[CODE][B]~~~~~~~~~~~| Inicio: [/B]
*IFS (InfoSpyware First Steps) v 1.3
*www.InfoSpyware.com | www.ForoSpyware.com
*Iniciado: 11/02/2021 a las 09h.00m.55s
[B]~~~~~~~~~~~| Información del Sistema:[/B]
OS: Microsoft Windows 7 Ultimate x64 Service Pack 1
Idioma: Spanish (Spain, International Sort) (España|es-ES)
Permisos de Administrador / ON
Windows se Inició en Modo Seguro con Funciones de Red
Drive: C:\Windows (Install: \Device\HarddiskVolume3)
[B]~~~~~~~~~~~| Arquitectura Fisica:[/B]
CPU: System manufacturer
CPU Modelo: System Product Name
Procesador: AMD A4-5300 APU with Radeon(tm) HD Graphics (x64-BasedPC)
Memoria RAM: 16 Gb. En Uso: 15 %
Video: NVIDIA GeForce GT 710
Chip: GeForce GT 710 Capacidad video:-2048 MB (Integrated RAMDAC)
[B]~~~~~~~~~~~| Unidades[/B]
C: [FIXED|NTFS|] - [189.8 Gb][21.3 Gb][168.5 Gb]
E: [FIXED|NTFS|NUEVO] - [931.5 Gb][289.9 Gb][641.6 Gb]
D: [REMOVABLE||] - [0 Gb][0 Gb][0 Gb]
F: [REMOVABLE||] - [0 Gb][0 Gb][0 Gb]
G: [REMOVABLE||] - [0 Gb][0 Gb][0 Gb]
H: [REMOVABLE||] - [0 Gb][0 Gb][0 Gb]
I: [REMOVABLE|NTFS|GRMCULFRER_ES_DVD] - [14.9 Gb][14.1 Gb][0.8 Gb]
J: [REMOVABLE|FAT32|UDISK] - [28.8 Gb][27.9 Gb][0.1 Gb]
[COLOR=#FF0000][B]C:\ Fragmentación total 35.83% - Desfragmentar unidad [/B][/COLOR]
[COLOR=#FF0000][B]E:\ Fragmentación total 26.86% - Desfragmentar unidad [/B][/COLOR]
[B]~~~~~~~~~~~| Seguridad del SO[/B]
SafeBoot: Inicio en Modo seguro Correcto
Security Center: Correcto (Servicio Activo)
Windows Update: [COLOR=#FF0000][B]El servicio no está activo[/B][/COLOR] [LST: 2019-12-29 11:24:20][LD: 2019-12-27 16:25:30][LI: 2019-12-27 16:26:22][LRP: 2020-03-23 09:24:16]
SP: Spybot - Search and Destroy *[COLOR=#FF0000][B]Protección Residente [OFF][/B][/COLOR] / [COLOR=#FF0000][B]Actualizar[/B][/COLOR]*
SP: Windows Defender *[COLOR=#FF0000][B]Protección Residente [OFF][/B][/COLOR] / Actualizado*
FW: Windows Firewall *Habilitado*
[B]~~~~~~~~~~~| Update Check[/B]
Internet Explorer Versión Instalada 11
Google Chrome Versión Instalada 88.0.4324.150
[B]~~~~~~~~~~~| Process List[/B]
MBAMTray.exe (Malwarebytes Anti-Malware)
MBAMservice.exe (Malwarebytes Anti-Malware)
[B]~~~~~~~~~~~| Install Check[/B]
CCleaner [5.64]
[B]~~~~~~~~~~~| Registry Check[/B]
HKLM\Run(x64): [AdobeGCInvoker-1.0] "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe"
HKLM\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
HKLM\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
HKLM\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
HKLM\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKLM\Run: [AsioThk32Reg] REGSVR32.EXE /S CTASIO.DLL
HKLM\Run: [CTHelper] CTHELPER.EXE
HKLM\Run: [CTxfiHlp] CTXFIHLP.EXE
HKLM\Run: [haleng] C:\Users\MASSBA~1\AppData\Local\Temp\haleng.exe
HKLM\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
HKLM\Run: [Spybot-S&D Cleaning] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean
HKLM\Run: [GoogleChromeAutoLaunch_DA49533490B544962D76CEA7A7F9414D] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKLM\Run: [4982061] "C:\Users\massbateria\AppData\Roaming\id2fgb1k0de\bpdi2b0oa1i.exe" /VERYSILENT
HKLM\Run: [WinterSnowflake] "C:\Windows\rss\csrss.exe"
Winlogon(x64): Shell = explorer.exe
Winlogon: Shell = explorer.exe
Userinit(x64): Userinit = userinit.exe,
Userinit: Userinit = userinit.exe,
[HKCR\.\.open\command] -> Navegador Preferido es Google Chrome
[B]~~~~~~~~~~~| PUPs Check[/B]
HKCU\Software\simplitec
HKLM\Software\simplitec
HKCU64\Software\simplitec
HKCU\Software\Tencent
HKCU64\Software\Tencent
C:\Users\massbateria\AppData\Roaming\Tencent
[B]~~~~~~~~~~~| Listado 7 Días (Predeterminado)[/B]
[10/02/2021 23:14] - C:\Windows\ntbtlog.txt
[10/02/2021 19:10] - C:\Windows\rss
[10/02/2021 22:08] - C:\Windows\setupact.log
[10/02/2021 22:08] - C:\Windows\setuperr.log
[10/02/2021 19:05] - C:\Windows\trustedlogos
[10/02/2021 19:10] - C:\Windows\windefender.exe
[04/02/2021 10:43] - C:\Windows\{00000002-00000000-00000005-00001102-00000004-40011102}.CDF
[11/02/2021 09:00] - C:\FSTool
[11/02/2021 09:00] - C:\IFS.log
[B]~~~~~~~~~~~| C:\Windows\Tasks:[/B]
[25/01/2019 10:13] - C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
[25/01/2019 10:13] - C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
[B]~~~~~~~~~~~| End Report[/B]
*Finalizado 09:05:05
*Se limpiaron los archivos temporales
*[1599815] C:\Users\massbateria\Downloads\IFS.exe
*Herramienta de Análisis e investigación [/CODE]20:33:33 # product=EOS
# version=8
# esetonlinescanner.exe=3.4.7.0
# country="Spain"
# lang=3082
20:36:09 Updating
20:36:09 Update Init
20:36:10 Update Download
20:37:29 esets_scanner_reload returned 0
20:37:29 g_uiModuleBuild: 48496
20:37:29 Update Finalize
20:37:29 Call m_esets_charon_send
20:37:29 Call m_esets_charon_destroy
20:37:29 Updated modules version: 48496
20:37:40 Call m_esets_charon_setup_create
20:37:40 Call m_esets_charon_create
20:37:40 m_esets_charon_create OK
20:37:40 Call m_esets_charon_start_send_thread
20:37:40 Call m_esets_charon_setup_set
20:37:40 m_esets_charon_setup_set OK
20:37:40 Scanner engine: 48496
07:27:59 # product=EOS
# version=8
# flags=0
# av=0
# fw=7
# admin=1
# esetonlinescanner.exe=3.4.7.0
# EOSSerial=920782bdf68e1141b55e4c983bf4a557
# engine=48496
# end=finished
# bannerClicked=0
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# sfx_checked=true
# utc_time=2021-02-17 06:27:59
# local_time=2021-02-17 07:27:59 (+0100, Hora estándar romance)
# country="Spain"
# lang=3082
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 28591328 365173129 0 0
# compatibility_mode_1='Malwarebytes'
# compatibility_mode=18433 16777214 66 98 215643 516834 0 0
# scanned=323795
# found=18
# cleaned=18
# scan_time=9541
# scan_type=3
# flow=2021-02-16 20:33:33|scr|intro|2021-02-16 20:33:36|promo|eis|2021-02-16 20:34:22|scr|eula|2021-02-16 20:34:26|scr|welcome|2021-02-16 20:34:34|scr|consents|2021-02-16 20:35:00|scr|scan_type|2021-02-16 20:35:20|scr|custom_target|2021-02-16 20:35:35|scr|pua|2021-02-16 20:35:51|scr|adv_settings|2021-02-16 20:36:07|scr|pua|2021-02-16 20:36:09|scr|updating|2021-02-16 20:37:30|scr|scanning|2021-02-16 23:16:32|scr|all_cleaned|2021-02-17 07:21:27|click|save_report|2021-02-17 07:24:22|scr|report_cleaned|2021-02-17 07:24:22|click|resolved_detections|2021-02-17 07:24:31|scr|quarantine|2021-02-17 07:24:49|click|restore_now|2021-02-17 07:24:49|scr|quarantine|2021-02-17 07:25:48|scr|report_cleaned|2021-02-17 07:25:48|click|resolved_detections|2021-02-17 07:25:56|scr|periodic_offer|2021-02-17 07:26:02|scr|upsell|2021-02-17 07:26:06|scr|thanks
# periodic=0,1
# test=default
# email=
# stats_enabled=1
sh=2CBA68D19567A7FB6B6130B57F30000C1CBE1B6A ft=1 fh=0000000000046e00 vn="una variante de Win32/Adware.Zdengo.EW aplicación (desinfectado por eliminación)" ac=C fn="C:\AdwCleaner\Quarantine\bbSqWy6yhK\3a7891bf03ee5a01b397b6c44a8b332f.exe"
sh=B6FB443DDA2AA5FF7652D0C8D3F22C3E6E199458 ft=1 fh=000000000013e738 vn="una variante de Win32/UwS.DriverToolkit.A aplicación (desinfectado por eliminación)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files\DriverToolkit\DriverToolkit.exe.vir"
sh=86D7310B8324601EDD2C4ED9B0463620B5B2DD9A ft=1 fh=000000000001f000 vn="una variante de Win32/NetFilter.A aplicación potencialmente no segura (desinfectado por eliminación)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files\GSafe\nfapi.dll.vir"
sh=F69213B3EE5CF3F9F7C82F092D2A94D93474039E ft=1 fh=0000000000157000 vn="una variante de Win32/NetFilter.A aplicación potencialmente no segura (desinfectado por eliminación)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files\GSafe\ProtocolFilters.dll.vir"
sh=0000000000000000000000000000000000000000 ft=- fh=0000000000000000 vn="una variante de WinGo/RanumBot.J Troyano (desinfectado por eliminación)" ac=C fn="C:\AdwCleaner\Quarantine\v1\20210211.091018\9\windefender.exe#EE41CB463B852F74"
sh=FD28B39F6133E25C32D479F896AE8B283A72CBB8 ft=1 fh=00000000001e8bb8 vn="una variante de Win32/uTorrent.C aplicación potencialmente no deseada (desinfectado por eliminación)" ac=C fn="C:\Users\massbateria\AppData\Roaming\uTorrent\updates\3.5.5_45146.exe"
sh=4D930FD21CC1E57F6E9EC9F65BF8CFE957D5635A ft=1 fh=00000000001e74e8 vn="una variante de Win32/uTorrent.C aplicación potencialmente no deseada (desinfectado por eliminación)" ac=C fn="C:\Users\massbateria\AppData\Roaming\uTorrent\updates\3.5.5_45231.exe"
sh=804B164053222AF22E1BCC14D12713EB1620288A ft=1 fh=00000000001e98e8 vn="una variante de Win32/uTorrent.C aplicación potencialmente no deseada (desinfectado por eliminación)" ac=C fn="C:\Users\massbateria\AppData\Roaming\uTorrent\updates\3.5.5_45395.exe"
sh=471FDD6F655CD964003C23D5ADAD650E33A50ED9 ft=1 fh=00000000001cbef0 vn="una variante de Win32/uTorrent.C aplicación potencialmente no deseada (desinfectado por eliminación)" ac=C fn="C:\Users\massbateria\AppData\Roaming\uTorrent\updates\3.5.5_45505.exe"
sh=2747D0B1C62224C9BD1CB28EAEE3E1BDA711F583 ft=1 fh=0000000000203ed8 vn="una variante de Win32/uTorrent.C aplicación potencialmente no deseada (desinfectado por eliminación)" ac=C fn="C:\Users\massbateria\AppData\Roaming\uTorrent\updates\3.5.5_45790.exe"
sh=5FA8334249894EA9ACBD910AF861030E3C2A285E ft=0 fh=00000000001dca67 vn="una variante de Win32/uTorrent.C aplicación potencialmente no deseada (eliminado)" ac=C fn="C:\Users\massbateria\AppData\Roaming\uTorrent\uTorrent.rar"
sh=2FB383438837F31DA08A860323AC49595F24E85F ft=0 fh=000000000230916f vn="una variante de Win32/Keygen.AD aplicación potencialmente no segura (eliminado)" ac=C fn="E:\datos borja\SONIDO\IZotope.iDrum.VSTi.RTAS.v1.6.1.Incl.Keygen-AiR.rar"
sh=4E73CB4B44A3D74670FAA5CEF4ECA54282DFFE8B ft=0 fh=0000000000d34ac2 vn="una variante de Win32/Keygen.AD aplicación potencialmente no segura (eliminado)" ac=C fn="E:\datos borja\SONIDO\iZotope_Alloy_Setup_v1_00.rar"
sh=F800B75F25FA4F5990F26CAA4C249981CABC3D90 ft=0 fh=00000000034b9d7f vn="una variante de Win32/HackTool.Patcher.A aplicación potencialmente no segura (contenÃa archivos infectados)" ac=C fn="E:\datos borja\SONIDO\Peavey_Electronics_ReValver_MK_III_APP_w_Universal_Patch_by_TheXROOster.zip"
sh=7078B63DFBFF7454543F0CA02E3077AD7387E3B3 ft=0 fh=00000000034b817c vn="una variante de Win32/HackTool.Patcher.A aplicación potencialmente no segura (contenÃa archivos infectados)" ac=C fn="E:\datos borja\SONIDO\Revalver MK III win crack.zip"
sh=D4AB71AED646C0717AABCBEEBCBD2415AE1CE665 ft=0 fh=0000000016ca1c21 vn="una variante de Win32/HackTool.Patcher.A aplicación potencialmente no segura (eliminado)" ac=C fn="E:\Dropbox\Dropbox\Dropbox\tecnica\Finale 2011(1).rar"
sh=479EBD23C847E0E5E4A0ED76DE53FB87168F98A9 ft=1 fh=000000000009c858 vn="Win32/Keygen.ACE aplicación potencialmente no segura,Win32/Keygen.ML aplicación potencialmente no segura (desinfectado por eliminación)" ac=C fn="E:\EZDrummer 2\R2R\Toontrack_KeyGen.exe"
sh=0EFC35935957C25193BBE9A83AB6CAA25A487ADA ft=1 fh=00000000003d5b39 vn="Win32/HackTool.WinActivator.I aplicación potencialmente no segura (desinfectado por eliminación)" ac=C fn="I:\Windows Loader.exe"
07:28:00 Call m_esets_charon_send
07:28:00 Call m_esets_charon_destroyMalwarebytes Anti-Rootkit BETA 1.10.3.1001
www.malwarebytes.org
Database version:
main: v2021.02.17.03
rootkit: v2021.02.17.03
Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 11.0.9600.19572
massbateria :: MASSBATERIA-PC [administrator]
17/02/2021 9:34:11
mbar-log-2021-02-17 (09-34-11).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 201728
Time elapsed: 26 minute(s), 47 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 9
HKLM\SOFTWARE\MICROSOFT\bestavicampaign563 (Adware.ICLoader) -> Delete on reboot. [de293e6f42a30f27fca168d87888ec14]
HKLM\SOFTWARE\MICROSOFT\campaign9961 (Adware.ICLoader) -> Delete on reboot. [0304beef549155e1326cb28e43bd2ed2]
HKLM\SOFTWARE\MICROSOFT\multitimercampaign84170 (Adware.ICLoader) -> Delete on reboot. [8e79793415d0c4722679063a33cdee12]
HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F70818C7-92D7-4F2A-A79A-13288E9FF0CF} (Trojan.Glupteba.E) -> Delete on reboot. [7691614cffe672c41723a539f60a0ff1]
HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\csrss (Trojan.Glupteba.E) -> Delete on reboot. [30d7b8f591542c0abb80716dfb05da26]
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Winmon (Trojan.Glupteba.E) -> Delete on reboot. [f215e1ccfee76ec88fadc618f40c59a7]
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WinmonFS (Trojan.Glupteba.E) -> Delete on reboot. [bf489e0fe7fea5910d30e4fa7888e917]
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WinmonProcessMonitor (Trojan.Glupteba.E) -> Delete on reboot. [d730e1cc2abbf3439ba37d617c846f91]
HKU\S-1-5-21-3658098771-1424985918-529143646-1000\SOFTWARE\MICROSOFT\D0DD0EF0 (Trojan.Glupteba.E) -> Delete on reboot. [9a6db3fab03539fd1f18f5e9946c57a9]
Registry Values Detected: 2
HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F70818C7-92D7-4F2A-A79A-13288E9FF0CF}|Path (Trojan.Glupteba.E) -> Data: \csrss -> Delete on reboot. [7691614cffe672c41723a539f60a0ff1]
HKU\S-1-5-21-3658098771-1424985918-529143646-1000\SOFTWARE\MICROSOFT\d0dd0ef0|CampaignID (Trojan.Glupteba.E) -> Data: /77 -> Delete on reboot. [9a6db3fab03539fd1f18f5e9946c57a9]
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 2
C:\Windows\System32\Tasks\csrss (Trojan.Glupteba.E) -> Delete on reboot. [7d8a4c619451aa8cb083706e956bc43c]
C:\Program Files\Mozilla Firefox\defaults\pref\a.js (Adware.ProxyAgent) -> Delete on reboot. [57b0614c5095e4526d11e99fc93c48b8]
Physical Sectors Detected: 0
(No malicious items detected)
(end)---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.10.3.1001
(c) Malwarebytes Corporation 2011-2012
OS version: 6.1.7601 Windows 7 Service Pack 1 x64
System is currently in a safe mode
Account is Administrative
Internet Explorer version: 11.0.9600.19572
File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, E:\ DRIVE_FIXED
CPU speed: 3.391000 GHz
Memory total: 17121009664, free: 14667825152
Downloaded database version: v2021.02.17.03
Downloaded database version: v2021.02.17.03
Downloaded database version: v2018.01.20.01
=======================================
Initializing...
Driver version: 4.3.0.15
------------ Kernel report ------------
02/17/2021 09:34:00
------------ Loaded modules -----------
\SystemRoot\system32\ntkrnlmp.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_AuthenticAMD.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\drivers\atapi.sys
\SystemRoot\system32\drivers\ataport.SYS
\SystemRoot\system32\drivers\msahci.sys
\SystemRoot\system32\drivers\PCIIDEX.SYS
\SystemRoot\system32\DRIVERS\amd_sata.sys
\SystemRoot\system32\DRIVERS\storport.sys
\SystemRoot\system32\DRIVERS\amd_xata.sys
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\drivers\vmstorfl.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\drivers\disk.sys
\SystemRoot\system32\drivers\CLASSPNP.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\DRIVERS\wfplwf.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\system32\drivers\csc.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\usbohci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbfilter.sys
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\1394ohci.sys
\SystemRoot\system32\DRIVERS\asmtxhci.sys
\SystemRoot\system32\DRIVERS\Rt64win7.sys
\SystemRoot\system32\drivers\wmiacpi.sys
\SystemRoot\system32\DRIVERS\blbdrive.sys
\SystemRoot\system32\DRIVERS\CompositeBus.sys
\SystemRoot\system32\drivers\mssmbios.sys
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\DRIVERS\rdpbus.sys
\SystemRoot\system32\drivers\termdd.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\BazisVirtualCDBus.sys
\SystemRoot\system32\DRIVERS\NIWinCDEmu.sys
\SystemRoot\system32\drivers\swenum.sys
\SystemRoot\system32\drivers\ks.sys
\SystemRoot\system32\DRIVERS\exetools.sys
\SystemRoot\system32\DRIVERS\umbus.sys
\SystemRoot\system32\DRIVERS\nvvhci.sys
\SystemRoot\system32\drivers\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\DRIVERS\aksusb.sys
\SystemRoot\system32\DRIVERS\AKSCLASS.SYS
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\akshasp.sys
\SystemRoot\system32\DRIVERS\akshhl.sys
\SystemRoot\system32\DRIVERS\asmthub3.sys
\SystemRoot\system32\DRIVERS\USBSTOR.SYS
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\System32\drivers\dxg.sys
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\framebuf.dll
\SystemRoot\system32\DRIVERS\kbdhid.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_diskdump.sys
\SystemRoot\System32\Drivers\dump_amd_sata.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\System32\Drivers\fastfat.SYS
\SystemRoot\System32\Drivers\mbamswissarmy.sys
\??\C:\Windows\system32\drivers\MbamChameleon.sys
\??\C:\Windows\system32\drivers\B311439F.sys
\Windows\System32\ntdll.dll
\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
----------- End -----------
Done!
Scan started
Database versions:
main: v2021.02.17.03
rootkit: v2021.02.17.03
<<<2>>>
Physical Sector Size: 512
Drive: 1, DevicePointer: 0xfffffa800d5ed060, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa800d5edb90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa800d5ed060, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800cfbb040, DeviceName: Unknown, DriverName: \Driver\amd_xata\
DevicePointer: 0xfffffa800c5fc060, DeviceName: \Device\0000007a\, DriverName: \Driver\amd_sata\
------------ End ----------
Alternate DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
Done!
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xfffffa800d5ec060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa800d5ecb90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa800d5ec060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800c5fcac0, DeviceName: Unknown, DriverName: \Driver\amd_xata\
DevicePointer: 0xfffffa800cfe19c0, DeviceName: \Device\00000079\, DriverName: \Driver\amd_sata\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 7F3BFE6
Partition information:
Partition 0 type is Extended with LBA (0xf)
Partition is NOT ACTIVE.
Partition starts at LBA: 16065 Numsec = 1953504000
Partition is not bootable
Partition 1 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Disk Size: 1000204886016 bytes
Sector size: 512 bytes
Done!
Drive 1
This is a System drive
Scanning MBR on drive 1...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 7DA57DA5
Partition information:
Partition 0 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 2048 Numsec = 204800
Partition is bootable
Partition file system is NTFS
Partition 1 type is Primary (0x7)
Partition is NOT ACTIVE.
Partition starts at LBA: 206848 Numsec = 398088192
Partition is not bootable
Partition file system is NTFS
Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Disk Size: 203928109056 bytes
Sector size: 512 bytes
Done!
Physical Sector Size: 512
Drive: 2, DevicePointer: 0xfffffa800d99b060, DeviceName: \Device\Harddisk2\DR2\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa800d9efb90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa800d99b060, DeviceName: \Device\Harddisk2\DR2\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800dc07a10, DeviceName: \Device\0000008d\, DriverName: \Driver\USBSTOR\
------------ End ----------
Alternate DeviceName: \Device\Harddisk2\DR2\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
Drive 2
Scanning MBR on drive 2...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 0
Partition information:
Partition 0 type is Other (0xb)
Partition is ACTIVE.
Partition starts at LBA: 8192 Numsec = 60359680
Partition is not bootable
Partition file system is FAT32
Partition 1 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Disk Size: 30908350464 bytes
Sector size: 512 bytes
Done!
Physical Sector Size: 0
Drive: 3, DevicePointer: 0xfffffa800d9a4790, DeviceName: \Device\Harddisk3\DR3\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa800d99c040, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa800d9a4790, DeviceName: \Device\Harddisk3\DR3\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800d99cb60, DeviceName: \Device\0000008e\, DriverName: \Driver\USBSTOR\
------------ End ----------
Physical Sector Size: 0
Drive: 4, DevicePointer: 0xfffffa800d9a5060, DeviceName: \Device\Harddisk4\DR4\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa800d996b90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa800d9a5060, DeviceName: \Device\Harddisk4\DR4\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800d99c660, DeviceName: \Device\0000008f\, DriverName: \Driver\USBSTOR\
------------ End ----------
Physical Sector Size: 0
Drive: 5, DevicePointer: 0xfffffa800d9a6060, DeviceName: \Device\Harddisk5\DR5\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa800d9a5b90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa800d9a6060, DeviceName: \Device\Harddisk5\DR5\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800e5a3b60, DeviceName: \Device\00000090\, DriverName: \Driver\USBSTOR\
------------ End ----------
Physical Sector Size: 0
Drive: 6, DevicePointer: 0xfffffa800d9a7060, DeviceName: \Device\Harddisk6\DR6\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa800d9a6b90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa800d9a7060, DeviceName: \Device\Harddisk6\DR6\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800e593b60, DeviceName: \Device\00000091\, DriverName: \Driver\USBSTOR\
------------ End ----------
Physical Sector Size: 512
Drive: 7, DevicePointer: 0xfffffa800e57f060, DeviceName: \Device\Harddisk7\DR7\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa800da3bb90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa800e57f060, DeviceName: \Device\Harddisk7\DR7\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800d9a7b60, DeviceName: \Device\00000092\, DriverName: \Driver\USBSTOR\
------------ End ----------
Alternate DeviceName: \Device\Harddisk7\DR7\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
Drive 7
Scanning MBR on drive 7...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 1B3AFD
Partition information:
Partition 0 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 2048 Numsec = 31264768
Partition is not bootable
Partition file system is NTFS
Partition 1 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Disk Size: 16008609792 bytes
Sector size: 512 bytes
Done!
Infected: C:\Windows\System32\Tasks\csrss --> [Trojan.Glupteba.E]
Infected: HKLM\SOFTWARE\MICROSOFT\bestavicampaign563 --> [Adware.ICLoader]
Infected: HKLM\SOFTWARE\MICROSOFT\campaign9961 --> [Adware.ICLoader]
Infected: HKLM\SOFTWARE\MICROSOFT\multitimercampaign84170 --> [Adware.ICLoader]
Infected: HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F70818C7-92D7-4F2A-A79A-13288E9FF0CF}|Path --> [Trojan.Glupteba.E]
Infected: HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F70818C7-92D7-4F2A-A79A-13288E9FF0CF} --> [Trojan.Glupteba.E]
Infected: HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\csrss --> [Trojan.Glupteba.E]
Infected: HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Winmon --> [Trojan.Glupteba.E]
Infected: HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WinmonFS --> [Trojan.Glupteba.E]
Infected: HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WinmonProcessMonitor --> [Trojan.Glupteba.E]
Infected: HKU\S-1-5-21-3658098771-1424985918-529143646-1000\SOFTWARE\MICROSOFT\d0dd0ef0|CampaignID --> [Trojan.Glupteba.E]
Infected: HKU\S-1-5-21-3658098771-1424985918-529143646-1000\SOFTWARE\MICROSOFT\D0DD0EF0 --> [Trojan.Glupteba.E]
Infected: C:\Program Files\Mozilla Firefox\defaults\pref\a.js --> [Adware.ProxyAgent]
Scan finished10:18:14.0677 0x0748 TDSS rootkit removing tool 3.1.0.28 Apr 9 2019 21:11:46
10:18:20.0007 0x0748 ============================================================
10:18:20.0008 0x0748 Current date / time: 2021/02/17 10:18:20.0007
10:18:20.0008 0x0748 SystemInfo:
10:18:20.0008 0x0748
10:18:20.0008 0x0748 OS Version: 6.1.7601 ServicePack: 1.0
10:18:20.0008 0x0748 Product type: Workstation
10:18:20.0008 0x0748 ComputerName: MASSBATERIA-PC
10:18:20.0008 0x0748 UserName: massbateria
10:18:20.0008 0x0748 Windows directory: C:\Windows
10:18:20.0008 0x0748 System windows directory: C:\Windows
10:18:20.0008 0x0748 Running under WOW64
10:18:20.0008 0x0748 Processor architecture: Intel x64
10:18:20.0008 0x0748 Number of processors: 2
10:18:20.0008 0x0748 Page size: 0x1000
10:18:20.0008 0x0748 Boot type: Safe boot with network
10:18:20.0008 0x0748 CodeIntegrityOptions = 0x00000000
10:18:20.0008 0x0748 ============================================================
10:18:20.0300 0x0748 KLMD registered as C:\Windows\system32\drivers\30313596.sys
10:18:20.0300 0x0748 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.24540, osProperties = 0x1
10:18:20.0836 0x0748 System UUID: {1FC65C9A-D402-13FA-AC1C-DBF001DC507E}
10:18:21.0404 0x0748 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:18:21.0412 0x0748 Drive \Device\Harddisk1\DR1 - Size: 0x2F7B100000 ( 189.92 Gb ), SectorSize: 0x200, Cylinders: 0x33733, SectorsPerTrack: 0xE, TracksPerCylinder: 0x87, Type 'K0', Flags 0x00000040
10:18:21.0416 0x0748 Drive \Device\Harddisk2\DR2 - Size: 0x732480000 ( 28.79 Gb ), SectorSize: 0x200, Cylinders: 0xEAD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
10:18:21.0433 0x0748 Drive \Device\Harddisk7\DR7 - Size: 0x3BA300000 ( 14.91 Gb ), SectorSize: 0x200, Cylinders: 0x79A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
10:18:21.0435 0x0748 ============================================================
10:18:21.0435 0x0748 \Device\Harddisk0\DR0:
10:18:21.0435 0x0748 MBR partitions:
10:18:21.0439 0x0748 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0x74701AC1
10:18:21.0439 0x0748 \Device\Harddisk1\DR1:
10:18:21.0439 0x0748 MBR partitions:
10:18:21.0439 0x0748 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
10:18:21.0439 0x0748 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x17BA5800
10:18:21.0439 0x0748 \Device\Harddisk2\DR2:
10:18:21.0441 0x0748 MBR partitions:
10:18:21.0441 0x0748 \Device\Harddisk2\DR2\Partition1: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0x3990400
10:18:21.0441 0x0748 \Device\Harddisk7\DR7:
10:18:21.0442 0x0748 MBR partitions:
10:18:21.0442 0x0748 \Device\Harddisk7\DR7\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1DD1000
10:18:21.0442 0x0748 ============================================================
10:18:21.0488 0x0748 C: <-> \Device\Harddisk1\DR1\Partition2
10:18:21.0492 0x0748 E: <-> \Device\Harddisk0\DR0\Partition1
10:18:21.0492 0x0748 ============================================================
10:18:21.0492 0x0748 Initialize success
10:18:21.0492 0x0748 ============================================================
10:19:50.0121 0x0b6c KLMD registered as C:\Windows\system32\drivers\53239925.sys
10:19:50.0699 0x0b6c Deinitialize success~ ZHPCleaner v2021.2.16.279 by Nicolas Coolman (2021/02/16)
~ Run by massbateria (Administrator) (17/02/2021 09:05:08)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version :
~ Certificate ZHPCleaner: Legal
~ Type : Reparar
~ Report : C:\Users\massbateria\Desktop\ZHPCleaner (R).txt
~ Quarantine : C:\Users\massbateria\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Deactivate
~ Boot Mode : Normal (Normal boot)
Windows 7 Ultimate, 64-bit Service Pack 1 (Build 7601)
---\ Alternate Data Stream (ADS). (1)
MOVIDO carpeta ADS: C:\Users\massbateria\Desktop\PDFs - Acceso directo.lnk:com.dropbox.attrs =>.SUP.FileADS
---\ Servicios (0)
~ No malintencionados o innecesarios artículos encontrados. (Servicio)
---\ Navegadores de Internet (0)
~ No malintencionados o innecesarios artículos encontrados. (Navegador)
---\ Hosts carpeta (1)
~ El archivo hosts es legítimo (15667)
---\ Tareas automáticas programadas. (0)
~ No malintencionados o innecesarios artículos encontrados. (Tarea)
---\ Explorador ( Archivos, Carpetas ) (7)
MOVIDO carpeta: C:\Users\massbateria\AppData\Local\Google\Chrome\User Data\Default\Preferences =>Préférences Chromium
MOVIDO archivo: C:\Users\massbateria\AppData\Roaming\PDAppFlex =>Trojan.Elpman
MOVIDO archivo: C:\Program Files\KMSpico =>HackTool.KMSpico
MOVIDO archivo: C:\ProgramData\IG Stories Downloader =>PUP.Optional.IGStories
MOVIDO archivo: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IG Stories Downloader =>PUP.Optional.IGStories
MOVIDO archivo: C:\Program Files (x86)\QuickTime =>Riskware.QuickTime
MOVIDO archivo: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime =>Riskware.QuickTime
---\ Registro ( Claves, Valores, Datos) (5)
BORRADOS clave*: [X64] HKLM\SOFTWARE\029c4619-0385-5543-9426-46f9987161d9 [] =>Adware.CrossRider
BORRADOS clave*: [X64] HKLM\SOFTWARE\c6ba130a-455e-5073-9dbd-f9d1f65c1562 [] =>Adware.CrossRider
BORRADOS clave*: [X64] HKLM\SOFTWARE\Wow6432Node\c6ba130a-455e-5073-9dbd-f9d1f65c1562 [] =>Adware.CrossRider
BORRADOS clave*: HKCU\Software\undefined [AdditionalScan 148] =>.SUP.Downloader
BORRADOS valor: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_DA49533490B544962D76CEA7A7F9414D ['C:\Program Files (x86)\Google\Chrome\Application\] =>PUP.Optional.MyBrowser
---\ Resumen de elementos en su estación de trabajo (9)
https://nicolascoolman.eu/2018/01/04/ads-alternate-data-stream/ =>.SUP.FileADS
https://nicolascoolman.eu/forum/Topic/repaquetage-et-infection/ =>Préférences Chromium
https://nicolascoolman.eu/2017/09/23/trojan-elpman/ =>Trojan.Elpman
https://nicolascoolman.eu/2017/02/16/hacktool-kmspico/ =>HackTool.KMSpico
https://nicolascoolman.eu/forum/Topic/igstories-logiciel-potentiellement-indesirable-pup-lpi/ =>PUP.Optional.IGStories
https://nicolascoolman.eu/2017/01/15/riskware-quicktime/ =>Riskware.QuickTime
https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider
https://nicolascoolman.eu/2017/12/22/sup-downloader/ =>.SUP.Downloader
https://nicolascoolman.eu/2017/11/01/adware-mybrowser/ =>PUP.Optional.MyBrowser
---\ Limpieza adicional. (5)
~ Clave de registro Tracing borrados (5)
~ Quitar los antiguos informes de ZHPCleaner. (0)
---\ Resultado de la reparación.
~ Reparación llevada a cabo con éxito
~ Google Chrome OK
~ Mozilla Firefox OK
~ Internet Explorer OK
---\ STATISTIQUES
~ Items escaneado : 32806
~ Items encontrado : 0
~ artículos cancelados : 0
~ Ahorro de espacio (bytes) : 0
~ Items opciones : 9/17
---\ OPCIONES NO ACTIVAS
~ Análisis temporal de archivos
~ Análisis temporal de carpetas
~ Análisis de CLSID de carpetas vacías
~ Vaciar otro análisis de carpetas
~ Análisis de carpetas locales vacías
~ Análisis de archivos de instalación obsoleto
~ Iniciar navegadores con extensiones eliminadas
~ End of clean in 00h01mn36s
---\ Reporte (2)
ZHPCleaner-[S]-17022021-09_01_05.txt
ZHPCleaner-[R]-17022021-09_06_44.txtHola @massbateria
Sí, tráelo también. Aunque sea muy largo, ponlo todo. Lo traes y analizo todo.
Salu2.
10:22:27.0494 0x0370 TDSS rootkit removing tool 3.1.0.28 Apr 9 2019 21:11:46
10:22:31.0066 0x0370 ============================================================
10:22:31.0066 0x0370 Current date / time: 2021/02/17 10:22:31.0066
10:22:31.0066 0x0370 SystemInfo:
10:22:31.0066 0x0370
10:22:31.0066 0x0370 OS Version: 6.1.7601 ServicePack: 1.0
10:22:31.0066 0x0370 Product type: Workstation
10:22:31.0066 0x0370 ComputerName: MASSBATERIA-PC
10:22:31.0066 0x0370 UserName: massbateria
10:22:31.0066 0x0370 Windows directory: C:\Windows
10:22:31.0066 0x0370 System windows directory: C:\Windows
10:22:31.0066 0x0370 Running under WOW64
10:22:31.0066 0x0370 Processor architecture: Intel x64
10:22:31.0066 0x0370 Number of processors: 2
10:22:31.0066 0x0370 Page size: 0x1000
10:22:31.0066 0x0370 Boot type: Safe boot with network
10:22:31.0066 0x0370 CodeIntegrityOptions = 0x00000000
10:22:31.0066 0x0370 ============================================================
10:22:31.0113 0x0370 KLMD ARK init status: drvProperties = 0xFFFF00, osBuild = 7601.24540, osProperties = 0x1
10:22:31.0113 0x0370 KLMD BG init status: drvProperties = 0xFFFF00, osBuild = 7601.24540, osProperties = 0x1
10:22:31.0113 0x0370 BG loaded
10:22:31.0441 0x0370 System UUID: {1FC65C9A-D402-13FA-AC1C-DBF001DC507E}
10:22:31.0846 0x0370 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:22:31.0862 0x0370 Drive \Device\Harddisk1\DR1 - Size: 0x2F7B100000 ( 189.92 Gb ), SectorSize: 0x200, Cylinders: 0x33733, SectorsPerTrack: 0xE, TracksPerCylinder: 0x87, Type 'K0', Flags 0x00000040
10:22:31.0877 0x0370 Drive \Device\Harddisk2\DR2 - Size: 0x732480000 ( 28.79 Gb ), SectorSize: 0x200, Cylinders: 0xEAD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
10:22:31.0877 0x0370 Drive \Device\Harddisk3\DR3 - Size: 0x3BA300000 ( 14.91 Gb ), SectorSize: 0x200, Cylinders: 0x79A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
10:22:31.0893 0x0370 ============================================================
10:22:31.0893 0x0370 \Device\Harddisk0\DR0:
10:22:31.0893 0x0370 MBR partitions:
10:22:31.0909 0x0370 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0x74701AC1
10:22:31.0909 0x0370 \Device\Harddisk1\DR1:
10:22:31.0909 0x0370 MBR partitions:
10:22:31.0924 0x0370 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
10:22:31.0924 0x0370 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x17BA5800
10:22:31.0924 0x0370 \Device\Harddisk2\DR2:
10:22:31.0924 0x0370 MBR partitions:
10:22:31.0924 0x0370 \Device\Harddisk2\DR2\Partition1: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0x3990400
10:22:31.0924 0x0370 \Device\Harddisk3\DR3:
10:22:31.0924 0x0370 MBR partitions:
10:22:31.0924 0x0370 \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1DD1000
10:22:31.0924 0x0370 ============================================================
10:22:32.0049 0x0370 C: <-> \Device\Harddisk1\DR1\Partition2
10:22:32.0065 0x0370 E: <-> \Device\Harddisk0\DR0\Partition1
10:22:32.0065 0x0370 ============================================================
10:22:32.0065 0x0370 Initialize success
10:22:32.0065 0x0370 ============================================================
10:22:45.0231 0x07c4 ============================================================
10:22:45.0231 0x07c4 Scan started
10:22:45.0231 0x07c4 Mode: Manual; SigCheck; TDLFS;
10:22:45.0231 0x07c4 ============================================================
10:22:45.0231 0x07c4 KSN ping started
10:22:45.0434 0x07c4 KSN ping finished: true
10:22:46.0682 0x07c4 ================ Scan BIOS =================================
10:22:46.0682 0x07c4 BIOS info: vendor = American Megatrends Inc., version = 1301, releaseDate = 12/05/2014
10:22:46.0682 0x07c4 Base board info: manufacturer = ASUSTeK COMPUTER INC., product = A58M-A/USB3, version = Rev X.0x
10:22:49.0443 0x07c4 [ 53497FAE53EBDEAACC1E62BE00298B5D, C082528139EBC5F710656148E0F0C517A483D56C5CFDB7F1C8513248D3EB8235 ] BIOS
10:22:49.0443 0x07c4 BIOS - ok
10:22:49.0443 0x07c4 ================ Scan system memory ========================
10:22:49.0459 0x07c4 System memory - ok
10:22:49.0459 0x07c4 ================ Scan services =============================
10:22:49.0599 0x07c4 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
10:22:49.0693 0x07c4 1394ohci - ok
10:22:49.0739 0x07c4 [ DCA5495CA17AEB2F4FD8AC60812C3999, 20A3FC0349294584C340C76D674EE5CA37BA69C886DDA6886CBCCFA437A51BD8 ] ACPI C:\Windows\system32\drivers\ACPI.sys
10:22:49.0771 0x07c4 ACPI - ok
10:22:49.0802 0x07c4 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
10:22:49.0880 0x07c4 AcpiPmi - ok
10:22:49.0942 0x07c4 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
10:22:49.0973 0x07c4 adp94xx - ok
10:22:50.0005 0x07c4 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
10:22:50.0036 0x07c4 adpahci - ok
10:22:50.0051 0x07c4 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
10:22:50.0067 0x07c4 adpu320 - ok
10:22:50.0114 0x07c4 [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:22:50.0145 0x07c4 AeLookupSvc - ok
10:22:50.0207 0x07c4 [ 0DC2A9882540DEA4A55B08785E09D8FC, 69B15724B0034F9915AACE109A6C596D6AF2DA350FC18C9A0CD98C81CB7EDEE3 ] AFD C:\Windows\system32\drivers\afd.sys
10:22:50.0285 0x07c4 AFD - ok
10:22:50.0566 0x07c4 [ DAE15469EE2E6B8B00E57F0C0A2341D4, 8B8B808BFF201542824F20CB95F5D43D536CF0B6D0FC412C9997AC09F0882152 ] AGMService C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
10:22:50.0753 0x07c4 AGMService - ok
10:22:50.0800 0x07c4 [ A964EADDD5D1F4374775E112C8859F20, 1F2DA3AF95C734DCB363F7D14CDC0690B8E2AB3A4C92CE56A23C49B5B9D1D655 ] agp440 C:\Windows\system32\drivers\agp440.sys
10:22:50.0800 0x07c4 agp440 - ok
10:22:50.0956 0x07c4 [ B1E856CFF6B7A35DFAD5226EE0832CEE, FD2814E04A4B878432C4ACF7E10D98F97E7CA93BD317CD2BEF397770B5A4C87D ] AGSService C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
10:22:51.0128 0x07c4 AGSService - ok
10:22:51.0175 0x07c4 [ 3190C577746303CA4C65114441192FE2, AEE970D59E9FB314B559CF0C41DD2CD3C9C9B5DD060A339368000F975F4CD389 ] aksdf C:\Windows\system32\drivers\aksdf.sys
10:22:51.0190 0x07c4 aksdf - ok
10:22:51.0237 0x07c4 [ 2845A05E5AF65B5C7A143D637F08496D, 38DB4590EDD8CBE735ED0C072A03F4E619A3CDA7B8D908FD1CA8E90728F077EF ] aksfridge C:\Windows\system32\DRIVERS\aksfridge.sys
10:22:51.0237 0x07c4 aksfridge - ok
10:22:51.0299 0x07c4 [ 35E43EE8FE28CFD581E8CE42847DFE2B, 1A78FC49422CB73EFD4B0A09BD32B35244A91478DB2268C023FDDCA826C8EE5D ] akshasp C:\Windows\system32\DRIVERS\akshasp.sys
10:22:51.0299 0x07c4 akshasp - ok
10:22:51.0346 0x07c4 [ 053B204554F104CB5DC3D94B61BDA458, 72EB2556AA4B83489D2908ADC40DEB2E5ACE98D7A6112E9395F46924BD60501E ] akshhl C:\Windows\system32\DRIVERS\akshhl.sys
10:22:51.0346 0x07c4 akshhl - ok
10:22:51.0393 0x07c4 [ 8D584711424446969B5E4CB16870A898, 842FBE4FD5BEB044EC1F10EAD8B2F2AB5F38D544D136A09474AF94D83EFA4F35 ] aksusb C:\Windows\system32\DRIVERS\aksusb.sys
10:22:51.0409 0x07c4 aksusb - ok
10:22:51.0455 0x07c4 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
10:22:51.0487 0x07c4 ALG - ok
10:22:51.0533 0x07c4 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
10:22:51.0533 0x07c4 aliide - ok
10:22:51.0565 0x07c4 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
10:22:51.0580 0x07c4 amdide - ok
10:22:51.0611 0x07c4 [ 26CF0D8A24834D04B0DBE1979F96B035, FE9C52262D1D059AFBEFECC85AFF7B8F00C5238412981B1A7A8B070928EFAAE9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
10:22:51.0627 0x07c4 AmdK8 - ok
10:22:51.0674 0x07c4 [ 268FFCDC7840795D535A2F9CDCB98760, 800771C8EF6583F0357F6348F5B9B3925BCF97D8E3B4FA2B014B644BCF99476C ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
10:22:51.0705 0x07c4 AmdPPM - ok
10:22:51.0752 0x07c4 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:22:51.0767 0x07c4 amdsata - ok
10:22:51.0814 0x07c4 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
10:22:51.0830 0x07c4 amdsbs - ok
10:22:51.0845 0x07c4 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:22:51.0861 0x07c4 amdxata - ok
10:22:51.0892 0x07c4 [ EBECBA1E37CE98BA2BD64A22A788DAC5, 247C474DAF9FFFF7FB46EB6185088B94B886A7685F98CABE1983EFEAEE1A8338 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
10:22:51.0923 0x07c4 amd_sata - ok
10:22:51.0955 0x07c4 [ 7F1B42E70FAE147B14B28B83E003F039, 093C2B57AFDC93E667A3AB1F74442DBA42B0DE2132388E73BDC3D09FDBB1B3D0 ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
10:22:51.0955 0x07c4 amd_xata - ok
10:22:52.0017 0x07c4 [ 308AD515A8226EA89C7C100F9660EAC3, 40426D3811179847555BECECD999C3CE50188324218D8F2945121B13A30E36E6 ] AppID C:\Windows\system32\drivers\appid.sys
10:22:52.0064 0x07c4 AppID - ok
10:22:52.0079 0x07c4 [ 3B8A172FCFCAC19DE442CA10826E2681, 5EED41902B3386D696BB487211E85C20B412E0A84EC9969992FB02BA919EEFB6 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:22:52.0111 0x07c4 AppIDSvc - ok
10:22:52.0142 0x07c4 [ 3639F533FDC865C741D9522AA3C11917, 5C15DFB10B6B78E3E24E772DE4B99318E2D2AF2C026D92C533EED2F2FC43BB16 ] Appinfo C:\Windows\System32\appinfo.dll
10:22:52.0189 0x07c4 Appinfo - ok
10:22:52.0298 0x07c4 [ BC3CBB9C99DA7861D703D91BB74F36CA, 4AD6BAFDB6036018923B29D268BD52A238D4889D92CFEFA81C27251D3733C934 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:22:52.0298 0x07c4 Apple Mobile Device Service - ok
10:22:52.0345 0x07c4 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
10:22:52.0391 0x07c4 AppMgmt - ok
10:22:52.0438 0x07c4 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
10:22:52.0438 0x07c4 arc - ok
10:22:52.0454 0x07c4 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
10:22:52.0469 0x07c4 arcsas - ok
10:22:52.0516 0x07c4 [ 6061E6BA14B709939EEE1E616A85585E, CAB0372F8518C169740EDA962BF53C63130754F096A5033B79E734133DB59874 ] asmthub3 C:\Windows\system32\DRIVERS\asmthub3.sys
10:22:52.0532 0x07c4 asmthub3 - ok
10:22:52.0610 0x07c4 [ 39EE5CB57D91AAE8BB9EAB8DF2FEEC9E, 8D0AF427CB10C600920344AC9AA7AB0620CD3C49E45FD4B3EA33CAC1E8484A31 ] asmtxhci C:\Windows\system32\DRIVERS\asmtxhci.sys
10:22:52.0625 0x07c4 asmtxhci - ok
10:22:52.0735 0x07c4 [ 33C1061054002DDA02CDFD9C7746CCA7, CE621B9891E505D8A610EE91CF81B59E617DC2915B6134F5108ABA2ECDF1D182 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:22:52.0813 0x07c4 aspnet_state - ok
10:22:52.0875 0x07c4 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:22:53.0015 0x07c4 AsyncMac - ok
10:22:53.0078 0x07c4 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
10:22:53.0078 0x07c4 atapi - ok
10:22:53.0125 0x07c4 [ 738CD83A9C61ADFD00984433DBA3DC78, DC767CAB626623DDE276FAE636FD80D2E5771C8689B77228C8E4208BBFF28DF1 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
10:22:53.0140 0x07c4 AtiHDAudioService - ok
10:22:53.0203 0x07c4 [ A585E162EBD575CC66801709458A7921, FF8D2B38A925358F24C5C582101F1667208AD15774202E74365FE30E27544214 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:22:53.0265 0x07c4 AudioEndpointBuilder - ok
10:22:53.0312 0x07c4 [ A585E162EBD575CC66801709458A7921, FF8D2B38A925358F24C5C582101F1667208AD15774202E74365FE30E27544214 ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:22:53.0343 0x07c4 AudioSrv - ok10:22:53.0390 0x07c4 [ 0D85F9CF8CF09502A816F4A009545CEC, BB73D8A1C92A9C3E417323FC106ED4790AE85B2A553B2A058357DC7EBD91CF04 ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:22:53.0421 0x07c4 AxInstSV - ok
10:22:53.0483 0x07c4 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
10:22:53.0530 0x07c4 b06bdrv - ok
10:22:53.0593 0x07c4 [ BDFA7A13CC73B180BBDF1ABA280E1CF7, BF97E7DF4CF526BF37408CFE30106981842F20769FA949B8EFDBE37306BF929A ] B311439F C:\Windows\system32\drivers\B311439F.sys
10:22:53.0608 0x07c4 B311439F - ok
10:22:53.0639 0x07c4 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
10:22:53.0702 0x07c4 b57nd60a - ok
10:22:53.0764 0x07c4 [ 09391BA416AA29682298A612FDFDD7B8, D889679C25DA37212E2E0E08E4B2CF774FFF395E83BCD168B240A59E74204070 ] BazisVirtualCDBus C:\Windows\system32\DRIVERS\BazisVirtualCDBus.sys
10:22:53.0764 0x07c4 BazisVirtualCDBus - ok
10:22:53.0811 0x07c4 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
10:22:53.0842 0x07c4 BDESVC - ok
10:22:53.0889 0x07c4 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
10:22:53.0905 0x07c4 Beep - ok
10:22:53.0983 0x07c4 [ E3ED6C06462FDDE33100F7E45E8F5213, 71AA528F8912106FDAD83175A7529CF94B5B19093D2C63C25FAC198587286F87 ] BFE C:\Windows\System32\bfe.dll
10:22:54.0029 0x07c4 BFE - ok
10:22:54.0092 0x07c4 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
10:22:54.0248 0x07c4 BITS - ok
10:22:54.0295 0x07c4 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:22:54.0310 0x07c4 blbdrive - ok
10:22:54.0341 0x07c4 [ D7E5C916557268B3DCC9E7DAD58E7727, 439D76346E8762BA7D7F91B09580EFE8354F1A650F3B59101A3BEE2328D8F562 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:22:54.0388 0x07c4 bowser - ok
10:22:54.0404 0x07c4 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
10:22:54.0451 0x07c4 BrFiltLo - ok
10:22:54.0466 0x07c4 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
10:22:54.0497 0x07c4 BrFiltUp - ok
10:22:54.0544 0x07c4 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
10:22:54.0575 0x07c4 Browser - ok
10:22:54.0622 0x07c4 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
10:22:54.0653 0x07c4 Brserid - ok
10:22:54.0669 0x07c4 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:22:54.0700 0x07c4 BrSerWdm - ok
10:22:54.0716 0x07c4 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:22:54.0716 0x07c4 BrUsbMdm - ok
10:22:54.0731 0x07c4 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
10:22:54.0747 0x07c4 BrUsbSer - ok
10:22:54.0778 0x07c4 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
10:22:54.0778 0x07c4 BTHMODEM - ok
10:22:54.0825 0x07c4 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
10:22:54.0856 0x07c4 bthserv - ok
10:22:54.0903 0x07c4 [ B861DF1DC9CA9259934DBAC5E069681B, BA3AB966509CF07DE26FB9F8CBEA21F4771FC1677767824813F4F8B80E33C072 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:22:54.0950 0x07c4 cdfs - ok
10:22:54.0997 0x07c4 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:22:55.0012 0x07c4 cdrom - ok
10:22:55.0059 0x07c4 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
10:22:55.0106 0x07c4 CertPropSvc - ok
10:22:55.0121 0x07c4 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
10:22:55.0153 0x07c4 circlass - ok
10:22:55.0199 0x07c4 [ 78CA84A35D09888E1FF21973E6E709C1, 9B2F03CCF816546591D8C4DC951D07D156C5CFA2B94EB6996ABB1EF261AFDBEB ] CLFS C:\Windows\system32\CLFS.sys
10:22:55.0231 0x07c4 CLFS - ok
10:22:55.0652 0x07c4 [ ED356EA493F6AD81B0BCA331F96676C5, D93F6DAB94B428462674AF78A639ED50F708BD1F89A588525EB8372E27081238 ] ClickToRunSvc C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
10:22:56.0198 0x07c4 ClickToRunSvc - ok
10:22:56.0229 0x07c4 CLMirrorDriver - ok
10:22:56.0291 0x07c4 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:22:56.0323 0x07c4 clr_optimization_v2.0.50727_32 - ok
10:22:56.0385 0x07c4 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:22:56.0416 0x07c4 clr_optimization_v2.0.50727_64 - ok
10:22:56.0494 0x07c4 [ 10197E3B5361932659D0CEA4DC3C49C2, 4D137BA8A71DA1707D01F5AA713C079DA08A7AA9BDD01815D6ACB1D0107899BF ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:22:56.0619 0x07c4 clr_optimization_v4.0.30319_32 - ok
10:22:56.0635 0x07c4 [ C152CF53E13F36547BCB4E775FD7C20F, 71B7A8D73988199104D5D19B38A2416404446C02C61A5CDE40F34072DDFD131B ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:22:56.0713 0x07c4 clr_optimization_v4.0.30319_64 - ok
10:22:56.0728 0x07c4 clwvd9 - ok
10:22:56.0759 0x07c4 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
10:22:56.0791 0x07c4 CmBatt - ok
10:22:56.0806 0x07c4 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:22:56.0822 0x07c4 cmdide - ok
10:22:56.0900 0x07c4 [ 9DE8D00626F01DBD1879A6655D7A752D, 7624FEAEC4FBB2FAC484DA295FB748136BB331032FC58B426A45802F55F5C24D ] CNG C:\Windows\system32\Drivers\cng.sys
10:22:56.0931 0x07c4 CNG - ok
10:22:56.0978 0x07c4 [ 9E10F4E7F4C7FF1EA3E94F9892BD067F, FF4B747ADE6AF37FBCD4E6DFFCDF08AD5556FEFE1E714FB864BC8428478EE5CE ] COMMONFX C:\Windows\system32\drivers\COMMONFX.SYS
10:22:56.0978 0x07c4 COMMONFX - ok
10:22:57.0009 0x07c4 [ 9E10F4E7F4C7FF1EA3E94F9892BD067F, FF4B747ADE6AF37FBCD4E6DFFCDF08AD5556FEFE1E714FB864BC8428478EE5CE ] COMMONFX.SYS C:\Windows\System32\drivers\COMMONFX.SYS
10:22:57.0009 0x07c4 COMMONFX.SYS - ok
10:22:57.0056 0x07c4 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
10:22:57.0056 0x07c4 Compbatt - ok
10:22:57.0087 0x07c4 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
10:22:57.0118 0x07c4 CompositeBus - ok
10:22:57.0134 0x07c4 COMSysApp - ok
10:22:57.0165 0x07c4 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
10:22:57.0165 0x07c4 crcdisk - ok
10:22:57.0212 0x07c4 [ 2F10C8ECB51E41C9993B90204F3A5F5E, FF50F28544FDAB545971FFA7113BD7967CCAE6CD83858ECF7346C6A0DDE9672A ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:22:57.0259 0x07c4 CryptSvc - ok
10:22:57.0290 0x07c4 [ 80BC9D418607974E4940EBC42F69BC8D, 83F1C21DCBAC4CCD970DD820C169C31DE97BD8A42D3384454B0D9C9A6053A297 ] CSC C:\Windows\system32\drivers\csc.sys
10:22:57.0321 0x07c4 CSC - ok
10:22:57.0383 0x07c4 [ C593B028F399934C0A739AD7438B21BF, 8A288BD3F333ABBA9D96BD88E62B0BA782C7DF6027AC65DC2375800035655F9F ] CscService C:\Windows\System32\cscsvc.dll
10:22:57.0446 0x07c4 CscService - ok
10:22:57.0477 0x07c4 [ F3D40F24BE053348B6E71ACE28FBA457, E59DE0507FA88EE3E28220EBABE925B16308835A9CFD4CFB98603681B6C5ADA5 ] CT20XUT C:\Windows\system32\drivers\CT20XUT.SYS
10:22:57.0493 0x07c4 CT20XUT - ok
10:22:57.0524 0x07c4 [ F3D40F24BE053348B6E71ACE28FBA457, E59DE0507FA88EE3E28220EBABE925B16308835A9CFD4CFB98603681B6C5ADA5 ] CT20XUT.SYS C:\Windows\System32\drivers\CT20XUT.SYS
10:22:57.0539 0x07c4 CT20XUT.SYS - ok
10:22:57.0602 0x07c4 [ C6575499CB77E3482D99AA610B7C354A, 3DF6E48196A1B2310FEB9E147F45FF71D56712037D0CB013E2856F0C05433AF5 ] ctac32k C:\Windows\system32\drivers\ctac32k.sys
10:22:57.0617 0x07c4 ctac32k - ok
10:22:57.0664 0x07c4 [ 834F2E7BFDEE4F0E0301F1E16E141983, 9672E8CB076D6883EAF923DC4EDC34AA3429A920B696B7B7CB51AF8CB113243A ] ctaud2k C:\Windows\system32\drivers\ctaud2k.sys
10:22:57.0680 0x07c4 ctaud2k - ok
10:22:57.0727 0x07c4 [ 15613C3987E336F0E29639723EDA1CE6, C2BDFF4BB3295DD2766F5073815C564B5DD4098F2084C72AC723FA05BCFA3746 ] CTAUDFX C:\Windows\system32\drivers\CTAUDFX.SYS
10:22:57.0742 0x07c4 CTAUDFX - ok
10:22:57.0789 0x07c4 [ 15613C3987E336F0E29639723EDA1CE6, C2BDFF4BB3295DD2766F5073815C564B5DD4098F2084C72AC723FA05BCFA3746 ] CTAUDFX.SYS C:\Windows\System32\drivers\CTAUDFX.SYS
10:22:57.0805 0x07c4 CTAUDFX.SYS - ok
10:22:57.0851 0x07c4 [ 3284CAB1DAD1F4A5FF84706EDE8C0AD0, BE729246DBEB345EB2B657DEF50E54E92256E32FD878848620ACB91EBAE088BC ] CTEAPSFX C:\Windows\system32\drivers\CTEAPSFX.SYS
10:22:57.0851 0x07c4 CTEAPSFX - ok
10:22:57.0867 0x07c4 [ 3284CAB1DAD1F4A5FF84706EDE8C0AD0, BE729246DBEB345EB2B657DEF50E54E92256E32FD878848620ACB91EBAE088BC ] CTEAPSFX.SYS C:\Windows\System32\drivers\CTEAPSFX.SYS
10:22:57.0883 0x07c4 CTEAPSFX.SYS - ok
10:22:57.0898 0x07c4 [ A8C84E9E9443D73195E869B4C9B74BAD, 8A77C553ED2BCEF9A87D314A8A1502C4A8EFA3412E8C9F133D2AF3F63FA94649 ] CTEDSPFX C:\Windows\system32\drivers\CTEDSPFX.SYS
10:22:57.0914 0x07c4 CTEDSPFX - ok
10:22:57.0929 0x07c4 [ A8C84E9E9443D73195E869B4C9B74BAD, 8A77C553ED2BCEF9A87D314A8A1502C4A8EFA3412E8C9F133D2AF3F63FA94649 ] CTEDSPFX.SYS C:\Windows\System32\drivers\CTEDSPFX.SYS
10:22:57.0945 0x07c4 CTEDSPFX.SYS - ok
10:22:57.0961 0x07c4 [ 5B354CA888A4EB1BA1A36D0D6589CCC7, 2154CB224E1D3B6718239345BC9DEF85685317612B16CC305792B76D520AEEB9 ] CTEDSPIO C:\Windows\system32\drivers\CTEDSPIO.SYS
10:22:57.0976 0x07c4 CTEDSPIO - ok
10:22:58.0007 0x07c4 [ 5B354CA888A4EB1BA1A36D0D6589CCC7, 2154CB224E1D3B6718239345BC9DEF85685317612B16CC305792B76D520AEEB9 ] CTEDSPIO.SYS C:\Windows\System32\drivers\CTEDSPIO.SYS
10:22:58.0023 0x07c4 CTEDSPIO.SYS - ok
10:22:58.0039 0x07c4 [ A0B1D9E47C33A6ADC1B48D668AAD12E1, AFB0D0A9C38060E3B33EDAD67F985E97E8A0AB182F119AA3BAA017E471A0091E ] CTEDSPSY C:\Windows\system32\drivers\CTEDSPSY.SYS
10:22:58.0054 0x07c4 CTEDSPSY - ok
10:22:58.0085 0x07c4 [ A0B1D9E47C33A6ADC1B48D668AAD12E1, AFB0D0A9C38060E3B33EDAD67F985E97E8A0AB182F119AA3BAA017E471A0091E ] CTEDSPSY.SYS C:\Windows\System32\drivers\CTEDSPSY.SYS
10:22:58.0085 0x07c4 CTEDSPSY.SYS - ok
10:22:58.0117 0x07c4 [ 36975325697A9100F105EFABC923D5B5, F232961CCC880EE4B72FBC311A56BA8776CB6505015B808133A5F154D61A2B66 ] CTERFXFX C:\Windows\system32\drivers\CTERFXFX.SYS
10:22:58.0117 0x07c4 CTERFXFX - ok
10:22:58.0132 0x07c4 [ 36975325697A9100F105EFABC923D5B5, F232961CCC880EE4B72FBC311A56BA8776CB6505015B808133A5F154D61A2B66 ] CTERFXFX.SYS C:\Windows\System32\drivers\CTERFXFX.SYS
10:22:58.0132 0x07c4 CTERFXFX.SYS - ok
10:22:58.0195 0x07c4 [ 5C7B8C1559FB630E8D17DDFDDCFE3DB9, EFE71134DCAA4A35B01DAE41F1B7C165193AC111B800E4A2311FDBBCAF7BB8B0 ] CTEXFIFX C:\Windows\system32\drivers\CTEXFIFX.SYS
10:22:58.0257 0x07c4 CTEXFIFX - ok
10:22:58.0304 0x07c4 [ 5C7B8C1559FB630E8D17DDFDDCFE3DB9, EFE71134DCAA4A35B01DAE41F1B7C165193AC111B800E4A2311FDBBCAF7BB8B0 ] CTEXFIFX.SYS C:\Windows\System32\drivers\CTEXFIFX.SYS
10:22:58.0351 0x07c4 CTEXFIFX.SYS - ok
10:22:58.0382 0x07c4 [ 92D7BE76504C0A459DA5AE9F983A8918, 1EDBD19A032A76C4B83F58ED28D38932D0981DE3B829376F7A74D25BE972A996 ] CTHWIUT C:\Windows\system32\drivers\CTHWIUT.SYS
10:22:58.0397 0x07c4 CTHWIUT - ok
10:22:58.0397 0x07c4 [ 92D7BE76504C0A459DA5AE9F983A8918, 1EDBD19A032A76C4B83F58ED28D38932D0981DE3B829376F7A74D25BE972A996 ] CTHWIUT.SYS C:\Windows\System32\drivers\CTHWIUT.SYS
10:22:58.0413 0x07c4 CTHWIUT.SYS - ok
10:22:58.0444 0x07c4 [ 767CF74A38F30097688D5DD8ED65EA5C, F4A97A5AC4E574EEA0BE13ADF441244E0C42D83187E100210C95749E1CBC6372 ] ctprxy2k C:\Windows\system32\drivers\ctprxy2k.sys
10:22:58.0460 0x07c4 ctprxy2k - ok
10:22:58.0491 0x07c4 [ FED737BC339D7A92B4025A7609B55EA9, 3A85FFAECA905A052061E750D1D63B35EAFC7996E2A925EE7405AEED3E4CF4D4 ] CTSBLFX C:\Windows\system32\drivers\CTSBLFX.SYS
10:22:58.0507 0x07c4 CTSBLFX - ok
10:22:58.0538 0x07c4 [ FED737BC339D7A92B4025A7609B55EA9, 3A85FFAECA905A052061E750D1D63B35EAFC7996E2A925EE7405AEED3E4CF4D4 ] CTSBLFX.SYS C:\Windows\System32\drivers\CTSBLFX.SYS
10:22:58.0553 0x07c4 CTSBLFX.SYS - ok
10:22:58.0600 0x07c4 [ D17A852D6E00A112EC0196B8CCB17713, 700B3A83A0C4460DFE238AC2BFE52A5E809AC583EDC85B923340544211779BC0 ] ctsfm2k C:\Windows\system32\drivers\ctsfm2k.sys
10:22:58.0616 0x07c4 ctsfm2k - ok
10:22:58.0678 0x07c4 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
10:22:58.0694 0x07c4 dbupdate - ok
10:22:58.0709 0x07c4 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
10:22:58.0725 0x07c4 dbupdatem - ok
10:22:58.0756 0x07c4 [ 15EE912B1056E8A498CB4B2FD4D011FD, 7E7771826F95EE8C081B0F6348EF76847C2093427DD57BA37419B629C2C0CBE4 ] DbxSvc C:\Windows\system32\DbxSvc.exe
10:22:58.0772 0x07c4 DbxSvc - ok
10:22:58.0819 0x07c4 [ 5F3EB8162C7289C576BA23730193FB6A, 2D628832AF0BA61B1EB70A5070C71FAE8ECE0F6E136399B94BB38045CD040B3E ] DcomLaunch C:\Windows\system32\rpcss.dll
10:22:58.0881 0x07c4 DcomLaunch - ok
10:22:58.0912 0x07c4 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
10:22:58.0959 0x07c4 defragsvc - ok
10:22:58.0990 0x07c4 [ 63705A08981F7EDD376241D6E0A9C2AC, 6965D64D164A4DBBC328D2611EE38A71D3FA66A6438AFC6E4830DC37ABC28729 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:22:59.0053 0x07c4 DfsC - ok
10:22:59.0099 0x07c4 [ 92286CCC501A4F588B2FAB8D1B6A236C, 9B96B92D9874DC8C24BD2B9DBB1C179175B36892B98C6638DCA0D5FA48D55A80 ] Dhcp C:\Windows\system32\dhcpcore.dll
10:22:59.0146 0x07c4 Dhcp - ok10:22:59.0255 0x07c4 [ 7DF76667FA6276EE94F3BEAA8105E1B3, 199934460BED7F8A655EF70677CFED68F5F8091B22F834216B0B2B41B876721D ] DiagTrack C:\Windows\system32\diagtrack.dll
10:22:59.0458 0x07c4 DiagTrack - ok
10:22:59.0505 0x07c4 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
10:22:59.0536 0x07c4 discache - ok
10:22:59.0567 0x07c4 [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk C:\Windows\system32\drivers\disk.sys
10:22:59.0583 0x07c4 Disk - ok
10:22:59.0630 0x07c4 [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
10:22:59.0661 0x07c4 dmvsc - ok
10:22:59.0708 0x07c4 [ EEEFC204476D5C44E4F6802F55697179, 0B67D193FF6389BE207F584F4D0C4C0B8BC9F4206851991AD270D894B95E314E ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:22:59.0755 0x07c4 Dnscache - ok
10:22:59.0786 0x07c4 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
10:22:59.0848 0x07c4 dot3svc - ok
10:22:59.0879 0x07c4 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
10:22:59.0942 0x07c4 DPS - ok
10:22:59.0973 0x07c4 [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:22:59.0989 0x07c4 drmkaud - ok
10:23:00.0035 0x07c4 [ 65F3E2BDB187EF73CE65B92C770594DD, 13D6FB4D2284EC6B138740AAEF4C7F6AC82E78D59891F4E51C8656F05150DB8E ] DroidCam C:\Windows\system32\DRIVERS\droidcam.sys
10:23:00.0051 0x07c4 DroidCam - ok
10:23:00.0098 0x07c4 [ DEA6132C81EE004EECB4F23889D9295F, 7CF48EA26FF350995F54FED592F94DB634CE3C96C7F9FD76D67993CE8F0FAD87 ] DroidCamVideo C:\Windows\system32\DRIVERS\droidcamvideo.sys
10:23:00.0098 0x07c4 DroidCamVideo - ok
10:23:00.0176 0x07c4 [ E5D015CBF87B514F822D2E782B3D883D, 63215A6036CF1AA8487449E6BE9EE2DB5252ABCFF5C7E61CE9B905B5C92340AD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:23:00.0223 0x07c4 DXGKrnl - ok
10:23:00.0269 0x07c4 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
10:23:00.0301 0x07c4 EapHost - ok
10:23:00.0441 0x07c4 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
10:23:00.0581 0x07c4 ebdrv - ok
10:23:00.0628 0x07c4 [ 3E71928C087FBB3B23A4D816C843B538, DCF9D744FE1B1CF47EC2870B44C852846C221D604B50DE8ADF79F60629A92A55 ] EFS C:\Windows\System32\lsass.exe
10:23:00.0644 0x07c4 EFS - ok
10:23:00.0722 0x07c4 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:23:00.0769 0x07c4 ehRecvr - ok
10:23:00.0784 0x07c4 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
10:23:00.0815 0x07c4 ehSched - ok
10:23:00.0878 0x07c4 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
10:23:00.0909 0x07c4 elxstor - ok
10:23:00.0940 0x07c4 [ 2F20C75D94C3827192F808FCF1FF79EC, 4D4ED0AA1B7FC6733DE74FE0C681F951D8458CFF369A9908FB52FB6BD4912058 ] emupia C:\Windows\system32\drivers\emupia2k.sys
10:23:00.0956 0x07c4 emupia - ok
10:23:00.0987 0x07c4 [ 9002EED07FD7FCFF6B8C5C06B454AC19, 0FCEF7D930316FF267841009DF83F29A7D9CD6ED710128F493EC15EC99D9ACD6 ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:23:01.0018 0x07c4 ErrDev - ok
10:23:01.0081 0x07c4 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
10:23:01.0127 0x07c4 EventSystem - ok
10:23:01.0174 0x07c4 [ 6588D3501EE7692D3A46899ACF2E6EF6, A3B0A7C17319125424A618C3A1E3CB8D2A55A7C4B17B66E0EFC17701B5D7945B ] exetools C:\Windows\system32\DRIVERS\exetools.sys
10:23:01.0190 0x07c4 exetools - detected UnsignedFile.Multi.Generic ( 1 )
10:23:01.0361 0x07c4 exetools ( UnsignedFile.Multi.Generic ) - warning
10:23:01.0361 0x07c4 Force sending object to P2P due to detect: exetools
10:23:01.0517 0x07c4 Object send P2P result: true
10:23:01.0642 0x07c4 [ 173F4A590EAD80CAAAD4DB346DF8DC89, 907C894E5141F7C461B5A86147CEAD9D655DCACCEE7CB698FB0E653C985B2F78 ] exfat C:\Windows\system32\drivers\exfat.sys
10:23:01.0689 0x07c4 exfat - ok
10:23:01.0720 0x07c4 [ 87E0E4B0B83A77017D5A91A72C10986D, 7112DD76A8EE96E50B48DF23211E229EA30E550358105F3554ECF46666939B16 ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:23:01.0767 0x07c4 fastfat - ok
10:23:01.0814 0x07c4 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
10:23:01.0861 0x07c4 Fax - ok
10:23:01.0892 0x07c4 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
10:23:01.0923 0x07c4 fdc - ok
10:23:01.0970 0x07c4 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
10:23:02.0001 0x07c4 fdPHost - ok
10:23:02.0001 0x07c4 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
10:23:02.0048 0x07c4 FDResPub - ok
10:23:02.0079 0x07c4 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:23:02.0095 0x07c4 FileInfo - ok
10:23:02.0110 0x07c4 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:23:02.0141 0x07c4 Filetrace - ok
10:23:02.0173 0x07c4 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
10:23:02.0204 0x07c4 flpydisk - ok
10:23:02.0251 0x07c4 [ DC591A7A196E99EFB5A48D708CB989FD, 1C34C0A4AEEE977D290EF5E79C3B13B1F1F18E051F49815013D360F62458D82A ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:23:02.0266 0x07c4 FltMgr - ok
10:23:02.0329 0x07c4 [ 17EC6A8CB448437B29721BDB6B585661, 0119A7A0D9179E7CD6915A1514BE9974C4A08A5CB23C3FB7DBD691CD60B2E3DA ] FontCache C:\Windows\system32\FntCache.dll
10:23:02.0407 0x07c4 FontCache - ok
10:23:02.0469 0x07c4 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:23:02.0485 0x07c4 FontCache3.0.0.0 - ok
10:23:02.0516 0x07c4 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:23:02.0531 0x07c4 FsDepends - ok
10:23:02.0563 0x07c4 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:23:02.0578 0x07c4 Fs_Rec - ok
10:23:02.0625 0x07c4 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:23:02.0656 0x07c4 fvevol - ok
10:23:02.0672 0x07c4 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
10:23:02.0687 0x07c4 gagp30kx - ok
10:23:02.0906 0x07c4 [ 26F6932C680BA9D4C05C0E182F422C44, A7E8863202B322667BF00A4F4FFD7C6C009240CD637E4CDBFE4562551A1C808B ] GoogleChromeElevationService C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.150\elevation_service.exe
10:23:02.0984 0x07c4 GoogleChromeElevationService - ok
10:23:03.0046 0x07c4 [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc C:\Windows\System32\gpsvc.dll
10:23:03.0109 0x07c4 gpsvc - ok
10:23:03.0202 0x07c4 [ 79B804E8A81BFD9C6A3749B4F3EE86E2, BFBDD26604FC653E01976EF23C92CF7ADB59F9E80F47350F1A72B7876BBED60A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:23:03.0218 0x07c4 gupdate - ok
10:23:03.0265 0x07c4 [ 79B804E8A81BFD9C6A3749B4F3EE86E2, BFBDD26604FC653E01976EF23C92CF7ADB59F9E80F47350F1A72B7876BBED60A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:23:03.0280 0x07c4 gupdatem - ok
10:23:03.0343 0x07c4 [ DDD48753EA2037A8F64ED377616E6D38, B506471464F7448DA56BB4DE6F074DB6C063358479F632E0DC7F81C68A5D3F36 ] ha10kx2k C:\Windows\system32\drivers\ha10kx2k.sys
10:23:03.0374 0x07c4 ha10kx2k - ok
10:23:03.0421 0x07c4 [ 3921C845A24C62CA1F44EEF4826263E9, 4CB2CAB0B96F097B3BFC28EA12AA7C28131AEC114BF0920BC80789CDD6BF4019 ] hardlock C:\Windows\system32\drivers\hardlock.sys
10:23:03.0436 0x07c4 hardlock - ok
10:23:03.0436 0x07c4 hasplms - ok
10:23:03.0467 0x07c4 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:23:03.0483 0x07c4 hcw85cir - ok
10:23:03.0545 0x07c4 [ 9AF4A0ACD548D31C46EDA7DD7EFE6139, A29FF1DEEADA0E1A958E9453A41D3C05441D3E70ADE6D9BAC28C7CB83735DAAA ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:23:03.0577 0x07c4 HdAudAddService - ok
10:23:03.0592 0x07c4 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
10:23:03.0623 0x07c4 HDAudBus - ok
10:23:03.0655 0x07c4 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
10:23:03.0670 0x07c4 HidBatt - ok
10:23:03.0717 0x07c4 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
10:23:03.0733 0x07c4 HidBth - ok
10:23:03.0764 0x07c4 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
10:23:03.0795 0x07c4 HidIr - ok
10:23:03.0826 0x07c4 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
10:23:03.0857 0x07c4 hidserv - ok
10:23:03.0920 0x07c4 [ F3169EF73866BA0F98B505E5B5D8D811, C4F86BF848AF239D930D0A287B5099825DE89002A05E95CB60A7E7D8D4B0ED9E ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:23:03.0951 0x07c4 HidUsb - ok
10:23:03.0982 0x07c4 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:23:04.0013 0x07c4 hkmsvc - ok
10:23:04.0045 0x07c4 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:23:04.0076 0x07c4 HomeGroupListener - ok
10:23:04.0123 0x07c4 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:23:04.0138 0x07c4 HomeGroupProvider - ok
10:23:04.0185 0x07c4 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
10:23:04.0185 0x07c4 HpSAMD - ok
10:23:04.0247 0x07c4 [ 93C367EA831FB39DEE3BA96539A187FB, 8B912152CA8B89B4429278F93163481BAA07E2D940EE61CE1B7AD178AB13E105 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:23:04.0325 0x07c4 HTTP - ok10:23:04.0341 0x07c4 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:23:04.0341 0x07c4 hwpolicy - ok
10:23:04.0388 0x07c4 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
10:23:04.0403 0x07c4 i8042prt - ok
10:23:04.0466 0x07c4 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:23:04.0481 0x07c4 iaStorV - ok
10:23:04.0544 0x07c4 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:23:04.0591 0x07c4 idsvc - ok
10:23:04.0606 0x07c4 IEEtwCollectorService - ok
10:23:04.0653 0x07c4 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
10:23:04.0653 0x07c4 iirsp - ok
10:23:04.0715 0x07c4 [ 25AF7D5C819F19D7C97F4A9607F2609A, 70142B97F1087E20758AFECF5A7AB2EC1FDBBF68019A3BEC6C49F168650FEFC8 ] IKEEXT C:\Windows\System32\ikeext.dll
10:23:04.0793 0x07c4 IKEEXT - ok
10:23:04.0825 0x07c4 IntcAzAudAddService - ok
10:23:04.0856 0x07c4 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
10:23:04.0856 0x07c4 intelide - ok
10:23:04.0918 0x07c4 [ 6518C5A7088D16E0B258C976E9588D9F, 4C0139FFB81E495AC6384F707E901426A3ACECFBCA040AE0DC0074A951CA75E6 ] intelppm C:\Windows\system32\drivers\intelppm.sys
10:23:04.0949 0x07c4 intelppm - ok
10:23:04.0981 0x07c4 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:23:05.0012 0x07c4 IPBusEnum - ok
10:23:05.0059 0x07c4 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:23:05.0074 0x07c4 IpFilterDriver - ok
10:23:05.0137 0x07c4 [ 5B364681859A10CA529B3009FEA461AF, 669CF62A9C27391559F3AECC1640C8ECADB96312B1E3ED8A326AA5516DA905AC ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:23:05.0199 0x07c4 iphlpsvc - ok
10:23:05.0230 0x07c4 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
10:23:05.0230 0x07c4 IPMIDRV - ok
10:23:05.0246 0x07c4 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:23:05.0293 0x07c4 IPNAT - ok
10:23:05.0339 0x07c4 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:23:05.0355 0x07c4 IRENUM - ok
10:23:05.0386 0x07c4 [ 7E1DBF664ED3F203B1D3770E8586589D, 94B880B2B76C42B13F074F099BCFFD0FB41FF5F5A5C1790A2602066A25612956 ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:23:05.0402 0x07c4 isapnp - ok
10:23:05.0433 0x07c4 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
10:23:05.0480 0x07c4 iScsiPrt - ok
10:23:05.0495 0x07c4 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:23:05.0495 0x07c4 kbdclass - ok
10:23:05.0542 0x07c4 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
10:23:05.0558 0x07c4 kbdhid - ok
10:23:05.0589 0x07c4 [ 3E71928C087FBB3B23A4D816C843B538, DCF9D744FE1B1CF47EC2870B44C852846C221D604B50DE8ADF79F60629A92A55 ] KeyIso C:\Windows\system32\lsass.exe
10:23:05.0589 0x07c4 KeyIso - ok
10:23:05.0636 0x07c4 [ 7EE31F75C06112AAC24CFA3421E7A2C0, AEEAB4B97BA4B64CE8ECB081E191C0B480A6F73C3B203D40235D89802FD5BD35 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:23:05.0651 0x07c4 KSecDD - ok
10:23:05.0667 0x07c4 [ 2218BEFC4EFE4BE5797BC62AC3B2D64A, 643B108A7356A54C34A42B43D994AEEC02D5E66AA87BC97B561975E72F202AD7 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:23:05.0683 0x07c4 KSecPkg - ok
10:23:05.0714 0x07c4 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:23:05.0761 0x07c4 ksthunk - ok
10:23:05.0807 0x07c4 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
10:23:05.0854 0x07c4 KtmRm - ok
10:23:05.0901 0x07c4 [ CF4EE0CB960306B63FE21C73E9B2E19C, 26BCDC59E04CCAD7647D15C9546FF2FF47C2B1371E719DBDCEC45AA3738F273C ] LanmanServer C:\Windows\system32\srvsvc.dll
10:23:05.0963 0x07c4 LanmanServer - ok
10:23:05.0995 0x07c4 [ 01C95A8CAE16CCF1EA1181395C872B9F, 0BB846AFC7335BB0CD52735AE32E0BCD5075865900C356493DC159795E8C8181 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:23:06.0041 0x07c4 LanmanWorkstation - ok
10:23:06.0088 0x07c4 [ 8B125674D81F0A307F1FD8D5C4C8DE4D, AB029B7E07ED4CD1805EC4F8E2E86C7C156997EE1CF90A95415F192E490572EC ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
10:23:06.0104 0x07c4 LHidFilt - ok
10:23:06.0151 0x07c4 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:23:06.0197 0x07c4 lltdio - ok
10:23:06.0229 0x07c4 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:23:06.0291 0x07c4 lltdsvc - ok
10:23:06.0307 0x07c4 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:23:06.0353 0x07c4 lmhosts - ok
10:23:06.0385 0x07c4 [ 148E1E28CB6EEBEC7B7694F63C0A9933, 90A9E93C9EF03BDE409335F090FAA79F6255CD5754E3F8129F638831AD5709D0 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
10:23:06.0385 0x07c4 LMouFilt - ok
10:23:06.0447 0x07c4 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
10:23:06.0447 0x07c4 LSI_FC - ok
10:23:06.0463 0x07c4 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
10:23:06.0478 0x07c4 LSI_SAS - ok
10:23:06.0494 0x07c4 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
10:23:06.0494 0x07c4 LSI_SAS2 - ok
10:23:06.0509 0x07c4 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
10:23:06.0525 0x07c4 LSI_SCSI - ok
10:23:06.0556 0x07c4 [ 33F4F8FA5A6978602AF6CA8F2B6C3F10, EDD5D993283F3FF2F8E09751815B992E800BDBB147385E303DEC26E120410C56 ] luafv C:\Windows\system32\drivers\luafv.sys
10:23:06.0603 0x07c4 luafv - ok
10:23:06.0650 0x07c4 [ 95EB02FD1E681FF04EE726F487E5BED0, F7823F85523B031763EB94128F2FD78681FF17DDE3559AA12842F6D1B388D497 ] LUsbFilt C:\Windows\system32\Drivers\LUsbFilt.Sys
10:23:06.0665 0x07c4 LUsbFilt - ok
10:23:06.0697 0x07c4 [ 29151389B7E4134C642ABB64DB02D63F, C0B14932004F79E823CBAC55141CB9A4930A0D99C8F81C56D316ECCE183D8D52 ] MBAMChameleon C:\Windows\System32\Drivers\MbamChameleon.sys
10:23:06.0712 0x07c4 MBAMChameleon - ok
10:23:07.0040 0x07c4 [ 9A463A0386D75F5EE3D496966FA5E466, 340E72FF6E0AD4D48749EED73452EBB5A6B7679BFB98FBBEDF8C4C6A2B3D118C ] MBAMService C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
10:23:07.0211 0x07c4 MBAMService - ok
10:23:07.0274 0x07c4 [ 0B17A8F4956ABD5FA1A0851B59FF960E, 1B62082ACA96EF78A61AFDB33EF77260292C5D08E5E35B56F7F8F0A3A837ED9B ] MBAMSwissArmy C:\Windows\System32\Drivers\mbamswissarmy.sys
10:23:07.0289 0x07c4 MBAMSwissArmy - ok
10:23:07.0336 0x07c4 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:23:07.0336 0x07c4 Mcx2Svc - ok
10:23:07.0383 0x07c4 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
10:23:07.0399 0x07c4 megasas - ok
10:23:07.0414 0x07c4 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
10:23:07.0445 0x07c4 MegaSR - ok
10:23:07.0477 0x07c4 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
10:23:07.0523 0x07c4 MMCSS - ok
10:23:07.0539 0x07c4 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
10:23:07.0570 0x07c4 Modem - ok
10:23:07.0617 0x07c4 [ 0E8EBD8E54DB14F14412B90AD4B099BF, 5D6513AFB31B0907D84C79869660C578203281ACD221B970B69E16295F26D749 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:23:07.0648 0x07c4 monitor - ok
10:23:07.0679 0x07c4 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:23:07.0695 0x07c4 mouclass - ok
10:23:07.0742 0x07c4 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:23:07.0757 0x07c4 mouhid - ok
10:23:07.0789 0x07c4 [ D250A7B69B0BDC151F5F7B9C9FC78074, 6B6C8205A88FC1E4BB2669FA1433EC9B0CD23F2CC818E1F64FDC9802E5744579 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:23:07.0804 0x07c4 mountmgr - ok
10:23:07.0820 0x07c4 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
10:23:07.0835 0x07c4 mpio - ok
10:23:07.0867 0x07c4 [ 3F829492638A86A3C4E0BB06778F0C23, A5B5FBE06E407C892E4668D53CC3F49BC6C7ACA12ED7AFB69FAC1C133003A890 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:23:07.0898 0x07c4 mpsdrv - ok
10:23:07.0991 0x07c4 [ C7A8706D5536D9BE35396C0116CAA8EE, AFB6B40B5CBA4F54C6AB3F82534CCA9D393C466EC5E3981CEBB33CB111C405D0 ] MpsSvc C:\Windows\system32\mpssvc.dll
10:23:08.0054 0x07c4 MpsSvc - ok
10:23:08.0085 0x07c4 [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:23:08.0116 0x07c4 MRxDAV - ok
10:23:08.0147 0x07c4 [ 2EF08F96630129E503D0A9C13604574F, B0EF46082A9959F0E49CF4308D856F80041B9E81F27AAE4528FE2B19EF3CC4B1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:23:08.0194 0x07c4 mrxsmb - ok
10:23:08.0241 0x07c4 [ DF0E99ABC53DFB2036386F3A90EF97BB, 94E381DDA78134ED142C9F07483B95D1D6E331503B9CD2BE6B110EC467549FBE ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:23:08.0288 0x07c4 mrxsmb10 - ok
10:23:08.0319 0x07c4 [ 3E8048CF0BE9784B65615EBA75C95823, 666595401CC49644C2C0DEFF97CEA799FE1250DC3466CBA34EB7CD8B9469A02F ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:23:08.0335 0x07c4 mrxsmb20 - ok
10:23:08.0381 0x07c4 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
10:23:08.0381 0x07c4 msahci - ok
10:23:08.0428 0x07c4 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:23:08.0444 0x07c4 msdsm - ok
10:23:08.0459 0x07c4 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
10:23:08.0491 0x07c4 MSDTC - ok
10:23:08.0537 0x07c4 [ 45BD105115AF4C040383FEA51F04BD06, 3E0FDFF5FE65053B7DA9630F0244C3E65FEB687C214333456D545EAF0AF1C325 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:23:08.0569 0x07c4 Msfs - ok
10:23:08.0584 0x07c4 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:23:08.0615 0x07c4 mshidkmdf - ok
10:23:08.0647 0x07c4 [ 0F7F6C886C308976DB01EFE81084A77F, FAB0D03DFB66224700423165422D03FF249F998737A942D32C63BDBBF60ABBC2 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:23:08.0662 0x07c4 msisadrv - ok
10:23:08.0693 0x07c4 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:23:08.0740 0x07c4 MSiSCSI - ok
10:23:08.0740 0x07c4 msiserver - ok
10:23:08.0771 0x07c4 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:23:08.0803 0x07c4 MSKSSRV - ok
10:23:08.0818 0x07c4 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:23:08.0849 0x07c4 MSPCLOCK - ok
10:23:08.0881 0x07c4 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:23:08.0912 0x07c4 MSPQM - ok
10:23:08.0959 0x07c4 [ D8085534B90355013A9D84D253DE26EA, 5E54C4B0B6A30EF5A0EF7A0E2AAC219269C824BA735B76C6BA56772B63EF322E ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:23:08.0990 0x07c4 MsRPC - ok
10:23:09.0021 0x07c4 [ A5D45B7B91F95F825EB5ABD3A6B262EF, C27C7E89205255CDE6A785C0141F3533E8572D0AFC4B9F73855565BF9F746E04 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
10:23:09.0037 0x07c4 mssmbios - ok
10:23:09.0083 0x07c4 MSSQLSERVER - ok
10:23:09.0099 0x07c4 [ C06EA83F6FC2959E897C117255B6B1D5, 012C6E5AA61BAAED47CB0E59E2F3E6E87941F555C5581ECAC7DF1051795AF681 ] MSSQLServerADHelper C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe
10:23:09.0115 0x07c4 MSSQLServerADHelper - ok
10:23:09.0146 0x07c4 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys10:23:09.0193 0x07c4 MSTEE - ok
10:23:09.0208 0x07c4 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
10:23:09.0239 0x07c4 MTConfig - ok
10:23:09.0255 0x07c4 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
10:23:09.0271 0x07c4 Mup - ok
10:23:09.0317 0x07c4 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
10:23:09.0380 0x07c4 napagent - ok
10:23:09.0427 0x07c4 [ 9FB2A095B1166CB3C9A06651863B3452, 808105C59C2D28C390FDE0CA48690A5CD052DE3D7F7327864EB45F80187D5BE9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:23:09.0458 0x07c4 NativeWifiP - ok
10:23:09.0536 0x07c4 [ CBE5C2A3353A367734989E335D6AF194, E8927AD1202AC5E523717AC4ADB2345D31A00B304FA56056B27043792237CFEC ] NDIS C:\Windows\system32\drivers\ndis.sys
10:23:09.0583 0x07c4 NDIS - ok
10:23:09.0598 0x07c4 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:23:09.0645 0x07c4 NdisCap - ok
10:23:09.0692 0x07c4 [ E8179074C0166D83BD8366169137669E, 44A3BCA1772F42CF0580C6BB0B48D106C678D0BB471DB6D81BC9C52895C9C16A ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:23:09.0707 0x07c4 NdisTapi - ok
10:23:09.0754 0x07c4 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:23:09.0785 0x07c4 Ndisuio - ok
10:23:09.0801 0x07c4 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:23:09.0848 0x07c4 NdisWan - ok
10:23:09.0879 0x07c4 [ D0FE24076ED3BA7B54D6E9819F8215A8, 42962676E322DCD9112740E6C43C8E49B8F9D998D7733645947771598FD3DD22 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:23:09.0895 0x07c4 NDProxy - ok
10:23:09.0941 0x07c4 [ 2E19EB10185992AB08BC3688AACA4CE2, D9E3A5CFE8887B7F66239000116723FAA119107870A6FB65FD6F108CE5C9D9EB ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:23:09.0973 0x07c4 NetBIOS - ok
10:23:10.0019 0x07c4 [ 0805034EA6F5273D4CB130D726AA5450, 3662B56226CF79A19174F3644D1902A4EE90CCBB86890B902DC387F3DFB492E7 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:23:10.0051 0x07c4 NetBT - ok
10:23:10.0082 0x07c4 [ 3E71928C087FBB3B23A4D816C843B538, DCF9D744FE1B1CF47EC2870B44C852846C221D604B50DE8ADF79F60629A92A55 ] Netlogon C:\Windows\system32\lsass.exe
10:23:10.0097 0x07c4 Netlogon - ok
10:23:10.0129 0x07c4 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
10:23:10.0175 0x07c4 Netman - ok
10:23:10.0238 0x07c4 [ F2DAF801C4E356E6BE14F5C3A6EED943, BE90128B9FFE79D9E4E9FCE22A289353879991EBDB407A0302D3E87CFA05C312 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:23:10.0285 0x07c4 NetMsmqActivator - ok
10:23:10.0300 0x07c4 [ F2DAF801C4E356E6BE14F5C3A6EED943, BE90128B9FFE79D9E4E9FCE22A289353879991EBDB407A0302D3E87CFA05C312 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:23:10.0316 0x07c4 NetPipeActivator - ok
10:23:10.0347 0x07c4 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
10:23:10.0394 0x07c4 netprofm - ok
10:23:10.0425 0x07c4 [ F2DAF801C4E356E6BE14F5C3A6EED943, BE90128B9FFE79D9E4E9FCE22A289353879991EBDB407A0302D3E87CFA05C312 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:23:10.0425 0x07c4 NetTcpActivator - ok
10:23:10.0441 0x07c4 [ F2DAF801C4E356E6BE14F5C3A6EED943, BE90128B9FFE79D9E4E9FCE22A289353879991EBDB407A0302D3E87CFA05C312 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:23:10.0456 0x07c4 NetTcpPortSharing - ok
10:23:10.0487 0x07c4 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
10:23:10.0503 0x07c4 nfrd960 - ok
10:23:10.0550 0x07c4 [ EEECC4C67144A39BA5B9B6E351932606, C3CB9042D00559893EA37969898840D3D437703E6B13BCF21253AB40F6071446 ] NIWinCDEmu C:\Windows\system32\DRIVERS\NIWinCDEmu.sys
10:23:10.0565 0x07c4 NIWinCDEmu - ok
10:23:10.0612 0x07c4 [ 93DEDBE8E24F31962755E6AA4AC2D7B0, 368B3F48F230514F496CE24339EC8943A87A6BB9815912AE192B73837AB3E3B7 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:23:10.0643 0x07c4 NlaSvc - ok
10:23:10.0690 0x07c4 [ F659AF9BC6E7555D89E39C5D0D8E236C, 92505AA42A27A1CA699E0FE6D1DE5503EBE043A923F6FCF0F7F77C3B909EE6BA ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:23:10.0706 0x07c4 Npfs - ok
10:23:10.0737 0x07c4 [ 668B9EFF5CCA4542F435D2CD9CE3C778, 7409EF35D1DC0DE2BAB752694981FFA1F1855C7F11310366B80BD1EC3513262E ] nsi C:\Windows\system32\nsisvc.dll
10:23:10.0768 0x07c4 nsi - ok
10:23:10.0784 0x07c4 [ BE313E566EEA2A4B7F9AAC9782A567D4, 377C624737B1A4FBC1DFF988F029B8ED9A368827C33A4FEEBA1B7937A87C2B47 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:23:10.0831 0x07c4 nsiproxy - ok
10:23:10.0924 0x07c4 [ 1D728E2DA93EE1F7766DE97D0BEEFC57, 077C85AF6D788F1323648F5DD8B5873B06CD62B4AC33577453D01B16738BEFDE ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:23:11.0002 0x07c4 Ntfs - ok
10:23:11.0033 0x07c4 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
10:23:11.0065 0x07c4 Null - ok
10:23:11.0174 0x07c4 [ 63965E08F0EF74AE18114F146B3F6612, 0B582B44500B9BC6649A0F95BDF3C04A56004F4623E9892BCAAF185798425105 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
10:23:11.0189 0x07c4 NVHDA - ok
10:23:11.0221 0x07c4 nvlddmkm - ok
10:23:11.0252 0x07c4 [ 8E5EB7480832BBD4555CAB7D7FE1DD63, FC31E7E1B4709374C24E8F245A80CB810AFD7448263ED67875B75199534B9C3B ] NvModuleTracker C:\Windows\system32\DRIVERS\NvModuleTracker.sys
10:23:11.0252 0x07c4 NvModuleTracker - ok
10:23:11.0283 0x07c4 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:23:11.0299 0x07c4 nvraid - ok
10:23:11.0330 0x07c4 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:23:11.0345 0x07c4 nvstor - ok
10:23:11.0392 0x07c4 [ AD226D9879217AFE36EBBE9FA36F6048, A9F15A301414205060CFECD4984632F4993C9548D42405C55573305D9413C96F ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
10:23:11.0408 0x07c4 nvvad_WaveExtensible - ok
10:23:11.0486 0x07c4 [ 8DA6939DF7D55222FC7B97C89487D15E, 69BF7571E15DF3785F421B4FAA25C10FA3278FD983F3EB76A9A294F1A3E3FDA5 ] nvvhci C:\Windows\system32\DRIVERS\nvvhci.sys
10:23:11.0486 0x07c4 nvvhci - ok
10:23:11.0533 0x07c4 [ 6E1B8F7B9A0363AD0B3779BAB2E8E417, 5CDFC63B7A946E040FAA82DFEDE016F8DD228247A8C36813441413DF901E46B0 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:23:11.0548 0x07c4 nv_agp - ok
10:23:11.0579 0x07c4 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
10:23:11.0611 0x07c4 ohci1394 - ok
10:23:11.0704 0x07c4 [ EDA754369622042DEB8C1A9CEDE0244A, FCDF4E0D4C06BD284803B070C1AA45F95316E1B239D063EB2EF352948FF2B224 ] ose64 c:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:23:11.0735 0x07c4 ose64 - ok
10:23:11.0923 0x07c4 [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc c:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:23:12.0141 0x07c4 osppsvc - ok
10:23:12.0188 0x07c4 [ 960C6B84BFBD0839B0F33204CFF5FB56, ED7769C8BEEFC0DE2E301F1AE876D80EA5F7FCB477E1C12C9CEE053199677AFA ] ossrv C:\Windows\system32\drivers\ctoss2k.sys
10:23:12.0203 0x07c4 ossrv - ok
10:23:12.0250 0x07c4 [ 7EA6044AB974F06410A51FCC7856B8BB, EC0C9505B42C123E506A175ECCDD2FB2D84F2DEFDF50624B2F1CC7BDB76AE193 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:23:12.0297 0x07c4 p2pimsvc - ok
10:23:12.0344 0x07c4 [ 79DB2B358BF0B152F15D1C5A525233BD, 374D9E8D7FBBC3EB14BDC651378120FCB075A36404F1E76A3F291F89CD5C3362 ] p2psvc C:\Windows\system32\p2psvc.dll
10:23:12.0391 0x07c4 p2psvc - ok
10:23:12.0422 0x07c4 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
10:23:12.0437 0x07c4 Parport - ok
10:23:12.0484 0x07c4 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:23:12.0484 0x07c4 partmgr - ok
10:23:12.0531 0x07c4 [ 5EF9936FC08352660CFDF17F2BE39BA1, 65D4628478BA3DDB19758B3EBE638B8A083D78CAE3E3550AC5E0129BBE8B6268 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:23:12.0562 0x07c4 PcaSvc - ok
10:23:12.0593 0x07c4 [ A1AD4E64D923498F9D03641E77176F52, 81D661290154EE5FA883F79549B9557D7A42BE85C48487C0E4241E5EEFBCA180 ] pci C:\Windows\system32\drivers\pci.sys
10:23:12.0609 0x07c4 pci - ok
10:23:12.0640 0x07c4 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
10:23:12.0656 0x07c4 pciide - ok
10:23:12.0687 0x07c4 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
10:23:12.0718 0x07c4 pcmcia - ok
10:23:12.0734 0x07c4 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
10:23:12.0749 0x07c4 pcw - ok
10:23:12.0796 0x07c4 [ 70C2C4D9EB212093F3F88F5247AF057E, 3A82D82B4C35EDC86CA326A5D8D03654ED8692400FC78D8129DFEDA8C3B331CB ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:23:12.0859 0x07c4 PEAUTH - ok
10:23:12.0921 0x07c4 [ C59E17D5E30972ECA28A72004795AEA7, 24CE4698F578BB6BE51101BA083C5E4A6A1AA449439C125BA3E5793E54260525 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
10:23:12.0999 0x07c4 PeerDistSvc - ok
10:23:13.0077 0x07c4 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:23:13.0093 0x07c4 PerfHost - ok
10:23:13.0171 0x07c4 [ BC5F8C5C7ACCD0B884FCB8B67616F537, 5C99E9D7E7095CED52B1F5F4A569E54F124602C573DD2B25731E0D57FDA22A27 ] pla C:\Windows\system32\pla.dll
10:23:13.0280 0x07c4 pla - ok
10:23:13.0342 0x07c4 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:23:13.0373 0x07c4 PlugPlay - ok
10:23:13.0405 0x07c4 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:23:13.0420 0x07c4 PNRPAutoReg - ok
10:23:13.0451 0x07c4 [ 7EA6044AB974F06410A51FCC7856B8BB, EC0C9505B42C123E506A175ECCDD2FB2D84F2DEFDF50624B2F1CC7BDB76AE193 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:23:13.0467 0x07c4 PNRPsvc - ok
10:23:13.0514 0x07c4 [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:23:13.0561 0x07c4 PolicyAgent - ok
10:23:13.0592 0x07c4 [ F249779586148090EF90EFC697E4FE97, AD0ECD98307595C3C0D4397A8C87327198F4E7C8003063D36E28023016168CEC ] Power C:\Windows\system32\umpo.dll
10:23:13.0623 0x07c4 Power - ok
10:23:13.0670 0x07c4 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:23:13.0701 0x07c4 PptpMiniport - ok
10:23:13.0748 0x07c4 [ 626DAA3AFB2CD08CD21D9DBC5DD28134, 3BC9FE2577E633FA0040B5B8EBC668F1FB4B990D68ABB24E38D630C234479A4E ] Processor C:\Windows\system32\drivers\processr.sys
10:23:13.0779 0x07c4 Processor - ok
10:23:13.0810 0x07c4 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
10:23:13.0841 0x07c4 ProfSvc - ok
10:23:13.0873 0x07c4 [ 3E71928C087FBB3B23A4D816C843B538, DCF9D744FE1B1CF47EC2870B44C852846C221D604B50DE8ADF79F60629A92A55 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:23:13.0888 0x07c4 ProtectedStorage - ok
10:23:13.0935 0x07c4 [ 4CE827A5433451551E99C2C1D20E4A43, B2E0806BB5C32A9126584941EE92526BFD45BB9EE18D7E598A2FFE7AAB495930 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:23:13.0966 0x07c4 Psched - ok
10:23:14.0091 0x07c4 [ 543A4EF0923BF70D126625B034EF25AF, 9CC82C5221F11850419A796D48D5452B3DEE0C8E8E85A818F4AAA869673F9740 ] PSI_SVC_2 c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
10:23:14.0107 0x07c4 PSI_SVC_2 - ok
10:23:14.0185 0x07c4 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
10:23:14.0247 0x07c4 ql2300 - ok
10:23:14.0263 0x07c4 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
10:23:14.0278 0x07c4 ql40xx - ok
10:23:14.0309 0x07c4 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
10:23:14.0341 0x07c4 QWAVE - ok
10:23:14.0356 0x07c4 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:23:14.0387 0x07c4 QWAVEdrv - ok
10:23:14.0419 0x07c4 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:23:14.0450 0x07c4 RasAcd - ok
10:23:14.0497 0x07c4 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:23:14.0528 0x07c4 RasAgileVpn - ok
10:23:14.0559 0x07c4 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
10:23:14.0590 0x07c4 RasAuto - ok
10:23:14.0637 0x07c4 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:23:14.0668 0x07c4 Rasl2tp - ok
10:23:14.0715 0x07c4 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
10:23:14.0777 0x07c4 RasMan - ok
10:23:14.0809 0x07c4 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:23:14.0855 0x07c4 RasPppoe - ok
10:23:14.0871 0x07c4 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:23:14.0902 0x07c4 RasSstp - ok
10:23:14.0949 0x07c4 [ 6DB20EF6CAD4356B785A061071FA4ECC, FAB7B6A1FEB6C7861D3655058EB55013A255C5FA569ED20F257626A2E5F121CF ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:23:14.0980 0x07c4 rdbss - ok
10:23:15.0011 0x07c4 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
10:23:15.0043 0x07c4 rdpbus - ok
10:23:15.0058 0x07c4 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:23:15.0105 0x07c4 RDPCDD - ok
10:23:15.0136 0x07c4 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
10:23:15.0167 0x07c4 RDPDR - ok
10:23:15.0167 0x07c4 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:23:15.0214 0x07c4 RDPENCDD - ok
10:23:15.0230 0x07c4 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:23:15.0261 0x07c4 RDPREFMP - ok
10:23:15.0292 0x07c4 [ 7A8015F4CB7774537843464B4A108DD1, C25F87DFD020C7AEB47110CE1A2AD8B202D96B2B1535D206BC07943C0E97D4D4 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
10:23:15.0308 0x07c4 RdpVideoMiniport - ok
10:23:15.0355 0x07c4 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:23:15.0386 0x07c4 RDPWD - ok
10:23:15.0448 0x07c4 [ F4287A980C0AA41DE3073F053E5EA73C, 04A386884DE32C6813486FD2D8FD9B9B275758CE5354459D8862A60E7F134833 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:23:15.0464 0x07c4 rdyboost - ok
10:23:15.0511 0x07c4 [ 0301EEE83B03229F555C6F8025FB5540, 3ABBA482E59FF9FC831A0FEA75A8C937BAE5077108A0EB3F89205C72FEDC2CD9 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:23:15.0542 0x07c4 RemoteAccess - ok
10:23:15.0573 0x07c4 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:23:15.0604 0x07c4 RemoteRegistry - ok
10:23:15.0635 0x07c4 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:23:15.0667 0x07c4 RpcEptMapper - ok
10:23:15.0698 0x07c4 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
10:23:15.0729 0x07c4 RpcLocator - ok
10:23:15.0776 0x07c4 [ 5F3EB8162C7289C576BA23730193FB6A, 2D628832AF0BA61B1EB70A5070C71FAE8ECE0F6E136399B94BB38045CD040B3E ] RpcSs C:\Windows\system32\rpcss.dll
10:23:15.0807 0x07c4 RpcSs - ok
10:23:15.0854 0x07c4 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:23:15.0869 0x07c4 rspndr - ok
10:23:15.0947 0x07c4 [ CD560A420015D36CBBCC0CD1D972E298, E776970A00DA0393CC8340E01C1833F3D822CF4C844E8B7F9A314DB69E9A9F8C ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
10:23:15.0979 0x07c4 RTL8167 - ok
10:23:16.0010 0x07c4 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
10:23:16.0041 0x07c4 s3cap - ok
10:23:16.0057 0x07c4 [ 3E71928C087FBB3B23A4D816C843B538, DCF9D744FE1B1CF47EC2870B44C852846C221D604B50DE8ADF79F60629A92A55 ] SamSs C:\Windows\system32\lsass.exe
10:23:16.0072 0x07c4 SamSs - ok
10:23:16.0119 0x07c4 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:23:16.0119 0x07c4 sbp2port - ok
10:23:16.0166 0x07c4 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:23:16.0213 0x07c4 SCardSvr - ok
10:23:16.0244 0x07c4 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:23:16.0259 0x07c4 scfilter - ok
10:23:16.0337 0x07c4 [ F8EA90B3EB37EDD78E58C1AD2160136B, 4C0584083A1036400A1C30EEA47D0AF7C4D2ECF314F81DB1EF8F302B97B83796 ] Schedule C:\Windows\system32\schedsvc.dll
10:23:16.0415 0x07c4 Schedule - ok
10:23:16.0462 0x07c4 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
10:23:16.0478 0x07c4 SCPolicySvc - ok
10:23:16.0525 0x07c4 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:23:16.0571 0x07c4 SDRSVC - ok
10:23:16.0603 0x07c4 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:23:16.0618 0x07c4 secdrv - ok
10:23:16.0649 0x07c4 [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll
10:23:16.0681 0x07c4 seclogon - ok
10:23:16.0696 0x07c4 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
10:23:16.0743 0x07c4 SENS - ok
10:23:16.0759 0x07c4 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:23:16.0790 0x07c4 SensrSvc - ok
10:23:16.0821 0x07c4 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
10:23:16.0837 0x07c4 Serenum - ok
10:23:16.0883 0x07c4 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
10:23:16.0915 0x07c4 Serial - ok
10:23:16.0946 0x07c4 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
10:23:16.0946 0x07c4 sermouse - ok
10:23:16.0993 0x07c4 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
10:23:17.0024 0x07c4 SessionEnv - ok
10:23:17.0039 0x07c4 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
10:23:17.0071 0x07c4 sffdisk - ok
10:23:17.0086 0x07c4 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:23:17.0086 0x07c4 sffp_mmc - ok
10:23:17.0133 0x07c4 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
10:23:17.0164 0x07c4 sffp_sd - ok
10:23:17.0164 0x07c4 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
10:23:17.0180 0x07c4 sfloppy - ok
10:23:17.0211 0x07c4 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:23:17.0273 0x07c4 SharedAccess - ok
10:23:17.0305 0x07c4 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:23:17.0351 0x07c4 ShellHWDetection - ok
10:23:17.0398 0x07c4 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
10:23:17.0398 0x07c4 SiSRaid2 - ok
10:23:17.0414 0x07c4 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
10:23:17.0429 0x07c4 SiSRaid4 - ok
10:23:17.0461 0x07c4 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:23:17.0507 0x07c4 Smb - ok
10:23:17.0539 0x07c4 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:23:17.0570 0x07c4 SNMPTRAP - ok
10:23:17.0601 0x07c4 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
10:23:17.0648 0x07c4 spldr - ok
10:23:17.0695 0x07c4 [ 8003D39B386EDCCFB08DC21AACC0683A, 99D6A4DBE810335A69AE3053DC4B6AAC267639AD7F9C568431FA0714F6E71F30 ] Spooler C:\Windows\System32\spoolsv.exe
10:23:17.0757 0x07c4 Spooler - ok
10:23:17.0897 0x07c4 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
10:23:18.0053 0x07c4 sppsvc - ok
10:23:18.0085 0x07c4 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:23:18.0131 0x07c4 sppuinotify - ok10:23:18.0272 0x07c4 [ B2EC3E1DEAC5F0A764BD3486D213A0AF, 77597D6AF90BF0FD50AF7271C800D84BE69E288760116B7A252FB8B068614A52 ] SQLBrowser C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
10:23:18.0287 0x07c4 SQLBrowser - ok
10:23:18.0350 0x07c4 [ D63FC56C7C3F9B576BC25F617E3F7963, 1F1D024A6A41DD93DE4F09999D90DB5148D87C1C1DDEFFC0407C6E59EB7199D1 ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
10:23:18.0365 0x07c4 SQLWriter - ok
10:23:18.0412 0x07c4 [ AD8E3D8893DC2769F16F3EB8371ABCF5, 5FA8BAC2F4166A24DECD2C286DFFCAA34C879E8A0B8B07035E374BFB4F5C70DB ] srv C:\Windows\system32\DRIVERS\srv.sys
10:23:18.0443 0x07c4 srv - ok
10:23:18.0490 0x07c4 [ 77DCA03FD9FB9B939F9764A0E7A8D365, C026741138F582E6E68DB16E86598E79A27D2C8CA1A87C082D9AB80CC77FCC9B ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:23:18.0537 0x07c4 srv2 - ok
10:23:18.0568 0x07c4 [ 0C7610E300DDA0CB58347F8FF2654A55, 0880D7269209AAEBD8A76BC7CAACAF8A480EF4D657699F2D6FCA2413DB98D07A ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:23:18.0599 0x07c4 srvnet - ok
10:23:18.0631 0x07c4 [ B242E32E9DD37D54061FD96AC97D935E, 76B2F89425EFBC05331829C4F1679C64DC866C474E79FFD100535F87026C2DAD ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:23:18.0677 0x07c4 SSDPSRV - ok
10:23:18.0709 0x07c4 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:23:18.0740 0x07c4 SstpSvc - ok
10:23:18.0771 0x07c4 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
10:23:18.0787 0x07c4 stexstor - ok
10:23:18.0833 0x07c4 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
10:23:18.0896 0x07c4 stisvc - ok
10:23:18.0927 0x07c4 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
10:23:18.0943 0x07c4 storflt - ok
10:23:18.0974 0x07c4 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
10:23:18.0974 0x07c4 storvsc - ok
10:23:19.0021 0x07c4 [ 2888219D7E85BA0635CC98AEA7599CF4, FA8D454AE42AC38B04647B3E46541625A3AB51146EBEC5B1674717E347C03A0D ] swenum C:\Windows\system32\drivers\swenum.sys
10:23:19.0021 0x07c4 swenum - ok
10:23:19.0067 0x07c4 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
10:23:19.0145 0x07c4 swprv - ok
10:23:19.0223 0x07c4 [ 9B2BDD7A8629A9C5A55CD5635DDF136F, 893B19E1A870DCF1EC45544CE901392E724968BB692881ED99A97FCCDFDB13DA ] SydexFDD C:\Windows\SysWOW64\Drivers\sydexfdd.sys
10:23:19.0239 0x07c4 SydexFDD - detected UnsignedFile.Multi.Generic ( 1 )
10:23:19.0333 0x07c4 Detect skipped due to KSN trusted
10:23:19.0333 0x07c4 SydexFDD - ok
10:23:19.0379 0x07c4 [ C3A39C4079305480972D29C44B868C78, 8F1BB75C743256F905EAEDE744B6082C53774C49126875FB4E4FBA30F5478B17 ] Synth3dVsc C:\Windows\system32\drivers\synth3dvsc.sys
10:23:19.0379 0x07c4 Synth3dVsc - ok
10:23:19.0473 0x07c4 [ 15CF7B24AA64FE958CAEA00274838B1C, 820F7CF1CCD036A1871D728C1CC80D9E9BB5E3BD5D9C7BC822B1711D8DB79707 ] SysMain C:\Windows\system32\sysmain.dll
10:23:19.0582 0x07c4 SysMain - ok
10:23:19.0613 0x07c4 [ AD359C53941A6AC57FB935E7E9F1D16E, 6D53065ECE8E928CC045E16B7618D866C121EBA6C6CBDADC97C2B0DC8D8CF9FC ] TabletInputService C:\Windows\System32\TabSvc.dll
10:23:19.0629 0x07c4 TabletInputService - ok
10:23:19.0676 0x07c4 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
10:23:19.0723 0x07c4 TapiSrv - ok
10:23:19.0816 0x07c4 [ 80DA51C2F7DAFB900512F15DB6ADEC5A, 6FA4C00B223DE451D7D2DB283F7B4C0865877E23BF0DEDAD9A5E460168D9B739 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:23:19.0925 0x07c4 Tcpip - ok
10:23:20.0019 0x07c4 [ 80DA51C2F7DAFB900512F15DB6ADEC5A, 6FA4C00B223DE451D7D2DB283F7B4C0865877E23BF0DEDAD9A5E460168D9B739 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:23:20.0081 0x07c4 TCPIP6 - ok
10:23:20.0128 0x07c4 [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:23:20.0144 0x07c4 tcpipreg - ok
10:23:20.0191 0x07c4 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:23:20.0206 0x07c4 TDPIPE - ok
10:23:20.0237 0x07c4 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:23:20.0253 0x07c4 TDTCP - ok
10:23:20.0284 0x07c4 [ 4DD986720F7CB7A8A5D1226793097B9A, 9020375B45E9C966BF44CF425C127D7E0EC82EB99C7047F225C25402FF97743D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:23:20.0315 0x07c4 tdx - ok
10:23:20.0362 0x07c4 [ 2E7A1415FE48EAC714E960CB3D1DD54B, 9DBF881D300267D8654F205C22FB1391DCEA777942D136D69D8F6ACB0F8FC354 ] TermDD C:\Windows\system32\drivers\termdd.sys
10:23:20.0362 0x07c4 TermDD - ok
10:23:20.0409 0x07c4 [ 2B5BDFF688EC9871D7EC5837833374E9, BD6C629FA2938987ABF95B790B20F0B7D4D023D5013E575F343A802D6213074E ] terminpt C:\Windows\system32\drivers\terminpt.sys
10:23:20.0425 0x07c4 terminpt - ok
10:23:20.0471 0x07c4 [ CC84B48075B91118C497610F577D006A, 13AA977E6211DF364CF9446DA1272D698E5493EB384A5CA36C04CCD3FB695201 ] TermService C:\Windows\System32\termsrv.dll
10:23:20.0549 0x07c4 TermService - ok
10:23:20.0581 0x07c4 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
10:23:20.0596 0x07c4 Themes - ok
10:23:20.0643 0x07c4 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
10:23:20.0659 0x07c4 THREADORDER - ok
10:23:20.0674 0x07c4 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
10:23:20.0705 0x07c4 TrkWks - ok
10:23:20.0768 0x07c4 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:23:20.0799 0x07c4 TrustedInstaller - ok
10:23:20.0846 0x07c4 [ 2CF58216424757ED29605B4F18EC443C, 9D523FC075F7F41A17F60617670A976A8F2F2943444515DC3834720BDC37DFA0 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:23:20.0877 0x07c4 tssecsrv - ok
10:23:20.0924 0x07c4 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
10:23:20.0939 0x07c4 TsUsbFlt - ok
10:23:20.0955 0x07c4 [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
10:23:20.0971 0x07c4 TsUsbGD - ok
10:23:21.0002 0x07c4 [ E1748D04AE40118B62BC18AC86032192, A954B141D1B27272C771D14F3B40C7CC1F572DD72559F2C96182EFBE2B095FDE ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys
10:23:21.0033 0x07c4 tsusbhub - ok
10:23:21.0064 0x07c4 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:23:21.0095 0x07c4 tunnel - ok
10:23:21.0127 0x07c4 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
10:23:21.0142 0x07c4 uagp35 - ok
10:23:21.0189 0x07c4 [ F0C176C907539FBBA54F8C1DC1C6320D, 86EB7BB27391AE973B0CC5678D9452B05D1E9493206958DB2EE63BBD18339242 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:23:21.0236 0x07c4 udfs - ok
10:23:21.0283 0x07c4 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:23:21.0298 0x07c4 UI0Detect - ok
10:23:21.0345 0x07c4 [ 1FD0CC5121FC0590FC19B196AB6EFF4B, 9BF894CF6BDEB094E0F24C7F44BCB27D1F5F8DB53AE41E4C0A8A70E0082392EF ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:23:21.0361 0x07c4 uliagpkx - ok
10:23:21.0407 0x07c4 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
10:23:21.0439 0x07c4 umbus - ok
10:23:21.0454 0x07c4 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
10:23:21.0485 0x07c4 UmPass - ok
10:23:21.0517 0x07c4 [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
10:23:21.0548 0x07c4 UmRdpService - ok
10:23:21.0595 0x07c4 [ 800C9AE4B5558E42EFE7FABAB5C0BDAE, F96306A0F0DDF9AD74EA593002B8DAFEA228808F4D8BE76DC120C8E0BDF67823 ] upnphost C:\Windows\System32\upnphost.dll
10:23:21.0626 0x07c4 upnphost - ok
10:23:21.0688 0x07c4 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
10:23:21.0704 0x07c4 usbaudio - ok
10:23:21.0735 0x07c4 [ E6DFE1F33B1250A6E26EA6F6CE10B09C, BCA9E05BDBFC8D5B7095DE2F5CCE4C40E2CA5BA8D983039500A8D016723CA763 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:23:21.0782 0x07c4 usbccgp - ok
10:23:21.0797 0x07c4 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:23:21.0829 0x07c4 usbcir - ok
10:23:21.0860 0x07c4 [ 74EE782B1D9C241EFE425565854C661C, E8258EA65B0FCAD4E077B176E9D9324646B652D6E651241E397346A39770D065 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
10:23:21.0860 0x07c4 usbehci - ok
10:23:21.0922 0x07c4 [ 5A4AC5D05A7C97C68596416C05D6F2B4, 1CDE5172B763D2D65379B9F3ABACC080AF676DB9354EC98A455E620C4CE3E18A ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
10:23:21.0922 0x07c4 usbfilter - ok
10:23:21.0969 0x07c4 [ 0A33C9EC6822B24E26687F1EC6346922, 44295855AC7DCD098EA4A2379B9896F347147FCB02E2DCC82F2064FB31D2E7A5 ] usbhub C:\Windows\system32\drivers\usbhub.sys
10:23:22.0000 0x07c4 usbhub - ok
10:23:22.0031 0x07c4 [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
10:23:22.0047 0x07c4 usbohci - ok
10:23:22.0078 0x07c4 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\drivers\usbprint.sys
10:23:22.0094 0x07c4 usbprint - ok
10:23:22.0125 0x07c4 [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:23:22.0141 0x07c4 USBSTOR - ok
10:23:22.0156 0x07c4 [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
10:23:22.0156 0x07c4 usbuhci - ok
10:23:22.0219 0x07c4 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
10:23:22.0250 0x07c4 usbvideo - ok
10:23:22.0281 0x07c4 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
10:23:22.0328 0x07c4 UxSms - ok
10:23:22.0359 0x07c4 [ 3E71928C087FBB3B23A4D816C843B538, DCF9D744FE1B1CF47EC2870B44C852846C221D604B50DE8ADF79F60629A92A55 ] VaultSvc C:\Windows\system32\lsass.exe
10:23:22.0359 0x07c4 VaultSvc - ok
10:23:22.0421 0x07c4 [ E7204D7FD7362F0EFAA502A4CB91CA1E, C7F3BE383C81AB9AA642479F95872E40E19A4CFD72D4C8D7DE80ABC11B713E21 ] VBAudioVACMME C:\Windows\system32\DRIVERS\vbaudio_cable64_win7.sys
10:23:22.0437 0x07c4 VBAudioVACMME - ok
10:23:22.0484 0x07c4 [ 5E83F6FA86407F4FA3A347B31C28CB9B, B94ED30529DC202FDB451C5F72878362D59B1E84C6844653FE722B3FA5B629F0 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
10:23:22.0499 0x07c4 vdrvroot - ok
10:23:22.0562 0x07c4 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
10:23:22.0624 0x07c4 vds - ok
10:23:22.0671 0x07c4 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:23:22.0687 0x07c4 vga - ok
10:23:22.0687 0x07c4 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
10:23:22.0733 0x07c4 VgaSave - ok
10:23:22.0733 0x07c4 VGPU - ok
10:23:22.0765 0x07c4 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
10:23:22.0780 0x07c4 vhdmp - ok
10:23:22.0827 0x07c4 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
10:23:22.0827 0x07c4 viaide - ok
10:23:22.0874 0x07c4 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
10:23:22.0889 0x07c4 vmbus - ok
10:23:22.0921 0x07c4 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
10:23:22.0921 0x07c4 VMBusHID - ok
10:23:22.0936 0x07c4 [ 0C62F898EF24366F20C822226057FD9E, 3FFA3A750DF36D12A66221C34D42CEFDA9106117B687F01BC14210F65C3B56C0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:23:22.0952 0x07c4 volmgr - ok
10:23:22.0983 0x07c4 [ 85C5468BC395819AE2A0C747334BA14C, 75EB4751F90F3347229442A5622539383CE0B1834EE7B995260D0D433BA2E25F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:23:23.0014 0x07c4 volmgrx - ok
10:23:23.0061 0x07c4 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:23:23.0077 0x07c4 volsnap - ok
10:23:23.0108 0x07c4 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
10:23:23.0123 0x07c4 vsmraid - ok
10:23:23.0201 0x07c4 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
10:23:23.0311 0x07c4 VSS - ok
10:23:23.0342 0x07c4 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
10:23:23.0342 0x07c4 vwifibus - ok
10:23:23.0389 0x07c4 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
10:23:23.0435 0x07c4 W32Time - ok
10:23:23.0545 0x07c4 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
10:23:23.0560 0x07c4 WacomPen - ok
10:23:23.0623 0x07c4 [ 6CB845761069BB2722A2C6979F493AFB, EB5A3480DDAAE53F41D3AB869D2CABBC1FF1F40B855A69A1E61D4C045891995C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:23:23.0654 0x07c4 WANARP - ok
10:23:23.0669 0x07c4 [ 6CB845761069BB2722A2C6979F493AFB, EB5A3480DDAAE53F41D3AB869D2CABBC1FF1F40B855A69A1E61D4C045891995C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:23:23.0685 0x07c4 Wanarpv6 - ok
10:23:23.0747 0x07c4 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
10:23:23.0810 0x07c4 WatAdminSvc - ok
10:23:23.0903 0x07c4 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
10:23:23.0981 0x07c4 wbengine - ok
10:23:24.0028 0x07c4 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:23:24.0075 0x07c4 WbioSrvc - ok
10:23:24.0106 0x07c4 [ 79E3903FD75A22386326B542F17A2563, 3CCCE0BCDE12240BE7E108A8C0A959A33C8462A0DE8510F28FA0107C4A9A1F05 ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:23:24.0137 0x07c4 wcncsvc - ok
10:23:24.0184 0x07c4 [ 7EFAB68C40D55917213442AA6238AEC0, F237F6F6C92B6EC5D67198CBD4E01FDCE78B08FFC7D73F62D665B971922E2CFF ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:23:24.0184 0x07c4 WcsPlugInService - ok
10:23:24.0231 0x07c4 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
10:23:24.0231 0x07c4 Wd - ok
10:23:24.0293 0x07c4 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:23:24.0340 0x07c4 Wdf01000 - ok
10:23:24.0387 0x07c4 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:23:24.0418 0x07c4 WdiServiceHost - ok
10:23:24.0434 0x07c4 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:23:24.0434 0x07c4 WdiSystemHost - ok
10:23:24.0481 0x07c4 [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient C:\Windows\System32\webclnt.dll
10:23:24.0512 0x07c4 WebClient - ok
10:23:24.0543 0x07c4 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:23:24.0590 0x07c4 Wecsvc - ok
10:23:24.0621 0x07c4 [ A5B9B5226168F4DBEDB6444D970CAF7B, 2948C14F0B56B0CDE3AA2D67F5A45A21A6AED56E527773BCDE89DCD021CC520B ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:23:24.0652 0x07c4 wercplsupport - ok
10:23:24.0699 0x07c4 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
10:23:24.0746 0x07c4 WerSvc - ok
10:23:24.0761 0x07c4 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:23:24.0793 0x07c4 WfpLwf - ok
10:23:24.0808 0x07c4 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:23:24.0824 0x07c4 WIMMount - ok
10:23:24.0871 0x07c4 WinDefend - ok
10:23:24.0886 0x07c4 WinHttpAutoProxySvc - ok
10:23:24.0949 0x07c4 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:23:24.0995 0x07c4 Winmgmt - ok
10:23:25.0089 0x07c4 [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM C:\Windows\system32\WsmSvc.dll
10:23:25.0214 0x07c4 WinRM - ok
10:23:25.0276 0x07c4 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
10:23:25.0276 0x07c4 WinUsb - ok
10:23:25.0339 0x07c4 [ 354C045ED623FC6BB22E9BFD675895C9, C48B3A90A59C83E419FDB56760F38AF3457F3AA189613A58234F3093B9E5C153 ] Wlansvc C:\Windows\System32\wlansvc.dll
10:23:25.0385 0x07c4 Wlansvc - ok
10:23:25.0432 0x07c4 [ 43471A750D4F3918AC92F5131AE252D3, E843AA1555262F521B924BBB1505474757E1BB9540FCCF93BC0BE2059F497C87 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
10:23:25.0448 0x07c4 WmiAcpi - ok
10:23:25.0495 0x07c4 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:23:25.0510 0x07c4 wmiApSrv - ok
10:23:25.0526 0x07c4 WMPNetworkSvc - ok
10:23:25.0557 0x07c4 wntpport - ok
10:23:25.0588 0x07c4 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:23:25.0604 0x07c4 WPCSvc - ok
10:23:25.0619 0x07c4 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:23:25.0635 0x07c4 WPDBusEnum - ok
10:23:25.0666 0x07c4 [ 54AF0724831FF09EC2713CED2032DBD3, A59397F6C2215CE1776BE750C0EA7DD009CB770C3E0760F3BF0995BAB6B0A902 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:23:25.0697 0x07c4 ws2ifsl - ok
10:23:25.0713 0x07c4 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
10:23:25.0760 0x07c4 wscsvc - ok
10:23:25.0760 0x07c4 WSearch - ok
10:23:25.0791 0x07c4 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:23:25.0807 0x07c4 WudfPf - ok
10:23:25.0853 0x07c4 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:23:25.0885 0x07c4 WUDFRd - ok
10:23:25.0916 0x07c4 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:23:25.0947 0x07c4 wudfsvc - ok
10:23:25.0978 0x07c4 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
10:23:26.0009 0x07c4 WwanSvc - ok
10:23:26.0056 0x07c4 [ 24E827010D89106DAD2DCBAA7F34E924, 73635A37CAF5603937249B21DD2412AF6D375F38262E935AFE291CB2614786E4 ] x18_audio C:\Windows\system32\DRIVERS\x18_audio.sys
10:23:26.0087 0x07c4 x18_audio - ok
10:23:26.0150 0x07c4 [ EADBAFCDF65A69161BDAAF53507CB77A, CAEDE62C972D1F2ADFBC1938ABF53D4C6E29F91BC9E8DC07E53173F0499B7C4F ] x18_audioks C:\Windows\system32\DRIVERS\x18_audioks.sys
10:23:26.0165 0x07c4 x18_audioks - ok
10:23:26.0228 0x07c4 [ 978DD3A54E789BD8E730876412D68367, 8282253C00E90DCA78010EFECBA9866380F7CCAA3E44995018EE23540BB512BF ] ZMHFMAudioSrv C:\Windows\system32\drivers\zmhfmau.sys
10:23:26.0243 0x07c4 ZMHFMAudioSrv - ok
10:23:26.0306 0x07c4 [ 18B37CC0C9B1D33637F1C6BD66641E65, F89BC51D72DD8488C815AC744210CCC63DC1790826503346ACDE7B828EDDA005 ] ZMHFSAudioSrv C:\Windows\system32\drivers\zmhfsau.sys
10:23:26.0306 0x07c4 ZMHFSAudioSrv - ok
10:23:26.0321 0x07c4 ================ Scan global ===============================
10:23:26.0368 0x07c4 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
10:23:26.0399 0x07c4 [ 94BEA5F8A8D3FC88B0E4C850B71B784B, 9626FE08594A9EB1B1F67D8EBE54F3754998FFF848DFCD0A366DAE22B3CC1B1C ] C:\Windows\system32\winsrv.dll
10:23:26.0431 0x07c4 [ 94BEA5F8A8D3FC88B0E4C850B71B784B, 9626FE08594A9EB1B1F67D8EBE54F3754998FFF848DFCD0A366DAE22B3CC1B1C ] C:\Windows\system32\winsrv.dll
10:23:26.0462 0x07c4 [ D52F821BB4EA388A2DD356A58BC4ED98, 4DCE903819C89BA015DE77E315708FCC5E786C549A9610E43952809715F5C370 ] C:\Windows\system32\sxssrv.dll
10:23:26.0493 0x07c4 [ 4B3A70E412A7A18A4DBA277251E85BCF, 0995F71C34F613207BC39ED4FCC1BBBEE396A543FA1739656F7DDF70419309FC ] C:\Windows\system32\services.exe
10:23:26.0493 0x07c4 [ Global ] - ok
10:23:26.0493 0x07c4 ================ Scan MBR ==================================
10:23:26.0509 0x07c4 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
10:23:26.0618 0x07c4 \Device\Harddisk0\DR0 - ok
10:23:26.0633 0x07c4 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
10:23:27.0023 0x07c4 \Device\Harddisk1\DR1 - ok
10:23:27.0023 0x07c4 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
10:23:27.0195 0x07c4 \Device\Harddisk2\DR2 - ok
10:23:27.0211 0x07c4 [ EF1D8B517E0BEA9CE5EAAC546B249695 ] \Device\Harddisk3\DR3
10:23:27.0351 0x07c4 \Device\Harddisk3\DR3 - ok
10:23:27.0351 0x07c4 ================ Scan VBR ==================================
10:23:27.0351 0x07c4 [ 0A2D0E6D70E3FF14294E9A09B323E096 ] \Device\Harddisk0\DR0\Partition1
10:23:27.0351 0x07c4 \Device\Harddisk0\DR0\Partition1 - ok
10:23:27.0367 0x07c4 [ 54C6E2DEB68BFDC162BEA1DD8432A8D7 ] \Device\Harddisk1\DR1\Partition1
10:23:27.0367 0x07c4 \Device\Harddisk1\DR1\Partition1 - ok
10:23:27.0367 0x07c4 [ 7D5C3B880B411EA926A8976E49B11578 ] \Device\Harddisk1\DR1\Partition2
10:23:27.0367 0x07c4 \Device\Harddisk1\DR1\Partition2 - ok
10:23:27.0367 0x07c4 [ 44555BE3F2DAB850AC4A5974E79C2CB9 ] \Device\Harddisk2\DR2\Partition1
10:23:27.0367 0x07c4 \Device\Harddisk2\DR2\Partition1 - ok
10:23:27.0382 0x07c4 [ D016A98670B503A4A285AA5045D97A38 ] \Device\Harddisk3\DR3\Partition1
10:23:27.0382 0x07c4 \Device\Harddisk3\DR3\Partition1 - ok
10:23:27.0382 0x07c4 ================ Scan active images ========================
10:23:27.0382 0x07c4 [ 3E588B60EC061686BA05D33574A344C6, 19D2D863F95CCC4493A2328B6BEB04248B6A80F957532E58C1D1D868C19FDCCB ] C:\Windows\System32\drivers\crashdmp.sys
10:23:27.0382 0x07c4 C:\Windows\System32\drivers\crashdmp.sys - ok
10:23:27.0382 0x07c4 [ EBECBA1E37CE98BA2BD64A22A788DAC5, 247C474DAF9FFFF7FB46EB6185088B94B886A7685F98CABE1983EFEAEE1A8338 ] C:\Windows\System32\drivers\amd_sata.sys
10:23:27.0382 0x07c4 C:\Windows\System32\drivers\amd_sata.sys - ok
10:23:27.0398 0x07c4 [ B3222734D80013D2C73841B0C549FA63, F712A301B74F4E55E37189B989E02E845B15BFAF70749DA4000DA26E40CCFC90 ] C:\Windows\System32\drivers\Diskdump.sys
10:23:27.0398 0x07c4 C:\Windows\System32\drivers\Diskdump.sys - ok
10:23:27.0398 0x07c4 [ 814DB88F2641691575A455CF25354098, 79C50F0CD72612733217A0316BEFEA0B6D819C3159D9452EAB89AC26A18A0F89 ] C:\Windows\System32\drivers\dumpfve.sys
10:23:27.0398 0x07c4 C:\Windows\System32\drivers\dumpfve.sys - ok
10:23:27.0398 0x07c4 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] C:\Windows\System32\drivers\beep.sys
10:23:27.0398 0x07c4 C:\Windows\System32\drivers\beep.sys - ok
10:23:27.0398 0x07c4 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] C:\Windows\System32\drivers\null.sys
10:23:27.0398 0x07c4 C:\Windows\System32\drivers\null.sys - ok
10:23:27.0413 0x07c4 [ 38E4081CD0206C058B20E5E766F6381C, 2F1F7455FC539F1A272CB1B7F84460179F2B57F94E7DE4E7B08328C39D3DDE5E ] C:\Windows\System32\drivers\videoprt.sys
10:23:27.0413 0x07c4 C:\Windows\System32\drivers\videoprt.sys - ok
10:23:27.0413 0x07c4 [ FC438D1430B28618E2D0C7C332A710AD, 873957B202E454E2C8F625E5799F278CAC16EC5EEAEE2C33E2FE5D1FF0408CB2 ] C:\Windows\System32\drivers\watchdog.sys
10:23:27.0413 0x07c4 C:\Windows\System32\drivers\watchdog.sys - ok
10:23:27.0413 0x07c4 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] C:\Windows\System32\drivers\RDPENCDD.sys
10:23:27.0413 0x07c4 C:\Windows\System32\drivers\RDPENCDD.sys - ok
10:23:27.0413 0x07c4 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] C:\Windows\System32\drivers\vga.sys
10:23:27.0413 0x07c4 C:\Windows\System32\drivers\vga.sys - ok
10:23:27.0429 0x07c4 [ 45BD105115AF4C040383FEA51F04BD06, 3E0FDFF5FE65053B7DA9630F0244C3E65FEB687C214333456D545EAF0AF1C325 ] C:\Windows\System32\drivers\msfs.sys
10:23:27.0429 0x07c4 C:\Windows\System32\drivers\msfs.sys - ok
10:23:27.0429 0x07c4 [ F659AF9BC6E7555D89E39C5D0D8E236C, 92505AA42A27A1CA699E0FE6D1DE5503EBE043A923F6FCF0F7F77C3B909EE6BA ] C:\Windows\System32\drivers\npfs.sys
10:23:27.0429 0x07c4 C:\Windows\System32\drivers\npfs.sys - ok
10:23:27.0429 0x07c4 [ 6F020A220388ECA0AB6062DC27BD16B6, 48655230E482DEB7B4B50EF05818EBB29CA61E780AEFCD9D31B02DE4DF9D9540 ] C:\Windows\System32\drivers\tdi.sys
10:23:27.0429 0x07c4 C:\Windows\System32\drivers\tdi.sys - ok
10:23:27.0429 0x07c4 [ 4DD986720F7CB7A8A5D1226793097B9A, 9020375B45E9C966BF44CF425C127D7E0EC82EB99C7047F225C25402FF97743D ] C:\Windows\System32\drivers\tdx.sys
10:23:27.0429 0x07c4 C:\Windows\System32\drivers\tdx.sys - ok
10:23:27.0445 0x07c4 [ 0DC2A9882540DEA4A55B08785E09D8FC, 69B15724B0034F9915AACE109A6C596D6AF2DA350FC18C9A0CD98C81CB7EDEE3 ] C:\Windows\System32\drivers\afd.sys
10:23:27.0445 0x07c4 C:\Windows\System32\drivers\afd.sys - ok
10:23:27.0445 0x07c4 [ 0805034EA6F5273D4CB130D726AA5450, 3662B56226CF79A19174F3644D1902A4EE90CCBB86890B902DC387F3DFB492E7 ] C:\Windows\System32\drivers\netbt.sys
10:23:27.0445 0x07c4 C:\Windows\System32\drivers\netbt.sys - ok
10:23:27.0445 0x07c4 [ 4CE827A5433451551E99C2C1D20E4A43, B2E0806BB5C32A9126584941EE92526BFD45BB9EE18D7E598A2FFE7AAB495930 ] C:\Windows\System32\drivers\pacer.sys
10:23:27.0445 0x07c4 C:\Windows\System32\drivers\pacer.sys - ok
10:23:27.0445 0x07c4 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] C:\Windows\System32\drivers\wfplwf.sys
10:23:27.0445 0x07c4 C:\Windows\System32\drivers\wfplwf.sys - ok
10:23:27.0460 0x07c4 [ 2E19EB10185992AB08BC3688AACA4CE2, D9E3A5CFE8887B7F66239000116723FAA119107870A6FB65FD6F108CE5C9D9EB ] C:\Windows\System32\drivers\netbios.sys
10:23:27.0460 0x07c4 C:\Windows\System32\drivers\netbios.sys - ok
10:23:27.0460 0x07c4 [ 6DB20EF6CAD4356B785A061071FA4ECC, FAB7B6A1FEB6C7861D3655058EB55013A255C5FA569ED20F257626A2E5F121CF ] C:\Windows\System32\drivers\rdbss.sys
10:23:27.0460 0x07c4 C:\Windows\System32\drivers\rdbss.sys - ok
10:23:27.0460 0x07c4 [ 80BC9D418607974E4940EBC42F69BC8D, 83F1C21DCBAC4CCD970DD820C169C31DE97BD8A42D3384454B0D9C9A6053A297 ] C:\Windows\System32\drivers\csc.sys
10:23:27.0460 0x07c4 C:\Windows\System32\drivers\csc.sys - ok
10:23:27.0460 0x07c4 [ 63705A08981F7EDD376241D6E0A9C2AC, 6965D64D164A4DBBC328D2611EE38A71D3FA66A6438AFC6E4830DC37ABC28729 ] C:\Windows\System32\drivers\dfsc.sys
10:23:27.0460 0x07c4 C:\Windows\System32\drivers\dfsc.sys - ok
10:23:27.0476 0x07c4 [ BE313E566EEA2A4B7F9AAC9782A567D4, 377C624737B1A4FBC1DFF988F029B8ED9A368827C33A4FEEBA1B7937A87C2B47 ] C:\Windows\System32\drivers\nsiproxy.sys
10:23:27.0476 0x07c4 C:\Windows\System32\drivers\nsiproxy.sys - ok
10:23:27.0476 0x07c4 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] C:\Windows\System32\drivers\hdaudbus.sys
10:23:27.0476 0x07c4 C:\Windows\System32\drivers\hdaudbus.sys - ok
10:23:27.0476 0x07c4 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] C:\Windows\System32\drivers\tunnel.sys
10:23:27.0476 0x07c4 C:\Windows\System32\drivers\tunnel.sys - ok
10:23:27.0476 0x07c4 [ B6D64EE607637301FF8C33139B4950DE, E7FE3EC3DA3CABDBBE2C23BAA5FE3CD64DA01FF73B4B4C2F077224A607E688DD ] C:\Windows\System32\drivers\usbport.sys
10:23:27.0476 0x07c4 C:\Windows\System32\drivers\usbport.sys - ok
10:23:27.0491 0x07c4 [ 13E4C518A4D0A1095EA5FC8E5F7F0F65, 896646BC781FFEFE6409885D72247BEFF3DEBB15484B95DBFDB9719E03F50049 ] C:\Windows\System32\smss.exe
10:23:27.0491 0x07c4 C:\Windows\System32\smss.exe - ok
10:23:27.0491 0x07c4 [ D808B695845B520A78B3025794015D32, 6F3754C3FE5820980F9AB24E38940744697B9D11FE5B2C36FEE8192526C89EA8 ] C:\Windows\System32\ntdll.dll
10:23:27.0491 0x07c4 C:\Windows\System32\ntdll.dll - ok
10:23:27.0491 0x07c4 [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] C:\Windows\System32\drivers\usbohci.sys
10:23:27.0491 0x07c4 C:\Windows\System32\drivers\usbohci.sys - ok
10:23:27.0491 0x07c4 [ 5A4AC5D05A7C97C68596416C05D6F2B4, 1CDE5172B763D2D65379B9F3ABACC080AF676DB9354EC98A455E620C4CE3E18A ] C:\Windows\System32\drivers\usbfilter.sys
10:23:27.0491 0x07c4 C:\Windows\System32\drivers\usbfilter.sys - ok
10:23:27.0507 0x07c4 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] C:\Windows\System32\drivers\1394ohci.sys
10:23:27.0507 0x07c4 C:\Windows\System32\drivers\1394ohci.sys - ok
10:23:27.0507 0x07c4 [ 74EE782B1D9C241EFE425565854C661C, E8258EA65B0FCAD4E077B176E9D9324646B652D6E651241E397346A39770D065 ] C:\Windows\System32\drivers\usbehci.sys
10:23:27.0507 0x07c4 C:\Windows\System32\drivers\usbehci.sys - ok
10:23:27.0507 0x07c4 [ 39EE5CB57D91AAE8BB9EAB8DF2FEEC9E, 8D0AF427CB10C600920344AC9AA7AB0620CD3C49E45FD4B3EA33CAC1E8484A31 ] C:\Windows\System32\drivers\asmtxhci.sys
10:23:27.0507 0x07c4 C:\Windows\System32\drivers\asmtxhci.sys - ok
10:23:27.0507 0x07c4 [ CD560A420015D36CBBCC0CD1D972E298, E776970A00DA0393CC8340E01C1833F3D822CF4C844E8B7F9A314DB69E9A9F8C ] C:\Windows\System32\drivers\Rt64win7.sys
10:23:27.0507 0x07c4 C:\Windows\System32\drivers\Rt64win7.sys - ok
10:23:27.0523 0x07c4 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] C:\Windows\System32\drivers\agilevpn.sys
10:23:27.0523 0x07c4 C:\Windows\System32\drivers\agilevpn.sys - ok
10:23:27.0523 0x07c4 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] C:\Windows\System32\drivers\blbdrive.sys
10:23:27.0523 0x07c4 C:\Windows\System32\drivers\blbdrive.sys - ok
10:23:27.0523 0x07c4 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] C:\Windows\System32\drivers\CompositeBus.sys
10:23:27.0523 0x07c4 C:\Windows\System32\drivers\CompositeBus.sys - ok10:23:27.0523 0x07c4 C:\Windows\System32\drivers\CompositeBus.sys - ok
10:23:27.0523 0x07c4 [ A5D45B7B91F95F825EB5ABD3A6B262EF, C27C7E89205255CDE6A785C0141F3533E8572D0AFC4B9F73855565BF9F746E04 ] C:\Windows\System32\drivers\mssmbios.sys
10:23:27.0523 0x07c4 C:\Windows\System32\drivers\mssmbios.sys - ok
10:23:27.0538 0x07c4 [ 43471A750D4F3918AC92F5131AE252D3, E843AA1555262F521B924BBB1505474757E1BB9540FCCF93BC0BE2059F497C87 ] C:\Windows\System32\drivers\wmiacpi.sys
10:23:27.0538 0x07c4 C:\Windows\System32\drivers\wmiacpi.sys - ok
10:23:27.0538 0x07c4 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] C:\Windows\System32\drivers\rasl2tp.sys
10:23:27.0538 0x07c4 C:\Windows\System32\drivers\rasl2tp.sys - ok
10:23:27.0538 0x07c4 [ E8179074C0166D83BD8366169137669E, 44A3BCA1772F42CF0580C6BB0B48D106C678D0BB471DB6D81BC9C52895C9C16A ] C:\Windows\System32\drivers\ndistapi.sys
10:23:27.0538 0x07c4 C:\Windows\System32\drivers\ndistapi.sys - ok
10:23:27.0538 0x07c4 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] C:\Windows\System32\drivers\ndiswan.sys
10:23:27.0538 0x07c4 C:\Windows\System32\drivers\ndiswan.sys - ok
10:23:27.0554 0x07c4 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] C:\Windows\System32\drivers\raspppoe.sys
10:23:27.0554 0x07c4 C:\Windows\System32\drivers\raspppoe.sys - ok
10:23:27.0554 0x07c4 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] C:\Windows\System32\drivers\raspptp.sys
10:23:27.0554 0x07c4 C:\Windows\System32\drivers\raspptp.sys - ok
10:23:27.0554 0x07c4 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] C:\Windows\System32\drivers\kbdclass.sys
10:23:27.0554 0x07c4 C:\Windows\System32\drivers\kbdclass.sys - ok
10:23:27.0554 0x07c4 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] C:\Windows\System32\drivers\mouclass.sys
10:23:27.0554 0x07c4 C:\Windows\System32\drivers\mouclass.sys - ok
10:23:27.0569 0x07c4 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] C:\Windows\System32\drivers\rassstp.sys
10:23:27.0569 0x07c4 C:\Windows\System32\drivers\rassstp.sys - ok
10:23:27.0569 0x07c4 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] C:\Windows\System32\drivers\rdpbus.sys
10:23:27.0569 0x07c4 C:\Windows\System32\drivers\rdpbus.sys - ok
10:23:27.0569 0x07c4 [ 2E7A1415FE48EAC714E960CB3D1DD54B, 9DBF881D300267D8654F205C22FB1391DCEA777942D136D69D8F6ACB0F8FC354 ] C:\Windows\System32\drivers\termdd.sys
10:23:27.0569 0x07c4 C:\Windows\System32\drivers\termdd.sys - ok
10:23:27.0569 0x07c4 [ 09391BA416AA29682298A612FDFDD7B8, D889679C25DA37212E2E0E08E4B2CF774FFF395E83BCD168B240A59E74204070 ] C:\Windows\System32\drivers\BazisVirtualCDBus.sys
10:23:27.0569 0x07c4 C:\Windows\System32\drivers\BazisVirtualCDBus.sys - ok
10:23:27.0585 0x07c4 [ A38A783D4198A6523F1EB926104526FF, 65E052FED176E7F106F1619E1A8DC6AB42EB6DA94F373488EA924117A9CD78DB ] C:\Windows\System32\drivers\ks.sys
10:23:27.0585 0x07c4 C:\Windows\System32\drivers\ks.sys - ok
10:23:27.0585 0x07c4 [ EEECC4C67144A39BA5B9B6E351932606, C3CB9042D00559893EA37969898840D3D437703E6B13BCF21253AB40F6071446 ] C:\Windows\System32\drivers\NIWinCDEmu.sys
10:23:27.0585 0x07c4 C:\Windows\System32\drivers\NIWinCDEmu.sys - ok
10:23:27.0585 0x07c4 [ 2888219D7E85BA0635CC98AEA7599CF4, FA8D454AE42AC38B04647B3E46541625A3AB51146EBEC5B1674717E347C03A0D ] C:\Windows\System32\drivers\swenum.sys
10:23:27.0585 0x07c4 C:\Windows\System32\drivers\swenum.sys - ok
10:23:27.0585 0x07c4 [ 6588D3501EE7692D3A46899ACF2E6EF6, A3B0A7C17319125424A618C3A1E3CB8D2A55A7C4B17B66E0EFC17701B5D7945B ] C:\Windows\System32\drivers\exetools.sys
10:23:27.0585 0x07c4 C:\Windows\System32\drivers\exetools.sys - ok
10:23:27.0601 0x07c4 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] C:\Windows\System32\drivers\umbus.sys
10:23:27.0601 0x07c4 C:\Windows\System32\drivers\umbus.sys - ok
10:23:27.0601 0x07c4 [ 8DA6939DF7D55222FC7B97C89487D15E, 69BF7571E15DF3785F421B4FAA25C10FA3278FD983F3EB76A9A294F1A3E3FDA5 ] C:\Windows\System32\drivers\nvvhci.sys
10:23:27.0601 0x07c4 C:\Windows\System32\drivers\nvvhci.sys - ok
10:23:27.0601 0x07c4 [ 0A33C9EC6822B24E26687F1EC6346922, 44295855AC7DCD098EA4A2379B9896F347147FCB02E2DCC82F2064FB31D2E7A5 ] C:\Windows\System32\drivers\usbhub.sys
10:23:27.0601 0x07c4 C:\Windows\System32\drivers\usbhub.sys - ok
10:23:27.0601 0x07c4 [ D0FE24076ED3BA7B54D6E9819F8215A8, 42962676E322DCD9112740E6C43C8E49B8F9D998D7733645947771598FD3DD22 ] C:\Windows\System32\drivers\ndproxy.sys
10:23:27.0601 0x07c4 C:\Windows\System32\drivers\ndproxy.sys - ok
10:23:27.0616 0x07c4 [ A6C6F0718E7F7B6C1D045D5A34AB6E9A, FD76344B77DF6E56081C7AF1D1E9BE7C6A43833937E9AC429A94308F53FD4545 ] C:\Windows\System32\drivers\aksclass.sys
10:23:27.0616 0x07c4 C:\Windows\System32\drivers\aksclass.sys - ok
10:23:27.0616 0x07c4 [ 8D584711424446969B5E4CB16870A898, 842FBE4FD5BEB044EC1F10EAD8B2F2AB5F38D544D136A09474AF94D83EFA4F35 ] C:\Windows\System32\drivers\aksusb.sys
10:23:27.0616 0x07c4 C:\Windows\System32\drivers\aksusb.sys - ok
10:23:27.0616 0x07c4 [ 63C8D74BED9F80F4DD0AA7A3101EB639, EA2CE29025259E9DE945CE52C80A41C33024D7C2907AA1928480EC11FC852B08 ] C:\Windows\System32\drivers\usbd.sys
10:23:27.0616 0x07c4 C:\Windows\System32\drivers\usbd.sys - ok
10:23:27.0632 0x07c4 [ 35E43EE8FE28CFD581E8CE42847DFE2B, 1A78FC49422CB73EFD4B0A09BD32B35244A91478DB2268C023FDDCA826C8EE5D ] C:\Windows\System32\drivers\akshasp.sys
10:23:27.0632 0x07c4 C:\Windows\System32\drivers\akshasp.sys - ok
10:23:27.0632 0x07c4 [ 053B204554F104CB5DC3D94B61BDA458, 72EB2556AA4B83489D2908ADC40DEB2E5ACE98D7A6112E9395F46924BD60501E ] C:\Windows\System32\drivers\akshhl.sys
10:23:27.0632 0x07c4 C:\Windows\System32\drivers\akshhl.sys - ok
10:23:27.0632 0x07c4 [ 6061E6BA14B709939EEE1E616A85585E, CAB0372F8518C169740EDA962BF53C63130754F096A5033B79E734133DB59874 ] C:\Windows\System32\drivers\asmthub3.sys
10:23:27.0632 0x07c4 C:\Windows\System32\drivers\asmthub3.sys - ok
10:23:27.0632 0x07c4 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93, 7BC847CE6C2D29C334F0D1600BBBDE3933FF45F6BEE5186F442E6270A3F9EC4E ] C:\Windows\System32\autochk.exe
10:23:27.0632 0x07c4 C:\Windows\System32\autochk.exe - ok
10:23:27.0647 0x07c4 [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] C:\Windows\System32\drivers\USBSTOR.SYS
10:23:27.0647 0x07c4 C:\Windows\System32\drivers\USBSTOR.SYS - ok
10:23:27.0647 0x07c4 [ FBE1086227040618A569C27F74A12F3D, 1631C78ED9C35EB62FC66ECBB536B251329134A866A783875AEE7D85C7DD0E02 ] C:\Windows\System32\ws2_32.dll
10:23:27.0647 0x07c4 C:\Windows\System32\ws2_32.dll - ok
10:23:27.0647 0x07c4 [ FE7AE42771FCB0675959E532097A93A7, 932D7C9A8F77D52800849C6E8755F57A05675D702E2D7A02A493682DCFA72619 ] C:\Windows\System32\iertutil.dll
10:23:27.0647 0x07c4 C:\Windows\System32\iertutil.dll - ok
10:23:27.0647 0x07c4 [ 5794F115EF2DD723C6D71ED5B1E168B3, 0D2D416279C2E0C80DC1740B5EE0F2DF4484C13EED8DDF798AF4E705D5373BC9 ] C:\Windows\System32\ole32.dll
10:23:27.0647 0x07c4 C:\Windows\System32\ole32.dll - ok
10:23:27.0647 0x07c4 [ A48498BBC23C01E06CE8901B7AE141D5, 2E93BB44529EA2207FBCA386AD51FC5367312A646FD02C6BC14F62E521C64FF0 ] C:\Windows\System32\advapi32.dll
10:23:27.0647 0x07c4 C:\Windows\System32\advapi32.dll - ok
10:23:27.0663 0x07c4 [ 3CE9BE312B8B616FD7715D42F50850BC, 8B26AB5734824A09DB18A24F46ED50BCCF7FB61047BC8524F835B1DF251C41EC ] C:\Windows\System32\kernel32.dll
10:23:27.0663 0x07c4 C:\Windows\System32\kernel32.dll - ok
10:23:27.0663 0x07c4 [ 50D920917E8E0E1CE6B1C42E3925F100, 1D815D078A6B3DB17301A4585D504D5340A621C243DECB93A5CC28A4A3F1FBAD ] C:\Windows\System32\lpk.dll
10:23:27.0663 0x07c4 C:\Windows\System32\lpk.dll - ok
10:23:27.0663 0x07c4 [ F7CE0C81C545364020ED8203CF0A633E, 24B47A7492B7048096AF87E26786E8108455ADBD1A374B6A0466DE008505B8A9 ] C:\Windows\System32\difxapi.dll
10:23:27.0663 0x07c4 C:\Windows\System32\difxapi.dll - ok
10:23:27.0663 0x07c4 [ EEF22D1473938C0D2622247C3FF4D0EC, 60EC22C57CF08E55274173D4C161531771327A03BF6F06745B2540C7D19030D1 ] C:\Windows\System32\user32.dll
10:23:27.0663 0x07c4 C:\Windows\System32\user32.dll - ok
10:23:27.0679 0x07c4 [ AEFBB3118AC684FACF4ED8A347DA7BB6, C175DCA573B342148DA9CFA9C9767A0DFB898C5AE286D25D9FC00283CAFCDD87 ] C:\Windows\System32\msctf.dll
10:23:27.0679 0x07c4 C:\Windows\System32\msctf.dll - ok
10:23:27.0679 0x07c4 [ C5AA76BE7645EECE0C34562FA96C7B38, 431869E32F2D9C86DD860914F1BBE7E389238EF443731099CAE726DCD84C0CA7 ] C:\Windows\System32\nsi.dll
10:23:27.0679 0x07c4 C:\Windows\System32\nsi.dll - ok
10:23:27.0679 0x07c4 [ D2A2DB4F7E04E2996B3E23DB79F8DFA7, 5A48C17279E345821CDF31769F755B76977E1B1F055CD508BA6FD77825D1A2B5 ] C:\Windows\System32\urlmon.dll
10:23:27.0679 0x07c4 C:\Windows\System32\urlmon.dll - ok
10:23:27.0679 0x07c4 [ B4F29F65AD3114051F01E9403346047F, 7EB58545211C51E95B3F45C47C1F7CCE05B707D168E7C20F46D36E19EE3D8DFC ] C:\Windows\System32\imagehlp.dll
10:23:27.0679 0x07c4 C:\Windows\System32\imagehlp.dll - ok
10:23:27.0694 0x07c4 [ D20EA6DA02CE274FC7E837D243A6C260, BCA37E1D15AB16C7887C20B537643F10A8180AB8289DFB88059850FCAEE66D60 ] C:\Windows\System32\wininet.dll
10:23:27.0694 0x07c4 C:\Windows\System32\wininet.dll - ok
10:23:27.0694 0x07c4 [ 897B160A72778BEFBE16F9B73A2FA654, 68B6E8938944FBA86F3F542D3E94F894CFAA7C81CFFD6B7BD41C70AABAEF8EBC ] C:\Windows\System32\gdi32.dll
10:23:27.0694 0x07c4 C:\Windows\System32\gdi32.dll - ok
10:23:27.0694 0x07c4 [ DC4CB6517760EF464B9B053F51D11174, B53FBDA00FB755D3A09458D9E039F84AF3126255341C9D7D5F8A1D4A617DFFB2 ] C:\Windows\System32\drivers\hidparse.sys
10:23:27.0694 0x07c4 C:\Windows\System32\drivers\hidparse.sys - ok
10:23:27.0694 0x07c4 [ A414BB0D0448D70644FF03C6BEC93118, BF13B4658E6818B1A13C0933C505351D1B83C376E548A6B76FEC01D2FC15D118 ] C:\Windows\System32\drivers\hidclass.sys
10:23:27.0694 0x07c4 C:\Windows\System32\drivers\hidclass.sys - ok
10:23:27.0710 0x07c4 [ F3169EF73866BA0F98B505E5B5D8D811, C4F86BF848AF239D930D0A287B5099825DE89002A05E95CB60A7E7D8D4B0ED9E ] C:\Windows\System32\drivers\hidusb.sys
10:23:27.0710 0x07c4 C:\Windows\System32\drivers\hidusb.sys - ok
10:23:27.0710 0x07c4 [ E6DFE1F33B1250A6E26EA6F6CE10B09C, BCA9E05BDBFC8D5B7095DE2F5CCE4C40E2CA5BA8D983039500A8D016723CA763 ] C:\Windows\System32\drivers\usbccgp.sys
10:23:27.0710 0x07c4 C:\Windows\System32\drivers\usbccgp.sys - ok
10:23:27.0710 0x07c4 [ C391FC68282A000CDF953F8B6B55D2EF, 1CB0DAB84545D9FDEA5A7865A1E7132CEAC91DECF8B100285B63098D7B09E584 ] C:\Windows\System32\msvcrt.dll
10:23:27.0710 0x07c4 C:\Windows\System32\msvcrt.dll - ok
10:23:27.0710 0x07c4 [ 28C0B5024F5C5A438E78B188CFC81B7F, AB81FB63F2908CE316B45609077ACBD85F4B2AAD1606B1E9030F06DB82EDDFAD ] C:\Windows\System32\normaliz.dll
10:23:27.0710 0x07c4 C:\Windows\System32\normaliz.dll - ok
10:23:27.0725 0x07c4 [ EAF32CB8C1F810E4715B4DFBE785C7FF, DB6AD07FDED42433E669508AB73FAFF6DAFF04575D6F1D016FE3EB6ECEC4DD5D ] C:\Windows\System32\shlwapi.dll
10:23:27.0725 0x07c4 C:\Windows\System32\shlwapi.dll - ok
10:23:27.0725 0x07c4 [ AA2C08CE85653B1A0D2E4AB407FA176C, 83DFD0C119B20AEDB07114C9D1CF9CE2DFA938D0F1070256B0591A9E2C3997FA ] C:\Windows\System32\imm32.dll
10:23:27.0725 0x07c4 C:\Windows\System32\imm32.dll - ok
10:23:27.0725 0x07c4 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5, 12130837D7F89A2C7E9D25747A8E5B9001E0A38D545178B49B450C23AE62664A ] C:\Windows\System32\setupapi.dll
10:23:27.0725 0x07c4 C:\Windows\System32\setupapi.dll - ok
10:23:27.0725 0x07c4 [ 9835E63E09F824D22B689D2BB789BAB9, 5BCFFAFB894D69FBCDDB91E64D30A356F4BD57098E8B4C51B98AFAF6581BDB63 ] C:\Windows\System32\comdlg32.dll
10:23:27.0725 0x07c4 C:\Windows\System32\comdlg32.dll - ok
10:23:27.0741 0x07c4 [ ED24F0B1C5D7274A5A606CFF4ABF0B85, 122343905EB609EDB7105DCA888E478E97DFEEF13B74A3FBE66288F14B694043 ] C:\Windows\System32\rpcrt4.dll
10:23:27.0741 0x07c4 C:\Windows\System32\rpcrt4.dll - ok
10:23:27.0741 0x07c4 [ 4D369BA76746D23EBDBA83F87BFFF54C, 09A97DE5E1E11D14670EC45889CB354C6367AF45BAF30243615A166F089C2E3B ] C:\Windows\System32\oleaut32.dll
10:23:27.0741 0x07c4 C:\Windows\System32\oleaut32.dll - ok
10:23:27.0741 0x07c4 [ 4F90A7A0FCBC0ED18E573917860062FF, D0CAA6A1335824C4D6416D7077B143FBF8C7E5AEE0A338BC345C27A10C3F519C ] C:\Windows\System32\sechost.dll
10:23:27.0741 0x07c4 C:\Windows\System32\sechost.dll - ok
10:23:27.0741 0x07c4 [ D87E1E59C73C1F98D5DED5B3850C40F5, 536419BFF9F877D4314B5D0C045D9A6E729489C389863FADF07E382050BC84FD ] C:\Windows\System32\psapi.dll
10:23:27.0741 0x07c4 C:\Windows\System32\psapi.dll - ok
10:23:27.0757 0x07c4 [ 76F27864153D6822F1177DA99D811443, 605DF8AA10B0155047F340185AE2F8A0653C71B2881D35F112BDC8E47E07150C ] C:\Windows\System32\usp10.dll
10:23:27.0757 0x07c4 C:\Windows\System32\usp10.dll - ok
10:23:27.0757 0x07c4 [ 25983DE69B57142039AC8D95E71CD9C9, A677DA7EBCBCB6073D27E8A38809F51E971E83ED379BC599AAAD6EF4216348DA ] C:\Windows\System32\clbcatq.dll
10:23:27.0757 0x07c4 C:\Windows\System32\clbcatq.dll - ok
10:23:27.0757 0x07c4 [ DA35782948E9CC4743DFF10E218A7AF0, 83BD87D0CC942FFBF1748A2B8B1F0BA08FBEEACE29A17AE59FDBA0AAEF342315 ] C:\Windows\System32\shell32.dll
10:23:27.0757 0x07c4 C:\Windows\System32\shell32.dll - ok
10:23:27.0757 0x07c4 [ 6C2E6C1AD1476BABC6F303678BB144FE, 4FB4A459BC00FF1B8BD80D96E3031997DBF052EFB29614CE4C212570FE205C38 ] C:\Windows\System32\Wldap32.dll
10:23:27.0757 0x07c4 C:\Windows\System32\Wldap32.dll - ok
10:23:27.0772 0x07c4 [ 64A4AB126E24FD3F58EBE64852773DB5, ED425BBC91EB8BEF54C363036A770C551C97EF324F1AE31049CA750D0E2D6776 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
10:23:27.0772 0x07c4 C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
10:23:27.0772 0x07c4 [ 72723D3E4781BADC62C3180C137E7B23, 0BDA5292928578C5DA79C761E15B8A892B9D4A3DA26D3635E714797C653CF492 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
10:23:27.0772 0x07c4 C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
10:23:27.0772 0x07c4 [ 7C3CEFAF2D2F0DD1AC43D454E7BD3C17, D607C7AFD70694BDA4EFC4D8FA2E7D9CAA217435683728AB8CD99249D77845B3 ] C:\Windows\System32\KernelBase.dll
10:23:27.0772 0x07c4 C:\Windows\System32\KernelBase.dll - ok
10:23:27.0772 0x07c4 [ 0E6FBF19D9DFBB77316C23DF91F8A101, 680F88E1BC55EA3342AACE6F2E3511BF877AC8F03276D028FEE84EEFE8B5611A ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
10:23:27.0772 0x07c4 C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
10:23:27.0788 0x07c4 [ 7E9B1B498C2A72A1B7B9BA72FCAEFB03, 8715D11ACB129866655B259E4F3461CA5EC275138134405D9DAC2B57CC04A513 ] C:\Windows\System32\userenv.dll
10:23:27.0788 0x07c4 C:\Windows\System32\userenv.dll - ok
10:23:27.0788 0x07c4 [ 51F89CE2D0FEC66070354504E6C4C3E4, 565CC85156C39FB89762757EF6A935FC42DB2599A5E49643447D30C8B9371133 ] C:\Windows\System32\comctl32.dll
10:23:27.0788 0x07c4 C:\Windows\System32\comctl32.dll - ok
10:23:27.0788 0x07c4 [ F49E92B50CED5C9F1725D3C0329FD933, 6155FA4D8242F07FC578FF746890C2EE19FC3D6A20ED8AE4C6F021DB2DAC184F ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
10:23:27.0788 0x07c4 C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
10:23:27.0788 0x07c4 [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A, 445C2857398252756FD25BB94DAFCCEFF573DE55F1F8BF9094C191F409FE6437 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
10:23:27.0788 0x07c4 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
10:23:27.0803 0x07c4 [ A6F8685176461502F2DFD167567EC111, 89FAE94BC63EAEC47C2E57A6E79C984C164FB41B1048DD954011BDE9BB832341 ] C:\Windows\System32\crypt32.dll
10:23:27.0803 0x07c4 C:\Windows\System32\crypt32.dll - ok
10:23:27.0803 0x07c4 [ 06FEC9E8117103BB1141A560E98077DA, C5E61B11DDBBBBBA3D9488970524F0975EA5FBDF16E2FA31F579F8BFA48353B1 ] C:\Windows\System32\devobj.dll
10:23:27.0803 0x07c4 C:\Windows\System32\devobj.dll - ok
10:23:27.0803 0x07c4 [ 2477A28081BDAEE622CF045ACF8EE124, 00A09CAF9129E84FEEA98FA03CE9012C9F961B64FEE15C4F268822C0F82ACC3C ] C:\Windows\System32\cfgmgr32.dll
10:23:27.0803 0x07c4 C:\Windows\System32\cfgmgr32.dll - ok
10:23:27.0803 0x07c4 [ 9094039A00485F71C4DE64BF51F64C46, 4ACFEF4C747ADF806A4FDEDDFD9CC48168DFB05075306C77D3F3927749DD7484 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
10:23:27.0803 0x07c4 C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
10:23:27.0819 0x07c4 [ 884415BD4269C02EAF8E2613BF85500D, EFE771709EC942694FD206AC8D0A48ED7DCD35036F074268E4AECD68AC982CEA ] C:\Windows\System32\msasn1.dll
10:23:27.0819 0x07c4 C:\Windows\System32\msasn1.dll - ok
10:23:27.0819 0x07c4 [ 2C942733A5983DD4502219FF37C7EBC7, 34B20B6B0D7274E4B5B783F1D2345BC3DD9888964D5C2C65712F041A00CF5B45 ] C:\Windows\System32\profapi.dll
10:23:27.0819 0x07c4 C:\Windows\System32\profapi.dll - ok
10:23:27.0819 0x07c4 [ 1D8C5898C210FBE82BF6DE266C2E69F3, 8B9D9139A7A6EF3548BC42CB8A0CB846A4740A3C2E030E34E6D6C736B0DAA944 ] C:\Windows\System32\wintrust.dll
10:23:27.0819 0x07c4 C:\Windows\System32\wintrust.dll - ok
10:23:27.0819 0x07c4 [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\SysWOW64\normaliz.dll
10:23:27.0819 0x07c4 C:\Windows\SysWOW64\normaliz.dll - ok
10:23:27.0835 0x07c4 [ BF24D6F2ED97FE830BFD52B246F98E67, 6BBF4C4221A245462EF653798F6B416EEB12594AD1CB4E8BC8908A8CB2F53384 ] C:\Windows\System32\drivers\dxapi.sys
10:23:27.0835 0x07c4 C:\Windows\System32\drivers\dxapi.sys - ok
10:23:27.0835 0x07c4 [ B4F3C2500322E7849E8843C841493A34, B22186945A89967B3C9F1000AC16A472A2F902B84154F4C5028A208C9EF6E102 ] C:\Windows\System32\win32k.sys
10:23:27.0835 0x07c4 C:\Windows\System32\win32k.sys - ok
10:23:27.0835 0x07c4 [ 51D93432A08C69399375292EC3132EAD, 56EF56306255916B191C4233A52E92629C7492D47249546B7841293FFA3303CC ] C:\Windows\System32\csrsrv.dll
10:23:27.0835 0x07c4 C:\Windows\System32\csrsrv.dll - ok
10:23:27.0835 0x07c4 [ 60C2862B4BF0FD9F582EF344C2B1EC72, CB1C6018FC5C15483AC5BB96E5C2E2E115BB0C0E1314837D77201BAB37E8C03A ] C:\Windows\System32\csrss.exe
10:23:27.0835 0x07c4 C:\Windows\System32\csrss.exe - ok
10:23:27.0850 0x07c4 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\System32\basesrv.dll
10:23:27.0850 0x07c4 C:\Windows\System32\basesrv.dll - ok
10:23:27.0850 0x07c4 [ 94BEA5F8A8D3FC88B0E4C850B71B784B, 9626FE08594A9EB1B1F67D8EBE54F3754998FFF848DFCD0A366DAE22B3CC1B1C ] C:\Windows\System32\winsrv.dll
10:23:27.0850 0x07c4 C:\Windows\System32\winsrv.dll - ok
10:23:27.0850 0x07c4 [ FEDE0629ECB23650D48989517D4914DA, AD3DFC34F0F4AF0EC7A2C018F7DCEF72DECA85E569BAEBA39484407956594D8B ] C:\Windows\System32\drivers\dxg.sys
10:23:27.0850 0x07c4 C:\Windows\System32\drivers\dxg.sys - ok
10:23:27.0850 0x07c4 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] C:\Windows\System32\drivers\mouhid.sys
10:23:27.0850 0x07c4 C:\Windows\System32\drivers\mouhid.sys - ok
10:23:27.0866 0x07c4 [ F29FE765E1448EF371CFE05BFAC74ADB, F251581222D78543272FD4B14A6A59F4B0E0CC44A5FCBCF56DE4CA5783F78A75 ] C:\Windows\System32\tsddd.dll
10:23:27.0866 0x07c4 C:\Windows\System32\tsddd.dll - ok
10:23:27.0866 0x07c4 [ D52F821BB4EA388A2DD356A58BC4ED98, 4DCE903819C89BA015DE77E315708FCC5E786C549A9610E43952809715F5C370 ] C:\Windows\System32\sxssrv.dll
10:23:27.0866 0x07c4 C:\Windows\System32\sxssrv.dll - ok
10:23:27.0866 0x07c4 [ 94355C28C1970635A31B3FE52EB7CEBA, C4E98F07170CEC69CACDD5CEDB8927E48A2A299CB1B8CDA87526E768AF6174F0 ] C:\Windows\System32\wininit.exe
10:23:27.0866 0x07c4 C:\Windows\System32\wininit.exe - ok
10:23:27.0866 0x07c4 [ 78523A26F5604C0568FE9D1CE86E36F4, 534A7228BF69719106F581616A32EAEF0B770DDB36DCE94F84E7D52FDB1382B5 ] C:\Windows\System32\KBDUS.DLL
10:23:27.0866 0x07c4 C:\Windows\System32\KBDUS.DLL - ok
10:23:27.0881 0x07c4 [ C2A8CB1275ECB85D246A9ECC02A728E3, 3603FADCA0060BD201148F9D59E4E2627F024609A6463AB525B5D1AD17BDCD10 ] C:\Windows\System32\RpcRtRemote.dll
10:23:27.0881 0x07c4 C:\Windows\System32\RpcRtRemote.dll - ok
10:23:27.0881 0x07c4 [ 8BEC4D6AD2864EDF68D9AD0C6AA6C6D1, 9708FC829CA75ADDC5921BAADC191F5BBAF90612164F4EFB042C002A05FC16B4 ] C:\Windows\System32\vga.dll
10:23:27.0881 0x07c4 C:\Windows\System32\vga.dll - ok
10:23:27.0881 0x07c4 [ E30B04A8FE665C52162D70233ABEA9A3, E5586EDF32684B31D438B2BF800FA625F8D73473896995B5FFC907E1742BF79E ] C:\Windows\System32\framebuf.dll
10:23:27.0881 0x07c4 C:\Windows\System32\framebuf.dll - ok
10:23:27.0881 0x07c4 [ 1E920C78686E24164AD2F30BE180B8D7, 1FBC81174B5EA420BAEB68444241DCC07959AC75F7687D410F0E6D0EBD6E14BC ] C:\Windows\System32\KBDSP.DLL
10:23:27.0881 0x07c4 C:\Windows\System32\KBDSP.DLL - ok
10:23:27.0897 0x07c4 [ CA0E2DF49879C57652531331EF5AE632, 869050592F919908453989FC95031E545C55FAB3F0A09989198BEC074E43FA24 ] C:\Windows\System32\winlogon.exe
10:23:27.0897 0x07c4 C:\Windows\System32\winlogon.exe - ok
10:23:27.0897 0x07c4 [ C23B6D9D16FD86F446BE607CA18389D9, 331FA37B5A059FE85C5D1368A42293A7BAE2581F3F1F15B48364644136066C14 ] C:\Windows\System32\winsta.dll
10:23:27.0897 0x07c4 C:\Windows\System32\winsta.dll - ok
10:23:27.0897 0x07c4 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] C:\Windows\System32\drivers\kbdhid.sys
10:23:27.0897 0x07c4 C:\Windows\System32\drivers\kbdhid.sys - ok
10:23:27.0897 0x07c4 [ B26B1801356760841C3BC69F9F91537F, 83B9DF333E36C09E81D44E12AE5BE14650126FDA0CF4A0EA853BF40C5780EF81 ] C:\Windows\System32\WlS0WndH.dll
10:23:27.0897 0x07c4 C:\Windows\System32\WlS0WndH.dll - ok
10:23:27.0913 0x07c4 [ 9CEAD32E79A62150FE9F8557E58E008B, AFE4C1725EE94D7DE0749AE1495A4E5CC33C369F29B2A589DA66FFE27FF9777E ] C:\Windows\System32\sxs.dll
10:23:27.0913 0x07c4 C:\Windows\System32\sxs.dll - ok
10:23:27.0913 0x07c4 [ 3B485DA38E53F9238C581068554F5711, 161EE91B5CFAC0DCC8FEF703A18E9CC3298523533F4D9542D14314F46AF14EA5 ] C:\Windows\System32\cryptbase.dll
10:23:27.0913 0x07c4 C:\Windows\System32\cryptbase.dll - ok
10:23:27.0913 0x07c4 [ D2F2FA9CC40BAACA84756169767AAD54, C9BB5639E71DB749CED6E37EC9ADF0650672750C69974496631C79A89A8DEA85 ] C:\Windows\System32\lsasrv.dll
10:23:27.0913 0x07c4 C:\Windows\System32\lsasrv.dll - ok
10:23:27.0913 0x07c4 [ 3E71928C087FBB3B23A4D816C843B538, DCF9D744FE1B1CF47EC2870B44C852846C221D604B50DE8ADF79F60629A92A55 ] C:\Windows\System32\lsass.exe
10:23:27.0913 0x07c4 C:\Windows\System32\lsass.exe - ok
10:23:27.0928 0x07c4 [ 9662EE182644511439F1C53745DC1C88, D205B2C163E78AB42A5D67D7664EF6B75EA0374FF0924467D624F9DB0611F0AD ] C:\Windows\System32\lsm.exe
10:23:27.0928 0x07c4 C:\Windows\System32\lsm.exe - ok
10:23:27.0928 0x07c4 [ 4B3A70E412A7A18A4DBA277251E85BCF, 0995F71C34F613207BC39ED4FCC1BBBEE396A543FA1739656F7DDF70419309FC ] C:\Windows\System32\services.exe
10:23:27.0928 0x07c4 C:\Windows\System32\services.exe - ok
10:23:27.0928 0x07c4 [ 67B4E8EDC2024A5E69F8F82FF301D110, E28F4FBF674ADE983DF29807F55315AD04BA00355590FF877D42BBD6CF99DF0C ] C:\Windows\System32\sspisrv.dll
10:23:27.0928 0x07c4 C:\Windows\System32\sspisrv.dll - ok
10:23:27.0928 0x07c4 [ 5CB9870B36747D5108479A79538D912E, 235BDC3E60660EA6CC07EB107B90E46779495786DBB799243FED3892D63853B8 ] C:\Windows\System32\sspicli.dll
10:23:27.0928 0x07c4 C:\Windows\System32\sspicli.dll - ok
10:23:27.0944 0x07c4 [ 1BB87BFFCB8F38C3F05A76031585B64E, A0E911760D73570F76CCF84CA656A355002E74F35E2742E1D715AAF99A0EE298 ] C:\Windows\System32\samsrv.dll
10:23:27.0944 0x07c4 C:\Windows\System32\samsrv.dll - ok
10:23:27.0944 0x07c4 [ 68083118797CAF30FB2EA3E71494D67E, 5F1BCDFCB00A20CD60CBC70A2FD97405EF0F7173DD0E404BBA7B06D39DB37364 ] C:\Windows\System32\sysntfy.dll
10:23:27.0944 0x07c4 C:\Windows\System32\sysntfy.dll - ok
10:23:27.0944 0x07c4 [ DEE7267C5D232A3B816866872CE199E6, A1994FD37667C52E7CBF873514C190DA61A3D1349786D187BFAE0006F61799AE ] C:\Windows\System32\wmsgapi.dll
10:23:27.0944 0x07c4 C:\Windows\System32\wmsgapi.dll - ok
10:23:27.0944 0x07c4 [ 51E8A4EF10D50C1B04234ABC36C37F00, 33155109E7419EAA95AA119E78FB3C6EC07372F43097B4FFF84FEBD524C98CE0 ] C:\Windows\System32\cryptdll.dll
10:23:27.0944 0x07c4 C:\Windows\System32\cryptdll.dll - ok
10:23:27.0959 0x07c4 [ E914A50A151DFFE63D3935226DB5E2C1, 7DCCE4060344E1C771679F1C20378A0BEB3C1F06DB684072F07B98921A62A299 ] C:\Windows\System32\scext.dll
10:23:27.0959 0x07c4 C:\Windows\System32\scext.dll - ok
10:23:27.0959 0x07c4 [ 47DAC9DC0D3420FC18BCBB8992FFB08A, 59BD4F1B6362CBC2259D9A3721128107D81D0137DC41AFDA9920242790DBA41F ] C:\Windows\System32\secur32.dll
10:23:27.0959 0x07c4 C:\Windows\System32\secur32.dll - ok
10:23:27.0959 0x07c4 [ 3C073B0C596A0AF84933E7406766B040, 4698BBA678F553E15AD4B07AD7FB236281F872DEFEE97BFD637114476C8F97B3 ] C:\Windows\System32\wevtapi.dll
10:23:27.0959 0x07c4 C:\Windows\System32\wevtapi.dll - ok
10:23:27.0959 0x07c4 [ 7FBEBD2229EA5FD48D41B199EC2D541C, A465975D445A8D50CAF3EF29BD33354B320D11173C127BE30D5EBBFF7008CDCE ] C:\Windows\System32\authz.dll
10:23:27.0959 0x07c4 C:\Windows\System32\authz.dll - ok
10:23:27.0975 0x07c4 [ 86FE1B1F8FD42CD0DB641AB1CDB13093, 8C4BB4415105CE82FFFE658879EAE9D259A24C0F6DFC7D25507352DC99241BE2 ] C:\Windows\System32\cngaudit.dll
10:23:27.0975 0x07c4 C:\Windows\System32\cngaudit.dll - ok
10:23:27.0975 0x07c4 [ F6DD3D01797ED5ECB500AAEF9EEF2456, 344227035440FB53B516A9FBD7D40BA6557B00E2CD075DF7911E0A91258AABB5 ] C:\Windows\System32\ncrypt.dll
10:23:27.0975 0x07c4 C:\Windows\System32\ncrypt.dll - ok
10:23:27.0975 0x07c4 [ AA3421758EB2295B96E31EC5C67C5950, 3BD813CA80A3D38B5B8F081C989190C6470A84311072D6E641E3DA1478912221 ] C:\Windows\System32\bcrypt.dll
10:23:27.0975 0x07c4 C:\Windows\System32\bcrypt.dll - ok
10:23:27.0975 0x07c4 [ 02B64609F865A39365FF88580DF11738, 2F676B93898E1B6131AF6227BB7AB731EB9C29477F9BD4C2C60F0FC1E35CD968 ] C:\Windows\System32\msprivs.dll
10:23:27.0975 0x07c4 C:\Windows\System32\msprivs.dll - ok
10:23:27.0991 0x07c4 [ C6505DE3561537BA1004D638C2F93F2F, 3E4FDF374B1A9E43A8F61FD2D79E0515390ECABFDAF72C4BD44A7B6429039AF6 ] C:\Windows\System32\netjoin.dll
10:23:27.0991 0x07c4 C:\Windows\System32\netjoin.dll - ok
10:23:27.0991 0x07c4 [ CDA14CCE4D7495BB2FC4D7D664C4FD93, 715977E616E206724F91660EF5BD0C4F2C6D66E3891F03C28A864419102CE5B6 ] C:\Windows\System32\bcryptprimitives.dll
10:23:27.0991 0x07c4 C:\Windows\System32\bcryptprimitives.dll - ok
10:23:27.0991 0x07c4 [ 50532FCD7ECF02DD169CE5C485F02534, 8EE5D9D0EA53DC72BCC300692E521ACADD56AB09BFA3E78149D8B5A90648512C ] C:\Windows\System32\negoexts.dll
10:23:27.0991 0x07c4 C:\Windows\System32\negoexts.dll - ok
10:23:27.0991 0x07c4 [ 741B1DFADF59EF7A21E87FD5B56387AF, 9825E1626A75C9D27BE3D8214758D592A534349D5C76D6C5C52F2E6FBEA96DCE ] C:\Windows\System32\atmfd.dll
10:23:27.0991 0x07c4 C:\Windows\System32\atmfd.dll - ok
10:23:28.0006 0x07c4 [ 8AA244A59261BE7A3A3A4C4744A65F08, 0F412E99615C1B65E344234297D3350607244E8676DCD6B8D872F0952B880082 ] C:\Windows\System32\scesrv.dll
10:23:28.0006 0x07c4 C:\Windows\System32\scesrv.dll - ok
10:23:28.0006 0x07c4 [ 3A9C9BAF610B0DD4967086040B3B62A9, E8E9A0F42B1EE7806EDCEED08AA024D037215D06CA317E3678BD5364AD513D23 ] C:\Windows\System32\srvcli.dll
10:23:28.0006 0x07c4 C:\Windows\System32\srvcli.dll - ok
10:23:28.0006 0x07c4 [ E1748D04AE40118B62BC18AC86032192, A954B141D1B27272C771D14F3B40C7CC1F572DD72559F2C96182EFBE2B095FDE ] C:\Windows\System32\drivers\tsusbhub.sys
10:23:28.0006 0x07c4 C:\Windows\System32\drivers\tsusbhub.sys - ok
10:23:28.0006 0x07c4 [ 41EDECAA41A3DE771945D72966A0D102, F1A376EF3DA25CCF9A466DF59E0B889401747957DF4F5732430823DBCC92E036 ] C:\Windows\System32\kerberos.dll
10:23:28.0006 0x07c4 C:\Windows\System32\kerberos.dll - ok
10:23:28.0022 0x07c4 [ 37252C4232855AB0B59A0D4D1E3D4E48, 741F482B0D06B10C4D27F8A1059BB63F36D8C9B3951FC12716FA6ED670052A91 ] C:\Windows\System32\cryptsp.dll
10:23:28.0022 0x07c4 C:\Windows\System32\cryptsp.dll - ok
10:23:28.0022 0x07c4 [ 963D7FA2110EB9E03AB0D200E6AE2614, 5FE5AE6EFB5D47EF867A6E4F635EF707122FF3A5B34C7CDFE8F019D321B9971D ] C:\Windows\System32\mswsock.dll
10:23:28.0022 0x07c4 C:\Windows\System32\mswsock.dll - ok
10:23:28.0022 0x07c4 [ B86A27066984B747E692DB6C7EE384D8, 7E63DB04CC7C8942B86294D4BC11C1E1F8FB74F2D5D6EA8F48921B1992F9E28B ] C:\Windows\System32\msv1_0.dll
10:23:28.0022 0x07c4 C:\Windows\System32\msv1_0.dll - ok
10:23:28.0022 0x07c4 [ EC7CBFF96B05ECF3D366355B3C64ADCF, F69ED45EBEDCA9CF000AC03281F0EC2C351F98513FBA90E63394E4E561D6C7A2 ] C:\Windows\System32\wship6.dll
10:23:28.0022 0x07c4 C:\Windows\System32\wship6.dll - ok
10:23:28.0037 0x07c4 [ 70E1A26AB0D2516A969170391CA591A3, BD2689C17C39C3B51D3A899AE39D5D08F9490C84C5C0D0DB2E2A246C0F59705B ] C:\Windows\System32\netlogon.dll
10:23:28.0037 0x07c4 C:\Windows\System32\netlogon.dll - ok
10:23:28.0037 0x07c4 [ 9B86DF86D1EFF32893BC3FB49BFAA993, 0023A6DC681B479BB44EB2FC1B9CDD4B74C419BE93DA0BAF054F98A69C726E2D ] C:\Windows\System32\dnsapi.dll
10:23:28.0037 0x07c4 C:\Windows\System32\dnsapi.dll - ok
10:23:28.0037 0x07c4 [ 8FFE297B8449386E7B6851458B6E474E, E149B37E11091D69D926242517E5655596594A6F01FEF06EB65D6BA5B354E326 ] C:\Windows\System32\logoncli.dll
10:23:28.0037 0x07c4 C:\Windows\System32\logoncli.dll - ok
10:23:28.0037 0x07c4 [ 4389D25C77F9D10A7B24F629E09158B8, BCA1AA65E7C44C2906FAB1F4D9AD267FE6B8330C9DF4BE04F71AAC6140675566 ] C:\Windows\System32\schannel.dll
10:23:28.0037 0x07c4 C:\Windows\System32\schannel.dll - ok10:23:28.0053 0x07c4 [ 93B5551B1EDA77B8FE52F2CCA8CB3AAA, 7D9816A90AD34FD132B5A33E93EC20C21F3C1CBBE34CCBC2CE3DE88A3756DFDB ] C:\Windows\System32\wdigest.dll
10:23:28.0053 0x07c4 C:\Windows\System32\wdigest.dll - ok
10:23:28.0053 0x07c4 [ 1306E6A1BF4D506CD687DF9F947270F2, 3ED566F618D90BCCB3C76BA976911536FFC5631F7A6A91BF322628F8AAE498B4 ] C:\Windows\System32\pku2u.dll
10:23:28.0053 0x07c4 C:\Windows\System32\pku2u.dll - ok
10:23:28.0053 0x07c4 [ 5D8874A8C11DDDDE29E12DE0E2013493, 3E9A57137BF622AF83E3E4D58971E2C0200559CCA7545D16CF263AA03EE9C7D2 ] C:\Windows\System32\rsaenh.dll
10:23:28.0053 0x07c4 C:\Windows\System32\rsaenh.dll - ok
10:23:28.0053 0x07c4 [ FB516732E3C8295EECADDD244D8E006F, 8FD8304F4C188F6AC935A4927460F7BB651E864E6C4BF19C26E3D6CAA2EB2CD9 ] C:\Windows\System32\TSpkg.dll
10:23:28.0053 0x07c4 C:\Windows\System32\TSpkg.dll - ok
10:23:28.0069 0x07c4 [ 6E0FB9D84A648C4A05A5FD87B980024F, D705B2D25EE51A8C5D1475EBE36F252A001150E39D1940BFEFD2C695512C829A ] C:\Windows\System32\credssp.dll
10:23:28.0069 0x07c4 C:\Windows\System32\credssp.dll - ok
10:23:28.0069 0x07c4 [ 90BDEFC5DF334E5100EAA781D798DE1A, F48B650D811B6D57D2252E326C0C9CC74534BE9D510E7D3403F91D1C5C36281E ] C:\Windows\System32\efslsaext.dll
10:23:28.0069 0x07c4 C:\Windows\System32\efslsaext.dll - ok
10:23:28.0069 0x07c4 [ ED78427259134C63ED69804D2132B86C, F6F51B8B35881ABCA5580ED111AAC80E466E6474ABAE31EC8BE46C23EDCA77B2 ] C:\Windows\System32\scecli.dll
10:23:28.0069 0x07c4 C:\Windows\System32\scecli.dll - ok
10:23:28.0069 0x07c4 [ 1FB81632476857E8451DDA8A456EF3CE, 29D672F0D642D601FD0AC0BB406423AE71039556A882122BBEE3F4F6F61F3C89 ] C:\Windows\System32\ubpm.dll
10:23:28.0069 0x07c4 C:\Windows\System32\ubpm.dll - ok
10:23:28.0084 0x07c4 [ C78655BC80301D76ED4FEF1C1EA40A7D, 93B2ED4004ED5F7F3039DD7ECBD22C7E4E24B6373B4D9EF8D6E45A179B13A5E8 ] C:\Windows\System32\svchost.exe
10:23:28.0084 0x07c4 C:\Windows\System32\svchost.exe - ok
10:23:28.0084 0x07c4 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] C:\Windows\System32\umpnpmgr.dll
10:23:28.0084 0x07c4 C:\Windows\System32\umpnpmgr.dll - ok
10:23:28.0084 0x07c4 [ CD1B5AD07E5F7FEF30E055DCC9E96180, 63C58551F32B0B09377F64A6AE1FA81AF93B8A707A57A8C18722086906AD3046 ] C:\Windows\System32\devrtl.dll
10:23:28.0084 0x07c4 C:\Windows\System32\devrtl.dll - ok
10:23:28.0084 0x07c4 [ E6EB44ABAAF1F330119F854856C53EBE, 77279972FFBFA984578DD4F17EB615F5D2D93590AF3A9FEFEFDB9128206C9887 ] C:\Windows\System32\SPInf.dll
10:23:28.0084 0x07c4 C:\Windows\System32\SPInf.dll - ok
10:23:28.0100 0x07c4 [ B0759657CB9718C2CA21A7C239C93676, 82EBEB5DDD3D2E8D8877B5645868DF8E2F0B07E6CE943D36CEF05205905AE835 ] C:\Windows\System32\gpapi.dll
10:23:28.0100 0x07c4 C:\Windows\System32\gpapi.dll - ok
10:23:28.0100 0x07c4 [ F249779586148090EF90EFC697E4FE97, AD0ECD98307595C3C0D4397A8C87327198F4E7C8003063D36E28023016168CEC ] C:\Windows\System32\umpo.dll
10:23:28.0100 0x07c4 C:\Windows\System32\umpo.dll - ok
10:23:28.0100 0x07c4 [ F6C011B46FAEEF33536B2E80F48B5CBE, BDD149D3D6F9F6C8F6F34C311219BE5618CEEFBC7D35E37473A47F1D5D015067 ] C:\Windows\System32\pcwum.dll
10:23:28.0100 0x07c4 C:\Windows\System32\pcwum.dll - ok
10:23:28.0100 0x07c4 [ 716175021BDA290504CE434273F666BC, FA18CA2D8A5F4335E051E2933147D3C1E7308F7D446E2AEB6596CDEF6E2AFC88 ] C:\Windows\System32\powrprof.dll
10:23:28.0100 0x07c4 C:\Windows\System32\powrprof.dll - ok
10:23:28.0100 0x07c4 [ 5F3EB8162C7289C576BA23730193FB6A, 2D628832AF0BA61B1EB70A5070C71FAE8ECE0F6E136399B94BB38045CD040B3E ] C:\Windows\System32\rpcss.dll
10:23:28.0100 0x07c4 C:\Windows\System32\rpcss.dll - ok
10:23:28.0115 0x07c4 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] C:\Windows\System32\RpcEpMap.dll
10:23:28.0115 0x07c4 C:\Windows\System32\RpcEpMap.dll - ok
10:23:28.0115 0x07c4 [ 31559F3244C6BC00A52030CAA83B6B91, B2025742B5F0025ACE9821D5722DE3F997EEEAB21D2F381C9E307882DF422579 ] C:\Windows\System32\WSHTCPIP.DLL
10:23:28.0115 0x07c4 C:\Windows\System32\WSHTCPIP.DLL - ok
10:23:28.0115 0x07c4 [ D682E67712CCF3E6D297D915A420AB1B, 5C743290C03F259B536D0F24DA5B7020863DE913AB55B6C5D845803D1C5242BB ] C:\Windows\System32\wshqos.dll
10:23:28.0115 0x07c4 C:\Windows\System32\wshqos.dll - ok
10:23:28.0131 0x07c4 [ 715F03B4C7223349768013EA95D9E5B7, 09AB0535A54C2E2962F0FD06988D99060F8CECA39B07AC00A63204C773B95893 ] C:\Windows\System32\LogonUI.exe
10:23:28.0131 0x07c4 C:\Windows\System32\LogonUI.exe - ok
10:23:28.0131 0x07c4 [ C79388BDBB03835CF0EBECE4D7A6CB3D, DCF007A8B223C54BD4119FA2058B406EBF335C11654654E2C135F1B97B192129 ] C:\Windows\System32\FirewallAPI.dll
10:23:28.0131 0x07c4 C:\Windows\System32\FirewallAPI.dll - ok
10:23:28.0131 0x07c4 [ 94E026870A55AAEAFF7853C1754091E9, B2F5D5629D12BDFA98DBED3898368F37D9009C7531B6909C7285A2C11C9A0F93 ] C:\Windows\System32\version.dll
10:23:28.0131 0x07c4 C:\Windows\System32\version.dll - ok
10:23:28.0131 0x07c4 [ 6011714C8C5C55CBFFAD24D61E879FBD, 75D615082A1C71C6ED3ABB49EDAF660EE538D112CF79B9C8AF0A583D1CE1BBB0 ] C:\Windows\System32\wevtsvc.dll
10:23:28.0131 0x07c4 C:\Windows\System32\wevtsvc.dll - ok
10:23:28.0131 0x07c4 [ 9CE89CAB91036D11FE952A85F2C6828E, DA81CF87E85353EE6D806A433B407D76A283D0798FE89349F460F5690CD46EE6 ] C:\Windows\System32\authui.dll
10:23:28.0131 0x07c4 C:\Windows\System32\authui.dll - ok
10:23:28.0147 0x07c4 [ 16F747913D2F5605A3807350411C6F8D, 670F8343EA79D2E96C64DC4435FEF3DD30916EAB541558E775C3E3E409DC8DEE ] C:\Windows\System32\cryptui.dll
10:23:28.0147 0x07c4 C:\Windows\System32\cryptui.dll - ok
10:23:28.0147 0x07c4 [ 2D7E923DDC647646CC59877C18A1D1DC, 31626B41F196A331CF67BF959C3A1424934BF4B8B0AE197E7EDC833E4353ED0D ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24483_none_e372d88f30fbb845\comctl32.dll
10:23:28.0147 0x07c4 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24483_none_e372d88f30fbb845\comctl32.dll - ok
10:23:28.0147 0x07c4 [ 8BC6CAA37159AE5F3BECD8FB96EC30F4, D1E9A67772108FFF9083E31ED8CE8A8805AD43465AD4A21B93BC86045212C813 ] C:\Windows\System32\samlib.dll
10:23:28.0147 0x07c4 C:\Windows\System32\samlib.dll - ok
10:23:28.0147 0x07c4 [ 4E9C2DB10F7E6AE91BF761139D4B745B, 8F63F78294F5585D599A114AF449DCC447CCB239D0F0B490BFE6B34A2146E730 ] C:\Windows\System32\shacct.dll
10:23:28.0147 0x07c4 C:\Windows\System32\shacct.dll - ok
10:23:28.0162 0x07c4 [ F06BB4E336EA57511FDBAFAFCC47DE62, BE43EC62548E9FF89A9495A1722E22DBB76EEC3764F86E64057B636F27D15765 ] C:\Windows\System32\propsys.dll
10:23:28.0162 0x07c4 C:\Windows\System32\propsys.dll - ok
10:23:28.0162 0x07c4 [ D29E998E8277666982B4F0303BF4E7AF, 4F19AB5DC173E278EBE45832F6CEAA40E2DF6A2EDDC81B2828122442FE5D376C ] C:\Windows\System32\uxtheme.dll
10:23:28.0162 0x07c4 C:\Windows\System32\uxtheme.dll - ok
10:23:28.0162 0x07c4 [ 4A59A39A3AD30BF57EE342B037D0A0F7, F984BFB9B27306E61591552F5747270547DF06E74E75EBE224C386D851AE81D1 ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.24537_none_14586ebe8b931a35\GdiPlus.dll
10:23:28.0162 0x07c4 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.24537_none_14586ebe8b931a35\GdiPlus.dll - ok
10:23:28.0178 0x07c4 [ 3CB6A7286422C72C34DAB54A5DFF1A34, 98D21EFFF511E407336A226420701E82554DA01FA05661303836B6860D63749D ] C:\Windows\System32\dui70.dll
10:23:28.0178 0x07c4 C:\Windows\System32\dui70.dll - ok
10:23:28.0178 0x07c4 [ 8CCDE014A4CDF84564E03ACE064CA753, DD663029B2EB7B12FDB00FCE403D8326141E540E3B9CE84CD5871473D3E2E2CF ] C:\Windows\System32\duser.dll
10:23:28.0178 0x07c4 C:\Windows\System32\duser.dll - ok
10:23:28.0178 0x07c4 [ D7F1EF374A90709B31591823B002F918, 05FD2837C9B03D14BB2A969C1AD77CAEF047D93DC5D0F6C2ACBF0888E8F7B359 ] C:\Windows\System32\SndVolSSO.dll
10:23:28.0178 0x07c4 C:\Windows\System32\SndVolSSO.dll - ok
10:23:28.0178 0x07c4 [ B8542140074D2B51FDC55E6907996CC4, A1ABD4DCF2CC8623AF6E18F1449BF144342D49176FD25501E0F33EE4C41FC5A6 ] C:\Windows\System32\dwmapi.dll
10:23:28.0178 0x07c4 C:\Windows\System32\dwmapi.dll - ok
10:23:28.0193 0x07c4 [ 896F15A6434D93EDB42519D5E18E6B50, 9263F0CEC58D45EBE3FB9C3061FB9392C55A7933B84B4592E6EE13CFC86D5A50 ] C:\Windows\System32\hid.dll
10:23:28.0193 0x07c4 C:\Windows\System32\hid.dll - ok
10:23:28.0193 0x07c4 [ 227E2C382A1E02F8D4965E664D3BBE43, 1CFF20A8BF87ACE4FA4935EBEED72BFB1A1FE902A754899E2F50798D67DF5642 ] C:\Windows\System32\MMDevAPI.dll
10:23:28.0193 0x07c4 C:\Windows\System32\MMDevAPI.dll - ok
10:23:28.0193 0x07c4 [ CD45B4D8B914454A3D4971C5AFF43269, CE3FF46AFC5D89160FEEBFC06420022369BD02C9348FF5575F8190233BB59816 ] C:\Windows\System32\xmllite.dll
10:23:28.0193 0x07c4 C:\Windows\System32\xmllite.dll - ok
10:23:28.0193 0x07c4 [ C353CD10AB11140A996331969208D96D, 0B956A3BF2DC90471E38F23C7574321D0A07CCA0660CF7200328C797AB346373 ] C:\Windows\System32\WindowsCodecs.dll
10:23:28.0193 0x07c4 C:\Windows\System32\WindowsCodecs.dll - ok
10:23:28.0209 0x07c4 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D, 19959D18601712901F03B83150D15E34EBCAB355BB4692C9A28511A72F57FC66 ] C:\Windows\System32\winbrand.dll
10:23:28.0209 0x07c4 C:\Windows\System32\winbrand.dll - ok
10:23:28.0209 0x07c4 [ 8563BA40DF4F1E93A61B70E2C8B60CF8, E5CAA520CBE61FAF3EAA784A51ED30E0CB2FD78EFD8AE1D5C6B0FE43A1009F39 ] C:\Windows\System32\SmartcardCredentialProvider.dll
10:23:28.0209 0x07c4 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
10:23:28.0209 0x07c4 [ C2762A57DF0EE85E63CE4893C5215313, DDE22212D78353633CEDE27D7210469DE674563991105563CF64CCCE2D0743BD ] C:\Windows\System32\VaultCredProvider.dll
10:23:28.0209 0x07c4 C:\Windows\System32\VaultCredProvider.dll - ok
10:23:28.0209 0x07c4 [ BD3674BE7FC9D8D3732C83E8499576ED, E6716A5895D629263A4D21959F48840429AB6F4B55A5FA2663EE5E86C9CA2BF1 ] C:\Windows\System32\wtsapi32.dll
10:23:28.0209 0x07c4 C:\Windows\System32\wtsapi32.dll - ok
10:23:28.0225 0x07c4 [ 9BC8610C32C96A2983A65DC21CAFA921, 2A4195F663C9D55939E3D8FEAA208090FDB0B8801A60164A7325B53104797CBC ] C:\Windows\System32\UXInit.dll
10:23:28.0225 0x07c4 C:\Windows\System32\UXInit.dll - ok
10:23:28.0225 0x07c4 [ CF636C92B762B26F0B39B38E92380A09, F7B8B0EA4536CE3BA33EE1BD0783F6AAD8C0EF69714E874D4A30B720A04C7A18 ] C:\Windows\System32\oleacc.dll
10:23:28.0225 0x07c4 C:\Windows\System32\oleacc.dll - ok
10:23:28.0225 0x07c4 [ 019BDD35DE269CB98B22DE8923C2AA3B, 68B216D5331B128CF1BCB3A3F82FD85B119FFDBCB796C907461CDD6248995817 ] C:\Windows\System32\UIAutomationCore.dll
10:23:28.0225 0x07c4 C:\Windows\System32\UIAutomationCore.dll - ok
10:23:28.0225 0x07c4 [ B268576CE77E7C0278B383BA8CE740BE, EE67E9FAD8BB755737501FF1260227F5898672665502FE1747BC84065BF230D7 ] C:\Windows\System32\msimg32.dll
10:23:28.0225 0x07c4 C:\Windows\System32\msimg32.dll - ok
10:23:28.0240 0x07c4 [ 58775492FFD419248B08325E583C527F, DBB013971F5894F25C222C2D4D50A29DB6DF3C413792EE9CCC1A9E6D85469093 ] C:\Windows\System32\atl.dll
10:23:28.0240 0x07c4 C:\Windows\System32\atl.dll - ok
10:23:28.0240 0x07c4 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] C:\Windows\System32\profsvc.dll
10:23:28.0240 0x07c4 C:\Windows\System32\profsvc.dll - ok
10:23:28.0240 0x07c4 [ 2B81776DA02017A37FE26C662827470E, A656353C50EE08422145D00DB9CFD9F6D3E664753B3C454B171E2A56A8AA94DC ] C:\Windows\System32\IPHLPAPI.DLL
10:23:28.0240 0x07c4 C:\Windows\System32\IPHLPAPI.DLL - ok
10:23:28.0240 0x07c4 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] C:\Windows\System32\lmhsvc.dll
10:23:28.0240 0x07c4 C:\Windows\System32\lmhsvc.dll - ok
10:23:28.0256 0x07c4 [ B73A6E4B319AFFE64582AC5C1801BB3F, 274EEA0743DC659180E691654CBB17136E9E9D83B07E302B47EA5B103EA57710 ] C:\Windows\System32\nrpsrv.dll
10:23:28.0256 0x07c4 C:\Windows\System32\nrpsrv.dll - ok
10:23:28.0256 0x07c4 [ 668B9EFF5CCA4542F435D2CD9CE3C778, 7409EF35D1DC0DE2BAB752694981FFA1F1855C7F11310366B80BD1EC3513262E ] C:\Windows\System32\nsisvc.dll
10:23:28.0256 0x07c4 C:\Windows\System32\nsisvc.dll - ok
10:23:28.0256 0x07c4 [ 730153373C28F016B84D7F717775954D, 5D487E311401138ECE73C734DDA7B4F8D9D9058BB9E03589CF796652214C47C4 ] C:\Windows\System32\winnsi.dll
10:23:28.0256 0x07c4 C:\Windows\System32\winnsi.dll - ok
10:23:28.0256 0x07c4 [ 92286CCC501A4F588B2FAB8D1B6A236C, 9B96B92D9874DC8C24BD2B9DBB1C179175B36892B98C6638DCA0D5FA48D55A80 ] C:\Windows\System32\dhcpcore.dll
10:23:28.0256 0x07c4 C:\Windows\System32\dhcpcore.dll - ok
10:23:28.0271 0x07c4 [ EEEFC204476D5C44E4F6802F55697179, 0B67D193FF6389BE207F584F4D0C4C0B8BC9F4206851991AD270D894B95E314E ] C:\Windows\System32\dnsrslvr.dll
10:23:28.0271 0x07c4 C:\Windows\System32\dnsrslvr.dll - ok
10:23:28.0271 0x07c4 [ 0750DA523B0153FFE09389D7CFA5E878, C0C40928A10181FDF179202EEBBD15B8413ED49ABE5D1E7CA52EB61F8F43E1DB ] C:\Windows\System32\dhcpcore6.dll
10:23:28.0271 0x07c4 C:\Windows\System32\dhcpcore6.dll - ok
10:23:28.0271 0x07c4 [ 8767D0E708B753D4E44ECD907F941B87, 96096AFF51A6DF93B88C03AD1CF8C0A6E28DC0071A02360D5AD077C8A24ABEF0 ] C:\Windows\System32\dhcpcsvc6.dll
10:23:28.0271 0x07c4 C:\Windows\System32\dhcpcsvc6.dll - ok
10:23:28.0271 0x07c4 [ 5AE580537C52D695EABE7612A670B07E, 78523439043321A314950D71BC9688A049CAC51825974797EAB75C44056164BD ] C:\Windows\System32\FWPUCLNT.DLL
10:23:28.0271 0x07c4 C:\Windows\System32\FWPUCLNT.DLL - ok
10:23:28.0287 0x07c4 [ 81F13B97E5653FF78944F3B58120B395, 5AEB8B3D3172E7652D197D744963640D6FAD370FD709B259221689528CFACB53 ] C:\Windows\System32\dhcpcsvc.dll
10:23:28.0287 0x07c4 C:\Windows\System32\dhcpcsvc.dll - ok
10:23:28.0287 0x07c4 [ 885D0942E0F28DB90919BE3129ECF279, 5A10D90EE656ECE3DCA174D6F924641509819FC20CB6EF46B5E1723E52DE85BE ] C:\Windows\System32\dnsext.dll
10:23:28.0287 0x07c4 C:\Windows\System32\dnsext.dll - ok
10:23:28.0287 0x07c4 [ E3ED6C06462FDDE33100F7E45E8F5213, 71AA528F8912106FDAD83175A7529CF94B5B19093D2C63C25FAC198587286F87 ] C:\Windows\System32\BFE.DLL
10:23:28.0287 0x07c4 C:\Windows\System32\BFE.DLL - ok
10:23:28.0287 0x07c4 [ BE097F5BB10F9079FCEB2DC4E7E20F02, 90A88986C8C5F30FB153EC803FEDA6572B2C2630A6C9578FCC017800692694D5 ] C:\Windows\System32\slc.dll
10:23:28.0287 0x07c4 C:\Windows\System32\slc.dll - ok
10:23:28.0287 0x07c4 [ D7E5C916557268B3DCC9E7DAD58E7727, 439D76346E8762BA7D7F91B09580EFE8354F1A650F3B59101A3BEE2328D8F562 ] C:\Windows\System32\drivers\bowser.sys
10:23:28.0287 0x07c4 C:\Windows\System32\drivers\bowser.sys - ok
10:23:28.0303 0x07c4 [ 3C91392D448F6E5D525A85B7550D8BA9, 6FD0DC73DBE7519E2C643554C2A7F8FBE4F9A678C4241BB54B3C6E65D2ABCF3A ] C:\Windows\System32\wkscli.dll
10:23:28.0303 0x07c4 C:\Windows\System32\wkscli.dll - ok
10:23:28.0303 0x07c4 [ 6CECA4C6A489C9B2E6073AFDAAE3F607, 127506D1DB38275614CBEB047C133718EF9D03266BA9C98BE55EC7847CFC9C3D ] C:\Windows\System32\netutils.dll
10:23:28.0303 0x07c4 C:\Windows\System32\netutils.dll - ok
10:23:28.0303 0x07c4 [ FC51229C7D4AFA0D6F186133728B95AB, 37E58C8E1C8437D1981725A5DCDACA7316CEFBB570370CEFC8D122F523B96AC0 ] C:\Windows\System32\samcli.dll
10:23:28.0303 0x07c4 C:\Windows\System32\samcli.dll - ok
10:23:28.0318 0x07c4 [ 5AA945234E9D4CCE4F715276B9AA712C, 65165BD131056816F009D987FC78AC86FFE0C3C38A27E73F873586B7FF4D59CF ] C:\Windows\System32\imageres.dll
10:23:28.0318 0x07c4 C:\Windows\System32\imageres.dll - ok
10:23:28.0318 0x07c4 [ 3F829492638A86A3C4E0BB06778F0C23, A5B5FBE06E407C892E4668D53CC3F49BC6C7ACA12ED7AFB69FAC1C133003A890 ] C:\Windows\System32\drivers\mpsdrv.sys
10:23:28.0318 0x07c4 C:\Windows\System32\drivers\mpsdrv.sys - ok
10:23:28.0318 0x07c4 [ 2EF08F96630129E503D0A9C13604574F, B0EF46082A9959F0E49CF4308D856F80041B9E81F27AAE4528FE2B19EF3CC4B1 ] C:\Windows\System32\drivers\mrxsmb.sys
10:23:28.0318 0x07c4 C:\Windows\System32\drivers\mrxsmb.sys - ok
10:23:28.0318 0x07c4 [ DF0E99ABC53DFB2036386F3A90EF97BB, 94E381DDA78134ED142C9F07483B95D1D6E331503B9CD2BE6B110EC467549FBE ] C:\Windows\System32\drivers\mrxsmb10.sys
10:23:28.0318 0x07c4 C:\Windows\System32\drivers\mrxsmb10.sys - ok
10:23:28.0334 0x07c4 [ 3E8048CF0BE9784B65615EBA75C95823, 666595401CC49644C2C0DEFF97CEA799FE1250DC3466CBA34EB7CD8B9469A02F ] C:\Windows\System32\drivers\mrxsmb20.sys
10:23:28.0334 0x07c4 C:\Windows\System32\drivers\mrxsmb20.sys - ok
10:23:28.0334 0x07c4 [ C7A8706D5536D9BE35396C0116CAA8EE, AFB6B40B5CBA4F54C6AB3F82534CCA9D393C466EC5E3981CEBB33CB111C405D0 ] C:\Windows\System32\MPSSVC.dll
10:23:28.0334 0x07c4 C:\Windows\System32\MPSSVC.dll - ok
10:23:28.0334 0x07c4 [ 34FAA8AADEF99060A9DD82D9584197DC, E960A1379C5CCB26C1DAF9215FB8B3FE155C541F85DD76191F4D444A510CB0FF ] C:\Windows\System32\wfapigp.dll
10:23:28.0334 0x07c4 C:\Windows\System32\wfapigp.dll - ok
10:23:28.0334 0x07c4 [ 01C95A8CAE16CCF1EA1181395C872B9F, 0BB846AFC7335BB0CD52735AE32E0BCD5075865900C356493DC159795E8C8181 ] C:\Windows\System32\wkssvc.dll
10:23:28.0334 0x07c4 C:\Windows\System32\wkssvc.dll - ok
10:23:28.0334 0x07c4 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] C:\Windows\System32\wbem\WMIsvc.dll
10:23:28.0349 0x07c4 C:\Windows\System32\wbem\WMIsvc.dll - ok
10:23:28.0349 0x07c4 [ A06266DE2FA4583A75C81B1E7EB0989D, 01855E5B87D360A2F6F15194C66E23E5BF629DB054DD7CAA211CA01D277F63A2 ] C:\Windows\System32\mscms.dll
10:23:28.0349 0x07c4 C:\Windows\System32\mscms.dll - ok
10:23:28.0349 0x07c4 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE, A734A20357026C42950394682A52CBC3AF956D09F1949E1B4E95467E999BC428 ] C:\Windows\System32\wbemcomn.dll
10:23:28.0349 0x07c4 C:\Windows\System32\wbemcomn.dll - ok
10:23:28.0349 0x07c4 [ 5EF9936FC08352660CFDF17F2BE39BA1, 65D4628478BA3DDB19758B3EBE638B8A083D78CAE3E3550AC5E0129BBE8B6268 ] C:\Windows\System32\pcasvc.dll
10:23:28.0349 0x07c4 C:\Windows\System32\pcasvc.dll - ok
10:23:28.0349 0x07c4 [ 1F4492FE41767CDB8B89D17655847CDD, 184547FAC0C3D7148FAA3F601929A7089DE393BD19929A137DAD743331DD3F77 ] C:\Windows\System32\ntmarta.dll
10:23:28.0349 0x07c4 C:\Windows\System32\ntmarta.dll - ok
10:23:28.0365 0x07c4 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] C:\Windows\System32\snmptrap.exe
10:23:28.0365 0x07c4 C:\Windows\System32\snmptrap.exe - ok
10:23:28.0365 0x07c4 [ 0C52762C606BCF6A377D5E4688191A6B, C58C9A73AD07E3B93AB186D0D47C5F1CB7197771DBEE40646C3B801645BB388F ] C:\Windows\System32\wbem\WmiDcPrv.dll
10:23:28.0365 0x07c4 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
10:23:28.0365 0x07c4 [ A3F5E8EC1316C3E2562B82694A251C9E, F3DC6AA6A9D3B5BBC730668FC52C1D4BB5D515D404578BDDD3D4869A7ED58822 ] C:\Windows\System32\wbem\fastprox.dll
10:23:28.0365 0x07c4 C:\Windows\System32\wbem\fastprox.dll - ok
10:23:28.0381 0x07c4 [ 9A463A0386D75F5EE3D496966FA5E466, 340E72FF6E0AD4D48749EED73452EBB5A6B7679BFB98FBBEDF8C4C6A2B3D118C ] C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
10:23:28.0381 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe - ok
10:23:28.0381 0x07c4 [ EE26D130808D16C0E417BBBED0451B34, 4886DCE4FAEF146A40BABD492A8000A2022FEA542A6135A9BAFD4CD09297B4E5 ] C:\Windows\System32\ntdsapi.dll
10:23:28.0381 0x07c4 C:\Windows\System32\ntdsapi.dll - ok
10:23:28.0381 0x07c4 [ 6CEF7856A3EFAC59470F6208F0F585CE, 0F7A80DB821FDE6580E9481B6DA44844F717DDB4983B0E3D562BE43726153951 ] C:\Windows\System32\mpr.dll
10:23:28.0381 0x07c4 C:\Windows\System32\mpr.dll - ok
10:23:28.0381 0x07c4 [ EEEA40F0EDB0A6E5359E539E15D0BC77, BFCBF777239C29C6AC4BC5B59591308571647B7C7FDB5571903F7403DD241E8E ] C:\Windows\System32\netapi32.dll
10:23:28.0381 0x07c4 C:\Windows\System32\netapi32.dll - ok
10:23:28.0381 0x07c4 [ C6DCD1D11ED6827F05C00773C3E7053C, EA23BE261C9C04F44215D254D7A80FD0AEE84C6F192D0FEE49A7CF74ED3CB1A6 ] C:\Windows\System32\sfc.dll
10:23:28.0381 0x07c4 C:\Windows\System32\sfc.dll - ok
10:23:28.0396 0x07c4 [ 666A60F6F5E719856FF6254E0966EFF7, 58C072E7E215991E19C1CA062C476081982F7B9F039714539AE7FEB4981C200F ] C:\Windows\System32\wbem\wbemprox.dll
10:23:28.0396 0x07c4 C:\Windows\System32\wbem\wbemprox.dll - ok
10:23:28.0396 0x07c4 [ BC28471E2FAF0DEBEFF6FA3B9FA97229, A35B6776ECD71B4E45983F50CBE9227F2083A12F47423AF836431F672E165A0F ] C:\Windows\System32\api-ms-win-core-synch-l1-2-0.dll
10:23:28.0396 0x07c4 C:\Windows\System32\api-ms-win-core-synch-l1-2-0.dll - ok
10:23:28.0396 0x07c4 [ 895C9AB0A855547445C4181195230757, 89BDA385D8CCB75C3D7B1BDFA567AC441A931F4E499C0835FEE9D010343FABB6 ] C:\Windows\System32\sfc_os.dll
10:23:28.0396 0x07c4 C:\Windows\System32\sfc_os.dll - ok
10:23:28.0412 0x07c4 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567, 426FB40A065FEF61980C803EF72D0D326C623340C3AE99CA8AFFDEFB81E8D49D ] C:\Windows\System32\vssapi.dll
10:23:28.0412 0x07c4 C:\Windows\System32\vssapi.dll - ok
10:23:28.0412 0x07c4 [ E1280B6DC03C9DB648F5C8BAA78AD03F, D9139A390AC12BE1BAE875388378C799183043CBAEB40347061C4BB2900F96FF ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
10:23:28.0412 0x07c4 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
10:23:28.0412 0x07c4 [ E6E02AEC2F27C276BE04671883572DA4, EA11EDA7C3EB4CC1BC040CC27339AC6BA09535D666F6456BA6B7820E90ED5F41 ] C:\Windows\System32\adtschema.dll
10:23:28.0412 0x07c4 C:\Windows\System32\adtschema.dll - ok
10:23:28.0412 0x07c4 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] C:\Windows\System32\netprofm.dll
10:23:28.0412 0x07c4 C:\Windows\System32\netprofm.dll - ok
10:23:28.0427 0x07c4 [ 0255C22D99602534F15CBB8D9B6F152F, 43CD89D6CA56E0B633142F7C86DA9E072EE0723B5EBC4CE8CCBCA58C396ECF54 ] C:\Windows\System32\wbem\WinMgmtR.dll
10:23:28.0427 0x07c4 C:\Windows\System32\wbem\WinMgmtR.dll - ok
10:23:28.0427 0x07c4 [ DC591A7A196E99EFB5A48D708CB989FD, 1C34C0A4AEEE977D290EF5E79C3B13B1F1F18E051F49815013D360F62458D82A ] C:\Windows\System32\drivers\fltMgr.sys
10:23:28.0427 0x07c4 C:\Windows\System32\drivers\fltMgr.sys - ok
10:23:28.0427 0x07c4 [ 50544D04AD845C43130B70212EC05CCD, B2E6B558DE7D273512226685FF53ED17C9B4BF81B739FBCA5D3FC82DF8D2BCF7 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
10:23:28.0427 0x07c4 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
10:23:28.0427 0x07c4 [ 91A8E32B00BF7899EDAB6783287DDDA6, 49451722317AB42B3DE407EFCB9CC560C1455217AC3E2F11F74D08C1708473C5 ] C:\Windows\System32\PeerDistSh.dll
10:23:28.0427 0x07c4 C:\Windows\System32\PeerDistSh.dll - ok
10:23:28.0443 0x07c4 [ A3DB3C17EE6CAE65D53602B4E80BCCBC, D802A7C6161F937DC42A6E45FE1BB2C8272819F92C294C180EBCDF8FF72CBFDC ] C:\Windows\System32\PSHED.DLL
10:23:28.0443 0x07c4 C:\Windows\System32\PSHED.DLL - ok
10:23:28.0443 0x07c4 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] C:\Windows\System32\sstpsvc.dll
10:23:28.0443 0x07c4 C:\Windows\System32\sstpsvc.dll - ok
10:23:28.0443 0x07c4 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] C:\Windows\System32\provsvc.dll
10:23:28.0443 0x07c4 C:\Windows\System32\provsvc.dll - ok
10:23:28.0443 0x07c4 [ 7C29DE74BCFA9F828BF1EC7149865AD8, 79885916C1A7FE598114E05AC14AA72DD8A7E1FE14B1CF6FF264006B3C120F21 ] C:\Windows\System32\ci.dll
10:23:28.0443 0x07c4 C:\Windows\System32\ci.dll - ok
10:23:28.0459 0x07c4 [ 2F10C8ECB51E41C9993B90204F3A5F5E, FF50F28544FDAB545971FFA7113BD7967CCAE6CD83858ECF7346C6A0DDE9672A ] C:\Windows\System32\cryptsvc.dll
10:23:28.0459 0x07c4 C:\Windows\System32\cryptsvc.dll - ok
10:23:28.0459 0x07c4 [ 9259FEF5A1FA9149F655651192660A78, 514FB75C22DDB15A8225E49EF4210D345BD7D0AFA2F369B1C19C338AC02FEEA8 ] C:\Windows\System32\cscapi.dll
10:23:28.0459 0x07c4 C:\Windows\System32\cscapi.dll - ok
10:23:28.0459 0x07c4 [ 5D8102F5BEDC510803B93FD57F12F847, 1A37755059F90E8B295C981D71302F97F78943145251E0EDD412BD76A1EC0E2A ] C:\Program Files\Malwarebytes\Anti-Malware\offreg.dll
10:23:28.0459 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\offreg.dll - ok
10:23:28.0459 0x07c4 [ B6FC26754BD20F5B4F75BCF2C359208E, 7B49B2EE47FFE1649BEA04097FA210D37EFB1674527CD612EEF89A6B657742BF ] C:\Program Files\Malwarebytes\Anti-Malware\PoliciesControllerImpl.dll
10:23:28.0459 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\PoliciesControllerImpl.dll - ok
10:23:28.0474 0x07c4 [ 439E2F41CC91DE42214D5CA2EA69ECD1, 94A820E238024DC5C65785B37141020078EED9B170BE4389F085577637B538DF ] C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll
10:23:28.0474 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll - ok
10:23:28.0474 0x07c4 [ 52C40D9EE10EC5408570E1B39AE7FFD5, CC56F2C801BF6D351C36928360BD013A91C3CED03FD039FF96D3507CD88610B9 ] C:\Program Files\Malwarebytes\Anti-Malware\LicenseControllerImpl.dll
10:23:28.0474 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\LicenseControllerImpl.dll - ok
10:23:28.0474 0x07c4 [ 011F0B067E47612F57C4ECE377D9C9DF, 69FA7230B889DA09CD4DDA0D38CA1D418E48605535D7E1125050F0B89919DFBE ] C:\Windows\System32\activeds.dll
10:23:28.0474 0x07c4 C:\Windows\System32\activeds.dll - ok
10:23:28.0474 0x07c4 [ 287923557447D7E4BDD7E65B1F0F5428, 14D85A0F036F28D77AA9723C3D7E8C4DA9BDFF8A1AD9BEA6FE5756DBF5D00F08 ] C:\Windows\System32\vsstrace.dll
10:23:28.0474 0x07c4 C:\Windows\System32\vsstrace.dll - ok
10:23:28.0490 0x07c4 [ 5EB55F661DEBF156E126160BCD4D89F8, 948D1F627AA55D55FB3B558BA61B8366C5481A6041820631F24408F75EA5D2CC ] C:\Windows\System32\wbem\wbemcore.dll
10:23:28.0490 0x07c4 C:\Windows\System32\wbem\wbemcore.dll - ok
10:23:28.0490 0x07c4 [ 087D8668C71634A3A3761135ABF16EEE, B7348A63299CFF4FFBF375E645A4850AE0F108D48D13AB25434CFAE7CF3D61FD ] C:\Windows\System32\wbem\esscli.dll
10:23:28.0490 0x07c4 C:\Windows\System32\wbem\esscli.dll - ok
10:23:28.0490 0x07c4 [ A8EDB86FC2A4D6D1285E4C70384AC35A, 61B8955CE0A2AA9D0719920B30216717B349B6FBE11C697C31CFA84F859CC1AE ] C:\Windows\System32\dllhost.exe
10:23:28.0490 0x07c4 C:\Windows\System32\dllhost.exe - ok
10:23:28.0505 0x07c4 [ 718B6F51AB7F6FE2988A36868F9AD3AB, 76141B4E94C2766E2C34CEF523092948771A7893212EFADBE88D2171B85FF012 ] C:\Windows\System32\wbem\wbemsvc.dll
10:23:28.0505 0x07c4 C:\Windows\System32\wbem\wbemsvc.dll - ok
10:23:28.0505 0x07c4 [ 51F89CE2D0FEC66070354504E6C4C3E4, 565CC85156C39FB89762757EF6A935FC42DB2599A5E49643447D30C8B9371133 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18837_none_a4d981ff711297b6\comctl32.dll
10:23:28.0505 0x07c4 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18837_none_a4d981ff711297b6\comctl32.dll - ok
10:23:28.0505 0x07c4 [ A0A2C1D812C231C9BFE119FDC68E341B, F94446594EE17505956A715DFB28B51D09F00A7A65E56950661B889A57DE8FA8 ] C:\Windows\System32\IDStore.dll
10:23:28.0505 0x07c4 C:\Windows\System32\IDStore.dll - ok
10:23:28.0505 0x07c4 [ 0143DB80DACFB7C2B5B7009ED9063353, 252885CF7C1BAB89B86908373546E5F5D674BEF7AACBDDCF321AD877CB9150A9 ] C:\Windows\System32\wbem\wmiutils.dll
10:23:28.0505 0x07c4 C:\Windows\System32\wbem\wmiutils.dll - ok
10:23:28.0521 0x07c4 [ 0AB34456654C283DAA13B8D2BA21439B, 4B70FC5195DE39564E951C8542020BA3D4257E3D4488F69825F67A6099CB7549 ] C:\Windows\System32\wbem\repdrvfs.dll
10:23:28.0521 0x07c4 C:\Windows\System32\wbem\repdrvfs.dll - ok
10:23:28.0521 0x07c4 [ BAFE84E637BF7388C96EF48D4D3FDD53, 11C194D9ADCE90027272C627D7FBF3BA5025FF0F7B26A8333F764E11E1382CF9 ] C:\Windows\System32\userinit.exe
10:23:28.0521 0x07c4 C:\Windows\System32\userinit.exe - ok
10:23:28.0521 0x07c4 [ 38AE1B3C38FAEF56FE4907922F0385BA, D5BC504277172BE5C54B60AD5C13209DC1F729131DEF084DE3EC8C72E54C58EF ] C:\Windows\explorer.exe
10:23:28.0521 0x07c4 C:\Windows\explorer.exe - ok
10:23:28.0521 0x07c4 [ DCC470E74AB89AE26ACED07769F0417A, FD05F32D107B9FFBDF17C2A24159673B049724CC829E53FC2FC58B3DD1687510 ] C:\Windows\System32\ExplorerFrame.dll
10:23:28.0521 0x07c4 C:\Windows\System32\ExplorerFrame.dll - ok
10:23:28.0521 0x07c4 [ 07EAEA9D3E09340E64918EED526A5FFE, A1AFD2FD6DA5968F6D83733C98D301C82BA33988D28EBFCF2F50EB3B40EF5611 ] C:\Windows\System32\apphelp.dll
10:23:28.0521 0x07c4 C:\Windows\System32\apphelp.dll - ok
10:23:28.0537 0x07c4 [ DDD0357A92FA843EFF8915ED17253D6C, 0C78B1D41F0A7821186ADF653504F2BFF067CB512CB0E932047C301378BBADB6 ] C:\Windows\System32\wbem\WmiPrvSD.dll
10:23:28.0537 0x07c4 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
10:23:28.0537 0x07c4 [ D41FEBD098234F02485A4EA98D4730A4, 462DC8168C444F35B43BA3B8F7D77734665D84F1C6D25CAD7391C0145961628F ] C:\Windows\System32\ncobjapi.dll
10:23:28.0537 0x07c4 C:\Windows\System32\ncobjapi.dll - ok
10:23:28.0537 0x07c4 [ 6F40D6FB05E0C1E5402812B426971AF0, E41F138F0F2DB057F8DBB1587237C6FA8A2059B3D64EC894D1DC492A18DBBDED ] C:\Windows\System32\wbem\wbemess.dll
10:23:28.0537 0x07c4 C:\Windows\System32\wbem\wbemess.dll - ok
10:23:28.0537 0x07c4 [ 05F620B4B2E7DEB9409C0C6A4FEDD2A4, 19C5EBCE5F4B574402F0F4802C93824B0763DD2C972E146E26B85C0960A05185 ] C:\Windows\System32\adsldpc.dll
10:23:28.0537 0x07c4 C:\Windows\System32\adsldpc.dll - ok
10:23:28.0552 0x07c4 [ 9CBD8B8077792AC17F47C895F3EB7766, 1C1494B2BE351174E27ECFFFACE7635042FF83004FBB60B5417948EE3CEB16D4 ] C:\Program Files\Malwarebytes\Anti-Malware\UpdateControllerImpl.dll
10:23:28.0552 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\UpdateControllerImpl.dll - ok
10:23:28.0552 0x07c4 [ 71967C927A1F528B1D349479FD36693E, 577C113F4726EA28EDA034C0456EC6D11EDCB52965CF42CB073C4E7972CBCE4A ] C:\Windows\System32\cryptnet.dll
10:23:28.0552 0x07c4 C:\Windows\System32\cryptnet.dll - ok
10:23:28.0552 0x07c4 [ 93DEDBE8E24F31962755E6AA4AC2D7B0, 368B3F48F230514F496CE24339EC8943A87A6BB9815912AE192B73837AB3E3B7 ] C:\Windows\System32\nlasvc.dll
10:23:28.0552 0x07c4 C:\Windows\System32\nlasvc.dll - ok
10:23:28.0568 0x07c4 [ ACD5C99440D65A1AEE1DBA73CA35B9A2, 70C60ADB6B609177B2FDBAE7E2309B4857E78523D9D1FD83564D68E0968CF07E ] C:\Windows\System32\ncsi.dll
10:23:28.0568 0x07c4 C:\Windows\System32\ncsi.dll - ok
10:23:28.0568 0x07c4 [ 619A67C9F617B7E69315BB28ECD5E1DF, F34F231D117CCDFEBB9CB35C8D6FDFA7051DA27FDC1204FCCFF361FC0B13A0FF ] C:\Windows\System32\wbem\WmiPrvSE.exe
10:23:28.0568 0x07c4 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
10:23:28.0568 0x07c4 [ 6607C2182C6A53ED983813AFE2F85768, FC9E718ABC4E0FBC7B0DD145F9C377A1800A7776AD832AB645796E13B1E15A1F ] C:\Windows\System32\wbem\cimwin32.dll
10:23:28.0568 0x07c4 C:\Windows\System32\wbem\cimwin32.dll - ok
10:23:28.0568 0x07c4 [ 1484B9EBF567346582DE571B0E164AE0, 9862BF22B2E32DABE7A82ACEE5B4EA1F0A93BDC3C71B20A6A4E568CCCD76A7A6 ] C:\Windows\System32\framedynos.dll
10:23:28.0568 0x07c4 C:\Windows\System32\framedynos.dll - ok
10:23:28.0583 0x07c4 [ C00DB14550E4BD49737F311C644E45FF, 7085C47DADEED82B6F98ED3903197D76B648E9D6CC67D40C789E236264D9A0DC ] C:\Windows\System32\wmi.dll
10:23:28.0583 0x07c4 C:\Windows\System32\wmi.dll - ok
10:23:28.0583 0x07c4 [ D7FC199EADC4438660A6338C2E6A9F90, 52C33C1F6E18465733DA0F410A8CE85A17517E66292BD01FF3AE42A142500EAA ] C:\Windows\System32\winhttp.dll
10:23:28.0583 0x07c4 C:\Windows\System32\winhttp.dll - ok
10:23:28.0583 0x07c4 [ 1987F7CA8B28E0611A7BB35CD71D55EA, A3310DB7FE3A11CFDC358D2C11C3C2933FB5FF5CC380F78CED79ED700A7D8346 ] C:\Users\massbateria\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\amd64\FileSyncShell64.dll
10:23:28.0583 0x07c4 C:\Users\massbateria\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\amd64\FileSyncShell64.dll - ok
10:23:28.0583 0x07c4 [ 47180DAD3F4A37FD8C72C9D896428473, 6BDA34BF7F1C5131F8B2FE10BDA5917BD2DE68E337078FD0A22877DB9D987072 ] C:\Program Files\Malwarebytes\Anti-Malware\CloudControllerImpl.dll
10:23:28.0583 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\CloudControllerImpl.dll - ok
10:23:28.0599 0x07c4 [ 0E872772DAE952C6DA648CB5914B4304, 65FEB9AC7EEDE2230B4F0B654DCCBD4DB26DF353B463E9A86CFB911C21760D48 ] C:\Program Files\Malwarebytes\Anti-Malware\7z.dll
10:23:28.0599 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\7z.dll - ok
10:23:28.0599 0x07c4 [ 371A415B11AB93BCD50C6E50D3BFDEF4, ED18C35E57A3B39D3CF8BF3A802CFD601BA017EA4C41924F56A53083905AC124 ] C:\Program Files\Malwarebytes\Anti-Malware\TelemetryControllerImpl.dll
10:23:28.0599 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\TelemetryControllerImpl.dll - ok
10:23:28.0599 0x07c4 [ 1351A63BEC87BF81E540251966648C5D, D3B888B3FCD2E345B11374868BB4C99DD7A8D1DEF9DD923D8B7CF5F4B97AA49F ] C:\Windows\System32\webio.dll
10:23:28.0599 0x07c4 C:\Windows\System32\webio.dll - ok
10:23:28.0599 0x07c4 [ 1320DD60FE786CC8E189B252E7618477, 1CFB02A2B27CA0EB42AAE1A38D056182F7381E6700C779939B9F0FEEC13FA403 ] C:\Windows\System32\ssdpapi.dll
10:23:28.0599 0x07c4 C:\Windows\System32\ssdpapi.dll - ok
10:23:28.0615 0x07c4 [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] C:\Windows\System32\IPSECSVC.DLL
10:23:28.0615 0x07c4 C:\Windows\System32\IPSECSVC.DLL - ok
10:23:28.0615 0x07c4 [ A53EE682E266E1D127E2A556ABF1FA1F, 0AA989CC22929759EF8616F0CEAB4EC9A218215B6AF02208F24E65A718056607 ] C:\Program Files\Malwarebytes\Anti-Malware\CleanControllerImpl.dll
10:23:28.0615 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\CleanControllerImpl.dll - ok
10:23:28.0615 0x07c4 [ 2150D5ACD6A55F606134665E3795C193, 12F3269A4536AB4048112CEE7FD897D16781186B2B25682983A7A64E8A80177E ] C:\Windows\System32\FwRemoteSvr.dll
10:23:28.0615 0x07c4 C:\Windows\System32\FwRemoteSvr.dll - ok
10:23:28.0615 0x07c4 [ 453A516931506432497A1A3571246C0C, 7BB25F7AEAB9C836E32559F35F72E9B670442DF7D871C579E0675500763A61B5 ] C:\Program Files\Malwarebytes\Anti-Malware\ActionsShim.dll
10:23:28.0615 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\ActionsShim.dll - ok
10:23:28.0630 0x07c4 [ DFBD7000587ECC694AD1BB372B7C6B7E, 3715D1658837FE169065F94FDF5D26BA5E9CD3120152E8A1089295DC7E1D5837 ] C:\Program Files\Malwarebytes\Anti-Malware\ScanControllerImpl.dll
10:23:28.0630 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\ScanControllerImpl.dll - ok
10:23:28.0630 0x07c4 [ 883EFCDE711371B445DC31F5259F337C, 44D827E57F3B663453367AFE9AF056C3798F53D0025898DD62B22C1990343B6D ] C:\Program Files\Malwarebytes\Anti-Malware\Actions.dll
10:23:28.0630 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\Actions.dll - ok
10:23:28.0630 0x07c4 [ 975A4C6CEDF349306537B558B444A321, 643BB58CBD27583106620103CEC46BEF88D983A31520527303F002FFEAA8149E ] C:\Program Files\Malwarebytes\Anti-Malware\MBAMShim.dll
10:23:28.0630 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\MBAMShim.dll - ok
10:23:28.0630 0x07c4 [ 07EBF079BBF7DD5A3A1D0500854982EE, 01F58D0C818A3C20A54F88685895B6491DB9BB657895083719AFAA875DDC1941 ] C:\Program Files\Malwarebytes\Anti-Malware\SwissarmyShim.dll
10:23:28.0630 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\SwissarmyShim.dll - ok
10:23:28.0646 0x07c4 [ 7037E996D2C4AEBCB682A586A292969A, 66097B1FDC13D2C3F8931F7512BF0154E47FAD1E38BEECA15ECF41B46A2F8300 ] C:\Program Files\Malwarebytes\Anti-Malware\Swissarmy.dll
10:23:28.0646 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\Swissarmy.dll - ok10:23:28.0646 0x07c4 [ 3B5D6CAC765E86BE07AA7959A35D553C, A774DE8D3E67561360E911DBBAA5D001D8DF57A327A6BACC372C6A8B78018B6A ] C:\Windows\System32\tdh.dll
10:23:28.0646 0x07c4 C:\Windows\System32\tdh.dll - ok
10:23:28.0646 0x07c4 [ 522B0466ED967A0762E9AF5B37D8F40A, B14C62D059BC7CF430E1B0F6E18E31EFD1959EFB3025A2B0EBB11751F38DD6D4 ] C:\Windows\System32\esent.dll
10:23:28.0646 0x07c4 C:\Windows\System32\esent.dll - ok
10:23:28.0646 0x07c4 [ 88351B29B622B30962D2FEB6CA8D860B, A16CAD7D94C1C9807083BB36E9B4C3C14E6482C4CA2BDFACBCC86E737DDCE42E ] C:\Windows\System32\rasadhlp.dll
10:23:28.0646 0x07c4 C:\Windows\System32\rasadhlp.dll - ok
10:23:28.0661 0x07c4 [ 92E0508D924512F63FFEEFE498CBD11F, 1158011E4A1298DEC79133B40888AA87B06F5B64BA2AB461B58C22F5F9211D0C ] C:\Windows\System32\p2pcollab.dll
10:23:28.0661 0x07c4 C:\Windows\System32\p2pcollab.dll - ok
10:23:28.0661 0x07c4 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] C:\Windows\System32\QAGENTRT.DLL
10:23:28.0661 0x07c4 C:\Windows\System32\QAGENTRT.DLL - ok
10:23:28.0661 0x07c4 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B, 2DFBD792B68F3EBEF0843183CAE5D52B6FA04163808AFACF6C0D738455898C36 ] C:\Windows\System32\fveui.dll
10:23:28.0661 0x07c4 C:\Windows\System32\fveui.dll - ok
10:23:28.0661 0x07c4 [ 2039FC378DCC3A3897C9CCFF0A67874C, 6A8A714DE3CD39C8A02654DB6C9C7184658F5B37A065A18A1F697D280B764600 ] C:\Windows\System32\wuaueng.dll
10:23:28.0661 0x07c4 C:\Windows\System32\wuaueng.dll - ok
10:23:28.0677 0x07c4 [ 198803E5E93E29967DFB0BCFD0186151, 72C3B0FA35578A71E9988FA31A7AD91A9CF31A6BA6EC00EA1F153E99277807BF ] C:\Windows\System32\spfileq.dll
10:23:28.0677 0x07c4 C:\Windows\System32\spfileq.dll - ok
10:23:28.0677 0x07c4 [ FA43D418BC945D27D0625B697B8442B5, 035DE0FEA440D2E3AD255EE84B388DDA538E778877033FDB54B8A61BB0AADE56 ] C:\Windows\System32\cabinet.dll
10:23:28.0677 0x07c4 C:\Windows\System32\cabinet.dll - ok
10:23:28.0677 0x07c4 [ 0B17A8F4956ABD5FA1A0851B59FF960E, 1B62082ACA96EF78A61AFDB33EF77260292C5D08E5E35B56F7F8F0A3A837ED9B ] C:\Windows\System32\drivers\mbamswissarmy.sys
10:23:28.0677 0x07c4 C:\Windows\System32\drivers\mbamswissarmy.sys - ok
10:23:28.0677 0x07c4 [ F87F489F424B7D1B4597D20D4E274064, 2AD133D88855DA9FBD2C2BA41799AA645C18D6A6426B2EA67DC44BE6763B794C ] C:\Program Files\Malwarebytes\Anti-Malware\BrowserSDKDLLShim.dll
10:23:28.0677 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\BrowserSDKDLLShim.dll - ok
10:23:28.0693 0x07c4 [ 8935A42144D6E78A2F706A8A586CC323, 33A11C4AF82D329CF0F25F5C671865433E8DC131B4DF344290268703764D5FF9 ] C:\Program Files\Malwarebytes\Anti-Malware\BrowserSDKDLL.dll
10:23:28.0693 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\BrowserSDKDLL.dll - ok
10:23:28.0693 0x07c4 [ AC2994554D309BFFFE7439D7A6003454, 8139098A944E263F0CB482E91A30DB0EF2501D060D50C8F0E8FEF417AC4A7E1D ] C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll
10:23:28.0693 0x07c4 C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll - ok
10:23:28.0693 0x07c4 [ D0724F4D770970B55DE0EA601FC87BE4, 716E1F421FC66F1D8C467510EC7C3DD7347E4A9C818E0B90C855C6D4599C3E17 ] C:\Program Files\Malwarebytes\Anti-Malware\SelfProtectionShim.dll
10:23:28.0693 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\SelfProtectionShim.dll - ok
10:23:28.0693 0x07c4 [ 936DD09685EA806832853C4C3AFDF93C, 7043145202867001167C99A653192ED48E95586285DE866D540FD139ED995B7D ] C:\Windows\System32\oleres.dll
10:23:28.0693 0x07c4 C:\Windows\System32\oleres.dll - ok
10:23:28.0708 0x07c4 [ 24F4B480F335A6C724AF352253C5D98B, 011413B236CAD7B78CE0A0EEC3E3085D48C7576A3205D025BA6EBFDF590538E4 ] C:\Windows\System32\thumbcache.dll
10:23:28.0708 0x07c4 C:\Windows\System32\thumbcache.dll - ok
10:23:28.0708 0x07c4 [ FC3001B4B9DF50B61F3CCA615759EFE7, 9AAE3665AD2893E7DB41965D430A7230B826AC4580603F20102E21C19C15535F ] C:\Windows\System32\PhotoMetadataHandler.dll
10:23:28.0708 0x07c4 C:\Windows\System32\PhotoMetadataHandler.dll - ok
10:23:28.0708 0x07c4 [ 58707BBF195FC6E90E5C5459B8243C2E, 39CEF7E2CABF329C6515CD435BC2878B38479FE7F0D6732A82A0751CB735F855 ] C:\Program Files\Malwarebytes\Anti-Malware\SelfProtectionSdk.dll
10:23:28.0708 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\SelfProtectionSdk.dll - ok
10:23:28.0708 0x07c4 [ 1D63F4366288B8A7595397E27010FD44, 99EA4DDD88D9C4A4CC9B238F533CB4D2C062D46239173997E8594D8A75811A01 ] C:\Windows\System32\IconCodecService.dll
10:23:28.0708 0x07c4 C:\Windows\System32\IconCodecService.dll - ok
10:23:28.0724 0x07c4 [ 025E7DBDB98866ED3CB2D4DDA70B364D, 78962F23F066E362AF1A4B98FA7D5E30AF30C561307438503031D30C944B6A6E ] C:\Windows\System32\runonce.exe
10:23:28.0724 0x07c4 C:\Windows\System32\runonce.exe - ok
10:23:28.0724 0x07c4 [ BE0C12436912442F6FBAF9AC8C1CDB7D, AF9D0DE4C883303FEC6935D8C9BFD6302E2F88C86314629B6D8242CB8456343D ] C:\Windows\SysWOW64\ntdll.dll
10:23:28.0724 0x07c4 C:\Windows\SysWOW64\ntdll.dll - ok
10:23:28.0724 0x07c4 [ D44741F65A1D71F65814A12CF6E2400A, C6721F830675ADC7E7FDE2B5E822E56F6A063146F5066F1E25EBFE86F0A87136 ] C:\Windows\SysWOW64\runonce.exe
10:23:28.0724 0x07c4 C:\Windows\SysWOW64\runonce.exe - ok
10:23:28.0724 0x07c4 [ 66EDE603B9FE459ABCC15FBCDA232AD5, AD2CABD46DF21EB3A497826017B61EBCF1A7B848E43B4E88BE8E579B7630D74D ] C:\Windows\System32\wow64.dll
10:23:28.0724 0x07c4 C:\Windows\System32\wow64.dll - ok
10:23:28.0739 0x07c4 [ 5ABB628976EC49B64DF427EDDDCC2486, 702E5D10380CD44C5AF8616B786D6E7ED13A1B25DA3D0E90CE66F8752C16F83F ] C:\Windows\System32\wow64win.dll
10:23:28.0739 0x07c4 C:\Windows\System32\wow64win.dll - ok
10:23:28.0739 0x07c4 [ 3541AE517C96B2850F44D2366ED86584, 1C775DBEDBD401C59F5240A4BB9F4EBB78ACA6797D7B8C07CE9FEEDE482BA190 ] C:\Windows\System32\wow64cpu.dll
10:23:28.0739 0x07c4 C:\Windows\System32\wow64cpu.dll - ok
10:23:28.0739 0x07c4 [ 3E56CFF804911FA863C7E24CF7A06E92, 6B8B30BC35B863098D6F2ED277D7D16D8F3CBC3DD984C4FE9DB13F95D0EDE0B1 ] C:\Windows\SysWOW64\kernel32.dll
10:23:28.0739 0x07c4 C:\Windows\SysWOW64\kernel32.dll - ok
10:23:28.0739 0x07c4 [ DBBA7927AB77689AF583AB10537E8593, B7AD89145A63F21967CA7B058E48C6B1753A33C51873A166454F018736808CFB ] C:\Windows\SysWOW64\advapi32.dll
10:23:28.0739 0x07c4 C:\Windows\SysWOW64\advapi32.dll - ok
10:23:28.0755 0x07c4 [ D08F6E40E94FECEDD8029AAB53E62D42, 05D39143E47AD97E77666E9C52E2D292522E65063351878E6D3073F1B0EA6FAC ] C:\Windows\SysWOW64\KernelBase.dll
10:23:28.0755 0x07c4 C:\Windows\SysWOW64\KernelBase.dll - ok
10:23:28.0755 0x07c4 [ 9DC80A8AAAAAC397BDAB3C67165A824E, 051636BFDFF7AB0E4191354E846BD0DACCA1A01FCC13C1AFED91D8DBFE17127A ] C:\Windows\SysWOW64\msvcrt.dll
10:23:28.0755 0x07c4 C:\Windows\SysWOW64\msvcrt.dll - ok
10:23:28.0755 0x07c4 [ E71586DC22500C32311331DF7BEEC029, 94B8B38A6A0026AA2D32834577238E02316C5130E2BD6A1198E7EBCC25FFC649 ] C:\Windows\SysWOW64\rpcrt4.dll
10:23:28.0755 0x07c4 C:\Windows\SysWOW64\rpcrt4.dll - ok
10:23:28.0755 0x07c4 [ 65A5E27C2217D606E212B6088CCD6104, 3D2E4CB0956D30307FE6440E4FCA0E327DCD2643113860BE526383E7934A495C ] C:\Windows\SysWOW64\sechost.dll
10:23:28.0755 0x07c4 C:\Windows\SysWOW64\sechost.dll - ok
10:23:28.0771 0x07c4 [ 4AF5269BE1DF7E522F34EA17F684EDBD, 7A075A40D5A1AF07BBC458BC5BAF6077DEA13859E5973DC339523F23CF381EFF ] C:\Windows\SysWOW64\sspicli.dll
10:23:28.0771 0x07c4 C:\Windows\SysWOW64\sspicli.dll - ok
10:23:28.0771 0x07c4 [ 0420D9EFC6FE78E1BF161E8561584782, E658096F157BC003106507F1195D78B65CB2DD22B29FCA3686488860C4E752DB ] C:\Windows\SysWOW64\cryptbase.dll
10:23:28.0771 0x07c4 C:\Windows\SysWOW64\cryptbase.dll - ok
10:23:28.0771 0x07c4 [ 82F1BB87CA224EE1AC9CDBA00CD3E84F, 2736C76B11878C7F01A4C4E14140A051F878A5655B4367DAF643F8D594518DBB ] C:\Windows\SysWOW64\gdi32.dll
10:23:28.0771 0x07c4 C:\Windows\SysWOW64\gdi32.dll - ok
10:23:28.0771 0x07c4 [ 66598E4F0A0662A674BB44376EF4B294, F4891972252E0A7EFFCBE9B30C2C82013BA95EFDFF47FC433832135C94DF2433 ] C:\Windows\SysWOW64\user32.dll
10:23:28.0771 0x07c4 C:\Windows\SysWOW64\user32.dll - ok
10:23:28.0786 0x07c4 [ 9EDE1280B59EDCE5ADB3E51AF7B13C7D, FACFA95B637554940AE12F9F6DADA425F8739135FE018D8034C4784F98A5DD25 ] C:\Windows\SysWOW64\lpk.dll
10:23:28.0786 0x07c4 C:\Windows\SysWOW64\lpk.dll - ok
10:23:28.0786 0x07c4 [ 8FE0FC5365C597C5748FB520BC81F7AE, 31AFC8248FD9A16A2C58804389437C2739AB7F6C91EAE1ECE7B115BFD8B1F9B9 ] C:\Windows\SysWOW64\usp10.dll
10:23:28.0786 0x07c4 C:\Windows\SysWOW64\usp10.dll - ok
10:23:28.0786 0x07c4 [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\SysWOW64\shlwapi.dll
10:23:28.0786 0x07c4 C:\Windows\SysWOW64\shlwapi.dll - ok
10:23:28.0786 0x07c4 [ 4860EBB8A0469C1E5D96C97D37B2CF33, 115A7025918F73E06136B99BBA9DA43D1EC18D57E7F28322833216E825DA065B ] C:\Program Files\Malwarebytes\Anti-Malware\RTPControllerImpl.dll
10:23:28.0786 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\RTPControllerImpl.dll - ok
10:23:28.0802 0x07c4 [ BEEDB89F05DBE3C7E5A9B94C3AC5A663, 927304F82E3186E87C70551FF0A4C506BA3290975580EBD4D095BA5AFFB546B7 ] C:\Windows\SysWOW64\ole32.dll
10:23:28.0802 0x07c4 C:\Windows\SysWOW64\ole32.dll - ok
10:23:28.0802 0x07c4 [ 8441831349DC1C0F93F60EF66474807E, E756A39E2F3A883B9DB956870E344FA8D43121F08A7682724BBA4A1AB004CED7 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24483_none_2b200f664577e14b\comctl32.dll
10:23:28.0802 0x07c4 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24483_none_2b200f664577e14b\comctl32.dll - ok
10:23:28.0802 0x07c4 [ 6EBA37B3C90899F79BC1462AC8654C7F, 9D1BF8C18524141CEAEB1BA5B0F5E021E53CCBD0244E797FC7C6B758083F8646 ] C:\Program Files\Malwarebytes\Anti-Malware\MWACControllerImpl.dll
10:23:28.0802 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\MWACControllerImpl.dll - ok
10:23:28.0802 0x07c4 [ 725FF93BADBBB2D2788304DB7DFFA9EE, 49146CDD7D17C2A5F75DAA929E84D6A865D699D07C66C91B60ADD13127A38769 ] C:\Windows\SysWOW64\shell32.dll
10:23:28.0802 0x07c4 C:\Windows\SysWOW64\shell32.dll - ok
10:23:28.0817 0x07c4 [ 9E4AD42D4326887ED9F598CFFE9751D7, 6B41F23706F3A6BC0271FCE67F063BFF1DB1807E8C3A147C143305674648C792 ] C:\Program Files\Malwarebytes\Anti-Malware\ArwControllerImpl.dll
10:23:28.0817 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\ArwControllerImpl.dll - ok
10:23:28.0817 0x07c4 [ A6F09E5669D9A19035F6D942CAA15882, 68C8AF0CC1923E3A7245392F2480EE665D265DF300A609D2540BF7C6D9C1A1BE ] C:\Windows\SysWOW64\imm32.dll
10:23:28.0817 0x07c4 C:\Windows\SysWOW64\imm32.dll - ok
10:23:28.0817 0x07c4 [ 345B03026D433E71633C488F93DC2855, 600ADF853367D141DAF5B65DEE49E49570C327693CD00EA36BBCE5F03397A920 ] C:\Windows\SysWOW64\msctf.dll
10:23:28.0817 0x07c4 C:\Windows\SysWOW64\msctf.dll - ok
10:23:28.0817 0x07c4 [ 6D0241A907D45E999E4B487ECEE73698, C2590B313C8E94D9EFE7FB57236910E7E6A7D14E8CAF5558A2335F6B90E86209 ] C:\Program Files\Malwarebytes\Anti-Malware\AEControllerImpl.dll
10:23:28.0817 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\AEControllerImpl.dll - ok
10:23:28.0833 0x07c4 [ 42B6A94DD747DF2B5F628A2752E62A98, 4A49EAE1322E65FFA6C71F0BEA52CAEC97D1F30DE71FB068CD9FD8318C8287AB ] C:\Windows\System32\ctfmon.exe
10:23:28.0833 0x07c4 C:\Windows\System32\ctfmon.exe - ok
10:23:28.0833 0x07c4 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA, 8A6ACEFAB95E5275CBFBE6CCB5A6C3A6A471260B279B9063E86B9C7765E18656 ] C:\Windows\System32\MsCtfMonitor.dll
10:23:28.0833 0x07c4 C:\Windows\System32\MsCtfMonitor.dll - ok
10:23:28.0833 0x07c4 [ F09A9A1AD21FE618C4C8B0A0D830C886, 29831DDAB2AB105358FBC067CDF96428220B6743CD6019F6FE74BAC7AF325E7E ] C:\Windows\System32\msutb.dll
10:23:28.0833 0x07c4 C:\Windows\System32\msutb.dll - ok
10:23:28.0849 0x07c4 [ FB10715E4099AF9FA389C71873245226, 6A4CB43880B822A0C4714D6E52EB3EB2CE1E69C3AA9CA65EAAD6B131AE43F274 ] C:\Windows\System32\timedate.cpl
10:23:28.0849 0x07c4 C:\Windows\System32\timedate.cpl - ok
10:23:28.0849 0x07c4 [ FA50668B21D1E451320314657500EBD5, 790D5CA7FFA1832D091009B3A1B88D6A7CD2418E17FE37F9B14C092BE3BB162B ] C:\Program Files\Malwarebytes\Anti-Malware\SPControllerImpl.dll
10:23:28.0849 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\SPControllerImpl.dll - ok
10:23:28.0849 0x07c4 [ 7FA39F97E70048CF087AB8C5D201A680, 55B234AC2D40F9BA736D1C2FA4F40C8F8E4C89CA08B07749C2009735BED8ECEC ] C:\Windows\System32\shdocvw.dll
10:23:28.0849 0x07c4 C:\Windows\System32\shdocvw.dll - ok
10:23:28.0849 0x07c4 [ A0A65D306A5490D2EB8E7DE66898ECFD, CE5DA408F4EDD5E81CE0925867F03C9A35172CF1571FE4C4C052E45AB69822BB ] C:\Windows\System32\linkinfo.dll
10:23:28.0849 0x07c4 C:\Windows\System32\linkinfo.dll - ok
10:23:28.0864 0x07c4 [ 275282B613B4392D5CB81B55A597456D, 10C927274F54CC9EE0ECC30871D6173506AB24A51ECA8470231ABB43C50FF857 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
10:23:28.0864 0x07c4 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe - ok
10:23:28.0864 0x07c4 [ B826D4EEF2F1F2C2FC9550BB948C1112, 40D434EE14DC797A887077E4F5E2A56D6D381E7F2CABDB1EBDD8F23A9C416B63 ] C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
10:23:28.0864 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe - ok
10:23:28.0864 0x07c4 [ BF9E9E05D3DB9CB1801664DFC114E5ED, 2364A02D3F43054B51E452F5304DD0EE00EDE0167622137FC08BD80FBB0ECAA6 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
10:23:28.0864 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll - ok
10:23:28.0864 0x07c4 [ A53D8441ADF9CDAFB135D70FE9E0EFE2, 3D42ADAC43027D0E86798B60C6C8AB8911F896A60FA90B42BA22A96054933E41 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
10:23:28.0864 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll - ok
10:23:28.0880 0x07c4 [ 4C92EB7535CAA1681A77D928FBF9771F, 7D02B2357CA02393CA711C3C499AAD86B792EEFFDC67F2CE52F7F7BB8A28DE79 ] C:\Windows\System32\d3d11.dll
10:23:28.0880 0x07c4 C:\Windows\System32\d3d11.dll - ok
10:23:28.0880 0x07c4 [ 69754747274B76E7FAF287239333D7E6, A0BAEC1E56E4B1A17C0D41B317526AF5BB11E7E488C7016067A6229346A23B16 ] C:\Windows\System32\msiltcfg.dll
10:23:28.0880 0x07c4 C:\Windows\System32\msiltcfg.dll - ok
10:23:28.0880 0x07c4 [ 8DFB5752FCE145A6B295093C0A8BE131, F38029C8B36EFD46B1F6CCA0089FF4EFB0AB246497E38EDFF6A67FAC804D4A97 ] C:\Windows\System32\dxgi.dll
10:23:28.0880 0x07c4 C:\Windows\System32\dxgi.dll - ok
10:23:28.0880 0x07c4 [ 9EC1E14AB1425F22CF80AEB5292DA8E2, CC312E51C3D2681EBE6DE8F8B6B4927ED70A023EAFBBB290742DA8A14B8B910D ] C:\Program Files\Malwarebytes\Anti-Malware\QtANGLE.dll
10:23:28.0880 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\QtANGLE.dll - ok
10:23:28.0895 0x07c4 [ 4C3DAEE652B005B483F16B8E9131C99D, 188DFF96F3B18A610C52775C8F95C99ABF27FF2E1D52B50EDF9F80FE337239CD ] C:\Windows\System32\d3d9.dll
10:23:28.0895 0x07c4 C:\Windows\System32\d3d9.dll - ok
10:23:28.0895 0x07c4 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65, D99A8C10CC4E5C778D063E56A131DB549F01CA7F9605F6596406606BB12C0269 ] C:\Windows\System32\d3d8thk.dll
10:23:28.0895 0x07c4 C:\Windows\System32\d3d8thk.dll - ok
10:23:28.0895 0x07c4 [ C1B066F9E3E2F3A6785161A8C7E0346A, 99E3E25CDA404283FBD96B25B7683A8D213E7954674ADEFA2279123A8D0701FD ] C:\Program Files\Malwarebytes\Anti-Malware\msvcp140.dll
10:23:28.0895 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\msvcp140.dll - ok
10:23:28.0895 0x07c4 [ 1453290DB80241683288F33E6DD5E80E, 2B7602CC1521101D116995E3E2DDFE0943349806378A0D40ADD81BA64E359B6C ] C:\Program Files\Malwarebytes\Anti-Malware\vcruntime140.dll
10:23:28.0895 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\vcruntime140.dll - ok
10:23:28.0911 0x07c4 [ DBD23405E7BAA8E1AC763FA506021122, 57FE2BAB2ACB1184A468E45CEBE7609A2986D5220BB2D82592B9CA6E22384F89 ] C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-runtime-l1-1-0.dll
10:23:28.0911 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-runtime-l1-1-0.dll - ok
10:23:28.0911 0x07c4 [ 298E85BE72551D0CDD9ED650587CFDC6, EB89AF5911A60D892A685181C397D32B72C61DC2AD77DD45B8CAC0FBB7602B84 ] C:\Program Files\Malwarebytes\Anti-Malware\ucrtbase.dll
10:23:28.0911 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\ucrtbase.dll - ok
10:23:28.0911 0x07c4 [ 54D2F426BC91ECF321908D133B069B20, 646B28A20208BE68439D73EFA21BE59E12ED0A5FE9E63E5D3057CA7B84BC6641 ] C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-localization-l1-2-0.dll
10:23:28.0911 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-localization-l1-2-0.dll - ok
10:23:28.0911 0x07c4 [ D1B3CC23127884D9EFF1940F5B98E7AA, 51A73FBFA2AFE5E45962031618EC347AAA0857B11F3CF273F4C218354BFE70CB ] C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-processthreads-l1-1-1.dll
10:23:28.0911 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-processthreads-l1-1-1.dll - ok
10:23:28.0927 0x07c4 [ B5060343583E6BE3B3DE33CCD40398E0, 27878021C6D48FB669F1822821B5934F5A2904740BEBB340B6849E7635490CB7 ] C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-file-l1-2-0.dll
10:23:28.0927 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-file-l1-2-0.dll - ok
10:23:28.0927 0x07c4 [ 36165A5050672B7B0E04CB1F3D7B1B8F, D7AB47157BFF1B2347E7AE945517B4FC256425939BA7B6288FF85A51931568A7 ] C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-timezone-l1-1-0.dll
10:23:28.0927 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-timezone-l1-1-0.dll - ok
10:23:28.0927 0x07c4 [ 2E8995E2320E313545C3DDB5C71DC232, C55EB043454AC2D460F86EA26F934ECB16BDB1D05294C168193A05090BF1C56C ] C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-file-l2-1-0.dll
10:23:28.0927 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-file-l2-1-0.dll - ok
10:23:28.0927 0x07c4 [ DAC3E271EF4A287821BECDA51AA12946, 80FBAE0ACCEB55364437BDD862D454DB5ACAA797AD0367931AEF7677C7E84E7B ] C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-synch-l1-2-0.dll
10:23:28.0927 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-synch-l1-2-0.dll - ok
10:23:28.0942 0x07c4 [ A22F9A4CBD701209842B204895FEDF37, 2EE3D52640D84AC4F7F7DDFE748F51BAA6FD0D492286C781251222420E85CA97 ] C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-heap-l1-1-0.dll
10:23:28.0942 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-heap-l1-1-0.dll - ok
10:23:28.0942 0x07c4 [ 5DF2410C0AFD30C9A11DE50DE4798089, E6A1EF1F7C1957C50A3D9C1D70C0F7B0D8BADC7F279CD056EB179DC256BFEFDA ] C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-stdio-l1-1-0.dll
10:23:28.0942 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-stdio-l1-1-0.dll - ok
10:23:28.0942 0x07c4 [ AACADE02D7AAF6B5EFF26A0E3A11C42D, E71D517E6B7039437E3FC449D8AD12EEECA0D5C8ED1C500555344FD90DDC3207 ] C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-string-l1-1-0.dll
10:23:28.0942 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-string-l1-1-0.dll - ok
10:23:28.0942 0x07c4 [ 0485C463CD8D2AE1CBD42DF6F0591246, 983F4D4C7B7330E7F5F091080C1E81905575EBCCD97E11DFF8A064979EC8D9B8 ] C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-convert-l1-1-0.dll
10:23:28.0942 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-convert-l1-1-0.dll - ok
10:23:28.0958 0x07c4 [ BA17B278FFF2C18E34E47562DDDE8166, C36F5C0AC5D91A8417866DD4D8C670C2192BA83364693E7438282FB8678C3D1E ] C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-locale-l1-1-0.dll
10:23:28.0958 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-locale-l1-1-0.dll - ok
10:23:28.0958 0x07c4 [ C4CAC2D609BB5E0DA9017EBB535634CE, 7C3336C3A50BF3B4C5492C0D085519C040878243E9F7D3EA9F6A2E35C8F1F374 ] C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-math-l1-1-0.dll
10:23:28.0958 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-math-l1-1-0.dll - ok
10:23:28.0958 0x07c4 [ 1193F810519FBC07BEB3FFBAD3247FC4, AB2158FE6B354FB429F57F374CA25105B44E97EDCBDC1B752650D895DADD6FD1 ] C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-filesystem-l1-1-0.dll
10:23:28.0958 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-filesystem-l1-1-0.dll - ok
10:23:28.0973 0x07c4 [ 0D9AFB006F46478008C180B9DA5465AC, C3A70153E1D0ECD1CBF95DE033BFEF5CFECABE7A8274CAFE272CC2C14865CD8C ] C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-time-l1-1-0.dll
10:23:28.0973 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-time-l1-1-0.dll - ok
10:23:28.0973 0x07c4 [ E48A1860000FD2BD61566E76093984F5, 67BBB287B2E9057BF8B412AD2FAA266321AC28C6E6BA5F22169E2517A3EAD248 ] C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-environment-l1-1-0.dll
10:23:28.0973 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-environment-l1-1-0.dll - ok
10:23:28.0973 0x07c4 [ 9B622CA5388B6400705C8F21550BAE8E, AF1E1B84F066BA05DA20847BFFD874D80A810B5407F8C6647B3FF9E8F7D37863 ] C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-utility-l1-1-0.dll
10:23:28.0973 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-utility-l1-1-0.dll - ok
10:23:28.0973 0x07c4 [ CF92989EA45F874977B243D1E34DCA3C, C06CCCDC4F0D6A945E60EFA28D27081D4BB432CA68611AD3D9F1130875827CFD ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
10:23:28.0973 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll - ok
10:23:28.0989 0x07c4 [ EF2AE43BCD46ABB13FC3E5B2B1935C73, 81FC06F306F620845D7DD8D06E706309E70BC89B589C81F3478302A3F5F73431 ] C:\Windows\System32\winmm.dll
10:23:28.0989 0x07c4 C:\Windows\System32\winmm.dll - ok
10:23:28.0989 0x07c4 [ 69A52811F8D36A086EEFFF359A5EF511, D1810B8DB6EFB5BA426E83209DA8D1F9F49D425573DED1629B24021117BA2A34 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5QmlModels.dll
10:23:28.0989 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\Qt5QmlModels.dll - ok
10:23:28.0989 0x07c4 [ 6941A4206CBC977E57FE642BC82CED87, F0AB58F1D8F938826833B4739C84F89F440681EAB3DE11D7B53F048DF7C48B3A ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
10:23:28.0989 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll - ok
10:23:29.0005 0x07c4 [ F1E04C3CF866C0C4F5F83C023D07FF03, 17A1C8D5A42621E6F14E678C1D4ED0C00DC6754DDB389B49493B548C4F9DEE72 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
10:23:29.0005 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll - ok
10:23:29.0005 0x07c4 [ 5363A03C82F59810FB04295B1E5CAA74, 19AF8940E5941D022765D4211C73F424C1A72AB112A1F92C5063077D14270D65 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
10:23:29.0005 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll - ok
10:23:29.0005 0x07c4 [ E345B671BA3CED2CF0DB6121EBB6E0A5, 0EAB1537202B22B66D5A72FA32C434CB0079B304ABB626F35B8815CE0CDBA0B6 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
10:23:29.0005 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll - ok
10:23:29.0005 0x07c4 [ 8484D7380E9549EB518F03942AEAFEDE, 9A98FE4C4D78368D9BD7BD5018799A218EDC997125494C662D72A879CB85C86A ] C:\Program Files\Malwarebytes\Anti-Malware\mbcut.dll
10:23:29.0005 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\mbcut.dll - ok
10:23:29.0020 0x07c4 [ 73BC875CB0B1795C532DA73628E1665A, 75056AB9A96D6ADD9E23BBAD7391F090FDF30C811E16E85A0D350B8485A45423 ] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
10:23:29.0020 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll - ok
10:23:29.0020 0x07c4 [ 404EC8AD366C83E0B1985868D167FCDD, 4E5AC531E3D72C0A7EEFF3BDC633998422E5CBDE33843A82A1171C22BF8136BD ] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll
10:23:29.0020 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll - ok
10:23:29.0020 0x07c4 [ 0789FBA4035FFADBC7641DD78620A6F7, 1BB961D204B0A5DABEF5672C4C4EECDEA94E03BCD58D271C648D5DC8017C8AF2 ] C:\Program Files\Adobe\Adobe Illustrator CC 2018\Support Files\Contents\Windows\Illustrator.exe
10:23:29.0020 0x07c4 C:\Program Files\Adobe\Adobe Illustrator CC 2018\Support Files\Contents\Windows\Illustrator.exe - ok
10:23:29.0020 0x07c4 [ BAD009A2A00ED9E793788EE3B8D29D13, 1844D6A7977154B4E6A4DBC28661A4E43C56338BEA9E782A05B0755F585E1EF8 ] C:\Windows\System32\nlaapi.dll
10:23:29.0020 0x07c4 C:\Windows\System32\nlaapi.dll - ok
10:23:29.0036 0x07c4 [ F7073C962C4FB7C415565DDE109DE49F, 781E7088DCEFBC34A808C3E7DA41A56112B3F23ABE9F54B5EF4D5CD9CD016B1D ] C:\Windows\System32\npmproxy.dll
10:23:29.0036 0x07c4 C:\Windows\System32\npmproxy.dll - ok
10:23:29.0036 0x07c4 [ 55899F7F8F55B5CE0A0C0FF083B9ED0F, E69D74B38077E319FC914263CF5AB715FF30D541036AC914958A8FCCC08FECBF ] C:\Windows\System32\msi.dll
10:23:29.0036 0x07c4 C:\Windows\System32\msi.dll - ok
10:23:29.0036 0x07c4 [ F5CEF064C7E6D95DA86B9D064A56A969, F118CD4364690F37A07AE458E043E8CFBA98F332DC9E7228C83409CF26F6EF6D ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
10:23:29.0036 0x07c4 C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
10:23:29.0036 0x07c4 [ FB4045578F5180BDB1963AB352B78548, 8E645A63436EE6CDDB78E6064AEB04ECE39208F760A3EF13A3F49FDF41505E21 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
10:23:29.0036 0x07c4 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
10:23:29.0051 0x07c4 [ 58A0CDABEA255616827B1C22C9994466, 4FE1140AA8D3995579DE8CDF4ECAD1978804D05351EABB4079A63B303EF1B451 ] C:\Windows\System32\NapiNSP.dll
10:23:29.0051 0x07c4 C:\Windows\System32\NapiNSP.dll - ok
10:23:29.0051 0x07c4 [ 613C8CE10A5FDE582BA5FA64C4D56AAA, 30507B6BA79E1A271B07BBA58B4FF463678BE0960266A1D5E88031E932D768B6 ] C:\Windows\System32\pnrpnsp.dll
10:23:29.0051 0x07c4 C:\Windows\System32\pnrpnsp.dll - ok
10:23:29.0051 0x07c4 [ 2E2072EB48238FCA8FBB7A9F5FABAC45, AC70B9FC24847EEC2E18008F2894DCDAC19A9C90D5D88729326E493CA524F5C3 ] C:\Windows\System32\winrnr.dll
10:23:29.0051 0x07c4 C:\Windows\System32\winrnr.dll - ok
10:23:29.0051 0x07c4 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86, E15ED4FEFC3010C213694331DDFDC03767682325C898D773AB243E2DC8B08461 ] C:\Windows\System32\msftedit.dll
10:23:29.0051 0x07c4 C:\Windows\System32\msftedit.dll - ok
10:23:29.0067 0x07c4 [ 0C52B5C199C5866874A79A3CBF08DAC9, 29F600DC8F7D49D1E05F0095F77BDACC0916CB051B9437005360AF05795E9F23 ] C:\Program Files\Malwarebytes\Anti-Malware\TrayPlugin.dll
10:23:29.0067 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\TrayPlugin.dll - ok
10:23:29.0067 0x07c4 [ 2EBD0C5B090125AECF017C57344C45AB, 4FF8F2460115C60AD164EE0DC2079E1601B8AA21A1BA8033B7B731FAF85411B6 ] C:\Windows\System32\msls31.dll
10:23:29.0067 0x07c4 C:\Windows\System32\msls31.dll - ok
10:23:29.0067 0x07c4 [ 01528EBF3709CC32B9563BB4495E2E44, 62B8D0C8063FA170FD5A02BCEA1AC80DFA662425192D6ACA100FC23CF177A849 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
10:23:29.0067 0x07c4 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
10:23:29.0067 0x07c4 [ 4C2C4640BF23AAFCF90519E0F34436CE, 8ACCDA77C2DC5BE2DAED05134310122AFECC872A8D118612E55DD229BFE4D844 ] C:\Windows\System32\DeviceCenter.dll
10:23:29.0067 0x07c4 C:\Windows\System32\DeviceCenter.dll - ok
10:23:29.0083 0x07c4 [ 90A23CA432D5430716964312FD899AD9, EBF3F9C2535FD6413FE46C81F21C4D48AB5E6F2F76141535AEC4CD3E5AC16663 ] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
10:23:29.0083 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll - ok
10:23:29.0083 0x07c4 [ 7B6EDED3AA834F39ED531A9064C82A7B, 29960EFB1B914D64B0701A8E1E8F9C1DE73998C5448EEABB50220FE5A7601232 ] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qjpeg.dll
10:23:29.0083 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qjpeg.dll - ok
10:23:29.0083 0x07c4 [ 83168212ED9139D4E6A4382A923E4CBB, 3A2DCD91428E89FCEA03F0AAD8AD8120C066B103FD1197B9728389E163C5C60F ] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
10:23:29.0083 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll - ok
10:23:29.0083 0x07c4 [ 80810C980118CA7ADD38FEAB0DBE28DB, 05F5EBFF59517AA41DF8E0FB8A44821C34F903975476C39943A437F0408B94E1 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
10:23:29.0083 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll - ok
10:23:29.0098 0x07c4 [ 8D12EADDFFF765B0096E44A54BD0719A, 5315E2E6658BBCAA37623B38D333C5A8B7100B6A70B9E493AFC4C41997276E98 ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
10:23:29.0098 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll - ok
10:23:29.0098 0x07c4 [ F06810463FCECB022CBCBFDCBB4D70BB, D1FD366EEAE41C61D35A4F13266222820B73858A3FE9DCF29AA2D7620E6AB8BC ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5QmlWorkerScript.dll
10:23:29.0098 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\Qt5QmlWorkerScript.dll - ok
10:23:29.0098 0x07c4 [ 2EC948FFBBF4602DE5788260D7EF5B4F, F37DEF6E998502A01B306D74C69FE23356BE6B59A7D95141BFF62FFE67DBD7A7 ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
10:23:29.0098 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll - ok
10:23:29.0098 0x07c4 [ 14A7640F00753E2A1CAE6BE2050AC60C, 707B5833A78065736F6EAAEF7D739C2F2842B3F8B01A10F7B6CD672CEA1A81B9 ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
10:23:29.0098 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll - ok
10:23:29.0114 0x07c4 [ D056C98730750E0248E1F43DF3326E85, 49D0F1B61E1CE7F4418A6CCFC7FA5C964AFC69CF1CBEBA51E3997A1E0FB9C7A6 ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
10:23:29.0114 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll - ok
10:23:29.0114 0x07c4 [ 00F0B9535992493F0CA814C511290D68, B4AEBCE228BFA88BE7E8975E411536300EA09A7D38622BCF08FC3253C49AED24 ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
10:23:29.0114 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll - ok
10:23:29.0114 0x07c4 [ 73EE3199A67C7D708AE4FDE432CABFB8, C076E2DDFAE2E5C9E782535A21FC662E426675A21E80AE727EE6EE8747816679 ] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
10:23:29.0114 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll - ok
10:23:29.0114 0x07c4 [ C9C5FD1762F64FF96AA8ACE515DB0891, 67B49A8D5234F43D309E1D11B67972E5B1F912874764041E921C62E06313D09B ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Templates.2\qtquicktemplates2plugin.dll
10:23:29.0114 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Templates.2\qtquicktemplates2plugin.dll - ok
10:23:29.0129 0x07c4 [ B215AD27F8664F3861543731A7CB3E1B, EEA53D05D84CA2198D0F010440445B1F9B6DD04535EDACA895EE93C4C9C201A0 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5QuickTemplates2.dll
10:23:29.0129 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\Qt5QuickTemplates2.dll - ok
10:23:29.0129 0x07c4 [ AD87938019D7CCCE26B2D340ECD508B4, 6E5AD6DDE96EF866A089A55908816232EEAF83F0FF9D640E5AE8F2A514EE1EA0 ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\qtquickcontrols2plugin.dll
10:23:29.0129 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\qtquickcontrols2plugin.dll - ok
10:23:29.0145 0x07c4 [ 5C83D1AB67A1A1058C3C09F3A7545ACF, 1356231DD88F0D1ED028DA35BB91455BB5206440372EFFFD41A36D5DA79C7E80 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5QuickControls2.dll
10:23:29.0145 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\Qt5QuickControls2.dll - ok
10:23:29.0145 0x07c4 [ 405F4D32D2185F1F1BD753D8EEAFFB3A, CAC42C3E09C43BE96592B670D70821386014DB22D8239A9CFB9E33E54FB5C3D5 ] C:\Windows\System32\networkexplorer.dll
10:23:29.0145 0x07c4 C:\Windows\System32\networkexplorer.dll - ok
10:23:29.0145 0x07c4 [ E067C9F9A20E8F3B3A100893DCBB7A00, 55F0D44D22AED16E54E08DDB621305DC375E13ECB5C7BFB22A6B2F117785ECAF ] C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Adobe Premiere Pro.exe
10:23:29.0145 0x07c4 C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Adobe Premiere Pro.exe - ok
10:23:29.0145 0x07c4 [ A73BC7A7C1065325372050B63180DD58, 700D5294965478734DD3374B8F4286D4CFF119C04123688B16C0155BA6B99C12 ] C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Plug-Ins\Common\DVControl.dll
10:23:29.0145 0x07c4 C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Plug-Ins\Common\DVControl.dll - ok
10:23:29.0161 0x07c4 [ ABA1ADA0C2674E7F165901DC1C4FC1D8, 23415D0619D55FB485249289591168527B9C0C59AB654D4402079CE4179220BB ] C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Plug-Ins\Common\DXAVSource.dll
10:23:29.0161 0x07c4 C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Plug-Ins\Common\DXAVSource.dll - ok
10:23:29.0161 0x07c4 [ C96BE24AAD5E316DFBEDF6EFC05B0362, 6DEB4465DE9EC0DE8A9A09815170D223D8BB71D40A8A8574531604CD677758A4 ] C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Plug-Ins\Common\DXCaptureSource.dll
10:23:29.0161 0x07c4 C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Plug-Ins\Common\DXCaptureSource.dll - ok
10:23:29.0161 0x07c4 [ C4FBE730B527E6E663D1970AC5F9E715, D8CBC23BF7E67E08B5AE86F760B2EEE1A919753A1EF5EDF8ED43BBCD0238EC13 ] C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Plug-Ins\Common\DXDVSupport.dll
10:23:29.0161 0x07c4 C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Plug-Ins\Common\DXDVSupport.dll - ok
10:23:29.0161 0x07c4 [ 33B3F3BF0E44371754EDB07C03EE5552, C12189277FAB86F075117C6DFA0AD96D719AF11F6F9E240E45A15216406E452B ] C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Plug-Ins\Common\DXSampleInterceptor.dll
10:23:29.0161 0x07c4 C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Plug-Ins\Common\DXSampleInterceptor.dll - ok
10:23:29.0176 0x07c4 [ DE928EE71E1976F469FA42B46C88E946, 8FC5E3402A8F80AE90C8D137EF0E97F077032D35BEE8593D90052E643572E152 ] C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Plug-Ins\Common\TSSourcePush.dll
10:23:29.0176 0x07c4 C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Plug-Ins\Common\TSSourcePush.dll - ok
10:23:29.0176 0x07c4 [ FAA87F200672F029372882AC0A6DCF63, 3ADE6E7B7C31C68BE1949BB808AA822459C291652674EE1BEB47F8B359E338F3 ] C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Plug-Ins\Common\TSStrider.dll
10:23:29.0176 0x07c4 C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Plug-Ins\Common\TSStrider.dll - ok
10:23:29.0176 0x07c4 [ 453AEC75588EFBAB71934BE363A58D12, BE3A2E886BE99BB6179617B2F7FC6A0024C6694F1477E897E689DD13D51EB136 ] C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Plug-Ins\Common\PSIParser.dll
10:23:29.0176 0x07c4 C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Plug-Ins\Common\PSIParser.dll - ok
10:23:29.0176 0x07c4 [ 2BCBA6052374959A30BD7948444DBB79, 46224A2B729026FEEBC3C6A09E69919D477097848DB2CA0C2F5B166CDF379660 ] C:\Windows\System32\gameux.dll
10:23:29.0176 0x07c4 C:\Windows\System32\gameux.dll - ok
10:23:29.0192 0x07c4 [ 3520B962324DA79E9F2305A533C9198D, 01590EE9C1B6427D30503A5870C8680868CB2FE8DBE1703999A9DB6692E02579 ] C:\Windows\System32\wer.dll
10:23:29.0192 0x07c4 C:\Windows\System32\wer.dll - ok
10:23:29.0192 0x07c4 [ 00F4B51A83F615E5E03D1CA643BAD5F2, B1CC45796139D8D3785FA15608506B94969E9BE090F9D85B2438A0C3F9965F17 ] C:\Program Files\CCleaner\CCleaner64.exe
10:23:29.0192 0x07c4 C:\Program Files\CCleaner\CCleaner64.exe - ok
10:23:29.0192 0x07c4 [ 099605569CB2E5304737B0C43617C783, 1DA7AA13619CB862F266DCC2F6645E5DD1DA9FAC328E34B80D8A8A716D46147D ] C:\Program Files\Native Instruments\Native Access\Native Access.exe
10:23:29.0192 0x07c4 C:\Program Files\Native Instruments\Native Access\Native Access.exe - ok
10:23:29.0192 0x07c4 [ 2C1228D92E1CA65BD0D41B1652BB0DB8, 86B2E34FA962C6BC2A140AD81A81340011186E188B0DFB4A3F1DA73735F15DBA ] C:\Program Files\MuseScore 3\bin\MuseScore3.exe
10:23:29.0192 0x07c4 C:\Program Files\MuseScore 3\bin\MuseScore3.exe - ok
10:23:29.0207 0x07c4 [ 037A719DAD50603202C978CD802623E4, BD4C222913D32D7CF5FE0201FEBE7BD67FC39DF47A7A672C2D6C228A6E13B5DE ] C:\Windows\System32\ntshrui.dll
10:23:29.0207 0x07c4 C:\Windows\System32\ntshrui.dll - ok
10:23:29.0207 0x07c4 [ C3761661C17C2248A9379A8FB89E3DE1, CE3477FA2B4058EB80739E0161FE957545F13CF86D313F6422732901D35F75F2 ] C:\Windows\System32\stobject.dll
10:23:29.0207 0x07c4 C:\Windows\System32\stobject.dll - ok
10:23:29.0207 0x07c4 [ F832EEEA97CDDA1AF577E721F652A0D1, EBBB7CA199BA4DF231123922BD310D43DE0104C6185B70FE0281B938D5336F2E ] C:\Windows\System32\batmeter.dll
10:23:29.0207 0x07c4 C:\Windows\System32\batmeter.dll - ok
10:23:29.0207 0x07c4 [ E507B86D5509D4D04D386727E77F78FB, F7CA534327103EC5FCC749F5AE8B721FE81208AA580A52DE656284EF6215F0AF ] C:\Program Files\Mozilla Firefox\firefox.exe
10:23:29.0207 0x07c4 C:\Program Files\Mozilla Firefox\firefox.exe - ok
10:23:29.0223 0x07c4 [ 4FCE69A5CAEE73F91E02EE3ACE7CA431, A192D9606AAA43BACA4364F5BD14AA3DF56688A23F828C7D0F05EAAB8803AA52 ] C:\Program Files\Mozilla Firefox\mozglue.dll
10:23:29.0223 0x07c4 C:\Program Files\Mozilla Firefox\mozglue.dll - ok
10:23:29.0223 0x07c4 [ FCA57BF664F0C2E1F9BAE4E310A7B735, 3E719F7D72B69C4C2BF9F8ABB418ABBCA27DDDB5AA573ABD3AA173DF9721F078 ] C:\Windows\System32\wmploc.DLL
10:23:29.0223 0x07c4 C:\Windows\System32\wmploc.DLL - ok
10:23:29.0223 0x07c4 [ BB3DD35A8C1EECB596FB9E7CFE19072D, EC482ACEA06AF97D37CF54652306108331AB1374850AB1F6107C9039A47A75B6 ] C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
10:23:29.0223 0x07c4 C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe - ok
10:23:29.0223 0x07c4 [ 36E9EC349B1EC7C86D3FDE97C540DBFB, 494D9BF68009F15B9BE87437AACC822C6EB2A44893676CAB0945FB83FD3850A0 ] C:\Program Files\REAPER (x64)\reaper.exe
10:23:29.0223 0x07c4 C:\Program Files\REAPER (x64)\reaper.exe - ok
10:23:29.0239 0x07c4 [ E2904F5301B35B2722FAF578D1F7A4D4, B5DAB13D9FFBB7EF1C3A62FA6FBCD9514CC55369B3154A38208757C53F6720EA ] C:\Program Files\VideoLAN\VLC\vlc.exe
10:23:29.0239 0x07c4 C:\Program Files\VideoLAN\VLC\vlc.exe - ok
10:23:29.0239 0x07c4 [ 0A06CC3FBB97283B6D9C8A5B7C5C2AF1, E62678BA6DE401C2892A398C559CBC1D7C31BEC5C7D100F38DC3E68909EAD578 ] C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE
10:23:29.0239 0x07c4 C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE - ok
10:23:29.0239 0x07c4 [ 986283FE2F4381F486E69ADCD11CD0B9, BCABE710AD9A03B2C2ABDD8F4C43E481C8D2E0197610DB916E8B5A8E2C8A653F ] C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
10:23:29.0239 0x07c4 C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe - ok
10:23:29.0254 0x07c4 [ 553FD6BFF5F3C11C8A6C8FC6867FD447, 80F5A9F33F2CB9B6D43F0DBA51F0B487E01F675724A022487AC4C0C42F058074 ] C:\Program Files\Microsoft Office\root\vfs\Windows\Installer\{90160000-000F-0000-1000-0000000FF1CE}\wordicon.exe
10:23:29.0254 0x07c4 C:\Program Files\Microsoft Office\root\vfs\Windows\Installer\{90160000-000F-0000-1000-0000000FF1CE}\wordicon.exe - ok
10:23:29.0254 0x07c4 [ 8F8FE1115D56F601EBB707B353DA6030, C9905199B40A3D2233C8271B7BE3248CD2A3EA4C92B3F66C36EC565B4B4A1877 ] C:\Windows\System32\actxprxy.dll
10:23:29.0254 0x07c4 C:\Windows\System32\actxprxy.dll - ok
10:23:29.0254 0x07c4 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122, E7EA375A3BDE8FC764CB09524344370B9EE25F98AD6C83E6F37A569EB8D277D6 ] C:\Windows\System32\prnfldr.dll
10:23:29.0254 0x07c4 C:\Windows\System32\prnfldr.dll - ok
10:23:29.0254 0x07c4 [ C79F218BF85A30766C395E23D6BEBF46, AD4569983410A1149CA200729766FF80EB2F342D27024D0FD90D3BF121EA1E69 ] C:\Windows\System32\winspool.drv
10:23:29.0254 0x07c4 C:\Windows\System32\winspool.drv - ok
10:23:29.0270 0x07c4 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] C:\Windows\System32\es.dll
10:23:29.0270 0x07c4 C:\Windows\System32\es.dll - ok
10:23:29.0270 0x07c4 [ EC24D6D48DCDC9D5BEEC817BDA0B189E, D89FD79E0396480F1D48B09E7A0CFA3E9D9DD28AC0C1ADD85A52B2A5D8349D2D ] C:\Program Files\WinRAR\WinRAR.exe
10:23:29.0270 0x07c4 C:\Program Files\WinRAR\WinRAR.exe - ok
10:23:29.0270 0x07c4 [ DFB3669F0B5EA1097834D55BBFEB13DD, 0AA1034B402A6164119CBDCDD554D36E229195838F602A8413309EFFC11A37A2 ] C:\Windows\System32\mf.dll
10:23:29.0270 0x07c4 C:\Windows\System32\mf.dll - ok
10:23:29.0270 0x07c4 [ 42A9CB6906D9A8BEDC83B57163E62924, E18522D3137653140757829EFBFCE624A5BAA5842E2BBA10B9E5AB6C84BE49E1 ] C:\Windows\System32\DXP.dll
10:23:29.0270 0x07c4 C:\Windows\System32\DXP.dll - ok
10:23:29.0270 0x07c4 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891, 0A82A475301202791A7C10F978F952EAB7DB146A702D4EA67E24E2C98BC19638 ] C:\Windows\System32\Syncreg.dll
10:23:29.0270 0x07c4 C:\Windows\System32\Syncreg.dll - ok
10:23:29.0285 0x07c4 [ DB70FE36AC8F594E9E69479C076BADB8, 839D46AEE1407409194AB7B34AC66F0F6EA299BA89680CD8DA8F7729D8FC9E4E ] C:\Windows\System32\HelpPaneProxy.dll
10:23:29.0285 0x07c4 C:\Windows\System32\HelpPaneProxy.dll - ok
10:23:29.0285 0x07c4 [ 408D19FDC983377C2521FE3F70725409, B54F3CEDA255C4A8B6850F55D34ACB36FF88DB4229FA4F323C222C367E54135E ] C:\Windows\System32\mfplat.dll
10:23:29.0285 0x07c4 C:\Windows\System32\mfplat.dll - ok
10:23:29.0285 0x07c4 [ 78A1E65207484B7F8D3217507745F47C, 35F413ADB9D157F3666DD15DD58104D629CD9143198A1AB914B73A4A3C9903DD ] C:\Windows\System32\avrt.dll
10:23:29.0285 0x07c4 C:\Windows\System32\avrt.dll - ok
10:23:29.0285 0x07c4 [ 6D21051C8EA17C1DD0A6FD07CCAB8232, 72F1C48EC0860101249577ADC4734F43BFC9A528E6B730E0B043CC1B8BA4DBD3 ] C:\Windows\System32\ksuser.dll
10:23:29.0285 0x07c4 C:\Windows\System32\ksuser.dll - ok
10:23:29.0301 0x07c4 [ A66E522F3CBFB8709EA37844922A002E, 7A5092B330C4ACD5D2BD42276A972188004D0D85791AB937C47C3C400100F7EB ] C:\Windows\HelpPane.exe
10:23:29.0301 0x07c4 C:\Windows\HelpPane.exe - ok
10:23:29.0301 0x07c4 [ 86F1F949DD51FB5A044F1BD34CBE4AA8, AAFA3B8294E2543AFFF1E2C04FF0FA93D517FC20F7622ABE46B57BDCCF235E92 ] C:\Windows\System32\apds.dll
10:23:29.0301 0x07c4 C:\Windows\System32\apds.dll - ok
10:23:29.0301 0x07c4 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB, CF9082360E32A7C3E13A67AC2C6192F4A76870D43DA9FF2936993A637F712761 ] C:\Windows\System32\AltTab.dll
10:23:29.0301 0x07c4 C:\Windows\System32\AltTab.dll - ok
10:23:29.0301 0x07c4 [ 00000000000000000000000000000000, 0000000000000000000000000000000000000000000000000000000000000000 ] C:\Program Files\Streamlabs OBS\Streamlabs OBS.exe
10:23:29.0301 0x07c4 C:\Program Files\Streamlabs OBS\Streamlabs OBS.exe - ok
10:23:29.0317 0x07c4 [ 10F815BE90A66AAFC6C713D1BD626064, 01139FC04BC53594296F6A0E16B8D20B940F64BC8119FE7705C03C4947958F39 ] C:\Windows\System32\pnidui.dll
10:23:29.0317 0x07c4 C:\Windows\System32\pnidui.dll - ok
10:23:29.0317 0x07c4 [ 92DBF0A4C9239169010FC6E07859C82E, 00FB2CF4420F0FFEF519AFE732A708CF249640121E2A891CAA164313ABD7F804 ] C:\Windows\System32\ActionCenter.dll
10:23:29.0317 0x07c4 C:\Windows\System32\ActionCenter.dll - ok
10:23:29.0317 0x07c4 [ B9F0A4020AA98B7A20287BF7FE99A1FD, 21138F161EEEA46198890C7A2D073F2C82829E15676131BDAD9F237EDC7477CD ] C:\Windows\System32\QUTIL.DLL
10:23:29.0317 0x07c4 C:\Windows\System32\QUTIL.DLL - ok
10:23:29.0317 0x07c4 [ F7A256EC899C72B4ECDD2C02CB592EFD, 9C1AA9322E83CABB94AEA4375EAEB0C44700E1F33B8BE98649BA1DF4DDFAD326 ] C:\Windows\System32\bthprops.cpl
10:23:29.0317 0x07c4 C:\Windows\System32\bthprops.cpl - ok
10:23:29.0332 0x07c4 [ B32189BDFF6E577A92BAA61AD49264E6, 933E1778B2760B3A9194C2799D7B76052895959C3CAEDEFB4E9D764CBB6AD3B5 ] C:\Windows\System32\notepad.exe
10:23:29.0332 0x07c4 C:\Windows\System32\notepad.exe - ok
10:23:29.0332 0x07c4 [ 59C57A145D4B4CD6166DF77A70E4BFC7, 5B63175D8D576A87DEBE2F4D8C00DE0ED13E85EE219F5A4440546E6D5929A57B ] C:\Windows\System32\ieframe.dll
10:23:29.0332 0x07c4 C:\Windows\System32\ieframe.dll - ok10:23:29.0332 0x07c4 [ 9108540E866F75C7AF2B91DD921A8091, 7208C8E05E818781D7F2703B86848FC90651E0D8BE10362863250F2283CEC511 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
10:23:29.0332 0x07c4 C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
10:23:29.0332 0x07c4 [ 084FDD9AD90F16D2C5061961C17CDDFC, E3438EE9AF1F9E6E95421E85BF90B7C64F4AEF9B74348C51CC841B54EF606512 ] C:\Windows\System32\msxml3.dll
10:23:29.0332 0x07c4 C:\Windows\System32\msxml3.dll - ok
10:23:29.0348 0x07c4 [ CC771B4D3A2E9212FE6797612A76FFC0, E57057EA224D20CFCF34D30CCC015D7F6E046AF615A9D2CFE1FE4FBE7F4A83ED ] C:\Program Files\obs-studio\bin\64bit\obs64.exe
10:23:29.0348 0x07c4 C:\Program Files\obs-studio\bin\64bit\obs64.exe - ok
10:23:29.0348 0x07c4 [ 7F0729442EADB6425634505B743398F0, E4B397E8191F7EEB8E6E971250C5CC988B92E7A3C42AB86E8067F70B8B24FC24 ] C:\Windows\System32\UIAnimation.dll
10:23:29.0348 0x07c4 C:\Windows\System32\UIAnimation.dll - ok
10:23:29.0348 0x07c4 [ 37CEAF74F2834FF332F2B19188F11CF0, 400B17A8F8386CF47ED7752E58254801BB8889F6ECC8B2496F82989A2EC303F1 ] C:\Program Files\Internet Explorer\sqmapi.dll
10:23:29.0348 0x07c4 C:\Program Files\Internet Explorer\sqmapi.dll - ok
10:23:29.0348 0x07c4 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] C:\Windows\System32\netman.dll
10:23:29.0348 0x07c4 C:\Windows\System32\netman.dll - ok
10:23:29.0363 0x07c4 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D, A63836DB3B01835DC1311526A95198D6EBCCB1DC9DDAFBC38EC36C128CDB98B9 ] C:\Windows\System32\netshell.dll
10:23:29.0363 0x07c4 C:\Windows\System32\netshell.dll - ok
10:23:29.0363 0x07c4 [ D2155709E336C3BC15729EB87FEC6064, 682A84C0F2D892E7A6CEE4E5937B4799E352AAE3B71E7037F2A343373467443C ] C:\Windows\System32\rasdlg.dll
10:23:29.0363 0x07c4 C:\Windows\System32\rasdlg.dll - ok
10:23:29.0363 0x07c4 [ 2DF29664ED261F0FC448E58F338F0671, 4EFE79C383D0AF126FC4EE668D822563F8F037B1E61D73747A35FE11AAFDB8CE ] C:\Windows\System32\mprapi.dll
10:23:29.0363 0x07c4 C:\Windows\System32\mprapi.dll - ok
10:23:29.0363 0x07c4 [ 019CD868461B646E09BDF04474C19341, 01837EFACB02E52BC6E90C90C4CB01B11D56E449A37EA4FC2695507FF85EA9FE ] C:\Windows\System32\rasapi32.dll
10:23:29.0363 0x07c4 C:\Windows\System32\rasapi32.dll - ok
10:23:29.0379 0x07c4 [ B28DEEC597C8DEB70C744C7CF9210E3E, E777F192D822990CA6301B3FEA2AEA213FA7901438EB3328914ADF02B6C39DB9 ] C:\Windows\System32\rasman.dll
10:23:29.0379 0x07c4 C:\Windows\System32\rasman.dll - ok
10:23:29.0379 0x07c4 [ B53C4B69B695EDA1B7E41D35CA4244E2, 3D98E9B263CADA576E4057E059AFC867F6E3F1001F3B73C8BCF9066763A45D9D ] C:\Windows\System32\rtutils.dll
10:23:29.0379 0x07c4 C:\Windows\System32\rtutils.dll - ok
10:23:29.0379 0x07c4 [ A77BE7CB3222B4FB0AC6C71D1C2698D4, 73566223914BF670DF6B5931FA213E546713531B10391ED65B5256BBD7ABDE7F ] C:\Windows\System32\dsrole.dll
10:23:29.0379 0x07c4 C:\Windows\System32\dsrole.dll - ok
10:23:29.0379 0x07c4 [ 03706015DB44368375AEBE6339490E66, 02EB28B5156E320C1EBABC03D37E94EB770A721B99E1DD276F8DC2A50D76C381 ] C:\Windows\System32\netcfgx.dll
10:23:29.0379 0x07c4 C:\Windows\System32\netcfgx.dll - ok
10:23:29.0395 0x07c4 [ 44E6471824E43063AD95CD724D560D2A, 4F2D49A246427A72DBB29FCE4563F26B445253FA5BB41B926E082EFD2C38FB6E ] C:\Windows\System32\mshtml.dll
10:23:29.0395 0x07c4 C:\Windows\System32\mshtml.dll - ok
10:23:29.0395 0x07c4 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2, E8ACB693B1A78FAEF292111BE3F9B10BA95C76833C06C931A08EAAAE39A21334 ] C:\Windows\System32\dot3api.dll
10:23:29.0395 0x07c4 C:\Windows\System32\dot3api.dll - ok
10:23:29.0395 0x07c4 [ 0D753307D274F3688BD21C377B616700, 5DD08E77A11F2561FB96BA212FDDFE21D4394C69C34C3EB88F7F5CD068EE55BF ] C:\Windows\System32\eappcfg.dll
10:23:29.0395 0x07c4 C:\Windows\System32\eappcfg.dll - ok
10:23:29.0410 0x07c4 [ BF0661F38C8092A337E334C6651C485C, 0FE95BE282027780E9A48CDAAB50C9C46A3E12D0D22C23125838E4723799BD77 ] C:\Windows\System32\wlanapi.dll
10:23:29.0410 0x07c4 C:\Windows\System32\wlanapi.dll - ok
10:23:29.0410 0x07c4 [ 0EF881A272411F1A455C94E2599BE7D7, 3AC6822653AC8057F0628ADA25580F2E9327B765B2D652E3DD834456C43B3841 ] C:\Windows\System32\wlanhlp.dll
10:23:29.0410 0x07c4 C:\Windows\System32\wlanhlp.dll - ok
10:23:29.0410 0x07c4 [ 7F1B4C6FF3B85F9ADF74055187B8A22C, CC95DA5662638AACBE9643DCB236464C2C2095A8D5CDC8A747045870BE9D0E7D ] C:\Windows\System32\wlanutil.dll
10:23:29.0410 0x07c4 C:\Windows\System32\wlanutil.dll - ok
10:23:29.0410 0x07c4 [ 65522E77A1360DBC8D199DA3BF5EFFE4, E9D748070FA478A3D37F15049F998D340885C0DC5FCE03BFCE5D521C9EBA7350 ] C:\Windows\System32\eappprxy.dll
10:23:29.0410 0x07c4 C:\Windows\System32\eappprxy.dll - ok
10:23:29.0410 0x07c4 [ 73FCB7919DEE80EE556F2E498594EBAE, D0F7A0AD3BC33263E9C2CF9787DD326436F9E0C9F5031D769F8A43C64C08A762 ] C:\Windows\System32\onex.dll
10:23:29.0410 0x07c4 C:\Windows\System32\onex.dll - ok
10:23:29.0426 0x07c4 [ C746F3BF98E92FB137B5BD2B8B5925BD, 67A8990F3D491D149E65C90042909259793C65E671DC953FDA1F7590FAC23D9E ] C:\Windows\System32\FXSST.dll
10:23:29.0426 0x07c4 C:\Windows\System32\FXSST.dll - ok
10:23:29.0426 0x07c4 [ 3B367397320C26DBA890B260F80D1B1B, 50BBE71B4380B5E86E197AF86F5C08266DD6B12344BA4ABDEA604B8C774C4147 ] C:\Windows\System32\hnetcfg.dll
10:23:29.0426 0x07c4 C:\Windows\System32\hnetcfg.dll - ok
10:23:29.0426 0x07c4 [ 650CAEA856943E29F25A25D31E004B18, DCA63D2AF4C6F14B27EA006F200E58A5C13AC940A51947A40F668908A446CC4E ] C:\Windows\System32\FXSAPI.dll
10:23:29.0426 0x07c4 C:\Windows\System32\FXSAPI.dll - ok
10:23:29.0426 0x07c4 [ C836175870E00ACC546066632E15BD10, 4347F3319C26DA1C38F395C74DBD67AF886149C8F29EDE765DD96C8480A3054A ] C:\Windows\ehome\ehSSO.dll
10:23:29.0426 0x07c4 C:\Windows\ehome\ehSSO.dll - ok
10:23:29.0441 0x07c4 [ C8E8B8239FCF17BEA10E751BE5854631, CB869195E78AB613CEF50AE3B247F0E4E42F233A7AAF5B2BFC5ADEA2C45C5F8D ] C:\Windows\System32\FXSRESM.dll
10:23:29.0441 0x07c4 C:\Windows\System32\FXSRESM.dll - ok
10:23:29.0441 0x07c4 [ C8FDF0FA9E97E2FAAF3F814716AAA881, DD24A1CAB44D943B0E1A795A347AD25D9305FC7F012A2566A6A14BD47221831F ] C:\Windows\System32\WPDShServiceObj.dll
10:23:29.0441 0x07c4 C:\Windows\System32\WPDShServiceObj.dll - ok
10:23:29.0441 0x07c4 [ 4F3CD1C59EA71401E155C432BCECE180, 6D4118A627CAE509E43D0CC0062EECAA0990C955BB15AE24834460551B2F51A2 ] C:\Windows\System32\PortableDeviceTypes.dll
10:23:29.0441 0x07c4 C:\Windows\System32\PortableDeviceTypes.dll - ok
10:23:29.0441 0x07c4 [ 6699A112A3BDC9B52338512894EBA9D6, 10888BB9C3799E1E8B010C0F9088CED376AAD63A509FCE1727C457B022CDC717 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
10:23:29.0441 0x07c4 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
10:23:29.0457 0x07c4 [ E64D9EC8018C55873B40FDEE9DBEF5B3, 2DB11E7C631A9887CB75AFEAD2C79EC65F82C51F5F073CEFC8CDDF664EFF29C1 ] C:\Windows\System32\PortableDeviceApi.dll
10:23:29.0457 0x07c4 C:\Windows\System32\PortableDeviceApi.dll - ok
10:23:29.0457 0x07c4 [ C7494C67A6BF6FE914808E42F8265FEF, 3A3871983F2D9A57739C70365DC3F417D9BF02F5C0C4CC3272EA9F3D380EF962 ] C:\Program Files\Windows Media Player\wmpnssci.dll
10:23:29.0457 0x07c4 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
10:23:29.0457 0x07c4 [ 32802C0F6FC7C8F561B9D91F52A46421, EE02CF54FC3626D85849EF14D9B7B57419F12D1DD0735C25ECBD987EE53F634B ] C:\Windows\System32\cscui.dll
10:23:29.0457 0x07c4 C:\Windows\System32\cscui.dll - ok
10:23:29.0457 0x07c4 [ 1E9D8403AFCF522199AB6C575D27DEC8, EC1C4EF248428F08E99C37141D5B2F82D6EAF36E2563258BAE3C61B4EF40B9B0 ] C:\Windows\System32\cscdll.dll
10:23:29.0457 0x07c4 C:\Windows\System32\cscdll.dll - ok
10:23:29.0473 0x07c4 [ 8569E35D00F45972E506502EEE622BA4, 01FE851C03DB88C8373099C279F995A559D962B08932E193032FA3EAD522FB01 ] C:\Windows\System32\srchadmin.dll
10:23:29.0473 0x07c4 C:\Windows\System32\srchadmin.dll - ok
10:23:29.0473 0x07c4 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] C:\Windows\System32\FXSSVC.exe
10:23:29.0473 0x07c4 C:\Windows\System32\FXSSVC.exe - ok
10:23:29.0473 0x07c4 [ 5DA219F57A9076FB6FBD3C9C3713A672, 274FE616625B336D81841FDC752C8053D4CD6926565B899760D298D145CBA1A3 ] C:\Windows\System32\WWanAPI.dll
10:23:29.0473 0x07c4 C:\Windows\System32\WWanAPI.dll - ok
10:23:29.0473 0x07c4 [ 62C7AACC746C9723468A8F2169ED3E85, 40E901F3EAFE52DF11D6BC4EF0E79F666EBDACE0B3C090CAD2358076E893EA47 ] C:\Windows\System32\wwapi.dll
10:23:29.0473 0x07c4 C:\Windows\System32\wwapi.dll - ok
10:23:29.0488 0x07c4 [ 6B851E682A36453E1B1EE297FFB6E2AB, A641D3FD9463C4788B45B8B5584EA4489C1F63A71B4B595AE85FF3482CD5EDA6 ] C:\Windows\System32\QAGENT.DLL
10:23:29.0488 0x07c4 C:\Windows\System32\QAGENT.DLL - ok
10:23:29.0488 0x07c4 [ D1B1564DF71BBDE7F48C9C90E2C1E289, 2B91BC8BB91464022A4AEF36B78C9228938B61E2D51D25743AFE6DF23AC70166 ] C:\Windows\System32\webcheck.dll
10:23:29.0488 0x07c4 C:\Windows\System32\webcheck.dll - ok
10:23:29.0488 0x07c4 [ 101797BA603D227946B4B5109867EB19, EBF2B48D1A4FE148F455EA32023ABC0D479215D48C7CE76E765F199CD3C80AF8 ] C:\Windows\System32\SyncCenter.dll
10:23:29.0488 0x07c4 C:\Windows\System32\SyncCenter.dll - ok
10:23:29.0488 0x07c4 [ 8130391F82D52D36C0441F714136957F, 1FD4FEE7CAF63E450F27729E07EA2A2F09288629FD872DBB6E8710B16D8DBD5D ] C:\Windows\System32\imapi2.dll
10:23:29.0488 0x07c4 C:\Windows\System32\imapi2.dll - ok
10:23:29.0504 0x07c4 [ 6A5C1A8AC0B572679361026D0E900420, B5E693B48B462E97738A3D4E58B60846159649EB15F4D11074B4BC107CC88562 ] C:\Windows\System32\hgcpl.dll
10:23:29.0504 0x07c4 C:\Windows\System32\hgcpl.dll - ok
10:23:29.0504 0x07c4 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB, 018CB95A43CEA2063EA24691C71D51EF60D522C21502ABA8AD93876363D4B857 ] C:\Windows\System32\taskschd.dll
10:23:29.0504 0x07c4 C:\Windows\System32\taskschd.dll - ok
10:23:29.0504 0x07c4 [ 862596399AAFD2A21DB2AF9270CD4F70, 24CAA19EE791FB3440CE742C9064FCE0CB755EF0789D3CE62058A2CFEF0FF6D2 ] C:\Windows\System32\mstask.dll
10:23:29.0504 0x07c4 C:\Windows\System32\mstask.dll - ok
10:23:29.0504 0x07c4 [ A0BFC858B3A45CF9BFFFC3C8C08ED7FC, 8228440F553AB08B63E834B83E201107A697C1FF7767F50A6FAE357CCC5A7C75 ] C:\Windows\System32\apss.dll
10:23:29.0504 0x07c4 C:\Windows\System32\apss.dll - ok
10:23:29.0519 0x07c4 [ 56F03090D69FCED550905C01F3D7469D, F61B8C546BAB000D80FAF90FD04F882ADB0778C64383C128AFE7FFEE8C4D32A2 ] C:\Program Files\HandBrake\HandBrake.exe
10:23:29.0519 0x07c4 C:\Program Files\HandBrake\HandBrake.exe - ok
10:23:29.0519 0x07c4 [ 85F754F916D4EF129DD36C420306C67A, 6E981745A693FAA182F5814719DB16CF1ADDF62110C83B7AA75C2C80E02824BF ] C:\Windows\System32\msxml6.dll
10:23:29.0519 0x07c4 C:\Windows\System32\msxml6.dll - ok
10:23:29.0519 0x07c4 [ C676E5EA388AF7C4C031F56F9B42E362, 7686AF56DF7D8A333C7F741DEA06D0577E88B69F648CEC94C1D6BEFAAE6B4135 ] C:\Windows\System32\d2d1.dll
10:23:29.0519 0x07c4 C:\Windows\System32\d2d1.dll - ok
10:23:29.0535 0x07c4 [ 3A3C085D2C375D385455C2C32AE7E104, 304AFCCA5F0C7C54EEAF179F70A9C67850A95114C7E550EA619250C2E4AC629E ] C:\Windows\System32\DWrite.dll
10:23:29.0535 0x07c4 C:\Windows\System32\DWrite.dll - ok
10:23:29.0535 0x07c4 [ 155003A98F811432883B52284898F5AF, 35979BAF3D0538E74EE7E114F96D33A9558C0A4FE06E5A5D6FBFCCFB27794EDB ] C:\Windows\System32\d3d10warp.dll
10:23:29.0535 0x07c4 C:\Windows\System32\d3d10warp.dll - ok
10:23:29.0535 0x07c4 [ B3CE0951E3C1EA3C733573C472EE85F9, F7D81435BA1B85A6B105480B8BF484255CB74B2E31CEA927D8F3546DB6549293 ] C:\Windows\System32\msimtf.dll
10:23:29.0535 0x07c4 C:\Windows\System32\msimtf.dll - ok
10:23:29.0535 0x07c4 [ 8494E126F0B10180F3293AF861CE1F7A, 538B1F30423DB2398E611BC46C80150C090698E633BABF7362F7060DBF0C3064 ] C:\Windows\System32\mlang.dll
10:23:29.0535 0x07c4 C:\Windows\System32\mlang.dll - ok
10:23:29.0551 0x07c4 [ 534D84434D9DB1D1E1E865F64E52AA8E, 7E2AF0C13C90C222227FF4CAB94E2E11FB18B0FE915A63072EE3B8B3D5F42EF0 ] C:\Windows\System32\twext.dll
10:23:29.0551 0x07c4 C:\Windows\System32\twext.dll - ok
10:23:29.0551 0x07c4 [ 08A13AC17CBDC76276370DA5D5F20060, A935330878673EECEE7BEED633DA2DD160F0C84BF2C30F8AE3E01259D89A7737 ] C:\Windows\System32\zipfldr.dll
10:23:29.0551 0x07c4 C:\Windows\System32\zipfldr.dll - ok
10:23:29.0551 0x07c4 [ 76A5F50D92F543E566B0152E0BE1CF9E, DB28575F61B1ADC88A28AE51CE3B00226E4974CA60894896E414EA408C6FF9FE ] C:\Program Files (x86)\WinRAR\RarExt64.dll
10:23:29.0551 0x07c4 C:\Program Files (x86)\WinRAR\RarExt64.dll - ok
10:23:29.0551 0x07c4 [ E3526F364347D94C329A8CA6D8DF17DA, 0CA454FA57A90A4D899E0797D0AFF5364260F3649B963D21582FA7010E419C2A ] C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll
10:23:29.0551 0x07c4 C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll - ok
10:23:29.0566 0x07c4 [ A08C010D859F8EB42BDD7E1D55B8CA27, F86EAFBF7AA41D8425156C07398EDC3BD42F1690BD3E15D27AEF2EDA86549F15 ] C:\Windows\System32\mscoree.dll
10:23:29.0566 0x07c4 C:\Windows\System32\mscoree.dll - ok
10:23:29.0566 0x07c4 [ BD26EDE412FFF3BFFB48CEFB2F3E0E40, E86DB03E8B046C74D9C1EFCA5FA049C6105C88311A1393937DB4F738AA0EF063 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
10:23:29.0566 0x07c4 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
10:23:29.0566 0x07c4 [ 3E213BFC0DFFAA402EEE87A4946188A7, AE4AB36AA37DE221F2D8560F4A8D94663AE03C637DE59B878A997B8516EA2710 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
10:23:29.0566 0x07c4 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll - ok
10:23:29.0566 0x07c4 [ 63936588122BDEE9624D02CE3F8F54EA, 21F7E6165CE8DD92DB8CDF48CEE83DE64B2B0807B7B499CF87678B70C6F8C32F ] C:\Windows\System32\vcruntime140_clr0400.dll
10:23:29.0566 0x07c4 C:\Windows\System32\vcruntime140_clr0400.dll - ok
10:23:29.0582 0x07c4 [ F8F171BE1820544E15B555847005355C, CDDF9A2BF085AE59BA464B3BA6394AACFC342DA5F17D77FD5306054C8AABF153 ] C:\Windows\System32\ucrtbase_clr0400.dll
10:23:29.0582 0x07c4 C:\Windows\System32\ucrtbase_clr0400.dll - ok
10:23:29.0582 0x07c4 [ 6FE65F3A5262E7ADD4D49A8B2D3E405F, 80005086024E00AB1D632A274CD274B5D7D330F95D5D5C88B3152F427936921C ] C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\7fab566d563ec7b74b7696d436ef82d6\mscorlib.ni.dll
10:23:29.0582 0x07c4 C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\7fab566d563ec7b74b7696d436ef82d6\mscorlib.ni.dll - ok
10:23:29.0582 0x07c4 [ 2479FE3AC9DFCBEC2947C8079DE272B5, 0829C679E1AEE956F58B450D6E005E44C4B61FF8D716C32F69E29614E7E8D12A ] C:\Program Files (x86)\Common Files\Wondershare\PDFelement\AddIns\PEShellExt_x64.dll
10:23:29.0582 0x07c4 C:\Program Files (x86)\Common Files\Wondershare\PDFelement\AddIns\PEShellExt_x64.dll - ok
10:23:29.0582 0x07c4 [ A3AD7E4DC6D6C88887C8C54F9F3C3929, B359E5903EEC92A071725A39C85E219756EE4121A11F1AE26E027754F2F04691 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System\b4f96cff0dcbbbafc191fb13a8166383\System.ni.dll
10:23:29.0582 0x07c4 C:\Windows\assembly\NativeImages_v4.0.30319_64\System\b4f96cff0dcbbbafc191fb13a8166383\System.ni.dll - ok
10:23:29.0597 0x07c4 [ E454256082FB8F453F698B4718D142BC, B7253C1C71BB2620FF34F4789AAA000F441FDDE3B4CB05FE1FACF8F61CEEB3FE ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\f7aa008075f1441ded82188fa5cde5e9\System.Drawing.ni.dll
10:23:29.0597 0x07c4 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\f7aa008075f1441ded82188fa5cde5e9\System.Drawing.ni.dll - ok
10:23:29.0597 0x07c4 [ 1BBF289301436819582DB21143D9C4DF, 983DA2A4FA918CC8EE7F963460DF38D0D559C5166825CDB6372BDCBBDADBE7CB ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Windows.Forms\a5da311b5d84a8d763aa7278c3765680\System.Windows.Forms.ni.dll
10:23:29.0597 0x07c4 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Windows.Forms\a5da311b5d84a8d763aa7278c3765680\System.Windows.Forms.ni.dll - ok
10:23:29.0597 0x07c4 [ 54C052710F09DAF82B8AE78B0F2C7134, E327FD90C5958DDA2A32BBAAD2C36D79C440C2FF320CF97E98FFDD208B575838 ] C:\Windows\System32\api-ms-win-core-xstate-l2-1-0.dll
10:23:29.0597 0x07c4 C:\Windows\System32\api-ms-win-core-xstate-l2-1-0.dll - ok
10:23:29.0597 0x07c4 [ FC37C4EE1703C9912A951505AD6CA82E, 21B0CE813525BB7F970BC3FD990892DFC8FBF66394498741EF11A45D73C90036 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll
10:23:29.0597 0x07c4 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll - ok
10:23:29.0613 0x07c4 [ EE397552064171025759B46B94C50C36, FD7E97A995A0B85DC4701E0ACE9159F5ABAC614796E55A5369A9353DB780B58C ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll
10:23:29.0613 0x07c4 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll - ok
10:23:29.0613 0x07c4 [ CC348679DC17C241F6E61EB0A5DA6EBD, E621857197CC85B6803A85E27CC2FEE54058452FF10E4CE80836B3F3B273245D ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\54602f54f200bcb3c5aaff932560a5d4\System.Core.ni.dll
10:23:29.0613 0x07c4 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\54602f54f200bcb3c5aaff932560a5d4\System.Core.ni.dll - ok
10:23:29.0613 0x07c4 [ 9BE5938B193C5E058FCFA91C43970080, 9113DE47FB6D29FF44FC2F3C6320862822611F70D29C0CC83137EF7441A9C124 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\1f9f54067fa94d3e748e5ccfe812fbe2\System.Xml.ni.dll
10:23:29.0613 0x07c4 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\1f9f54067fa94d3e748e5ccfe812fbe2\System.Xml.ni.dll - ok
10:23:29.0629 0x07c4 [ 78D81AEF4EC7C693EB0F91694A52EFFE, 4B3FDAF0864E279FC0400EE0AEF13504CAC4B6CE969DC04259579D2AB88F153E ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\bc409193aa02648fe44d3a9f446cb487\System.Configuration.ni.dll
10:23:29.0629 0x07c4 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\bc409193aa02648fe44d3a9f446cb487\System.Configuration.ni.dll - ok
10:23:29.0629 0x07c4 [ E7362F87A78FAC37C9934C306E24430D, F00A40E747BDB0F7054BCE0C57D51754B1AA7FDC813C2FE4272C2AC238CDAF1D ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
10:23:29.0629 0x07c4 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
10:23:29.0629 0x07c4 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7, 690F12C490BEE2BF17AB7B6804E6E9B96F51C304350CCDE80FE5C7EEFA89720E ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
10:23:29.0629 0x07c4 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
10:23:29.0629 0x07c4 [ 6A23B570B6DC4B20224389B7855E9E8B, 85EA105ED15579D158F68248732E2176D68CBD9EE7799ECC99BDD742CFEE6122 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\2bfd8f9572429ab229692ec68d3944cc\mscorlib.ni.dll
10:23:29.0629 0x07c4 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\2bfd8f9572429ab229692ec68d3944cc\mscorlib.ni.dll - ok
10:23:29.0644 0x07c4 [ ABAC57D3B1C8E5E3C5A86F3D311CAA5F, 74DF953CB69A46B04AA9D77A07C50D346976DB4283FDFEE3637935C482C7DF30 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
10:23:29.0644 0x07c4 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
10:23:29.0644 0x07c4 [ 292D7CCBAF7D875AFBB4F00896863935, 2CFA99A77DF42A4E60EE4F610ACBFADB34BED6BCE4D1C6CE53AAAF87F98F3F92 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
10:23:29.0644 0x07c4 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
10:23:29.0644 0x07c4 [ 850BD2D2D9CB5894935C3B6333CAD6FD, AB1EE5FD5E2F1CC927C3EA92E71C91ACA566E69622D47AE780DA391B7C30DDD6 ] C:\Windows\System32\riched20.dll
10:23:29.0644 0x07c4 C:\Windows\System32\riched20.dll - ok
10:23:29.0644 0x07c4 [ B837D1528CE2E3CB79F09496BC08DDC6, ACD54CE61CFE94F23DC283537AD8FFBEB3D6041BD30317B60BA7A10FCB240A27 ] C:\Windows\System32\SensApi.dll
10:23:29.0644 0x07c4 C:\Windows\System32\SensApi.dll - ok
10:23:29.0660 0x07c4 [ 1B1431D9520C7578AD5633ED2A70625F, 6852FAC1355CA69226B727A1355D6DA8C0865F5EEDA45D7690701CFED7C542A1 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
10:23:29.0660 0x07c4 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
10:23:29.0660 0x07c4 [ 22905923EF935BD876B0A196483B0E96, 0AA71680F11F058F67DCDA5010544BF2DADBDB621189B607289A84E907A86B77 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\b07a3c5cb52863f0741a1f0c37874090\System.ni.dll
10:23:29.0660 0x07c4 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\b07a3c5cb52863f0741a1f0c37874090\System.ni.dll - ok
10:23:29.0660 0x07c4 [ C5D8D3C6B1A75270EB19D927ACD1B5D5, 41439C5954A95A48BA142E9D683FC8975387385751B9418F75B33DA3CF316693 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\622e46b1c00c88c2e3e152a76cb84392\System.Xml.ni.dll
10:23:29.0660 0x07c4 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\622e46b1c00c88c2e3e152a76cb84392\System.Xml.ni.dll - ok
10:23:29.0675 0x07c4 [ F893C1E36B21D0D92EDA22921C8D2712, 87D31060FDFA3EB2B98725C6B321CEE3CC03D43C74EB585B3D7A363A98332DD9 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\243521b63d3260715aaefddc2c867271\System.Core.ni.dll
10:23:29.0675 0x07c4 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\243521b63d3260715aaefddc2c867271\System.Core.ni.dll - ok
10:23:29.0675 0x07c4 [ A10B048B681C38E26CA90CD1BC123604, 4DA549D159D22650D8E83F9F76E8849F1126B0CB93E88F196409080200C48433 ] C:\Windows\System32\syncui.dll
10:23:29.0675 0x07c4 C:\Windows\System32\syncui.dll - ok
10:23:29.0675 0x07c4 [ 8699D17DFCFCD327784034DB6BD3A422, 649FA1885F04E48FDD1B3F8C5769112F29BBE880A2FAEF44A22F6051737FF8B8 ] C:\Windows\System32\synceng.dll
10:23:29.0675 0x07c4 C:\Windows\System32\synceng.dll - ok
10:23:29.0675 0x07c4 [ 28BE9E479B85814FB4981C46DDA87D12, 5B6FED0E526B15F1A3A68B0A906B9F205E3C1C8D0AEB38D75191994475C95619 ] C:\Windows\System32\nv3dappshext.dll
10:23:29.0675 0x07c4 C:\Windows\System32\nv3dappshext.dll - ok
10:23:29.0691 0x07c4 [ 7BC9D1ED083A1F6789CE4E4FF2F2A1BD, 3FAA9278F4459E034CDA6297340FC38FBA6EE37496493DC8B8A648A7839A6FE9 ] C:\Windows\System32\nvapi64.dll
10:23:29.0691 0x07c4 C:\Windows\System32\nvapi64.dll - ok
10:23:29.0691 0x07c4 [ 8B22B0CF8912F810B28AFBFC8B42727F, 3E65AE302C177DB3496B38B698C825C22BEF406809DDC3DFF46A3B86F58B6808 ] C:\Windows\System32\acppage.dll
10:23:29.0691 0x07c4 C:\Windows\System32\acppage.dll - ok
10:23:29.0691 0x07c4 [ 6441D2FFB14B613C1D44D709BC7F8FFA, 2DC7CBB70F40F1BD5E3CEF645C89918FAA9B2DE2FA624AF6B0D5EC850FABDA27 ] C:\Windows\System32\sendmail.dll
10:23:29.0691 0x07c4 C:\Windows\System32\sendmail.dll - ok
10:23:29.0691 0x07c4 [ A943D670747778C7597987A4B5B9A679, 1A582EBE780ABC1143BACCAF4910714D3E9F4195EDD86939499D03ED6E756610 ] C:\Windows\System32\WFS.exe
10:23:29.0691 0x07c4 C:\Windows\System32\WFS.exe - ok
10:23:29.0707 0x07c4 [ 21B62252D283FBF75A5F67849EBD9B2E, 22F36CB376530A02A10BC4CFECFEB423DD1DA16D2B4587AE593EC28FFBBCC337 ] C:\Windows\System32\WFSR.dll
10:23:29.0707 0x07c4 C:\Windows\System32\WFSR.dll - ok
10:23:29.0707 0x07c4 [ B5314D2C7D64A13E096678DAF02105B6, 5CCCC57E6F215126881412A5908D6C6384798EC52E53EA216C1080224291EFC9 ] C:\Windows\System32\wmp.dll
10:23:29.0707 0x07c4 C:\Windows\System32\wmp.dll - ok
10:23:29.0707 0x07c4 [ C8994E2703410F8DFE19DE5BF82994C0, 90DEF413CCF71888DDBB6AE9F28DEB3CD477B1187F87A79B02791FB8247472FD ] C:\Windows\System32\mydocs.dll
10:23:29.0707 0x07c4 C:\Windows\System32\mydocs.dll - ok
10:23:29.0707 0x07c4 [ 5F639198C4137075DA50E61C23963C11, 3D03B3BF62B3469069AD6BE2AAEE152CB6722D36C001B8197FEBC2F3EB9ADBE0 ] C:\Windows\System32\drprov.dll
10:23:29.0707 0x07c4 C:\Windows\System32\drprov.dll - ok
10:23:29.0722 0x07c4 [ BC566D17914B07ABAAB3A5A385CC3300, DCE0A1D26312AA6441FB7122C6EED980AE350D58B2B4B166CB62F983306268E9 ] C:\Windows\System32\ntlanman.dll
10:23:29.0722 0x07c4 C:\Windows\System32\ntlanman.dll - ok
10:23:29.0722 0x07c4 [ ABE3A0BCB2D57A5FE2B11545C066E148, FD4722E76A3B5732D6B9F474F7FD0FA14BA639495CB747655600BFDA2C3351C3 ] C:\Windows\System32\davclnt.dll
10:23:29.0722 0x07c4 C:\Windows\System32\davclnt.dll - ok
10:23:29.0722 0x07c4 [ 45B24A357C801CE62052FE0CDC8BD4D2, 00602E41B78473825253F6B2557A5C43FBDDCCF713D806929AE7C039FF8F185C ] C:\Windows\System32\davhlpr.dll
10:23:29.0722 0x07c4 C:\Windows\System32\davhlpr.dll - ok
10:23:29.0722 0x07c4 [ E5404072A5A9E0B452ADDF1D1339176C, 58089C8E0CD14B5AE9EA18CBDFB4E78648B743D20D4ED4029B4E736A4B42E6AD ] C:\Windows\System32\wpdshext.dll
10:23:29.0722 0x07c4 C:\Windows\System32\wpdshext.dll - ok
10:23:29.0738 0x07c4 [ 024352FEEC9042260BB4CFB4D79A206B, 60CB39086E10C5B66EBC15E4DF219620B344B4358D2918AB6BB3448A0AC8BE36 ] C:\Windows\System32\EhStorShell.dll
10:23:29.0738 0x07c4 C:\Windows\System32\EhStorShell.dll - ok
10:23:29.0738 0x07c4 [ 03AB2A2E426C2AD400AC8315226347F8, 71B2628163471D3D8C5681CA7BBAFC03C6EAA499707513FDBDEC009F0EB32E77 ] C:\Windows\System32\EhStorAPI.dll
10:23:29.0738 0x07c4 C:\Windows\System32\EhStorAPI.dll - ok
10:23:29.0738 0x07c4 [ 87E0E4B0B83A77017D5A91A72C10986D, 7112DD76A8EE96E50B48DF23211E229EA30E550358105F3554ECF46666939B16 ] C:\Windows\System32\drivers\fastfat.sys
10:23:29.0738 0x07c4 C:\Windows\System32\drivers\fastfat.sys - ok
10:23:29.0738 0x07c4 [ FF1EFF0E0F1F2EABE1199AE71194E560, 2D823C8B6076E932D696E8CB8A2C5C5DF6D392526CBA8E39B64C43635F683009 ] C:\Users\massbateria\Desktop\tdsskiller.exe
10:23:29.0738 0x07c4 C:\Users\massbateria\Desktop\tdsskiller.exe - ok
10:23:29.0753 0x07c4 [ 8165F2DEFDFF0F2897F2DA1169116659, A2F1957B595ACAB2BB360FFAA522A6A6C47FA5F88BCEF088509E5CB6830103CD ] C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
10:23:29.0753 0x07c4 C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll - ok
10:23:29.0753 0x07c4 [ A290E9849A0C0948136A785F5096F48B, FB3269CDA55197891F2FE9971D4C933D3C8BB4CCBE8EA6676F4CA3288B5A7EAD ] C:\Users\MASSBA~1\AppData\Local\Temp\{ECBB670C-F7D2-49B5-8BF5-6E1089D2F776}\{E261AC7B-3459-41C3-9C14-6338E2AA283F}.exe
10:23:29.0753 0x07c4 C:\Users\MASSBA~1\AppData\Local\Temp\{ECBB670C-F7D2-49B5-8BF5-6E1089D2F776}\{E261AC7B-3459-41C3-9C14-6338E2AA283F}.exe - ok
10:23:29.0753 0x07c4 [ 155644C40336F3725AB4F9616A8050AD, 0F3CF61CFDDACA81504C5D3F516E311FA44D2772549D6E79C5C43C4924FC4205 ] C:\Windows\SysWOW64\crypt32.dll
10:23:29.0753 0x07c4 C:\Windows\SysWOW64\crypt32.dll - ok
10:23:29.0753 0x07c4 [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\SysWOW64\msasn1.dll
10:23:29.0753 0x07c4 C:\Windows\SysWOW64\msasn1.dll - ok
10:23:29.0769 0x07c4 [ 378201E957948CBC1BE5D4775EC6FE2A, 8DF34DAE8F9D113AA63E508543F528AC1944B1F7E768E76AE61BA368A54EA585 ] C:\Windows\SysWOW64\oleaut32.dll
10:23:29.0769 0x07c4 C:\Windows\SysWOW64\oleaut32.dll - ok
10:23:29.0769 0x07c4 [ C44B8BFE40FB3F69336990791EBC28DB, 12D37AEDEA4D694C91AF3677D3EB4BFF45A321C8080F38EAD0AE957BB36A81C1 ] C:\Windows\SysWOW64\wintrust.dll
10:23:29.0769 0x07c4 C:\Windows\SysWOW64\wintrust.dll - ok
10:23:29.0769 0x07c4 [ 43964FA89CCF97BA6BE34D69455AC65F, 10E3B89A5470E1BB6F73382135DD2352F5073C1EE8485D7476CFB5122D4AAA2F ] C:\Windows\SysWOW64\uxtheme.dll
10:23:29.0769 0x07c4 C:\Windows\SysWOW64\uxtheme.dll - ok
10:23:29.0769 0x07c4 [ 1E38AEB134500A43DB7D4E4EA6F49B85, EBE3490306C398D4978C02FC2FC720E795E8B5C30102EF3AFA6D3CD341DD3267 ] C:\Windows\SysWOW64\winhttp.dll
10:23:29.0769 0x07c4 C:\Windows\SysWOW64\winhttp.dll - ok
10:23:29.0785 0x07c4 [ CB52DEF1B1E1B9950F29548F2F19115A, 42A60BC707DB0B42214A8C679E0A15AE46944D9D97C35D8293AB294DC759A800 ] C:\Windows\SysWOW64\webio.dll
10:23:29.0785 0x07c4 C:\Windows\SysWOW64\webio.dll - ok
10:23:29.0785 0x07c4 [ 59EA5753EBDAE42CF92FD5B6E7AE4D53, D99C852E324D2ABE6B1DBD9A11F3BAAFEF50E955D17EB97DBE9C528AD8740C0E ] C:\Windows\SysWOW64\ws2_32.dll
10:23:29.0785 0x07c4 C:\Windows\SysWOW64\ws2_32.dll - ok
10:23:29.0785 0x07c4 [ 169C70B2F954A7CF0828C1537A3D8AC1, 664FAF2A5C3485BAF53A273D9E2F3C565070100C505BED4749FF4AB805689A54 ] C:\Windows\SysWOW64\credssp.dll
10:23:29.0785 0x07c4 C:\Windows\SysWOW64\credssp.dll - ok
10:23:29.0785 0x07c4 [ 8A04BA5260E3D6F8CEE0247FD12A01E2, 47AA6A5631CBBFA154202A5C64D296FEEFA519CD3E85DACD4FDC2A1B35604FE9 ] C:\Windows\SysWOW64\cryptsp.dll
10:23:29.0785 0x07c4 C:\Windows\SysWOW64\cryptsp.dll - ok
10:23:29.0800 0x07c4 [ A88241C2A519AFD2C99A40000F9113E6, 9E3E7A4AF64A0173E61A2D6464ED1CEBB128EFA72E8FE57683EBA3505934A894 ] C:\Windows\SysWOW64\mswsock.dll
10:23:29.0800 0x07c4 C:\Windows\SysWOW64\mswsock.dll - ok
10:23:29.0800 0x07c4 [ 0723A00C740A0D1B5460FBFE048C3E68, 97FC7478E135EA3F5E7A9579DD4AC0D6553FE8F0664203B25C15721519C9E5C3 ] C:\Windows\SysWOW64\nsi.dll
10:23:29.0800 0x07c4 C:\Windows\SysWOW64\nsi.dll - ok
10:23:29.0800 0x07c4 [ 4A35D7B172AFF9C6B362D7297568836A, A381004257A3B1A262ADE4FF7C5A1F373DAA9934F598D912383010939C6478C1 ] C:\Windows\SysWOW64\dnsapi.dll
10:23:29.0800 0x07c4 C:\Windows\SysWOW64\dnsapi.dll - ok
10:23:29.0800 0x07c4 [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\SysWOW64\wship6.dll
10:23:29.0800 0x07c4 C:\Windows\SysWOW64\wship6.dll - ok
10:23:29.0816 0x07c4 [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
10:23:29.0816 0x07c4 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
10:23:29.0816 0x07c4 [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
10:23:29.0816 0x07c4 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
10:23:29.0816 0x07c4 [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\SysWOW64\rasadhlp.dll
10:23:29.0816 0x07c4 C:\Windows\SysWOW64\rasadhlp.dll - ok
10:23:29.0816 0x07c4 [ F05F26DD4B8640CB71F8C40BD6530FD1, 38AC0E1E7EF6163ECBFDD0A203305B95DDB77C6E8ABA201249B25B6C0769BAD7 ] C:\Windows\SysWOW64\winnsi.dll
10:23:29.0816 0x07c4 C:\Windows\SysWOW64\winnsi.dll - ok
10:23:29.0831 0x07c4 [ 9392CD363C6FE0CC6EFC927903F85845, C45CEF846E06B70357A0C8FCF02D2EFDD3DF71EEF2BF1752A57F478AA88D4942 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
10:23:29.0831 0x07c4 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
10:23:29.0831 0x07c4 [ 387945DD9EC23319BBEA5544AED14A7B, 82862E45E84A7FDC2E3A22A0A6D56F840A0FC5309A4C9FD937255491012DDF62 ] C:\Windows\SysWOW64\schannel.dll
10:23:29.0831 0x07c4 C:\Windows\SysWOW64\schannel.dll - ok
10:23:29.0831 0x07c4 [ F11A57E91FDAECFB41A5CB21EB1EBC8E, 904DA963F2274ADF521660E3131DAC781E59C6FAEB393E57802A3B5638C09283 ] C:\Windows\System32\dssenh.dll
10:23:29.0831 0x07c4 C:\Windows\System32\dssenh.dll - ok
10:23:29.0831 0x07c4 [ 6018A7F6851E8465A2D00C2A2EBAE5A8, 653935BEE88038F4D534117446A93BE00EA159BB0AA1D0BF422CFA23464ACD42 ] C:\Windows\SysWOW64\ncrypt.dll
10:23:29.0831 0x07c4 C:\Windows\SysWOW64\ncrypt.dll - ok
10:23:29.0847 0x07c4 [ 74017E769C2830CD35AC831D4EC3EF5F, 81B438B86EC19BB35673DE33E46C5279209C7E753BF41014787B436018580C20 ] C:\Windows\SysWOW64\secur32.dll
10:23:29.0847 0x07c4 C:\Windows\SysWOW64\secur32.dll - ok
10:23:29.0847 0x07c4 [ E9AE921F53C209A481D0728AA64CFDAB, F28B1F59B1DE16AE2BD5CE05FEF5385BFD3584C0E8378A1C002C5F3107B4FDED ] C:\Windows\SysWOW64\bcrypt.dll
10:23:29.0847 0x07c4 C:\Windows\SysWOW64\bcrypt.dll - ok
10:23:29.0847 0x07c4 [ 6B98026761228F913E9FA3F974920A20, D80DCEC4B5554E84491B06C624098123033B840F88157EF402EDAD2163B0A734 ] C:\Windows\SysWOW64\bcryptprimitives.dll
10:23:29.0847 0x07c4 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
10:23:29.0847 0x07c4 [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\SysWOW64\profapi.dll
10:23:29.0847 0x07c4 C:\Windows\SysWOW64\profapi.dll - ok
10:23:29.0863 0x07c4 [ 1845B92C2934BB4103563FCB2BACBDFB, B6B6258641065C2E87B36FCAFE6B9A2110B61B23A89A9760CB53F053250DAFE7 ] C:\Windows\SysWOW64\userenv.dll
10:23:29.0863 0x07c4 C:\Windows\SysWOW64\userenv.dll - ok
10:23:29.0863 0x07c4 [ FBE4E7975289230F84D9DA2222448AC3, B6D6F1122ED153E25D280EE96FF16BBB36AD4A4D8363F09289DDFF77A228F967 ] C:\Windows\SysWOW64\gpapi.dll
10:23:29.0863 0x07c4 C:\Windows\SysWOW64\gpapi.dll - ok
10:23:29.0863 0x07c4 [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\SysWOW64\rsaenh.dll
10:23:29.0863 0x07c4 C:\Windows\SysWOW64\rsaenh.dll - ok
10:23:29.0863 0x07c4 [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\SysWOW64\riched20.dll
10:23:29.0863 0x07c4 C:\Windows\SysWOW64\riched20.dll - ok
10:23:29.0878 0x07c4 [ E027A6E99EF709AFD195FD6329224C47, B31B85BF369DC36363B0E527AE3B8E95B33699D17D09C6313C43E7373A3E6874 ] C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{78790586-AB0D-4C58-8142-D8BE280B134D}.tmp
10:23:29.0878 0x07c4 C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{78790586-AB0D-4C58-8142-D8BE280B134D}.tmp - ok
10:23:29.0878 0x07c4 [ AB67816718E5C65CC326BE56AC0B9E73, D6F19026CB87C9BB5521D668B13347B68F297FCE34C5F1BFE530574B16ADB2D5 ] C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{ADBE30CE-24E3-41B5-897D-3F526A5B0144}.tmp
10:23:29.0878 0x07c4 C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{ADBE30CE-24E3-41B5-897D-3F526A5B0144}.tmp - ok
10:23:29.0878 0x07c4 [ FA17EC109029B01C1DC956FF3BD6FC77, D657D71001E5ECDA4BBBC4C35B2B17BF7FC87E90C965A115D59670A3EDD5F8CD ] C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{EFBEAE83-FBE3-44B4-949C-E19AC99BD972}.tmp
10:23:29.0878 0x07c4 C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{EFBEAE83-FBE3-44B4-949C-E19AC99BD972}.tmp - ok
10:23:29.0878 0x07c4 [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\SysWOW64\setupapi.dll
10:23:29.0878 0x07c4 C:\Windows\SysWOW64\setupapi.dll - ok
10:23:29.0894 0x07c4 [ F436E847FA799ECD75AD8C313673F450, 3C8BF3F0C08C7FA8DE5CD9C60AD9D00B742E84EB1FEBEEBA0F7159844BAAA471 ] C:\Windows\SysWOW64\cfgmgr32.dll
10:23:29.0894 0x07c4 C:\Windows\SysWOW64\cfgmgr32.dll - ok
10:23:29.0894 0x07c4 [ 2EEFF4502F5E13B1BED4A04CCAD64C08, 209FF1B6D46D1AC99518FCF54F2F726143B2DBF2C5FDA90212FBEF7526F7CBF5 ] C:\Windows\SysWOW64\devobj.dll
10:23:29.0894 0x07c4 C:\Windows\SysWOW64\devobj.dll - ok
10:23:29.0894 0x07c4 [ DC6DB08D85337C9675F94B01043279AE, B09E491113F9E95F4EE00BB51BB21D4967BAC333C0DCD030A10AEA9B9E52032B ] C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{2F2FE85A-875F-44CD-A338-D84061794FEC}.tmp
10:23:29.0894 0x07c4 C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{2F2FE85A-875F-44CD-A338-D84061794FEC}.tmp - ok
10:23:29.0894 0x07c4 [ C74D46C1F542F5FEB9B7E1A8EC04986D, FA83733A81BA8D96EDFD15C1914D5A6056D73C61540C8747E9AE1343DA47A63D ] C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{1DE386DB-7490-4E26-88C4-4F886430A66F}.tmp
10:23:29.0894 0x07c4 C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{1DE386DB-7490-4E26-88C4-4F886430A66F}.tmp - ok
10:23:29.0909 0x07c4 [ 517ECD823EB9A03368294C6C33A695D0, 7BA4EF2C5E9D15A4EE8ACC169CA233010DF8D1BC7088665E06C9E71BBA0CD40C ] C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{B6E6E2E0-678F-408D-A507-C3936AC45903}.tmp
10:23:29.0909 0x07c4 C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{B6E6E2E0-678F-408D-A507-C3936AC45903}.tmp - ok
10:23:29.0909 0x07c4 [ 3428F170E1953B4C4EA10A5F58B55908, B554E04021472C3C2BBDED2B4BBB4F6648932356F8DA409A2A7F6AC02E54B306 ] C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{D2AB952F-ACB6-4A7C-9270-8D9254D8CD70}.tmp
10:23:29.0909 0x07c4 C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{D2AB952F-ACB6-4A7C-9270-8D9254D8CD70}.tmp - ok
10:23:29.0909 0x07c4 [ 96D681B7DE0BA6BFA1DC55915003CD05, 26CDA6A9A67F20A494F0EF3577D14F5DDA1F0D4428891DBD271A757833285939 ] C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{AFC8C6E3-B5FA-4B21-B39C-9246FEB32BD0}.tmp
10:23:29.0909 0x07c4 C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{AFC8C6E3-B5FA-4B21-B39C-9246FEB32BD0}.tmp - ok
10:23:29.0925 0x07c4 [ 85D8D497E3CFCD66607DAD332378DE8B, FEB2FF9315B41A7D13C9F3EB4CFDD612C951CA02330BC5A9129881E148769C7F ] C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{486C8C29-EE52-4A27-A79C-D4CD91F13883}.tmp
10:23:29.0925 0x07c4 C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{486C8C29-EE52-4A27-A79C-D4CD91F13883}.tmp - ok
10:23:29.0925 0x07c4 [ CD0DAF878147B723108C428370FF0355, A5C3D8A516FD0A15DAAB442DA424E996112C355239B985413EAA4DC1FAB76303 ] C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{1D34F52B-3F72-4BD4-8D09-318DB7ED7B46}.tmp
10:23:29.0925 0x07c4 C:\Users\MASSBA~1\AppData\Local\Temp\{A4BD0172-D3E1-4C62-B185-AFB7D0EE58F9}\{1D34F52B-3F72-4BD4-8D09-318DB7ED7B46}.tmp - ok
10:23:29.0925 0x07c4 [ 2FCA0D2C59A855C54BAFA22AA329DF0F, ED9D26F539065D62FCCEDEEC8E509B30F4D15F8DA586C1F657ACEFE9DABAACD0 ] C:\Windows\SysWOW64\netapi32.dll
10:23:29.0925 0x07c4 C:\Windows\SysWOW64\netapi32.dll - ok
10:23:29.0925 0x07c4 [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\SysWOW64\netutils.dll
10:23:29.0925 0x07c4 C:\Windows\SysWOW64\netutils.dll - ok
10:23:29.0941 0x07c4 [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\SysWOW64\srvcli.dll
10:23:29.0941 0x07c4 C:\Windows\SysWOW64\srvcli.dll - ok
10:23:29.0941 0x07c4 [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\SysWOW64\wkscli.dll
10:23:29.0941 0x07c4 C:\Windows\SysWOW64\wkscli.dll - ok
10:23:29.0941 0x07c4 [ 266E46873190F3C4490B69FD7312A588, 88BABDD419B091E0323015A2D97FAD153C7BA524F33C992BE1B67FAF86FCDC79 ] C:\Windows\SysWOW64\msi.dll
10:23:29.0941 0x07c4 C:\Windows\SysWOW64\msi.dll - ok
10:23:29.0956 0x07c4 [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\SysWOW64\clbcatq.dll
10:23:29.0956 0x07c4 C:\Windows\SysWOW64\clbcatq.dll - ok
10:23:29.0956 0x07c4 [ 1C1F19F511D305235F5B1C006F89185B, 93B7B870AF8060D53C390A5CA87A42AF8FD8FA3682B48A9DB79C240C0F060461 ] C:\Windows\SysWOW64\ExplorerFrame.dll
10:23:29.0956 0x07c4 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
10:23:29.0956 0x07c4 [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\SysWOW64\duser.dll
10:23:29.0956 0x07c4 C:\Windows\SysWOW64\duser.dll - ok
10:23:29.0956 0x07c4 [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\SysWOW64\dui70.dll
10:23:29.0956 0x07c4 C:\Windows\SysWOW64\dui70.dll - ok
10:23:29.0972 0x07c4 [ 220159496484D34009DE71CA1A68E0D4, 94BD3DEB4E84F95D80BE5775E5A612EFF181ECB212FB668674C67AD19194DE69 ] C:\Windows\System32\wbem\NCProv.dll
10:23:29.0972 0x07c4 C:\Windows\System32\wbem\NCProv.dll - ok
10:23:29.0972 0x07c4 [ 02814474C497130152E6C5D1F6F36D95, BB0ED333B6A5B6D0C52073030B3835796B7BA26E692DAF3F26CA2FA592BFBE07 ] C:\Windows\SysWOW64\nlaapi.dll
10:23:29.0972 0x07c4 C:\Windows\SysWOW64\nlaapi.dll - ok
10:23:29.0972 0x07c4 [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\SysWOW64\NapiNSP.dll
10:23:29.0972 0x07c4 C:\Windows\SysWOW64\NapiNSP.dll - ok
10:23:29.0972 0x07c4 [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\SysWOW64\pnrpnsp.dll
10:23:29.0972 0x07c4 C:\Windows\SysWOW64\pnrpnsp.dll - ok
10:23:29.0987 0x07c4 [ 3920E0B3772478D55388993CB580A527, 4E61FDF087AAA96A38A7A999EBC5598BECACBF7343D1A1B64FF2DD1CF64A3767 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
10:23:29.0987 0x07c4 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
10:23:29.0987 0x07c4 [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\SysWOW64\winrnr.dll
10:23:29.0987 0x07c4 C:\Windows\SysWOW64\winrnr.dll - ok
10:23:29.0987 0x07c4 [ 6CB9C51CB3AD485614F43B80B22EFD5A, E3513AD50A9B97F1AF41C07EED369950292BDCB66679265A503C25D5632648CB ] C:\Windows\SysWOW64\dhcpcsvc.dll
10:23:29.0987 0x07c4 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
10:23:29.0987 0x07c4 ================ Scan generic autorun ======================
10:23:30.0190 0x07c4 [ 38953D30DA8EB02549C17EF53A62A5C3, C9A56F3AED5A4D131D659E7739392E00D328B5CCA458E8E4C9B8C40ED8237AAC ] C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
10:23:30.0362 0x07c4 AdobeGCInvoker-1.0 - ok
10:23:30.0409 0x07c4 [ 61E4289E91E88C90478D7F4BEB10DCF7, 1D0F4034E0111CF5758F470C15A22A0A28EB8269CB5BF07222C9C0FB07A15C55 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
10:23:30.0409 0x07c4 APSDaemon - ok
10:23:30.0752 0x07c4 [ 76DAB886CFB6D0D29881E9D6CE61305C, 8C9FBC7BC0FA9FC0018BCB259791AEE000B987E7B8EC8B74556BF7CAAEADFCA2 ] C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
10:23:31.0111 0x07c4 Dropbox - ok
10:23:31.0157 0x07c4 [ 920505A3DC824F6EDD4109AFE5F1EE12, 1AD7072E4AD62BB68D08BFC8B7985D1AB81ECC594DD82B03ADAC23ADB659F23D ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
10:23:31.0204 0x07c4 SunJavaUpdateSched - ok
10:23:31.0204 0x07c4 AsioThk32Reg - ok
10:23:31.0235 0x07c4 [ 07FCD9C095679652398A58A196EB0219, 5E17F366F0AF7F8961FB53FC93775EE0F749BBA0EC97C8F0A69FC0E51BB3D212 ] C:\Windows\system32\CTHELPER.EXE
10:23:31.0251 0x07c4 CTHelper - detected UnsignedFile.Multi.Generic ( 1 )
10:23:31.0376 0x07c4 Detect skipped due to KSN trusted
10:23:31.0376 0x07c4 CTHelper - ok
10:23:31.0423 0x07c4 [ 8D6003852DA53829113753DCCBCD59A7, 3DA70BEEAD2556DD0519C70128261CE1EEA41E3529D34CBBEDF60E7F71EB91FC ] C:\Windows\system32\CTXFIHLP.EXE
10:23:31.0438 0x07c4 CTxfiHlp - detected UnsignedFile.Multi.Generic ( 1 )
10:23:31.0563 0x07c4 Detect skipped due to KSN trusted
10:23:31.0563 0x07c4 CTxfiHlp - ok
10:23:31.0657 0x07c4 [ CF5AE9B73422687B7979D82F66D9A2EE, CAE98E535DBA104FD872F22FF16FF94CDADC7FE0A6791F29359CA4F5B17F43A2 ] C:\ProgramData\Malwarebytes' Anti-Malware (portable)\mbamdor.exe
10:23:31.0672 0x07c4 Malwarebytes Anti-Rootkit (cleanup) - ok
10:23:31.0672 0x07c4 {B261B9EE-7BDE-48E2-891E-B7894EFE13ED} - ok
10:23:31.0750 0x07c4 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
10:23:31.0828 0x07c4 Sidebar - ok
10:23:31.0859 0x07c4 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
10:23:31.0891 0x07c4 mctadmin - ok
10:23:31.0953 0x07c4 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
10:23:31.0984 0x07c4 Sidebar - ok
10:23:31.0984 0x07c4 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
10:23:32.0000 0x07c4 mctadmin - ok
10:23:32.0062 0x07c4 CCleaner Smart Cleaning - ok
10:23:32.0187 0x07c4 [ 275282B613B4392D5CB81B55A597456D, 10C927274F54CC9EE0ECC30871D6173506AB24A51ECA8470231ABB43C50FF857 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
10:23:32.0265 0x07c4 GoogleChromeAutoLaunch_DA49533490B544962D76CEA7A7F9414D - ok
10:23:32.0265 0x07c4 Waiting for KSN requests completion. In queue: 10
10:23:33.0373 0x07c4 Win FW state via NFP2: enabled ( trusted )
10:23:33.0482 0x07c4 ============================================================
10:23:33.0482 0x07c4 Scan finished
10:23:33.0482 0x07c4 ============================================================
10:23:33.0482 0x0794 Detected object count: 1
10:23:33.0482 0x0794 Actual detected object count: 1
10:25:58.0714 0x0794 exetools ( UnsignedFile.Multi.Generic ) - skipped by user
10:25:58.0714 0x0794 exetools ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:27:36.0048 0x0738 Deinitialize successSigues teniendo la máquina muy infectada.
ESET Online Scanner >> ha eliminado/desinfectado bastante malware, de todas formas: reinicias la máquina tal como te dije, vuelves a ejecutar el ESET y traes nuevamente su reporte. Aparte, también desvinculas/quitas la sincronización de DropBox de tu equipo y de tú cuenta de dicho servicio eliminas lo siguiente: E:\Dropbox\Dropbox\Dropbox\tecnica\Finale 2011(1).rar
Comentas si ha spodido ahcer lo del DropBox.
ZHP Cleaner >> ha eliminado bastante malware. De todas formas: reinicias la máquina tal como te dije, vuelves a ejecutar el ZHP Cleaner como te indique y traes nuevamente su reporte.
Malwarebytes Anti-Rootkit >> ha detectado malware este será eliminado al reiniciar el PC. Así que lo reinicias.
TDSKiller >> sube el siguiente fichero: C:\Windows\system32\DRIVERS\exetools.sys a Virustotal y me traes el enlace de este ya subido.
EN TU PRÓXIMA RESPUESTA
- Respondes a las preguntas que te haya realizado.
- Traes los reportes de Eset y ZHP.
- Traes el archivo subido de Virustotal.
- Comentas el estado en general del ordenador respecto al problema inicial planteado.
Salu2.