Jump to content

Build Theme!
  •  
  • Infected?

big grin WE'RE SURE THAT YOU'LL LOVE US!

We invite you to ask questions, share experiences, and learn. It's 100% free. Did we mention that it's free. It is. It's free. Join 91601 other members! Anybody can ask, anybody can answer. Consistently helpful members with best answers are invited to staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

Infected by Titanuimres in System Restore ? [Closed]

titanuimres system restore points deleted

  • This topic is locked This topic is locked
23 replies to this topic

#1 sunnynap

sunnynap

    New Member

  • Authentic Member
  • Pip
  • 16 posts

Posted 01 June 2014 - 06:25 PM

Two days ago I noticed that I was unable to download mail to microsoft outlook and realised that even thought I had internet connection, urls were showing up as server unavailable type of messages.  I got in touch with my service provider and they changed a couple of settings which they said could have been afected by a number of things including viruses. 

Anyhow, straight after this I came across another issue of not being able to open Microsoft Outlook (still unable to)  so I thought that I would do a system restore and could only see one restore point that looked unusual "Titanuimres" .  I didn't go any further with the restore and did a quick google search and it appears that this is some sort of system infection.  I am really freaking out both because I can't access my outlook folders that contain some really important information but also programs.

 

I am hoping that someone is kind enough to go through these logs and help me out.

 

A million thanks in advance.

 

.
DDS (Ver_11-03-05.01) - NTFS_AMD64  
Run by Pushba at 11:15:09.67 on Mon 02/06/2014
Internet Explorer: 9.11.9600.17041 BrowserJavaVersion: 10.51.2
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.64.1033.18.8174.5299 [GMT 12:00]
.
AV: Trend Micro Titanium Maximum Security *Enabled/Updated* {5D349EF8-873B-C657-917F-F1D93E101A7C}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Trend Micro Titanium Maximum Security *Enabled/Updated* {E6557F1C-A101-C9D9-ABCF-CAAB459750C1}
.
============== Running Processes ===============
.
C:\windows\system32\wininit.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\nvvsvc.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe
C:\windows\system32\conhost.exe
C:\windows\System32\spoolsv.exe
C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
C:\windows\system32\nvvsvc.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
C:\windows\system32\svchost.exe -k regsvc
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\system32\TODDSrv.exe
C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Users\Pushba\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\TOSHIBA\TECO\TecoService.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler.exe
C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler64.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\windows\system32\SearchIndexer.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\windows\system32\svchost.exe -k SDRSVC
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE
c:\program files (x86)\real\realplayer\update\realsched.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Windows\explorer.exe
C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiWatchDog.exe
C:\windows\system32\conhost.exe
C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
C:\windows\system32\conhost.exe
C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiSeAgnt.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
C:\windows\system32\taskeng.exe
C:\Users\Pushba\Downloads\dds.scr
C:\windows\system32\conhost.exe
C:\windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
uDefault_Page_URL = hxxp://toshiba.msn.com
mStart Page = about:blank
mWinlogon: Userinit=userinit.exe,
BHO: TmIEPlugInBHO Class: {1ca1377b-dc1d-4a52-9585-6e06050fac53} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmIEPlg32.dll
BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
BHO: TSToolbarBHO: {43c6d902-a1c5-45c9-91f6-fd9e90337e18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
BHO: Dragon NaturallySpeaking Rich Internet Application Support - Extension: {73a89c60-cf59-4ec7-9215-9b7ef05ecea4} - C:\PROGRA~2\Nuance\NATURA~1\Program\ieShim.dll
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: LastPass Vault: {95d9ecf5-2a4d-4550-be49-70d42f71296e} - C:\Program Files (x86)\LastPass\LPToolbar.dll
BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
BHO: TmBpIeBHO Class: {bbacbafd-fa5e-4079-8b33-00eb9f13d4ac} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\TmBpIe32.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: TOSHIBA Media Controller Plug-in: {f3c88694-effa-4d78-b409-54b7b2535b14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
TB: LastPass Toolbar: {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Trend Micro Toolbar: {ccac5586-44d7-4c43-b64a-f042461a97d2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
TB: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
uRun: [Google Update] "C:\Users\Pushba\AppData\Local\Google\Update\GoogleUpdate.exe" /c
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRunOnce: [Malwarebytes Anti-Malware (cleanup)] "C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe" "C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware"
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Add to TOSHIBA Bulletin Board - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll/1000
IE: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
IE: LastPass - file://C:\Users\Pushba\AppData\LocalLow\LastPass\context.html?cmd=lastpass
IE: LastPass Fill Forms - file://C:\Users\Pushba\AppData\LocalLow\LastPass\context.html?cmd=fillforms
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
IE: {43699cd0-e34f-11de-8a39-0800200c9a66} - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL
IE: {97F922BD-8563-4184-87EE-8C4ACA438823} - {5D29E593-73A5-400A-B3BD-6B7A1AF05A31} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
DPF: {10000000-1000-1000-1000-100000000000} - hxxp://cdn.betteradvertising.com/ghostery/addons/ie/2.4.2.0/ghostery.cab
TCP: {F9311AFF-86AD-4C8F-9CF7-B6F4714DB783} = 8.8.8.8,8.8.4.4
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\TmBpIe32.dll
Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmIEPlg32.dll
Handler: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
Handler: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
mASetup: {2D46B6DC-2207-486B-B523-A557E6D54B47} - C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
BHO-X64: TmIEPlugInBHO Class: {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmIEPlg.dll
BHO-X64:     Trend Micro NSC BHO - No File
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: LastPass Vault: {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll
BHO-X64:     LastPass Vault - No File
BHO-X64: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
BHO-X64: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
BHO-X64:     SkypeIEPluginBHO - No File
BHO-X64: TmBpIeBHO Class: {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\TmBpIe64.dll
BHO-X64:     TmBpIeBHO - No File
TB-X64: LastPass Toolbar: {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll
TB-X64: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
TB-X64: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
mRun-x64: [(Default)]
mRun-x64: [Trend Micro Client Framework] "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe"
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Pushba\AppData\Roaming\Mozilla\Firefox\Profiles\lzv8eylf.default-1384023942729\
FF - plugin: C:\PROGRA~2\Nuance\NATURA~1\Program\npDgnRia.dll
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\LastPass\nplastpass.dll
FF - plugin: C:\Program Files (x86)\LastPass\nplastpass64.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Nuance\PDF Reader\Bin\nppdf.dll
FF - plugin: C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll
FF - plugin: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\4\NP_wtapp.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll
FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll
FF - plugin: C:\Users\Pushba\AppData\Local\Citrix\Plugins\104\npappdetector.dll
FF - plugin: C:\Users\Pushba\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll
FF - plugin: C:\Users\Pushba\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
FF - plugin: C:\Users\Pushba\AppData\Roaming\Mozilla\plugins\npo1d.dll
FF - plugin: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
.
============= SERVICES / DRIVERS ===============
.
R0 TMEBC;TMEBC;C:\Windows\System32\drivers\TMEBC64.sys [2014-4-2 50976]
R1 tmevtmgr;tmevtmgr;C:\Windows\System32\drivers\tmevtmgr.sys [2014-4-2 85424]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\System32\drivers\vwififlt.sys [2009-7-14 59904]
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 Amsp;Trend Micro Solution Platform;C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [2014-4-2 305760]
R2 c2cautoupdatesvc;Skype Click to Call Updater;C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-4-11 1390720]
R2 c2cpnrsvc;Skype Click to Call PNR Service;C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-4-11 1764992]
R2 cfWiMAXService;ConfigFree WiMAX Service;C:\Program Files (x86)\Toshiba\ConfigFree\CFIWmxSvcs64.exe [2010-1-29 249200]
R2 ConfigFree Service;ConfigFree Service;C:\Program Files (x86)\Toshiba\ConfigFree\CFSvcs.exe [2009-3-11 46448]
R2 DragonSvc;Dragon Service;C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe [2013-10-15 311184]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-6-1 1809720]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-6-1 860472]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-8-14 39056]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-1-17 378984]
R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;C:\Program Files\Toshiba\TECO\TecoService.exe [2011-3-3 266680]
R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;C:\Windows\System32\drivers\TVALZFL.sys [2009-6-20 14472]
R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-12-7 2656280]
R3 BtFilter;Bluetooth LowerFilter Class Filter Driver;C:\Windows\System32\drivers\btfilter.sys [2011-12-7 42096]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\Windows\System32\drivers\L1C62x64.sys [2010-11-9 76912]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-6-1 25816]
R3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2014-6-1 122584]
R3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\drivers\mwac.sys [2014-6-1 63704]
R3 MEIx64;Intel® Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2010-10-20 56344]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2010-12-11 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2010-12-11 181248]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\System32\drivers\nvhda64v.sys [2010-11-13 155752]
R3 PGEffect;Pangu effect driver;C:\Windows\System32\drivers\PGEffect.sys [2011-12-7 38096]
R3 QIOMem;Generic IO & Memory Access;C:\Windows\System32\drivers\QIOMem.sys [2009-6-16 12800]
R3 tmeevw;tmeevw;C:\Windows\System32\drivers\tmeevw.sys [2014-4-2 100640]
R3 tmnciesc;tmnciesc;C:\Windows\System32\drivers\tmnciesc.sys [2014-4-2 303392]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\System32\drivers\vwifimp.sys [2009-7-14 17920]
R3 WSDPrintDevice;WSD Print Support via UMB;C:\Windows\System32\drivers\WSDPrint.sys [2009-7-14 23040]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-8-20 136176]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-29 257712]
S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2011-12-7 48488]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-9-23 1493352]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-13 206072]
S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-8-20 136176]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-4-11 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-5-4 119408]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2011-12-7 250984]
S3 RSUSBVSTOR;RTSUVSTOR.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\rtsuvstor.sys [2011-12-7 307304]
S3 TMachInfo;TMachInfo;C:\Program Files (x86)\Toshiba\TOSHIBA Service Station\TMachInfo.exe [2011-12-7 54136]
S3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;C:\Program Files\Toshiba\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-12-9 137632]
S3 TPCHSrv;TPCH Service;C:\Program Files\Toshiba\TPHM\TPCHSrv.exe [2010-12-21 822704]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-12-7 1255736]
S3 WSDScan;WSD Scan Support via UMB;C:\Windows\System32\drivers\WSDScan.sys [2009-7-14 25088]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-23 57184]
.
=============== Created Last 30 ================
.
2014-06-01 03:58:55    79064    ----a-w-    C:\windows\System32\drivers\sanjt.sys
2014-06-01 03:21:05    122584    ----a-w-    C:\windows\System32\drivers\MBAMSwissArmy.sys
2014-06-01 03:20:47    91352    ----a-w-    C:\windows\System32\drivers\mbamchameleon.sys
2014-06-01 03:20:47    63704    ----a-w-    C:\windows\System32\drivers\mwac.sys
2014-06-01 03:20:47    25816    ----a-w-    C:\windows\System32\drivers\mbam.sys
2014-06-01 03:20:46    --------    d-----w-    C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-01 03:20:46    --------    d-----w-    C:\PROGRA~3\Malwarebytes
2014-05-30 22:22:09    --------    d-----w-    C:\MGADiagToolOutput
2014-05-21 21:27:33    --------    d-----w-    C:\Program Files\iTunes
2014-05-21 21:27:33    --------    d-----w-    C:\Program Files\iPod
2014-05-21 21:27:33    --------    d-----w-    C:\Program Files (x86)\iTunes
2014-05-21 21:27:33    --------    d-----w-    C:\PROGRA~3\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-15 21:53:05    2724864    ----a-w-    C:\windows\SysWow64\mshtml.tlb
2014-05-15 21:53:05    2724864    ----a-w-    C:\windows\System32\mshtml.tlb
2014-05-11 03:35:25    --------    d-----w-    C:\Users\Pushba\AppData\Roaming\VideoMakerFX
2014-05-09 22:24:00    --------    d-----w-    C:\Program Files\CCleaner
2014-05-09 18:07:48    --------    d-----w-    C:\Program Files (x86)\VideoMakerFX
2014-05-09 18:07:48    --------    d-----w-    C:\PROGRA~3\regid.1995-09.com.example
2014-05-09 17:34:51    --------    d-----w-    C:\Users\Pushba\AppData\Local\Tube Tag Extractor
2014-05-07 20:52:17    --------    d-s---w-    C:\windows\System32\CompatTel
2014-05-06 01:21:05    --------    d-----w-    C:\Program Files (x86)\Digiarty
2014-05-06 01:21:04    --------    d-----w-    C:\Users\Pushba\AppData\Roaming\Digiarty
2014-05-04 20:50:08    --------    d-----w-    C:\Users\Pushba\AppData\Roaming\DropboxMaster
.
==================== Find3M  ====================
.
2014-05-14 02:14:10    70832    ----a-w-    C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-05-14 02:14:10    692400    ----a-w-    C:\windows\SysWow64\FlashPlayerApp.exe
2014-05-09 06:14:03    477184    ----a-w-    C:\windows\System32\aepdu.dll
2014-05-09 06:11:23    424448    ----a-w-    C:\windows\System32\aeinv.dll
2014-04-12 02:22:05    95680    ----a-w-    C:\windows\System32\drivers\ksecdd.sys
2014-04-12 02:22:05    155072    ----a-w-    C:\windows\System32\drivers\ksecpkg.sys
2014-04-12 02:19:38    29184    ----a-w-    C:\windows\System32\sspisrv.dll
2014-04-12 02:19:38    136192    ----a-w-    C:\windows\System32\sspicli.dll
2014-04-12 02:19:37    28160    ----a-w-    C:\windows\System32\secur32.dll
2014-04-12 02:19:32    1460736    ----a-w-    C:\windows\System32\lsasrv.dll
2014-04-12 02:19:05    31232    ----a-w-    C:\windows\System32\lsass.exe
2014-04-12 02:12:06    22016    ----a-w-    C:\windows\SysWow64\secur32.dll
2014-04-12 02:10:56    96768    ----a-w-    C:\windows\SysWow64\sspicli.dll
2014-04-01 23:36:05    59    ----a-w-    C:\windows\System32\SupportTool.exe.bat
2014-03-31 10:46:48    130712    ----a-w-    C:\windows\SysWow64\MSSTDFMT.DLL
2014-03-31 10:46:48    1070232    ----a-w-    C:\windows\SysWow64\MSCOMCTL.OCX
2014-03-06 09:31:33    4096    ----a-w-    C:\windows\System32\ieetwcollectorres.dll
2014-03-06 08:59:04    66048    ----a-w-    C:\windows\System32\iesetup.dll
2014-03-06 08:57:34    548352    ----a-w-    C:\windows\System32\vbscript.dll
2014-03-06 08:57:20    48640    ----a-w-    C:\windows\System32\ieetwproxystub.dll
2014-03-06 08:29:40    139264    ----a-w-    C:\windows\System32\ieUnatt.exe
2014-03-06 08:29:14    111616    ----a-w-    C:\windows\System32\ieetwcollector.exe
2014-03-06 08:28:15    752640    ----a-w-    C:\windows\System32\jscript9diag.dll
2014-03-06 08:15:54    940032    ----a-w-    C:\windows\System32\MsSpellCheckingFacility.exe
2014-03-06 08:11:41    5784064    ----a-w-    C:\windows\System32\jscript9.dll
2014-03-06 08:02:34    61952    ----a-w-    C:\windows\SysWow64\iesetup.dll
2014-03-06 08:02:33    455168    ----a-w-    C:\windows\SysWow64\vbscript.dll
2014-03-06 08:01:01    51200    ----a-w-    C:\windows\SysWow64\ieetwproxystub.dll
2014-03-06 07:56:43    38400    ----a-w-    C:\windows\System32\JavaScriptCollectionAgent.dll
2014-03-06 07:46:36    4254720    ----a-w-    C:\windows\SysWow64\jscript9.dll
2014-03-06 07:38:13    112128    ----a-w-    C:\windows\SysWow64\ieUnatt.exe
2014-03-06 07:36:40    592896    ----a-w-    C:\windows\SysWow64\jscript9diag.dll
2014-03-06 07:13:43    32256    ----a-w-    C:\windows\SysWow64\JavaScriptCollectionAgent.dll
2014-03-06 07:11:15    2043904    ----a-w-    C:\windows\System32\inetcpl.cpl
2014-03-06 06:40:39    1967104    ----a-w-    C:\windows\SysWow64\inetcpl.cpl
2014-03-06 06:22:40    2260480    ----a-w-    C:\windows\System32\wininet.dll
2014-03-06 05:41:49    1789440    ----a-w-    C:\windows\SysWow64\wininet.dll
2014-03-04 09:47:01    5550016    ----a-w-    C:\windows\System32\ntoskrnl.exe
2014-03-04 09:44:21    362496    ----a-w-    C:\windows\System32\wow64win.dll
2014-03-04 09:44:21    243712    ----a-w-    C:\windows\System32\wow64.dll
2014-03-04 09:44:21    13312    ----a-w-    C:\windows\System32\wow64cpu.dll
2014-03-04 09:44:20    39936    ----a-w-    C:\windows\System32\wincredprovider.dll
2014-03-04 09:44:10    210944    ----a-w-    C:\windows\System32\wdigest.dll
2014-03-04 09:44:08    86528    ----a-w-    C:\windows\System32\TSpkg.dll
2014-03-04 09:44:06    340992    ----a-w-    C:\windows\System32\schannel.dll
2014-03-04 09:44:03    722944    ----a-w-    C:\windows\System32\objsel.dll
2014-03-04 09:44:03    314880    ----a-w-    C:\windows\System32\msv1_0.dll
2014-03-04 09:44:03    16384    ----a-w-    C:\windows\System32\ntvdm64.dll
2014-03-04 09:44:00    728064    ----a-w-    C:\windows\System32\kerberos.dll
2014-03-04 09:44:00    424960    ----a-w-    C:\windows\System32\KernelBase.dll
2014-03-04 09:43:56    57344    ----a-w-    C:\windows\System32\cngprovider.dll
2014-03-04 09:43:56    52736    ----a-w-    C:\windows\System32\dpapiprovider.dll
2014-03-04 09:43:56    44544    ----a-w-    C:\windows\System32\dimsroam.dll
2014-03-04 09:43:56    22016    ----a-w-    C:\windows\System32\credssp.dll
2014-03-04 09:43:55    56832    ----a-w-    C:\windows\System32\adprovider.dll
2014-03-04 09:43:55    53760    ----a-w-    C:\windows\System32\capiprovider.dll
2014-03-04 09:43:50    455168    ----a-w-    C:\windows\System32\winlogon.exe
2014-03-04 09:20:11    3969984    ----a-w-    C:\windows\SysWow64\ntkrnlpa.exe
2014-03-04 09:20:11    3914176    ----a-w-    C:\windows\SysWow64\ntoskrnl.exe
2014-03-04 09:16:54    25600    ----a-w-    C:\windows\SysWow64\setup16.exe
2014-03-04 09:16:18    5120    ----a-w-    C:\windows\SysWow64\wow32.dll
2014-03-04 09:16:18    274944    ----a-w-    C:\windows\SysWow64\KernelBase.dll
2014-03-04 08:09:30    7680    ----a-w-    C:\windows\SysWow64\instnm.exe
2014-03-04 08:09:29    2048    ----a-w-    C:\windows\SysWow64\user.exe
2013-09-10 19:54:51    15641088    ----a-w-    C:\Program Files (x86)\Common Files\lpuninstall.exe
.
============= FINISH: 11:16:04.98 ===============
 


    Advertisements

Register to Remove


#2 LiquidTension

LiquidTension

    SuperMember

  • Classroom Teacher
  • 2,566 posts

Posted 02 June 2014 - 07:02 PM

Hello sunnynap, welcome to WhatTheTech's Malware Removal forum!
 
My username is LiquidTension, but you can call me Adam. I will be assisting you with your malware-related problems.
If you would allow me to call you by your first name I would prefer that.  :)
 
======================================================
 
Important: I have laid out some "ground rules" I would very much appreciate you follow. Please read through the points below, to ensure this process moves as quickly and efficiently as possible.

  • Please read through my instructions thoroughly, and ensure you carry out each step in the order specified.
  • Please do not post logs using the CODEQUOTE or ATTACHMENT format. Logs should be posted directly in plain text. If you receive an error whilst posting, please break the log in half and use multiple posts.
  • Please do not run any tools or take any steps other than those I provide for you. Independent efforts may make matters worse, and will affect my ability in ascertaining the current situation & providing the best set of instructions for you.
  • Ensure you are subscribed to this topic to receive instant email notifications of my responses.
    • ​Scroll to the top of this page and ensure you see the following: 6hgDYJ6.png
    • If you are not set to follow this topic, click the Follow this topic button and follow the prompts.
  • Please attempt to backup important documents before proceeding with my instructions.
  • If you come across any issues whilst following my instructions, please stop and inform me of the issue in as much detail as possible. Please do not hesitate to ask before you run anything.
  • Topics are locked if no response is made after 5 days. Please inform me if you will require additional time to complete my instructions.
     

======================================================
 
Please be advised that I am currently in training. My responses will need to be approved by one of our experts before I post them. This is only to ensure you are receiving accurate instructions. I will return as soon as possible.


50QfLth.png

 

Would you like to help others with malware removal? Join our Classroom and learn how!


#3 sunnynap

sunnynap

    New Member

  • Authentic Member
  • Pip
  • 16 posts

Posted 03 June 2014 - 02:05 AM

Hi Adam, you can call me Kushla. Thank you so much for your help. Rest assured I promise to follow your instructions to the T.  :) 



#4 LiquidTension

LiquidTension

    SuperMember

  • Classroom Teacher
  • 2,566 posts

Posted 03 June 2014 - 07:18 AM

Hello Kushla, 
 
Titanuimres is a Restore Point created by your Anti-virus software, Trend Micro. 
 

and did a quick google search and it appears that this is some sort of system infection.

Whilst searching for malware removal assistance, guides or information on the Internet, it is not unusual to find numerous hits from untrustworthy or scam sites which misclassify detections or provide misleading information. Search results will yield numerous malware removal sites with "How to Guides", which are written with the sole intent to deceive and lure users into purchasing unnecessary or rogue software.  
 
In this particular case, it looks as if your Google search has yielded results where other users suspect an infection associated with Titanuimres. Users claiming that Titanuimres is associated with an infection are misinformed. Titanuimres is not part of an infection; it is the name of a Restore Point created by Trend Micro. 
 
We will address the issue with Microsoft Outlook once you have run these diagnostic scans. 
 
STEP 1
xlK5Hdb.png Farbar Recovery Scan Tool (FRST) Scan

  • Please download Farbar Recovery Scan Tool (x64) and save the file to your desktop.
  • Right-Click FRST64.exe and select AVOiBNU.jpg Run as administrator to run the programme.
  • Click Yes to the disclaimer.
  • Ensure the Addition.txt box is checked.
  • Click the Scan button and let the programme run.
  • Upon completion, click OK, then OK on the Addition.txt pop up screen.
  • Two logs (FRST.txt & Addition.txt) will now be open on your desktop. Copy the contents of both logs and paste in your next reply. 
     

STEP 2
YARWD1t.png TDSSKiller Scan

  • Please download TDSSKiller and save the file to your desktop.
  • Right-Click TDSSKiller.exe and select AVOiBNU.jpg Run as administrator to run the programme.
  • Click Change parameters. Place a checkmark next to:
    • Loaded Modules
    • Detect TDLFS file system
  • Note: If you receive the following message: Extended Monitoring Driver is required, click Reboot now, and continue from here following the reboot.
  • ​Click Start Scan.
  • Note: Do not use the computer during the scan.
  • If objects are found, change the action to skip.
  • Click Continue and close the window.
  • A log will be created and saved to the root directory (usually C:\). Copy the contents of the log and paste in your next reply.
     

======================================================
 
STEP 3
pfNZP4A.png Logs
In your next reply please include the following logs. Please be sure to copy and paste the requested logs, as well as provide information on any questions I may have asked.

  • FRST.txt
  • Addition.txt
  • TDSSKiller log

50QfLth.png

 

Would you like to help others with malware removal? Join our Classroom and learn how!


#5 sunnynap

sunnynap

    New Member

  • Authentic Member
  • Pip
  • 16 posts

Posted 03 June 2014 - 03:35 PM

Hi Adam, Right Clicking on the Farber Recovery Scan Toll is not giving me the option to select AVOiBNU. jpg. When I right click all I get is the Usual Windows Options. So I can run it as administrator from here but this would be missing the AVOiBNU.jpg selections.

Will wait for your guidance here.



#6 LiquidTension

LiquidTension

    SuperMember

  • Classroom Teacher
  • 2,566 posts

Posted 04 June 2014 - 10:13 AM

Hi Kusla, 

AVOiBNU.jpg is an image of the User Account Control (UAC) shield. This is the same image next to the "Run as Administrator" option when you right-click the executable (.exe). 

Please right-click FRST and select Run as Administrator. Do the same for future executable (.exe) files as well please.

50QfLth.png

 

Would you like to help others with malware removal? Join our Classroom and learn how!


#7 sunnynap

sunnynap

    New Member

  • Authentic Member
  • Pip
  • 16 posts

Posted 04 June 2014 - 03:09 PM

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-06-2014
Ran by Pushba (administrator) on PUSHPA-PETAL on 05-06-2014 04:23:48
Running from C:\Users\Pushba\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Dropbox, Inc.) C:\Users\Pushba\AppData\Roaming\Dropbox\bin\Dropbox.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TECO\TecoService.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\ConfigFree\CFIWmxSvcs64.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\ConfigFree\CFSvcs.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiSeAgnt.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [] => [X]
HKLM\...\Run: [Trend Micro Client Framework] => C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [229824 2013-10-09] (Trend Micro Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-15] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-22] (Adobe Systems Incorporated)
HKLM-x32\...\RunOnce: [Malwarebytes Anti-Malware (cleanup)] - "C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe" "C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware" [54072 2014-05-12] (Malwarebytes Corporation)
HKU\S-1-5-21-267806774-3125823315-51418320-1000\...\Run: [Google Update] => C:\Users\Pushba\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-07-13] (Google Inc.)
HKU\S-1-5-21-267806774-3125823315-51418320-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Google Update] => C:\Users\Pushba\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-07-13] (Google Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba.msn.com
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKCU - {D98844C8-7BB8-4C5C-A966-DC5B498ED808} URL = https://duckduckgo.c...q={searchTerms}
BHO: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmIEPlg.dll (Trend Micro Inc.)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: LastPass Vault - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\TmBpIe64.dll (Trend Micro Inc.)
BHO-x32: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmIEPlg32.dll (Trend Micro Inc.)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: TSToolbarBHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
BHO-x32: Dragon NaturallySpeaking Rich Internet Application Support - Extension - {73A89C60-CF59-4EC7-9215-9B7EF05ECEA4} - C:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\ieShim.dll (Nuance Communications, Inc.)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: LastPass Vault - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\TmBpIe32.dll (Trend Micro Inc.)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll (<TOSHIBA>)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
DPF: HKLM-x32 {10000000-1000-1000-1000-100000000000} http://cdn.betteradv....0/ghostery.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\TmBpIe64.dll (Trend Micro Inc.)
Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmIEPlg.dll (Trend Micro Inc.)
Handler: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} -  No File
Handler: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} -  No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\TmBpIe32.dll (Trend Micro Inc.)
Handler-x32: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmIEPlg32.dll (Trend Micro Inc.)
Handler-x32: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
Handler-x32: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll (Trend Micro Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 0.0.0.0
Tcpip\..\Interfaces\{F9311AFF-86AD-4C8F-9CF7-B6F4714DB783}: [NameServer]8.8.8.8,8.8.4.4

FireFox:
========
FF ProfilePath: C:\Users\Pushba\AppData\Roaming\Mozilla\Firefox\Profiles\lzv8eylf.default-1384023942729
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass - C:\Program Files (x86)\LastPass\nplastpass64.dll (LastPass)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass - C:\Program Files (x86)\LastPass\nplastpass.dll (LastPass)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\4\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: nuance.com/DragonRIAPlugin - C:\PROGRA~2\Nuance\NATURA~1\Program\npDgnRia.dll (Nuance Communications Inc.)
FF Plugin-x32: ZEON/PDF,version=2.0 - C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
FF Plugin HKCU: @citrixonline.com/appdetectorplugin - C:\Users\Pushba\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Pushba\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Pushba\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Pushba\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Pushba\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Pushba\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Pushba\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazon-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\chambers-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-en-GB.xml
FF Extension: Flashblock - C:\Users\Pushba\AppData\Roaming\Mozilla\Firefox\Profiles\lzv8eylf.default-1384023942729\Extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a} [2013-11-18]
FF Extension: ColorZilla - C:\Users\Pushba\AppData\Roaming\Mozilla\Firefox\Profiles\lzv8eylf.default-1384023942729\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326} [2014-02-27]
FF Extension: Firebug - C:\Users\Pushba\AppData\Roaming\Mozilla\Firefox\Profiles\lzv8eylf.default-1384023942729\Extensions\firebug@software.joehewitt.com.xpi [2013-11-12]
FF Extension: Font Finder - C:\Users\Pushba\AppData\Roaming\Mozilla\Firefox\Profiles\lzv8eylf.default-1384023942729\Extensions\fontfinder@bendodson.com.xpi [2014-02-27]
FF Extension: SpyBar - C:\Users\Pushba\AppData\Roaming\Mozilla\Firefox\Profiles\lzv8eylf.default-1384023942729\Extensions\jid0-alFZKx8TTaZXKErGGA4i8VSf5rE@jetpack.xpi [2014-05-21]
FF Extension: SpyBar - C:\Users\Pushba\AppData\Roaming\Mozilla\Firefox\Profiles\lzv8eylf.default-1384023942729\Extensions\jid1-GweBqBWfVjIEzA@jetpack.xpi [2013-12-03]
FF Extension: JS Deminifier - C:\Users\Pushba\AppData\Roaming\Mozilla\Firefox\Profiles\lzv8eylf.default-1384023942729\Extensions\jsdeminifier@murphy.ben.name.xpi [2014-01-03]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\uninstall [2014-05-10]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-05-10]
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-09-12]
FF Extension: Trend Micro NSC Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20004\FxExt\firefoxextension [2014-04-25]
FF HKLM\...\Firefox\Extensions: [tmbepff@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\firefoxextension
FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\firefoxextension [2014-06-01]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM-x32\...\Firefox\Extensions: [{38783831-6098-4faa-A9C9-1EE1E343F4D2}] - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\firefoxextension
FF HKLM-x32\...\Firefox\Extensions: [jid0-lmZNVK7a82O8cufhdfB9dUDfA2w@jetpack] - C:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\ffShim.xpi
FF Extension: Dragon NaturallySpeaking Rich Internet Application Support - C:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\ffShim.xpi [2013-10-15]
FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKLM-x32\...\Firefox\Extensions: [tmbepff@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\firefoxextension
FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\firefoxextension [2014-06-01]
FF HKLM-x32\...\Firefox\Extensions: [{22181a4d-af90-4ca3-a569-faed9118d6bc}] - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension
FF Extension: Trend Micro Toolbar - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension [2014-04-02]
FF HKLM-x32\...\Firefox\Extensions: [{22C7F6C6-8D67-4534-92B5-529A0EC09405}] - C:\Program Files\Trend Micro\AMSP\module\20004\FxExt\firefoxextension\
FF Extension: Trend Micro NSC Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20004\FxExt\firefoxextension\ []

Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_265.dll No File
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\pdf.dll ()
CHR Plugin: (Skype Click to Call) - C:\Users\Pushba\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.10.0.9560_0\npSkypeChromePlugin.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.60.24) - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java™ Platform SE 7 U6) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll No File
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (RealNetworks™ Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll No File
CHR Plugin: (RealPlayer™ HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll No File
CHR Plugin: (RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) ) - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Download Plugin) - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
CHR Plugin: (Unity Player) - C:\Users\Pushba\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Plugin: (RealJukebox NS Plugin) - c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll No File
CHR Extension: (Google Drive) - C:\Users\Pushba\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-10-02]
CHR Extension: (RealDownloader) - C:\Users\Pushba\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-05-03]
CHR Extension: (Skype Click to Call) - C:\Users\Pushba\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-05-03]
CHR Extension: (Dragon NaturallySpeaking Rich Internet Application Support) - C:\Users\Pushba\AppData\Local\Google\Chrome\User Data\Default\Extensions\mikhcaiakabeeokmenglcdebplfdjicn [2013-09-01]
CHR Extension: (Google Wallet) - C:\Users\Pushba\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-01]
CHR HKCU\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Pushba\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2013-10-01]
CHR HKLM-x32\...\Chrome\Extension: [bmiabdepfhhiieiipmeecdmeljggmfee] - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1135\8.0.1135\chrome_tmbep.crx [2013-10-01]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11]
CHR HKLM-x32\...\Chrome\Extension: [mikhcaiakabeeokmenglcdebplfdjicn] - C:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\chromeShim.crx [2013-10-15]

==================== Services (Whitelisted) =================

R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R2 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad -bt=0 [X]

==================== Drivers (Whitelisted) ====================

U0 ivyfu; C:\Windows\System32\drivers\sanjt.sys [79064 2014-06-01] (Malwarebytes Corporation)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-06-05] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R1 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [116264 2013-09-04] (Trend Micro Inc.)
R0 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [282624 2013-09-04] (Trend Micro Inc.)
R0 TMEBC; C:\Windows\System32\DRIVERS\TMEBC64.sys [50976 2013-07-02] (Trend Micro Inc.)
R3 tmeevw; C:\Windows\System32\DRIVERS\tmeevw.sys [100640 2013-06-14] (Trend Micro Inc.)
R1 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [85424 2013-09-04] (Trend Micro Inc.)
R3 tmnciesc; C:\Windows\System32\DRIVERS\tmnciesc.sys [303392 2013-05-16] (Trend Micro Inc.)
R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [105744 2011-08-23] (Trend Micro Inc.)
S3 massfilter; system32\drivers\massfilter.sys [X]
S3 PCTINDIS5X64; \??\C:\windows\system32\PCTINDIS5X64.SYS [X]
U2 TMAgent;
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-05 04:23 - 2014-06-05 08:42 - 00026697 _____ () C:\Users\Pushba\Desktop\FRST.txt
2014-06-04 20:36 - 2014-06-04 20:36 - 00002972 _____ () C:\Users\Pushba\AppData\Local\recently-used.xbel
2014-06-04 17:39 - 2014-06-04 17:39 - 00000041 _____ () C:\Users\Pushba\Desktop\Booking reference.txt
2014-06-04 09:55 - 2014-06-04 09:55 - 00356070 _____ () C:\Users\Pushba\Downloads\dreamgrow-scroll-triggered-box.1.4.zip
2014-06-04 09:22 - 2014-06-05 08:42 - 00000000 ____D () C:\FRST
2014-06-04 09:08 - 2014-06-04 09:08 - 04155992 _____ () C:\Users\Pushba\Desktop\tdsskiller.zip
2014-06-04 09:07 - 2014-06-04 09:07 - 00000000 __SHD () C:\Users\Pushba\AppData\Local\EmieUserList
2014-06-04 09:07 - 2014-06-04 09:07 - 00000000 __SHD () C:\Users\Pushba\AppData\Local\EmieSiteList
2014-06-04 08:45 - 2014-06-04 08:45 - 02068992 _____ (Farbar) C:\Users\Pushba\Desktop\FRST64.exe
2014-06-04 08:44 - 2014-06-04 08:44 - 00001694 _____ () C:\Users\Pushba\Desktop\adams instructions.txt
2014-06-03 15:47 - 2014-06-03 15:47 - 00130329 _____ () C:\Users\Pushba\Downloads\chameleon-skin-unzip-me(2).zip
2014-06-03 15:45 - 2014-06-03 15:45 - 00130329 _____ () C:\Users\Pushba\Downloads\chameleon-skin-unzip-me(1).zip
2014-06-03 15:44 - 2014-06-03 15:44 - 00130329 _____ () C:\Users\Pushba\Downloads\chameleon-skin-unzip-me.zip
2014-06-03 12:05 - 2014-06-03 12:05 - 00002996 _____ () C:\windows\System32\Tasks\{BF2C7195-5C76-4D42-942E-73EF2CD50829}
2014-06-03 12:05 - 2014-06-03 12:05 - 00002996 _____ () C:\windows\System32\Tasks\{2C45AAC1-F2DE-40BA-A898-0915FC454AB9}
2014-06-03 12:05 - 2014-06-03 12:05 - 00002996 _____ () C:\windows\System32\Tasks\{161971A0-8413-4BC2-A060-A12FD47D9406}
2014-06-03 12:04 - 2014-06-03 12:04 - 00002996 _____ () C:\windows\System32\Tasks\{DDE9A2A8-D8AC-4473-8FFD-072D84EBE05B}
2014-06-03 12:02 - 2014-06-03 12:02 - 00001685 _____ () C:\Users\Pushba\Desktop\OUTLOOK.EXE - Shortcut.lnk
2014-06-03 08:55 - 2014-06-03 08:55 - 00009188 _____ () C:\Users\Pushba\Downloads\click-to-tweet-by-todaymade.1.2.zip
2014-06-02 11:16 - 2014-06-02 11:16 - 00027086 _____ () C:\Users\Pushba\Desktop\DDS.txt
2014-06-02 11:16 - 2014-06-02 11:16 - 00010326 _____ () C:\Users\Pushba\Desktop\Attach.txt
2014-06-02 11:13 - 2014-06-02 11:13 - 00812344 _____ (Trend Micro Inc.) C:\Users\Pushba\Downloads\HJTInstall.exe
2014-06-02 11:05 - 2014-06-02 11:07 - 00000288 _____ () C:\Users\Pushba\Desktop\Virus Removal.txt
2014-06-02 11:03 - 2014-06-02 11:04 - 00625664 _____ () C:\Users\Pushba\Downloads\dds.scr
2014-06-02 11:01 - 2014-06-02 11:01 - 00004143 _____ () C:\Users\Pushba\Desktop\otl instructions.txt
2014-06-02 10:58 - 2014-06-02 10:58 - 00602112 _____ (OldTimer Tools) C:\Users\Pushba\Downloads\OTL.exe
2014-06-01 15:58 - 2014-06-01 15:58 - 00079064 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\sanjt.sys
2014-06-01 15:58 - 2014-06-01 15:58 - 00002332 _____ () C:\windows\Minidump\htggp
2014-06-01 15:51 - 2014-06-01 15:51 - 00008418 _____ () C:\Users\Pushba\Documents\malwarelog.xml
2014-06-01 15:21 - 2014-06-05 08:17 - 00122584 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-01 15:20 - 2014-06-01 15:20 - 00001109 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-01 15:20 - 2014-06-01 15:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-01 15:20 - 2014-06-01 15:20 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-01 15:20 - 2014-06-01 15:20 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-01 15:20 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2014-06-01 15:20 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2014-06-01 15:20 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2014-06-01 15:19 - 2014-06-01 15:19 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Pushba\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-01 14:22 - 2014-06-01 14:23 - 10722008 _____ (SoftOrbits ) C:\Users\Pushba\Downloads\WatermarkMaker-bdj-June2014.exe
2014-05-31 23:28 - 2014-05-31 23:32 - 00000000 ____D () C:\Users\Pushba\Desktop\miscellaneous
2014-05-31 13:49 - 2014-05-31 13:49 - 00002996 _____ () C:\windows\System32\Tasks\{745DFD8E-C040-439F-9C4F-CBC6AC320579}
2014-05-31 13:49 - 2014-05-31 13:49 - 00002996 _____ () C:\windows\System32\Tasks\{17F97FE8-06F8-4B29-B85A-2A02D9264679}
2014-05-31 13:44 - 2014-05-31 13:44 - 00002996 _____ () C:\windows\System32\Tasks\{BBA5780C-70A5-443C-A3B4-E715BEC28334}
2014-05-31 12:49 - 2014-05-31 12:49 - 00002996 _____ () C:\windows\System32\Tasks\{A59A0178-46A3-4884-8050-142471BBBA3A}
2014-05-31 12:49 - 2014-05-31 12:49 - 00002996 _____ () C:\windows\System32\Tasks\{8EF1AB86-E749-410E-BC8F-2874822A410A}
2014-05-31 10:22 - 2014-05-31 10:22 - 00000000 ____D () C:\MGADiagToolOutput
2014-05-31 10:21 - 2014-05-31 10:21 - 00000000 ____D () C:\ProgramData\Office Genuine Advantage
2014-05-31 10:17 - 2014-05-31 10:17 - 00002996 _____ () C:\windows\System32\Tasks\{E78DA232-1DFB-428F-88FD-DC6AB593D155}
2014-05-31 10:17 - 2014-05-31 10:17 - 00002996 _____ () C:\windows\System32\Tasks\{B88D11FE-F9AD-4FC9-BD99-4469EB63682B}
2014-05-31 10:17 - 2014-05-31 10:17 - 00002996 _____ () C:\windows\System32\Tasks\{1DEA7955-D0D9-43FA-B203-87A4FB306233}
2014-05-31 10:16 - 2014-05-31 10:16 - 00002996 _____ () C:\windows\System32\Tasks\{BBECBA46-9C35-41A2-B70F-8EFA7BA1A593}
2014-05-31 10:16 - 2014-05-31 10:16 - 00002996 _____ () C:\windows\System32\Tasks\{4646A760-95F6-459D-914A-2786D5326549}
2014-05-31 09:57 - 2014-05-31 09:57 - 00002996 _____ () C:\windows\System32\Tasks\{50D8578C-A951-47AC-9287-88F18F9C0FE2}
2014-05-31 09:56 - 2014-05-31 09:56 - 00002996 _____ () C:\windows\System32\Tasks\{C4F68DCA-FF49-4490-9B4C-4EB24B0F05DC}
2014-05-31 09:56 - 2014-05-31 09:56 - 00002996 _____ () C:\windows\System32\Tasks\{68A8EFA9-03B0-4156-ABCC-7E700EB25C71}
2014-05-31 09:55 - 2014-05-31 09:55 - 00002996 _____ () C:\windows\System32\Tasks\{CD2B2A19-05C2-4E5C-8251-CAFD0285E79C}
2014-05-31 09:54 - 2014-05-31 09:54 - 00002996 _____ () C:\windows\System32\Tasks\{8709841B-9DD6-4D75-876B-C4E1A261C33C}
2014-05-30 23:02 - 2014-05-30 23:02 - 00007926 _____ () C:\Users\Pushba\Documents\startup.txt
2014-05-30 18:52 - 2014-05-30 18:52 - 00002996 _____ () C:\windows\System32\Tasks\{FB71C1E9-16F4-4E5F-9918-50AED2D9381E}
2014-05-30 18:52 - 2014-05-30 18:52 - 00002996 _____ () C:\windows\System32\Tasks\{E8856E27-2D7D-4D87-BA10-1D6021646A70}
2014-05-30 18:52 - 2014-05-30 18:52 - 00002996 _____ () C:\windows\System32\Tasks\{7467AE43-9BEE-4982-A7C1-54A8D1FD36E9}
2014-05-30 09:38 - 2014-05-30 09:38 - 00000000 ____D () C:\windows\System32\Tasks\Leader Technologies
2014-05-30 09:37 - 2014-05-30 09:37 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\Leadertech
2014-05-29 15:39 - 2014-05-29 15:39 - 00624788 _____ () C:\Users\Pushba\Downloads\magic-action-box.2.13(2).zip
2014-05-29 11:46 - 2014-05-29 11:47 - 00112582 _____ () C:\Users\Pushba\Downloads\dynamik_classic.zip
2014-05-27 14:40 - 2014-05-27 14:40 - 00895505 _____ () C:\Users\Pushba\Downloads\CatalystBundle.zip
2014-05-27 14:40 - 2014-05-27 14:40 - 00021517 _____ () C:\Users\Pushba\Downloads\catalyst-transport-1.0.zip
2014-05-27 14:40 - 2014-05-27 14:40 - 00007006 _____ () C:\Users\Pushba\Downloads\dynamik_classic_skin.zip
2014-05-27 14:39 - 2014-05-27 14:40 - 00728947 _____ () C:\Users\Pushba\Downloads\dynamik-gen-1.5.zip
2014-05-25 12:32 - 2014-05-25 12:32 - 00993246 _____ () C:\Users\Pushba\Downloads\ajax-event-calendar.1.0.4.zip
2014-05-25 12:22 - 2014-05-25 12:22 - 01731892 _____ () C:\Users\Pushba\Downloads\wp-members-pro-1.6.1.zip
2014-05-23 13:29 - 2014-05-23 13:29 - 00211557 _____ () C:\Users\Pushba\Downloads\google-mp3-audio-player.zip
2014-05-22 22:53 - 2014-05-22 22:53 - 00183176 _____ () C:\Users\Pushba\Downloads\page-scroll-to-id.1.5.6.zip
2014-05-22 15:48 - 2014-05-22 15:49 - 00000000 ____D () C:\Users\Pushba\Desktop\dowsing
2014-05-22 09:28 - 2014-05-22 09:28 - 00001794 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-05-22 09:28 - 2014-05-22 09:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-22 09:27 - 2014-05-22 09:28 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-22 09:27 - 2014-05-22 09:28 - 00000000 ____D () C:\Program Files\iTunes
2014-05-22 09:27 - 2014-05-22 09:28 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-22 09:27 - 2014-05-22 09:27 - 00000000 ____D () C:\Program Files\iPod
2014-05-18 15:09 - 2014-05-18 15:10 - 00000124 _____ () C:\Users\Pushba\Documents\Hoodie order - colabel.co.nz.txt
2014-05-16 10:10 - 2014-06-02 17:46 - 00000336 _____ () C:\windows\setupact.log
2014-05-16 10:10 - 2014-05-16 10:10 - 00000000 _____ () C:\windows\setuperr.log
2014-05-16 09:53 - 2014-05-06 16:40 - 23544320 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-05-16 09:53 - 2014-05-06 16:17 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-05-16 09:53 - 2014-05-06 15:25 - 17382912 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-05-16 09:53 - 2014-05-06 15:07 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-05-16 09:53 - 2014-05-06 15:00 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-05-16 09:53 - 2014-05-06 14:10 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-05-15 09:12 - 2014-03-25 14:43 - 14175744 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2014-05-15 09:11 - 2014-05-09 18:14 - 00477184 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-05-15 09:11 - 2014-05-09 18:11 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-05-15 09:11 - 2014-04-12 14:22 - 00155072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-05-15 09:11 - 2014-04-12 14:22 - 00095680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2014-05-15 09:11 - 2014-04-12 14:19 - 01460736 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-05-15 09:11 - 2014-04-12 14:19 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2014-05-15 09:11 - 2014-04-12 14:19 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2014-05-15 09:11 - 2014-04-12 14:19 - 00029184 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2014-05-15 09:11 - 2014-04-12 14:19 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2014-05-15 09:11 - 2014-04-12 14:12 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2014-05-15 09:11 - 2014-04-12 14:10 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2014-05-15 09:11 - 2014-03-25 14:09 - 12874240 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2014-05-15 09:11 - 2014-03-04 21:47 - 05550016 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-05-15 09:11 - 2014-03-04 21:44 - 00728064 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-05-15 09:11 - 2014-03-04 21:44 - 00722944 _____ (Microsoft Corporation) C:\windows\system32\objsel.dll
2014-05-15 09:11 - 2014-03-04 21:44 - 00424960 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2014-05-15 09:11 - 2014-03-04 21:44 - 00340992 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-05-15 09:11 - 2014-03-04 21:44 - 00314880 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2014-05-15 09:11 - 2014-03-04 21:44 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2014-05-15 09:11 - 2014-03-04 21:44 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2014-05-15 09:11 - 2014-03-04 21:44 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\wincredprovider.dll
2014-05-15 09:11 - 2014-03-04 21:43 - 00455168 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2014-05-15 09:11 - 2014-03-04 21:43 - 00057344 _____ (Microsoft Corporation) C:\windows\system32\cngprovider.dll
2014-05-15 09:11 - 2014-03-04 21:43 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\adprovider.dll
2014-05-15 09:11 - 2014-03-04 21:43 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\capiprovider.dll
2014-05-15 09:11 - 2014-03-04 21:43 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\dpapiprovider.dll
2014-05-15 09:11 - 2014-03-04 21:43 - 00044544 _____ (Microsoft Corporation) C:\windows\system32\dimsroam.dll
2014-05-15 09:11 - 2014-03-04 21:43 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2014-05-15 09:11 - 2014-03-04 21:20 - 03969984 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2014-05-15 09:11 - 2014-03-04 21:20 - 03914176 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2014-05-15 09:11 - 2014-03-04 21:17 - 00550912 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00538112 _____ (Microsoft Corporation) C:\windows\SysWOW64\objsel.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00247808 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\cngprovider.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00049664 _____ (Microsoft Corporation) C:\windows\SysWOW64\adprovider.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00048128 _____ (Microsoft Corporation) C:\windows\SysWOW64\capiprovider.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpapiprovider.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00036864 _____ (Microsoft Corporation) C:\windows\SysWOW64\dimsroam.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wincredprovider.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2014-05-15 09:11 - 2014-03-04 21:16 - 00274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2014-05-11 17:24 - 2014-05-11 17:24 - 01203733 _____ () C:\Users\Pushba\Downloads\wp4fb(1).zip
2014-05-11 17:24 - 2014-05-11 17:24 - 00000635 _____ () C:\Users\Pushba\Downloads\license-personal.txt
2014-05-11 16:07 - 2014-05-11 16:07 - 00952645 _____ () C:\Users\Pushba\Downloads\wp-spam-renegade_v2.5.zip
2014-05-11 15:35 - 2014-05-11 15:35 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\VideoMakerFX
2014-05-10 10:24 - 2014-05-28 14:22 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-10 10:24 - 2014-05-10 10:24 - 00002774 _____ () C:\windows\System32\Tasks\CCleanerSkipUAC
2014-05-10 10:24 - 2014-05-10 10:24 - 00000833 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-05-10 06:55 - 2014-05-10 06:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-10 06:24 - 2014-05-10 06:24 - 00066193 _____ () C:\Users\Pushba\Downloads\covertsocialbuzz(1).zip
2014-05-10 06:22 - 2014-05-10 06:22 - 00000000 ____D () C:\Users\Pushba\Downloads\WP4M_WPListIt_v1.5(1)
2014-05-10 06:20 - 2014-05-10 06:20 - 00048348 _____ () C:\Users\Pushba\Downloads\WP4M_WPListIt_v1.5(1).zip
2014-05-10 06:18 - 2014-05-10 06:18 - 03961083 _____ () C:\Users\Pushba\Downloads\wpsimplevideo.zip
2014-05-10 06:08 - 2014-05-10 06:08 - 00000996 _____ () C:\Users\Public\Desktop\VideoMakerFX.lnk
2014-05-10 06:07 - 2014-05-10 06:08 - 00000000 ____D () C:\ProgramData\regid.1995-09.com.example
2014-05-10 06:07 - 2014-05-10 06:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoMakerFX
2014-05-10 06:07 - 2014-05-10 06:08 - 00000000 ____D () C:\Program Files (x86)\VideoMakerFX
2014-05-10 06:06 - 2014-05-10 06:06 - 00000000 ____D () C:\Users\Pushba\Desktop\VideoMakerFXWindows
2014-05-10 05:51 - 2014-05-10 05:52 - 01052604 _____ () C:\Users\Pushba\Downloads\InstaBannerAIR_ new build March-16-2014(2).air
2014-05-10 05:49 - 2014-05-10 05:49 - 01052604 _____ () C:\Users\Pushba\Desktop\InstaBannerAIR_ new build March-16-2014(1).air
2014-05-10 05:48 - 2014-05-10 05:48 - 01052604 _____ () C:\Users\Pushba\Downloads\InstaBannerAIR_ new build March-16-2014.air
2014-05-10 05:42 - 2014-05-10 05:42 - 04931410 _____ () C:\Users\Pushba\Downloads\vidwordsbonus.zip
2014-05-10 05:41 - 2014-05-10 05:41 - 00000000 ____D () C:\Users\Pushba\Desktop\tubetagextractor
2014-05-10 05:34 - 2014-05-10 05:34 - 00000000 ____D () C:\Users\Pushba\AppData\Local\Tube Tag Extractor
2014-05-10 05:33 - 2014-05-10 05:33 - 06762996 _____ () C:\Users\Pushba\Desktop\tubetagextractor.zip
2014-05-10 05:11 - 2014-05-10 05:19 - 129712046 _____ () C:\Users\Pushba\Desktop\VideoMakerFXWindows.zip
2014-05-08 08:52 - 2014-05-16 10:08 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-05-06 21:48 - 2014-05-06 21:48 - 00000017 _____ () C:\Users\Pushba\Desktop\dvd ripper.txt
2014-05-06 13:31 - 2014-05-06 13:31 - 00613952 _____ (NCH Software) C:\Users\Pushba\Downloads\prismpsetup.exe
2014-05-06 13:24 - 2014-05-07 11:23 - 00000000 ____D () C:\Users\Pushba\Documents\New Insights
2014-05-06 13:21 - 2014-05-06 13:21 - 00001229 _____ () C:\Users\Public\Desktop\WinX DVD Ripper.lnk
2014-05-06 13:21 - 2014-05-06 13:21 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\Digiarty
2014-05-06 13:21 - 2014-05-06 13:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digiarty
2014-05-06 13:21 - 2014-05-06 13:21 - 00000000 ____D () C:\Program Files (x86)\Digiarty
2014-05-06 13:19 - 2014-05-06 13:19 - 10753128 _____ (Digiarty Software, Inc. ) C:\Users\Pushba\Downloads\winx-dvd-ripper.exe

==================== One Month Modified Files and Folders =======

2014-06-05 08:42 - 2014-06-05 04:23 - 00026697 _____ () C:\Users\Pushba\Desktop\FRST.txt
2014-06-05 08:42 - 2014-06-04 09:22 - 00000000 ____D () C:\FRST
2014-06-05 08:42 - 2011-12-07 19:28 - 00000000 ____D () C:\Users\Pushba\AppData\Local\Temp
2014-06-05 08:19 - 2014-02-27 08:46 - 00000568 _____ () C:\windows\Tasks\G2MUpdateTask-S-1-5-21-267806774-3125823315-51418320-1000.job
2014-06-05 08:17 - 2014-06-01 15:21 - 00122584 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-05 08:14 - 2013-12-29 16:06 - 00000830 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-06-05 08:02 - 2013-07-17 11:04 - 00000912 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-267806774-3125823315-51418320-1000UA.job
2014-06-05 07:44 - 2012-08-20 10:07 - 00000898 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-05 04:30 - 2011-12-07 17:09 - 01098203 _____ () C:\windows\WindowsUpdate.log
2014-06-04 21:50 - 2013-10-09 09:28 - 00000000 ____D () C:\Users\Pushba\.gimp-2.8
2014-06-04 20:36 - 2014-06-04 20:36 - 00002972 _____ () C:\Users\Pushba\AppData\Local\recently-used.xbel
2014-06-04 17:39 - 2014-06-04 17:39 - 00000041 _____ () C:\Users\Pushba\Desktop\Booking reference.txt
2014-06-04 15:14 - 2014-03-09 08:48 - 00000000 ____D () C:\Users\Pushba\Desktop\miniture gardens
2014-06-04 15:00 - 2013-08-22 17:32 - 00000000 ____D () C:\Users\Pushba\Documents\LeadFinder
2014-06-04 14:44 - 2012-08-20 10:07 - 00000894 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-04 10:02 - 2013-07-17 11:04 - 00000860 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-267806774-3125823315-51418320-1000Core.job
2014-06-04 09:55 - 2014-06-04 09:55 - 00356070 _____ () C:\Users\Pushba\Downloads\dreamgrow-scroll-triggered-box.1.4.zip
2014-06-04 09:08 - 2014-06-04 09:08 - 04155992 _____ () C:\Users\Pushba\Desktop\tdsskiller.zip
2014-06-04 09:07 - 2014-06-04 09:07 - 00000000 __SHD () C:\Users\Pushba\AppData\Local\EmieUserList
2014-06-04 09:07 - 2014-06-04 09:07 - 00000000 __SHD () C:\Users\Pushba\AppData\Local\EmieSiteList
2014-06-04 08:45 - 2014-06-04 08:45 - 02068992 _____ (Farbar) C:\Users\Pushba\Desktop\FRST64.exe
2014-06-04 08:44 - 2014-06-04 08:44 - 00001694 _____ () C:\Users\Pushba\Desktop\adams instructions.txt
2014-06-03 15:47 - 2014-06-03 15:47 - 00130329 _____ () C:\Users\Pushba\Downloads\chameleon-skin-unzip-me(2).zip
2014-06-03 15:45 - 2014-06-03 15:45 - 00130329 _____ () C:\Users\Pushba\Downloads\chameleon-skin-unzip-me(1).zip
2014-06-03 15:44 - 2014-06-03 15:44 - 00130329 _____ () C:\Users\Pushba\Downloads\chameleon-skin-unzip-me.zip
2014-06-03 12:05 - 2014-06-03 12:05 - 00002996 _____ () C:\windows\System32\Tasks\{BF2C7195-5C76-4D42-942E-73EF2CD50829}
2014-06-03 12:05 - 2014-06-03 12:05 - 00002996 _____ () C:\windows\System32\Tasks\{2C45AAC1-F2DE-40BA-A898-0915FC454AB9}
2014-06-03 12:05 - 2014-06-03 12:05 - 00002996 _____ () C:\windows\System32\Tasks\{161971A0-8413-4BC2-A060-A12FD47D9406}
2014-06-03 12:04 - 2014-06-03 12:04 - 00002996 _____ () C:\windows\System32\Tasks\{DDE9A2A8-D8AC-4473-8FFD-072D84EBE05B}
2014-06-03 12:02 - 2014-06-03 12:02 - 00001685 _____ () C:\Users\Pushba\Desktop\OUTLOOK.EXE - Shortcut.lnk
2014-06-03 08:55 - 2014-06-03 08:55 - 00009188 _____ () C:\Users\Pushba\Downloads\click-to-tweet-by-todaymade.1.2.zip
2014-06-02 17:46 - 2014-05-16 10:10 - 00000336 _____ () C:\windows\setupact.log
2014-06-02 11:16 - 2014-06-02 11:16 - 00027086 _____ () C:\Users\Pushba\Desktop\DDS.txt
2014-06-02 11:16 - 2014-06-02 11:16 - 00010326 _____ () C:\Users\Pushba\Desktop\Attach.txt
2014-06-02 11:13 - 2014-06-02 11:13 - 00812344 _____ (Trend Micro Inc.) C:\Users\Pushba\Downloads\HJTInstall.exe
2014-06-02 11:07 - 2014-06-02 11:05 - 00000288 _____ () C:\Users\Pushba\Desktop\Virus Removal.txt
2014-06-02 11:04 - 2014-06-02 11:03 - 00625664 _____ () C:\Users\Pushba\Downloads\dds.scr
2014-06-02 11:01 - 2014-06-02 11:01 - 00004143 _____ () C:\Users\Pushba\Desktop\otl instructions.txt
2014-06-02 10:58 - 2014-06-02 10:58 - 00602112 _____ (OldTimer Tools) C:\Users\Pushba\Downloads\OTL.exe
2014-06-01 16:31 - 2012-03-05 08:22 - 00000000 ____D () C:\Users\Pushba\Documents\##Website Resources DESIGN
2014-06-01 16:06 - 2009-07-14 16:45 - 00025120 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-01 16:06 - 2009-07-14 16:45 - 00025120 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-01 15:58 - 2014-06-01 15:58 - 00079064 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\sanjt.sys
2014-06-01 15:58 - 2014-06-01 15:58 - 00002332 _____ () C:\windows\Minidump\htggp
2014-06-01 15:58 - 2012-10-19 07:43 - 00000000 ____D () C:\windows\Minidump
2014-06-01 15:51 - 2014-06-01 15:51 - 00008418 _____ () C:\Users\Pushba\Documents\malwarelog.xml
2014-06-01 15:20 - 2014-06-01 15:20 - 00001109 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-01 15:20 - 2014-06-01 15:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-01 15:20 - 2014-06-01 15:20 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-01 15:20 - 2014-06-01 15:20 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-01 15:19 - 2014-06-01 15:19 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Pushba\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-01 14:54 - 2014-03-21 11:16 - 00000000 ____D () C:\Users\Pushba\AppData\Local\Amazon
2014-06-01 14:54 - 2011-12-07 17:50 - 00000000 ____D () C:\Program Files (x86)\Amazon
2014-06-01 14:23 - 2014-06-01 14:22 - 10722008 _____ (SoftOrbits ) C:\Users\Pushba\Downloads\WatermarkMaker-bdj-June2014.exe
2014-05-31 23:32 - 2014-05-31 23:28 - 00000000 ____D () C:\Users\Pushba\Desktop\miscellaneous
2014-05-31 23:32 - 2014-04-09 09:10 - 00000000 ____D () C:\Users\Pushba\Desktop\comp Roy
2014-05-31 23:32 - 2014-03-18 11:37 - 00000000 ____D () C:\Users\Pushba\Desktop\compress pics
2014-05-31 23:31 - 2013-08-21 09:07 - 00000000 ____D () C:\Users\Pushba\Documents\Genesis Related
2014-05-31 15:45 - 2011-12-10 09:23 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\KeePass
2014-05-31 15:37 - 2012-12-07 08:11 - 00000000 ____D () C:\Users\Pushba\Documents\BUSINESS MARKETING&SALES
2014-05-31 15:37 - 2012-10-18 16:30 - 00000000 ____D () C:\Users\Pushba\Documents\DESKTOP 18-10
2014-05-31 15:37 - 2012-06-07 14:33 - 00000000 ____D () C:\Users\Pushba\Documents\Silva Ultramind MASTER FOLDER
2014-05-31 15:37 - 2012-01-25 10:48 - 00000000 ____D () C:\Users\Pushba\Documents\Hypnotherapy Collated
2014-05-31 15:37 - 2011-12-16 23:01 - 00000000 ____D () C:\Users\Pushba\Documents\#Courses To Study
2014-05-31 15:11 - 2014-03-21 11:17 - 00000000 ____D () C:\Users\Pushba\Documents\My Kindle Content
2014-05-31 13:49 - 2014-05-31 13:49 - 00002996 _____ () C:\windows\System32\Tasks\{745DFD8E-C040-439F-9C4F-CBC6AC320579}
2014-05-31 13:49 - 2014-05-31 13:49 - 00002996 _____ () C:\windows\System32\Tasks\{17F97FE8-06F8-4B29-B85A-2A02D9264679}
2014-05-31 13:44 - 2014-05-31 13:44 - 00002996 _____ () C:\windows\System32\Tasks\{BBA5780C-70A5-443C-A3B4-E715BEC28334}
2014-05-31 12:49 - 2014-05-31 12:49 - 00002996 _____ () C:\windows\System32\Tasks\{A59A0178-46A3-4884-8050-142471BBBA3A}
2014-05-31 12:49 - 2014-05-31 12:49 - 00002996 _____ () C:\windows\System32\Tasks\{8EF1AB86-E749-410E-BC8F-2874822A410A}
2014-05-31 10:22 - 2014-05-31 10:22 - 00000000 ____D () C:\MGADiagToolOutput
2014-05-31 10:21 - 2014-05-31 10:21 - 00000000 ____D () C:\ProgramData\Office Genuine Advantage
2014-05-31 10:17 - 2014-05-31 10:17 - 00002996 _____ () C:\windows\System32\Tasks\{E78DA232-1DFB-428F-88FD-DC6AB593D155}
2014-05-31 10:17 - 2014-05-31 10:17 - 00002996 _____ () C:\windows\System32\Tasks\{B88D11FE-F9AD-4FC9-BD99-4469EB63682B}
2014-05-31 10:17 - 2014-05-31 10:17 - 00002996 _____ () C:\windows\System32\Tasks\{1DEA7955-D0D9-43FA-B203-87A4FB306233}
2014-05-31 10:16 - 2014-05-31 10:16 - 00002996 _____ () C:\windows\System32\Tasks\{BBECBA46-9C35-41A2-B70F-8EFA7BA1A593}
2014-05-31 10:16 - 2014-05-31 10:16 - 00002996 _____ () C:\windows\System32\Tasks\{4646A760-95F6-459D-914A-2786D5326549}
2014-05-31 09:57 - 2014-05-31 09:57 - 00002996 _____ () C:\windows\System32\Tasks\{50D8578C-A951-47AC-9287-88F18F9C0FE2}
2014-05-31 09:56 - 2014-05-31 09:56 - 00002996 _____ () C:\windows\System32\Tasks\{C4F68DCA-FF49-4490-9B4C-4EB24B0F05DC}
2014-05-31 09:56 - 2014-05-31 09:56 - 00002996 _____ () C:\windows\System32\Tasks\{68A8EFA9-03B0-4156-ABCC-7E700EB25C71}
2014-05-31 09:55 - 2014-05-31 09:55 - 00002996 _____ () C:\windows\System32\Tasks\{CD2B2A19-05C2-4E5C-8251-CAFD0285E79C}
2014-05-31 09:54 - 2014-05-31 09:54 - 00002996 _____ () C:\windows\System32\Tasks\{8709841B-9DD6-4D75-876B-C4E1A261C33C}
2014-05-30 23:37 - 2011-12-10 09:26 - 00046366 _____ () C:\Users\Pushba\Documents\Pushpa.kdbx
2014-05-30 23:02 - 2014-05-30 23:02 - 00007926 _____ () C:\Users\Pushba\Documents\startup.txt
2014-05-30 18:52 - 2014-05-30 18:52 - 00002996 _____ () C:\windows\System32\Tasks\{FB71C1E9-16F4-4E5F-9918-50AED2D9381E}
2014-05-30 18:52 - 2014-05-30 18:52 - 00002996 _____ () C:\windows\System32\Tasks\{E8856E27-2D7D-4D87-BA10-1D6021646A70}
2014-05-30 18:52 - 2014-05-30 18:52 - 00002996 _____ () C:\windows\System32\Tasks\{7467AE43-9BEE-4982-A7C1-54A8D1FD36E9}
2014-05-30 18:40 - 2012-05-17 15:25 - 00129024 ___SH () C:\Users\Pushba\Thumbs.db
2014-05-30 18:01 - 2011-12-07 19:31 - 00000000 ___RD () C:\Users\Pushba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-30 17:39 - 2013-08-13 15:49 - 00000000 ____D () C:\ProgramData\TEMP
2014-05-30 10:45 - 2012-01-19 09:43 - 02275328 ___SH () C:\Users\Pushba\Documents\Thumbs.db
2014-05-30 09:38 - 2014-05-30 09:38 - 00000000 ____D () C:\windows\System32\Tasks\Leader Technologies
2014-05-30 09:37 - 2014-05-30 09:37 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\Leadertech
2014-05-30 09:32 - 2014-05-05 08:50 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\DropboxMaster
2014-05-30 09:32 - 2013-08-22 13:49 - 00000000 ___RD () C:\Users\Pushba\Dropbox
2014-05-30 09:32 - 2013-08-22 13:46 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\Dropbox
2014-05-30 09:31 - 2011-12-07 17:15 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-05-30 09:31 - 2009-07-14 17:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-05-29 15:39 - 2014-05-29 15:39 - 00624788 _____ () C:\Users\Pushba\Downloads\magic-action-box.2.13(2).zip
2014-05-29 11:47 - 2014-05-29 11:46 - 00112582 _____ () C:\Users\Pushba\Downloads\dynamik_classic.zip
2014-05-28 14:22 - 2014-05-10 10:24 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-28 12:48 - 2013-08-22 13:46 - 00001036 _____ () C:\Users\Pushba\Desktop\Dropbox.lnk
2014-05-28 12:48 - 2013-08-22 13:46 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-05-27 15:06 - 2011-12-08 15:35 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\Skype
2014-05-27 14:40 - 2014-05-27 14:40 - 00895505 _____ () C:\Users\Pushba\Downloads\CatalystBundle.zip
2014-05-27 14:40 - 2014-05-27 14:40 - 00021517 _____ () C:\Users\Pushba\Downloads\catalyst-transport-1.0.zip
2014-05-27 14:40 - 2014-05-27 14:40 - 00007006 _____ () C:\Users\Pushba\Downloads\dynamik_classic_skin.zip
2014-05-27 14:40 - 2014-05-27 14:39 - 00728947 _____ () C:\Users\Pushba\Downloads\dynamik-gen-1.5.zip
2014-05-25 12:32 - 2014-05-25 12:32 - 00993246 _____ () C:\Users\Pushba\Downloads\ajax-event-calendar.1.0.4.zip
2014-05-25 12:22 - 2014-05-25 12:22 - 01731892 _____ () C:\Users\Pushba\Downloads\wp-members-pro-1.6.1.zip
2014-05-24 12:45 - 2013-05-03 07:58 - 00002194 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-05-23 16:22 - 2013-11-04 21:03 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-23 13:29 - 2014-05-23 13:29 - 00211557 _____ () C:\Users\Pushba\Downloads\google-mp3-audio-player.zip
2014-05-22 22:53 - 2014-05-22 22:53 - 00183176 _____ () C:\Users\Pushba\Downloads\page-scroll-to-id.1.5.6.zip
2014-05-22 15:49 - 2014-05-22 15:48 - 00000000 ____D () C:\Users\Pushba\Desktop\dowsing
2014-05-22 15:43 - 2011-12-07 19:45 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\Mozilla
2014-05-22 09:28 - 2014-05-22 09:28 - 00001794 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-05-22 09:28 - 2014-05-22 09:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-22 09:28 - 2014-05-22 09:27 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-22 09:28 - 2014-05-22 09:27 - 00000000 ____D () C:\Program Files\iTunes
2014-05-22 09:28 - 2014-05-22 09:27 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-22 09:27 - 2014-05-22 09:27 - 00000000 ____D () C:\Program Files\iPod
2014-05-20 12:01 - 2009-07-14 15:20 - 00000000 ____D () C:\windows\rescache
2014-05-18 15:10 - 2014-05-18 15:09 - 00000124 _____ () C:\Users\Pushba\Documents\Hoodie order - colabel.co.nz.txt
2014-05-18 13:50 - 2014-02-27 08:46 - 00003604 _____ () C:\windows\System32\Tasks\G2MUpdateTask-S-1-5-21-267806774-3125823315-51418320-1000
2014-05-16 10:13 - 2011-12-07 19:31 - 00000000 ___RD () C:\Users\Pushba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-16 10:10 - 2014-05-16 10:10 - 00000000 _____ () C:\windows\setuperr.log
2014-05-16 10:08 - 2014-05-08 08:52 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-05-16 09:58 - 2012-08-20 10:07 - 00000000 ____D () C:\Program Files (x86)\Google
2014-05-16 09:53 - 2011-12-08 16:00 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-16 09:51 - 2013-07-17 11:26 - 00000000 ____D () C:\windows\system32\MRT
2014-05-16 09:49 - 2011-12-07 19:55 - 93223848 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-05-14 14:14 - 2013-12-29 16:06 - 00692400 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2014-05-14 14:14 - 2013-12-29 16:06 - 00070832 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-14 14:14 - 2013-12-29 16:06 - 00003768 _____ () C:\windows\System32\Tasks\Adobe Flash Player Updater
2014-05-13 06:15 - 2014-01-05 14:29 - 00000258 __RSH () C:\ProgramData\ntuser.pol
2014-05-12 07:26 - 2014-06-01 15:20 - 00091352 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2014-05-12 07:26 - 2014-06-01 15:20 - 00063704 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2014-06-01 15:20 - 00025816 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2014-05-11 17:24 - 2014-05-11 17:24 - 01203733 _____ () C:\Users\Pushba\Downloads\wp4fb(1).zip
2014-05-11 17:24 - 2014-05-11 17:24 - 00000635 _____ () C:\Users\Pushba\Downloads\license-personal.txt
2014-05-11 16:53 - 2011-12-08 16:01 - 00000000 ____D () C:\Users\Pushba\AppData\Local\Microsoft Help
2014-05-11 16:45 - 2012-05-04 14:25 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-11 16:07 - 2014-05-11 16:07 - 00952645 _____ () C:\Users\Pushba\Downloads\wp-spam-renegade_v2.5.zip
2014-05-11 16:02 - 2012-06-06 10:28 - 00000000 ____D () C:\Users\Pushba\AppData\Local\Deployment
2014-05-11 15:35 - 2014-05-11 15:35 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\VideoMakerFX
2014-05-10 10:41 - 2011-12-17 07:20 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\FileZilla
2014-05-10 10:40 - 2011-12-12 19:38 - 00000000 ____D () C:\Users\Pushba\AppData\Local\CrashDumps
2014-05-10 10:40 - 2011-04-09 15:22 - 00000000 ____D () C:\windows\Panther
2014-05-10 10:24 - 2014-05-10 10:24 - 00002774 _____ () C:\windows\System32\Tasks\CCleanerSkipUAC
2014-05-10 10:24 - 2014-05-10 10:24 - 00000833 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-05-10 09:57 - 2013-07-17 11:04 - 00003888 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-267806774-3125823315-51418320-1000UA
2014-05-10 09:57 - 2013-07-17 11:04 - 00003492 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-267806774-3125823315-51418320-1000Core
2014-05-10 06:55 - 2014-05-10 06:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-10 06:24 - 2014-05-10 06:24 - 00066193 _____ () C:\Users\Pushba\Downloads\covertsocialbuzz(1).zip
2014-05-10 06:22 - 2014-05-10 06:22 - 00000000 ____D () C:\Users\Pushba\Downloads\WP4M_WPListIt_v1.5(1)
2014-05-10 06:20 - 2014-05-10 06:20 - 00048348 _____ () C:\Users\Pushba\Downloads\WP4M_WPListIt_v1.5(1).zip
2014-05-10 06:18 - 2014-05-10 06:18 - 03961083 _____ () C:\Users\Pushba\Downloads\wpsimplevideo.zip
2014-05-10 06:08 - 2014-05-10 06:08 - 00000996 _____ () C:\Users\Public\Desktop\VideoMakerFX.lnk
2014-05-10 06:08 - 2014-05-10 06:07 - 00000000 ____D () C:\ProgramData\regid.1995-09.com.example
2014-05-10 06:08 - 2014-05-10 06:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoMakerFX
2014-05-10 06:08 - 2014-05-10 06:07 - 00000000 ____D () C:\Program Files (x86)\VideoMakerFX
2014-05-10 06:06 - 2014-05-10 06:06 - 00000000 ____D () C:\Users\Pushba\Desktop\VideoMakerFXWindows
2014-05-10 06:06 - 2013-10-13 13:32 - 00000000 ____D () C:\Users\Pushba\.gimp-2.6
2014-05-10 05:52 - 2014-05-10 05:51 - 01052604 _____ () C:\Users\Pushba\Downloads\InstaBannerAIR_ new build March-16-2014(2).air
2014-05-10 05:49 - 2014-05-10 05:49 - 01052604 _____ () C:\Users\Pushba\Desktop\InstaBannerAIR_ new build March-16-2014(1).air
2014-05-10 05:48 - 2014-05-10 05:48 - 01052604 _____ () C:\Users\Pushba\Downloads\InstaBannerAIR_ new build March-16-2014.air
2014-05-10 05:42 - 2014-05-10 05:42 - 04931410 _____ () C:\Users\Pushba\Downloads\vidwordsbonus.zip
2014-05-10 05:41 - 2014-05-10 05:41 - 00000000 ____D () C:\Users\Pushba\Desktop\tubetagextractor
2014-05-10 05:34 - 2014-05-10 05:34 - 00000000 ____D () C:\Users\Pushba\AppData\Local\Tube Tag Extractor
2014-05-10 05:33 - 2014-05-10 05:33 - 06762996 _____ () C:\Users\Pushba\Desktop\tubetagextractor.zip
2014-05-10 05:19 - 2014-05-10 05:11 - 129712046 _____ () C:\Users\Pushba\Desktop\VideoMakerFXWindows.zip
2014-05-09 18:14 - 2014-05-15 09:11 - 00477184 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-05-09 18:11 - 2014-05-15 09:11 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-05-07 11:26 - 2012-08-16 19:14 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\dvdcss
2014-05-07 11:23 - 2014-05-06 13:24 - 00000000 ____D () C:\Users\Pushba\Documents\New Insights
2014-05-06 21:48 - 2014-05-06 21:48 - 00000017 _____ () C:\Users\Pushba\Desktop\dvd ripper.txt
2014-05-06 16:40 - 2014-05-16 09:53 - 23544320 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-05-06 16:17 - 2014-05-16 09:53 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-05-06 15:25 - 2014-05-16 09:53 - 17382912 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-05-06 15:07 - 2014-05-16 09:53 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-05-06 15:00 - 2014-05-16 09:53 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-05-06 14:39 - 2012-08-20 10:07 - 00003894 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-06 14:39 - 2012-08-20 10:07 - 00003642 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-06 14:10 - 2014-05-16 09:53 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-05-06 13:31 - 2014-05-06 13:31 - 00613952 _____ (NCH Software) C:\Users\Pushba\Downloads\prismpsetup.exe
2014-05-06 13:21 - 2014-05-06 13:21 - 00001229 _____ () C:\Users\Public\Desktop\WinX DVD Ripper.lnk
2014-05-06 13:21 - 2014-05-06 13:21 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\Digiarty
2014-05-06 13:21 - 2014-05-06 13:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digiarty
2014-05-06 13:21 - 2014-05-06 13:21 - 00000000 ____D () C:\Program Files (x86)\Digiarty
2014-05-06 13:19 - 2014-05-06 13:19 - 10753128 _____ (Digiarty Software, Inc. ) C:\Users\Pushba\Downloads\winx-dvd-ripper.exe

Files to move or delete:
====================
C:\Users\Pushba\jagex_cl_runescape_LIVE.dat
C:\Users\Pushba\random.dat


Some content of TEMP:
====================
C:\Users\Pushba\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmps2kgmd.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-20 12:00

==================== End Of Log ============================

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-06-2014
Ran by Pushba at 2014-06-05 08:43:02
Running from C:\Users\Pushba\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Trend Micro Titanium Maximum Security (Enabled - Up to date) {5D349EF8-873B-C657-917F-F1D93E101A7C}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Trend Micro Titanium Maximum Security (Enabled - Up to date) {E6557F1C-A101-C9D9-ABCF-CAAB459750C1}

==================== Installed Programs ======================

 Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{91120000-001A-0000-0000-0000000FF1CE}_OUTLOOKR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
 Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 13.0.0.83 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 13.0.0.83 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Amazon Kindle (HKCU\...\Amazon Kindle) (Version:  - Amazon)
Ant Pugilist (HKLM-x32\...\{43D32AA1-711F-4864-9D1C-10F04925939E}) (Version: 4.5.5 - Antification)
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Bluetooth Filter Driver Package (HKLM\...\{65486209-5C54-439C-8383-8AC9BBE25932}) (Version: 1.00.007 - Atheros Communications)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.36 - Atheros Communications Inc.)
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 9.2 - Atheros)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Backlink Cloner - 1  (HKCU\...\5c5e826202f580b7) (Version: 1.0.0.53 - Underground Masterminds)
Backlink Cloner (HKLM-x32\...\{9A6E4B2C-71A6-400A-ADFA-6A8215420E0E}) (Version: 1.0.0 - Default Company Name)
Bejeweled 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden
Bluetooth Stack for Windows by Toshiba (HKLM\...\{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}) (Version: v8.00.04(T) - TOSHIBA CORPORATION)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brother BRAdmin Light 1.24.0000 (HKLM-x32\...\{DB75941E-30C4-4D97-B000-D17C764B998C}) (Version: 1.24.0000 - Brother)
Caesium version 1.6.1 (HKLM-x32\...\{88B0F0DE-6937-440D-B5CA-6E69003E55F7}_is1) (Version: 1.6.1 - Matteo Paonessa)
CCleaner (HKLM\...\CCleaner) (Version: 4.13 - Piriform)
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Citrix Online Launcher (HKLM-x32\...\{AC7E7905-8C59-4806-A96D-30936A2B1FC5}) (Version: 1.0.168 - Citrix)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.51.1.0 - Conexant)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dragon NaturallySpeaking 12 (HKLM-x32\...\{D5D422B9-6976-4E98-8DDF-9632CB515D7E}) (Version: 12.50.000 - Nuance Communications Inc.)
Dropbox (HKCU\...\Dropbox) (Version: 2.8.2 - Dropbox, Inc.)
Duplicate Cleaner 2.0.6 (HKLM-x32\...\Duplicate Cleaner) (Version: 2.0.6 - DigitalVolcano)
eCover Software Pro (HKLM-x32\...\{83E55279-CE70-407F-B34D-EAE0D9C6372B}_is1) (Version:  - )
FileZilla Client 3.7.4.1 (HKLM-x32\...\FileZilla Client) (Version: 3.7.4.1 - Tim Kosse)
Free WMA to MP3 Converter 1.16 (HKLM-x32\...\Free WMA to MP3 Converter_is1) (Version:  - Jodix Technologies Ltd.)
FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 0.9.0 - )
GIMP 2.8.6 (HKLM\...\GIMP-2_is1) (Version: 2.8.6 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.114 - Google Inc.)
Google Chrome Canary (HKCU\...\Google Chrome SxS) (Version: 37.0.2029.0 - Google Inc.)
Google Drive (HKLM-x32\...\{418BAAD1-754D-48B4-B078-46EF4F25AF42}) (Version: 1.15.6556.8063 - Google, Inc.)
Google Talk Plugin (HKLM-x32\...\{217CEB43-6D22-3E1F-A311-DC0D7BFEE0A2}) (Version: 5.4.1.18709 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
GoToMeeting 6.3.0.1415 (HKCU\...\GoToMeeting) (Version: 6.3.0.1415 - CitrixOnline)
Hot Lead Finder v3.0 (HKLM-x32\...\HotProspector) (Version: 3.0.0 - UNKNOWN)
Hot Lead Finder v3.0 (x32 Version: 3.0.0 - UNKNOWN) Hidden
HP Officejet 6500 E710n-z Basic Device Software (HKLM\...\{ADDF4B84-5D28-4EAE-8511-EF808C8BC81C}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
HP Officejet 6500 E710n-z Help (HKLM-x32\...\{130E5108-547F-4482-91EE-F45C784E08C7}) (Version: 140.0.2.2 - Hewlett Packard)
HP Officejet 6500 E710n-z Product Improvement Study (HKLM\...\{D5510D28-D0E4-433E-A0F3-EE3FCECA60D2}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}) (Version: 5.002.006.003 - Hewlett-Packard)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Instant Content Curator Pro (HKLM-x32\...\com.webdimensions.instant-content-curator-pro) (Version: 1.18 - Web Dimensions, Inc.)
Instant Content Curator Pro (x32 Version: 1.18 - Web Dimensions, Inc.) Hidden
Instant Eyedropper 1.75 (HKLM-x32\...\Instant Eyedropper_is1) (Version:  - )
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.2.1004 - Intel Corporation)
iTunes (HKLM\...\{1CF5754A-545B-4360-BFDE-2847BC728DFC}) (Version: 11.2.0.115 - Apple Inc.)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
KeePass Password Safe 2.17 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version:  - Dominik Reichl)
LastPass (uninstall only) (HKLM-x32\...\LastPass) (Version:  - LastPass)
Lead Finder Jack (HKLM-x32\...\{1E42CB5A-56D9-4616-B1DA-AA6C9FE0E63D}) (Version: 1.2.4 - GuideTrade LLC)
Localizer Leads Tool (HKLM-x32\...\LocalizerLeadsTool) (Version: 3.5.5 - Viper Consulting, LLC)
Localizer Leads Tool (x32 Version: 3.5.5 - Viper Consulting, LLC) Hidden
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Marketsplash Shortcuts (HKLM-x32\...\{16FCDD97-AE09-476B-88CD-261D852BD34C}) (Version: 1.0.1.7 - Hewlett-Packard)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-001A-0000-0000-0000000FF1CE}_OUTLOOKR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook 2007 (HKLM-x32\...\OUTLOOKR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Outlook 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{2C303EE0-A595-3543-A71A-931C7AC40EDE}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP1 English (HKLM-x32\...\{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}) (Version: 3.5.5692.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP1 x64 English (HKLM\...\{F83779DF-E1F5-43A2-A7BE-732F856FADB7}) (Version: 3.5.5692.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 29.0.1 (x86 en-GB) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 en-GB)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 5.9.8 - )
Nuance PDF Reader (HKLM-x32\...\{5F6C549F-78DA-4E0E-AE70-0BD981936D99}) (Version: 7.00.0000 - Nuance Communications, Inc.)
NVIDIA Control Panel 266.69 (Version: 266.69 - NVIDIA Corporation) Hidden
NVIDIA Install Application (Version: 2.265.39.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.10.0514 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6669 - NVIDIA Corporation) Hidden
NX-Local Cash Scraper (HKLM\...\{4B383862-002D-4400-84E7-A52F7A274A3D}) (Version: 1.12.0000 - Nexshore Technologies)
PhotoScape (HKLM-x32\...\PhotoScape) (Version:  - )
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Power Indexer Pro 3.0.0.0 (HKLM\...\{0A2DEC29-333B-408B-B31B-0B34D73EBA4C}) (Version: 3.0.0.0 - Power Indexer Pro)
PowerDVDPoint Lite (HKLM-x32\...\{C9CD97C8-AFED-447F-9663-24DD150A08E9}) (Version: 3.5 - DigitalOfficePro)
QuotePad 2.0.2 (HKLM-x32\...\QuotePad_is1) (Version: 2.0.2 - QuotePad.info)
Rapid Content Wizard (HKCU\...\60edbb69673a22f9) (Version: 1.0.0.7 - Rapid Content Wizard)
RealDownloader (x32 Version: 1.3.3 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 1.0.0.12 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.32.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0 - Renesas Electronics Corporation) Hidden
SEO PowerSuite (HKLM-x32\...\seopowersuite) (Version:  - )
Skype Click to Call (HKLM-x32\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.2.15747.10003 - Microsoft Corporation)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Spoon.net Sandbox Manager 3.33 (HKLM-x32\...\Spoon.net Sandbox Manager 3.33) (Version: 3.33.6.102 - Code Systems Corporation)
Stealth Keyword Competition Analyzer 2.2.4 (HKLM-x32\...\Stealth Keyword Competition Analyzer_is1) (Version:  - )
The Logo Creator v6 6.0 (HKLM-x32\...\The Logo Creator v6) (Version: 6.0 - Laughingbird Software)
The Logo Creator v6.6 (HKLM-x32\...\The Logo Creator) (Version: v6.6 - Laughingbird Software)
The Prospector version 2.8 (HKLM-x32\...\{EDAB8C86-3668-425D-9097-E39311A98A95}_is1) (Version: 2.8 - iElemental, Inc.)
TOSHIBA Assist (HKLM-x32\...\{C2A276E3-154E-44DC-AAF1-FFDD7FD30E35}) (Version: 4.02.02 - TOSHIBA CORPORATION)
TOSHIBA Bulletin Board (HKLM-x32\...\InstallShield_{229C190B-7690-40B7-8680-42530179F3E9}) (Version: 2.0.16.64 - TOSHIBA Corporation)
TOSHIBA Bulletin Board (Version: 2.0.16.64 - TOSHIBA Corporation) Hidden
TOSHIBA ConfigFree (HKLM-x32\...\{D5AEEAA2-184E-4A2A-BAA3-6225EA4B9516}) (Version: 8.0.37 - TOSHIBA CORPORATION)
TOSHIBA Disc Creator (HKLM\...\{5DA0E02F-970B-424B-BF41-513A5018E4C0}) (Version: 2.1.0.6 for x64 - TOSHIBA Corporation)
TOSHIBA eco Utility (HKLM\...\{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}) (Version: 1.2.25.64 - TOSHIBA Corporation)
TOSHIBA Face Recognition (HKLM-x32\...\InstallShield_{F67FA545-D8E5-4209-86B1-AEE045D1003F}) (Version: 3.1.8.64 - TOSHIBA Corporation)
TOSHIBA Face Recognition (Version: 3.1.8.64 - TOSHIBA Corporation) Hidden
TOSHIBA Hardware Setup (HKLM-x32\...\InstallShield_{C4FFA951-9678-4D51-84B4-AFD15D3C45AD}) (Version: 4.08.06.00 - )
TOSHIBA Hardware Setup (Version: 4.08.06.00 - TOSHIBA) Hidden
TOSHIBA HDD/SSD Alert (HKLM-x32\...\InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.64.7 - TOSHIBA Corporation)
TOSHIBA HDD/SSD Alert (Version: 3.1.64.7 - TOSHIBA Corporation) Hidden
TOSHIBA HDD/SSD Alert (x32 Version: 3.1.64.7 - TOSHIBA Corporation) Hidden
TOSHIBA Media Controller (HKLM-x32\...\{C7A4F26F-F9B0-41B2-8659-99181108CDE3}) (Version: 1.0.86.2 - TOSHIBA CORPORATION)
TOSHIBA Media Controller Plug-in (HKLM-x32\...\{F26FDF57-483E-42C8-A9C9-EEE1EDB256E0}) (Version: 1.0.6.1 - TOSHIBA CORPORATION)
TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.7.4.64 - TOSHIBA Corporation)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.1.3.5109 - TOSHIBA CORPORATION)
TOSHIBA ReelTime (HKLM-x32\...\InstallShield_{24811C12-F4A9-4D0F-8494-A7B8FE46123C}) (Version: 1.7.17.64 - TOSHIBA Corporation)
TOSHIBA ReelTime (Version: 1.7.17.64 - TOSHIBA Corporation) Hidden
TOSHIBA Resolution+ Plug-in for Windows Media Player (HKLM-x32\...\{6CB76C9D-80C2-4CB3-A4CD-D96B239E3F94}) (Version: 1.1.0 - TOSHIBA Corporation)
TOSHIBA Service Station (HKLM-x32\...\{AC6569FA-6919-442A-8552-073BE69E247A}) (Version: 2.1.52 - TOSHIBA)
TOSHIBA Sleep Utility (HKLM-x32\...\{654F7484-88C5-46DC-AB32-C66BCB0E2102}) (Version: 1.4.2.7 - TOSHIBA Corporation)
TOSHIBA Supervisor Password (HKLM-x32\...\InstallShield_{CBD6B23D-41D5-4A46-8019-6208516C9712}) (Version: 4.08.06.00 - )
TOSHIBA Supervisor Password (Version: 4.08.06.00 - TOSHIBA) Hidden
TOSHIBA Value Added Package (HKLM-x32\...\InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}) (Version: 1.5.4.64 - TOSHIBA Corporation)
TOSHIBA Value Added Package (Version: 1.5.4.64 - TOSHIBA Corporation) Hidden
TOSHIBA Value Added Package (x32 Version: 1.5.4.64 - TOSHIBA Corporation) Hidden
TOSHIBA Web Camera Application (HKLM-x32\...\InstallShield_{6F3C8901-EBD3-470D-87F8-AC210F6E5E02}) (Version: 2.0.0.19 - TOSHIBA Corporation)
TOSHIBA Web Camera Application (x32 Version: 2.0.0.19 - TOSHIBA Corporation) Hidden
TOSHIBA Wireless LAN Indicator (HKLM-x32\...\{CDADE9BC-612C-42B8-B929-5C6A823E7FF9}) (Version: 1.0.3 - TOSHIBA CORPORATION)
Traffic Travis 4.1.0 (HKLM-x32\...\Traffic Travis 4.1 Setup Wizard_is1) (Version:  - Affilorama Ltd.)
Trend Micro Titanium (Version: 7.0 - Trend Micro Inc.) Hidden
Trend Micro Titanium Maximum Security (HKLM\...\{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}) (Version: 7.0 - Trend Micro Inc.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-001A-0000-0000-0000000FF1CE}_OUTLOOKR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_OUTLOOKR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-001A-0000-0000-0000000FF1CE}_OUTLOOKR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_OUTLOOKR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-001A-0000-0000-0000000FF1CE}_OUTLOOKR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-001A-0000-0000-0000000FF1CE}_OUTLOOKR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_OUTLOOKR_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM-x32\...\{91120000-001A-0000-0000-0000000FF1CE}_OUTLOOKR_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_OUTLOOKR_{0451F231-E3E3-4943-AB9F-58EB96171784}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2880505) 32-Bit Edition (HKLM-x32\...\{91120000-001A-0000-0000-0000000FF1CE}_OUTLOOKR_{2720451F-5D04-43EC-AB1F-26D948FD971B}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_OUTLOOKR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
VideoMakerFX (HKLM-x32\...\VideoMakerFX 1.0) (Version: 1.0 - Webvati)
VideoMakerFX (x32 Version: 1.0 - Webvati) Hidden
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Wiki Wizard 1.1.1.0 (HKLM\...\{96487081-91B7-4D98-9B16-E38DEB036349}) (Version: 1.1.1.0 - Wiki Wizard)
WildTangent Games (HKLM-x32\...\WildTangent toshiba Master Uninstall) (Version: 1.0.2.5 - WildTangent)
WildTangent Games App (Toshiba Games) (x32 Version: 4.0.5.36 - WildTangent) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Encoder 9 Series (HKLM-x32\...\Windows Media Encoder 9) (Version:  - )
Windows Media Encoder 9 Series (x32 Version: 9.00.2980 - Microsoft Corporation) Hidden
WinX DVD Ripper 5.6.0 (HKLM-x32\...\WinX DVD Ripper_is1) (Version:  - Digiarty Software, Inc.)

==================== Restore Points  =========================

30-05-2014 06:00:36 TITANUIMRES
30-05-2014 21:59:59 Installed Microsoft Fix it 50769
01-06-2014 02:42:56 Windows Backup

==================== Hosts content: ==========================

2009-07-14 14:34 - 2009-06-11 09:00 - 00000824 ____N C:\windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {03253847-1BE5-4A54-A1EF-6295EC3FE892} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-267806774-3125823315-51418320-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-08-14] (RealNetworks, Inc.)
Task: {033A9B4D-646E-4F95-B4D6-5A2F01EBDF94} - System32\Tasks\{DDE9A2A8-D8AC-4473-8FFD-072D84EBE05B} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {246749C9-6D86-4174-87FB-4105E0B5F632} - System32\Tasks\ConfigFree Startup Programs => C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe [2010-12-04] (TOSHIBA CORPORATION)
Task: {2E2D28A6-DC6C-4150-A733-A1ED7F0296CE} - System32\Tasks\LeadFinder\LeadFinderEmails => C:\Program Files (x86)\GuideTrade LLC\Lead Finder Jack\LeadFinder.exe [2013-11-25] (GuideTrade LLC)
Task: {2E68A61A-A211-4C41-ACF0-742EDA774A3A} - System32\Tasks\{4646A760-95F6-459D-914A-2786D5326549} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {303972F8-0723-4BED-8B89-F1E6665B0B16} - System32\Tasks\{8EF1AB86-E749-410E-BC8F-2874822A410A} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {3B944FB3-E14C-43BB-B3E8-BD0DB2E9DD11} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-267806774-3125823315-51418320-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {3CA7559E-0BF4-47C3-82CC-09AF0B0C9FC2} - System32\Tasks\{7467AE43-9BEE-4982-A7C1-54A8D1FD36E9} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {3D86830D-29A8-45BD-B1B2-864392F9F127} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-267806774-3125823315-51418320-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {3E79CFF0-FA85-40D0-A544-3FF1745E47F8} - System32\Tasks\{2C45AAC1-F2DE-40BA-A898-0915FC454AB9} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {456F1878-9FEE-470F-9169-3054FD0A1053} - System32\Tasks\{17F97FE8-06F8-4B29-B85A-2A02D9264679} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {51AAEF23-F194-414B-BCCA-AC9646A4A515} - System32\Tasks\HPCustParticipation HP Officejet 6500 E710n-z => C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\HPCustPartic.exe [2010-11-16] (Hewlett-Packard Co.)
Task: {56A09D5A-6A16-40F1-9894-106E170D2A22} - System32\Tasks\Leader Technologies\PowerRegister\Seagate Product Registration (Pushba) => C:\Users\Pushba\AppData\Roaming\Leadertech\PowerRegister\Seagate Product Registration.exe [2009-01-17] (Leader Technologies/Seagate)
Task: {56B6C060-A683-46F3-BC84-44C27A67ACDE} - System32\Tasks\{BF2C7195-5C76-4D42-942E-73EF2CD50829} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {5A6D297E-23DB-4123-8304-976404096C4F} - System32\Tasks\{A59A0178-46A3-4884-8050-142471BBBA3A} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {5B01DE78-C2BD-48AB-9C57-1F3F1691490A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-04-18] (Piriform Ltd)
Task: {67295351-5208-4097-8A78-9CCA5EC5D0DC} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-267806774-3125823315-51418320-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {6E17E3C5-B0C0-40F9-802F-974315E42005} - System32\Tasks\Norton Identity Safe\Norton Error Analyzer => C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\SymErr.exe
Task: {75C27799-4B66-4569-AA91-9D0F874053D2} - System32\Tasks\{FB71C1E9-16F4-4E5F-9918-50AED2D9381E} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {76F223BB-B647-4AF1-8E7D-801E3D0532A5} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-267806774-3125823315-51418320-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {7942C8CA-A00E-4697-9AA1-3E8FDBF1053B} - System32\Tasks\Titanium BTC => C:\Program Files\Trend Micro\Titanium\plugin\TMDC\TMDC.exe [2014-05-10] (Trend Micro Inc.)
Task: {840642A3-AD1F-4BA9-92AA-D33F849D6E00} - System32\Tasks\{68A8EFA9-03B0-4156-ABCC-7E700EB25C71} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {8650EEEF-51C3-416B-892F-645D52C1343C} - System32\Tasks\{E78DA232-1DFB-428F-88FD-DC6AB593D155} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {86FA0708-A7F3-4F72-9125-BD01815B7903} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14] (Adobe Systems Incorporated)
Task: {8C0E0207-4EB4-4226-B663-3D420152B304} - System32\Tasks\Norton Identity Safe\Norton Error Processor => C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\SymErr.exe
Task: {8CA3F3E2-FC5A-484B-AF8E-F9A812EF0A2A} - System32\Tasks\G2MUpdateTask-S-1-5-21-267806774-3125823315-51418320-1000 => C:\Users\Pushba\AppData\Local\Citrix\GoToMeeting\1415\g2mupdate.exe [2014-05-18] (Citrix Online, a division of Citrix Systems, Inc.)
Task: {8F085EBB-BDC7-4708-BE36-234BDC67E4E3} - System32\Tasks\{BBA5780C-70A5-443C-A3B4-E715BEC28334} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {9238557A-9CF7-4CB4-9EC5-A3B0AE4B8FEE} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {95687000-8696-4A04-BEFF-C575541B2CC0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-08-20] (Google Inc.)
Task: {9AFD6FA2-13B4-489C-A774-5D0DA85260CC} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {9D5118B7-5C5B-4D5A-92DF-88B1BD45CD3C} - System32\Tasks\Norton Management\Norton Error Analyzer => C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\SymErr.exe
Task: {A14CC766-9904-4200-BEAF-F7B439660C84} - System32\Tasks\{1DEA7955-D0D9-43FA-B203-87A4FB306233} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {A19FC873-19C6-44A4-8518-E7B927B15A3A} - System32\Tasks\{C4F68DCA-FF49-4490-9B4C-4EB24B0F05DC} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {A43E890C-2163-48D7-998E-28F4A8D50015} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-08-20] (Google Inc.)
Task: {A6C1F38F-A607-4AD2-8355-F325154F5B92} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-267806774-3125823315-51418320-1000UA => C:\Users\Pushba\AppData\Local\Google\Update\GoogleUpdate.exe [2013-07-13] (Google Inc.)
Task: {AC574ED6-5ECE-4ED5-A96C-D688811EC873} - System32\Tasks\{B04FD424-CF46-42FB-8047-E06A977F5C73} => C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe [2013-12-19] (Trend Micro Inc.)
Task: {AD757892-A9A8-41FF-93E3-F851EFF14EEC} - System32\Tasks\{BBECBA46-9C35-41A2-B70F-8EFA7BA1A593} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {B89169FF-E566-4A3F-B997-3F7A3A43A013} - System32\Tasks\{8709841B-9DD6-4D75-876B-C4E1A261C33C} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {C1B8C24D-9F02-4024-A2CA-2EAE778C5F1E} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-267806774-3125823315-51418320-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {C5E8B94F-CBD3-41AB-91DE-7966CA975911} - System32\Tasks\{745DFD8E-C040-439F-9C4F-CBC6AC320579} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {C6613251-765A-4686-AE2B-7A03963C717D} - System32\Tasks\{50D8578C-A951-47AC-9287-88F18F9C0FE2} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {CD57420B-C017-4648-A07F-9595C6537573} - System32\Tasks\{E8856E27-2D7D-4D87-BA10-1D6021646A70} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {D2184A97-7F8B-4C8B-AA89-9C46062960A4} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-267806774-3125823315-51418320-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {D98630EE-39A3-4EC7-B3A8-B7239EFED3F1} - System32\Tasks\Norton Management\Norton Error Processor => C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\SymErr.exe
Task: {D9CF6A7A-AFD8-4D43-8768-FE710B4356F7} - System32\Tasks\HpWebReg.exe => C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\HpWebReg.exe [2010-11-16] (Hewlett-Packard Co.)
Task: {DFF34D49-E1BD-4782-82E0-1F3B7EC6039A} - System32\Tasks\{161971A0-8413-4BC2-A060-A12FD47D9406} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {E6B78D7F-FF6F-48A5-B1C1-8F60BAF34D4B} - System32\Tasks\{CD2B2A19-05C2-4E5C-8251-CAFD0285E79C} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {FB7948BA-F356-44D2-B89F-C673511F8C02} - System32\Tasks\{B7FD2D9D-7229-4E12-891C-530E23BB4D85} => C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe [2013-12-19] (Trend Micro Inc.)
Task: {FEBC5069-512C-4EF7-A8C8-5B5E75D2DEA6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-267806774-3125823315-51418320-1000Core => C:\Users\Pushba\AppData\Local\Google\Update\GoogleUpdate.exe [2013-07-13] (Google Inc.)
Task: {FEDEEBAB-BA1A-43F9-AC36-9F05F91AFAAA} - System32\Tasks\{B88D11FE-F9AD-4FC9-BD99-4469EB63682B} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\G2MUpdateTask-S-1-5-21-267806774-3125823315-51418320-1000.job => C:\Users\Pushba\AppData\Local\Citrix\GoToMeeting\1415\g2mupdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-267806774-3125823315-51418320-1000Core.job => C:\Users\Pushba\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-267806774-3125823315-51418320-1000UA.job => C:\Users\Pushba\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-08-14 15:19 - 2013-08-14 15:19 - 00039056 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2010-01-03 02:42 - 2010-01-03 02:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2014-04-02 11:34 - 2013-01-16 22:19 - 00048128 _____ () C:\Program Files\Trend Micro\AMSP\boost_date_time-vc110-mt-1_49.dll
2011-07-19 09:04 - 2011-07-19 09:04 - 00301568 _____ () C:\Program Files (x86)\Notepad++\NppShell_04.dll
2014-04-02 11:34 - 2013-04-03 00:25 - 00675840 _____ () C:\Program Files\Trend Micro\AMSP\sqlite3.dll
2014-04-02 11:34 - 2013-01-16 22:23 - 00058368 _____ () C:\Program Files\Trend Micro\AMSP\boost_thread-vc110-mt-1_49.dll
2014-04-02 11:34 - 2012-12-19 16:06 - 01300480 _____ () C:\Program Files\Trend Micro\AMSP\libprotobuf.dll
2014-04-02 11:34 - 2013-01-16 22:19 - 00018944 _____ () C:\Program Files\Trend Micro\AMSP\boost_system-vc110-mt-1_49.dll
2013-07-24 11:28 - 2013-07-24 11:28 - 00247352 ____N () C:\Program Files\Trend Micro\UniClient\plugins\LUADLL.dll
2014-04-02 14:52 - 2013-12-19 01:33 - 00057584 _____ () C:\Program Files\Trend Micro\Titanium\plugin\fcMsgDispatcher.dll
2014-01-20 12:17 - 2014-01-20 12:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 12:16 - 2014-01-20 12:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-30 09:32 - 2014-05-30 09:32 - 00043008 ____N () c:\users\pushba\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmps2kgmd.dll
2013-08-24 07:01 - 2013-08-24 07:01 - 25100288 _____ () C:\Users\Pushba\AppData\Roaming\Dropbox\bin\libcef.dll
2009-02-26 12:46 - 2009-02-26 12:46 - 00064344 _____ () C:\Program Files (x86)\Microsoft Office\Office12\ADDINS\ColleagueImport.dll
2011-06-22 10:46 - 2011-06-22 10:46 - 00434016 _____ () C:\Program Files (x86)\Microsoft Office\Office12\ADDINS\UmOutlookAddin.dll
2013-07-10 18:07 - 2013-07-10 18:07 - 00756888 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL
2014-02-12 07:29 - 2014-02-12 07:29 - 00093696 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:0FF263E8
AlternateDataStreams: C:\Users\Pushba\Downloads\2014-04-18 14.55.34.jpg:com.dropbox.attributes

==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupfolder: C:^Users^Pushba^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Screen Clipper and Launcher.lnk => C:\windows\pss\OneNote 2007 Screen Clipper and Launcher.lnk.Startup
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/05/2014 05:04:52 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"1".
Dependent Assembly rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (06/05/2014 04:59:36 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/05/2014 04:22:55 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT AUTHORITY)
Description: The performance counter explain text string value in the registry is not formatted correctly. The malformed string is . The first DWORD in the Data section contains the index value to the malformed string while the second and third DWORDs in the Data section contain the last valid index values.

Error: (06/04/2014 09:50:16 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8003

Error: (06/04/2014 09:50:16 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8003

Error: (06/04/2014 09:50:16 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/04/2014 09:50:15 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7004

Error: (06/04/2014 09:50:15 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7004

Error: (06/04/2014 09:50:15 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/04/2014 09:50:14 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6006


System errors:
=============
Error: (06/02/2014 10:46:21 AM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR4.

Error: (06/01/2014 08:57:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Trend Micro Solution Platform service terminated unexpectedly.  It has done this 6 time(s).

Error: (06/01/2014 08:51:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Trend Micro Solution Platform service terminated unexpectedly.  It has done this 5 time(s).

Error: (06/01/2014 06:04:58 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Trend Micro Solution Platform service terminated unexpectedly.  It has done this 4 time(s).

Error: (06/01/2014 04:46:25 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Trend Micro Solution Platform service terminated unexpectedly.  It has done this 3 time(s).

Error: (06/01/2014 04:45:25 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Trend Micro Solution Platform service terminated unexpectedly.  It has done this 2 time(s).

Error: (06/01/2014 03:45:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Trend Micro Solution Platform service terminated unexpectedly.  It has done this 1 time(s).

Error: (05/31/2014 11:20:18 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR3.

Error: (05/30/2014 11:20:19 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (05/30/2014 05:02:54 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.


Microsoft Office Sessions:
=========================
Error: (04/05/2014 10:39:44 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 41 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (03/10/2014 03:22:38 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6606.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 15587 seconds with 720 seconds of active time.  This session ended with a crash.

Error: (08/06/2013 09:14:31 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 4207 seconds with 840 seconds of active time.  This session ended with a crash.

Error: (07/29/2013 02:45:38 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 12 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (04/24/2013 02:30:06 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (04/21/2012 05:14:24 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (04/13/2012 11:12:44 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 0 seconds with 0 seconds of active time.  This session ended with a crash.


CodeIntegrity Errors:
===================================
  Date: 2014-01-02 15:27:38.469
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-01-02 15:27:38.396
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-06 15:40:54.345
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-06 15:40:54.325
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-06 15:40:26.830
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-06 15:40:26.820
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-06 15:39:59.016
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-06 15:39:58.996
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-06 15:39:31.202
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-06 15:39:31.182
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Percentage of memory in use: 31%
Total physical RAM: 8173.86 MB
Available physical RAM: 5564.68 MB
Total Pagefile: 16345.9 MB
Available Pagefile: 13443.66 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB

==================== Drives ================================

Drive c: (S3A4489D001) (Fixed) (Total:581.31 GB) (Free:377.06 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 596 GB) (Disk ID: 9BFBF1F1)
Partition 1: (Active) - (Size=1 GB) - (Type=27)
Partition 2: (Not Active) - (Size=581 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=13 GB) - (Type=17)
 



#8 sunnynap

sunnynap

    New Member

  • Authentic Member
  • Pip
  • 16 posts

Posted 04 June 2014 - 03:12 PM

==================== End Of Log ============================

08:52:31.0629 0x1108  TDSS rootkit removing tool 3.0.0.37 May 30 2014 13:12:03
08:52:33.0642 0x1108  ============================================================
08:52:33.0642 0x1108  Current date / time: 2014/06/05 08:52:33.0642
08:52:33.0642 0x1108  SystemInfo:
08:52:33.0642 0x1108  
08:52:33.0642 0x1108  OS Version: 6.1.7601 ServicePack: 1.0
08:52:33.0642 0x1108  Product type: Workstation
08:52:33.0642 0x1108  ComputerName: PUSHPA-PETAL
08:52:33.0642 0x1108  UserName: Pushba
08:52:33.0642 0x1108  Windows directory: C:\windows
08:52:33.0642 0x1108  System windows directory: C:\windows
08:52:33.0642 0x1108  Running under WOW64
08:52:33.0642 0x1108  Processor architecture: Intel x64
08:52:33.0642 0x1108  Number of processors: 8
08:52:33.0642 0x1108  Page size: 0x1000
08:52:33.0642 0x1108  Boot type: Normal boot
08:52:33.0642 0x1108  ============================================================
08:52:33.0642 0x1108  BG loaded
08:52:34.0578 0x1108  System UUID: {6E2AB246-18F5-4131-89EA-DC4E1A5E75FD}
08:52:36.0543 0x1108  Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:52:36.0559 0x1108  ============================================================
08:52:36.0559 0x1108  \Device\Harddisk0\DR0:
08:52:36.0559 0x1108  MBR partitions:
08:52:36.0559 0x1108  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x48AA0800
08:52:36.0559 0x1108  ============================================================
08:52:36.0855 0x1108  C: <-> \Device\Harddisk0\DR0\Partition1
08:52:36.0855 0x1108  ============================================================
08:52:36.0855 0x1108  Initialize success
08:52:36.0855 0x1108  ============================================================
08:52:43.0126 0x074c  ============================================================
08:52:43.0126 0x074c  Scan started
08:52:43.0126 0x074c  Mode: Manual;
08:52:43.0126 0x074c  ============================================================
08:52:43.0126 0x074c  KSN ping started
08:52:46.0512 0x074c  KSN ping finished: true
08:52:50.0958 0x074c  ================ Scan system memory ========================
08:52:50.0958 0x074c  System memory - ok
08:52:50.0958 0x074c  ================ Scan services =============================
08:52:51.0986 0x074c  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
08:52:51.0996 0x074c  1394ohci - ok
08:52:52.0156 0x074c  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\windows\system32\drivers\ACPI.sys
08:52:52.0166 0x074c  ACPI - ok
08:52:52.0336 0x074c  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys
08:52:52.0386 0x074c  AcpiPmi - ok
08:52:53.0268 0x074c  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:52:53.0268 0x074c  AdobeARMservice - ok
08:52:53.0846 0x074c  [ 09E7C37DF4A911C8A9AA8BF88ACD10AA, E881E0BBDCED58F28E0BA8DC27372EDFFFF2C57EE31CD13A032FDC9F7C831B5A ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:52:53.0861 0x074c  AdobeFlashPlayerUpdateSvc - ok
08:52:54.0002 0x074c  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\windows\system32\drivers\adp94xx.sys
08:52:54.0017 0x074c  adp94xx - ok
08:52:54.0111 0x074c  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\windows\system32\drivers\adpahci.sys
08:52:54.0126 0x074c  adpahci - ok
08:52:55.0062 0x074c  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\windows\system32\drivers\adpu320.sys
08:52:55.0062 0x074c  adpu320 - ok
08:52:55.0109 0x074c  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
08:52:55.0109 0x074c  AeLookupSvc - ok
08:52:55.0468 0x074c  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\windows\system32\drivers\afd.sys
08:52:55.0484 0x074c  AFD - ok
08:52:55.0686 0x074c  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\windows\system32\drivers\agp440.sys
08:52:55.0686 0x074c  agp440 - ok
08:52:55.0733 0x074c  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\windows\System32\alg.exe
08:52:55.0749 0x074c  ALG - ok
08:52:55.0858 0x074c  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\windows\system32\drivers\aliide.sys
08:52:55.0858 0x074c  aliide - ok
08:52:56.0030 0x074c  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\windows\system32\drivers\amdide.sys
08:52:56.0030 0x074c  amdide - ok
08:52:56.0154 0x074c  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\windows\system32\drivers\amdk8.sys
08:52:56.0170 0x074c  AmdK8 - ok
08:52:56.0295 0x074c  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\windows\system32\drivers\amdppm.sys
08:52:56.0310 0x074c  AmdPPM - ok
08:52:56.0342 0x074c  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\windows\system32\drivers\amdsata.sys
08:52:56.0342 0x074c  amdsata - ok
08:52:56.0373 0x074c  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
08:52:56.0388 0x074c  amdsbs - ok
08:52:56.0420 0x074c  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\windows\system32\drivers\amdxata.sys
08:52:56.0420 0x074c  amdxata - ok
08:52:57.0231 0x074c  [ E1D8F96772F6BBE990B435580CA9C33B, 13EAF541BAB26EAB758521EAE7FC70D591B2BD2F6CB33E78D7F58FB169DDDF0C ] Amsp            C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
08:52:57.0231 0x074c  Amsp - ok
08:52:57.0340 0x074c  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\windows\system32\drivers\appid.sys
08:52:57.0340 0x074c  AppID - ok
08:52:57.0387 0x074c  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\windows\System32\appidsvc.dll
08:52:57.0387 0x074c  AppIDSvc - ok
08:52:57.0465 0x074c  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\windows\System32\appinfo.dll
08:52:57.0480 0x074c  Appinfo - ok
08:52:57.0730 0x074c  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:52:57.0730 0x074c  Apple Mobile Device - ok
08:52:57.0792 0x074c  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\windows\system32\drivers\arc.sys
08:52:57.0792 0x074c  arc - ok
08:52:57.0839 0x074c  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\windows\system32\drivers\arcsas.sys
08:52:57.0839 0x074c  arcsas - ok
08:52:58.0120 0x074c  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
08:52:58.0214 0x074c  aspnet_state - ok
08:52:58.0323 0x074c  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
08:52:58.0323 0x074c  AsyncMac - ok
08:52:58.0401 0x074c  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\windows\system32\drivers\atapi.sys
08:52:58.0401 0x074c  atapi - ok
08:52:58.0806 0x074c  [ B2931C83CFB12A3223A47B180473AE1A, D9089E0D4AB82F4F5FCD6A82F446504E7968EA6A09B55190F68EB8A09F6CFE78 ] athr            C:\windows\system32\DRIVERS\athrx.sys
08:52:58.0900 0x074c  athr - ok
08:52:59.0087 0x074c  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
08:52:59.0087 0x074c  AudioEndpointBuilder - ok
08:52:59.0118 0x074c  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\windows\System32\Audiosrv.dll
08:52:59.0118 0x074c  AudioSrv - ok
08:52:59.0181 0x074c  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\windows\System32\AxInstSV.dll
08:52:59.0196 0x074c  AxInstSV - ok
08:52:59.0462 0x074c  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
08:52:59.0540 0x074c  b06bdrv - ok
08:52:59.0664 0x074c  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
08:52:59.0680 0x074c  b57nd60a - ok
08:52:59.0914 0x074c  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\windows\System32\bdesvc.dll
08:52:59.0914 0x074c  BDESVC - ok
08:53:00.0008 0x074c  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\windows\system32\drivers\Beep.sys
08:53:00.0008 0x074c  Beep - ok
08:53:00.0132 0x074c  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\windows\System32\bfe.dll
08:53:00.0148 0x074c  BFE - ok
08:53:00.0288 0x074c  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\windows\System32\qmgr.dll
08:53:00.0304 0x074c  BITS - ok
08:53:00.0351 0x074c  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys
08:53:00.0351 0x074c  blbdrive - ok
08:53:00.0600 0x074c  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
08:53:00.0632 0x074c  Bonjour Service - ok
08:53:00.0756 0x074c  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
08:53:00.0756 0x074c  bowser - ok
08:53:00.0834 0x074c  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\windows\system32\drivers\BrFiltLo.sys
08:53:00.0834 0x074c  BrFiltLo - ok
08:53:00.0881 0x074c  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\windows\system32\drivers\BrFiltUp.sys
08:53:00.0881 0x074c  BrFiltUp - ok
08:53:00.0975 0x074c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\windows\System32\browser.dll
08:53:00.0990 0x074c  Browser - ok
08:53:01.0037 0x074c  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\windows\System32\Drivers\Brserid.sys
08:53:01.0053 0x074c  Brserid - ok
08:53:01.0100 0x074c  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
08:53:01.0100 0x074c  BrSerWdm - ok
08:53:01.0131 0x074c  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
08:53:01.0131 0x074c  BrUsbMdm - ok
08:53:01.0146 0x074c  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
08:53:01.0146 0x074c  BrUsbSer - ok
08:53:01.0240 0x074c  [ 2347ABBD13BADA65826FDAB4CAAFE357, EA11668ECC7F92287C5B570DBF5629A80269E79AC256F5AF0984D8B270010BAE ] BtFilter        C:\windows\system32\DRIVERS\btfilter.sys
08:53:01.0240 0x074c  BtFilter - ok
08:53:01.0287 0x074c  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\windows\system32\drivers\bthmodem.sys
08:53:01.0287 0x074c  BTHMODEM - ok
08:53:01.0380 0x074c  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\windows\system32\bthserv.dll
08:53:01.0396 0x074c  bthserv - ok
08:53:01.0646 0x074c  [ 72551A9AE5F68905DFC3CBA0D5242566, 15C273519C3AD1B2AF68F669125AFE607A86A60D680E299631D5E893C3CAA7E7 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
08:53:01.0677 0x074c  c2cautoupdatesvc - ok
08:53:02.0004 0x074c  [ 6B669A00A431FF6CDCE67458933F5F0F, 81419EB18BB4EB96E48C99A1D45B0267E779E135427B3AEC872A1A5DD810B23F ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
08:53:02.0036 0x074c  c2cpnrsvc - ok
08:53:02.0129 0x074c  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
08:53:02.0129 0x074c  cdfs - ok
08:53:02.0192 0x074c  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\windows\system32\DRIVERS\cdrom.sys
08:53:02.0207 0x074c  cdrom - ok
08:53:02.0270 0x074c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\windows\System32\certprop.dll
08:53:02.0270 0x074c  CertPropSvc - ok
08:53:02.0379 0x074c  [ 41E7C4FA6491747402CFCA77CC1C7AAB, 676CD982A0D33B60A646AC7C0158F7421E395C8B4B12E544C55AF5C09E470CC5 ] cfWiMAXService  C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
08:53:02.0379 0x074c  cfWiMAXService - ok
08:53:02.0488 0x074c  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\windows\system32\drivers\circlass.sys
08:53:02.0504 0x074c  circlass - ok
08:53:02.0535 0x074c  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\windows\system32\CLFS.sys
08:53:02.0550 0x074c  CLFS - ok
08:53:02.0691 0x074c  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:53:02.0691 0x074c  clr_optimization_v2.0.50727_32 - ok
08:53:02.0753 0x074c  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:53:08.0853 0x074c  clr_optimization_v2.0.50727_64 - ok
08:53:09.0009 0x074c  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:53:09.0399 0x074c  clr_optimization_v4.0.30319_32 - ok
08:53:09.0477 0x074c  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:53:09.0493 0x074c  clr_optimization_v4.0.30319_64 - ok
08:53:09.0602 0x074c  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\windows\system32\DRIVERS\CmBatt.sys
08:53:09.0602 0x074c  CmBatt - ok
08:53:09.0633 0x074c  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\windows\system32\drivers\cmdide.sys
08:53:09.0633 0x074c  cmdide - ok
08:53:09.0695 0x074c  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\windows\system32\Drivers\cng.sys
08:53:09.0711 0x074c  CNG - ok
08:53:09.0867 0x074c  [ 66847C979893A11CFCC2280E772D7EA1, B713745DA46DE58C9772EF5E8641B941F74302A70DBB18DD9207925CAD9AC25D ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys
08:53:09.0898 0x074c  CnxtHdAudService - ok
08:53:09.0945 0x074c  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\windows\system32\drivers\compbatt.sys
08:53:09.0945 0x074c  Compbatt - ok
08:53:10.0101 0x074c  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\windows\system32\DRIVERS\CompositeBus.sys
08:53:10.0101 0x074c  CompositeBus - ok
08:53:10.0132 0x074c  COMSysApp - ok
08:53:10.0304 0x074c  [ CAB0EEAF5295FC96DDD3E19DCE27E131, 87BCAC18D920153322D325AA5B93BB0B447577D67261FDCC01C5B60643CEA792 ] ConfigFree Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
08:53:10.0304 0x074c  ConfigFree Service - ok
08:53:10.0351 0x074c  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\windows\system32\drivers\crcdisk.sys
08:53:10.0351 0x074c  crcdisk - ok
08:53:10.0460 0x074c  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\windows\system32\cryptsvc.dll
08:53:10.0460 0x074c  CryptSvc - ok
08:53:10.0538 0x074c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\windows\system32\rpcss.dll
08:53:10.0553 0x074c  DcomLaunch - ok
08:53:10.0616 0x074c  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\windows\System32\defragsvc.dll
08:53:10.0631 0x074c  defragsvc - ok
08:53:10.0678 0x074c  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\windows\system32\Drivers\dfsc.sys
08:53:10.0678 0x074c  DfsC - ok
08:53:10.0772 0x074c  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\windows\system32\dhcpcore.dll
08:53:10.0772 0x074c  Dhcp - ok
08:53:10.0787 0x074c  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\windows\system32\drivers\discache.sys
08:53:10.0803 0x074c  discache - ok
08:53:10.0881 0x074c  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\windows\system32\drivers\disk.sys
08:53:10.0881 0x074c  Disk - ok
08:53:10.0943 0x074c  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\windows\System32\dnsrslvr.dll
08:53:10.0943 0x074c  Dnscache - ok
08:53:11.0006 0x074c  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\windows\System32\dot3svc.dll
08:53:11.0021 0x074c  dot3svc - ok
08:53:11.0068 0x074c  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\windows\system32\dps.dll
08:53:11.0099 0x074c  DPS - ok
08:53:11.0271 0x074c  [ 78675536D8B6E2D96B59196C2BE3EBF2, 77F0D0135B8CD0D1CB429D5778794807813AE032D12A40C912CD2E1AF614F317 ] DragonSvc       C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe
08:53:11.0287 0x074c  DragonSvc - ok
08:53:11.0458 0x074c  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
08:53:11.0458 0x074c  drmkaud - ok
08:53:16.0228 0x074c  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
08:53:16.0244 0x074c  DXGKrnl - ok
08:53:16.0337 0x074c  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\windows\System32\eapsvc.dll
08:53:16.0337 0x074c  EapHost - ok
08:53:16.0634 0x074c  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\windows\system32\drivers\evbda.sys
08:53:16.0774 0x074c  ebdrv - ok
08:53:16.0821 0x074c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\windows\System32\lsass.exe
08:53:16.0836 0x074c  EFS - ok
08:53:17.0086 0x074c  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\windows\ehome\ehRecvr.exe
08:53:17.0117 0x074c  ehRecvr - ok
08:53:17.0226 0x074c  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\windows\ehome\ehsched.exe
08:53:17.0226 0x074c  ehSched - ok
08:53:17.0414 0x074c  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\windows\system32\drivers\elxstor.sys
08:53:17.0429 0x074c  elxstor - ok
08:53:17.0445 0x074c  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\windows\system32\drivers\errdev.sys
08:53:17.0445 0x074c  ErrDev - ok
08:53:17.0554 0x074c  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\windows\system32\es.dll
08:53:17.0570 0x074c  EventSystem - ok
08:53:17.0585 0x074c  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\windows\system32\drivers\exfat.sys
08:53:17.0601 0x074c  exfat - ok
08:53:17.0616 0x074c  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\windows\system32\drivers\fastfat.sys
08:53:17.0632 0x074c  fastfat - ok
08:53:17.0710 0x074c  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\windows\system32\fxssvc.exe
08:53:17.0726 0x074c  Fax - ok
08:53:17.0757 0x074c  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\windows\system32\drivers\fdc.sys
08:53:17.0757 0x074c  fdc - ok
08:53:17.0819 0x074c  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\windows\system32\fdPHost.dll
08:53:17.0819 0x074c  fdPHost - ok
08:53:17.0850 0x074c  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\windows\system32\fdrespub.dll
08:53:17.0850 0x074c  FDResPub - ok
08:53:17.0913 0x074c  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
08:53:17.0913 0x074c  FileInfo - ok
08:53:17.0975 0x074c  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
08:53:17.0975 0x074c  Filetrace - ok
08:53:18.0006 0x074c  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\windows\system32\drivers\flpydisk.sys
08:53:18.0006 0x074c  flpydisk - ok
08:53:18.0038 0x074c  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
08:53:18.0038 0x074c  FltMgr - ok
08:53:18.0194 0x074c  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\windows\system32\FntCache.dll
08:53:18.0225 0x074c  FontCache - ok
08:53:18.0272 0x074c  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:53:18.0272 0x074c  FontCache3.0.0.0 - ok
08:53:18.0303 0x074c  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
08:53:18.0318 0x074c  FsDepends - ok
08:53:18.0334 0x074c  [ 6C06701BF1DB05405804D7EB610991CE, 75DEB2204D9AC338ED7C4742BEFAFA0AFC7E42B2C1B54A57DF8A1AD097D9EC3E ] fssfltr         C:\windows\system32\DRIVERS\fssfltr.sys
08:53:18.0350 0x074c  fssfltr - ok
08:53:18.0693 0x074c  [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
08:53:18.0771 0x074c  fsssvc - ok
08:53:18.0818 0x074c  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
08:53:18.0833 0x074c  Fs_Rec - ok
08:53:18.0958 0x074c  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
08:53:18.0958 0x074c  fvevol - ok
08:53:19.0005 0x074c  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
08:53:19.0005 0x074c  gagp30kx - ok
08:53:19.0083 0x074c  [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
08:53:19.0083 0x074c  GamesAppService - ok
08:53:19.0145 0x074c  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\windows\system32\DRIVERS\GEARAspiWDM.sys
08:53:19.0145 0x074c  GEARAspiWDM - ok
08:53:19.0223 0x074c  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\windows\System32\gpsvc.dll
08:53:19.0239 0x074c  gpsvc - ok
08:53:19.0629 0x074c  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:53:19.0629 0x074c  gupdate - ok
08:53:19.0722 0x074c  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:53:19.0738 0x074c  gupdatem - ok
08:53:19.0863 0x074c  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
08:53:19.0878 0x074c  gusvc - ok
08:53:19.0910 0x074c  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
08:53:19.0910 0x074c  hcw85cir - ok
08:53:19.0972 0x074c  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
08:53:19.0988 0x074c  HdAudAddService - ok
08:53:20.0019 0x074c  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\windows\system32\DRIVERS\HDAudBus.sys
08:53:20.0034 0x074c  HDAudBus - ok
08:53:20.0066 0x074c  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\windows\system32\drivers\HidBatt.sys
08:53:20.0081 0x074c  HidBatt - ok
08:53:20.0128 0x074c  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\windows\system32\drivers\hidbth.sys
08:53:20.0128 0x074c  HidBth - ok
08:53:20.0175 0x074c  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\windows\system32\drivers\hidir.sys
08:53:20.0175 0x074c  HidIr - ok
08:53:20.0206 0x074c  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\windows\system32\hidserv.dll
08:53:20.0206 0x074c  hidserv - ok
08:53:20.0502 0x074c  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys
08:53:20.0502 0x074c  HidUsb - ok
08:53:20.0612 0x074c  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\windows\system32\kmsvc.dll
08:53:20.0612 0x074c  hkmsvc - ok
08:53:20.0658 0x074c  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\windows\system32\ListSvc.dll
08:53:20.0674 0x074c  HomeGroupListener - ok
08:53:20.0752 0x074c  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\windows\system32\provsvc.dll
08:53:20.0768 0x074c  HomeGroupProvider - ok
08:53:20.0861 0x074c  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
08:53:20.0861 0x074c  HpSAMD - ok
08:53:20.0939 0x074c  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\windows\system32\drivers\HTTP.sys
08:53:20.0955 0x074c  HTTP - ok
08:53:21.0002 0x074c  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
08:53:21.0002 0x074c  hwpolicy - ok
08:53:21.0095 0x074c  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\windows\system32\DRIVERS\i8042prt.sys
08:53:21.0111 0x074c  i8042prt - ok
08:53:21.0189 0x074c  [ D469B77687E12FE43E344806740B624D, DFDD486FD040813BF4E5DDB504CF9E0BFBF6D4E540DDDA4829F9B675ACF63E89 ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys
08:53:21.0204 0x074c  iaStor - ok
08:53:21.0298 0x074c  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
08:53:21.0314 0x074c  iaStorV - ok
08:53:21.0470 0x074c  [ DAF66902F08796F9C694901660E5A64A, F4A4764DED05980426BAB54AAF040BC27A39C80315F5161E8D0B4C7F694BD8E6 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
08:53:21.0766 0x074c  IDriverT - ok
08:53:21.0875 0x074c  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:53:21.0906 0x074c  idsvc - ok
08:53:21.0938 0x074c  IEEtwCollectorService - ok
08:53:21.0953 0x074c  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\windows\system32\drivers\iirsp.sys
08:53:21.0969 0x074c  iirsp - ok
08:53:22.0047 0x074c  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\windows\System32\ikeext.dll
08:53:22.0078 0x074c  IKEEXT - ok
08:53:22.0156 0x074c  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\windows\system32\drivers\intelide.sys
08:53:22.0156 0x074c  intelide - ok
08:53:22.0203 0x074c  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
08:53:22.0203 0x074c  intelppm - ok
08:53:22.0281 0x074c  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\windows\system32\ipbusenum.dll
08:53:22.0281 0x074c  IPBusEnum - ok
08:53:22.0312 0x074c  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
08:53:22.0312 0x074c  IpFilterDriver - ok
08:53:22.0421 0x074c  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
08:53:22.0437 0x074c  iphlpsvc - ok
08:53:22.0499 0x074c  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys
08:53:22.0515 0x074c  IPMIDRV - ok
08:53:22.0530 0x074c  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\windows\system32\drivers\ipnat.sys
08:53:22.0530 0x074c  IPNAT - ok
08:53:22.0624 0x074c  [ 6BF622C46721CF6E2B35E868F319E6EB, 926D3C6334D8AF8A248A361D1F7C0A655835572ED8AC6F1D7932E1FA7A26B50A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
08:53:22.0640 0x074c  iPod Service - ok
08:53:22.0671 0x074c  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\windows\system32\drivers\irenum.sys
08:53:22.0671 0x074c  IRENUM - ok
08:53:22.0686 0x074c  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\windows\system32\drivers\isapnp.sys
08:53:22.0686 0x074c  isapnp - ok
08:53:22.0718 0x074c  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys
08:53:22.0733 0x074c  iScsiPrt - ok
08:53:22.0749 0x074c  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
08:53:22.0749 0x074c  kbdclass - ok
08:53:22.0780 0x074c  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\windows\system32\DRIVERS\kbdhid.sys
08:53:22.0780 0x074c  kbdhid - ok
08:53:22.0796 0x074c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\windows\system32\lsass.exe
08:53:22.0796 0x074c  KeyIso - ok
08:53:22.0842 0x074c  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
08:53:22.0842 0x074c  KSecDD - ok
08:53:22.0874 0x074c  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
08:53:22.0889 0x074c  KSecPkg - ok
08:53:22.0920 0x074c  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
08:53:22.0920 0x074c  ksthunk - ok
08:53:22.0983 0x074c  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\windows\system32\msdtckrm.dll
08:53:22.0998 0x074c  KtmRm - ok
08:53:23.0061 0x074c  [ EBED8B3FF4A823C1A6EEBEED7B29353F, 0942200EEDEDA1FF4E634CDC5182D8EDC9BC9F66E89A5DAB8DF82C3FBB2F0D59 ] L1C             C:\windows\system32\DRIVERS\L1C62x64.sys
08:53:23.0061 0x074c  L1C - ok
08:53:23.0186 0x074c  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\windows\system32\srvsvc.dll
08:53:23.0201 0x074c  LanmanServer - ok
08:53:23.0232 0x074c  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
08:53:23.0248 0x074c  LanmanWorkstation - ok
08:53:23.0279 0x074c  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
08:53:23.0279 0x074c  lltdio - ok
08:53:23.0373 0x074c  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\windows\System32\lltdsvc.dll
08:53:23.0388 0x074c  lltdsvc - ok
08:53:23.0451 0x074c  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\windows\System32\lmhsvc.dll
08:53:23.0451 0x074c  lmhosts - ok
08:53:23.0529 0x074c  [ 2ED1786B7542CDA261029F6B526EDF44, C6131B65B045EF5B4F62CF6CF089DF0921BA6A8EFC83BCBA45D5DDE78E9D78E2 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
08:53:23.0544 0x074c  LMS - ok
08:53:23.0576 0x074c  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\windows\system32\drivers\lsi_fc.sys
08:53:23.0576 0x074c  LSI_FC - ok
08:53:23.0607 0x074c  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
08:53:23.0607 0x074c  LSI_SAS - ok
08:53:23.0638 0x074c  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys
08:53:23.0638 0x074c  LSI_SAS2 - ok
08:53:23.0669 0x074c  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\windows\system32\drivers\lsi_scsi.sys
08:53:23.0669 0x074c  LSI_SCSI - ok
08:53:23.0685 0x074c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\windows\system32\drivers\luafv.sys
08:53:23.0700 0x074c  luafv - ok
08:53:23.0732 0x074c  massfilter - ok
08:53:23.0794 0x074c  [ F92B0E478C0FAA6D6661E6E977247E60, 8B26B57C2C60C98CD6273ACA126B2CD0356ADB13A59FEC12882357A6B973123C ] MBAMProtector   C:\windows\system32\drivers\mbam.sys
08:53:23.0794 0x074c  MBAMProtector - ok
08:53:23.0934 0x074c  [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
08:53:23.0966 0x074c  MBAMScheduler - ok
08:53:24.0059 0x074c  [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
08:53:24.0075 0x074c  MBAMService - ok
08:53:24.0184 0x074c  [ 8A50D5304E6AE48664CF5838EC32F647, C76943FABEE1B5E1B641AA610668CCD4227E2C4B191DD30B79D3AB31A9E8B5BE ] MBAMSwissArmy   C:\windows\system32\drivers\MBAMSwissArmy.sys
08:53:24.0184 0x074c  MBAMSwissArmy - ok
08:53:24.0215 0x074c  [ 15E8ABC06843672955CE26A009533BAD, E7221B7DE9DB45447C68E79C6BFD064713C5974F7E79925BD7DEEF71F73F3E83 ] MBAMWebAccessControl C:\windows\system32\drivers\mwac.sys
08:53:24.0215 0x074c  MBAMWebAccessControl - ok
08:53:24.0231 0x074c  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
08:53:24.0246 0x074c  Mcx2Svc - ok
08:53:24.0262 0x074c  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\windows\system32\drivers\megasas.sys
08:53:24.0262 0x074c  megasas - ok
08:53:24.0309 0x074c  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\windows\system32\drivers\MegaSR.sys
08:53:24.0324 0x074c  MegaSR - ok
08:53:24.0371 0x074c  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\windows\system32\DRIVERS\HECIx64.sys
08:53:24.0371 0x074c  MEIx64 - ok
08:53:24.0402 0x074c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\windows\system32\mmcss.dll
08:53:24.0418 0x074c  MMCSS - ok
08:53:24.0449 0x074c  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\windows\system32\drivers\modem.sys
08:53:24.0449 0x074c  Modem - ok
08:53:24.0512 0x074c  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\windows\system32\DRIVERS\monitor.sys
08:53:24.0512 0x074c  monitor - ok
08:53:24.0543 0x074c  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
08:53:24.0543 0x074c  mouclass - ok
08:53:24.0558 0x074c  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
08:53:24.0574 0x074c  mouhid - ok
08:53:24.0605 0x074c  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
08:53:24.0605 0x074c  mountmgr - ok
08:53:24.0746 0x074c  [ E1B6FCAE82474FC071155263E2841D54, 341E2CEB1A86586730130311C4FAF86851151D5F08EF915A5F89B6C4094AE1F4 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
08:53:24.0746 0x074c  MozillaMaintenance - ok
08:53:24.0792 0x074c  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\windows\system32\drivers\mpio.sys
08:53:24.0808 0x074c  mpio - ok
08:53:24.0855 0x074c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
08:53:24.0855 0x074c  mpsdrv - ok
08:53:24.0995 0x074c  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\windows\system32\mpssvc.dll
08:53:25.0011 0x074c  MpsSvc - ok
08:53:25.0058 0x074c  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
08:53:25.0058 0x074c  MRxDAV - ok
08:53:25.0104 0x074c  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
08:53:25.0120 0x074c  mrxsmb - ok
08:53:25.0167 0x074c  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
08:53:25.0167 0x074c  mrxsmb10 - ok
08:53:25.0198 0x074c  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
08:53:25.0214 0x074c  mrxsmb20 - ok
08:53:25.0292 0x074c  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\windows\system32\drivers\msahci.sys
08:53:25.0307 0x074c  msahci - ok
08:53:25.0354 0x074c  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\windows\system32\drivers\msdsm.sys
08:53:25.0370 0x074c  msdsm - ok
08:53:25.0401 0x074c  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\windows\System32\msdtc.exe
08:53:25.0401 0x074c  MSDTC - ok
08:53:25.0448 0x074c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\windows\system32\drivers\Msfs.sys
08:53:25.0448 0x074c  Msfs - ok
08:53:25.0479 0x074c  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
08:53:25.0479 0x074c  mshidkmdf - ok
08:53:25.0479 0x074c  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
08:53:25.0479 0x074c  msisadrv - ok
08:53:25.0510 0x074c  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
08:53:25.0526 0x074c  MSiSCSI - ok
08:53:25.0541 0x074c  msiserver - ok
08:53:25.0572 0x074c  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
08:53:25.0572 0x074c  MSKSSRV - ok
08:53:25.0650 0x074c  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
08:53:25.0650 0x074c  MSPCLOCK - ok
08:53:25.0666 0x074c  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
08:53:25.0666 0x074c  MSPQM - ok
08:53:25.0728 0x074c  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
08:53:25.0744 0x074c  MsRPC - ok
08:53:25.0744 0x074c  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\windows\system32\DRIVERS\mssmbios.sys
08:53:25.0760 0x074c  mssmbios - ok
08:53:25.0775 0x074c  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
08:53:25.0775 0x074c  MSTEE - ok
08:53:25.0791 0x074c  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\windows\system32\drivers\MTConfig.sys
08:53:25.0791 0x074c  MTConfig - ok
08:53:25.0806 0x074c  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\windows\system32\Drivers\mup.sys
08:53:25.0806 0x074c  Mup - ok
08:53:25.0838 0x074c  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\windows\system32\qagentRT.dll
08:53:25.0853 0x074c  napagent - ok
08:53:25.0916 0x074c  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
08:53:25.0931 0x074c  NativeWifiP - ok
08:53:26.0118 0x074c  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\windows\system32\drivers\ndis.sys
08:53:26.0150 0x074c  NDIS - ok
08:53:26.0196 0x074c  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
08:53:26.0196 0x074c  NdisCap - ok
08:53:26.0228 0x074c  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
08:53:26.0228 0x074c  NdisTapi - ok
08:53:26.0243 0x074c  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
08:53:26.0259 0x074c  Ndisuio - ok
08:53:26.0290 0x074c  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
08:53:26.0290 0x074c  NdisWan - ok
08:53:26.0368 0x074c  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
08:53:26.0368 0x074c  NDProxy - ok
08:53:26.0415 0x074c  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
08:53:26.0415 0x074c  NetBIOS - ok
08:53:26.0446 0x074c  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
08:53:26.0462 0x074c  NetBT - ok
08:53:26.0493 0x074c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\windows\system32\lsass.exe
08:53:26.0493 0x074c  Netlogon - ok
08:53:26.0555 0x074c  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\windows\System32\netman.dll
08:53:26.0571 0x074c  Netman - ok
08:53:26.0633 0x074c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:53:26.0649 0x074c  NetMsmqActivator - ok
08:53:26.0664 0x074c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:53:26.0664 0x074c  NetPipeActivator - ok
08:53:26.0789 0x074c  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\windows\System32\netprofm.dll
08:53:26.0805 0x074c  netprofm - ok
08:53:26.0883 0x074c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:53:26.0883 0x074c  NetTcpActivator - ok
08:53:26.0883 0x074c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:53:26.0898 0x074c  NetTcpPortSharing - ok
08:53:26.0914 0x074c  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\windows\system32\drivers\nfrd960.sys
08:53:26.0914 0x074c  nfrd960 - ok
08:53:26.0976 0x074c  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\windows\System32\nlasvc.dll
08:53:26.0992 0x074c  NlaSvc - ok
08:53:26.0992 0x074c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\windows\system32\drivers\Npfs.sys
08:53:27.0008 0x074c  Npfs - ok
08:53:27.0086 0x074c  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\windows\system32\nsisvc.dll
08:53:27.0086 0x074c  nsi - ok
08:53:27.0117 0x074c  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
08:53:27.0117 0x074c  nsiproxy - ok
08:53:27.0351 0x074c  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
08:53:27.0398 0x074c  Ntfs - ok
08:53:27.0429 0x074c  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\windows\system32\drivers\Null.sys
08:53:27.0429 0x074c  Null - ok
08:53:27.0491 0x074c  [ 158AD24745BD85BA9BE3C51C38F48C32, B053A3B5A5CAE2CBC47E2C19E636AD70F376334EFFBB391A76562E67CBF3AC86 ] nusb3hub        C:\windows\system32\DRIVERS\nusb3hub.sys
08:53:27.0507 0x074c  nusb3hub - ok
08:53:27.0538 0x074c  [ D40A13B2C0891E218F9523B376955DB6, 9A2AAAF960868B860A65579EAD507B35C64CFD6C3581F8D731ADF975F778D10E ] nusb3xhc        C:\windows\system32\DRIVERS\nusb3xhc.sys
08:53:27.0538 0x074c  nusb3xhc - ok
08:53:27.0585 0x074c  [ 857FB74754EBFF94EE3AD40788740916, FE4099D8F2E7967289BBC0802548C48D453A0BD0C44AAACCDB4C282ADBCC7BFE ] NVHDA           C:\windows\system32\drivers\nvhda64v.sys
08:53:27.0600 0x074c  NVHDA - ok
08:53:28.0505 0x074c  [ 830886C8D7C17710F615C5705C41C9EA, 273B599D8D8A78DFDA09B6D1B2E18B4EB33954EFC886BBF23D0B389B0A37D783 ] nvlddmkm        C:\windows\system32\DRIVERS\nvlddmkm.sys
08:53:28.0724 0x074c  nvlddmkm - ok
08:53:28.0786 0x074c  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\windows\system32\drivers\nvraid.sys
08:53:28.0802 0x074c  nvraid - ok
08:53:28.0833 0x074c  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\windows\system32\drivers\nvstor.sys
08:53:28.0833 0x074c  nvstor - ok
08:53:29.0020 0x074c  [ 8A8A19E613B3684F4F42E65038F6F338, 78CBD42424E39DCF55618B1FABC057A535BEFCD28C028E4AB2E6FAFFD4D06E07 ] NVSvc           C:\windows\system32\nvvsvc.exe
08:53:29.0036 0x074c  NVSvc - ok
08:53:29.0098 0x074c  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
08:53:29.0114 0x074c  nv_agp - ok
08:53:29.0597 0x074c  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
08:53:29.0675 0x074c  odserv - ok
08:53:29.0738 0x074c  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
08:53:29.0738 0x074c  ohci1394 - ok
08:53:29.0909 0x074c  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:53:29.0925 0x074c  ose - ok
08:53:29.0956 0x074c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
08:53:29.0972 0x074c  p2pimsvc - ok
08:53:29.0987 0x074c  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\windows\system32\p2psvc.dll
08:53:30.0003 0x074c  p2psvc - ok
08:53:30.0034 0x074c  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\windows\system32\drivers\parport.sys
08:53:30.0034 0x074c  Parport - ok
08:53:30.0065 0x074c  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\windows\system32\drivers\partmgr.sys
08:53:30.0081 0x074c  partmgr - ok
08:53:30.0128 0x074c  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\windows\System32\pcasvc.dll
08:53:30.0128 0x074c  PcaSvc - ok
08:53:30.0159 0x074c  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\windows\system32\drivers\pci.sys
08:53:30.0174 0x074c  pci - ok
08:53:30.0221 0x074c  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\windows\system32\drivers\pciide.sys
08:53:30.0221 0x074c  pciide - ok
08:53:30.0237 0x074c  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
08:53:30.0252 0x074c  pcmcia - ok
08:53:30.0268 0x074c  PCTINDIS5X64 - ok
08:53:30.0284 0x074c  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\windows\system32\drivers\pcw.sys
08:53:30.0284 0x074c  pcw - ok
08:53:30.0330 0x074c  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\windows\system32\drivers\peauth.sys
08:53:30.0330 0x074c  PEAUTH - ok
08:53:30.0440 0x074c  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\windows\SysWow64\perfhost.exe
08:53:30.0440 0x074c  PerfHost - ok
08:53:30.0471 0x074c  [ 91111CEBBDE8015E822C46120ED9537C, 255B85FEF663C2E0652CECF3F9B67B12B576F924A34415DEE13F0F5137E1E7F7 ] PGEffect        C:\windows\system32\DRIVERS\pgeffect.sys
08:53:30.0471 0x074c  PGEffect - ok
08:53:30.0564 0x074c  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\windows\system32\pla.dll
08:53:30.0580 0x074c  pla - ok
08:53:30.0689 0x074c  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
08:53:30.0705 0x074c  PlugPlay - ok
08:53:30.0736 0x074c  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
08:53:30.0736 0x074c  PNRPAutoReg - ok
08:53:30.0783 0x074c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
08:53:30.0798 0x074c  PNRPsvc - ok
08:53:30.0876 0x074c  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
08:53:30.0892 0x074c  PolicyAgent - ok
08:53:30.0939 0x074c  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\windows\system32\umpo.dll
08:53:30.0939 0x074c  Power - ok
08:53:31.0001 0x074c  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
08:53:31.0017 0x074c  PptpMiniport - ok
08:53:31.0032 0x074c  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\windows\system32\drivers\processr.sys
08:53:31.0048 0x074c  Processor - ok
08:53:31.0110 0x074c  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\windows\system32\profsvc.dll
08:53:31.0126 0x074c  ProfSvc - ok
08:53:31.0126 0x074c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\windows\system32\lsass.exe
08:53:31.0126 0x074c  ProtectedStorage - ok
08:53:31.0173 0x074c  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\windows\system32\DRIVERS\pacer.sys
08:53:31.0188 0x074c  Psched - ok
08:53:31.0220 0x074c  [ C8FCB4899F8B70CC34E0D9876A80963C, E4CFC69C3EE1BC5C0FFF96CE034EAD8DD9727DA165A790CB57979AA0A6CEE350 ] QIOMem          C:\windows\system32\DRIVERS\QIOMem.sys
08:53:31.0235 0x074c  QIOMem - ok
08:53:31.0344 0x074c  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\windows\system32\drivers\ql2300.sys
08:53:31.0376 0x074c  ql2300 - ok
08:53:31.0407 0x074c  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\windows\system32\drivers\ql40xx.sys
08:53:31.0422 0x074c  ql40xx - ok
08:53:31.0469 0x074c  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\windows\system32\qwave.dll
08:53:31.0485 0x074c  QWAVE - ok
08:53:31.0516 0x074c  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
08:53:31.0516 0x074c  QWAVEdrv - ok
08:53:31.0547 0x074c  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
08:53:31.0547 0x074c  RasAcd - ok
08:53:31.0610 0x074c  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
08:53:31.0610 0x074c  RasAgileVpn - ok
08:53:31.0672 0x074c  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\windows\System32\rasauto.dll
08:53:31.0688 0x074c  RasAuto - ok
08:53:31.0781 0x074c  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
08:53:31.0797 0x074c  Rasl2tp - ok
08:53:31.0859 0x074c  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\windows\System32\rasmans.dll
08:53:31.0875 0x074c  RasMan - ok
08:53:31.0937 0x074c  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
08:53:31.0937 0x074c  RasPppoe - ok
08:53:31.0984 0x074c  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
08:53:31.0984 0x074c  RasSstp - ok
08:53:32.0124 0x074c  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
08:53:32.0156 0x074c  rdbss - ok
08:53:32.0171 0x074c  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\windows\system32\drivers\rdpbus.sys
08:53:32.0187 0x074c  rdpbus - ok
08:53:32.0218 0x074c  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
08:53:32.0218 0x074c  RDPCDD - ok
08:53:32.0249 0x074c  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
08:53:32.0249 0x074c  RDPENCDD - ok
08:53:32.0265 0x074c  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
08:53:32.0265 0x074c  RDPREFMP - ok
08:53:32.0327 0x074c  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
08:53:32.0327 0x074c  RDPWD - ok
08:53:32.0374 0x074c  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
08:53:32.0390 0x074c  rdyboost - ok
08:53:32.0530 0x074c  [ 96EFEC24346A8EB1157E80523079ADDC, 7F8FC284029856C754E400B6C954369FFE27763C81D8F4AF4E58BFDD44CBC24A ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
08:53:32.0546 0x074c  RealNetworks Downloader Resolver Service - ok
08:53:32.0655 0x074c  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\windows\System32\mprdim.dll
08:53:32.0655 0x074c  RemoteAccess - ok
08:53:32.0733 0x074c  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\windows\system32\regsvc.dll
08:53:32.0748 0x074c  RemoteRegistry - ok
08:53:32.0780 0x074c  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
08:53:32.0795 0x074c  RpcEptMapper - ok
08:53:32.0842 0x074c  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\windows\system32\locator.exe
08:53:32.0873 0x074c  RpcLocator - ok
08:53:32.0951 0x074c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\windows\system32\rpcss.dll
08:53:32.0967 0x074c  RpcSs - ok
08:53:33.0029 0x074c  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
08:53:33.0029 0x074c  rspndr - ok
08:53:33.0107 0x074c  [ 135A64530D7699AD48F29D73A658DD11, 35838AE8ACFD9047C68DD0C8910557A82998E5CD778D5B98D4767AFA4BCE85BB ] RSUSBSTOR       C:\windows\system32\Drivers\RtsUStor.sys
08:53:33.0123 0x074c  RSUSBSTOR - ok
08:53:33.0201 0x074c  [ E54A5586A28D0630A79A68BBAB84BFCF, F6FBF1E4C64351CEB205DDCD17C35EA26439E98F3528F96AE326959A7C26B488 ] RSUSBVSTOR      C:\windows\system32\Drivers\RTSUVSTOR.sys
08:53:33.0216 0x074c  RSUSBVSTOR - ok
08:53:33.0232 0x074c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\windows\system32\lsass.exe
08:53:33.0248 0x074c  SamSs - ok
08:53:33.0263 0x074c  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
08:53:33.0279 0x074c  sbp2port - ok
08:53:33.0326 0x074c  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\windows\System32\SCardSvr.dll
08:53:33.0341 0x074c  SCardSvr - ok
08:53:33.0388 0x074c  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
08:53:33.0388 0x074c  scfilter - ok
08:53:33.0513 0x074c  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\windows\system32\schedsvc.dll
08:53:33.0528 0x074c  Schedule - ok
08:53:33.0591 0x074c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\windows\System32\certprop.dll
08:53:33.0591 0x074c  SCPolicySvc - ok
08:53:33.0669 0x074c  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\windows\System32\SDRSVC.dll
08:53:33.0669 0x074c  SDRSVC - ok
08:53:33.0700 0x074c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\windows\system32\drivers\secdrv.sys
08:53:33.0716 0x074c  secdrv - ok
08:53:33.0794 0x074c  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\windows\system32\seclogon.dll
08:53:33.0809 0x074c  seclogon - ok
08:53:33.0856 0x074c  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\windows\System32\sens.dll
08:53:33.0872 0x074c  SENS - ok
08:53:33.0872 0x074c  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\windows\system32\sensrsvc.dll
08:53:33.0887 0x074c  SensrSvc - ok
08:53:33.0918 0x074c  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\windows\system32\drivers\serenum.sys
08:53:33.0918 0x074c  Serenum - ok
08:53:34.0012 0x074c  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\windows\system32\drivers\serial.sys
08:53:34.0012 0x074c  Serial - ok
08:53:34.0059 0x074c  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\windows\system32\drivers\sermouse.sys
08:53:34.0059 0x074c  sermouse - ok
08:53:34.0121 0x074c  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\windows\system32\sessenv.dll
08:53:34.0121 0x074c  SessionEnv - ok
08:53:34.0215 0x074c  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\windows\system32\drivers\sffdisk.sys
08:53:34.0230 0x074c  sffdisk - ok
08:53:34.0246 0x074c  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys
08:53:34.0262 0x074c  sffp_mmc - ok
08:53:34.0262 0x074c  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys
08:53:34.0262 0x074c  sffp_sd - ok
08:53:34.0293 0x074c  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\windows\system32\drivers\sfloppy.sys
08:53:34.0293 0x074c  sfloppy - ok
08:53:34.0449 0x074c  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\windows\System32\ipnathlp.dll
08:53:34.0464 0x074c  SharedAccess - ok
08:53:34.0511 0x074c  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\windows\System32\shsvcs.dll
08:53:34.0527 0x074c  ShellHWDetection - ok
08:53:34.0574 0x074c  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
08:53:34.0574 0x074c  SiSRaid2 - ok
08:53:34.0605 0x074c  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
08:53:34.0620 0x074c  SiSRaid4 - ok
08:53:34.0761 0x074c  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
08:53:34.0761 0x074c  SkypeUpdate - ok
08:53:34.0808 0x074c  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\windows\system32\DRIVERS\smb.sys
08:53:34.0823 0x074c  Smb - ok
08:53:34.0870 0x074c  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\windows\System32\snmptrap.exe
08:53:34.0870 0x074c  SNMPTRAP - ok
08:53:34.0917 0x074c  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\windows\system32\drivers\spldr.sys
08:53:34.0917 0x074c  spldr - ok
08:53:34.0995 0x074c  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\windows\System32\spoolsv.exe
08:53:35.0026 0x074c  Spooler - ok
08:53:35.0307 0x074c  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\windows\system32\sppsvc.exe
08:53:35.0369 0x074c  sppsvc - ok
08:53:35.0385 0x074c  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\windows\system32\sppuinotify.dll
08:53:35.0385 0x074c  sppuinotify - ok
08:53:35.0478 0x074c  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\windows\system32\DRIVERS\srv.sys
08:53:35.0494 0x074c  srv - ok
08:53:35.0619 0x074c  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
08:53:35.0634 0x074c  srv2 - ok
08:53:35.0666 0x074c  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
08:53:35.0681 0x074c  srvnet - ok
08:53:35.0728 0x074c  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
08:53:35.0744 0x074c  SSDPSRV - ok
08:53:35.0759 0x074c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\windows\system32\sstpsvc.dll
08:53:35.0759 0x074c  SstpSvc - ok
08:53:35.0868 0x074c  [ 2E6A405505BBEF41998F0241D83B0CCE, 9BABC10B2CE70F5C8182DBC0F2FD143ED987F5785862B26866AE1D01B48CDF64 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
08:53:35.0900 0x074c  Stereo Service - ok
08:53:35.0962 0x074c  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\windows\system32\drivers\stexstor.sys
08:53:35.0962 0x074c  stexstor - ok
08:53:35.0993 0x074c  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam        C:\windows\system32\DRIVERS\serscan.sys
08:53:35.0993 0x074c  StillCam - ok
08:53:36.0087 0x074c  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\windows\System32\wiaservc.dll
08:53:36.0102 0x074c  stisvc - ok
08:53:36.0118 0x074c  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\windows\system32\DRIVERS\swenum.sys
08:53:36.0118 0x074c  swenum - ok
08:53:36.0227 0x074c  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\windows\System32\swprv.dll
08:53:36.0258 0x074c  swprv - ok
08:53:36.0430 0x074c  [ F5B46DF59FEAA48A442AED7EEB754D4B, 8415FDD5E7B4D4819BB9B0937CDF254548C871045787958BCF708096204B1714 ] SynTP           C:\windows\system32\DRIVERS\SynTP.sys
08:53:36.0461 0x074c  SynTP - ok
08:53:36.0617 0x074c  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\windows\system32\sysmain.dll
08:53:36.0648 0x074c  SysMain - ok
08:53:36.0695 0x074c  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\windows\System32\TabSvc.dll
08:53:36.0695 0x074c  TabletInputService - ok
08:53:36.0773 0x074c  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\windows\System32\tapisrv.dll
08:53:36.0804 0x074c  TapiSrv - ok
08:53:36.0851 0x074c  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\windows\System32\tbssvc.dll
08:53:36.0851 0x074c  TBS - ok
08:53:37.0007 0x074c  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\windows\system32\drivers\tcpip.sys
08:53:37.0038 0x074c  Tcpip - ok
08:53:37.0148 0x074c  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
08:53:37.0179 0x074c  TCPIP6 - ok
08:53:37.0257 0x074c  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
08:53:37.0257 0x074c  tcpipreg - ok
08:53:37.0350 0x074c  [ FD542B661BD22FA69CA789AD0AC58C29, 75FFAF1834B1E22DF37608ED451F161052FF1FE3C681B4E20A68DCA92CC7FD8C ] tdcmdpst        C:\windows\system32\DRIVERS\tdcmdpst.sys
08:53:37.0350 0x074c  tdcmdpst - ok
08:53:37.0413 0x074c  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
08:53:37.0428 0x074c  TDPIPE - ok
08:53:37.0491 0x074c  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
08:53:37.0506 0x074c  TDTCP - ok
08:53:37.0553 0x074c  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
08:53:37.0569 0x074c  tdx - ok
08:53:37.0616 0x074c  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\windows\system32\DRIVERS\termdd.sys
08:53:37.0616 0x074c  TermDD - ok
08:53:37.0709 0x074c  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\windows\System32\termsrv.dll
08:53:37.0725 0x074c  TermService - ok
08:53:37.0725 0x074c  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\windows\system32\themeservice.dll
08:53:37.0725 0x074c  Themes - ok
08:53:37.0881 0x074c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\windows\system32\mmcss.dll
08:53:37.0881 0x074c  THREADORDER - ok
08:53:38.0021 0x074c  [ 83E91963C4452BE6899503CF9EBFD3ED, 0121415C3FEDF030A73A43D5A8DCF44C077655B0E758F2ABBBDD4079743EF115 ] TMachInfo       C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
08:53:38.0037 0x074c  TMachInfo - ok
08:53:38.0115 0x074c  [ C2E4842327230ABF1D099C85B8843A65, 5E7EE4FC04FDEEF70B582B6B27C16C3D3A92FEE0EFEE4308DAFC2821226F9DE2 ] tmactmon        C:\windows\system32\DRIVERS\tmactmon.sys
08:53:38.0130 0x074c  tmactmon - ok
08:53:38.0286 0x074c  [ 74AE819FDE325C80BD03C6D3EB781A30, B869A13DEBD5E1B41D773B3445A3656D4C59C287AB4F00CCF7662995F44F88C6 ] tmcomm          C:\windows\system32\DRIVERS\tmcomm.sys
08:53:38.0302 0x074c  tmcomm - ok
08:53:38.0396 0x074c  [ 4068D01A407C5F3B9AD3DF523E6BCEF6, DB3999EC8886610A14C8961356D88363BD5E3F006DA372F02CAEAC2468132565 ] TMEBC           C:\windows\system32\DRIVERS\TMEBC64.sys
08:53:38.0411 0x074c  TMEBC - ok
08:53:38.0474 0x074c  [ 3A10F5BDF66013B13AAB032B549E934D, E3F141471295D351777AA025A1CAF4F17C4E1589FB3A5FB0BB377C6FEA3C3477 ] tmeevw          C:\windows\system32\DRIVERS\tmeevw.sys
08:53:38.0489 0x074c  tmeevw - ok
08:53:38.0583 0x074c  [ F8B7C333CAB63140B617C91BE75A5AB2, F35220AA537E02F58D1736E85D9AFF2D532BEEDCE3A7E748EF2F1A00CC87B089 ] tmevtmgr        C:\windows\system32\DRIVERS\tmevtmgr.sys
08:53:38.0583 0x074c  tmevtmgr - ok
08:53:38.0661 0x074c  [ C91EB6CEC1A7FE02BB54760ABF79FBA6, 1E3E1ADB59D4F8ED12B9611D21717D38D9135892E506609193A1A32E7113124C ] tmnciesc        C:\windows\system32\DRIVERS\tmnciesc.sys
08:53:38.0692 0x074c  tmnciesc - ok
08:53:38.0739 0x074c  [ 48951FBFFFCAE52FADFCDFB76ED19749, A0D4B3944DCB8583864A5DC61C0FF7F437409FC4F3437DD3A83E62D9F22BDB25 ] tmtdi           C:\windows\system32\DRIVERS\tmtdi.sys
08:53:38.0739 0x074c  tmtdi - ok
08:53:38.0832 0x074c  [ 8E2C799D3476EAC32C3BA0DF7CE6AF19, CFE8A69E3F2A42C3BA2B38EC9233076D0AD32C441500E6407219F2E866905D9B ] TODDSrv         C:\windows\system32\TODDSrv.exe
08:53:38.0848 0x074c  TODDSrv - ok
08:53:39.0004 0x074c  [ CDC97FA5C42B07FB0D4600E17C32F582, 1801964D228E03FF72D01E714ECE76D3040DD89B8FE828821CF999E6CB455F53 ] TosCoSrv        C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
08:53:39.0020 0x074c  TosCoSrv - ok
08:53:39.0113 0x074c  [ 8F099BE5DB17D025E19652851399B9F1, A8EC58DB1700713E9376977675BBC380255D0DDA064120FD70AA2478C5FD1CDF ] TOSHIBA Bluetooth Service C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
08:53:39.0129 0x074c  TOSHIBA Bluetooth Service - ok
08:53:39.0207 0x074c  [ D0F868A67CB4D817A3F7ABEF8C42F49C, 1A72FD6104237AE440B75C2E293F8E2DCE6700B5D29C6789CA23DABA3A7EF769 ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
08:53:39.0222 0x074c  TOSHIBA eco Utility Service - ok
08:53:39.0316 0x074c  [ EDB4B432DB13EA3D1EB2356310D33263, C587155A73AE282545A1A646740BD8E56DFD3D2F231B484469D691401354A245 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
08:53:39.0332 0x074c  TOSHIBA HDD SSD Alert Service - ok
08:53:39.0394 0x074c  [ 8021F63311797085949FA387F7C83583, 7781994B9F06784807D32FD5A93C5406A441908870B1328BBDA9D15C5DD98C1B ] tosporte        C:\windows\system32\DRIVERS\tosporte.sys
08:53:39.0410 0x074c  tosporte - ok
08:53:39.0472 0x074c  [ D15CFD7DE375B33042CF1F6E34DEE198, FA88F7A7D7229762693ECC2CFD607E142ADBCFEC11097A5FC9C1A5F4A9BF62D2 ] tosrfbd         C:\windows\system32\DRIVERS\tosrfbd.sys
08:53:39.0503 0x074c  tosrfbd - ok
08:53:39.0550 0x074c  [ 90F0B1745ABF13F44C2A6ED79F7CE9FB, B705B0ADD6965CF63D3FCD039DBC80EEB8B3860608367D248C7350BB16D83337 ] tosrfbnp        C:\windows\system32\Drivers\tosrfbnp.sys
08:53:39.0566 0x074c  tosrfbnp - ok
08:53:39.0612 0x074c  [ 9E4E65EA51E34647340BD6007467AC54, D4FD658250298AE52959009C7DB031A7D82E48088DB5D94E6D3F990058B9D75E ] Tosrfcom        C:\windows\system32\Drivers\tosrfcom.sys
08:53:39.0612 0x074c  Tosrfcom - ok
08:53:39.0675 0x074c  [ F5E3AC4CBCD154EE80849B21887FD0B0, 7D68AF88F1B01BCA6456FBAEB91580419A49A77D31EFC0BA6A1C50301899BA03 ] tosrfec         C:\windows\system32\DRIVERS\tosrfec.sys
08:53:39.0690 0x074c  tosrfec - ok
08:53:39.0768 0x074c  [ 7D2467D3EB9BAA4B69AE4A28C83DE57A, 38D2C64559EF4598025474643EC0D506F0107822AC6205E8C4D26B76EB28177D ] Tosrfhid        C:\windows\system32\DRIVERS\Tosrfhid.sys
08:53:39.0768 0x074c  Tosrfhid - ok
08:53:39.0831 0x074c  [ B6FDC3C76FFE9C5171EEA9C37EA367C2, 4F8D4E2E37164DB91F396B836BD888CF221010103CF3FBECE00B747155819374 ] tosrfnds        C:\windows\system32\DRIVERS\tosrfnds.sys
08:53:39.0846 0x074c  tosrfnds - ok
08:53:39.0909 0x074c  [ 7052B10E54B48AF12BD5606596A8E039, 530862CFF482B279CCF320B6941C7C8BFAA95F04561BE5F0FDB3E0C042FE6BDA ] TosRfSnd        C:\windows\system32\drivers\tosrfsnd.sys
08:53:39.0909 0x074c  TosRfSnd - ok
08:53:39.0956 0x074c  [ 7A0048693F98460FF537BE31C741B927, 6CD73974D8A9215A5B538C7F32E1C85F6912D38A0B70DB10015621C4E1670980 ] Tosrfusb        C:\windows\system32\DRIVERS\tosrfusb.sys
08:53:39.0956 0x074c  Tosrfusb - ok
08:53:40.0127 0x074c  [ D65C6B0C070534336B72005391B6168A, DBB1DC4E92E11BD8AC30A81FCFC9A253DDF351D057CF0C440B9B7AB6D39B01AC ] TPCHSrv         C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
08:53:40.0221 0x074c  TPCHSrv - ok
08:53:40.0377 0x074c  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\windows\System32\trkwks.dll
08:53:40.0377 0x074c  TrkWks - ok
08:53:40.0564 0x074c  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
08:53:40.0580 0x074c  TrustedInstaller - ok
08:53:40.0673 0x074c  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
08:53:40.0673 0x074c  tssecsrv - ok
08:53:40.0704 0x074c  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
08:53:40.0720 0x074c  TsUsbFlt - ok
08:53:40.0751 0x074c  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\windows\system32\drivers\TsUsbGD.sys
08:53:40.0751 0x074c  TsUsbGD - ok
08:53:40.0814 0x074c  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
08:53:40.0829 0x074c  tunnel - ok
08:53:40.0907 0x074c  [ 550B567F9364D8F7684C3FB3EA665A72, A214BBBBAB9F0DD525FA5A818CEB8E9294B4A96676317255D7ACF6049049C933 ] TVALZ           C:\windows\system32\DRIVERS\TVALZ_O.SYS
08:53:40.0907 0x074c  TVALZ - ok
08:53:40.0970 0x074c  [ 9C7191F4B2E49BFF47A6C1144B5923FA, DF4E663499946F4E68B7528CA399574D1EB69797FF81F681943B84F3E5E6A40E ] TVALZFL         C:\windows\system32\DRIVERS\TVALZFL.sys
08:53:40.0970 0x074c  TVALZFL - ok
08:53:41.0016 0x074c  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\windows\system32\drivers\uagp35.sys
08:53:41.0032 0x074c  uagp35 - ok
08:53:41.0063 0x074c  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
08:53:41.0079 0x074c  udfs - ok
08:53:41.0126 0x074c  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\windows\system32\UI0Detect.exe
08:53:41.0126 0x074c  UI0Detect - ok
08:53:41.0204 0x074c  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
08:53:41.0219 0x074c  uliagpkx - ok
08:53:41.0266 0x074c  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\windows\system32\DRIVERS\umbus.sys
08:53:41.0266 0x074c  umbus - ok
08:53:41.0313 0x074c  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\windows\system32\drivers\umpass.sys
08:53:41.0328 0x074c  UmPass - ok
08:53:41.0609 0x074c  [ 7E5E1603D0FF2D240AE70295C5C3FEFC, 1E5F8E415ACE3C6DFBE636473DBE051329174F2A085516B6FC1515A54014D02B ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
08:53:41.0672 0x074c  UNS - ok
08:53:41.0781 0x074c  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\windows\System32\upnphost.dll
08:53:41.0812 0x074c  upnphost - ok
08:53:41.0874 0x074c  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\windows\system32\Drivers\usbaapl64.sys
08:53:41.0874 0x074c  USBAAPL64 - ok
08:53:41.0984 0x074c  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\windows\system32\drivers\usbaudio.sys
08:53:41.0984 0x074c  usbaudio - ok
08:53:42.0030 0x074c  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys
08:53:42.0046 0x074c  usbccgp - ok
08:53:42.0093 0x074c  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\windows\system32\drivers\usbcir.sys
08:53:42.0108 0x074c  usbcir - ok
08:53:42.0171 0x074c  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\windows\system32\drivers\usbehci.sys
08:53:42.0171 0x074c  usbehci - ok
08:53:42.0233 0x074c  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
08:53:42.0264 0x074c  usbhub - ok
08:53:42.0280 0x074c  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\windows\system32\drivers\usbohci.sys
08:53:42.0280 0x074c  usbohci - ok
08:53:42.0342 0x074c  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\windows\system32\DRIVERS\usbprint.sys
08:53:42.0342 0x074c  usbprint - ok
08:53:42.0389 0x074c  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\windows\system32\DRIVERS\usbscan.sys
08:53:42.0389 0x074c  usbscan - ok
08:53:42.0436 0x074c  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
08:53:42.0436 0x074c  USBSTOR - ok
08:53:42.0498 0x074c  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\windows\system32\drivers\usbuhci.sys
08:53:42.0514 0x074c  usbuhci - ok
08:53:42.0561 0x074c  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\windows\System32\Drivers\usbvideo.sys
08:53:42.0576 0x074c  usbvideo - ok
08:53:42.0608 0x074c  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\windows\System32\uxsms.dll
08:53:42.0623 0x074c  UxSms - ok
08:53:42.0701 0x074c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\windows\system32\lsass.exe
08:53:42.0701 0x074c  VaultSvc - ok
08:53:42.0764 0x074c  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
08:53:42.0764 0x074c  vdrvroot - ok
08:53:42.0842 0x074c  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\windows\System32\vds.exe
08:53:42.0857 0x074c  vds - ok
08:53:42.0904 0x074c  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
08:53:42.0904 0x074c  vga - ok
08:53:42.0920 0x074c  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\windows\System32\drivers\vga.sys
08:53:42.0920 0x074c  VgaSave - ok
08:53:43.0013 0x074c  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\windows\system32\drivers\vhdmp.sys
08:53:43.0029 0x074c  vhdmp - ok
08:53:43.0076 0x074c  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\windows\system32\drivers\viaide.sys
08:53:43.0091 0x074c  viaide - ok
08:53:43.0122 0x074c  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\windows\system32\drivers\volmgr.sys
08:53:43.0138 0x074c  volmgr - ok
08:53:43.0216 0x074c  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
08:53:43.0247 0x074c  volmgrx - ok
08:53:43.0356 0x074c  [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap         C:\windows\system32\drivers\volsnap.sys
08:53:43.0372 0x074c  volsnap - ok
08:53:43.0403 0x074c  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
08:53:43.0419 0x074c  vsmraid - ok
08:53:43.0575 0x074c  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\windows\system32\vssvc.exe
08:53:43.0606 0x074c  VSS - ok
08:53:43.0622 0x074c  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys
08:53:43.0622 0x074c  vwifibus - ok
08:53:43.0653 0x074c  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
08:53:43.0653 0x074c  vwififlt - ok
08:53:43.0684 0x074c  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
08:53:43.0684 0x074c  vwifimp - ok
08:53:43.0731 0x074c  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\windows\system32\w32time.dll
08:53:43.0746 0x074c  W32Time - ok
08:53:43.0762 0x074c  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\windows\system32\drivers\wacompen.sys
08:53:43.0762 0x074c  WacomPen - ok
08:53:43.0840 0x074c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
08:53:43.0840 0x074c  WANARP - ok
08:53:43.0856 0x074c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
08:53:43.0871 0x074c  Wanarpv6 - ok
08:53:44.0121 0x074c  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
08:53:44.0136 0x074c  WatAdminSvc - ok
08:53:44.0324 0x074c  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\windows\system32\wbengine.exe
08:53:44.0355 0x074c  wbengine - ok
08:53:44.0370 0x074c  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
08:53:44.0370 0x074c  WbioSrvc - ok
08:53:44.0417 0x074c  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\windows\System32\wcncsvc.dll
08:53:44.0417 0x074c  wcncsvc - ok
08:53:44.0448 0x074c  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
08:53:44.0448 0x074c  WcsPlugInService - ok
08:53:44.0480 0x074c  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\windows\system32\drivers\wd.sys
08:53:44.0480 0x074c  Wd - ok
08:53:44.0573 0x074c  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
08:53:44.0589 0x074c  Wdf01000 - ok
08:53:44.0620 0x074c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\windows\system32\wdi.dll
08:53:44.0636 0x074c  WdiServiceHost - ok
08:53:44.0651 0x074c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\windows\system32\wdi.dll
08:53:44.0667 0x074c  WdiSystemHost - ok
08:53:44.0714 0x074c  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\windows\System32\webclnt.dll
08:53:44.0745 0x074c  WebClient - ok
08:53:44.0760 0x074c  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\windows\system32\wecsvc.dll
08:53:44.0776 0x074c  Wecsvc - ok
08:53:44.0792 0x074c  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\windows\System32\wercplsupport.dll
08:53:44.0792 0x074c  wercplsupport - ok
08:53:44.0838 0x074c  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\windows\System32\WerSvc.dll
08:53:44.0854 0x074c  WerSvc - ok
08:53:44.0901 0x074c  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
08:53:44.0901 0x074c  WfpLwf - ok
08:53:44.0932 0x074c  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\windows\system32\drivers\wimmount.sys
08:53:44.0932 0x074c  WIMMount - ok
08:53:44.0979 0x074c  WinDefend - ok
08:53:45.0026 0x074c  WinHttpAutoProxySvc - ok
08:53:45.0088 0x074c  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
08:53:45.0104 0x074c  Winmgmt - ok
08:53:45.0275 0x074c  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\windows\system32\WsmSvc.dll
08:53:45.0322 0x074c  WinRM - ok
08:53:45.0384 0x074c  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
08:53:45.0384 0x074c  WinUsb - ok
08:53:45.0478 0x074c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\windows\System32\wlansvc.dll
08:53:45.0494 0x074c  Wlansvc - ok
08:53:45.0603 0x074c  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
08:53:45.0618 0x074c  wlcrasvc - ok
08:53:45.0899 0x074c  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
08:53:45.0930 0x074c  wlidsvc - ok
08:53:45.0962 0x074c  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\windows\system32\DRIVERS\wmiacpi.sys
08:53:45.0962 0x074c  WmiAcpi - ok
08:53:46.0040 0x074c  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
08:53:46.0055 0x074c  wmiApSrv - ok
08:53:46.0086 0x074c  WMPNetworkSvc - ok
08:53:46.0118 0x074c  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\windows\System32\wpcsvc.dll
08:53:46.0133 0x074c  WPCSvc - ok
08:53:46.0164 0x074c  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
08:53:46.0180 0x074c  WPDBusEnum - ok
08:53:46.0227 0x074c  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
08:53:46.0227 0x074c  ws2ifsl - ok
08:53:46.0289 0x074c  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\windows\System32\wscsvc.dll
08:53:46.0289 0x074c  wscsvc - ok
08:53:46.0352 0x074c  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice  C:\windows\system32\DRIVERS\WSDPrint.sys
08:53:46.0352 0x074c  WSDPrintDevice - ok
08:53:46.0414 0x074c  [ 4A2A5C50DD1A63577D3ACA94269FBC7F, F75C1906D431CF871AD954218DF32A0F206E45FF49332DEF9F13C0A36A407047 ] WSDScan         C:\windows\system32\DRIVERS\WSDScan.sys
08:53:46.0414 0x074c  WSDScan - ok
08:53:46.0430 0x074c  WSearch - ok
08:53:46.0710 0x074c  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\windows\system32\wuaueng.dll
08:53:46.0742 0x074c  wuauserv - ok
08:53:46.0788 0x074c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
08:53:46.0788 0x074c  WudfPf - ok
08:53:46.0882 0x074c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
08:53:46.0913 0x074c  WUDFRd - ok
08:53:46.0944 0x074c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
08:53:46.0960 0x074c  wudfsvc - ok
08:53:47.0116 0x074c  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\windows\System32\wwansvc.dll
08:53:47.0132 0x074c  WwanSvc - ok
08:53:47.0163 0x074c  ZTEusbmdm6k - ok
08:53:47.0163 0x074c  ZTEusbnmea - ok
08:53:47.0210 0x074c  ZTEusbser6k - ok
08:53:47.0241 0x074c  ================ Scan global ===============================
08:53:47.0303 0x074c  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\windows\system32\basesrv.dll
08:53:47.0366 0x074c  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
08:53:47.0397 0x074c  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
08:53:47.0444 0x074c  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\windows\system32\sxssrv.dll
08:53:47.0506 0x074c  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\windows\system32\services.exe
08:53:47.0522 0x074c  [ Global ] - ok
08:53:47.0522 0x074c  ================ Scan MBR ==================================
08:53:47.0568 0x074c  [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
08:53:47.0880 0x074c  \Device\Harddisk0\DR0 - ok
08:53:47.0880 0x074c  ================ Scan VBR ==================================
08:53:47.0912 0x074c  [ EE24385A61C84161E0B259D0105DA364 ] \Device\Harddisk0\DR0\Partition1
08:53:47.0912 0x074c  \Device\Harddisk0\DR0\Partition1 - ok
08:53:47.0912 0x074c  ================ Scan active images ========================
08:53:47.0927 0x074c  [ 3E588B60EC061686BA05D33574A344C6, 19D2D863F95CCC4493A2328B6BEB04248B6A80F957532E58C1D1D868C19FDCCB ] C:\Windows\System32\drivers\crashdmp.sys
08:53:47.0927 0x074c  C:\Windows\System32\drivers\crashdmp.sys - ok
08:53:47.0927 0x074c  [ D469B77687E12FE43E344806740B624D, DFDD486FD040813BF4E5DDB504CF9E0BFBF6D4E540DDDA4829F9B675ACF63E89 ] C:\Windows\System32\drivers\iaStor.sys
08:53:47.0927 0x074c  C:\Windows\System32\drivers\iaStor.sys - ok
08:53:47.0927 0x074c  [ 814DB88F2641691575A455CF25354098, 79C50F0CD72612733217A0316BEFEA0B6D819C3159D9452EAB89AC26A18A0F89 ] C:\Windows\System32\drivers\dumpfve.sys
08:53:47.0927 0x074c  C:\Windows\System32\drivers\dumpfve.sys - ok
08:53:47.0927 0x074c  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] C:\Windows\System32\drivers\cdrom.sys
08:53:47.0927 0x074c  C:\Windows\System32\drivers\cdrom.sys - ok
08:53:47.0927 0x074c  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] C:\Windows\System32\drivers\null.sys
08:53:47.0927 0x074c  C:\Windows\System32\drivers\null.sys - ok
08:53:47.0927 0x074c  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] C:\Windows\System32\drivers\beep.sys
08:53:47.0927 0x074c  C:\Windows\System32\drivers\beep.sys - ok
08:53:47.0927 0x074c  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] C:\Windows\System32\drivers\vga.sys
08:53:47.0927 0x074c  C:\Windows\System32\drivers\vga.sys - ok
08:53:47.0943 0x074c  [ E7353D59C9842BC7299FAEB7E7E09340, C37ED1025E07BAC2F535DCFED6C6C509515D95722EADE5AF94F1FC5D8B1DC783 ] C:\Windows\System32\drivers\videoprt.sys
08:53:47.0943 0x074c  C:\Windows\System32\drivers\videoprt.sys - ok
08:53:47.0943 0x074c  [ FC438D1430B28618E2D0C7C332A710AD, 873957B202E454E2C8F625E5799F278CAC16EC5EEAEE2C33E2FE5D1FF0408CB2 ] C:\Windows\System32\drivers\watchdog.sys
08:53:47.0943 0x074c  C:\Windows\System32\drivers\watchdog.sys - ok
08:53:47.0943 0x074c  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] C:\Windows\System32\drivers\RDPCDD.sys
08:53:47.0943 0x074c  C:\Windows\System32\drivers\RDPCDD.sys - ok
08:53:47.0943 0x074c  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] C:\Windows\System32\drivers\RDPENCDD.sys
08:53:47.0943 0x074c  C:\Windows\System32\drivers\RDPENCDD.sys - ok
08:53:47.0943 0x074c  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] C:\Windows\System32\drivers\RDPREFMP.sys
08:53:47.0943 0x074c  C:\Windows\System32\drivers\RDPREFMP.sys - ok
08:53:47.0943 0x074c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] C:\Windows\System32\drivers\msfs.sys
08:53:47.0943 0x074c  C:\Windows\System32\drivers\msfs.sys - ok
08:53:47.0943 0x074c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] C:\Windows\System32\drivers\npfs.sys
08:53:47.0943 0x074c  C:\Windows\System32\drivers\npfs.sys - ok
08:53:47.0958 0x074c  [ 6F020A220388ECA0AB6062DC27BD16B6, 48655230E482DEB7B4B50EF05818EBB29CA61E780AEFCD9D31B02DE4DF9D9540 ] C:\Windows\System32\drivers\tdi.sys
08:53:47.0958 0x074c  C:\Windows\System32\drivers\tdi.sys - ok
08:53:47.0958 0x074c  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] C:\Windows\System32\drivers\tdx.sys
08:53:47.0958 0x074c  C:\Windows\System32\drivers\tdx.sys - ok
08:53:47.0958 0x074c  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] C:\Windows\System32\drivers\netbt.sys
08:53:47.0958 0x074c  C:\Windows\System32\drivers\netbt.sys - ok
08:53:47.0958 0x074c  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] C:\Windows\System32\drivers\afd.sys
08:53:47.0958 0x074c  C:\Windows\System32\drivers\afd.sys - ok
08:53:47.0958 0x074c  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] C:\Windows\System32\drivers\wfplwf.sys
08:53:47.0958 0x074c  C:\Windows\System32\drivers\wfplwf.sys - ok
08:53:47.0958 0x074c  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] C:\Windows\System32\drivers\pacer.sys
08:53:47.0958 0x074c  C:\Windows\System32\drivers\pacer.sys - ok
08:53:47.0974 0x074c  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] C:\Windows\System32\drivers\vwififlt.sys
08:53:47.0974 0x074c  C:\Windows\System32\drivers\vwififlt.sys - ok
08:53:47.0974 0x074c  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] C:\Windows\System32\drivers\netbios.sys
08:53:47.0974 0x074c  C:\Windows\System32\drivers\netbios.sys - ok
08:53:47.0974 0x074c  [ 9E4E65EA51E34647340BD6007467AC54, D4FD658250298AE52959009C7DB031A7D82E48088DB5D94E6D3F990058B9D75E ] C:\Windows\System32\drivers\tosrfcom.sys
08:53:47.0974 0x074c  C:\Windows\System32\drivers\tosrfcom.sys - ok
08:53:47.0974 0x074c  [ F8B7C333CAB63140B617C91BE75A5AB2, F35220AA537E02F58D1736E85D9AFF2D532BEEDCE3A7E748EF2F1A00CC87B089 ] C:\Windows\System32\drivers\tmevtmgr.sys
08:53:47.0974 0x074c  C:\Windows\System32\drivers\tmevtmgr.sys - ok
08:53:47.0974 0x074c  [ C2E4842327230ABF1D099C85B8843A65, 5E7EE4FC04FDEEF70B582B6B27C16C3D3A92FEE0EFEE4308DAFC2821226F9DE2 ] C:\Windows\System32\drivers\tmactmon.sys
08:53:47.0974 0x074c  C:\Windows\System32\drivers\tmactmon.sys - ok
08:53:47.0974 0x074c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] C:\Windows\System32\drivers\wanarp.sys
08:53:47.0974 0x074c  C:\Windows\System32\drivers\wanarp.sys - ok
08:53:47.0990 0x074c  [ 48951FBFFFCAE52FADFCDFB76ED19749, A0D4B3944DCB8583864A5DC61C0FF7F437409FC4F3437DD3A83E62D9F22BDB25 ] C:\Windows\System32\drivers\tmtdi.sys
08:53:47.0990 0x074c  C:\Windows\System32\drivers\tmtdi.sys - ok
08:53:47.0990 0x074c  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] C:\Windows\System32\drivers\termdd.sys
08:53:47.0990 0x074c  C:\Windows\System32\drivers\termdd.sys - ok
08:53:47.0990 0x074c  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] C:\Windows\System32\drivers\rdbss.sys
08:53:47.0990 0x074c  C:\Windows\System32\drivers\rdbss.sys - ok
08:53:47.0990 0x074c  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] C:\Windows\System32\drivers\nsiproxy.sys
08:53:47.0990 0x074c  C:\Windows\System32\drivers\nsiproxy.sys - ok
08:53:47.0990 0x074c  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] C:\Windows\System32\drivers\mssmbios.sys
08:53:47.0990 0x074c  C:\Windows\System32\drivers\mssmbios.sys - ok
08:53:47.0990 0x074c  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] C:\Windows\System32\drivers\discache.sys
08:53:47.0990 0x074c  C:\Windows\System32\drivers\discache.sys - ok
08:53:47.0990 0x074c  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] C:\Windows\System32\drivers\dfsc.sys
08:53:47.0990 0x074c  C:\Windows\System32\drivers\dfsc.sys - ok
08:53:48.0005 0x074c  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] C:\Windows\System32\drivers\blbdrive.sys
08:53:48.0005 0x074c  C:\Windows\System32\drivers\blbdrive.sys - ok
08:53:48.0005 0x074c  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] C:\Windows\System32\drivers\tunnel.sys
08:53:48.0005 0x074c  C:\Windows\System32\drivers\tunnel.sys - ok
08:53:48.0005 0x074c  [ CAAAC014C5C56A69F710B5F1B836DE22, DA98EF2EBF9A7F180344A88CC2C74F69101E17BBAB58B1C46176FD6EE7AA2E6A ] C:\Windows\System32\ntdll.dll
08:53:48.0005 0x074c  C:\Windows\System32\ntdll.dll - ok
08:53:48.0005 0x074c  [ F0970A4BC8395659C22BF53D0FADF16F, 23BE3066D89A5ACBF8130899640D377476E78B6C3D19E2D13C32238464A83E21 ] C:\Windows\System32\smss.exe
08:53:48.0005 0x074c  C:\Windows\System32\smss.exe - ok
08:53:48.0005 0x074c  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93, 7BC847CE6C2D29C334F0D1600BBBDE3933FF45F6BEE5186F442E6270A3F9EC4E ] C:\Windows\System32\autochk.exe
08:53:48.0005 0x074c  C:\Windows\System32\autochk.exe - ok
08:53:48.0005 0x074c  [ 830886C8D7C17710F615C5705C41C9EA, 273B599D8D8A78DFDA09B6D1B2E18B4EB33954EFC886BBF23D0B389B0A37D783 ] C:\Windows\System32\drivers\nvlddmkm.sys
08:53:48.0005 0x074c  C:\Windows\System32\drivers\nvlddmkm.sys - ok
08:53:48.0005 0x074c  [ 5864E945660D27ECA610DF01F528FCEF, 327478FEBA6A70A0FB453057ED1FFF822CEB27434EE614590A6BABFF82F8A411 ] C:\Windows\System32\drivers\nvBridge.kmd
08:53:48.0005 0x074c  C:\Windows\System32\drivers\nvBridge.kmd - ok
08:53:48.0021 0x074c  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] C:\Windows\System32\drivers\dxgkrnl.sys
08:53:48.0021 0x074c  C:\Windows\System32\drivers\dxgkrnl.sys - ok
08:53:48.0021 0x074c  [ 1F04CFB79DD5FB7694468CE3FB3DCC31, A40C0BF6D1EC6C4281611A830EA7B22FEF523A3E197E5A8F59332D64E90376B6 ] C:\Windows\System32\drivers\dxgmms1.sys
08:53:48.0021 0x074c  C:\Windows\System32\drivers\dxgmms1.sys - ok
08:53:48.0021 0x074c  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] C:\Windows\System32\drivers\hdaudbus.sys
08:53:48.0021 0x074c  C:\Windows\System32\drivers\hdaudbus.sys - ok
08:53:48.0021 0x074c  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] C:\Windows\System32\drivers\HECIx64.sys
08:53:48.0021 0x074c  C:\Windows\System32\drivers\HECIx64.sys - ok
08:53:48.0021 0x074c  [ 9835E63E09F824D22B689D2BB789BAB9, 5BCFFAFB894D69FBCDDB91E64D30A356F4BD57098E8B4C51B98AFAF6581BDB63 ] C:\Windows\System32\comdlg32.dll
08:53:48.0021 0x074c  C:\Windows\System32\comdlg32.dll - ok
08:53:48.0021 0x074c  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] C:\Windows\System32\drivers\usbehci.sys
08:53:48.0021 0x074c  C:\Windows\System32\drivers\usbehci.sys - ok
08:53:48.0021 0x074c  [ 12FEB33791920678F8433701C822BCFD, 7D1AD944CF0532D5AF951ACCE064EA9288F068964603674854CD7658D2B96039 ] C:\Windows\System32\drivers\usbport.sys
08:53:48.0021 0x074c  C:\Windows\System32\drivers\usbport.sys - ok
08:53:48.0036 0x074c  [ D40A13B2C0891E218F9523B376955DB6, 9A2AAAF960868B860A65579EAD507B35C64CFD6C3581F8D731ADF975F778D10E ] C:\Windows\System32\drivers\nusb3xhc.sys
08:53:48.0036 0x074c  C:\Windows\System32\drivers\nusb3xhc.sys - ok
08:53:48.0036 0x074c  [ FFA06EF43987ED0DD42AD59B260C0C78, 260518D5E077E55E0F2099037DBEFA93016FD4D4655456DDB3147AF9CBE7BF6B ] C:\Windows\System32\drivers\usbd.sys
08:53:48.0036 0x074c  C:\Windows\System32\drivers\usbd.sys - ok
08:53:48.0036 0x074c  [ F220BA78AB542C70211D73AE4729B2CD, D65C624277BA7FAA84579B29DD42852856F7BFAE82FD7A8CAFBB3E5F3E550CEC ] C:\Windows\System32\wininet.dll
08:53:48.0036 0x074c  C:\Windows\System32\wininet.dll - ok
08:53:48.0036 0x074c  [ C06B32165E23A72A898B7A89679AD754, 721405158F6E9F1A7FE7BB33EF642D91332726629D0D3B07DF3CF3152A91C85D ] C:\Windows\System32\oleaut32.dll
08:53:48.0036 0x074c  C:\Windows\System32\oleaut32.dll - ok
08:53:48.0036 0x074c  [ B2931C83CFB12A3223A47B180473AE1A, D9089E0D4AB82F4F5FCD6A82F446504E7968EA6A09B55190F68EB8A09F6CFE78 ] C:\Windows\System32\drivers\athrx.sys
08:53:48.0036 0x074c  C:\Windows\System32\drivers\athrx.sys - ok
08:53:48.0036 0x074c  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5, 12130837D7F89A2C7E9D25747A8E5B9001E0A38D545178B49B450C23AE62664A ] C:\Windows\System32\setupapi.dll
08:53:48.0036 0x074c  C:\Windows\System32\setupapi.dll - ok
08:53:48.0052 0x074c  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] C:\Windows\System32\drivers\vwifibus.sys
08:53:48.0052 0x074c  C:\Windows\System32\drivers\vwifibus.sys - ok
08:53:48.0052 0x074c  [ 4E4FFB09D895AA000DD56D1404F69A7E, D999E04BB35780088480EAB322176570591A21E311D204BDCAB010A63B34D24C ] C:\Windows\System32\Wldap32.dll
08:53:48.0052 0x074c  C:\Windows\System32\Wldap32.dll - ok
08:53:48.0052 0x074c  [ EBED8B3FF4A823C1A6EEBEED7B29353F, 0942200EEDEDA1FF4E634CDC5182D8EDC9BC9F66E89A5DAB8DF82C3FBB2F0D59 ] C:\Windows\System32\drivers\L1C62x64.sys
08:53:48.0052 0x074c  C:\Windows\System32\drivers\L1C62x64.sys - ok
08:53:48.0052 0x074c  [ B4F29F65AD3114051F01E9403346047F, 7EB58545211C51E95B3F45C47C1F7CCE05B707D168E7C20F46D36E19EE3D8DFC ] C:\Windows\System32\imagehlp.dll
08:53:48.0052 0x074c  C:\Windows\System32\imagehlp.dll - ok
08:53:48.0052 0x074c  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] C:\Windows\System32\drivers\i8042prt.sys
08:53:48.0052 0x074c  C:\Windows\System32\drivers\i8042prt.sys - ok
08:53:48.0052 0x074c  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] C:\Windows\System32\drivers\kbdclass.sys
08:53:48.0052 0x074c  C:\Windows\System32\drivers\kbdclass.sys - ok
08:53:48.0068 0x074c  [ D2A513EE880D71BDE7F0257F38B9D019, 7BDBFEA312061C0498E4C09EF5E4B3AAA23309E7448028F67EAA6F8F7188E871 ] C:\Windows\System32\kernel32.dll
08:53:48.0068 0x074c  C:\Windows\System32\kernel32.dll - ok
08:53:48.0068 0x074c  [ F5B46DF59FEAA48A442AED7EEB754D4B, 8415FDD5E7B4D4819BB9B0937CDF254548C871045787958BCF708096204B1714 ] C:\Windows\System32\drivers\SynTP.sys
08:53:48.0068 0x074c  C:\Windows\System32\drivers\SynTP.sys - ok
08:53:48.0068 0x074c  [ 1F8534A19A66275C863DE17645CB2A13, CA1DEEB1545E56EAA6CAABDF9F5950B414DEA85AB5E7D968505157345F34DC50 ] C:\Windows\System32\iertutil.dll
08:53:48.0068 0x074c  C:\Windows\System32\iertutil.dll - ok
08:53:48.0068 0x074c  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] C:\Windows\System32\drivers\mouclass.sys
08:53:48.0068 0x074c  C:\Windows\System32\drivers\mouclass.sys - ok
08:53:48.0068 0x074c  [ FD542B661BD22FA69CA789AD0AC58C29, 75FFAF1834B1E22DF37608ED451F161052FF1FE3C681B4E20A68DCA92CC7FD8C ] C:\Windows\System32\drivers\tdcmdpst.sys
08:53:48.0068 0x074c  C:\Windows\System32\drivers\tdcmdpst.sys - ok
08:53:48.0068 0x074c  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] C:\Windows\System32\drivers\GEARAspiWDM.sys
08:53:48.0068 0x074c  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
08:53:48.0068 0x074c  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] C:\Windows\System32\drivers\intelppm.sys
08:53:48.0068 0x074c  C:\Windows\System32\drivers\intelppm.sys - ok
08:53:48.0083 0x074c  [ FE70103391A64039A921DBFFF9C7AB1B, F7D219D75037BC98F6C69143B00AB6000A31F8B5E211E0AF514F4F4B681522A0 ] C:\Windows\System32\user32.dll
08:53:48.0083 0x074c  C:\Windows\System32\user32.dll - ok
08:53:48.0083 0x074c  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] C:\Windows\System32\drivers\CmBatt.sys
08:53:48.0083 0x074c  C:\Windows\System32\drivers\CmBatt.sys - ok
08:53:48.0083 0x074c  [ F5E3AC4CBCD154EE80849B21887FD0B0, 7D68AF88F1B01BCA6456FBAEB91580419A49A77D31EFC0BA6A1C50301899BA03 ] C:\Windows\System32\drivers\tosrfec.sys
08:53:48.0083 0x074c  C:\Windows\System32\drivers\tosrfec.sys - ok
08:53:48.0083 0x074c  [ C8FCB4899F8B70CC34E0D9876A80963C, E4CFC69C3EE1BC5C0FFF96CE034EAD8DD9727DA165A790CB57979AA0A6CEE350 ] C:\Windows\System32\drivers\QIOMem.sys
08:53:48.0083 0x074c  C:\Windows\System32\drivers\QIOMem.sys - ok
08:53:48.0083 0x074c  [ 9C7191F4B2E49BFF47A6C1144B5923FA, DF4E663499946F4E68B7528CA399574D1EB69797FF81F681943B84F3E5E6A40E ] C:\Windows\System32\drivers\TVALZFL.sys
08:53:48.0083 0x074c  C:\Windows\System32\drivers\TVALZFL.sys - ok
08:53:48.0083 0x074c  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] C:\Windows\System32\drivers\wmiacpi.sys
08:53:48.0083 0x074c  C:\Windows\System32\drivers\wmiacpi.sys - ok
08:53:48.0099 0x074c  [ D87E1E59C73C1F98D5DED5B3850C40F5, 536419BFF9F877D4314B5D0C045D9A6E729489C389863FADF07E382050BC84FD ] C:\Windows\System32\psapi.dll
08:53:48.0099 0x074c  C:\Windows\System32\psapi.dll - ok
08:53:48.0099 0x074c  [ 2347ABBD13BADA65826FDAB4CAAFE357, EA11668ECC7F92287C5B570DBF5629A80269E79AC256F5AF0984D8B270010BAE ] C:\Windows\System32\drivers\btfilter.sys
08:53:48.0099 0x074c  C:\Windows\System32\drivers\btfilter.sys - ok
08:53:48.0099 0x074c  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] C:\Windows\System32\drivers\CompositeBus.sys
08:53:48.0099 0x074c  C:\Windows\System32\drivers\CompositeBus.sys - ok
08:53:48.0099 0x074c  [ 32417AE8280276968E5C551ED85D3525, 8DF450B6CBBDB65A71B2849EDA57711BC7AF54A31335013F30EDD43E5449961A ] C:\Windows\System32\urlmon.dll
08:53:48.0099 0x074c  C:\Windows\System32\urlmon.dll - ok
08:53:48.0099 0x074c  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] C:\Windows\System32\drivers\agilevpn.sys
08:53:48.0099 0x074c  C:\Windows\System32\drivers\agilevpn.sys - ok
08:53:48.0099 0x074c  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] C:\Windows\System32\drivers\rasl2tp.sys
08:53:48.0099 0x074c  C:\Windows\System32\drivers\rasl2tp.sys - ok
08:53:48.0099 0x074c  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] C:\Windows\System32\drivers\ndistapi.sys
08:53:48.0099 0x074c  C:\Windows\System32\drivers\ndistapi.sys - ok
08:53:48.0114 0x074c  [ C431EAF5CAA1C82CAC2534A2EAB348A3, ADDF850128DC675E67FABA9A3D0D27E684F01F733962CA22927BB94503549E44 ] C:\Windows\System32\msctf.dll
08:53:48.0114 0x074c  C:\Windows\System32\msctf.dll - ok
08:53:48.0114 0x074c  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] C:\Windows\System32\drivers\ndiswan.sys
08:53:48.0114 0x074c  C:\Windows\System32\drivers\ndiswan.sys - ok
08:53:48.0114 0x074c  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] C:\Windows\System32\drivers\raspppoe.sys
08:53:48.0114 0x074c  C:\Windows\System32\drivers\raspppoe.sys - ok
08:53:48.0114 0x074c  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] C:\Windows\System32\drivers\raspptp.sys
08:53:48.0114 0x074c  C:\Windows\System32\drivers\raspptp.sys - ok
08:53:48.0114 0x074c  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] C:\Windows\System32\drivers\rassstp.sys
08:53:48.0114 0x074c  C:\Windows\System32\drivers\rassstp.sys - ok
08:53:48.0114 0x074c  [ 25983DE69B57142039AC8D95E71CD9C9, A677DA7EBCBCB6073D27E8A38809F51E971E83ED379BC599AAAD6EF4216348DA ] C:\Windows\System32\clbcatq.dll
08:53:48.0114 0x074c  C:\Windows\System32\clbcatq.dll - ok
08:53:48.0114 0x074c  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] C:\Windows\System32\drivers\serscan.sys
08:53:48.0114 0x074c  C:\Windows\System32\drivers\serscan.sys - ok
08:53:48.0130 0x074c  [ 796B47A4B82EF1C39F13435B88834C48, AFC3E89476BAAD8A71663F0DB8D15E00FF9D131F1306A2F69D728E3AD1184602 ] C:\Windows\System32\lpk.dll
08:53:48.0130 0x074c  C:\Windows\System32\lpk.dll - ok
08:53:48.0130 0x074c  [ 91111CEBBDE8015E822C46120ED9537C, 255B85FEF663C2E0652CECF3F9B67B12B576F924A34415DEE13F0F5137E1E7F7 ] C:\Windows\System32\drivers\PGEffect.sys
08:53:48.0130 0x074c  C:\Windows\System32\drivers\PGEffect.sys - ok
08:53:48.0130 0x074c  [ 24FBF5CC5C04150073C315A7C83521EE, 581BD5F15B5E57B3BAA762E421FFD859FDA46DDB8515C2A7AAFF208D784E906C ] C:\Windows\System32\drivers\ks.sys
08:53:48.0130 0x074c  C:\Windows\System32\drivers\ks.sys - ok
08:53:48.0130 0x074c  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] C:\Windows\System32\drivers\ksthunk.sys
08:53:48.0130 0x074c  C:\Windows\System32\drivers\ksthunk.sys - ok
08:53:48.0130 0x074c  [ 56325BB1FF19F2A5AC8713756AC41140, B2124E57783312EE37D2621E689D8FB4C43A04BDBD4F481225C21038605A28CE ] C:\Windows\System32\gdi32.dll
08:53:48.0130 0x074c  C:\Windows\System32\gdi32.dll - ok
08:53:48.0130 0x074c  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] C:\Windows\System32\drivers\swenum.sys
08:53:48.0130 0x074c  C:\Windows\System32\drivers\swenum.sys - ok
08:53:48.0146 0x074c  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] C:\Windows\System32\drivers\umbus.sys
08:53:48.0146 0x074c  C:\Windows\System32\drivers\umbus.sys - ok
08:53:48.0146 0x074c  [ F7CE0C81C545364020ED8203CF0A633E, 24B47A7492B7048096AF87E26786E8108455ADBD1A374B6A0466DE008505B8A9 ] C:\Windows\System32\difxapi.dll
08:53:48.0146 0x074c  C:\Windows\System32\difxapi.dll - ok
08:53:48.0146 0x074c  [ EAF32CB8C1F810E4715B4DFBE785C7FF, DB6AD07FDED42433E669508AB73FAFF6DAFF04575D6F1D016FE3EB6ECEC4DD5D ] C:\Windows\System32\shlwapi.dll
08:53:48.0146 0x074c  C:\Windows\System32\shlwapi.dll - ok
08:53:48.0146 0x074c  [ C391FC68282A000CDF953F8B6B55D2EF, 1CB0DAB84545D9FDEA5A7865A1E7132CEAC91DECF8B100285B63098D7B09E584 ] C:\Windows\System32\msvcrt.dll
08:53:48.0146 0x074c  C:\Windows\System32\msvcrt.dll - ok
08:53:48.0146 0x074c  [ AA2C08CE85653B1A0D2E4AB407FA176C, 83DFD0C119B20AEDB07114C9D1CF9CE2DFA938D0F1070256B0591A9E2C3997FA ] C:\Windows\System32\imm32.dll
08:53:48.0146 0x074c  C:\Windows\System32\imm32.dll - ok
08:53:48.0146 0x074c  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] C:\Windows\System32\drivers\usbhub.sys
08:53:48.0146 0x074c  C:\Windows\System32\drivers\usbhub.sys - ok
08:53:48.0146 0x074c  [ 427015D56DF17241F634611557146C57, BCDC51FE0D88AA8FB3815B401A682D38F24BE7D9CAC8B9F9588295A66D036DDB ] C:\Windows\System32\shell32.dll
08:53:48.0146 0x074c  C:\Windows\System32\shell32.dll - ok
08:53:48.0161 0x074c  [ 158AD24745BD85BA9BE3C51C38F48C32, B053A3B5A5CAE2CBC47E2C19E636AD70F376334EFFBB391A76562E67CBF3AC86 ] C:\Windows\System32\drivers\nusb3hub.sys
08:53:48.0161 0x074c  C:\Windows\System32\drivers\nusb3hub.sys - ok
08:53:48.0161 0x074c  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] C:\Windows\System32\drivers\ndproxy.sys
08:53:48.0161 0x074c  C:\Windows\System32\drivers\ndproxy.sys - ok
08:53:48.0161 0x074c  [ 4BBFA57F594F7E8A8EDC8F377184C3F0, 9F3AC5DEA5A6250C3DBB97AF79C81C0A48429486521F807355A1D7D3D861B75F ] C:\Windows\System32\ws2_32.dll
08:53:48.0161 0x074c  C:\Windows\System32\ws2_32.dll - ok
08:53:48.0161 0x074c  [ 63A580C88CFAF72A92550940054569EF, A66C89123D1833446ACC31D5CF536B0D0EC24D2F805C022A637596CF98429D9F ] C:\Windows\System32\advapi32.dll
08:53:48.0161 0x074c  C:\Windows\System32\advapi32.dll - ok
08:53:48.0161 0x074c  [ E0D3CD5841E5C7BE7B94BA946AF1E498, 4EAE1B226255623DA41A047633994D6902F6D4CA5757BF5D85E227378336227F ] C:\Windows\System32\drivers\drmk.sys
08:53:48.0161 0x074c  C:\Windows\System32\drivers\drmk.sys - ok
08:53:48.0161 0x074c  [ 857FB74754EBFF94EE3AD40788740916, FE4099D8F2E7967289BBC0802548C48D453A0BD0C44AAACCDB4C282ADBCC7BFE ] C:\Windows\System32\drivers\nvhda64v.sys
08:53:48.0161 0x074c  C:\Windows\System32\drivers\nvhda64v.sys - ok
08:53:48.0177 0x074c  [ 1E0B4CBBA91C6B041A14ECC2186F7E24, 63039A317F906454A0652704DA2D646658A148B9B55BFB5D2F4B27997F357DF9 ] C:\Windows\System32\drivers\portcls.sys
08:53:48.0177 0x074c  C:\Windows\System32\drivers\portcls.sys - ok
08:53:48.0177 0x074c  [ 83404DCBCE4925B6A5A77C5170F46D86, D669614D0B4461DB244AD99FBE1BA92CEB9B4ED5EC8E987E23764E77D9AC7074 ] C:\Windows\System32\sechost.dll
08:53:48.0177 0x074c  C:\Windows\System32\sechost.dll - ok
08:53:48.0177 0x074c  [ 28C0B5024F5C5A438E78B188CFC81B7F, AB81FB63F2908CE316B45609077ACBD85F4B2AAD1606B1E9030F06DB82EDDFAD ] C:\Windows\System32\normaliz.dll
08:53:48.0177 0x074c  C:\Windows\System32\normaliz.dll - ok
08:53:48.0177 0x074c  [ 26036E228D2467DE6975AD819C22C043, B4A30EC7ABAEFFF55DE662F4A17415F2BD737BD563215638C86C580B8F3EA907 ] C:\Windows\System32\rpcrt4.dll
08:53:48.0177 0x074c  C:\Windows\System32\rpcrt4.dll - ok
08:53:48.0177 0x074c  [ 66847C979893A11CFCC2280E772D7EA1, B713745DA46DE58C9772EF5E8641B941F74302A70DBB18DD9207925CAD9AC25D ] C:\Windows\System32\drivers\CHDRT64.sys
08:53:48.0177 0x074c  C:\Windows\System32\drivers\CHDRT64.sys - ok
08:53:48.0177 0x074c  [ 6C60B5ACA7442EFB794082CDACFC001C, FC1D9124856A70FF232EF3057D66BEE803295847624CE23B4D0217F23AF52C75 ] C:\Windows\System32\ole32.dll
08:53:48.0177 0x074c  C:\Windows\System32\ole32.dll - ok
08:53:48.0177 0x074c  [ 044FE45FFD6AD40E3BBBE60B7F41BABE, A1688A5E6E0F7037C850699462C2655006A7D873C97F9AB406C59D81749B6F09 ] C:\Windows\System32\nsi.dll
08:53:48.0177 0x074c  C:\Windows\System32\nsi.dll - ok
08:53:48.0192 0x074c  [ DBF99FD9CAF75CA66D042BD8D050FF71, D11A863EAEDE80A731FD7A63F744E518D3921043CC3982BAA87992F9E82F044F ] C:\Windows\System32\usp10.dll
08:53:48.0192 0x074c  C:\Windows\System32\usp10.dll - ok
08:53:48.0192 0x074c  [ 06FEC9E8117103BB1141A560E98077DA, C5E61B11DDBBBBBA3D9488970524F0975EA5FBDF16E2FA31F579F8BFA48353B1 ] C:\Windows\System32\devobj.dll
08:53:48.0192 0x074c  C:\Windows\System32\devobj.dll - ok
08:53:48.0192 0x074c  [ 780F6ECC4F55D76C9730E6B6C9B31913, 1AEA642AFA210A672A92AAA49CFDE52D9E48ED41248F7644FAADE760E8A0E72E ] C:\Windows\System32\crypt32.dll
08:53:48.0192 0x074c  C:\Windows\System32\crypt32.dll - ok
08:53:48.0192 0x074c  [ 959041D7014C97133D859B45BCA0FC58, 282D34828DA7404470949483CB9789A8B4861D188093F0FBD07138A37F60B94B ] C:\Windows\System32\wintrust.dll
08:53:48.0192 0x074c  C:\Windows\System32\wintrust.dll - ok
08:53:48.0192 0x074c  [ 64A4AB126E24FD3F58EBE64852773DB5, ED425BBC91EB8BEF54C363036A770C551C97EF324F1AE31049CA750D0E2D6776 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
08:53:48.0192 0x074c  C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
08:53:48.0192 0x074c  [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A, 445C2857398252756FD25BB94DAFCCEFF573DE55F1F8BF9094C191F409FE6437 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
08:53:48.0192 0x074c  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
08:53:48.0208 0x074c  [ 9094039A00485F71C4DE64BF51F64C46, 4ACFEF4C747ADF806A4FDEDDFD9CC48168DFB05075306C77D3F3927749DD7484 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
08:53:48.0208 0x074c  C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
08:53:48.0208 0x074c  [ 72723D3E4781BADC62C3180C137E7B23, 0BDA5292928578C5DA79C761E15B8A892B9D4A3DA26D3635E714797C653CF492 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
08:53:48.0208 0x074c  C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
08:53:48.0208 0x074c  [ 9028D1621C43DF8DFBD1C76860412A11, A1D48D9B33180BDE50D2FA9BB07E9520B7B7788C39B3AABB4A06AE4B1AACA755 ] C:\Windows\System32\comctl32.dll
08:53:48.0208 0x074c  C:\Windows\System32\comctl32.dll - ok
08:53:48.0208 0x074c  [ 851BB346CD59D9B3BC8854384C7DD5C3, 0CA1BCBDA6CB8CAC1186B3BE13C3937EDF46264FDFFCEBDF94C7EB10DE957DC6 ] C:\Windows\System32\KernelBase.dll
08:53:48.0208 0x074c  C:\Windows\System32\KernelBase.dll - ok
08:53:48.0208 0x074c  [ F49E92B50CED5C9F1725D3C0329FD933, 6155FA4D8242F07FC578FF746890C2EE19FC3D6A20ED8AE4C6F021DB2DAC184F ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
08:53:48.0208 0x074c  C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
08:53:48.0208 0x074c  [ 0E6FBF19D9DFBB77316C23DF91F8A101, 680F88E1BC55EA3342AACE6F2E3511BF877AC8F03276D028FEE84EEFE8B5611A ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
08:53:48.0208 0x074c  C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
08:53:48.0224 0x074c  [ 597C3699384E53CC59587ED50CCE5CA2, 4F61E9B5BEB3BD1634D733983381E516664BD7E250DF4B0150B168E05EFD652A ] C:\Windows\System32\drivers\hidclass.sys
08:53:48.0224 0x074c  C:\Windows\System32\drivers\hidclass.sys - ok
08:53:48.0224 0x074c  [ 856E76B3641746ABBC2946BED1372098, FD93CC7F72560F72CA49AD5609C079E25B8A3A4802E72B127B63A9E7B4884710 ] C:\Windows\System32\drivers\hidparse.sys
08:53:48.0224 0x074c  C:\Windows\System32\drivers\hidparse.sys - ok
08:53:48.0224 0x074c  [ 2477A28081BDAEE622CF045ACF8EE124, 00A09CAF9129E84FEEA98FA03CE9012C9F961B64FEE15C4F268822C0F82ACC3C ] C:\Windows\System32\cfgmgr32.dll
08:53:48.0224 0x074c  C:\Windows\System32\cfgmgr32.dll - ok
08:53:48.0224 0x074c  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] C:\Windows\System32\drivers\hidusb.sys
08:53:48.0224 0x074c  C:\Windows\System32\drivers\hidusb.sys - ok
08:53:48.0224 0x074c  [ 884415BD4269C02EAF8E2613BF85500D, EFE771709EC942694FD206AC8D0A48ED7DCD35036F074268E4AECD68AC982CEA ] C:\Windows\System32\msasn1.dll
08:53:48.0224 0x074c  C:\Windows\System32\msasn1.dll - ok
08:53:48.0224 0x074c  [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\SysWOW64\normaliz.dll
08:53:48.0224 0x074c  C:\Windows\SysWOW64\normaliz.dll - ok
08:53:48.0224 0x074c  [ 8021F63311797085949FA387F7C83583, 7781994B9F06784807D32FD5A93C5406A441908870B1328BBDA9D15C5DD98C1B ] C:\Windows\System32\drivers\tosporte.sys
08:53:48.0239 0x074c  C:\Windows\System32\drivers\tosporte.sys - ok
08:53:48.0239 0x074c  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] C:\Windows\System32\drivers\mouhid.sys
08:53:48.0239 0x074c  C:\Windows\System32\drivers\mouhid.sys - ok
08:53:48.0239 0x074c  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] C:\Windows\System32\drivers\usbccgp.sys
08:53:48.0239 0x074c  C:\Windows\System32\drivers\usbccgp.sys - ok
08:53:48.0239 0x074c  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] C:\Windows\System32\drivers\usbvideo.sys
08:53:48.0239 0x074c  C:\Windows\System32\drivers\usbvideo.sys - ok
08:53:48.0239 0x074c  [ BF24D6F2ED97FE830BFD52B246F98E67, 6BBF4C4221A245462EF653798F6B416EEB12594AD1CB4E8BC8908A8CB2F53384 ] C:\Windows\System32\drivers\dxapi.sys
08:53:48.0239 0x074c  C:\Windows\System32\drivers\dxapi.sys - ok
08:53:48.0239 0x074c  [ E918C0DE5CF2AE6BEDBF387C09627D93, B45B0CE2BDD41CD46DE2AC76CF7753DF38C29435DCF833B5CFF1DB9329559F3C ] C:\Windows\System32\win32k.sys
08:53:48.0239 0x074c  C:\Windows\System32\win32k.sys - ok
08:53:48.0239 0x074c  [ 60C2862B4BF0FD9F582EF344C2B1EC72, CB1C6018FC5C15483AC5BB96E5C2E2E115BB0C0E1314837D77201BAB37E8C03A ] C:\Windows\System32\csrss.exe
08:53:48.0239 0x074c  C:\Windows\System32\csrss.exe - ok
08:53:48.0255 0x074c  [ 216BABD555BC550952320EEA89C25DDF, 1BBB92415280032CD18F361382A69D0D91266AAD56FC88A99C804B0053743D72 ] C:\Windows\System32\csrsrv.dll
08:53:48.0255 0x074c  C:\Windows\System32\csrsrv.dll - ok
08:53:48.0255 0x074c  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\System32\basesrv.dll
08:53:48.0255 0x074c  C:\Windows\System32\basesrv.dll - ok
08:53:48.0255 0x074c  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\System32\winsrv.dll
08:53:48.0255 0x074c  C:\Windows\System32\winsrv.dll - ok
08:53:48.0255 0x074c  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] C:\Windows\System32\drivers\monitor.sys
08:53:48.0255 0x074c  C:\Windows\System32\drivers\monitor.sys - ok
08:53:48.0255 0x074c  [ F29FE765E1448EF371CFE05BFAC74ADB, F251581222D78543272FD4B14A6A59F4B0E0CC44A5FCBCF56DE4CA5783F78A75 ] C:\Windows\System32\tsddd.dll
08:53:48.0255 0x074c  C:\Windows\System32\tsddd.dll - ok
08:53:48.0255 0x074c  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\System32\sxssrv.dll
08:53:48.0255 0x074c  C:\Windows\System32\sxssrv.dll - ok
08:53:48.0255 0x074c  [ 94355C28C1970635A31B3FE52EB7CEBA, C4E98F07170CEC69CACDD5CEDB8927E48A2A299CB1B8CDA87526E768AF6174F0 ] C:\Windows\System32\wininit.exe
08:53:48.0255 0x074c  C:\Windows\System32\wininit.exe - ok
08:53:48.0270 0x074c  [ 2C942733A5983DD4502219FF37C7EBC7, 34B20B6B0D7274E4B5B783F1D2345BC3DD9888964D5C2C65712F041A00CF5B45 ] C:\Windows\System32\profapi.dll
08:53:48.0270 0x074c  C:\Windows\System32\profapi.dll - ok
08:53:48.0270 0x074c  [ 943F527DF79E6B400104341AA7023C75, 53C7B9426181D3D172E6B1A07E6DF8A0CB8FCA27D3A03CE5F544D3209B5F4651 ] C:\Windows\System32\cdd.dll



#9 sunnynap

sunnynap

    New Member

  • Authentic Member
  • Pip
  • 16 posts

Posted 04 June 2014 - 03:13 PM

08:53:48.0270 0x074c  C:\Windows\System32\cdd.dll - ok
08:53:48.0270 0x074c  [ C2A8CB1275ECB85D246A9ECC02A728E3, 3603FADCA0060BD201148F9D59E4E2627F024609A6463AB525B5D1AD17BDCD10 ] C:\Windows\System32\RpcRtRemote.dll
08:53:48.0270 0x074c  C:\Windows\System32\RpcRtRemote.dll - ok
08:53:48.0270 0x074c  [ 78523A26F5604C0568FE9D1CE86E36F4, 534A7228BF69719106F581616A32EAEF0B770DDB36DCE94F84E7D52FDB1382B5 ] C:\Windows\System32\KBDUS.DLL
08:53:48.0270 0x074c  C:\Windows\System32\KBDUS.DLL - ok
08:53:48.0270 0x074c  [ B26B1801356760841C3BC69F9F91537F, 83B9DF333E36C09E81D44E12AE5BE14650126FDA0CF4A0EA853BF40C5780EF81 ] C:\Windows\System32\WlS0WndH.dll
08:53:48.0270 0x074c  C:\Windows\System32\WlS0WndH.dll - ok
08:53:48.0270 0x074c  [ 9CEAD32E79A62150FE9F8557E58E008B, AFE4C1725EE94D7DE0749AE1495A4E5CC33C369F29B2A589DA66FFE27FF9777E ] C:\Windows\System32\sxs.dll
08:53:48.0270 0x074c  C:\Windows\System32\sxs.dll - ok
08:53:48.0270 0x074c  [ 784FA3DF338E2E8F5F0389D6FAC428AF, 9C8AA0CFDEB9E38AAF8EB08626070E0F0364F4F8A793CFE3532EC6C007980C34 ] C:\Windows\System32\cryptbase.dll
08:53:48.0270 0x074c  C:\Windows\System32\cryptbase.dll - ok
08:53:48.0286 0x074c  [ 90499F3163A9F815CF196A205EA3CD5D, 29B4ED3795CEC1177EB367132914CE21C194CDEC5DB9DC923FD928C85E94D821 ] C:\Windows\System32\apphelp.dll
08:53:48.0286 0x074c  C:\Windows\System32\apphelp.dll - ok
08:53:48.0286 0x074c  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\System32\services.exe
08:53:48.0286 0x074c  C:\Windows\System32\services.exe - ok
08:53:48.0286 0x074c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] C:\Windows\System32\lsass.exe
08:53:48.0286 0x074c  C:\Windows\System32\lsass.exe - ok
08:53:48.0286 0x074c  [ 9662EE182644511439F1C53745DC1C88, D205B2C163E78AB42A5D67D7664EF6B75EA0374FF0924467D624F9DB0611F0AD ] C:\Windows\System32\lsm.exe
08:53:48.0286 0x074c  C:\Windows\System32\lsm.exe - ok
08:53:48.0286 0x074c  [ C072064F95579C0D6D86AF5B3DC53192, CF4A088DF97F4D4963BEAB9CBDBF69FEA2D4773159054A0AF8B8DFFDF83E18DA ] C:\Windows\System32\sspicli.dll
08:53:48.0286 0x074c  C:\Windows\System32\sspicli.dll - ok
08:53:48.0286 0x074c  [ 8098627D0AA1706D69C5AF3F74332ABB, 9582F6162A8405DC568FFBEA08A9090FE92FE2C9DB640077BD7F23AC4FABF700 ] C:\Windows\System32\sspisrv.dll
08:53:48.0286 0x074c  C:\Windows\System32\sspisrv.dll - ok
08:53:48.0302 0x074c  [ 68083118797CAF30FB2EA3E71494D67E, 5F1BCDFCB00A20CD60CBC70A2FD97405EF0F7173DD0E404BBA7B06D39DB37364 ] C:\Windows\System32\sysntfy.dll
08:53:48.0302 0x074c  C:\Windows\System32\sysntfy.dll - ok
08:53:48.0302 0x074c  [ 9358149234A4F3FE00CF5C2096DC1652, 14A9C7102BBF4E4E706BAE13C04F59FAFB2ED5E1D90984C64815310B538F6649 ] C:\Windows\System32\lsasrv.dll
08:53:48.0302 0x074c  C:\Windows\System32\lsasrv.dll - ok
08:53:48.0302 0x074c  [ E914A50A151DFFE63D3935226DB5E2C1, 7DCCE4060344E1C771679F1C20378A0BEB3C1F06DB684072F07B98921A62A299 ] C:\Windows\System32\scext.dll
08:53:48.0302 0x074c  C:\Windows\System32\scext.dll - ok
08:53:48.0302 0x074c  [ 39312B37C5FE5138F99680A49ACD3AEA, B9566B4117FBBECF77A0D3F49E9DF302088B9D483F817720B22E4F9C5754264A ] C:\Windows\System32\secur32.dll
08:53:48.0302 0x074c  C:\Windows\System32\secur32.dll - ok
08:53:48.0302 0x074c  [ DEE7267C5D232A3B816866872CE199E6, A1994FD37667C52E7CBF873514C190DA61A3D1349786D187BFAE0006F61799AE ] C:\Windows\System32\wmsgapi.dll
08:53:48.0302 0x074c  C:\Windows\System32\wmsgapi.dll - ok
08:53:48.0302 0x074c  [ BBCDF350817BA86416C0F06B6981BE8D, D064438F97852B9BD6015C8B19377C61C671E0969E09506B8359FE7B1F373A61 ] C:\Windows\System32\scesrv.dll
08:53:48.0302 0x074c  C:\Windows\System32\scesrv.dll - ok
08:53:48.0317 0x074c  [ 3A9C9BAF610B0DD4967086040B3B62A9, E8E9A0F42B1EE7806EDCEED08AA024D037215D06CA317E3678BD5364AD513D23 ] C:\Windows\System32\srvcli.dll
08:53:48.0317 0x074c  C:\Windows\System32\srvcli.dll - ok
08:53:48.0317 0x074c  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] C:\Windows\System32\aelupsvc.dll
08:53:48.0317 0x074c  C:\Windows\System32\aelupsvc.dll - ok
08:53:48.0317 0x074c  [ 88AB9B72B4BF3963A0DE0820B4B0B06C, 29EFEADCB26E408CD41492FCEC6D411A018099D6FF5ECA9526ED59564975F3E6 ] C:\Windows\System32\winlogon.exe
08:53:48.0317 0x074c  C:\Windows\System32\winlogon.exe - ok
08:53:48.0317 0x074c  [ A744BA6E04C8AA4592818178DBF89521, 9E7C85D842DF16F9B8FED7B06AF309B5ECCBFD465F5552347D4C3F1FEFDC6F7A ] C:\Windows\System32\samsrv.dll
08:53:48.0317 0x074c  C:\Windows\System32\samsrv.dll - ok
08:53:48.0317 0x074c  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] C:\Windows\System32\alg.exe
08:53:48.0317 0x074c  C:\Windows\System32\alg.exe - ok
08:53:48.0317 0x074c  [ 0D9764D58C5EFD672B7184854B152E5E, 9827B43DABBEC39AB2E2294408D9C5304EF27A684903C5234C6070387723D49E ] C:\Windows\System32\winsta.dll
08:53:48.0317 0x074c  C:\Windows\System32\winsta.dll - ok
08:53:48.0317 0x074c  [ 3A061472B38233BAFF9CFEFF2E49C46B, DF29B14C8D22A8A16AA336A09A6152E2C7FCA6CAF4E76F0C5DCB55BEF9D00515 ] C:\Windows\System32\cryptdll.dll
08:53:48.0317 0x074c  C:\Windows\System32\cryptdll.dll - ok
08:53:48.0333 0x074c  [ 3C073B0C596A0AF84933E7406766B040, 4698BBA678F553E15AD4B07AD7FB236281F872DEFEE97BFD637114476C8F97B3 ] C:\Windows\System32\wevtapi.dll
08:53:48.0333 0x074c  C:\Windows\System32\wevtapi.dll - ok
08:53:48.0333 0x074c  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] C:\Windows\System32\appidsvc.dll
08:53:48.0333 0x074c  C:\Windows\System32\appidsvc.dll - ok
08:53:48.0333 0x074c  [ 7FBEBD2229EA5FD48D41B199EC2D541C, A465975D445A8D50CAF3EF29BD33354B320D11173C127BE30D5EBBFF7008CDCE ] C:\Windows\System32\authz.dll
08:53:48.0333 0x074c  C:\Windows\System32\authz.dll - ok
08:53:48.0333 0x074c  [ 86FE1B1F8FD42CD0DB641AB1CDB13093, 8C4BB4415105CE82FFFE658879EAE9D259A24C0F6DFC7D25507352DC99241BE2 ] C:\Windows\System32\cngaudit.dll
08:53:48.0333 0x074c  C:\Windows\System32\cngaudit.dll - ok
08:53:48.0333 0x074c  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] C:\Windows\System32\appinfo.dll
08:53:48.0333 0x074c  C:\Windows\System32\appinfo.dll - ok
08:53:48.0333 0x074c  [ 747B9BA5412422F27934CB21131F0A3E, 2441F925C3B46A15141A0A1E1AA9DFCCA2891D823D55C6E6DA0E30C2DE3A7341 ] C:\Windows\System32\ncrypt.dll
08:53:48.0333 0x074c  C:\Windows\System32\ncrypt.dll - ok
08:53:48.0333 0x074c  [ 3D6AF45673C4B31CDECD7F80AF09D443, 7D711D138C107816155AFA5E5FDC6892734074BEFF604B5904177B5D9ACE4670 ] C:\Windows\System32\rascfg.dll
08:53:48.0333 0x074c  C:\Windows\System32\rascfg.dll - ok
08:53:48.0348 0x074c  [ B9A95365E52F421A20E1501935FADDA5, DDB4CB575139233EFAF2C59B7E9B04AF36BBCCC63190181F3B2A7E6BFC86E77E ] C:\Windows\System32\bcrypt.dll
08:53:48.0348 0x074c  C:\Windows\System32\bcrypt.dll - ok
08:53:48.0348 0x074c  [ 02B64609F865A39365FF88580DF11738, 2F676B93898E1B6131AF6227BB7AB731EB9C29477F9BD4C2C60F0FC1E35CD968 ] C:\Windows\System32\msprivs.dll
08:53:48.0348 0x074c  C:\Windows\System32\msprivs.dll - ok
08:53:48.0348 0x074c  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] C:\Windows\System32\audiosrv.dll
08:53:48.0348 0x074c  C:\Windows\System32\audiosrv.dll - ok
08:53:48.0348 0x074c  [ C6505DE3561537BA1004D638C2F93F2F, 3E4FDF374B1A9E43A8F61FD2D79E0515390ECABFDAF72C4BD44A7B6429039AF6 ] C:\Windows\System32\netjoin.dll
08:53:48.0348 0x074c  C:\Windows\System32\netjoin.dll - ok
08:53:48.0348 0x074c  [ 50532FCD7ECF02DD169CE5C485F02534, 8EE5D9D0EA53DC72BCC300692E521ACADD56AB09BFA3E78149D8B5A90648512C ] C:\Windows\System32\negoexts.dll
08:53:48.0348 0x074c  C:\Windows\System32\negoexts.dll - ok
08:53:48.0348 0x074c  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] C:\Windows\System32\AxInstSv.dll
08:53:48.0348 0x074c  C:\Windows\System32\AxInstSv.dll - ok
08:53:48.0364 0x074c  [ B19C8390A1D641B9AC4490D4828A7B5E, 23F376D3BC09C95D7FE4729EDD907F06A96E4AD296D33588839382224361C0FC ] C:\Windows\System32\kerberos.dll
08:53:48.0364 0x074c  C:\Windows\System32\kerberos.dll - ok
08:53:48.0364 0x074c  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] C:\Windows\System32\bdesvc.dll
08:53:48.0364 0x074c  C:\Windows\System32\bdesvc.dll - ok
08:53:48.0364 0x074c  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] C:\Windows\System32\BFE.DLL
08:53:48.0364 0x074c  C:\Windows\System32\BFE.DLL - ok
08:53:48.0364 0x074c  [ D0C2FBB6D97416B0166478FC7AE2B212, 7EAB6C37F0A845E645CA44CC060AC6C56E386C7EF7A64716C6786C9602AD8C9D ] C:\Windows\System32\cryptsp.dll
08:53:48.0364 0x074c  C:\Windows\System32\cryptsp.dll - ok
08:53:48.0364 0x074c  [ 9A9F9F1A77D6A80EE28B57664F00013E, 0D441638E086EF1342FCDC43E826BF9E9CC6B2E8AE100D89BFC70163F987DE91 ] C:\Windows\System32\mswsock.dll
08:53:48.0364 0x074c  C:\Windows\System32\mswsock.dll - ok
08:53:48.0364 0x074c  [ EC7CBFF96B05ECF3D366355B3C64ADCF, F69ED45EBEDCA9CF000AC03281F0EC2C351F98513FBA90E63394E4E561D6C7A2 ] C:\Windows\System32\wship6.dll
08:53:48.0364 0x074c  C:\Windows\System32\wship6.dll - ok
08:53:48.0364 0x074c  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] C:\Windows\System32\qmgr.dll
08:53:48.0364 0x074c  C:\Windows\System32\qmgr.dll - ok
08:53:48.0380 0x074c  [ E2A483E796D5FC7E447725FD01D98FA0, 78F7F253CE8391A9BD073AC507A55A29B562AFBB0154C2DA8F5E837CA8DE8B79 ] C:\Windows\System32\msv1_0.dll
08:53:48.0380 0x074c  C:\Windows\System32\msv1_0.dll - ok
08:53:48.0380 0x074c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] C:\Windows\System32\browser.dll
08:53:48.0380 0x074c  C:\Windows\System32\browser.dll - ok
08:53:48.0380 0x074c  [ AA339DD8BB128EF66660DFBBB59043D3, 76D9F849AFDDA38E04549EB67B4163478776F1B6EF46434168278F84FEB8FC5C ] C:\Windows\System32\netlogon.dll
08:53:48.0380 0x074c  C:\Windows\System32\netlogon.dll - ok
08:53:48.0380 0x074c  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] C:\Windows\System32\bthserv.dll
08:53:48.0380 0x074c  C:\Windows\System32\bthserv.dll - ok
08:53:48.0380 0x074c  [ 492D07D79E7024CA310867B526D9636D, F2FE647AB85C6C3C1AA3DF4BCE6E4D42B9676C9D837E11388C235AE8DB20044F ] C:\Windows\System32\dnsapi.dll
08:53:48.0380 0x074c  C:\Windows\System32\dnsapi.dll - ok
08:53:48.0380 0x074c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] C:\Windows\System32\certprop.dll
08:53:48.0380 0x074c  C:\Windows\System32\certprop.dll - ok
08:53:48.0380 0x074c  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] C:\Windows\System32\clfs.sys
08:53:48.0380 0x074c  C:\Windows\System32\clfs.sys - ok
08:53:48.0395 0x074c  [ 8FFE297B8449386E7B6851458B6E474E, E149B37E11091D69D926242517E5655596594A6F01FEF06EB65D6BA5B354E326 ] C:\Windows\System32\logoncli.dll
08:53:48.0395 0x074c  C:\Windows\System32\logoncli.dll - ok
08:53:48.0395 0x074c  [ 1A47D52E303B7543E4E6026595B95422, C577CD3837546A7CED5D2E8E97FA2EDACA133B4A8595770EF96CAE519BFE280F ] C:\Windows\System32\comres.dll
08:53:48.0395 0x074c  C:\Windows\System32\comres.dll - ok
08:53:48.0395 0x074c  [ 481F70241D4EA038BB02590A30F15A23, 794418F8538BE8B90531C99C876D40625FC7C39FDCFCA9114843F44F9FE6D85C ] C:\Windows\System32\schannel.dll
08:53:48.0395 0x074c  C:\Windows\System32\schannel.dll - ok
08:53:48.0395 0x074c  [ 26AF184300C0868D854D5A3092234E24, 46FFF8B9212F2AE99D494A7BD1CDD5C95F451593B46CECAF25CE897931374250 ] C:\Windows\System32\wdigest.dll
08:53:48.0395 0x074c  C:\Windows\System32\wdigest.dll - ok
08:53:48.0395 0x074c  [ 5D8874A8C11DDDDE29E12DE0E2013493, 3E9A57137BF622AF83E3E4D58971E2C0200559CCA7545D16CF263AA03EE9C7D2 ] C:\Windows\System32\rsaenh.dll
08:53:48.0395 0x074c  C:\Windows\System32\rsaenh.dll - ok
08:53:48.0395 0x074c  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] C:\Windows\System32\cryptsvc.dll
08:53:48.0395 0x074c  C:\Windows\System32\cryptsvc.dll - ok
08:53:48.0395 0x074c  [ B6D8C1202DACA028AD94BDA2795CBBE9, 967DA60ED456F6DC0D1D5F793DB947E81427811FA98BEF215A55F0171C204A12 ] C:\Windows\System32\TSpkg.dll
08:53:48.0395 0x074c  C:\Windows\System32\TSpkg.dll - ok
08:53:48.0411 0x074c  [ E1BB958681BE311E7CFF06CFEC5F1F2B, C2FDFC6C7350788A07DCB99A6A54FB9A96A6A578013DF46D0E5094A3CBF6E862 ] C:\Windows\System32\atmfd.dll
08:53:48.0411 0x074c  C:\Windows\System32\atmfd.dll - ok
08:53:48.0411 0x074c  [ E08088A97F95345E181C3DFCE2C615EF, DEF3B087DF5E10E4F8418029DB6E82546E62FEFA39694B7BD6A48CE8AAFD1B96 ] C:\Windows\System32\pku2u.dll
08:53:48.0411 0x074c  C:\Windows\System32\pku2u.dll - ok
08:53:48.0411 0x074c  [ 732E668096B1A37B7BFD4B9021E69A8E, D6302B8DAE374569AD49FE2FC40AA5F485E5D9DD50167F9395D282B5D3EF8F0B ] C:\Windows\System32\oleres.dll
08:53:48.0411 0x074c  C:\Windows\System32\oleres.dll - ok
08:53:48.0411 0x074c  [ 55C892560C1B42BC57FB61AEFCED2F22, 9A15D6559B4FD2FE3A5C5CE13F3C1AD01D9576F6023BDBD12336A1654D33EC63 ] C:\Windows\System32\LIVESSP.DLL
08:53:48.0411 0x074c  C:\Windows\System32\LIVESSP.DLL - ok
08:53:48.0411 0x074c  [ D6C7780A364C6BBACFA796BAB9F1B374, 3B5ED1A030BFD0BB73D4FFCD67A6A0B8501EF70293F223EFAA12F430ADF270F9 ] C:\Windows\System32\bcryptprimitives.dll
08:53:48.0411 0x074c  C:\Windows\System32\bcryptprimitives.dll - ok
08:53:48.0411 0x074c  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] C:\Windows\System32\defragsvc.dll
08:53:48.0411 0x074c  C:\Windows\System32\defragsvc.dll - ok
08:53:48.0411 0x074c  [ 90BDEFC5DF334E5100EAA781D798DE1A, F48B650D811B6D57D2252E326C0C9CC74534BE9D510E7D3403F91D1C5C36281E ] C:\Windows\System32\efslsaext.dll
08:53:48.0411 0x074c  C:\Windows\System32\efslsaext.dll - ok
08:53:48.0426 0x074c  [ 82A72E99AA1CF0B04D3B9843CBA3AEC1, 0CB811379A40A993544013FA36A9B49532A9954CD8CD0D376E3B740F028C90C4 ] C:\Windows\System32\credssp.dll
08:53:48.0426 0x074c  C:\Windows\System32\credssp.dll - ok
08:53:48.0426 0x074c  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] C:\Windows\System32\dhcpcore.dll
08:53:48.0426 0x074c  C:\Windows\System32\dhcpcore.dll - ok
08:53:48.0426 0x074c  [ ED78427259134C63ED69804D2132B86C, F6F51B8B35881ABCA5580ED111AAC80E466E6474ABAE31EC8BE46C23EDCA77B2 ] C:\Windows\System32\scecli.dll
08:53:48.0426 0x074c  C:\Windows\System32\scecli.dll - ok
08:53:48.0426 0x074c  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] C:\Windows\System32\dot3svc.dll
08:53:48.0426 0x074c  C:\Windows\System32\dot3svc.dll - ok
08:53:48.0426 0x074c  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] C:\Windows\System32\dps.dll
08:53:48.0426 0x074c  C:\Windows\System32\dps.dll - ok
08:53:48.0426 0x074c  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] C:\Windows\System32\eapsvc.dll
08:53:48.0426 0x074c  C:\Windows\System32\eapsvc.dll - ok
08:53:48.0442 0x074c  [ 0C043B0ABBB5E14E68906AB80365395B, A57A6FAF713EA4F46566A941DE7C2273ED4EB50F9E30B70276E810873AF6900B ] C:\Windows\System32\efssvc.dll
08:53:48.0442 0x074c  C:\Windows\System32\efssvc.dll - ok
08:53:48.0442 0x074c  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] C:\Windows\ehome\ehrecvr.exe
08:53:48.0442 0x074c  C:\Windows\ehome\ehrecvr.exe - ok
08:53:48.0442 0x074c  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] C:\Windows\ehome\ehsched.exe
08:53:48.0442 0x074c  C:\Windows\ehome\ehsched.exe - ok
08:53:48.0442 0x074c  [ 6011714C8C5C55CBFFAD24D61E879FBD, 75D615082A1C71C6ED3ABB49EDAF660EE538D112CF79B9C8AF0A583D1CE1BBB0 ] C:\Windows\System32\wevtsvc.dll
08:53:48.0442 0x074c  C:\Windows\System32\wevtsvc.dll - ok
08:53:48.0442 0x074c  [ C8E8B8239FCF17BEA10E751BE5854631, CB869195E78AB613CEF50AE3B247F0E4E42F233A7AAF5B2BFC5ADEA2C45C5F8D ] C:\Windows\System32\FXSRESM.dll
08:53:48.0442 0x074c  C:\Windows\System32\FXSRESM.dll - ok
08:53:48.0442 0x074c  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] C:\Windows\System32\fdPHost.dll
08:53:48.0442 0x074c  C:\Windows\System32\fdPHost.dll - ok
08:53:48.0458 0x074c  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] C:\Windows\System32\FDResPub.dll
08:53:48.0458 0x074c  C:\Windows\System32\FDResPub.dll - ok
08:53:48.0458 0x074c  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] C:\Windows\System32\drivers\fileinfo.sys
08:53:48.0458 0x074c  C:\Windows\System32\drivers\fileinfo.sys - ok
08:53:48.0458 0x074c  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] C:\Windows\System32\drivers\filetrace.sys
08:53:48.0458 0x074c  C:\Windows\System32\drivers\filetrace.sys - ok
08:53:48.0458 0x074c  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] C:\Windows\System32\drivers\fltMgr.sys
08:53:48.0458 0x074c  C:\Windows\System32\drivers\fltMgr.sys - ok
08:53:48.0458 0x074c  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] C:\Windows\System32\FntCache.dll
08:53:48.0458 0x074c  C:\Windows\System32\FntCache.dll - ok
08:53:48.0458 0x074c  [ 8A1846C0817513AD18BA48B4427771FC, 58874A2B24B685DCB14CE0430846210A76C8D8CBFBF0171B145BC15E502C12A0 ] C:\Windows\System32\PresentationHost.exe
08:53:48.0458 0x074c  C:\Windows\System32\PresentationHost.exe - ok
08:53:48.0458 0x074c  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] C:\Windows\System32\drivers\fsdepends.sys
08:53:48.0458 0x074c  C:\Windows\System32\drivers\fsdepends.sys - ok
08:53:48.0473 0x074c  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] C:\Windows\System32\drivers\fvevol.sys
08:53:48.0473 0x074c  C:\Windows\System32\drivers\fvevol.sys - ok
08:53:48.0473 0x074c  [ 9C9307C95671AC962F3D6EB3A4A89BAE, D1433791C9B8BCEEAD8937EC18D33E89E4E2012B5975228A8500FD141BC30078 ] C:\Windows\System32\gpapi.dll
08:53:48.0473 0x074c  C:\Windows\System32\gpapi.dll - ok
08:53:48.0473 0x074c  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] C:\Windows\System32\hidserv.dll
08:53:48.0473 0x074c  C:\Windows\System32\hidserv.dll - ok
08:53:48.0473 0x074c  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] C:\Windows\System32\KMSVC.DLL
08:53:48.0473 0x074c  C:\Windows\System32\KMSVC.DLL - ok
08:53:48.0473 0x074c  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] C:\Windows\System32\ListSvc.dll
08:53:48.0473 0x074c  C:\Windows\System32\ListSvc.dll - ok
08:53:48.0473 0x074c  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] C:\Windows\System32\provsvc.dll
08:53:48.0473 0x074c  C:\Windows\System32\provsvc.dll - ok
08:53:48.0489 0x074c  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] C:\Windows\System32\drivers\http.sys
08:53:48.0489 0x074c  C:\Windows\System32\drivers\http.sys - ok
08:53:48.0489 0x074c  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] C:\Windows\System32\drivers\hwpolicy.sys
08:53:48.0489 0x074c  C:\Windows\System32\drivers\hwpolicy.sys - ok
08:53:48.0489 0x074c  [ B9E2DAF71E44626011D70B4889171504, 1A776CC04F8725397318B671B3007AFDB66A573992EF82AE10875B421DF2C3AA ] C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll
08:53:48.0489 0x074c  C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll - ok
08:53:48.0489 0x074c  [ 72116CC377FF4281B0132C397026D911, 006A7F0C534614C0FBEC6458AAFCE6621C7A8EA3030605EBFCCF111FB088506E ] C:\Windows\System32\ieetwcollectorres.dll
08:53:48.0489 0x074c  C:\Windows\System32\ieetwcollectorres.dll - ok
08:53:48.0489 0x074c  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] C:\Windows\System32\IKEEXT.DLL
08:53:48.0489 0x074c  C:\Windows\System32\IKEEXT.DLL - ok
08:53:48.0489 0x074c  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] C:\Windows\System32\IPBusEnum.dll
08:53:48.0489 0x074c  C:\Windows\System32\IPBusEnum.dll - ok
08:53:48.0489 0x074c  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] C:\Windows\System32\iphlpsvc.dll
08:53:48.0489 0x074c  C:\Windows\System32\iphlpsvc.dll - ok
08:53:48.0504 0x074c  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] C:\Windows\System32\drivers\irenum.sys
08:53:48.0504 0x074c  C:\Windows\System32\drivers\irenum.sys - ok
08:53:48.0504 0x074c  [ F9EC845C5EECF20E9A67F9F805F2EF1F, C3DBA8CF93DBF50954B1BF6D7EF3F6F5DD1A56DC62B7EB2749C54D9B65D9BB43 ] C:\Windows\System32\keyiso.dll
08:53:48.0504 0x074c  C:\Windows\System32\keyiso.dll - ok
08:53:48.0504 0x074c  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] C:\Windows\System32\srvsvc.dll
08:53:48.0504 0x074c  C:\Windows\System32\srvsvc.dll - ok
08:53:48.0504 0x074c  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] C:\Windows\System32\wkssvc.dll
08:53:48.0504 0x074c  C:\Windows\System32\wkssvc.dll - ok
08:53:48.0504 0x074c  [ 7A757C41C3879CD34BDE15F0563C0CE2, E1D33EB03EFB2FC2CDB1EBECD644FF5E64EFB8143A54D21CB1B51D15E7BE20BC ] C:\Windows\System32\lltdres.dll
08:53:48.0504 0x074c  C:\Windows\System32\lltdres.dll - ok
08:53:48.0504 0x074c  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] C:\Windows\System32\lmhsvc.dll
08:53:48.0504 0x074c  C:\Windows\System32\lmhsvc.dll - ok
08:53:48.0520 0x074c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] C:\Windows\System32\drivers\luafv.sys
08:53:48.0520 0x074c  C:\Windows\System32\drivers\luafv.sys - ok
08:53:48.0520 0x074c  [ E5DE3FFD785B6730291AD98E491D58BA, 1A26DB6EE0A70AA495948A68F63453C6ABCD76E1FCCEAE909F922F28D277F10D ] C:\Windows\ehome\ehres.dll
08:53:48.0520 0x074c  C:\Windows\ehome\ehres.dll - ok
08:53:48.0520 0x074c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] C:\Windows\System32\mmcss.dll
08:53:48.0520 0x074c  C:\Windows\System32\mmcss.dll - ok
08:53:48.0520 0x074c  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] C:\Windows\System32\drivers\mountmgr.sys
08:53:48.0520 0x074c  C:\Windows\System32\drivers\mountmgr.sys - ok
08:53:48.0520 0x074c  [ 9AD9E06F8656F296D91FAE8EE5B95A27, 53384747D5864D699BCC4F48E0A5E656430EDAA65DCDAB4B11EA68FC7106459E ] C:\Windows\System32\FirewallAPI.dll
08:53:48.0520 0x074c  C:\Windows\System32\FirewallAPI.dll - ok
08:53:48.0520 0x074c  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] C:\Windows\System32\WebClnt.dll
08:53:48.0520 0x074c  C:\Windows\System32\WebClnt.dll - ok
08:53:48.0520 0x074c  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] C:\Windows\System32\drivers\mshidkmdf.sys
08:53:48.0520 0x074c  C:\Windows\System32\drivers\mshidkmdf.sys - ok
08:53:48.0536 0x074c  [ E11E3F3BBEFDC5C0C160BE13B65E25E4, 0F734B174273DAF0E691C336E112C12259B4A74054886206656B0B065CB1A229 ] C:\Windows\System32\iscsidsc.dll
08:53:48.0536 0x074c  C:\Windows\System32\iscsidsc.dll - ok
08:53:48.0536 0x074c  [ 8EE1C893C50D1C02D4675978BAC756BA, AFA6E61B5C7784086BE546277331DFC08B4D43B6F68AA388B24681AD912C78A5 ] C:\Windows\System32\msimsg.dll
08:53:48.0536 0x074c  C:\Windows\System32\msimsg.dll - ok
08:53:48.0536 0x074c  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] C:\Windows\System32\drivers\mup.sys
08:53:48.0536 0x074c  C:\Windows\System32\drivers\mup.sys - ok
08:53:48.0536 0x074c  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] C:\Windows\System32\QAGENTRT.DLL
08:53:48.0536 0x074c  C:\Windows\System32\QAGENTRT.DLL - ok
08:53:48.0536 0x074c  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] C:\Windows\System32\drivers\ndis.sys
08:53:48.0536 0x074c  C:\Windows\System32\drivers\ndis.sys - ok
08:53:48.0536 0x074c  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] C:\Windows\System32\netman.dll
08:53:48.0536 0x074c  C:\Windows\System32\netman.dll - ok
08:53:48.0551 0x074c  [ 82C136E9E2FA0B1CFBA49BC7A18F72FD, 6A02C31F74C212C14E11B053B1B8A8F464AC3BAA8C0CDDA3A242879E296035EF ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll
08:53:48.0551 0x074c  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll - ok
08:53:48.0551 0x074c  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] C:\Windows\System32\netprofm.dll
08:53:48.0551 0x074c  C:\Windows\System32\netprofm.dll - ok
08:53:48.0551 0x074c  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] C:\Windows\System32\nlasvc.dll
08:53:48.0551 0x074c  C:\Windows\System32\nlasvc.dll - ok
08:53:48.0551 0x074c  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] C:\Windows\System32\nsisvc.dll
08:53:48.0551 0x074c  C:\Windows\System32\nsisvc.dll - ok
08:53:48.0551 0x074c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] C:\Windows\System32\pnrpsvc.dll
08:53:48.0551 0x074c  C:\Windows\System32\pnrpsvc.dll - ok
08:53:48.0551 0x074c  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] C:\Windows\System32\p2psvc.dll
08:53:48.0551 0x074c  C:\Windows\System32\p2psvc.dll - ok
08:53:48.0567 0x074c  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] C:\Windows\System32\drivers\partmgr.sys
08:53:48.0567 0x074c  C:\Windows\System32\drivers\partmgr.sys - ok
08:53:48.0567 0x074c  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] C:\Windows\System32\pcasvc.dll
08:53:48.0567 0x074c  C:\Windows\System32\pcasvc.dll - ok
08:53:48.0567 0x074c  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] C:\Windows\System32\pla.dll
08:53:48.0567 0x074c  C:\Windows\System32\pla.dll - ok
08:53:48.0567 0x074c  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] C:\Windows\System32\umpnpmgr.dll
08:53:48.0567 0x074c  C:\Windows\System32\umpnpmgr.dll - ok
08:53:48.0567 0x074c  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] C:\Windows\System32\pnrpauto.dll
08:53:48.0567 0x074c  C:\Windows\System32\pnrpauto.dll - ok
08:53:48.0567 0x074c  [ 8DEC9C6DD13C4B3B62CD8D5A0FEF1650, 64D581B5F68821B9FCBC656B9C3B04F047EDFE4D2905B1926017A60C740D645A ] C:\Windows\System32\polstore.dll
08:53:48.0567 0x074c  C:\Windows\System32\polstore.dll - ok
08:53:48.0582 0x074c  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] C:\Windows\System32\umpo.dll
08:53:48.0582 0x074c  C:\Windows\System32\umpo.dll - ok
08:53:48.0582 0x074c  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] C:\Windows\System32\profsvc.dll
08:53:48.0582 0x074c  C:\Windows\System32\profsvc.dll - ok
08:53:48.0582 0x074c  [ AB95FBAE4F9A5A56B177CEC427B2B35E, 59D7C2A5097F83E8D07CAAFCF9C6F9C6849AF24C28047FD4D4D6B5673EE8D089 ] C:\Windows\System32\psbase.dll
08:53:48.0582 0x074c  C:\Windows\System32\psbase.dll - ok
08:53:48.0582 0x074c  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] C:\Windows\System32\qwave.dll
08:53:48.0582 0x074c  C:\Windows\System32\qwave.dll - ok
08:53:48.0582 0x074c  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] C:\Windows\System32\drivers\qwavedrv.sys
08:53:48.0582 0x074c  C:\Windows\System32\drivers\qwavedrv.sys - ok
08:53:48.0582 0x074c  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] C:\Windows\System32\rasauto.dll
08:53:48.0582 0x074c  C:\Windows\System32\rasauto.dll - ok
08:53:48.0582 0x074c  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] C:\Windows\System32\rasmans.dll
08:53:48.0582 0x074c  C:\Windows\System32\rasmans.dll - ok
08:53:48.0598 0x074c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] C:\Windows\System32\sstpsvc.dll
08:53:48.0598 0x074c  C:\Windows\System32\sstpsvc.dll - ok
08:53:48.0598 0x074c  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] C:\Windows\System32\mprdim.dll
08:53:48.0598 0x074c  C:\Windows\System32\mprdim.dll - ok
08:53:48.0598 0x074c  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] C:\Windows\System32\regsvc.dll
08:53:48.0598 0x074c  C:\Windows\System32\regsvc.dll - ok
08:53:48.0598 0x074c  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] C:\Windows\System32\RpcEpMap.dll
08:53:48.0598 0x074c  C:\Windows\System32\RpcEpMap.dll - ok
08:53:48.0598 0x074c  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] C:\Windows\System32\Locator.exe
08:53:48.0598 0x074c  C:\Windows\System32\Locator.exe - ok
08:53:48.0598 0x074c  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] C:\Windows\System32\SCardSvr.dll
08:53:48.0598 0x074c  C:\Windows\System32\SCardSvr.dll - ok
08:53:48.0614 0x074c  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] C:\Windows\System32\drivers\scfilter.sys
08:53:48.0614 0x074c  C:\Windows\System32\drivers\scfilter.sys - ok
08:53:48.0614 0x074c  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] C:\Windows\System32\schedsvc.dll
08:53:48.0614 0x074c  C:\Windows\System32\schedsvc.dll - ok
08:53:48.0614 0x074c  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] C:\Windows\System32\sdrsvc.dll
08:53:48.0614 0x074c  C:\Windows\System32\sdrsvc.dll - ok
08:53:48.0614 0x074c  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] C:\Windows\System32\seclogon.dll
08:53:48.0614 0x074c  C:\Windows\System32\seclogon.dll - ok
08:53:48.0614 0x074c  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] C:\Windows\System32\Sens.dll
08:53:48.0614 0x074c  C:\Windows\System32\Sens.dll - ok
08:53:48.0614 0x074c  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] C:\Windows\System32\sensrsvc.dll
08:53:48.0614 0x074c  C:\Windows\System32\sensrsvc.dll - ok
08:53:48.0614 0x074c  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] C:\Windows\System32\SessEnv.dll
08:53:48.0614 0x074c  C:\Windows\System32\SessEnv.dll - ok
08:53:48.0629 0x074c  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] C:\Windows\System32\ipnathlp.dll
08:53:48.0629 0x074c  C:\Windows\System32\ipnathlp.dll - ok
08:53:48.0629 0x074c  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] C:\Windows\System32\shsvcs.dll
08:53:48.0629 0x074c  C:\Windows\System32\shsvcs.dll - ok
08:53:48.0629 0x074c  [ 55DE45B116711881C852D2841E4C84DD, 18E5021530BB44042C85087BAE4FEDA633E01CDCBA09C90A5941B74C75133A35 ] C:\Windows\System32\tcpipcfg.dll
08:53:48.0629 0x074c  C:\Windows\System32\tcpipcfg.dll - ok
08:53:48.0629 0x074c  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] C:\Windows\System32\snmptrap.exe
08:53:48.0629 0x074c  C:\Windows\System32\snmptrap.exe - ok
08:53:48.0629 0x074c  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] C:\Windows\System32\spoolsv.exe
08:53:48.0629 0x074c  C:\Windows\System32\spoolsv.exe - ok
08:53:48.0629 0x074c  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] C:\Windows\System32\sppsvc.exe
08:53:48.0629 0x074c  C:\Windows\System32\sppsvc.exe - ok
08:53:48.0629 0x074c  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] C:\Windows\System32\sppuinotify.dll
08:53:48.0629 0x074c  C:\Windows\System32\sppuinotify.dll - ok
08:53:48.0645 0x074c  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] C:\Windows\System32\ssdpsrv.dll
08:53:48.0645 0x074c  C:\Windows\System32\ssdpsrv.dll - ok
08:53:48.0645 0x074c  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] C:\Windows\System32\wiaservc.dll
08:53:48.0645 0x074c  C:\Windows\System32\wiaservc.dll - ok
08:53:48.0645 0x074c  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] C:\Windows\System32\swprv.dll
08:53:48.0645 0x074c  C:\Windows\System32\swprv.dll - ok
08:53:48.0645 0x074c  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] C:\Windows\System32\sysmain.dll
08:53:48.0645 0x074c  C:\Windows\System32\sysmain.dll - ok
08:53:48.0645 0x074c  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] C:\Windows\System32\TabSvc.dll
08:53:48.0645 0x074c  C:\Windows\System32\TabSvc.dll - ok
08:53:48.0645 0x074c  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] C:\Windows\System32\tapisrv.dll
08:53:48.0645 0x074c  C:\Windows\System32\tapisrv.dll - ok
08:53:48.0660 0x074c  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] C:\Windows\System32\tbssvc.dll
08:53:48.0660 0x074c  C:\Windows\System32\tbssvc.dll - ok
08:53:48.0660 0x074c  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] C:\Windows\System32\termsrv.dll
08:53:48.0660 0x074c  C:\Windows\System32\termsrv.dll - ok
08:53:48.0660 0x074c  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] C:\Windows\System32\themeservice.dll
08:53:48.0660 0x074c  C:\Windows\System32\themeservice.dll - ok
08:53:48.0660 0x074c  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] C:\Windows\System32\trkwks.dll
08:53:48.0660 0x074c  C:\Windows\System32\trkwks.dll - ok
08:53:48.0660 0x074c  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] C:\Windows\servicing\TrustedInstaller.exe
08:53:48.0660 0x074c  C:\Windows\servicing\TrustedInstaller.exe - ok
08:53:48.0660 0x074c  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] C:\Windows\System32\drivers\tssecsrv.sys
08:53:48.0660 0x074c  C:\Windows\System32\drivers\tssecsrv.sys - ok
08:53:48.0660 0x074c  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] C:\Windows\System32\UI0Detect.exe
08:53:48.0660 0x074c  C:\Windows\System32\UI0Detect.exe - ok
08:53:48.0676 0x074c  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] C:\Windows\System32\upnphost.dll
08:53:48.0676 0x074c  C:\Windows\System32\upnphost.dll - ok
08:53:48.0676 0x074c  [ F162D5F5E845B9DC352DD1BAD8CEF1BC, 8A7B7528DB30AB123B060D8E41954D95913C07BB40CDAE32E97F9EDB0BAF79C7 ] C:\Windows\System32\dwm.exe
08:53:48.0676 0x074c  C:\Windows\System32\dwm.exe - ok
08:53:48.0676 0x074c  [ 567BC1309E05FCFA680ADB6E02260736, 50F57C5D0B9C8096F615C2335F2F252A074014CBBDC7FFF56C0501A8CFB3FB81 ] C:\Windows\System32\vaultsvc.dll
08:53:48.0676 0x074c  C:\Windows\System32\vaultsvc.dll - ok
08:53:48.0676 0x074c  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] C:\Windows\System32\vds.exe
08:53:48.0676 0x074c  C:\Windows\System32\vds.exe - ok
08:53:48.0676 0x074c  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] C:\Windows\System32\drivers\volmgrx.sys
08:53:48.0676 0x074c  C:\Windows\System32\drivers\volmgrx.sys - ok
08:53:48.0676 0x074c  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] C:\Windows\System32\VSSVC.exe
08:53:48.0676 0x074c  C:\Windows\System32\VSSVC.exe - ok
08:53:48.0676 0x074c  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] C:\Windows\System32\w32time.dll
08:53:48.0676 0x074c  C:\Windows\System32\w32time.dll - ok
08:53:48.0692 0x074c  [ 05E9265E2228799B68DC0F58A94E1AB8, FDB235920A70B64D3AC4A69228985033A830A4B71BA8B779437A0F0FA5A3FB40 ] C:\Windows\System32\Wat\WatUX.exe
08:53:48.0692 0x074c  C:\Windows\System32\Wat\WatUX.exe - ok
08:53:48.0692 0x074c  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] C:\Windows\System32\wbengine.exe
08:53:48.0692 0x074c  C:\Windows\System32\wbengine.exe - ok
08:53:48.0692 0x074c  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] C:\Windows\System32\wbiosrvc.dll
08:53:48.0692 0x074c  C:\Windows\System32\wbiosrvc.dll - ok
08:53:48.0692 0x074c  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] C:\Windows\System32\wcncsvc.dll
08:53:48.0692 0x074c  C:\Windows\System32\wcncsvc.dll - ok
08:53:48.0692 0x074c  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] C:\Windows\System32\WcsPlugInService.dll
08:53:48.0692 0x074c  C:\Windows\System32\WcsPlugInService.dll - ok
08:53:48.0692 0x074c  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] C:\Windows\System32\drivers\Wdf01000.sys
08:53:48.0692 0x074c  C:\Windows\System32\drivers\Wdf01000.sys - ok
08:53:48.0707 0x074c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] C:\Windows\System32\wdi.dll
08:53:48.0707 0x074c  C:\Windows\System32\wdi.dll - ok
08:53:48.0707 0x074c  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] C:\Windows\System32\wecsvc.dll
08:53:48.0707 0x074c  C:\Windows\System32\wecsvc.dll - ok
08:53:48.0707 0x074c  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] C:\Windows\System32\wercplsupport.dll
08:53:48.0707 0x074c  C:\Windows\System32\wercplsupport.dll - ok
08:53:48.0707 0x074c  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] C:\Windows\System32\wersvc.dll
08:53:48.0707 0x074c  C:\Windows\System32\wersvc.dll - ok
08:53:48.0707 0x074c  [ 2DA738A0A6BEE483A5647A76695AF3B0, FD7929F5A3C7161E2C1A6F4D9E59D56F891D1A8966A26562E220D9B4B98B14BD ] C:\Program Files\Windows Defender\MsMpRes.dll
08:53:48.0707 0x074c  C:\Program Files\Windows Defender\MsMpRes.dll - ok
08:53:48.0707 0x074c  [ 58F4493BF748A3A89689997B7BD00E95, EC5DEEC73E357C7C87B001275C4E635011A9CF39419F2B86E2C2B8D7E388C551 ] C:\Windows\System32\winhttp.dll
08:53:48.0707 0x074c  C:\Windows\System32\winhttp.dll - ok
08:53:48.0707 0x074c  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] C:\Windows\System32\wbem\WMIsvc.dll
08:53:48.0707 0x074c  C:\Windows\System32\wbem\WMIsvc.dll - ok
08:53:48.0723 0x074c  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] C:\Windows\System32\WsmSvc.dll
08:53:48.0723 0x074c  C:\Windows\System32\WsmSvc.dll - ok
08:53:48.0723 0x074c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] C:\Windows\System32\wlansvc.dll
08:53:48.0723 0x074c  C:\Windows\System32\wlansvc.dll - ok
08:53:48.0723 0x074c  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] C:\Windows\System32\wbem\WmiApSrv.exe
08:53:48.0723 0x074c  C:\Windows\System32\wbem\WmiApSrv.exe - ok
08:53:48.0723 0x074c  [ A9F3BFC9345F49614D5859EC95B9E994, 306467D280E99D0616E839278A4DB5BED684F002AE284C3678CABB5251459CB3 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
08:53:48.0723 0x074c  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
08:53:48.0723 0x074c  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] C:\Windows\System32\wpcsvc.dll
08:53:48.0723 0x074c  C:\Windows\System32\wpcsvc.dll - ok
08:53:48.0723 0x074c  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] C:\Windows\System32\wpdbusenum.dll
08:53:48.0723 0x074c  C:\Windows\System32\wpdbusenum.dll - ok
08:53:48.0738 0x074c  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] C:\Windows\System32\wscsvc.dll
08:53:48.0738 0x074c  C:\Windows\System32\wscsvc.dll - ok
08:53:48.0738 0x074c  [ E0B340996A41C9A75DFA3B99BBA9C500, D029AD8ABBD2267B1E44DF5172B93C3F832B4C21F930F5512C24E800F5CE4F8B ] C:\Windows\System32\SearchIndexer.exe
08:53:48.0738 0x074c  C:\Windows\System32\SearchIndexer.exe - ok
08:53:48.0738 0x074c  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] C:\Windows\System32\wuaueng.dll
08:53:48.0738 0x074c  C:\Windows\System32\wuaueng.dll - ok
08:53:48.0738 0x074c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] C:\Windows\System32\drivers\WUDFPf.sys
08:53:48.0738 0x074c  C:\Windows\System32\drivers\WUDFPf.sys - ok
08:53:48.0738 0x074c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] C:\Windows\System32\WUDFSvc.dll
08:53:48.0738 0x074c  C:\Windows\System32\WUDFSvc.dll - ok
08:53:48.0738 0x074c  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] C:\Windows\System32\wwansvc.dll
08:53:48.0738 0x074c  C:\Windows\System32\wwansvc.dll - ok
08:53:48.0754 0x074c  [ 7CC7DF5B654DA579613F811D8C637E29, 70EAC059C1ED814810C75DBB9F4D188428CB942FFD8869D692158D384EB6BB35 ] C:\Windows\System32\ubpm.dll
08:53:48.0754 0x074c  C:\Windows\System32\ubpm.dll - ok
08:53:48.0754 0x074c  [ 6F68F63794097E54F36474ED4384B759, 745E45B1E868C395C033C3178B423D2BE121DA0ABBF859553ADF1A7D383099B7 ] C:\Windows\System32\svchost.exe
08:53:48.0754 0x074c  C:\Windows\System32\svchost.exe - ok
08:53:48.0754 0x074c  [ E6EB44ABAAF1F330119F854856C53EBE, 77279972FFBFA984578DD4F17EB615F5D2D93590AF3A9FEFEFDB9128206C9887 ] C:\Windows\System32\SPInf.dll
08:53:48.0754 0x074c  C:\Windows\System32\SPInf.dll - ok
08:53:48.0754 0x074c  [ CD1B5AD07E5F7FEF30E055DCC9E96180, 63C58551F32B0B09377F64A6AE1FA81AF93B8A707A57A8C18722086906AD3046 ] C:\Windows\System32\devrtl.dll
08:53:48.0754 0x074c  C:\Windows\System32\devrtl.dll - ok
08:53:48.0754 0x074c  [ 7A17485DC7D8A7AC81321A42CD034519, 88D8705FA901793FC8C1CFD0175E49A6502BF0FC94A066BA573D2FD13AA5F04A ] C:\Windows\System32\userenv.dll
08:53:48.0754 0x074c  C:\Windows\System32\userenv.dll - ok
08:53:48.0754 0x074c  [ F6C011B46FAEEF33536B2E80F48B5CBE, BDD149D3D6F9F6C8F6F34C311219BE5618CEEFBC7D35E37473A47F1D5D015067 ] C:\Windows\System32\pcwum.dll
08:53:48.0754 0x074c  C:\Windows\System32\pcwum.dll - ok
08:53:48.0754 0x074c  [ 716175021BDA290504CE434273F666BC, FA18CA2D8A5F4335E051E2933147D3C1E7308F7D446E2AEB6596CDEF6E2AFC88 ] C:\Windows\System32\powrprof.dll
08:53:48.0754 0x074c  C:\Windows\System32\powrprof.dll - ok
08:53:48.0770 0x074c  [ F92B0E478C0FAA6D6661E6E977247E60, 8B26B57C2C60C98CD6273ACA126B2CD0356ADB13A59FEC12882357A6B973123C ] C:\Windows\System32\drivers\mbam.sys
08:53:48.0770 0x074c  C:\Windows\System32\drivers\mbam.sys - ok
08:53:48.0770 0x074c  [ 8A8A19E613B3684F4F42E65038F6F338, 78CBD42424E39DCF55618B1FABC057A535BEFCD28C028E4AB2E6FAFFD4D06E07 ] C:\Windows\System32\nvvsvc.exe
08:53:48.0770 0x074c  C:\Windows\System32\nvvsvc.exe - ok
08:53:48.0770 0x074c  [ BD3674BE7FC9D8D3732C83E8499576ED, E6716A5895D629263A4D21959F48840429AB6F4B55A5FA2663EE5E86C9CA2BF1 ] C:\Windows\System32\wtsapi32.dll
08:53:48.0770 0x074c  C:\Windows\System32\wtsapi32.dll - ok
08:53:48.0770 0x074c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] C:\Windows\System32\rpcss.dll
08:53:48.0770 0x074c  C:\Windows\System32\rpcss.dll - ok
08:53:48.0770 0x074c  [ 31559F3244C6BC00A52030CAA83B6B91, B2025742B5F0025ACE9821D5722DE3F997EEEAB21D2F381C9E307882DF422579 ] C:\Windows\System32\WSHTCPIP.DLL
08:53:48.0770 0x074c  C:\Windows\System32\WSHTCPIP.DLL - ok
08:53:48.0770 0x074c  [ 16E964ABF6D1E0F0CC7822FCA9BA754D, 0E461387ACFD641DA22EE542A3C68AF5F7D3A7F967D974E3B198143D461ABE39 ] C:\Windows\System32\wshqos.dll
08:53:48.0770 0x074c  C:\Windows\System32\wshqos.dll - ok
08:53:48.0785 0x074c  [ 715F03B4C7223349768013EA95D9E5B7, 09AB0535A54C2E2962F0FD06988D99060F8CECA39B07AC00A63204C773B95893 ] C:\Windows\System32\LogonUI.exe
08:53:48.0785 0x074c  C:\Windows\System32\LogonUI.exe - ok
08:53:48.0785 0x074c  [ 94E026870A55AAEAFF7853C1754091E9, B2F5D5629D12BDFA98DBED3898368F37D9009C7531B6909C7285A2C11C9A0F93 ] C:\Windows\System32\version.dll
08:53:48.0785 0x074c  C:\Windows\System32\version.dll - ok
08:53:48.0785 0x074c  [ 34152997FB906895290E0199AC94B85F, 6AEEB989FA6E4354F96F70D0169CC6CAAA56EEE3056F1CD20F5FE846EAC058C1 ] C:\Windows\System32\authui.dll
08:53:48.0785 0x074c  C:\Windows\System32\authui.dll - ok
08:53:48.0785 0x074c  [ 227E2C382A1E02F8D4965E664D3BBE43, 1CFF20A8BF87ACE4FA4935EBEED72BFB1A1FE902A754899E2F50798D67DF5642 ] C:\Windows\System32\MMDevAPI.dll
08:53:48.0785 0x074c  C:\Windows\System32\MMDevAPI.dll - ok
08:53:48.0785 0x074c  [ 78A1E65207484B7F8D3217507745F47C, 35F413ADB9D157F3666DD15DD58104D629CD9143198A1AB914B73A4A3C9903DD ] C:\Windows\System32\avrt.dll
08:53:48.0785 0x074c  C:\Windows\System32\avrt.dll - ok
08:53:48.0785 0x074c  [ B3BFBD758506ECB50C5804AAA76318F9, 34E079A6AB2D41D1E0B3887B6AE31C43941061B7176FFF2801C3F465C2C89578 ] C:\Windows\System32\cryptui.dll
08:53:48.0785 0x074c  C:\Windows\System32\cryptui.dll - ok
08:53:48.0785 0x074c  [ F06BB4E336EA57511FDBAFAFCC47DE62, BE43EC62548E9FF89A9495A1722E22DBB76EEC3764F86E64057B636F27D15765 ] C:\Windows\System32\propsys.dll
08:53:48.0785 0x074c  C:\Windows\System32\propsys.dll - ok
08:53:48.0801 0x074c  [ 7FA8FDC2C2A27817FD0F624E78D3B50C, 7B63F6AA2CD6D4D07EA3C595B868B1A0749BB11620027A2BD9B935E3055481E4 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
08:53:48.0801 0x074c  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
08:53:48.0801 0x074c  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67, E957E4463D318A44BA5109EE3428624DE901C5FF2BA358986DF6C6F059DDBCC2 ] C:\Windows\System32\adtschema.dll
08:53:48.0801 0x074c  C:\Windows\System32\adtschema.dll - ok
08:53:48.0801 0x074c  [ 50544D04AD845C43130B70212EC05CCD, B2E6B558DE7D273512226685FF53ED17C9B4BF81B739FBCA5D3FC82DF8D2BCF7 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
08:53:48.0801 0x074c  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
08:53:48.0801 0x074c  [ D5CCA1453B98A5801E6D5FF0FF89DC6C, 85F2C2480AAC31B6092187B431A562D79D4CFB1324F925C85055ABAB2483264B ] C:\Windows\System32\audiodg.exe
08:53:48.0801 0x074c  C:\Windows\System32\audiodg.exe - ok
08:53:48.0801 0x074c  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] C:\Windows\System32\MPSSVC.dll
08:53:48.0801 0x074c  C:\Windows\System32\MPSSVC.dll - ok
08:53:48.0801 0x074c  [ 4E9C2DB10F7E6AE91BF761139D4B745B, 8F63F78294F5585D599A114AF449DCC447CCB239D0F0B490BFE6B34A2146E730 ] C:\Windows\System32\shacct.dll
08:53:48.0801 0x074c  C:\Windows\System32\shacct.dll - ok
08:53:48.0816 0x074c  [ 1F4492FE41767CDB8B89D17655847CDD, 184547FAC0C3D7148FAA3F601929A7089DE393BD19929A137DAD743331DD3F77 ] C:\Windows\System32\ntmarta.dll
08:53:48.0816 0x074c  C:\Windows\System32\ntmarta.dll - ok
08:53:48.0816 0x074c  [ 5B3EBFC3DA142324B388DDCC4465E1FF, 5D58642305311F9BC9B779C9598BFC4E7433B3EA58404BF1FF9466838A2328C7 ] C:\Windows\System32\samlib.dll
08:53:48.0816 0x074c  C:\Windows\System32\samlib.dll - ok
08:53:48.0816 0x074c  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] C:\Windows\System32\gpsvc.dll
08:53:48.0816 0x074c  C:\Windows\System32\gpsvc.dll - ok
08:53:48.0816 0x074c  [ D29E998E8277666982B4F0303BF4E7AF, 4F19AB5DC173E278EBE45832F6CEAA40E2DF6A2EDDC81B2828122442FE5D376C ] C:\Windows\System32\uxtheme.dll
08:53:48.0816 0x074c  C:\Windows\System32\uxtheme.dll - ok
08:53:48.0816 0x074c  [ 46BB91A169B9B31FF44EB04C48EC1D41, 8115B533D3A5BE07633FA54FA8847E3DEC00C5BEB193CF2FBE88428D23E2B3D6 ] C:\Windows\System32\nlaapi.dll
08:53:48.0816 0x074c  C:\Windows\System32\nlaapi.dll - ok
08:53:48.0816 0x074c  [ A3DB3C17EE6CAE65D53602B4E80BCCBC, D802A7C6161F937DC42A6E45FE1BB2C8272819F92C294C180EBCDF8FF72CBFDC ] C:\Windows\System32\PSHED.DLL
08:53:48.0816 0x074c  C:\Windows\System32\PSHED.DLL - ok
08:53:48.0832 0x074c  [ 58775492FFD419248B08325E583C527F, DBB013971F5894F25C222C2D4D50A29DB6DF3C413792EE9CCC1A9E6D85469093 ] C:\Windows\System32\atl.dll
08:53:48.0832 0x074c  C:\Windows\System32\atl.dll - ok
08:53:48.0832 0x074c  [ A77BE7CB3222B4FB0AC6C71D1C2698D4, 73566223914BF670DF6B5931FA213E546713531B10391ED65B5256BBD7ABDE7F ] C:\Windows\System32\dsrole.dll
08:53:48.0832 0x074c  C:\Windows\System32\dsrole.dll - ok
08:53:48.0832 0x074c  [ EF2AE43BCD46ABB13FC3E5B2B1935C73, 81FC06F306F620845D7DD8D06E706309E70BC89B589C81F3478302A3F5F73431 ] C:\Windows\System32\winmm.dll
08:53:48.0832 0x074c  C:\Windows\System32\winmm.dll - ok
08:53:48.0832 0x074c  [ B0945E538CF906BBDDC5A11C8EE868CC, 5F3459F6512918835F7C9400905EC7C1FAEAA7114E0D28C522040C359E3B93F7 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
08:53:48.0832 0x074c  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
08:53:48.0832 0x074c  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] C:\Windows\System32\es.dll
08:53:48.0832 0x074c  C:\Windows\System32\es.dll - ok
08:53:48.0832 0x074c  [ BE097F5BB10F9079FCEB2DC4E7E20F02, 90A88986C8C5F30FB153EC803FEDA6572B2C2630A6C9578FCC017800692694D5 ] C:\Windows\System32\slc.dll
08:53:48.0832 0x074c  C:\Windows\System32\slc.dll - ok
08:53:48.0832 0x074c  [ 1473768973453DE50DC738C2955FC4DD, 14BC5DA2442CB726ACC1F277DDBECCF5D61E3A0A3E083A55A0BB610191E35220 ] C:\Windows\System32\wdmaud.drv
08:53:48.0832 0x074c  C:\Windows\System32\wdmaud.drv - ok
08:53:48.0848 0x074c  [ 8560FFFC8EB3A806DCD4F82252CFC8C6, CC27BC092369A89D6147B16568FEDEB68B584D5738CD686C31F7FAE22ED17B3B ] C:\Windows\System32\ksuser.dll
08:53:48.0848 0x074c  C:\Windows\System32\ksuser.dll - ok
08:53:48.0848 0x074c  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] C:\Windows\System32\uxsms.dll
08:53:48.0848 0x074c  C:\Windows\System32\uxsms.dll - ok
08:53:48.0848 0x074c  [ 18CAAF21CBA3EAEE17BBA5D3807F29B8, 59C4FE015CCBE922F7AB3838D7F34CACC08DD437B2BAD62926BF4A9C416F7C19 ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_2b25b14c71ebf230\GdiPlus.dll
08:53:48.0848 0x074c  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_2b25b14c71ebf230\GdiPlus.dll - ok
08:53:48.0848 0x074c  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] C:\Windows\System32\drivers\lltdio.sys
08:53:48.0848 0x074c  C:\Windows\System32\drivers\lltdio.sys - ok
08:53:48.0848 0x074c  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] C:\Windows\System32\drivers\nwifi.sys
08:53:48.0848 0x074c  C:\Windows\System32\drivers\nwifi.sys - ok
08:53:48.0848 0x074c  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] C:\Windows\System32\drivers\ndisuio.sys
08:53:48.0848 0x074c  C:\Windows\System32\drivers\ndisuio.sys - ok
08:53:48.0863 0x074c  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] C:\Windows\System32\drivers\rspndr.sys
08:53:48.0863 0x074c  C:\Windows\System32\drivers\rspndr.sys - ok
08:53:48.0863 0x074c  [ 2B81776DA02017A37FE26C662827470E, A656353C50EE08422145D00DB9CFD9F6D3E664753B3C454B171E2A56A8AA94DC ] C:\Windows\System32\IPHLPAPI.DLL
08:53:48.0863 0x074c  C:\Windows\System32\IPHLPAPI.DLL - ok
08:53:48.0863 0x074c  [ 4C9210E8F4E052F6A4EB87716DA0C24C, 460F7990BDADB7D58D6DC95B094D30A2EFDC4CEED444B18A2F36E8D9076FB8B9 ] C:\Windows\System32\winnsi.dll
08:53:48.0863 0x074c  C:\Windows\System32\winnsi.dll - ok
08:53:48.0863 0x074c  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] C:\Windows\System32\dnsrslvr.dll
08:53:48.0863 0x074c  C:\Windows\System32\dnsrslvr.dll - ok
08:53:48.0863 0x074c  [ 3CB6A7286422C72C34DAB54A5DFF1A34, 98D21EFFF511E407336A226420701E82554DA01FA05661303836B6860D63749D ] C:\Windows\System32\dui70.dll
08:53:48.0863 0x074c  C:\Windows\System32\dui70.dll - ok
08:53:48.0863 0x074c  [ 87356377F31DA5F20A833811CD59499C, 4FEC1FD3AC4E4E34DCBC0109B248952604F438C84B1604EB9E2359FA721E23C4 ] C:\Windows\System32\eapphost.dll
08:53:48.0863 0x074c  C:\Windows\System32\eapphost.dll - ok
08:53:48.0879 0x074c  [ B73A6E4B319AFFE64582AC5C1801BB3F, 274EEA0743DC659180E691654CBB17136E9E9D83B07E302B47EA5B103EA57710 ] C:\Windows\System32\nrpsrv.dll
08:53:48.0879 0x074c  C:\Windows\System32\nrpsrv.dll - ok
08:53:48.0879 0x074c  [ 8CCDE014A4CDF84564E03ACE064CA753, DD663029B2EB7B12FDB00FCE403D8326141E540E3B9CE84CD5871473D3E2E2CF ] C:\Windows\System32\duser.dll
08:53:48.0879 0x074c  C:\Windows\System32\duser.dll - ok
08:53:48.0879 0x074c  [ 3CC16A849E6092E43909F48EF0E60306, 610B576654A69415E4F2FEDB6BA384C77715944E4F89BD2821B311968CA8D810 ] C:\Windows\System32\dhcpcore6.dll
08:53:48.0879 0x074c  C:\Windows\System32\dhcpcore6.dll - ok
08:53:48.0879 0x074c  [ D7F1EF374A90709B31591823B002F918, 05FD2837C9B03D14BB2A969C1AD77CAEF047D93DC5D0F6C2ACBF0888E8F7B359 ] C:\Windows\System32\SndVolSSO.dll
08:53:48.0879 0x074c  C:\Windows\System32\SndVolSSO.dll - ok
08:53:48.0879 0x074c  [ D07EB640618F96490DB88C3CE58DB608, 0C553971259632031E6856A94EEB937D571627FC7CF061CCFC040F4BF0CFF259 ] C:\Windows\System32\FWPUCLNT.DLL
08:53:48.0879 0x074c  C:\Windows\System32\FWPUCLNT.DLL - ok
08:53:48.0879 0x074c  [ 7373DE70D405FF08DC53336B83989138, 46DBE4C30A6AE6516FB0B003C24B2A7F9B1A9B69ABFFB71B6E34656CE184E1C2 ] C:\Windows\System32\rastls.dll
08:53:48.0879 0x074c  C:\Windows\System32\rastls.dll - ok
08:53:48.0879 0x074c  [ 896F15A6434D93EDB42519D5E18E6B50, 9263F0CEC58D45EBE3FB9C3061FB9392C55A7933B84B4592E6EE13CFC86D5A50 ] C:\Windows\System32\hid.dll
08:53:48.0879 0x074c  C:\Windows\System32\hid.dll - ok
08:53:48.0894 0x074c  [ DA1B7075260F3872585BFCDD668C648B, 3E10EF6E1A5C341B478322CB78A0AB7BFC70AD8023779B8B4542A7CB4CA756AB ] C:\Windows\System32\dwmapi.dll
08:53:48.0894 0x074c  C:\Windows\System32\dwmapi.dll - ok
08:53:48.0894 0x074c  [ 6F8B48F3D343E4B186AB6A9E302B7E16, 54DB52FC56509E61DF68BD251B3286E6CBE1A91D9BC4D950940A61FE2DA04DF8 ] C:\Windows\System32\xmllite.dll
08:53:48.0894 0x074c  C:\Windows\System32\xmllite.dll - ok
08:53:48.0894 0x074c  [ 885D0942E0F28DB90919BE3129ECF279, 5A10D90EE656ECE3DCA174D6F924641509819FC20CB6EF46B5E1723E52DE85BE ] C:\Windows\System32\dnsext.dll
08:53:48.0894 0x074c  C:\Windows\System32\dnsext.dll - ok
08:53:48.0894 0x074c  [ DC220AE6F64819099F7EBD6F137E32E7, B8FE13B859FA83500DD95637FA6D4A5B8392C2A363E41D014D3B5374F636E1DE ] C:\Windows\System32\AudioSes.dll
08:53:48.0894 0x074c  C:\Windows\System32\AudioSes.dll - ok
08:53:48.0894 0x074c  [ 6A84E68B538B8B04608BF2F0D426CE6F, 59CE1C06364D1BBEE853DA4AEC1E8B678D6E181723ACCF6DB9F9776CAD47BBDA ] C:\Windows\System32\raschap.dll
08:53:48.0894 0x074c  C:\Windows\System32\raschap.dll - ok
08:53:48.0894 0x074c  [ 1B7C3A37362C7B2890168C5FC61C8D9B, 03727930E5BB5F9D91BAB901FC9A2E3B795D68E2AEE6A2CC3477F356C45A9C54 ] C:\Windows\System32\msacm32.drv
08:53:48.0894 0x074c  C:\Windows\System32\msacm32.drv - ok
08:53:48.0894 0x074c  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A, 72288C0A88916D3C3828DBD948DBDB0928F26106319F8E60102D6C9004514D60 ] C:\Windows\System32\msacm32.dll
08:53:48.0894 0x074c  C:\Windows\System32\msacm32.dll - ok
08:53:48.0910 0x074c  [ F568F7C08458D69E4FCD8675BBB107E4, A5FA25ECF248999A68CCECFBB508BFA1ADD18A23E20A9A9081A87C41CAAA36C0 ] C:\Windows\System32\dhcpcsvc.dll
08:53:48.0910 0x074c  C:\Windows\System32\dhcpcsvc.dll - ok
08:53:48.0910 0x074c  [ 3C06D5A929B798D0B13F6481242A0FD2, CE6127A31AB09E21A912CA16E4BDF663E9D05C254CCF9090A8B5A9A2E055EFF3 ] C:\Windows\System32\dhcpcsvc6.dll
08:53:48.0910 0x074c  C:\Windows\System32\dhcpcsvc6.dll - ok
08:53:48.0910 0x074c  [ A648C4A06DE367065B24056D067B4460, 2412487D65A833DDD9AB17D039515CC08DA22D006259EC4B03E42475FAFFD2AD ] C:\Windows\System32\wlanmsm.dll
08:53:48.0910 0x074c  C:\Windows\System32\wlanmsm.dll - ok
08:53:48.0910 0x074c  [ 9FCA3A84338ADEF2AFF67CDA46EF8539, 087DF72096852AE98C56990EE6E68835BE95E7E49ECDDE8B54DAC11C9E07FE94 ] C:\Windows\System32\umb.dll
08:53:48.0910 0x074c  C:\Windows\System32\umb.dll - ok
08:53:48.0910 0x074c  [ AFCA5C1ECEAF948FC815178BC077680E, D052C18EF455E1A272332F2E11FD4F36DA071FAB3B81CA312FB75BF8702ED72D ] C:\Windows\System32\WindowsCodecs.dll
08:53:48.0910 0x074c  C:\Windows\System32\WindowsCodecs.dll - ok
08:53:48.0910 0x074c  [ 06A1386B6E3A0CBC368665C1840906F4, C10BCA5092A0B3F9435CE4D65C7449528C89F5C5243B410878D2EBF516DA2FB2 ] C:\Windows\System32\wlansec.dll
08:53:48.0910 0x074c  C:\Windows\System32\wlansec.dll - ok
08:53:48.0910 0x074c  [ 73FCB7919DEE80EE556F2E498594EBAE, D0F7A0AD3BC33263E9C2CF9787DD326436F9E0C9F5031D769F8A43C64C08A762 ] C:\Windows\System32\onex.dll
08:53:48.0910 0x074c  C:\Windows\System32\onex.dll - ok
08:53:48.0926 0x074c  [ 65522E77A1360DBC8D199DA3BF5EFFE4, E9D748070FA478A3D37F15049F998D340885C0DC5FCE03BFCE5D521C9EBA7350 ] C:\Windows\System32\eappprxy.dll
08:53:48.0926 0x074c  C:\Windows\System32\eappprxy.dll - ok
08:53:48.0926 0x074c  [ CA2A0750ED830678997695FF61B04C30, E84860CD97AA3C4565ABB2D5D406A5C42B1AD2D8BA1B8CF81FE564D91F15F976 ] C:\Windows\System32\midimap.dll
08:53:48.0926 0x074c  C:\Windows\System32\midimap.dll - ok
08:53:48.0926 0x074c  [ 5EDBB34736DD7AC1A73CF8792A835E10, 15E87C449AAF2095273341DD9355D8DF2690340D1DEFAF0DFF034F1CDF4316F8 ] C:\Windows\System32\AudioEng.dll
08:53:48.0926 0x074c  C:\Windows\System32\AudioEng.dll - ok
08:53:48.0926 0x074c  [ 0D753307D274F3688BD21C377B616700, 5DD08E77A11F2561FB96BA212FDDFE21D4394C69C34C3EB88F7F5CD068EE55BF ] C:\Windows\System32\eappcfg.dll
08:53:48.0926 0x074c  C:\Windows\System32\eappcfg.dll - ok
08:53:48.0926 0x074c  [ C1395286B822E306B4FE1568A8A77813, 0642B6C793BE0EED5E7D1D2533FC5A01417C50040FC60A8E89BD97CE4A119388 ] C:\Windows\System32\AUDIOKSE.dll
08:53:48.0926 0x074c  C:\Windows\System32\AUDIOKSE.dll - ok
08:53:48.0926 0x074c  [ 730BF204A595D5B6D7DC57A247CC741C, 264C6901F4A49B738BBD04BCA1783DEE892885BADE9085B0AEA40BAE7CC0A218 ] C:\Windows\System32\wlgpclnt.dll
08:53:48.0926 0x074c  C:\Windows\System32\wlgpclnt.dll - ok
08:53:48.0941 0x074c  [ 97E43F324BE1503CB2FFB058534688DA, 50C781DF38D0D38C9A5420AB1FFF8672DC13FD1ED8E9F5432B4BA3077A7435D5 ] C:\Windows\System32\l2gpstore.dll
08:53:48.0941 0x074c  C:\Windows\System32\l2gpstore.dll - ok
08:53:48.0941 0x074c  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D, 19959D18601712901F03B83150D15E34EBCAB355BB4692C9A28511A72F57FC66 ] C:\Windows\System32\winbrand.dll
08:53:48.0941 0x074c  C:\Windows\System32\winbrand.dll - ok
08:53:48.0941 0x074c  [ 7F1B4C6FF3B85F9ADF74055187B8A22C, CC95DA5662638AACBE9643DCB236464C2C2095A8D5CDC8A747045870BE9D0E7D ] C:\Windows\System32\wlanutil.dll
08:53:48.0941 0x074c  C:\Windows\System32\wlanutil.dll - ok
08:53:48.0941 0x074c  [ AA0B1A7B4750F655936F2F82B5E84428, 443A3822D3BD776922402353C7E8C1257DB2A3D8EE335265934C52BB5820A972 ] C:\Windows\System32\CX64AP40.dll
08:53:48.0941 0x074c  C:\Windows\System32\CX64AP40.dll - ok
08:53:48.0941 0x074c  [ 7D5645EE0EA77D539828433D9B95F5EB, EEF81E9B2205FC456DB6095AD0AEAB38BB131D3BCD090EA6CD91D5568ACAFB7F ] C:\Windows\System32\WinSCard.dll
08:53:48.0941 0x074c  C:\Windows\System32\WinSCard.dll - ok
08:53:48.0941 0x074c  [ C2762A57DF0EE85E63CE4893C5215313, DDE22212D78353633CEDE27D7210469DE674563991105563CF64CCCE2D0743BD ] C:\Windows\System32\VaultCredProvider.dll
08:53:48.0941 0x074c  C:\Windows\System32\VaultCredProvider.dll - ok
08:53:48.0957 0x074c  [ 99B91C5D2FCEF218CAD3600ECB62A799, E28F2903F86D39C5A69B5F89CCD6594E93A1BF1E4ACD613A0F2E2348DFA88D65 ] C:\Windows\System32\msxml6.dll
08:53:48.0957 0x074c  C:\Windows\System32\msxml6.dll - ok
08:53:48.0957 0x074c  [ 8563BA40DF4F1E93A61B70E2C8B60CF8, E5CAA520CBE61FAF3EAA784A51ED30E0CB2FD78EFD8AE1D5C6B0FE43A1009F39 ] C:\Windows\System32\SmartcardCredentialProvider.dll
08:53:48.0957 0x074c  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
08:53:48.0957 0x074c  [ BF352E73615F5461AA6884472435A544, 4B059E79325C5F08CD6FBBE6352E17ADB64B9608CC9EDB36A2DF4D148060C309 ] C:\Windows\System32\BioCredProv.dll
08:53:48.0957 0x074c  C:\Windows\System32\BioCredProv.dll - ok
08:53:48.0957 0x074c  [ 6F3C559B82F2912354BE5B098744CC8C, EB64E5C02C81588921A65194E1256E80699A1317E7D9A57395CD38C2639C8B08 ] C:\Windows\System32\WMALFXGFXDSP.dll
08:53:48.0957 0x074c  C:\Windows\System32\WMALFXGFXDSP.dll - ok
08:53:48.0957 0x074c  [ 796B8123A7859AFD3A4AE10514DBAEB5, E76F69FAFEC3D66263ED95F3FA9EE309BDDACB287E30583A147DC97F6EEB8844 ] C:\Windows\System32\winbio.dll
08:53:48.0957 0x074c  C:\Windows\System32\winbio.dll - ok
08:53:48.0957 0x074c  [ 54B5DCD55B223BC5DF50B82E1E9E86B1, 025294DD69A421FE4EACAA463F8CB797610D8F3A7A3C61656AE83D0CEE07A9BF ] C:\Windows\System32\mfplat.dll
08:53:48.0957 0x074c  C:\Windows\System32\mfplat.dll - ok
08:53:48.0972 0x074c  [ 4403D5ECE7D8323CAF1207D1AA38FA01, BD0B34DCF658D3CB91C1B55E9E730C5F7C571AFC2BFA09270C377B72B6830D48 ] C:\Windows\System32\credui.dll
08:53:48.0972 0x074c  C:\Windows\System32\credui.dll - ok
08:53:48.0972 0x074c  [ CB3CF9915ED7888FDBAF3694775DCCC7, 379A26C8A56192D53DF04504A20FB5A191B1833C16BB1E77B8AD70D371151299 ] C:\Windows\System32\EEL64A.dll
08:53:48.0972 0x074c  C:\Windows\System32\EEL64A.dll - ok
08:53:48.0972 0x074c  [ 44B9C66177651F3F53C87B665D58D17A, 3FC426115FF87570889DB28D71970B82B525D2A4B9A00EDD273BF083B77A05CE ] C:\Windows\System32\vaultcli.dll
08:53:48.0972 0x074c  C:\Windows\System32\vaultcli.dll - ok
08:53:48.0972 0x074c  [ 483849E481652C22BAFC8052414B3099, A573F82D865C6FB66216C9AA7CBAD93535B4CD1CFEFC5EE6A3EFE5A1847685A8 ] C:\Windows\System32\EED64A.dll
08:53:48.0972 0x074c  C:\Windows\System32\EED64A.dll - ok
08:53:48.0972 0x074c  [ EEEA40F0EDB0A6E5359E539E15D0BC77, BFCBF777239C29C6AC4BC5B59591308571647B7C7FDB5571903F7403DD241E8E ] C:\Windows\System32\netapi32.dll
08:53:48.0972 0x074c  C:\Windows\System32\netapi32.dll - ok
08:53:48.0972 0x074c  [ 43FAB56AE5F639AD59D7209693F4C4C2, C64155944DA774A80D443A0E6DCC40A3405D9C69CA3EBC95CA46BFD65C7A4908 ] C:\Windows\System32\wlanext.exe
08:53:48.0972 0x074c  C:\Windows\System32\wlanext.exe - ok
08:53:48.0972 0x074c  [ 6CECA4C6A489C9B2E6073AFDAAE3F607, 127506D1DB38275614CBEB047C133718EF9D03266BA9C98BE55EC7847CFC9C3D ] C:\Windows\System32\netutils.dll
08:53:48.0972 0x074c  C:\Windows\System32\netutils.dll - ok
08:53:48.0988 0x074c  [ BF95EA5809E3BBF55370F7CB309FEBD0, 62ADBA6E1A7DDDEFA971580161F30896DFFC27EB4EB82E3CC72062D57DA66500 ] C:\Windows\System32\conhost.exe
08:53:48.0988 0x074c  C:\Windows\System32\conhost.exe - ok
08:53:48.0988 0x074c  [ 3C91392D448F6E5D525A85B7550D8BA9, 6FD0DC73DBE7519E2C643554C2A7F8FBE4F9A678C4241BB54B3C6E65D2ABCF3A ] C:\Windows\System32\wkscli.dll
08:53:48.0988 0x074c  C:\Windows\System32\wkscli.dll - ok
08:53:48.0988 0x074c  [ FC51229C7D4AFA0D6F186133728B95AB, 37E58C8E1C8437D1981725A5DCDACA7316CEFBB570370CEFC8D122F523B96AC0 ] C:\Windows\System32\samcli.dll
08:53:48.0988 0x074c  C:\Windows\System32\samcli.dll - ok
08:53:48.0988 0x074c  [ BC414631876B2F28B8DAB08E849C12C5, 5973654AA3E90E6B699B0A43F645B893D95BAA803129B6967D746C8239AB26E3 ] C:\Windows\System32\ktmw32.dll
08:53:48.0988 0x074c  C:\Windows\System32\ktmw32.dll - ok
08:53:48.0988 0x074c  [ 51D49EE09ACB59BB82FCDCAAD72FC123, DA5FA9C207F8EF43C62B555C756460B0C86830FE57339B17E02B8AEBF7A6DD95 ] C:\Windows\System32\athihvs.dll
08:53:48.0988 0x074c  C:\Windows\System32\athihvs.dll - ok
08:53:48.0988 0x074c  [ F79C9E3947B904FA3200A2204F9C52BB, 5D7274BF4AB25CB4E52D5FC6B5DF129BFBAEF028457ACF07624F6D00F67E1237 ] C:\Windows\System32\tosWirelessLANIndicatorCP.dll
08:53:48.0988 0x074c  C:\Windows\System32\tosWirelessLANIndicatorCP.dll - ok
08:53:49.0004 0x074c  [ 945E54F23C72D37B8CD1987AF0DB63BF, C2B217C94DBCA0A31ED834B9D492B53B25B235DDD02B1D1200E76609D32772EA ] C:\Windows\System32\fveapi.dll
08:53:49.0004 0x074c  C:\Windows\System32\fveapi.dll - ok
08:53:49.0004 0x074c  [ 694865362F0965779F92BCFE97712323, 825EB75E37AFE9B738869FB5D95020D4F44AD419C2F6C5A658F82A5242FDEF6C ] C:\Windows\System32\tbs.dll
08:53:49.0004 0x074c  C:\Windows\System32\tbs.dll - ok
08:53:49.0004 0x074c  [ 366FD6F3A451351B5DF2D7C4ECF4C73A, AE3CB6C6AFBA9A4AA5C85F66023C35338CA579B30326DD02918F9D55259503D5 ] C:\Windows\System32\msvcr100.dll
08:53:49.0004 0x074c  C:\Windows\System32\msvcr100.dll - ok
08:53:49.0004 0x074c  [ 891ECFD08E2C538B7948CBC45106D697, 628D0D618FF3A70E9FBE3B2C7206C9365ED2297784A5F10FFA05BD2C56657013 ] C:\Windows\System32\fvecerts.dll
08:53:49.0004 0x074c  C:\Windows\System32\fvecerts.dll - ok
08:53:49.0004 0x074c  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7, 4BC5A1279885EEFBEB27333AF719622A5FCDD9606697692C1978E434CE264D80 ] C:\Windows\System32\taskcomp.dll
08:53:49.0004 0x074c  C:\Windows\System32\taskcomp.dll - ok
08:53:49.0004 0x074c  [ 357BE883C5236BFC7341CB9E82308908, 4DDB697FD9B7C516CF99D73C8799EA35BB97E2431216CD7C1045F17B06109FBF ] C:\Windows\System32\wlanapi.dll
08:53:49.0004 0x074c  C:\Windows\System32\wlanapi.dll - ok
08:53:49.0004 0x074c  [ 8269210DAF3B12BC8300631B28A2A442, EABEB792C2EA8D4A1A7B13281CF557C194D5667AE0BA2A2D5664908D8269113D ] C:\Windows\System32\wiarpc.dll
08:53:49.0004 0x074c  C:\Windows\System32\wiarpc.dll - ok
08:53:49.0019 0x074c  [ 698EB872F1B16C2E874281BCEE55F396, DAD4FB1F48A674EB8087A98A217D3BE307A30EDDF24103F3AEC359EA982155B1 ] C:\Program Files\Toshiba\SmartFaceV\SmartFaceVCP.dll
08:53:49.0019 0x074c  C:\Program Files\Toshiba\SmartFaceV\SmartFaceVCP.dll - ok
08:53:49.0019 0x074c  [ AAFE92235773EDED003A84CD0FFA8326, 847F3E90C2E58095A0BB067D007D9FEB6E2CBC62199A5461CB8ACD423D948B3E ] C:\Program Files\Toshiba\SmartFaceV\SmartFaceVHelper.dll
08:53:49.0019 0x074c  C:\Program Files\Toshiba\SmartFaceV\SmartFaceVHelper.dll - ok
08:53:49.0019 0x074c  [ A8704A10FFDE468F4AB18EBF82A9A86F, 40F6502679CEE0B657B0005278FBE7213BDDA6DEAACF868058E17737C182E1B4 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll
08:53:49.0019 0x074c  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll - ok
08:53:49.0019 0x074c  [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7, 690F12C490BEE2BF17AB7B6804E6E9B96F51C304350CCDE80FE5C7EEFA89720E ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
08:53:49.0019 0x074c  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
08:53:49.0019 0x074c  [ 9AE75388EE2C110216B8319584E8AC34, 6F5E79903FF4B6A17E42949E4D09CE25DB944062317CAA5346FC9F39CBAE575F ] C:\Program Files\Toshiba\SmartFaceV\SmartFaceVCtrl.dll
08:53:49.0019 0x074c  C:\Program Files\Toshiba\SmartFaceV\SmartFaceVCtrl.dll - ok
08:53:49.0019 0x074c  [ 2A9238A326763122424E07EF320D5D3A, 8654CABFC1DCEA16C57BFD93C776E7EA33072F288B79CEE8FACECF69173EA4FE ] C:\Program Files\Toshiba\SmartFaceV\FaceRec.dll
08:53:49.0019 0x074c  C:\Program Files\Toshiba\SmartFaceV\FaceRec.dll - ok
08:53:49.0035 0x074c  [ 91175B7E997CFAC64F271A15B4217BC7, 64F01CFD0FB239407D8D59AAA529E8AC4CAC59472A6D924C0F7DF41DED53A5B1 ] C:\Program Files\Toshiba\SmartFaceV\FaceHI.dll
08:53:49.0035 0x074c  C:\Program Files\Toshiba\SmartFaceV\FaceHI.dll - ok
08:53:49.0035 0x074c  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] C:\Windows\System32\drivers\bowser.sys
08:53:49.0035 0x074c  C:\Windows\System32\drivers\bowser.sys - ok
08:53:49.0035 0x074c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] C:\Windows\System32\drivers\mpsdrv.sys
08:53:49.0035 0x074c  C:\Windows\System32\drivers\mpsdrv.sys - ok
08:53:49.0035 0x074c  [ 03706015DB44368375AEBE6339490E66, 02EB28B5156E320C1EBABC03D37E94EB770A721B99E1DD276F8DC2A50D76C381 ] C:\Windows\System32\netcfgx.dll
08:53:49.0035 0x074c  C:\Windows\System32\netcfgx.dll - ok
08:53:49.0035 0x074c  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] C:\Windows\System32\drivers\mrxsmb.sys
08:53:49.0035 0x074c  C:\Windows\System32\drivers\mrxsmb.sys - ok
08:53:49.0035 0x074c  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] C:\Windows\System32\drivers\mrxsmb10.sys
08:53:49.0035 0x074c  C:\Windows\System32\drivers\mrxsmb10.sys - ok
08:53:49.0050 0x074c  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] C:\Windows\System32\drivers\vwifimp.sys
08:53:49.0050 0x074c  C:\Windows\System32\drivers\vwifimp.sys - ok
08:53:49.0050 0x074c  [ C67F8A962B2534224D5908D16D2AD3CE, CAC1821F5E867285638AEE7AE33CE574BCCF16277AC5AD805650B48F7759B4B4 ] C:\Windows\System32\wfapigp.dll
08:53:49.0050 0x074c  C:\Windows\System32\wfapigp.dll - ok
08:53:49.0050 0x074c  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] C:\Windows\System32\drivers\mrxsmb20.sys
08:53:49.0050 0x074c  C:\Windows\System32\drivers\mrxsmb20.sys - ok
08:53:49.0050 0x074c  [ E1D8F96772F6BBE990B435580CA9C33B, 13EAF541BAB26EAB758521EAE7FC70D591B2BD2F6CB33E78D7F58FB169DDDF0C ] C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
08:53:49.0050 0x074c  C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe - ok
08:53:49.0050 0x074c  [ 1834B31C749B86DAC233BBBA1C03BC48, 27FCA9196842C0BB53CCAD895870A0EB10D2F8ED67E5486A4437067BD4BC4448 ] C:\Windows\System32\mscms.dll
08:53:49.0050 0x074c  C:\Windows\System32\mscms.dll - ok
08:53:49.0050 0x074c  [ C7CF4E579351B935AD1DD432ED633E12, CBFF1D6390B6197C8534626403A088F3E1D9A99C8D5D88383B58A3003F41FB36 ] C:\Program Files\Trend Micro\AMSP\utilDebugLog.dll
08:53:49.0050 0x074c  C:\Program Files\Trend Micro\AMSP\utilDebugLog.dll - ok
08:53:49.0050 0x074c  [ 10EAB90C1AE8271B5FE5A8930987EE5C, 53E72964AA75526B161F859A509CB046809AE47C65DC998F0E49AC8AED9066EA ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
08:53:49.0050 0x074c  C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
08:53:49.0066 0x074c  [ 7CAA1B97A3311EB5A695E3C9028616E7, 27F394AE01D12F851F1DEE3632DEE3C5AFA1D267F7A96321D35FD43105B035AD ] C:\Program Files\Trend Micro\AMSP\msvcp110.dll
08:53:49.0066 0x074c  C:\Program Files\Trend Micro\AMSP\msvcp110.dll - ok
08:53:49.0066 0x074c  [ 4004299B7AF4CBFF6540F1798899A11F, 5DD3AE149B7228A769F2FE95355795AC98ACD8CDFB78954A423A357F717203C3 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
08:53:49.0066 0x074c  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
08:53:49.0066 0x074c  [ 7C3B449F661D99A9B1033A14033D2987, AE996EDB9B050677C4F82D56092EFDC75F0ADDC97A14E2C46753E2DB3F6BD732 ] C:\Program Files\Trend Micro\AMSP\msvcr110.dll
08:53:49.0066 0x074c  C:\Program Files\Trend Micro\AMSP\msvcr110.dll - ok
08:53:49.0066 0x074c  [ 15BE2309C00B0EBBE0D420BD42C3E0F1, 8D780AE5C4F7E7DAE5B58ABFE437C7A19BF648C4C6062726A575059FFEBF1F5C ] C:\Program Files\Toshiba\SmartFaceV\SmartFaceVLogOn.dll
08:53:49.0066 0x074c  C:\Program Files\Toshiba\SmartFaceV\SmartFaceVLogOn.dll - ok
08:53:49.0066 0x074c  [ 74D0D0785E49B84CB6E4201377EF773F, F98694BF924196A45979A74855C21FBA25264A8205DEA53E90423CD1C40AD616 ] C:\Program Files\Trend Micro\AMSP\boost_date_time-vc110-mt-1_49.dll
08:53:49.0066 0x074c  C:\Program Files\Trend Micro\AMSP\boost_date_time-vc110-mt-1_49.dll - ok
08:53:49.0082 0x074c  [ 40AA91E0CAF2F54D91524E72EEF85FC0, 5369E7E86F8624EE24A27DA1135408690682D5A5EB1C3AF9D86C0F0FBA4C5670 ] C:\Program Files\Trend Micro\AMSP\utilGenericLoader.dll
08:53:49.0082 0x074c  C:\Program Files\Trend Micro\AMSP\utilGenericLoader.dll - ok
08:53:49.0082 0x074c  [ EACF25AAFB9CCF6E311E0960A964CE15, 329482D317986513C85F361CD209D7711B968F92B3E09586B47B10B89FBB5274 ] C:\Program Files\Trend Micro\AMSP\utilInstallation.dll
08:53:49.0082 0x074c  C:\Program Files\Trend Micro\AMSP\utilInstallation.dll - ok
08:53:49.0082 0x074c  [ AA950A681F799E3FD062CE8184AE28CC, 9D59D30439F4619EFD3B0EE9AE1FD3F403D1B1E25D815C2267A51F137B666AD9 ] C:\Program Files\Trend Micro\AMSP\utilComponentInfo.dll
08:53:49.0082 0x074c  C:\Program Files\Trend Micro\AMSP\utilComponentInfo.dll - ok
08:53:49.0082 0x074c  [ 30B891394B16AB19B6443DD8A181F49B, 7B438F4CDD630D77BFC9D68F69BF4942DAA1CCB3A455AB6F00F24623B8BD1B91 ] C:\Program Files\Trend Micro\AMSP\utilMsgBuffer.dll
08:53:49.0082 0x074c  C:\Program Files\Trend Micro\AMSP\utilMsgBuffer.dll - ok
08:53:49.0082 0x074c  [ 9BC8610C32C96A2983A65DC21CAFA921, 2A4195F663C9D55939E3D8FEAA208090FDB0B8801A60164A7325B53104797CBC ] C:\Windows\System32\UXInit.dll
08:53:49.0082 0x074c  C:\Windows\System32\UXInit.dll - ok
08:53:49.0082 0x074c  [ B1932C195001E901D14C2416A43AF185, E1300CBFDBF741F0A98AE9729A09A5C557AD6F76D41BB90F5B24C2FD217DE0C1 ] C:\Program Files\Trend Micro\AMSP\utilThread.dll
08:53:49.0082 0x074c  C:\Program Files\Trend Micro\AMSP\utilThread.dll - ok
08:53:49.0097 0x074c  [ 548C472D9F2E37EA03536B93CD4DE08A, A0B93200E9D20DFFCA7948538420E49AF32010A0B61295D2E0780040A5FE58DE ] C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
08:53:49.0097 0x074c  C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe - ok
08:53:49.0097 0x074c  [ 972C3301DB3DA91AE06A95F6B4160B1B, 678B533A06C306295FE97DC26CE9BAFFC8EAF1FB7405ACB040719099717744D5 ] C:\Windows\System32\certCredProvider.dll
08:53:49.0097 0x074c  C:\Windows\System32\certCredProvider.dll - ok
08:53:49.0097 0x074c  [ 7097425051CE67B450EBF2B1390AE492, 45354BA04E383B65D13A073F63EA5EA185D8B0C1E208B6671ED8EBC64711D109 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
08:53:49.0097 0x074c  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
08:53:49.0097 0x074c  [ FB3CBFD016EFE72DB85522CD58362772, E28EA076FF4058739162105621CF06068F6076F832970EBB9EEEB4C5B36FCA27 ] C:\Windows\System32\nvsvc64.dll
08:53:49.0097 0x074c  C:\Windows\System32\nvsvc64.dll - ok
08:53:49.0097 0x074c  [ 6366643495BA0B1003E4493EFD3D0709, 3E4D261B6DB7EFBA5F1642A0C69D98C61748C780B447EB26E28DD62F826AE076 ] C:\Program Files\NVIDIA Corporation\Display\NVXDApiX.dll
08:53:49.0097 0x074c  C:\Program Files\NVIDIA Corporation\Display\NVXDApiX.dll - ok
08:53:49.0097 0x074c  [ 87FA0C48C3B2E9FEE518818FE26B15B5, DA4042DE9897397AEDCEFF9F69746726237305DDE64464309B6DCC45E05E42F4 ] C:\Windows\System32\rasplap.dll
08:53:49.0097 0x074c  C:\Windows\System32\rasplap.dll - ok
08:53:49.0097 0x074c  [ 019CD868461B646E09BDF04474C19341, 01837EFACB02E52BC6E90C90C4CB01B11D56E449A37EA4FC2695507FF85EA9FE ] C:\Windows\System32\rasapi32.dll
08:53:49.0097 0x074c  C:\Windows\System32\rasapi32.dll - ok
08:53:49.0113 0x074c  [ E424B3EF666B184CEE0B6871AAA8C9F6, D182D9B3A813C75F88CA16A9C236AB6167DF5861D155B5DC016B90918C4BD579 ] C:\Windows\System32\msimg32.dll
08:53:49.0113 0x074c  C:\Windows\System32\msimg32.dll - ok
08:53:49.0113 0x074c  [ B28DEEC597C8DEB70C744C7CF9210E3E, E777F192D822990CA6301B3FEA2AEA213FA7901438EB3328914ADF02B6C39DB9 ] C:\Windows\System32\rasman.dll
08:53:49.0113 0x074c  C:\Windows\System32\rasman.dll - ok
08:53:49.0113 0x074c  [ 64EBD76C94C49E18CF27BD8EDFFA80E1, 1761C4316871E73381D9018A0A6EC077C6EBC75A7CB3F0715D74BA3300A32FB3 ] C:\Windows\System32\nvapi64.dll
08:53:49.0113 0x074c  C:\Windows\System32\nvapi64.dll - ok
08:53:49.0113 0x074c  [ B53C4B69B695EDA1B7E41D35CA4244E2, 3D98E9B263CADA576E4057E059AFC867F6E3F1001F3B73C8BCF9066763A45D9D ] C:\Windows\System32\rtutils.dll
08:53:49.0113 0x074c  C:\Windows\System32\rtutils.dll - ok
08:53:49.0113 0x074c  [ B617F0F1F8D2EBDBFF41D8E055BDCF0E, EAE386C59811B8129B006E6B8D7AE11FAF222837F4490EEC4AF100B67E394286 ] C:\Windows\System32\nvsvcr.dll
08:53:49.0113 0x074c  C:\Windows\System32\nvsvcr.dll - ok
08:53:49.0113 0x074c  [ E861ACD8E3335A4FA92E5B1ADFF738B7, 70CCAA1AF307DD4E15C384149EB7ECAD589693CDE82B92549AC6E66009538152 ] C:\Program Files\NVIDIA Corporation\Display\nvui.dll
08:53:49.0113 0x074c  C:\Program Files\NVIDIA Corporation\Display\nvui.dll - ok
08:53:49.0128 0x074c  [ F5CEF064C7E6D95DA86B9D064A56A969, F118CD4364690F37A07AE458E043E8CFBA98F332DC9E7228C83409CF26F6EF6D ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
08:53:49.0128 0x074c  C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
08:53:49.0128 0x074c  [ 0015ACFBBDD164A8A730009908868CA7, E1FF243AD2CF959FAB81EFE701592414991C03416FF296ADC93906E76B707C4D ] C:\Windows\System32\winspool.drv
08:53:49.0128 0x074c  C:\Windows\System32\winspool.drv - ok
08:53:49.0128 0x074c  [ CD48C99FD522CFB0340A162DEF117EF1, 31241B8274040236006848E29EB0ACBCB473EE6299A21D9FFA28D1BDC6900389 ] C:\Program Files\NVIDIA Corporation\Display\nvuir.dll
08:53:49.0128 0x074c  C:\Program Files\NVIDIA Corporation\Display\nvuir.dll - ok
08:53:49.0128 0x074c  [ EE1B181B38F76B93A8491D59FA5D8924, 29EB3DE36078737C7F5A101EE3C467A37F59102DD963E4EDA50D01037A1E704F ] C:\Windows\System32\nvcpl.dll
08:53:49.0128 0x074c  C:\Windows\System32\nvcpl.dll - ok
08:53:49.0128 0x074c  [ CF636C92B762B26F0B39B38E92380A09, F7B8B0EA4536CE3BA33EE1BD0783F6AAD8C0EF69714E874D4A30B720A04C7A18 ] C:\Windows\System32\oleacc.dll
08:53:49.0128 0x074c  C:\Windows\System32\oleacc.dll - ok
08:53:49.0128 0x074c  [ 9028D1621C43DF8DFBD1C76860412A11, A1D48D9B33180BDE50D2FA9BB07E9520B7B7788C39B3AABB4A06AE4B1AACA755 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll
08:53:49.0128 0x074c  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll - ok
08:53:49.0128 0x074c  [ 019BDD35DE269CB98B22DE8923C2AA3B, 68B216D5331B128CF1BCB3A3F82FD85B119FFDBCB796C907461CDD6248995817 ] C:\Windows\System32\UIAutomationCore.dll
08:53:49.0128 0x074c  C:\Windows\System32\UIAutomationCore.dll - ok
08:53:49.0144 0x074c  [ F7A41F7DC408C57A59343664595130CC, 0298C61EC4B58800DBE664566020C48832142C00FF12CF4C80ADB6D3776C59C6 ] C:\Program Files\NVIDIA Corporation\Display\NVXDBat.dll
08:53:49.0144 0x074c  C:\Program Files\NVIDIA Corporation\Display\NVXDBat.dll - ok
08:53:49.0144 0x074c  [ DC52DB637B27E2004237B4FAC7CAEF69, F17A993A2EE5C33BF6AAEABB51A12CBBC8CD76803FB5C44C277027E094DC5667 ] C:\Program Files (x86)\Toshiba\Wireless LAN Indicator\tosIndicator.exe
08:53:49.0144 0x074c  C:\Program Files (x86)\Toshiba\Wireless LAN Indicator\tosIndicator.exe - ok
08:53:49.0144 0x074c  [ 5AA945234E9D4CCE4F715276B9AA712C, 65165BD131056816F009D987FC78AC86FFE0C3C38A27E73F873586B7FF4D59CF ] C:\Windows\System32\imageres.dll
08:53:49.0144 0x074c  C:\Windows\System32\imageres.dll - ok
08:53:49.0144 0x074c  [ 429C2A1E1DF91B763195327EBBC6D101, F874B0A5F4B198A5C0F8814A1968D98C917AC32B556C7136EC72507387A2BEBF ] C:\Program Files\NVIDIA Corporation\Display\NVXDPlcy.dll
08:53:49.0144 0x074c  C:\Program Files\NVIDIA Corporation\Display\NVXDPlcy.dll - ok
08:53:49.0144 0x074c  [ A2B0924D50F4435FD389499047CE553A, 8D16D5CAAD71AAAAA1479F8477D2928B66581C79932A49A21EDF93DB2803AB9C ] C:\Windows\SysWOW64\ntdll.dll
08:53:49.0144 0x074c  C:\Windows\SysWOW64\ntdll.dll - ok
08:53:49.0144 0x074c  [ 2A107B611C91CD256466C58C0D776E9D, 58EA4F6E0FE7EFB8D3024AE71EE16848C2A00BA5224C8054C80134F99D9A72AB ] C:\Windows\System32\wow64.dll
08:53:49.0144 0x074c  C:\Windows\System32\wow64.dll - ok
08:53:49.0160 0x074c  [ 7434E01FBCA3CB86539C39412A31D5E1, E40D5AEBB3A5D8F53C76E3FBF0C07B9C0227914C869F57622EA44A212383EE6D ] C:\Windows\System32\wow64win.dll
08:53:49.0160 0x074c  C:\Windows\System32\wow64win.dll - ok
08:53:49.0160 0x074c  [ 0F090A77E664CB0F70AB8D3B230B760C, A08EA0409B3BF88AB12792F721FA3A692BBE640DF2A06641E142843A7044EC5E ] C:\Windows\System32\wow64cpu.dll
08:53:49.0160 0x074c  C:\Windows\System32\wow64cpu.dll - ok
08:53:49.0160 0x074c  [ 76161B9D78A275F8F28DD67436013110, E4AE9648BDED9035D39DF20C3A6F453F67D49D7899038B21D88FFD4EFFCC4C08 ] C:\Windows\SysWOW64\kernel32.dll
08:53:49.0160 0x074c  C:\Windows\SysWOW64\kernel32.dll - ok
08:53:49.0160 0x074c  [ D83947A58613E9091B4C9CC0F1546A8D, C71DF6E18E2099FC462717B8658D39C607A62C7E7A1E5CD0E258C17434535AD0 ] C:\Windows\SysWOW64\mscoree.dll
08:53:49.0160 0x074c  C:\Windows\SysWOW64\mscoree.dll - ok
08:53:49.0160 0x074c  [ 461B713DE7F353C6447B744F1A049930, 3551C57128DAFA009C9DB3EE0D798D94B269D1605F74897566D7E79E5FDD437B ] C:\Windows\SysWOW64\KernelBase.dll
08:53:49.0160 0x074c  C:\Windows\SysWOW64\KernelBase.dll - ok
08:53:49.0160 0x074c  [ D67472125471784DE7147946EDA25FEB, F41960118F412B6CA5E80AE5E8DB9AECDD043A7DB34388FF57C6F9C5A0056F91 ] C:\Windows\SysWOW64\advapi32.dll
08:53:49.0160 0x074c  C:\Windows\SysWOW64\advapi32.dll - ok
08:53:49.0160 0x074c  [ 9DC80A8AAAAAC397BDAB3C67165A824E, 051636BFDFF7AB0E4191354E846BD0DACCA1A01FCC13C1AFED91D8DBFE17127A ] C:\Windows\SysWOW64\msvcrt.dll
08:53:49.0160 0x074c  C:\Windows\SysWOW64\msvcrt.dll - ok
08:53:49.0175 0x074c  [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\SysWOW64\sechost.dll
08:53:49.0175 0x074c  C:\Windows\SysWOW64\sechost.dll - ok
08:53:49.0175 0x074c  [ 4DC999CED9429939D75682EBD7D48901, 4E2DB6E4C500980488010AF1125A73D0F958889379F05DB304A220B4BB2D1834 ] C:\Windows\SysWOW64\rpcrt4.dll
08:53:49.0175 0x074c  C:\Windows\SysWOW64\rpcrt4.dll - ok
08:53:49.0175 0x074c  [ 75878492F2B33405EEF900F8C16C6D08, E38B3B58C3C6895F9CBA28E8BD4C6497D07342FD9CA4BBAE6AFC48D40DC11FA1 ] C:\Windows\SysWOW64\sspicli.dll
08:53:49.0175 0x074c  C:\Windows\SysWOW64\sspicli.dll - ok
08:53:49.0175 0x074c  [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\SysWOW64\cryptbase.dll
08:53:49.0175 0x074c  C:\Windows\SysWOW64\cryptbase.dll - ok
08:53:49.0175 0x074c  [ 5E3C0E5FFDA48C5DA35BBFB8EFFF8066, E2BBCC111DB1CE6072CB796F21677E4529029CE66DDC471EC793278F81F1FCF6 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
08:53:49.0175 0x074c  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
08:53:49.0175 0x074c  [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\SysWOW64\shlwapi.dll
08:53:49.0175 0x074c  C:\Windows\SysWOW64\shlwapi.dll - ok
08:53:49.0175 0x074c  [ 56E3313690866F99CD17AA1342F64AE1, 4AD4E105C1A6E9BAB9568CA21B15A38C59702EF605AA9058490C56DA070CF846 ] C:\Windows\SysWOW64\gdi32.dll
08:53:49.0175 0x074c  C:\Windows\SysWOW64\gdi32.dll - ok
08:53:49.0191 0x074c  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3, 01EB95FA3943CF3C6B1A21E473A5C3CB9FCBCE46913B15C96CAC14E4F04075B4 ] C:\Windows\SysWOW64\user32.dll
08:53:49.0191 0x074c  C:\Windows\SysWOW64\user32.dll - ok
08:53:49.0191 0x074c  [ CC23295DA8F7B5C53F93804D2F5D30EB, B290D96C40FBA934DE6CFF82D9BBA6780922CC5012C61599BD5006DAEDC82DDB ] C:\Windows\SysWOW64\lpk.dll
08:53:49.0191 0x074c  C:\Windows\SysWOW64\lpk.dll - ok
08:53:49.0191 0x074c  [ B7230010D97787AF3D25E4C82F2B06B9, C795E9811CD461F8E98D1738667EB0C265A57065EA3420CE596D5038E7430C1E ] C:\Windows\SysWOW64\usp10.dll
08:53:49.0191 0x074c  C:\Windows\SysWOW64\usp10.dll - ok
08:53:49.0191 0x074c  [ A6F09E5669D9A19035F6D942CAA15882, 68C8AF0CC1923E3A7245392F2480EE665D265DF300A609D2540BF7C6D9C1A1BE ] C:\Windows\SysWOW64\imm32.dll
08:53:49.0191 0x074c  C:\Windows\SysWOW64\imm32.dll - ok
08:53:49.0191 0x074c  [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\SysWOW64\msctf.dll
08:53:49.0191 0x074c  C:\Windows\SysWOW64\msctf.dll - ok
08:53:49.0191 0x074c  [ CE38536E05E23FE796C11AFFAB6FA842, C513ECE5B70D433C7D97009307C3CCFDD0E5ED77423AD57319EC8390DAEFD0BC ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
08:53:49.0191 0x074c  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
08:53:49.0206 0x074c  [ C9564CF4976E7E96B4052737AA2492B4, C3AC989C8489A23BB96400B1856F5325FFC67E844F04651EA5D61BC20A991C6D ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
08:53:49.0206 0x074c  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
08:53:49.0206 0x074c  [ E9D88493FBDB36D4B65C6F2F7F122C95, 226B05B57C1F509A48C7EC22B71E60202AC34995ECA50075EE16B87EAC366BF5 ] C:\Windows\SysWOW64\shell32.dll
08:53:49.0206 0x074c  C:\Windows\SysWOW64\shell32.dll - ok
08:53:49.0206 0x074c  [ A7A8CA53D9C9FD90C07AB0EB38E5316B, B98722E76601A98F038F40703C4B8BD21B5EC3B65DC1B07B7C367C06448F8A0E ] C:\Windows\System32\dbghelp.dll
08:53:49.0206 0x074c  C:\Windows\System32\dbghelp.dll - ok
08:53:49.0206 0x074c  [ 7D29051E51113FDA64377BACB26C9D9B, B9EAAC771F58B8908C92AE27A1FBCADA9F08F26B65ED495AADAA033EFC6F363C ] C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe
08:53:49.0206 0x074c  C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe - ok
08:53:49.0206 0x074c  [ 7C3B449F661D99A9B1033A14033D2987, AE996EDB9B050677C4F82D56092EFDC75F0ADDC97A14E2C46753E2DB3F6BD732 ] C:\Windows\System32\msvcr110.dll
08:53:49.0206 0x074c  C:\Windows\System32\msvcr110.dll - ok
08:53:49.0206 0x074c  [ 7CAA1B97A3311EB5A695E3C9028616E7, 27F394AE01D12F851F1DEE3632DEE3C5AFA1D267F7A96321D35FD43105B035AD ] C:\Windows\System32\msvcp110.dll
08:53:49.0206 0x074c  C:\Windows\System32\msvcp110.dll - ok
08:53:49.0222 0x074c  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:53:49.0222 0x074c  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
08:53:49.0222 0x074c  [ 30F504048227E43B97DA2F05A89AB7DD, 399AAD47FA160F3035CB576AB6C27BAC0CF1AFC46A448FB3AD9C7293F69C7078 ] C:\Program Files\Trend Micro\AMSP\utilRollback.exe
08:53:49.0222 0x074c  C:\Program Files\Trend Micro\AMSP\utilRollback.exe - ok
08:53:49.0222 0x074c  [ 011450254233BA8DC9C97B676ACF36FD, F7DC06B5C2899214E177D95F1204A8EA715522FAE5E995DBB5E3BE092E03BDB8 ] C:\Program Files\Trend Micro\AMSP\coreConfigRepository.dll
08:53:49.0222 0x074c  C:\Program Files\Trend Micro\AMSP\coreConfigRepository.dll - ok
08:53:49.0222 0x074c  [ 928CF7268086631F54C3D8E17238C6DD, F058FAFB04E7EBD5CADE9B48195B7AA7C3508F332A89F5E6E5F3F071E8CADD4A ] C:\Windows\SysWOW64\ole32.dll
08:53:49.0222 0x074c  C:\Windows\SysWOW64\ole32.dll - ok
08:53:49.0222 0x074c  [ AE146466171D98CF17F5875E267EF743, E16AE46DB60A646BC9519AC41660A8A3F2BB9A8599A5C34ABC13953503D19C55 ] C:\Program Files\Trend Micro\AMSP\module\7\3.0.1287\coreUpdateManager.dll
08:53:49.0222 0x074c  C:\Program Files\Trend Micro\AMSP\module\7\3.0.1287\coreUpdateManager.dll - ok
08:53:49.0222 0x074c  [ 6C765E82B57F2E66CE9C54AC238471D9, 97F410023F5C08B4BC5DBF89A642200E76F4025ADD9707C24FD89D673675BB43 ] C:\Windows\SysWOW64\oleaut32.dll
08:53:49.0222 0x074c  C:\Windows\SysWOW64\oleaut32.dll - ok
08:53:49.0222 0x074c  [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\SysWOW64\profapi.dll
08:53:49.0222 0x074c  C:\Windows\SysWOW64\profapi.dll - ok
08:53:49.0238 0x074c  [ CC09E0C9A2D89C6E71D093DC8BD121B7, 5F92457E27D817541EBA92FED984D2E6C1E35AD4E4E4CAE0F0778B795C260FAA ] C:\Windows\SysWOW64\crypt32.dll
08:53:49.0238 0x074c  C:\Windows\SysWOW64\crypt32.dll - ok
08:53:49.0238 0x074c  [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\SysWOW64\msasn1.dll
08:53:49.0238 0x074c  C:\Windows\SysWOW64\msasn1.dll - ok
08:53:49.0238 0x074c  [ 632E7832A201CD14E06EED98B234C7EE, C69BB66647A22045CF5A9847C4BCDA0ECE02D381852CD6770DC5CE636E772F7F ] C:\Program Files\Trend Micro\AMSP\utilAccessControl.dll
08:53:49.0238 0x074c  C:\Program Files\Trend Micro\AMSP\utilAccessControl.dll - ok
08:53:49.0238 0x074c  [ 68EAAEDF0365168B804E8728368FA946, 1FA25087E8B247B099B729F780DBF24F77FD34F58186A1C94329261CF3D18B8E ] C:\Windows\SysWOW64\wintrust.dll
08:53:49.0238 0x074c  C:\Windows\SysWOW64\wintrust.dll - ok
08:53:49.0238 0x074c  [ 93C2D166F5C3C14B32B15184254049C3, 397879F4974CD03FBEE3DC3EA859F1BE3B9E3269603F053CE17DCBC384B83B34 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\ede2c6c842840e009f01bcc74fa4c457\mscorlib.ni.dll
08:53:49.0238 0x074c  C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\ede2c6c842840e009f01bcc74fa4c457\mscorlib.ni.dll - ok
08:53:49.0238 0x074c  [ CDBE9690CF2B8409FACAD94FAC9479C9, 8E7FE1A1F3550C479FFD86A77BC9D10686D47F8727025BB891D8F4F0259354C8 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
08:53:49.0238 0x074c  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
08:53:49.0253 0x074c  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:53:49.0253 0x074c  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
08:53:49.0253 0x074c  [ BC83108B18756547013ED443B8CDB31B, B2AD109C15EAA92079582787B7772BA0A2F034F7D075907FF87028DF0EAEA671 ] C:\Windows\SysWOW64\msvcp100.dll
08:53:49.0253 0x074c  C:\Windows\SysWOW64\msvcp100.dll - ok
08:53:49.0253 0x074c  [ 0E37FBFA79D349D672456923EC5FBBE3, 8793353461826FBD48F25EA8B835BE204B758CE7510DB2AF631B28850355BD18 ] C:\Windows\SysWOW64\msvcr100.dll
08:53:49.0253 0x074c  C:\Windows\SysWOW64\msvcr100.dll - ok
08:53:49.0253 0x074c  [ 29158B1DC3F86D4B0D6A127FE586ADFF, 03C17FA518200CE5C53AED55C5AF22D0A2D483110FB1E7EA6F990C56936570E6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
08:53:49.0253 0x074c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
08:53:49.0253 0x074c  [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\SysWOW64\version.dll
08:53:49.0253 0x074c  C:\Windows\SysWOW64\version.dll - ok
08:53:49.0253 0x074c  [ E26E6A97B94304F78B3A2D85C6056CC2, A4D678729145E9A9E561564B4E15AA67DD8103153BCAA2DD38084E43E33D0D00 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
08:53:49.0253 0x074c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
08:53:49.0269 0x074c  [ 461299398E15909598B7002B3FAABCE8, 1965E672088268C91848A100D77A6CD6E689589185B528DD9E0907ED1AD60771 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
08:53:49.0269 0x074c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
08:53:49.0269 0x074c  [ 7FF15A4F092CD4A96055BA69F903E3E9, 1B594E6D057C632ABB3A8CF838157369024BD6B9F515CA8E774B22FE71A11627 ] C:\Windows\SysWOW64\ws2_32.dll
08:53:49.0269 0x074c  C:\Windows\SysWOW64\ws2_32.dll - ok
08:53:49.0269 0x074c  [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\SysWOW64\nsi.dll
08:53:49.0269 0x074c  C:\Windows\SysWOW64\nsi.dll - ok
08:53:49.0269 0x074c  [ EA6C35EBF9F3ED65724E1D65F09E6E7F, D39DD2D98277B0136C47E3C762E76EB12D6BDB79151F673E681B7EA49EBC6A6F ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
08:53:49.0269 0x074c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
08:53:49.0269 0x074c  [ 8EAEB0ED23A98DE0F0C812D756E47CE9, D49AB526C0B0356AB1F778E3B6AFC4D148742942F8561C9C4C2183A649661A86 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
08:53:49.0269 0x074c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
08:53:49.0269 0x074c  [ 5760B2B5BAA3449C045B6FA222205F60, AC566245868530F6A8F80BEA9C6AB532DB2280F280CA4889C09BCCA9D057C1D4 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
08:53:49.0269 0x074c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
08:53:49.0284 0x074c  [ D5AEFAD57C08349A4393D987DF7C715D, C36A45BC2448DF30CD17BD2F8A17FC196FAFB685612CACCEB22DC7B58515C201 ] C:\Windows\SysWOW64\winmm.dll
08:53:49.0284 0x074c  C:\Windows\SysWOW64\winmm.dll - ok
08:53:49.0284 0x074c  [ BCE7DD8098CE6DD28EE2B0D5D5028B47, C48E1E455A0C6FC351CA2A8938C78D6D278B753FA7A621628B4E843C3A8F02FE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
08:53:49.0284 0x074c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
08:53:49.0284 0x074c  [ 43964FA89CCF97BA6BE34D69455AC65F, 10E3B89A5470E1BB6F73382135DD2352F5073C1EE8485D7476CFB5122D4AAA2F ] C:\Windows\SysWOW64\uxtheme.dll
08:53:49.0284 0x074c  C:\Windows\SysWOW64\uxtheme.dll - ok
08:53:49.0284 0x074c  [ 922563953E405AA9762F90778B711F77, 3DD35372DFC79F309BF419E9BF0043D1B1E00EDC47DCFF4D669416BDD5B094C5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
08:53:49.0284 0x074c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
08:53:49.0284 0x074c  [ 54023DF1A9A7D481B4762B09ECCA330F, 271B46804B2E944B7ABF707939CB498AE78B0EE6DDCE318E26BE0C7BA826DFA3 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt49.dll
08:53:49.0284 0x074c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt49.dll - ok
08:53:49.0284 0x074c  [ 0F42F3605AB5C3679765FF1081275EF3, 50BD23EC2590C1083EA33E3D1E3448244A3D8995672DFB4DBC409E20FA9BF2FF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b3a78269847005365001c33870cd121f\System.ni.dll
08:53:49.0284 0x074c  C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b3a78269847005365001c33870cd121f\System.ni.dll - ok
08:53:49.0300 0x074c  [ 8CC33F757E817C7C03C6A5F7FDF85F09, C120CA09A37CAD9DD39B59B9C99476B38E666B32A907D68495F9E568DA5CE694 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1d696b2d3de530f7ee971070263667ff\WindowsBase.ni.dll
08:53:49.0300 0x074c  C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1d696b2d3de530f7ee971070263667ff\WindowsBase.ni.dll - ok
08:53:49.0300 0x074c  [ 3E40BD88F9C0919E7A73D5E070688666, E1441368E4A76D4031D9373ED3F196101080D4E36F14C9B51783E84EEF8C7073 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
08:53:49.0300 0x074c  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
08:53:49.0300 0x074c  [ 739AFF76CF8D1280EB3E10DD02748DDF, 6917FDD9C3CB48F550550A1BC4670C919FCD05D55AB91DE8A4BB025BFCAB918C ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\660ac5d6da77df8e86fb26f05c6a9816\PresentationCore.ni.dll
08:53:49.0300 0x074c  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\660ac5d6da77df8e86fb26f05c6a9816\PresentationCore.ni.dll - ok
08:53:49.0300 0x074c  [ 2EC5693E2EE393F3A97BBB6C46D67779, 68CCECB20B55247B0DC2EF720FA8905CD039D91002D7450293BE585DF926462B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
08:53:49.0300 0x074c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
08:53:49.0300 0x074c  [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\SysWOW64\setupapi.dll
08:53:49.0300 0x074c  C:\Windows\SysWOW64\setupapi.dll - ok
08:53:49.0316 0x074c  [ F436E847FA799ECD75AD8C313673F450, 3C8BF3F0C08C7FA8DE5CD9C60AD9D00B742E84EB1FEBEEBA0F7159844BAAA471 ] C:\Windows\SysWOW64\cfgmgr32.dll
08:53:49.0316 0x074c  C:\Windows\SysWOW64\cfgmgr32.dll - ok
08:53:49.0316 0x074c  [ 2EEFF4502F5E13B1BED4A04CCAD64C08, 209FF1B6D46D1AC99518FCF54F2F726143B2DBF2C5FDA90212FBEF7526F7CBF5 ] C:\Windows\SysWOW64\devobj.dll
08:53:49.0316 0x074c  C:\Windows\SysWOW64\devobj.dll - ok
08:53:49.0316 0x074c  [ D15618A0FF8DBC2C5BF3726BACC75A0B, ADD81EA1D208907D67802F0E96EC0327BA89021F870BA22B9C7E3A19013A6AE7 ] C:\Windows\SysWOW64\userenv.dll
08:53:49.0316 0x074c  C:\Windows\SysWOW64\userenv.dll - ok
08:53:49.0316 0x074c  [ DF13A51A5C591887D2EC6AE64CEED0FA, DFD503AEBCAA056B2B0E669ACA52F6D26F4E6892F2DCFCCD902752C23A621653 ] C:\Windows\SysWOW64\wsock32.dll
08:53:49.0316 0x074c  C:\Windows\SysWOW64\wsock32.dll - ok
08:53:49.0316 0x074c  [ 6A6B2EE4565A178035BE2A4FF6F2C968, E2E231F1C2E2CE19583483ACC53318651FA7CA2DE46BCB89B4CBF97CA0525122 ] C:\Windows\SysWOW64\wtsapi32.dll
08:53:49.0316 0x074c  C:\Windows\SysWOW64\wtsapi32.dll - ok
08:53:49.0316 0x074c  [ 062373995EAE5F0EAC9EAA9192136BFB, 0392D5656BD677C4C5CB74C96E7B85B0867F2535A37950AEC7F5C4A1A70D19AE ] C:\Windows\SysWOW64\dnssd.dll
08:53:49.0316 0x074c  C:\Windows\SysWOW64\dnssd.dll - ok
08:53:49.0316 0x074c  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] C:\Program Files\Bonjour\mDNSResponder.exe
08:53:49.0316 0x074c  C:\Program Files\Bonjour\mDNSResponder.exe - ok
08:53:49.0331 0x074c  [ E94C583CDE2348950155F2AF2876F34D, D00C7E0D665E467B712C68A446CC5BE14FDA743A2301878B3CEB72CDD0A8B8E7 ] C:\Windows\SysWOW64\mswsock.dll
08:53:49.0331 0x074c  C:\Windows\SysWOW64\mswsock.dll - ok
08:53:49.0331 0x074c  [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
08:53:49.0331 0x074c  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
08:53:49.0331 0x074c  [ 304A778141AFAA9AD2A5F91AD691A159, 6255518284CB09658072353048E12CAE1C8102126A19ECA2D9CA5D395C6970CF ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
08:53:49.0331 0x074c  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
08:53:49.0331 0x074c  [ E4E829EE073E046B0EB19B5FECB19B8C, E5D6579A6037EA822EF8ECFFDFDFC3FDDCEE5E755192F0C4E81C1BAB498F06F0 ] C:\Windows\SysWOW64\wininet.dll
08:53:49.0331 0x074c  C:\Windows\SysWOW64\wininet.dll - ok
08:53:49.0331 0x074c  [ 72551A9AE5F68905DFC3CBA0D5242566, 15C273519C3AD1B2AF68F669125AFE607A86A60D680E299631D5E893C3CAA7E7 ] C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
08:53:49.0331 0x074c  C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe - ok
08:53:49.0331 0x074c  [ 589CBC4989F750E1DA35625AB481CF43, B93E1B8C3775F9C995FD5451C685A06DEFD24AE1DF0DD99D19D5E4B9AC0010F9 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
08:53:49.0331 0x074c  C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
08:53:49.0347 0x074c  [ 6951562DC4625EEFC6EACD52AD165866, 44A0B3EA0232D613A5B4115492DF2A7CEF25B35300E6A3E3E50C9544C5D1049E ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
08:53:49.0347 0x074c  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
08:53:49.0347 0x074c  [ 3BE0D923AA45A4DBE091C2D84F0B4FE7, 603EEC55D6F646150FC3F0F2C939CFE434C02FC7A7AB23B1FEC8B5C77E4C8381 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
08:53:49.0347 0x074c  C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
08:53:49.0347 0x074c  [ 2E33DFD10F28F86C3FC40EE123CC3904, 57C65671A04EFCA437A69E8E97B2FCA17897EE4608C7DB69F77D44FBD3490B50 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
08:53:49.0347 0x074c  C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
08:53:49.0347 0x074c  [ 05BD47136DE62FAFE9F95B40E4100144, D10F05408F3D90A6256C57ADA9A85B1D69A4DE7988A781F08350A3D85C49B099 ] C:\Windows\SysWOW64\iertutil.dll
08:53:49.0347 0x074c  C:\Windows\SysWOW64\iertutil.dll - ok
08:53:49.0347 0x074c  [ A8EDB86FC2A4D6D1285E4C70384AC35A, 61B8955CE0A2AA9D0719920B30216717B349B6FBE11C697C31CFA84F859CC1AE ] C:\Windows\System32\dllhost.exe
08:53:49.0347 0x074c  C:\Windows\System32\dllhost.exe - ok
08:53:49.0347 0x074c  [ B6D3C63C07085941446AA90BD77AC07F, F4E1144DFC8A6A5F81F7326BA3E6E1A6A6CE419C3FAA9513835FB17BFEE73842 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\f703846404bb66a4ae03ef8133755007\PresentationFramework.ni.dll
08:53:49.0347 0x074c  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\f703846404bb66a4ae03ef8133755007\PresentationFramework.ni.dll - ok
08:53:49.0362 0x074c  [ CA9F7888B524D8100B977C81F44C3234, 57F3353F89724147D8AC8B69B12C1303DF26978309776F5F8CCF074526A915D3 ] C:\Windows\SysWOW64\winhttp.dll
08:53:49.0362 0x074c  C:\Windows\SysWOW64\winhttp.dll - ok
08:53:49.0362 0x074c  [ A0A2C1D812C231C9BFE119FDC68E341B, F94446594EE17505956A715DFB28B51D09F00A7A65E56950661B889A57DE8FA8 ] C:\Windows\System32\IDStore.dll
08:53:49.0362 0x074c  C:\Windows\System32\IDStore.dll - ok
08:53:49.0362 0x074c  [ E3F567951E50C2010912C945DE817664, 0FBCFEDC33616085C35A6F9DE3F7ADC94550C3C6204A1E9C9E445F2455545010 ] C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
08:53:49.0362 0x074c  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe - ok
08:53:49.0362 0x074c  [ 6A13B4F3B3F575F1E24B877B9359AABA, 676AD5F8F709D4A9DCE9938D82DEEE329C9A385A6969C169B3DF37AA75F1E4C7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
08:53:49.0362 0x074c  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
08:53:49.0362 0x074c  [ 28AD5E311996A34025CFB07E131058DD, 89C8B29105DE5917A33A7682C8A62CB543609F1227A4890D7130646A0F54D946 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
08:53:49.0362 0x074c  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
08:53:49.0362 0x074c  [ FB19FC5951A88F3C523E35C2C98D23C0, FF0DB8BF0C68DA0D09272E8181D2B5409C8850BB2F31AEA3AC4CD14C5A420A59 ] C:\Windows\SysWOW64\webio.dll
08:53:49.0362 0x074c  C:\Windows\SysWOW64\webio.dll - ok
08:53:49.0378 0x074c  [ 725AB72D5DD462F2EDAF1A6C59C8CFB5, 2420B0D7D132444E79B646787B1B6D89F45C6188E03FC1A4467B154D4774EFC3 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
08:53:49.0378 0x074c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
08:53:49.0378 0x074c  [ 23566F9723771108D2E6CD768AC27407, FAC0293DD1061B151E779BF4B245E6652C951FEDEBC602A166156DFBD38B5D67 ] C:\Windows\System32\AtBroker.exe
08:53:49.0378 0x074c  C:\Windows\System32\AtBroker.exe - ok
08:53:49.0378 0x074c  [ 65EA57712340C09B1B0C427B4848AE05, 5FDCF73191BFF9DBB03886755FFCF0BC15849F0E216884A5A8B9BB375FA7C1A5 ] C:\Windows\System32\taskeng.exe
08:53:49.0378 0x074c  C:\Windows\System32\taskeng.exe - ok
08:53:49.0378 0x074c  [ 639774C9ACD063F028F6084ABF5593AD, 9DFD80610CBBC9188F6C6BC85C87016B0AE42254FC289C2B578E85282BDD9C23 ] C:\Windows\System32\taskhost.exe
08:53:49.0378 0x074c  C:\Windows\System32\taskhost.exe - ok
08:53:49.0378 0x074c  [ A6C29DB53ECA94FA8591C5388D604B82, F25E95BA669422286A8FA3A68E0C639A2F06319B6DC8FA641C965CFB27A50BD6 ] C:\Windows\SysWOW64\msi.dll
08:53:49.0378 0x074c  C:\Windows\SysWOW64\msi.dll - ok
08:53:49.0378 0x074c  [ 94EEAC26F57811BD1AEFC164412F7FCE, 7390BCD7709D48DE75D7D6E06AA7356D1C58EE63F3CC2E07ABCD2E2FF6CC81CF ] C:\Windows\System32\PlaySndSrv.dll
08:53:49.0378 0x074c  C:\Windows\System32\PlaySndSrv.dll - ok
08:53:49.0378 0x074c  [ 9BB99503D6A4DD62569EDE9E5E2672A5, 6F4EA5BC50B1F929735246485263078BEF1B3BEB33F78CB1F483F13AA226C27E ] C:\Windows\System32\HotStartUserAgent.dll
08:53:49.0378 0x074c  C:\Windows\System32\HotStartUserAgent.dll - ok
08:53:49.0394 0x074c  [ 805A52C5AE26C28E88FDD9BCCFE6F312, 4FF28D3658C31722B7DD036DED9D544B14841C0E0B94D31A8EC5AB92128DA020 ] C:\Windows\System32\TSChannel.dll
08:53:49.0394 0x074c  C:\Windows\System32\TSChannel.dll - ok
08:53:49.0394 0x074c  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA, 8A6ACEFAB95E5275CBFBE6CCB5A6C3A6A471260B279B9063E86B9C7765E18656 ] C:\Windows\System32\MsCtfMonitor.dll
08:53:49.0394 0x074c  C:\Windows\System32\MsCtfMonitor.dll - ok
08:53:49.0394 0x074c  [ F09A9A1AD21FE618C4C8B0A0D830C886, 29831DDAB2AB105358FBC067CDF96428220B6743CD6019F6FE74BAC7AF325E7E ] C:\Windows\System32\msutb.dll
08:53:49.0394 0x074c  C:\Windows\System32\msutb.dll - ok
08:53:49.0394 0x074c  [ 6CEF7856A3EFAC59470F6208F0F585CE, 0F7A80DB821FDE6580E9481B6DA44844F717DDB4983B0E3D562BE43726153951 ] C:\Windows\System32\mpr.dll
08:53:49.0394 0x074c  C:\Windows\System32\mpr.dll - ok
08:53:49.0394 0x074c  [ BAFE84E637BF7388C96EF48D4D3FDD53, 11C194D9ADCE90027272C627D7FBF3BA5025FF0F7B26A8333F764E11E1382CF9 ] C:\Windows\System32\userinit.exe
08:53:49.0394 0x074c  C:\Windows\System32\userinit.exe - ok
08:53:49.0394 0x074c  [ F9D908DE6B166DAC9B89BF62FA291CE8, D0A918AD60221623BB0278EA94CD6938744617FDBB2054968AFAFC2940648F02 ] C:\Program Files\Bonjour\mdnsNSP.dll
08:53:49.0394 0x074c  C:\Program Files\Bonjour\mdnsNSP.dll - ok
08:53:49.0394 0x074c  [ FCFCD1101C5DA23B4B95F93D02B2C169, 040A086875B6C5475490A2F8B0CF4FF20DDB4FEDFE5FCABBA49692AA05F40527 ] C:\Windows\System32\dwmredir.dll
08:53:49.0394 0x074c  C:\Windows\System32\dwmredir.dll - ok
08:53:49.0409 0x074c  [ 88351B29B622B30962D2FEB6CA8D860B, A16CAD7D94C1C9807083BB36E9B4C3C14E6482C4CA2BDFACBCC86E737DDCE42E ] C:\Windows\System32\rasadhlp.dll
08:53:49.0409 0x074c  C:\Windows\System32\rasadhlp.dll - ok
08:53:49.0409 0x074c  [ 522B0466ED967A0762E9AF5B37D8F40A, B14C62D059BC7CF430E1B0F6E18E31EFD1959EFB3025A2B0EBB11751F38DD6D4 ] C:\Windows\System32\esent.dll
08:53:49.0409 0x074c  C:\Windows\System32\esent.dll - ok
08:53:49.0409 0x074c  [ 4BA77A5EF71C14C764B0ED4701683E3E, 066A064CDBE09BF8BE1DF5B259F30FF6C124A1C3D637800D3E19E8E25EDB950E ] C:\Windows\System32\dwmcore.dll
08:53:49.0409 0x074c  C:\Windows\System32\dwmcore.dll - ok
08:53:49.0409 0x074c  [ 7F5061210C2B7A91F4B58602DFE32E6C, 9F7BDFD6CAA9B24C166C12799C8D9650C219F2DDE52A84745CFED6177B595E40 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
08:53:49.0409 0x074c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
08:53:49.0409 0x074c  [ 332FEAB1435662FC6C672E25BEB37BE3, 6BED1A3A956A859EF4420FEB2466C040800EAF01EF53214EF9DAB53AEFF1CFF0 ] C:\Windows\explorer.exe
08:53:49.0409 0x074c  C:\Windows\explorer.exe - ok
08:53:49.0409 0x074c  [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
08:53:49.0409 0x074c  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
08:53:49.0409 0x074c  [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\SysWOW64\winnsi.dll
08:53:49.0409 0x074c  C:\Windows\SysWOW64\winnsi.dll - ok
08:53:49.0425 0x074c  [ 4EDB186C455CDEADA24A708AAB884AE3, 836B3176A4A1B57F89D5B950BDA2F6C6F785899ED54632D8CF35DF55B364DB81 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
08:53:49.0425 0x074c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
08:53:49.0425 0x074c  [ 9AE80F6A66B30E3ED8CDF858CF28B11B, A93E470DC54E3C74C10979D49CABB9A34893F9E847F88491F935DB44EEC3541A ] C:\Windows\System32\d3d10_1.dll
08:53:49.0425 0x074c  C:\Windows\System32\d3d10_1.dll - ok
08:53:49.0425 0x074c  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051, 8EFD0A6DE6F4E335D342782190008FB5AC84A6ADE49170B310DEC9AC48E623E8 ] C:\Windows\System32\localspl.dll
08:53:49.0425 0x074c  C:\Windows\System32\localspl.dll - ok
08:53:49.0425 0x074c  [ 6B669A00A431FF6CDCE67458933F5F0F, 81419EB18BB4EB96E48C99A1D45B0267E779E135427B3AEC872A1A5DD810B23F ] C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
08:53:49.0425 0x074c  C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe - ok
08:53:49.0425 0x074c  [ EED05D42D91835064703E2318552ED25, E9EE1E2253445B207B76F5D3073C612ED979A982522C1515E0FE8FA9641AE568 ] C:\Windows\System32\ExplorerFrame.dll
08:53:49.0425 0x074c  C:\Windows\System32\ExplorerFrame.dll - ok
08:53:49.0425 0x074c  [ 63F72417CA38D8FC8F53709649B589E3, 39AE8AFFCFB8A9E345FC4C6F11926F25552C464380F88CDECD299FD27AF7866B ] C:\Windows\System32\d3d10_1core.dll
08:53:49.0425 0x074c  C:\Windows\System32\d3d10_1core.dll - ok
08:53:49.0440 0x074c  [ 3285481F5C12305CA104A6C493CA5A0B, ADB39B15D26A954B0F347C7BAFCC76DE5E3CF3CF05736E8987E0832AA7F8563C ] C:\Windows\System32\spoolss.dll
08:53:49.0440 0x074c  C:\Windows\System32\spoolss.dll - ok
08:53:49.0440 0x074c  [ C5AC93CF3BA30D367FB49148A2B673B9, 07B556039BBA841BC9F28979C3AD5D238B55391F921C9C805F3AFC9EFB437766 ] C:\Windows\System32\PrintIsolationProxy.dll
08:53:49.0440 0x074c  C:\Windows\System32\PrintIsolationProxy.dll - ok
08:53:49.0440 0x074c  [ 57A6362D71B5003C48EE21F2DBB624B1, E6480D1F219BF3F8E7AC8347A8C50E48632B7BBC9618EEB36DAEA1079AA770B5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
08:53:49.0440 0x074c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
08:53:49.0440 0x074c  [ 8CD1DEE212E52B9C22E66DBA44991D32, 7FCD0E7964368616434E3B3B080E783658B86524C26F3DB57503414204713E6D ] C:\Windows\SysWOW64\httpapi.dll
08:53:49.0440 0x074c  C:\Windows\SysWOW64\httpapi.dll - ok
08:53:49.0440 0x074c  [ 8DFB5752FCE145A6B295093C0A8BE131, F38029C8B36EFD46B1F6CCA0089FF4EFB0AB246497E38EDFF6A67FAC804D4A97 ] C:\Windows\System32\dxgi.dll
08:53:49.0440 0x074c  C:\Windows\System32\dxgi.dll - ok
08:53:49.0440 0x074c  [ ED9A7E01433244ECFF2212D442732FD2, F882C724500F9109E49D45B2163AA42D0C2AE32E6EE7C2D0DBCD8C6C6803D7B3 ] C:\Windows\System32\hpinksts5412LM.dll
08:53:49.0440 0x074c  C:\Windows\System32\hpinksts5412LM.dll - ok
08:53:49.0456 0x074c  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB, 018CB95A43CEA2063EA24691C71D51EF60D522C21502ABA8AD93876363D4B857 ] C:\Windows\System32\taskschd.dll
08:53:49.0456 0x074c  C:\Windows\System32\taskschd.dll - ok
08:53:49.0456 0x074c  [ 675DE4EC2D88A6D68C39C662A3204596, E7EBE913F3E227F340379D9AFF6B1EF566020BB5A81F44EA6F1BF346480CEC59 ] C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
08:53:49.0456 0x074c  C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe - ok
08:53:49.0456 0x074c  [ 2A356FA2650E30E139F0476979548BF6, C11BC218A72A6978E0590FD09CC0EDD8800B497441777F2A282DAF8F14F5AB76 ] C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe
08:53:49.0456 0x074c  C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe - ok
08:53:49.0456 0x074c  [ 4C92EB7535CAA1681A77D928FBF9771F, 7D02B2357CA02393CA711C3C499AAD86B792EEFFDC67F2CE52F7F7BB8A28DE79 ] C:\Windows\System32\d3d11.dll
08:53:49.0456 0x074c  C:\Windows\System32\d3d11.dll - ok
08:53:49.0456 0x074c  [ 5893EBDCE371174AC89ECD7731DD6D77, 31CC55F4724CFD95E48954B38C0A04D674399FD243083A816893ED5E5A770086 ] C:\Windows\SysWOW64\pcwum.dll
08:53:49.0456 0x074c  C:\Windows\SysWOW64\pcwum.dll - ok
08:53:49.0472 0x074c  [ 78675536D8B6E2D96B59196C2BE3EBF2, 77F0D0135B8CD0D1CB429D5778794807813AE032D12A40C912CD2E1AF614F317 ] C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe
08:53:49.0472 0x074c  C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe - ok
08:53:49.0472 0x074c  [ BE6E5068312280695494AFB474225400, 70CFE6A4EB659D6363FC8F199036C696A9D388BED10986AB385F9DA6A8AF3774 ] C:\Program Files\Trend Micro\Titanium\plugin\TMDC\TMDC.exe
08:53:49.0472 0x074c  C:\Program Files\Trend Micro\Titanium\plugin\TMDC\TMDC.exe - ok
08:53:49.0472 0x074c  [ E554ACAEAE4C2235229C5D0FC43E509F, 3214176CDCE50AE2D8064B1D9BF3FE6D24E532713176C5D3BA304B8D520530A9 ] C:\Windows\System32\HPDiscoPM5412.dll
08:53:49.0472 0x074c  C:\Windows\System32\HPDiscoPM5412.dll - ok
08:53:49.0472 0x074c  [ C94CE65AE7701E9FDBA889045543E27C, E6D75322BE3076EB3AB4622C29A0765C05465BE355C9AA3A9DE7431F020BC176 ] C:\Windows\SysWOW64\secur32.dll
08:53:49.0472 0x074c  C:\Windows\SysWOW64\secur32.dll - ok
08:53:49.0472 0x074c  [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\SysWOW64\clbcatq.dll
08:53:49.0472 0x074c  C:\Windows\SysWOW64\clbcatq.dll - ok
08:53:49.0472 0x074c  [ 7F8E83B9466A0A002D4AB15C104062A7, D2D64B95079243F04479A7950AFB9DD086C43BF0236E72E74FC45C6945A765E4 ] C:\Windows\System32\efscore.dll
08:53:49.0472 0x074c  C:\Windows\System32\efscore.dll - ok
08:53:49.0487 0x074c  [ 77B5035BC6EDF4D1B6265391AECEE4C0, FE69B715F04446BD42AF1B672E6AC54E954CFE0C847BFD2056CB11CF017B1844 ] C:\Windows\System32\vpnikeapi.dll
08:53:49.0487 0x074c  C:\Windows\System32\vpnikeapi.dll - ok
08:53:49.0487 0x074c  [ 58283053C781AD3A579C95D7765C1FA0, 9F7641C9B5E64797E14A2E307D94E31D6F51A721964BD5CE8CEFF6B523A69DB8 ] C:\Windows\System32\efsutil.dll
08:53:49.0487 0x074c  C:\Windows\System32\efsutil.dll - ok
08:53:49.0487 0x074c  [ FFF9D00CF16397C64317F213484F94BD, 94D0584E14BDB27F61F59A7BCEA529A1594261BE0CE74502C13E8865843BA414 ] C:\Windows\System32\wsnmp32.dll
08:53:49.0487 0x074c  C:\Windows\System32\wsnmp32.dll - ok
08:53:49.0487 0x074c  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:53:49.0487 0x074c  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
08:53:49.0487 0x074c  [ 19E41CCCEE697CC9465396B370929792, A9FC4C33C71C3677FE57779380E55FDE2AC0B0C70A9DBCBA0D0B6FA92C709A7F ] C:\Windows\System32\FXSMON.dll
08:53:49.0487 0x074c  C:\Windows\System32\FXSMON.dll - ok
08:53:49.0487 0x074c  [ 32A3C8600AF124CBAAD845F13CFAE3CB, F36FE9E57D5C509FEECE890F9F8717F9CC6F762E32AE0B7DB7E0153370CE0B9D ] C:\Windows\System32\tcpmon.dll
08:53:49.0487 0x074c  C:\Windows\System32\tcpmon.dll - ok
08:53:49.0487 0x074c  [ 93518C6EDE0B61BCBD02BDB02BD05FEE, 3637F5E5F15093AFB501EE910368CF900B422AC22669391FFA4198BBAE6F8FCB ] C:\Windows\System32\snmpapi.dll
08:53:49.0487 0x074c  C:\Windows\System32\snmpapi.dll - ok
08:53:49.0503 0x074c  [ 8DFB5078508924FA725C203CE179B10C, A26A42B331C75D455074B597B982D4CB734B57F1F527C7B2EDBCD0746C38CD52 ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
08:53:49.0503 0x074c  C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
08:53:49.0503 0x074c  [ 7321F18D1F820612ED0E9F2D4B578A7E, 612BD7DE1DFBD100BD6ACB37A38565D88C39842D990D296B9B8E1FB75C3A94E7 ] C:\Windows\SysWOW64\cryptsp.dll
08:53:49.0503 0x074c  C:\Windows\SysWOW64\cryptsp.dll - ok
08:53:49.0503 0x074c  [ DA24EDFC1D6C1B67C010D34652B7052F, 0499E99F7B794C1FE8E8C03658F0DCDFC3B0FF5315A1871FCB0C33D612A15BD1 ] C:\Program Files (x86)\Google\Update\1.3.24.7\goopdate.dll
08:53:49.0503 0x074c  C:\Program Files (x86)\Google\Update\1.3.24.7\goopdate.dll - ok
08:53:49.0503 0x074c  [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
08:53:49.0503 0x074c  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe - ok
08:53:49.0503 0x074c  [ EF73976903AB2674574C37D0ED62741F, 4FFF2D44867E836107BD4EC08907839EE31FE24A486B2D41ACE17EC27E102F92 ] C:\Windows\System32\TBTMon.dll
08:53:49.0503 0x074c  C:\Windows\System32\TBTMon.dll - ok
08:53:49.0503 0x074c  [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\SysWOW64\rsaenh.dll
08:53:49.0503 0x074c  C:\Windows\SysWOW64\rsaenh.dll - ok
08:53:49.0518 0x074c  [ 07D60D14AB1C930F4B7F5E6A894C230E, F4EE2F43B24FF52736C07BB21F55CF4E770A8E0E97244BD6BFD6B081DAB9497D ] C:\Windows\System32\nvwgf2umx.dll
08:53:49.0518 0x074c  C:\Windows\System32\nvwgf2umx.dll - ok
08:53:49.0518 0x074c  [ 5997D769CDB108390DCFAEBF442BF816, 0E25CA984C0EEB629184423FAA9BC6D4356DF9A93F281E06DC83B4AC638AEC4A ] C:\Windows\SysWOW64\RpcRtRemote.dll
08:53:49.0518 0x074c  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
08:53:49.0518 0x074c  [ BC01DF232FD65E50A4FCDF349526AB27, 5A750FBE74BEDDEE668CDB73DB3E24A0A47B5091CF4024BC6549EF43CB9023C9 ] C:\Windows\System32\tbtmon98Language.dll
08:53:49.0518 0x074c  C:\Windows\System32\tbtmon98Language.dll - ok
08:53:49.0518 0x074c  [ CF6850A72BEB4845A3BFFB3F5E8014B2, ABB2907DB16929D4A12E0551C01DD731762B1A4CFEF36B734734F3ECDD630A38 ] C:\Windows\System32\pdh.dll
08:53:49.0518 0x074c  C:\Windows\System32\pdh.dll - ok
08:53:49.0518 0x074c  [ 1274AA4D87F32549574DBCEA0DE94ACC, 27F5AC6917DAA097CE2009DE196F481784C3BEFFC870201C330618E54FEE312F ] C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\sys\x64\TosBtHcrpAPI.dll
08:53:49.0518 0x074c  C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\sys\x64\TosBtHcrpAPI.dll - ok
08:53:49.0518 0x074c  [ 66A62631AE1CEBA4B05209B85758A3C3, 1D662AA8889BE7BAEA1BC4D0A13CE2AA072C58140ACB15DA9B195B23F861FF33 ] C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\sys\x64\TosBtAPI.dll
08:53:49.0518 0x074c  C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\sys\x64\TosBtAPI.dll - ok
08:53:49.0534 0x074c  [ 4230BC6DCDE1AF56C9EEDDEE37C311FB, 8BE65562DDF0DCA3C532B19764C08907607C83108F59C286E6530E2C584E40B2 ] C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\sys\x64\TosBdAPI.dll
08:53:49.0534 0x074c  C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\sys\x64\TosBdAPI.dll - ok
08:53:49.0534 0x074c  [ DF72A9936D0C3F517083119648814B09, 6BA4DCAC2F55A393A266ED0B2AF92B38141654D1666E3E143D85BBAF21663E1E ] C:\Windows\System32\usbmon.dll
08:53:49.0534 0x074c  C:\Windows\System32\usbmon.dll - ok
08:53:49.0534 0x074c  [ A1D7E3ADCDB07DDB6F423862DCB1A52B, 6191C33D2AE090F6F055D6AE211096CE8F003EC5518A5333EE1E376052176BAB ] C:\Windows\System32\WSDMon.dll
08:53:49.0534 0x074c  C:\Windows\System32\WSDMon.dll - ok
08:53:49.0534 0x074c  [ 2FCA0D2C59A855C54BAFA22AA329DF0F, ED9D26F539065D62FCCEDEEC8E509B30F4D15F8DA586C1F657ACEFE9DABAACD0 ] C:\Windows\SysWOW64\netapi32.dll
08:53:49.0534 0x074c  C:\Windows\SysWOW64\netapi32.dll - ok
08:53:49.0534 0x074c  [ F1B205F932F62F94506A5F332C895DAF, F02F01F20F655DD919C71AE814E4C3DD43330AAD1425FC5B1497F1613917CCDE ] C:\Windows\System32\WSDApi.dll
08:53:49.0534 0x074c  C:\Windows\System32\WSDApi.dll - ok
08:53:49.0534 0x074c  [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\SysWOW64\netutils.dll
08:53:49.0534 0x074c  C:\Windows\SysWOW64\netutils.dll - ok
08:53:49.0550 0x074c  [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\SysWOW64\srvcli.dll
08:53:49.0550 0x074c  C:\Windows\SysWOW64\srvcli.dll - ok
08:53:49.0550 0x074c  [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\SysWOW64\wkscli.dll
08:53:49.0550 0x074c  C:\Windows\SysWOW64\wkscli.dll - ok
08:53:49.0550 0x074c  [ C55516D98DD5D8F0153C2A9B4227DA86, DBC62B776CF06D0873A4C7CFCDF5B6F5C6E6C41917C326C090BCE58DC66EE09C ] C:\Windows\System32\webservices.dll
08:53:49.0550 0x074c  C:\Windows\System32\webservices.dll - ok
08:53:49.0550 0x074c  [ 352B3DC62A0D259A82A052238425C872, 393B24E0D6007C74AEE2FB2EE2C18623D37DF64E279B6767952DCFEE0EACBB10 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
08:53:49.0550 0x074c  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
08:53:49.0550 0x074c  [ B5055B51BAA0FD0A736A88653DA3C1C0, A3BD057C7E8C926930BA7E9D11427D26FB37267026A0B72AB4021101EE424F74 ] C:\Windows\System32\fundisc.dll
08:53:49.0550 0x074c  C:\Windows\System32\fundisc.dll - ok
08:53:49.0550 0x074c  [ 4581716B4BF76ACFD8E167EB0B26D82A, 39D822527114EEED68044CCE4D542767F53978D9E0A7F72638F1CA9A016DE13B ] C:\Windows\System32\fdPnp.dll
08:53:49.0550 0x074c  C:\Windows\System32\fdPnp.dll - ok
08:53:49.0550 0x074c  [ 4C1244FEF74C60A4B1B151C76609CBE2, 3E500204A9232D5B332BE16C281A32B957D03BBA836851BE7754F030872FAC83 ] C:\Windows\System32\wsdchngr.dll
08:53:49.0550 0x074c  C:\Windows\System32\wsdchngr.dll - ok
08:53:49.0565 0x074c  [ E7B9D5FF20FFDD4AAE2EF1D1B8C27A37, 689D126B1B42140D5049015E3E324268E6542D4BC6CC14E31D8B89A25B94BAA5 ] C:\Windows\SysWOW64\imagehlp.dll
08:53:49.0565 0x074c  C:\Windows\SysWOW64\imagehlp.dll - ok
08:53:49.0565 0x074c  [ 9B48E38C35F08FA831B387A0B27C40AA, A36F22314DC6D183DE1853FCAB4ED8A9C7A851B62F34A7DD5E059B6485B34C2C ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamsrv.dll
08:53:49.0565 0x074c  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamsrv.dll - ok
08:53:49.0565 0x074c  [ 49E5753D923F1AC63B22D3DCB0B47E00, 14CEC0BF5F625FF839A8D79B4A6B7C4AC0CBB705FD197C6B7FF8617C6C3E34FE ] C:\Windows\System32\uDWM.dll
08:53:49.0565 0x074c  C:\Windows\System32\uDWM.dll - ok
08:53:49.0565 0x074c  [ 6F8EB694504B5A797317BDAB5DBA6B45, 4D0ADFBA37BC1FB1AAD0D47B809A8AA06D8FD758E228228110AA323A67F36098 ] C:\Users\Pushba\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
08:53:49.0565 0x074c  C:\Users\Pushba\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll - ok
08:53:49.0565 0x074c  [ 18AB2E5A40064ED5F7791AC5946A90F3, B7536CE56702C23B1CEC3E1B6C78866E0A76808B85A92AF3733D9ED9429E004C ] C:\Windows\SysWOW64\msimg32.dll
08:53:49.0565 0x074c  C:\Windows\SysWOW64\msimg32.dll - ok
08:53:49.0565 0x074c  [ E0E5BB58A4C43F7DBB83352785F32DEF, 03000DF8B9C6D1E13F85730643797413EEE8221653A761FFBECB0AE64457F9E4 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
08:53:49.0565 0x074c  C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
08:53:49.0581 0x074c  [ 1D626FE2E13C1CE49CA0136CFF214E93, 4F02DD92045CF244979FFD074B2BDE6925A909227A474C60DCABE4384D916218 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
08:53:49.0581 0x074c  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
08:53:49.0581 0x074c  [ 465BEA35F7ED4A4A57686DEA7EA10F47, 7F1B3CA09AB045F805DA5765BE7DD270F5DDACE3073017F7386FF1E2FA82D6FB ] C:\Windows\SysWOW64\cscapi.dll
08:53:49.0581 0x074c  C:\Windows\SysWOW64\cscapi.dll - ok
08:53:49.0581 0x074c  [ 241AF87821FDA0F5792037B779F49BE0, B3F4FDA27430ACC6D6BC1C3CBD518B9CAE5BA0F22AB8917578A7F16270F94C8B ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
08:53:49.0581 0x074c  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
08:53:49.0581 0x074c  [ 09A116FB06C5E362EF8938D29CDAB27B, 887B39388C39FF262FBBE3047FA1F5F47EB649AF3D760865AFE614DE64160D33 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
08:53:49.0581 0x074c  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
08:53:49.0581 0x074c  [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\SysWOW64\ntmarta.dll
08:53:49.0581 0x074c  C:\Windows\SysWOW64\ntmarta.dll - ok
08:53:49.0581 0x074c  [ A8BB45F9ECAD993461E0FEF8E2A99152, ACB756EA54E71F124D928829666B5B439785593877FF7C0C76ADCF954F4E6C94 ] C:\Windows\SysWOW64\Wldap32.dll
08:53:49.0581 0x074c  C:\Windows\SysWOW64\Wldap32.dll - ok
08:53:49.0596 0x074c  [ 30490EED6A1E20E8259C0B9C58F488FE, C8CE687EFFED31AD75D79A52D49E83F39BEE5FD9A1A67EC586BA930650A73D6C ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtCore4.dll
08:53:49.0596 0x074c  C:\Program Files (x86)\Malwarebytes Anti-Malware\QtCore4.dll - ok
08:53:49.0596 0x074c  [ D233C7FEAE3FAA25F93A9E6B46815ADC, 5330682AE9C08E5F2E30C5E256B91028389BBBDDAA8C38950DF76616FCA854FF ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
08:53:49.0596 0x074c  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
08:53:49.0596 0x074c  [ 67CF11E00D026A5C0C88EA5F84D501E5, 5081A87466116232CF07F58229967B6C0CD3738B64A56EFC6BB3EBDA62E378F6 ] C:\Windows\System32\win32spl.dll
08:53:49.0596 0x074c  C:\Windows\System32\win32spl.dll - ok
08:53:49.0596 0x074c  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8, B07A12E3ECD5E418A3F99F00C56E7F482F68CADE330E7C079DCCDFFAD2E21299 ] C:\Windows\SysWOW64\dbghelp.dll
08:53:49.0596 0x074c  C:\Windows\SysWOW64\dbghelp.dll - ok
08:53:49.0596 0x074c  [ 507D5567A0A4EE86C4B0CE2CE1777025, 408770B00CED498BF7782054F17A5CB361CF65429B0C816403D70E416E0EEF23 ] C:\Windows\System32\inetpp.dll
08:53:49.0596 0x074c  C:\Windows\System32\inetpp.dll - ok
08:53:49.0612 0x074c  [ 024352FEEC9042260BB4CFB4D79A206B, 60CB39086E10C5B66EBC15E4DF219620B344B4358D2918AB6BB3448A0AC8BE36 ] C:\Windows\System32\EhStorShell.dll
08:53:49.0612 0x074c  C:\Windows\System32\EhStorShell.dll - ok
08:53:49.0612 0x074c  [ A0617B5753E31126AD29C03154F4F329, 3BC10C0A54D1D60B0C670D901944D3F115E2EBB406C989409145E7151AA55EFE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
08:53:49.0612 0x074c  C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
08:53:49.0612 0x074c  [ A30584581127507FA057101F940DFF07, 93C6B8B3B15D4234BE3B422AB89D756D84903490BD6CFEEEBF4B3FC566BF9700 ] C:\Program Files (x86)\Google\Drive\googledrivesync64.dll
08:53:49.0612 0x074c  C:\Program Files (x86)\Google\Drive\googledrivesync64.dll - ok
08:53:49.0612 0x074c  [ E4B829081E639E42985853BAE754A53D, C94E8E6CE2999ED05D6738A2498F1FD521CE68466CDD3EDC3DDAD71278497879 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcp100.dll
08:53:49.0612 0x074c  C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcp100.dll - ok
08:53:49.0612 0x074c  [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\SysWOW64\dwmapi.dll
08:53:49.0612 0x074c  C:\Windows\SysWOW64\dwmapi.dll - ok
08:53:49.0612 0x074c  [ 1BF0CB861A48FEB1638228760750F3CB, 37C781A8C546EAD8B4D28BD7D730B9AC78EB799599AD69DAD9054B6F9F1DD6BD ] C:\Windows\System32\cscapi.dll
08:53:49.0612 0x074c  C:\Windows\System32\cscapi.dll - ok
08:53:49.0628 0x074c  [ 80FCEDBE920E9CBE30D9D3665BD6EFED, 5BCA95D4EADADE3046F5F95F9FAD97DF585638B49CCA2184BD0157AE374727C8 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcr100.dll
08:53:49.0628 0x074c  C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcr100.dll - ok
08:53:49.0628 0x074c  [ B010CF886420EE29C2C276646721D255, CBCD032D679ADE3A9942A1D116648D6A9ECC71F66F8630629E724E5EE23F9F73 ] C:\Windows\SysWOW64\wlanapi.dll
08:53:49.0628 0x074c  C:\Windows\SysWOW64\wlanapi.dll - ok
08:53:49.0628 0x074c  [ 1D6A771D1D702AE07919DB52C889A249, E5F3378AC40AEE6114EEAF3BF11DC1059466891CAE353E80C08622A60485C954 ] C:\Windows\SysWOW64\wlanutil.dll
08:53:49.0628 0x074c  C:\Windows\SysWOW64\wlanutil.dll - ok
08:53:49.0628 0x074c  [ 6EF5F3F18413C367195F06E503AB86A6, 6F8B87FB4D67F9E76A51EF759B58A95D903C4AAC9C789A65A3FA1FC4F253D978 ] C:\Windows\SysWOW64\d3d9.dll
08:53:49.0628 0x074c  C:\Windows\SysWOW64\d3d9.dll - ok
08:53:49.0628 0x074c  [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\SysWOW64\psapi.dll
08:53:49.0628 0x074c  C:\Windows\SysWOW64\psapi.dll - ok
08:53:49.0628 0x074c  [ 037A719DAD50603202C978CD802623E4, BD4C222913D32D7CF5FE0201FEBE7BD67FC39DF47A7A672C2D6C228A6E13B5DE ] C:\Windows\System32\ntshrui.dll
08:53:49.0628 0x074c  C:\Windows\System32\ntshrui.dll - ok
08:53:49.0628 0x074c  [ 1D63F4366288B8A7595397E27010FD44, 99EA4DDD88D9C4A4CC9B238F533CB4D2C062D46239173997E8594D8A75811A01 ] C:\Windows\System32\IconCodecService.dll
08:53:49.0628 0x074c  C:\Windows\System32\IconCodecService.dll - ok
08:53:49.0643 0x074c  [ 77B1471A490B53B24EFE136F09F76550, A650C3A244306F8E605BDA8E74BFE438356BA4403B0CB61E980D3183E3F0A7C7 ] C:\Windows\SysWOW64\d3d8thk.dll
08:53:49.0643 0x074c  C:\Windows\SysWOW64\d3d8thk.dll - ok
08:53:49.0643 0x074c  [ C25EFFDB4C074B9D16D096852F760E6A, 3963A542734A667D2D95D923693CF27611F63C05C4DA1B128464318F7FB2436B ] C:\Windows\SysWOW64\nvd3dum.dll
08:53:49.0643 0x074c  C:\Windows\SysWOW64\nvd3dum.dll - ok
08:53:49.0643 0x074c  [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
08:53:49.0643 0x074c  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe - ok
08:53:49.0643 0x074c  [ FDC385A0F7D7DD880C4622D1DF08ABE9, D9596264D98B09A5C44DD63B69B7253377B5FF237B6F2C4F97258E86FFAD055A ] C:\Windows\System32\ntprint.dll
08:53:49.0643 0x074c  C:\Windows\System32\ntprint.dll - ok
08:53:49.0643 0x074c  [ F722FA26739EAFCBD8D5F3829B632CD7, 8C7356AFF03748C4D565F3B6CBD4E289910253A3CA6CAE3A118F2C7E419CF649 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamcore.dll



#10 sunnynap

sunnynap

    New Member

  • Authentic Member
  • Pip
  • 16 posts

Posted 04 June 2014 - 03:14 PM

08:53:49.0643 0x074c  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamcore.dll - ok
08:53:49.0643 0x074c  [ 863F793D15B4026B1A5FDECA873D4D84, AF7ABD95BB5467551562F129F03C7AC9D52A021F7E547609F40A80E66932C942 ] C:\Windows\SysWOW64\apphelp.dll
08:53:49.0643 0x074c  C:\Windows\SysWOW64\apphelp.dll - ok
08:53:49.0643 0x074c  [ D5A444B63637EC0932172C6719A10252, 5B2F51B102EB3FE551A5D727D5280BA9417C3AC62E224997A3549F19677EAEE0 ] C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler.exe
08:53:49.0643 0x074c  C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler.exe - ok
08:53:49.0659 0x074c  [ C277FAB73175C5D37D35DE0DEB05D213, AB0DE2DCCA2133C2AF8C7F1154B4A7DE5FE3E20B3088084205CE1FA24777CD97 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\72284863df9bea3f081ae98996400619\PresentationFramework.Aero.ni.dll
08:53:49.0659 0x074c  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\72284863df9bea3f081ae98996400619\PresentationFramework.Aero.ni.dll - ok
08:53:49.0659 0x074c  [ E0564E0B6D729D7D25B3C3F71CEDEC21, A8D1214580389912C70A40AE271BB2BB10EFD936310C16952AA4586C1180C642 ] C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll
08:53:49.0659 0x074c  C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll - ok
08:53:49.0659 0x074c  [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\SysWOW64\mpr.dll
08:53:49.0659 0x074c  C:\Windows\SysWOW64\mpr.dll - ok
08:53:49.0659 0x074c  [ 08DFDBD2FD4EA951DC46B1C7661ED35A, D926530C659DDAF80770663F46F1EFD94FFB4AAB475C4E3367CB531AF4A734E1 ] C:\Windows\SysWOW64\powrprof.dll
08:53:49.0659 0x074c  C:\Windows\SysWOW64\powrprof.dll - ok
08:53:49.0659 0x074c  [ B40420876B9288E0A1C8CCA8A84E5DC9, 0D3C73B45BC708D7B1E26DFB6D4F64031A998548FEA0FB5CE198ED716F7DC9A0 ] C:\Windows\SysWOW64\dnsapi.dll
08:53:49.0659 0x074c  C:\Windows\SysWOW64\dnsapi.dll - ok
08:53:49.0659 0x074c  [ 45FB05F743E626D9E239E52602CEA041, 947F9DD7B6AD7A5386868E084EF0FDF48B94F445DC7852D1A82EF9B3A237624C ] C:\Windows\SysWOW64\msctfui.dll
08:53:49.0659 0x074c  C:\Windows\SysWOW64\msctfui.dll - ok
08:53:49.0674 0x074c  [ F3B650D3566E96E765AEA2AB05D4830C, 8541961257E38B57A67E27AB3E7AD6065BDDDD75AAFC2F7272E0319D743AD0B0 ] C:\Program Files (x86)\Toshiba\Wireless LAN Indicator\tosmui.dll
08:53:49.0674 0x074c  C:\Program Files (x86)\Toshiba\Wireless LAN Indicator\tosmui.dll - ok
08:53:49.0674 0x074c  [ 1727B2A2F379A32B864C096FA794AADC, 87B77A5DF95F3A1C5ED6DEF820C7E384BEFCBAA2FE1BB4781AC6F777A081E5CC ] C:\Windows\System32\aepic.dll
08:53:49.0674 0x074c  C:\Windows\System32\aepic.dll - ok
08:53:49.0674 0x074c  [ D4FAC263861BAE06971C7F7D0A8EBF15, D494DEF0024288B9CC56EC6B500FF5828144BE9B8E7033340509EC5E68F8DED0 ] C:\Windows\System32\ncsi.dll
08:53:49.0674 0x074c  C:\Windows\System32\ncsi.dll - ok
08:53:49.0674 0x074c  [ C6DCD1D11ED6827F05C00773C3E7053C, EA23BE261C9C04F44215D254D7A80FD0AEE84C6F192D0FEE49A7CF74ED3CB1A6 ] C:\Windows\System32\sfc.dll
08:53:49.0674 0x074c  C:\Windows\System32\sfc.dll - ok
08:53:49.0674 0x074c  [ 603EBD34E216C5654A2D774EAC98D278, ACE0171BB780DB2C1B1A8BF6FA8CF51C529D7E09141FA504C7199AF764FD9A36 ] C:\Windows\System32\webio.dll
08:53:49.0674 0x074c  C:\Windows\System32\webio.dll - ok
08:53:49.0674 0x074c  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] C:\Windows\System32\drivers\PEAuth.sys
08:53:49.0674 0x074c  C:\Windows\System32\drivers\PEAuth.sys - ok
08:53:49.0674 0x074c  [ 895C9AB0A855547445C4181195230757, 89BDA385D8CCB75C3D7B1BDFA567AC441A931F4E499C0835FEE9D010343FABB6 ] C:\Windows\System32\sfc_os.dll
08:53:49.0674 0x074c  C:\Windows\System32\sfc_os.dll - ok
08:53:49.0690 0x074c  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE, 4EFA41765E46E90C6CBDB0DC1E0CD375D7AB3307C477171EBAA6A16AC32E5211 ] C:\Windows\System32\ssdpapi.dll
08:53:49.0690 0x074c  C:\Windows\System32\ssdpapi.dll - ok
08:53:49.0690 0x074c  [ 96EFEC24346A8EB1157E80523079ADDC, 7F8FC284029856C754E400B6C954369FFE27763C81D8F4AF4E58BFDD44CBC24A ] C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
08:53:49.0690 0x074c  C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe - ok
08:53:49.0690 0x074c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\drivers\secdrv.sys
08:53:49.0690 0x074c  C:\Windows\System32\drivers\secdrv.sys - ok
08:53:49.0690 0x074c  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] C:\Program Files (x86)\Skype\Updater\Updater.exe
08:53:49.0690 0x074c  C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
08:53:49.0690 0x074c  [ 9A8C77BE85696E800B58F96591FF2721, 2359234E26F6496ECE9F24722EAD4C8E5854C3BF864613E8EA0E3FC79CC21F4B ] C:\Program Files\Trend Micro\Titanium\TmDbgLog.dll
08:53:49.0690 0x074c  C:\Program Files\Trend Micro\Titanium\TmDbgLog.dll - ok
08:53:49.0690 0x074c  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] C:\Windows\System32\drivers\srvnet.sys
08:53:49.0690 0x074c  C:\Windows\System32\drivers\srvnet.sys - ok
08:53:49.0690 0x074c  [ 720546B84ED5229E1584C8F3533A2F12, AB3C09C7F4B34D82786484439BCF78E7D7D202D1A75120ECFD140A74B8D36E86 ] C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler64.exe
08:53:49.0690 0x074c  C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler64.exe - ok
08:53:49.0706 0x074c  [ 418E881201583A3039D81F43E39E6C78, C96AAC161E09BE12815A4E931E65F66DB1A456C03253EF1111AE66F44B1515FF ] C:\Windows\SysWOW64\winsta.dll
08:53:49.0706 0x074c  C:\Windows\SysWOW64\winsta.dll - ok
08:53:49.0706 0x074c  [ 2E6A405505BBEF41998F0241D83B0CCE, 9BABC10B2CE70F5C8182DBC0F2FD143ED987F5785862B26866AE1D01B48CDF64 ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
08:53:49.0706 0x074c  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe - ok
08:53:49.0706 0x074c  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF, 868DEFB78767E91694E83F931725257DF3FF79A4BFED3B914D27F3493EB7A8D0 ] C:\Windows\System32\httpapi.dll
08:53:49.0706 0x074c  C:\Windows\System32\httpapi.dll - ok
08:53:49.0706 0x074c  [ D1DE1EAFDE97BE41CF6585027FF3E732, 76F17D4DF440D6734DC8157092D94EB18C2A73A0A49BEEA289E7B3EDE30E86A2 ] C:\Windows\SysWOW64\comdlg32.dll
08:53:49.0706 0x074c  C:\Windows\SysWOW64\comdlg32.dll - ok
08:53:49.0706 0x074c  [ C5A99A4C0DC9F0F5A95BA0C83D30A549, F99CCCE303F0FC07D82D3BBA223E8CCE41FB7FA8FB5C2A9214C161826537C7C9 ] C:\Windows\SysWOW64\mstask.dll
08:53:49.0706 0x074c  C:\Windows\SysWOW64\mstask.dll - ok
08:53:49.0706 0x074c  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8, B1A9B2EF000917214C0198958CBD239D1D91B1720EC40DF041262A34D302AD74 ] C:\Windows\SysWOW64\winspool.drv
08:53:49.0706 0x074c  C:\Windows\SysWOW64\winspool.drv - ok
08:53:49.0706 0x074c  [ 4FBC630768570E6AC35C3DE8F6EC79F5, CF4E271683AA4AADF763A5B3081B8135C9D69F2C6D9DED9C3717B085A1BF14CF ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
08:53:49.0706 0x074c  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe - ok
08:53:49.0721 0x074c  [ 210FCACAF902B2CD47CF9FD17D846146, 3F77AC721E084864C5966FF5337A90185F62203DC19C685328675500D629CB87 ] C:\Windows\System32\aeevts.dll
08:53:49.0721 0x074c  C:\Windows\System32\aeevts.dll - ok
08:53:49.0721 0x074c  [ 79BAEDD3BA8EBA528CBBDC883AA8C200, 280B454D242FCD62384ECB8BE70C171CBD7D3304137CFD97817E114AA2F891C0 ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstres.dll
08:53:49.0721 0x074c  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstres.dll - ok
08:53:49.0721 0x074c  [ 219AAE8612BB17208480F1F7DE2E8A96, 76C305158CAB4DA20EAD43080727F0C9F06BFCBFAA89581486917CDEF77C3689 ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvwl.dll
08:53:49.0721 0x074c  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvwl.dll - ok
08:53:49.0721 0x074c  [ 75F5E1FE8D55CF8E577E0EC5F2290D3F, F4E2C81F0834018052A481AE8D7DF4780302A6844160CCDC09F7D82D3B992BDE ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll
08:53:49.0721 0x074c  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll - ok
08:53:49.0721 0x074c  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] C:\Windows\System32\drivers\tcpipreg.sys
08:53:49.0721 0x074c  C:\Windows\System32\drivers\tcpipreg.sys - ok
08:53:49.0721 0x074c  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5, BDA403E6CACC249C467671FB1FAF7B77FB019326BC18F9F6CF377104520E2654 ] C:\Windows\System32\wiatrace.dll
08:53:49.0721 0x074c  C:\Windows\System32\wiatrace.dll - ok
08:53:49.0737 0x074c  [ 8E2C799D3476EAC32C3BA0DF7CE6AF19, CFE8A69E3F2A42C3BA2B38EC9233076D0AD32C441500E6407219F2E866905D9B ] C:\Windows\System32\TODDSrv.exe
08:53:49.0737 0x074c  C:\Windows\System32\TODDSrv.exe - ok
08:53:49.0737 0x074c  [ 84174CA0E190BB9D1EFD0F005FE13B35, B0146E651DAD4A8050FAF70026F1B7CE16EF454EB6E31088CDEBE3CD57E6591C ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll
08:53:49.0737 0x074c  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll - ok
08:53:49.0737 0x074c  [ D51B86CDCD2C1C74BF6DC3ADC815CE26, 28BF5AD0E335A80CDE45060EFDA98071B2AFA6F805873C92FD8790A113F3021E ] C:\Windows\System32\HPScanMiniDrv_OJ6500_E710nz.dll
08:53:49.0737 0x074c  C:\Windows\System32\HPScanMiniDrv_OJ6500_E710nz.dll - ok
08:53:49.0737 0x074c  [ 162D247E995EAEBF3EF4289069E1111C, 19E858E9902E2D570FFD24AE2CB4165273F5BAB1FF7B04758B11AB5CD41FD752 ] C:\Windows\SysWOW64\devrtl.dll
08:53:49.0737 0x074c  C:\Windows\SysWOW64\devrtl.dll - ok
08:53:49.0737 0x074c  [ D32C2A98859CB22D57A665F15F351E7D, CD50473C7DD0E57F2784B137F3490DF710BEEAA31E4961DCC90CF6A70632B481 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.dll
08:53:49.0737 0x074c  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.dll - ok
08:53:49.0737 0x074c  [ 4BDBBE5E4208022DD794F7EEEB0F7366, 4F69BA2EDABFA63A300B9F1880349EFAE185B899DD5C561E7B3BA6AAA4B22D6A ] C:\Windows\SysWOW64\SPInf.dll
08:53:49.0737 0x074c  C:\Windows\SysWOW64\SPInf.dll - ok
08:53:49.0752 0x074c  [ CDC97FA5C42B07FB0D4600E17C32F582, 1801964D228E03FF72D01E714ECE76D3040DD89B8FE828821CF999E6CB455F53 ] C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
08:53:49.0752 0x074c  C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe - ok
08:53:49.0752 0x074c  [ 8E01332CC4B68BC6B5B7EFFE374442AA, A4AD1D2FD3EC2F26949DBBC388F9FFF3713AD7EB4E9220AF817EBB5223E467C6 ] C:\Windows\SysWOW64\oleacc.dll
08:53:49.0752 0x074c  C:\Windows\SysWOW64\oleacc.dll - ok
08:53:49.0752 0x074c  [ 20FC7C01204EC5AC975F5F793599A17D, B8976769372AC4F13D58AF36259E80DEBB7852248C2E9BA556B46E79B8A3B378 ] C:\Program Files\Toshiba\Power Saver\TPwrReg.dll
08:53:49.0752 0x074c  C:\Program Files\Toshiba\Power Saver\TPwrReg.dll - ok
08:53:49.0752 0x074c  [ EAB975DB4C2805927FE5BD047D05C9AA, 8F5497B1A2652B5EAA5D35BD314B5F90C5140207427DAE6068D665FA44D3FD56 ] C:\Windows\SysWOW64\netshell.dll
08:53:49.0752 0x074c  C:\Windows\SysWOW64\netshell.dll - ok
08:53:49.0752 0x074c  [ 1E0892351AD2A85D3448978FFFD2CF25, E7C7226F5C8D7010D0D8C0ADD232A4A224550332D3A2AF5FCC9069A7CC5D2BCE ] C:\Program Files\Toshiba\Power Saver\TPwrFunc.dll
08:53:49.0752 0x074c  C:\Program Files\Toshiba\Power Saver\TPwrFunc.dll - ok
08:53:49.0752 0x074c  [ 15E21AA7D0C0C994CD565EEB96D13C20, 6B9AC59F8C17C639929E9BF911C20DA55459FA55F490E7E0CC284A9FBC077274 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtGui4.dll
08:53:49.0752 0x074c  C:\Program Files (x86)\Malwarebytes Anti-Malware\QtGui4.dll - ok
08:53:49.0768 0x074c  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
08:53:49.0768 0x074c  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
08:53:49.0768 0x074c  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE, A734A20357026C42950394682A52CBC3AF956D09F1949E1B4E95467E999BC428 ] C:\Windows\System32\wbemcomn.dll
08:53:49.0768 0x074c  C:\Windows\System32\wbemcomn.dll - ok
08:53:49.0768 0x074c  [ 0BA65122FFA7E37564EE86422DBF7AE8, 3A37FC503D3228D021473AECA285427382518CC36C197E4C9912745BDF3AB757 ] C:\Windows\SysWOW64\nlaapi.dll
08:53:49.0768 0x074c  C:\Windows\SysWOW64\nlaapi.dll - ok
08:53:49.0768 0x074c  [ 0255C22D99602534F15CBB8D9B6F152F, 43CD89D6CA56E0B633142F7C86DA9E072EE0723B5EBC4CE8CCBCA58C396ECF54 ] C:\Windows\System32\wbem\WinMgmtR.dll
08:53:49.0768 0x074c  C:\Windows\System32\wbem\WinMgmtR.dll - ok
08:53:49.0768 0x074c  [ 370349F79315D4DB86CD992CACEFEE61, 436D5622AE0D820D4FAB7E6DD7FFC38F9752AE4822505989D77DB1CFAA4BF416 ] C:\Windows\SysWOW64\VAN.dll
08:53:49.0768 0x074c  C:\Windows\SysWOW64\VAN.dll - ok
08:53:49.0768 0x074c  [ 0C52762C606BCF6A377D5E4688191A6B, C58C9A73AD07E3B93AB186D0D47C5F1CB7197771DBEE40646C3B801645BB388F ] C:\Windows\System32\wbem\WmiDcPrv.dll
08:53:49.0768 0x074c  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
08:53:49.0784 0x074c  [ B837D1528CE2E3CB79F09496BC08DDC6, ACD54CE61CFE94F23DC283537AD8FFBEB3D6041BD30317B60BA7A10FCB240A27 ] C:\Windows\System32\SensApi.dll
08:53:49.0784 0x074c  C:\Windows\System32\SensApi.dll - ok
08:53:49.0784 0x074c  [ D7588D42E29080C32A003BEE465160D8, 03C23580F133C976A93F0BB5088E811BC2EC8AEB20A81FE54C9ED608B010C506 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtNetwork4.dll
08:53:49.0784 0x074c  C:\Program Files (x86)\Malwarebytes Anti-Malware\QtNetwork4.dll - ok
08:53:49.0784 0x074c  [ 93812FDC01AA864195816CD814445F95, E5CB2576DA2905177AFD342DBE63E17CF626F93F430DEBC55155C18C60166BEE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
08:53:49.0784 0x074c  C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
08:53:49.0784 0x074c  [ 1075AB2C077B415760C0E948856B5126, D67804B4A038FC06BD84CBF9C047DD4C13073622027F825371DB98867EF4E9B9 ] C:\Windows\System32\wer.dll
08:53:49.0784 0x074c  C:\Windows\System32\wer.dll - ok
08:53:49.0784 0x074c  [ A054EA8FBE16D4D34F06D81A4F0088E2, 1CD4EECFDA374C8A7B8AD4E664DC057B9C75813AF776A616DC6D845905567CBD ] C:\Windows\SysWOW64\WindowsCodecs.dll
08:53:49.0784 0x074c  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
08:53:49.0784 0x074c  [ 27B9E163740A226B65E4B9E186117911, 17411C6A6C1E699BC4B0C04D782FD9AA09CF577DBA41E743F7588904D489CB9F ] C:\Windows\System32\sqmapi.dll
08:53:49.0784 0x074c  C:\Windows\System32\sqmapi.dll - ok
08:53:49.0799 0x074c  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] C:\Windows\System32\drivers\srv2.sys
08:53:49.0799 0x074c  C:\Windows\System32\drivers\srv2.sys - ok
08:53:49.0799 0x074c  [ 7B38D7916A7CD058C16A0A6CA5077901, 3F6DD990E2DA5D3BD6D65A72CBFB0FE79EB30B118A8AD71B6C9BB5581A622DCE ] C:\Windows\System32\wdscore.dll
08:53:49.0799 0x074c  C:\Windows\System32\wdscore.dll - ok
08:53:49.0799 0x074c  [ D0F868A67CB4D817A3F7ABEF8C42F49C, 1A72FD6104237AE440B75C2E293F8E2DCE6700B5D29C6789CA23DABA3A7EF769 ] C:\Program Files\Toshiba\TECO\TecoService.exe
08:53:49.0799 0x074c  C:\Program Files\Toshiba\TECO\TecoService.exe - ok
08:53:49.0799 0x074c  [ 44C96B48112EB24AE7764EBF1C527000, 6691D008C834686906B4841EF27604B0F0E70E668C09CEE19369426BF168AF44 ] C:\Windows\System32\rastapi.dll
08:53:49.0799 0x074c  C:\Windows\System32\rastapi.dll - ok
08:53:49.0799 0x074c  [ A3F5E8EC1316C3E2562B82694A251C9E, F3DC6AA6A9D3B5BBC730668FC52C1D4BB5D515D404578BDDD3D4869A7ED58822 ] C:\Windows\System32\wbem\fastprox.dll
08:53:49.0799 0x074c  C:\Windows\System32\wbem\fastprox.dll - ok
08:53:49.0799 0x074c  [ FAFAE01E889DC9C05A6CA2138CFC220B, 192CFDE3593ED0A9B397461D912074C0F062015C23E6F6658571C7C2864D9A51 ] C:\Windows\System32\tapi32.dll
08:53:49.0799 0x074c  C:\Windows\System32\tapi32.dll - ok
08:53:49.0799 0x074c  [ 3B367397320C26DBA890B260F80D1B1B, 50BBE71B4380B5E86E197AF86F5C08266DD6B12344BA4ABDEA604B8C774C4147 ] C:\Windows\System32\hnetcfg.dll
08:53:49.0799 0x074c  C:\Windows\System32\hnetcfg.dll - ok
08:53:49.0815 0x074c  [ DC1BBA01FFB5745B8862931E7DE7304A, BE128A621B074FEB0EFEFD5642314E911C4D1EB07B175A502006CC9F53BB1CB4 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
08:53:49.0815 0x074c  C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
08:53:49.0815 0x074c  [ FF19C0002F7CA2FC0EA87EA9892B5C7E, 1EAB10EA83800DC426EDCBDCBFE9E8BF75931BBB65FC0AF31151286CD1EF127B ] C:\Program Files\Toshiba\TECO\TecoHci.dll
08:53:49.0815 0x074c  C:\Program Files\Toshiba\TECO\TecoHci.dll - ok
08:53:49.0815 0x074c  [ 514AE6C699D6223E3FE73C7902BB40FE, 6491B1416AA4E446E2A2DD6BB356F34F13F1C480EFF92D04C4FD4F69C4421DC2 ] C:\Program Files\Toshiba\TECO\TecoPower.dll
08:53:49.0815 0x074c  C:\Program Files\Toshiba\TECO\TecoPower.dll - ok
08:53:49.0815 0x074c  [ 666A60F6F5E719856FF6254E0966EFF7, 58C072E7E215991E19C1CA062C476081982F7B9F039714539AE7FEB4981C200F ] C:\Windows\System32\wbem\wbemprox.dll
08:53:49.0815 0x074c  C:\Windows\System32\wbem\wbemprox.dll - ok
08:53:49.0815 0x074c  [ 3F33D9CB732275D87D5E583CF87A6D3A, 9C2CB8909067517FECDE3CF69C01036AF2BC0A3D9BCFE000A361BBFCE22FCB13 ] C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll
08:53:49.0815 0x074c  C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll - ok
08:53:49.0815 0x074c  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567, 426FB40A065FEF61980C803EF72D0D326C623340C3AE99CA8AFFDEFB81E8D49D ] C:\Windows\System32\vssapi.dll
08:53:49.0815 0x074c  C:\Windows\System32\vssapi.dll - ok
08:53:49.0830 0x074c  [ EE26D130808D16C0E417BBBED0451B34, 4886DCE4FAEF146A40BABD492A8000A2022FEA542A6135A9BAFD4CD09297B4E5 ] C:\Windows\System32\ntdsapi.dll
08:53:49.0830 0x074c  C:\Windows\System32\ntdsapi.dll - ok
08:53:49.0830 0x074c  [ 0D298133C359AB8CB9EB4FA178BF3947, C876CE5E463BB116E41D1C90105D75F2DFCAEBF5FDE2A68AED0D2988470CEB31 ] C:\Windows\System32\msxml3.dll
08:53:49.0830 0x074c  C:\Windows\System32\msxml3.dll - ok
08:53:49.0830 0x074c  [ D2A0FFA75AB181B19B5EB93BB29C7686, AC282D5EFFB191492F14638EB80F18E53C4A3D26C94A00A949366B3564D6C3E2 ] C:\Windows\System32\unimdm.tsp
08:53:49.0830 0x074c  C:\Windows\System32\unimdm.tsp - ok
08:53:49.0830 0x074c  [ 94B7DF336815B47236724019FAB24B7C, 43549F1FB89D0585A0E0333BB8E1DDED2EBD0F3C0EC3EA93B238EA037188AA41 ] C:\Windows\System32\uniplat.dll
08:53:49.0830 0x074c  C:\Windows\System32\uniplat.dll - ok
08:53:49.0830 0x074c  [ 41326DD08ACC0CDC5F8177AF96C066E8, 9C21BB553EEDD28272E865396C9EF94655EC1CF216290A56581AEF7908B7AFDD ] C:\Windows\System32\kmddsp.tsp
08:53:49.0830 0x074c  C:\Windows\System32\kmddsp.tsp - ok
08:53:49.0830 0x074c  [ 1D6BC2769DA66C1145F4DA5A65F52E61, B38EFF16652E751BF3B3BD85DA6EA33AB9B7F4228C59F741074E33085DB66ED0 ] C:\Windows\System32\ndptsp.tsp
08:53:49.0830 0x074c  C:\Windows\System32\ndptsp.tsp - ok
08:53:49.0830 0x074c  [ 7C1BAE7D23D4874FEE256A2B9C00E019, 4EE87C2F0CACE557AA159349133474A5857B6667DDB976BA5A18489A3333F798 ] C:\Windows\System32\hidphone.tsp
08:53:49.0830 0x074c  C:\Windows\System32\hidphone.tsp - ok
08:53:49.0846 0x074c  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] C:\Windows\System32\drivers\srv.sys
08:53:49.0846 0x074c  C:\Windows\System32\drivers\srv.sys - ok
08:53:49.0846 0x074c  [ 287923557447D7E4BDD7E65B1F0F5428, 14D85A0F036F28D77AA9723C3D7E8C4DA9BDFF8A1AD9BEA6FE5756DBF5D00F08 ] C:\Windows\System32\vsstrace.dll
08:53:49.0846 0x074c  C:\Windows\System32\vsstrace.dll - ok
08:53:49.0846 0x074c  [ 8B0CC841031A94800CFD2BA041FB3E46, 39D4C588CFE7592B5C8F7D099E7BF6A8BA25ED1638A695EF118AD27A83889A7E ] C:\Program Files\Trend Micro\AMSP\module\20017\1.5.1017\plugAdapterTMEBC.dll
08:53:49.0846 0x074c  C:\Program Files\Trend Micro\AMSP\module\20017\1.5.1017\plugAdapterTMEBC.dll - ok
08:53:49.0846 0x074c  [ FEB91B4DA0D540865260A33838654FA3, 8636B008BA329D3E6CC235D08BA4C914EFF45DBFCB9297C893CCDA8D907BA946 ] C:\Windows\System32\nci.dll
08:53:49.0846 0x074c  C:\Windows\System32\nci.dll - ok
08:53:49.0846 0x074c  [ CFEFA40DDE34659BE5211966EAD86437, AC0A3AD8AA47012C40785013E2273FC571F416BC9C9FFDA418FE72B3123C1FB0 ] C:\Windows\System32\netmsg.dll
08:53:49.0846 0x074c  C:\Windows\System32\netmsg.dll - ok
08:53:49.0862 0x074c  [ A717A35120DBAB5AB707AB40662AF9DD, DE117E70D0AC7FC26BBCEAAB45A0270A1065B36CC8B062B4128B561F2AAA9E04 ] C:\Windows\System32\rasppp.dll
08:53:49.0862 0x074c  C:\Windows\System32\rasppp.dll - ok
08:53:49.0862 0x074c  [ EB5347F6149D3FF25F4D609A21A3BD67, 8264130CE01BC79D3D409BB675D29749BFD80D19AD2616B0F629F08426B42F67 ] C:\Windows\SysWOW64\mshtml.dll
08:53:49.0862 0x074c  C:\Windows\SysWOW64\mshtml.dll - ok
08:53:49.0862 0x074c  [ 0FE5CD5F9C9248F42D1EF56E495B182E, 1EBD40C119A3D3251A19A8D15669D9DCB5D3CFBC3AFCF1CD00101C31320243E1 ] C:\Windows\System32\vpnike.dll
08:53:49.0862 0x074c  C:\Windows\System32\vpnike.dll - ok
08:53:49.0862 0x074c  [ 70A176BF2ED362862944C371838262F8, 7F54164AB73160826991B565D1B1804BA9F6223830503B5A4F84B7E8AEFAF6A1 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
08:53:49.0862 0x074c  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
08:53:49.0862 0x074c  [ FF80CAD87555E8E4D2CFD7B9058343F8, 07653773FBEC1996408B8507B08E0E1E812830063F932F897F4B39EE63DDCDC4 ] C:\Windows\System32\sscore.dll
08:53:49.0862 0x074c  C:\Windows\System32\sscore.dll - ok
08:53:49.0862 0x074c  [ 1893BF117E7375996E8106BB25246F75, 2FABFA2993D323434697D468CCE56916402496D1EA9080047E163A1E51426FDB ] C:\Program Files\Trend Micro\AMSP\module\2\3.0.1251\coreCommandManager.dll
08:53:49.0862 0x074c  C:\Program Files\Trend Micro\AMSP\module\2\3.0.1251\coreCommandManager.dll - ok
08:53:49.0862 0x074c  [ 81749E073AC5857B044A686B406E5244, 3884EE705CA34235B29942FEDA8FEA654A21139B8C2A1D5E009C7D07D6E6ADF1 ] C:\Windows\System32\clusapi.dll
08:53:49.0862 0x074c  C:\Windows\System32\clusapi.dll - ok
08:53:49.0877 0x074c  [ D2288FDDCFAFC65CDA24A34278ECEEC1, 91913E688A8B56693C354A8DC0891B2A86892DB5245A0F07B81F1EB5D9F6B917 ] C:\Program Files\Trend Micro\AMSP\utilIPC.dll
08:53:49.0877 0x074c  C:\Program Files\Trend Micro\AMSP\utilIPC.dll - ok
08:53:49.0877 0x074c  [ C9A8EFCDC07C8849303938B4377D9093, E528C0B71665A03B084387D67C548FD8444A9721E601B038E76E30F42ED2B204 ] C:\Program Files\Trend Micro\AMSP\utilRPC.dll
08:53:49.0877 0x074c  C:\Program Files\Trend Micro\AMSP\utilRPC.dll - ok
08:53:49.0877 0x074c  [ E90CA73632A9F7E41362FBEA2EDE06AD, D67B1B7376F0524ABFA647D5F9FA413415F862D33DDB4F4AB1FDBC4A7C35F26F ] C:\Program Files\Trend Micro\AMSP\module\3\3.0.1249\coreEventManager.dll
08:53:49.0877 0x074c  C:\Program Files\Trend Micro\AMSP\module\3\3.0.1249\coreEventManager.dll - ok
08:53:49.0877 0x074c  [ 344FCC9850C3A8A3B4D3C65151AF8E4C, C38853454E153B1AB4AEAE1AAFB7CB4B2E6234208CF24C09F3B2AFE25E271C5C ] C:\Windows\System32\resutils.dll
08:53:49.0877 0x074c  C:\Windows\System32\resutils.dll - ok
08:53:49.0877 0x074c  [ 2DF29664ED261F0FC448E58F338F0671, 4EFE79C383D0AF126FC4EE668D822563F8F037B1E61D73747A35FE11AAFDB8CE ] C:\Windows\System32\mprapi.dll
08:53:49.0877 0x074c  C:\Windows\System32\mprapi.dll - ok
08:53:49.0877 0x074c  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D, A63836DB3B01835DC1311526A95198D6EBCCB1DC9DDAFBC38EC36C128CDB98B9 ] C:\Windows\System32\netshell.dll
08:53:49.0877 0x074c  C:\Windows\System32\netshell.dll - ok
08:53:49.0877 0x074c  [ F11A57E91FDAECFB41A5CB21EB1EBC8E, 904DA963F2274ADF521660E3131DAC781E59C6FAEB393E57802A3B5638C09283 ] C:\Windows\System32\dssenh.dll
08:53:49.0877 0x074c  C:\Windows\System32\dssenh.dll - ok
08:53:49.0893 0x074c  [ 8EFA206943D18D9CD48924A3BA797393, 45C6A933E5FB3D2B6EEE98033BCB0B9E32A902EAF532F324F5EDC02347179BEA ] C:\Program Files\Trend Micro\AMSP\boost_thread-vc110-mt-1_49.dll
08:53:49.0893 0x074c  C:\Program Files\Trend Micro\AMSP\boost_thread-vc110-mt-1_49.dll - ok
08:53:49.0893 0x074c  [ 5EB55F661DEBF156E126160BCD4D89F8, 948D1F627AA55D55FB3B558BA61B8366C5481A6041820631F24408F75EA5D2CC ] C:\Windows\System32\wbem\wbemcore.dll
08:53:49.0893 0x074c  C:\Windows\System32\wbem\wbemcore.dll - ok
08:53:49.0893 0x074c  [ 087D8668C71634A3A3761135ABF16EEE, B7348A63299CFF4FFBF375E645A4850AE0F108D48D13AB25434CFAE7CF3D61FD ] C:\Windows\System32\wbem\esscli.dll
08:53:49.0893 0x074c  C:\Windows\System32\wbem\esscli.dll - ok
08:53:49.0893 0x074c  [ 718B6F51AB7F6FE2988A36868F9AD3AB, 76141B4E94C2766E2C34CEF523092948771A7893212EFADBE88D2171B85FF012 ] C:\Windows\System32\wbem\wbemsvc.dll
08:53:49.0893 0x074c  C:\Windows\System32\wbem\wbemsvc.dll - ok
08:53:49.0893 0x074c  [ 0143DB80DACFB7C2B5B7009ED9063353, 252885CF7C1BAB89B86908373546E5F5D674BEF7AACBDDCF321AD877CB9150A9 ] C:\Windows\System32\wbem\wmiutils.dll
08:53:49.0893 0x074c  C:\Windows\System32\wbem\wmiutils.dll - ok
08:53:49.0893 0x074c  [ 0AB34456654C283DAA13B8D2BA21439B, 4B70FC5195DE39564E951C8542020BA3D4257E3D4488F69825F67A6099CB7549 ] C:\Windows\System32\wbem\repdrvfs.dll
08:53:49.0893 0x074c  C:\Windows\System32\wbem\repdrvfs.dll - ok
08:53:49.0893 0x074c  [ 5151284AF095280698506730E004570A, 27DD49FC87CBAEF3B1BC3DED3D3571A484431909A58FA02E8D8C7427CC4EC533 ] C:\Program Files\Trend Micro\AMSP\module\4\3.0.1249\coreTaskManager.dll
08:53:49.0893 0x074c  C:\Program Files\Trend Micro\AMSP\module\4\3.0.1249\coreTaskManager.dll - ok
08:53:49.0908 0x074c  [ 76C927FB27B2E8612A23461B4DC07D5B, DDA753AAA8657A4469F399FB808FAF348CA0E8ED527568C7BFE014C1573ECC2A ] C:\Program Files\Trend Micro\AMSP\module\6\3.0.1249\coreReportManager.dll
08:53:49.0908 0x074c  C:\Program Files\Trend Micro\AMSP\module\6\3.0.1249\coreReportManager.dll - ok
08:53:49.0908 0x074c  [ 725A46B2EFD286AF143EAD2CD17B703F, 41ED0985ABA01140ADE2F8596AED1BE4EC84CD325C85AC5759C05539631DC390 ] C:\Program Files\Trend Micro\AMSP\module\10\3.0.1249\coreActionManager.dll
08:53:49.0908 0x074c  C:\Program Files\Trend Micro\AMSP\module\10\3.0.1249\coreActionManager.dll - ok
08:53:49.0908 0x074c  [ 49ACA548B2423F1C67898E6AC719A9A6, 23D84137EAB9AFDD31CBB6776B6B25AD135A120AF7F7885EB5BBF9E0A2CCC4C1 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
08:53:49.0908 0x074c  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
08:53:49.0908 0x074c  [ DDD0357A92FA843EFF8915ED17253D6C, 0C78B1D41F0A7821186ADF653504F2BFF067CB512CB0E932047C301378BBADB6 ] C:\Windows\System32\wbem\WmiPrvSD.dll
08:53:49.0908 0x074c  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
08:53:49.0908 0x074c  [ D41FEBD098234F02485A4EA98D4730A4, 462DC8168C444F35B43BA3B8F7D77734665D84F1C6D25CAD7391C0145961628F ] C:\Windows\System32\ncobjapi.dll
08:53:49.0908 0x074c  C:\Windows\System32\ncobjapi.dll - ok
08:53:49.0924 0x074c  [ 4F671089C3691C030051FF367A95BADA, CE1E106E94D974B9E7EC388E9E73EBBFD7DF86C37422549878C5AEFC0AC795CA ] C:\Program Files\Trend Micro\AMSP\module\11\3.0.1296\coreScanManager.dll
08:53:49.0924 0x074c  C:\Program Files\Trend Micro\AMSP\module\11\3.0.1296\coreScanManager.dll - ok
08:53:49.0924 0x074c  [ 6F40D6FB05E0C1E5402812B426971AF0, E41F138F0F2DB057F8DBB1587237C6FA8A2059B3D64EC894D1DC492A18DBBDED ] C:\Windows\System32\wbem\wbemess.dll
08:53:49.0924 0x074c  C:\Windows\System32\wbem\wbemess.dll - ok
08:53:49.0924 0x074c  [ 1EBE9524683C7C4EED8B8BC93FB6FBCC, 78AF098E270EDE62466557091F14B2D37BDAB488F02E7CC769251FD17C02BA4A ] C:\Windows\SysWOW64\fltLib.dll
08:53:49.0924 0x074c  C:\Windows\SysWOW64\fltLib.dll - ok
08:53:49.0924 0x074c  [ 1C60E09CA1C3A045BC4D367F67C915B7, DF1ED88CB57DA1AB1A4245AE0D5B42AFA3396EBF67B99411FFFB0DD06DE1AEAF ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
08:53:49.0924 0x074c  C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
08:53:49.0924 0x074c  [ 70C4DFA25B0B40FA66E03612ACD42ABF, 3D40E44CBA26EFEB1591236E2F70F920CC74DD7577C79DA28E274996C894AC0D ] C:\Program Files\Trend Micro\AMSP\libprotobuf.dll
08:53:49.0924 0x074c  C:\Program Files\Trend Micro\AMSP\libprotobuf.dll - ok
08:53:49.0924 0x074c  [ EE234FDE1BA16BDABD7585E89FE26FF1, 65AB446A7E266FE271195E7D2F52D8657F063E6F934FD31627AE0E9C1EAD7CA1 ] C:\Program Files\Trend Micro\AMSP\boost_system-vc110-mt-1_49.dll
08:53:49.0924 0x074c  C:\Program Files\Trend Micro\AMSP\boost_system-vc110-mt-1_49.dll - ok
08:53:49.0924 0x074c  [ 2977B7B75753F1B7214C7F8E2E0DA135, 3FC56D74345959E9336DDCB2884D05469F4B2ED38E9A586CA55761F3DAF81404 ] C:\Program Files\Trend Micro\AMSP\module\10017\2.2.1045\plugEngineDLTI.dll
08:53:49.0924 0x074c  C:\Program Files\Trend Micro\AMSP\module\10017\2.2.1045\plugEngineDLTI.dll - ok
08:53:49.0940 0x074c  [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\SysWOW64\wship6.dll
08:53:49.0940 0x074c  C:\Windows\SysWOW64\wship6.dll - ok
08:53:49.0940 0x074c  [ 011450254233BA8DC9C97B676ACF36FD, F7DC06B5C2899214E177D95F1204A8EA715522FAE5E995DBB5E3BE092E03BDB8 ] C:\Program Files\Trend Micro\AMSP\module\5\3.0.1259\coreConfigRepository.dll
08:53:49.0940 0x074c  C:\Program Files\Trend Micro\AMSP\module\5\3.0.1259\coreConfigRepository.dll - ok
08:53:49.0940 0x074c  [ 619A67C9F617B7E69315BB28ECD5E1DF, F34F231D117CCDFEBB9CB35C8D6FDFA7051DA27FDC1204FCCFF361FC0B13A0FF ] C:\Windows\System32\wbem\WmiPrvSE.exe
08:53:49.0940 0x074c  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
08:53:49.0940 0x074c  [ 551E587F3ECC088FDEAB1587BF07A2E6, C024184B7976DBDAF33811D95DE7A2A5E3FBD84802CE416885E15169AA302F3B ] C:\Program Files\Trend Micro\AMSP\module\1\3.0.1249\coreFrameworkBuilder.dll
08:53:49.0940 0x074c  C:\Program Files\Trend Micro\AMSP\module\1\3.0.1249\coreFrameworkBuilder.dll - ok
08:53:49.0940 0x074c  [ 745DC4C17E3CA19EFBD021ECCA675AA9, 23515CC8DF8BFFB43828A335788FE1CF928CE0150F2C45A144848134C3CD3FCE ] C:\Program Files\Trend Micro\AMSP\module\10000\3.0.1294\plugEngineVSAPI.dll
08:53:49.0940 0x074c  C:\Program Files\Trend Micro\AMSP\module\10000\3.0.1294\plugEngineVSAPI.dll - ok
08:53:49.0940 0x074c  [ 4E5A0641BB58240D1CFA52958485D329, 7A23FCE6E600AC12BCEB2287030B90C832191E8AC46BA95EC13AE51D559CFCA6 ] C:\Program Files\Trend Micro\AMSP\module\10001\3.0.1249\plugEngineSSAPI.dll
08:53:49.0940 0x074c  C:\Program Files\Trend Micro\AMSP\module\10001\3.0.1249\plugEngineSSAPI.dll - ok
08:53:49.0955 0x074c  [ 70A1D465390C393AA118D9764E065B06, 9CF967E76E5D6F3BE7E3A11EBF53F9AC4B3EF88432D338331EC7522FE8C11F10 ] C:\Windows\System32\apisetschema.dll
08:53:49.0955 0x074c  C:\Windows\System32\apisetschema.dll - ok
08:53:49.0955 0x074c  [ B925BC19C88014D13977E4F190B642FC, 36843B8E1DACD62CD60A2DA7272241F5B3985B072288CF160B7AC0E4724E4AEE ] C:\Program Files\Trend Micro\AMSP\module\10002\3.0.1249\plugEngineDCE.dll
08:53:49.0955 0x074c  C:\Program Files\Trend Micro\AMSP\module\10002\3.0.1249\plugEngineDCE.dll - ok
08:53:49.0955 0x074c  [ 7F4FE30623F4FCBC51FBCC852903EDA2, 8EA7386BD8C223B51589482A4B6F6EEA91342326EDD1CD7B4CDCDEEA0D351FA0 ] C:\Program Files\Trend Micro\AMSP\module\10004\3.0.1251\plugEngineAEGIS.dll
08:53:49.0955 0x074c  C:\Program Files\Trend Micro\AMSP\module\10004\3.0.1251\plugEngineAEGIS.dll - ok
08:53:49.0955 0x074c  [ B74BE12680411FEAB7B20102E4A9A59A, 1B2D880A51DB6F3A0B6C296D5EB48C1D95065822A7C888D9BF0309D28193AE6E ] C:\Program Files\Trend Micro\AMSP\module\10005\3.0.1249\plugEngineTMUFE.dll
08:53:49.0955 0x074c  C:\Program Files\Trend Micro\AMSP\module\10005\3.0.1249\plugEngineTMUFE.dll - ok
08:53:49.0955 0x074c  [ FE22BC22D1E28F63C1B30663E6412BCC, 649BDC0878CBAF456BE84EA71B2F546FB5A5CCC2DE24C8F2D5542331254A3FB2 ] C:\Program Files\Trend Micro\AMSP\module\10007\3.0.1249\plugEngineTMFBE.dll
08:53:49.0955 0x074c  C:\Program Files\Trend Micro\AMSP\module\10007\3.0.1249\plugEngineTMFBE.dll - ok
08:53:49.0955 0x074c  [ FD35BC7319050D3586A6F22E6366B86B, 30CFBADA20A32FFD5D2874EC8FB33B19793434421908EE548CDFEB787FE7322C ] C:\Program Files\Trend Micro\AMSP\module\10008\3.0.1249\plugEngineICRC.dll
08:53:49.0955 0x074c  C:\Program Files\Trend Micro\AMSP\module\10008\3.0.1249\plugEngineICRC.dll - ok
08:53:49.0971 0x074c  [ 552830394CB4FDAD969F71EBCB82C78C, 38B5AA307097ED20E35155AE661EED51BEA11FA1E83E28C2C16BC7B5E76E4D2C ] C:\Program Files\Trend Micro\AMSP\module\20001\3.0.1278\plugAdapterSystem.dll
08:53:49.0971 0x074c  C:\Program Files\Trend Micro\AMSP\module\20001\3.0.1278\plugAdapterSystem.dll - ok
08:53:49.0971 0x074c  [ E79F984B283DFEB7B61C85AAB686AD94, D1B974A2AEEB71A8220ADF0734662DED912FDEE6D95B1DDBC1CA8F38CD90BA19 ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\plugAdapterProxy.dll
08:53:49.0971 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\plugAdapterProxy.dll - ok
08:53:49.0971 0x074c  [ 7599FEB4E8FCEE7B4458701E58C38557, 5B2546C5606E89E95FA75E1B99AFFE1C8AAB39CCD81BFD4F818202165A4A744F ] C:\Program Files\Trend Micro\AMSP\module\30000\3.0.1274\plugRealtimeScanFlow.dll
08:53:49.0971 0x074c  C:\Program Files\Trend Micro\AMSP\module\30000\3.0.1274\plugRealtimeScanFlow.dll - ok
08:53:49.0971 0x074c  [ C8F85B26A1C13EED6B21298D71FC4F73, C93BE10592E06DBD8ED050374B4ECF231C95E2436DD92C6EC9067801A7A427CC ] C:\Program Files\Trend Micro\AMSP\module\30001\3.0.1249\plugManualScanFlow.dll
08:53:49.0971 0x074c  C:\Program Files\Trend Micro\AMSP\module\30001\3.0.1249\plugManualScanFlow.dll - ok
08:53:49.0971 0x074c  [ 4A21E94B3FA7321400CA7611F1F3F720, F19A505B2EB1A6BE946381B7025DD7D4B69881112990B2EA1B1FD099A9199243 ] C:\Program Files\Trend Micro\AMSP\module\30004\3.0.1249\plugRealTimeScanCache.dll
08:53:49.0971 0x074c  C:\Program Files\Trend Micro\AMSP\module\30004\3.0.1249\plugRealTimeScanCache.dll - ok
08:53:49.0971 0x074c  [ 219CB6C409F12B394A164ED188B54937, CE2B5E3F70DC3CD2C18E4EEA9C4BEFCDAEB9A30E3C39790C01AF4D73709F9EE0 ] C:\Program Files\Trend Micro\AMSP\module\40000\3.0.1275\plugUtilRCM.dll
08:53:49.0971 0x074c  C:\Program Files\Trend Micro\AMSP\module\40000\3.0.1275\plugUtilRCM.dll - ok
08:53:49.0986 0x074c  [ EF166366029E79643EA82A5DB61A5B0B, E7CB0DD3AD4507B15034DF9C97509A44B3B9AC3710A5C0233BE7AF2BEE3911B7 ] C:\Program Files\Trend Micro\AMSP\module\40001\2.61.1050\plugUtilEnum.dll
08:53:49.0986 0x074c  C:\Program Files\Trend Micro\AMSP\module\40001\2.61.1050\plugUtilEnum.dll - ok
08:53:49.0986 0x074c  [ 5EB6E9C8BE1ACC5830780E0F9A846255, AC5EDC6DBC9CA204584E35878E18F6524DE002CE3D90657C37599790A5DDD1F1 ] C:\Windows\System32\msi.dll
08:53:49.0986 0x074c  C:\Windows\System32\msi.dll - ok
08:53:49.0986 0x074c  [ 6607C2182C6A53ED983813AFE2F85768, FC9E718ABC4E0FBC7B0DD145F9C377A1800A7776AD832AB645796E13B1E15A1F ] C:\Windows\System32\wbem\cimwin32.dll
08:53:49.0986 0x074c  C:\Windows\System32\wbem\cimwin32.dll - ok
08:53:49.0986 0x074c  [ 5EA9EC37F70EE1C3BC88A3FB38FFCEDF, 847AA489CE06E22110309C216F7678D790FDD9378A4F85C5E79641760D5EF58D ] C:\Program Files\Trend Micro\AMSP\module\1000001\3.0.1249\paCoreProductAdaptor.dll
08:53:49.0986 0x074c  C:\Program Files\Trend Micro\AMSP\module\1000001\3.0.1249\paCoreProductAdaptor.dll - ok
08:53:49.0986 0x074c  [ 8ADF928B5E427BDF1C06B45373760FFA, 310B6E0521DB08A0FC2DEED2F5D4E9432D31655A461B869F429140995A3AB1C7 ] C:\Program Files\Trend Micro\AMSP\inner_AMSP_ClientLibrary.dll
08:53:49.0986 0x074c  C:\Program Files\Trend Micro\AMSP\inner_AMSP_ClientLibrary.dll - ok
08:53:50.0002 0x074c  [ 1484B9EBF567346582DE571B0E164AE0, 9862BF22B2E32DABE7A82ACEE5B4EA1F0A93BDC3C71B20A6A4E568CCCD76A7A6 ] C:\Windows\System32\framedynos.dll
08:53:50.0002 0x074c  C:\Windows\System32\framedynos.dll - ok
08:53:50.0002 0x074c  [ 1A6ADA23F804FC192747F590CE9E91C9, 3CBE9ED2366B54CB991188A548B2E13CED4C811205756B40DB577DF8BEC0C0FD ] C:\Program Files\Trend Micro\AMSP\module\1000001\3.0.1249\utilJsonHandle.dll
08:53:50.0002 0x074c  C:\Program Files\Trend Micro\AMSP\module\1000001\3.0.1249\utilJsonHandle.dll - ok
08:53:50.0002 0x074c  [ 81CC0C058106D66AC2447F733A0E5C00, 09704237396CB968FC5F9AA594C29E1AEE3870090F7174ED03CDEC4E0BC8E683 ] C:\Program Files\Internet Explorer\sqmapi.dll
08:53:50.0002 0x074c  C:\Program Files\Internet Explorer\sqmapi.dll - ok
08:53:50.0002 0x074c  [ FD0A5D509C2B16BF536F1DEACD838C63, 31ED1125D11E3201147DB49DBF5FCD6DE4184EC6C62F2812BB9D59F420FE826B ] C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\plugAdapterBP.dll
08:53:50.0002 0x074c  C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\plugAdapterBP.dll - ok
08:53:50.0002 0x074c  [ 07AD88DF9EF73215458867EFC1BFFE9E, 8C659B6F31111C09448B68889623886658C96467E7E5C95C1714E18AD3924463 ] C:\Windows\System32\wbem\wmiprov.dll
08:53:50.0002 0x074c  C:\Windows\System32\wbem\wmiprov.dll - ok
08:53:50.0002 0x074c  [ 08046B921B0C9ACCA2745C16510AB751, B161B683B6B6D3ED930CC013AED5506B315DD84752D0C14BB1965C9EC3F0F2AA ] C:\Program Files\Trend Micro\AMSP\module\10009\3.9.1030\plugEngineLCE.dll
08:53:50.0002 0x074c  C:\Program Files\Trend Micro\AMSP\module\10009\3.9.1030\plugEngineLCE.dll - ok
08:53:50.0018 0x074c  [ B5A6B54E647398B19504FD18C6D2D794, 84C377B0A8695C6F4E8B98ED1FF7318C598CD4433347472591D87751444B7636 ] C:\Program Files\Trend Micro\AMSP\module\10010\3.9.1030\plugEngineLES.dll
08:53:50.0018 0x074c  C:\Program Files\Trend Micro\AMSP\module\10010\3.9.1030\plugEngineLES.dll - ok
08:53:50.0018 0x074c  [ 72E6B783A5370476E30DC89AD7438352, 299740C710956465A7C7B4ED10804AB2E5DF1214E84E11D18603BC5E6F86806E ] C:\Program Files\Trend Micro\AMSP\module\40002\3.0.1265\plugUtilSysInfo.dll
08:53:50.0018 0x074c  C:\Program Files\Trend Micro\AMSP\module\40002\3.0.1265\plugUtilSysInfo.dll - ok
08:53:50.0018 0x074c  [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C, 78889511D6F471009674CC958F8BB77B4A79C952634B18E8AFF4A75AA6A60E87 ] C:\Windows\System32\ndiscapCfg.dll
08:53:50.0018 0x074c  C:\Windows\System32\ndiscapCfg.dll - ok
08:53:50.0018 0x074c  [ C6753CA30A0A860A5B30D41B5B5FE026, EE4C02DFBCAE991DDC98EA2EAFED77D91C13A9C6301D33B4ACF89D5EAEC04E14 ] C:\Program Files\Trend Micro\AMSP\module\30005\3.2.1022\plugLocalCorrelationFlow.dll
08:53:50.0018 0x074c  C:\Program Files\Trend Micro\AMSP\module\30005\3.2.1022\plugLocalCorrelationFlow.dll - ok
08:53:50.0018 0x074c  [ 76F58DB8F85C125E0D6B3AA42F3BF1D0, 4871DD028E3C2D85AB3F25645A5A4D19D9E96F7BD0FE552005F221B0CF9633DA ] C:\Windows\SysWOW64\urlmon.dll
08:53:50.0018 0x074c  C:\Windows\SysWOW64\urlmon.dll - ok
08:53:50.0018 0x074c  [ 1CF21800E337F4039AAD4C94B4280EE4, EF434CEF6E62A202B85E8EC7916EB998E20B10675437CDE90084CDA938C0AA3F ] C:\Windows\System32\mprmsg.dll
08:53:50.0018 0x074c  C:\Windows\System32\mprmsg.dll - ok
08:53:50.0033 0x074c  [ 27BFAE5D33BCAF07CC9ABCFED2E0F1EA, A3FA9CFC3CC8DAA2A61AAC1459C50A061B82AD5AEFFB9C658301332D5F122607 ] C:\Program Files\Trend Micro\AMSP\module\10011\3.0.1162\plugEngineTMSA.dll
08:53:50.0033 0x074c  C:\Program Files\Trend Micro\AMSP\module\10011\3.0.1162\plugEngineTMSA.dll - ok
08:53:50.0033 0x074c  [ AC0C9CEA1218DAB1994AF8B28E680BD9, 7C79144AD91C5B578B48DD6412884A58F4E6C23732612655A73486FC7BCE68A0 ] C:\Windows\System32\wlaninst.dll
08:53:50.0033 0x074c  C:\Windows\System32\wlaninst.dll - ok
08:53:50.0033 0x074c  [ DE06FACD66931838269BC756F608E1B2, 7B21ACB38442AD7153002DA1743C4A9EC0261FFED5C50B253A0470E80FEB649D ] C:\Program Files\Trend Micro\AMSP\module\30006\3.0.1249\plugCommonScanCache.dll
08:53:50.0033 0x074c  C:\Program Files\Trend Micro\AMSP\module\30006\3.0.1249\plugCommonScanCache.dll - ok
08:53:50.0033 0x074c  [ 9CDC6053DB901C2878C85096118656DC, A15993876982515F9A236B38EE55E49F2951EF4789F05C86BF5A93906C25EC7C ] C:\Program Files\Trend Micro\AMSP\module\40003\3.0.1249\plugUtilException.dll
08:53:50.0033 0x074c  C:\Program Files\Trend Micro\AMSP\module\40003\3.0.1249\plugUtilException.dll - ok
08:53:50.0033 0x074c  [ EF570796E6D1727389EB0D39B882239B, 05E97CEE41EBC316AC749E28E01A9539902F72CF219CF03B0D2A944CE16DC846 ] C:\Program Files\Trend Micro\AMSP\module\10012\1.7.1008\plugEngineDre.dll
08:53:50.0033 0x074c  C:\Program Files\Trend Micro\AMSP\module\10012\1.7.1008\plugEngineDre.dll - ok
08:53:50.0033 0x074c  [ 5A406C9C8E0880D3EABADC5DFD1ACDAE, D3228D81B30A37DDDBF2E9FECC8885404FB95DBD11C5F55A425B27BD361BC2C1 ] C:\Windows\System32\wwaninst.dll
08:53:50.0033 0x074c  C:\Windows\System32\wwaninst.dll - ok
08:53:50.0033 0x074c  [ C3636A65666B02A12096E82BDB93E904, 38BF7248C3CA826EF11AFADDFD6DC0AD6BD2BD8C1FB6C0FAC726467385E3D582 ] C:\Program Files\Trend Micro\AMSP\module\20009\3.0.1249\plugAdapterNCIE.dll
08:53:50.0033 0x074c  C:\Program Files\Trend Micro\AMSP\module\20009\3.0.1249\plugAdapterNCIE.dll - ok
08:53:50.0049 0x074c  [ 32D56C7E19C6459509A2DD11027AE657, DC94A31C3012DE00B4509ED8079D615C4A58AB6493A426B6722B0571B8D5CE53 ] C:\Program Files\Trend Micro\AMSP\module\20011\3.0.1249\plugAdapterEagleEye.dll
08:53:50.0049 0x074c  C:\Program Files\Trend Micro\AMSP\module\20011\3.0.1249\plugAdapterEagleEye.dll - ok
08:53:50.0049 0x074c  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\System32\rundll32.exe
08:53:50.0049 0x074c  C:\Windows\System32\rundll32.exe - ok
08:53:50.0049 0x074c  [ B23A2E53BC968E271BB28F485BE3EA01, 4B2F38E0B01BB95721DBF357E291CCD037345783A5B5A8B44CF428C5EBE27363 ] C:\Program Files\Trend Micro\AMSP\module\10015\3.0.1249\plugEngineWL.dll
08:53:50.0049 0x074c  C:\Program Files\Trend Micro\AMSP\module\10015\3.0.1249\plugEngineWL.dll - ok
08:53:50.0049 0x074c  [ 1297250C5D6F748EA70ACAFFD9F0E76B, 7A31F990FC2FC1667D8EDF55C4BD7BAC07E7E71E9362CE5F58F35503D595AC4B ] C:\Program Files\Trend Micro\AMSP\module\10013\3.0.1249\plugEnginePeDif.dll
08:53:50.0049 0x074c  C:\Program Files\Trend Micro\AMSP\module\10013\3.0.1249\plugEnginePeDif.dll - ok
08:53:50.0049 0x074c  [ AC734441D50AE37D07A9EE87E1369E84, B12CEBBE74964A3415811000780BC5E07D3A2D30CE284DE4D8A60900E0FB217D ] C:\Program Files\Trend Micro\AMSP\module\10014\1.9.1012\plugEngineTmCDE.dll
08:53:50.0049 0x074c  C:\Program Files\Trend Micro\AMSP\module\10014\1.9.1012\plugEngineTmCDE.dll - ok
08:53:50.0049 0x074c  [ E6F0F82788E8BD0F7A616350EFA0761C, 13091DCB3E3F4F52C3FF210E93AAF1DCE142CFC09F671AEAC5B922393B23E67B ] C:\Windows\System32\actxprxy.dll
08:53:50.0049 0x074c  C:\Windows\System32\actxprxy.dll - ok
08:53:50.0064 0x074c  [ 083F75F421FACB621F823B4748F6ED41, A7230AD038F59695CEE25476D38C573E5C7C51A72772A1637E4C904E05BEDC57 ] C:\Program Files\Trend Micro\AMSP\module\40004\3.0.1249\plugUtilLowConfDB.dll
08:53:50.0064 0x074c  C:\Program Files\Trend Micro\AMSP\module\40004\3.0.1249\plugUtilLowConfDB.dll - ok
08:53:50.0064 0x074c  [ 7C6407CA87616872D5988927E68AE6E8, 02CA01EFADFB6653E94B4AF141F07ABA2EA01CC2706E61D810EFB3265CA0ABB0 ] C:\Program Files\Trend Micro\AMSP\module\30007\3.0.1251\plugCensus.dll
08:53:50.0064 0x074c  C:\Program Files\Trend Micro\AMSP\module\30007\3.0.1251\plugCensus.dll - ok
08:53:50.0064 0x074c  [ 17E780F833D5866160D9DF95B8B1B1F4, 300D935C03F344FEB75EE484DA051C0EBDE87D5272BF9285B18CBC3E858BEB70 ] C:\Program Files\Trend Micro\AMSP\module\10016\3.0.1249\plugEngineSMV.dll
08:53:50.0064 0x074c  C:\Program Files\Trend Micro\AMSP\module\10016\3.0.1249\plugEngineSMV.dll - ok
08:53:50.0064 0x074c  [ 97A1AFD42B8016D132C7BF38C955C6E1, 6E5265F61CAA45003847E6EBCD48DBAFF2FC591ACABF2D1BD3BE9D4B44D7C904 ] C:\Program Files (x86)\Toshiba\ConfigFree\NDSTray.exe
08:53:50.0064 0x074c  C:\Program Files (x86)\Toshiba\ConfigFree\NDSTray.exe - ok
08:53:50.0064 0x074c  [ 131DFB6DC47571B23523504F947A991D, 89C35B74EBD8F6CB87384A96F09BAEB8ACBD94A5B7F0BE1738485721D2D0D686 ] C:\Program Files (x86)\Toshiba\ConfigFree\NDSParts.dll
08:53:50.0064 0x074c  C:\Program Files (x86)\Toshiba\ConfigFree\NDSParts.dll - ok
08:53:50.0064 0x074c  [ 2766769440198C1E63122865850BB631, 4311E21CC1525A1043C7CF7011A4FDF1B1AEBE2954F9088929F0FC47496530AF ] C:\Program Files (x86)\Toshiba\ConfigFree\NDSAPI.dll
08:53:50.0064 0x074c  C:\Program Files (x86)\Toshiba\ConfigFree\NDSAPI.dll - ok
08:53:50.0080 0x074c  [ 8BDC8ECF5EC879F5F8686B86510BADA0, D5136C002723DC8937ED580383C96A6A7876D7B3EE672C4A00AB67CEEC5CE6B5 ] C:\Program Files (x86)\Toshiba\Wireless LAN Indicator\tosKillIndicator.exe
08:53:50.0080 0x074c  C:\Program Files (x86)\Toshiba\Wireless LAN Indicator\tosKillIndicator.exe - ok
08:53:50.0080 0x074c  [ 544EFF88AC6C85DF5A4D6F18DFE08CFC, D688381F42062FD5D868E7770857C5951C41BA20A1B6E6F60B5D9536C02CD293 ] C:\Windows\SysWOW64\taskschd.dll
08:53:50.0080 0x074c  C:\Windows\SysWOW64\taskschd.dll - ok
08:53:50.0080 0x074c  [ DA4950C4239E0C4FF35895FD7AA46B05, B6F40F19F3A1F032FE1DAC44E157BD4A25F4FE3F1C627A8752259DC0680F3B91 ] C:\Program Files (x86)\Toshiba\ConfigFree\CFWlApi.dll
08:53:50.0080 0x074c  C:\Program Files (x86)\Toshiba\ConfigFree\CFWlApi.dll - ok
08:53:50.0080 0x074c  [ EDF2A5E96BEC469DA3F64E9BDD386111, 63C91BBDFA2E087293B010A4E45625FBD1BFCAF655BFADE2F8B1C36CF804B118 ] C:\Windows\SysWOW64\xmllite.dll
08:53:50.0080 0x074c  C:\Windows\SysWOW64\xmllite.dll - ok
08:53:50.0080 0x074c  [ 007863E45F25AA47A4C30D0930BBFD85, 60F2ABA40D520FCA2C57FA2DB72E111C14F21821DA17F662837506B80C269634 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
08:53:50.0080 0x074c  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
08:53:50.0080 0x074c  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
08:53:50.0080 0x074c  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
08:53:50.0096 0x074c  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] C:\Windows\SysWOW64\netprofm.dll
08:53:50.0096 0x074c  C:\Windows\SysWOW64\netprofm.dll - ok
08:53:50.0096 0x074c  [ 81F6C1AE23B1C493D9E996C3103915D7, E22408B4D2EDE2F89E686A4FDCD4057BE27B86D050E9CB489F0FFB39C72AEC1D ] C:\Windows\SysWOW64\dhcpcsvc6.dll
08:53:50.0096 0x074c  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
08:53:50.0096 0x074c  [ 9D4A1690AF93F233E15380398BEC7431, 8CC99491880DBC444651EB7D245EEE46FE77F4FA74FECFCD29E734AA21AF9D75 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
08:53:50.0096 0x074c  C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
08:53:50.0096 0x074c  [ 40947436A70E0034E41123DF5A0A7702, 5D40FD92DA5CA59C1BADB58AD509DB6A6D613F18660A9A270A53ECA85D34C3A9 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
08:53:50.0096 0x074c  C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
08:53:50.0096 0x074c  [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\SysWOW64\rasadhlp.dll
08:53:50.0096 0x074c  C:\Windows\SysWOW64\rasadhlp.dll - ok
08:53:50.0096 0x074c  [ 198803E5E93E29967DFB0BCFD0186151, 72C3B0FA35578A71E9988FA31A7AD91A9CF31A6BA6EC00EA1F153E99277807BF ] C:\Windows\System32\spfileq.dll
08:53:50.0096 0x074c  C:\Windows\System32\spfileq.dll - ok
08:53:50.0111 0x074c  [ 1F5AFD468EB5E09E9ED75A087529EAB5, 8204DBCC054C1E54B6065BACB78C55716681AD91759E25111B4E4797E51D0AA3 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
08:53:50.0111 0x074c  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll - ok
08:53:50.0111 0x074c  [ 839F96DBAAFD3353E0B248A5E0BD2A51, 11DA5AD3EA5FF4766C12B99FB520B3CBE08581ECAF1A2FD1DC5AC835CA78FAC2 ] C:\Windows\SysWOW64\rasapi32.dll
08:53:50.0111 0x074c  C:\Windows\SysWOW64\rasapi32.dll - ok
08:53:50.0111 0x074c  [ FFA7172354B9256DBB2CDD75F16F33FE, 85B2F014C67C2E52540F17D561793C6633C9E98F12639CCD3854EB1EC34DD035 ] C:\Windows\SysWOW64\rasman.dll
08:53:50.0111 0x074c  C:\Windows\SysWOW64\rasman.dll - ok
08:53:50.0111 0x074c  [ D39DA70FEA6BD713682F70635587DA9E, FF18C97642F48C711D75F32115B1260FE0BDF6072403E5A9226E9BE780AF1969 ] C:\Windows\SysWOW64\rasdlg.dll
08:53:50.0111 0x074c  C:\Windows\SysWOW64\rasdlg.dll - ok
08:53:50.0111 0x074c  [ D4191EFAB91E00FC09257AA5EBAF503B, 161B572CF4C65984EAFDBA95357373BC712AA414B52DDA23523F84151240E337 ] C:\Windows\SysWOW64\mprapi.dll
08:53:50.0111 0x074c  C:\Windows\SysWOW64\mprapi.dll - ok
08:53:50.0111 0x074c  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159, ACE7F85685EB92FC3AB4215122B0469E32F23B196C49F08CDA7791D3122C45DC ] C:\Windows\SysWOW64\rtutils.dll
08:53:50.0111 0x074c  C:\Windows\SysWOW64\rtutils.dll - ok
08:53:50.0127 0x074c  [ D6B4CA6DB025235CF02540098677065C, F9EE12464DE80E1B15B260EE2A4FB80F94F240096803466AE213EA2F8236DF97 ] C:\Program Files (x86)\Toshiba\ConfigFree\NDSMUI.dll
08:53:50.0127 0x074c  C:\Program Files (x86)\Toshiba\ConfigFree\NDSMUI.dll - ok
08:53:50.0127 0x074c  [ E2C48CD0132D4D1DC7D0DF9A6BEF686A, 52D1A8AA992AF2F727DA4B16522D604648D700997B1620CCB67D05838C127674 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
08:53:50.0127 0x074c  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
08:53:50.0127 0x074c  [ 14A4EDA189DB5953B9E1C4391E796619, EB111AF6A5478D6145144647C81E534B256F9C041D3D27D3E791E892F17D9256 ] C:\Program Files (x86)\Toshiba\ConfigFree\CFWRPAR_CS.dll
08:53:50.0127 0x074c  C:\Program Files (x86)\Toshiba\ConfigFree\CFWRPAR_CS.dll - ok
08:53:50.0127 0x074c  [ F0D0E883EBBDC7615DC9EDEA0FFB2817, 58F1395445018CB16ED4D3710443FB5B0E087043F6A69F7B10D72D0455958954 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
08:53:50.0127 0x074c  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
08:53:50.0127 0x074c  [ 81F08948A0F1475894C99D4D19A158A8, 93334DA369BF976E498265E432CAF63D898D378C6B32947DF355366ABE2A0FAC ] C:\Windows\SysWOW64\wshqos.dll
08:53:50.0127 0x074c  C:\Windows\SysWOW64\wshqos.dll - ok
08:53:50.0127 0x074c  [ CE71B9119A258EDD0A05B37D7B0F92E3, D9310C5BBFE089B8C81E259C462EC1E6D7A7A87FA59FC1F174ED5C58D409AE7A ] C:\Windows\SysWOW64\bcrypt.dll
08:53:50.0127 0x074c  C:\Windows\SysWOW64\bcrypt.dll - ok
08:53:50.0142 0x074c  [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\SysWOW64\bcryptprimitives.dll
08:53:50.0142 0x074c  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
08:53:50.0142 0x074c  [ 28A09777D2D952122567A8A82F1A2C7B, 772260DF36AE85A0619C51402DE416E0C329976B724C8E9C4F8C013CBB7C7289 ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
08:53:50.0142 0x074c  C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
08:53:50.0142 0x074c  [ 1D109ED0D660654EA7FF1574558031C4, 7DCB3C45938D31854E46B5E5B0E16D538E29230D1BC81086D40C8DB3BDF510BC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcm80.dll
08:53:50.0142 0x074c  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcm80.dll - ok
08:53:50.0142 0x074c  [ D855F6D59DB5C1524B53F09B7B455ACD, D430916C95E1294673952CE46744B021A110A0ED2BE55BD98A9991B11350AE19 ] C:\Program Files\Trend Micro\AMSP\module\20001\3.0.1278\Helper\helperSystemDriver.dll
08:53:50.0142 0x074c  C:\Program Files\Trend Micro\AMSP\module\20001\3.0.1278\Helper\helperSystemDriver.dll - ok
08:53:50.0142 0x074c  [ C5B0324DB461559ADD070E632A6919FA, AB09CACB5B7DD372B27921A5E01220552A611CECA27EF87961001FA467FDED45 ] C:\Windows\SysWOW64\wbem\wbemprox.dll
08:53:50.0142 0x074c  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
08:53:50.0142 0x074c  [ 74AE819FDE325C80BD03C6D3EB781A30, B869A13DEBD5E1B41D773B3445A3656D4C59C287AB4F00CCF7662995F44F88C6 ] C:\Windows\System32\drivers\tmcomm.sys
08:53:50.0142 0x074c  C:\Windows\System32\drivers\tmcomm.sys - ok
08:53:50.0142 0x074c  [ 704314FD398C81D5F342CAA5DF7B7F21, CDA660E1E8AAE0789780B6B9604B138E67B2BDD1404A5E4C2354B35879D43085 ] C:\Windows\SysWOW64\wbemcomn.dll
08:53:50.0158 0x074c  C:\Windows\SysWOW64\wbemcomn.dll - ok
08:53:50.0158 0x074c  [ 776AE0564F8B1C282E331FD95A1BDC5F, 601CFCA3922FFEA46A54AD323845A76A12FC6AF9FF64E9B0AE294FBB1AFCF4CB ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
08:53:50.0158 0x074c  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
08:53:50.0158 0x074c  [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A, 61B4D669C692775EF361445293163E84FAD8636AC49C8047BE806DB4E4093291 ] C:\Windows\SysWOW64\wbem\fastprox.dll
08:53:50.0158 0x074c  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
08:53:50.0158 0x074c  [ 9C41CEB7CEB88A3ECAD5F071F7517AC3, E76D5378701D21801D8C2ECD843ABFD0DFA35F330D3A4CA6553E9212D63F32A5 ] C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\Helper\helperBPDriver.dll
08:53:50.0158 0x074c  C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\Helper\helperBPDriver.dll - ok
08:53:50.0158 0x074c  [ 51AD0636912EB0B12E7B5EE4696FB62E, B982FCF79691DCA124F6FDBE910199A2C61EBF18478C19FE9F2AE5D2DEF1DA9F ] C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\TmBpIe64.dll
08:53:50.0158 0x074c  C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\TmBpIe64.dll - ok
08:53:50.0158 0x074c  [ 0C35C2E6455AE8A2D1AE5DBE3D77A863, A048A6BF879D2B4471EC1F75FBFED3B71290FD4150090CEC0CB368A3E4885AE5 ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\Helper\helperProxyDriver.dll
08:53:50.0158 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\Helper\helperProxyDriver.dll - ok
08:53:50.0174 0x074c  [ 46F2ED779BBD6913AA1C8FCCF2949598, 8D22F97D309B0FB7C320C1B65D3951F189D29E4F5145BF5CBE93C4063C84500D ] C:\Program Files\Trend Micro\AMSP\module\20009\3.0.1249\Helper\helperNCIEDriver.dll
08:53:50.0174 0x074c  C:\Program Files\Trend Micro\AMSP\module\20009\3.0.1249\Helper\helperNCIEDriver.dll - ok
08:53:50.0174 0x074c  [ E3E811471DE781900FF21C1FD84E941E, 2A47FF52D1D6480AAD1919382E783EA184BF926311F8C7E466FEBE9F6FB88FD6 ] C:\Windows\SysWOW64\ntdsapi.dll
08:53:50.0174 0x074c  C:\Windows\SysWOW64\ntdsapi.dll - ok
08:53:50.0174 0x074c  [ C00DB14550E4BD49737F311C644E45FF, 7085C47DADEED82B6F98ED3903197D76B648E9D6CC67D40C789E236264D9A0DC ] C:\Windows\System32\wmi.dll
08:53:50.0174 0x074c  C:\Windows\System32\wmi.dll - ok
08:53:50.0174 0x074c  [ 220159496484D34009DE71CA1A68E0D4, 94BD3DEB4E84F95D80BE5775E5A612EFF181ECB212FB668674C67AD19194DE69 ] C:\Windows\System32\wbem\NCProv.dll
08:53:50.0174 0x074c  C:\Windows\System32\wbem\NCProv.dll - ok
08:53:50.0174 0x074c  [ 15E8ABC06843672955CE26A009533BAD, E7221B7DE9DB45447C68E79C6BFD064713C5974F7E79925BD7DEEF71F73F3E83 ] C:\Windows\System32\drivers\mwac.sys
08:53:50.0174 0x074c  C:\Windows\System32\drivers\mwac.sys - ok
08:53:50.0174 0x074c  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
08:53:50.0174 0x074c  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe - ok
08:53:50.0174 0x074c  [ A08C010D859F8EB42BDD7E1D55B8CA27, F86EAFBF7AA41D8425156C07398EDC3BD42F1690BD3E15D27AEF2EDA86549F15 ] C:\Windows\System32\mscoree.dll
08:53:50.0174 0x074c  C:\Windows\System32\mscoree.dll - ok
08:53:50.0189 0x074c  [ D44067027714CC58B8AB0AC38FDA1A0B, 56E96A58B5A53A68485F8D2F7BA286F2B174AB910BD45145258D48251F489F02 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
08:53:50.0189 0x074c  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
08:53:50.0189 0x074c  [ B24232BCA42AA784A5C951B74B7789D3, CE9706D8E92DAB71D3AC6177DF13C300B680A003418B56EF1C1052C3E9B6C0D0 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
08:53:50.0189 0x074c  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
08:53:50.0189 0x074c  [ AB44EE3B916F1626B9C4222F2B6F2DE4, 9203116FF307FA6B37D0FCC7460BBF441CEBAE510C78967359EDB43A9FE2448E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\bb750d3baf928f94ea3977e96af9769f\mscorlib.ni.dll
08:53:50.0189 0x074c  C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\bb750d3baf928f94ea3977e96af9769f\mscorlib.ni.dll - ok
08:53:50.0189 0x074c  [ DE9EC2C90DA5A74ACA19AF8CF564748E, B640D88884262526842779A3A891F225BA52F34E18E27B25152DB018C00F598E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\350ed175b92e48f5249a1bab538872e5\System.ni.dll
08:53:50.0189 0x074c  C:\Windows\assembly\NativeImages_v2.0.50727_64\System\350ed175b92e48f5249a1bab538872e5\System.ni.dll - ok
08:53:50.0189 0x074c  [ 3F2C5D443777650ACD8FE56AC1E34D25, 72634D336FFAC8A0E6D827F2DAE920FC33E75BD990301DD705039822D1E2495B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\7934f9795ad87e109e4df93b3a5cdf06\System.ServiceProcess.ni.dll
08:53:50.0189 0x074c  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\7934f9795ad87e109e4df93b3a5cdf06\System.ServiceProcess.ni.dll - ok
08:53:50.0189 0x074c  [ 1B1431D9520C7578AD5633ED2A70625F, 6852FAC1355CA69226B727A1355D6DA8C0865F5EEDA45D7690701CFED7C542A1 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
08:53:50.0189 0x074c  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
08:53:50.0205 0x074c  [ 593AD9042E84A7BADB7E84C6A97D6494, 9D7B6868DFEA9D67C3FCDE1E10B6194161B40D2CBAB72EAFAE431A7CFE3BCECF ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\860cfb90fd4dd4eccb26488e10e0f42e\WindowsBase.ni.dll
08:53:50.0205 0x074c  C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\860cfb90fd4dd4eccb26488e10e0f42e\WindowsBase.ni.dll - ok
08:53:50.0205 0x074c  [ D9B9FA5132E0868911737E44536536EB, A32F1827DD93CA74CA13EBD0EE2A244448454598EFB7099A975AA7C5436D812B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\496c66c1ec949738d092aab42ea40325\PresentationCore.ni.dll
08:53:50.0205 0x074c  C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\496c66c1ec949738d092aab42ea40325\PresentationCore.ni.dll - ok
08:53:50.0205 0x074c  [ AE098D9D3BD83440C59A0C3386F4F5DD, 13CFA7323349A2746D7FE662A7FCFC678F4E7AA9E12B45C62328022E3272384F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
08:53:50.0205 0x074c  C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
08:53:50.0205 0x074c  [ 6E656C325A5519A3A9D951709958CF6F, 1DC1D4BDF42F40A381D569297FEFB79B53CBD87088BA61A9EEA5AE4526B6182E ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
08:53:50.0205 0x074c  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
08:53:50.0205 0x074c  [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8, C0B22B8C402EEEAF68F5380BC265C15418934D2F702F0A43674EC93853E26040 ] C:\Windows\System32\shfolder.dll
08:53:50.0205 0x074c  C:\Windows\System32\shfolder.dll - ok
08:53:50.0205 0x074c  [ C91EB6CEC1A7FE02BB54760ABF79FBA6, 1E3E1ADB59D4F8ED12B9611D21717D38D9135892E506609193A1A32E7113124C ] C:\Windows\System32\drivers\tmnciesc.sys
08:53:50.0205 0x074c  C:\Windows\System32\drivers\tmnciesc.sys - ok
08:53:50.0220 0x074c  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] C:\Windows\System32\IPSECSVC.DLL
08:53:50.0220 0x074c  C:\Windows\System32\IPSECSVC.DLL - ok
08:53:50.0220 0x074c  [ E64D9EC8018C55873B40FDEE9DBEF5B3, 2DB11E7C631A9887CB75AFEAD2C79EC65F82C51F5F073CEFC8CDDF664EFF29C1 ] C:\Windows\System32\PortableDeviceApi.dll
08:53:50.0220 0x074c  C:\Windows\System32\PortableDeviceApi.dll - ok
08:53:50.0220 0x074c  [ 4449D23E8F197862F1B16F1E6C89C36C, 93AF52BF8E870C0381F027D3BB8F6829E449242074472F1593EB8172D7EB6559 ] C:\Windows\System32\diagperf.dll
08:53:50.0220 0x074c  C:\Windows\System32\diagperf.dll - ok
08:53:50.0220 0x074c  [ F7073C962C4FB7C415565DDE109DE49F, 781E7088DCEFBC34A808C3E7DA41A56112B3F23ABE9F54B5EF4D5CD9CD016B1D ] C:\Windows\System32\npmproxy.dll
08:53:50.0220 0x074c  C:\Windows\System32\npmproxy.dll - ok
08:53:50.0220 0x074c  [ 305DDC1CF12650EF3C478035C3FB2D79, 9DB9CF2AAF1A01689020B42B7BBD0317042E2D8F3B3733C9434164676271ECC3 ] C:\Program Files\Trend Micro\AMSP\module\20011\3.0.1249\Helper\helperEagleEyeDriver.dll
08:53:50.0220 0x074c  C:\Program Files\Trend Micro\AMSP\module\20011\3.0.1249\Helper\helperEagleEyeDriver.dll - ok
08:53:50.0220 0x074c  [ AFA79C343F9D1555F7E5D5FA70BB2A14, 440EF3ADC1F5C7A5ED3E872C8D8DFA61B039454C3CA67F8A51CA8BDCFDC4BA4A ] C:\Windows\System32\PortableDeviceConnectApi.dll
08:53:50.0220 0x074c  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
08:53:50.0236 0x074c  [ FAF7EF993CFF1485A272C784BF324B1D, A263FF2263DD141273088A5D007EB03D1CD5539C24681DD08E1CE2B5D027F6CE ] C:\Program Files\Trend Micro\AMSP\module\20011\3.0.1249\1.5.1137\tmeedbg.dll
08:53:50.0236 0x074c  C:\Program Files\Trend Micro\AMSP\module\20011\3.0.1249\1.5.1137\tmeedbg.dll - ok
08:53:50.0236 0x074c  [ BF4AC709BE5BF64F331F5D67773A0C82, 96E5A2A12D386B8A7976FEC76FD350E6A3EEBDF5763F4BBF4AB18880E9F269E0 ] C:\Windows\System32\perftrack.dll
08:53:50.0236 0x074c  C:\Windows\System32\perftrack.dll - ok
08:53:50.0236 0x074c  [ E1B22739C933BE33F53DB58C5393ADD3, 26EE0DD091D2E00DECC774DC1EEDFFDE69AF74B0C769CCBE091AFC32C66E4207 ] C:\Windows\System32\Apphlpdm.dll
08:53:50.0236 0x074c  C:\Windows\System32\Apphlpdm.dll - ok
08:53:50.0236 0x074c  [ 9719E3D834F5C8C43F56A93DFA497023, 4D78D4BD4835C0A237821967156C19DF4B90384A6BCB1F48CEAF35D003A0099A ] C:\Windows\System32\pnpts.dll
08:53:50.0236 0x074c  C:\Windows\System32\pnpts.dll - ok
08:53:50.0236 0x074c  [ 9C33405AAC346B329FE8F7F50DF90A90, D001C810C040CDD7E3689F67E38806A171ADCD521F4077F80E5315F9E87BC92A ] C:\Program Files\Trend Micro\AMSP\module\20011\3.0.1249\Helper\tmeesent.dll
08:53:50.0236 0x074c  C:\Program Files\Trend Micro\AMSP\module\20011\3.0.1249\Helper\tmeesent.dll - ok
08:53:50.0236 0x074c  [ E59F533C26C8375CD120B4791482217E, FFF66E33DB80C549BD77FAC31FA54C0C5FBD505E2BCE7DDB10B873EA4471D55F ] C:\Program Files (x86)\Malwarebytes Anti-Malware\imageformats\qgif4.dll
08:53:50.0236 0x074c  C:\Program Files (x86)\Malwarebytes Anti-Malware\imageformats\qgif4.dll - ok
08:53:50.0252 0x074c  [ 9BC93C9ACFA34DB5A41B89357B31E4ED, C3B9DDCB31970F91F8CAF85D2431903DB1738872775EEFD6712B7646BDE1250C ] C:\Windows\System32\FwRemoteSvr.dll
08:53:50.0252 0x074c  C:\Windows\System32\FwRemoteSvr.dll - ok
08:53:50.0252 0x074c  [ 46863C4CC5B68EB09EA2D5EEF0F1193A, 9B5593E1F484AC8F96F89A5995FB1FE9C51CB2F0F545607F6850751191150CFE ] C:\Windows\System32\radardt.dll
08:53:50.0252 0x074c  C:\Windows\System32\radardt.dll - ok
08:53:50.0252 0x074c  [ 3A10F5BDF66013B13AAB032B549E934D, E3F141471295D351777AA025A1CAF4F17C4E1589FB3A5FB0BB377C6FEA3C3477 ] C:\Windows\System32\drivers\tmeevw.sys
08:53:50.0252 0x074c  C:\Windows\System32\drivers\tmeevw.sys - ok
08:53:50.0252 0x074c  [ 12C45E3CB6D65F73209549E2D02ECA7A, 9DFD9C58B90257C34D52B7156C1D2566BE32EE7BD4699DDE164A5F190EC4D44A ] C:\Windows\SysWOW64\propsys.dll
08:53:50.0252 0x074c  C:\Windows\SysWOW64\propsys.dll - ok
08:53:50.0252 0x074c  [ E811F8510B133E70CF6E509FB809824F, 82541F2B15748250462B67B6C77530D4F7C45A1482237EC49B28F9FA5A414108 ] C:\Windows\System32\wdiasqmmodule.dll
08:53:50.0252 0x074c  C:\Windows\System32\wdiasqmmodule.dll - ok
08:53:50.0252 0x074c  [ 58A0CDABEA255616827B1C22C9994466, 4FE1140AA8D3995579DE8CDF4ECAD1978804D05351EABB4079A63B303EF1B451 ] C:\Windows\System32\NapiNSP.dll
08:53:50.0252 0x074c  C:\Windows\System32\NapiNSP.dll - ok
08:53:50.0267 0x074c  [ 9A4E60C7425DFD88867CBB43DCFB0F25, 3F859B52EAF9EA06998F14589A2CF27DE20AF56AA936DBF14C8A779FAE9696C6 ] C:\Program Files\Trend Micro\AMSP\module\20017\1.5.1017\Helper\helperTMEBCDriver.dll
08:53:50.0267 0x074c  C:\Program Files\Trend Micro\AMSP\module\20017\1.5.1017\Helper\helperTMEBCDriver.dll - ok
08:53:50.0267 0x074c  [ 4068D01A407C5F3B9AD3DF523E6BCEF6, DB3999EC8886610A14C8961356D88363BD5E3F006DA372F02CAEAC2468132565 ] C:\Windows\System32\drivers\TMEBC64.sys
08:53:50.0267 0x074c  C:\Windows\System32\drivers\TMEBC64.sys - ok
08:53:50.0267 0x074c  [ B24450E38722F69F338533A36ECFFC29, B1516252A211F0D402F402D1E10821503533F674568F1A57BC6DA0DC507A3F5A ] C:\Windows\System32\RacEngn.dll
08:53:50.0267 0x074c  C:\Windows\System32\RacEngn.dll - ok
08:53:50.0267 0x074c  [ 613C8CE10A5FDE582BA5FA64C4D56AAA, 30507B6BA79E1A271B07BBA58B4FF463678BE0960266A1D5E88031E932D768B6 ] C:\Windows\System32\pnrpnsp.dll
08:53:50.0267 0x074c  C:\Windows\System32\pnrpnsp.dll - ok
08:53:50.0267 0x074c  [ 2E2072EB48238FCA8FBB7A9F5FABAC45, AC70B9FC24847EEC2E18008F2894DCDAC19A9C90D5D88729326E493CA524F5C3 ] C:\Windows\System32\winrnr.dll
08:53:50.0267 0x074c  C:\Windows\System32\winrnr.dll - ok
08:53:50.0267 0x074c  [ AA61A7047E854A9E914FDD17C2F35675, F07AC1271BDB6346540ADC685DE25EE16B9F5C6655C716573421413114B7E074 ] C:\Windows\System32\sqlceoledb30.dll
08:53:50.0267 0x074c  C:\Windows\System32\sqlceoledb30.dll - ok
08:53:50.0283 0x074c  [ 025E7DBDB98866ED3CB2D4DDA70B364D, 78962F23F066E362AF1A4B98FA7D5E30AF30C561307438503031D30C944B6A6E ] C:\Windows\System32\runonce.exe
08:53:50.0283 0x074c  C:\Windows\System32\runonce.exe - ok
08:53:50.0283 0x074c  [ 9C75CB8B98610F0CD85D99BB5876308B, 54F0449E8E44F5B47A6A087AFAC1A10CD19B6513D9846CB306EFFA576551AAE9 ] C:\Windows\System32\sqlcese30.dll
08:53:50.0283 0x074c  C:\Windows\System32\sqlcese30.dll - ok
08:53:50.0283 0x074c  [ E5744D18C88737C6356D0A8D6D49D512, 4FF86DDF0BDCE0E4D73114CD027621C8FD48591992C3424CF77B354BB252EB26 ] C:\Windows\System32\sqlceqp30.dll
08:53:50.0283 0x074c  C:\Windows\System32\sqlceqp30.dll - ok
08:53:50.0283 0x074c  [ 021287C2050FD5DB4A8B084E2C38139C, EA27C640FE0F1E8BAE70BEF98E663E68A35336BB6D52D56B2367297D22C50648 ] C:\Windows\System32\WinSATAPI.dll
08:53:50.0283 0x074c  C:\Windows\System32\WinSATAPI.dll - ok
08:53:50.0283 0x074c  [ A6B726DCA228F7878E38368A1BDC68BE, 30E8300B09B876E3D4B2A9215C9CC070EADF915E1268F425B6F8E0596A0D3539 ] C:\Windows\System32\cryptnet.dll
08:53:50.0283 0x074c  C:\Windows\System32\cryptnet.dll - ok
08:53:50.0283 0x074c  [ D44741F65A1D71F65814A12CF6E2400A, C6721F830675ADC7E7FDE2B5E822E56F6A063146F5066F1E25EBFE86F0A87136 ] C:\Windows\SysWOW64\runonce.exe
08:53:50.0283 0x074c  C:\Windows\SysWOW64\runonce.exe - ok
08:53:50.0283 0x074c  [ E629F1A051C82795DDFFD3E8D4855811, 6E4DFFEAB2795C98EA6DCAF10EA6D97413D0F8CA0C04869CB20B74FF4D6FE679 ] C:\Windows\System32\dimsjob.dll
08:53:50.0283 0x074c  C:\Windows\System32\dimsjob.dll - ok
08:53:50.0298 0x074c  [ 488C339AA441F90503A4A6F2025DCBFD, 20F36D2AA0EECB1D9F35A4179E12D244745FA3C68D4C0AE7B869F173FD48C425 ] C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
08:53:50.0298 0x074c  C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe - ok
08:53:50.0298 0x074c  [ 35CB97CBC3EDC463418ED4997AAB29B6, EE60EABE2D87CEDD68FB8985B6C5D70930015FB2B8DB9FDCB4044587BC6ECA4C ] C:\Windows\System32\pautoenr.dll
08:53:50.0298 0x074c  C:\Windows\System32\pautoenr.dll - ok
08:53:50.0298 0x074c  [ 4DA2F2DA54A92850F56C0DB712058188, 9FB9BD1D9874DD64A627FFBE7B54B753D5496425BB595A112D0E17601A5E86A0 ] C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe
08:53:50.0298 0x074c  C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe - ok
08:53:50.0298 0x074c  [ F9654050E87C9241D204EFC2F8C562E8, 01C2A0D41127E49B9AAD0903AB4874E011E80FD03EBD0358D0784FC31F98CDE6 ] C:\Program Files\Trend Micro\AMSP\sqlite3.dll
08:53:50.0298 0x074c  C:\Program Files\Trend Micro\AMSP\sqlite3.dll - ok
08:53:50.0298 0x074c  [ 94DFBB481BF51158B216E23C5C1C9D6E, 0199086A70B9B63E48A7A15C8AE5442E9C6BC0173BD80A104DE1BE6A6C25F202 ] C:\Windows\System32\certcli.dll
08:53:50.0298 0x074c  C:\Windows\System32\certcli.dll - ok
08:53:50.0298 0x074c  [ 551E587F3ECC088FDEAB1587BF07A2E6, C024184B7976DBDAF33811D95DE7A2A5E3FBD84802CE416885E15169AA302F3B ] C:\Program Files\Trend Micro\AMSP\module\1\3.0.1249\3.0.1249\coreFrameworkBuilder.dll
08:53:50.0298 0x074c  C:\Program Files\Trend Micro\AMSP\module\1\3.0.1249\3.0.1249\coreFrameworkBuilder.dll - ok
08:53:50.0314 0x074c  [ 8B0CC841031A94800CFD2BA041FB3E46, 39D4C588CFE7592B5C8F7D099E7BF6A8BA25ED1638A695EF118AD27A83889A7E ] C:\Program Files\Trend Micro\AMSP\module\20017\1.5.1017\1.5.1017\plugAdapterTMEBC.dll
08:53:50.0314 0x074c  C:\Program Files\Trend Micro\AMSP\module\20017\1.5.1017\1.5.1017\plugAdapterTMEBC.dll - ok
08:53:50.0314 0x074c  [ 1893BF117E7375996E8106BB25246F75, 2FABFA2993D323434697D468CCE56916402496D1EA9080047E163A1E51426FDB ] C:\Program Files\Trend Micro\AMSP\module\2\3.0.1251\3.0.1251\coreCommandManager.dll
08:53:50.0314 0x074c  C:\Program Files\Trend Micro\AMSP\module\2\3.0.1251\3.0.1251\coreCommandManager.dll - ok
08:53:50.0314 0x074c  [ E90CA73632A9F7E41362FBEA2EDE06AD, D67B1B7376F0524ABFA647D5F9FA413415F862D33DDB4F4AB1FDBC4A7C35F26F ] C:\Program Files\Trend Micro\AMSP\module\3\3.0.1249\3.0.1249\coreEventManager.dll
08:53:50.0314 0x074c  C:\Program Files\Trend Micro\AMSP\module\3\3.0.1249\3.0.1249\coreEventManager.dll - ok
08:53:50.0314 0x074c  [ F722FA26739EAFCBD8D5F3829B632CD7, 8C7356AFF03748C4D565F3B6CBD4E289910253A3CA6CAE3A118F2C7E419CF649 ] C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\cleanup.dll
08:53:50.0314 0x074c  C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\cleanup.dll - ok
08:53:50.0314 0x074c  [ 5151284AF095280698506730E004570A, 27DD49FC87CBAEF3B1BC3DED3D3571A484431909A58FA02E8D8C7427CC4EC533 ] C:\Program Files\Trend Micro\AMSP\module\4\3.0.1249\3.0.1249\coreTaskManager.dll
08:53:50.0314 0x074c  C:\Program Files\Trend Micro\AMSP\module\4\3.0.1249\3.0.1249\coreTaskManager.dll - ok
08:53:50.0314 0x074c  [ 76C927FB27B2E8612A23461B4DC07D5B, DDA753AAA8657A4469F399FB808FAF348CA0E8ED527568C7BFE014C1573ECC2A ] C:\Program Files\Trend Micro\AMSP\module\6\3.0.1249\3.0.1249\coreReportManager.dll
08:53:50.0314 0x074c  C:\Program Files\Trend Micro\AMSP\module\6\3.0.1249\3.0.1249\coreReportManager.dll - ok
08:53:50.0330 0x074c  [ 725A46B2EFD286AF143EAD2CD17B703F, 41ED0985ABA01140ADE2F8596AED1BE4EC84CD325C85AC5759C05539631DC390 ] C:\Program Files\Trend Micro\AMSP\module\10\3.0.1249\3.0.1249\coreActionManager.dll
08:53:50.0330 0x074c  C:\Program Files\Trend Micro\AMSP\module\10\3.0.1249\3.0.1249\coreActionManager.dll - ok
08:53:50.0330 0x074c  [ 263B26106606A010CF877472B535E4BB, 43ECE89E428D2BB34244894BEBA1B946B0767649D15B1C715223E4E471A9E504 ] C:\Windows\System32\CertEnroll.dll
08:53:50.0330 0x074c  C:\Windows\System32\CertEnroll.dll - ok
08:53:50.0330 0x074c  [ 4F671089C3691C030051FF367A95BADA, CE1E106E94D974B9E7EC388E9E73EBBFD7DF86C37422549878C5AEFC0AC795CA ] C:\Program Files\Trend Micro\AMSP\module\11\3.0.1296\3.0.1296\coreScanManager.dll
08:53:50.0330 0x074c  C:\Program Files\Trend Micro\AMSP\module\11\3.0.1296\3.0.1296\coreScanManager.dll - ok
08:53:50.0330 0x074c  [ 2977B7B75753F1B7214C7F8E2E0DA135, 3FC56D74345959E9336DDCB2884D05469F4B2ED38E9A586CA55761F3DAF81404 ] C:\Program Files\Trend Micro\AMSP\module\10017\2.2.1045\2.2.1045\plugEngineDLTI.dll
08:53:50.0330 0x074c  C:\Program Files\Trend Micro\AMSP\module\10017\2.2.1045\2.2.1045\plugEngineDLTI.dll - ok
08:53:50.0330 0x074c  [ 011450254233BA8DC9C97B676ACF36FD, F7DC06B5C2899214E177D95F1204A8EA715522FAE5E995DBB5E3BE092E03BDB8 ] C:\Program Files\Trend Micro\AMSP\module\5\3.0.1259\3.0.1259\coreConfigRepository.dll
08:53:50.0330 0x074c  C:\Program Files\Trend Micro\AMSP\module\5\3.0.1259\3.0.1259\coreConfigRepository.dll - ok
08:53:50.0330 0x074c  [ AE146466171D98CF17F5875E267EF743, E16AE46DB60A646BC9519AC41660A8A3F2BB9A8599A5C34ABC13953503D19C55 ] C:\Program Files\Trend Micro\AMSP\module\7\3.0.1287\3.0.1287\coreUpdateManager.dll
08:53:50.0330 0x074c  C:\Program Files\Trend Micro\AMSP\module\7\3.0.1287\3.0.1287\coreUpdateManager.dll - ok
08:53:50.0345 0x074c  [ 745DC4C17E3CA19EFBD021ECCA675AA9, 23515CC8DF8BFFB43828A335788FE1CF928CE0150F2C45A144848134C3CD3FCE ] C:\Program Files\Trend Micro\AMSP\module\10000\3.0.1294\9.750.1005\plugEngineVSAPI.dll
08:53:50.0345 0x074c  C:\Program Files\Trend Micro\AMSP\module\10000\3.0.1294\9.750.1005\plugEngineVSAPI.dll - ok
08:53:50.0345 0x074c  [ 4E5A0641BB58240D1CFA52958485D329, 7A23FCE6E600AC12BCEB2287030B90C832191E8AC46BA95EC13AE51D559CFCA6 ] C:\Program Files\Trend Micro\AMSP\module\10001\3.0.1249\6.2.1051\plugEngineSSAPI.dll
08:53:50.0345 0x074c  C:\Program Files\Trend Micro\AMSP\module\10001\3.0.1249\6.2.1051\plugEngineSSAPI.dll - ok
08:53:50.0345 0x074c  [ B925BC19C88014D13977E4F190B642FC, 36843B8E1DACD62CD60A2DA7272241F5B3985B072288CF160B7AC0E4724E4AEE ] C:\Program Files\Trend Micro\AMSP\module\10002\3.0.1249\7.1.1044\plugEngineDCE.dll
08:53:50.0345 0x074c  C:\Program Files\Trend Micro\AMSP\module\10002\3.0.1249\7.1.1044\plugEngineDCE.dll - ok
08:53:50.0345 0x074c  [ 432BE6CF7311062633459EEF6B242FB5, 890C1734ED1EF6B2422A9B21D6205CF91E014ADD8A7F41AA5A294FCF60631A7B ] C:\Windows\SysWOW64\regsvr32.exe
08:53:50.0345 0x074c  C:\Windows\SysWOW64\regsvr32.exe - ok
08:53:50.0345 0x074c  [ 7F4FE30623F4FCBC51FBCC852903EDA2, 8EA7386BD8C223B51589482A4B6F6EEA91342326EDD1CD7B4CDCDEEA0D351FA0 ] C:\Program Files\Trend Micro\AMSP\module\10004\3.0.1251\6.5.1066\plugEngineAEGIS.dll
08:53:50.0345 0x074c  C:\Program Files\Trend Micro\AMSP\module\10004\3.0.1251\6.5.1066\plugEngineAEGIS.dll - ok
08:53:50.0345 0x074c  [ B74BE12680411FEAB7B20102E4A9A59A, 1B2D880A51DB6F3A0B6C296D5EB48C1D95065822A7C888D9BF0309D28193AE6E ] C:\Program Files\Trend Micro\AMSP\module\10005\3.0.1249\3.6.1016\plugEngineTMUFE.dll
08:53:50.0345 0x074c  C:\Program Files\Trend Micro\AMSP\module\10005\3.0.1249\3.6.1016\plugEngineTMUFE.dll - ok
08:53:50.0361 0x074c  [ FE22BC22D1E28F63C1B30663E6412BCC, 649BDC0878CBAF456BE84EA71B2F546FB5A5CCC2DE24C8F2D5542331254A3FB2 ] C:\Program Files\Trend Micro\AMSP\module\10007\3.0.1249\2.51.1007\plugEngineTMFBE.dll
08:53:50.0361 0x074c  C:\Program Files\Trend Micro\AMSP\module\10007\3.0.1249\2.51.1007\plugEngineTMFBE.dll - ok
08:53:50.0361 0x074c  [ FD35BC7319050D3586A6F22E6366B86B, 30CFBADA20A32FFD5D2874EC8FB33B19793434421908EE548CDFEB787FE7322C ] C:\Program Files\Trend Micro\AMSP\module\10008\3.0.1249\2.3.1165\plugEngineICRC.dll
08:53:50.0361 0x074c  C:\Program Files\Trend Micro\AMSP\module\10008\3.0.1249\2.3.1165\plugEngineICRC.dll - ok
08:53:50.0361 0x074c  [ 552830394CB4FDAD969F71EBCB82C78C, 38B5AA307097ED20E35155AE661EED51BEA11FA1E83E28C2C16BC7B5E76E4D2C ] C:\Program Files\Trend Micro\AMSP\module\20001\3.0.1278\6.0.1068\plugAdapterSystem.dll
08:53:50.0361 0x074c  C:\Program Files\Trend Micro\AMSP\module\20001\3.0.1278\6.0.1068\plugAdapterSystem.dll - ok
08:53:50.0361 0x074c  [ 589DF683A6C81424A6CECE52ABF98A50, 8CE0D07B2FC1F1BF8C07434FAFCDC63FDD3B75007C3B2EED130DB69D2D16E90A ] C:\Windows\System32\tquery.dll
08:53:50.0361 0x074c  C:\Windows\System32\tquery.dll - ok
08:53:50.0361 0x074c  [ E79F984B283DFEB7B61C85AAB686AD94, D1B974A2AEEB71A8220ADF0734662DED912FDEE6D95B1DDBC1CA8F38CD90BA19 ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\plugAdapterProxy.dll
08:53:50.0361 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\plugAdapterProxy.dll - ok
08:53:50.0361 0x074c  [ 7599FEB4E8FCEE7B4458701E58C38557, 5B2546C5606E89E95FA75E1B99AFFE1C8AAB39CCD81BFD4F818202165A4A744F ] C:\Program Files\Trend Micro\AMSP\module\30000\3.0.1274\3.0.1274\plugRealtimeScanFlow.dll
08:53:50.0361 0x074c  C:\Program Files\Trend Micro\AMSP\module\30000\3.0.1274\3.0.1274\plugRealtimeScanFlow.dll - ok
08:53:50.0376 0x074c  [ C8F85B26A1C13EED6B21298D71FC4F73, C93BE10592E06DBD8ED050374B4ECF231C95E2436DD92C6EC9067801A7A427CC ] C:\Program Files\Trend Micro\AMSP\module\30001\3.0.1249\3.0.1249\plugManualScanFlow.dll
08:53:50.0376 0x074c  C:\Program Files\Trend Micro\AMSP\module\30001\3.0.1249\3.0.1249\plugManualScanFlow.dll - ok
08:53:50.0376 0x074c  [ 4A21E94B3FA7321400CA7611F1F3F720, F19A505B2EB1A6BE946381B7025DD7D4B69881112990B2EA1B1FD099A9199243 ] C:\Program Files\Trend Micro\AMSP\module\30004\3.0.1249\3.0.1249\plugRealTimeScanCache.dll
08:53:50.0376 0x074c  C:\Program Files\Trend Micro\AMSP\module\30004\3.0.1249\3.0.1249\plugRealTimeScanCache.dll - ok
08:53:50.0376 0x074c  [ DD502A2E7B85EA7A3814C1034E6C23D3, 551D6C28DA6116DC65111BFA21E23BA8AE77193BEAF3DF505C343E6DC3CD5304 ] C:\Windows\AppPatch\AcGenral.dll
08:53:50.0376 0x074c  C:\Windows\AppPatch\AcGenral.dll - ok
08:53:50.0376 0x074c  [ 219CB6C409F12B394A164ED188B54937, CE2B5E3F70DC3CD2C18E4EEA9C4BEFCDAEB9A30E3C39790C01AF4D73709F9EE0 ] C:\Program Files\Trend Micro\AMSP\module\40000\3.0.1275\6.0.1068\plugUtilRCM.dll
08:53:50.0376 0x074c  C:\Program Files\Trend Micro\AMSP\module\40000\3.0.1275\6.0.1068\plugUtilRCM.dll - ok
08:53:50.0376 0x074c  [ EF166366029E79643EA82A5DB61A5B0B, E7CB0DD3AD4507B15034DF9C97509A44B3B9AC3710A5C0233BE7AF2BEE3911B7 ] C:\Program Files\Trend Micro\AMSP\module\40001\2.61.1050\2.61.1050\plugUtilEnum.dll
08:53:50.0376 0x074c  C:\Program Files\Trend Micro\AMSP\module\40001\2.61.1050\2.61.1050\plugUtilEnum.dll - ok
08:53:50.0376 0x074c  [ 7568CC720ACE4D03B84AF97817E745EF, 7155144CB0B260B969C398A36BC277C97BEADB5DB137D19A4F7E5AF61C3E24D4 ] C:\Windows\System32\mssrch.dll
08:53:50.0376 0x074c  C:\Windows\System32\mssrch.dll - ok
08:53:50.0376 0x074c  [ 5EA9EC37F70EE1C3BC88A3FB38FFCEDF, 847AA489CE06E22110309C216F7678D790FDD9378A4F85C5E79641760D5EF58D ] C:\Program Files\Trend Micro\AMSP\module\1000001\3.0.1249\3.0.1249\paCoreProductAdaptor.dll
08:53:50.0376 0x074c  C:\Program Files\Trend Micro\AMSP\module\1000001\3.0.1249\3.0.1249\paCoreProductAdaptor.dll - ok
08:53:50.0392 0x074c  [ 1A6ADA23F804FC192747F590CE9E91C9, 3CBE9ED2366B54CB991188A548B2E13CED4C811205756B40DB577DF8BEC0C0FD ] C:\Program Files\Trend Micro\AMSP\module\1000001\3.0.1249\3.0.1249\utilJsonHandle.dll
08:53:50.0392 0x074c  C:\Program Files\Trend Micro\AMSP\module\1000001\3.0.1249\3.0.1249\utilJsonHandle.dll - ok
08:53:50.0392 0x074c  [ 68ECCA523ED760AAFC03C5D587569859, CDD734279C8F9F24EA2538BAD8E91EB8C3DD74C33032DB6B2D85C19576B42707 ] C:\Windows\SysWOW64\samcli.dll
08:53:50.0392 0x074c  C:\Windows\SysWOW64\samcli.dll - ok
08:53:50.0392 0x074c  [ FD0A5D509C2B16BF536F1DEACD838C63, 31ED1125D11E3201147DB49DBF5FCD6DE4184EC6C62F2812BB9D59F420FE826B ] C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\plugAdapterBP.dll
08:53:50.0392 0x074c  C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\plugAdapterBP.dll - ok
08:53:50.0392 0x074c  [ 08046B921B0C9ACCA2745C16510AB751, B161B683B6B6D3ED930CC013AED5506B315DD84752D0C14BB1965C9EC3F0F2AA ] C:\Program Files\Trend Micro\AMSP\module\10009\3.9.1030\3.9.1030\plugEngineLCE.dll
08:53:50.0392 0x074c  C:\Program Files\Trend Micro\AMSP\module\10009\3.9.1030\3.9.1030\plugEngineLCE.dll - ok
08:53:50.0392 0x074c  [ B5A6B54E647398B19504FD18C6D2D794, 84C377B0A8695C6F4E8B98ED1FF7318C598CD4433347472591D87751444B7636 ] C:\Program Files\Trend Micro\AMSP\module\10010\3.9.1030\3.9.1030\plugEngineLES.dll
08:53:50.0392 0x074c  C:\Program Files\Trend Micro\AMSP\module\10010\3.9.1030\3.9.1030\plugEngineLES.dll - ok
08:53:50.0408 0x074c  [ 85683DF1F917E4D7F6BE1A04986BF1C8, D68D9F525D31C1843B6EC8FA950166FA1F34DB71222716E7B22DD33981C152B6 ] C:\Windows\SysWOW64\msacm32.dll
08:53:50.0408 0x074c  C:\Windows\SysWOW64\msacm32.dll - ok
08:53:50.0408 0x074c  [ 72E6B783A5370476E30DC89AD7438352, 299740C710956465A7C7B4ED10804AB2E5DF1214E84E11D18603BC5E6F86806E ] C:\Program Files\Trend Micro\AMSP\module\40002\3.0.1265\3.0.1265\plugUtilSysInfo.dll
08:53:50.0408 0x074c  C:\Program Files\Trend Micro\AMSP\module\40002\3.0.1265\3.0.1265\plugUtilSysInfo.dll - ok
08:53:50.0408 0x074c  [ C6753CA30A0A860A5B30D41B5B5FE026, EE4C02DFBCAE991DDC98EA2EAFED77D91C13A9C6301D33B4ACF89D5EAEC04E14 ] C:\Program Files\Trend Micro\AMSP\module\30005\3.2.1022\3.2.1022\plugLocalCorrelationFlow.dll
08:53:50.0408 0x074c  C:\Program Files\Trend Micro\AMSP\module\30005\3.2.1022\3.2.1022\plugLocalCorrelationFlow.dll - ok
08:53:50.0408 0x074c  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\SysWOW64\sfc.dll
08:53:50.0408 0x074c  C:\Windows\SysWOW64\sfc.dll - ok
08:53:50.0408 0x074c  [ 27BFAE5D33BCAF07CC9ABCFED2E0F1EA, A3FA9CFC3CC8DAA2A61AAC1459C50A061B82AD5AEFFB9C658301332D5F122607 ] C:\Program Files\Trend Micro\AMSP\module\10011\3.0.1162\3.0.1162\plugEngineTMSA.dll
08:53:50.0408 0x074c  C:\Program Files\Trend Micro\AMSP\module\10011\3.0.1162\3.0.1162\plugEngineTMSA.dll - ok
08:53:50.0423 0x074c  [ DE06FACD66931838269BC756F608E1B2, 7B21ACB38442AD7153002DA1743C4A9EC0261FFED5C50B253A0470E80FEB649D ] C:\Program Files\Trend Micro\AMSP\module\30006\3.0.1249\3.0.1249\plugCommonScanCache.dll
08:53:50.0423 0x074c  C:\Program Files\Trend Micro\AMSP\module\30006\3.0.1249\3.0.1249\plugCommonScanCache.dll - ok
08:53:50.0423 0x074c  [ 9CDC6053DB901C2878C85096118656DC, A15993876982515F9A236B38EE55E49F2951EF4789F05C86BF5A93906C25EC7C ] C:\Program Files\Trend Micro\AMSP\module\40003\3.0.1249\3.0.1249\plugUtilException.dll
08:53:50.0423 0x074c  C:\Program Files\Trend Micro\AMSP\module\40003\3.0.1249\3.0.1249\plugUtilException.dll - ok
08:53:50.0423 0x074c  [ EF570796E6D1727389EB0D39B882239B, 05E97CEE41EBC316AC749E28E01A9539902F72CF219CF03B0D2A944CE16DC846 ] C:\Program Files\Trend Micro\AMSP\module\10012\1.7.1008\1.7.1008\plugEngineDre.dll
08:53:50.0423 0x074c  C:\Program Files\Trend Micro\AMSP\module\10012\1.7.1008\1.7.1008\plugEngineDre.dll - ok
08:53:50.0423 0x074c  [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\SysWOW64\sfc_os.dll
08:53:50.0423 0x074c  C:\Windows\SysWOW64\sfc_os.dll - ok
08:53:50.0423 0x074c  [ C3636A65666B02A12096E82BDB93E904, 38BF7248C3CA826EF11AFADDFD6DC0AD6BD2BD8C1FB6C0FAC726467385E3D582 ] C:\Program Files\Trend Micro\AMSP\module\20009\3.0.1249\2.0.1065\plugAdapterNCIE.dll
08:53:50.0423 0x074c  C:\Program Files\Trend Micro\AMSP\module\20009\3.0.1249\2.0.1065\plugAdapterNCIE.dll - ok
08:53:50.0423 0x074c  [ 32D56C7E19C6459509A2DD11027AE657, DC94A31C3012DE00B4509ED8079D615C4A58AB6493A426B6722B0571B8D5CE53 ] C:\Program Files\Trend Micro\AMSP\module\20011\3.0.1249\1.5.1137\plugAdapterEagleEye.dll
08:53:50.0423 0x074c  C:\Program Files\Trend Micro\AMSP\module\20011\3.0.1249\1.5.1137\plugAdapterEagleEye.dll - ok
08:53:50.0423 0x074c  [ B23A2E53BC968E271BB28F485BE3EA01, 4B2F38E0B01BB95721DBF357E291CCD037345783A5B5A8B44CF428C5EBE27363 ] C:\Program Files\Trend Micro\AMSP\module\10015\3.0.1249\6.5.1066\plugEngineWL.dll
08:53:50.0423 0x074c  C:\Program Files\Trend Micro\AMSP\module\10015\3.0.1249\6.5.1066\plugEngineWL.dll - ok
08:53:50.0439 0x074c  [ 8A50D5304E6AE48664CF5838EC32F647, C76943FABEE1B5E1B641AA610668CCD4227E2C4B191DD30B79D3AB31A9E8B5BE ] C:\Windows\System32\drivers\MBAMSwissArmy.sys
08:53:50.0439 0x074c  C:\Windows\System32\drivers\MBAMSwissArmy.sys - ok
08:53:50.0439 0x074c  [ 945BB364B09F3A8E998DBFF02A0A5A58, FB8DEAA2DE1B3843A47E5592AE4FB4FD4C19F83AD09CAD3774144BF550267C39 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll
08:53:50.0439 0x074c  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll - ok
08:53:50.0439 0x074c  [ 3121A79D13A61562BE9CC902CD46B542, 00A5833A48338A4A9A5530844924AF4F1FAB618DA46D7EBBC6E2165C32ED376C ] C:\Windows\System32\msidle.dll
08:53:50.0439 0x074c  C:\Windows\System32\msidle.dll - ok
08:53:50.0439 0x074c  [ 846D0E4DB261CFAF363902E41498E961, D7E5591B7604FD583AF7FDA19E30928B24A6145318A3944E7D207F0CCEEB30D0 ] C:\Windows\SysWOW64\EhStorShell.dll
08:53:50.0439 0x074c  C:\Windows\SysWOW64\EhStorShell.dll - ok
08:53:50.0439 0x074c  [ 1297250C5D6F748EA70ACAFFD9F0E76B, 7A31F990FC2FC1667D8EDF55C4BD7BAC07E7E71E9362CE5F58F35503D595AC4B ] C:\Program Files\Trend Micro\AMSP\module\10013\3.0.1249\1.0.1074\plugEnginePeDif.dll
08:53:50.0439 0x074c  C:\Program Files\Trend Micro\AMSP\module\10013\3.0.1249\1.0.1074\plugEnginePeDif.dll - ok
08:53:50.0439 0x074c  [ AC734441D50AE37D07A9EE87E1369E84, B12CEBBE74964A3415811000780BC5E07D3A2D30CE284DE4D8A60900E0FB217D ] C:\Program Files\Trend Micro\AMSP\module\10014\1.9.1012\1.9.1012\plugEngineTmCDE.dll
08:53:50.0439 0x074c  C:\Program Files\Trend Micro\AMSP\module\10014\1.9.1012\1.9.1012\plugEngineTmCDE.dll - ok
08:53:50.0454 0x074c  [ 9F522B2708CAB181C0F137ABBCD1DE2E, 498B73A45A4301C8045109621E0831DA806C4D3AEDED63DF81979D36D0284BA7 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\7z.dll
08:53:50.0454 0x074c  C:\Program Files (x86)\Malwarebytes Anti-Malware\7z.dll - ok
08:53:50.0454 0x074c  [ 083F75F421FACB621F823B4748F6ED41, A7230AD038F59695CEE25476D38C573E5C7C51A72772A1637E4C904E05BEDC57 ] C:\Program Files\Trend Micro\AMSP\module\40004\3.0.1249\3.0.1249\plugUtilLowConfDB.dll
08:53:50.0454 0x074c  C:\Program Files\Trend Micro\AMSP\module\40004\3.0.1249\3.0.1249\plugUtilLowConfDB.dll - ok
08:53:50.0454 0x074c  [ 59BCE9F07985F8A4204F4D6554CFF708, CA24AEF558647274D019DFB4D7FD1506D84EC278795C30BA53B81BB36130DC57 ] C:\Windows\System32\regsvr32.exe
08:53:50.0454 0x074c  C:\Windows\System32\regsvr32.exe - ok
08:53:50.0454 0x074c  [ 7C6407CA87616872D5988927E68AE6E8, 02CA01EFADFB6653E94B4AF141F07ABA2EA01CC2706E61D810EFB3265CA0ABB0 ] C:\Program Files\Trend Micro\AMSP\module\30007\3.0.1251\3.0.1251\plugCensus.dll
08:53:50.0454 0x074c  C:\Program Files\Trend Micro\AMSP\module\30007\3.0.1251\3.0.1251\plugCensus.dll - ok
08:53:50.0454 0x074c  [ 17E780F833D5866160D9DF95B8B1B1F4, 300D935C03F344FEB75EE484DA051C0EBDE87D5272BF9285B18CBC3E858BEB70 ] C:\Program Files\Trend Micro\AMSP\module\10016\3.0.1249\2.0.1001\plugEngineSMV.dll
08:53:50.0454 0x074c  C:\Program Files\Trend Micro\AMSP\module\10016\3.0.1249\2.0.1001\plugEngineSMV.dll - ok
08:53:50.0454 0x074c  [ B6A17555D2CB159A47E910670DE6F7AF, DA548471F6FF5CD4FEC8E592C5C94AF7041AE79ED6ACBF07E9E818E24EB383D1 ] C:\Windows\AppPatch\AppPatch64\AcGenral.dll
08:53:50.0454 0x074c  C:\Windows\AppPatch\AppPatch64\AcGenral.dll - ok
08:53:50.0470 0x074c  [ 03F3B770DFBED6131653CEDA8CA780F0, 77373919DCA647F09851E7E460AE78FBD89F21516B961F84AC4446304E51E09C ] C:\Windows\SysWOW64\ntshrui.dll
08:53:50.0470 0x074c  C:\Windows\SysWOW64\ntshrui.dll - ok
08:53:50.0470 0x074c  [ ACE1BB07E0377E37A2C514CD2EC119B1, A9AFA4774DFA875496764D6E541A6333A3ACD3C5D2BBEF753C2D80BA83B4AC15 ] C:\Windows\System32\mssprxy.dll
08:53:50.0470 0x074c  C:\Windows\System32\mssprxy.dll - ok
08:53:50.0470 0x074c  [ 1CBF15FDB0310345A68972EB5C5B948F, E1EDCE6216B24037B243AC68CEEBD510646B2EFD70BC118E68303F9ED85D1973 ] C:\Windows\SysWOW64\mssprxy.dll
08:53:50.0470 0x074c  C:\Windows\SysWOW64\mssprxy.dll - ok
08:53:50.0470 0x074c  [ 8B74CEC6980D4816B0037AE9A27E538F, 8721EDB4C51BF6020002FA5DDB1987C68590F9F433A2F18D9756B2DAC7542CB6 ] C:\Windows\SysWOW64\slc.dll
08:53:50.0470 0x074c  C:\Windows\SysWOW64\slc.dll - ok
08:53:50.0470 0x074c  [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\SysWOW64\imageres.dll
08:53:50.0470 0x074c  C:\Windows\SysWOW64\imageres.dll - ok
08:53:50.0470 0x074c  [ 28E6D2591EACB4BE4D1A5BB38360FDB1, 49FC20E4A0CF37A49374A744E21386DC4ED2BCB250C25970C056209CF13FA0AE ] C:\Program Files\Trend Micro\AMSP\module\10000\3.0.1294\9.750.1005\vsapi64.dll
08:53:50.0470 0x074c  C:\Program Files\Trend Micro\AMSP\module\10000\3.0.1294\9.750.1005\vsapi64.dll - ok
08:53:50.0486 0x074c  [ F4A305263508EE53733DD17CE152314E, E14A555E5CD34714234EC4FEC3AE5212AFB61EB7212DB7F3D26B683A4F72AF26 ] C:\Program Files\Trend Micro\AMSP\module\10002\3.0.1249\7.1.1044\tscdll64.dll
08:53:50.0486 0x074c  C:\Program Files\Trend Micro\AMSP\module\10002\3.0.1249\7.1.1044\tscdll64.dll - ok
08:53:50.0486 0x074c  [ C9FB9038B15036CA28CF0B4BE2BED9BD, 0F56384E798B3F725FFEFC6E31A980DA31F620DB847F601273EF19E8CE74A226 ] C:\Windows\System32\en-US\tquery.dll.mui
08:53:50.0486 0x074c  C:\Windows\System32\en-US\tquery.dll.mui - ok
08:53:50.0486 0x074c  [ 68651131645E66A68258D8A40BE2FA4D, 9A9E5DB7A602A80A751C2BD9EEB253619826F2115117BC4912DBB2E7492B6369 ] C:\Program Files\Trend Micro\AMSP\module\10004\3.0.1251\6.5.1066\TMPEM.dll
08:53:50.0486 0x074c  C:\Program Files\Trend Micro\AMSP\module\10004\3.0.1251\6.5.1066\TMPEM.dll - ok
08:53:50.0486 0x074c  [ 661D7F6F1ADD66EDCFA83AD1B26B967F, 54179DEBBDB079E531D2550F62683EA2C2093F3F9CAADD14E56DDCD06BCBF4FB ] C:\Program Files\Trend Micro\AMSP\module\10005\3.0.1249\3.6.1016\tmufeng.dll
08:53:50.0486 0x074c  C:\Program Files\Trend Micro\AMSP\module\10005\3.0.1249\3.6.1016\tmufeng.dll - ok
08:53:50.0486 0x074c  [ 98D7D2F55A73A2F7640323572F68FD09, 977A40D4FDCF1C87700596F89D49CDA0C08CA7AE765971DE4E292B28FE3CAAAC ] C:\Program Files\Trend Micro\AMSP\module\10007\3.0.1249\2.51.1007\tmfbeng.dll
08:53:50.0486 0x074c  C:\Program Files\Trend Micro\AMSP\module\10007\3.0.1249\2.51.1007\tmfbeng.dll - ok
08:53:50.0486 0x074c  [ AD56E6E9D3A95A74C91CD34F0892D298, 763B696BC438C7D3C33458930073632F1538085DF40CFD5F8D2E53BEEE288058 ] C:\Program Files\Trend Micro\AMSP\module\10008\3.0.1249\2.3.1165\ICRCHdler.dll
08:53:50.0486 0x074c  C:\Program Files\Trend Micro\AMSP\module\10008\3.0.1249\2.3.1165\ICRCHdler.dll - ok
08:53:50.0501 0x074c  [ 6B75F68288C277D3789BFAF9121AC941, A15B7F06151E1E375FC479E3F03C8863823EC1E7947F1C16E42D63B20CE9B226 ] C:\Program Files\Trend Micro\AMSP\module\10008\3.0.1249\2.3.1165\perfiCrcPerfMonMgr.dll
08:53:50.0501 0x074c  C:\Program Files\Trend Micro\AMSP\module\10008\3.0.1249\2.3.1165\perfiCrcPerfMonMgr.dll - ok
08:53:50.0501 0x074c  [ 9FE3ED67345F0FF829A4A53B90E09672, F70CD131DCF101B26CD55A57876DB3765B3E15C9D3A8B508FF041C91226EC504 ] C:\Windows\System32\loadperf.dll
08:53:50.0501 0x074c  C:\Windows\System32\loadperf.dll - ok
08:53:50.0501 0x074c  [ C520DD66C516D8FFFFAA648036EA0B0C, B9D5E4336B4CEF1A21B1BC8C8DACB7FCA871DC129B9B73DB34938494C90F7932 ] C:\Program Files\Trend Micro\AMSP\module\10008\3.0.1249\2.3.1165\libcurl.dll
08:53:50.0501 0x074c  C:\Program Files\Trend Micro\AMSP\module\10008\3.0.1249\2.3.1165\libcurl.dll - ok
08:53:50.0501 0x074c  [ 1AE51DE4EDBD6CF7E0902FDD63F681B6, E7D54620F4867F920790F9BEE9A5BED0A188B0EBD73AAC8C5C47F5B2EDDC88E4 ] C:\Program Files\Trend Micro\AMSP\module\10008\3.0.1249\2.3.1165\libeay32.dll
08:53:50.0501 0x074c  C:\Program Files\Trend Micro\AMSP\module\10008\3.0.1249\2.3.1165\libeay32.dll - ok
08:53:50.0501 0x074c  [ 406A40ED8C24AAE273A0C8EF1C1E24B1, 00FA8BC943A4C6E8CA008B17735CB54CDB2A9CDFD3E0ECA10D8DD10B8D4CAB62 ] C:\Program Files\Trend Micro\AMSP\module\10008\3.0.1249\2.3.1165\ssleay32.dll
08:53:50.0501 0x074c  C:\Program Files\Trend Micro\AMSP\module\10008\3.0.1249\2.3.1165\ssleay32.dll - ok
08:53:50.0501 0x074c  [ C701347794A2B7F81D0FDB314BEC6FC2, A9F64F35EEA5147538391401ADC42F4C5FD21EE38C38540810B8DBBB32A8048C ] C:\Program Files\Trend Micro\AMSP\module\10009\3.9.1030\3.9.1030\TMLCE64.dll
08:53:50.0501 0x074c  C:\Program Files\Trend Micro\AMSP\module\10009\3.9.1030\3.9.1030\TMLCE64.dll - ok
08:53:50.0517 0x074c  [ A914ED2C9368B0002068EED572D0DCAA, 77C591D3498C84268EC5B9D119CE08F6173D481B0A3CDC63654E4F9C1C8FAFD8 ] C:\Program Files\Trend Micro\AMSP\module\10011\3.0.1162\3.0.1162\tmsa64.dll
08:53:50.0517 0x074c  C:\Program Files\Trend Micro\AMSP\module\10011\3.0.1162\3.0.1162\tmsa64.dll - ok
08:53:50.0517 0x074c  [ 1FF0BB40DB271A51B7157F1DD63461BC, 4C75866E930B7F879795241A26B476092B89C49785E379631768819B53AD8BC4 ] C:\Program Files\Trend Micro\AMSP\module\10011\3.0.1162\3.0.1162\tmwk64.dll
08:53:50.0517 0x074c  C:\Program Files\Trend Micro\AMSP\module\10011\3.0.1162\3.0.1162\tmwk64.dll - ok
08:53:50.0517 0x074c  [ 38826162A5373278E0FB69BDC977D936, F6EB332CF75CB96448AE512C91DDDA9E495DAC53CA241078C49ACB5BD0D7D9D2 ] C:\Program Files\Trend Micro\AMSP\module\10013\3.0.1249\1.0.1074\PeDifEng64.dll
08:53:50.0517 0x074c  C:\Program Files\Trend Micro\AMSP\module\10013\3.0.1249\1.0.1074\PeDifEng64.dll - ok
08:53:50.0517 0x074c  [ 239AA2BB46889A8187A3900815AA445C, 78F50C06358709AE6E22F483FAD465963EBBA4D1ED8AC1BB9FAB7FE028A45B01 ] C:\Program Files\Trend Micro\AMSP\module\10015\3.0.1249\6.5.1066\tmwlchk.dll
08:53:50.0517 0x074c  C:\Program Files\Trend Micro\AMSP\module\10015\3.0.1249\6.5.1066\tmwlchk.dll - ok
08:53:50.0517 0x074c  [ 6A267ED04AA532A04F927E5232C5FFDD, 2FCBD2225571A4FB3946FE5ACDCB0823A601332DABD8DB4D31393D8A2EBC93E7 ] C:\Program Files\Trend Micro\AMSP\module\10015\3.0.1249\6.5.1066\tmtap.dll
08:53:50.0517 0x074c  C:\Program Files\Trend Micro\AMSP\module\10015\3.0.1249\6.5.1066\tmtap.dll - ok
08:53:50.0532 0x074c  [ D6D574650D68F91A7629465218EF2E48, 9DA88D83455D54F4A31F52F016C3A464EB27CCA0845D2A166A8363964AF7685F ] C:\Program Files\Trend Micro\AMSP\module\10016\3.0.1249\2.0.1001\smv64.dll
08:53:50.0532 0x074c  C:\Program Files\Trend Micro\AMSP\module\10016\3.0.1249\2.0.1001\smv64.dll - ok
08:53:50.0532 0x074c  [ 7F3F38CD980F456D1120B4D284F22025, 71035DA07C9BF265050F51E62A8DC2720B72AB47F00843ADFBB5CDD38F5215AE ] C:\Program Files\Trend Micro\AMSP\module\20001\3.0.1278\6.0.1068\TmSysEvt.dll
08:53:50.0532 0x074c  C:\Program Files\Trend Micro\AMSP\module\20001\3.0.1278\6.0.1068\TmSysEvt.dll - ok
08:53:50.0532 0x074c  [ AD7B9C14083B52BC532FBA5948342B98, 17F746D82695FA9B35493B41859D39D786D32B23A9D2E00F4011DEC7A02402AE ] C:\Windows\SysWOW64\cmd.exe
08:53:50.0532 0x074c  C:\Windows\SysWOW64\cmd.exe - ok
08:53:50.0532 0x074c  [ F3D202F53A222D5F6944D459B73CF967, E9F1D48EB333D32331BCFD0348FE07BEE7D5352292E6020571DA395F596AFFE7 ] C:\Windows\System32\fltLib.dll
08:53:50.0532 0x074c  C:\Windows\System32\fltLib.dll - ok
08:53:50.0532 0x074c  [ FB7F03A906FB3FD1FF284A9D4BD5079D, 4C1C6CF4D1DA598DAD85A07DE693E2B2BC52CDD3F311D3047C8D7B6BEA57A507 ] C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\scanServer64.dll
08:53:50.0532 0x074c  C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\scanServer64.dll - ok
08:53:50.0532 0x074c  [ CA1FC393D765CC4B8FEAD8A88337A9AF, 696785532F4D7FF99D3DE6B26D520DD62EA663AEC903BAF65C98C4B673C1A584 ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmpxCfg.dll
08:53:50.0532 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmpxCfg.dll - ok
08:53:50.0548 0x074c  [ FF6371347EDDBC2300A8DE37F9671E49, 04AAE9FB958DA9C678E00CFF0ABF9B6DB0974B78F1223E9475FF1CAD4F6F36A4 ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmNscDbg.dll
08:53:50.0548 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmNscDbg.dll - ok
08:53:50.0548 0x074c  [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\SysWOW64\winbrand.dll
08:53:50.0548 0x074c  C:\Windows\SysWOW64\winbrand.dll - ok
08:53:50.0548 0x074c  [ 2AFBB91BBD2378933B26E6D68C140D1B, 1A4BD3BA6FDBECD4C686C84919698B48B2597F48B794248F3DC03A81D5ED9374 ] C:\Windows\SysWOW64\ieframe.dll
08:53:50.0548 0x074c  C:\Windows\SysWOW64\ieframe.dll - ok
08:53:50.0548 0x074c  [ 60F4AEFA103D421EA4A40E31409B4756, 037A8605CA504A4FF43E9D4DE9017CEA1E26D3556C975872C747E24D8B0835EF ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
08:53:50.0548 0x074c  C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
08:53:50.0548 0x074c  [ 2C4A87CA8C00E98EFDCFA2E8EC9A3503, DA59CE662E98E56D89E2894D2AC8B9F324C16DA23C860640EDC2C82E0AD06097 ] C:\Windows\SysWOW64\shdocvw.dll
08:53:50.0548 0x074c  C:\Windows\SysWOW64\shdocvw.dll - ok
08:53:50.0548 0x074c  [ A85AB106C480911A54E9F0FD527A134A, F66F997C2BCB4A117DF1B93708E1FC4A43099895C7000CD8034CAD03ED76C0BE ] C:\Users\Pushba\AppData\Local\Temp\{5835F5E4-E523-46D3-8417-320335E6A3E5}.exe
08:53:50.0548 0x074c  C:\Users\Pushba\AppData\Local\Temp\{5835F5E4-E523-46D3-8417-320335E6A3E5}.exe - ok
08:53:50.0548 0x074c  [ AD7FB087A238883D1618F29F7BBBD584, D9541CA4D2AADFEEEC195863133B16C2EC94CA63F842F5646F7834F2D0E85FF3 ] C:\Windows\SysWOW64\ncrypt.dll
08:53:50.0548 0x074c  C:\Windows\SysWOW64\ncrypt.dll - ok
08:53:50.0564 0x074c  [ 1A50C100C93D9D29F566028960109979, A1D3EB3D4F98EBACC3E644DA36B269CAC32AD7BA44FDF675EC96FDDD18467578 ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmpxCtl.dll
08:53:50.0564 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmpxCtl.dll - ok
08:53:50.0564 0x074c  [ A0CDD6643AF58D5EC65FCA438D4BAB26, 1F9F2C6707313426B47D0ED1C4478BCC1E1643025CCF7B44B740D759D11C9750 ] C:\Program Files\Trend Micro\AMSP\module\20009\3.0.1249\2.0.1065\tmncieec.dll
08:53:50.0564 0x074c  C:\Program Files\Trend Micro\AMSP\module\20009\3.0.1249\2.0.1065\tmncieec.dll - ok
08:53:50.0564 0x074c  [ B3BBB64D94EA7E235647CC7F89E53E0C, E84DD72192FD8E7E43636670445556563DE415BB10976DBD157E58E136EB975D ] C:\Program Files\Trend Micro\AMSP\module\20011\3.0.1249\1.5.1137\tmeectv.dll
08:53:50.0564 0x074c  C:\Program Files\Trend Micro\AMSP\module\20011\3.0.1249\1.5.1137\tmeectv.dll - ok
08:53:50.0564 0x074c  [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\SysWOW64\gpapi.dll
08:53:50.0564 0x074c  C:\Windows\SysWOW64\gpapi.dll - ok
08:53:50.0564 0x074c  [ 7B851A8018B1EA00A69707A390004884, DAE654713EF1DC66C8C2D27752B659081794063A7D522D1F680AA9A6E7FBA9FD ] C:\Windows\SysWOW64\cryptnet.dll
08:53:50.0564 0x074c  C:\Windows\SysWOW64\cryptnet.dll - ok
08:53:50.0564 0x074c  [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\SysWOW64\SensApi.dll
08:53:50.0564 0x074c  C:\Windows\SysWOW64\SensApi.dll - ok
08:53:50.0579 0x074c  [ 2A86C18CE6869C77FCEB62F3B47D4D5B, 6E282C56A208E26C8921CC396F4AF9D1681D26E3B22126FAEF3640400864B29F ] C:\Windows\SysWOW64\credssp.dll
08:53:50.0579 0x074c  C:\Windows\SysWOW64\credssp.dll - ok
08:53:50.0579 0x074c  [ B613A4660AE8765A5E916EAF5DDB259C, A6FFB67D08DFCF7941078F4739A515D33E434B318059570661D2E35DF8A9FF39 ] C:\Program Files\Trend Micro\AMSP\module\10001\3.0.1249\6.2.1051\Ssapi64.dll
08:53:50.0579 0x074c  C:\Program Files\Trend Micro\AMSP\module\10001\3.0.1249\6.2.1051\Ssapi64.dll - ok
08:53:50.0579 0x074c  [ FD61D51199F3FC9EB0023FBF405EAAD0, 7791BCB93D758BA79E4BBA748C7936277162D2E2081D307A8A858F8B820968CF ] C:\Windows\System32\occache.dll
08:53:50.0579 0x074c  C:\Windows\System32\occache.dll - ok
08:53:50.0579 0x074c  [ 0D893F8D145D3B125B0226727C243A69, B344A18C5D5324A891B6E2121EC375AFB9E83D4C59D64EDD2E63854ABEC5D734 ] C:\Windows\System32\security.dll
08:53:50.0579 0x074c  C:\Windows\System32\security.dll - ok
08:53:50.0579 0x074c  [ 59D9B7AB8FB15E41EFFFFB7C85FB7E7E, 29218F77874D749BE9AB93A1E4BD0038CF46847A7018D41F481C5547AA47706B ] C:\Program Files\Trend Micro\AMSP\module\10010\3.9.1030\3.9.1030\TMLES64.dll
08:53:50.0579 0x074c  C:\Program Files\Trend Micro\AMSP\module\10010\3.9.1030\3.9.1030\TMLES64.dll - ok
08:53:50.0579 0x074c  [ D08E23F247506D12300E256E4A3EE3B4, B59FB406A7ACDC6EE9CA3679879074B2539E3797A25254609392EFE3E4E376E2 ] C:\Program Files\Trend Micro\AMSP\module\10012\1.7.1008\1.7.1008\DRE.dll
08:53:50.0579 0x074c  C:\Program Files\Trend Micro\AMSP\module\10012\1.7.1008\1.7.1008\DRE.dll - ok
08:53:50.0579 0x074c  [ 3E60DB0C9A60E7839F6B17F6707AB29D, 2BBEE731D210E7098C2BD390FABD3AC8A973EA27F9420E855ED2359B1B9FB5EA ] C:\Program Files\Trend Micro\AMSP\module\10012\1.7.1008\1.7.1008\DCEBootConfig.dll
08:53:50.0579 0x074c  C:\Program Files\Trend Micro\AMSP\module\10012\1.7.1008\1.7.1008\DCEBootConfig.dll - ok
08:53:50.0595 0x074c  [ B71E599FA4DEA9BE82D5B18ADAA2985D, DE9AE374A1F5A47621B61AE30FE7F30489EBB3B54C674E607C929E231C551FB8 ] C:\Program Files\Trend Micro\AMSP\module\10014\1.9.1012\1.9.1012\TmCDEngine.dll
08:53:50.0595 0x074c  C:\Program Files\Trend Micro\AMSP\module\10014\1.9.1012\1.9.1012\TmCDEngine.dll - ok
08:53:50.0595 0x074c  [ 64DAF13539026A73A07EBC1ADCF892E8, 461C708345CC2FA31141D94D78D357E901BF7590124CCAFD442BCA81BEC5C248 ] C:\Program Files\Trend Micro\AMSP\module\10017\2.2.1045\2.2.1045\DLTI.dll
08:53:50.0595 0x074c  C:\Program Files\Trend Micro\AMSP\module\10017\2.2.1045\2.2.1045\DLTI.dll - ok
08:53:50.0595 0x074c  [ CF71D17EA80099F7B9C1BDBAAB84DB3E, 438E6570E4C275AC29649CFAE42A8574B488A2A1760CC578A72844A079BB5AB3 ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\tmtdi.dll
08:53:50.0595 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\tmtdi.dll - ok
08:53:50.0595 0x074c  [ E36112A8A6C7F840169A7E92C12F4203, 52795B2E6ECCE751EEF5074AF52FDE376A382D0A1C43B90DD4F77A397C00FBC5 ] C:\Windows\System32\wsock32.dll
08:53:50.0595 0x074c  C:\Windows\System32\wsock32.dll - ok
08:53:50.0595 0x074c  [ 8A0F9734318A1BE410EC3BD0D8F684E5, 459FBB986CE95203E52DE45CC9B02083E4722BCF5810DB6858F1A84EF1A934DB ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmsmHttp.dll
08:53:50.0595 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmsmHttp.dll - ok
08:53:50.0595 0x074c  [ BE2E8D930B4D670E73E925D988D0F9AF, 82F8B152A350982D2A7A3D7E0D2C4C0ED88390792F01138E3448581A0F21CCF9 ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmpeHosF.dll
08:53:50.0595 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmpeHosF.dll - ok
08:53:50.0610 0x074c  [ A88FECD54D9EE74490738E4A38D18E2D, 50315576319E574AD6A1B11A271B933A8146A652640EB93195F773CD137825CF ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmpeUrlF.dll
08:53:50.0610 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmpeUrlF.dll - ok
08:53:50.0610 0x074c  [ 49E1C546714BE67A4051757E0FCC98C8, 9A2175844AC9582053ECCADD819E3653FAFB4CF649EEEFAE17C54072B11B1403 ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmpeEvts.dll
08:53:50.0610 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmpeEvts.dll - ok
08:53:50.0610 0x074c  [ 0AA976B36CE08560400FFD00BBF9A698, 69DBA08A0DEE6AD0AD7A531F1974FE1DC7E0B1FB8D139F2D115C903423184374 ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmpeSAL.dll
08:53:50.0610 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmpeSAL.dll - ok
08:53:50.0610 0x074c  [ 8E56C3B5D61243159AF80974F2063C8F, 97E318BD12B02C9986F41D6C5AF0641223912835B72E854C707A49BA4DF006D4 ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmphHttp.dll
08:53:50.0610 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmphHttp.dll - ok
08:53:50.0610 0x074c  [ EFE30EF9E70AAF39F94FB9B1302F8D1D, 2DCC1DD32B6C602EDBB3AEBA7EF0F770A01FF228DEF1F94F859FD6BDC822FA8C ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmsmMail.dll
08:53:50.0610 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmsmMail.dll - ok
08:53:50.0610 0x074c  [ 761DA1FDCA3FD25EF02E40216CAEAE68, 7607FA1BD1CC63FFCF8BA82D6BC819F80B2258FDB0409727C1A43575C292A68E ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmMsg.dll
08:53:50.0610 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmMsg.dll - ok
08:53:50.0626 0x074c  [ 8D14F2C6DD875411516097616B10C6F2, 83E4F0813665B17ED7C78064286D94FC3B064434A83FB4BD3491CDC9C33C6463 ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmpeVS.dll
08:53:50.0626 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmpeVS.dll - ok
08:53:50.0626 0x074c  [ A22F7BAB273AD73444D1CECD3A207885, 6207F044918DE4692CC86F57EB252B80CB2590B02BC1C3CB019799E3281BA51E ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmphPop3.dll
08:53:50.0626 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmphPop3.dll - ok
08:53:50.0626 0x074c  [ 43F79CE9E14C5A9B4023949B12B3E32A, C62DB7E9969D2A6F4D397114B78B7B672971E192D47C1E7673527B4EC760E6DD ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmphSMTP.dll
08:53:50.0626 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmphSMTP.dll - ok
08:53:50.0626 0x074c  [ BC0E9657ECBEDA00FACE219E11C121EE, 799E0E78041456E40B4286DE22E530A1EFF327B9DC651C3C3FD07FB38BC5C062 ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmopHookMgr.dll
08:53:50.0626 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmopHookMgr.dll - ok
08:53:50.0626 0x074c  [ EB048570EC60704E6D29A828ECC42265, B0D2512EB200061B377DB86C43F76DA69CF2EA194D21B59ACAAA140765B881CF ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmPlgAdp.dll
08:53:50.0626 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmPlgAdp.dll - ok
08:53:50.0626 0x074c  [ EC318097D47BD5B64B117AF3610B8151, EA54E5753584B0A72634AECB27709DBD02A18D5661CA7998AF6E7DA73570CE1F ] C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmopHookMgrHelper32.exe
08:53:50.0626 0x074c  C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmopHookMgrHelper32.exe - ok
08:53:50.0642 0x074c  [ FB10715E4099AF9FA389C71873245226, 6A4CB43880B822A0C4714D6E52EB3EB2CE1E69C3AA9CA65EAAD6B131AE43F274 ] C:\Windows\System32\timedate.cpl
08:53:50.0642 0x074c  C:\Windows\System32\timedate.cpl - ok
08:53:50.0642 0x074c  [ 23B001185B7C3CB1F4BDEB143E6B45B7, AB3A5AB346F6353B43B06FBE20B7785DA988975E2C8B73A6588F107FFAAACC47 ] C:\Windows\System32\shdocvw.dll
08:53:50.0642 0x074c  C:\Windows\System32\shdocvw.dll - ok
08:53:50.0642 0x074c  [ D9E21CBF9E6A87847AFFD39EA3FA28EE, B2AE0BBF907D4108DE3485E6059DF8D10C39707CD508A55A2D9627A66D01AE78 ] C:\Windows\System32\SearchProtocolHost.exe
08:53:50.0642 0x074c  C:\Windows\System32\SearchProtocolHost.exe - ok
08:53:50.0642 0x074c  [ A0A65D306A5490D2EB8E7DE66898ECFD, CE5DA408F4EDD5E81CE0925867F03C9A35172CF1571FE4C4C052E45AB69822BB ] C:\Windows\System32\linkinfo.dll
08:53:50.0642 0x074c  C:\Windows\System32\linkinfo.dll - ok
08:53:50.0642 0x074c  [ D2A5B2B09F2AF5ED13BF494508B09788, 3FA04E84EC5A575E7804E44BA3BF1C4143E53C4ACF6C823CD029711529B0BE2C ] C:\Windows\System32\msshooks.dll
08:53:50.0642 0x074c  C:\Windows\System32\msshooks.dll - ok
08:53:50.0642 0x074c  [ 49A3AD5CE578CD77F445F3D244AEAB2D, 1D200547C6277C4A878A9ADD94045F7ACCC583609985C592AAE9B9B9CA7B812A ] C:\Windows\System32\SearchFilterHost.exe
08:53:50.0642 0x074c  C:\Windows\System32\SearchFilterHost.exe - ok
08:53:50.0657 0x074c  [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{90C6AFBF-E9F6-485C-86F1-D255D9585B54}.tmp
08:53:50.0657 0x074c  C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{90C6AFBF-E9F6-485C-86F1-D255D9585B54}.tmp - ok
08:53:50.0657 0x074c  [ A14BB2F5F6457738AAA11367F5172A05, 45E47BA26B9998EE145BA0D9C50592BC4C7C25861D04ABB57B6D222FCD89FA99 ] C:\Windows\System32\ieframe.dll
08:53:50.0657 0x074c  C:\Windows\System32\ieframe.dll - ok
08:53:50.0657 0x074c  [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{FE73DED8-A1E2-448A-88E4-EA87010C887B}.tmp
08:53:50.0657 0x074c  C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{FE73DED8-A1E2-448A-88E4-EA87010C887B}.tmp - ok
08:53:50.0657 0x074c  [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{55308B5D-F7A4-4A2B-9F05-E6B1CD2ADBCC}.tmp
08:53:50.0657 0x074c  C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{55308B5D-F7A4-4A2B-9F05-E6B1CD2ADBCC}.tmp - ok
08:53:50.0657 0x074c  [ 98B6F9204610EC0B7D2ADFF3E6F058A8, 3D39A14BA5A37042D692189C8F0A593900A58BA162CECD683BCF8E5F93BE53E6 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
08:53:50.0657 0x074c  C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
08:53:50.0657 0x074c  [ 9108540E866F75C7AF2B91DD921A8091, 7208C8E05E818781D7F2703B86848FC90651E0D8BE10362863250F2283CEC511 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
08:53:50.0657 0x074c  C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
08:53:50.0673 0x074c  [ FB4045578F5180BDB1963AB352B78548, 8E645A63436EE6CDDB78E6064AEB04ECE39208F760A3EF13A3F49FDF41505E21 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
08:53:50.0673 0x074c  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
08:53:50.0673 0x074c  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86, E15ED4FEFC3010C213694331DDFDC03767682325C898D773AB243E2DC8B08461 ] C:\Windows\System32\msftedit.dll
08:53:50.0673 0x074c  C:\Windows\System32\msftedit.dll - ok
08:53:50.0673 0x074c  [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{4C20D57F-1583-4011-B2F5-6E41BD72CA25}.tmp
08:53:50.0673 0x074c  C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{4C20D57F-1583-4011-B2F5-6E41BD72CA25}.tmp - ok
08:53:50.0673 0x074c  [ 2BCBA6052374959A30BD7948444DBB79, 46224A2B729026FEEBC3C6A09E69919D477097848DB2CA0C2F5B166CDF379660 ] C:\Windows\System32\gameux.dll
08:53:50.0673 0x074c  C:\Windows\System32\gameux.dll - ok
08:53:50.0673 0x074c  [ 8494E126F0B10180F3293AF861CE1F7A, 538B1F30423DB2398E611BC46C80150C090698E633BABF7362F7060DBF0C3064 ] C:\Windows\System32\mlang.dll
08:53:50.0673 0x074c  C:\Windows\System32\mlang.dll - ok
08:53:50.0673 0x074c  [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{145B7F04-FD11-4438-ACA5-96BB3AF41BCE}.tmp
08:53:50.0673 0x074c  C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{145B7F04-FD11-4438-ACA5-96BB3AF41BCE}.tmp - ok
08:53:50.0688 0x074c  [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{18EF41B9-4D24-43E6-A8C9-73617BF0FE97}.tmp
08:53:50.0688 0x074c  C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{18EF41B9-4D24-43E6-A8C9-73617BF0FE97}.tmp - ok
08:53:50.0688 0x074c  [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{7C20E351-0228-4DA1-9445-517F14846652}.tmp
08:53:50.0688 0x074c  C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{7C20E351-0228-4DA1-9445-517F14846652}.tmp - ok
08:53:50.0688 0x074c  [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{0775C695-AB95-4F1A-BACC-FB38266FD5E8}.tmp
08:53:50.0688 0x074c  C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{0775C695-AB95-4F1A-BACC-FB38266FD5E8}.tmp - ok
08:53:50.0688 0x074c  [ 2EBD0C5B090125AECF017C57344C45AB, 4FF8F2460115C60AD164EE0DC2079E1601B8AA21A1BA8033B7B731FAF85411B6 ] C:\Windows\System32\msls31.dll
08:53:50.0688 0x074c  C:\Windows\System32\msls31.dll - ok
08:53:50.0688 0x074c  [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{76656AD1-EC67-4CEF-8624-678E13686C23}.tmp
08:53:50.0688 0x074c  C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{76656AD1-EC67-4CEF-8624-678E13686C23}.tmp - ok
08:53:50.0688 0x074c  [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{06C8D873-3740-49C6-9C15-F23CB6E57342}.tmp
08:53:50.0688 0x074c  C:\Users\Pushba\AppData\Local\Temp\{E134E79F-911B-403E-85E9-871DF6AD4575}\{06C8D873-3740-49C6-9C15-F23CB6E57342}.tmp - ok
08:53:50.0704 0x074c  [ 7DBA84667DC18877AEF693E3543DFAD7, 499306CE72EB8B873C547C600FD1093B7A79122D656407E69879041690AE588F ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
08:53:50.0704 0x074c  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
08:53:50.0704 0x074c  [ E4561704CBFA193761743E5AF746C669, DCABD67A2B988BEF70BDD0613B4271BCFD572FAF8018CFA2EA60B8AEFE08C73B ] C:\Windows\SysWOW64\msxml3.dll
08:53:50.0704 0x074c  C:\Windows\SysWOW64\msxml3.dll - ok
08:53:50.0704 0x074c  [ 4C2C4640BF23AAFCF90519E0F34436CE, 8ACCDA77C2DC5BE2DAED05134310122AFECC872A8D118612E55DD229BFE4D844 ] C:\Windows\System32\DeviceCenter.dll
08:53:50.0704 0x074c  C:\Windows\System32\DeviceCenter.dll - ok
08:53:50.0704 0x074c  [ E1DCEE9E3EC0522DF24397BE1A64E449, 840D91B6386BD9537D130AE1B6129186D0D97EABCC0CC254422496D28665017D ] C:\Windows\System32\dfshim.dll
08:53:50.0704 0x074c  C:\Windows\System32\dfshim.dll - ok
08:53:50.0704 0x074c  [ 99B56D7D1646FF0A45D03A2695F1C239, 95381B8CDEE56926DE3E7A22C75725287163BCB41944BA4F98357996D1C5DE9E ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfdll.dll
08:53:50.0704 0x074c  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfdll.dll - ok
08:53:50.0704 0x074c  [ 15B7225BBA691E4CF8A3D06238D46AE6, D9D10F3B6FF960373ECA79EA06383E9CAAEED5986C706967BF0A7B0714DE4FF2 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
08:53:50.0704 0x074c  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll - ok
08:53:50.0720 0x074c  [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\SysWOW64\riched20.dll
08:53:50.0720 0x074c  C:\Windows\SysWOW64\riched20.dll - ok
08:53:50.0720 0x074c  [ 81FB155132AE12BA18119D5B36A85476, B135C87752B20C98CD5D4B9BE47316F785EC41FD5E391D8609F06EDA29B05BBF ] C:\Windows\System32\msvcr110_clr0400.dll
08:53:50.0720 0x074c  C:\Windows\System32\msvcr110_clr0400.dll - ok
08:53:50.0720 0x074c  [ E2A17BCC08D92F42E08AF6BA2F93ABA7, 5FC9D47BF4B1094BECC0C0DDCD5CD4318DD3E4495D982F8785331616D5B82599 ] C:\Windows\SysWOW64\ExplorerFrame.dll
08:53:50.0720 0x074c  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
08:53:50.0720 0x074c  [ 29409ED7400CA5BCCC30C0EE5147A60D, FCC41E4308A1648CE810105AACED08295C53E25178D6C40C9DF61E9397C579D6 ] C:\Windows\System32\bitsperf.dll
08:53:50.0720 0x074c  C:\Windows\System32\bitsperf.dll - ok
08:53:50.0720 0x074c  [ D9431DCF90B0253773F51FDEFE7FD42F, E53C40CC0EC603CF67305F0AA81389124CF6E709A22DABF13563CBAD15897422 ] C:\Windows\System32\bitsigd.dll
08:53:50.0720 0x074c  C:\Windows\System32\bitsigd.dll - ok
08:53:50.0720 0x074c  [ 41E7C4FA6491747402CFCA77CC1C7AAB, 676CD982A0D33B60A646AC7C0158F7421E395C8B4B12E544C55AF5C09E470CC5 ] C:\Program Files (x86)\Toshiba\ConfigFree\CFIWmxSvcs64.exe
08:53:50.0720 0x074c  C:\Program Files (x86)\Toshiba\ConfigFree\CFIWmxSvcs64.exe - ok
08:53:50.0735 0x074c  [ 01E2855FB06C422E721D890AF201C2D7, 9CAA197D5CE95AABFC8C09EA2137E73C7A0EF37CE0459508C663F7B2D758E57F ] C:\Windows\System32\NaturalLanguage6.dll
08:53:50.0735 0x074c  C:\Windows\System32\NaturalLanguage6.dll - ok
08:53:50.0735 0x074c  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] C:\Users\Pushba\AppData\Local\Google\Update\GoogleUpdate.exe
08:53:50.0735 0x074c  C:\Users\Pushba\AppData\Local\Google\Update\GoogleUpdate.exe - ok
08:53:50.0735 0x074c  [ 96DB78C9C50CEED9DA5050EFFEE272A2, 51CF3E1F96555A4E4B5BC0DE2598CE5A0199F495644A91C2105F25A5A4CF10E3 ] C:\Windows\System32\upnp.dll
08:53:50.0735 0x074c  C:\Windows\System32\upnp.dll - ok
08:53:50.0735 0x074c  [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\SysWOW64\duser.dll
08:53:50.0735 0x074c  C:\Windows\SysWOW64\duser.dll - ok
08:53:50.0735 0x074c  [ 701D9F5F3F21580936638D5C5F86B460, 2F187684F61C72AACF8274EA29B48DAAC6C8377F791843914AABF5DAB3760980 ] C:\Windows\System32\NlsData0009.dll
08:53:50.0735 0x074c  C:\Windows\System32\NlsData0009.dll - ok
08:53:50.0735 0x074c  [ 405F4D32D2185F1F1BD753D8EEAFFB3A, CAC42C3E09C43BE96592B670D70821386014DB22D8239A9CFB9E33E54FB5C3D5 ] C:\Windows\System32\networkexplorer.dll
08:53:50.0735 0x074c  C:\Windows\System32\networkexplorer.dll - ok
08:53:50.0751 0x074c  [ 148A733B93A2AC104280495DA09D3CC2, 443E46865090C610B84A82DB23DF8D1F22001FEA8B10F5619A10D25D7FEA29CC ] C:\Windows\System32\NlsLexicons0009.dll
08:53:50.0751 0x074c  C:\Windows\System32\NlsLexicons0009.dll - ok
08:53:50.0751 0x074c  [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\SysWOW64\dui70.dll
08:53:50.0751 0x074c  C:\Windows\SysWOW64\dui70.dll - ok
08:53:50.0751 0x074c  [ E1329275CB063623418872351F494F7F, 8CA9023779882D9143300C609F58294BA702FEDB3E36A4441D0360708D39EFAD ] C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiSeAgnt.exe
08:53:50.0751 0x074c  C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiSeAgnt.exe - ok
08:53:50.0751 0x074c  [ 5F639198C4137075DA50E61C23963C11, 3D03B3BF62B3469069AD6BE2AAEE152CB6722D36C001B8197FEBC2F3EB9ADBE0 ] C:\Windows\System32\drprov.dll
08:53:50.0751 0x074c  C:\Windows\System32\drprov.dll - ok
08:53:50.0751 0x074c  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:53:50.0751 0x074c  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
08:53:50.0751 0x074c  [ DA24EDFC1D6C1B67C010D34652B7052F, 0499E99F7B794C1FE8E8C03658F0DCDFC3B0FF5315A1871FCB0C33D612A15BD1 ] C:\Users\Pushba\AppData\Local\Google\Update\1.3.24.7\goopdate.dll
08:53:50.0751 0x074c  C:\Users\Pushba\AppData\Local\Google\Update\1.3.24.7\goopdate.dll - ok
08:53:50.0751 0x074c  [ BC566D17914B07ABAAB3A5A385CC3300, DCE0A1D26312AA6441FB7122C6EED980AE350D58B2B4B166CB62F983306268E9 ] C:\Windows\System32\ntlanman.dll
08:53:50.0751 0x074c  C:\Windows\System32\ntlanman.dll - ok
08:53:50.0766 0x074c  [ 1F74B33DC1296273C07F329466B8BE0F, BCFE0574FAA50CFC2086FA4B2E5DA8C2368D54DAEDF8AA41492BC2ABF7882DC1 ] C:\Windows\SysWOW64\en-US\runonce.exe.mui
08:53:50.0766 0x074c  C:\Windows\SysWOW64\en-US\runonce.exe.mui - ok
08:53:50.0766 0x074c  [ B32AB94A432289AC2DF77A3DCAD32EED, B1021C78F940E6FA7A8992B2733B593B89DA57325A0A0D13D2767F193A78D90F ] C:\Windows\System32\davclnt.dll
08:53:50.0766 0x074c  C:\Windows\System32\davclnt.dll - ok
08:53:50.0766 0x074c  [ 0DCA5F8AF83975061D9D8340DC471B5C, 71C8549419F46ABB4826B1847BF325374FA5C237CE14DB8B1DD8BB6FDABF6138 ] C:\Windows\SysWOW64\msvcr110_clr0400.dll
08:53:50.0766 0x074c  C:\Windows\SysWOW64\msvcr110_clr0400.dll - ok
08:53:50.0766 0x074c  [ 45B24A357C801CE62052FE0CDC8BD4D2, 00602E41B78473825253F6B2557A5C43FBDDCCF713D806929AE7C039FF8F185C ] C:\Windows\System32\davhlpr.dll
08:53:50.0766 0x074c  C:\Windows\System32\davhlpr.dll - ok
08:53:50.0766 0x074c  [ 22767104BD9E5ED023457BF9CB374297, 52228F690197D4EF6ED4433AA88F798D08BF6B0AA85C5ABF2741754089F6E792 ] C:\Users\Pushba\AppData\Local\Google\Update\1.3.24.7\goopdateres_en.dll
08:53:50.0766 0x074c  C:\Users\Pushba\AppData\Local\Google\Update\1.3.24.7\goopdateres_en.dll - ok
08:53:50.0766 0x074c  [ 3D8B311A16F40C08B2487CFAA2FCD621, 146E7116E1230B62E692FEE7F204D315A2C93FB59A12EBDDD3B5797D6D06995A ] C:\Windows\System32\mfc110u.dll
08:53:50.0766 0x074c  C:\Windows\System32\mfc110u.dll - ok
08:53:50.0782 0x074c  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:53:50.0782 0x074c  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
08:53:50.0782 0x074c  [ 1A6ADA23F804FC192747F590CE9E91C9, 3CBE9ED2366B54CB991188A548B2E13CED4C811205756B40DB577DF8BEC0C0FD ] C:\Program Files\Trend Micro\AMSP\utilJsonHandle.dll
08:53:50.0782 0x074c  C:\Program Files\Trend Micro\AMSP\utilJsonHandle.dll - ok
08:53:50.0782 0x074c  [ CAB0EEAF5295FC96DDD3E19DCE27E131, 87BCAC18D920153322D325AA5B93BB0B447577D67261FDCC01C5B60643CEA792 ] C:\Program Files (x86)\Toshiba\ConfigFree\CFSvcs.exe
08:53:50.0782 0x074c  C:\Program Files (x86)\Toshiba\ConfigFree\CFSvcs.exe - ok
08:53:50.0782 0x074c  [ B47E015D777C9C1FEF95B6426DE67C9F, 9E4006CB41A4CE935F7153469472950B7C13CC458B36E9E32FAA8DF714FB295E ] C:\Windows\System32\mfc110enu.dll
08:53:50.0782 0x074c  C:\Windows\System32\mfc110enu.dll - ok
08:53:50.0782 0x074c  [ D9FAA5EFEB27DDBE99C720B9069A451E, FD33757E2674915409E54FBDF828DB900E31B99265035B16C216B38C6DBFC15F ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
08:53:50.0782 0x074c  C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
08:53:50.0782 0x074c  [ 48041BAEB60CE5F34F13CC2A1361E49C, AF82355A4C0D872F1F45261381C23C1510C2C77DD5F040B706FD7A3D63D4BAA4 ] C:\Windows\System32\mssph.dll
08:53:50.0782 0x074c  C:\Windows\System32\mssph.dll - ok
08:53:50.0798 0x074c  [ 5BA66E5E1AA8C302416716F89244EE3F, 14D095979A6F61E2D248B94B9FC93376B7A6D31DBB5235BCCD4240EFD2853479 ] C:\Program Files\Trend Micro\AMSP\instInstallationLibrary.dll
08:53:50.0798 0x074c  C:\Program Files\Trend Micro\AMSP\instInstallationLibrary.dll - ok
08:53:50.0798 0x074c  [ A29EDC989086507533F12C9A545D4D82, 81ECA7D70FC974F4757189929B53450D4BF47F4F6296D914B7DF829914741EAB ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
08:53:50.0798 0x074c  C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
08:53:50.0798 0x074c  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
08:53:50.0798 0x074c  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
08:53:50.0798 0x074c  [ F97A194D9E26C7DFC06227A2EE499A65, 8DCB389E23E4E214847965164032DD4772E92E9482F56999ACDF5774913DD4D6 ] C:\Program Files\Trend Micro\AMSP\outer_AMSP_ClientLibrary.dll
08:53:50.0798 0x074c  C:\Program Files\Trend Micro\AMSP\outer_AMSP_ClientLibrary.dll - ok
08:53:50.0798 0x074c  [ 8F4BB0CFECED925D440ABC2481278360, 0A87E7E1B38300E211F2ECA10BFB9831CF79B128DEB9D7AB0AA6A715197FF2DD ] C:\Windows\System32\mapi32.dll
08:53:50.0798 0x074c  C:\Windows\System32\mapi32.dll - ok
08:53:50.0813 0x074c  [ E0ED2BC3963084135CF302067A25B42C, D9FFCF601701A97377C50EE53EFB41248F6B065F6C61590A078C1B0D64293310 ] C:\Program Files\Trend Micro\UniClient\UiFrmwrk\utilUIProfile.dll
08:53:50.0813 0x074c  C:\Program Files\Trend Micro\UniClient\UiFrmwrk\utilUIProfile.dll - ok
08:53:50.0813 0x074c  [ 060F9F3A613AAF1221C251B8F7EC6633, 9E8E6A1368054D9CD487E3F9FA91CB3BFDBAC57A539AF1F6CB3AC0EB5D48B063 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
08:53:50.0813 0x074c  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
08:53:50.0813 0x074c  [ 22767104BD9E5ED023457BF9CB374297, 52228F690197D4EF6ED4433AA88F798D08BF6B0AA85C5ABF2741754089F6E792 ] C:\Program Files (x86)\Google\Update\1.3.24.7\goopdateres_en.dll
08:53:50.0813 0x074c  C:\Program Files (x86)\Google\Update\1.3.24.7\goopdateres_en.dll - ok
08:53:50.0813 0x074c  [ 27AB803476512CF9BE9365CD1C119225, 61BB104DBC1010A1CF7E3AAD02463185C4FFB5CBFFA98FA2B42993885BA5BE28 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
08:53:50.0813 0x074c  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
08:53:50.0813 0x074c  [ D5A444B63637EC0932172C6719A10252, 5B2F51B102EB3FE551A5D727D5280BA9417C3AC62E224997A3549F19677EAEE0 ] C:\Users\Pushba\AppData\Local\Google\Update\1.3.24.7\GoogleCrashHandler.exe
08:53:50.0813 0x074c  C:\Users\Pushba\AppData\Local\Google\Update\1.3.24.7\GoogleCrashHandler.exe - ok
08:53:50.0813 0x074c  [ EA87F150E722E4AB866AD0A13382FA02, D28BE0D1210D9DFEBF313A93227DDF5BFFE6B6EE9980FAD238503CA135FBDA10 ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
08:53:50.0813 0x074c  C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe - ok
08:53:50.0829 0x074c  [ C3761661C17C2248A9379A8FB89E3DE1, CE3477FA2B4058EB80739E0161FE957545F13CF86D313F6422732901D35F75F2 ] C:\Windows\System32\stobject.dll
08:53:50.0829 0x074c  C:\Windows\System32\stobject.dll - ok
08:53:50.0829 0x074c  [ F832EEEA97CDDA1AF577E721F652A0D1, EBBB7CA199BA4DF231123922BD310D43DE0104C6185B70FE0281B938D5336F2E ] C:\Windows\System32\batmeter.dll
08:53:50.0829 0x074c  C:\Windows\System32\batmeter.dll - ok
08:53:50.0829 0x074c  [ 8A07221789D46B2EA7DFCA2BC807572A, 1921B19ED69857C75326C6A3DF767D80E5B795C9109CF2D12CB544E24EBEE526 ] C:\Program Files (x86)\Toshiba\ConfigFree\CFSwMgr.exe
08:53:50.0829 0x074c  C:\Program Files (x86)\Toshiba\ConfigFree\CFSwMgr.exe - ok
08:53:50.0829 0x074c  [ 3F7CD7873FA942C38F9831F286698414, 5D7F7D7E999BD5A4DD0D31D5DFFC325E53F52496B14D2DA179192FDB149DCF0A ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe
08:53:50.0829 0x074c  C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe - ok
08:53:50.0829 0x074c  [ 171D7DB433314A868507C4326E8209DC, 254E0D9F99CE47104CF21D8E968D89D6A09B9CE47168E760BAB28AD5A1E9E6A3 ] C:\Windows\System32\fdWSD.dll
08:53:50.0829 0x074c  C:\Windows\System32\fdWSD.dll - ok
08:53:50.0829 0x074c  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122, E7EA375A3BDE8FC764CB09524344370B9EE25F98AD6C83E6F37A569EB8D277D6 ] C:\Windows\System32\prnfldr.dll
08:53:50.0829 0x074c  C:\Windows\System32\prnfldr.dll - ok
08:53:50.0829 0x074c  [ AC5DF873913B00E554D8F553459BC431, 86FC6E15BD67AEB714E44C088EDA1C17BAC25A1EC67A518A05878D594F293394 ] C:\Windows\System32\qmgrprxy.dll
08:53:50.0829 0x074c  C:\Windows\System32\qmgrprxy.dll - ok
08:53:50.0844 0x074c  [ A2E5B2D20954210DCE1A75A1FC8CC36D, 1EA240AC37ECA4EC3E542F9E6DF72753EBA1DF76CBA8691EC61ABCC51EE6FCB2 ] C:\Windows\System32\fdSSDP.dll
08:53:50.0844 0x074c  C:\Windows\System32\fdSSDP.dll - ok
08:53:50.0844 0x074c  [ 85B45B4B285B159ACDB355FC8C1E8925, EBB4A5472306A284D3A845347E2A79B13EFCCBA86705E1D49DE8AC44D8D06112 ] C:\Windows\SysWOW64\qmgrprxy.dll
08:53:50.0844 0x074c  C:\Windows\SysWOW64\qmgrprxy.dll - ok
08:53:50.0844 0x074c  [ 42A9CB6906D9A8BEDC83B57163E62924, E18522D3137653140757829EFBFCE624A5BAA5842E2BBA10B9E5AB6C84BE49E1 ] C:\Windows\System32\DXP.dll
08:53:50.0844 0x074c  C:\Windows\System32\DXP.dll - ok
08:53:50.0844 0x074c  [ 2ED1786B7542CDA261029F6B526EDF44, C6131B65B045EF5B4F62CF6CF089DF0921BA6A8EFC83BCBA45D5DDE78E9D78E2 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
08:53:50.0844 0x074c  C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe - ok
08:53:50.0844 0x074c  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891, 0A82A475301202791A7C10F978F952EAB7DB146A702D4EA67E24E2C98BC19638 ] C:\Windows\System32\Syncreg.dll
08:53:50.0844 0x074c  C:\Windows\System32\Syncreg.dll - ok
08:53:50.0844 0x074c  [ 720546B84ED5229E1584C8F3533A2F12, AB3C09C7F4B34D82786484439BCF78E7D7D202D1A75120ECFD140A74B8D36E86 ] C:\Users\Pushba\AppData\Local\Google\Update\1.3.24.7\GoogleCrashHandler64.exe
08:53:50.0844 0x074c  C:\Users\Pushba\AppData\Local\Google\Update\1.3.24.7\GoogleCrashHandler64.exe - ok
08:53:50.0860 0x074c  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB, CF9082360E32A7C3E13A67AC2C6192F4A76870D43DA9FF2936993A637F712761 ] C:\Windows\System32\AltTab.dll
08:53:50.0860 0x074c  C:\Windows\System32\AltTab.dll - ok
08:53:50.0860 0x074c  [ C836175870E00ACC546066632E15BD10, 4347F3319C26DA1C38F395C74DBD67AF886149C8F29EDE765DD96C8480A3054A ] C:\Windows\ehome\ehSSO.dll
08:53:50.0860 0x074c  C:\Windows\ehome\ehSSO.dll - ok
08:53:50.0860 0x074c  [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\SysWOW64\NapiNSP.dll
08:53:50.0860 0x074c  C:\Windows\SysWOW64\NapiNSP.dll - ok
08:53:50.0860 0x074c  [ 10F815BE90A66AAFC6C713D1BD626064, 01139FC04BC53594296F6A0E16B8D20B940F64BC8119FE7705C03C4947958F39 ] C:\Windows\System32\pnidui.dll
08:53:50.0860 0x074c  C:\Windows\System32\pnidui.dll - ok
08:53:50.0860 0x074c  [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\SysWOW64\pnrpnsp.dll
08:53:50.0860 0x074c  C:\Windows\SysWOW64\pnrpnsp.dll - ok
08:53:50.0860 0x074c  [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\SysWOW64\winrnr.dll
08:53:50.0860 0x074c  C:\Windows\SysWOW64\winrnr.dll - ok
08:53:50.0860 0x074c  [ B9F0A4020AA98B7A20287BF7FE99A1FD, 21138F161EEEA46198890C7A2D073F2C82829E15676131BDAD9F237EDC7477CD ] C:\Windows\System32\QUTIL.DLL
08:53:50.0860 0x074c  C:\Windows\System32\QUTIL.DLL - ok
08:53:50.0860 0x074c  [ 3B961948665558C20EDBEF74F547D872, 74F119C2E671B5A5EC79EDF14A068A63885920999F5F6792F893151582854B19 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
08:53:50.0860 0x074c  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
08:53:50.0876 0x074c  [ 69754747274B76E7FAF287239333D7E6, A0BAEC1E56E4B1A17C0D41B317526AF5BB11E7E488C7016067A6229346A23B16 ] C:\Windows\System32\msiltcfg.dll
08:53:50.0876 0x074c  C:\Windows\System32\msiltcfg.dll - ok
08:53:50.0876 0x074c  [ 2A436796758BF2555A26C770FE8A6FEE, 9E42AF3A3CB05E323CBB7F93FE7C454CD251672C5D9F5E94909131A5D8F9204A ] C:\Windows\System32\fdProxy.dll
08:53:50.0876 0x074c  C:\Windows\System32\fdProxy.dll - ok
08:53:50.0876 0x074c  [ C8FDF0FA9E97E2FAAF3F814716AAA881, DD24A1CAB44D943B0E1A795A347AD25D9305FC7F012A2566A6A14BD47221831F ] C:\Windows\System32\WPDShServiceObj.dll
08:53:50.0876 0x074c  C:\Windows\System32\WPDShServiceObj.dll - ok
08:53:50.0876 0x074c  [ 4F3CD1C59EA71401E155C432BCECE180, 6D4118A627CAE509E43D0CC0062EECAA0990C955BB15AE24834460551B2F51A2 ] C:\Windows\System32\PortableDeviceTypes.dll
08:53:50.0876 0x074c  C:\Windows\System32\PortableDeviceTypes.dll - ok
08:53:50.0876 0x074c  [ 92DBF0A4C9239169010FC6E07859C82E, 00FB2CF4420F0FFEF519AFE732A708CF249640121E2A891CAA164313ABD7F804 ] C:\Windows\System32\ActionCenter.dll
08:53:50.0876 0x074c  C:\Windows\System32\ActionCenter.dll - ok
08:53:50.0876 0x074c  [ 101797BA603D227946B4B5109867EB19, EBF2B48D1A4FE148F455EA32023ABC0D479215D48C7CE76E765F199CD3C80AF8 ] C:\Windows\System32\SyncCenter.dll
08:53:50.0876 0x074c  C:\Windows\System32\SyncCenter.dll - ok
08:53:50.0876 0x074c  [ 4F963F80888646BBAFDAE3102D759C85, 82CD7BD1FB28541E02B5D92F103B8486D815720E58AC666385216CAE0907447F ] C:\Program Files\Internet Explorer\ieproxy.dll
08:53:50.0876 0x074c  C:\Program Files\Internet Explorer\ieproxy.dll - ok
08:53:50.0891 0x074c  [ 8569E35D00F45972E506502EEE622BA4, 01FE851C03DB88C8373099C279F995A559D962B08932E193032FA3EAD522FB01 ] C:\Windows\System32\srchadmin.dll
08:53:50.0891 0x074c  C:\Windows\System32\srchadmin.dll - ok
08:53:50.0891 0x074c  [ 24F4B480F335A6C724AF352253C5D98B, 011413B236CAD7B78CE0A0EEC3E3085D48C7576A3205D025BA6EBFDF590538E4 ] C:\Windows\System32\thumbcache.dll
08:53:50.0891 0x074c  C:\Windows\System32\thumbcache.dll - ok
08:53:50.0891 0x074c  [ FA43D418BC945D27D0625B697B8442B5, 035DE0FEA440D2E3AD255EE84B388DDA538E778877033FDB54B8A61BB0AADE56 ] C:\Windows\System32\cabinet.dll
08:53:50.0891 0x074c  C:\Windows\System32\cabinet.dll - ok
08:53:50.0891 0x074c  [ 92E0508D924512F63FFEEFE498CBD11F, 1158011E4A1298DEC79133B40888AA87B06F5B64BA2AB461B58C22F5F9211D0C ] C:\Windows\System32\p2pcollab.dll
08:53:50.0891 0x074c  C:\Windows\System32\p2pcollab.dll - ok
08:53:50.0891 0x074c  [ 423982DD851406A52B6399DDB196C606, 5FFBA6D1E9398E7C5D18553EE1C485F59174013622332F7BD8D461F707F1EC93 ] C:\Windows\System32\wmdrmdev.dll
08:53:50.0891 0x074c  C:\Windows\System32\wmdrmdev.dll - ok
08:53:50.0891 0x074c  [ F7A256EC899C72B4ECDD2C02CB592EFD, 9C1AA9322E83CABB94AEA4375EAEB0C44700E1F33B8BE98649BA1DF4DDFAD326 ] C:\Windows\System32\bthprops.cpl
08:53:50.0891 0x074c  C:\Windows\System32\bthprops.cpl - ok
08:53:50.0907 0x074c  [ 2C1055E2C6D42753241FB2A129136994, A8E858B4CB8E1E13C7574330C703E0060AEE8B7B19B682F9AE5B4A02BDC659E2 ] C:\Windows\System32\drmv2clt.dll
08:53:50.0907 0x074c  C:\Windows\System32\drmv2clt.dll - ok
08:53:50.0907 0x074c  [ 014D63C0B5E18CE5D4790E083BD4E2FD, E9274733ECAA64D3FABF955BAC16A3A2E007B0C663FD8935462AAEFA3A86F1E3 ] C:\Windows\System32\WSDPrintProxy.DLL
08:53:50.0907 0x074c  C:\Windows\System32\WSDPrintProxy.DLL - ok
08:53:50.0907 0x074c  [ FFF95479C7AB1550F0750A5D01744211, FF67F892AABCE1C2B695FF4C0816339566F5745C1498D48FAC050E5196C1CE09 ] C:\Windows\System32\drivers\spsys.sys
08:53:50.0907 0x074c  C:\Windows\System32\drivers\spsys.sys - ok
08:53:50.0907 0x074c  [ 506A83A3BEEE9FCA09F0170DE9FC7D1B, 2DFBD792B68F3EBEF0843183CAE5D52B6FA04163808AFACF6C0D738455898C36 ] C:\Windows\System32\fveui.dll
08:53:50.0907 0x074c  C:\Windows\System32\fveui.dll - ok
08:53:50.0907 0x074c  [ 617F6EC0AC677C685479C1D0D1E76C6F, 77B22C0817558CE70EF7D3BBE04A275FFA35ED2E4AFB17DBDF353DF9932DC693 ] C:\Windows\System32\mspatcha.dll
08:53:50.0907 0x074c  C:\Windows\System32\mspatcha.dll - ok
08:53:50.0907 0x074c  [ C61D476C867D215FB9CE136CE6BF0C14, F9C330037E5244B2C59AC6840A30F705F5B8F45964ABF305EEFC4B43ED57CC04 ] C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
08:53:50.0907 0x074c  C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll - ok
08:53:50.0907 0x074c  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] C:\Windows\System32\drivers\WSDPrint.sys
08:53:50.0907 0x074c  C:\Windows\System32\drivers\WSDPrint.sys - ok
08:53:50.0922 0x074c  [ F00AE7B953ABEF1B53FBBA187DFC8238, 6FFA160FB6821A725A7D81E1BECE1DE89E3E022B33E56A7468E2E0B4C8B2AE31 ] C:\Windows\System32\webcheck.dll
08:53:50.0922 0x074c  C:\Windows\System32\webcheck.dll - ok
08:53:50.0922 0x074c  [ C47F35CC6FA4F1BDBEF8F87AC1A46537, 82EC7041317666D5370690BD2176CF00F5957036C29429319F45045BFFAE9EC2 ] C:\Windows\System32\wuapi.dll
08:53:50.0922 0x074c  C:\Windows\System32\wuapi.dll - ok
08:53:50.0922 0x074c  [ 8130391F82D52D36C0441F714136957F, 1FD4FEE7CAF63E450F27729E07EA2A2F09288629FD872DBB6E8710B16D8DBD5D ] C:\Windows\System32\imapi2.dll
08:53:50.0922 0x074c  C:\Windows\System32\imapi2.dll - ok
08:53:50.0922 0x074c  [ E746ED90132C6B6313CE9179F56BD31D, CCE0367148E54AA1413C52CCE752CC75EA9E3A8232ECFC263C62A634B8CAEF5F ] C:\Windows\System32\wups.dll
08:53:50.0922 0x074c  C:\Windows\System32\wups.dll - ok
08:53:50.0922 0x074c  [ C746F3BF98E92FB137B5BD2B8B5925BD, 67A8990F3D491D149E65C90042909259793C65E671DC953FDA1F7590FAC23D9E ] C:\Windows\System32\FXSST.dll
08:53:50.0922 0x074c  C:\Windows\System32\FXSST.dll - ok
08:53:50.0922 0x074c  [ 6BF622C46721CF6E2B35E868F319E6EB, 926D3C6334D8AF8A248A361D1F7C0A655835572ED8AC6F1D7932E1FA7A26B50A ] C:\Program Files\iPod\bin\iPodService.exe
08:53:50.0922 0x074c  C:\Program Files\iPod\bin\iPodService.exe - ok
08:53:50.0938 0x074c  [ 650CAEA856943E29F25A25D31E004B18, DCA63D2AF4C6F14B27EA006F200E58A5C13AC940A51947A40F668908A446CC4E ] C:\Windows\System32\FXSAPI.dll
08:53:50.0938 0x074c  C:\Windows\System32\FXSAPI.dll - ok
08:53:50.0938 0x074c  [ ADE2BCD1FDE5C9669FCE1F4541AB46DD, 1C12491CDC2C91BC24F560CFCA82A1459F6FC96D13C92A68CB9D67213F5AA779 ] C:\Windows\System32\spool\drivers\x64\3\UNIDRV.DLL
08:53:50.0938 0x074c  C:\Windows\System32\spool\drivers\x64\3\UNIDRV.DLL - ok
08:53:50.0938 0x074c  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] C:\Windows\System32\FXSSVC.exe
08:53:50.0938 0x074c  C:\Windows\System32\FXSSVC.exe - ok
08:53:50.0938 0x074c  [ D2155709E336C3BC15729EB87FEC6064, 682A84C0F2D892E7A6CEE4E5937B4799E352AAE3B71E7037F2A343373467443C ] C:\Windows\System32\rasdlg.dll
08:53:50.0938 0x074c  C:\Windows\System32\rasdlg.dll - ok
08:53:50.0938 0x074c  [ 47634E815B152FCE4C42024A1184CAFC, 8826ED94263521AECE7C457D2DAB7DEBF2DC6FC5E7CE3371230D51F680B6909C ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
08:53:50.0938 0x074c  C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
08:53:50.0938 0x074c  [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2, E8ACB693B1A78FAEF292111BE3F9B10BA95C76833C06C931A08EAAAE39A21334 ] C:\Windows\System32\dot3api.dll
08:53:50.0938 0x074c  C:\Windows\System32\dot3api.dll - ok
08:53:50.0954 0x074c  [ F01190AD7616B84DBB0C1A1DD8A7B547, B0EF56DAA1407FAF9031E52D04F33F78C601BC12B971D1F4AAAD832E99FC660B ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
08:53:50.0954 0x074c  C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
08:53:50.0954 0x074c  [ 04CB7C8FDC6D9640DD82A527208F72C4, 0F8A327B0234A29EAB1F03D9102A3DF7DB4515BF580163198C5A8C174C98DE4F ] C:\Windows\System32\UIAnimation.dll
08:53:50.0954 0x074c  C:\Windows\System32\UIAnimation.dll - ok
08:53:50.0954 0x074c  [ 5AC3CB53406CB9AABB25D46B3385528F, D5213E1C8CBD9E82922CE7F0E49611119EC6C2C1A0DC3F5912199AF5F39830C0 ] C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll
08:53:50.0954 0x074c  C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll - ok
08:53:50.0954 0x074c  [ E4FCA0F99A41E460C84016DEFD31E6EF, 8EB14AF2025EADC7C86280E8417D8F286E8271B4F88B31696E33DFD72B3A0EF2 ] C:\Windows\System32\wlanhlp.dll
08:53:50.0954 0x074c  C:\Windows\System32\wlanhlp.dll - ok
08:53:50.0954 0x074c  [ F6F22291024906E43D135A4B1705FEAC, C1B66012799D247033E8AB8386B51BC86A4E2255E6D0B163AC000B215C51B42A ] C:\Windows\System32\sppwinob.dll
08:53:50.0954 0x074c  C:\Windows\System32\sppwinob.dll - ok
08:53:50.0954 0x074c  [ 919001D2BB17DF06CA3F8AC16AD039F6, 5169ACFBE9E9D4C4012773ECDD28231C952675EF0C272A40F226E7B5D671B18B ] C:\Windows\SysWOW64\sxs.dll
08:53:50.0954 0x074c  C:\Windows\SysWOW64\sxs.dll - ok
08:53:50.0969 0x074c  [ EFBE90131585927AF8C893DA8D60891A, 5751A87518FC06E169914E526F31F8A7B460D7E52687D6DD4F067CC8F12B8061 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
08:53:50.0969 0x074c  C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
08:53:50.0969 0x074c  [ 6A5C1A8AC0B572679361026D0E900420, B5E693B48B462E97738A3D4E58B60846159649EB15F4D11074B4BC107CC88562 ] C:\Windows\System32\hgcpl.dll
08:53:50.0969 0x074c  C:\Windows\System32\hgcpl.dll - ok
08:53:50.0969 0x074c  [ 59456E7CF4F3D8406D080FD586E8180B, 29AB2507B60E0480EEAC4C50BE9AA7910A94887079D0BB66117F4D4CE97299C0 ] C:\Windows\System32\spool\drivers\x64\3\hpvplui04.dll
08:53:50.0969 0x074c  C:\Windows\System32\spool\drivers\x64\3\hpvplui04.dll - ok
08:53:50.0969 0x074c  [ 8CBBB27369F9F07BC5E874E750EAF9D0, 4C4BEA5AD454692E0A56ACFC83C495CA44B7BB2393388A5582CE3EBE5D81E2E1 ] C:\Windows\System32\wmp.dll
08:53:50.0969 0x074c  C:\Windows\System32\wmp.dll - ok
08:53:50.0969 0x074c  [ B6411CED931AFD059E48C52DBFBA95B4, 4E275A691E6A1C07D72DC8DA16B58B6634286A5058C3F4AC0ABD92B9A57FB5D5 ] C:\Windows\System32\P2P.dll
08:53:50.0969 0x074c  C:\Windows\System32\P2P.dll - ok
08:53:50.0969 0x074c  [ 6699A112A3BDC9B52338512894EBA9D6, 10888BB9C3799E1E8B010C0F9088CED376AAD63A509FCE1727C457B022CDC717 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
08:53:50.0969 0x074c  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
08:53:50.0985 0x074c  Waiting for KSN requests completion. In queue: 81
08:53:51.0999 0x074c  Waiting for KSN requests completion. In queue: 81
08:53:53.0013 0x074c  Waiting for KSN requests completion. In queue: 81
08:53:54.0027 0x074c  Waiting for KSN requests completion. In queue: 81
08:53:55.0181 0x074c  AV detected via SS2: Trend Micro Titanium Maximum Security, C:\Program Files\Trend Micro\Titanium\wschandler.exe ( 7.0.0.1151 ), 0x41000 ( enabled : updated )
08:53:55.0197 0x074c  Win FW state via NFP2: enabled
08:53:59.0034 0x074c  ============================================================
08:53:59.0034 0x074c  Scan finished
08:53:59.0034 0x074c  ============================================================
08:53:59.0050 0x0774  Detected object count: 0
08:53:59.0050 0x0774  Actual detected object count: 0

08:46:27.0525 0x22fc  TDSS rootkit removing tool 3.0.0.37 May 30 2014 13:12:03
08:46:52.0391 0x22fc  ============================================================
08:46:52.0391 0x22fc  Current date / time: 2014/06/05 08:46:52.0391
08:46:52.0391 0x22fc  SystemInfo:
08:46:52.0391 0x22fc  
08:46:52.0391 0x22fc  OS Version: 6.1.7601 ServicePack: 1.0
08:46:52.0391 0x22fc  Product type: Workstation
08:46:52.0391 0x22fc  ComputerName: PUSHPA-PETAL
08:46:52.0391 0x22fc  UserName: Pushba
08:46:52.0391 0x22fc  Windows directory: C:\windows
08:46:52.0391 0x22fc  System windows directory: C:\windows
08:46:52.0391 0x22fc  Running under WOW64
08:46:52.0391 0x22fc  Processor architecture: Intel x64
08:46:52.0391 0x22fc  Number of processors: 8
08:46:52.0391 0x22fc  Page size: 0x1000
08:46:52.0391 0x22fc  Boot type: Normal boot
08:46:52.0391 0x22fc  ============================================================
08:46:53.0234 0x22fc  KLMD registered as C:\windows\system32\drivers\27137777.sys
08:46:53.0546 0x22fc  System UUID: {6E2AB246-18F5-4131-89EA-DC4E1A5E75FD}
08:46:54.0653 0x22fc  Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:46:54.0669 0x22fc  ============================================================
08:46:54.0669 0x22fc  \Device\Harddisk0\DR0:
08:46:54.0669 0x22fc  MBR partitions:
08:46:54.0669 0x22fc  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x48AA0800
08:46:54.0669 0x22fc  ============================================================
08:46:54.0700 0x22fc  C: <-> \Device\Harddisk0\DR0\Partition1
08:46:54.0700 0x22fc  ============================================================
08:46:54.0700 0x22fc  Initialize success
08:46:54.0700 0x22fc  ============================================================
08:48:04.0402 0x2234  KLMD registered as C:\windows\system32\drivers\65511767.sys
08:48:05.0135 0x2234  Deinitialize success

---------------------------------------


    Advertisements

Register to Remove


#11 LiquidTension

LiquidTension

    SuperMember

  • Classroom Teacher
  • 2,566 posts

Posted 05 June 2014 - 10:20 PM

Hello Kushla,
 
Thank you for posting the requested logs, and for waiting so patiently. Please continue with the following scans, which will identify and remove various Adware, Potentially Unwanted Programmes (PUPs), Browser Hijackers and more.
 
STEP 1
BY4dvz9.png AdwCleaner

  • Please download AdwCleaner and save the file to your desktop.
  • Right-Click AdwCleaner.exe and select AVOiBNU.jpg Run as administrator to run the programme.
  • Follow the prompts. 
  • Click Scan
  • Upon completion, click Report. A log (AdwCleaner[R0].txt) will open. Briefly check the log for anything you know to be legitimate. 
  • Ensure anything you know to be legitimate does not have a checkmark, and click Clean
  • Follow the prompts and allow your computer to reboot
  • After rebooting, a log (AdwCleaner[S0].txt) will open. Copy the contents of the log and paste in your next reply.

-- File and registry key backups are made for anything removed using this tool. Should a legitimate entry be removed (otherwise known as a 'false-positive'), simple steps can be taken to restore the entry. Please do not overly concern yourself with the contents of AdwCleaner[R0].txt.
 

STEP 2
E3feWj5.png Junkware Removal Tool (JRT)

  • Please download Junkware Removal Tool and save the file to your desktop.
  • If you unchecked any items in AdwCleaner, please backup the associated folder/files. 
  • Temporarily disable your anti-virus software. For instructions, please refer to the following link.
  • Right-Click JRT.exe and select AVOiBNU.jpg Run as administrator to run the programme.
  • Follow the prompts and allow the scan to run uninterrupted. 
  • Upon completion, a log (JRT.txt) will open on your desktop.
  • Re-enable your anti-virus software.
  • Copy the contents of JRT.txt and paste in your next reply.
     

STEP 3
xlK5Hdb.png Farbar Recovery Scan Tool (FRST) Scan

  • Please run FRST as you did before, ensuring the Addition checkbox is checked.
  • Copy the contents of the two logs in your next reply.
     

======================================================

STEP 4
pfNZP4A.png Logs
In your next reply please include the following logs. Please be sure to copy and paste the requested logs, as well as provide information on any questions I may have asked.

  • AdwCleaner[S0].txt
  • JRT.txt
  • FRST.txt
  • Addition.txt

50QfLth.png

 

Would you like to help others with malware removal? Join our Classroom and learn how!


#12 sunnynap

sunnynap

    New Member

  • Authentic Member
  • Pip
  • 16 posts

Posted 06 June 2014 - 03:40 PM

Thank you Adam. I encountered a problem.  I am 99% certain I saved AdwCleaner scan result but weirdly I cannot locate it.  Is there anything I can do about this?  The log contained AVG/Blekko/Freemind related items.  The rest of the scan logs saved perfectly. 

I am baffled and certainly questioning myself?!

 

------------------------

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by Pushba on Sat 07/06/2014 at  9:04:44.73
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\Pushba\AppData\Roaming\mozilla\firefox\profiles\lzv8eylf.default-1384023942729\minidumps [32 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 07/06/2014 at  9:10:44.43
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-06-2014
Ran by Pushba (administrator) on PUSHPA-PETAL on 07-06-2014 09:11:42
Running from C:\Users\Pushba\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(TOSHIBA Corporation) C:\Program Files\Toshiba\TECO\TecoService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler64.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\ConfigFree\CFIWmxSvcs64.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\ConfigFree\CFSvcs.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [] => [X]
HKLM\...\Run: [Trend Micro Client Framework] => C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [229824 2013-10-09] (Trend Micro Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-15] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-22] (Adobe Systems Incorporated)
HKU\S-1-5-21-267806774-3125823315-51418320-1000\...\Run: [Google Update] => C:\Users\Pushba\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-07-13] (Google Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba.msn.com
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKCU - {D98844C8-7BB8-4C5C-A966-DC5B498ED808} URL = https://duckduckgo.c...q={searchTerms}
BHO: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmIEPlg.dll (Trend Micro Inc.)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: LastPass Vault - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\TmBpIe64.dll (Trend Micro Inc.)
BHO-x32: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmIEPlg32.dll (Trend Micro Inc.)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: TSToolbarBHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
BHO-x32: Dragon NaturallySpeaking Rich Internet Application Support - Extension - {73A89C60-CF59-4EC7-9215-9B7EF05ECEA4} - C:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\ieShim.dll (Nuance Communications, Inc.)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: LastPass Vault - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\TmBpIe32.dll (Trend Micro Inc.)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll (<TOSHIBA>)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
DPF: HKLM-x32 {10000000-1000-1000-1000-100000000000} http://cdn.betteradv....0/ghostery.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\TmBpIe64.dll (Trend Micro Inc.)
Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmIEPlg.dll (Trend Micro Inc.)
Handler: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} -  No File
Handler: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} -  No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\TmBpIe32.dll (Trend Micro Inc.)
Handler-x32: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1313\6.8.1120\TmIEPlg32.dll (Trend Micro Inc.)
Handler-x32: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
Handler-x32: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll (Trend Micro Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 0.0.0.0
Tcpip\..\Interfaces\{F9311AFF-86AD-4C8F-9CF7-B6F4714DB783}: [NameServer]8.8.8.8,8.8.4.4

FireFox:
========
FF ProfilePath: C:\Users\Pushba\AppData\Roaming\Mozilla\Firefox\Profiles\lzv8eylf.default-1384023942729
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass - C:\Program Files (x86)\LastPass\nplastpass64.dll (LastPass)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass - C:\Program Files (x86)\LastPass\nplastpass.dll (LastPass)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\4\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: nuance.com/DragonRIAPlugin - C:\PROGRA~2\Nuance\NATURA~1\Program\npDgnRia.dll (Nuance Communications Inc.)
FF Plugin-x32: ZEON/PDF,version=2.0 - C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
FF Plugin HKCU: @citrixonline.com/appdetectorplugin - C:\Users\Pushba\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Pushba\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Pushba\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Pushba\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Pushba\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Pushba\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Pushba\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazon-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\chambers-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-en-GB.xml
FF Extension: Flashblock - C:\Users\Pushba\AppData\Roaming\Mozilla\Firefox\Profiles\lzv8eylf.default-1384023942729\Extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a} [2013-11-18]
FF Extension: ColorZilla - C:\Users\Pushba\AppData\Roaming\Mozilla\Firefox\Profiles\lzv8eylf.default-1384023942729\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326} [2014-02-27]
FF Extension: Firebug - C:\Users\Pushba\AppData\Roaming\Mozilla\Firefox\Profiles\lzv8eylf.default-1384023942729\Extensions\firebug@software.joehewitt.com.xpi [2013-11-12]
FF Extension: Font Finder - C:\Users\Pushba\AppData\Roaming\Mozilla\Firefox\Profiles\lzv8eylf.default-1384023942729\Extensions\fontfinder@bendodson.com.xpi [2014-02-27]
FF Extension: SpyBar - C:\Users\Pushba\AppData\Roaming\Mozilla\Firefox\Profiles\lzv8eylf.default-1384023942729\Extensions\jid0-alFZKx8TTaZXKErGGA4i8VSf5rE@jetpack.xpi [2014-05-21]
FF Extension: SpyBar - C:\Users\Pushba\AppData\Roaming\Mozilla\Firefox\Profiles\lzv8eylf.default-1384023942729\Extensions\jid1-GweBqBWfVjIEzA@jetpack.xpi [2013-12-03]
FF Extension: JS Deminifier - C:\Users\Pushba\AppData\Roaming\Mozilla\Firefox\Profiles\lzv8eylf.default-1384023942729\Extensions\jsdeminifier@murphy.ben.name.xpi [2014-01-03]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\uninstall [2014-05-10]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-05-10]
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-09-12]
FF Extension: Trend Micro NSC Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20004\FxExt\firefoxextension [2014-04-25]
FF HKLM\...\Firefox\Extensions: [tmbepff@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\firefoxextension
FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\firefoxextension [2014-06-05]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM-x32\...\Firefox\Extensions: [{38783831-6098-4faa-A9C9-1EE1E343F4D2}] - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\firefoxextension
FF HKLM-x32\...\Firefox\Extensions: [jid0-lmZNVK7a82O8cufhdfB9dUDfA2w@jetpack] - C:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\ffShim.xpi
FF Extension: Dragon NaturallySpeaking Rich Internet Application Support - C:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\ffShim.xpi [2013-10-15]
FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKLM-x32\...\Firefox\Extensions: [tmbepff@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\firefoxextension
FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1170\8.0.1170\firefoxextension [2014-06-05]
FF HKLM-x32\...\Firefox\Extensions: [{22181a4d-af90-4ca3-a569-faed9118d6bc}] - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension
FF Extension: Trend Micro Toolbar - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension [2014-04-02]
FF HKLM-x32\...\Firefox\Extensions: [{22C7F6C6-8D67-4534-92B5-529A0EC09405}] - C:\Program Files\Trend Micro\AMSP\module\20004\FxExt\firefoxextension\
FF Extension: Trend Micro NSC Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20004\FxExt\firefoxextension\ []

Chrome:
=======
CHR HomePage:
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_265.dll No File
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\pdf.dll ()
CHR Plugin: (Skype Click to Call) - C:\Users\Pushba\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.10.0.9560_0\npSkypeChromePlugin.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.60.24) - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java™ Platform SE 7 U6) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll No File
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (RealNetworks™ Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll No File
CHR Plugin: (RealPlayer™ HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll No File
CHR Plugin: (RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) ) - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Download Plugin) - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
CHR Plugin: (Unity Player) - C:\Users\Pushba\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Plugin: (RealJukebox NS Plugin) - c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll No File
CHR Extension: (Google Drive) - C:\Users\Pushba\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-10-02]
CHR Extension: (RealDownloader) - C:\Users\Pushba\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-05-03]
CHR Extension: (Skype Click to Call) - C:\Users\Pushba\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-05-03]
CHR Extension: (Dragon NaturallySpeaking Rich Internet Application Support) - C:\Users\Pushba\AppData\Local\Google\Chrome\User Data\Default\Extensions\mikhcaiakabeeokmenglcdebplfdjicn [2013-09-01]
CHR Extension: (Google Wallet) - C:\Users\Pushba\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-01]
CHR HKCU\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Pushba\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2013-10-01]
CHR HKLM-x32\...\Chrome\Extension: [bmiabdepfhhiieiipmeecdmeljggmfee] - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1135\8.0.1135\chrome_tmbep.crx [2013-10-01]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11]
CHR HKLM-x32\...\Chrome\Extension: [mikhcaiakabeeokmenglcdebplfdjicn] - C:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\chromeShim.crx [2013-10-15]

==================== Services (Whitelisted) =================

R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
S2 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad -bt=0 [X]

==================== Drivers (Whitelisted) ====================

R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-06-07] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R1 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [116264 2013-09-04] (Trend Micro Inc.)
R0 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [282624 2013-09-04] (Trend Micro Inc.)
R0 TMEBC; C:\Windows\System32\DRIVERS\TMEBC64.sys [50976 2013-07-02] (Trend Micro Inc.)
R3 tmeevw; C:\Windows\System32\DRIVERS\tmeevw.sys [100640 2013-06-14] (Trend Micro Inc.)
R1 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [85424 2013-09-04] (Trend Micro Inc.)
R3 tmnciesc; C:\Windows\System32\DRIVERS\tmnciesc.sys [303392 2013-05-16] (Trend Micro Inc.)
R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [105744 2011-08-23] (Trend Micro Inc.)
S3 massfilter; system32\drivers\massfilter.sys [X]
S3 PCTINDIS5X64; \??\C:\windows\system32\PCTINDIS5X64.SYS [X]
U2 TMAgent;
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-07 09:11 - 2014-06-07 09:11 - 00000000 ____D () C:\Users\Pushba\Desktop\FRST-OlderVersion
2014-06-07 09:10 - 2014-06-07 09:10 - 00000781 _____ () C:\Users\Pushba\Desktop\JRT.txt
2014-06-07 09:04 - 2014-06-07 09:04 - 00000000 ____D () C:\windows\ERUNT
2014-06-07 08:54 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\windows\SysWOW64\sqlite3.dll
2014-06-07 08:53 - 2014-06-07 08:56 - 00000000 ____D () C:\AdwCleaner
2014-06-07 08:51 - 2014-06-07 08:52 - 01016261 _____ (Thisisu) C:\Users\Pushba\Desktop\JRT.exe
2014-06-07 08:51 - 2014-06-07 08:51 - 01333465 _____ () C:\Users\Pushba\Desktop\AdwCleaner.exe
2014-06-07 08:50 - 2014-06-07 08:50 - 00002151 _____ () C:\Users\Pushba\Desktop\malware instructions.txt
2014-06-06 22:24 - 2014-06-06 22:24 - 00001889 _____ () C:\Users\Pushba\Desktop\url redirect clarity plus.csv
2014-06-06 16:29 - 2014-06-06 16:29 - 00001839 _____ () C:\Users\Pushba\Downloads\www-claritypluscoaching-com_20140606T042902Z_CrawlErrors.csv
2014-06-06 14:06 - 2014-06-06 14:06 - 00035228 _____ () C:\Users\Pushba\Downloads\import-html-pages.2.4.zip
2014-06-06 12:50 - 2014-06-06 12:50 - 00005450 _____ () C:\Users\Pushba\Desktop\simple-301-redirects.1.06.zip
2014-06-05 23:09 - 2014-06-05 23:14 - 00004605 _____ () C:\Users\Pushba\Desktop\how to be a millionaaire by 30.txt
2014-06-05 16:19 - 2014-06-05 16:19 - 00006392 _____ () C:\Users\Pushba\AppData\Local\recently-used.xbel
2014-06-05 13:51 - 2014-06-05 13:51 - 00000000 ____D () C:\Users\Pushba\Documents\SalesLetterAndGraphics
2014-06-05 13:10 - 2014-06-05 13:10 - 00510233 _____ () C:\Users\Pushba\Downloads\genesis.2.0.2.zip
2014-06-05 13:10 - 2014-06-05 13:10 - 00269123 _____ () C:\Users\Pushba\Downloads\genesis-sample.zip
2014-06-05 08:49 - 2014-06-07 08:58 - 00003786 _____ () C:\windows\PFRO.log
2014-06-05 08:47 - 2014-06-05 08:47 - 04156051 _____ () C:\Users\Pushba\Downloads\tdsskiller.zip
2014-06-05 08:45 - 2014-06-05 08:45 - 00000000 ____D () C:\Users\Pushba\Desktop\tdsskiller
2014-06-05 08:43 - 2014-06-05 08:43 - 00054516 _____ () C:\Users\Pushba\Desktop\Addition.txt
2014-06-05 04:23 - 2014-06-07 09:12 - 00025684 _____ () C:\Users\Pushba\Desktop\FRST.txt
2014-06-04 17:39 - 2014-06-04 17:39 - 00000041 _____ () C:\Users\Pushba\Desktop\Booking reference.txt
2014-06-04 09:55 - 2014-06-04 09:55 - 00356070 _____ () C:\Users\Pushba\Downloads\dreamgrow-scroll-triggered-box.1.4.zip
2014-06-04 09:22 - 2014-06-07 09:12 - 00000000 ____D () C:\FRST
2014-06-04 09:08 - 2014-06-04 09:08 - 04155992 _____ () C:\Users\Pushba\Desktop\tdsskiller.zip
2014-06-04 09:07 - 2014-06-04 09:07 - 00000000 __SHD () C:\Users\Pushba\AppData\Local\EmieUserList
2014-06-04 09:07 - 2014-06-04 09:07 - 00000000 __SHD () C:\Users\Pushba\AppData\Local\EmieSiteList
2014-06-04 08:45 - 2014-06-07 09:11 - 02072576 _____ (Farbar) C:\Users\Pushba\Desktop\FRST64.exe
2014-06-04 08:44 - 2014-06-04 08:44 - 00001694 _____ () C:\Users\Pushba\Desktop\adams instructions.txt
2014-06-03 15:47 - 2014-06-03 15:47 - 00130329 _____ () C:\Users\Pushba\Downloads\chameleon-skin-unzip-me(2).zip
2014-06-03 15:45 - 2014-06-03 15:45 - 00130329 _____ () C:\Users\Pushba\Downloads\chameleon-skin-unzip-me(1).zip
2014-06-03 15:44 - 2014-06-03 15:44 - 00130329 _____ () C:\Users\Pushba\Downloads\chameleon-skin-unzip-me.zip
2014-06-03 12:05 - 2014-06-03 12:05 - 00002996 _____ () C:\windows\System32\Tasks\{BF2C7195-5C76-4D42-942E-73EF2CD50829}
2014-06-03 12:05 - 2014-06-03 12:05 - 00002996 _____ () C:\windows\System32\Tasks\{2C45AAC1-F2DE-40BA-A898-0915FC454AB9}
2014-06-03 12:05 - 2014-06-03 12:05 - 00002996 _____ () C:\windows\System32\Tasks\{161971A0-8413-4BC2-A060-A12FD47D9406}
2014-06-03 12:04 - 2014-06-03 12:04 - 00002996 _____ () C:\windows\System32\Tasks\{DDE9A2A8-D8AC-4473-8FFD-072D84EBE05B}
2014-06-03 12:02 - 2014-06-03 12:02 - 00001685 _____ () C:\Users\Pushba\Desktop\OUTLOOK.EXE - Shortcut.lnk
2014-06-03 08:55 - 2014-06-03 08:55 - 00009188 _____ () C:\Users\Pushba\Downloads\click-to-tweet-by-todaymade.1.2.zip
2014-06-02 11:16 - 2014-06-02 11:16 - 00027086 _____ () C:\Users\Pushba\Desktop\DDS.txt
2014-06-02 11:16 - 2014-06-02 11:16 - 00010326 _____ () C:\Users\Pushba\Desktop\Attach.txt
2014-06-02 11:13 - 2014-06-02 11:13 - 00812344 _____ (Trend Micro Inc.) C:\Users\Pushba\Downloads\HJTInstall.exe
2014-06-02 11:05 - 2014-06-02 11:07 - 00000288 _____ () C:\Users\Pushba\Desktop\Virus Removal.txt
2014-06-02 11:03 - 2014-06-02 11:04 - 00625664 _____ () C:\Users\Pushba\Downloads\dds.scr
2014-06-02 11:01 - 2014-06-02 11:01 - 00004143 _____ () C:\Users\Pushba\Desktop\otl instructions.txt
2014-06-02 10:58 - 2014-06-02 10:58 - 00602112 _____ (OldTimer Tools) C:\Users\Pushba\Downloads\OTL.exe
2014-06-01 15:51 - 2014-06-01 15:51 - 00008418 _____ () C:\Users\Pushba\Documents\malwarelog.xml
2014-06-01 15:21 - 2014-06-07 09:00 - 00122584 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-01 15:20 - 2014-06-01 15:20 - 00001109 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-01 15:20 - 2014-06-01 15:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-01 15:20 - 2014-06-01 15:20 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-01 15:20 - 2014-06-01 15:20 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-01 15:20 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2014-06-01 15:20 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2014-06-01 15:20 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2014-06-01 15:19 - 2014-06-01 15:19 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Pushba\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-01 14:22 - 2014-06-01 14:23 - 10722008 _____ (SoftOrbits ) C:\Users\Pushba\Downloads\WatermarkMaker-bdj-June2014.exe
2014-05-31 23:28 - 2014-05-31 23:32 - 00000000 ____D () C:\Users\Pushba\Desktop\miscellaneous
2014-05-31 13:49 - 2014-05-31 13:49 - 00002996 _____ () C:\windows\System32\Tasks\{745DFD8E-C040-439F-9C4F-CBC6AC320579}
2014-05-31 13:49 - 2014-05-31 13:49 - 00002996 _____ () C:\windows\System32\Tasks\{17F97FE8-06F8-4B29-B85A-2A02D9264679}
2014-05-31 13:44 - 2014-05-31 13:44 - 00002996 _____ () C:\windows\System32\Tasks\{BBA5780C-70A5-443C-A3B4-E715BEC28334}
2014-05-31 12:49 - 2014-05-31 12:49 - 00002996 _____ () C:\windows\System32\Tasks\{A59A0178-46A3-4884-8050-142471BBBA3A}
2014-05-31 12:49 - 2014-05-31 12:49 - 00002996 _____ () C:\windows\System32\Tasks\{8EF1AB86-E749-410E-BC8F-2874822A410A}
2014-05-31 10:22 - 2014-05-31 10:22 - 00000000 ____D () C:\MGADiagToolOutput
2014-05-31 10:21 - 2014-05-31 10:21 - 00000000 ____D () C:\ProgramData\Office Genuine Advantage
2014-05-31 10:17 - 2014-05-31 10:17 - 00002996 _____ () C:\windows\System32\Tasks\{E78DA232-1DFB-428F-88FD-DC6AB593D155}
2014-05-31 10:17 - 2014-05-31 10:17 - 00002996 _____ () C:\windows\System32\Tasks\{B88D11FE-F9AD-4FC9-BD99-4469EB63682B}
2014-05-31 10:17 - 2014-05-31 10:17 - 00002996 _____ () C:\windows\System32\Tasks\{1DEA7955-D0D9-43FA-B203-87A4FB306233}
2014-05-31 10:16 - 2014-05-31 10:16 - 00002996 _____ () C:\windows\System32\Tasks\{BBECBA46-9C35-41A2-B70F-8EFA7BA1A593}
2014-05-31 10:16 - 2014-05-31 10:16 - 00002996 _____ () C:\windows\System32\Tasks\{4646A760-95F6-459D-914A-2786D5326549}
2014-05-31 09:57 - 2014-05-31 09:57 - 00002996 _____ () C:\windows\System32\Tasks\{50D8578C-A951-47AC-9287-88F18F9C0FE2}
2014-05-31 09:56 - 2014-05-31 09:56 - 00002996 _____ () C:\windows\System32\Tasks\{C4F68DCA-FF49-4490-9B4C-4EB24B0F05DC}
2014-05-31 09:56 - 2014-05-31 09:56 - 00002996 _____ () C:\windows\System32\Tasks\{68A8EFA9-03B0-4156-ABCC-7E700EB25C71}
2014-05-31 09:55 - 2014-05-31 09:55 - 00002996 _____ () C:\windows\System32\Tasks\{CD2B2A19-05C2-4E5C-8251-CAFD0285E79C}
2014-05-31 09:54 - 2014-05-31 09:54 - 00002996 _____ () C:\windows\System32\Tasks\{8709841B-9DD6-4D75-876B-C4E1A261C33C}
2014-05-30 23:02 - 2014-05-30 23:02 - 00007926 _____ () C:\Users\Pushba\Documents\startup.txt
2014-05-30 18:52 - 2014-05-30 18:52 - 00002996 _____ () C:\windows\System32\Tasks\{FB71C1E9-16F4-4E5F-9918-50AED2D9381E}
2014-05-30 18:52 - 2014-05-30 18:52 - 00002996 _____ () C:\windows\System32\Tasks\{E8856E27-2D7D-4D87-BA10-1D6021646A70}
2014-05-30 18:52 - 2014-05-30 18:52 - 00002996 _____ () C:\windows\System32\Tasks\{7467AE43-9BEE-4982-A7C1-54A8D1FD36E9}
2014-05-30 09:38 - 2014-05-30 09:38 - 00000000 ____D () C:\windows\System32\Tasks\Leader Technologies
2014-05-30 09:37 - 2014-05-30 09:37 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\Leadertech
2014-05-29 15:39 - 2014-05-29 15:39 - 00624788 _____ () C:\Users\Pushba\Downloads\magic-action-box.2.13(2).zip
2014-05-29 11:46 - 2014-05-29 11:47 - 00112582 _____ () C:\Users\Pushba\Downloads\dynamik_classic.zip
2014-05-27 14:40 - 2014-05-27 14:40 - 00895505 _____ () C:\Users\Pushba\Downloads\CatalystBundle.zip
2014-05-27 14:40 - 2014-05-27 14:40 - 00021517 _____ () C:\Users\Pushba\Downloads\catalyst-transport-1.0.zip
2014-05-27 14:40 - 2014-05-27 14:40 - 00007006 _____ () C:\Users\Pushba\Downloads\dynamik_classic_skin.zip
2014-05-27 14:39 - 2014-05-27 14:40 - 00728947 _____ () C:\Users\Pushba\Downloads\dynamik-gen-1.5.zip
2014-05-25 12:32 - 2014-05-25 12:32 - 00993246 _____ () C:\Users\Pushba\Downloads\ajax-event-calendar.1.0.4.zip
2014-05-25 12:22 - 2014-05-25 12:22 - 01731892 _____ () C:\Users\Pushba\Downloads\wp-members-pro-1.6.1.zip
2014-05-23 13:29 - 2014-05-23 13:29 - 00211557 _____ () C:\Users\Pushba\Downloads\google-mp3-audio-player.zip
2014-05-22 22:53 - 2014-05-22 22:53 - 00183176 _____ () C:\Users\Pushba\Downloads\page-scroll-to-id.1.5.6.zip
2014-05-22 15:48 - 2014-05-22 15:49 - 00000000 ____D () C:\Users\Pushba\Desktop\dowsing
2014-05-22 09:28 - 2014-05-22 09:28 - 00001794 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-05-22 09:28 - 2014-05-22 09:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-22 09:27 - 2014-05-22 09:28 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-22 09:27 - 2014-05-22 09:28 - 00000000 ____D () C:\Program Files\iTunes
2014-05-22 09:27 - 2014-05-22 09:28 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-22 09:27 - 2014-05-22 09:27 - 00000000 ____D () C:\Program Files\iPod
2014-05-18 15:09 - 2014-05-18 15:10 - 00000124 _____ () C:\Users\Pushba\Documents\Hoodie order - colabel.co.nz.txt
2014-05-16 10:10 - 2014-06-07 08:59 - 00000448 _____ () C:\windows\setupact.log
2014-05-16 10:10 - 2014-05-16 10:10 - 00000000 _____ () C:\windows\setuperr.log
2014-05-16 09:53 - 2014-05-06 16:40 - 23544320 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-05-16 09:53 - 2014-05-06 16:17 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-05-16 09:53 - 2014-05-06 15:25 - 17382912 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-05-16 09:53 - 2014-05-06 15:07 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-05-16 09:53 - 2014-05-06 15:00 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-05-16 09:53 - 2014-05-06 14:10 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-05-15 09:12 - 2014-03-25 14:43 - 14175744 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2014-05-15 09:11 - 2014-05-09 18:14 - 00477184 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-05-15 09:11 - 2014-05-09 18:11 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-05-15 09:11 - 2014-04-12 14:22 - 00155072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-05-15 09:11 - 2014-04-12 14:22 - 00095680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2014-05-15 09:11 - 2014-04-12 14:19 - 01460736 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-05-15 09:11 - 2014-04-12 14:19 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2014-05-15 09:11 - 2014-04-12 14:19 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2014-05-15 09:11 - 2014-04-12 14:19 - 00029184 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2014-05-15 09:11 - 2014-04-12 14:19 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2014-05-15 09:11 - 2014-04-12 14:12 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2014-05-15 09:11 - 2014-04-12 14:10 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2014-05-15 09:11 - 2014-03-25 14:09 - 12874240 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2014-05-15 09:11 - 2014-03-04 21:47 - 05550016 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-05-15 09:11 - 2014-03-04 21:44 - 00728064 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-05-15 09:11 - 2014-03-04 21:44 - 00722944 _____ (Microsoft Corporation) C:\windows\system32\objsel.dll
2014-05-15 09:11 - 2014-03-04 21:44 - 00424960 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2014-05-15 09:11 - 2014-03-04 21:44 - 00340992 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-05-15 09:11 - 2014-03-04 21:44 - 00314880 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2014-05-15 09:11 - 2014-03-04 21:44 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2014-05-15 09:11 - 2014-03-04 21:44 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2014-05-15 09:11 - 2014-03-04 21:44 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\wincredprovider.dll
2014-05-15 09:11 - 2014-03-04 21:43 - 00455168 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2014-05-15 09:11 - 2014-03-04 21:43 - 00057344 _____ (Microsoft Corporation) C:\windows\system32\cngprovider.dll
2014-05-15 09:11 - 2014-03-04 21:43 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\adprovider.dll
2014-05-15 09:11 - 2014-03-04 21:43 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\capiprovider.dll
2014-05-15 09:11 - 2014-03-04 21:43 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\dpapiprovider.dll
2014-05-15 09:11 - 2014-03-04 21:43 - 00044544 _____ (Microsoft Corporation) C:\windows\system32\dimsroam.dll
2014-05-15 09:11 - 2014-03-04 21:43 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2014-05-15 09:11 - 2014-03-04 21:20 - 03969984 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2014-05-15 09:11 - 2014-03-04 21:20 - 03914176 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2014-05-15 09:11 - 2014-03-04 21:17 - 00550912 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00538112 _____ (Microsoft Corporation) C:\windows\SysWOW64\objsel.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00247808 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\cngprovider.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00049664 _____ (Microsoft Corporation) C:\windows\SysWOW64\adprovider.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00048128 _____ (Microsoft Corporation) C:\windows\SysWOW64\capiprovider.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpapiprovider.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00036864 _____ (Microsoft Corporation) C:\windows\SysWOW64\dimsroam.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wincredprovider.dll
2014-05-15 09:11 - 2014-03-04 21:17 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2014-05-15 09:11 - 2014-03-04 21:16 - 00274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2014-05-11 17:24 - 2014-05-11 17:24 - 01203733 _____ () C:\Users\Pushba\Downloads\wp4fb(1).zip
2014-05-11 17:24 - 2014-05-11 17:24 - 00000635 _____ () C:\Users\Pushba\Downloads\license-personal.txt
2014-05-11 16:07 - 2014-05-11 16:07 - 00952645 _____ () C:\Users\Pushba\Downloads\wp-spam-renegade_v2.5.zip
2014-05-11 15:35 - 2014-05-11 15:35 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\VideoMakerFX
2014-05-10 10:24 - 2014-05-28 14:22 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-10 10:24 - 2014-05-10 10:24 - 00002774 _____ () C:\windows\System32\Tasks\CCleanerSkipUAC
2014-05-10 10:24 - 2014-05-10 10:24 - 00000833 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-05-10 06:55 - 2014-05-10 06:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-10 06:24 - 2014-05-10 06:24 - 00066193 _____ () C:\Users\Pushba\Downloads\covertsocialbuzz(1).zip
2014-05-10 06:22 - 2014-05-10 06:22 - 00000000 ____D () C:\Users\Pushba\Downloads\WP4M_WPListIt_v1.5(1)
2014-05-10 06:20 - 2014-05-10 06:20 - 00048348 _____ () C:\Users\Pushba\Downloads\WP4M_WPListIt_v1.5(1).zip
2014-05-10 06:18 - 2014-05-10 06:18 - 03961083 _____ () C:\Users\Pushba\Downloads\wpsimplevideo.zip
2014-05-10 06:08 - 2014-05-10 06:08 - 00000996 _____ () C:\Users\Public\Desktop\VideoMakerFX.lnk
2014-05-10 06:07 - 2014-05-10 06:08 - 00000000 ____D () C:\ProgramData\regid.1995-09.com.example
2014-05-10 06:07 - 2014-05-10 06:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoMakerFX
2014-05-10 06:07 - 2014-05-10 06:08 - 00000000 ____D () C:\Program Files (x86)\VideoMakerFX
2014-05-10 06:06 - 2014-05-10 06:06 - 00000000 ____D () C:\Users\Pushba\Desktop\VideoMakerFXWindows
2014-05-10 05:51 - 2014-05-10 05:52 - 01052604 _____ () C:\Users\Pushba\Downloads\InstaBannerAIR_ new build March-16-2014(2).air
2014-05-10 05:49 - 2014-05-10 05:49 - 01052604 _____ () C:\Users\Pushba\Desktop\InstaBannerAIR_ new build March-16-2014(1).air
2014-05-10 05:48 - 2014-05-10 05:48 - 01052604 _____ () C:\Users\Pushba\Downloads\InstaBannerAIR_ new build March-16-2014.air
2014-05-10 05:42 - 2014-05-10 05:42 - 04931410 _____ () C:\Users\Pushba\Downloads\vidwordsbonus.zip
2014-05-10 05:41 - 2014-05-10 05:41 - 00000000 ____D () C:\Users\Pushba\Desktop\tubetagextractor
2014-05-10 05:34 - 2014-05-10 05:34 - 00000000 ____D () C:\Users\Pushba\AppData\Local\Tube Tag Extractor
2014-05-10 05:33 - 2014-05-10 05:33 - 06762996 _____ () C:\Users\Pushba\Desktop\tubetagextractor.zip
2014-05-10 05:11 - 2014-05-10 05:19 - 129712046 _____ () C:\Users\Pushba\Desktop\VideoMakerFXWindows.zip
2014-05-08 08:52 - 2014-05-16 10:08 - 00000000 ___SD () C:\windows\system32\CompatTel

==================== One Month Modified Files and Folders =======

2014-06-07 09:12 - 2014-06-05 04:23 - 00025684 _____ () C:\Users\Pushba\Desktop\FRST.txt
2014-06-07 09:12 - 2014-06-04 09:22 - 00000000 ____D () C:\FRST
2014-06-07 09:12 - 2011-12-07 19:28 - 00000000 ____D () C:\Users\Pushba\AppData\Local\Temp
2014-06-07 09:11 - 2014-06-07 09:11 - 00000000 ____D () C:\Users\Pushba\Desktop\FRST-OlderVersion
2014-06-07 09:11 - 2014-06-04 08:45 - 02072576 _____ (Farbar) C:\Users\Pushba\Desktop\FRST64.exe
2014-06-07 09:10 - 2014-06-07 09:10 - 00000781 _____ () C:\Users\Pushba\Desktop\JRT.txt
2014-06-07 09:07 - 2009-07-14 16:45 - 00025120 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-07 09:07 - 2009-07-14 16:45 - 00025120 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-07 09:04 - 2014-06-07 09:04 - 00000000 ____D () C:\windows\ERUNT
2014-06-07 09:03 - 2011-12-07 17:09 - 01140974 _____ () C:\windows\WindowsUpdate.log
2014-06-07 09:02 - 2013-07-17 11:04 - 00000912 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-267806774-3125823315-51418320-1000UA.job
2014-06-07 09:00 - 2014-06-01 15:21 - 00122584 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-07 09:00 - 2012-08-20 10:07 - 00000894 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-07 08:59 - 2014-05-16 10:10 - 00000448 _____ () C:\windows\setupact.log
2014-06-07 08:59 - 2011-12-07 17:15 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-06-07 08:59 - 2009-07-14 17:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-06-07 08:58 - 2014-06-05 08:49 - 00003786 _____ () C:\windows\PFRO.log
2014-06-07 08:56 - 2014-06-07 08:53 - 00000000 ____D () C:\AdwCleaner
2014-06-07 08:52 - 2014-06-07 08:51 - 01016261 _____ (Thisisu) C:\Users\Pushba\Desktop\JRT.exe
2014-06-07 08:51 - 2014-06-07 08:51 - 01333465 _____ () C:\Users\Pushba\Desktop\AdwCleaner.exe
2014-06-07 08:50 - 2014-06-07 08:50 - 00002151 _____ () C:\Users\Pushba\Desktop\malware instructions.txt
2014-06-07 08:44 - 2012-08-20 10:07 - 00000898 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-07 08:34 - 2014-02-27 08:46 - 00000568 _____ () C:\windows\Tasks\G2MUpdateTask-S-1-5-21-267806774-3125823315-51418320-1000.job
2014-06-07 08:34 - 2013-12-29 16:06 - 00000830 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-06-06 22:24 - 2014-06-06 22:24 - 00001889 _____ () C:\Users\Pushba\Desktop\url redirect clarity plus.csv
2014-06-06 16:29 - 2014-06-06 16:29 - 00001839 _____ () C:\Users\Pushba\Downloads\www-claritypluscoaching-com_20140606T042902Z_CrawlErrors.csv
2014-06-06 15:00 - 2013-08-22 17:32 - 00000000 ____D () C:\Users\Pushba\Documents\LeadFinder
2014-06-06 14:06 - 2014-06-06 14:06 - 00035228 _____ () C:\Users\Pushba\Downloads\import-html-pages.2.4.zip
2014-06-06 12:50 - 2014-06-06 12:50 - 00005450 _____ () C:\Users\Pushba\Desktop\simple-301-redirects.1.06.zip
2014-06-06 11:49 - 2012-01-19 09:43 - 02275328 ___SH () C:\Users\Pushba\Documents\Thumbs.db
2014-06-06 10:02 - 2013-07-17 11:04 - 00000860 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-267806774-3125823315-51418320-1000Core.job
2014-06-06 08:52 - 2009-07-14 15:20 - 00000000 ____D () C:\windows\system32\NDF
2014-06-05 23:14 - 2014-06-05 23:09 - 00004605 _____ () C:\Users\Pushba\Desktop\how to be a millionaaire by 30.txt
2014-06-05 22:33 - 2013-10-09 09:28 - 00000000 ____D () C:\Users\Pushba\.gimp-2.8
2014-06-05 16:19 - 2014-06-05 16:19 - 00006392 _____ () C:\Users\Pushba\AppData\Local\recently-used.xbel
2014-06-05 15:00 - 2014-03-09 08:48 - 00000000 ____D () C:\Users\Pushba\Desktop\miniture gardens
2014-06-05 13:51 - 2014-06-05 13:51 - 00000000 ____D () C:\Users\Pushba\Documents\SalesLetterAndGraphics
2014-06-05 13:50 - 2013-10-13 13:32 - 00000000 ____D () C:\Users\Pushba\.gimp-2.6
2014-06-05 13:10 - 2014-06-05 13:10 - 00510233 _____ () C:\Users\Pushba\Downloads\genesis.2.0.2.zip
2014-06-05 13:10 - 2014-06-05 13:10 - 00269123 _____ () C:\Users\Pushba\Downloads\genesis-sample.zip
2014-06-05 08:49 - 2012-10-19 07:43 - 00000000 ____D () C:\windows\Minidump
2014-06-05 08:48 - 2013-08-22 13:49 - 00000000 ___RD () C:\Users\Pushba\Dropbox
2014-06-05 08:47 - 2014-06-05 08:47 - 04156051 _____ () C:\Users\Pushba\Downloads\tdsskiller.zip
2014-06-05 08:45 - 2014-06-05 08:45 - 00000000 ____D () C:\Users\Pushba\Desktop\tdsskiller
2014-06-05 08:43 - 2014-06-05 08:43 - 00054516 _____ () C:\Users\Pushba\Desktop\Addition.txt
2014-06-04 17:39 - 2014-06-04 17:39 - 00000041 _____ () C:\Users\Pushba\Desktop\Booking reference.txt
2014-06-04 09:55 - 2014-06-04 09:55 - 00356070 _____ () C:\Users\Pushba\Downloads\dreamgrow-scroll-triggered-box.1.4.zip
2014-06-04 09:08 - 2014-06-04 09:08 - 04155992 _____ () C:\Users\Pushba\Desktop\tdsskiller.zip
2014-06-04 09:07 - 2014-06-04 09:07 - 00000000 __SHD () C:\Users\Pushba\AppData\Local\EmieUserList
2014-06-04 09:07 - 2014-06-04 09:07 - 00000000 __SHD () C:\Users\Pushba\AppData\Local\EmieSiteList
2014-06-04 08:44 - 2014-06-04 08:44 - 00001694 _____ () C:\Users\Pushba\Desktop\adams instructions.txt
2014-06-03 15:47 - 2014-06-03 15:47 - 00130329 _____ () C:\Users\Pushba\Downloads\chameleon-skin-unzip-me(2).zip
2014-06-03 15:45 - 2014-06-03 15:45 - 00130329 _____ () C:\Users\Pushba\Downloads\chameleon-skin-unzip-me(1).zip
2014-06-03 15:44 - 2014-06-03 15:44 - 00130329 _____ () C:\Users\Pushba\Downloads\chameleon-skin-unzip-me.zip
2014-06-03 12:05 - 2014-06-03 12:05 - 00002996 _____ () C:\windows\System32\Tasks\{BF2C7195-5C76-4D42-942E-73EF2CD50829}
2014-06-03 12:05 - 2014-06-03 12:05 - 00002996 _____ () C:\windows\System32\Tasks\{2C45AAC1-F2DE-40BA-A898-0915FC454AB9}
2014-06-03 12:05 - 2014-06-03 12:05 - 00002996 _____ () C:\windows\System32\Tasks\{161971A0-8413-4BC2-A060-A12FD47D9406}
2014-06-03 12:04 - 2014-06-03 12:04 - 00002996 _____ () C:\windows\System32\Tasks\{DDE9A2A8-D8AC-4473-8FFD-072D84EBE05B}
2014-06-03 12:02 - 2014-06-03 12:02 - 00001685 _____ () C:\Users\Pushba\Desktop\OUTLOOK.EXE - Shortcut.lnk
2014-06-03 08:55 - 2014-06-03 08:55 - 00009188 _____ () C:\Users\Pushba\Downloads\click-to-tweet-by-todaymade.1.2.zip
2014-06-02 11:16 - 2014-06-02 11:16 - 00027086 _____ () C:\Users\Pushba\Desktop\DDS.txt
2014-06-02 11:16 - 2014-06-02 11:16 - 00010326 _____ () C:\Users\Pushba\Desktop\Attach.txt
2014-06-02 11:13 - 2014-06-02 11:13 - 00812344 _____ (Trend Micro Inc.) C:\Users\Pushba\Downloads\HJTInstall.exe
2014-06-02 11:07 - 2014-06-02 11:05 - 00000288 _____ () C:\Users\Pushba\Desktop\Virus Removal.txt
2014-06-02 11:04 - 2014-06-02 11:03 - 00625664 _____ () C:\Users\Pushba\Downloads\dds.scr
2014-06-02 11:01 - 2014-06-02 11:01 - 00004143 _____ () C:\Users\Pushba\Desktop\otl instructions.txt
2014-06-02 10:58 - 2014-06-02 10:58 - 00602112 _____ (OldTimer Tools) C:\Users\Pushba\Downloads\OTL.exe
2014-06-01 16:31 - 2012-03-05 08:22 - 00000000 ____D () C:\Users\Pushba\Documents\##Website Resources DESIGN
2014-06-01 15:51 - 2014-06-01 15:51 - 00008418 _____ () C:\Users\Pushba\Documents\malwarelog.xml
2014-06-01 15:20 - 2014-06-01 15:20 - 00001109 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-01 15:20 - 2014-06-01 15:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-01 15:20 - 2014-06-01 15:20 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-01 15:20 - 2014-06-01 15:20 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-01 15:19 - 2014-06-01 15:19 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Pushba\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-01 14:54 - 2014-03-21 11:16 - 00000000 ____D () C:\Users\Pushba\AppData\Local\Amazon
2014-06-01 14:54 - 2011-12-07 17:50 - 00000000 ____D () C:\Program Files (x86)\Amazon
2014-06-01 14:23 - 2014-06-01 14:22 - 10722008 _____ (SoftOrbits ) C:\Users\Pushba\Downloads\WatermarkMaker-bdj-June2014.exe
2014-05-31 23:32 - 2014-05-31 23:28 - 00000000 ____D () C:\Users\Pushba\Desktop\miscellaneous
2014-05-31 23:32 - 2014-04-09 09:10 - 00000000 ____D () C:\Users\Pushba\Desktop\comp Roy
2014-05-31 23:32 - 2014-03-18 11:37 - 00000000 ____D () C:\Users\Pushba\Desktop\compress pics
2014-05-31 23:31 - 2013-08-21 09:07 - 00000000 ____D () C:\Users\Pushba\Documents\Genesis Related
2014-05-31 15:45 - 2011-12-10 09:23 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\KeePass
2014-05-31 15:37 - 2012-12-07 08:11 - 00000000 ____D () C:\Users\Pushba\Documents\BUSINESS MARKETING&SALES
2014-05-31 15:37 - 2012-10-18 16:30 - 00000000 ____D () C:\Users\Pushba\Documents\DESKTOP 18-10
2014-05-31 15:37 - 2012-06-07 14:33 - 00000000 ____D () C:\Users\Pushba\Documents\Silva Ultramind MASTER FOLDER
2014-05-31 15:37 - 2012-01-25 10:48 - 00000000 ____D () C:\Users\Pushba\Documents\Hypnotherapy Collated
2014-05-31 15:37 - 2011-12-16 23:01 - 00000000 ____D () C:\Users\Pushba\Documents\#Courses To Study
2014-05-31 15:11 - 2014-03-21 11:17 - 00000000 ____D () C:\Users\Pushba\Documents\My Kindle Content
2014-05-31 13:49 - 2014-05-31 13:49 - 00002996 _____ () C:\windows\System32\Tasks\{745DFD8E-C040-439F-9C4F-CBC6AC320579}
2014-05-31 13:49 - 2014-05-31 13:49 - 00002996 _____ () C:\windows\System32\Tasks\{17F97FE8-06F8-4B29-B85A-2A02D9264679}
2014-05-31 13:44 - 2014-05-31 13:44 - 00002996 _____ () C:\windows\System32\Tasks\{BBA5780C-70A5-443C-A3B4-E715BEC28334}
2014-05-31 12:49 - 2014-05-31 12:49 - 00002996 _____ () C:\windows\System32\Tasks\{A59A0178-46A3-4884-8050-142471BBBA3A}
2014-05-31 12:49 - 2014-05-31 12:49 - 00002996 _____ () C:\windows\System32\Tasks\{8EF1AB86-E749-410E-BC8F-2874822A410A}
2014-05-31 10:22 - 2014-05-31 10:22 - 00000000 ____D () C:\MGADiagToolOutput
2014-05-31 10:21 - 2014-05-31 10:21 - 00000000 ____D () C:\ProgramData\Office Genuine Advantage
2014-05-31 10:17 - 2014-05-31 10:17 - 00002996 _____ () C:\windows\System32\Tasks\{E78DA232-1DFB-428F-88FD-DC6AB593D155}
2014-05-31 10:17 - 2014-05-31 10:17 - 00002996 _____ () C:\windows\System32\Tasks\{B88D11FE-F9AD-4FC9-BD99-4469EB63682B}
2014-05-31 10:17 - 2014-05-31 10:17 - 00002996 _____ () C:\windows\System32\Tasks\{1DEA7955-D0D9-43FA-B203-87A4FB306233}
2014-05-31 10:16 - 2014-05-31 10:16 - 00002996 _____ () C:\windows\System32\Tasks\{BBECBA46-9C35-41A2-B70F-8EFA7BA1A593}
2014-05-31 10:16 - 2014-05-31 10:16 - 00002996 _____ () C:\windows\System32\Tasks\{4646A760-95F6-459D-914A-2786D5326549}
2014-05-31 09:57 - 2014-05-31 09:57 - 00002996 _____ () C:\windows\System32\Tasks\{50D8578C-A951-47AC-9287-88F18F9C0FE2}
2014-05-31 09:56 - 2014-05-31 09:56 - 00002996 _____ () C:\windows\System32\Tasks\{C4F68DCA-FF49-4490-9B4C-4EB24B0F05DC}
2014-05-31 09:56 - 2014-05-31 09:56 - 00002996 _____ () C:\windows\System32\Tasks\{68A8EFA9-03B0-4156-ABCC-7E700EB25C71}
2014-05-31 09:55 - 2014-05-31 09:55 - 00002996 _____ () C:\windows\System32\Tasks\{CD2B2A19-05C2-4E5C-8251-CAFD0285E79C}
2014-05-31 09:54 - 2014-05-31 09:54 - 00002996 _____ () C:\windows\System32\Tasks\{8709841B-9DD6-4D75-876B-C4E1A261C33C}
2014-05-30 23:37 - 2011-12-10 09:26 - 00046366 _____ () C:\Users\Pushba\Documents\Pushpa.kdbx
2014-05-30 23:02 - 2014-05-30 23:02 - 00007926 _____ () C:\Users\Pushba\Documents\startup.txt
2014-05-30 18:52 - 2014-05-30 18:52 - 00002996 _____ () C:\windows\System32\Tasks\{FB71C1E9-16F4-4E5F-9918-50AED2D9381E}
2014-05-30 18:52 - 2014-05-30 18:52 - 00002996 _____ () C:\windows\System32\Tasks\{E8856E27-2D7D-4D87-BA10-1D6021646A70}
2014-05-30 18:52 - 2014-05-30 18:52 - 00002996 _____ () C:\windows\System32\Tasks\{7467AE43-9BEE-4982-A7C1-54A8D1FD36E9}
2014-05-30 18:40 - 2012-05-17 15:25 - 00129024 ___SH () C:\Users\Pushba\Thumbs.db
2014-05-30 18:01 - 2011-12-07 19:31 - 00000000 ___RD () C:\Users\Pushba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-30 17:39 - 2013-08-13 15:49 - 00000000 ____D () C:\ProgramData\TEMP
2014-05-30 09:38 - 2014-05-30 09:38 - 00000000 ____D () C:\windows\System32\Tasks\Leader Technologies
2014-05-30 09:37 - 2014-05-30 09:37 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\Leadertech
2014-05-30 09:32 - 2014-05-05 08:50 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\DropboxMaster
2014-05-30 09:32 - 2013-08-22 13:46 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\Dropbox
2014-05-29 15:39 - 2014-05-29 15:39 - 00624788 _____ () C:\Users\Pushba\Downloads\magic-action-box.2.13(2).zip
2014-05-29 11:47 - 2014-05-29 11:46 - 00112582 _____ () C:\Users\Pushba\Downloads\dynamik_classic.zip
2014-05-28 14:22 - 2014-05-10 10:24 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-28 12:48 - 2013-08-22 13:46 - 00001036 _____ () C:\Users\Pushba\Desktop\Dropbox.lnk
2014-05-28 12:48 - 2013-08-22 13:46 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-05-27 15:06 - 2011-12-08 15:35 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\Skype
2014-05-27 14:40 - 2014-05-27 14:40 - 00895505 _____ () C:\Users\Pushba\Downloads\CatalystBundle.zip
2014-05-27 14:40 - 2014-05-27 14:40 - 00021517 _____ () C:\Users\Pushba\Downloads\catalyst-transport-1.0.zip
2014-05-27 14:40 - 2014-05-27 14:40 - 00007006 _____ () C:\Users\Pushba\Downloads\dynamik_classic_skin.zip
2014-05-27 14:40 - 2014-05-27 14:39 - 00728947 _____ () C:\Users\Pushba\Downloads\dynamik-gen-1.5.zip
2014-05-25 12:32 - 2014-05-25 12:32 - 00993246 _____ () C:\Users\Pushba\Downloads\ajax-event-calendar.1.0.4.zip
2014-05-25 12:22 - 2014-05-25 12:22 - 01731892 _____ () C:\Users\Pushba\Downloads\wp-members-pro-1.6.1.zip
2014-05-24 12:45 - 2013-05-03 07:58 - 00002194 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-05-23 16:22 - 2013-11-04 21:03 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-23 13:29 - 2014-05-23 13:29 - 00211557 _____ () C:\Users\Pushba\Downloads\google-mp3-audio-player.zip
2014-05-22 22:53 - 2014-05-22 22:53 - 00183176 _____ () C:\Users\Pushba\Downloads\page-scroll-to-id.1.5.6.zip
2014-05-22 15:49 - 2014-05-22 15:48 - 00000000 ____D () C:\Users\Pushba\Desktop\dowsing
2014-05-22 15:43 - 2011-12-07 19:45 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\Mozilla
2014-05-22 09:28 - 2014-05-22 09:28 - 00001794 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-05-22 09:28 - 2014-05-22 09:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-22 09:28 - 2014-05-22 09:27 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-22 09:28 - 2014-05-22 09:27 - 00000000 ____D () C:\Program Files\iTunes
2014-05-22 09:28 - 2014-05-22 09:27 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-22 09:27 - 2014-05-22 09:27 - 00000000 ____D () C:\Program Files\iPod
2014-05-20 12:01 - 2009-07-14 15:20 - 00000000 ____D () C:\windows\rescache
2014-05-18 15:10 - 2014-05-18 15:09 - 00000124 _____ () C:\Users\Pushba\Documents\Hoodie order - colabel.co.nz.txt
2014-05-18 13:50 - 2014-02-27 08:46 - 00003604 _____ () C:\windows\System32\Tasks\G2MUpdateTask-S-1-5-21-267806774-3125823315-51418320-1000
2014-05-16 10:13 - 2011-12-07 19:31 - 00000000 ___RD () C:\Users\Pushba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-16 10:10 - 2014-05-16 10:10 - 00000000 _____ () C:\windows\setuperr.log
2014-05-16 10:08 - 2014-05-08 08:52 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-05-16 09:58 - 2012-08-20 10:07 - 00000000 ____D () C:\Program Files (x86)\Google
2014-05-16 09:53 - 2011-12-08 16:00 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-16 09:51 - 2013-07-17 11:26 - 00000000 ____D () C:\windows\system32\MRT
2014-05-16 09:49 - 2011-12-07 19:55 - 93223848 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-05-14 14:14 - 2013-12-29 16:06 - 00692400 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2014-05-14 14:14 - 2013-12-29 16:06 - 00070832 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-14 14:14 - 2013-12-29 16:06 - 00003768 _____ () C:\windows\System32\Tasks\Adobe Flash Player Updater
2014-05-13 06:15 - 2014-01-05 14:29 - 00000258 __RSH () C:\ProgramData\ntuser.pol
2014-05-12 07:26 - 2014-06-01 15:20 - 00091352 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2014-05-12 07:26 - 2014-06-01 15:20 - 00063704 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2014-06-01 15:20 - 00025816 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2014-05-11 17:24 - 2014-05-11 17:24 - 01203733 _____ () C:\Users\Pushba\Downloads\wp4fb(1).zip
2014-05-11 17:24 - 2014-05-11 17:24 - 00000635 _____ () C:\Users\Pushba\Downloads\license-personal.txt
2014-05-11 16:53 - 2011-12-08 16:01 - 00000000 ____D () C:\Users\Pushba\AppData\Local\Microsoft Help
2014-05-11 16:45 - 2012-05-04 14:25 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-11 16:07 - 2014-05-11 16:07 - 00952645 _____ () C:\Users\Pushba\Downloads\wp-spam-renegade_v2.5.zip
2014-05-11 16:02 - 2012-06-06 10:28 - 00000000 ____D () C:\Users\Pushba\AppData\Local\Deployment
2014-05-11 15:35 - 2014-05-11 15:35 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\VideoMakerFX
2014-05-10 10:41 - 2011-12-17 07:20 - 00000000 ____D () C:\Users\Pushba\AppData\Roaming\FileZilla
2014-05-10 10:40 - 2011-12-12 19:38 - 00000000 ____D () C:\Users\Pushba\AppData\Local\CrashDumps
2014-05-10 10:40 - 2011-04-09 15:22 - 00000000 ____D () C:\windows\Panther
2014-05-10 10:24 - 2014-05-10 10:24 - 00002774 _____ () C:\windows\System32\Tasks\CCleanerSkipUAC
2014-05-10 10:24 - 2014-05-10 10:24 - 00000833 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-05-10 09:57 - 2013-07-17 11:04 - 00003888 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-267806774-3125823315-51418320-1000UA
2014-05-10 09:57 - 2013-07-17 11:04 - 00003492 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-267806774-3125823315-51418320-1000Core
2014-05-10 06:55 - 2014-05-10 06:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-10 06:24 - 2014-05-10 06:24 - 00066193 _____ () C:\Users\Pushba\Downloads\covertsocialbuzz(1).zip
2014-05-10 06:22 - 2014-05-10 06:22 - 00000000 ____D () C:\Users\Pushba\Downloads\WP4M_WPListIt_v1.5(1)
2014-05-10 06:20 - 2014-05-10 06:20 - 00048348 _____ () C:\Users\Pushba\Downloads\WP4M_WPListIt_v1.5(1).zip
2014-05-10 06:18 - 2014-05-10 06:18 - 03961083 _____ () C:\Users\Pushba\Downloads\wpsimplevideo.zip
2014-05-10 06:08 - 2014-05-10 06:08 - 00000996 _____ () C:\Users\Public\Desktop\VideoMakerFX.lnk
2014-05-10 06:08 - 2014-05-10 06:07 - 00000000 ____D () C:\ProgramData\regid.1995-09.com.example
2014-05-10 06:08 - 2014-05-10 06:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoMakerFX
2014-05-10 06:08 - 2014-05-10 06:07 - 00000000 ____D () C:\Program Files (x86)\VideoMakerFX
2014-05-10 06:06 - 2014-05-10 06:06 - 00000000 ____D () C:\Users\Pushba\Desktop\VideoMakerFXWindows
2014-05-10 05:52 - 2014-05-10 05:51 - 01052604 _____ () C:\Users\Pushba\Downloads\InstaBannerAIR_ new build March-16-2014(2).air
2014-05-10 05:49 - 2014-05-10 05:49 - 01052604 _____ () C:\Users\Pushba\Desktop\InstaBannerAIR_ new build March-16-2014(1).air
2014-05-10 05:48 - 2014-05-10 05:48 - 01052604 _____ () C:\Users\Pushba\Downloads\InstaBannerAIR_ new build March-16-2014.air
2014-05-10 05:42 - 2014-05-10 05:42 - 04931410 _____ () C:\Users\Pushba\Downloads\vidwordsbonus.zip
2014-05-10 05:41 - 2014-05-10 05:41 - 00000000 ____D () C:\Users\Pushba\Desktop\tubetagextractor
2014-05-10 05:34 - 2014-05-10 05:34 - 00000000 ____D () C:\Users\Pushba\AppData\Local\Tube Tag Extractor
2014-05-10 05:33 - 2014-05-10 05:33 - 06762996 _____ () C:\Users\Pushba\Desktop\tubetagextractor.zip
2014-05-10 05:19 - 2014-05-10 05:11 - 129712046 _____ () C:\Users\Pushba\Desktop\VideoMakerFXWindows.zip
2014-05-09 18:14 - 2014-05-15 09:11 - 00477184 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-05-09 18:11 - 2014-05-15 09:11 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll

Files to move or delete:
====================
C:\Users\Pushba\jagex_cl_runescape_LIVE.dat
C:\Users\Pushba\random.dat


Some content of TEMP:
====================
C:\Users\Pushba\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmps2kgmd.dll
C:\Users\Pushba\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-20 12:00

==================== End Of Log ============================



#13 sunnynap

sunnynap

    New Member

  • Authentic Member
  • Pip
  • 16 posts

Posted 06 June 2014 - 03:41 PM

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-06-2014
Ran by Pushba at 2014-06-07 09:12:45
Running from C:\Users\Pushba\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Trend Micro Titanium Maximum Security (Disabled - Up to date) {5D349EF8-873B-C657-917F-F1D93E101A7C}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Trend Micro Titanium Maximum Security (Disabled - Up to date) {E6557F1C-A101-C9D9-ABCF-CAAB459750C1}

==================== Installed Programs ======================

 Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{91120000-001A-0000-0000-0000000FF1CE}_OUTLOOKR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
 Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 13.0.0.83 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 13.0.0.83 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Amazon Kindle (HKCU\...\Amazon Kindle) (Version:  - Amazon)
Ant Pugilist (HKLM-x32\...\{43D32AA1-711F-4864-9D1C-10F04925939E}) (Version: 4.5.5 - Antification)
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Bluetooth Filter Driver Package (HKLM\...\{65486209-5C54-439C-8383-8AC9BBE25932}) (Version: 1.00.007 - Atheros Communications)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.36 - Atheros Communications Inc.)
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 9.2 - Atheros)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Backlink Cloner - 1  (HKCU\...\5c5e826202f580b7) (Version: 1.0.0.53 - Underground Masterminds)
Backlink Cloner (HKLM-x32\...\{9A6E4B2C-71A6-400A-ADFA-6A8215420E0E}) (Version: 1.0.0 - Default Company Name)
Bejeweled 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden
Bluetooth Stack for Windows by Toshiba (HKLM\...\{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}) (Version: v8.00.04(T) - TOSHIBA CORPORATION)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brother BRAdmin Light 1.24.0000 (HKLM-x32\...\{DB75941E-30C4-4D97-B000-D17C764B998C}) (Version: 1.24.0000 - Brother)
Caesium version 1.6.1 (HKLM-x32\...\{88B0F0DE-6937-440D-B5CA-6E69003E55F7}_is1) (Version: 1.6.1 - Matteo Paonessa)
CCleaner (HKLM\...\CCleaner) (Version: 4.13 - Piriform)
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Citrix Online Launcher (HKLM-x32\...\{AC7E7905-8C59-4806-A96D-30936A2B1FC5}) (Version: 1.0.168 - Citrix)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.51.1.0 - Conexant)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dragon NaturallySpeaking 12 (HKLM-x32\...\{D5D422B9-6976-4E98-8DDF-9632CB515D7E}) (Version: 12.50.000 - Nuance Communications Inc.)
Dropbox (HKCU\...\Dropbox) (Version: 2.8.2 - Dropbox, Inc.)
Duplicate Cleaner 2.0.6 (HKLM-x32\...\Duplicate Cleaner) (Version: 2.0.6 - DigitalVolcano)
eCover Software Pro (HKLM-x32\...\{83E55279-CE70-407F-B34D-EAE0D9C6372B}_is1) (Version:  - )
FileZilla Client 3.7.4.1 (HKLM-x32\...\FileZilla Client) (Version: 3.7.4.1 - Tim Kosse)
Free WMA to MP3 Converter 1.16 (HKLM-x32\...\Free WMA to MP3 Converter_is1) (Version:  - Jodix Technologies Ltd.)
FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 0.9.0 - )
GIMP 2.8.6 (HKLM\...\GIMP-2_is1) (Version: 2.8.6 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.114 - Google Inc.)
Google Chrome Canary (HKCU\...\Google Chrome SxS) (Version: 37.0.2032.0 - Google Inc.)
Google Drive (HKLM-x32\...\{418BAAD1-754D-48B4-B078-46EF4F25AF42}) (Version: 1.15.6556.8063 - Google, Inc.)
Google Talk Plugin (HKLM-x32\...\{217CEB43-6D22-3E1F-A311-DC0D7BFEE0A2}) (Version: 5.4.1.18709 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
GoToMeeting 6.3.0.1415 (HKCU\...\GoToMeeting) (Version: 6.3.0.1415 - CitrixOnline)
Hot Lead Finder v3.0 (HKLM-x32\...\HotProspector) (Version: 3.0.0 - UNKNOWN)
Hot Lead Finder v3.0 (x32 Version: 3.0.0 - UNKNOWN) Hidden
HP Officejet 6500 E710n-z Basic Device Software (HKLM\...\{ADDF4B84-5D28-4EAE-8511-EF808C8BC81C}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
HP Officejet 6500 E710n-z Help (HKLM-x32\...\{130E5108-547F-4482-91EE-F45C784E08C7}) (Version: 140.0.2.2 - Hewlett Packard)
HP Officejet 6500 E710n-z Product Improvement Study (HKLM\...\{D5510D28-D0E4-433E-A0F3-EE3FCECA60D2}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}) (Version: 5.002.006.003 - Hewlett-Packard)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Instant Content Curator Pro (HKLM-x32\...\com.webdimensions.instant-content-curator-pro) (Version: 1.18 - Web Dimensions, Inc.)
Instant Content Curator Pro (x32 Version: 1.18 - Web Dimensions, Inc.) Hidden
Instant Eyedropper 1.75 (HKLM-x32\...\Instant Eyedropper_is1) (Version:  - )
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.2.1004 - Intel Corporation)
iTunes (HKLM\...\{1CF5754A-545B-4360-BFDE-2847BC728DFC}) (Version: 11.2.0.115 - Apple Inc.)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
KeePass Password Safe 2.17 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version:  - Dominik Reichl)
LastPass (uninstall only) (HKLM-x32\...\LastPass) (Version:  - LastPass)
Lead Finder Jack (HKLM-x32\...\{1E42CB5A-56D9-4616-B1DA-AA6C9FE0E63D}) (Version: 1.2.4 - GuideTrade LLC)
Localizer Leads Tool (HKLM-x32\...\LocalizerLeadsTool) (Version: 3.5.5 - Viper Consulting, LLC)
Localizer Leads Tool (x32 Version: 3.5.5 - Viper Consulting, LLC) Hidden
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Marketsplash Shortcuts (HKLM-x32\...\{16FCDD97-AE09-476B-88CD-261D852BD34C}) (Version: 1.0.1.7 - Hewlett-Packard)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-001A-0000-0000-0000000FF1CE}_OUTLOOKR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook 2007 (HKLM-x32\...\OUTLOOKR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Outlook 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{2C303EE0-A595-3543-A71A-931C7AC40EDE}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP1 English (HKLM-x32\...\{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}) (Version: 3.5.5692.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP1 x64 English (HKLM\...\{F83779DF-E1F5-43A2-A7BE-732F856FADB7}) (Version: 3.5.5692.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 29.0.1 (x86 en-GB) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 en-GB)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 5.9.8 - )
Nuance PDF Reader (HKLM-x32\...\{5F6C549F-78DA-4E0E-AE70-0BD981936D99}) (Version: 7.00.0000 - Nuance Communications, Inc.)
NVIDIA Control Panel 266.69 (Version: 266.69 - NVIDIA Corporation) Hidden
NVIDIA Install Application (Version: 2.265.39.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.10.0514 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6669 - NVIDIA Corporation) Hidden
NX-Local Cash Scraper (HKLM\...\{4B383862-002D-4400-84E7-A52F7A274A3D}) (Version: 1.12.0000 - Nexshore Technologies)
PhotoScape (HKLM-x32\...\PhotoScape) (Version:  - )
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Power Indexer Pro 3.0.0.0 (HKLM\...\{0A2DEC29-333B-408B-B31B-0B34D73EBA4C}) (Version: 3.0.0.0 - Power Indexer Pro)
PowerDVDPoint Lite (HKLM-x32\...\{C9CD97C8-AFED-447F-9663-24DD150A08E9}) (Version: 3.5 - DigitalOfficePro)
QuotePad 2.0.2 (HKLM-x32\...\QuotePad_is1) (Version: 2.0.2 - QuotePad.info)
Rapid Content Wizard (HKCU\...\60edbb69673a22f9) (Version: 1.0.0.7 - Rapid Content Wizard)
RealDownloader (x32 Version: 1.3.3 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 1.0.0.12 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.32.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0 - Renesas Electronics Corporation) Hidden
SEO PowerSuite (HKLM-x32\...\seopowersuite) (Version:  - )
Skype Click to Call (HKLM-x32\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.2.15747.10003 - Microsoft Corporation)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Spoon.net Sandbox Manager 3.33 (HKLM-x32\...\Spoon.net Sandbox Manager 3.33) (Version: 3.33.6.102 - Code Systems Corporation)
Stealth Keyword Competition Analyzer 2.2.4 (HKLM-x32\...\Stealth Keyword Competition Analyzer_is1) (Version:  - )
The Logo Creator v6 6.0 (HKLM-x32\...\The Logo Creator v6) (Version: 6.0 - Laughingbird Software)
The Logo Creator v6.6 (HKLM-x32\...\The Logo Creator) (Version: v6.6 - Laughingbird Software)
The Prospector version 2.8 (HKLM-x32\...\{EDAB8C86-3668-425D-9097-E39311A98A95}_is1) (Version: 2.8 - iElemental, Inc.)
TOSHIBA Assist (HKLM-x32\...\{C2A276E3-154E-44DC-AAF1-FFDD7FD30E35}) (Version: 4.02.02 - TOSHIBA CORPORATION)
TOSHIBA Bulletin Board (HKLM-x32\...\InstallShield_{229C190B-7690-40B7-8680-42530179F3E9}) (Version: 2.0.16.64 - TOSHIBA Corporation)
TOSHIBA Bulletin Board (Version: 2.0.16.64 - TOSHIBA Corporation) Hidden
TOSHIBA ConfigFree (HKLM-x32\...\{D5AEEAA2-184E-4A2A-BAA3-6225EA4B9516}) (Version: 8.0.37 - TOSHIBA CORPORATION)
TOSHIBA Disc Creator (HKLM\...\{5DA0E02F-970B-424B-BF41-513A5018E4C0}) (Version: 2.1.0.6 for x64 - TOSHIBA Corporation)
TOSHIBA eco Utility (HKLM\...\{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}) (Version: 1.2.25.64 - TOSHIBA Corporation)
TOSHIBA Face Recognition (HKLM-x32\...\InstallShield_{F67FA545-D8E5-4209-86B1-AEE045D1003F}) (Version: 3.1.8.64 - TOSHIBA Corporation)
TOSHIBA Face Recognition (Version: 3.1.8.64 - TOSHIBA Corporation) Hidden
TOSHIBA Hardware Setup (HKLM-x32\...\InstallShield_{C4FFA951-9678-4D51-84B4-AFD15D3C45AD}) (Version: 4.08.06.00 - )
TOSHIBA Hardware Setup (Version: 4.08.06.00 - TOSHIBA) Hidden
TOSHIBA HDD/SSD Alert (HKLM-x32\...\InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.64.7 - TOSHIBA Corporation)
TOSHIBA HDD/SSD Alert (Version: 3.1.64.7 - TOSHIBA Corporation) Hidden
TOSHIBA HDD/SSD Alert (x32 Version: 3.1.64.7 - TOSHIBA Corporation) Hidden
TOSHIBA Media Controller (HKLM-x32\...\{C7A4F26F-F9B0-41B2-8659-99181108CDE3}) (Version: 1.0.86.2 - TOSHIBA CORPORATION)
TOSHIBA Media Controller Plug-in (HKLM-x32\...\{F26FDF57-483E-42C8-A9C9-EEE1EDB256E0}) (Version: 1.0.6.1 - TOSHIBA CORPORATION)
TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.7.4.64 - TOSHIBA Corporation)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.1.3.5109 - TOSHIBA CORPORATION)
TOSHIBA ReelTime (HKLM-x32\...\InstallShield_{24811C12-F4A9-4D0F-8494-A7B8FE46123C}) (Version: 1.7.17.64 - TOSHIBA Corporation)
TOSHIBA ReelTime (Version: 1.7.17.64 - TOSHIBA Corporation) Hidden
TOSHIBA Resolution+ Plug-in for Windows Media Player (HKLM-x32\...\{6CB76C9D-80C2-4CB3-A4CD-D96B239E3F94}) (Version: 1.1.0 - TOSHIBA Corporation)
TOSHIBA Service Station (HKLM-x32\...\{AC6569FA-6919-442A-8552-073BE69E247A}) (Version: 2.1.52 - TOSHIBA)
TOSHIBA Sleep Utility (HKLM-x32\...\{654F7484-88C5-46DC-AB32-C66BCB0E2102}) (Version: 1.4.2.7 - TOSHIBA Corporation)
TOSHIBA Supervisor Password (HKLM-x32\...\InstallShield_{CBD6B23D-41D5-4A46-8019-6208516C9712}) (Version: 4.08.06.00 - )
TOSHIBA Supervisor Password (Version: 4.08.06.00 - TOSHIBA) Hidden
TOSHIBA Value Added Package (HKLM-x32\...\InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}) (Version: 1.5.4.64 - TOSHIBA Corporation)
TOSHIBA Value Added Package (Version: 1.5.4.64 - TOSHIBA Corporation) Hidden
TOSHIBA Value Added Package (x32 Version: 1.5.4.64 - TOSHIBA Corporation) Hidden
TOSHIBA Web Camera Application (HKLM-x32\...\InstallShield_{6F3C8901-EBD3-470D-87F8-AC210F6E5E02}) (Version: 2.0.0.19 - TOSHIBA Corporation)
TOSHIBA Web Camera Application (x32 Version: 2.0.0.19 - TOSHIBA Corporation) Hidden
TOSHIBA Wireless LAN Indicator (HKLM-x32\...\{CDADE9BC-612C-42B8-B929-5C6A823E7FF9}) (Version: 1.0.3 - TOSHIBA CORPORATION)
Traffic Travis 4.1.0 (HKLM-x32\...\Traffic Travis 4.1 Setup Wizard_is1) (Version:  - Affilorama Ltd.)
Trend Micro Titanium (Version: 7.0 - Trend Micro Inc.) Hidden
Trend Micro Titanium Maximum Security (HKLM\...\{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}) (Version: 7.0 - Trend Micro Inc.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-001A-0000-0000-0000000FF1CE}_OUTLOOKR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_OUTLOOKR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-001A-0000-0000-0000000FF1CE}_OUTLOOKR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_OUTLOOKR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-001A-0000-0000-0000000FF1CE}_OUTLOOKR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-001A-0000-0000-0000000FF1CE}_OUTLOOKR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_OUTLOOKR_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM-x32\...\{91120000-001A-0000-0000-0000000FF1CE}_OUTLOOKR_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_OUTLOOKR_{0451F231-E3E3-4943-AB9F-58EB96171784}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2880505) 32-Bit Edition (HKLM-x32\...\{91120000-001A-0000-0000-0000000FF1CE}_OUTLOOKR_{2720451F-5D04-43EC-AB1F-26D948FD971B}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_OUTLOOKR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
VideoMakerFX (HKLM-x32\...\VideoMakerFX 1.0) (Version: 1.0 - Webvati)
VideoMakerFX (x32 Version: 1.0 - Webvati) Hidden
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Wiki Wizard 1.1.1.0 (HKLM\...\{96487081-91B7-4D98-9B16-E38DEB036349}) (Version: 1.1.1.0 - Wiki Wizard)
WildTangent Games (HKLM-x32\...\WildTangent toshiba Master Uninstall) (Version: 1.0.2.5 - WildTangent)
WildTangent Games App (Toshiba Games) (x32 Version: 4.0.5.36 - WildTangent) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Encoder 9 Series (HKLM-x32\...\Windows Media Encoder 9) (Version:  - )
Windows Media Encoder 9 Series (x32 Version: 9.00.2980 - Microsoft Corporation) Hidden
WinX DVD Ripper 5.6.0 (HKLM-x32\...\WinX DVD Ripper_is1) (Version:  - Digiarty Software, Inc.)

==================== Restore Points  =========================

30-05-2014 06:00:36 TITANUIMRES
30-05-2014 21:59:59 Installed Microsoft Fix it 50769
01-06-2014 02:42:56 Windows Backup

==================== Hosts content: ==========================

2009-07-14 14:34 - 2009-06-11 09:00 - 00000824 ____N C:\windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {03253847-1BE5-4A54-A1EF-6295EC3FE892} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-267806774-3125823315-51418320-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-08-14] (RealNetworks, Inc.)
Task: {033A9B4D-646E-4F95-B4D6-5A2F01EBDF94} - System32\Tasks\{DDE9A2A8-D8AC-4473-8FFD-072D84EBE05B} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {246749C9-6D86-4174-87FB-4105E0B5F632} - System32\Tasks\ConfigFree Startup Programs => C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe [2010-12-04] (TOSHIBA CORPORATION)
Task: {2E2D28A6-DC6C-4150-A733-A1ED7F0296CE} - System32\Tasks\LeadFinder\LeadFinderEmails => C:\Program Files (x86)\GuideTrade LLC\Lead Finder Jack\LeadFinder.exe [2013-11-25] (GuideTrade LLC)
Task: {2E68A61A-A211-4C41-ACF0-742EDA774A3A} - System32\Tasks\{4646A760-95F6-459D-914A-2786D5326549} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {303972F8-0723-4BED-8B89-F1E6665B0B16} - System32\Tasks\{8EF1AB86-E749-410E-BC8F-2874822A410A} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {3B944FB3-E14C-43BB-B3E8-BD0DB2E9DD11} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-267806774-3125823315-51418320-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {3CA7559E-0BF4-47C3-82CC-09AF0B0C9FC2} - System32\Tasks\{7467AE43-9BEE-4982-A7C1-54A8D1FD36E9} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {3D86830D-29A8-45BD-B1B2-864392F9F127} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-267806774-3125823315-51418320-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {3E79CFF0-FA85-40D0-A544-3FF1745E47F8} - System32\Tasks\{2C45AAC1-F2DE-40BA-A898-0915FC454AB9} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {456F1878-9FEE-470F-9169-3054FD0A1053} - System32\Tasks\{17F97FE8-06F8-4B29-B85A-2A02D9264679} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {51AAEF23-F194-414B-BCCA-AC9646A4A515} - System32\Tasks\HPCustParticipation HP Officejet 6500 E710n-z => C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\HPCustPartic.exe [2010-11-16] (Hewlett-Packard Co.)
Task: {56A09D5A-6A16-40F1-9894-106E170D2A22} - System32\Tasks\Leader Technologies\PowerRegister\Seagate Product Registration (Pushba) => C:\Users\Pushba\AppData\Roaming\Leadertech\PowerRegister\Seagate Product Registration.exe [2009-01-17] (Leader Technologies/Seagate)
Task: {56B6C060-A683-46F3-BC84-44C27A67ACDE} - System32\Tasks\{BF2C7195-5C76-4D42-942E-73EF2CD50829} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {5A6D297E-23DB-4123-8304-976404096C4F} - System32\Tasks\{A59A0178-46A3-4884-8050-142471BBBA3A} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {5B01DE78-C2BD-48AB-9C57-1F3F1691490A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-04-18] (Piriform Ltd)
Task: {67295351-5208-4097-8A78-9CCA5EC5D0DC} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-267806774-3125823315-51418320-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {6E17E3C5-B0C0-40F9-802F-974315E42005} - System32\Tasks\Norton Identity Safe\Norton Error Analyzer => C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\SymErr.exe
Task: {75C27799-4B66-4569-AA91-9D0F874053D2} - System32\Tasks\{FB71C1E9-16F4-4E5F-9918-50AED2D9381E} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {76F223BB-B647-4AF1-8E7D-801E3D0532A5} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-267806774-3125823315-51418320-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {7942C8CA-A00E-4697-9AA1-3E8FDBF1053B} - System32\Tasks\Titanium BTC => C:\Program Files\Trend Micro\Titanium\plugin\TMDC\TMDC.exe [2014-05-10] (Trend Micro Inc.)
Task: {840642A3-AD1F-4BA9-92AA-D33F849D6E00} - System32\Tasks\{68A8EFA9-03B0-4156-ABCC-7E700EB25C71} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {8650EEEF-51C3-416B-892F-645D52C1343C} - System32\Tasks\{E78DA232-1DFB-428F-88FD-DC6AB593D155} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {86FA0708-A7F3-4F72-9125-BD01815B7903} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14] (Adobe Systems Incorporated)
Task: {8C0E0207-4EB4-4226-B663-3D420152B304} - System32\Tasks\Norton Identity Safe\Norton Error Processor => C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\SymErr.exe
Task: {8CA3F3E2-FC5A-484B-AF8E-F9A812EF0A2A} - System32\Tasks\G2MUpdateTask-S-1-5-21-267806774-3125823315-51418320-1000 => C:\Users\Pushba\AppData\Local\Citrix\GoToMeeting\1415\g2mupdate.exe [2014-05-18] (Citrix Online, a division of Citrix Systems, Inc.)
Task: {8F085EBB-BDC7-4708-BE36-234BDC67E4E3} - System32\Tasks\{BBA5780C-70A5-443C-A3B4-E715BEC28334} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {9238557A-9CF7-4CB4-9EC5-A3B0AE4B8FEE} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {95687000-8696-4A04-BEFF-C575541B2CC0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-08-20] (Google Inc.)
Task: {9AFD6FA2-13B4-489C-A774-5D0DA85260CC} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {9D5118B7-5C5B-4D5A-92DF-88B1BD45CD3C} - System32\Tasks\Norton Management\Norton Error Analyzer => C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\SymErr.exe
Task: {A14CC766-9904-4200-BEAF-F7B439660C84} - System32\Tasks\{1DEA7955-D0D9-43FA-B203-87A4FB306233} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {A19FC873-19C6-44A4-8518-E7B927B15A3A} - System32\Tasks\{C4F68DCA-FF49-4490-9B4C-4EB24B0F05DC} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {A43E890C-2163-48D7-998E-28F4A8D50015} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-08-20] (Google Inc.)
Task: {A6C1F38F-A607-4AD2-8355-F325154F5B92} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-267806774-3125823315-51418320-1000UA => C:\Users\Pushba\AppData\Local\Google\Update\GoogleUpdate.exe [2013-07-13] (Google Inc.)
Task: {AC574ED6-5ECE-4ED5-A96C-D688811EC873} - System32\Tasks\{B04FD424-CF46-42FB-8047-E06A977F5C73} => C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe [2013-12-19] (Trend Micro Inc.)
Task: {AD757892-A9A8-41FF-93E3-F851EFF14EEC} - System32\Tasks\{BBECBA46-9C35-41A2-B70F-8EFA7BA1A593} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {B89169FF-E566-4A3F-B997-3F7A3A43A013} - System32\Tasks\{8709841B-9DD6-4D75-876B-C4E1A261C33C} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {C1B8C24D-9F02-4024-A2CA-2EAE778C5F1E} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-267806774-3125823315-51418320-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {C5E8B94F-CBD3-41AB-91DE-7966CA975911} - System32\Tasks\{745DFD8E-C040-439F-9C4F-CBC6AC320579} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {C6613251-765A-4686-AE2B-7A03963C717D} - System32\Tasks\{50D8578C-A951-47AC-9287-88F18F9C0FE2} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {CD57420B-C017-4648-A07F-9595C6537573} - System32\Tasks\{E8856E27-2D7D-4D87-BA10-1D6021646A70} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {D2184A97-7F8B-4C8B-AA89-9C46062960A4} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-267806774-3125823315-51418320-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {D98630EE-39A3-4EC7-B3A8-B7239EFED3F1} - System32\Tasks\Norton Management\Norton Error Processor => C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\SymErr.exe
Task: {D9CF6A7A-AFD8-4D43-8768-FE710B4356F7} - System32\Tasks\HpWebReg.exe => C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\HpWebReg.exe [2010-11-16] (Hewlett-Packard Co.)
Task: {DFF34D49-E1BD-4782-82E0-1F3B7EC6039A} - System32\Tasks\{161971A0-8413-4BC2-A060-A12FD47D9406} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {E6B78D7F-FF6F-48A5-B1C1-8F60BAF34D4B} - System32\Tasks\{CD2B2A19-05C2-4E5C-8251-CAFD0285E79C} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: {FB7948BA-F356-44D2-B89F-C673511F8C02} - System32\Tasks\{B7FD2D9D-7229-4E12-891C-530E23BB4D85} => C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe [2013-12-19] (Trend Micro Inc.)
Task: {FEBC5069-512C-4EF7-A8C8-5B5E75D2DEA6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-267806774-3125823315-51418320-1000Core => C:\Users\Pushba\AppData\Local\Google\Update\GoogleUpdate.exe [2013-07-13] (Google Inc.)
Task: {FEDEEBAB-BA1A-43F9-AC36-9F05F91AFAAA} - System32\Tasks\{B88D11FE-F9AD-4FC9-BD99-4469EB63682B} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [2014-01-29] (Microsoft Corporation)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\G2MUpdateTask-S-1-5-21-267806774-3125823315-51418320-1000.job => C:\Users\Pushba\AppData\Local\Citrix\GoToMeeting\1415\g2mupdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-267806774-3125823315-51418320-1000Core.job => C:\Users\Pushba\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-267806774-3125823315-51418320-1000UA.job => C:\Users\Pushba\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-08-14 15:19 - 2013-08-14 15:19 - 00039056 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2010-01-03 02:42 - 2010-01-03 02:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2011-07-19 09:04 - 2011-07-19 09:04 - 00301568 _____ () C:\Program Files (x86)\Notepad++\NppShell_04.dll
2014-01-20 12:17 - 2014-01-20 12:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 12:16 - 2014-01-20 12:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:0FF263E8
AlternateDataStreams: C:\Users\Pushba\Downloads\2014-04-18 14.55.34.jpg:com.dropbox.attributes

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\54723283.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\54723283.sys => ""="Driver"

==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupfolder: C:^Users^Pushba^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Screen Clipper and Launcher.lnk => C:\windows\pss\OneNote 2007 Screen Clipper and Launcher.lnk.Startup
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================
Error: (04/05/2014 10:39:44 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 41 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (03/10/2014 03:22:38 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6606.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 15587 seconds with 720 seconds of active time.  This session ended with a crash.

Error: (08/06/2013 09:14:31 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 4207 seconds with 840 seconds of active time.  This session ended with a crash.

Error: (07/29/2013 02:45:38 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 12 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (04/24/2013 02:30:06 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (04/21/2012 05:14:24 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (04/13/2012 11:12:44 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 0 seconds with 0 seconds of active time.  This session ended with a crash.


CodeIntegrity Errors:
===================================
  Date: 2014-01-02 15:27:38.469
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-01-02 15:27:38.396
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-06 15:40:54.345
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-06 15:40:54.325
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-06 15:40:26.830
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-06 15:40:26.820
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-06 15:39:59.016
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-06 15:39:58.996
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-06 15:39:31.202
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-06 15:39:31.182
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Percentage of memory in use: 22%
Total physical RAM: 8173.86 MB
Available physical RAM: 6368.07 MB
Total Pagefile: 16345.9 MB
Available Pagefile: 14542 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB

==================== Drives ================================

Drive c: (S3A4489D001) (Fixed) (Total:581.31 GB) (Free:376.11 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (Expansion Drive) (Fixed) (Total:465.76 GB) (Free:39.97 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 596 GB) (Disk ID: 9BFBF1F1)
Partition 1: (Active) - (Size=1 GB) - (Type=27)
Partition 2: (Not Active) - (Size=581 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=13 GB) - (Type=17)

========================================================
Disk: 1 (Size: 466 GB) (Disk ID: 00463EBA)
Partition 1: (Active) - (Size=466 GB) - (Type=07 NTFS)

==================== End Of Log ============================



#14 LiquidTension

LiquidTension

    SuperMember

  • Classroom Teacher
  • 2,566 posts

Posted 09 June 2014 - 10:11 AM

Hello Kushla,
 

I am 99% certain I saved AdwCleaner scan result but weirdly I cannot locate it.

Click the Windows Start button. In the search bar, type AdwCleaner. See if a text (.txt) document appears in the list with [S0] in the file name. If not, please rerun AdwCleaner as you did before. If you clicked Clean in AdwCleaner, no items should be identified, but I would like to double-check. Post the [S0] log after your computer reboots.
 
What was the reason for running the following tool?

  • C:\MGADiagToolOutput

Did you install, and do you use this programme?

  • Hot Lead Finder v3.0

Do you use this searchscope in Internet Explorer?

  • duckduckgo.com
     

Please provide an update on Microsoft Outlook. Are you unable to access the programme?


50QfLth.png

 

Would you like to help others with malware removal? Join our Classroom and learn how!


#15 sunnynap

sunnynap

    New Member

  • Authentic Member
  • Pip
  • 16 posts

Posted 09 June 2014 - 03:55 PM

Hi Adam, hmm....when doing a straightforward search through search bar, folder doesn't show up but in my attempt to make certain that I had a second copy I did a "Save As" and the initial report was saved in the AdwCleaner Folder (which doesn't show up in my search).  Here is the original scan results

 

# AdwCleaner v3.212 - Report created 07/06/2014 at 08:56:13
# Updated 05/06/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Pushba - PUSHPA-PETAL
# Running from : C:\Users\Pushba\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\blekko toolbars
Folder Deleted : C:\Program Files (x86)\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Users\Pushba\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\Pushba\AppData\Local\blekkotb_031
Folder Deleted : C:\Users\Pushba\AppData\LocalLow\AVG Secure Search
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\avg-secure-search.xml

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_freemind_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_freemind_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_quotepad_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_quotepad_RASMANCS
Key Deleted : HKCU\Software\Softonic

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17041


-\\ Mozilla Firefox v29.0.1 (en-GB)

[ File : C:\Users\Pushba\AppData\Roaming\Mozilla\Firefox\Profiles\lzv8eylf.default-1384023942729\prefs.js ]


-\\ Google Chrome v35.0.1916.114

[ File : C:\Users\Pushba\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1854 octets] - [07/06/2014 08:53:53]
AdwCleaner[S0].txt - [1759 octets] - [07/06/2014 08:56:13]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1819 octets] ##########


Related Topics



0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users