15:08:32.0033 0x1a1c  [ C2610A6427166E0999CEA79A3128B915, 31CBA9B0057D725137F81D951D4BD941119092DB7BA8696BC386328F63899D72 ] WinMad          C:\WINDOWS\System32\drivers\winmad.sys
15:08:32.0095 0x1a1c  WinMad - ok
15:08:32.0252 0x1a1c  Winmgmt - ok
15:08:32.0314 0x1a1c  [ B7FEA2CC1333D4C30E58E89F682D8BCB, 41E1324E477D81CC8A6AF52C37EF29179EE86C453027A7DA361B50E672ADBBE0 ] WinNat          C:\WINDOWS\system32\drivers\winnat.sys
15:08:32.0689 0x1a1c  WinNat - ok
15:08:32.0705 0x1a1c  WinQuic - ok
15:08:32.0752 0x1a1c  WinRM - ok
15:08:32.0814 0x1a1c  [ 9A0D43B4E4530C8BE34DAC3119FD5780, 9734AC33EE74F93D80126D7DD6A234B406C2930DE54092D015CB149A5373655E ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
15:08:32.0908 0x1a1c  WINUSB - ok
15:08:32.0939 0x1a1c  [ D805E030EC7503ABD98158E0C28E1092, 2E74772BC2C2AC51AC5B346C526FD9DC213CD9BEFB57E480ACD88C06F0AA3D10 ] WinVerbs        C:\WINDOWS\System32\drivers\winverbs.sys
15:08:33.0017 0x1a1c  WinVerbs - ok
15:08:33.0095 0x1a1c  wisvc - ok
15:08:33.0142 0x1a1c  WlanSvc - ok
15:08:33.0189 0x1a1c  wlidsvc - ok
15:08:33.0439 0x1a1c  [ C087C499C922144DA2198EC4B1BCB90C, 775489CC40F231474A2730F1CC9F9A3ED180F2B30DDA8B0C4BF444571B245DCA ] wlpasvc         C:\WINDOWS\System32\lpasvc.dll
15:08:33.0533 0x1a1c  wlpasvc - ok
15:08:33.0611 0x1a1c  [ 09C7796D31DCFF582064829CB59E35BF, C5DEFD31E5B10A6DCA8A7EC076727DC9444EA8EE8CAE9ED531C48AD97959A220 ] WManSvc         C:\WINDOWS\system32\Windows.Management.Service.dll
15:08:33.0752 0x1a1c  WManSvc - ok
15:08:33.0767 0x1a1c  WmiAcpi - ok
15:08:33.0799 0x1a1c  wmiApSrv - ok
15:08:33.0845 0x1a1c  WMPNetworkSvc - ok
15:08:33.0970 0x1a1c  [ 7BDD8CD05D67CDC66E00D061F0F5F010, E80B5FF710AF9F6502822470A5FE6EED21889F039052B2E8CAC4866F74500838 ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
15:08:34.0033 0x1a1c  Wof - ok
15:08:34.0392 0x1a1c  [ 3EFA1DCA6A3731ECC84F024B0DF17CEB, 1C685B1A7CEB9DF4B747B80CB1D4EADDF2C70EB1861A2B5F6AA27813D66F5DCE ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
15:08:35.0080 0x1a1c  workfolderssvc - ok
15:08:35.0267 0x1a1c  [ 56A1AC9C2DB9B440743C7F13DCEDD4F1, E88B614633543E1929AC143FDE57240D7A0BA373E46B6494EA349C2B8A8BF293 ] WpcMonSvc       C:\WINDOWS\System32\WpcDesktopMonSvc.dll
15:08:35.0377 0x1a1c  WpcMonSvc - ok
15:08:35.0439 0x1a1c  [ B4F8ED117D5120009972A470AF4FA323, 61BF1500B54145B7CFB8461078A14735DB617B7EDA82AA5250CA0D10865ED865 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
15:08:35.0642 0x1a1c  WPDBusEnum - ok
15:08:35.0720 0x1a1c  [ 4D5E154DE168E4A3B90F86A1966CE5D1, BA21BF38DD0AE9CC2017BC013053ABECB9CA3C20A6C39CDF8EE4B9C66E796438 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
15:08:35.0752 0x1a1c  WpdUpFltr - ok
15:08:35.0814 0x1a1c  [ 96142856700EC9BD02D2EA30208D1934, 1C8050DA53DFA42551BB4637632AA0110B06575CA1AAAFD94AE8AE37E815BE8E ] WpnService      C:\WINDOWS\system32\WpnService.dll
15:08:35.0877 0x1a1c  WpnService - ok
15:08:35.0939 0x1a1c  [ 48FB3FFACCD2194CDD6B04CE84361C29, 3095991A288A977E203256B87AEDD6A4B3B54E4C0726FC47AD5BDD6DDBEB6151 ] WpnUserService  C:\WINDOWS\System32\WpnUserService.dll
15:08:36.0002 0x1a1c  WpnUserService - ok
15:08:36.0033 0x1a1c  ws2ifsl - ok
15:08:36.0142 0x1a1c  [ ADAD15298AD0D593FAF61BB89D538D73, 8E636F9BA12D8E53D6214D7F84687694F32E2EFABC2E22818A59D6D656207E11 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
15:08:36.0174 0x1a1c  wscsvc - ok
15:08:36.0174 0x1a1c  WSearch - ok
15:08:36.0939 0x1a1c  [ BE8D133E2E6EA2B90EC48BBCBBF77174, 4278D851EC5C6FBDDEBAD3F6DEB6D1347A3C8D09F5E9D36650D077D32C6675EE ] WTabletServicePro C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
15:08:37.0033 0x1a1c  WTabletServicePro - ok
15:08:37.0064 0x1a1c  wuauserv - ok
15:08:37.0174 0x1a1c  [ 5A632AFC20B5BCF9D33A60AA3F2B85A6, 65F999083C7B78D0AA753B882A50D9EEFEA6A29D5A2EB7882F8B5177B47D1935 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
15:08:37.0330 0x1a1c  WudfPf - ok
15:08:37.0486 0x1a1c  [ 6C3D8C8C991B62588C52336C5F60423C, 7388249315DFFF87045E55CE79CA1764E5E305C6F0418BD5077957B2E32F5569 ] WUDFRd          C:\WINDOWS\system32\drivers\WudfRd.sys
15:08:37.0611 0x1a1c  WUDFRd - ok
15:08:37.0642 0x1a1c  [ 6C3D8C8C991B62588C52336C5F60423C, 7388249315DFFF87045E55CE79CA1764E5E305C6F0418BD5077957B2E32F5569 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
15:08:37.0658 0x1a1c  WUDFWpdFs - ok
15:08:37.0674 0x1a1c  WwanSvc - ok
15:08:37.0892 0x1a1c  [ 5F69A7DE728668CD6A80FCB0EB3B7EB2, D2A1CAE8B7D8B4B89F85023ADD16F00D7CCBC7B936CBF958073C329CF9732E28 ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
15:08:38.0205 0x1a1c  XblAuthManager - ok
15:08:38.0252 0x1a1c  [ 9AD74ADD767D1FF755F52E4F5778C641, 2FB3187FA1BE7B10C3E832D913267513F5616C4ADAE7DD466C9393EF8B5EE92E ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
15:08:38.0377 0x1a1c  XblGameSave - ok
15:08:38.0549 0x1a1c  [ A56ABFB5B8FC315A63B599B2273B7444, 576CDEF854DAB6C459E07439626074E1636F4AC0AA382EB299CB995356A56439 ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
15:08:38.0658 0x1a1c  xboxgip - ok
15:08:38.0720 0x1a1c  [ 9266191829E944E4E7F474C9A8FC3947, 4B7D64E596BFE2FCCA65FCFB4F024E68A9966D049530B33E75775ED9433BDE48 ] XboxGipSvc      C:\WINDOWS\System32\XboxGipSvc.dll
15:08:38.0861 0x1a1c  XboxGipSvc - ok
15:08:39.0080 0x1a1c  [ 42DCAA6173FC1447A298637C16C973FC, 48BAA58EBC579812C3C6B1C1AD9DE4193B24167D3A708E96C49ADFFC58566568 ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
15:08:39.0174 0x1a1c  XboxNetApiSvc - ok
15:08:39.0252 0x1a1c  [ 30FE2A17957C4D5466FBE684F83730E6, 6FE0736320A3E44DA654B37D157DE0E04545288ABBD1E8DE0AD56D8558F8847E ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
15:08:39.0345 0x1a1c  xinputhid - ok
15:08:39.0439 0x1a1c  [ 21E13F2CB269DEFEAE5E1D09887D47BB, 543991CA8D1C65113DFF039B85AE3F9A87F503DAEC30F46929FD454BC57E5A91 ] ZAM_Guard       C:\WINDOWS\System32\drivers\zamguard64.sys
15:08:39.0486 0x1a1c  ZAM_Guard - ok
15:08:39.0486 0x1a1c  ================ Scan global ===============================
15:08:39.0674 0x1a1c  [ Global ] - ok
15:08:39.0674 0x1a1c  ================ Scan MBR ==================================
15:08:39.0689 0x1a1c  [ EA923EB0EC0060F1451E9AD7B5762CFE ] \Device\Harddisk0\DR0
15:08:40.0642 0x1a1c  \Device\Harddisk0\DR0 - ok
15:08:40.0642 0x1a1c  ================ Scan VBR ==================================
15:08:40.0674 0x1a1c  [ AA3606474C1B2E91D6481FB63F3C9EEA ] \Device\Harddisk0\DR0\Partition1
15:08:40.0674 0x1a1c  \Device\Harddisk0\DR0\Partition1 - ok
15:08:40.0689 0x1a1c  [ FE0A5E522A1DA5C97EF49CF7020148E6 ] \Device\Harddisk0\DR0\Partition2
15:08:40.0705 0x1a1c  \Device\Harddisk0\DR0\Partition2 - ok
15:08:40.0705 0x1a1c  ================ Scan active images ========================
15:08:40.0705 0x1a1c  [ 3BA076BB4839EF21100BE56F7109CACC, 0B86BBF5B2D1A1626448F619F0494438ED8CE92B79BC02EAE45B4D088B558B01 ] C:\Windows\System32\drivers\crashdmp.sys
15:08:40.0705 0x1a1c  C:\Windows\System32\drivers\crashdmp.sys - ok
15:08:40.0720 0x1a1c  [ 3D93A13387EE4F6B2D5B6E883E0EA770, 3E17935F169CE91BAF6EDE5832BCAA2AE0DBBBF9F2D70C1BD3A9DA516D47D99C ] C:\Windows\System32\drivers\ahcix64s.sys
15:08:40.0720 0x1a1c  C:\Windows\System32\drivers\ahcix64s.sys - ok
15:08:40.0720 0x1a1c  [ 0D27911CA375F7F522F019CE0497653A, B897311F8A3436B0ECC71206790BB018479748C61947652479A6E815EFFE415E ] C:\Windows\System32\drivers\Diskdump.sys
15:08:40.0720 0x1a1c  C:\Windows\System32\drivers\Diskdump.sys - ok
15:08:40.0720 0x1a1c  [ 0EB206A82C0CD88C8C53CA8891B491C2, 71BB86877D5A899DB3141C126F42C2FC21A91BD45552A2957B1CD7F3C1DB1FEF ] C:\Windows\System32\drivers\dumpfve.sys
15:08:40.0720 0x1a1c  C:\Windows\System32\drivers\dumpfve.sys - ok
15:08:40.0736 0x1a1c  [ D7FAEE38C867DFDAA626B886A7AEA89A, FB6C546B23C3225BC2E634DF5C043C9CADEBAEAC1E221C156A7E27B8CB896858 ] C:\Windows\System32\drivers\cdrom.sys
15:08:40.0736 0x1a1c  C:\Windows\System32\drivers\cdrom.sys - ok
15:08:40.0736 0x1a1c  [ D64F99DD8480935CDA61ADC66C81FE87, B6DB41FB3D863C53E92BAF60DD6CED702C29594F66673582DA986E7648080E3E ] C:\Windows\System32\drivers\filecrypt.sys
15:08:40.0736 0x1a1c  C:\Windows\System32\drivers\filecrypt.sys - ok
15:08:40.0736 0x1a1c  [ 218B208F753FC7411787D33C0E4D76BD, 336B7EDFC2DEA526DBC0FF3166DEB52836DAE421F9B9792434A70859D0A31685 ] C:\Windows\System32\drivers\tbs.sys
15:08:40.0736 0x1a1c  C:\Windows\System32\drivers\tbs.sys - ok
15:08:40.0736 0x1a1c  [ ECCCCEC473E9BB8778E6BD0DC5EDA2B8, 732C714DD5588E5CDACC6980044D2A66A28C42B0D5208AC2FFBAC5D64BE95568 ] C:\Windows\System32\drivers\null.sys
15:08:40.0736 0x1a1c  C:\Windows\System32\drivers\null.sys - ok
15:08:40.0752 0x1a1c  [ B02C098721C7A12C959E16850641F783, 93283B4DDBCC56B823DE99DF75302E2F418757ABDA3978EFC7541662145929C2 ] C:\Windows\System32\drivers\beep.sys
15:08:40.0752 0x1a1c  C:\Windows\System32\drivers\beep.sys - ok
15:08:40.0752 0x1a1c  [ E09D70A934EB943ACCD278D904054592, 913CDDAFC914A1AB24F4C1B064FD7173658B67577A6E3DC4E8BB75BAE765E8DE ] C:\Windows\System32\drivers\dxgkrnl.sys
15:08:40.0752 0x1a1c  C:\Windows\System32\drivers\dxgkrnl.sys - ok
15:08:40.0752 0x1a1c  [ DC3EEF7AC28A107FABC987A198433D30, B7973547FF1746FB767AD7F34961E773CA12B81CD1DB7A701BC2A9171EBB51F9 ] C:\Windows\System32\drivers\watchdog.sys
15:08:40.0752 0x1a1c  C:\Windows\System32\drivers\watchdog.sys - ok
15:08:40.0767 0x1a1c  [ 5D97E67BAA0EE0AA78EDDE8BE78344B6, 61CF7558F62B88339A2202EFF3B9DCC12950348E279D586DEEB2D6113B59C12F ] C:\Windows\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_5103ac179273be89\BasicDisplay.sys
15:08:40.0767 0x1a1c  C:\Windows\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_5103ac179273be89\BasicDisplay.sys - ok
15:08:40.0767 0x1a1c  [ 5DA606023922A06B1C4160761EDF5AF3, 0E11FB7E192010D92C18D3A7A4BEE947B65099E05D92C94415785513FE284365 ] C:\Windows\System32\DriverStore\FileRepository\basicrender.inf_amd64_0b8d03c3bc0e7fd9\BasicRender.sys
15:08:40.0767 0x1a1c  C:\Windows\System32\DriverStore\FileRepository\basicrender.inf_amd64_0b8d03c3bc0e7fd9\BasicRender.sys - ok
15:08:40.0767 0x1a1c  [ 5E10BB1772C8E21C9B2ECD99BF3BF997, 55C1F20F2FB3B1775B9D24607096EAEAC0B9A55BDA76FEB84BC7E8080BB15A0A ] C:\Windows\System32\drivers\msfs.sys
15:08:40.0767 0x1a1c  C:\Windows\System32\drivers\msfs.sys - ok
15:08:40.0783 0x1a1c  [ CAA1D0E95B7F11811141E17EC7D1E45F, 917096E25C8D2DCCB6562085CC15558F8B9B4A1F6FE001DC78F0325C0F3A7E6F ] C:\Windows\System32\drivers\npfs.sys
15:08:40.0783 0x1a1c  C:\Windows\System32\drivers\npfs.sys - ok
15:08:40.0783 0x1a1c  [ 10E10E26125C35FEE359B463B3AD30B6, 5D025C928A8CC8B0D29B2B7698BBEDEAD6C23D3E2D1C82EC011859BA7456060A ] C:\Windows\System32\drivers\tdi.sys
15:08:40.0783 0x1a1c  C:\Windows\System32\drivers\tdi.sys - ok
15:08:40.0783 0x1a1c  [ E5CE3388A455ED80480EAE3A8ADD53A9, 91DCAD9EAC504C893FDB73ECD7AF38C1A40F295D4A388E91D74F3F6B7EB4FBAF ] C:\Windows\System32\drivers\tdx.sys
15:08:40.0783 0x1a1c  C:\Windows\System32\drivers\tdx.sys - ok
15:08:40.0783 0x1a1c  [ 717FC248242BDCBB3B8159B8098BD34F, EAF8A0E9418E225EC52CC5920EC712E20DD77C93A75B99B79DB4C38879CF2925 ] C:\Windows\System32\drivers\netbt.sys
15:08:40.0783 0x1a1c  C:\Windows\System32\drivers\netbt.sys - ok
15:08:40.0799 0x1a1c  [ 5194BF2FEDA9F6BE6F7691EDA1F910DE, C4DE61BE40BF51F07FE79E840BBF57A7ACBE4D0E14C5FC914A03640FEB58B725 ] C:\Windows\System32\drivers\afunix.sys
15:08:40.0799 0x1a1c  C:\Windows\System32\drivers\afunix.sys - ok
15:08:40.0799 0x1a1c  [ 5AFE650194C07BE81CB5A01B72549A1B, 21BBA202DF36B578416BD9F3A461F838F5C5B0AF2B3D5CBEE55C6BA99021E2F7 ] C:\Windows\System32\drivers\afd.sys
15:08:40.0799 0x1a1c  C:\Windows\System32\drivers\afd.sys - ok
15:08:40.0799 0x1a1c  [ 510865271FDA73ACE622A4E74CEDC32E, 525AAA9844C22DEAD5CD195C931CB67C32DFE6D4F61C14520D8E69D01E2723C5 ] C:\Windows\System32\drivers\vwififlt.sys
15:08:40.0799 0x1a1c  C:\Windows\System32\drivers\vwififlt.sys - ok
15:08:40.0814 0x1a1c  [ 14D167238A8C42EA8E951A5A956DEF42, 91C1406818442D9C3C4CEF8C908DEFD49C213D86489782722B5E17A90F8B2136 ] C:\Windows\System32\drivers\pacer.sys
15:08:40.0814 0x1a1c  C:\Windows\System32\drivers\pacer.sys - ok
15:08:40.0814 0x1a1c  [ 1680BBF697C0F93857131292C134A99F, DEFC40CC24AF488E404E40E908578F4CF8EFA928C05EEC54E7610C43FC79091E ] C:\Windows\System32\drivers\netbios.sys
15:08:40.0814 0x1a1c  C:\Windows\System32\drivers\netbios.sys - ok
15:08:40.0814 0x1a1c  [ 59D0951107DFC90B37FEFD24ACFB631C, 7B8DB144D0C97920699A5BF0BB3EE13BD73C9A5D613A6F56DB5A4111A5AE5C7B ] C:\Windows\System32\drivers\rdbss.sys
15:08:40.0814 0x1a1c  C:\Windows\System32\drivers\rdbss.sys - ok
15:08:40.0814 0x1a1c  [ 21E13F2CB269DEFEAE5E1D09887D47BB, 543991CA8D1C65113DFF039B85AE3F9A87F503DAEC30F46929FD454BC57E5A91 ] C:\Windows\System32\drivers\zamguard64.sys
15:08:40.0814 0x1a1c  C:\Windows\System32\drivers\zamguard64.sys - ok
15:08:40.0830 0x1a1c  [ 157406548DD44E9391B384C3EFAE9299, 9BCBE3515529B8B995665486F3F15D5223E494DE58147CC0627AB4EE506CA40A ] C:\Windows\System32\drivers\VBoxDrv.sys
15:08:40.0830 0x1a1c  C:\Windows\System32\drivers\VBoxDrv.sys - ok
15:08:40.0830 0x1a1c  [ 63084E96C5FE3C37AA157990299049D6, 7EAF78C054786F102394FB5692D3A7D864DDD03B814B97CD469D1343AFBEDAE8 ] C:\Windows\System32\drivers\VBoxUSBMon.sys
15:08:40.0830 0x1a1c  C:\Windows\System32\drivers\VBoxUSBMon.sys - ok
15:08:40.0830 0x1a1c  [ 6EE73A7918BC1EC7EFAC4A32DCFC8B13, 63F2057BB327C2FA3DD1B06B09E66F61F991A6D3DCB23AC8908F8E677A39232B ] C:\Windows\System32\drivers\mssmbios.sys
15:08:40.0830 0x1a1c  C:\Windows\System32\drivers\mssmbios.sys - ok
15:08:40.0845 0x1a1c  [ 720633286CA7E9E1FD1456338317AD8A, 9B89EE13A9D6B1CC36B0ECF874DCFB0D40222414ADF7A8589C4EDD978210A6ED ] C:\Windows\System32\drivers\npsvctrig.sys
15:08:40.0845 0x1a1c  C:\Windows\System32\drivers\npsvctrig.sys - ok
15:08:40.0845 0x1a1c  [ 7782D0BEEF87BFF841B5684E3FBCAC1B, EA0A9643B158CB56D2DE74AD61B49E82E0C71E96393797B891FA5E5985E0E120 ] C:\Windows\System32\drivers\nsiproxy.sys
15:08:40.0845 0x1a1c  C:\Windows\System32\drivers\nsiproxy.sys - ok
15:08:40.0845 0x1a1c  [ FB0B8778A55ED71728D28E9B3889A11E, CDCBDCB961632C003A6B449C48BF94AFB265CBBD38C50FB51F476A2149C16002 ] C:\Windows\System32\drivers\gpuenergydrv.sys
15:08:40.0845 0x1a1c  C:\Windows\System32\drivers\gpuenergydrv.sys - ok
15:08:40.0845 0x1a1c  [ C7E85EEDBC05491FF1CDD3ACA98FA1DE, 00B5AA11D450F1BC58AD94E583B281747BA5A3106345309A5E4CBCA5EA139BE6 ] C:\Windows\System32\drivers\dfsc.sys
15:08:40.0845 0x1a1c  C:\Windows\System32\drivers\dfsc.sys - ok
15:08:40.0861 0x1a1c  [ 567EBEC0D1127D2E48A68273DF9049B2, 26E9BE8D6F381C56CDD6870FB1ACF28808BE59B0AFF0413CD1961FE8236C87DA ] C:\Windows\System32\drivers\dam.sys
15:08:40.0861 0x1a1c  C:\Windows\System32\drivers\dam.sys - ok
15:08:40.0861 0x1a1c  [ E42AF3C735EFBAB61D00B5101190ACE8, A2088B36CCF6E28E072C471E635CAB153F6D889B41E25642F8943C1A32A54F28 ] C:\Windows\System32\drivers\bam.sys
15:08:40.0861 0x1a1c  C:\Windows\System32\drivers\bam.sys - ok
15:08:40.0861 0x1a1c  [ AE0B2FAC90C4DF325F24A7BE70CE5609, 9089D3F30F23DA2D031817CD60615CDC6036BA52E1B0F7656939112AD8C62EB5 ] C:\Windows\System32\drivers\ahcache.sys
15:08:40.0861 0x1a1c  C:\Windows\System32\drivers\ahcache.sys - ok
15:08:40.0877 0x1a1c  [ EFF6A344D0633A443C677E6CFD4CAE39, EB517CB1B820ADC06016DE7257199E24CC5259C13D9722400D04AECBD54D48D1 ] C:\Windows\System32\drivers\Vid.sys
15:08:40.0877 0x1a1c  C:\Windows\System32\drivers\Vid.sys - ok
15:08:40.0877 0x1a1c  [ D6A5065C892CC1A72826EEA5C322A2D6, E779A4F3C7F627FF62EA8E1FB1C5148281E95128D24A312B07B732BE52836AAF ] C:\Windows\System32\drivers\winhvr.sys
15:08:40.0877 0x1a1c  C:\Windows\System32\drivers\winhvr.sys - ok
15:08:40.0877 0x1a1c  [ 7841121E05EE3D540266092A6E86AE77, 41B0B102769C73694E1BF9D45E59806638591EE9B42F2E1DBF3CFB50D61B5EAD ] C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_e4d35af746093dc3\CompositeBus.sys
15:08:40.0877 0x1a1c  C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_e4d35af746093dc3\CompositeBus.sys - ok
15:08:40.0877 0x1a1c  [ 92DBC56CF0C981AAAAADDEAA6A563E39, E4E13D6992D2AACF39461F55D9FD45FE2CC7A4445CA1B72639BFBB716CEBC460 ] C:\Windows\System32\drivers\kdnic.sys
15:08:40.0877 0x1a1c  C:\Windows\System32\drivers\kdnic.sys - ok
15:08:40.0892 0x1a1c  [ 07B0CD801BBF164F36DA3EE9F25C721D, A8844F880DEE54ADD0CC19486556848A24E7F734AAB9BFD392C0DD5AFF0909DC ] C:\Windows\System32\drivers\umbus.sys
15:08:40.0892 0x1a1c  C:\Windows\System32\drivers\umbus.sys - ok
15:08:40.0892 0x1a1c  [ BB5A205BFB6AC39CE965322B27D07915, 246917DBE85BAAC5C2B26AFAB6F9127F6847DFD6D95C4BE702F96030C7C03E04 ] C:\Windows\System32\drivers\amdppm.sys
15:08:40.0892 0x1a1c  C:\Windows\System32\drivers\amdppm.sys - ok
15:08:40.0892 0x1a1c  [ 17BA5C907E14947574CBB788F4CEB85F, EAA3DBF436637C58666A91905E388287FC54334EBB2589A00727EB09AC4870E3 ] C:\Windows\System32\drivers\atikmpag.sys
15:08:40.0892 0x1a1c  C:\Windows\System32\drivers\atikmpag.sys - ok
15:08:40.0908 0x1a1c  [ F992CE57F4D2A2F988135A1F87337EBC, BBABDDBA2A0CEA39C843D084337ED594C4EF1735D08744332BC8C3925CCBE83F ] C:\Windows\System32\drivers\atikmdag.sys
15:08:40.0908 0x1a1c  C:\Windows\System32\drivers\atikmdag.sys - ok
15:08:40.0908 0x1a1c  [ 9A03DD73B5539B788AD243AF07E7305B, 5B58F50147A78AB76127030D8AD745AC2EC1BDE2487BF379430A6E8A79A20CC2 ] C:\Windows\System32\ntdll.dll
15:08:40.0908 0x1a1c  C:\Windows\System32\ntdll.dll - ok
15:08:40.0908 0x1a1c  [ 03CE2BA7D96391AEA2BFD935D243260F, 7AA02AC1227E1C9817340ED06CB50CAF3F93BE476BC9D475A6B3A6F80B6743BE ] C:\Windows\System32\smss.exe
15:08:40.0908 0x1a1c  C:\Windows\System32\smss.exe - ok
15:08:40.0924 0x1a1c  [ BC779BE4E60B7D8DE754804DB622F6F8, 0FC58E8B65CCDF8EC005FE8F51C61BDBFCA053131647D576956DD2F2E2BB87F1 ] C:\Windows\System32\drivers\drmk.sys
15:08:40.0924 0x1a1c  C:\Windows\System32\drivers\drmk.sys - ok
15:08:40.0924 0x1a1c  [ 41E3E18177FBEADE3A4EDE153C4F8160, 12F71CACA6E69B644B0CBD3E53DF40D93D6A971EE5374AA10F08D281A093A25F ] C:\Windows\System32\drivers\ks.sys
15:08:40.0924 0x1a1c  C:\Windows\System32\drivers\ks.sys - ok
15:08:40.0924 0x1a1c  [ 855678C1760AE7DCE0CF2BAFD989176E, D16AB9065E1F23B8715E62CD4677369C6A696E261771E42240E0D178A9C31F0C ] C:\Windows\System32\drivers\hdaudbus.sys
15:08:40.0924 0x1a1c  C:\Windows\System32\drivers\hdaudbus.sys - ok
15:08:40.0924 0x1a1c  [ 0FBBB090A5CA64A32BB05D58CB872F36, 8FCAE69AE6F76903AC9183D872FF26A9B209DDA0D0CBD6BB3A36683A4AA943B4 ] C:\Windows\System32\drivers\portcls.sys
15:08:40.0924 0x1a1c  C:\Windows\System32\drivers\portcls.sys - ok
15:08:40.0939 0x1a1c  [ A3F8BF8193D36C4C8CEF20AFF28411E9, E6C6321820AFB4D3ABF2DAF894EFE0E8FC308F5DE6F9FE2FFE56F89A319C8C0E ] C:\Windows\System32\drivers\netr28x.sys
15:08:40.0939 0x1a1c  C:\Windows\System32\drivers\netr28x.sys - ok
15:08:40.0939 0x1a1c  [ F978AE0389352BEA2EA921600AF64C16, 183E6EC489331E21CDFA16CE4BE94489DE6A3F12F6823112206BE4E807B99558 ] C:\Windows\System32\drivers\vwifibus.sys
15:08:40.0939 0x1a1c  C:\Windows\System32\drivers\vwifibus.sys - ok
15:08:40.0939 0x1a1c  [ 7E29520C0B9E3E4039C8D2946557CF3D, 371F93A934B0274D0B30E846C7ED21C750E485FA16B45AEFF1310B178FDFA4DE ] C:\Windows\System32\drivers\rt640x64.sys
15:08:40.0939 0x1a1c  C:\Windows\System32\drivers\rt640x64.sys - ok
15:08:40.0939 0x1a1c  [ 8075806A5A0C495CE6BA57C60A88A72D, 8628522EB9139580C126EBD3EC206D635E05434DDF626237D4B72FD371C58F36 ] C:\Windows\System32\drivers\usbport.sys
15:08:40.0955 0x1a1c  C:\Windows\System32\drivers\usbport.sys - ok
15:08:40.0955 0x1a1c  [ 9B0EA8FC801305EB23E8611785BBE847, C4C20D33A758DFD5D22675C50BA2C4A156C587357362A2BBC90BC26C59E491D3 ] C:\Windows\System32\drivers\1394ohci.sys
15:08:40.0955 0x1a1c  C:\Windows\System32\drivers\1394ohci.sys - ok
15:08:40.0955 0x1a1c  [ 4CABA64DF4B1F3E772E70FD4FAE6CA0C, D9C414C26CFA69E18A3996573B8A40714EF7433C3634BF7DD8140BFA9872A07D ] C:\Windows\System32\drivers\usbehci.sys
15:08:40.0955 0x1a1c  C:\Windows\System32\drivers\usbehci.sys - ok
15:08:40.0955 0x1a1c  [ DCEB4F28AE40D0D9B80177C2072545D4, 120B958CB295F629ABD8276D8D71347734976053B35E1AD7B3B005BC3AD1C6AF ] C:\Windows\System32\drivers\usbohci.sys
15:08:40.0955 0x1a1c  C:\Windows\System32\drivers\usbohci.sys - ok
15:08:40.0970 0x1a1c  [ 69E1E41C47B2B11C53A6193E49ADEF11, 0DEB21F5A40C71217B0C1717E19C0FC7D49A10B363B9ABE1BC56F6F77505F16F ] C:\Windows\System32\drivers\NdisVirtualBus.sys
15:08:40.0970 0x1a1c  C:\Windows\System32\drivers\NdisVirtualBus.sys - ok
15:08:40.0970 0x1a1c  [ 8943C52909164A64195645C618C276BE, 8FF7B41A68CD4E2D6C5553E224C59C8F5A6C20B2508940D5F0E8E64EA85051AC ] C:\Windows\System32\drivers\wmiacpi.sys
15:08:40.0970 0x1a1c  C:\Windows\System32\drivers\wmiacpi.sys - ok
15:08:40.0970 0x1a1c  [ B8ACABC8939CB50047C2BF0272B5156C, 36D8E38C6E5BE6CCB235E8C38E54ECDCE377E6E96895C13F1BBEDB4441A2BC2B ] C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_31f554b660026323\swenum.sys
15:08:40.0970 0x1a1c  C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_31f554b660026323\swenum.sys - ok
15:08:40.0970 0x1a1c  [ A6F294B38F3DFB67D6B6E1D1E60A402A, 11C51B35DB2A3510258F3B722C12326BF068360CFA1E81FF552BA0BD19DE38E8 ] C:\Windows\System32\drivers\LGBusEnum.sys
15:08:40.0970 0x1a1c  C:\Windows\System32\drivers\LGBusEnum.sys - ok
15:08:40.0986 0x1a1c  [ 2A9F60E6531F42B31874618743037719, BFD61AD03ADEF69421ECB07820EDB79D425048EC01A65A0D1E8A4527699196DC ] C:\Windows\System32\drivers\LGJoyXlCore.sys
15:08:40.0986 0x1a1c  C:\Windows\System32\drivers\LGJoyXlCore.sys - ok
15:08:40.0986 0x1a1c  [ 1B0A56B28A0DBAAE729F51C50511A614, E2FAFBCD459A49ECAEC72A45BDC9DCD1376EA38AAF5CDBFF16F3BBFD8871A97D ] C:\Windows\System32\GdiPlus.dll
15:08:40.0986 0x1a1c  C:\Windows\System32\GdiPlus.dll - ok
15:08:40.0986 0x1a1c  [ 76C18F3B4EB5BC611FA7F249CF676911, 2EB981688FCCB1F6ABF0C4300DFD7CBB495899A9D0461F91C5054AF173AC34F3 ] C:\Windows\System32\drivers\rdpbus.sys
15:08:40.0986 0x1a1c  C:\Windows\System32\drivers\rdpbus.sys - ok
15:08:41.0002 0x1a1c  [ 180FAF69B9AD13BA08E20BE87544D606, 9D2ACDBFCCF2B70C4E69114D73D33189037A298FEF80F2ADF841601649CAE6F7 ] C:\Windows\System32\shell32.dll
15:08:41.0002 0x1a1c  C:\Windows\System32\shell32.dll - ok
15:08:41.0002 0x1a1c  [ 12112113BDFAF0CC03517604440217D5, C5D4F3DFA14DEABD6A845E6F0B04C39A9A539C1A4D6C71B25943EB9BF9C9A3F5 ] C:\Windows\System32\clbcatq.dll
15:08:41.0002 0x1a1c  C:\Windows\System32\clbcatq.dll - ok
15:08:41.0002 0x1a1c  [ 14E4FCFCE2465FC30B2B58A072568400, CFDDAFC19A8C7CB0DF0848479CEA155B35258755AC9FCB7A71370BDA5CF7757E ] C:\Windows\System32\wow64.dll
15:08:41.0002 0x1a1c  C:\Windows\System32\wow64.dll - ok
15:08:41.0017 0x1a1c  [ BF0F47FB6368A2275816F8823E16E414, FFAF105094BA954FA9B72BB0526135CC386314D9ACC12000098FB34A8736747A ] C:\Windows\System32\drivers\usbd.sys
15:08:41.0017 0x1a1c  C:\Windows\System32\drivers\usbd.sys - ok
15:08:41.0017 0x1a1c  [ 04A34578BC8A70B5698D1D950C4F22FB, 183FB5DB96F97498AF6E89A4B7129582C5F2DCA1AD0C17ED114F758B4518D187 ] C:\Windows\System32\drivers\usbhub.sys
15:08:41.0017 0x1a1c  C:\Windows\System32\drivers\usbhub.sys - ok
15:08:41.0017 0x1a1c  [ 1BB728819E20BA1B951682EE4ABF5034, 8BADF8E4E018394A9003BE5428A7420A534E7265CC6F545AF1EF2AFB532ED4E4 ] C:\Windows\System32\combase.dll
15:08:41.0017 0x1a1c  C:\Windows\System32\combase.dll - ok
15:08:41.0017 0x1a1c  [ 4E68997189FD4655EE566A1C5DD74419, 28176CB9C7E4436BDD29C5CAACB82EF981AEA4DC5780B46A272FD12A96720B97 ] C:\Windows\System32\nsi.dll
15:08:41.0017 0x1a1c  C:\Windows\System32\nsi.dll - ok
15:08:41.0033 0x1a1c  [ CEDD2C232AA5F18C7917497361E76F61, 1690C0AF6E6AA9925AC75DA610053AEB50F060A872A702F8F97AF3B5B79CFA7B ] C:\Windows\System32\sechost.dll
15:08:41.0033 0x1a1c  C:\Windows\System32\sechost.dll - ok
15:08:41.0033 0x1a1c  [ CC6C389834B7835AC734C05AAB8411C4, 8F8CA854C5F45E5F829125B6F39C3D03BDB55D9FB0896B526FB89E7D3513C9C1 ] C:\Windows\System32\msctf.dll
15:08:41.0033 0x1a1c  C:\Windows\System32\msctf.dll - ok
15:08:41.0033 0x1a1c  [ 68ABA37C3B6EB6E27BCE6493AD690396, F1A9EE9CC8C07289C2214F734B1566F9783A6E3CC93AE371B3280AA883F7ECC3 ] C:\Windows\System32\imagehlp.dll
15:08:41.0033 0x1a1c  C:\Windows\System32\imagehlp.dll - ok
15:08:41.0049 0x1a1c  [ A5398A699E617D6F6440E3EEF9060507, F7378B11FD894AC1931F8E49AEEBEC341F6DC02D1A08A758F2EE93C305D46892 ] C:\Windows\System32\Wldap32.dll
15:08:41.0049 0x1a1c  C:\Windows\System32\Wldap32.dll - ok
15:08:41.0049 0x1a1c  [ D77AFFFFADCE023AA3B8E9AAD2759A99, BEAD3AC7A1903269DB4D0C06FD5C62396BF5724D3F12BD266C24E732F643FBBD ] C:\Windows\System32\ole32.dll
15:08:41.0049 0x1a1c  C:\Windows\System32\ole32.dll - ok
15:08:41.0049 0x1a1c  [ CABC32218756D2FE73DA9D343D676729, 462083FAF17D701F8F337B73F09A60A8CB0643AED8B050873B45B73BCA4D7486 ] C:\Windows\System32\SHCore.dll
15:08:41.0049 0x1a1c  C:\Windows\System32\SHCore.dll - ok
15:08:41.0049 0x1a1c  [ 14FBF8BA6DF05FCDB75F5E981C2B031A, FAE7F170429952777D45641E68F4E0B8E5CE31A38159179CB17B2CB84D8E63F0 ] C:\Windows\System32\advapi32.dll
15:08:41.0049 0x1a1c  C:\Windows\System32\advapi32.dll - ok
15:08:41.0064 0x1a1c  [ FD9A5BCC3AFB02E87668B749546B6229, 4BE969A11CEE8033F40EDE7E06A5904B328D3FC1842855C0DB38D5EEF458219C ] C:\Windows\System32\drivers\AtihdWT6.sys
15:08:41.0064 0x1a1c  C:\Windows\System32\drivers\AtihdWT6.sys - ok
15:08:41.0064 0x1a1c  [ 7E3BEDEF17FFC3DA9E2E306138C5250F, D717CE30EE9E1FAAA59837E0755ED57FD76629AA28E241C23269BBBFC430EF0E ] C:\Windows\System32\drivers\ksthunk.sys
15:08:41.0064 0x1a1c  C:\Windows\System32\drivers\ksthunk.sys - ok
15:08:41.0064 0x1a1c  [ 6F432A26C3998A0BE71916955F0F29B8, F3E3BDF50B9E54A1449BE0DA21600C371082804A5EEB937A6BC8D97A1F73781F ] C:\Windows\System32\coml2.dll
15:08:41.0064 0x1a1c  C:\Windows\System32\coml2.dll - ok
15:08:41.0064 0x1a1c  [ C2F868881D48A568B525255F084EF063, EFB1704AE223CF886EDA5F1411C8178EDE4B5E1F7EE373E3DA89A6EA1A57D91D ] C:\Windows\System32\drivers\RTKVHD64.sys
15:08:41.0064 0x1a1c  C:\Windows\System32\drivers\RTKVHD64.sys - ok
15:08:41.0080 0x1a1c  [ D385B6882BFE47BEDF2A2B9547C91A16, A4E40C348031047B966C18F2761EE0460A226905721D2F29327528CB2B213CB1 ] C:\Windows\System32\kernel32.dll
15:08:41.0080 0x1a1c  C:\Windows\System32\kernel32.dll - ok
15:08:41.0080 0x1a1c  [ 00B22901A8C6D1C67DD7B0E2D63763AB, 9E349F813AF29D06EAB70B2D5C547762A101E0C6924C4FE69D52E596E0EE44F7 ] C:\Windows\System32\gdi32.dll
15:08:41.0080 0x1a1c  C:\Windows\System32\gdi32.dll - ok
15:08:41.0080 0x1a1c  [ 07A2782251672AC335122A8BD0F498F1, 10B640AEEB310263D5418F65EC05E6127F2C224C0AC837E71816D03DB207C510 ] C:\Windows\System32\psapi.dll
15:08:41.0080 0x1a1c  C:\Windows\System32\psapi.dll - ok
15:08:41.0095 0x1a1c  [ 453866E559F1E327981D2404A107225C, F2086B3BA8E8DB1DEE9919B2BCD768C93C71CADDEF78041848939D661B865C14 ] C:\Windows\System32\difxapi.dll
15:08:41.0095 0x1a1c  C:\Windows\System32\difxapi.dll - ok
15:08:41.0095 0x1a1c  [ A7777BE61702923E539E5EAA58A44240, 74656439887E9D377BA5F1FBC8E0D71795B5A59EC190DE014F83D5C3D20CF308 ] C:\Windows\System32\rpcrt4.dll
15:08:41.0095 0x1a1c  C:\Windows\System32\rpcrt4.dll - ok
15:08:41.0095 0x1a1c  [ C606984BA4C7201B6DA39F17B548DB79, DC4193318D2AAFC20C3DF8E5848800426836AAB78A831AB7915EE7AEB4030E3B ] C:\Windows\System32\normaliz.dll
15:08:41.0095 0x1a1c  C:\Windows\System32\normaliz.dll - ok
15:08:41.0095 0x1a1c  [ 65DF7E29BE633FFE01AE506F5C730B21, 6D66A6E08981F714B05A2140EFA775C36E38B13BA8987201940C6133717E116A ] C:\Windows\System32\setupapi.dll
15:08:41.0095 0x1a1c  C:\Windows\System32\setupapi.dll - ok
15:08:41.0111 0x1a1c  [ 076BE40E22F302758A4E37E8C2F2CD57, 16F22C87393DBEAFABA7F7C5239EC12AF9E4FA99DDFCE8B2A8240C598AB4249E ] C:\Windows\System32\oleaut32.dll
15:08:41.0111 0x1a1c  C:\Windows\System32\oleaut32.dll - ok
15:08:41.0111 0x1a1c  [ 9B2B0E1D4965C3C6C9E699A9F6738FFB, 23008F528D0039B3590E54246A9A332F66EF691E207B1221F8C2F0B19F9B85ED ] C:\Windows\System32\msvcrt.dll
15:08:41.0111 0x1a1c  C:\Windows\System32\msvcrt.dll - ok
15:08:41.0111 0x1a1c  [ 34DCFB57777F1FA6FFDA6E266A3D6D93, B299F2BEF08CD1404D79B166AA2DAD42396CB78B21E91536691886F3274A3356 ] C:\Windows\System32\comdlg32.dll
15:08:41.0111 0x1a1c  C:\Windows\System32\comdlg32.dll - ok
15:08:41.0127 0x1a1c  [ F4F4B38D0ECB0EA465DFA1244BE8D7CD, A9809B5ED6920B8B28ABF0F7B3904AAA19A6EA661F10E5C66A952F5D74516CEB ] C:\Windows\System32\wow64cpu.dll
15:08:41.0127 0x1a1c  C:\Windows\System32\wow64cpu.dll - ok
15:08:41.0127 0x1a1c  [ 7443BB4055522A25CC73B7AC18F826FC, ED88BF9360F25B96C6BF5E5E54B7959FFF07B11DC75A4F036F21AB67B596672A ] C:\Windows\System32\ws2_32.dll
15:08:41.0127 0x1a1c  C:\Windows\System32\ws2_32.dll - ok
15:08:41.0127 0x1a1c  [ A5CF51E5938BC3B36F035678EADFFAD3, 78973633CEAC4EFC9273534ABA95C45FCC2120FDC76DAE23A6A44D169EEDEAEA ] C:\Windows\System32\imm32.dll
15:08:41.0127 0x1a1c  C:\Windows\System32\imm32.dll - ok
15:08:41.0127 0x1a1c  [ 137720CDB7208AA880CD5C749C2D4B11, 58051CF5CB419BBA3804B6D69240BA22C3B0AA8259FDD42BDC53623B747ED1F9 ] C:\Windows\System32\wow64win.dll
15:08:41.0127 0x1a1c  C:\Windows\System32\wow64win.dll - ok
15:08:41.0142 0x1a1c  [ ECA7D40680C32FD41FB7A1B30AA5E114, F9BA12ACCE850AFFC6C9F1EC81568A57DE50C0B7317B4C4C3955A0CA8F707B25 ] C:\Windows\System32\shlwapi.dll
15:08:41.0142 0x1a1c  C:\Windows\System32\shlwapi.dll - ok
15:08:41.0142 0x1a1c  [ F9068469C512AB3B8EE0306A1B40CB56, DA784E3F5B59C3CADDCCBB61CD1C206B5747223E4E02FD73BC0E8D0AA0268906 ] C:\Windows\System32\user32.dll
15:08:41.0142 0x1a1c  C:\Windows\System32\user32.dll - ok
15:08:41.0142 0x1a1c  [ 65D63D5F9A9D6988C9E3DB4862D8C1E0, 208FBE0136AEBC989748B526A4BB0C656B73A10E46EF640A93E3AB8F02358B98 ] C:\Windows\System32\win32u.dll
15:08:41.0142 0x1a1c  C:\Windows\System32\win32u.dll - ok
15:08:41.0142 0x1a1c  [ 96DA7F379B07DC2496D48D55CF3C0DD8, 045679986C4ECB5D3148B3303076EDF2FEC47F52C775F9F077106830426DC6D0 ] C:\Windows\System32\bcryptprimitives.dll
15:08:41.0142 0x1a1c  C:\Windows\System32\bcryptprimitives.dll - ok
15:08:41.0158 0x1a1c  [ 02411B2016D3A537759143033C2D3AA6, DF1C3927C42A1C7B8B5EA009783BB3FCB1FF48FC8542A1EF5D18ECAF78AD5D3E ] C:\Windows\System32\cfgmgr32.dll
15:08:41.0158 0x1a1c  C:\Windows\System32\cfgmgr32.dll - ok
15:08:41.0158 0x1a1c  [ 1496601A77E4F569733C33F5F27DDD53, E2267734B6FF4A08D6C619B9E9D173B9ACD46681602D88979A4866A4CA63DD46 ] C:\Windows\System32\ucrtbase.dll
15:08:41.0158 0x1a1c  C:\Windows\System32\ucrtbase.dll - ok
15:08:41.0158 0x1a1c  [ 60AF5455C0A180E95DAD7E851D7407DB, 4682B99FD63617241BDE436554C5B9D2BA0247BE4ED958EF05785D1A12E50E01 ] C:\Windows\System32\bcrypt.dll
15:08:41.0158 0x1a1c  C:\Windows\System32\bcrypt.dll - ok
15:08:41.0174 0x1a1c  [ B3DDDAD6989A581853CAA3D380198EDD, E8D763341FF4395CD5E3B503490F53B3349A122148C01ED5AA1450528AD4931E ] C:\Windows\System32\msvcp_win.dll
15:08:41.0174 0x1a1c  C:\Windows\System32\msvcp_win.dll - ok
15:08:41.0174 0x1a1c  [ F90316FE094F4AB2FEF98CA624A04654, 78D6A1CD068F5DE2A3DE7F83A975667FA332AA65EC59DD5991CEA1D021BD47C5 ] C:\Windows\System32\cryptsp.dll
15:08:41.0174 0x1a1c  C:\Windows\System32\cryptsp.dll - ok
15:08:41.0174 0x1a1c  [ F48F301256CCAE86210FD3CD5EF4220A, B547E08FD901CAD611C12DB4DF8E1C5E49A6D52942E71B83897D17D2AA438481 ] C:\Windows\System32\gdi32full.dll
15:08:41.0174 0x1a1c  C:\Windows\System32\gdi32full.dll - ok
15:08:41.0174 0x1a1c  [ B485EB4CB562840A434112D7F89D9106, A19845AB7773F5A5F9AFC16F3CF3658E86009FA576B0E5E0AB2A536AAA4103B2 ] C:\Windows\System32\wintrust.dll
15:08:41.0174 0x1a1c  C:\Windows\System32\wintrust.dll - ok
15:08:41.0189 0x1a1c  [ 1EF329663D4102B61849CDF42E6A2370, AC56B7287E8D29ECE175F671AE0B4BFD2B444CD59BDA8499A063A2E3F6997247 ] C:\Windows\System32\windows.storage.dll
15:08:41.0189 0x1a1c  C:\Windows\System32\windows.storage.dll - ok
15:08:41.0189 0x1a1c  [ B116EC25D7AD2EDD602A6EDEA8D7681C, 6E1D3D27E58CB7F770550C9E732B7DDBAA2ADDE8E8A56107FD68E20C42FEE8D9 ] C:\Windows\System32\drivers\usbccgp.sys
15:08:41.0189 0x1a1c  C:\Windows\System32\drivers\usbccgp.sys - ok
15:08:41.0189 0x1a1c  [ C478E26761EEF315C298F4986E58C818, 12AE93F2B5CB784E9DCA1958AB75900A7A879EDCEE7F33959BCF1772ECD4F718 ] C:\Windows\System32\crypt32.dll
15:08:41.0189 0x1a1c  C:\Windows\System32\crypt32.dll - ok
15:08:41.0189 0x1a1c  [ 17619390692C442BD0EC85374E702A18, EC7FC981C222E8037048F5D1410D14E6427FCC7C66639A2721E4BDDE7745C69E ] C:\Windows\System32\drivers\hidclass.sys
15:08:41.0189 0x1a1c  C:\Windows\System32\drivers\hidclass.sys - ok
15:08:41.0205 0x1a1c  [ 188E1969285094EDF3506948F1DE001E, B4E3B3ED2198CA40BC8DBDF7C5B9BE71F4DD694536BDA866E52C4F16B8042CE5 ] C:\Windows\System32\drivers\hidparse.sys
15:08:41.0205 0x1a1c  C:\Windows\System32\drivers\hidparse.sys - ok
15:08:41.0205 0x1a1c  [ 69EDC8900C69E2BBB13D2FD24B3A085C, EA95EA30FEE4788C3D41C723597519B380C7D3E71C89E19DB9F53944E4F4118C ] C:\Windows\System32\drivers\hidusb.sys
15:08:41.0205 0x1a1c  C:\Windows\System32\drivers\hidusb.sys - ok
15:08:41.0205 0x1a1c  [ 46708375D885CDD367CB6027A515D0E0, E36FF90109B18FC0F5549885134DC5D787DD6246F88C8B896F6C91199BA45F66 ] C:\Windows\System32\drivers\mouclass.sys
15:08:41.0205 0x1a1c  C:\Windows\System32\drivers\mouclass.sys - ok
15:08:41.0205 0x1a1c  [ 165AE5452B9155025814BAE5535E3019, 53860753238F6F953FE3B8F64B0953AA885FDCAE58C9EAD7E29EBDAABC4F96AD ] C:\Windows\System32\drivers\mouhid.sys
15:08:41.0205 0x1a1c  C:\Windows\System32\drivers\mouhid.sys - ok
15:08:41.0220 0x1a1c  [ 8F16F4D9D8E57AF55D42E182E8F83BCA, 0C1DE89A478945DEAA3CBE7D89B4552A3A7DA5275B9F2A044F1B4FE1525279EB ] C:\Windows\System32\drivers\kbdhid.sys
15:08:41.0220 0x1a1c  C:\Windows\System32\drivers\kbdhid.sys - ok
15:08:41.0220 0x1a1c  [ 38EDAC4667F2616442770D8DB0B2DC25, 0B23BA25B76EB2EC4D57F0F1DDBD29A515A865C201050B3A00B50C232BE9BCA0 ] C:\Windows\System32\drivers\kbdclass.sys
15:08:41.0220 0x1a1c  C:\Windows\System32\drivers\kbdclass.sys - ok
15:08:41.0220 0x1a1c  [ 50D683EA444698985E5E88A304658A86, E91161625A4EAEDD062532C55486F1336C60267EBD50043A209843C4D1902EF8 ] C:\Windows\System32\KernelBase.dll
15:08:41.0220 0x1a1c  C:\Windows\System32\KernelBase.dll - ok
15:08:41.0236 0x1a1c  [ E9BCF3B07E211C4548F4382735EF4DA7, 261CE3F1BBBF33074450004DF9D560498484317ED44E1E75DE8C3D2DFD772387 ] C:\Windows\System32\comctl32.dll
15:08:41.0236 0x1a1c  C:\Windows\System32\comctl32.dll - ok
15:08:41.0236 0x1a1c  [ 56753185D301D7718470A4ADF780395B, CA954AC516F91F28301378214335FF808D0E9331018A6474DFAA25D18D0FD6A8 ] C:\Windows\System32\kernel.appcore.dll
15:08:41.0236 0x1a1c  C:\Windows\System32\kernel.appcore.dll - ok
15:08:41.0236 0x1a1c  [ 6C2EE08E0066A9DCBC77612CACF76EED, DC1C77C7DEC3271B9AA2F136E0262E49770B586458F89CFDBA48D3DC4B5425C0 ] C:\Windows\System32\msasn1.dll
15:08:41.0236 0x1a1c  C:\Windows\System32\msasn1.dll - ok
15:08:41.0236 0x1a1c  [ 082136DC077FAD6C3D1ED64BF46888A6, F9C97CFFAB7D3A61175F902CF0062CA945BC8CECFC825BF3B6096864855D43D9 ] C:\Windows\System32\powrprof.dll
15:08:41.0236 0x1a1c  C:\Windows\System32\powrprof.dll - ok
15:08:41.0252 0x1a1c  [ 68E256F56C74B31867E23B8143B509C3, 14B733E344394B1C5753AF0E58026B50BCFB19868F9380197442FDABA4BC974E ] C:\Windows\System32\profapi.dll
15:08:41.0252 0x1a1c  C:\Windows\System32\profapi.dll - ok
15:08:41.0252 0x1a1c  [ 0A68189FC5A0A09FF3BF7CA60278864C, 0837A792B16051C05CB4D9B2B190BDA66AE3E7FF879F468FDD4A2967D8DFD3DA ] C:\Windows\System32\drivers\mshidkmdf.sys
15:08:41.0252 0x1a1c  C:\Windows\System32\drivers\mshidkmdf.sys - ok
15:08:41.0252 0x1a1c  [ 168A32D53F2BB06AE598AEBD744928BB, 0912D5556A22137602DF960BA7377256448D63FB825003C237061A346D4ADD37 ] C:\Windows\System32\drivers\wachidrouter.sys
15:08:41.0252 0x1a1c  C:\Windows\System32\drivers\wachidrouter.sys - ok
15:08:41.0252 0x1a1c  [ BDE9A45B2B5D38B610ED2600B91F93AE, 5B9DC5248CD390E2D6527C6BBB7B39CD271DC6538830B6A5A581DC168DA38A33 ] C:\Windows\System32\drivers\wacomrouterfilter.sys
15:08:41.0252 0x1a1c  C:\Windows\System32\drivers\wacomrouterfilter.sys - ok
15:08:41.0267 0x1a1c  [ A8DD94CB385BBA9FE76A5A16842E95EB, 59362E84AB16150582DC2E6DB2108B0C120A4C584CB447AF56D9F28C8FB1E24D ] C:\Windows\System32\drivers\WIMBLEMS.sys
15:08:41.0267 0x1a1c  C:\Windows\System32\drivers\WIMBLEMS.sys - ok
15:08:41.0267 0x1a1c  [ 990D01F2A6D10A33C382191A24BBAAAF, 644417B839762A3325920A87C3D955CA974A4EC1D6F008216910267435921255 ] C:\Windows\System32\autochk.exe
15:08:41.0267 0x1a1c  C:\Windows\System32\autochk.exe - ok
15:08:41.0267 0x1a1c  [ FF22D57250991143E6E969EE7BFAC0F1, A190BEEDE012625FC7EB26B65BBABEE03DC937B1719A2B2B2CD8AB9220DA72C3 ] C:\Windows\System32\drivers\USBSTOR.SYS
15:08:41.0267 0x1a1c  C:\Windows\System32\drivers\USBSTOR.SYS - ok
15:08:41.0283 0x1a1c  [ 106290B54A85834C0E6EB005BC54AD31, 3078E5A5AEE958550A0E21E68FFB09EB8B28E150D63D4D36D1FF0EEA74750D2A ] C:\Windows\System32\drivers\EhStorClass.sys
15:08:41.0283 0x1a1c  C:\Windows\System32\drivers\EhStorClass.sys - ok
15:08:41.0283 0x1a1c  [ 795E4FBF6EC770F064550270C5BEBC75, C2B8B5E82EF3829FD6C1300947DE17BFD2CA62695108A0D747B623D807899C07 ] C:\Windows\System32\win32kbase.sys
15:08:41.0283 0x1a1c  C:\Windows\System32\win32kbase.sys - ok
15:08:41.0283 0x1a1c  [ D2A46F11D77A2C59636F3DF3CFE79005, F949329C4A0D63DDB89469A3AB9B86A2F4445DFC4D0E56651C98BAFCFFEE97FA ] C:\Windows\System32\win32kfull.sys
15:08:41.0283 0x1a1c  C:\Windows\System32\win32kfull.sys - ok
15:08:41.0283 0x1a1c  [ FF142BF1AC7F5BAE34ECF919B57BC148, 49E43AF513907ACF83F74F96F9C5FBE2C5EC787F22CC88DEACC710B060E964EE ] C:\Windows\System32\win32k.sys
15:08:41.0283 0x1a1c  C:\Windows\System32\win32k.sys - ok
15:08:41.0299 0x1a1c  [ DBB2180297DAE7D0FC57EECACB2029F4, 5EAEC2E0162CC8A83848D8D8EA6121BD5B3FF4EEE0F458171C2DB0D78FE0F1DE ] C:\Windows\System32\basesrv.dll
15:08:41.0299 0x1a1c  C:\Windows\System32\basesrv.dll - ok
15:08:41.0299 0x1a1c  [ D5AE22FDFB0549BCA4676F171D1972F1, 4F315302DBA388E4C4643F09F12333C7DAEB9BCE64DCFCBABF4D57E2643D90E1 ] C:\Windows\System32\csrsrv.dll
15:08:41.0299 0x1a1c  C:\Windows\System32\csrsrv.dll - ok
15:08:41.0299 0x1a1c  [ 7D64128BC1EECE41196858897596EBC8, FB40ED0FFA6BC795923A941DAB6B7D6B43583D0F152A6DF4D8953D2C1A0CB417 ] C:\Windows\System32\csrss.exe
15:08:41.0299 0x1a1c  C:\Windows\System32\csrss.exe - ok
15:08:41.0299 0x1a1c  [ BD37FD9CEA66D6649333997383DBB829, 601B32297E6159FC82A93633A93CE240A1D20A06CB22AF8E332E3DEC6513B65F ] C:\Windows\System32\winsrv.dll
15:08:41.0299 0x1a1c  C:\Windows\System32\winsrv.dll - ok
15:08:41.0314 0x1a1c  [ 553E9A2C23BB661BCF61B9FC926B1376, 8D25C6013A433719475E1320C4C178AC07B7E6E08A90C0C3F34FC26C735E3D56 ] C:\Windows\System32\winsrvext.dll
15:08:41.0314 0x1a1c  C:\Windows\System32\winsrvext.dll - ok
15:08:41.0314 0x1a1c  [ FB6269E733D774D5AF378870032239A9, 314E040BB268C20210D0897819FE185D3B74557D9806CCAFDCA055D01ECF595C ] C:\Windows\System32\drivers\dxgmms1.sys
15:08:41.0314 0x1a1c  C:\Windows\System32\drivers\dxgmms1.sys - ok
15:08:41.0314 0x1a1c  [ 753917AE790F884EE62D5E1F8EBFCC44, 73413CF9BE955A794172086B842B07B7E293896D11428425544A6899631DC2D2 ] C:\Windows\System32\drivers\monitor.sys
15:08:41.0314 0x1a1c  C:\Windows\System32\drivers\monitor.sys - ok
15:08:41.0330 0x1a1c  [ D52A0AAD2FD855A92A8854FC48C996D1, 27B7B8F070AA5263CD777FCABAD57A0F752393F268CD326DB5BB48F573A99C02 ] C:\Windows\System32\drivers\dxgmms2.sys
15:08:41.0330 0x1a1c  C:\Windows\System32\drivers\dxgmms2.sys - ok
15:08:41.0330 0x1a1c  [ 4BA612035DDA63F8F12CA6DD485FEE35, 176F70FE40B5584CACAB1DD1BDC0E895FF25A62E312DDADC8A259531CA92EB52 ] C:\Windows\System32\sxssrv.dll
15:08:41.0330 0x1a1c  C:\Windows\System32\sxssrv.dll - ok
15:08:41.0330 0x1a1c  [ 4E20895E641F2C3E68AB3DB91A1A16F1, 13AD43EE6D19DFC9709C3106D796BC3F21791A564E443D042A5AA117F2680649 ] C:\Windows\System32\wininit.exe
15:08:41.0330 0x1a1c  C:\Windows\System32\wininit.exe - ok
15:08:41.0330 0x1a1c  [ 3561F3AFBF527F27620FB432B7E59699, FF5277B0C9BDF1F6E63037846A3D24F931BFD26D18C05CABEC5C6CD2AE05430D ] C:\Windows\System32\sspicli.dll
15:08:41.0330 0x1a1c  C:\Windows\System32\sspicli.dll - ok
15:08:41.0345 0x1a1c  [ FF62E35039CCDDB9F5E1283AE1741363, FDE8CCBA098FA7873A641E6980592DEB58894643742CB0EE12DC50E375DB4307 ] C:\Windows\System32\userenv.dll
15:08:41.0345 0x1a1c  C:\Windows\System32\userenv.dll - ok
15:08:41.0345 0x1a1c  [ 8280B281BB5C869C57D3C1064F064AB4, B50E542FC13EBE71EA5E2884DA5D8F7B9A4D7D5B81F1905635884CCC92364F51 ] C:\Windows\System32\wininitext.dll
15:08:41.0345 0x1a1c  C:\Windows\System32\wininitext.dll - ok
15:08:41.0345 0x1a1c  [ 7A82544B1D4FDFA62067FD126070BD65, 2251AE5DE74996495D472E1DAE9795C09E0E2D942145253E489EB13DB4C6181D ] C:\Windows\System32\KBDCA.DLL
15:08:41.0345 0x1a1c  C:\Windows\System32\KBDCA.DLL - ok
15:08:41.0345 0x1a1c  [ 6E49143CFFB41BE4DB19688EF2E61F97, 993AE2B1303C908B0382867A9EEAF6A2C47D4EDD72810CECFCA67B5D0BFA7FB1 ] C:\Windows\System32\KBDCAN.DLL
15:08:41.0345 0x1a1c  C:\Windows\System32\KBDCAN.DLL - ok
15:08:41.0361 0x1a1c  [ EB0AE6E31D3F7C12A13D7FA98185B734, A4CBD236FF56AD13036AAC5EB8B5B0CA2422C45264712F8CED5BEFE758EA3890 ] C:\Windows\System32\KBDUS.DLL
15:08:41.0361 0x1a1c  C:\Windows\System32\KBDUS.DLL - ok
15:08:41.0361 0x1a1c  [ 92813D01CD2D19003BDB4B978DFFF2A7, E727DEC14A3A29FBF9B67E0A06FB92101975EA063BAD4F6784415386556261F1 ] C:\Windows\System32\sxs.dll
15:08:41.0361 0x1a1c  C:\Windows\System32\sxs.dll - ok
15:08:41.0361 0x1a1c  [ 7A20DA1F1406492A70E9C8243634467B, BF74B5707C2F035DA0A348658A60E22C32D0F57340826FC4EFCBA3B41EA9C8F3 ] C:\Windows\System32\services.exe
15:08:41.0361 0x1a1c  C:\Windows\System32\services.exe - ok
15:08:41.0361 0x1a1c  [ 38DB36BD867B3D24FDA2AF64D083F27E, 125659572EC4631A21BD2575C866D22EA2A49F4AAA4DD790F2333AFAB8CA889C ] C:\Windows\System32\lsasrv.dll
15:08:41.0361 0x1a1c  C:\Windows\System32\lsasrv.dll - ok
15:08:41.0377 0x1a1c  [ 568C5CBF9877F6B9E39D1E7CA0FF0A36, BBC83E4759D4B82BAD31E371AD679AA414C72273BF97CEE5AED8337ED8A4D79F ] C:\Windows\System32\lsass.exe
15:08:41.0377 0x1a1c  C:\Windows\System32\lsass.exe - ok
15:08:41.0377 0x1a1c  [ 81D45C45F9F8E5D8700311EAB24738C6, 675F56EA3CA673C52D4EA2F478DDEF3F660A8E426F5999CE8CE345B5FE306362 ] C:\Windows\System32\devobj.dll
15:08:41.0377 0x1a1c  C:\Windows\System32\devobj.dll - ok
15:08:41.0377 0x1a1c  [ 7AB5E2C554495DB5309BB74B6EAABF85, 8C23D9B636FFC880326F6BC3BEFAEA782F79CFA6531D6CECFA7A604C27A6FD7B ] C:\Windows\System32\EventAggregation.dll
15:08:41.0377 0x1a1c  C:\Windows\System32\EventAggregation.dll - ok
15:08:41.0392 0x1a1c  [ 54AE7DA8C6138FBFC37570EEE6E65D4C, EFBD46C411ADB350EEB99B5BBB6E6BC26DA8D144A231FB61F53B0794395560C1 ] C:\Windows\System32\samsrv.dll
15:08:41.0392 0x1a1c  C:\Windows\System32\samsrv.dll - ok
15:08:41.0392 0x1a1c  [ 41A13529436ADA43E9B805CBE36A2B3E, C78621E53E1E92586039285014864C04AFD2F7E4AC90F4E1A80405A60144BAD0 ] C:\Windows\System32\cdd.dll
15:08:41.0392 0x1a1c  C:\Windows\System32\cdd.dll - ok
15:08:41.0392 0x1a1c  [ 5E2B0EE7F62779521BBECF6EF4B7B3AC, 78CAA858F31D6514BEF3AF9B2FA374F6FB1F0650B7DD381148447A834BD88ED2 ] C:\Windows\System32\ncrypt.dll
15:08:41.0392 0x1a1c  C:\Windows\System32\ncrypt.dll - ok
15:08:41.0408 0x1a1c  [ 92419F3B74C6C3D7304B7665DA984552, 01075068DC177AE38293A76C9DA5B2E09426093ECA4F6A53281CB6EC2FC6CD17 ] C:\Windows\System32\winlogon.exe
15:08:41.0408 0x1a1c  C:\Windows\System32\winlogon.exe - ok
15:08:41.0408 0x1a1c  [ 1AA3971C69A554471DFAE297DBAC1CD4, ADF2CAD7E6705B318034390898F74CFC73EAB40652019CA698843A4EEF7BE95C ] C:\Windows\System32\ntasn1.dll
15:08:41.0408 0x1a1c  C:\Windows\System32\ntasn1.dll - ok
15:08:41.0408 0x1a1c  [ D811B1BB95E0F41B11ECB0B90ADBC29E, C4B73721500EF492C8BAFD2BB4EEF4C989C64A8B8E8A37C7314E2860A0ADCC9B ] C:\Windows\System32\msprivs.dll
15:08:41.0408 0x1a1c  C:\Windows\System32\msprivs.dll - ok
15:08:41.0424 0x1a1c  [ 8916FD91A6D9569444B6380B6721BEFF, 3FC22547F75CF6F1B8732297D6F381E6916285B989D403FC5FD4026536E36AA0 ] C:\Windows\System32\netprovfw.dll
15:08:41.0424 0x1a1c  C:\Windows\System32\netprovfw.dll - ok
15:08:41.0424 0x1a1c  [ 63817869F82F4F08B7929C8E14560549, 789309508D3B45B0D3EC21E5DB2C3E0A66197500BA29E2E88FB21358A6155315 ] C:\Windows\System32\wldp.dll
15:08:41.0424 0x1a1c  C:\Windows\System32\wldp.dll - ok
15:08:41.0424 0x1a1c  [ 40349C0CC1A2D08E9E5FFF65296E29DF, F53C04CF0EE4943D4EA82D94604CB46816BEB53545D3357C718D2A46516B1BDB ] C:\Windows\System32\cryptbase.dll
15:08:41.0424 0x1a1c  C:\Windows\System32\cryptbase.dll - ok
15:08:41.0424 0x1a1c  [ 7CC01D973BE85B6E1C8F74E7B316E016, 2D36698D24277F8DD85AB30F6F91D2C0B81BE0B8036140A7890D4ABE3FF7033A ] C:\Windows\System32\joinutil.dll
15:08:41.0424 0x1a1c  C:\Windows\System32\joinutil.dll - ok
15:08:41.0439 0x1a1c  [ 1FAB81F8395BFF5D1BDD12FF1D36B43D, 74DEBCC55EC4DD0D2979F5A94195066B6C5F4908B14530DC7EAF24DAE01A6893 ] C:\Windows\System32\kerberos.dll
15:08:41.0439 0x1a1c  C:\Windows\System32\kerberos.dll - ok
15:08:41.0439 0x1a1c  [ E09D65A9FC5D9BFC2324DD58FA4DF152, 8778EB7D3A1E0076924F85A08E3B69A4D48F42AC572D8CB89511C507BCA57771 ] C:\Windows\System32\negoexts.dll
15:08:41.0439 0x1a1c  C:\Windows\System32\negoexts.dll - ok
15:08:41.0439 0x1a1c  [ DD706196DC651EE6A0D07487354062B4, 5B6EC3C933668A74EF2F1A53AFDE154C397AD00888EBF77BE4DB5085687E48C1 ] C:\Windows\System32\KerbClientShared.dll
15:08:41.0439 0x1a1c  C:\Windows\System32\KerbClientShared.dll - ok
15:08:41.0439 0x1a1c  [ 38D351DEC41BDF90A22C50F5A5E33F4C, BB548B91A3E92D570180EA91462ACDB941297E341DAF08267E8693C716225E03 ] C:\Windows\System32\cryptdll.dll
15:08:41.0439 0x1a1c  C:\Windows\System32\cryptdll.dll - ok
15:08:41.0455 0x1a1c  [ DA5868EABB74AEC4354647D45F97C0AF, 32B249CB9D7A76AC9AB0D9254256268353E128FC429AD09543217F58E0C2AC84 ] C:\Windows\System32\mswsock.dll
15:08:41.0455 0x1a1c  C:\Windows\System32\mswsock.dll - ok
15:08:41.0455 0x1a1c  [ D4271E4F7CD572DEAE58DEC8301D42F7, C13DA4DE69EA8D9AFE2161C6F796B82685BB2CD1215C82FE0C12B4BFFE113F78 ] C:\Windows\System32\winsta.dll
15:08:41.0455 0x1a1c  C:\Windows\System32\winsta.dll - ok
15:08:41.0455 0x1a1c  [ 5DD456F7EE32C2BBE6780575D826C139, FBEC9A7640EE0E7761622C8F3C306BFE48AB242A9F1DF80C406438AD228AB056 ] C:\Windows\System32\msv1_0.dll
15:08:41.0455 0x1a1c  C:\Windows\System32\msv1_0.dll - ok
15:08:41.0455 0x1a1c  [ A325A3E768FAA14AEDBBA0709E8105F4, A1FD284BEC7A41EF20D1FDA6472EF83656E597B35E7B3B74DA7FB82AF52A6841 ] C:\Windows\System32\NtlmShared.dll
15:08:41.0455 0x1a1c  C:\Windows\System32\NtlmShared.dll - ok
15:08:41.0470 0x1a1c  [ 3BA9E57811BBB9C92880D7D5EF2E0685, 70A7EC72427D9BBF008ADEF412B09EFD4ACE3A95538327B77A19F9619FBC3BA5 ] C:\Windows\System32\netlogon.dll
15:08:41.0470 0x1a1c  C:\Windows\System32\netlogon.dll - ok
15:08:41.0470 0x1a1c  [ 018D6E7BA23E28ECA0CB7F071A9FF291, 96D581035FF077D1B44BCBBC7F0671579501ADB6637646483BB980E57C07FA51 ] C:\Windows\System32\dnsapi.dll
15:08:41.0470 0x1a1c  C:\Windows\System32\dnsapi.dll - ok
15:08:41.0470 0x1a1c  [ 41BED58F73ABB36B3BB506D3D0767D31, 82650DC54E2F41CC50AF59561A4ED1F240EB5F828CF9710C2162C27E86481D68 ] C:\Windows\System32\gmsaclient.dll
15:08:41.0470 0x1a1c  C:\Windows\System32\gmsaclient.dll - ok
15:08:41.0486 0x1a1c  [ 6BD99B341B0749CD702EF46B372AB2AA, FA48DDB46AA0B5CD64AC0D9FEBA77A94CF0A0DA554ACB9DC9C80FB8104414C2D ] C:\Windows\System32\netutils.dll
15:08:41.0486 0x1a1c  C:\Windows\System32\netutils.dll - ok
15:08:41.0486 0x1a1c  [ 190053992A600E1E07D82B3AFD59A855, 0ECEB84EDC1DD0D456048CFAE5970DCF0B3083CEC2462AB6BD60632F151E298F ] C:\Windows\System32\IPHLPAPI.DLL
15:08:41.0486 0x1a1c  C:\Windows\System32\IPHLPAPI.DLL - ok
15:08:41.0486 0x1a1c  [ 67763B8E509EC2E746DE293B3D5F6EAF, E22FE684A8C86CBF832B59B15CC4B37338F7862A6D1BC906606C09E835E1F9D2 ] C:\Windows\System32\pku2u.dll
15:08:41.0486 0x1a1c  C:\Windows\System32\pku2u.dll - ok
15:08:41.0486 0x1a1c  [ 8AE65590322D36848C66C8BD75037E1E, B6D50B26DC1F00B493B4DBA6C6D9A800DF705862527E4FF15127FF71291DD428 ] C:\Windows\System32\TSpkg.dll
15:08:41.0486 0x1a1c  C:\Windows\System32\TSpkg.dll - ok
15:08:41.0502 0x1a1c  [ 19AE8C07F407A943ACA507C5BD46A190, B667CC2A9473A2B20644D049012B4DB27036446D87F07AA0675B4CEE0F193BD9 ] C:\Windows\System32\cloudAP.dll
15:08:41.0502 0x1a1c  C:\Windows\System32\cloudAP.dll - ok
15:08:41.0502 0x1a1c  [ CF864B08CEA15894A4E6E676A7FE89A3, 0D1488B2FF471C1EF2F8F2742D685A8778B2C1512A044BDF2606C3ED92E0B512 ] C:\Windows\System32\dpapi.dll
15:08:41.0502 0x1a1c  C:\Windows\System32\dpapi.dll - ok
15:08:41.0502 0x1a1c  [ D4353522D93393167D3436B61291C2E8, F0AC705C256998311DB64C5E2CBCDF84286E1875DD0BD113559401D17DFDCBAC ] C:\Windows\System32\MicrosoftAccountCloudAP.dll
15:08:41.0502 0x1a1c  C:\Windows\System32\MicrosoftAccountCloudAP.dll - ok
15:08:41.0502 0x1a1c  [ D7092CBCC43E59C6C73E632CE64A7845, 4B925FCAF87C3D539292319AB9BAE6EABF2FEA5B7A7FDB364BC2648E1B5F6AE8 ] C:\Windows\System32\rsaenh.dll
15:08:41.0502 0x1a1c  C:\Windows\System32\rsaenh.dll - ok
15:08:41.0517 0x1a1c  [ 5845DDD030E1FD55ADCA725ACDD34055, EA0EC796607087FE8EA482B246AFCFE30B49B87ABBC706D8FCD949261EA00B1A ] C:\Windows\System32\wdigest.dll
15:08:41.0517 0x1a1c  C:\Windows\System32\wdigest.dll - ok
15:08:41.0517 0x1a1c  [ 165148243DCE0BCEEB56F275DCEB9C77, CD8DBC2B6D5B2DA26E5AAC58E211D7469712374FD886BD8CCDF635E456D90581 ] C:\Windows\System32\schannel.dll
15:08:41.0517 0x1a1c  C:\Windows\System32\schannel.dll - ok
15:08:41.0517 0x1a1c  [ D4B374080CC47C584B03828A2B09E9EC, 3F95A8DB5823DE29E43515B235BB8ABC8B27D789C9B3B4FF611040A07BE257A7 ] C:\Windows\System32\credssp.dll
15:08:41.0517 0x1a1c  C:\Windows\System32\credssp.dll - ok
15:08:41.0533 0x1a1c  [ E77B3A6D8C385EAF39804939E5F396CA, EA4AB615741EC548A62A3BB2BE5CC65B8A20F06E242333E1D51D5E809AA73C29 ] C:\Windows\System32\dpapisrv.dll
15:08:41.0533 0x1a1c  C:\Windows\System32\dpapisrv.dll - ok
15:08:41.0533 0x1a1c  [ 079BBD9CB1CD27926A86152AE2C94F9F, 2927687CC6C64D700CA7F2A9F1C35C60879A0660FA11BC91E18E884AD7B02FE6 ] C:\Windows\System32\efslsaext.dll
15:08:41.0533 0x1a1c  C:\Windows\System32\efslsaext.dll - ok
15:08:41.0533 0x1a1c  [ A7501147E54FE1A001E8362B644AF45F, 508C25D16ADD709D638C063F5C519B7D925A80E72129A3C9F56B543D5D9A6D44 ] C:\Windows\System32\sspisrv.dll
15:08:41.0533 0x1a1c  C:\Windows\System32\sspisrv.dll - ok
15:08:41.0533 0x1a1c  [ 87C0BB3C6463B58C6B82E1C49157AC39, 9C161E12CF2A4B69D37BDC50888BFD576277B537A9C21638D4A1388F993706B6 ] C:\Windows\System32\kdcpw.dll
15:08:41.0533 0x1a1c  C:\Windows\System32\kdcpw.dll - ok
15:08:41.0549 0x1a1c  [ D6CE62F271345D40472A002E0AAE1C07, B565D52A95D310B0429CE0EB701B29A17941212D562E1EC6DC451F2196DA7B14 ] C:\Windows\System32\scecli.dll
15:08:41.0549 0x1a1c  C:\Windows\System32\scecli.dll - ok
15:08:41.0549 0x1a1c  [ C0B268E0CB698F85A8DC5C4559349D3B, 64E3123FE75AB32637B82CFA71B5AAED69FAA6C4B672FEE09516BE4754F439B5 ] C:\Windows\System32\scesrv.dll
15:08:41.0549 0x1a1c  C:\Windows\System32\scesrv.dll - ok
15:08:41.0549 0x1a1c  [ D9EC03945EF428E6EEB040F9024A6EC6, 5866CCE48652967B7251B2D4E0569650429ECCDAE19582D7E61008BA8F84C87F ] C:\Windows\System32\ntmarta.dll
15:08:41.0549 0x1a1c  C:\Windows\System32\ntmarta.dll - ok
15:08:41.0549 0x1a1c  [ 0B1583B6323083B1D2D769D991DC3489, 7EF8B4867209DCBBF279EA4929FCB428886ACAF7DE47E6CF665D926BBEB240D4 ] C:\Windows\System32\authz.dll
15:08:41.0549 0x1a1c  C:\Windows\System32\authz.dll - ok
15:08:41.0564 0x1a1c  [ EF9C968E92F0E58D40BCA40B18FB5F49, EB851932931F5DF8C289B66795B0B50A2C4DC172CD7EB245BCA4BCFB5A65F2B3 ] C:\Windows\System32\profext.dll
15:08:41.0564 0x1a1c  C:\Windows\System32\profext.dll - ok
15:08:41.0564 0x1a1c  [ F27598A99128A2B97B7E195AD625EDA8, EDED3A84076DE4379FD55373D74EDCF94589442957EDF774C638A584A4E094AF ] C:\Windows\System32\FirewallAPI.dll
15:08:41.0564 0x1a1c  C:\Windows\System32\FirewallAPI.dll - ok
15:08:41.0564 0x1a1c  [ 8A0A29438052FAED8A2532DA50455756, 7FD065BAC18C5278777AE44908101CDFED72D26FA741367F0AD4D02020787AB6 ] C:\Windows\System32\svchost.exe
15:08:41.0564 0x1a1c  C:\Windows\System32\svchost.exe - ok
15:08:41.0580 0x1a1c  [ 4BA3C60F01AEA85C29942931F1933DB4, 216E528817EBEECC74875356BC69B3688A0F6D7DB91D8137877A4EFA59F8CF30 ] C:\Windows\System32\WUDFPlatform.dll
15:08:41.0580 0x1a1c  C:\Windows\System32\WUDFPlatform.dll - ok
15:08:41.0580 0x1a1c  [ 91EC32FE33962A61258ED1E4BC50CDD1, DF0702AD8B173DC3368168DB16535DB42E14614BC550805A5DF33D486ED030AC ] C:\Windows\System32\fwbase.dll
15:08:41.0580 0x1a1c  C:\Windows\System32\fwbase.dll - ok
15:08:41.0580 0x1a1c  [ 03BA8BB294CE2B52D9E8F64E94B4B402, A9E8217D7B1554A606D05510D5CE1DDE60944922A45401A8652F50218D4EC5CB ] C:\Windows\System32\umpnpmgr.dll
15:08:41.0580 0x1a1c  C:\Windows\System32\umpnpmgr.dll - ok
15:08:41.0580 0x1a1c  [ 73ECFC63D23D8A07A982DDA099209605, 6A8912751EE3E032860AC5F0726C9E8D1E10DEE00E63DECC5F2D0C342FBCB911 ] C:\Windows\System32\slc.dll
15:08:41.0580 0x1a1c  C:\Windows\System32\slc.dll - ok
15:08:41.0595 0x1a1c  [ C1ADDE298CF5146E367CDE9C3FB0E940, 411C12C0AD8035CE91E247239864A95593958FE3BBB6B73C313E16F6F9EFA017 ] C:\Windows\System32\umpo.dll
15:08:41.0595 0x1a1c  C:\Windows\System32\umpo.dll - ok
15:08:41.0595 0x1a1c  [ 5708BFDDB5E37B98E65D71E404138937, 2F12419A7D9D7F2F02688C76063DC081CE08DC79574C485717B38F65DE199781 ] C:\Windows\System32\fontdrvhost.exe
15:08:41.0595 0x1a1c  C:\Windows\System32\fontdrvhost.exe - ok
15:08:41.0595 0x1a1c  [ E675ECAA0F8E8F4282259227CA126671, 74020DD4AC69712C6FA189E057326724F3C98557AFA33CDA4FAE48ED4146F75F ] C:\Windows\System32\sppc.dll
15:08:41.0595 0x1a1c  C:\Windows\System32\sppc.dll - ok
15:08:41.0595 0x1a1c  [ FE386753853BC8A910726E938AAC3B99, 7D64C315F059CCD56B4A0C760EE9043640B60A0F762F92D5058DB579846F70FE ] C:\Windows\System32\dxgi.dll
15:08:41.0595 0x1a1c  C:\Windows\System32\dxgi.dll - ok
15:08:41.0611 0x1a1c  [ C59DB40B2C26AD60EE521328B2DB4C4E, 444F9CA2D839FEEF1E7D136EA9CCD7DBEDEAD884C977C7EE129F788B41B4DC0B ] C:\Windows\System32\tdh.dll
15:08:41.0611 0x1a1c  C:\Windows\System32\tdh.dll - ok
15:08:41.0611 0x1a1c  [ 03A28DF93ECF146A5A9280EEB923AB52, 5891B0D6253022F1C7CA3F3C80E5340F43070439B53C01D724C76E0F423ADF39 ] C:\Windows\System32\umpoext.dll
15:08:41.0611 0x1a1c  C:\Windows\System32\umpoext.dll - ok
15:08:41.0611 0x1a1c  [ 748B31AA6C41115B38614B672950672F, 8153D2703394870BEB0C20ECAFE80362E8E17C3E56FAEFC5F66B9C62CFA5BC78 ] C:\Windows\System32\mintdh.dll
15:08:41.0611 0x1a1c  C:\Windows\System32\mintdh.dll - ok
15:08:41.0627 0x1a1c  [ E74AF2023B1F35D5C24739BBC69AFD07, D38C9148A104820805028C2613B67FC9876DF5D9FE06DEF2AF4ECECCCE8FB558 ] C:\Windows\System32\gpapi.dll
15:08:41.0627 0x1a1c  C:\Windows\System32\gpapi.dll - ok
15:08:41.0627 0x1a1c  [ 926524690062BE42A2C8E84519A0614C, 6876192646F8F79516BF69165E6D119F93E98EBF510CD1E5C17482C588CF15A1 ] C:\Windows\System32\umpo-overrides.dll
15:08:41.0627 0x1a1c  C:\Windows\System32\umpo-overrides.dll - ok
15:08:41.0627 0x1a1c  [ 2ED59EDA2D134C143ADFF53B5B09AE0C, 94226E24684D14E334797D43C24EFB1B4B0762AF098B57A74370ACE26ECB97EB ] C:\Windows\System32\hid.dll
15:08:41.0627 0x1a1c  C:\Windows\System32\hid.dll - ok
15:08:41.0627 0x1a1c  [ 5EA4EC00F765C3208AA08116FF6CC6C6, 21EB123C9EFF7D88B0F04C6BB486F884DA1089CB0F731E049E823E1A7570DCF6 ] C:\Windows\System32\rpcss.dll
15:08:41.0627 0x1a1c  C:\Windows\System32\rpcss.dll - ok
15:08:41.0642 0x1a1c  [ F5645D54232AFA55E57927C9E0D24267, 5790D6821D9F8DD44F53F4DEDCF1C9F0746D890F14874BAA8B7239F64C13A0E2 ] C:\Windows\System32\RpcEpMap.dll
15:08:41.0642 0x1a1c  C:\Windows\System32\RpcEpMap.dll - ok
15:08:41.0642 0x1a1c  [ E8CF9A94340334B36540E269A249EB96, 081F899449BA00CAD489DBC31508FD53D88DCEA5C2F434EE123829A8D2BE7065 ] C:\Windows\System32\RpcRtRemote.dll
15:08:41.0642 0x1a1c  C:\Windows\System32\RpcRtRemote.dll - ok
15:08:41.0642 0x1a1c  [ C9E9A7EC257A3C7F9C76502F78D38360, 3CB65885245E1E5DE7B1E0087CE8DF23E75E8DF14A3C858E5DD590E1C7C2A5B9 ] C:\Windows\System32\lsm.dll
15:08:41.0642 0x1a1c  C:\Windows\System32\lsm.dll - ok
15:08:41.0642 0x1a1c  [ 0C8BF24048358ED09FBD4A99ADD88934, 59FAEB808C9795DA892E5849CE1669F34E4F750716C7DF4578056859BAEB2EA5 ] C:\Windows\System32\psmsrv.dll
15:08:41.0642 0x1a1c  C:\Windows\System32\psmsrv.dll - ok
15:08:41.0658 0x1a1c  [ 5222670AE76A3D413B0BEE2BD459DA86, 1B77772A28FEE9F6178A6F3846DC2B31C5C37E9EEFB261038D24A429DC6DB8C9 ] C:\Windows\System32\bisrv.dll
15:08:41.0658 0x1a1c  C:\Windows\System32\bisrv.dll - ok
15:08:41.0658 0x1a1c  [ A0CE190F2CA2E64CA4F14DD570B24203, 4643CD13ACE4583FFC5F6E77B28DED3786B89763E14AFCE7662389DB473B0A61 ] C:\Windows\System32\dwmapi.dll
15:08:41.0658 0x1a1c  C:\Windows\System32\dwmapi.dll - ok
15:08:41.0658 0x1a1c  [ 62EC30E7F30B048A6AD4F49CEE882CA9, 09ACC23981AF2F92D702D02103B81E3F96D6ED7B261FA3203CD4A4DB60428036 ] C:\Windows\System32\ResourcePolicyClient.dll
15:08:41.0658 0x1a1c  C:\Windows\System32\ResourcePolicyClient.dll - ok
15:08:41.0674 0x1a1c  [ A5437C626D9CC0C30CDA466C12520E07, C0B024DFB029D655FD4EC505316FEB0CACA305219616A8EF76E67650916D148C ] C:\Windows\System32\rmclient.dll
15:08:41.0674 0x1a1c  C:\Windows\System32\rmclient.dll - ok
15:08:41.0674 0x1a1c  [ 985B3DF5A1157080309D3F80D8308531, B03338A81A80D2EF5B8374EA98BAC7B7BA361FEDF752C71E2BC7DCAD08C63802 ] C:\Windows\System32\sysntfy.dll
15:08:41.0674 0x1a1c  C:\Windows\System32\sysntfy.dll - ok
15:08:41.0674 0x1a1c  [ EF1CB652721FB0C816F5B987134B1B8E, 577FEA98A9CFA486C581A632B01F2817B74FB8A34762767BB9F2C32BAE396FCB ] C:\Windows\System32\twinapi.appcore.dll
15:08:41.0674 0x1a1c  C:\Windows\System32\twinapi.appcore.dll - ok
15:08:41.0674 0x1a1c  [ 95DB0187C4D5A82F96611FF52B8B2BF5, A8D6048FAFEBEB99C077823E3EF1D575356797D8206E1276163A3A8C6BFCA91A ] C:\Windows\System32\UXInit.dll
15:08:41.0674 0x1a1c  C:\Windows\System32\UXInit.dll - ok
15:08:41.0689 0x1a1c  [ 9473F2B5794F0A81C7C7FB602D7B34ED, A635109301F1013287C203CFC50484C87AC8E446C8924F1FB3D21B2080F57BD5 ] C:\Windows\System32\uxtheme.dll
15:08:41.0689 0x1a1c  C:\Windows\System32\uxtheme.dll - ok
15:08:41.0689 0x1a1c  [ B2AADB32967C713E8DA3B4A9CE2638DF, D229F5C62DEDA787A764D0DCD101B80F1430EE6DB2C553D77005BB47834E0F50 ] C:\Windows\System32\embeddedmodesvcapi.dll
15:08:41.0689 0x1a1c  C:\Windows\System32\embeddedmodesvcapi.dll - ok
15:08:41.0689 0x1a1c  [ 94469D6381946484A4CD6603BC8FBE1F, 7C6F0B64347123144C194828A0062056EB5C1F2BFF606527DAC85B578D933D09 ] C:\Windows\System32\PsmServiceExtHost.dll
15:08:41.0689 0x1a1c  C:\Windows\System32\PsmServiceExtHost.dll - ok
15:08:41.0689 0x1a1c  [ 3641EF0EE7984EB13018EBEE3F49F2DA, BE2E0F1E100764D4B88688640E96862E7B01013274A58F6F50DC64704CC46DF8 ] C:\Windows\System32\apphelp.dll
15:08:41.0689 0x1a1c  C:\Windows\System32\apphelp.dll - ok
15:08:41.0705 0x1a1c  [ 527B862E746E47990DE7AB053E7345E0, E95F383D3EC3AA75D56521CBCD92D24A3970BD9790158108CC877382DE24C26B ] C:\Windows\System32\dwminit.dll
15:08:41.0705 0x1a1c  C:\Windows\System32\dwminit.dll - ok
15:08:41.0705 0x1a1c  [ 33F89DD9629CB0422A2C17268376232D, 9358EF8CB7FB08581D74274005263BD8FA2E6E0FC443930B25FD345CF6CE9071 ] C:\Windows\System32\LogonUI.exe
15:08:41.0705 0x1a1c  C:\Windows\System32\LogonUI.exe - ok
15:08:41.0705 0x1a1c  [ 5F710D1E260D584F66DDE427916E64E6, 5BA9FBE93E6042C5E647B21C7A48667EBEC55E9D190EFC528F6B6170DF87F44C ] C:\Windows\System32\wer.dll
15:08:41.0705 0x1a1c  C:\Windows\System32\wer.dll - ok
15:08:41.0720 0x1a1c  [ 5E60483A58EC3B6EB6F8BEE67FA25B6D, 1853BB40DFD6CE4BB1B28511461788105B27D7C99DCFDD03FDB72B35B458B101 ] C:\Windows\System32\LogonController.dll
15:08:41.0720 0x1a1c  C:\Windows\System32\LogonController.dll - ok
15:08:41.0720 0x1a1c  [ 38833EC9E139654135BD183DFBABC36B, 43DC58AF302374F77C3FAEAC2FB446B1D813712D2650D9618E8D80E312F2E6FD ] C:\Windows\System32\dwm.exe
15:08:41.0720 0x1a1c  C:\Windows\System32\dwm.exe - ok
15:08:41.0720 0x1a1c  [ 1C257A647B2CFF58548FB29EE98D1D29, 3741FF73D0F68FC966A0F1FE28A9B303D19F3F69AA2E4F5D7CC2644B8CFB9BE8 ] C:\Windows\System32\dwmredir.dll
15:08:41.0720 0x1a1c  C:\Windows\System32\dwmredir.dll - ok
15:08:41.0720 0x1a1c  [ 2FD6702212DDFF9DF7BE76FBD25A4781, 7C0F260DF429E3FBAF318340CA30055C93705694D56AD7461FB4AD8F5B615935 ] C:\Windows\System32\uDWM.dll
15:08:41.0720 0x1a1c  C:\Windows\System32\uDWM.dll - ok
15:08:41.0736 0x1a1c  [ 3435760A3FF620CD420CBD1F7CF4C9FE, D5AB6057F2769B17B1895F1B4637B12C4AA9A99E74D8B271C5BFC79196F39A04 ] C:\Windows\System32\winmm.dll
15:08:41.0736 0x1a1c  C:\Windows\System32\winmm.dll - ok
15:08:41.0736 0x1a1c  [ DFF77B2AE66E97E264D1C640C8717B5E, 5743D040D6323DA4772C4819C8BACAA1BA599FCEF04A5E918FD84F0229EFCF92 ] C:\Windows\System32\winmmbase.dll
15:08:41.0736 0x1a1c  C:\Windows\System32\winmmbase.dll - ok
15:08:41.0736 0x1a1c  [ AAC12CE0F53541B393049247122025D1, DC55F91B22D22A0490D7653D835CAE082AB17E92E7809ADA4A4B84BB9A4B7789 ] C:\Windows\System32\audioresourceregistrar.dll
15:08:41.0736 0x1a1c  C:\Windows\System32\audioresourceregistrar.dll - ok
15:08:41.0736 0x1a1c  [ 2AE691E3E25CA8E5B6D0D89DD4F5C4E1, ACEFEF067FC983E6827C542FAF4CB4360CAFCEF556C76F53E53FFB3D66212033 ] C:\Windows\System32\CoreMessaging.dll
15:08:41.0736 0x1a1c  C:\Windows\System32\CoreMessaging.dll - ok
15:08:41.0752 0x1a1c  [ F4E56DC5BE93F94319CB2F3F2BAE5C2E, B622CA6777CF68C9FCFCC6443E8163713B64A771395EFEB4CB540648EC7BAD67 ] C:\Windows\System32\dwmcore.dll
15:08:41.0752 0x1a1c  C:\Windows\System32\dwmcore.dll - ok
15:08:41.0752 0x1a1c  [ C20C1085C11B4F06E613B4D41FC36C8A, 6D1300A2CCA6B7BEEFAFE1A5E239321E57E8EF3BA47007C52463D9706EFB8766 ] C:\Windows\System32\xmllite.dll
15:08:41.0752 0x1a1c  C:\Windows\System32\xmllite.dll - ok
15:08:41.0752 0x1a1c  [ 7B4AC70A42393A3C25A890F7CBC1DD4F, 1C991D302F250081E70A7D6F6AE133C0DEE36A39CE49BC5CDA0028E30CF0CF4A ] C:\Windows\System32\ResourcePolicyServer.dll
15:08:41.0752 0x1a1c  C:\Windows\System32\ResourcePolicyServer.dll - ok
15:08:41.0767 0x1a1c  [ D29258C88EB950DC8EA64B3C8DEED7F4, AC9718A52D5D5CA2BDCD7D4FFF4512055EE2FB73C1457436388329DA1B1271A3 ] C:\Windows\System32\dsreg.dll
15:08:41.0767 0x1a1c  C:\Windows\System32\dsreg.dll - ok
15:08:41.0767 0x1a1c  [ AC0B2F6759DD8D3EF8A643620901E535, FD9AC7CC5526904B0375922A678CF85B10F2E2D6C66BD1FD78E16257279CCB60 ] C:\Windows\System32\dcomp.dll
15:08:41.0767 0x1a1c  C:\Windows\System32\dcomp.dll - ok
15:08:41.0767 0x1a1c  [ B415E405015D1EEBD188475A2E975595, C048EFAEAFEA7A9AC97FB9823DC1001C1F15C9E35225B1FF32D5A710A0165489 ] C:\Windows\System32\SystemEventsBrokerServer.dll
15:08:41.0767 0x1a1c  C:\Windows\System32\SystemEventsBrokerServer.dll - ok
15:08:41.0767 0x1a1c  [ 45C13611EBC323820E44E7B03DA14ADD, E08B31E81D7B8590CABF84015D52EE641A3FE8791EAAC238377965BD9C4A8524 ] C:\Windows\System32\BrokerLib.dll
15:08:41.0767 0x1a1c  C:\Windows\System32\BrokerLib.dll - ok
15:08:41.0783 0x1a1c  [ 5D5A39FB5842499F59BF0E25C7757310, EE7A10FAC00BA52923D29CF3809891D5BC76B48D2E4F9E5C8799F51A74B952D7 ] C:\Windows\System32\dab.dll
15:08:41.0783 0x1a1c  C:\Windows\System32\dab.dll - ok
15:08:41.0783 0x1a1c  [ 92DCE2A95A6B6A0C275B7951ED4BC1C9, E39217D34A6633543E48BD9CA89A7B0B0C38D54C2B180F52271786343724A211 ] C:\Windows\System32\dabapi.dll
15:08:41.0783 0x1a1c  C:\Windows\System32\dabapi.dll - ok
15:08:41.0783 0x1a1c  [ 8DB0D25C79E2B17885878F4AE3E1AB83, 82223F20686932236B15B3278D85E5A92BB333C616C3FA11AD08EF25464141FC ] C:\Windows\System32\d2d1.dll
15:08:41.0783 0x1a1c  C:\Windows\System32\d2d1.dll - ok
15:08:41.0783 0x1a1c  [ 38EA19A3B635B35B282857317234FD48, 4AA54CA27B1192DFE35459562694485942B3197E112B7E872805E1CBDCD9793C ] C:\Windows\System32\d3d11.dll
15:08:41.0783 0x1a1c  C:\Windows\System32\d3d11.dll - ok
15:08:41.0799 0x1a1c  [ 81DC4B6282E7464297E88C20A6901E21, 631C05943124771105D43EF0CFCEE1DAB3F68EDEF12CEB5F7C825E2A7BDE15F5 ] C:\Windows\System32\D3DCompiler_47.dll
15:08:41.0799 0x1a1c  C:\Windows\System32\D3DCompiler_47.dll - ok
15:08:41.0799 0x1a1c  [ 38347B004B8802BA77B1D357EEBDB936, C0C42626E8541697875A54D0B8224F2F82F3F7E5F23D2DBADBEF2D0ABC99000E ] C:\Windows\System32\msvcp110_win.dll
15:08:41.0799 0x1a1c  C:\Windows\System32\msvcp110_win.dll - ok
15:08:41.0799 0x1a1c  [ B440713B9913F70952CD75B776B95E29, 9F3CAD7435675599F456F047BAA0D36004EC25A9237488BC9F6B772CCA473534 ] C:\Windows\System32\DeviceSetupManager.dll
15:08:41.0799 0x1a1c  C:\Windows\System32\DeviceSetupManager.dll - ok
15:08:41.0799 0x1a1c  [ DB0D6123F4561125AF4CC1D24A36B9C1, DA8CBC454B0C065E227ED93EA2B0F23E0E6092D808280DE0A1D6B063EC0497D3 ] C:\Windows\System32\gpsvc.dll
15:08:41.0799 0x1a1c  C:\Windows\System32\gpsvc.dll - ok
15:08:41.0814 0x1a1c  [ 0E7C317DD9F8E46E0C90B88A3C536BA6, 89750450EA6C7D2C0E80B97D621613F471BE55086A7FFA3DFC80A39A064F74D2 ] C:\Windows\System32\ncbservice.dll
15:08:41.0814 0x1a1c  C:\Windows\System32\ncbservice.dll - ok
15:08:41.0814 0x1a1c  [ 67A2CB5FDBF7A4C244185DDDA11A3ACF, 5404883B972C55F0C25FD873E6075CF78B25CE7B18163B01974F9B537D173C25 ] C:\Windows\System32\shacct.dll
15:08:41.0814 0x1a1c  C:\Windows\System32\shacct.dll - ok
15:08:41.0814 0x1a1c  [ A42E28138937660A2575217CE1C7D807, BA81055B56E5DA344BB8798F9D497064C541DD1043AFDCA49F4B7ECF8D57FBD1 ] C:\Windows\System32\wtsapi32.dll
15:08:41.0814 0x1a1c  C:\Windows\System32\wtsapi32.dll - ok
15:08:41.0830 0x1a1c  [ D6482F9D1E4739E0EFAFD036288CA114, 1D95324354B1EFBA404CFE56EE25E01639F5AEC81EDFD2F0E1AD78EE6CE9E16E ] C:\Windows\System32\netprofm.dll
15:08:41.0830 0x1a1c  C:\Windows\System32\netprofm.dll - ok
15:08:41.0830 0x1a1c  [ F8A0579BCFCBA29E3EB77B444473F7C9, 99A6911C87DF3A942F46D6CB1E156DBE7958F1C42B3A99CA3A592E8FEA4F0A77 ] C:\Windows\System32\propsys.dll
15:08:41.0830 0x1a1c  C:\Windows\System32\propsys.dll - ok
15:08:41.0830 0x1a1c  [ 48840D0BC95A0E375C08EA30720D489C, 5C081543E589365A9805B3AB8CC40828D8EB7A6F58609BEF15FDC7F0286E9225 ] C:\Windows\System32\samlib.dll
15:08:41.0830 0x1a1c  C:\Windows\System32\samlib.dll - ok
15:08:41.0830 0x1a1c  [ 912B0E47A24DA1C1CEB786F0A3BF094B, 29E646F85BF2BBB4548C3F240C5440DE79D7D2FEA9A3F6C4FD161C52AAE1F5F8 ] C:\Windows\System32\dsrole.dll
15:08:41.0830 0x1a1c  C:\Windows\System32\dsrole.dll - ok
15:08:41.0845 0x1a1c  [ 7FC7B6767D7AE919B26FB1F393F2F11B, 98151F9F099B42C1765D44BDAE7574D09F826CE701A91CB2947492CA1357D154 ] C:\Windows\System32\nlaapi.dll
15:08:41.0845 0x1a1c  C:\Windows\System32\nlaapi.dll - ok
15:08:41.0845 0x1a1c  [ 53EF8EDA28F68671B5011DBF39B93A86, 3BC597E00573908B4E424208805449E08A2AE830D396F0C64D8C1F32B6CD9F1A ] C:\Windows\System32\SystemEventsBrokerClient.dll
15:08:41.0845 0x1a1c  C:\Windows\System32\SystemEventsBrokerClient.dll - ok
15:08:41.0845 0x1a1c  [ 9A0C13D674AB2D72193653EF38D8FB8E, 15817A5CB717D4846AE753A27CD8859BCE63004143083027FA5EC9324DFC5188 ] C:\Windows\System32\taskschd.dll
15:08:41.0845 0x1a1c  C:\Windows\System32\taskschd.dll - ok
15:08:41.0845 0x1a1c  [ 3B55CC03BF82C34F0C1F1AC2AAFC793E, 1499A910290C1735A1C8F2AE43506023AB79AE9814E672604FFE5EB084780054 ] C:\Windows\System32\usermgrcli.dll
15:08:41.0845 0x1a1c  C:\Windows\System32\usermgrcli.dll - ok
15:08:41.0861 0x1a1c  [ 888F4306C26EA59C3BB09F045CA659C3, B6D259AD0E9D845BECDA5BE39558EA64A979B046D7FA7D375C8305EBE3D38ABB ] C:\Windows\System32\Windows.Devices.Radios.dll
15:08:41.0861 0x1a1c  C:\Windows\System32\Windows.Devices.Radios.dll - ok
15:08:41.0861 0x1a1c  [ 21A372ADF9F00D33E98FFFAFE9BEBC6B, 3B081FFF4796D89811AFCF53E2B446D04EE1F12972A61598990887AF5D2B792B ] C:\Windows\System32\hidserv.dll
15:08:41.0861 0x1a1c  C:\Windows\System32\hidserv.dll - ok
15:08:41.0861 0x1a1c  [ 03D9EDE1E96D1D158BD984D88B1095CC, 95FCF42C00F0D96704526387F722D64444FA49EE8F2DA192FCA2B02FAB2608BA ] C:\Windows\System32\drivers\luafv.sys
15:08:41.0861 0x1a1c  C:\Windows\System32\drivers\luafv.sys - ok
15:08:41.0877 0x1a1c  [ 95C4DB08A740015BB3FB5659F16EF321, 1E86C40F8AB13DD2433F13CC321C9352C7BF4A114FFF9E910F10DE684DF4E9CD ] C:\Windows\System32\drivers\wcifs.sys
15:08:41.0877 0x1a1c  C:\Windows\System32\drivers\wcifs.sys - ok
15:08:41.0877 0x1a1c  [ AC3DA8AAC02C94DC65ECDF9548E6372D, AE4B0E81C601521DA974D53E44295C98331CED7C9CC2F260434E6BC0C475DDA3 ] C:\Windows\System32\upfc.exe
15:08:41.0877 0x1a1c  C:\Windows\System32\upfc.exe - ok
15:08:41.0877 0x1a1c  [ A9C18F7D907645183D6194E1A85AB7DE, FB29CE5B84E6309D9A59126CB58EE389A2E2E539DF80E0A2636DA2412FD6D669 ] C:\Windows\System32\wevtsvc.dll
15:08:41.0877 0x1a1c  C:\Windows\System32\wevtsvc.dll - ok
15:08:41.0877 0x1a1c  [ AB50CB570A483C6FF9D10BC3454E8ADA, 2B7B62976DB5E01B695C132A3179239C631507F45DC27FB12AAF5746DCE08484 ] C:\Windows\System32\BluetoothApis.dll
15:08:41.0877 0x1a1c  C:\Windows\System32\BluetoothApis.dll - ok
15:08:41.0892 0x1a1c  [ 61D5D4DC825D61179937CB2D7C6DEE86, 38A2C9E26873F73EA853F39D12C7399807B8BA86DFEEC9447C8C1377BD7C78AF ] C:\Windows\System32\BthRadioMedia.dll
15:08:41.0892 0x1a1c  C:\Windows\System32\BthRadioMedia.dll - ok
15:08:41.0892 0x1a1c  [ 769ACDF8CE8BBA378B9D32C123CCE647, 00552779E9CED999E657187D458CA120CE2BDBE804DDA24E88BB11E1A40DFA92 ] C:\Windows\System32\drivers\cldflt.sys
15:08:41.0892 0x1a1c  C:\Windows\System32\drivers\cldflt.sys - ok
15:08:41.0892 0x1a1c  [ 4B67BFC2FC5CEBEFF5F7F04BCF085F94, 5A0898BD4384B04DDB7F0154E328BEFBF101DFDB9EFCD587F75857390ED1B36B ] C:\Windows\System32\dwmghost.dll
15:08:41.0892 0x1a1c  C:\Windows\System32\dwmghost.dll - ok
15:08:41.0892 0x1a1c  [ C17D74D282D5DD848C39696CBCE0B80C, 4CA3E359B863BB1CB7B0BC2CE87E6FA9E1FED4BC94674F093B7539B1F4A97F04 ] C:\Windows\System32\PortableDeviceApi.dll
15:08:41.0892 0x1a1c  C:\Windows\System32\PortableDeviceApi.dll - ok
15:08:41.0908 0x1a1c  [ A3AD9741C70ADDA664F704A38B5D7C38, D594A3EAA90372C223F26716D01D20F8EFF4FF4D2EF920FDD8B7D199A728314D ] C:\Windows\System32\profsvc.dll
15:08:41.0908 0x1a1c  C:\Windows\System32\profsvc.dll - ok
15:08:41.0908 0x1a1c  [ 626A1593186D839054720C0D116C682E, 1D3091E00B0AA4F7D1D73373BEF1C265F6C61AE987AD03E7AC3418BDCDF1256A ] C:\Windows\System32\TabSvc.dll
15:08:41.0908 0x1a1c  C:\Windows\System32\TabSvc.dll - ok
15:08:41.0908 0x1a1c  [ B4F8ED117D5120009972A470AF4FA323, 61BF1500B54145B7CFB8461078A14735DB617B7EDA82AA5250CA0D10865ED865 ] C:\Windows\System32\wpdbusenum.dll
15:08:41.0908 0x1a1c  C:\Windows\System32\wpdbusenum.dll - ok
15:08:41.0924 0x1a1c  [ BBADD85854BFB5D43C60B7AC8EEA3DBA, 968C043ABEA46F5C79525863B3FE2681AC0FA4202036C9EFD20B408DECF407E2 ] C:\Windows\System32\atiesrxx.exe
15:08:41.0924 0x1a1c  C:\Windows\System32\atiesrxx.exe - ok
15:08:41.0924 0x1a1c  [ D5FFAA526C05066EE342801EA404465A, 98D9B50E4E55257082110DC4F0492CA723354802D7BD8DC64594E06DF1389ED4 ] C:\Windows\System32\drivers\storqosflt.sys
15:08:41.0924 0x1a1c  C:\Windows\System32\drivers\storqosflt.sys - ok
15:08:41.0924 0x1a1c  [ F14F0B66D520B59C967B6731EF2030FB, 46C2A7D1A3C838F77CCC5B5A52546FB4B80F7925DAACC63081B296712C6F3293 ] C:\Windows\System32\avrt.dll
15:08:41.0924 0x1a1c  C:\Windows\System32\avrt.dll - ok
15:08:41.0924 0x1a1c  [ ECCE5D2A2B84B65F1A04E978C51DBDD1, C5AE0B65EE61A2548AB2164797F25D1E013ACA46338D22A852F3F3EC1CE7FEE6 ] C:\Windows\System32\ISM.dll
15:08:41.0924 0x1a1c  C:\Windows\System32\ISM.dll - ok
15:08:41.0939 0x1a1c  [ 1B16FF627B77542662EED7129C06C63E, C5E9D8E4AAA528CEF83965684183833DF37D0192AFC1E5E2C576CE69079998CD ] C:\Windows\System32\schedsvc.dll
15:08:41.0939 0x1a1c  C:\Windows\System32\schedsvc.dll - ok
15:08:41.0939 0x1a1c  [ B3AB2D5B98E67EC56ED4EB9D2A3199BF, ADB9574CE3CE8837AD5A4B3684D266FBF5CFDE7EE27E1D7E01B73A0B104ADF5B ] C:\Windows\System32\atieclxx.exe
15:08:41.0939 0x1a1c  C:\Windows\System32\atieclxx.exe - ok
15:08:41.0939 0x1a1c  [ 2A798A380EE1187CBD27321C6FDA5AF0, 98A5BC46A573660189ECDA50D73490750BB831EF32A6041EEEB343FF4A41478F ] C:\Windows\System32\lmhsvc.dll
15:08:41.0939 0x1a1c  C:\Windows\System32\lmhsvc.dll - ok
15:08:41.0955 0x1a1c  [ 884858FFD2D469B96FD6B3AF6CEEE93D, D27F6BBE87F5FFECE582FF59F12966B743946B20B76261BA988E6C0E5DDB9B86 ] C:\Windows\System32\mstask.dll
15:08:41.0955 0x1a1c  C:\Windows\System32\mstask.dll - ok
15:08:41.0955 0x1a1c  [ 50251275995BD9A037D7A33F0907E9FC, 5A280F83E83F60CCCAA3AC37744BA471C624415BDE15BF21EB0D16FA50C28058 ] C:\Windows\System32\bi.dll
15:08:41.0955 0x1a1c  C:\Windows\System32\bi.dll - ok
15:08:41.0955 0x1a1c  [ C7664DCF42C8A07AD3C99DC7868ECF13, 67479437FF151396BB2C5B86338A3F17279C80AE4D374D5AC1B88B2720D307CE ] C:\Windows\System32\CoreUIComponents.dll
15:08:41.0955 0x1a1c  C:\Windows\System32\CoreUIComponents.dll - ok
15:08:41.0955 0x1a1c  [ 6C5A19781655964BEE21CFDFFF99369D, E3FC4DECA28D34697FA67D5DF5BA233B884EE0608BA4F6DD61B82F9592F0B8F8 ] C:\Windows\System32\httpprxc.dll
15:08:41.0955 0x1a1c  C:\Windows\System32\httpprxc.dll - ok
15:08:41.0970 0x1a1c  [ 9C9C952B6596BEF756BB39452F971C93, 456F2DD489ACA8DC93C80E837B92FF81081B3816599609E48A5003B805E97AB8 ] C:\Windows\System32\ninput.dll
15:08:41.0970 0x1a1c  C:\Windows\System32\ninput.dll - ok
15:08:41.0970 0x1a1c  [ C2AB514FAB220BB63A3755C44E20A56A, 0E4C8D4E45D4886E7905DC21EC292CC8E0D4F139B42566586A00EB180E57D139 ] C:\Windows\System32\profsvcext.dll
15:08:41.0970 0x1a1c  C:\Windows\System32\profsvcext.dll - ok
15:08:41.0970 0x1a1c  [ 4BC7EF3AB403AAB1771911E3EB3B7CD7, B38A0C00B433B0073C72FCDF364963A822AEDEB20068DA74F2FAB03AE6404D06 ] C:\Windows\System32\ubpm.dll
15:08:41.0970 0x1a1c  C:\Windows\System32\ubpm.dll - ok
15:08:41.0986 0x1a1c  [ 25222B73D463284A85D32A56F002BD62, 94732D9115F65147862D8B06D76AF1E8246E2B0FB8E5AF3D3C7F461B0A4A8483 ] C:\Windows\System32\es.dll
15:08:41.0986 0x1a1c  C:\Windows\System32\es.dll - ok
15:08:41.0986 0x1a1c  [ 8B90714713B88C65AB9580031E23A3EA, 1EB03B86CD5B1B6CD1B700A7A074B45BCEB6C359439B2B4DC6418D6324733999 ] C:\Windows\System32\sysmain.dll
15:08:41.0986 0x1a1c  C:\Windows\System32\sysmain.dll - ok
15:08:41.0986 0x1a1c  [ B79E2A4394F5459582C928916EE9A1AF, 4B473C359A6C9AE38DCF2CBFC3E8EBA209CDB6B4C98091FED30FCBC23982FB3E ] C:\Windows\System32\taskcomp.dll
15:08:41.0986 0x1a1c  C:\Windows\System32\taskcomp.dll - ok
15:08:41.0986 0x1a1c  [ A90774D7D465E1085A95326FAD89B25C, 503EE739A30D67CA4EC27416D4A43F76BA8BC75A8DB175BAFD282307920E944F ] C:\Windows\System32\themeservice.dll
15:08:41.0986 0x1a1c  C:\Windows\System32\themeservice.dll - ok
15:08:42.0002 0x1a1c  [ 786159CC1143E56BDAB09FE275D0152D, 39ACB7CBB27720497EF805526EEC67DB5BC258A0661E692EADC31D65EC76FD7B ] C:\Windows\System32\wmiclnt.dll
15:08:42.0002 0x1a1c  C:\Windows\System32\wmiclnt.dll - ok
15:08:42.0002 0x1a1c  [ 45DAD5B77AA25CC41DE606CB23D56492, 3BE1AC18A5F6DC9833C5BDC72A21716E2C246ED97485749693843E2B59E9DA4F ] C:\Windows\System32\policymanager.dll
15:08:42.0002 0x1a1c  C:\Windows\System32\policymanager.dll - ok
15:08:42.0002 0x1a1c  [ 5FC3A698DE6BA51AB9709E1403F1A8DB, BC3EC88DC49A4A933EFC28FCF8A3281ECFB39AF53AC17176B6FB74624DF7E299 ] C:\Windows\System32\nsisvc.dll
15:08:42.0002 0x1a1c  C:\Windows\System32\nsisvc.dll - ok
15:08:42.0002 0x1a1c  [ EE711439FD0F1293B43F0FE195E5C073, 9F96ACC449D72C08212756E422C2037F82C2135CCD0907E00EB16582F0AB1A6D ] C:\Windows\System32\Sens.dll
15:08:42.0002 0x1a1c  C:\Windows\System32\Sens.dll - ok
15:08:42.0017 0x1a1c  [ 7A5388F4E7CB37108543070D41235E5C, EF0EAD9D26BB69F5BACDD37DDE7A1450B59F179D600595269789031DFB1694E8 ] C:\Windows\System32\dhcpcore.dll
15:08:42.0017 0x1a1c  C:\Windows\System32\dhcpcore.dll - ok
15:08:42.0017 0x1a1c  [ 6A19231D8FD2D70091330401DAE88017, 193297CDCA2ED230FE9C02072C98B19F9DE3AF6FB3EE8BE88E18759DD78E91FF ] C:\Windows\System32\AudioEndpointBuilder.dll
15:08:42.0017 0x1a1c  C:\Windows\System32\AudioEndpointBuilder.dll - ok
15:08:42.0017 0x1a1c  [ F1C993E0CECA8F8E7DD3872D6B2CAC7B, 5261738679EC0F84FAFB8488CB275B121607D9920851CC847D303254EB386EB8 ] C:\Windows\System32\FntCache.dll
15:08:42.0017 0x1a1c  C:\Windows\System32\FntCache.dll - ok
15:08:42.0033 0x1a1c  [ 6779F33803DBD88EC4DEE0E06E41A927, 254A40FE3237699E97F17EC7C8CD6638C33BA1D981C0F413BAB4B5720B63C31A ] C:\Windows\System32\dhcpcore6.dll
15:08:42.0033 0x1a1c  C:\Windows\System32\dhcpcore6.dll - ok
15:08:42.0033 0x1a1c  [ 4D5E154DE168E4A3B90F86A1966CE5D1, BA21BF38DD0AE9CC2017BC013053ABECB9CA3C20A6C39CDF8EE4B9C66E796438 ] C:\Windows\System32\drivers\WpdUpFltr.sys
15:08:42.0033 0x1a1c  C:\Windows\System32\drivers\WpdUpFltr.sys - ok
15:08:42.0033 0x1a1c  [ 6C3D8C8C991B62588C52336C5F60423C, 7388249315DFFF87045E55CE79CA1764E5E305C6F0418BD5077957B2E32F5569 ] C:\Windows\System32\drivers\WUDFRd.sys
15:08:42.0033 0x1a1c  C:\Windows\System32\drivers\WUDFRd.sys - ok
15:08:42.0033 0x1a1c  [ 296AAEE6AB4C73A46E820D416BC29184, 1FA8532882235FE9AC11234BC98597D267A25191EF66EE0F1DC53BB80DB2AE59 ] C:\Windows\System32\PortableDeviceConnectApi.dll
15:08:42.0033 0x1a1c  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
15:08:42.0049 0x1a1c  [ DDAFEE7A99146D7F5F888F78D700F225, BEF6C1A0766CA5B2D63FB211E73CACEA780386124BBC488C524983DCE2FDE0F4 ] C:\Windows\System32\dhcpcsvc.dll
15:08:42.0049 0x1a1c  C:\Windows\System32\dhcpcsvc.dll - ok
15:08:42.0049 0x1a1c  [ 01446D49B82AD357F2786D90D02C83AA, 3200C858C4A5187902279C81DE464261CA84D3499C25F5DBBDD416C649E2B423 ] C:\Windows\System32\dhcpcsvc6.dll
15:08:42.0049 0x1a1c  C:\Windows\System32\dhcpcsvc6.dll - ok
15:08:42.0049 0x1a1c  [ 9061E02072E5AA9862BAAB295227470E, 2624FEA2040AB5D42EF2FC6CD0085B415282434148F9AAC5B96D1583DC56017B ] C:\Windows\System32\winnsi.dll
15:08:42.0049 0x1a1c  C:\Windows\System32\winnsi.dll - ok
15:08:42.0049 0x1a1c  [ 902D7BA5FADD42DB2DC6C7DD5F9C0CF7, 2E9EDAC8AD372BD9ADFFE852A18F5FBD25DE804C0CA39C2F5B88365CC443C138 ] C:\Windows\System32\WUDFHost.exe
15:08:42.0049 0x1a1c  C:\Windows\System32\WUDFHost.exe - ok
15:08:42.0064 0x1a1c  [ ECF241DFFBAA6860EBBBFC1560D1F9D3, 7F58CD9A88432240B8ACC65F17EE234C38CDB01AA9A3E55BBF95850E4C5D442E ] C:\Windows\System32\nlasvc.dll
15:08:42.0064 0x1a1c  C:\Windows\System32\nlasvc.dll - ok
15:08:42.0064 0x1a1c  [ 77E286164BAFE1FA0AE28B6BBAB94146, 324553EBC48D3E69FFC6B319C66ED206C095FFBE4E464F351AD1E1227F875C25 ] C:\Windows\System32\wshhyperv.dll
15:08:42.0064 0x1a1c  C:\Windows\System32\wshhyperv.dll - ok
15:08:42.0064 0x1a1c  [ 6C32704C67F34B2E5FDC7760DA868020, 72D237D23DF537AF96E0EBA7963A6755A4FB24F37A6969544ECDCADF923BE640 ] C:\Windows\System32\CSystemEventsBrokerClient.dll
15:08:42.0064 0x1a1c  C:\Windows\System32\CSystemEventsBrokerClient.dll - ok
15:08:42.0080 0x1a1c  [ 2D06B7F6F72790BF0E58CAB865428AE7, 3E495F4E0CA54437B95A59868B8B1EEE2A3401D02F04C1DB4CDA8A06B453D02C ] C:\Windows\System32\dnsrslvr.dll
15:08:42.0080 0x1a1c  C:\Windows\System32\dnsrslvr.dll - ok
15:08:42.0080 0x1a1c  [ 2AB4FF71BC330FC5583F8987FA8EFDF0, 3EC5DF3F8006252BA816973B5F77009F3920D235B6FB9A812D6A116F8852BE61 ] C:\Windows\System32\logoncli.dll
15:08:42.0080 0x1a1c  C:\Windows\System32\logoncli.dll - ok
15:08:42.0080 0x1a1c  [ CD6321735DAF22CE2C57604EFBBFB254, F5938E82A6D55C1FABB8E8E5D7EFAA36D282049044FEF67587975A605B05D388 ] C:\Windows\System32\ncsi.dll
15:08:42.0080 0x1a1c  C:\Windows\System32\ncsi.dll - ok
15:08:42.0080 0x1a1c  [ 1C48440F540AB6870E7810E0ED59B47A, 23CB8D1D0A35324E145F88F4E9AA37B66DAD597A9F3A85BEEC8DF99A30E41FAB ] C:\Windows\System32\wkscli.dll
15:08:42.0080 0x1a1c  C:\Windows\System32\wkscli.dll - ok
15:08:42.0095 0x1a1c  [ 5947BA35AD1EC19CB97B3E18CA0A3D03, F2DD96E74132532B33463DBF0288C74432B9A3C343282E105005ADE0C3FE35D6 ] C:\Windows\System32\MMDevAPI.dll
15:08:42.0095 0x1a1c  C:\Windows\System32\MMDevAPI.dll - ok
15:08:42.0095 0x1a1c  [ 2D19D3F2091DA9DC6D422C80BC4208DC, C40307CE1C7CB389CBEA56B05F35133C955EBB1EFDAD904777C8C8EF3E3ACC56 ] C:\Windows\System32\TimeBrokerClient.dll
15:08:42.0095 0x1a1c  C:\Windows\System32\TimeBrokerClient.dll - ok
15:08:42.0095 0x1a1c  [ 1CC19A0D776DBB7196B88A12EB56641A, EBC90BC0A6FB4F7B44A02EDEDE53A2C544C35FD70F6C4A1BFDD91A56A85FCD5A ] C:\Windows\System32\nrpsrv.dll
15:08:42.0095 0x1a1c  C:\Windows\System32\nrpsrv.dll - ok
15:08:42.0095 0x1a1c  [ 9F5AC57CE868C5E7E58F496D5947BFBC, 815B1887CE547A67C22C3F818F7897E60A58B626B62803439CDF8A2D623FB372 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
15:08:42.0095 0x1a1c  C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
15:08:42.0111 0x1a1c  [ 6B50241793122402D063A17FFEC04C01, A51FEF488BEDC8FDBF445C08D87BDD7B209C8A28980990D88F3267445BBFF4B1 ] C:\Windows\System32\TimeBrokerServer.dll
15:08:42.0111 0x1a1c  C:\Windows\System32\TimeBrokerServer.dll - ok
15:08:42.0111 0x1a1c  [ 306E880F2A2BAC0717C89EB5D85359BA, D8FEAC3D578AF0E34556A88E90E6891D70408EE8885756760D4A91C8572A487D ] C:\Windows\System32\FWPUCLNT.DLL
15:08:42.0111 0x1a1c  C:\Windows\System32\FWPUCLNT.DLL - ok
15:08:42.0111 0x1a1c  [ E0DCAD4EF7CDD32F200CB16D7A9BBAAE, 54D9CCDBB2E7F6907F712E8B841F13E2DB3078F4121C6A86F13F5B3B86071ACA ] C:\Windows\System32\WPTaskScheduler.dll
15:08:42.0111 0x1a1c  C:\Windows\System32\WPTaskScheduler.dll - ok
15:08:42.0127 0x1a1c  [ 377A9B900A742D89A1C31135619304CE, 58B01E5186764EF390AFC061E5294CEA559A3EFF1C119EBE7B4BC0DDAB22A687 ] C:\Windows\System32\FontProvider.dll
15:08:42.0127 0x1a1c  C:\Windows\System32\FontProvider.dll - ok
15:08:42.0127 0x1a1c  [ 2FFB9EFAD1D42077D34DF04DDE22D474, 5F2479A1413623723140AA0C2FFA9E85D4C373EC8E685457AE58B5BCC7D6DFAF ] C:\Windows\System32\netjoin.dll
15:08:42.0127 0x1a1c  C:\Windows\System32\netjoin.dll - ok
15:08:42.0127 0x1a1c  [ 4DEAB471FDFB7B45FC9E0FB1710A3FAF, 27041EF8C19644E3AA911BAFFA8EB171AC521A846D18B0A2A7B21F34CD85D7EE ] C:\Windows\System32\ssdpapi.dll
15:08:42.0127 0x1a1c  C:\Windows\System32\ssdpapi.dll - ok
15:08:42.0127 0x1a1c  [ 9E78FF24C05874B3EA4C8029879C28AC, 01EB54FC614BEB800ED547A00F6BF7434267DB5BE880D025ADEDE36EDF9D7FA4 ] C:\Windows\System32\usermgr.dll
15:08:42.0127 0x1a1c  C:\Windows\System32\usermgr.dll - ok
15:08:42.0142 0x1a1c  [ E51EA7E9C514F915327E2499D98065F2, D7F294D14B2EB0EF2128B7A84E216DD40488E628C06FA59D0C1E6B516AEC5A6D ] C:\Windows\System32\wlanapi.dll
15:08:42.0142 0x1a1c  C:\Windows\System32\wlanapi.dll - ok
15:08:42.0142 0x1a1c  [ BDFC8877195C6A4D4BD9118286CC7B49, 192E2CCB42CA13F5A6F481E8ABDE135B20418FFEEAC496554F0545E63ECB1794 ] C:\Windows\System32\netprofmsvc.dll
15:08:42.0142 0x1a1c  C:\Windows\System32\netprofmsvc.dll - ok
15:08:42.0142 0x1a1c  [ 7162C0C2240A8493C6FDE2BA2346ADAA, 533E15A7E49A2B88EC8A8C92D36F5D2CAACC205914262E6980DFC569A05179BD ] C:\Windows\System32\WMVCORE.DLL
15:08:42.0142 0x1a1c  C:\Windows\System32\WMVCORE.DLL - ok
15:08:42.0142 0x1a1c  [ F225F37717C8D714B56CF21C7C1E9C34, E272D0E33299BCA60479683EAE0D9B5D880293C01B337D5759FEE812EA631A39 ] C:\Windows\System32\taskhostw.exe
15:08:42.0142 0x1a1c  C:\Windows\System32\taskhostw.exe - ok
15:08:42.0158 0x1a1c  [ B23963938989724C916E4AF1E8E3268F, 6DDE27EC04DC5EF0A93521DD2354C8ADAD5218C4813DC0D90E7214FFCB801349 ] C:\Windows\System32\wship6.dll
15:08:42.0158 0x1a1c  C:\Windows\System32\wship6.dll - ok
15:08:42.0158 0x1a1c  [ DAC6849C4D6D7CD412CA5C11E94CAC39, 431272B8D077882F6C051A1D7C0771150B8D6F04D856766853CC0E831652C6AB ] C:\Windows\System32\wshqos.dll
15:08:42.0158 0x1a1c  C:\Windows\System32\wshqos.dll - ok
15:08:42.0158 0x1a1c  [ EF867286D0E1CF1990B7400BA80FAD77, C1CEC4845FE8AE0E3EF1AE82953F7931F09014D0EB8D6514769F944BDB9D40F2 ] C:\Windows\System32\WSHTCPIP.DLL
15:08:42.0158 0x1a1c  C:\Windows\System32\WSHTCPIP.DLL - ok
15:08:42.0174 0x1a1c  [ 5D09EC87CC3CFA05A3E12D95E7127DD9, 15CBE38AA7EDC72790993390E40E2E4E575C9D6FF32947C8C3BF61F46E2512DA ] C:\Windows\System32\npmproxy.dll
15:08:42.0174 0x1a1c  C:\Windows\System32\npmproxy.dll - ok
15:08:42.0174 0x1a1c  [ 22D054056DBA9DB0752409A7FD5A8929, AAE0D838848764E810862A2F038FB4737685AE9510D9BABB9C97052B955CA501 ] C:\Windows\System32\WinTypes.dll
15:08:42.0174 0x1a1c  C:\Windows\System32\WinTypes.dll - ok
15:08:42.0174 0x1a1c  [ 112E5F91B9904C53F1A4CEA38055BCCC, 7B720474A1D131AE509E341CF67BC289C06A07B6ACED13C41EBE5A6D15B3E76F ] C:\Windows\System32\DeviceDriverRetrievalClient.dll
15:08:42.0174 0x1a1c  C:\Windows\System32\DeviceDriverRetrievalClient.dll - ok
15:08:42.0174 0x1a1c  [ 259D5F15DA8B4D3A1712059D417A25AE, 4F6584474572D2CD930FBDAD168B9A16D29D077B198265502D6F883611FA9EB8 ] C:\Windows\System32\DevPropMgr.dll
15:08:42.0174 0x1a1c  C:\Windows\System32\DevPropMgr.dll - ok
15:08:42.0189 0x1a1c  [ 7B27C4F1C201F510B4D115059E11355C, 0A0C5605848443B30422064EA60303B0326AFCF4B8ED8DA65A06889596E89E11 ] C:\Windows\System32\MitigationConfiguration.dll
15:08:42.0189 0x1a1c  C:\Windows\System32\MitigationConfiguration.dll - ok
15:08:42.0189 0x1a1c  [ 85CB3019514B7903359A7C1F068B4F93, 5EB51996BBE6B334AF881BF0B2FF6DB8E42D3D1A210DA29C88D53A20ACCE2F58 ] C:\Windows\System32\urlmon.dll
15:08:42.0189 0x1a1c  C:\Windows\System32\urlmon.dll - ok
15:08:42.0189 0x1a1c  [ ECE9EDC1A9118C0D2C8BF33EB8EE6C6D, DC71FD456589F93B8ADBA5E5D8853796569137B1A38A28D8C8B90A47BC96C954 ] C:\Windows\System32\wevtapi.dll
15:08:42.0189 0x1a1c  C:\Windows\System32\wevtapi.dll - ok
15:08:42.0205 0x1a1c  [ 824E2337116D2CBFD2205706DB536A98, E39EA4A01FC2320ECB5F0D6E3689F1F0E2A4FC0E10CE9F31558BE014AA6E6C30 ] C:\Windows\System32\newdev.dll
15:08:42.0205 0x1a1c  C:\Windows\System32\newdev.dll - ok
15:08:42.0205 0x1a1c  [ 15CD90AEB634FB53991035812AA4713F, 59CD1B5807E2A8C21116D26AF2F9B58195F3CEFCE1DAB86F27D0643323017A24 ] C:\Windows\System32\audiosrv.dll
15:08:42.0205 0x1a1c  C:\Windows\System32\audiosrv.dll - ok
15:08:42.0205 0x1a1c  [ 4C89C2FDFC9FA730CC1CA5B79D45D36E, 8B2E673C80837113A598A5BDD5C6E8A44A7CAE97C53CEE587DF56FB9FA761588 ] C:\Windows\System32\samcli.dll
15:08:42.0205 0x1a1c  C:\Windows\System32\samcli.dll - ok
15:08:42.0205 0x1a1c  [ 1B3AE44FBDD6BE65C64B97F21475C4E1, 1FCA6FC5D2E25B522E633AAE4F55456B4F6CDE25A22F0C6C01FBD34C9825ADDE ] C:\Windows\System32\AppXDeploymentClient.dll
15:08:42.0205 0x1a1c  C:\Windows\System32\AppXDeploymentClient.dll - ok
15:08:42.0220 0x1a1c  [ 91563B08A4FF7013420A14A1446264AE, 75A537094EEBF79C1E383D03016E6A4ACA6019BF78D8E86370A67CC50D49D606 ] C:\Windows\System32\drivers\lltdio.sys
15:08:42.0220 0x1a1c  C:\Windows\System32\drivers\lltdio.sys - ok
15:08:42.0220 0x1a1c  [ FF91879639B18FEBC6F509401686FCDD, AC33DAAEC577E0D73C08D2599DEC23516B11FF3FFADB56083356FF6FDB7DE61B ] C:\Windows\System32\drivers\wanarp.sys
15:08:42.0220 0x1a1c  C:\Windows\System32\drivers\wanarp.sys - ok
15:08:42.0220 0x1a1c  [ E6710A8A9EFB4B12D941353922E06C10, 36848FE29A48BE37B432E735565EEBBEDF54E100611ED2FA1C71855AB3F11DB9 ] C:\Windows\System32\iertutil.dll
15:08:42.0220 0x1a1c  C:\Windows\System32\iertutil.dll - ok
15:08:42.0236 0x1a1c  [ CE2476875C701A6EE2525663761481BB, F22CF0C94462CF43B5598885625E6F3EAE8DE33E735E07AF10853F5CE410F7DB ] C:\Windows\System32\WindowsCodecs.dll
15:08:42.0236 0x1a1c  C:\Windows\System32\WindowsCodecs.dll - ok
15:08:42.0236 0x1a1c  [ 37634E945C23CC12DD2364652F5CC007, 2B969B0F6A9FE4FB9666DA782177E9EA9B3002FC79D4A76C3D098C90A771F745 ] C:\Windows\System32\AudioSrvPolicyManager.dll
15:08:42.0236 0x1a1c  C:\Windows\System32\AudioSrvPolicyManager.dll - ok
15:08:42.0236 0x1a1c  [ 519C70A90D88799E6DAD7AA394FA4699, 922B5CBF483DE1D65E600E179D17FB42D98CAFF477F94D541C1BF911A049FDAC ] C:\Windows\System32\devrtl.dll
15:08:42.0236 0x1a1c  C:\Windows\System32\devrtl.dll - ok
15:08:42.0236 0x1a1c  [ 6479443BB89DBAC3BBCE9C2517EFAD0D, D0AFDD114C5B8A9D2C880D258CED9E99187B21836BDB004003B44E33042B6710 ] C:\Windows\System32\drivers\mslldp.sys
15:08:42.0236 0x1a1c  C:\Windows\System32\drivers\mslldp.sys - ok
15:08:42.0252 0x1a1c  [ 3BBF4C8BB52DCB265EF71E4F75369C65, E992646C21C84CF5262C2C08B18859E97DB918C190CF960E90DA13E920486417 ] C:\Windows\System32\drivers\ndisuio.sys
15:08:42.0252 0x1a1c  C:\Windows\System32\drivers\ndisuio.sys - ok
15:08:42.0252 0x1a1c  [ 5B8D57A3FA8AFD8EA21240E10E570E4E, 563AB539E0B5F7F8AEA203AC4ACAFFA5834B614EC08415A9A201F9D0B616B088 ] C:\Windows\System32\drivers\nwifi.sys
15:08:42.0252 0x1a1c  C:\Windows\System32\drivers\nwifi.sys - ok
15:08:42.0252 0x1a1c  [ 7936E95FFEA1758638715C6465B2A739, 6F8582EF105FC5B35A086F8433E0D08BF1D8955986835A9C94CC509D7BB6809C ] C:\Windows\System32\drivers\rspndr.sys
15:08:42.0252 0x1a1c  C:\Windows\System32\drivers\rspndr.sys - ok
15:08:42.0267 0x1a1c  [ D4962D5E80352D877D83350F49918A5F, 2D76DC11AA93F347ED6878F896D39F7A51940289DBD764CDF1CF4E4E8618CC5B ] C:\Windows\System32\DeviceSoftwareInstallationClient.dll
15:08:42.0267 0x1a1c  C:\Windows\System32\DeviceSoftwareInstallationClient.dll - ok
15:08:42.0267 0x1a1c  [ 61A61ED80D52421DAE4F6E32137508B4, B62659907FC43BB73843EEA2655A99DD92E6B1C91A676022FED29A9762D9B5B5 ] C:\Windows\System32\winhttp.dll
15:08:42.0267 0x1a1c  C:\Windows\System32\winhttp.dll - ok
15:08:42.0267 0x1a1c  [ 186FA38A6DA726A52BE481B92C0E6912, C900F43DB244AF29EA50AD0F33ED4F7B58B946C5F267692C3802DBA521793B9C ] C:\Windows\System32\dusmsvc.dll
15:08:42.0267 0x1a1c  C:\Windows\System32\dusmsvc.dll - ok
15:08:42.0267 0x1a1c  [ BF3A1962EDDB3C139133D0B0928B3761, 0DF08A1C1A1DE4ED62A2CC6A576390A11C9067FBFEF0D2781EE93299001285C4 ] C:\Windows\System32\wcmsvc.dll
15:08:42.0267 0x1a1c  C:\Windows\System32\wcmsvc.dll - ok
15:08:42.0283 0x1a1c  [ 88C05FEA4377D827269EC592BB25DCF3, 4757114C9D3FFFC75C22BCE832C655C4FA24ABB729AB116F8CEBCF627AFCF34B ] C:\Windows\System32\coreaudiopolicymanagerext.dll
15:08:42.0283 0x1a1c  C:\Windows\System32\coreaudiopolicymanagerext.dll - ok
15:08:42.0283 0x1a1c  [ F8159853823DE11456AAB35F6F2FC055, 3D915902B75C40E3084D578C6A019C87C254E379E80BDD155CC202F20957C959 ] C:\Windows\System32\mobilenetworking.dll
15:08:42.0283 0x1a1c  C:\Windows\System32\mobilenetworking.dll - ok
15:08:42.0283 0x1a1c  [ E95FD05979C7A6E62273C7F0ED473F3E, 7D62F9B2E4857803079A5A1156F64194596CC501CCA0A958988E93CD35F89FE3 ] C:\Windows\System32\OnDemandConnRouteHelper.dll
15:08:42.0283 0x1a1c  C:\Windows\System32\OnDemandConnRouteHelper.dll - ok
15:08:42.0283 0x1a1c  [ 1004EAD5D7DF56ADA24CB5015DAF48D2, 3B3816359F4386E2644A7B73F10DEE45CAF275FB262A067F2172AB593A8CDD76 ] C:\Windows\System32\Windows.ApplicationModel.dll
15:08:42.0283 0x1a1c  C:\Windows\System32\Windows.ApplicationModel.dll - ok
15:08:42.0299 0x1a1c  [ B697457756096E04A4B534EBEED6B291, A6A533340A5D6CB75F45176281FE2E5DBC11545D3E972603A867A8873F967FC7 ] C:\Windows\System32\drvstore.dll
15:08:42.0299 0x1a1c  C:\Windows\System32\drvstore.dll - ok
15:08:42.0299 0x1a1c  [ 1464A9D9C13215132BE9F8281CCC3AA8, B3A52538233A1D5BD1262113FE04AE850979CED4BCD4C31CABC3CB7A70576C1F ] C:\Windows\System32\mfperfhelper.dll
15:08:42.0299 0x1a1c  C:\Windows\System32\mfperfhelper.dll - ok
15:08:42.0299 0x1a1c  [ 79E2068FB1E925B013EE28ACA7D1BEEE, 8899B7C7268188F33BCB639CD58FB14DAB6E39A0EB5C4A0C587E779F74A03D15 ] C:\Windows\System32\rasadhlp.dll
15:08:42.0299 0x1a1c  C:\Windows\System32\rasadhlp.dll - ok
15:08:42.0314 0x1a1c  [ B9EC5BC3FAFF207324CCFC803851AB93, 920B2C41BF551D46F40B8440137AD267FF4EF5EE71BF859CD4B0294CD162B50E ] C:\Windows\System32\Windows.Gaming.Input.dll
15:08:42.0314 0x1a1c  C:\Windows\System32\Windows.Gaming.Input.dll - ok
15:08:42.0314 0x1a1c  [ FC54018CBA99701535DD08C1D6F6CB30, C36AA6F2E98FCD3D22382406CF4635CCC706BCAB8353E28B24D2F66ACEAC3C57 ] C:\Windows\System32\WMASF.DLL
15:08:42.0314 0x1a1c  C:\Windows\System32\WMASF.DLL - ok
15:08:42.0314 0x1a1c  [ 610EA9176B42FF8650CDE5DCF3213989, D080E3A11F1A7EC75B32B5329A09CA1585716EB26CF10D45579D4606376FE29E ] C:\Windows\System32\cmintegrator.dll
15:08:42.0314 0x1a1c  C:\Windows\System32\cmintegrator.dll - ok
15:08:42.0314 0x1a1c  [ C69E9512640F990F8350303235A16474, BFBA47F482AB1963A4677E9EB45BE88FAB8250FC5F359187DD34B489E17E6C5D ] C:\Windows\System32\wcmcsp.dll
15:08:42.0314 0x1a1c  C:\Windows\System32\wcmcsp.dll - ok
15:08:42.0330 0x1a1c  [ 90A8FBC526772EEF031A95BFD236DD4E, 8CAABB00014CF377CA4BB838520851330DFB1E3856021AF28190A5AA78CE6FD2 ] C:\Windows\System32\StateRepository.Core.dll
15:08:42.0330 0x1a1c  C:\Windows\System32\StateRepository.Core.dll - ok
15:08:42.0330 0x1a1c  [ CAFA5E74679EC39037B5C00F2AB82D7E, 37C531C77C84894D671BB2531B9F2D5491251BFA7F4077EA26C1D0EE7CA54D09 ] C:\Windows\System32\wlansvc.dll
15:08:42.0330 0x1a1c  C:\Windows\System32\wlansvc.dll - ok
15:08:42.0330 0x1a1c  [ F22ECAE2E79EEB94C51A16AB42D3525F, BB259C649D501159D9B40558EF5D2C6BC0D8211C1BA4DBB9C94A28F8D5F58259 ] C:\Windows\System32\UserMgrProxy.dll
15:08:42.0330 0x1a1c  C:\Windows\System32\UserMgrProxy.dll - ok
15:08:42.0330 0x1a1c  [ D41B7D3152E4ED1A32FA8939A828BAF7, E89B5C8392AA3458D998673835DF79DFAFA110F2F2E3E3A747B079C7C07A4C6C ] C:\Windows\System32\Windows.StateRepository.dll
15:08:42.0330 0x1a1c  C:\Windows\System32\Windows.StateRepository.dll - ok
15:08:42.0345 0x1a1c  [ BD008510936DD85058E195984CFDCC17, 3B60360550155774111869D6B71C660D6267AFD01349E093B865150F0D26DB82 ] C:\Windows\System32\wermgr.exe
15:08:42.0345 0x1a1c  C:\Windows\System32\wermgr.exe - ok
15:08:42.0345 0x1a1c  [ C8EF808C787D82789F713BF5C80F48B4, F023DA10846878EFB77690E9DF3CA3809CE796E18D82AA05AC632155498DC504 ] C:\Windows\System32\UIAnimation.dll
15:08:42.0345 0x1a1c  C:\Windows\System32\UIAnimation.dll - ok
15:08:42.0345 0x1a1c  [ 09B71B9B20A931049E92CAA8B0198E16, 776F2B032C3000105A727D83FC17F498FC0CC752755F34ED640D7951B995A652 ] C:\Windows\System32\DDORes.dll
15:08:42.0345 0x1a1c  C:\Windows\System32\DDORes.dll - ok
15:08:42.0361 0x1a1c  [ 00AD33C25ABF7E7BE7C4982CBE8AF7DF, 975E3871CEC841977B9237A5D38CE0707511EBA052BA8EEF0DFEC97BE98238A6 ] C:\Windows\System32\eappprxy.dll
15:08:42.0361 0x1a1c  C:\Windows\System32\eappprxy.dll - ok
15:08:42.0361 0x1a1c  [ A851F55E240E5FD5CF444FDA72045A5E, 5BDE53D6347397297C6ECB2B19696752FE851F1A9C7144BE4D8AD481642B8AD2 ] C:\Windows\System32\onex.dll
15:08:42.0361 0x1a1c  C:\Windows\System32\onex.dll - ok
15:08:42.0361 0x1a1c  [ FF0D68C6ED4A6316256BB6E716C767F0, 7775DC5299D2558703A0B403867E1FB39638A4296D315343269A492020920EB1 ] C:\Windows\System32\wlanmsm.dll
15:08:42.0361 0x1a1c  C:\Windows\System32\wlanmsm.dll - ok
15:08:42.0361 0x1a1c  [ E83991B17E9EE25DFFCFDA57883A5002, C22CDF1C62EB4F973383736E538A2C2244345D5869A866B7D09092295D81CF63 ] C:\Windows\System32\wlansec.dll
15:08:42.0361 0x1a1c  C:\Windows\System32\wlansec.dll - ok
15:08:42.0377 0x1a1c  [ 546FE1A4993DC7384ABA28129790FE39, B61B1AFFF6E3B701038890EE5CE92E51900319197B42B89EF2EB0BF178D789B0 ] C:\Windows\System32\WUDFx.dll
15:08:42.0377 0x1a1c  C:\Windows\System32\WUDFx.dll - ok
15:08:42.0377 0x1a1c  [ FA6AA982DDF1B76DE85E7DCEE1A929A7, 4F13048A6699D50C780DB9D072A2CA3C30294CCEDCC411167E49C4E8FDEDCA6E ] C:\Windows\System32\netapi32.dll
15:08:42.0377 0x1a1c  C:\Windows\System32\netapi32.dll - ok
15:08:42.0377 0x1a1c  [ 7DEDAFD826DEE03C941604E98A9B4BE3, C2E36C346B29F50376F3F487F5C18489A7A46158F55D72B8DB79CF493C4FE160 ] C:\Windows\System32\ClipRenew.exe
15:08:42.0377 0x1a1c  C:\Windows\System32\ClipRenew.exe - ok
15:08:42.0377 0x1a1c  [ C513432207191FDB95C18629BB3DF018, EDE7DCA4AC74BEA32FF3D83AC23AB63770F161A61ACB94237DAFAC9ED75D7ECC ] C:\Windows\System32\msxml6.dll
15:08:42.0377 0x1a1c  C:\Windows\System32\msxml6.dll - ok
15:08:42.0392 0x1a1c  [ 3550AFAB149B34A7FD023E2E1ABE26A8, 7F2D7EF2856D0EE8E71E0684D1DE2938DF309B1B44FA83CB99472DE5271B4508 ] C:\Windows\System32\OneCoreUAPCommonProxyStub.dll
15:08:42.0392 0x1a1c  C:\Windows\System32\OneCoreUAPCommonProxyStub.dll - ok
15:08:42.0392 0x1a1c  [ 040679147F6EA3928D4643AA598BFA0C, 6F5B43F69FF0E4043C7D10B278F766588DAE9D00C6954B3CE54733F39C96870E ] C:\Windows\System32\wlansvcpal.dll
15:08:42.0392 0x1a1c  C:\Windows\System32\wlansvcpal.dll - ok
15:08:42.0392 0x1a1c  [ CEA17E28EFF3B2EED6B49B5DDCC7327F, BA598EFD9D9C4449DEAC83F78CEC893AA127F31767902D6DD69A157B65450240 ] C:\Windows\System32\dxgiadaptercache.exe
15:08:42.0392 0x1a1c  C:\Windows\System32\dxgiadaptercache.exe - ok
15:08:42.0392 0x1a1c  [ FFE2D9D08A057C0864615FDD3DD2E0C6, DC251343978C9CC179981D4525CFC96B960FF0C7D08DA085C0FCCE2F415EF881 ] C:\Windows\System32\D3D12.dll
15:08:42.0392 0x1a1c  C:\Windows\System32\D3D12.dll - ok
15:08:42.0408 0x1a1c  [ F397CF83B694289BA27D7D54BCB34C73, 7A29296FD062E295CFED8EC9A0728068B306FA877EC3CF7CEF7D1E48756D06C3 ] C:\Windows\System32\PortableDeviceClassExtension.dll
15:08:42.0408 0x1a1c  C:\Windows\System32\PortableDeviceClassExtension.dll - ok
15:08:42.0408 0x1a1c  [ 1D656E3132B1F02A9A64600B56266FE4, F9244573EAEC79662EA36151132B5F559931960CB5ADBEB4758A8A9D6A9AFD25 ] C:\Windows\System32\PortableDeviceTypes.dll
15:08:42.0408 0x1a1c  C:\Windows\System32\PortableDeviceTypes.dll - ok
15:08:42.0408 0x1a1c  [ 60F89282E7289582C294D77F8C2F3EC5, E3F4C433DCA4EA2E4300EFD050F1CFAC630522F80E9719B4817420FC12086FBB ] C:\Windows\System32\CompatTelRunner.exe
15:08:42.0408 0x1a1c  C:\Windows\System32\CompatTelRunner.exe - ok
15:08:42.0424 0x1a1c  [ 2DF79B34F34BEC3031609B7B60805AC9, A3EF7B8259A4CDF258E42657EF69DC51591B028A057D98F0157C57A1C8B37072 ] C:\Windows\System32\TetheringIeProvider.dll
15:08:42.0424 0x1a1c  C:\Windows\System32\TetheringIeProvider.dll - ok
15:08:42.0424 0x1a1c  [ CA3BDB2DF8F62C689F94A5D3B2936C8E, 36DA2BEDF3BB298A3A45CCC0F00F5678C5B026AC1FB2DDF70ED55A44499C8A5D ] C:\Windows\System32\WiFiDisplay.dll
15:08:42.0424 0x1a1c  C:\Windows\System32\WiFiDisplay.dll - ok
15:08:42.0424 0x1a1c  [ 12391938757D942289D793B30E4935DB, BCDF0BC001EADBE2D1C0096F35368E4DE5656F459C6049E4B07DC65BDC7D6C9C ] C:\Windows\System32\spinf.dll
15:08:42.0424 0x1a1c  C:\Windows\System32\spinf.dll - ok
15:08:42.0424 0x1a1c  [ 6C7D2659605761D1B2898A6E09583902, EE04A0AFED4F1615E4991AB67C65961CA326010BD727FE51D6E2BD3E708B02B1 ] C:\Windows\System32\Windows.UI.Logon.dll
15:08:42.0424 0x1a1c  C:\Windows\System32\Windows.UI.Logon.dll - ok
15:08:42.0439 0x1a1c  [ 4C41666923A14DC687DEEE3B143AFB55, 4DD0F069254FE5577D5A478B70093049B4E062BB7760094E50090F6790456DAE ] C:\Windows\System32\conhost.exe
15:08:42.0439 0x1a1c  C:\Windows\System32\conhost.exe - ok
15:08:42.0439 0x1a1c  [ 912B28456292AF00A8EBF2B0F90E42B5, EAF349DC12A5368204838BE68348EC76512C1AB8D1AAA1B976D59B4478F0B3D5 ] C:\Windows\System32\drivers\condrv.sys
15:08:42.0439 0x1a1c  C:\Windows\System32\drivers\condrv.sys - ok
15:08:42.0439 0x1a1c  [ DCE1626DED5C7E08C733BAC6561BD12D, D6B01DB456B01D1576809E33A5C0E9F10B99830E2EB7EF4F430071653369DAA0 ] C:\Windows\System32\wlgpclnt.dll
15:08:42.0439 0x1a1c  C:\Windows\System32\wlgpclnt.dll - ok
15:08:42.0455 0x1a1c  [ 8AE77361DA429B75CB56F20E2B1CA044, D38D2CE5BD97B9C2760151FE91A1B3281C84ADC32B5A9AF680F46AD053F185D6 ] C:\Windows\System32\aticfx64.dll
15:08:42.0455 0x1a1c  C:\Windows\System32\aticfx64.dll - ok
15:08:42.0455 0x1a1c  [ 2173BFC80F82F06D55A2A0E72B63DDB3, 9758D0ADB84F95F4A1359E0D68CA43F8C367031212067892D69978D3E1643194 ] C:\Windows\System32\wifinetworkmanager.dll
15:08:42.0455 0x1a1c  C:\Windows\System32\wifinetworkmanager.dll - ok
15:08:42.0455 0x1a1c  [ 95AA2DE6A0E2F58A97F064BAF83CF78A, 6696426371243B248759046A9D140C72CC54E4FAFB1E4AE32E828E557651A6D2 ] C:\Windows\System32\wlanhlp.dll
15:08:42.0455 0x1a1c  C:\Windows\System32\wlanhlp.dll - ok
15:08:42.0455 0x1a1c  [ 039F154D7AA72CB03405F50EB5E5B44D, AC854829AA440A555BFB962FBFDCF3F1AEC48BEB3A85459E94619CF141C03DC4 ] C:\Windows\System32\WlanRadioManager.dll
15:08:42.0455 0x1a1c  C:\Windows\System32\WlanRadioManager.dll - ok
15:08:42.0470 0x1a1c  [ 155FF40C279B9C1D8DFC4C9A2A87841C, 3F66FD328608FFD25F2EFB1F402119ACA40DDF3F8928B9AC90C4BD6611D46082 ] C:\Windows\System32\NetSetupShim.dll
15:08:42.0470 0x1a1c  C:\Windows\System32\NetSetupShim.dll - ok
15:08:42.0470 0x1a1c  [ 7BB985D3D68A423CE05E007B14E225AB, 1FCA633889F61B7F18C2FCDF401846EE3B34E1EDFE8D428700DC45CE3F45E5BD ] C:\Windows\System32\shsvcs.dll
15:08:42.0470 0x1a1c  C:\Windows\System32\shsvcs.dll - ok
15:08:42.0470 0x1a1c  [ 33FB24F528B7B48AC594B95557922D6A, 272DE0DBF81F72C3215ED7B7BD62AEB9CB9E1A4513668E2858CF2F70470E2160 ] C:\Windows\System32\drivers\winquic.sys
15:08:42.0470 0x1a1c  C:\Windows\System32\drivers\winquic.sys - ok
15:08:42.0470 0x1a1c  [ E3E53B226DCC3D0F8A714929C45F068B, 5FF4A2D24058BF2A863995BCECF65F5631C29432B5D477959FFA47AD75820338 ] C:\Windows\System32\drivers\http.sys
15:08:42.0470 0x1a1c  C:\Windows\System32\drivers\http.sys - ok
15:08:42.0486 0x1a1c  [ C6CD2B6C8888942EF23D087E101F18BB, 5902547FCA2F001597928BD60D917C7D3A76F003C18631CEE4A7F204EB0B6505 ] C:\Windows\System32\fveapi.dll
15:08:42.0486 0x1a1c  C:\Windows\System32\fveapi.dll - ok
15:08:42.0486 0x1a1c  [ B54A80B1A307CE44C843EDD080FEA03E, BC7F9F33041C4594B25FF937F385C6E8A6BA870D25F781283C2147BB80A60919 ] C:\Windows\System32\spoolsv.exe
15:08:42.0486 0x1a1c  C:\Windows\System32\spoolsv.exe - ok
15:08:42.0486 0x1a1c  [ 020D5B7E60C39A98983733C520A6AB7A, 8FB4B6855E90FD4C3C7E21D7631A7C301D250325BE08A442959C463FC6564CC0 ] C:\Windows\System32\NetSetupApi.dll
15:08:42.0486 0x1a1c  C:\Windows\System32\NetSetupApi.dll - ok
15:08:42.0486 0x1a1c  [ 708DD306B5BEEE0D45E0EAE553257D2E, 25A7094AD4F97ED6EBD1302518F0975CEB3DA73B3796D7C7270F96577D1AF2F4 ] C:\Windows\System32\wincorlib.dll
15:08:42.0486 0x1a1c  C:\Windows\System32\wincorlib.dll - ok
15:08:42.0502 0x1a1c  [ 3414EAC66A02A3FAB5F61F17AEC156D5, B278F1F01AC245BBFEACB5944BB09E5DA326B8EF9E7B88180C3013B9473714F0 ] C:\Windows\System32\wwapi.dll
15:08:42.0502 0x1a1c  C:\Windows\System32\wwapi.dll - ok
15:08:42.0502 0x1a1c  [ A8F1C360A20D044BFF28E54C981330FF, D5626692261E12D610AFD9506B25C9FD6ACB6322AA35C1C5A522F2088FB4C571 ] C:\Windows\System32\NetSetupEngine.dll
15:08:42.0502 0x1a1c  C:\Windows\System32\NetSetupEngine.dll - ok
15:08:42.0502 0x1a1c  [ E70F61018BE3052491DF2E1879C5B7FE, 2388FFA2B7B7FCEFA2848AD78E0CE6DDA08110EBC535A5D7F1D1E5D3D2395FC3 ] C:\Windows\System32\BCP47Langs.dll
15:08:42.0502 0x1a1c  C:\Windows\System32\BCP47Langs.dll - ok
15:08:42.0517 0x1a1c  [ DAFF6F23D321DF8106CEC03BC0E9E964, 44A81200C3068E3A13448DEAA8387B5208299B6D120C42158FA15FA216C83753 ] C:\Windows\System32\drivers\bowser.sys
15:08:42.0517 0x1a1c  C:\Windows\System32\drivers\bowser.sys - ok
15:08:42.0517 0x1a1c  [ 3C5E2B48021E9D45CCB35B8987F3A399, BD7E591E1612F5FC51193D468543F1E008BD0A7AFBCF9E205CC66B8D27DB358E ] C:\Windows\System32\BFE.DLL
15:08:42.0517 0x1a1c  C:\Windows\System32\BFE.DLL - ok
15:08:42.0517 0x1a1c  [ AB7C450FA26544AB6D9344A81597B30B, 39139A19188EA85B39AA1DDA33B82B5F4A6ED543C7E11811EC9CE9DB8A41DADC ] C:\Windows\System32\drivers\mpsdrv.sys
15:08:42.0517 0x1a1c  C:\Windows\System32\drivers\mpsdrv.sys - ok
15:08:42.0517 0x1a1c  [ 4805FE481F8BA0E9EE23D568CDF0511F, D2EB6DAB8B2FB49FE7E84BEA4A46155F1594C8E76BA2A58EBA6C8A98724F117C ] C:\Windows\System32\drivers\mrxsmb.sys
15:08:42.0517 0x1a1c  C:\Windows\System32\drivers\mrxsmb.sys - ok
15:08:42.0533 0x1a1c  [ D12F8DF3F9CBB945AF07C5E966264D2D, DF0387B1F6A253D27422130C9E7AB16BECAA8966093611F9FB7C5A7A4E7D4BF4 ] C:\Windows\System32\drivers\mrxsmb20.sys
15:08:42.0533 0x1a1c  C:\Windows\System32\drivers\mrxsmb20.sys - ok
15:08:42.0533 0x1a1c  [ 5719B3ABD0FC28E1284F2515AE17613A, 5B4C567DFD75EEB75CD4D59436E748AA14EC9F9FC7655F915093813332E93AB4 ] C:\Windows\System32\version.dll
15:08:42.0533 0x1a1c  C:\Windows\System32\version.dll - ok
15:08:42.0533 0x1a1c  [ 25DB83722B01C0614679ACAC8C59D51A, 999A907B990EB769BE547A2E35B355FB20C0A5124CE9BE4EBBE2FF1F481C31C4 ] C:\Windows\System32\atiuxp64.dll
15:08:42.0533 0x1a1c  C:\Windows\System32\atiuxp64.dll - ok
15:08:42.0533 0x1a1c  [ 6728B2B1867B0607DFA28C13E625E355, C091519D82EC90EE44339B7BCFF2D2D5A33E9FB882EA2A54F312984834EBDCE2 ] C:\Windows\System32\wkssvc.dll
15:08:42.0533 0x1a1c  C:\Windows\System32\wkssvc.dll - ok
15:08:42.0549 0x1a1c  [ C6D64FDB19A235BF9D0F0CA526BA9129, 76FBB9642D83BFCE8918AB0F7DFAE720CA68D8CE9D0128A59886BF000B39FA9C ] C:\Windows\System32\NetSetupSvc.dll
15:08:42.0549 0x1a1c  C:\Windows\System32\NetSetupSvc.dll - ok
15:08:42.0549 0x1a1c  [ 6486011E637E07934F3E51482DC747C5, E26B5B6ECAB1D9534F52CA17889CBA0424B70B2E3303A6F934D41019F0E393EC ] C:\Windows\System32\Windows.UI.XamlHost.dll
15:08:42.0549 0x1a1c  C:\Windows\System32\Windows.UI.XamlHost.dll - ok
15:08:42.0549 0x1a1c  [ C7DC8A97E4D79109B6A57116A48B3D3D, 26B7748F520C5A40889EAFFA39279A1588E3812B841A8D49AACD53A0332FCA88 ] C:\Windows\System32\MrmCoreR.dll
15:08:42.0549 0x1a1c  C:\Windows\System32\MrmCoreR.dll - ok
15:08:42.0564 0x1a1c  [ 0301F99122692B658DA76145ACDB2F4B, 312A60ACA9E908BD82CA6B4A92D470BA1B5759B10ADBCBADD0111383ECE938E8 ] C:\Windows\System32\atidxx64.dll
15:08:42.0564 0x1a1c  C:\Windows\System32\atidxx64.dll - ok
15:08:42.0564 0x1a1c  [ E2B73F1C900896050EC7B1DD3E6276F7, 67ACD93C7961EB8F5C5DFBE8988881D3A930BFCCA5FA230CE9183A652899FECD ] C:\Windows\System32\dsparse.dll
15:08:42.0564 0x1a1c  C:\Windows\System32\dsparse.dll - ok
15:08:42.0564 0x1a1c  [ C4A4CCDD5EE11DA9398ADC321D200A71, 694729DA6BE83C60E97CEC8B91C90CBB2E2A0DA3D0F98F990A24AA7553F1AFBC ] C:\Windows\System32\ProximityService.dll
15:08:42.0564 0x1a1c  C:\Windows\System32\ProximityService.dll - ok
15:08:42.0564 0x1a1c  [ A52716A8E7EA25415F27BBEB0EBD0803, 0A4B57BC669FA2248D01C0B310A020B63651249664C39B34C4C836383B4B9FC5 ] C:\Windows\System32\MPSSVC.dll
15:08:42.0564 0x1a1c  C:\Windows\System32\MPSSVC.dll - ok
15:08:42.0580 0x1a1c  [ 79A0938227611146A4ACE36060BCDC14, 2E3324776290D671230D3ADD99B299AEE4961D0B0314DF51207C2BDD7D62FEF6 ] C:\Windows\System32\DeviceMetadataRetrievalClient.dll
15:08:42.0580 0x1a1c  C:\Windows\System32\DeviceMetadataRetrievalClient.dll - ok
15:08:42.0580 0x1a1c  [ C3D487827E48CC5EC17994FEC5BDFF87, 5FCEA3EEA583755D0C9F6005ED3032E9DFECB57F504DC67701AE7D2D2631C30E ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys
15:08:42.0580 0x1a1c  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys - ok
15:08:42.0580 0x1a1c  [ DE51F5BB5C05D4C831ECB6E1A70E1B5E, 465834210ACE469481F75EDBB8532386029BD5277C41D084134E9E71B9BD8371 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
15:08:42.0580 0x1a1c  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe - ok
15:08:42.0580 0x1a1c  [ CEDF1C2E1AE31E63C4F83F8486F59E53, A5D2420B62F2478A97CFC72BE0F17996CCABDC9EB77ADAF57C66E7D29F5CC0C9 ] C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
15:08:42.0580 0x1a1c  C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe - ok
15:08:42.0595 0x1a1c  [ A79265A2CF42790393832EB1771E0967, F74CC673FA6A87B9DB6173600F3C1D08C4119040E2792B1E9295A68541841F69 ] C:\Windows\System32\drivers\srvnet.sys
15:08:42.0595 0x1a1c  C:\Windows\System32\drivers\srvnet.sys - ok
15:08:42.0595 0x1a1c  [ D58A41151E5A0900453FD67B3C8D83ED, 6FCA24F6029BE4F7DE93326A520726388ED3EE36B9DF266396E5543EEF79E922 ] C:\Windows\System32\ImplatSetup.dll
15:08:42.0595 0x1a1c  C:\Windows\System32\ImplatSetup.dll - ok
15:08:42.0595 0x1a1c  [ 22896D7BC9E2B0027DF0CA860E9547C8, 50607E9B752B03289893EF9F4882A10C560E8A3413A237D890697FC25545DFC5 ] C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
15:08:42.0595 0x1a1c  C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe - ok
15:08:42.0611 0x1a1c  [ 2D7F1C02B94D6F0F3E10107E5EA8E141, 93B266F38C3C3EAAB475D81597ABBD7CC07943035068BB6FD670DBBE15DE0131 ] C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys
15:08:42.0611 0x1a1c  C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys - ok
15:08:42.0611 0x1a1c  [ 88980D5263DDF81E9BA4E50C288A421C, 332FC323735807B9714AEF1FCDCB56AE9691ED51AD9922EDC4EE56E2C5CA99D1 ] C:\Windows\System32\drivers\mmcss.sys
15:08:42.0611 0x1a1c  C:\Windows\System32\drivers\mmcss.sys - ok
15:08:42.0611 0x1a1c  [ 5DFB139945F70FA15CAF7F3929B932AD, 3F7789FD0B00E95FB98F7952317E7993FA66CACF4FFD847068F0447ECEA1B811 ] C:\Windows\System32\drivers\Ndu.sys
15:08:42.0611 0x1a1c  C:\Windows\System32\drivers\Ndu.sys - ok
15:08:42.0611 0x1a1c  [ 696A8431DD22EDE385D7AB84E0EAF4C9, E5892B346904C7A392A0B1C8F4C9066BC535A2C70307123C8E1F2157353333F0 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:08:42.0611 0x1a1c  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
15:08:42.0627 0x1a1c  [ 08D343C9D37FA5584330714DF6C8A6C1, 546A062DF1244A1228DE60C8EAE49C6AD64021A23F53A3B6B344693C586FF4B5 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
15:08:42.0627 0x1a1c  C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe - ok
15:08:42.0627 0x1a1c  [ 16CFD4A701607ADE443A8BA2A00EF555, 9C891751F3EDCD165AF08659567F35C03E0AF661FBB2567C931DC1BE839798EF ] C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MsMpEng.exe
15:08:42.0627 0x1a1c  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MsMpEng.exe - ok
15:08:42.0627 0x1a1c  [ E4518C35D159A468A789AB216A03AE8C, 09D3B2B0021AB47C36BF7784DAE62EC1C90FA94AC4E276D17D7D51C9EE624D63 ] C:\Windows\System32\drivers\PEAuth.sys
15:08:42.0627 0x1a1c  C:\Windows\System32\drivers\PEAuth.sys - ok
15:08:42.0642 0x1a1c  [ EDD39C19EFA8F01CBBCCFFADE4674C21, 3F0E1898ECBE2AB8E126C71DF281C5F8C0B25AFFADFC7D8525FE84C06E27730C ] C:\Windows\SysWOW64\ntdll.dll
15:08:42.0642 0x1a1c  C:\Windows\SysWOW64\ntdll.dll - ok
15:08:42.0642 0x1a1c  [ BE8D133E2E6EA2B90EC48BBCBBF77174, 4278D851EC5C6FBDDEBAD3F6DEB6D1347A3C8D09F5E9D36650D077D32C6675EE ] C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
15:08:42.0642 0x1a1c  C:\Program Files\Tablet\Wacom\WTabletServicePro.exe - ok
15:08:42.0642 0x1a1c  [ 817E69FA0C14EDCD06BC32E9EDE21631, F2C4A1BDF3C5CEAF1BE2BA739B060926F256A94B72512ABAC221F83AB974EE79 ] C:\Windows\System32\cryptcatsvc.dll
15:08:42.0642 0x1a1c  C:\Windows\System32\cryptcatsvc.dll - ok
15:08:42.0642 0x1a1c  [ E8A9C2E4DCCFA92B197A5FC6D3B5249A, E6288151F398248D3B474701F26A8D5E5587DB632493559A1DE5277F15A43731 ] C:\Windows\System32\cryptsvc.dll
15:08:42.0642 0x1a1c  C:\Windows\System32\cryptsvc.dll - ok
15:08:42.0658 0x1a1c  [ 0B18AD88FFFAC208FD6CAEBCEA66BB31, EA3FE499807F97E59FF10D0ECEF1E76C3ABA958F9859C2B4294A74561BEF7B17 ] C:\Windows\System32\crypttpmeksvc.dll
15:08:42.0658 0x1a1c  C:\Windows\System32\crypttpmeksvc.dll - ok
15:08:42.0658 0x1a1c  [ 449075E8889DE1D57714B8177457D533, 17E9941BD5B949951270B46C428D72570A54EF219063FB746AC6E5018C2D74E2 ] C:\Windows\System32\dps.dll
15:08:42.0658 0x1a1c  C:\Windows\System32\dps.dll - ok
15:08:42.0658 0x1a1c  [ A55C4EC26B4B05A9AFF4C26C74343795, B6F3B80220AB837D099A1A576F711E49B7EA7C4CA067EE7094FB2EEFFDB08AEA ] C:\Windows\System32\drivers\srv2.sys
15:08:42.0658 0x1a1c  C:\Windows\System32\drivers\srv2.sys - ok
15:08:42.0674 0x1a1c  [ ABA4B3C8252BE9D3A6F1E9A1D9756213, D40663F63B098A737D611695092CB93CC3E9217817A1A370D837C7430191D850 ] C:\Windows\System32\wbem\WMIsvc.dll
15:08:42.0674 0x1a1c  C:\Windows\System32\wbem\WMIsvc.dll - ok
15:08:42.0674 0x1a1c  [ AADA62B840D622CCEA4D613F5AA39820, 3F2D9AEACB4F692586BE5F1CDA56E9C4608350698316E8194DA989C2B3A213CD ] C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MpSvc.dll
15:08:42.0674 0x1a1c  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MpSvc.dll - ok
15:08:42.0674 0x1a1c  [ 4C02D7CF0BF5476C05BD1F56E2DDDCD1, B2A4AAA1EA329FDF9281CA89312787F2EC9FAA89FAC0D38B8A488818D5F1180B ] C:\Windows\System32\diagtrack.dll
15:08:42.0674 0x1a1c  C:\Windows\System32\diagtrack.dll - ok
15:08:42.0674 0x1a1c  [ A8766E18A1E2D41301E7A8EEFBABCDDD, 0762E146944C40C9D295A11DFBDDD72270E75619D209451AAD619A531A0EACF2 ] C:\Windows\System32\drivers\tcpipreg.sys
15:08:42.0674 0x1a1c  C:\Windows\System32\drivers\tcpipreg.sys - ok
15:08:42.0689 0x1a1c  [ 93FECF4BD3A622DDBBA203FEE51500AA, 16847026405A03E8CFD05E99F23BE30FF0622C56B9517ED0CE57012A3FF28D86 ] C:\Windows\System32\webauthn.dll
15:08:42.0689 0x1a1c  C:\Windows\System32\webauthn.dll - ok
15:08:42.0689 0x1a1c  [ 96142856700EC9BD02D2EA30208D1934, 1C8050DA53DFA42551BB4637632AA0110B06575CA1AAAFD94AE8AE37E815BE8E ] C:\Windows\System32\wpnservice.dll
15:08:42.0689 0x1a1c  C:\Windows\System32\wpnservice.dll - ok
15:08:42.0689 0x1a1c  [ 623A715A4B528D82315CB8541DBCBF14, CBA003800734541C9C4A73493A71B93412BF1C3BEAAAAA1EE876BE65133CF9F4 ] C:\Windows\System32\httpapi.dll
15:08:42.0689 0x1a1c  C:\Windows\System32\httpapi.dll - ok
15:08:42.0689 0x1a1c  [ 3A531D7F1EB99031DDCAB68B4869FAFE, 2905600C08BD5B9DDC83D37A9DD28928C640AA643199C11452204A4CE479351F ] C:\Windows\System32\rtutils.dll
15:08:42.0689 0x1a1c  C:\Windows\System32\rtutils.dll - ok
15:08:42.0705 0x1a1c  [ 1C546EB2083C14C6EE79F10A16685F67, F6816CBBCED28927A481D24F7FB132762C4E3D8AFD046240092DFE240F444957 ] C:\Windows\System32\srvsvc.dll
15:08:42.0705 0x1a1c  C:\Windows\System32\srvsvc.dll - ok
15:08:42.0705 0x1a1c  [ 2CA5A7BECA0433EB10ECB4F2F03BB29F, 6A20A1DDEB406432C700891C07E1278C293AEBCD66C670B16D73028F562CBA4E ] C:\Windows\System32\sstpsvc.dll
15:08:42.0705 0x1a1c  C:\Windows\System32\sstpsvc.dll - ok
15:08:42.0705 0x1a1c  [ 9D6DB6038C76BDDCFB563535D08A62C4, 819E2C4C4CF4C6E08800560B15D0026CB096E6FF6C6C48DF01318522913E8C1B ] C:\Windows\System32\webio.dll
15:08:42.0705 0x1a1c  C:\Windows\System32\webio.dll - ok
15:08:42.0720 0x1a1c  [ 0A1F736D28F209F23D5319626A52225A, 7992D7292B8DE740F9F58B339561A28CBD8143420B25CEFF93AECFC3E6264EC2 ] C:\Windows\System32\cabinet.dll
15:08:42.0720 0x1a1c  C:\Windows\System32\cabinet.dll - ok
15:08:42.0720 0x1a1c  [ A6ABB00431242A35EA866A182C33B0B0, 9AC9D0109E57D9307A64DE09143A49DCD15E066D8018DCDCDF0806C8C2B04C14 ] C:\Windows\System32\mi.dll
15:08:42.0720 0x1a1c  C:\Windows\System32\mi.dll - ok
15:08:42.0720 0x1a1c  [ 471846A04C7C4B727828BBD5DD30624C, F56CF13792690CB8EDCCBC8CD41F4C561EFBF3A5360183C9235F1B93C636D77D ] C:\Windows\System32\sscore.dll
15:08:42.0720 0x1a1c  C:\Windows\System32\sscore.dll - ok
15:08:42.0720 0x1a1c  [ 75CF509D00B8D648E97F853522F3A9B7, 497F37A26053B0935BDF1F6025940A4358E6D8A62BD4F4DD34D9187C3CCE65DD ] C:\Windows\System32\sscoreext.dll
15:08:42.0720 0x1a1c  C:\Windows\System32\sscoreext.dll - ok
15:08:42.0736 0x1a1c  [ BCA97819779D7876B6F98C29844CF505, EEF76BD38F90D6846FC17E13F3981FF0EA9768BE7D142430488A2F0850853833 ] C:\Windows\System32\trkwks.dll
15:08:42.0736 0x1a1c  C:\Windows\System32\trkwks.dll - ok
15:08:42.0736 0x1a1c  [ EF93553049A0DC9619315EDECD96A3C8, E8E6F028995645125D7C4B2678018E3600D392DDE6BA2627A0560999209A7E96 ] C:\Windows\System32\miutils.dll
15:08:42.0736 0x1a1c  C:\Windows\System32\miutils.dll - ok
15:08:42.0736 0x1a1c  [ 4E2DBBE6338CFF92A07E157AD43DAB35, D8975D50614DFA772CBA7D8525B471C05B94D333A33D3D900FB8457D6676A020 ] C:\Windows\System32\Windows.UI.dll
15:08:42.0736 0x1a1c  C:\Windows\System32\Windows.UI.dll - ok
15:08:42.0736 0x1a1c  [ 2DF1213455A71E2C453575C425EEE079, 82FAD5020C4D43F152EB95063C653CDC94B38E01F0BE47180F34A4E90B250908 ] C:\Windows\System32\wdi.dll
15:08:42.0736 0x1a1c  C:\Windows\System32\wdi.dll - ok
15:08:42.0752 0x1a1c  [ 4867E864E822A578B2BBC8F1FC7BAFD2, 16F1A03C983DFE7983F84C8D60ABEB186165BCE8B1E53EE24AF9841917F47760 ] C:\Windows\System32\fwpolicyiomgr.dll
15:08:42.0752 0x1a1c  C:\Windows\System32\fwpolicyiomgr.dll - ok
15:08:42.0752 0x1a1c  [ 73767B27742C208B6F9B81071C0DBE39, 6ACD000B6A94731A6F92B7BD018B96CE4180D6A238E9FE2F0AAEF24E5839CCBB ] C:\Windows\System32\wpncore.dll
15:08:42.0752 0x1a1c  C:\Windows\System32\wpncore.dll - ok
15:08:42.0752 0x1a1c  [ 5446957748D7A41D9121E00BF0A7CABD, 3572DA02EC9E04CAB7EF36CEB6BFA558C535E05397624A5D5E5C783AB1562E58 ] C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MpClient.dll
15:08:42.0752 0x1a1c  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MpClient.dll - ok
15:08:42.0767 0x1a1c  [ CE7E2BD9759702F635CB7F268DDD449A, 2F9B6BFF6C99366F6FD8CA6CFD85DD41DB13DCD6342767D5C815D13FDFE45FB7 ] C:\Windows\System32\drivers\vwifimp.sys
15:08:42.0767 0x1a1c  C:\Windows\System32\drivers\vwifimp.sys - ok
15:08:42.0767 0x1a1c  [ 7CAA1B97A3311EB5A695E3C9028616E7, 27F394AE01D12F851F1DEE3632DEE3C5AFA1D267F7A96321D35FD43105B035AD ] C:\Windows\System32\msvcp110.dll
15:08:42.0767 0x1a1c  C:\Windows\System32\msvcp110.dll - ok
15:08:42.0767 0x1a1c  [ 7C3B449F661D99A9B1033A14033D2987, AE996EDB9B050677C4F82D56092EFDC75F0ADDC97A14E2C46753E2DB3F6BD732 ] C:\Windows\System32\msvcr110.dll
15:08:42.0767 0x1a1c  C:\Windows\System32\msvcr110.dll - ok
15:08:42.0767 0x1a1c  [ CD023B633F9005F65C0FB396E1DF0F79, 36ECE0DD0CDB0E6668E5BEAA8D239B4D601258A996979E6B9D26C67AC570C965 ] C:\Windows\System32\tetheringclient.dll
15:08:42.0767 0x1a1c  C:\Windows\System32\tetheringclient.dll - ok
15:08:42.0783 0x1a1c  [ 351D0D5CA2BECF579D7424273B7A6F55, 5132B382557EE5B45ED14EBB083C8B3F955E11943C58FFE332C7B6DC94EE0F53 ] C:\Windows\System32\CellularAPI.dll
15:08:42.0783 0x1a1c  C:\Windows\System32\CellularAPI.dll - ok
15:08:42.0783 0x1a1c  [ A2DE12A3A8ABC9E63AB553318083D3DD, CB04DE8E660A9BFA26510B6D244ACFA2BBE1580B309EC8925419EC95C7CE05AC ] C:\Windows\SysWOW64\kernel32.dll
15:08:42.0783 0x1a1c  C:\Windows\SysWOW64\kernel32.dll - ok
15:08:42.0783 0x1a1c  [ 208B18B92C068377F5EB21CD72FBC993, 95DB24AC4FADDCFC1A1FC57ED68DB3092F5AC1976642C1B4099C46B59B093B7D ] C:\Windows\SysWOW64\mscoree.dll
15:08:42.0783 0x1a1c  C:\Windows\SysWOW64\mscoree.dll - ok
15:08:42.0799 0x1a1c  [ D90C347C6F88D0E21955BC682CA06918, CC3572343E88CA3276BB83353A49AC32FF5073C95E7D804CAFB42463BABBFB67 ] C:\Windows\System32\diagperf.dll
15:08:42.0799 0x1a1c  C:\Windows\System32\diagperf.dll - ok
15:08:42.0799 0x1a1c  [ 45AB0125043D92394ECD784978AF5E5A, 4EA69A53E97BA597D44A55A5E73563D6EE8931690AE22399CED34694467201F1 ] C:\Windows\System32\perftrack.dll
15:08:42.0799 0x1a1c  C:\Windows\System32\perftrack.dll - ok
15:08:42.0799 0x1a1c  [ 6280948D414C59397D9AA7127611743C, 320F9CA069C562818E180324AA2693B5C26A220A5BBFC232AC10762C66FB4FE1 ] C:\Windows\System32\wbemcomn.dll
15:08:42.0799 0x1a1c  C:\Windows\System32\wbemcomn.dll - ok
15:08:42.0799 0x1a1c  [ ECB760B2391608BA4E0A7987ADA70CCF, 03B39EA56CD46666CFA8467AA246A63924C0F4AACD27E51FD5E1192000B4A577 ] C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
15:08:42.0799 0x1a1c  C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe - ok
15:08:42.0814 0x1a1c  [ 35A20D48D8A84AF8154B47CBCEACBCCC, C98B0EC44813B7B459E233C084FAE2ADA1507B01C236603625EDB3FBDB6B5C35 ] C:\Windows\System32\das.dll
15:08:42.0814 0x1a1c  C:\Windows\System32\das.dll - ok
15:08:42.0814 0x1a1c  [ 70124ABD0EA0C710F1F10706E2FDE73D, 6547675909355D3CAC10C2FC86BF10FA8AD75334C15277762A5457FD54A75E69 ] C:\Windows\System32\iphlpsvc.dll
15:08:42.0814 0x1a1c  C:\Windows\System32\iphlpsvc.dll - ok
15:08:42.0814 0x1a1c  [ 71A6C25E3B9C7BDF0ACE20958F2CF8C4, 5028098E5FAAE0D7B43983907708E9E68C27C87D182B37A084CF9F1044D3E47F ] C:\Windows\System32\drivers\rassstp.sys
15:08:42.0814 0x1a1c  C:\Windows\System32\drivers\rassstp.sys - ok
15:08:42.0814 0x1a1c  [ 438BB0743B2AA510D616AD81ECE2FA08, 2BE797019D8CB50650E09080E21644B32CA0B411CADBCE606B3364F81C42E319 ] C:\Windows\System32\drivers\ndproxy.sys
15:08:42.0814 0x1a1c  C:\Windows\System32\drivers\ndproxy.sys - ok
15:08:42.0830 0x1a1c  [ 437B8732902A8DF6E14101AA963A5D4F, 9021B9CC0A5488BB02C0798ABE2A8269C1D22A01F4AC3B923F935ADB383AAF74 ] C:\Windows\System32\InputHost.dll
15:08:42.0830 0x1a1c  C:\Windows\System32\InputHost.dll - ok
15:08:42.0830 0x1a1c  [ 8DE1F41261511E7EE98DDBA047EAAD32, 64D420814A27DA8DDC453127A4B0914EBACDF357561EFFDF0395BB8A7005EE98 ] C:\Windows\System32\TextInputFramework.dll
15:08:42.0830 0x1a1c  C:\Windows\System32\TextInputFramework.dll - ok
15:08:42.0830 0x1a1c  [ 1BC5A7FC08C5456354F2C4B238769783, B2895B93A392CE20DF7DE8C20EF97DB922903549D7BBC0FF583543AF6932A36C ] C:\Windows\System32\mpr.dll
15:08:42.0830 0x1a1c  C:\Windows\System32\mpr.dll - ok
15:08:42.0830 0x1a1c  [ 5EE2E34A4E6E46E0D748E6C1D3BA4EC6, 96096A8894EE7B2161432B027612AA5B79965189A88B333C57F0E65CF30297F2 ] C:\Windows\System32\cscapi.dll
15:08:42.0830 0x1a1c  C:\Windows\System32\cscapi.dll - ok
15:08:42.0845 0x1a1c  [ 19E0B5B6202CE85796EA6C0EBB7334DF, 8625DAC11461BCBC13BEA1799A1B9236AF268D97BB31F525B20A5B91F7669603 ] C:\Program Files\Tablet\Wacom\WacomHost.exe
15:08:42.0845 0x1a1c  C:\Program Files\Tablet\Wacom\WacomHost.exe - ok
15:08:42.0845 0x1a1c  [ 0C097317DFDAA4EE20167884368F74AD, 0042F186A07DC64FE804022E6D62B2801DFD04355106D5BDE455B82364709326 ] C:\Windows\SysWOW64\KernelBase.dll
15:08:42.0845 0x1a1c  C:\Windows\SysWOW64\KernelBase.dll - ok
15:08:42.0845 0x1a1c  [ CCFAEF5BA0718F07FAC1B6282C40B5D8, E6A1CD06D6C14AD0E823E003F7CDC1343E91882812221D334C0D5C65246CA0F9 ] C:\Windows\System32\cdp.dll
15:08:42.0845 0x1a1c  C:\Windows\System32\cdp.dll - ok
15:08:42.0861 0x1a1c  [ 9A896F90132B1C538A23093EDF0524E5, 49E514CF9BA90CA928446413DAB59F311A37541E43681AB2CFB0C781850AC9CB ] C:\Windows\System32\httpprxm.dll
15:08:42.0861 0x1a1c  C:\Windows\System32\httpprxm.dll - ok
15:08:42.0861 0x1a1c  [ 48EA934776B5AA3BEE2510A3C88DBD62, 97AADDF66617A5F64C9AB9F51085380B46449B1C5604942CEAB101E3828BF5A8 ] C:\Windows\System32\pnpts.dll
15:08:42.0861 0x1a1c  C:\Windows\System32\pnpts.dll - ok
15:08:42.0861 0x1a1c  [ 42CC1E04E5B97022215A9724018A58E9, 912D3C19A915A4C960F539F3B451726BE47B91659567C67DE756E32D7731F509 ] C:\Windows\System32\ProximityCommon.dll
15:08:42.0861 0x1a1c  C:\Windows\System32\ProximityCommon.dll - ok
15:08:42.0861 0x1a1c  [ 132DBA978096923AC29275ACD818D4DC, 16B790964E49F50A568E34FE2D7DD5EB61242AAD6350B6B65F9A5EAFB9EF1732 ] C:\Windows\System32\rasmans.dll
15:08:42.0861 0x1a1c  C:\Windows\System32\rasmans.dll - ok
15:08:42.0877 0x1a1c  [ 190014BE660BF0C53226607D156C9A54, 87B61A126B85AA15B5E204CF5F22204E40361931713767B62F9FD783295D43DD ] C:\Windows\System32\vssapi.dll
15:08:42.0877 0x1a1c  C:\Windows\System32\vssapi.dll - ok
15:08:42.0877 0x1a1c  [ CBC95B94E0C7525042795F01E3AAF2C6, 2B3A4433194AA28B756C89B917B2FFE48C286763FBD3C2EB526508D6926B7E55 ] C:\Windows\System32\weretw.dll
15:08:42.0877 0x1a1c  C:\Windows\System32\weretw.dll - ok
15:08:42.0877 0x1a1c  [ B25FAED5F3E6796C909DB4D09BAD3F0C, B5C7494EA55D5266B23502BA6C156FC24E86679E60E49D8C7E8FA55E29B91E5A ] C:\Windows\System32\windowsperformancerecordercontrol.dll
15:08:42.0877 0x1a1c  C:\Windows\System32\windowsperformancerecordercontrol.dll - ok
15:08:42.0877 0x1a1c  [ 8C1C9E02A14A5E1CB1D1671119455023, 384F0FE652494E2DAABFE23DB74A739E2218B6A99BC42CF5503AFA0B7C977739 ] C:\Windows\System32\winsqlite3.dll
15:08:42.0877 0x1a1c  C:\Windows\System32\winsqlite3.dll - ok
15:08:42.0892 0x1a1c  [ A9BC5F3E3C6406C3C5ABE804FBF7BC76, A0177FD4B7690A680E5EAC9BDC78E21117B523622607BCA47305EB74984CF901 ] C:\Windows\System32\wmidcom.dll
15:08:42.0892 0x1a1c  C:\Windows\System32\wmidcom.dll - ok
15:08:42.0892 0x1a1c  [ 1DECC4E876796408E6399F7A46E943B1, 496E6D949AD0BA16D20ED67281F23818C2B4D04D0D0B9B6B286DC471E1D5A90A ] C:\Windows\System32\adhsvc.dll
15:08:42.0892 0x1a1c  C:\Windows\System32\adhsvc.dll - ok
15:08:42.0892 0x1a1c  [ 5EE4663BAEB8A64CFA303288EFA2E802, 72969C9A6CF748D54187ED8AA838A1BDEE1651ED34D2EDB31CE6642DF9FEA47D ] C:\Windows\System32\netwphelper.dll
15:08:42.0892 0x1a1c  C:\Windows\System32\netwphelper.dll - ok
15:08:42.0908 0x1a1c  [ 02620016F5AB7CE7EA7EA6341E6CA0D9, AE5A6471369FB1B62B46F30682740B38E131168461201A1369761F590AD25084 ] C:\Windows\System32\rilproxy.dll
15:08:42.0908 0x1a1c  C:\Windows\System32\rilproxy.dll - ok
15:08:42.0908 0x1a1c  [ C35448FA3C43DA8530D80BD0962A6EBB, 0DBF39B17AE4D6A4D269E7CA24577B407823A403BD5112223D3D9D0F7ECEE9E4 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\device.dll
15:08:42.0908 0x1a1c  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\device.dll - ok
15:08:42.0908 0x1a1c  [ 66B2DD368ADA06D29044BCD9A396CA42, EDA863C3DBC92C18A3FA36E130FF7A8A6B129728F4DBFC5178A440FF82199EDE ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
15:08:42.0908 0x1a1c  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll - ok
15:08:42.0908 0x1a1c  [ D3F27BC412760F184619B492C7998547, BC78C295FB0C400F07A1F085FBB6F84E7553497E04DEED24041F8DF83C2E0475 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\platform.dll
15:08:42.0908 0x1a1c  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\platform.dll - ok
15:08:42.0924 0x1a1c  [ 66193AC2000AAFECE6B9055E72E8FB54, F6A32D21867DE68374E3CF53267F59C5422BD739BB15D0665A4E1530148F405B ] C:\Windows\System32\HNetCfgClient.dll
15:08:42.0924 0x1a1c  C:\Windows\System32\HNetCfgClient.dll - ok
15:08:42.0924 0x1a1c  [ AD42210CADBCE525050ACBA450AC5ABE, 58833295116E0FD14FBE2FC0F87BF5A992CD1F04DE8205A332DD88AEF4086693 ] C:\Windows\System32\srumsvc.dll
15:08:42.0924 0x1a1c  C:\Windows\System32\srumsvc.dll - ok
15:08:42.0924 0x1a1c  [ 8186B18F85C08601EA488C0C28FE2F34, E0078246E8A340C55C5FFDC1603B77C6562F79622201935F5578084597EE9614 ] C:\Windows\System32\esent.dll
15:08:42.0924 0x1a1c  C:\Windows\System32\esent.dll - ok
15:08:42.0924 0x1a1c  [ 22965E609D8D0EC76E56737F4980F8B9, 834FFABF1B3181C57194A28CDB40A8CCD140EF014DEC217CA919275420A4EB72 ] C:\Windows\System32\ProximityCommonPal.dll
15:08:42.0939 0x1a1c  C:\Windows\System32\ProximityCommonPal.dll - ok
15:08:42.0939 0x1a1c  [ B725F73C165A07163F3359E1A6B6E870, 38C3FBA535A491197E8C1B01CF054FF0657FE463FD79D24D95E306DD93B95DCF ] C:\Windows\System32\ProximityServicePal.dll
15:08:42.0939 0x1a1c  C:\Windows\System32\ProximityServicePal.dll - ok
15:08:42.0939 0x1a1c  [ 075E91DAE108281C18BA4B447D0B3092, 6B5AE3649365CBC0CACBE0E4FF50C80B4EB58EC29B1447D4583274715884384C ] C:\Windows\System32\resutils.dll
15:08:42.0939 0x1a1c  C:\Windows\System32\resutils.dll - ok
15:08:42.0939 0x1a1c  [ 8A241A1AA5C9D3048DCED3D1B91BD4E6, 86B6DB0A5DB872856E3CCD2063F4E29CC5FE684B3AD33C8E8A0B1792B8448C7A ] C:\Program Files\Common Files\microsoft shared\ClickToRun\ApiClient.dll
15:08:42.0939 0x1a1c  C:\Program Files\Common Files\microsoft shared\ClickToRun\ApiClient.dll - ok
15:08:42.0955 0x1a1c  [ E3DFB67351E42781F48CE94DCEF81FC4, 77DF2328893C8463E930E7D83B6703ADD9E4694D5680749CD85AB4E5BD1F1E4A ] C:\Program Files\Common Files\microsoft shared\ClickToRun\msvcp140.dll
15:08:42.0955 0x1a1c  C:\Program Files\Common Files\microsoft shared\ClickToRun\msvcp140.dll - ok
15:08:42.0955 0x1a1c  [ 66836116657794D2B4192A808E112ABA, 5F6AA949DA677552DBFBD759CD92183D274EE4BA78C97FB6581D55DD6FD7DB3C ] C:\Program Files\Common Files\microsoft shared\ClickToRun\vcruntime140.dll
15:08:42.0955 0x1a1c  C:\Program Files\Common Files\microsoft shared\ClickToRun\vcruntime140.dll - ok
15:08:42.0955 0x1a1c  [ CB96C2BC9EC2B7354505E10361E78679, 9D5697D0F50670F79583B6250499B37BC858378020D87B73C20BBF615AF9A02C ] C:\Windows\System32\RstrtMgr.dll
15:08:42.0955 0x1a1c  C:\Windows\System32\RstrtMgr.dll - ok
15:08:42.0970 0x1a1c  [ 98F3983F878B337B5EF9AA983873A76A, 5660FD93C77B4405A86F56EF6CC044BFFC133B3170F154BF687528416C2A4579 ] C:\Windows\System32\wbem\wbemprox.dll
15:08:42.0970 0x1a1c  C:\Windows\System32\wbem\wbemprox.dll - ok
15:08:42.0970 0x1a1c  [ 5A2D67889BE4F31082E25EF6C64C2D8C, 768F81E0228975B3C51930CF8D42B874C9227378540BB0A1AD6506E4D13C6D86 ] C:\Windows\System32\LanguageOverlayUtil.dll
15:08:42.0970 0x1a1c  C:\Windows\System32\LanguageOverlayUtil.dll - ok
15:08:42.0970 0x1a1c  [ FE2F20BDEE067AC8B8B1EF8B204FE072, F1BDAB25366C6BA42B325D03CDF8EE68C40169738043683E675B9EAAF47AD3E6 ] C:\Windows\System32\vsstrace.dll
15:08:42.0970 0x1a1c  C:\Windows\System32\vsstrace.dll - ok
15:08:42.0970 0x1a1c  [ 0F47E1EAB1410C0C2F7639C1D157B212, 93BB854BF9AA9B0950473B6D4F8DA4E68EA8A33C7D1A5B5D16A871B89B85F85F ] C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9554_none_88e038cb2fae7c50\msvcp80.dll
15:08:42.0970 0x1a1c  C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9554_none_88e038cb2fae7c50\msvcp80.dll - ok
15:08:42.0986 0x1a1c  [ 722D541E4BA00F081204F08543C07308, 9D4B59358C8349D18C2FDD6EE62C91386B65C89E24F57EA737413C8808DA79AC ] C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9554_none_88e038cb2fae7c50\msvcr80.dll
15:08:42.0986 0x1a1c  C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9554_none_88e038cb2fae7c50\msvcr80.dll - ok
15:08:42.0986 0x1a1c  [ DE374A5418EF27445DCD478256345DA9, 59CE92290E4E49C0488616D58EB70258B8E760DAB7A7CEF5B8AD2DCFEEBCD2CF ] C:\Windows\System32\adhapi.dll
15:08:42.0986 0x1a1c  C:\Windows\System32\adhapi.dll - ok
15:08:42.0986 0x1a1c  [ E253F28F332087AD1E5811D6273545AB, 1EEB10637C8AF3FC27CDED1DCF92D23E2856C94C6AD966F446ACDAC285D83C9E ] C:\Windows\System32\BCP47mrm.dll
15:08:42.0986 0x1a1c  C:\Windows\System32\BCP47mrm.dll - ok
15:08:42.0986 0x1a1c  [ AF17F63DFDE9F19BBE730A1ED86DFEF0, 56A5A50EA9408AE16E1F8FF62D568A021BDE56EA2533E931CC70A8D1DBFF2CDE ] C:\Windows\System32\drivers\agilevpn.sys
15:08:42.0986 0x1a1c  C:\Windows\System32\drivers\agilevpn.sys - ok
15:08:43.0002 0x1a1c  [ C91265B3F0BB4C6355AED8A6B735EC2F, 536F5CF94FA20523214D78AC8F8525C1CDC15EA3AE309805F6C6A321A64BC931 ] C:\Windows\System32\ReAgent.dll
15:08:43.0002 0x1a1c  C:\Windows\System32\ReAgent.dll - ok
15:08:43.0002 0x1a1c  [ 6E28E1CE915FE617D4F38BFB8543696F, 12775FC49B33658013FDF2D6F07DCFBEBBF1D384073501FA160564E3417AF965 ] C:\Windows\System32\drivers\rasl2tp.sys
15:08:43.0002 0x1a1c  C:\Windows\System32\drivers\rasl2tp.sys - ok
15:08:43.0002 0x1a1c  [ 3515CD197282D7C867DCBD973CD44E3E, 00C9BBD6976A89217998E98F6C235F01B563464F0D3579D73B6C56ED4FB6A1A9 ] C:\Windows\System32\drivers\raspptp.sys
15:08:43.0002 0x1a1c  C:\Windows\System32\drivers\raspptp.sys - ok
15:08:43.0017 0x1a1c  [ 252FDEF9B98564F47A36CF11911D926C, 310C97A590D0229AC975C9E6A26A3B1046BAF02F69380CEFA7320F34BBEBB413 ] C:\Windows\System32\drivers\raspppoe.sys
15:08:43.0017 0x1a1c  C:\Windows\System32\drivers\raspppoe.sys - ok
15:08:43.0017 0x1a1c  [ 5F524E5F9EAA6F347F41D4F3214A20A8, 8B5EF4CA36646EBA4F63C76CF293D5EBB7F0425B252471B95E9999277DA6F905 ] C:\Windows\System32\wfapigp.dll
15:08:43.0017 0x1a1c  C:\Windows\System32\wfapigp.dll - ok
15:08:43.0017 0x1a1c  [ E997374B5EBB4FC5528B4F653B2E6CAB, 26456C1B6E485F876898C596CCEA7F48D611D5F116A49E5350581F17B429792C ] C:\Windows\System32\drivers\ndistapi.sys
15:08:43.0017 0x1a1c  C:\Windows\System32\drivers\ndistapi.sys - ok
15:08:43.0017 0x1a1c  [ F9FACC5EA4D793F8265F30C2DA0EDBA7, 116ADCA5E1BC154842F547DE96B67D8CC244B7804203B1DEBD2093FF21CF673F ] C:\Windows\System32\drivers\ndiswan.sys
15:08:43.0017 0x1a1c  C:\Windows\System32\drivers\ndiswan.sys - ok
15:08:43.0033 0x1a1c  [ 8D256A720AFDB1099CB9A6A46809BCF4, 554F3ECC322E4116A624AE22D3CA3E37901AF1A9F068613F13985D6A1B8F3C8E ] C:\Windows\System32\wbem\wbemcore.dll
15:08:43.0033 0x1a1c  C:\Windows\System32\wbem\wbemcore.dll - ok
15:08:43.0033 0x1a1c  [ 0C623C912BCF1DA4CE0CE826DDBBACAF, 7A992A02718315F98ABDBB89A849D2DA75A67E266183FAB499A0163CA2F231E1 ] C:\Windows\System32\rastapi.dll
15:08:43.0033 0x1a1c  C:\Windows\System32\rastapi.dll - ok
15:08:43.0033 0x1a1c  [ F5F38C2FDD1A4632A4E5042C109B88E5, 6DF631B08B1C39366185BFAEEF249B3C6870F476F5CF6705086451CC1452F201 ] C:\Windows\SysWOW64\advapi32.dll
15:08:43.0033 0x1a1c  C:\Windows\SysWOW64\advapi32.dll - ok
15:08:43.0033 0x1a1c  [ F0D05651268F96C4CC4CE5D813159DC5, 3A8CF23B61DBFB5053B0858B4BF1A4B2A1CBD95D369A0825590ADF3BC26F62C4 ] C:\Windows\SysWOW64\user32.dll
15:08:43.0033 0x1a1c  C:\Windows\SysWOW64\user32.dll - ok
15:08:43.0049 0x1a1c  [ ACC5828872876B1FAB0132A92B18781A, C9E202B5AC870B251910E84F3C03A6BEB52CB1784E16A7D71E01C01FDC4FF9F1 ] C:\Windows\System32\clusapi.dll
15:08:43.0049 0x1a1c  C:\Windows\System32\clusapi.dll - ok
15:08:43.0049 0x1a1c  [ 578973A75B1C8E3E57ED0BAF53B0EF02, 7F6E8C01AA4694331C1C20EA542E881B38B945E3A7D4D574329A87AE2DEF230A ] C:\Windows\System32\rasppp.dll
15:08:43.0049 0x1a1c  C:\Windows\System32\rasppp.dll - ok
15:08:43.0049 0x1a1c  [ 9FAE1189A51D762E51E7E772B3C9706C, B8410BD7DD9AF4BFE518E264616047AEA6DFEB44B4F2FA491C31E5C87ECAF51F ] C:\Windows\System32\eappcfg.dll
15:08:43.0049 0x1a1c  C:\Windows\System32\eappcfg.dll - ok
15:08:43.0064 0x1a1c  [ A44D27D03056EEC97CF2AFDC658EAB45, 89E19D50C562BF0DD31F8CE1100CCEBA3D2181609D8AAA2A50A96C0DB6B23385 ] C:\Windows\System32\rasapi32.dll
15:08:43.0064 0x1a1c  C:\Windows\System32\rasapi32.dll - ok
15:08:43.0064 0x1a1c  [ BF7D0605A7C7843FA066BB11AB886088, D9433BBCE35C45DF7B0C120D10A2B0C1CD56B5732267CE41E854DF582513DE5C ] C:\Windows\System32\rasman.dll
15:08:43.0064 0x1a1c  C:\Windows\System32\rasman.dll - ok
15:08:43.0064 0x1a1c  [ 746BE1DBD9E0D0129F52D798C567ABDE, 2F21A13481FCCC4E20F359FBE7489CAAA87183BBA17354091E4F716CD05F2DA0 ] C:\Windows\System32\msi.dll
15:08:43.0064 0x1a1c  C:\Windows\System32\msi.dll - ok
15:08:43.0064 0x1a1c  [ 1B273E4EBC3B7EC9DF300CBF4AE5AB15, 65FE0981833BEB9D699CEE21DD44EB8B13D6C0F9B4CD3ED4878C46A36EECB068 ] C:\Windows\SysWOW64\shell32.dll
15:08:43.0064 0x1a1c  C:\Windows\SysWOW64\shell32.dll - ok
15:08:43.0080 0x1a1c  [ A0761C57B99EA4819241B0837EDB0C54, CC5ED97209E7EFCA1360BFD9876CAD8A093C857F84304F826CE8D892C00D88E1 ] C:\Windows\System32\Windows.UI.Xaml.dll
15:08:43.0080 0x1a1c  C:\Windows\System32\Windows.UI.Xaml.dll - ok
15:08:43.0080 0x1a1c  [ 8C823222D66AB394677A0B88820AB779, FA2CE3E4D384E2CF0BAD65A3C2A591BFDBD6293F84F96F20DD07D89269C50AC8 ] C:\Program Files\Malwarebytes\Anti-Malware\PoliciesControllerImpl.dll
15:08:43.0080 0x1a1c  C:\Program Files\Malwarebytes\Anti-Malware\PoliciesControllerImpl.dll - ok
15:08:43.0080 0x1a1c  [ F88677EE53EBADE947945C5F894EC740, 4853C991D7DFDC2D332656BF1FDF9AE132521B857F18E57E073F6CDFAB08A636 ] C:\Windows\SysWOW64\msvcrt.dll
15:08:43.0080 0x1a1c  C:\Windows\SysWOW64\msvcrt.dll - ok
15:08:43.0080 0x1a1c  [ 1DC07F184D09BCB4D87DDA2FE182EFD5, FB5227D869795995D2C52466F59BFC20C3D6FB57E8A46BC6F2A75FEB532E3FD6 ] C:\Windows\System32\wbem\esscli.dll
15:08:43.0080 0x1a1c  C:\Windows\System32\wbem\esscli.dll - ok
15:08:43.0095 0x1a1c  [ 12ABB40F3E15A6826DFBBDC0D9967A8C, 68969D2C011D9CD98D56952ACF8A067027A491A77C6FAA68A72A23771EC9C305 ] C:\Windows\System32\wbem\fastprox.dll
15:08:43.0095 0x1a1c  C:\Windows\System32\wbem\fastprox.dll - ok
15:08:43.0095 0x1a1c  [ 9ED90819195699D64BC5E05D74D246FF, 1AA55A018A5C7E9D28944DF97561DC101F1BEDB7FFA06A8F5ABE38C0630C72D8 ] C:\Windows\SysWOW64\gdi32.dll
15:08:43.0095 0x1a1c  C:\Windows\SysWOW64\gdi32.dll - ok
15:08:43.0095 0x1a1c  [ 5B2896BBECB512FDA881E8CB450643C3, 08F1F6621F393F396489DFE2FD6C9F7741AF959B95751A2E5086196E1D133A69 ] C:\Windows\SysWOW64\win32u.dll
15:08:43.0095 0x1a1c  C:\Windows\SysWOW64\win32u.dll - ok
15:08:43.0095 0x1a1c  [ E90D56CBBF0C34F0F3B54717703F079C, 97C629DF065740429333C5A8A05E7ECD99B5DB6E10B22FE642F2B36A51B3B369 ] C:\Windows\System32\edputil.dll
15:08:43.0095 0x1a1c  C:\Windows\System32\edputil.dll - ok
15:08:43.0111 0x1a1c  [ 544D43BE0496904174022368E7ADDC5D, B6D131B877CBE4398C68BEF4896F34CD8DC81B68B6AFCAB67D111DBDDF2D6529 ] C:\Windows\SysWOW64\gdi32full.dll
15:08:43.0111 0x1a1c  C:\Windows\SysWOW64\gdi32full.dll - ok
15:08:43.0111 0x1a1c  [ 33F1D32F00AF483D93A7F314C2C2B6FC, B65F9BA97B0BE97F99A03D838D7876689126B19768F6B4F73D8E926C07A5F2EF ] C:\Program Files\Malwarebytes\Anti-Malware\LicenseControllerImpl.dll
15:08:43.0111 0x1a1c  C:\Program Files\Malwarebytes\Anti-Malware\LicenseControllerImpl.dll - ok
15:08:43.0127 0x1a1c  [ B0A68C5BB8D5493F1AF967F0FDD80382, 2CF0972DC8A67D863AD1A6205B66C80865ACC11F7E3F67B4A76C162655EE0FEE ] C:\Windows\System32\dbghelp.dll
15:08:43.0127 0x1a1c  C:\Windows\System32\dbghelp.dll - ok
15:08:43.0127 0x1a1c  [ 6856D006AD379B4A21197434AFBB150C, 6EE4AD0E5A049618291814F21A2E6A79395693296D31DC3579C3DE95C75AA524 ] C:\Windows\System32\vpnike.dll
15:08:43.0127 0x1a1c  C:\Windows\System32\vpnike.dll - ok
15:08:43.0127 0x1a1c  [ 129699FE1177E5270804C067623D7F30, 12E25C421B612B7239DBDB29F2929C13692318ADA385F126DCBCBB2A8CEF04A5 ] C:\Windows\System32\wdscore.dll
15:08:43.0127 0x1a1c  C:\Windows\System32\wdscore.dll - ok
15:08:43.0142 0x1a1c  [ CD8CCD2C6BD2F3CD3118DC57FCE4373B, B9F1B1136ADD3C505FD65707CCDDC8C4A3A781E8A92C7EA86A822154D9829751 ] C:\Windows\System32\Windows.UI.Immersive.dll
15:08:43.0142 0x1a1c  C:\Windows\System32\Windows.UI.Immersive.dll - ok
15:08:43.0142 0x1a1c  [ 98B9C96E43D23843A912878C345E7A56, 28D448B91CEB9333D8ECE3F5A441061A83464AAB309C5974AE6AA70845975933 ] C:\Windows\System32\wbem\wbemsvc.dll
15:08:43.0142 0x1a1c  C:\Windows\System32\wbem\wbemsvc.dll - ok
15:08:43.0142 0x1a1c  [ A081AAD3A296EB414CB6839B744C67C9, 3D77E7769CFC8B4A1098E9A1F2BDE4432A6A70253EA6C2A58C8F8403A9038288 ] C:\Windows\System32\wbem\wmiutils.dll
15:08:43.0142 0x1a1c  C:\Windows\System32\wbem\wmiutils.dll - ok
15:08:43.0158 0x1a1c  [ F2613D5060BAFCD5394A6780A4286D34, C6520029BD3C1DB993272D3D026154493DE1D44248AEECFCE9D02D162CB19FC1 ] C:\Windows\System32\wbem\repdrvfs.dll
15:08:43.0158 0x1a1c  C:\Windows\System32\wbem\repdrvfs.dll - ok
15:08:43.0158 0x1a1c  [ 4C57428054987E043D00A485EFCE90D2, ABC6FA518A119867B8A0D671B17D51FBE65A2E3B3085861DF00C0ADCF933FF5C ] C:\Windows\SysWOW64\sechost.dll
15:08:43.0158 0x1a1c  C:\Windows\SysWOW64\sechost.dll - ok
15:08:43.0158 0x1a1c  [ 212A6AE506593F30AD5ADF829F4F4B37, 083A78588AA4666C2EF4A470A67254E47D9C2BCC9CA6A0A15D48959721D50C28 ] C:\Program Files\Malwarebytes\Anti-Malware\UpdateControllerImpl.dll
15:08:43.0158 0x1a1c  C:\Program Files\Malwarebytes\Anti-Malware\UpdateControllerImpl.dll - ok
15:08:43.0158 0x1a1c  [ FB1C8BD20DF9B4AE34F0A3EABD500337, 0C30356CA8FB7F6EADE43A4337653B51DBBA9FC9DC4C82806C1DFC7917FB0A78 ] C:\Windows\System32\rascustom.dll
15:08:43.0158 0x1a1c  C:\Windows\System32\rascustom.dll - ok
15:08:43.0174 0x1a1c  [ 2E3069BE1E0918C2DDBC4F85CB7CFA43, F9C451AD8C29FFCD378442BA43981E60C4C227103F82102F57AC81A9FC06D08C ] C:\Windows\SysWOW64\rpcrt4.dll
15:08:43.0174 0x1a1c  C:\Windows\SysWOW64\rpcrt4.dll - ok
15:08:43.0174 0x1a1c  [ 0E9C81D55E8C0640C4A0F88B55B077A7, F65A71C132C0AA1E2006D80B76AE877C015E6FEFD701C2C9FC4ADA6C7DEB6BC0 ] C:\Windows\SysWOW64\cfgmgr32.dll
15:08:43.0174 0x1a1c  C:\Windows\SysWOW64\cfgmgr32.dll - ok
15:08:43.0174 0x1a1c  [ 2211BB5549B98D3E1846FB8AF44C8BF7, FDC1973C4BD46D73C6F4EBAA46B1F494187BAC85519982E7BEB73BFB62B534B9 ] C:\Windows\System32\DWrite.dll
15:08:43.0174 0x1a1c  C:\Windows\System32\DWrite.dll - ok
15:08:43.0174 0x1a1c  [ 295C7DA4999478F882F75C00F3BBAAD5, 41094424258FC2874A13B352D1706991EB3B9C071C6BF4F5A80D9384C1C98982 ] C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17763.195_none_05b436ac07203599\comctl32.dll
15:08:43.0189 0x1a1c  C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17763.195_none_05b436ac07203599\comctl32.dll - ok
15:08:43.0189 0x1a1c  [ 76B2F08DCABA8508AF1491E7B36CEF6C, 68DAC4FE21A3242872F365561B8B2B34463261D4466D23BDCDFDCD6A532A2280 ] C:\Windows\SysWOW64\msvcp_win.dll
15:08:43.0189 0x1a1c  C:\Windows\SysWOW64\msvcp_win.dll - ok
15:08:43.0189 0x1a1c  [ 88E88D8C1C663769BDD722000A7EB5A7, C84BECA73EA45D3C53D9C42CD6A37CC0CC07FF57D9CFEE113CDF70F640572AEF ] C:\Windows\System32\dbgcore.dll
15:08:43.0189 0x1a1c  C:\Windows\System32\dbgcore.dll - ok
15:08:43.0189 0x1a1c  [ 81ED6D8A9B50F7F143DD50AC59BD8546, 7A985C7AFCD7F1C5DCD948D74311A2C6247DFB5EC007B98361A478AF097878B8 ] C:\Windows\SysWOW64\cryptbase.dll
15:08:43.0189 0x1a1c  C:\Windows\SysWOW64\cryptbase.dll - ok
15:08:43.0205 0x1a1c  [ 615785B5CC653B2E926FD350F4AACFAF, 1DB3773A09CDC4258DCA2398B0BD3C6BA0A45E87A53A09AA1BBB6E8791F8F888 ] C:\Windows\SysWOW64\sspicli.dll
15:08:43.0205 0x1a1c  C:\Windows\SysWOW64\sspicli.dll - ok
15:08:43.0205 0x1a1c  [ A9C6F300AA2E8259CB5E9D92FFE25F49, 7C915D3AB1AFB5A7F763223EC1E602FF2A74732AEE61B0F5543A2951631529FB ] C:\Windows\SysWOW64\ucrtbase.dll
15:08:43.0205 0x1a1c  C:\Windows\SysWOW64\ucrtbase.dll - ok
15:08:43.0205 0x1a1c  [ ED04B3391D18A6B3B5D0EA78BB84A36C, 8BC6E325A4C81791F7669538A189E8C83C5BEFD8CCCFCC1FDA89E85DCBC33FB5 ] C:\Windows\SysWOW64\bcryptprimitives.dll
15:08:43.0205 0x1a1c  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
15:08:43.0205 0x1a1c  [ 20AA8A4C048AE151B9B0F6C945DA1C5D, 248D14643CB584129D3BB78D8556A7DF121C11D945B3E45933B5BE27366E42A2 ] C:\Windows\System32\dmcmnutils.dll
15:08:43.0205 0x1a1c  C:\Windows\System32\dmcmnutils.dll - ok
15:08:43.0220 0x1a1c  [ 9225DC176C3ADCD36E207E1805364404, D97D3E87FA2314CEF7A4C6063E3F4A59E6EF0F2775CC1D916F8D47429F69266C ] C:\Windows\System32\dmenrollengine.dll
15:08:43.0220 0x1a1c  C:\Windows\System32\dmenrollengine.dll - ok
15:08:43.0220 0x1a1c  [ CA1F576E793243525382B91FDC334583, D7E9AB4D47CEBC76799CDF0B831B40D509C64C75321F4AEB00A9AA75F6D9F624 ] C:\Windows\System32\dmprocessxmlfiltered.dll
15:08:43.0220 0x1a1c  C:\Windows\System32\dmprocessxmlfiltered.dll - ok
15:08:43.0220 0x1a1c  [ 4183E6559FDF1DF9426E40281F3A89C7, 94FCF67D63E106005340164B8A5564511D0CA183CD6C3F3D4E0C1666B9E09F28 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
15:08:43.0220 0x1a1c  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
15:08:43.0236 0x1a1c  [ E41EA5075F60BDF088A76112BB34A8DC, 077F9D6BA31A7793947140E80DFA87846DAE8B7F099D6B65C2961839EC11E3AE ] C:\Windows\System32\wbem\WmiPrvSD.dll
15:08:43.0236 0x1a1c  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
15:08:43.0236 0x1a1c  [ 9542C4EA92C3ACB7EDCE251499B97519, 27FF2B577B670224DB0188CE3457FFD4343DA817EDDB42F7146A9D512AC5D29C ] C:\Windows\SysWOW64\shlwapi.dll
15:08:43.0236 0x1a1c  C:\Windows\SysWOW64\shlwapi.dll - ok
15:08:43.0236 0x1a1c  [ 0413CF6BEE547090698997075EDF4694, C3A2874FF5B1710BB704F92A896F2324C27886784C5703C1601E19029CC07468 ] C:\Windows\System32\ncobjapi.dll
15:08:43.0236 0x1a1c  C:\Windows\System32\ncobjapi.dll - ok
15:08:43.0236 0x1a1c  [ 6E13163214C64BD6453FBE3AF96F8944, 1CAFA15CBA7A29317359C6851292470E01B36FF92D9DF2E2C9474C3B02036305 ] C:\Windows\System32\secur32.dll
15:08:43.0236 0x1a1c  C:\Windows\System32\secur32.dll - ok
15:08:43.0252 0x1a1c  [ F62DB6C153A6B66ADD1D17C13AAEAF7B, 116B8EA56A5B5D782ED7F57AE22929A628B520502287944BC2CB2D8D69A8B8C6 ] C:\Windows\System32\wbem\wbemess.dll
15:08:43.0252 0x1a1c  C:\Windows\System32\wbem\wbemess.dll - ok
15:08:43.0252 0x1a1c  [ 9CE82AE1935A7C7E09F51E712E8E8F48, 79C6E964CAD5CBF3D4975F246BE09F953B86D4E4D6B2D371634ACC1B2B98D079 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\StreamServer.dll
15:08:43.0252 0x1a1c  C:\Program Files\Common Files\microsoft shared\ClickToRun\StreamServer.dll - ok
15:08:43.0252 0x1a1c  [ AC18B38A8371584DE427EF6831DDC447, A898F2597E4EB05B85398D42DABF1EA7D24559352263422458E3A597BA94979C ] C:\Windows\SysWOW64\SHCore.dll
15:08:43.0252 0x1a1c  C:\Windows\SysWOW64\SHCore.dll - ok
15:08:43.0252 0x1a1c  [ 4AE9D6EDAE84ED6E0D6876023DCD232B, 99A7A57CD26270E3065037CFC3D980186269A0D663E0C723F5994ED51F862FB7 ] C:\Windows\System32\Windows.UI.Xaml.Controls.dll
15:08:43.0252 0x1a1c  C:\Windows\System32\Windows.UI.Xaml.Controls.dll - ok
15:08:43.0267 0x1a1c  [ FFC3963ED3CD84C38B1F1286FC1BD42E, A89CBA2C89DE123058F715601C32F39F6F16F114A0747947A6B9887AD0A40DCF ] C:\Windows\System32\raschap.dll
15:08:43.0267 0x1a1c  C:\Windows\System32\raschap.dll - ok
15:08:43.0267 0x1a1c  [ 06C66FF5CCDC2D22344A3EB761A4D38A, B5C78BEF3883E3099F7EF844DA1446DB29107E5C0223B97F29E7FAFAB5527F15 ] C:\Windows\System32\wbem\WmiPrvSE.exe
15:08:43.0267 0x1a1c  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
15:08:43.0267 0x1a1c  [ 525A1F7BE5A73D4006619F1B0712E8B7, F4BCB48E7081EE720007AEDC333621FFFB0A70A5126270B73D7F910D4849F4AE ] C:\Windows\SysWOW64\combase.dll
15:08:43.0267 0x1a1c  C:\Windows\SysWOW64\combase.dll - ok
15:08:43.0283 0x1a1c  [ D7B51B1B48357D4243D1B540E0487E24, 7BB39D020ABBF57807223D76F2D877FF41FEAC2483F9F5E2FB0F05606D6D888A ] C:\Windows\System32\wbem\cimwin32.dll
15:08:43.0283 0x1a1c  C:\Windows\System32\wbem\cimwin32.dll - ok
15:08:43.0283 0x1a1c  [ 4268CC1FBDD2947725521853602E3351, A72E8D1C111616CE5F3B9E8C45EA5B7EBE5D89D4EC830078820F0D1DCBD9A922 ] C:\Windows\System32\msdelta.dll
15:08:43.0283 0x1a1c  C:\Windows\System32\msdelta.dll - ok
15:08:43.0283 0x1a1c  [ 472DCFDE05EC04510C9957D89CAC82BA, A7C5D4874F1FBCD5FFF83F3FFE611F88C81A7BBB7F09CFD0D9AA12A002BB9470 ] C:\Windows\SysWOW64\windows.storage.dll
15:08:43.0283 0x1a1c  C:\Windows\SysWOW64\windows.storage.dll - ok
15:08:43.0283 0x1a1c  [ E81112B7B68B175C729330429FC51663, A9C13E40FA60B731269B2B81E752A77D9BD02BDD26872403339D4B7101E5FDB3 ] C:\Windows\SysWOW64\kernel.appcore.dll
15:08:43.0283 0x1a1c  C:\Windows\SysWOW64\kernel.appcore.dll - ok
15:08:43.0299 0x1a1c  [ C5ED50A4404864F135F08D2BE9638194, FA269BAF40D86E954DCDE0677925C714ED754ED565ADEA174FF795B942D525B5 ] C:\Windows\SysWOW64\version.dll
15:08:43.0299 0x1a1c  C:\Windows\SysWOW64\version.dll - ok
15:08:43.0299 0x1a1c  [ 50AE2E0CF8FC199F5BE78B157466106A, 93ED33089CB11B8270B3E74760112F01547603FC470A0687B0B16687B18A82DE ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
15:08:43.0299 0x1a1c  C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok
15:08:43.0299 0x1a1c  [ F9FE24E0F0A1EE769052DDDF77FD05A4, F0AA0A6A28621F63038DD9947D1419BBB28938DA1897F3EABB693197A04D2ACD ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvApi.dll
15:08:43.0299 0x1a1c  C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvApi.dll - ok
15:08:43.0299 0x1a1c  [ 3EEFFDCCD84B20BD045756B1BD5F0071, 23230005E750C4118005E0BB1777D91085CACD6A0519C7F39B206E2FB0E81A21 ] C:\Windows\System32\Windows.Globalization.dll
15:08:43.0299 0x1a1c  C:\Windows\System32\Windows.Globalization.dll - ok
15:08:43.0314 0x1a1c  [ 368D14219C2F13DF11BE71924632B9CE, 12B25E4BCF7180F5CECABEBD7F3A5890770D9DD87926397F347E3A6AB1F742BE ] C:\Windows\System32\framedynos.dll
15:08:43.0314 0x1a1c  C:\Windows\System32\framedynos.dll - ok
15:08:43.0314 0x1a1c  [ 056B35B0C3DD81E8F014BD88D8593899, 1EFCB98D580EB5A27BFBC47D00B34780CF318480D18EDDA5DAA0F7A38021FC9D ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVPolicy.dll
15:08:43.0314 0x1a1c  C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVPolicy.dll - ok
15:08:43.0314 0x1a1c  [ 8C8D1140787DA60A343DD11C1CDF4992, 6AA1ECE9DD340D05AEC43248592A78B70D21959DE8727F506D21A3A962348583 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\msvcp120.dll
15:08:43.0314 0x1a1c  C:\Program Files\Common Files\microsoft shared\ClickToRun\msvcp120.dll - ok
15:08:43.0330 0x1a1c  [ 49FB6E786B2F9DF8812E0E317CED55CB, 9461F2E4ADD5C650102ACDE0C62377FF86D9B19FC20D0003F326CCD474E8B7B9 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\msvcr120.dll
15:08:43.0330 0x1a1c  C:\Program Files\Common Files\microsoft shared\ClickToRun\msvcr120.dll - ok
15:08:43.0330 0x1a1c  [ 7297BD64865B7458EB432331FDFD42BC, 14AA345C6A3E535D8066CA41A3F91D74D8020B42007E8713D507188B593377A6 ] C:\Windows\System32\Windows.StateRepositoryCore.dll
15:08:43.0330 0x1a1c  C:\Windows\System32\Windows.StateRepositoryCore.dll - ok
15:08:43.0330 0x1a1c  [ 82FF065F045FADE1EB3F76FFEDA4297B, 8E6C84758433B38E94863D0031FF45B5DC391C122A73EC7AB0730B6919CDDED2 ] C:\Windows\System32\wbem\wmiprov.dll
15:08:43.0330 0x1a1c  C:\Windows\System32\wbem\wmiprov.dll - ok
15:08:43.0330 0x1a1c  [ 97481B8BE5AACE26A3CEBE8AB92C002D, 096BB11E285A0DD58DF820F7D8A52956314508D70838CD4A4D89053F4F5707BA ] C:\Windows\System32\directmanipulation.dll
15:08:43.0330 0x1a1c  C:\Windows\System32\directmanipulation.dll - ok
15:08:43.0345 0x1a1c  [ 67A8B47F5BCCB6BB63D7242F80B0F548, 2D7ACC69ED114468A53C4679FC28C32F0E7D812A59389E41115C20C06574A4D8 ] C:\Windows\System32\wmi.dll
15:08:43.0345 0x1a1c  C:\Windows\System32\wmi.dll - ok
15:08:43.0345 0x1a1c  [ B435DD24C8D3F1699B017843E0D89623, 245A2591896A6CE3D2BFC792C51F3088F4F08FF3FCF651C8A52AA418178CB92E ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVOrchestration.dll
15:08:43.0345 0x1a1c  C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVOrchestration.dll - ok
15:08:43.0345 0x1a1c  [ E2D1485287284F4F5ABA3664656073BD, E873A8EAA2179F0D628CE29E07EC16AB9678F1D223E7F7636259552E0DFB9C21 ] C:\Windows\SysWOW64\powrprof.dll
15:08:43.0345 0x1a1c  C:\Windows\SysWOW64\powrprof.dll - ok
15:08:43.0361 0x1a1c  [ 491197DCF15ED46F9D5594C376613C3B, 20FA2A080E2E1FA2C0EEB964BE4DA164CEFCD5281AF188D32DA2DA24BEC181B0 ] C:\Windows\SysWOW64\profapi.dll
15:08:43.0361 0x1a1c  C:\Windows\SysWOW64\profapi.dll - ok
15:08:43.0361 0x1a1c  [ 05D721CABA1C90ACDA8A780DA97602E2, DC18CC80C68D13EF9030730688AE15FE7D9AA8D9273AE299EAD5C49766E4FCE1 ] C:\Windows\SysWOW64\msvcr120_clr0400.dll
15:08:43.0361 0x1a1c  C:\Windows\SysWOW64\msvcr120_clr0400.dll - ok
15:08:43.0361 0x1a1c  [ 4A8202A62E00E313CE26DBFE9A4C9BF9, 6D01131CBA1151DAC9BE311619BB2D8F1E37BB3D896BB9BE657208F385475ABB ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvStreamingManager.dll
15:08:43.0361 0x1a1c  C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvStreamingManager.dll - ok
15:08:43.0361 0x1a1c  [ B2F1E917FE98D84BE43CF333830EADD6, 16A3EE1B4277469B24A9EDB71A1F2D41C7EAE79F42CAE9F62E52C88E7C151607 ] C:\Windows\SysWOW64\cryptsp.dll
15:08:43.0361 0x1a1c  C:\Windows\SysWOW64\cryptsp.dll - ok
15:08:43.0377 0x1a1c  [ CB9BFBE6A61F6A9A5CAAC18C133270CD, CDA412FDCF28503D0B9DD78C8E969A61F4B79CA4A8CC2721F8D055E25B3F9921 ] C:\Windows\SysWOW64\imm32.dll
15:08:43.0377 0x1a1c  C:\Windows\SysWOW64\imm32.dll - ok
15:08:43.0377 0x1a1c  [ 120FEF415AE56EDB4AB485B66015261A, C0CAB382779FF9309244F44E04B807DF7CBD3F2F5A5E11FF0C02691FCBB97863 ] C:\Windows\SysWOW64\ole32.dll
15:08:43.0377 0x1a1c  C:\Windows\SysWOW64\ole32.dll - ok
15:08:43.0377 0x1a1c  [ 67EA4B7552324CB68268B78A17A92045, 914D5123A8097504E2FB6B91E4F097AA1121C7AFADF8EDC673264E43F42C1B5C ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVManifest.dll
15:08:43.0377 0x1a1c  C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVManifest.dll - ok
15:08:43.0377 0x1a1c  [ 1D9EEA34B352E494866CD6529F2EC66F, F132A5225DED6531383E766A5705A48123FB9C2211CABFC8D1795718458D6704 ] C:\Windows\SysWOW64\oleaut32.dll
15:08:43.0377 0x1a1c  C:\Windows\SysWOW64\oleaut32.dll - ok
15:08:43.0392 0x1a1c  [ 8412671AADE74110F385242CD2BAEA1D, 7E6B600398484A761D79078ED68F500F4376D421C9A36BE8F93F52E50499F775 ] C:\Windows\System32\FlightSettings.dll
15:08:43.0392 0x1a1c  C:\Windows\System32\FlightSettings.dll - ok
15:08:43.0392 0x1a1c  [ EE9D3A1ECC57C0044C4911E47E5E087A, FF1FD36ECD4AA6F95259E3899A3E9C33755565753787FEE6B20B8806DC00D913 ] C:\Windows\System32\FontGlyphAnimator.dll
15:08:43.0392 0x1a1c  C:\Windows\System32\FontGlyphAnimator.dll - ok
15:08:43.0392 0x1a1c  [ 1EED0AC8BE35C771C5BA7A647EA0CC2E, D769186D5D1C3B33941D809E1F55346C106F1606B9C4ACA04062EBA02651BCF2 ] C:\Windows\System32\Windows.StateRepositoryPS.dll
15:08:43.0392 0x1a1c  C:\Windows\System32\Windows.StateRepositoryPS.dll - ok
15:08:43.0408 0x1a1c  [ 02B7D98CB2229EC74E416679F5108585, 8B430EFDDD359CA389CFF5673D4BA0D5ED9E1F1D110C3F5C4141254E857FAE4D ] C:\Windows\SysWOW64\crypt32.dll
15:08:43.0408 0x1a1c  C:\Windows\SysWOW64\crypt32.dll - ok
15:08:43.0408 0x1a1c  [ E22F6470D0B31ABE10C777FF8551C0FD, 4568417A06C64C2AB20B44138EDB97D8E19B2CD1F2195E18D5CAFC188F8ECF9C ] C:\Windows\SysWOW64\uxtheme.dll
15:08:43.0408 0x1a1c  C:\Windows\SysWOW64\uxtheme.dll - ok
15:08:43.0408 0x1a1c  [ 82A2C4C1C419B0CD7D62D80967AE9ACA, 3E8E2F71E1F3FE1F6807763678879FF4529CA83EACFE97C415E47B36B9869D62 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVCatalog.dll
15:08:43.0408 0x1a1c  C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVCatalog.dll - ok
15:08:43.0408 0x1a1c  [ F0B1C3C50F3E729ECBB62284D2AFE11E, 666B4AEF0C1B460E666AE53A82F6857E3F4219AE548B8D997F2876F403A6DC3C ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\6715dc4d04e35f16d482900c355325e9\mscorlib.ni.dll
15:08:43.0408 0x1a1c  C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\6715dc4d04e35f16d482900c355325e9\mscorlib.ni.dll - ok
15:08:43.0424 0x1a1c  [ E28141004B5FF318CDCEFF8972562E90, EF1E1F11EF6DB36588D8634F25288A3F1AD2FE9A519017EDCACE4FB14192E7DF ] C:\Windows\System32\AppXDeploymentServer.dll
15:08:43.0424 0x1a1c  C:\Windows\System32\AppXDeploymentServer.dll - ok
15:08:43.0424 0x1a1c  [ 503B5791D3687C305A4ECC60882BE726, 698132AC43B021F886144EE4BEC1135BD18F427D9938370A917ED6569E6C92BC ] C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MpCommu.dll
15:08:43.0424 0x1a1c  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MpCommu.dll - ok
15:08:43.0424 0x1a1c  [ CF912158810C6C526D4B295EA0D8B5B0, 3D8DE4C70D14D79143A9E3CF5E37A3F95D2EE2E9D3DFC360C6110E62DD026116 ] C:\Windows\System32\cldapi.dll
15:08:43.0424 0x1a1c  C:\Windows\System32\cldapi.dll - ok
15:08:43.0439 0x1a1c  [ C029276FFA2389C0DC0571243B00BEEF, 5AF9EC3A4F8724083EDB3F020807C36A45BE2A0EBF0CF6A40417F46086467F3C ] C:\Windows\System32\fltLib.dll
15:08:43.0439 0x1a1c  C:\Windows\System32\fltLib.dll - ok
15:08:43.0439 0x1a1c  [ DAADBC77E8F0B0871AF343A6A1A3CC47, A949A43B3215052026BD9280FC60FEDACCD0CE2F4E5008E80FC3EE170C3685BA ] C:\Windows\System32\AppResolver.dll
15:08:43.0439 0x1a1c  C:\Windows\System32\AppResolver.dll - ok
15:08:43.0439 0x1a1c  [ 52E51E0945F7C5BEC5C64C20D282CA38, 86D3ABF121EAD887D40D96E96C5A306685AB871EA3A6636A77B8799F468BE485 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvVirtualization.dll
15:08:43.0439 0x1a1c  C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvVirtualization.dll - ok
15:08:43.0439 0x1a1c  [ 2954F9AB7689F458EC2B9BF743AA3C55, D60BC22FA02FF007E3416000A97D11A875FC34E94B8BC8D83D82B0F28799CF20 ] C:\Windows\SysWOW64\propsys.dll
15:08:43.0439 0x1a1c  C:\Windows\SysWOW64\propsys.dll - ok
15:08:43.0455 0x1a1c  [ 3C495160B408D154389ACC2A7F5C26F4, F277312A50141009F69BCBFFBC449C2D2B5F4169A87BB5195836E6114916A968 ] C:\Windows\System32\bcdedit.exe
15:08:43.0455 0x1a1c  C:\Windows\System32\bcdedit.exe - ok
15:08:43.0455 0x1a1c  [ 20958D22D3A1642F6039716D545251E3, 1ACDD6AC5AD07A80A04951E99B615E20FC0E4D4FB7622592C438602A6DC