Trojaner-Board
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Windows 8 (Tablet): Web.de wird auf iweb.site umgeleitet (https://www.trojaner-board.de/183485-windows-8-tablet-web-de-iweb-site-umgeleitet.html)

deeprybka 22.12.2016 09:42
Es steht doch oben, dass das Log in jedem Fall gepostet werden soll oder nicht? :)

nici_st 22.12.2016 14:22
Oh sorry ;-)

Code:
14:18:42.0667 0x12d8  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
14:18:42.0668 0x12d8  UEFI system
14:18:52.0396 0x12d8  ============================================================
14:18:52.0397 0x12d8  Current date / time: 2016/12/22 14:18:52.0396
14:18:52.0397 0x12d8  SystemInfo:
14:18:52.0397 0x12d8 
14:18:52.0397 0x12d8  OS Version: 6.3.9600 ServicePack: 0.0
14:18:52.0397 0x12d8  Product type: Workstation
14:18:52.0397 0x12d8  ComputerName: TAB
14:18:52.0397 0x12d8  UserName: nici_st
14:18:52.0397 0x12d8  Windows directory: C:\WINDOWS
14:18:52.0397 0x12d8  System windows directory: C:\WINDOWS
14:18:52.0398 0x12d8  Processor architecture: Intel x86
14:18:52.0398 0x12d8  Number of processors: 4
14:18:52.0398 0x12d8  Page size: 0x1000
14:18:52.0398 0x12d8  Boot type: Normal boot
14:18:52.0398 0x12d8  CodeIntegrityOptions = 0x00000001
14:18:52.0398 0x12d8  ============================================================
14:18:52.0556 0x12d8  KLMD registered as C:\WINDOWS\system32\drivers\23559176.sys
14:18:52.0556 0x12d8  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 9600.18505, osProperties = 0x18
14:18:52.0758 0x12d8  System UUID: {99102FDC-8941-C9B4-23BD-85862EF13317}
14:18:53.0481 0x12d8  !crdlk
14:18:53.0488 0x12d8  Drive \Device\Harddisk0\DR0 - Size: 0xE8D000000 ( 58.20 Gb ), SectorSize: 0x200, Cylinders: 0x1DAD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:18:53.0491 0x12d8  ============================================================
14:18:53.0491 0x12d8  \Device\Harddisk0\DR0:
14:18:53.0491 0x12d8  Can't read MBR
14:18:53.0491 0x12d8  Initialize success
14:18:53.0491 0x12d8  ============================================================
14:19:03.0113 0x12a4  ============================================================
14:19:03.0113 0x12a4  Scan started
14:19:03.0113 0x12a4  Mode: Manual; SigCheck; TDLFS;
14:19:03.0113 0x12a4  ============================================================
14:19:03.0113 0x12a4  KSN ping started
14:19:03.0209 0x12a4  KSN ping finished: true
14:19:03.0486 0x12a4  ================ Scan system memory ========================
14:19:03.0486 0x12a4  System memory - ok
14:19:03.0490 0x12a4  ================ Scan services =============================
14:19:03.0573 0x12a4  1394ohci - ok
14:19:03.0590 0x12a4  3ware - ok
14:19:03.0607 0x12a4  ACPI - ok
14:19:03.0625 0x12a4  acpiex - ok
14:19:03.0641 0x12a4  acpipagr - ok
14:19:03.0660 0x12a4  AcpiPmi - ok
14:19:03.0676 0x12a4  acpitime - ok
14:19:03.0693 0x12a4  AdobeARMservice - ok
14:19:03.0710 0x12a4  AdobeFlashPlayerUpdateSvc - ok
14:19:03.0727 0x12a4  ADP80XX - ok
14:19:03.0750 0x12a4  AeLookupSvc - ok
14:19:03.0767 0x12a4  AFD - ok
14:19:03.0783 0x12a4  agp440 - ok
14:19:03.0800 0x12a4  ahcache - ok
14:19:03.0816 0x12a4  ALG - ok
14:19:03.0834 0x12a4  amdagp - ok
14:19:03.0850 0x12a4  AmdK8 - ok
14:19:03.0867 0x12a4  AmdPPM - ok
14:19:03.0878 0x12a4  amdsata - ok
14:19:03.0894 0x12a4  amdsbs - ok
14:19:03.0910 0x12a4  amdxata - ok
14:19:03.0926 0x12a4  AppID - ok
14:19:03.0943 0x12a4  AppIDSvc - ok
14:19:03.0961 0x12a4  Appinfo - ok
14:19:03.0977 0x12a4  appnetmsgmgr - ok
14:19:03.0993 0x12a4  AppReadiness - ok
14:19:04.0012 0x12a4  AppXSvc - ok
14:19:04.0031 0x12a4  arcsas - ok
14:19:04.0047 0x12a4  atapi - ok
14:19:04.0064 0x12a4  AudioEndpointBuilder - ok
14:19:04.0081 0x12a4  Audiosrv - ok
14:19:04.0098 0x12a4  AxInstSV - ok
14:19:04.0115 0x12a4  BasicDisplay - ok
14:19:04.0134 0x12a4  BasicRender - ok
14:19:04.0165 0x12a4  BavSvc - ok
14:19:04.0186 0x12a4  bcmfn2 - ok
14:19:04.0207 0x12a4  BcmNfcIc - ok
14:19:04.0227 0x12a4  BCMSDH43XX - ok
14:19:04.0248 0x12a4  BdApiUtil - ok
14:19:04.0269 0x12a4  bdark - ok
14:19:04.0288 0x12a4  BdCameraProtect - ok
14:19:04.0309 0x12a4  BDESVC - ok
14:19:04.0329 0x12a4  BdSandbox - ok
14:19:04.0349 0x12a4  BdSandboxSrv - ok
14:19:04.0370 0x12a4  Beep - ok
14:19:04.0391 0x12a4  BFE - ok
14:19:04.0412 0x12a4  Bfilter - ok
14:19:04.0434 0x12a4  Bfmon - ok
14:19:04.0455 0x12a4  Bhbase - ok
14:19:04.0477 0x12a4  BHipsEx - ok
14:19:04.0497 0x12a4  BHipsSvc - ok
14:19:04.0519 0x12a4  BITS - ok
14:19:04.0541 0x12a4  Bnbase - ok
14:19:04.0562 0x12a4  Bndef - ok
14:19:04.0584 0x12a4  Bnmon - ok
14:19:04.0604 0x12a4  bowser - ok
14:19:04.0623 0x12a4  Bprotect - ok
14:19:04.0645 0x12a4  BrokerInfrastructure - ok
14:19:04.0666 0x12a4  Browser - ok
14:19:04.0688 0x12a4  BthAvrcpTg - ok
14:19:04.0712 0x12a4  BthEnum - ok
14:19:04.0735 0x12a4  BthHFEnum - ok
14:19:04.0757 0x12a4  bthhfhid - ok
14:19:04.0780 0x12a4  BthHFSrv - ok
14:19:04.0802 0x12a4  BthLEEnum - ok
14:19:04.0824 0x12a4  BthMini - ok
14:19:04.0847 0x12a4  BTHMODEM - ok
14:19:04.0871 0x12a4  BthPan - ok
14:19:04.0891 0x12a4  BTHPORT - ok
14:19:04.0905 0x12a4  bthserv - ok
14:19:04.0926 0x12a4  btwampfl - ok
14:19:04.0949 0x12a4  BtwSerialBus - ok
14:19:04.0968 0x12a4  camera - ok
14:19:04.0984 0x12a4  CCDMonitorService - ok
14:19:05.0001 0x12a4  ccSet_NARA - ok
14:19:05.0022 0x12a4  cdfs - ok
14:19:05.0039 0x12a4  cdrom - ok
14:19:05.0055 0x12a4  CertPropSvc - ok
14:19:05.0072 0x12a4  ChaabiDriver - ok
14:19:05.0088 0x12a4  circlass - ok
14:19:05.0105 0x12a4  CLFS - ok
14:19:05.0122 0x12a4  ClickToRunSvc - ok
14:19:05.0156 0x12a4  clvpep - ok
14:19:05.0172 0x12a4  CmBatt - ok
14:19:05.0189 0x12a4  CNG - ok
14:19:05.0206 0x12a4  cnghwassist - ok
14:19:05.0223 0x12a4  CompositeBus - ok
14:19:05.0241 0x12a4  COMSysApp - ok
14:19:05.0257 0x12a4  condrv - ok
14:19:05.0280 0x12a4  CryptSvc - ok
14:19:05.0296 0x12a4  dam - ok
14:19:05.0313 0x12a4  dc3d - ok
14:19:05.0337 0x12a4  DcomLaunch - ok
14:19:05.0354 0x12a4  defragsvc - ok
14:19:05.0371 0x12a4  DeviceAssociationService - ok
14:19:05.0388 0x12a4  DeviceInstall - ok
14:19:05.0407 0x12a4  Dfsc - ok
14:19:05.0423 0x12a4  dg_ssudbus - ok
14:19:05.0439 0x12a4  Dhcp - ok
14:19:05.0456 0x12a4  DiagTrack - ok
14:19:05.0473 0x12a4  disk - ok
14:19:05.0489 0x12a4  dmvsc - ok
14:19:05.0505 0x12a4  Dnscache - ok
14:19:05.0522 0x12a4  dot3svc - ok
14:19:05.0541 0x12a4  DPS - ok
14:19:05.0558 0x12a4  DptfDevDisplay - ok
14:19:05.0575 0x12a4  DptfDevGen - ok
14:19:05.0592 0x12a4  DptfDevProc - ok
14:19:05.0608 0x12a4  DptfManager - ok
14:19:05.0624 0x12a4  DptfParticipantDisplayService - ok
14:19:05.0640 0x12a4  DptfParticipantProcessorService - ok
14:19:05.0658 0x12a4  DptfPolicyConfigTDPService - ok
14:19:05.0669 0x12a4  DptfPolicyCriticalService - ok
14:19:05.0686 0x12a4  DptfPolicyLpmService - ok
14:19:05.0703 0x12a4  drmkaud - ok
14:19:05.0720 0x12a4  DsiDeviceControlService - ok
14:19:05.0735 0x12a4  DsmSvc - ok
14:19:05.0754 0x12a4  DXGKrnl - ok
14:19:05.0770 0x12a4  EapHost - ok
14:19:05.0787 0x12a4  eapihdrv - ok
14:19:05.0804 0x12a4  EFS - ok
14:19:05.0821 0x12a4  EhStorClass - ok
14:19:05.0839 0x12a4  EhStorTcgDrv - ok
14:19:05.0856 0x12a4  ErrDev - ok
14:19:05.0888 0x12a4  EventSystem - ok
14:19:05.0907 0x12a4  exfat - ok
14:19:05.0926 0x12a4  fastfat - ok
14:19:05.0942 0x12a4  Fax - ok
14:19:05.0959 0x12a4  fdc - ok
14:19:05.0975 0x12a4  fdPHost - ok
14:19:05.0991 0x12a4  FDResPub - ok
14:19:06.0011 0x12a4  fhsvc - ok
14:19:06.0028 0x12a4  FileInfo - ok
14:19:06.0047 0x12a4  Filetrace - ok
14:19:06.0064 0x12a4  FlashLed - ok
14:19:06.0082 0x12a4  flpydisk - ok
14:19:06.0099 0x12a4  FltMgr - ok
14:19:06.0116 0x12a4  FontCache - ok
14:19:06.0134 0x12a4  FontCache3.0.0.0 - ok
14:19:06.0150 0x12a4  FsDepends - ok
14:19:06.0168 0x12a4  Fs_Rec - ok
14:19:06.0180 0x12a4  fvevol - ok
14:19:06.0197 0x12a4  FxPPM - ok
14:19:06.0214 0x12a4  gagp30kx - ok
14:19:06.0231 0x12a4  gencounter - ok
14:19:06.0248 0x12a4  GPIO - ok
14:19:06.0265 0x12a4  GPIOCLV - ok
14:19:06.0282 0x12a4  GPIOClx0101 - ok
14:19:06.0300 0x12a4  gpsvc - ok
14:19:06.0317 0x12a4  gupdate - ok
14:19:06.0333 0x12a4  gupdatem - ok
14:19:06.0349 0x12a4  HDAudBus - ok
14:19:06.0366 0x12a4  HidBatt - ok
14:19:06.0382 0x12a4  HidBth - ok
14:19:06.0399 0x12a4  hidi2c - ok
14:19:06.0416 0x12a4  HidIr - ok
14:19:06.0434 0x12a4  hidserv - ok
14:19:06.0451 0x12a4  HidUsb - ok
14:19:06.0467 0x12a4  hkmsvc - ok
14:19:06.0485 0x12a4  HomeGroupListener - ok
14:19:06.0502 0x12a4  HomeGroupProvider - ok
14:19:06.0518 0x12a4  HpSAMD - ok
14:19:06.0535 0x12a4  HTTP - ok
14:19:06.0552 0x12a4  hwpolicy - ok
14:19:06.0568 0x12a4  hyperkbd - ok
14:19:06.0584 0x12a4  HyperVideo - ok
14:19:06.0601 0x12a4  i8042prt - ok
14:19:06.0617 0x12a4  iaioi2c - ok
14:19:06.0634 0x12a4  iaStorAV - ok
14:19:06.0650 0x12a4  iaStorV - ok
14:19:06.0667 0x12a4  IEEtwCollectorService - ok
14:19:06.0680 0x12a4  igddim32 - ok
14:19:06.0697 0x12a4  igdkmd32 - ok
14:19:06.0715 0x12a4  igdperf32 - ok
14:19:06.0732 0x12a4  IKEEXT - ok
14:19:06.0748 0x12a4  imx175 - ok
14:19:06.0775 0x12a4  inteli2c - ok
14:19:06.0791 0x12a4  intelide - ok
14:19:06.0809 0x12a4  intelpep - ok
14:19:06.0826 0x12a4  intelppm - ok
14:19:06.0843 0x12a4  IntelSST - ok
14:19:06.0859 0x12a4  IpFilterDriver - ok
14:19:06.0876 0x12a4  iphlpsvc - ok
14:19:06.0893 0x12a4  IPMIDRV - ok
14:19:06.0909 0x12a4  IPNAT - ok
14:19:06.0926 0x12a4  IRENUM - ok
14:19:06.0945 0x12a4  isapnp - ok
14:19:06.0961 0x12a4  iScsiPrt - ok
14:19:06.0978 0x12a4  kbdclass - ok
14:19:06.0994 0x12a4  kbdhid - ok
14:19:07.0012 0x12a4  kdnic - ok
14:19:07.0028 0x12a4  KeyIso - ok
14:19:07.0044 0x12a4  KSecDD - ok
14:19:07.0063 0x12a4  KSecPkg - ok
14:19:07.0080 0x12a4  KtmRm - ok
14:19:07.0096 0x12a4  LanmanServer - ok
14:19:07.0112 0x12a4  LanmanWorkstation - ok
14:19:07.0135 0x12a4  lfsvc - ok
14:19:07.0151 0x12a4  lltdio - ok
14:19:07.0168 0x12a4  lltdsvc - ok
14:19:07.0184 0x12a4  Lm3554 - ok
14:19:07.0202 0x12a4  lmhosts - ok
14:19:07.0220 0x12a4  LNWIPC - ok
14:19:07.0244 0x12a4  LSI_SAS - ok
14:19:07.0261 0x12a4  LSI_SAS2 - ok
14:19:07.0278 0x12a4  LSI_SAS3 - ok
14:19:07.0294 0x12a4  LSI_SSS - ok
14:19:07.0311 0x12a4  LSM - ok
14:19:07.0327 0x12a4  luafv - ok
14:19:07.0344 0x12a4  MBI - ok
14:19:07.0361 0x12a4  megasas - ok
14:19:07.0377 0x12a4  megasr - ok
14:19:07.0395 0x12a4  MMCSS - ok
14:19:07.0412 0x12a4  Modem - ok
14:19:07.0429 0x12a4  monitor - ok
14:19:07.0445 0x12a4  MonitorFunction - ok
14:19:07.0456 0x12a4  mouclass - ok
14:19:07.0472 0x12a4  mouhid - ok
14:19:07.0488 0x12a4  mountmgr - ok
14:19:07.0504 0x12a4  MozillaMaintenance - ok
14:19:07.0522 0x12a4  mpsdrv - ok
14:19:07.0539 0x12a4  MpsSvc - ok
14:19:07.0556 0x12a4  MRxDAV - ok
14:19:07.0573 0x12a4  mrxsmb - ok
14:19:07.0589 0x12a4  mrxsmb10 - ok
14:19:07.0607 0x12a4  mrxsmb20 - ok
14:19:07.0623 0x12a4  MsBridge - ok
14:19:07.0639 0x12a4  MSDTC - ok
14:19:07.0671 0x12a4  Msfs - ok
14:19:07.0688 0x12a4  msgpiowin32 - ok
14:19:07.0706 0x12a4  mshidkmdf - ok
14:19:07.0722 0x12a4  mshidumdf - ok
14:19:07.0738 0x12a4  MSICReg - ok
14:19:07.0754 0x12a4  msisadrv - ok
14:19:07.0773 0x12a4  MSiSCSI - ok
14:19:07.0792 0x12a4  msiserver - ok
14:19:07.0813 0x12a4  MSKSSRV - ok
14:19:07.0830 0x12a4  MsLldp - ok
14:19:07.0847 0x12a4  MSPCLOCK - ok
14:19:07.0863 0x12a4  MSPQM - ok
14:19:07.0880 0x12a4  MsRPC - ok
14:19:07.0903 0x12a4  mssmbios - ok
14:19:07.0920 0x12a4  MSTEE - ok
14:19:07.0937 0x12a4  mt9e013 - ok
14:19:07.0956 0x12a4  MTConfig - ok
14:19:07.0972 0x12a4  Mup - ok
14:19:07.0989 0x12a4  mvumis - ok
14:19:08.0005 0x12a4  napagent - ok
14:19:08.0023 0x12a4  NativeWifiP - ok
14:19:08.0039 0x12a4  NcaSvc - ok
14:19:08.0055 0x12a4  NcbService - ok
14:19:08.0072 0x12a4  NcdAutoSetup - ok
14:19:08.0088 0x12a4  NDIS - ok
14:19:08.0105 0x12a4  NdisCap - ok
14:19:08.0122 0x12a4  NdisImPlatform - ok
14:19:08.0141 0x12a4  NdisTapi - ok
14:19:08.0164 0x12a4  Ndisuio - ok
14:19:08.0183 0x12a4  NdisVirtualBus - ok
14:19:08.0203 0x12a4  NdisWan - ok
14:19:08.0221 0x12a4  NdisWanLegacy - ok
14:19:08.0239 0x12a4  NDProxy - ok
14:19:08.0258 0x12a4  Ndu - ok
14:19:08.0275 0x12a4  NetBIOS - ok
14:19:08.0295 0x12a4  NetBT - ok
14:19:08.0313 0x12a4  Netlogon - ok
14:19:08.0330 0x12a4  Netman - ok
14:19:08.0347 0x12a4  netprofm - ok
14:19:08.0363 0x12a4  NetTcpPortSharing - ok
14:19:08.0381 0x12a4  netvsc - ok
14:19:08.0398 0x12a4  NlaSvc - ok
14:19:08.0414 0x12a4  NOBU - ok
14:19:08.0434 0x12a4  Npfs - ok
14:19:08.0450 0x12a4  npsvctrig - ok
14:19:08.0466 0x12a4  nsi - ok
14:19:08.0477 0x12a4  nsiproxy - ok
14:19:08.0502 0x12a4  Ntfs - ok
14:19:08.0519 0x12a4  NTI IScheduleSvc - ok
14:19:08.0537 0x12a4  NTIDrvr - ok
14:19:08.0555 0x12a4  NuidFltr - ok
14:19:08.0573 0x12a4  Null - ok
14:19:08.0590 0x12a4  nvraid - ok
14:19:08.0607 0x12a4  nvstor - ok
14:19:08.0625 0x12a4  nv_agp - ok
14:19:08.0641 0x12a4  ose - ok
14:19:08.0659 0x12a4  ov2720 - ok
14:19:08.0676 0x12a4  ov8830 - ok
14:19:08.0691 0x12a4  p2pimsvc - ok
14:19:08.0708 0x12a4  p2psvc - ok
14:19:08.0734 0x12a4  Parport - ok
14:19:08.0750 0x12a4  partmgr - ok
14:19:08.0767 0x12a4  Parvdm - ok
14:19:08.0784 0x12a4  PcaSvc - ok
14:19:08.0800 0x12a4  pci - ok
14:19:08.0816 0x12a4  pciide - ok
14:19:08.0832 0x12a4  pcmcia - ok
14:19:08.0849 0x12a4  pcw - ok
14:19:08.0866 0x12a4  pdc - ok
14:19:08.0883 0x12a4  PEAUTH - ok
14:19:08.0933 0x12a4  pla - ok
14:19:08.0949 0x12a4  PlugPlay - ok
14:19:08.0966 0x12a4  PNRPAutoReg - ok
14:19:08.0984 0x12a4  PNRPsvc - ok
14:19:09.0000 0x12a4  PolicyAgent - ok
14:19:09.0025 0x12a4  Power - ok
14:19:09.0044 0x12a4  PrintNotify - ok
14:19:09.0060 0x12a4  Processor - ok
14:19:09.0077 0x12a4  ProfSvc - ok
14:19:09.0094 0x12a4  Psched - ok
14:19:09.0111 0x12a4  QWAVE - ok
14:19:09.0126 0x12a4  QWAVEdrv - ok
14:19:09.0142 0x12a4  RasAcd - ok
14:19:09.0159 0x12a4  RasAuto - ok
14:19:09.0175 0x12a4  RasMan - ok
14:19:09.0191 0x12a4  RasPppoe - ok
14:19:09.0208 0x12a4  rdbss - ok
14:19:09.0236 0x12a4  rdpbus - ok
14:19:09.0252 0x12a4  RDPDR - ok
14:19:09.0284 0x12a4  RdpVideoMiniport - ok
14:19:09.0301 0x12a4  rdyboost - ok
14:19:09.0318 0x12a4  RemoteAccess - ok
14:19:09.0334 0x12a4  RemoteRegistry - ok
14:19:09.0351 0x12a4  RFCOMM - ok
14:19:09.0367 0x12a4  RpcEptMapper - ok
14:19:09.0384 0x12a4  RpcLocator - ok
14:19:09.0401 0x12a4  RpcSs - ok
14:19:09.0418 0x12a4  rspndr - ok
14:19:09.0434 0x12a4  rtii2sac - ok
14:19:09.0451 0x12a4  s3cap - ok
14:19:09.0468 0x12a4  SamSs - ok
14:19:09.0485 0x12a4  sbp2port - ok
14:19:09.0502 0x12a4  SCardSvr - ok
14:19:09.0519 0x12a4  ScDeviceEnum - ok
14:19:09.0535 0x12a4  scfilter - ok
14:19:09.0552 0x12a4  Schedule - ok
14:19:09.0571 0x12a4  SCPolicySvc - ok
14:19:09.0588 0x12a4  sdbus - ok
14:19:09.0605 0x12a4  sdstor - ok
14:19:09.0621 0x12a4  secdrv - ok
14:19:09.0637 0x12a4  seclogon - ok
14:19:09.0654 0x12a4  SENS - ok
14:19:09.0670 0x12a4  SensorsHIDClassDriver - ok
14:19:09.0688 0x12a4  SensorsServiceDriver - ok
14:19:09.0705 0x12a4  SensrSvc - ok
14:19:09.0723 0x12a4  SerCx - ok
14:19:09.0740 0x12a4  SerCx2 - ok
14:19:09.0758 0x12a4  Serenum - ok
14:19:09.0775 0x12a4  Serial - ok
14:19:09.0792 0x12a4  sermouse - ok
14:19:09.0834 0x12a4  SessionEnv - ok
14:19:09.0851 0x12a4  sfloppy - ok
14:19:09.0870 0x12a4  SharedAccess - ok
14:19:09.0887 0x12a4  ShellHWDetection - ok
14:19:09.0903 0x12a4  sisagp - ok
14:19:09.0920 0x12a4  SiSRaid2 - ok
14:19:09.0936 0x12a4  SiSRaid4 - ok
14:19:09.0954 0x12a4  smphost - ok
14:19:09.0989 0x12a4  SNMPTRAP - ok
14:19:10.0010 0x12a4  spaceport - ok
14:19:10.0031 0x12a4  SpbCx - ok
14:19:10.0051 0x12a4  spi - ok
14:19:10.0072 0x12a4  Spooler - ok
14:19:10.0093 0x12a4  sppsvc - ok
14:19:10.0115 0x12a4  srv - ok
14:19:10.0134 0x12a4  srv2 - ok
14:19:10.0153 0x12a4  srvnet - ok
14:19:10.0172 0x12a4  SSDPSRV - ok
14:19:10.0191 0x12a4  ssti2c - ok
14:19:10.0208 0x12a4  SstpSvc - ok
14:19:10.0226 0x12a4  ssudmdm - ok
14:19:10.0243 0x12a4  stexstor - ok
14:19:10.0263 0x12a4  StiSvc - ok
14:19:10.0280 0x12a4  storahci - ok
14:19:10.0296 0x12a4  storflt - ok
14:19:10.0313 0x12a4  stornvme - ok
14:19:10.0335 0x12a4  StorSvc - ok
14:19:10.0352 0x12a4  storvsc - ok
14:19:10.0369 0x12a4  svsvc - ok
14:19:10.0385 0x12a4  swenum - ok
14:19:10.0402 0x12a4  swprv - ok
14:19:10.0420 0x12a4  SysMain - ok
14:19:10.0437 0x12a4  SystemEventsBroker - ok
14:19:10.0454 0x12a4  TabletInputService - ok
14:19:10.0471 0x12a4  TapiSrv - ok
14:19:10.0488 0x12a4  Tcpip - ok
14:19:10.0505 0x12a4  TCPIP6 - ok
14:19:10.0524 0x12a4  tcpipreg - ok
14:19:10.0548 0x12a4  tdx - ok
14:19:10.0568 0x12a4  terminpt - ok
14:19:10.0585 0x12a4  TermService - ok
14:19:10.0602 0x12a4  Themes - ok
14:19:10.0620 0x12a4  THREADORDER - ok
14:19:10.0636 0x12a4  TimeBroker - ok
14:19:10.0654 0x12a4  TPM - ok
14:19:10.0671 0x12a4  TrkWks - ok
14:19:10.0687 0x12a4  TrustedInstaller - ok
14:19:10.0712 0x12a4  TsUsbFlt - ok
14:19:10.0729 0x12a4  TsUsbGD - ok
14:19:10.0745 0x12a4  tunnel - ok
14:19:10.0763 0x12a4  uagp35 - ok
14:19:10.0781 0x12a4  Uart16550pc - ok
14:19:10.0798 0x12a4  UASPStor - ok
14:19:10.0814 0x12a4  UBHelper - ok
14:19:10.0831 0x12a4  UCX01000 - ok
14:19:10.0848 0x12a4  udfs - ok
14:19:10.0864 0x12a4  UEFI - ok
14:19:10.0896 0x12a4  UI0Detect - ok
14:19:10.0913 0x12a4  uliagpkx - ok
14:19:10.0929 0x12a4  umbus - ok
14:19:10.0946 0x12a4  UmPass - ok
14:19:10.0963 0x12a4  UmRdpService - ok
14:19:10.0981 0x12a4  upnphost - ok
14:19:10.0997 0x12a4  usbccgp - ok
14:19:11.0014 0x12a4  usbcir - ok
14:19:11.0026 0x12a4  usbehci - ok
14:19:11.0043 0x12a4  usbhub - ok
14:19:11.0059 0x12a4  USBHUB3 - ok
14:19:11.0076 0x12a4  usbohci - ok
14:19:11.0092 0x12a4  usbprint - ok
14:19:11.0109 0x12a4  USBSTOR - ok
14:19:11.0128 0x12a4  usbuhci - ok
14:19:11.0147 0x12a4  USBXHCI - ok
14:19:11.0164 0x12a4  usb_rndisx - ok
14:19:11.0181 0x12a4  VaultSvc - ok
14:19:11.0197 0x12a4  vdrvroot - ok
14:19:11.0214 0x12a4  vds - ok
14:19:11.0230 0x12a4  VerifierExt - ok
14:19:11.0247 0x12a4  vhdmp - ok
14:19:11.0264 0x12a4  viaagp - ok
14:19:11.0282 0x12a4  ViaC7 - ok
14:19:11.0299 0x12a4  viaide - ok
14:19:11.0316 0x12a4  VineyardsTaskSrv - ok
14:19:11.0333 0x12a4  vmbus - ok
14:19:11.0350 0x12a4  VMBusHID - ok
14:19:11.0366 0x12a4  vmicguestinterface - ok
14:19:11.0384 0x12a4  vmicheartbeat - ok
14:19:11.0399 0x12a4  vmickvpexchange - ok
14:19:11.0416 0x12a4  vmicrdv - ok
14:19:11.0431 0x12a4  vmicshutdown - ok
14:19:11.0448 0x12a4  vmictimesync - ok
14:19:11.0464 0x12a4  vmicvss - ok
14:19:11.0481 0x12a4  volmgr - ok
14:19:11.0497 0x12a4  volmgrx - ok
14:19:11.0517 0x12a4  volsnap - ok
14:19:11.0534 0x12a4  vonetframe - ok
14:19:11.0551 0x12a4  vsmraid - ok
14:19:11.0567 0x12a4  VSS - ok
14:19:11.0583 0x12a4  VSTXRAID - ok
14:19:11.0599 0x12a4  vwifibus - ok
14:19:11.0617 0x12a4  vwififlt - ok
14:19:11.0635 0x12a4  vwifimp - ok
14:19:11.0651 0x12a4  W32Time - ok
14:19:11.0668 0x12a4  WacomPen - ok
14:19:11.0685 0x12a4  wbengine - ok
14:19:11.0702 0x12a4  WbioSrvc - ok
14:19:11.0718 0x12a4  Wcmsvc - ok
14:19:11.0734 0x12a4  wcncsvc - ok
14:19:11.0750 0x12a4  WcsPlugInService - ok
14:19:11.0767 0x12a4  WdBoot - ok
14:19:11.0784 0x12a4  WDC_SAM - ok
14:19:11.0801 0x12a4  Wdf01000 - ok
14:19:11.0817 0x12a4  WdFilter - ok
14:19:11.0834 0x12a4  WdiServiceHost - ok
14:19:11.0850 0x12a4  WdiSystemHost - ok
14:19:11.0866 0x12a4  WdNisDrv - ok
14:19:11.0882 0x12a4  WdNisSvc - ok
14:19:11.0900 0x12a4  WebClient - ok
14:19:11.0917 0x12a4  Wecsvc - ok
14:19:11.0933 0x12a4  WEPHOSTSVC - ok
14:19:11.0950 0x12a4  wercplsupport - ok
14:19:11.0966 0x12a4  WerSvc - ok
14:19:11.0983 0x12a4  WFPLWFS - ok
14:19:12.0000 0x12a4  WiaRpc - ok
14:19:12.0016 0x12a4  WIMMount - ok
14:19:12.0033 0x12a4  WinDefend - ok
14:19:12.0067 0x12a4  WinHttpAutoProxySvc - ok
14:19:12.0084 0x12a4  winmgmt - ok
14:19:12.0101 0x12a4  WinRM - ok
14:19:12.0136 0x12a4  WinUsb - ok
14:19:12.0153 0x12a4  WlanSvc - ok
14:19:12.0169 0x12a4  wlidsvc - ok
14:19:12.0185 0x12a4  WmiAcpi - ok
14:19:12.0210 0x12a4  wmiApSrv - ok
14:19:12.0228 0x12a4  WMPNetworkSvc - ok
14:19:12.0245 0x12a4  Wof - ok
14:19:12.0269 0x12a4  workfolderssvc - ok
14:19:12.0286 0x12a4  wpcfltr - ok
14:19:12.0303 0x12a4  WPCSvc - ok
14:19:12.0320 0x12a4  WPDBusEnum - ok
14:19:12.0337 0x12a4  WpdUpFltr - ok
14:19:12.0354 0x12a4  ws2ifsl - ok
14:19:12.0370 0x12a4  wscsvc - ok
14:19:12.0386 0x12a4  WSDPrintDevice - ok
14:19:12.0405 0x12a4  WSDScan - ok
14:19:12.0422 0x12a4  WSearch - ok
14:19:12.0447 0x12a4  WSService - ok
14:19:12.0464 0x12a4  wuauserv - ok
14:19:12.0481 0x12a4  WudfPf - ok
14:19:12.0498 0x12a4  WUDFRd - ok
14:19:12.0515 0x12a4  WUDFSensorLP - ok
14:19:12.0531 0x12a4  wudfsvc - ok
14:19:12.0547 0x12a4  WUDFWpdFs - ok
14:19:12.0558 0x12a4  WUDFWpdMtp - ok
14:19:12.0575 0x12a4  WwanSvc - ok
14:19:12.0622 0x12a4  ================ Scan global ===============================
14:19:12.0631 0x12a4  [ Global ] - ok
14:19:12.0633 0x12a4  ================ Scan MBR ==================================
14:19:12.0643 0x12a4  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
14:19:12.0732 0x12a4  \Device\Harddisk0\DR0 - ok
14:19:12.0734 0x12a4  ================ Scan VBR ==================================
14:19:12.0734 0x12a4  ================ Scan generic autorun ======================
14:19:12.0734 0x12a4  Baidu Antivirus - ok
14:19:12.0741 0x12a4  Dropbox Update - ok
14:19:12.0749 0x12a4  GoogleChromeAutoLaunch_5B86E73E03933FC4D2E0933328283FFF - ok
14:19:12.0824 0x12a4  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x60100 ( disabled : updated )
14:19:12.0827 0x12a4  AV detected via SS2: Baidu Antivirus, C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavSvc.exe ( 5.4.3.17894 ), 0x71000 ( enabled : updated )
14:19:12.0837 0x12a4  Win FW state via NFP2: enabled ( trusted )
14:19:12.0971 0x12a4  ============================================================
14:19:12.0971 0x12a4  Scan finished
14:19:12.0971 0x12a4  ============================================================
14:19:13.0033 0x0da4  Detected object count: 0
14:19:13.0034 0x0da4  Actual detected object count: 0

deeprybka 22.12.2016 23:12
Bitte den Scan wiederholen, diesmal aber ohne KSN-Parameter...;)

nici_st 23.12.2016 11:25
Hi Jürgen,

hier der neue Scan

Code:
11:22:59.0270 0x1458  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
11:22:59.0270 0x1458  UEFI system
11:23:02.0246 0x1458  ============================================================
11:23:02.0246 0x1458  Current date / time: 2016/12/23 11:23:02.0246
11:23:02.0246 0x1458  SystemInfo:
11:23:02.0246 0x1458 
11:23:02.0247 0x1458  OS Version: 6.3.9600 ServicePack: 0.0
11:23:02.0247 0x1458  Product type: Workstation
11:23:02.0247 0x1458  ComputerName: TAB
11:23:02.0247 0x1458  UserName: nici_st
11:23:02.0247 0x1458  Windows directory: C:\WINDOWS
11:23:02.0247 0x1458  System windows directory: C:\WINDOWS
11:23:02.0247 0x1458  Processor architecture: Intel x86
11:23:02.0247 0x1458  Number of processors: 4
11:23:02.0247 0x1458  Page size: 0x1000
11:23:02.0247 0x1458  Boot type: Normal boot
11:23:02.0247 0x1458  CodeIntegrityOptions = 0x00000001
11:23:02.0247 0x1458  ============================================================
11:23:02.0682 0x1458  KLMD registered as C:\WINDOWS\system32\drivers\02836667.sys
11:23:02.0682 0x1458  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 9600.18505, osProperties = 0x18
11:23:02.0875 0x1458  System UUID: {99102FDC-8941-C9B4-23BD-85862EF13317}
11:23:03.0630 0x1458  !crdlk
11:23:03.0638 0x1458  Drive \Device\Harddisk0\DR0 - Size: 0xE8D000000 ( 58.20 Gb ), SectorSize: 0x200, Cylinders: 0x1DAD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
11:23:03.0640 0x1458  ============================================================
11:23:03.0640 0x1458  \Device\Harddisk0\DR0:
11:23:03.0640 0x1458  Can't read MBR
11:23:03.0640 0x1458  Initialize success
11:23:03.0640 0x1458  ============================================================
11:24:27.0738 0x0610  ============================================================
11:24:27.0738 0x0610  Scan started
11:24:27.0738 0x0610  Mode: Manual; SigCheck; TDLFS;
11:24:27.0738 0x0610  ============================================================
11:24:27.0738 0x0610  KSN ping started
11:24:27.0839 0x0610  KSN ping finished: true
11:24:28.0449 0x0610  ================ Scan system memory ========================
11:24:28.0449 0x0610  System memory - ok
11:24:28.0450 0x0610  ================ Scan services =============================
11:24:28.0513 0x0610  1394ohci - ok
11:24:28.0531 0x0610  3ware - ok
11:24:28.0551 0x0610  ACPI - ok
11:24:28.0571 0x0610  acpiex - ok
11:24:28.0594 0x0610  acpipagr - ok
11:24:28.0617 0x0610  AcpiPmi - ok
11:24:28.0636 0x0610  acpitime - ok
11:24:28.0656 0x0610  AdobeARMservice - ok
11:24:28.0674 0x0610  AdobeFlashPlayerUpdateSvc - ok
11:24:28.0692 0x0610  ADP80XX - ok
11:24:28.0721 0x0610  AeLookupSvc - ok
11:24:28.0740 0x0610  AFD - ok
11:24:28.0752 0x0610  agp440 - ok
11:24:28.0773 0x0610  ahcache - ok
11:24:28.0791 0x0610  ALG - ok
11:24:28.0814 0x0610  amdagp - ok
11:24:28.0833 0x0610  AmdK8 - ok
11:24:28.0855 0x0610  AmdPPM - ok
11:24:28.0878 0x0610  amdsata - ok
11:24:28.0895 0x0610  amdsbs - ok
11:24:28.0915 0x0610  amdxata - ok
11:24:28.0933 0x0610  AppID - ok
11:24:28.0951 0x0610  AppIDSvc - ok
11:24:28.0969 0x0610  Appinfo - ok
11:24:28.0989 0x0610  appnetmsgmgr - ok
11:24:29.0009 0x0610  AppReadiness - ok
11:24:29.0032 0x0610  AppXSvc - ok
11:24:29.0052 0x0610  arcsas - ok
11:24:29.0072 0x0610  atapi - ok
11:24:29.0091 0x0610  AudioEndpointBuilder - ok
11:24:29.0113 0x0610  Audiosrv - ok
11:24:29.0134 0x0610  AxInstSV - ok
11:24:29.0157 0x0610  BasicDisplay - ok
11:24:29.0175 0x0610  BasicRender - ok
11:24:29.0203 0x0610  BavSvc - ok
11:24:29.0222 0x0610  bcmfn2 - ok
11:24:29.0242 0x0610  BcmNfcIc - ok
11:24:29.0262 0x0610  BCMSDH43XX - ok
11:24:29.0276 0x0610  BdApiUtil - ok
11:24:29.0295 0x0610  bdark - ok
11:24:29.0315 0x0610  BdCameraProtect - ok
11:24:29.0334 0x0610  BDESVC - ok
11:24:29.0354 0x0610  BdSandbox - ok
11:24:29.0375 0x0610  BdSandboxSrv - ok
11:24:29.0394 0x0610  Beep - ok
11:24:29.0417 0x0610  BFE - ok
11:24:29.0437 0x0610  Bfilter - ok
11:24:29.0452 0x0610  Bfmon - ok
11:24:29.0472 0x0610  Bhbase - ok
11:24:29.0491 0x0610  BHipsEx - ok
11:24:29.0514 0x0610  BHipsSvc - ok
11:24:29.0520 0x0610  BITS - ok
11:24:29.0540 0x0610  Bnbase - ok
11:24:29.0554 0x0610  Bndef - ok
11:24:29.0570 0x0610  Bnmon - ok
11:24:29.0582 0x0610  bowser - ok
11:24:29.0594 0x0610  Bprotect - ok
11:24:29.0606 0x0610  BrokerInfrastructure - ok
11:24:29.0620 0x0610  Browser - ok
11:24:29.0634 0x0610  BthAvrcpTg - ok
11:24:29.0648 0x0610  BthEnum - ok
11:24:29.0671 0x0610  BthHFEnum - ok
11:24:29.0685 0x0610  bthhfhid - ok
11:24:29.0704 0x0610  BthHFSrv - ok
11:24:29.0726 0x0610  BthLEEnum - ok
11:24:29.0746 0x0610  BthMini - ok
11:24:29.0768 0x0610  BTHMODEM - ok
11:24:29.0789 0x0610  BthPan - ok
11:24:29.0809 0x0610  BTHPORT - ok
11:24:29.0828 0x0610  bthserv - ok
11:24:29.0850 0x0610  btwampfl - ok
11:24:29.0870 0x0610  BtwSerialBus - ok
11:24:29.0890 0x0610  camera - ok
11:24:29.0910 0x0610  CCDMonitorService - ok
11:24:29.0934 0x0610  ccSet_NARA - ok
11:24:29.0954 0x0610  cdfs - ok
11:24:29.0973 0x0610  cdrom - ok
11:24:29.0991 0x0610  CertPropSvc - ok
11:24:30.0012 0x0610  ChaabiDriver - ok
11:24:30.0037 0x0610  circlass - ok
11:24:30.0051 0x0610  CLFS - ok
11:24:30.0074 0x0610  ClickToRunSvc - ok
11:24:30.0115 0x0610  clvpep - ok
11:24:30.0136 0x0610  CmBatt - ok
11:24:30.0156 0x0610  CNG - ok
11:24:30.0179 0x0610  cnghwassist - ok
11:24:30.0203 0x0610  CompositeBus - ok
11:24:30.0226 0x0610  COMSysApp - ok
11:24:30.0250 0x0610  condrv - ok
11:24:30.0282 0x0610  CryptSvc - ok
11:24:30.0296 0x0610  dam - ok
11:24:30.0315 0x0610  dc3d - ok
11:24:30.0346 0x0610  DcomLaunch - ok
11:24:30.0366 0x0610  defragsvc - ok
11:24:30.0389 0x0610  DeviceAssociationService - ok
11:24:30.0409 0x0610  DeviceInstall - ok
11:24:30.0430 0x0610  Dfsc - ok
11:24:30.0453 0x0610  dg_ssudbus - ok
11:24:30.0475 0x0610  Dhcp - ok
11:24:30.0501 0x0610  DiagTrack - ok
11:24:30.0526 0x0610  disk - ok
11:24:30.0550 0x0610  dmvsc - ok
11:24:30.0563 0x0610  Dnscache - ok
11:24:30.0582 0x0610  dot3svc - ok
11:24:30.0607 0x0610  DPS - ok
11:24:30.0632 0x0610  DptfDevDisplay - ok
11:24:30.0656 0x0610  DptfDevGen - ok
11:24:30.0679 0x0610  DptfDevProc - ok
11:24:30.0698 0x0610  DptfManager - ok
11:24:30.0721 0x0610  DptfParticipantDisplayService - ok
11:24:30.0744 0x0610  DptfParticipantProcessorService - ok
11:24:30.0766 0x0610  DptfPolicyConfigTDPService - ok
11:24:30.0789 0x0610  DptfPolicyCriticalService - ok
11:24:30.0813 0x0610  DptfPolicyLpmService - ok
11:24:30.0826 0x0610  drmkaud - ok
11:24:30.0851 0x0610  DsiDeviceControlService - ok
11:24:30.0872 0x0610  DsmSvc - ok
11:24:30.0890 0x0610  DXGKrnl - ok
11:24:30.0907 0x0610  EapHost - ok
11:24:30.0925 0x0610  eapihdrv - ok
11:24:30.0944 0x0610  EFS - ok
11:24:30.0962 0x0610  EhStorClass - ok
11:24:30.0984 0x0610  EhStorTcgDrv - ok
11:24:31.0006 0x0610  ErrDev - ok
11:24:31.0046 0x0610  EventSystem - ok
11:24:31.0064 0x0610  exfat - ok
11:24:31.0078 0x0610  fastfat - ok
11:24:31.0099 0x0610  Fax - ok
11:24:31.0120 0x0610  fdc - ok
11:24:31.0139 0x0610  fdPHost - ok
11:24:31.0159 0x0610  FDResPub - ok
11:24:31.0186 0x0610  fhsvc - ok
11:24:31.0206 0x0610  FileInfo - ok
11:24:31.0228 0x0610  Filetrace - ok
11:24:31.0249 0x0610  FlashLed - ok
11:24:31.0271 0x0610  flpydisk - ok
11:24:31.0295 0x0610  FltMgr - ok
11:24:31.0316 0x0610  FontCache - ok
11:24:31.0339 0x0610  FontCache3.0.0.0 - ok
11:24:31.0361 0x0610  FsDepends - ok
11:24:31.0383 0x0610  Fs_Rec - ok
11:24:31.0406 0x0610  fvevol - ok
11:24:31.0425 0x0610  FxPPM - ok
11:24:31.0444 0x0610  gagp30kx - ok
11:24:31.0461 0x0610  gencounter - ok
11:24:31.0480 0x0610  GPIO - ok
11:24:31.0498 0x0610  GPIOCLV - ok
11:24:31.0522 0x0610  GPIOClx0101 - ok
11:24:31.0544 0x0610  gpsvc - ok
11:24:31.0562 0x0610  gupdate - ok
11:24:31.0582 0x0610  gupdatem - ok
11:24:31.0595 0x0610  HDAudBus - ok
11:24:31.0616 0x0610  HidBatt - ok
11:24:31.0634 0x0610  HidBth - ok
11:24:31.0653 0x0610  hidi2c - ok
11:24:31.0672 0x0610  HidIr - ok
11:24:31.0693 0x0610  hidserv - ok
11:24:31.0712 0x0610  HidUsb - ok
11:24:31.0730 0x0610  hkmsvc - ok
11:24:31.0749 0x0610  HomeGroupListener - ok
11:24:31.0768 0x0610  HomeGroupProvider - ok
11:24:31.0786 0x0610  HpSAMD - ok
11:24:31.0806 0x0610  HTTP - ok
11:24:31.0824 0x0610  hwpolicy - ok
11:24:31.0841 0x0610  hyperkbd - ok
11:24:31.0865 0x0610  HyperVideo - ok
11:24:31.0884 0x0610  i8042prt - ok
11:24:31.0901 0x0610  iaioi2c - ok
11:24:31.0919 0x0610  iaStorAV - ok
11:24:31.0935 0x0610  iaStorV - ok
11:24:31.0954 0x0610  IEEtwCollectorService - ok
11:24:31.0973 0x0610  igddim32 - ok
11:24:31.0991 0x0610  igdkmd32 - ok
11:24:32.0010 0x0610  igdperf32 - ok
11:24:32.0029 0x0610  IKEEXT - ok
11:24:32.0047 0x0610  imx175 - ok
11:24:32.0077 0x0610  inteli2c - ok
11:24:32.0093 0x0610  intelide - ok
11:24:32.0110 0x0610  intelpep - ok
11:24:32.0125 0x0610  intelppm - ok
11:24:32.0143 0x0610  IntelSST - ok
11:24:32.0165 0x0610  IpFilterDriver - ok
11:24:32.0187 0x0610  iphlpsvc - ok
11:24:32.0209 0x0610  IPMIDRV - ok
11:24:32.0228 0x0610  IPNAT - ok
11:24:32.0248 0x0610  IRENUM - ok
11:24:32.0272 0x0610  isapnp - ok
11:24:32.0290 0x0610  iScsiPrt - ok
11:24:32.0309 0x0610  kbdclass - ok
11:24:32.0330 0x0610  kbdhid - ok
11:24:32.0349 0x0610  kdnic - ok
11:24:32.0372 0x0610  KeyIso - ok
11:24:32.0394 0x0610  KSecDD - ok
11:24:32.0418 0x0610  KSecPkg - ok
11:24:32.0442 0x0610  KtmRm - ok
11:24:32.0462 0x0610  LanmanServer - ok
11:24:32.0481 0x0610  LanmanWorkstation - ok
11:24:32.0509 0x0610  lfsvc - ok
11:24:32.0531 0x0610  lltdio - ok
11:24:32.0552 0x0610  lltdsvc - ok
11:24:32.0570 0x0610  Lm3554 - ok
11:24:32.0591 0x0610  lmhosts - ok
11:24:32.0616 0x0610  LNWIPC - ok
11:24:32.0644 0x0610  LSI_SAS - ok
11:24:32.0676 0x0610  LSI_SAS2 - ok
11:24:32.0701 0x0610  LSI_SAS3 - ok
11:24:32.0726 0x0610  LSI_SSS - ok
11:24:32.0743 0x0610  LSM - ok
11:24:32.0767 0x0610  luafv - ok
11:24:32.0786 0x0610  MBI - ok
11:24:32.0803 0x0610  megasas - ok
11:24:32.0826 0x0610  megasr - ok
11:24:32.0846 0x0610  MMCSS - ok
11:24:32.0866 0x0610  Modem - ok
11:24:32.0884 0x0610  monitor - ok
11:24:32.0904 0x0610  MonitorFunction - ok
11:24:32.0922 0x0610  mouclass - ok
11:24:32.0944 0x0610  mouhid - ok
11:24:32.0965 0x0610  mountmgr - ok
11:24:32.0985 0x0610  MozillaMaintenance - ok
11:24:33.0005 0x0610  mpsdrv - ok
11:24:33.0026 0x0610  MpsSvc - ok
11:24:33.0047 0x0610  MRxDAV - ok
11:24:33.0069 0x0610  mrxsmb - ok
11:24:33.0089 0x0610  mrxsmb10 - ok
11:24:33.0112 0x0610  mrxsmb20 - ok
11:24:33.0132 0x0610  MsBridge - ok
11:24:33.0156 0x0610  MSDTC - ok
11:24:33.0199 0x0610  Msfs - ok
11:24:33.0220 0x0610  msgpiowin32 - ok
11:24:33.0239 0x0610  mshidkmdf - ok
11:24:33.0257 0x0610  mshidumdf - ok
11:24:33.0276 0x0610  MSICReg - ok
11:24:33.0296 0x0610  msisadrv - ok
11:24:33.0316 0x0610  MSiSCSI - ok
11:24:33.0336 0x0610  msiserver - ok
11:24:33.0356 0x0610  MSKSSRV - ok
11:24:33.0377 0x0610  MsLldp - ok
11:24:33.0397 0x0610  MSPCLOCK - ok
11:24:33.0413 0x0610  MSPQM - ok
11:24:33.0432 0x0610  MsRPC - ok
11:24:33.0462 0x0610  mssmbios - ok
11:24:33.0482 0x0610  MSTEE - ok
11:24:33.0514 0x0610  mt9e013 - ok
11:24:33.0539 0x0610  MTConfig - ok
11:24:33.0557 0x0610  Mup - ok
11:24:33.0577 0x0610  mvumis - ok
11:24:33.0600 0x0610  napagent - ok
11:24:33.0624 0x0610  NativeWifiP - ok
11:24:33.0646 0x0610  NcaSvc - ok
11:24:33.0665 0x0610  NcbService - ok
11:24:33.0686 0x0610  NcdAutoSetup - ok
11:24:33.0707 0x0610  NDIS - ok
11:24:33.0731 0x0610  NdisCap - ok
11:24:33.0750 0x0610  NdisImPlatform - ok
11:24:33.0771 0x0610  NdisTapi - ok
11:24:33.0790 0x0610  Ndisuio - ok
11:24:33.0808 0x0610  NdisVirtualBus - ok
11:24:33.0824 0x0610  NdisWan - ok
11:24:33.0844 0x0610  NdisWanLegacy - ok
11:24:33.0864 0x0610  NDProxy - ok
11:24:33.0880 0x0610  Ndu - ok
11:24:33.0899 0x0610  NetBIOS - ok
11:24:33.0924 0x0610  NetBT - ok
11:24:33.0945 0x0610  Netlogon - ok
11:24:33.0962 0x0610  Netman - ok
11:24:33.0980 0x0610  netprofm - ok
11:24:33.0997 0x0610  NetTcpPortSharing - ok
11:24:34.0016 0x0610  netvsc - ok
11:24:34.0035 0x0610  NlaSvc - ok
11:24:34.0052 0x0610  NOBU - ok
11:24:34.0074 0x0610  Npfs - ok
11:24:34.0091 0x0610  npsvctrig - ok
11:24:34.0107 0x0610  nsi - ok
11:24:34.0123 0x0610  nsiproxy - ok
11:24:34.0149 0x0610  Ntfs - ok
11:24:34.0166 0x0610  NTI IScheduleSvc - ok
11:24:34.0182 0x0610  NTIDrvr - ok
11:24:34.0201 0x0610  NuidFltr - ok
11:24:34.0221 0x0610  Null - ok
11:24:34.0241 0x0610  nvraid - ok
11:24:34.0259 0x0610  nvstor - ok
11:24:34.0283 0x0610  nv_agp - ok
11:24:34.0308 0x0610  ose - ok
11:24:34.0331 0x0610  ov2720 - ok
11:24:34.0360 0x0610  ov8830 - ok
11:24:34.0387 0x0610  p2pimsvc - ok
11:24:34.0416 0x0610  p2psvc - ok
11:24:34.0449 0x0610  Parport - ok
11:24:34.0471 0x0610  partmgr - ok
11:24:34.0498 0x0610  Parvdm - ok
11:24:34.0526 0x0610  PcaSvc - ok
11:24:34.0552 0x0610  pci - ok
11:24:34.0575 0x0610  pciide - ok
11:24:34.0597 0x0610  pcmcia - ok
11:24:34.0620 0x0610  pcw - ok
11:24:34.0653 0x0610  pdc - ok
11:24:34.0674 0x0610  PEAUTH - ok
11:24:34.0742 0x0610  pla - ok
11:24:34.0779 0x0610  PlugPlay - ok
11:24:34.0801 0x0610  PNRPAutoReg - ok
11:24:34.0826 0x0610  PNRPsvc - ok
11:24:34.0853 0x0610  PolicyAgent - ok
11:24:34.0881 0x0610  Power - ok
11:24:34.0917 0x0610  PrintNotify - ok
11:24:34.0951 0x0610  Processor - ok
11:24:34.0966 0x0610  ProfSvc - ok
11:24:34.0991 0x0610  Psched - ok
11:24:35.0020 0x0610  QWAVE - ok
11:24:35.0054 0x0610  QWAVEdrv - ok
11:24:35.0074 0x0610  RasAcd - ok
11:24:35.0100 0x0610  RasAuto - ok
11:24:35.0120 0x0610  RasMan - ok
11:24:35.0153 0x0610  RasPppoe - ok
11:24:35.0174 0x0610  rdbss - ok
11:24:35.0201 0x0610  rdpbus - ok
11:24:35.0220 0x0610  RDPDR - ok
11:24:35.0251 0x0610  RdpVideoMiniport - ok
11:24:35.0272 0x0610  rdyboost - ok
11:24:35.0292 0x0610  RemoteAccess - ok
11:24:35.0308 0x0610  RemoteRegistry - ok
11:24:35.0327 0x0610  RFCOMM - ok
11:24:35.0346 0x0610  RpcEptMapper - ok
11:24:35.0368 0x0610  RpcLocator - ok
11:24:35.0390 0x0610  RpcSs - ok
11:24:35.0412 0x0610  rspndr - ok
11:24:35.0442 0x0610  rtii2sac - ok
11:24:35.0466 0x0610  s3cap - ok
11:24:35.0483 0x0610  SamSs - ok
11:24:35.0504 0x0610  sbp2port - ok
11:24:35.0525 0x0610  SCardSvr - ok
11:24:35.0553 0x0610  ScDeviceEnum - ok
11:24:35.0578 0x0610  scfilter - ok
11:24:35.0595 0x0610  Schedule - ok
11:24:35.0617 0x0610  SCPolicySvc - ok
11:24:35.0634 0x0610  sdbus - ok
11:24:35.0651 0x0610  sdstor - ok
11:24:35.0668 0x0610  secdrv - ok
11:24:35.0685 0x0610  seclogon - ok
11:24:35.0701 0x0610  SENS - ok
11:24:35.0720 0x0610  SensorsHIDClassDriver - ok
11:24:35.0731 0x0610  SensorsServiceDriver - ok
11:24:35.0747 0x0610  SensrSvc - ok
11:24:35.0763 0x0610  SerCx - ok
11:24:35.0785 0x0610  SerCx2 - ok
11:24:35.0806 0x0610  Serenum - ok
11:24:35.0830 0x0610  Serial - ok
11:24:35.0848 0x0610  sermouse - ok
11:24:35.0896 0x0610  SessionEnv - ok
11:24:35.0918 0x0610  sfloppy - ok
11:24:35.0938 0x0610  SharedAccess - ok
11:24:35.0956 0x0610  ShellHWDetection - ok
11:24:35.0974 0x0610  sisagp - ok
11:24:35.0988 0x0610  SiSRaid2 - ok
11:24:36.0014 0x0610  SiSRaid4 - ok
11:24:36.0033 0x0610  smphost - ok
11:24:36.0073 0x0610  SNMPTRAP - ok
11:24:36.0097 0x0610  spaceport - ok
11:24:36.0120 0x0610  SpbCx - ok
11:24:36.0141 0x0610  spi - ok
11:24:36.0161 0x0610  Spooler - ok
11:24:36.0181 0x0610  sppsvc - ok
11:24:36.0203 0x0610  srv - ok
11:24:36.0226 0x0610  srv2 - ok
11:24:36.0244 0x0610  srvnet - ok
11:24:36.0265 0x0610  SSDPSRV - ok
11:24:36.0287 0x0610  ssti2c - ok
11:24:36.0306 0x0610  SstpSvc - ok
11:24:36.0329 0x0610  ssudmdm - ok
11:24:36.0348 0x0610  stexstor - ok
11:24:36.0367 0x0610  StiSvc - ok
11:24:36.0386 0x0610  storahci - ok
11:24:36.0404 0x0610  storflt - ok
11:24:36.0421 0x0610  stornvme - ok
11:24:36.0440 0x0610  StorSvc - ok
11:24:36.0457 0x0610  storvsc - ok
11:24:36.0475 0x0610  svsvc - ok
11:24:36.0495 0x0610  swenum - ok
11:24:36.0513 0x0610  swprv - ok
11:24:36.0532 0x0610  SysMain - ok
11:24:36.0550 0x0610  SystemEventsBroker - ok
11:24:36.0571 0x0610  TabletInputService - ok
11:24:36.0589 0x0610  TapiSrv - ok
11:24:36.0612 0x0610  Tcpip - ok
11:24:36.0634 0x0610  TCPIP6 - ok
11:24:36.0668 0x0610  tcpipreg - ok
11:24:36.0698 0x0610  tdx - ok
11:24:36.0718 0x0610  terminpt - ok
11:24:36.0740 0x0610  TermService - ok
11:24:36.0758 0x0610  Themes - ok
11:24:36.0781 0x0610  THREADORDER - ok
11:24:36.0804 0x0610  TimeBroker - ok
11:24:36.0823 0x0610  TPM - ok
11:24:36.0842 0x0610  TrkWks - ok
11:24:36.0863 0x0610  TrustedInstaller - ok
11:24:36.0892 0x0610  TsUsbFlt - ok
11:24:36.0911 0x0610  TsUsbGD - ok
11:24:36.0929 0x0610  tunnel - ok
11:24:36.0946 0x0610  uagp35 - ok
11:24:36.0963 0x0610  Uart16550pc - ok
11:24:36.0980 0x0610  UASPStor - ok
11:24:36.0996 0x0610  UBHelper - ok
11:24:37.0007 0x0610  UCX01000 - ok
11:24:37.0027 0x0610  udfs - ok
11:24:37.0045 0x0610  UEFI - ok
11:24:37.0082 0x0610  UI0Detect - ok
11:24:37.0098 0x0610  uliagpkx - ok
11:24:37.0115 0x0610  umbus - ok
11:24:37.0132 0x0610  UmPass - ok
11:24:37.0148 0x0610  UmRdpService - ok
11:24:37.0167 0x0610  upnphost - ok
11:24:37.0185 0x0610  usbccgp - ok
11:24:37.0203 0x0610  usbcir - ok
11:24:37.0223 0x0610  usbehci - ok
11:24:37.0243 0x0610  usbhub - ok
11:24:37.0264 0x0610  USBHUB3 - ok
11:24:37.0285 0x0610  usbohci - ok
11:24:37.0307 0x0610  usbprint - ok
11:24:37.0332 0x0610  USBSTOR - ok
11:24:37.0352 0x0610  usbuhci - ok
11:24:37.0370 0x0610  USBXHCI - ok
11:24:37.0395 0x0610  usb_rndisx - ok
11:24:37.0417 0x0610  VaultSvc - ok
11:24:37.0442 0x0610  vdrvroot - ok
11:24:37.0464 0x0610  vds - ok
11:24:37.0486 0x0610  VerifierExt - ok
11:24:37.0517 0x0610  vhdmp - ok
11:24:37.0534 0x0610  viaagp - ok
11:24:37.0556 0x0610  ViaC7 - ok
11:24:37.0582 0x0610  viaide - ok
11:24:37.0603 0x0610  VineyardsTaskSrv - ok
11:24:37.0623 0x0610  vmbus - ok
11:24:37.0640 0x0610  VMBusHID - ok
11:24:37.0658 0x0610  vmicguestinterface - ok
11:24:37.0676 0x0610  vmicheartbeat - ok
11:24:37.0693 0x0610  vmickvpexchange - ok
11:24:37.0710 0x0610  vmicrdv - ok
11:24:37.0734 0x0610  vmicshutdown - ok
11:24:37.0756 0x0610  vmictimesync - ok
11:24:37.0774 0x0610  vmicvss - ok
11:24:37.0791 0x0610  volmgr - ok
11:24:37.0814 0x0610  volmgrx - ok
11:24:37.0837 0x0610  volsnap - ok
11:24:37.0858 0x0610  vonetframe - ok
11:24:37.0884 0x0610  vsmraid - ok
11:24:37.0908 0x0610  VSS - ok
11:24:37.0925 0x0610  VSTXRAID - ok
11:24:37.0946 0x0610  vwifibus - ok
11:24:37.0968 0x0610  vwififlt - ok
11:24:37.0994 0x0610  vwifimp - ok
11:24:38.0015 0x0610  W32Time - ok
11:24:38.0035 0x0610  WacomPen - ok
11:24:38.0055 0x0610  wbengine - ok
11:24:38.0077 0x0610  WbioSrvc - ok
11:24:38.0096 0x0610  Wcmsvc - ok
11:24:38.0116 0x0610  wcncsvc - ok
11:24:38.0138 0x0610  WcsPlugInService - ok
11:24:38.0159 0x0610  WdBoot - ok
11:24:38.0180 0x0610  WDC_SAM - ok
11:24:38.0201 0x0610  Wdf01000 - ok
11:24:38.0221 0x0610  WdFilter - ok
11:24:38.0239 0x0610  WdiServiceHost - ok
11:24:38.0261 0x0610  WdiSystemHost - ok
11:24:38.0281 0x0610  WdNisDrv - ok
11:24:38.0295 0x0610  WdNisSvc - ok
11:24:38.0315 0x0610  WebClient - ok
11:24:38.0337 0x0610  Wecsvc - ok
11:24:38.0356 0x0610  WEPHOSTSVC - ok
11:24:38.0378 0x0610  wercplsupport - ok
11:24:38.0401 0x0610  WerSvc - ok
11:24:38.0427 0x0610  WFPLWFS - ok
11:24:38.0454 0x0610  WiaRpc - ok
11:24:38.0487 0x0610  WIMMount - ok
11:24:38.0538 0x0610  WinDefend - ok
11:24:38.0587 0x0610  WinHttpAutoProxySvc - ok
11:24:38.0605 0x0610  winmgmt - ok
11:24:38.0640 0x0610  WinRM - ok
11:24:38.0699 0x0610  WinUsb - ok
11:24:38.0717 0x0610  WlanSvc - ok
11:24:38.0735 0x0610  wlidsvc - ok
11:24:38.0752 0x0610  WmiAcpi - ok
11:24:38.0782 0x0610  wmiApSrv - ok
11:24:38.0812 0x0610  WMPNetworkSvc - ok
11:24:38.0832 0x0610  Wof - ok
11:24:38.0869 0x0610  workfolderssvc - ok
11:24:38.0889 0x0610  wpcfltr - ok
11:24:38.0909 0x0610  WPCSvc - ok
11:24:38.0928 0x0610  WPDBusEnum - ok
11:24:38.0947 0x0610  WpdUpFltr - ok
11:24:38.0967 0x0610  ws2ifsl - ok
11:24:38.0990 0x0610  wscsvc - ok
11:24:39.0012 0x0610  WSDPrintDevice - ok
11:24:39.0034 0x0610  WSDScan - ok
11:24:39.0059 0x0610  WSearch - ok
11:24:39.0091 0x0610  WSService - ok
11:24:39.0113 0x0610  wuauserv - ok
11:24:39.0146 0x0610  WudfPf - ok
11:24:39.0163 0x0610  WUDFRd - ok
11:24:39.0184 0x0610  WUDFSensorLP - ok
11:24:39.0208 0x0610  wudfsvc - ok
11:24:39.0223 0x0610  WUDFWpdFs - ok
11:24:39.0241 0x0610  WUDFWpdMtp - ok
11:24:39.0262 0x0610  WwanSvc - ok
11:24:39.0326 0x0610  ================ Scan global ===============================
11:24:39.0335 0x0610  [ Global ] - ok
11:24:39.0336 0x0610  ================ Scan MBR ==================================
11:24:39.0354 0x0610  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
11:24:39.0437 0x0610  \Device\Harddisk0\DR0 - ok
11:24:39.0438 0x0610  ================ Scan VBR ==================================
11:24:39.0439 0x0610  ================ Scan generic autorun ======================
11:24:39.0439 0x0610  Baidu Antivirus - ok
11:24:39.0448 0x0610  Dropbox Update - ok
11:24:39.0455 0x0610  GoogleChromeAutoLaunch_5B86E73E03933FC4D2E0933328283FFF - ok
11:24:39.0538 0x0610  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x60100 ( disabled : updated )
11:24:39.0540 0x0610  AV detected via SS2: Baidu Antivirus, C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavSvc.exe ( 5.4.3.17894 ), 0x71000 ( enabled : updated )
11:24:39.0550 0x0610  Win FW state via NFP2: enabled ( trusted )
11:24:39.0687 0x0610  ============================================================
11:24:39.0688 0x0610  Scan finished
11:24:39.0688 0x0610  ============================================================
11:24:39.0737 0x03b8  Detected object count: 0
11:24:39.0737 0x03b8  Actual detected object count: 0
Danke dir!

deeprybka 23.12.2016 11:37
Hsst Du den KSN-Parameter auch vorher abgewählt?

nici_st 23.12.2016 15:09
Ich hab hier ganz unten den Haken bei "Use KSN to scan objects" entfernt. Oder muss das noch woanders weg?

http://deeprybka.trojaner-board.de/tdss/options.PNG

deeprybka 23.12.2016 15:49
Mach mal bitte einen Scan mit loaded modules und bei den unteren alle Haken raus.

nici_st 23.12.2016 17:23
Log ist wohl zu lang. Hier Teil 1:

Code:
17:10:46.0681 0x0e98  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
17:10:46.0681 0x0e98  UEFI system
17:10:48.0681 0x0e98  ============================================================
17:10:48.0681 0x0e98  Current date / time: 2016/12/23 17:10:48.0681
17:10:48.0681 0x0e98  SystemInfo:
17:10:48.0681 0x0e98 
17:10:48.0681 0x0e98  OS Version: 6.3.9600 ServicePack: 0.0
17:10:48.0681 0x0e98  Product type: Workstation
17:10:48.0681 0x0e98  ComputerName: TAB
17:10:48.0681 0x0e98  UserName: nici_st
17:10:48.0681 0x0e98  Windows directory: C:\WINDOWS
17:10:48.0681 0x0e98  System windows directory: C:\WINDOWS
17:10:48.0681 0x0e98  Processor architecture: Intel x86
17:10:48.0681 0x0e98  Number of processors: 4
17:10:48.0681 0x0e98  Page size: 0x1000
17:10:48.0681 0x0e98  Boot type: Normal boot
17:10:48.0681 0x0e98  CodeIntegrityOptions = 0x00000001
17:10:48.0681 0x0e98  ============================================================
17:10:48.0696 0x0e98  KLMD ARK init status: drvProperties = 0xFFFF00, osBuild = 9600.18505, osProperties = 0x18
17:10:48.0696 0x0e98  KLMD BG init status: drvProperties = 0xFFFF00, osBuild = 9600.18505, osProperties = 0x18
17:10:48.0696 0x0e98  BG loaded
17:10:48.0993 0x0e98  System UUID: {99102FDC-8941-C9B4-23BD-85862EF13317}
17:10:50.0322 0x0e98  !crdlk
17:10:50.0337 0x0e98  Drive \Device\Harddisk0\DR0 - Size: 0xE8D000000 ( 58.20 Gb ), SectorSize: 0x200, Cylinders: 0x1DAD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:10:50.0337 0x0e98  ============================================================
17:10:50.0337 0x0e98  \Device\Harddisk0\DR0:
17:10:50.0337 0x0e98  Can't read MBR
17:10:50.0337 0x0e98  Initialize success
17:10:50.0337 0x0e98  ============================================================
17:13:11.0366 0x1788  ============================================================
17:13:11.0366 0x1788  Scan started
17:13:11.0366 0x1788  Mode: Manual;
17:13:11.0367 0x1788  ============================================================
17:13:11.0367 0x1788  KSN ping started
17:13:11.0477 0x1788  KSN ping finished: true
17:13:12.0752 0x1788  ================ Scan system memory ========================
17:13:12.0752 0x1788  System memory - ok
17:13:12.0754 0x1788  ================ Scan services =============================
17:13:12.0823 0x1788  1394ohci - ok
17:13:12.0841 0x1788  3ware - ok
17:13:12.0861 0x1788  ACPI - ok
17:13:12.0874 0x1788  acpiex - ok
17:13:12.0897 0x1788  acpipagr - ok
17:13:12.0919 0x1788  AcpiPmi - ok
17:13:12.0944 0x1788  acpitime - ok
17:13:12.0966 0x1788  AdobeARMservice - ok
17:13:12.0989 0x1788  AdobeFlashPlayerUpdateSvc - ok
17:13:13.0009 0x1788  ADP80XX - ok
17:13:13.0035 0x1788  AeLookupSvc - ok
17:13:13.0056 0x1788  AFD - ok
17:13:13.0076 0x1788  agp440 - ok
17:13:13.0097 0x1788  ahcache - ok
17:13:13.0115 0x1788  ALG - ok
17:13:13.0138 0x1788  amdagp - ok
17:13:13.0156 0x1788  AmdK8 - ok
17:13:13.0176 0x1788  AmdPPM - ok
17:13:13.0196 0x1788  amdsata - ok
17:13:13.0214 0x1788  amdsbs - ok
17:13:13.0232 0x1788  amdxata - ok
17:13:13.0251 0x1788  AppID - ok
17:13:13.0270 0x1788  AppIDSvc - ok
17:13:13.0290 0x1788  Appinfo - ok
17:13:13.0309 0x1788  appnetmsgmgr - ok
17:13:13.0327 0x1788  AppReadiness - ok
17:13:13.0347 0x1788  AppXSvc - ok
17:13:13.0369 0x1788  arcsas - ok
17:13:13.0391 0x1788  atapi - ok
17:13:13.0415 0x1788  AudioEndpointBuilder - ok
17:13:13.0437 0x1788  Audiosrv - ok
17:13:13.0458 0x1788  AxInstSV - ok
17:13:13.0477 0x1788  BasicDisplay - ok
17:13:13.0498 0x1788  BasicRender - ok
17:13:13.0530 0x1788  BavSvc - ok
17:13:13.0550 0x1788  bcmfn2 - ok
17:13:13.0572 0x1788  BcmNfcIc - ok
17:13:13.0591 0x1788  BCMSDH43XX - ok
17:13:13.0613 0x1788  BdApiUtil - ok
17:13:13.0632 0x1788  bdark - ok
17:13:13.0649 0x1788  BdCameraProtect - ok
17:13:13.0666 0x1788  BDESVC - ok
17:13:13.0686 0x1788  BdSandbox - ok
17:13:13.0705 0x1788  BdSandboxSrv - ok
17:13:13.0723 0x1788  Beep - ok
17:13:13.0740 0x1788  BFE - ok
17:13:13.0758 0x1788  Bfilter - ok
17:13:13.0775 0x1788  Bfmon - ok
17:13:13.0796 0x1788  Bhbase - ok
17:13:13.0816 0x1788  BHipsEx - ok
17:13:13.0834 0x1788  BHipsSvc - ok
17:13:13.0851 0x1788  BITS - ok
17:13:13.0867 0x1788  Bnbase - ok
17:13:13.0887 0x1788  Bndef - ok
17:13:13.0902 0x1788  Bnmon - ok
17:13:13.0922 0x1788  bowser - ok
17:13:13.0938 0x1788  Bprotect - ok
17:13:13.0957 0x1788  BrokerInfrastructure - ok
17:13:13.0974 0x1788  Browser - ok
17:13:13.0991 0x1788  BthAvrcpTg - ok
17:13:14.0009 0x1788  BthEnum - ok
17:13:14.0026 0x1788  BthHFEnum - ok
17:13:14.0043 0x1788  bthhfhid - ok
17:13:14.0060 0x1788  BthHFSrv - ok
17:13:14.0079 0x1788  BthLEEnum - ok
17:13:14.0096 0x1788  BthMini - ok
17:13:14.0115 0x1788  BTHMODEM - ok
17:13:14.0133 0x1788  BthPan - ok
17:13:14.0152 0x1788  BTHPORT - ok
17:13:14.0169 0x1788  bthserv - ok
17:13:14.0189 0x1788  btwampfl - ok
17:13:14.0214 0x1788  BtwSerialBus - ok
17:13:14.0240 0x1788  camera - ok
17:13:14.0264 0x1788  CCDMonitorService - ok
17:13:14.0285 0x1788  ccSet_NARA - ok
17:13:14.0310 0x1788  cdfs - ok
17:13:14.0333 0x1788  cdrom - ok
17:13:14.0358 0x1788  CertPropSvc - ok
17:13:14.0384 0x1788  ChaabiDriver - ok
17:13:14.0399 0x1788  circlass - ok
17:13:14.0428 0x1788  CLFS - ok
17:13:14.0447 0x1788  ClickToRunSvc - ok
17:13:14.0486 0x1788  clvpep - ok
17:13:14.0512 0x1788  CmBatt - ok
17:13:14.0540 0x1788  CNG - ok
17:13:14.0564 0x1788  cnghwassist - ok
17:13:14.0587 0x1788  CompositeBus - ok
17:13:14.0611 0x1788  COMSysApp - ok
17:13:14.0632 0x1788  condrv - ok
17:13:14.0659 0x1788  CryptSvc - ok
17:13:14.0679 0x1788  dam - ok
17:13:14.0695 0x1788  dc3d - ok
17:13:14.0719 0x1788  DcomLaunch - ok
17:13:14.0737 0x1788  defragsvc - ok
17:13:14.0752 0x1788  DeviceAssociationService - ok
17:13:14.0769 0x1788  DeviceInstall - ok
17:13:14.0788 0x1788  Dfsc - ok
17:13:14.0804 0x1788  dg_ssudbus - ok
17:13:14.0821 0x1788  Dhcp - ok
17:13:14.0841 0x1788  DiagTrack - ok
17:13:14.0860 0x1788  disk - ok
17:13:14.0879 0x1788  dmvsc - ok
17:13:14.0900 0x1788  Dnscache - ok
17:13:14.0912 0x1788  dot3svc - ok
17:13:14.0929 0x1788  DPS - ok
17:13:14.0946 0x1788  DptfDevDisplay - ok
17:13:14.0963 0x1788  DptfDevGen - ok
17:13:14.0980 0x1788  DptfDevProc - ok
17:13:14.0997 0x1788  DptfManager - ok
17:13:15.0016 0x1788  DptfParticipantDisplayService - ok
17:13:15.0037 0x1788  DptfParticipantProcessorService - ok
17:13:15.0054 0x1788  DptfPolicyConfigTDPService - ok
17:13:15.0071 0x1788  DptfPolicyCriticalService - ok
17:13:15.0089 0x1788  DptfPolicyLpmService - ok
17:13:15.0112 0x1788  drmkaud - ok
17:13:15.0131 0x1788  DsiDeviceControlService - ok
17:13:15.0156 0x1788  DsmSvc - ok
17:13:15.0173 0x1788  DXGKrnl - ok
17:13:15.0191 0x1788  EapHost - ok
17:13:15.0208 0x1788  eapihdrv - ok
17:13:15.0230 0x1788  EFS - ok
17:13:15.0247 0x1788  EhStorClass - ok
17:13:15.0267 0x1788  EhStorTcgDrv - ok
17:13:15.0286 0x1788  ErrDev - ok
17:13:15.0321 0x1788  EventSystem - ok
17:13:15.0338 0x1788  exfat - ok
17:13:15.0355 0x1788  fastfat - ok
17:13:15.0373 0x1788  Fax - ok
17:13:15.0393 0x1788  fdc - ok
17:13:15.0412 0x1788  fdPHost - ok
17:13:15.0422 0x1788  FDResPub - ok
17:13:15.0442 0x1788  fhsvc - ok
17:13:15.0460 0x1788  FileInfo - ok
17:13:15.0481 0x1788  Filetrace - ok
17:13:15.0498 0x1788  FlashLed - ok
17:13:15.0518 0x1788  flpydisk - ok
17:13:15.0537 0x1788  FltMgr - ok
17:13:15.0555 0x1788  FontCache - ok
17:13:15.0573 0x1788  FontCache3.0.0.0 - ok
17:13:15.0594 0x1788  FsDepends - ok
17:13:15.0615 0x1788  Fs_Rec - ok
17:13:15.0632 0x1788  fvevol - ok
17:13:15.0650 0x1788  FxPPM - ok
17:13:15.0677 0x1788  gagp30kx - ok
17:13:15.0698 0x1788  gencounter - ok
17:13:15.0718 0x1788  GPIO - ok
17:13:15.0739 0x1788  GPIOCLV - ok
17:13:15.0756 0x1788  GPIOClx0101 - ok
17:13:15.0777 0x1788  gpsvc - ok
17:13:15.0799 0x1788  gupdate - ok
17:13:15.0816 0x1788  gupdatem - ok
17:13:15.0833 0x1788  HDAudBus - ok
17:13:15.0852 0x1788  HidBatt - ok
17:13:15.0871 0x1788  HidBth - ok
17:13:15.0892 0x1788  hidi2c - ok
17:13:15.0915 0x1788  HidIr - ok
17:13:15.0934 0x1788  hidserv - ok
17:13:15.0953 0x1788  HidUsb - ok
17:13:15.0973 0x1788  hkmsvc - ok
17:13:15.0992 0x1788  HomeGroupListener - ok
17:13:16.0013 0x1788  HomeGroupProvider - ok
17:13:16.0031 0x1788  HpSAMD - ok
17:13:16.0049 0x1788  HTTP - ok
17:13:16.0066 0x1788  hwpolicy - ok
17:13:16.0083 0x1788  hyperkbd - ok
17:13:16.0103 0x1788  HyperVideo - ok
17:13:16.0123 0x1788  i8042prt - ok
17:13:16.0141 0x1788  iaioi2c - ok
17:13:16.0157 0x1788  iaStorAV - ok
17:13:16.0176 0x1788  iaStorV - ok
17:13:16.0197 0x1788  IEEtwCollectorService - ok
17:13:16.0216 0x1788  igddim32 - ok
17:13:16.0237 0x1788  igdkmd32 - ok
17:13:16.0255 0x1788  igdperf32 - ok
17:13:16.0272 0x1788  IKEEXT - ok
17:13:16.0290 0x1788  imx175 - ok
17:13:16.0316 0x1788  inteli2c - ok
17:13:16.0335 0x1788  intelide - ok
17:13:16.0353 0x1788  intelpep - ok
17:13:16.0373 0x1788  intelppm - ok
17:13:16.0398 0x1788  IntelSST - ok
17:13:16.0418 0x1788  IpFilterDriver - ok
17:13:16.0438 0x1788  iphlpsvc - ok
17:13:16.0453 0x1788  IPMIDRV - ok
17:13:16.0473 0x1788  IPNAT - ok
17:13:16.0492 0x1788  IRENUM - ok
17:13:16.0512 0x1788  isapnp - ok
17:13:16.0537 0x1788  iScsiPrt - ok
17:13:16.0560 0x1788  kbdclass - ok
17:13:16.0580 0x1788  kbdhid - ok
17:13:16.0600 0x1788  kdnic - ok
17:13:16.0618 0x1788  KeyIso - ok
17:13:16.0635 0x1788  KSecDD - ok
17:13:16.0651 0x1788  KSecPkg - ok
17:13:16.0670 0x1788  KtmRm - ok
17:13:16.0690 0x1788  LanmanServer - ok
17:13:16.0701 0x1788  LanmanWorkstation - ok
17:13:16.0725 0x1788  lfsvc - ok
17:13:16.0744 0x1788  lltdio - ok
17:13:16.0761 0x1788  lltdsvc - ok
17:13:16.0781 0x1788  Lm3554 - ok
17:13:16.0799 0x1788  lmhosts - ok
17:13:16.0819 0x1788  LNWIPC - ok
17:13:16.0844 0x1788  LSI_SAS - ok
17:13:16.0860 0x1788  LSI_SAS2 - ok
17:13:16.0880 0x1788  LSI_SAS3 - ok
17:13:16.0897 0x1788  LSI_SSS - ok
17:13:16.0915 0x1788  LSM - ok
17:13:16.0935 0x1788  luafv - ok
17:13:16.0954 0x1788  MBI - ok
17:13:16.0972 0x1788  megasas - ok
17:13:16.0990 0x1788  megasr - ok
17:13:17.0008 0x1788  MMCSS - ok
17:13:17.0025 0x1788  Modem - ok
17:13:17.0043 0x1788  monitor - ok
17:13:17.0060 0x1788  MonitorFunction - ok
17:13:17.0079 0x1788  mouclass - ok
17:13:17.0097 0x1788  mouhid - ok
17:13:17.0114 0x1788  mountmgr - ok
17:13:17.0132 0x1788  MozillaMaintenance - ok
17:13:17.0151 0x1788  mpsdrv - ok
17:13:17.0168 0x1788  MpsSvc - ok
17:13:17.0187 0x1788  MRxDAV - ok
17:13:17.0207 0x1788  mrxsmb - ok
17:13:17.0224 0x1788  mrxsmb10 - ok
17:13:17.0241 0x1788  mrxsmb20 - ok
17:13:17.0260 0x1788  MsBridge - ok
17:13:17.0281 0x1788  MSDTC - ok
17:13:17.0313 0x1788  Msfs - ok
17:13:17.0330 0x1788  msgpiowin32 - ok
17:13:17.0348 0x1788  mshidkmdf - ok
17:13:17.0365 0x1788  mshidumdf - ok
17:13:17.0383 0x1788  MSICReg - ok
17:13:17.0404 0x1788  msisadrv - ok
17:13:17.0421 0x1788  MSiSCSI - ok
17:13:17.0438 0x1788  msiserver - ok
17:13:17.0457 0x1788  MSKSSRV - ok
17:13:17.0473 0x1788  MsLldp - ok
17:13:17.0494 0x1788  MSPCLOCK - ok
17:13:17.0514 0x1788  MSPQM - ok
17:13:17.0530 0x1788  MsRPC - ok
17:13:17.0557 0x1788  mssmbios - ok
17:13:17.0575 0x1788  MSTEE - ok
17:13:17.0596 0x1788  mt9e013 - ok
17:13:17.0617 0x1788  MTConfig - ok
17:13:17.0635 0x1788  Mup - ok
17:13:17.0653 0x1788  mvumis - ok
17:13:17.0671 0x1788  napagent - ok
17:13:17.0689 0x1788  NativeWifiP - ok
17:13:17.0707 0x1788  NcaSvc - ok
17:13:17.0721 0x1788  NcbService - ok
17:13:17.0741 0x1788  NcdAutoSetup - ok
17:13:17.0759 0x1788  NDIS - ok
17:13:17.0777 0x1788  NdisCap - ok
17:13:17.0795 0x1788  NdisImPlatform - ok
17:13:17.0816 0x1788  NdisTapi - ok
17:13:17.0838 0x1788  Ndisuio - ok
17:13:17.0859 0x1788  NdisVirtualBus - ok
17:13:17.0878 0x1788  NdisWan - ok
17:13:17.0896 0x1788  NdisWanLegacy - ok
17:13:17.0912 0x1788  NDProxy - ok
17:13:17.0931 0x1788  Ndu - ok
17:13:17.0949 0x1788  NetBIOS - ok
17:13:17.0973 0x1788  NetBT - ok
17:13:17.0991 0x1788  Netlogon - ok
17:13:18.0008 0x1788  Netman - ok
17:13:18.0025 0x1788  netprofm - ok
17:13:18.0043 0x1788  NetTcpPortSharing - ok
17:13:18.0061 0x1788  netvsc - ok
17:13:18.0080 0x1788  NlaSvc - ok
17:13:18.0097 0x1788  NOBU - ok
17:13:18.0114 0x1788  Npfs - ok
17:13:18.0133 0x1788  npsvctrig - ok
17:13:18.0151 0x1788  nsi - ok
17:13:18.0172 0x1788  nsiproxy - ok
17:13:18.0197 0x1788  Ntfs - ok
17:13:18.0218 0x1788  NTI IScheduleSvc - ok
17:13:18.0228 0x1788  NTIDrvr - ok
17:13:18.0246 0x1788  NuidFltr - ok
17:13:18.0264 0x1788  Null - ok
17:13:18.0283 0x1788  nvraid - ok
17:13:18.0302 0x1788  nvstor - ok
17:13:18.0321 0x1788  nv_agp - ok
17:13:18.0339 0x1788  ose - ok
17:13:18.0358 0x1788  ov2720 - ok
17:13:18.0378 0x1788  ov8830 - ok
17:13:18.0397 0x1788  p2pimsvc - ok
17:13:18.0416 0x1788  p2psvc - ok
17:13:18.0444 0x1788  Parport - ok
17:13:18.0461 0x1788  partmgr - ok
17:13:18.0483 0x1788  Parvdm - ok
17:13:18.0500 0x1788  PcaSvc - ok
17:13:18.0517 0x1788  pci - ok
17:13:18.0535 0x1788  pciide - ok
17:13:18.0553 0x1788  pcmcia - ok
17:13:18.0573 0x1788  pcw - ok
17:13:18.0590 0x1788  pdc - ok
17:13:18.0609 0x1788  PEAUTH - ok
17:13:18.0659 0x1788  pla - ok
17:13:18.0676 0x1788  PlugPlay - ok
17:13:18.0694 0x1788  PNRPAutoReg - ok
17:13:18.0713 0x1788  PNRPsvc - ok
17:13:18.0733 0x1788  PolicyAgent - ok
17:13:18.0758 0x1788  Power - ok
17:13:18.0776 0x1788  PrintNotify - ok
17:13:18.0794 0x1788  Processor - ok
17:13:18.0811 0x1788  ProfSvc - ok
17:13:18.0828 0x1788  Psched - ok
17:13:18.0847 0x1788  QWAVE - ok
17:13:18.0868 0x1788  QWAVEdrv - ok
17:13:18.0887 0x1788  RasAcd - ok
17:13:18.0904 0x1788  RasAuto - ok
17:13:18.0924 0x1788  RasMan - ok
17:13:18.0944 0x1788  RasPppoe - ok
17:13:18.0967 0x1788  rdbss - ok
17:13:19.0003 0x1788  rdpbus - ok
17:13:19.0021 0x1788  RDPDR - ok
17:13:19.0059 0x1788  RdpVideoMiniport - ok
17:13:19.0078 0x1788  rdyboost - ok
17:13:19.0096 0x1788  RemoteAccess - ok
17:13:19.0116 0x1788  RemoteRegistry - ok
17:13:19.0133 0x1788  RFCOMM - ok
17:13:19.0151 0x1788  RpcEptMapper - ok
17:13:19.0169 0x1788  RpcLocator - ok
17:13:19.0191 0x1788  RpcSs - ok
17:13:19.0209 0x1788  rspndr - ok
17:13:19.0228 0x1788  rtii2sac - ok
17:13:19.0248 0x1788  s3cap - ok
17:13:19.0265 0x1788  SamSs - ok
17:13:19.0283 0x1788  sbp2port - ok
17:13:19.0302 0x1788  SCardSvr - ok
17:13:19.0324 0x1788  ScDeviceEnum - ok
17:13:19.0345 0x1788  scfilter - ok
17:13:19.0367 0x1788  Schedule - ok
17:13:19.0387 0x1788  SCPolicySvc - ok
17:13:19.0409 0x1788  sdbus - ok
17:13:19.0433 0x1788  sdstor - ok
17:13:19.0458 0x1788  secdrv - ok
17:13:19.0483 0x1788  seclogon - ok
17:13:19.0509 0x1788  SENS - ok
17:13:19.0526 0x1788  SensorsHIDClassDriver - ok
17:13:19.0545 0x1788  SensorsServiceDriver - ok
17:13:19.0564 0x1788  SensrSvc - ok
17:13:19.0586 0x1788  SerCx - ok
17:13:19.0610 0x1788  SerCx2 - ok
17:13:19.0634 0x1788  Serenum - ok
17:13:19.0660 0x1788  Serial - ok
17:13:19.0682 0x1788  sermouse - ok
17:13:19.0733 0x1788  SessionEnv - ok
17:13:19.0757 0x1788  sfloppy - ok
17:13:19.0775 0x1788  SharedAccess - ok
17:13:19.0798 0x1788  ShellHWDetection - ok
17:13:19.0820 0x1788  sisagp - ok
17:13:19.0840 0x1788  SiSRaid2 - ok
17:13:19.0861 0x1788  SiSRaid4 - ok
17:13:19.0883 0x1788  smphost - ok
17:13:19.0924 0x1788  SNMPTRAP - ok
17:13:19.0944 0x1788  spaceport - ok
17:13:19.0965 0x1788  SpbCx - ok
17:13:19.0986 0x1788  spi - ok
17:13:20.0005 0x1788  Spooler - ok
17:13:20.0030 0x1788  sppsvc - ok
17:13:20.0048 0x1788  srv - ok
17:13:20.0066 0x1788  srv2 - ok
17:13:20.0087 0x1788  srvnet - ok
17:13:20.0108 0x1788  SSDPSRV - ok
17:13:20.0128 0x1788  ssti2c - ok
17:13:20.0147 0x1788  SstpSvc - ok
17:13:20.0166 0x1788  ssudmdm - ok
17:13:20.0184 0x1788  stexstor - ok
17:13:20.0204 0x1788  StiSvc - ok
17:13:20.0222 0x1788  storahci - ok
17:13:20.0243 0x1788  storflt - ok
17:13:20.0263 0x1788  stornvme - ok
17:13:20.0282 0x1788  StorSvc - ok
17:13:20.0302 0x1788  storvsc - ok
17:13:20.0322 0x1788  svsvc - ok
17:13:20.0339 0x1788  swenum - ok
17:13:20.0359 0x1788  swprv - ok
17:13:20.0377 0x1788  SysMain - ok
17:13:20.0398 0x1788  SystemEventsBroker - ok
17:13:20.0419 0x1788  TabletInputService - ok
17:13:20.0436 0x1788  TapiSrv - ok
17:13:20.0454 0x1788  Tcpip - ok
17:13:20.0471 0x1788  TCPIP6 - ok
17:13:20.0500 0x1788  tcpipreg - ok
17:13:20.0531 0x1788  tdx - ok
17:13:20.0549 0x1788  terminpt - ok
17:13:20.0567 0x1788  TermService - ok
17:13:20.0585 0x1788  Themes - ok
17:13:20.0605 0x1788  THREADORDER - ok
17:13:20.0624 0x1788  TimeBroker - ok
17:13:20.0642 0x1788  TPM - ok
17:13:20.0660 0x1788  TrkWks - ok
17:13:20.0680 0x1788  TrustedInstaller - ok
17:13:20.0704 0x1788  TsUsbFlt - ok
17:13:20.0722 0x1788  TsUsbGD - ok
17:13:20.0743 0x1788  tunnel - ok
17:13:20.0764 0x1788  uagp35 - ok
17:13:20.0783 0x1788  Uart16550pc - ok
17:13:20.0794 0x1788  UASPStor - ok
17:13:20.0813 0x1788  UBHelper - ok
17:13:20.0829 0x1788  UCX01000 - ok
17:13:20.0847 0x1788  udfs - ok
17:13:20.0864 0x1788  UEFI - ok
17:13:20.0901 0x1788  UI0Detect - ok
17:13:20.0919 0x1788  uliagpkx - ok
17:13:20.0936 0x1788  umbus - ok
17:13:20.0954 0x1788  UmPass - ok
17:13:20.0975 0x1788  UmRdpService - ok
17:13:20.0998 0x1788  upnphost - ok
17:13:21.0017 0x1788  usbccgp - ok
17:13:21.0039 0x1788  usbcir - ok
17:13:21.0059 0x1788  usbehci - ok
17:13:21.0081 0x1788  usbhub - ok
17:13:21.0101 0x1788  USBHUB3 - ok
17:13:21.0119 0x1788  usbohci - ok
17:13:21.0136 0x1788  usbprint - ok
17:13:21.0153 0x1788  USBSTOR - ok
17:13:21.0171 0x1788  usbuhci - ok
17:13:21.0191 0x1788  USBXHCI - ok
17:13:21.0212 0x1788  usb_rndisx - ok
17:13:21.0234 0x1788  VaultSvc - ok
17:13:21.0252 0x1788  vdrvroot - ok
17:13:21.0270 0x1788  vds - ok
17:13:21.0289 0x1788  VerifierExt - ok
17:13:21.0313 0x1788  vhdmp - ok
17:13:21.0335 0x1788  viaagp - ok
17:13:21.0352 0x1788  ViaC7 - ok
17:13:21.0369 0x1788  viaide - ok
17:13:21.0389 0x1788  VineyardsTaskSrv - ok
17:13:21.0407 0x1788  vmbus - ok
17:13:21.0429 0x1788  VMBusHID - ok
17:13:21.0450 0x1788  vmicguestinterface - ok
17:13:21.0468 0x1788  vmicheartbeat - ok
17:13:21.0485 0x1788  vmickvpexchange - ok
17:13:21.0505 0x1788  vmicrdv - ok
17:13:21.0523 0x1788  vmicshutdown - ok
17:13:21.0542 0x1788  vmictimesync - ok
17:13:21.0564 0x1788  vmicvss - ok
17:13:21.0581 0x1788  volmgr - ok
17:13:21.0599 0x1788  volmgrx - ok
17:13:21.0618 0x1788  volsnap - ok
17:13:21.0638 0x1788  vonetframe - ok
17:13:21.0658 0x1788  vsmraid - ok
17:13:21.0676 0x1788  VSS - ok
17:13:21.0697 0x1788  VSTXRAID - ok
17:13:21.0720 0x1788  vwifibus - ok
17:13:21.0743 0x1788  vwififlt - ok
17:13:21.0766 0x1788  vwifimp - ok
17:13:21.0788 0x1788  W32Time - ok
17:13:21.0811 0x1788  WacomPen - ok
17:13:21.0839 0x1788  wbengine - ok
17:13:21.0861 0x1788  WbioSrvc - ok
17:13:21.0884 0x1788  Wcmsvc - ok
17:13:21.0905 0x1788  wcncsvc - ok
17:13:21.0928 0x1788  WcsPlugInService - ok
17:13:21.0952 0x1788  WdBoot - ok
17:13:21.0975 0x1788  WDC_SAM - ok
17:13:21.0998 0x1788  Wdf01000 - ok
17:13:22.0023 0x1788  WdFilter - ok
17:13:22.0047 0x1788  WdiServiceHost - ok
17:13:22.0071 0x1788  WdiSystemHost - ok
17:13:22.0093 0x1788  WdNisDrv - ok
17:13:22.0112 0x1788  WdNisSvc - ok
17:13:22.0136 0x1788  WebClient - ok
17:13:22.0157 0x1788  Wecsvc - ok
17:13:22.0178 0x1788  WEPHOSTSVC - ok
17:13:22.0199 0x1788  wercplsupport - ok
17:13:22.0223 0x1788  WerSvc - ok
17:13:22.0248 0x1788  WFPLWFS - ok
17:13:22.0272 0x1788  WiaRpc - ok
17:13:22.0293 0x1788  WIMMount - ok
17:13:22.0315 0x1788  WinDefend - ok
17:13:22.0360 0x1788  WinHttpAutoProxySvc - ok
17:13:22.0380 0x1788  winmgmt - ok
17:13:22.0401 0x1788  WinRM - ok
17:13:22.0441 0x1788  WinUsb - ok
17:13:22.0462 0x1788  WlanSvc - ok
17:13:22.0484 0x1788  wlidsvc - ok
17:13:22.0506 0x1788  WmiAcpi - ok
17:13:22.0539 0x1788  wmiApSrv - ok
17:13:22.0560 0x1788  WMPNetworkSvc - ok
17:13:22.0581 0x1788  Wof - ok
17:13:22.0612 0x1788  workfolderssvc - ok
17:13:22.0632 0x1788  wpcfltr - ok
17:13:22.0654 0x1788  WPCSvc - ok
17:13:22.0677 0x1788  WPDBusEnum - ok
17:13:22.0699 0x1788  WpdUpFltr - ok
17:13:22.0720 0x1788  ws2ifsl - ok
17:13:22.0740 0x1788  wscsvc - ok
17:13:22.0764 0x1788  WSDPrintDevice - ok
17:13:22.0788 0x1788  WSDScan - ok
17:13:22.0810 0x1788  WSearch - ok
17:13:22.0843 0x1788  WSService - ok
17:13:22.0858 0x1788  wuauserv - ok
17:13:22.0878 0x1788  WudfPf - ok
17:13:22.0900 0x1788  WUDFRd - ok
17:13:22.0923 0x1788  WUDFSensorLP - ok
17:13:22.0945 0x1788  wudfsvc - ok
17:13:22.0968 0x1788  WUDFWpdFs - ok
17:13:22.0990 0x1788  WUDFWpdMtp - ok
17:13:23.0010 0x1788  WwanSvc - ok
17:13:23.0084 0x1788  ================ Scan global ===============================
17:13:23.0092 0x1788  [ Global ] - ok
17:13:23.0096 0x1788  ================ Scan MBR ==================================
17:13:23.0099 0x1788  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
17:13:23.0105 0x1788  \Device\Harddisk0\DR0 - ok

nici_st 23.12.2016 17:24
Teil 2:

Code:
17:13:23.0110 0x1788  ================ Scan VBR ==================================
17:13:23.0110 0x1788  ================ Scan active images ========================
17:13:23.0123 0x1788  [ FD03AD358B6942C4EC50C0B74CCC0835, 81CDAC58AE3C1B4EEC0EBEF0AC02367D3F0A42F5B41BD2432DA2F1810D898750 ] C:\Windows\System32\Drivers\crashdmp.sys
17:13:23.0123 0x1788  C:\Windows\System32\Drivers\crashdmp.sys - ok
17:13:23.0143 0x1788  [ F0ECF90E78A43D06BA86D9FE5133FACA, D382C5547D7D3AD31EAD12EA6BAD52509596186DBB6C505A7CA8743A8A68B090 ] C:\Windows\System32\Drivers\dumpsd.sys
17:13:23.0144 0x1788  C:\Windows\System32\Drivers\dumpsd.sys - ok
17:13:23.0168 0x1788  [ AC803010AA52824839DC8ED36C949D74, C6E05C10B9ECCE02C11410B6AD853ACF3DE8F8290C01FE08360674E3F981D8D0 ] C:\Windows\System32\Drivers\dumpfve.sys
17:13:23.0168 0x1788  C:\Windows\System32\Drivers\dumpfve.sys - ok
17:13:23.0188 0x1788  [ E2FC132D48EA4E8B04432C33EFB77801, 732BCDFA8975FB54DD0EAF0D208CBD361CA2E9C68B82212481C843E2ED1C5237 ] C:\Windows\System32\Drivers\cdrom.sys
17:13:23.0188 0x1788  C:\Windows\System32\Drivers\cdrom.sys - ok
17:13:23.0208 0x1788  [ 91344474B5168ECC6E41AB61A42C0FF9, 759E63511C0ABA31DB8BEC860170F91FF8391E031A5E9543D0DD5B8604494EF0 ] C:\Windows\System32\Drivers\NARA\0401000.00E\ccSetx86.sys
17:13:23.0208 0x1788  C:\Windows\System32\Drivers\NARA\0401000.00E\ccSetx86.sys - ok
17:13:23.0227 0x1788  [ BCBDA736E75995698D6FD862F8A4EE1F, 1AD33AE319B031485F1135BD2D4D8A8ABEB1D018E171BD31EA926A1DB37ABFE2 ] C:\Windows\System32\Drivers\Bfilter.sys
17:13:23.0227 0x1788  C:\Windows\System32\Drivers\Bfilter.sys - ok
17:13:23.0250 0x1788  [ 38058AF65F15D0E9E1A5A9B8E75B0757, C7855B39DEAF8AE6E87FBF44FADD3344D69AC71AAC8737EA6FF21435685189F7 ] C:\Windows\System32\Drivers\beep.sys
17:13:23.0251 0x1788  C:\Windows\System32\Drivers\beep.sys - ok
17:13:23.0271 0x1788  [ 6F378CC43CA7EED9DE48CB64E8ECFC1C, 5D39C42A81B1E1AE81281AD1B1AA33E0DBF3178426E1BEEBE919271846F3DC6C ] C:\Windows\System32\Drivers\Bfmon.sys
17:13:23.0272 0x1788  C:\Windows\System32\Drivers\Bfmon.sys - ok
17:13:23.0291 0x1788  [ C68CBBB69A8C611EFA668FA36DE542D9, 2026BA1505619F62DBD06B293DD061A53B824FFD962D18B89297353F48D88017 ] C:\Windows\System32\Drivers\null.sys
17:13:23.0291 0x1788  C:\Windows\System32\Drivers\null.sys - ok
17:13:23.0312 0x1788  [ 75828CDA2182FB357A49DBD24FE265B4, 4B3B68C7F3FEC89ACE23BAB19BF0A8CBAAA39323CC37F02B455CD7B582212FD9 ] C:\Windows\System32\Drivers\Bprotect.sys
17:13:23.0312 0x1788  C:\Windows\System32\Drivers\Bprotect.sys - ok
17:13:23.0335 0x1788  [ 363392A3AF1630C9D3A7B9A31267B5B3, C1F084BFCC05EE56585860DF4729198C72475AC75A2A38FD4D1551D8CA3A9EA3 ] C:\Windows\System32\Drivers\BasicRender.sys
17:13:23.0335 0x1788  C:\Windows\System32\Drivers\BasicRender.sys - ok
17:13:23.0354 0x1788  [ D0DA55BA67544575402BE1CC84240DF3, E2AA1DC85863AC59D86B05BF7C443F49DEBF2C43741B65005FF977BC52CE23EE ] C:\Windows\System32\Drivers\dxgkrnl.sys
17:13:23.0354 0x1788  C:\Windows\System32\Drivers\dxgkrnl.sys - ok
17:13:23.0365 0x1788  [ 64443A663775A3B1568227628B047CBE, FF37D4BCE873A3186442C9D1163949B1E9EE24FD4BE4DAE3A80306E4BFD787E3 ] C:\Windows\System32\Drivers\watchdog.sys
17:13:23.0365 0x1788  C:\Windows\System32\Drivers\watchdog.sys - ok
17:13:23.0382 0x1788  [ 4C58FCB750CC068ED5CB62EB5821699B, 037237B697906F27B97AB87A3EFF757190A5C16724B54F205E9899677EC5775A ] C:\Windows\System32\Drivers\dxgmms1.sys
17:13:23.0382 0x1788  C:\Windows\System32\Drivers\dxgmms1.sys - ok
17:13:23.0401 0x1788  [ 235EAE5E6E5F3F0DD49DA9204F86976E, 6F29B9E36C54717E94DBF346FEF5145A2CAEBA4C1BB336E4023C5A7FE09B5290 ] C:\Windows\System32\Drivers\BasicDisplay.sys
17:13:23.0401 0x1788  C:\Windows\System32\Drivers\BasicDisplay.sys - ok
17:13:23.0417 0x1788  [ 6CB2336E1C247A8164ADFF8A0D2FBCA4, 2EEE5E0754E01615D56EA9FC3A76195B3A9B7E32536F67C9394B452FC64697CD ] C:\Windows\System32\Drivers\npfs.sys
17:13:23.0417 0x1788  C:\Windows\System32\Drivers\npfs.sys - ok
17:13:23.0433 0x1788  [ 96E7A49F76E5C2E12005CB1F792EE501, 1079292FA3D79976B685DD6FEA5953D2E09186EFA2AFA9FDAEF668DC89442254 ] C:\Windows\System32\Drivers\bnbasex.sys
17:13:23.0434 0x1788  C:\Windows\System32\Drivers\bnbasex.sys - ok
17:13:23.0453 0x1788  [ D99C98D630C34A448A93DE552DC7DD68, B3A216B119737476182B3CD080B3466506D673ED2889C9F8C36F0E92A4657029 ] C:\Windows\System32\Drivers\msfs.sys
17:13:23.0453 0x1788  C:\Windows\System32\Drivers\msfs.sys - ok
17:13:23.0470 0x1788  [ 29ACF2A61B4EBF6D5CD5226F8B973FE2, 88F73431B5F7785691281A6E2506B343C9FBB20FA333CBC0BC853D49C6CAAD58 ] C:\Windows\System32\Drivers\tdi.sys
17:13:23.0471 0x1788  C:\Windows\System32\Drivers\tdi.sys - ok
17:13:23.0488 0x1788  [ 80A7F31C89C7752DFEC2A9CF28FFF291, A5D566757314B63B5D92973A2CB4476CD4A9479211CC90F8023FD86947BCDBD4 ] C:\Windows\System32\Drivers\tdx.sys
17:13:23.0489 0x1788  C:\Windows\System32\Drivers\tdx.sys - ok
17:13:23.0506 0x1788  [ 12CE046EEEE1BE7C4C2AB3B952B029AD, 846B6836D7124CD0856034F845795ECD0A7FB5F0206276257811BAA96308FA07 ] C:\Windows\System32\Drivers\vonetframe.sys
17:13:23.0506 0x1788  C:\Windows\System32\Drivers\vonetframe.sys - ok
17:13:23.0523 0x1788  [ 5E99DA212CF3F3C106E314792586F6C5, 78AE89B2FDC4B49E9ED4E1120BFD8BD597A7B8F76B5B6599DAAAFDB8094AC871 ] C:\Windows\System32\Drivers\netbt.sys
17:13:23.0523 0x1788  C:\Windows\System32\Drivers\netbt.sys - ok
17:13:23.0540 0x1788  [ 2B204EEC6A78BB9730927A28435DFEB4, E032C7E7C45FF22910C3FAE452D413D30A571D548A6A7DD64F25A7395F99BC09 ] C:\Windows\System32\Drivers\afd.sys
17:13:23.0541 0x1788  C:\Windows\System32\Drivers\afd.sys - ok
17:13:23.0559 0x1788  [ 96ACAD85693456B11D1A4E4F70EC3D4D, 6B663F32DEEE04B878400202591D5C8D2CB900DF191F8B2B1181E4E8303CF115 ] C:\Windows\System32\Drivers\pacer.sys
17:13:23.0559 0x1788  C:\Windows\System32\Drivers\pacer.sys - ok
17:13:23.0577 0x1788  [ 548D38A40EC4DFE578A88081F7F60926, D251474442141FAE06E01CF25417E8C053EC9DC813BD6E839138620046ACD90F ] C:\Windows\System32\Drivers\vwififlt.sys
17:13:23.0577 0x1788  C:\Windows\System32\Drivers\vwififlt.sys - ok
17:13:23.0593 0x1788  [ FE7A0CD973DD4A53E4C0EFD4D2508362, AF40B596FBE0287846217207D7DFD803333338948B8F21AC9D4964E30948AD21 ] C:\Windows\System32\Drivers\netbios.sys
17:13:23.0593 0x1788  C:\Windows\System32\Drivers\netbios.sys - ok
17:13:23.0611 0x1788  [ 72F7228023FE0C3C413FF95BE19481F6, F75CB4378C93141E362A49D0A7D87CBB353483D41B3487CBE49D63D99724B455 ] C:\Windows\System32\Drivers\rdbss.sys
17:13:23.0611 0x1788  C:\Windows\System32\Drivers\rdbss.sys - ok
17:13:23.0623 0x1788  [ 1B134DECC25E59D0C8AD95B64D475297, 7656D18FF1BBC83900109039F78DBC156A8E651638DBE3C6A6189408A0DF4511 ] C:\Windows\System32\Drivers\npsvctrig.sys
17:13:23.0623 0x1788  C:\Windows\System32\Drivers\npsvctrig.sys - ok
17:13:23.0644 0x1788  [ 06759AEC5F7E6197C0532D8BB839B5CB, D6756A62381DF7DBBFBEA3EAB746472C4A729A17D12744D528A5898A825CC0C2 ] C:\Windows\System32\Drivers\nsiproxy.sys
17:13:23.0644 0x1788  C:\Windows\System32\Drivers\nsiproxy.sys - ok
17:13:23.0664 0x1788  [ B11B5C2EC3FA59921AF7EF8A12247E7E, 0BB92DB789ED537170377CE78A1C00B8BFA8C27150DD649D7998F46888418440 ] C:\Windows\System32\Drivers\dfsc.sys
17:13:23.0665 0x1788  C:\Windows\System32\Drivers\dfsc.sys - ok
17:13:23.0682 0x1788  [ CF61A813430B7F12452BCED287135676, D5400E8C47D6441830EA48E153BDB2CC70672176B69E90D89EC3DD6D17BCFAFA ] C:\Windows\System32\Drivers\mssmbios.sys
17:13:23.0682 0x1788  C:\Windows\System32\Drivers\mssmbios.sys - ok
17:13:23.0705 0x1788  [ 2ECC9D6E0104409B441EA7095233F323, 82F9340A98DEF7CA4DDDBF27EAF23C9E829F87863C11E81445A776B366A00CA8 ] C:\Windows\System32\Drivers\dam.sys
17:13:23.0705 0x1788  C:\Windows\System32\Drivers\dam.sys - ok
17:13:23.0724 0x1788  [ FE6305EE41D8DFE5737B12DE06DD88A0, 534311A6509FE01992B2C75626CCE2BD67886DF38753B6835825FC5AF5BF26B4 ] C:\Windows\System32\Drivers\bndef.sys
17:13:23.0724 0x1788  C:\Windows\System32\Drivers\bndef.sys - ok
17:13:23.0741 0x1788  [ 8F36AA9EDF2A4118992F94E5E0DBB2B3, D280F12E33ED3FE9BB39079A287D336A1D547F3FE1E2C843796F0FCCE1EDEF9F ] C:\Windows\System32\Drivers\ahcache.sys
17:13:23.0741 0x1788  C:\Windows\System32\Drivers\ahcache.sys - ok
17:13:23.0758 0x1788  [ F89853991E6A03526E17E4AE5239FD98, E10FBF25FCFA42D7D495B013B327E090517797E654FFAEA0A4D4F212A6A5D5CC ] C:\Windows\System32\Drivers\CompositeBus.sys
17:13:23.0758 0x1788  C:\Windows\System32\Drivers\CompositeBus.sys - ok
17:13:23.0776 0x1788  [ 7F896C99637CB0E48262F307FC0F3557, 51B1A2038443F581EAE8057FF487398CBAA4753E7AA854B191E47502F9D7D69B ] C:\Windows\System32\Drivers\kdnic.sys
17:13:23.0777 0x1788  C:\Windows\System32\Drivers\kdnic.sys - ok
17:13:23.0796 0x1788  [ 8CB5D86BDB3890CFC4D94593935C2F4B, A1C26146D1FA78E66C878287D27BAC1E474EB7A3BC82A5FF2EF19223AAF5498A ] C:\Windows\System32\Drivers\umbus.sys
17:13:23.0796 0x1788  C:\Windows\System32\Drivers\umbus.sys - ok
17:13:23.0817 0x1788  [ 6DD61D8AFB56C9F853210C49FD4D8C16, DFE299AB383A81BDE531B93645F59076BC2D7E37038DA20649CA08230C043C55 ] C:\Windows\System32\Drivers\intelppm.sys
17:13:23.0817 0x1788  C:\Windows\System32\Drivers\intelppm.sys - ok
17:13:23.0836 0x1788  [ 7A26EAE233C846C683AA028D6E33E998, 0A016359BC3E8F68C9C0CB59042312B88EDCE0E33CA46FD7306D073719B98EBE ] C:\Windows\System32\ntdll.dll
17:13:23.0836 0x1788  C:\Windows\System32\ntdll.dll - ok
17:13:23.0854 0x1788  [ 1C8CDF81449BF9EA8FD88EAB3A2CCD1E, 7F4CB17F78FE68021850AA4EF4D1C7A007B5889EC099687C40D720516019018C ] C:\Windows\System32\smss.exe
17:13:23.0854 0x1788  C:\Windows\System32\smss.exe - ok
17:13:23.0867 0x1788  [ BB55EACA675297BDEBA1862FA2A5A492, 9799EA40FCA9A1F1F7E8E3D7F7480C880BE9FA15EC06047DF48DFC7EA20F06F2 ] C:\Windows\System32\Drivers\spi.sys
17:13:23.0867 0x1788  C:\Windows\System32\Drivers\spi.sys - ok
17:13:23.0885 0x1788  [ B9B7306D989D3B205EE9637ABB937978, 1CDEDB934381C64052AD2BF71F092D2A2CCFEC99CA1907F0B96897D0BCC12F9A ] C:\Windows\System32\Drivers\SerCx.sys
17:13:23.0886 0x1788  C:\Windows\System32\Drivers\SerCx.sys - ok
17:13:23.0906 0x1788  [ BCFDEF3F32EDB12A544E049B6E7BAA0D, 9A11FDF041773A619AE67DF941676D9E872C2601C8ACC627AF3B723FB1D56FBD ] C:\Windows\System32\Drivers\Uart16550pc.sys
17:13:23.0906 0x1788  C:\Windows\System32\Drivers\Uart16550pc.sys - ok
17:13:23.0925 0x1788  [ FB68288592FA9FFA2F8A0C2B6744AD05, DB5F2C6FECD2E9873A05BA023D3BF15BA60775D16516A5AA1BE41A2CF7E10F06 ] C:\Windows\System32\Drivers\GPIOCLV.sys
17:13:23.0925 0x1788  C:\Windows\System32\Drivers\GPIOCLV.sys - ok
17:13:23.0942 0x1788  [ FB1DB2A2663D59FEB04F4311861C7022, B9571C1B80ED150DC41E200ED20B8C289E2011548A12ECF4DB55234075B60E02 ] C:\Windows\System32\Drivers\msgpioclx.sys
17:13:23.0942 0x1788  C:\Windows\System32\Drivers\msgpioclx.sys - ok
17:13:23.0961 0x1788  [ A5867A37BD983701D5CC80CF25E8802C, 1874B4EF5EA07F41871C12FFCA72EFDC7380F436F5B840DD2AE65FE4271BA6B4 ] C:\Windows\System32\Drivers\battc.sys
17:13:23.0962 0x1788  C:\Windows\System32\Drivers\battc.sys - ok
17:13:23.0978 0x1788  [ 6D46D1CCDA47E9B76F2D7FF4417D31AD, 8AA40C74C284EBF78FB60D64614BC87BD8C1592AD0EFB03D0DEE7F0265050019 ] C:\Windows\System32\Drivers\CmBatt.sys
17:13:23.0978 0x1788  C:\Windows\System32\Drivers\CmBatt.sys - ok
17:13:23.0997 0x1788  [ A73D3E89BAF20AA50A0FFF0F6459BAEB, A0783BE455FBC671A286DB0C2A68ACABAC4127011C74FFE050172253AC9EA8EC ] C:\Windows\System32\Drivers\MSICReg.sys
17:13:23.0998 0x1788  C:\Windows\System32\Drivers\MSICReg.sys - ok
17:13:24.0016 0x1788  [ 1D31E78ED5C40B5C6CC8D3DE713177A5, D23D755D3F87FC91D5FAEB3E2B0D991B3910750F2EBA434195A38453ED8C6EBC ] C:\Windows\System32\autochk.exe
17:13:24.0016 0x1788  C:\Windows\System32\autochk.exe - ok
17:13:24.0033 0x1788  [ C64D8DBCD9E5ECC299680DFE38B0F487, AA096266275D8F47CA12937B94E069CB51D308F546EC4FB8E01AE69C88FB75E9 ] C:\Windows\System32\Drivers\usbport.sys
17:13:24.0033 0x1788  C:\Windows\System32\Drivers\usbport.sys - ok
17:13:24.0050 0x1788  [ BC1961D7D967E02AA706E185F1AECC5F, 3C5315F6BD12FCB5386EA5DF6B70859DA5066D12006B55EE965DB5B59C361917 ] C:\Windows\System32\Drivers\usbehci.sys
17:13:24.0051 0x1788  C:\Windows\System32\Drivers\usbehci.sys - ok
17:13:24.0068 0x1788  [ B732626437EEEE4781A05D9A824D0515, 32B485C498CC890BCF37DF58DBB92298AED048ADC982A9704158C55DAE3DCCAC ] C:\Windows\System32\Drivers\igdkmd32.sys
17:13:24.0068 0x1788  C:\Windows\System32\Drivers\igdkmd32.sys - ok
17:13:24.0087 0x1788  [ B40CCAC94FFA8B5F1A72857F3A6A6C6F, D825494A9FBBA7FA8DDEB6BDC58786F8B30F6887D07CCFBC21E2B70EC65D8C28 ] C:\Windows\System32\Drivers\igddim32.sys
17:13:24.0088 0x1788  C:\Windows\System32\Drivers\igddim32.sys - ok
17:13:24.0105 0x1788  [ 58A18D3DC058BD4ABB73EB2966D34778, 52D2F9EBA62869EBC2D5E80FF2D41198FD931D8FD3D4AC67D67E06F601FF6816 ] C:\Windows\System32\Drivers\camera.sys
17:13:24.0105 0x1788  C:\Windows\System32\Drivers\camera.sys - ok
17:13:24.0124 0x1788  [ 2D01F7F25B79B8EF8020961C686BD470, 655FC975A60247CC6EE27FC00E14C705643F589C5EE992AF15C7621ECE4184E9 ] C:\Windows\System32\Drivers\ks.sys
17:13:24.0125 0x1788  C:\Windows\System32\Drivers\ks.sys - ok
17:13:24.0135 0x1788  [ 2B731E0CF73B392B1923078F464D96DB, 741AE561704A0EF464EB6184C3353188AD6150A5B10130DF0E96D31CE821AD0C ] C:\Windows\System32\Drivers\fastfat.sys
17:13:24.0135 0x1788  C:\Windows\System32\Drivers\fastfat.sys - ok
17:13:24.0158 0x1788  [ 519FA16CFE54F107861501D852322AEF, AC81AEAABF7C97F90769A8EE789449DB413815C2634999AE0C5825BF40656505 ] C:\Windows\System32\Drivers\acpitime.sys
17:13:24.0158 0x1788  C:\Windows\System32\Drivers\acpitime.sys - ok
17:13:24.0176 0x1788  [ AF01C55490366930DFAF1D3655C763BD, 59081AC6B83E0A4A376A62417458C520ABA7DB4FB1AEEEC4C45FC8C0AF61FC20 ] C:\Windows\System32\Drivers\wmiacpi.sys
17:13:24.0177 0x1788  C:\Windows\System32\Drivers\wmiacpi.sys - ok
17:13:24.0194 0x1788  [ 5DA8E575680AE5C719E42DE47D601348, FE30D3B7F132AF0A7B4AE68F8F2864FD9A3ADC119614B13C02E646CDE3595DE3 ] C:\Windows\System32\Drivers\DptfDevProc.sys
17:13:24.0194 0x1788  C:\Windows\System32\Drivers\DptfDevProc.sys - ok
17:13:24.0212 0x1788  [ B9D40B13750C5751AE2F69E1338A540B, C53780AAA10C1A149E0AC7AAAC23FDDEB6D9E284CFFA380F187EED359A9DCE16 ] C:\Windows\System32\Drivers\DptfManager.sys
17:13:24.0212 0x1788  C:\Windows\System32\Drivers\DptfManager.sys - ok
17:13:24.0229 0x1788  [ 6EF8953E6F03A14BE75C0F8892B98505, AC570D3A92B09289F87ABED90231455468ACAB1572EA595EB1B46F6B83D0D8C5 ] C:\Windows\System32\Drivers\DptfDevGen.sys
17:13:24.0229 0x1788  C:\Windows\System32\Drivers\DptfDevGen.sys - ok
17:13:24.0250 0x1788  [ 050479227E0F49D53E2E9E2ACB0ED522, A1E70231C91CECB41B8CC6710D8F3DD46D279868B3C1FD5473AAC4177BAC96CD ] C:\Windows\System32\Drivers\DptfDevDisplay.sys
17:13:24.0250 0x1788  C:\Windows\System32\Drivers\DptfDevDisplay.sys - ok
17:13:24.0269 0x1788  [ 53D21FFC20728406A20BCCF145DC2AD4, 116B06A3827C6EB584C8DC13FE2554EFC1CE5A96BA298C4C7766B700E56C282F ] C:\Windows\System32\Drivers\NdisVirtualBus.sys
17:13:24.0269 0x1788  C:\Windows\System32\Drivers\NdisVirtualBus.sys - ok
17:13:24.0286 0x1788  [ 2A2F7FFF041A70E030DE63F9F114D046, 3CF414ACB00F6E5614510DCF3D1F0672EAB444C0FA9173CBADA96D69FE763C94 ] C:\Windows\System32\Drivers\swenum.sys
17:13:24.0287 0x1788  C:\Windows\System32\Drivers\swenum.sys - ok
17:13:24.0305 0x1788  [ 31C53FFBFD9977D3F2061627A69274D2, 6B95519B26C0B588E2D8973B838E03DF658C95BBF2D5940116E4256462518E63 ] C:\Windows\System32\Drivers\uefi.sys
17:13:24.0305 0x1788  C:\Windows\System32\Drivers\uefi.sys - ok
17:13:24.0323 0x1788  [ 4E3C895DB9831A925CAFAF9F04FE89CC, 9F518A1A046082FFDC6E171385B36EEBBE8A7C6D0234660D00A69CB327B2D869 ] C:\Windows\System32\Drivers\rdpbus.sys
17:13:24.0323 0x1788  C:\Windows\System32\Drivers\rdpbus.sys - ok
17:13:24.0343 0x1788  [ 08174FE1C19FCACDAAD9BF2EA28FEBE5, FD7D8ED08C8BC196293EA66DC8B142CA8124E00A2FA825D0C5B6020CB5EC5D6E ] C:\Windows\System32\Drivers\usbd.sys
17:13:24.0343 0x1788  C:\Windows\System32\Drivers\usbd.sys - ok
17:13:24.0361 0x1788  [ DE5599DA6F39FB1195E650B4B5954B13, AB1DF52A46AD92417C9984C19C77F98E4053A91BB8EB69889144AF9FA12D4874 ] C:\Windows\System32\Drivers\usbhub.sys
17:13:24.0361 0x1788  C:\Windows\System32\Drivers\usbhub.sys - ok
17:13:24.0378 0x1788  [ 22FFBD5F9BCE2E970C617B95103079DC, BD431517B572EC80127881124C697434B31F016BF897382F6D2C5D0FF904C1C6 ] C:\Windows\System32\Drivers\msgpiowin32.sys
17:13:24.0378 0x1788  C:\Windows\System32\Drivers\msgpiowin32.sys - ok
17:13:24.0392 0x1788  [ 508A9249B09B91251BCC80E3C9EE75A6, 58CD92606758980838E37DCC39C9676786C9BD82CA1BF5715BA3C43FB2B04673 ] C:\Windows\System32\Drivers\hidclass.sys
17:13:24.0393 0x1788  C:\Windows\System32\Drivers\hidclass.sys - ok
17:13:24.0411 0x1788  [ F30B8D1A17FBD508BE90D5B09C0F0CA2, F34A72FD552E44FDF70D87F3710E07F9D2195560EE32A0F539AA60D8E7EB7011 ] C:\Windows\System32\Drivers\hidparse.sys
17:13:24.0411 0x1788  C:\Windows\System32\Drivers\hidparse.sys - ok
17:13:24.0429 0x1788  [ 4AC33C5E591F9845E34DA8681E558A58, 4FC04C7EF2736D63CF77756566C5710764671EC54085FC035B4752377CABDDE7 ] C:\Windows\System32\Drivers\hidi2c.sys
17:13:24.0429 0x1788  C:\Windows\System32\Drivers\hidi2c.sys - ok
17:13:24.0448 0x1788  [ 30DA16E72C4CB4D5F06D35D0DFA16E2C, F8C4073C3AA001FD22087BEBD0CEBDFA8F0BD1965B8F3346BBAEC0E3208F927B ] C:\Windows\System32\Drivers\mshidkmdf.sys
17:13:24.0448 0x1788  C:\Windows\System32\Drivers\mshidkmdf.sys - ok
17:13:24.0465 0x1788  [ 42F792048D89F84D89642C63B46A338B, 7BAB77A6F6107F2D070A07A33B031F389F71C6EECED686EE1DBFE08D55A0F6B6 ] C:\Windows\System32\Drivers\BcmNfcIc.sys
17:13:24.0465 0x1788  C:\Windows\System32\Drivers\BcmNfcIc.sys - ok
17:13:24.0483 0x1788  [ B8B4B7065094BD6486A5592560ABD506, 255B7AE37B93823C062512C79ACF96554CF414DA2E85538708C1892931A4C9EA ] C:\Windows\System32\Drivers\lm3554.sys
17:13:24.0483 0x1788  C:\Windows\System32\Drivers\lm3554.sys - ok
17:13:24.0500 0x1788  [ E61384548C68003F7F42B009231B29F2, 18EEAF75E527246778DEE02A9D88D56E62754EB0B2FA2AF7032304157C0CE740 ] C:\Windows\System32\Drivers\BtwSerialBus.sys
17:13:24.0500 0x1788  C:\Windows\System32\Drivers\BtwSerialBus.sys - ok
17:13:24.0517 0x1788  [ A2AE5C4AE0E64B39687EBD015293A531, E27F15BA362033CD25E785D9F542CBB921B01784DB4C278C6F7F757C1C8FA5F5 ] C:\Windows\System32\sechost.dll
17:13:24.0517 0x1788  C:\Windows\System32\sechost.dll - ok
17:13:24.0538 0x1788  [ F1D1E449FA396163F46459CF020A9B00, FEF2D9DE6F8FF861E5FB29D96321C11D6F38F8F5E74B97D1D19B528D3F2AB62B ] C:\Windows\System32\advapi32.dll
17:13:24.0538 0x1788  C:\Windows\System32\advapi32.dll - ok
17:13:24.0560 0x1788  [ 20E4F2C93AA1F665FDB7EECB30B46503, 6B9EDB0A98B821255A5472F1C1E0A30432762F216FDF703C2C532285684B7E4D ] C:\Windows\System32\imagehlp.dll
17:13:24.0560 0x1788  C:\Windows\System32\imagehlp.dll - ok
17:13:24.0577 0x1788  [ 8816F87759FE47FB26AF298166D575F4, F10BA0D80923ECE4CD7BC6250A55A768E3825620A57950C681B280C608BE4EF1 ] C:\Windows\System32\comdlg32.dll
17:13:24.0577 0x1788  C:\Windows\System32\comdlg32.dll - ok
17:13:24.0594 0x1788  [ BBEF579DB250E012011C2B2C5BEF9DD3, 84B1A0716E22DA3E9E4410A1E62D99B9FCE5A3E6403E2CBD175DD818335CD530 ] C:\Windows\System32\difxapi.dll
17:13:24.0594 0x1788  C:\Windows\System32\difxapi.dll - ok
17:13:24.0611 0x1788  [ 97BF59249A6ECFF3BEF60603A39C0C2C, 74E7B14C0B6B0E697DD9A4182F0D4C20427D3AF95F3BD8371C6FD4AB7CD6DA4B ] C:\Windows\System32\oleaut32.dll
17:13:24.0611 0x1788  C:\Windows\System32\oleaut32.dll - ok
17:13:24.0627 0x1788  [ C9FF1D4D2FE373DB3D33886B31046E51, A8F161D50ECDF5D8B20721E560596304A2E3E009163BF259D82EF278334F11F1 ] C:\Windows\System32\normaliz.dll
17:13:24.0627 0x1788  C:\Windows\System32\normaliz.dll - ok
17:13:24.0640 0x1788  [ 28E9E9FC383DFDA047B13CDEAE318B08, E5DFDDD37C008737025B09F7FDC58D2D203EC0308D2EA539571369AF4F3363C3 ] C:\Windows\System32\user32.dll
17:13:24.0640 0x1788  C:\Windows\System32\user32.dll - ok
17:13:24.0664 0x1788  [ EF47FEB78E44F11855BFC843862C9AEB, F04D1520446A4516B8F2B67AEF21D16D738C60609EFE0CA1D04DFB5E4FA9AF7F ] C:\Windows\System32\gdi32.dll
17:13:24.0664 0x1788  C:\Windows\System32\gdi32.dll - ok
17:13:24.0686 0x1788  [ 371727095F752E6F3A0FF200F67CB6D9, 1F9D996653C939A2E54E9B6D0BBAF8765FE1F29EDE1D1DA64D7AE5818BA0AC73 ] C:\Windows\System32\imm32.dll
17:13:24.0686 0x1788  C:\Windows\System32\imm32.dll - ok
17:13:24.0702 0x1788  [ 40A9F8D687A37A2C034EB21832B4422C, 09BA6B60BE2C941A1749BA996097C2D000A55A454A42855514D635E8F53EC7A5 ] C:\Windows\System32\nsi.dll
17:13:24.0702 0x1788  C:\Windows\System32\nsi.dll - ok
17:13:24.0719 0x1788  [ D0E43870472C56D34F81B493637D04E2, 41C251C60D2C305282646A80BB4D05FD8E44419177F5C631FCE0F74DA3D96BB3 ] C:\Windows\System32\kernel32.dll
17:13:24.0719 0x1788  C:\Windows\System32\kernel32.dll - ok
17:13:24.0736 0x1788  [ 4DB0B888711A9C6BD5BBC5F449E6DFB8, 2F501271FBF9ADFA78640814C972A9AEA0567CF5E32DFEC951026A861561114B ] C:\Windows\System32\ole32.dll
17:13:24.0736 0x1788  C:\Windows\System32\ole32.dll - ok
17:13:24.0753 0x1788  [ E5C0AC531CE6D06F97428B2E4BD28A5D, 41372707A2EC9B9C7CDFA8ADA02B8F9E5F552B5512A6FBE8B51709DAC976402D ] C:\Windows\System32\setupapi.dll
17:13:24.0753 0x1788  C:\Windows\System32\setupapi.dll - ok
17:13:24.0773 0x1788  [ 8EB53567EB006D50146C2748AEBB01F6, BE59E6C6FB0B4EC14D6F54600308AF3B6D162A12E6A092AC8E5655C99A532B05 ] C:\Windows\System32\Drivers\kbdhid.sys
17:13:24.0773 0x1788  C:\Windows\System32\Drivers\kbdhid.sys - ok
17:13:24.0793 0x1788  [ 616877586D4E3351D135C9ABBCD2DB9A, 947977778301FB458E784293D0F4043D11BA2888C15369B7AAE1C6FA5C9C1107 ] C:\Windows\System32\Drivers\kbdclass.sys
17:13:24.0793 0x1788  C:\Windows\System32\Drivers\kbdclass.sys - ok
17:13:24.0812 0x1788  [ F4858C84F99BDBCBA445EA183277A618, B89C4BEBC190D827B6D6C5B80212E85E3FBDD04D44C718342C693613476D8C11 ] C:\Windows\System32\psapi.dll
17:13:24.0813 0x1788  C:\Windows\System32\psapi.dll - ok
17:13:24.0828 0x1788  [ D311D7DCBA4A99BA5926F7EA09DCD23A, E9418443193FA34EEC6E19DC503235796B0C6F4C21D4797459B578A28A9D5DD7 ] C:\Windows\System32\combase.dll
17:13:24.0828 0x1788  C:\Windows\System32\combase.dll - ok
17:13:24.0847 0x1788  [ FC95786AA45FEB81F4330A384E85EA96, F1EE76B7F7D3ACC265C958C219B1BF680BC0310B09106C44358697D6E3B3A73D ] C:\Windows\System32\Drivers\mouhid.sys
17:13:24.0847 0x1788  C:\Windows\System32\Drivers\mouhid.sys - ok
17:13:24.0865 0x1788  [ 0F5D7D7ED440859CABE967027F74B769, 39877CA253DB57977D2D7ED7E225A891236DED90C8BDE812626BFFE1B69E674B ] C:\Windows\System32\Drivers\mouclass.sys
17:13:24.0865 0x1788  C:\Windows\System32\Drivers\mouclass.sys - ok
17:13:24.0883 0x1788  [ 3AA83B4DB393608329007205B6DE8C7B, 529EE5348A0A4D2BF41591EDBD5C99674975415B889CF56A6F0E4017702E236F ] C:\Windows\System32\Drivers\ov8830.sys
17:13:24.0883 0x1788  C:\Windows\System32\Drivers\ov8830.sys - ok
17:13:24.0895 0x1788  [ 6EC7AFE01E0DA987B1365C5FADF14E95, 771679DE201BD5F5940CFDED753746FFD5241B930F8FC04813CCBBEA8BA47472 ] C:\Windows\System32\Drivers\ov2720.sys
17:13:24.0895 0x1788  C:\Windows\System32\Drivers\ov2720.sys - ok
17:13:24.0914 0x1788  [ 794B90957CA356DFC9A844098F93ECFD, 0E4F661ED336EB7333E42D48FA41B46C494EB65B164D79F92023CD6F04A22B75 ] C:\Windows\System32\rpcrt4.dll
17:13:24.0914 0x1788  C:\Windows\System32\rpcrt4.dll - ok
17:13:24.0935 0x1788  [ 6465A029E543CA5AE3547B74CFE9293E, 8CB9F3D41B608AA6C6E385035901BF350CB1679D74F965B551490FCD1427129B ] C:\Windows\System32\msvcrt.dll
17:13:24.0935 0x1788  C:\Windows\System32\msvcrt.dll - ok
17:13:24.0953 0x1788  [ 1B3066949C97834D9B55DFBABEF47881, 574E980A3CA8644BF04291FB3EECC345FD1E9395F19F50CFF58A36A0B22BD789 ] C:\Windows\System32\Drivers\rtii2sac.sys
17:13:24.0954 0x1788  C:\Windows\System32\Drivers\rtii2sac.sys - ok
17:13:24.0973 0x1788  [ 19920B416F3274640B3DE9A5248F0E74, 8A4EC7293AE38F5201C9124F1B33C61E410F5A96DD952997B8BACC06FADA3B9D ] C:\Windows\System32\SHCore.dll
17:13:24.0974 0x1788  C:\Windows\System32\SHCore.dll - ok
17:13:24.0991 0x1788  [ E604C525637C1DD2376EAB63E5E7218F, E1443426C7C74EE5181BF389ACA91A7A4DD2B34271F410CED01F2EE3C6C78274 ] C:\Windows\System32\shell32.dll
17:13:24.0991 0x1788  C:\Windows\System32\shell32.dll - ok
17:13:25.0013 0x1788  [ 1CBE87AE76B3F450BCD5BB1DBDE3BAA6, 8310FA7F2D2C5BD80565244E2BB7D8F9704FE34A31F80059BCFA03968631B597 ] C:\Windows\System32\Drivers\WUDFRd.sys
17:13:25.0013 0x1788  C:\Windows\System32\Drivers\WUDFRd.sys - ok
17:13:25.0032 0x1788  [ 596DB7E4D0DB6AC32DF142C861001979, D7E2C2334F286778A485391C0E0BA19DE2A7D2C3B94A74563C57D55EB0A8E858 ] C:\Windows\System32\Drivers\bcmfn2.sys
17:13:25.0032 0x1788  C:\Windows\System32\Drivers\bcmfn2.sys - ok
17:13:25.0052 0x1788  [ 1838C89A09DF99D8E5C9FC1F5ECBEB2A, E046EB6CFA1D0224C51D9A1C3CBB7992BDFBD7478366A6BDA8FA075AE404894D ] C:\Windows\System32\Drivers\bcmdhd63.sys
17:13:25.0052 0x1788  C:\Windows\System32\Drivers\bcmdhd63.sys - ok
17:13:25.0076 0x1788  [ A74C7E7977CD39708AA1E1A374D12877, A165CCDC9A215FF7058CD73FC0018A8642A6DAD1E415315678C0DE5C2A8E315B ] C:\Windows\System32\Drivers\vwifibus.sys
17:13:25.0082 0x1788  C:\Windows\System32\Drivers\vwifibus.sys - ok
17:13:25.0098 0x1788  [ 30BA0D589AFC65A8F49FA723D156A26D, D9DB159D34C2D2092C42D8011361F59984A179C90DE010B6D041DAFAE1E3E6CD ] C:\Windows\System32\Drivers\drmk.sys
17:13:25.0098 0x1788  C:\Windows\System32\Drivers\drmk.sys - ok
17:13:25.0117 0x1788  [ FB7ABF9730DE838739F4C43091DFEF03, 30FBD87AAEA373171D96FAE1A6E5DF3220B4F06457075B81B1F4CC93476CC32F ] C:\Windows\System32\Drivers\portcls.sys
17:13:25.0117 0x1788  C:\Windows\System32\Drivers\portcls.sys - ok
17:13:25.0137 0x1788  [ 6BCDD7DFF98C1534CAE491B7D673EEC5, 28C3C7E9EC4AD78ACF3C98E12639CA9A2499D3B1FE7D4193FD77FCE2D4F3D548 ] C:\Windows\System32\Drivers\isstrtc.sys
17:13:25.0137 0x1788  C:\Windows\System32\Drivers\isstrtc.sys - ok
17:13:25.0152 0x1788  [ 171928034F24211389A4B5840984EA50, 9860C0B1A0F852E9245009913423D025F060506877BBD03DA9D912CDB4E2AC9B ] C:\Windows\System32\Drivers\bthport.sys
17:13:25.0152 0x1788  C:\Windows\System32\Drivers\bthport.sys - ok
17:13:25.0176 0x1788  [ E5CF44EA238246C6F4DEB1805A68B6CE, A0832DB20A4E733A5A123022CA6E36E97EBC443EF2192304FB6CB7ABE56214B7 ] C:\Windows\System32\Drivers\BthMini.SYS
17:13:25.0176 0x1788  C:\Windows\System32\Drivers\BthMini.SYS - ok
17:13:25.0194 0x1788  [ F1EEBAFC8DB948A7089CD1B8152548DC, 71C13C910A8560CECBEC486ECAD27C254F7EAE471C63A9F549E11BAA8CFBE82B ] C:\Windows\System32\ws2_32.dll
17:13:25.0194 0x1788  C:\Windows\System32\ws2_32.dll - ok
17:13:25.0212 0x1788  [ F3B94FC86266C10911CDC4961F4F14FF, DEFC8302B1D1108B2E2F067519380A583DEC36E7504B84E27A5CDE4A4D7622D5 ] C:\Windows\System32\shlwapi.dll
17:13:25.0212 0x1788  C:\Windows\System32\shlwapi.dll - ok
17:13:25.0232 0x1788  [ 1219A9EA51C5A1A6ED0964AF6696B8FB, 1B741F1C2D8A1F3558846B87ADDD2EE9785A2779E88372A493B24A872320B560 ] C:\Windows\System32\GdiPlus.dll
17:13:25.0232 0x1788  C:\Windows\System32\GdiPlus.dll - ok
17:13:25.0250 0x1788  [ 9A69EE134E39BB0804E3B38C7FBD3F86, E811324C566A15189C6B5EF13E59BE311AE27E2232F69D3A1EC025F4D14F58F3 ] C:\Windows\System32\Wldap32.dll
17:13:25.0251 0x1788  C:\Windows\System32\Wldap32.dll - ok
17:13:25.0268 0x1788  [ 412467DD559B38367FFDF8DFFCAA6B05, 34D681A8A62CD7B0FE14F40A8AD1B8AF4A0406B649D54F93A689A6A34D02B3B7 ] C:\Windows\System32\msctf.dll
17:13:25.0268 0x1788  C:\Windows\System32\msctf.dll - ok
17:13:25.0285 0x1788  [ C16526B898B16A443D2C7D82B4C525B8, B1AFB2D867912191F6130C77F7A0199D801EBE7D75D8F619A3A7C1E93F8C2E16 ] C:\Windows\System32\clbcatq.dll
17:13:25.0286 0x1788  C:\Windows\System32\clbcatq.dll - ok
17:13:25.0304 0x1788  [ F423198F11017AF95439061D38D8264E, F7F6EDE7CEE0C5A5BB4E4E44CA004661931FF91C7C41F08EA41E181A74B1E741 ] C:\Windows\System32\cfgmgr32.dll
17:13:25.0304 0x1788  C:\Windows\System32\cfgmgr32.dll - ok
17:13:25.0320 0x1788  [ D8BCD89350A1751C4F9687681A3A858A, F3A4C359FFCCB5D030B5DC74DD2144FD6422DF06479DE69F57498049860A8069 ] C:\Windows\System32\sspicli.dll
17:13:25.0321 0x1788  C:\Windows\System32\sspicli.dll - ok
17:13:25.0338 0x1788  [ B0EDCA1168C874812A180EBCD1A43EB5, 0690E2A9D5B3D9481069D4B9B290C107FDC555422F2AE4B135816F95DB57932F ] C:\Windows\System32\comctl32.dll
17:13:25.0338 0x1788  C:\Windows\System32\comctl32.dll - ok
17:13:25.0359 0x1788  [ 4CA11B68FE292C63F323C45A0A9AA171, 87E070DD43F05E3F8939DFFE2DD4EC9CF93C8A323E867BB5DBBA571EE339CD6D ] C:\Windows\System32\crypt32.dll
17:13:25.0359 0x1788  C:\Windows\System32\crypt32.dll - ok
17:13:25.0376 0x1788  [ 91258F5B1E62794CC9D8D8E876E5707E, D282A557AFEAC419663AC8D77A9C2D3572C59D43360F498D546B2B098F28D038 ] C:\Windows\System32\wintrust.dll
17:13:25.0377 0x1788  C:\Windows\System32\wintrust.dll - ok
17:13:25.0395 0x1788  [ EE0095B650480DBE15BAEE5765006B68, 8035B76D55CF0A1CEB389738D7E170D3D7DA96560547DFC552EED2795A710A49 ] C:\Windows\System32\KernelBase.dll
17:13:25.0395 0x1788  C:\Windows\System32\KernelBase.dll - ok
17:13:25.0405 0x1788  [ 209FEA49A8A7D43AEF2444025EF1FDFA, 22C0411FA8298C80DD3B93778FD81FA2DE8FEAA8F299BA06ADD78CD6DAC2E3D0 ] C:\Windows\System32\msasn1.dll
17:13:25.0406 0x1788  C:\Windows\System32\msasn1.dll - ok
17:13:25.0424 0x1788  [ 0957FAE86F9E920BF3727769D87002A8, 25615A51E8B597D66A9D82A4ADCA4DA878C95234A1AF362CBE160C2F33D57750 ] C:\Windows\System32\Drivers\BthLEEnum.sys
17:13:25.0425 0x1788  C:\Windows\System32\Drivers\BthLEEnum.sys - ok
17:13:25.0441 0x1788  [ B88DC99A1896C56316EF290D679E72C8, 0F92D793DB0ACB3D06FEC9904993DF821994B3B41519A71E52405E44448C69E8 ] C:\Windows\System32\Drivers\bthenum.sys
17:13:25.0441 0x1788  C:\Windows\System32\Drivers\bthenum.sys - ok
17:13:25.0458 0x1788  [ 96E32A76235BA1FFD17E6263B46324B0, 49E6D55AAF872553D7B4F20583590617B39D0F5387563460C3E77CD6499C1E23 ] C:\Windows\System32\Drivers\rfcomm.sys
17:13:25.0459 0x1788  C:\Windows\System32\Drivers\rfcomm.sys - ok
17:13:25.0476 0x1788  [ C4DBE550395680517DEC321D98EAADB6, 56EFB7282B21B456AF9DF8BA8EA40A5D5AE91C04559A51D6EC8BD83A69BEE055 ] C:\Windows\System32\Drivers\bthpan.sys
17:13:25.0476 0x1788  C:\Windows\System32\Drivers\bthpan.sys - ok
17:13:25.0493 0x1788  [ A5A33229A09634E90E4A47DFF84D50BE, 4A6F5659FE5142F9C746CA7095B5A1777E379F4F0EAB6FFDDED46C0ECD4DBF2D ] C:\Windows\System32\win32k.sys
17:13:25.0493 0x1788  C:\Windows\System32\win32k.sys - ok
17:13:25.0512 0x1788  [ F280B58088F00BEAE00A551E0379E5F9, 6A3E2833926330D939D6B8B6A37E88C82233A24F6A63A9CD38C812C69C4E4326 ] C:\Windows\System32\csrsrv.dll
17:13:25.0512 0x1788  C:\Windows\System32\csrsrv.dll - ok
17:13:25.0530 0x1788  [ F6813ACED98856C0D843CCD01FF1ED7C, B6D3805B956A4F459FF705BFAA868E2BDB3F123BBF70E7EC2D50A150D4C30B10 ] C:\Windows\System32\csrss.exe
17:13:25.0530 0x1788  C:\Windows\System32\csrss.exe - ok
17:13:25.0549 0x1788  [ 8362ADA612B4910348650A5E985A2261, 4FE44DF46EE488E9895B01D7E178DE29F0C407C78CA72C634AE6F672A871BBEA ] C:\Windows\System32\basesrv.dll
17:13:25.0549 0x1788  C:\Windows\System32\basesrv.dll - ok
17:13:25.0568 0x1788  [ F1B20182B6C34F9C3222D1E7E3633685, DB2710EABD4753793CE8594D78EDC83DA3AC7D6A512710765B6157192D79D1DD ] C:\Windows\System32\winsrv.dll
17:13:25.0568 0x1788  C:\Windows\System32\winsrv.dll - ok
17:13:25.0585 0x1788  [ 39D0B86A6FD1C5475BDC09546FBFC92E, 6C61236F0E5EB67CC887D91B62B3DD13932C3862A0191F20A495971F54FC3745 ] C:\Windows\System32\Drivers\igdperf32.sys
17:13:25.0585 0x1788  C:\Windows\System32\Drivers\igdperf32.sys - ok
17:13:25.0602 0x1788  [ 523C526BBB796FC2087C0C8AC2B669BD, 79FAC4B32BD35E140B7FAFC5A58FA039B1FB16EF68A4DCEB25B2B153B1B0FE0D ] C:\Windows\System32\Drivers\monitor.sys
17:13:25.0602 0x1788  C:\Windows\System32\Drivers\monitor.sys - ok
17:13:25.0620 0x1788  [ 52983E297EF5480322D85D123ABE9AC6, 0C1459EE49751BD67A4BAF2929FC95FE59684BE90D7524E852CC1DEF29366B89 ] C:\Windows\System32\tsddd.dll
17:13:25.0620 0x1788  C:\Windows\System32\tsddd.dll - ok
17:13:25.0636 0x1788  [ A2422A86670C7F6742E200AC9AEB5E19, A7376021515A13A2C34BF99A35D776DAF0CF42E35C64D083A2DD84ADD8887B2A ] C:\Windows\System32\sxssrv.dll
17:13:25.0637 0x1788  C:\Windows\System32\sxssrv.dll - ok
17:13:25.0654 0x1788  [ 8A60D4136E37C3CCB1ECAE90D11618F4, 94BA922A95CC4F73A4207ACB735B514E62C83B536C6F5649DB6DA8567009FBEC ] C:\Windows\System32\wininit.exe
17:13:25.0654 0x1788  C:\Windows\System32\wininit.exe - ok
17:13:25.0666 0x1788  [ 937C157EE46E0510C9796416DF312CEB, 8DE40ACA2224059DF6B12C78075712FA30C3C0F6AA52F42F65CE07BA48DF3540 ] C:\Windows\System32\profapi.dll
17:13:25.0666 0x1788  C:\Windows\System32\profapi.dll - ok
17:13:25.0682 0x1788  [ 93F80991513C0AC5C32852FB585D982E, EA5EC3752CC8A09BA5798AAC96913C45A7A0DD7C1E4824EA28437EC3FA5234BF ] C:\Windows\System32\KBDGR.DLL
17:13:25.0683 0x1788  C:\Windows\System32\KBDGR.DLL - ok
17:13:25.0699 0x1788  [ 92514ED009FEC20761F47D6A34B37C0E, 25D7891588D81A899A972980FDA7A3DDFFE679B7BDCE4038078696FDB7BB2ECB ] C:\Windows\System32\wininitext.dll
17:13:25.0699 0x1788  C:\Windows\System32\wininitext.dll - ok
17:13:25.0716 0x1788  [ E2C5C4AD576D93CF8935666067331D1E, CC001D883F535085E71B2031FEBC246854AB021F8CE1EA3536D9614B329E76D1 ] C:\Windows\System32\cdd.dll
17:13:25.0716 0x1788  C:\Windows\System32\cdd.dll - ok
17:13:25.0733 0x1788  [ 2022624E358053908CB81B4E02245B8F, DFC389476E334A36BFD3F5817BE32CE4C3369D98721B394B476EF934BCE8C0BF ] C:\Windows\System32\winlogon.exe
17:13:25.0733 0x1788  C:\Windows\System32\winlogon.exe - ok
17:13:25.0750 0x1788  [ 7A0A6E9B15B18DCDEFBC3245AC386508, E4DE6DC05DE4AC958C355C08D49614F47CBE85ACA8346474567522271D0B8605 ] C:\Windows\System32\powrprof.dll
17:13:25.0750 0x1788  C:\Windows\System32\powrprof.dll - ok
17:13:25.0767 0x1788  [ 4B14FBB7766A4341258031C13DE95F93, 6F62118794FD7C54FCDB3A454A7F588A003BD69E2C5DD6EFD8ED226997F6B25F ] C:\Windows\System32\winlogonext.dll
17:13:25.0767 0x1788  C:\Windows\System32\winlogonext.dll - ok
17:13:25.0783 0x1788  [ 6FB18ABAE8833FC8AEBE2A47CE3653F4, D505F3E1E33974643F4C29552954C5714E82E0F8953864B309DF47F227E4EAF2 ] C:\Windows\System32\WlS0WndH.dll
17:13:25.0784 0x1788  C:\Windows\System32\WlS0WndH.dll - ok
17:13:25.0800 0x1788  [ A30392203EC423D1FF0DB1DFCD8A71E4, 954532739CFDA27C9CC348E0F15A32C3293AF8195D0AA0E055F7203414BBC9F8 ] C:\Windows\System32\sxs.dll
17:13:25.0800 0x1788  C:\Windows\System32\sxs.dll - ok
17:13:25.0816 0x1788  [ 0CE0FFCD5390A8EEBBDE09381E1D5B15, E273D0E3869025D786C435886B789A61460C03E395B5405D9E7C1A982A4FF34F ] C:\Windows\System32\cryptbase.dll
17:13:25.0816 0x1788  C:\Windows\System32\cryptbase.dll - ok
17:13:25.0833 0x1788  [ CE0B0014EE83E134452B5E9DDA28B10D, DD059596CDB790FAA62341D01A641F58EC857F5A2D4BE1195DE0CC0F020EB88B ] C:\Windows\System32\bcryptprimitives.dll
17:13:25.0834 0x1788  C:\Windows\System32\bcryptprimitives.dll - ok
17:13:25.0850 0x1788  [ 9E597749A44C4A39948917B5F30DE1CC, 856A09821225CF1193B596111C486A66729B9C7A2C3D8C8F876EF830199E01AE ] C:\Windows\System32\services.exe
17:13:25.0851 0x1788  C:\Windows\System32\services.exe - ok
17:13:25.0870 0x1788  [ 5466B90225AC0990DF2BC96C90886E36, 533B1CF2A8698C5DE97262A70912EFBABCCF3D8562B516DCA3041D5B7FB78844 ] C:\Windows\System32\lsass.exe
17:13:25.0870 0x1788  C:\Windows\System32\lsass.exe - ok
17:13:25.0887 0x1788  [ AEE847160B074265757A09D7862C9FBC, 3EC80EE9AF630E203446D97D3B14ACD361C4EFBB11A81E158155A1AF5C6DC8B3 ] C:\Windows\System32\sspisrv.dll
17:13:25.0887 0x1788  C:\Windows\System32\sspisrv.dll - ok
17:13:25.0904 0x1788  [ 6CBB17910B3DF13D07C67515B0435D22, 96FF9064234FF732CD1C01F0C1463B8D0BC17D85FC5E43D16A21B48C0A949C70 ] C:\Windows\System32\lsasrv.dll
17:13:25.0904 0x1788  C:\Windows\System32\lsasrv.dll - ok
17:13:25.0915 0x1788  [ E92806168695C9412C10EEF26B5F42E5, 2503384C7A8127C3B0A2339FCA047CBD205FF7CF484035987AC45A9F7822C3C1 ] C:\Windows\System32\dabapi.dll
17:13:25.0915 0x1788  C:\Windows\System32\dabapi.dll - ok
17:13:25.0931 0x1788  [ 141460446BC63EB0BD41CCCB3B5530CB, 2A750B9D689E08D1611D405ABC82F29AF1018E0852CBD680DCC2F1A7A83A21DF ] C:\Windows\System32\scext.dll
17:13:25.0932 0x1788  C:\Windows\System32\scext.dll - ok
17:13:25.0953 0x1788  [ 1D071EB8FED10FCFB344F735F24F3C45, 76D8FA11BA652002CC89788FAF5D76C8BCD38B5CA00B1CB378747E9A61D3D398 ] C:\Windows\System32\EventAggregation.dll
17:13:25.0953 0x1788  C:\Windows\System32\EventAggregation.dll - ok
17:13:25.0971 0x1788  [ 11511C29D03AEC685DDD78BD122D9486, 011BC552C3D53F49A55F83094D88382F5E192993781856C8CDF9B2AFE76CC095 ] C:\Windows\System32\srvcli.dll
17:13:25.0971 0x1788  C:\Windows\System32\srvcli.dll - ok
17:13:25.0988 0x1788  [ 1D8F0719A9D69DC7F047C07E615E27BE, 36F7AD1FE3469404887AD5B2143455BB67694C64C0F1C255756704D21A254DA8 ] C:\Windows\System32\winsta.dll
17:13:25.0988 0x1788  C:\Windows\System32\winsta.dll - ok
17:13:26.0005 0x1788  [ 9F8AEB5977AEE57E142EF770C019E5EE, 16C91C8C356E42A85D3E4E6571FDC56C0714ADE4C21E9E377217D55B3130C432 ] C:\Windows\System32\SPInf.dll
17:13:26.0005 0x1788  C:\Windows\System32\SPInf.dll - ok
17:13:26.0022 0x1788  [ 62BA0D2DEF4B53C612B10111D88CE94C, CA07AA24109EF3A645BFDDFBFB54CCF211FA5BDA57645F8CEBEF4659606DD73B ] C:\Windows\System32\samsrv.dll
17:13:26.0022 0x1788  C:\Windows\System32\samsrv.dll - ok
17:13:26.0038 0x1788  [ 25F18276D32350E72971365D120732A0, F9F3877837A398FC657D478470C2939CF2C613419F6E95109084EECE6E69E3F4 ] C:\Windows\System32\bcrypt.dll
17:13:26.0038 0x1788  C:\Windows\System32\bcrypt.dll - ok
17:13:26.0055 0x1788  [ 8FCB074D10FD42CF34F3E57317A154B4, B267736103FEE7E15B670AE510F2DAD21A511667408DCCB37913ABF6107CE2E4 ] C:\Windows\System32\ncrypt.dll
17:13:26.0055 0x1788  C:\Windows\System32\ncrypt.dll - ok
17:13:26.0074 0x1788  [ 5E2CA5ECCF3653379AC31E68BB8918CE, 2ACDE70E675490B0A8F1C35CD83AE8581A925E849864885FCF8889804EA6C6B2 ] C:\Windows\System32\ntasn1.dll
17:13:26.0074 0x1788  C:\Windows\System32\ntasn1.dll - ok
17:13:26.0092 0x1788  [ DD52DBB3344067A1BF788DA94EFDF286, 7F900A51B6965D089F63444C16DB4E7E57728D16AA827A335EC86DD9322DDFE0 ] C:\Windows\System32\msprivs.dll
17:13:26.0092 0x1788  C:\Windows\System32\msprivs.dll - ok
17:13:26.0115 0x1788  [ 488D4AF651A9F01973124CE53FF15C77, ED4CE7F63CED26E09971DFD9242E32C20ACEE7BF36E07FA4AA53048B6FE46DF2 ] C:\Windows\System32\netjoin.dll
17:13:26.0115 0x1788  C:\Windows\System32\netjoin.dll - ok
17:13:26.0131 0x1788  [ 2D6C26E0D4574A3F68ED55F03050D7D1, 5A119EA49B45081D6DEF2121139EAB3C406074ACEB3167BE26EE2175068D57B7 ] C:\Windows\System32\cryptdll.dll
17:13:26.0131 0x1788  C:\Windows\System32\cryptdll.dll - ok
17:13:26.0149 0x1788  [ 5126CDD88214D83AC1ACDC6A4DE17AD8, BCE8ADB66B542FC01D3D4598A1DD2445FDABAF7E9476C469AE42547EAE7380BC ] C:\Windows\System32\negoexts.dll
17:13:26.0149 0x1788  C:\Windows\System32\negoexts.dll - ok
17:13:26.0166 0x1788  [ CAB4F6336C48C0959DB06D0EE46CCAD7, 01938D38E2F270E3B14CFFC0CAFB22A1D4BF81F011C90C46B221DEFA13EF4037 ] C:\Windows\System32\kerberos.dll
17:13:26.0166 0x1788  C:\Windows\System32\kerberos.dll - ok
17:13:26.0178 0x1788  [ C2C308C63F9BB7901554DF815B4556AD, 3FEB6147672D9F79EB76EBD45447F81E14CEBE5DC21EDBA5F38DCF2C36F50C48 ] C:\Windows\System32\cryptsp.dll
17:13:26.0178 0x1788  C:\Windows\System32\cryptsp.dll - ok
17:13:26.0195 0x1788  [ 5A540777BD31438E397ED863AED1A5B9, FB1D20AE19BE2572E15972A2FB43B031D9CA244FE8A765AC699083BEE9B51E12 ] C:\Windows\System32\mswsock.dll
17:13:26.0195 0x1788  C:\Windows\System32\mswsock.dll - ok
17:13:26.0212 0x1788  [ 3F5B34126F767B7FAA6CB5BEE2C615A8, AED7B850B5FD8756C7F1B5AA84676BC0D39ACB7F274FEF7582748C6BF3619732 ] C:\Windows\System32\msv1_0.dll
17:13:26.0212 0x1788  C:\Windows\System32\msv1_0.dll - ok
17:13:26.0229 0x1788  [ CDFE0EFBB3247E57EE3C8DFFF344DEDC, 9C3706711C8664404FB59732672FBF6CF021BA6B2EFA1C252162E85DBC677EDF ] C:\Windows\System32\netlogon.dll
17:13:26.0229 0x1788  C:\Windows\System32\netlogon.dll - ok
17:13:26.0249 0x1788  [ 4CD766EF361C27DAE50C84AC40C15DF2, 488674CCBF5EF104D7870D9AE490E2EB3E556DC824772FD98281A8A2F539DBF8 ] C:\Windows\System32\dnsapi.dll
17:13:26.0249 0x1788  C:\Windows\System32\dnsapi.dll - ok
17:13:26.0266 0x1788  [ D886CC9BD69E5DD558A16CC01937C673, FDE87E19D77E4DFF78346D746BCCC6D2E2295E32119C8434A1434956D4430CB3 ] C:\Windows\System32\logoncli.dll
17:13:26.0266 0x1788  C:\Windows\System32\logoncli.dll - ok
17:13:26.0283 0x1788  [ 5F0C9F0937DDEF85774B3578E7523454, 0C343DC73FB8678BF7788592A986C19D37D480C6FEF42D86FC27DBD7AA589DC5 ] C:\Windows\System32\userenv.dll
17:13:26.0283 0x1788  C:\Windows\System32\userenv.dll - ok
17:13:26.0302 0x1788  [ E2D610CB775615D460F93A1B3F561BC6, 6CE1D0D2884BD7353C16C671EBBDA89D7F4BCEA3C06E308FD77BF63501972A35 ] C:\Windows\System32\TSpkg.dll
17:13:26.0303 0x1788  C:\Windows\System32\TSpkg.dll - ok
17:13:26.0319 0x1788  [ 5E88986E655935B4D68B964A47A9BFB7, B8D5ECAC0CC9FEC539B484297F7C649ABA48726B0FE2BC14E3D5EADBEE604EAB ] C:\Windows\System32\pku2u.dll
17:13:26.0319 0x1788  C:\Windows\System32\pku2u.dll - ok
17:13:26.0335 0x1788  [ BF592547880342F2FC6CE8CC8CDE63F4, FA2EA44B1E6EA4D31E8A4FE6C7ABF70051423D40346971E656F40A102EBA059A ] C:\Windows\System32\schannel.dll
17:13:26.0336 0x1788  C:\Windows\System32\schannel.dll - ok
17:13:26.0355 0x1788  [ 70DA81B9EB4D74543CDB856330EA7D90, 730AA714CF21FC2C8EC2976E9D2C231E70DDB525BC2AE72136FE2752333EA1B8 ] C:\Windows\System32\livessp.dll
17:13:26.0355 0x1788  C:\Windows\System32\livessp.dll - ok
17:13:26.0375 0x1788  [ 94EB788E7BADAF549E3447A07A5CE466, E568526084993BECEF65DD0148E81845BB8499031F732A2CEDD2657A412FCAAE ] C:\Windows\System32\rsaenh.dll
17:13:26.0375 0x1788  C:\Windows\System32\rsaenh.dll - ok
17:13:26.0391 0x1788  [ C8EFB1EFA37F2B612E422EC720AC9E7B, 8AB5E62AA7DAB1C8B61189D396F24B8EA8E83B023FEA97D262C786DC9F5FA166 ] C:\Windows\System32\wdigest.dll
17:13:26.0391 0x1788  C:\Windows\System32\wdigest.dll - ok
17:13:26.0411 0x1788  [ 358374C80DAC079389A3FCC00964E1E9, 5F93E112CD6E8B76D2DFEF1202693DAE0F288589EF57DB0E128241B251C9DF1E ] C:\Windows\System32\dpapisrv.dll
17:13:26.0411 0x1788  C:\Windows\System32\dpapisrv.dll - ok
17:13:26.0422 0x1788  [ EDE1B6CC54B458B925F787020D01ED5A, 58C6F24A50344362286EFB92D419F70659E3F51971534B5B9AB1C3E93925BD13 ] C:\Windows\System32\efslsaext.dll
17:13:26.0422 0x1788  C:\Windows\System32\efslsaext.dll - ok
17:13:26.0440 0x1788  [ D870C95DFBA7BA67C290738DD2E6ADD1, AE2867F30CCFD06916E10C4BE0C1C28159E63500D9017BE06F32AA378A8B5C1C ] C:\Windows\System32\credssp.dll
17:13:26.0440 0x1788  C:\Windows\System32\credssp.dll - ok
17:13:26.0457 0x1788  [ FB740FE549197E7B08021EF30327921D, 0AF806D92D27628EEDC7A34B6033E23E07C8EE258D9D53730D26AF69F1E2E412 ] C:\Windows\System32\scecli.dll
17:13:26.0457 0x1788  C:\Windows\System32\scecli.dll - ok
17:13:26.0474 0x1788  [ 332625D3A96613A7CBC66B04F307F2FA, 6B50693A99BAB3AB5E72BA69E338E16A9AB3FD67B0022D6D5D9CDF7FA8806651 ] C:\Windows\System32\scesrv.dll
17:13:26.0474 0x1788  C:\Windows\System32\scesrv.dll - ok
17:13:26.0491 0x1788  [ CF6502529F3819C984A26BBD83ED3C8E, 7AB701E3E783C964A4C825E1577EF827842122BF0E182AF5BDF2EA45266C89FD ] C:\Windows\System32\authz.dll
17:13:26.0491 0x1788  C:\Windows\System32\authz.dll - ok
17:13:26.0509 0x1788  [ 5C63124CB3259A3D5880427663E911BA, A58AD9D5AFBCBB9A72715B69D1359FB1128195EF414B7E888B522F3EC9692DF9 ] C:\Windows\System32\netutils.dll
17:13:26.0509 0x1788  C:\Windows\System32\netutils.dll - ok
17:13:26.0526 0x1788  [ D0ABC231C0B3E88C6B612B28ABBF734D, 388557172F87D67A033D7B8EA0124246AF2E7C041E93FB6CFB35BB9CF733578B ] C:\Windows\System32\svchost.exe
17:13:26.0526 0x1788  C:\Windows\System32\svchost.exe - ok
17:13:26.0543 0x1788  [ 2F1B7FD82CA1940DD6D46C2A8FFE66F6, B1D86E4678CD7EF4CF4561AA1474A2FF5DF2109F808EE0E41118A13D68A5E45C ] C:\Windows\System32\umpnpmgr.dll
17:13:26.0544 0x1788  C:\Windows\System32\umpnpmgr.dll - ok
17:13:26.0562 0x1788  [ A2C65C4EC4D01FED294D9037EEA40CEB, C5A80D812DED3ABA977C813B647D6A98D1D6B104A8612FDFA0EC2BE81798ACE3 ] C:\Windows\System32\umpo.dll
17:13:26.0562 0x1788  C:\Windows\System32\umpo.dll - ok
17:13:26.0579 0x1788  [ F098034055C3B1AE2DEC3600E47618E6, 879DD584A9782553A3DBB3E5DED5DB9EEB855512C96854021ADAB8D51F43E70B ] C:\Windows\System32\gpapi.dll
17:13:26.0579 0x1788  C:\Windows\System32\gpapi.dll - ok
17:13:26.0596 0x1788  [ F41AF9E14AAFC3D93597DC8D79640F22, A57A784437C9787DC5A7C4FBEDEB9AD3FE328312AD28ADC3621D7CCFAA74D270 ] C:\Windows\System32\hid.dll
17:13:26.0596 0x1788  C:\Windows\System32\hid.dll - ok
17:13:26.0612 0x1788  [ D1EACE1F5F7C97AA2F8A1F5A28577209, F5EFE7E3A106F1BA9F6C3DDC1E37708F583F856F1F4112E49982706F47C7B7DF ] C:\Windows\System32\pcwum.dll
17:13:26.0613 0x1788  C:\Windows\System32\pcwum.dll - ok
17:13:26.0629 0x1788  [ EDF71F00D1E9AC9504816DFF953161E4, 7EB367E6E07B1069A25634FA68FBBAD00C5A020803C84C7CB74F586F1E7D26C0 ] C:\Windows\System32\umpoext.dll
17:13:26.0630 0x1788  C:\Windows\System32\umpoext.dll - ok
17:13:26.0646 0x1788  [ 8E9D9775262B02A7D7DF8A83E6A6FB5C, 19A24FB8111D0A24DA45FE3C9F834D332453A09774CF025F913049F6CC5DD5BE ] C:\Windows\System32\rpcss.dll
17:13:26.0646 0x1788  C:\Windows\System32\rpcss.dll - ok
17:13:26.0665 0x1788  [ 2D70A45612816E8D7B09CE36077C7417, A413562255E7E6FC4F274D583D841101510592A7848F6B2489D227D5392483EF ] C:\Windows\System32\RpcEpMap.dll
17:13:26.0666 0x1788  C:\Windows\System32\RpcEpMap.dll - ok
17:13:26.0676 0x1788  [ 1AE911F76377A3B42D10BE8B4D52DCF3, E5995C7B736E667EB2C42A7EE2DE3A89BF208D3B5C98B082449CD85F501AE73A ] C:\Windows\System32\RpcRtRemote.dll
17:13:26.0676 0x1788  C:\Windows\System32\RpcRtRemote.dll - ok
17:13:26.0693 0x1788  [ AFA7BBE793414BD2174249807B442B6F, 2D6229448A8E336D46CAC7248F9804DFA66E41012A9EF656242B87B28FD6E48B ] C:\Windows\System32\bisrv.dll
17:13:26.0693 0x1788  C:\Windows\System32\bisrv.dll - ok
17:13:26.0710 0x1788  [ A39157A0B76BF555489CCA3736C73F67, 8B382DE7832804801A3A2B623F510A11650CCC335B599765C31F2FD01BC2A1EF ] C:\Windows\System32\FirewallAPI.dll
17:13:26.0710 0x1788  C:\Windows\System32\FirewallAPI.dll - ok
17:13:26.0727 0x1788  [ D9E63684F7DFD835051E88551B95DE61, D56B96D9E2AF4B4F4E190A132BB4A9FEED66B536ABDEFAD7DEEB6499811F1CBC ] C:\Windows\System32\lsm.dll
17:13:26.0727 0x1788  C:\Windows\System32\lsm.dll - ok
17:13:26.0743 0x1788  [ 06CEEB13BDDBCC799DCDE9B5C8BD4181, 420512E0114CB0C7D58DA30FDCD4C81E028254E90CF326FDCB5C218F505B6B58 ] C:\Windows\System32\psmsrv.dll
17:13:26.0743 0x1788  C:\Windows\System32\psmsrv.dll - ok
17:13:26.0762 0x1788  [ 96024A04F6EC4DDBAB06A6D32EFD8731, 56B50D781327059FF896B2D6F64C05B0F2E9BBB9CD1B7CFE2F13C7A3C76E1172 ] C:\Windows\System32\sysntfy.dll
17:13:26.0763 0x1788  C:\Windows\System32\sysntfy.dll - ok
17:13:26.0780 0x1788  [ 8FAC4508BE959518CDDE7B1860433348, B6F7A61C971CA23E7FF8724E3AF6E3079B1651FFABF435EC8CFBDD691DD94EB8 ] C:\Windows\System32\wmsgapi.dll
17:13:26.0780 0x1788  C:\Windows\System32\wmsgapi.dll - ok
17:13:26.0797 0x1788  [ E2E30AE18F28B959E9CBC291EA9C3C8D, BD6E73DA7F624306BFFFA800D5CC2EC1BD4884669EF200CABF60F5A324225427 ] C:\Windows\System32\kernel.appcore.dll
17:13:26.0797 0x1788  C:\Windows\System32\kernel.appcore.dll - ok
17:13:26.0816 0x1788  [ 21BD8C6A87ADF2F0D27DE9BE7AA6F93A, 2E5EC49C421CD3FF7B5F2A80F5E4D01489A181A2157C580BC06D25DB676A0376 ] C:\Windows\System32\UXInit.dll
17:13:26.0817 0x1788  C:\Windows\System32\UXInit.dll - ok
17:13:26.0834 0x1788  [ BD20A262D8FBF8D667867B3414AA07D5, 91EE1EADB97584ED9039BB39F1209C5635D8BC71AF2673503E2F7CC45551E328 ] C:\Windows\System32\devobj.dll
17:13:26.0834 0x1788  C:\Windows\System32\devobj.dll - ok
17:13:26.0852 0x1788  [ 77885A5B1EFB08F016B3D5B08F359B78, BC7922DBD6D21C04D01840CACB0EF3F22D0621A3DB0895A18CCDF20F15591C10 ] C:\Windows\System32\uxtheme.dll
17:13:26.0852 0x1788  C:\Windows\System32\uxtheme.dll - ok
17:13:26.0871 0x1788  [ AA8175D71F6936A4E7C6B575A79ED6F8, E5F483DF351D9E7D8A36815C3446303D47387E606782B6ACD1CB90D4352DB0D0 ] C:\Windows\System32\SystemEventsBrokerServer.dll
17:13:26.0871 0x1788  C:\Windows\System32\SystemEventsBrokerServer.dll - ok
17:13:26.0888 0x1788  [ B1DB67614274C40622AE4AF42C044292, BC5CDBC66495AB0134A0FC8ED27ACEE6BBF109EB4AC35C5898545CC9CA23D19E ] C:\Windows\System32\bi.dll
17:13:26.0888 0x1788  C:\Windows\System32\bi.dll - ok
17:13:26.0904 0x1788  [ A3F7901123C57FD5FB8D73AC25BA268B, A2058C9AA5AF3F2E78320536CDFD00D18C332FA7F9878F6DD0899D75745FF089 ] C:\Windows\System32\dab.dll
17:13:26.0904 0x1788  C:\Windows\System32\dab.dll - ok
17:13:26.0920 0x1788  [ 65A6F9A2826D8DE0F92431043851B85F, 4445D1FE2E029080A6EA8BEA53ED6A574BBCECEB644C0D9B488387A8BB0D1C12 ] C:\Windows\System32\dpapi.dll
17:13:26.0920 0x1788  C:\Windows\System32\dpapi.dll - ok
17:13:26.0931 0x1788  [ A1E31C77F407F629F430A070B8747A44, 80E50D95CBDB85DBA2462BF133140AFEAB2D047F70168E87CE95E8D90A83C99E ] C:\Windows\System32\Drivers\luafv.sys
17:13:26.0931 0x1788  C:\Windows\System32\Drivers\luafv.sys - ok
17:13:26.0949 0x1788  [ 84AA915A6833DFEF3F28730189E53B5A, E82B8C23E5EA7B64BE3DAE932A317544F20694CDD41A38B8976C3F3AEC27DA43 ] C:\Windows\System32\wevtsvc.dll
17:13:26.0950 0x1788  C:\Windows\System32\wevtsvc.dll - ok
17:13:26.0967 0x1788  [ E19419D65D429FFF37B2FBA2C29F9E5C, 8180BCA1B2FE49C4BAF259DAC5D4181E7538D16F6C4095F5FC024D98968653BD ] C:\Windows\System32\apphelp.dll
17:13:26.0967 0x1788  C:\Windows\System32\apphelp.dll - ok
17:13:26.0983 0x1788  [ D9AC3BAE05224C5A7D7C3F0EB5C51B86, 53080D1D6DC4D6A5B3BC219C2449A396BCD9F605964AA6B5D17916A10D87603B ] C:\Windows\System32\dwm.exe
17:13:26.0984 0x1788  C:\Windows\System32\dwm.exe - ok
17:13:27.0000 0x1788  [ 71509A145C7A1E4F1E371D674C672EE9, 9F58AD55C6F95732D18A20CBC807F33CE2089B778E5AAB1F90913BA28845CB0E ] C:\Windows\System32\LogonUI.exe
17:13:27.0000 0x1788  C:\Windows\System32\LogonUI.exe - ok
17:13:27.0017 0x1788  [ E7CFE2D23D0ACB81DE37A534379D597D, 2157045ADF66359F7244EDB631D5E057B64D650FD795900EA2DF48BB49239B7E ] C:\Windows\System32\dwmredir.dll
17:13:27.0018 0x1788  C:\Windows\System32\dwmredir.dll - ok
17:13:27.0035 0x1788  [ 391E0821D8FD234EF9421222277DA0CF, 7EE706DF6B0799B2779D660C4B3731942039FAA4026F62C31E9BDFEFCCFADF06 ] C:\Windows\System32\authui.dll
17:13:27.0035 0x1788  C:\Windows\System32\authui.dll - ok
17:13:27.0053 0x1788  [ 3250046189DF6429ECD93D9B483C62C7, D68325FD8C1BA4507CF3451BC48BA2D4D10B7F2267B255B8F15D2F94C4213798 ] C:\Windows\System32\dwmcore.dll
17:13:27.0053 0x1788  C:\Windows\System32\dwmcore.dll - ok
17:13:27.0070 0x1788  [ 6EA6E222AEB14F210DE61D39F52341DA, 0D1D03E2C7E8C5BD52B0F1C2E4A6A7E9B61954F7C560744B866CA6E000DF7E3F ] C:\Windows\System32\themeservice.dll
17:13:27.0070 0x1788  C:\Windows\System32\themeservice.dll - ok
17:13:27.0087 0x1788  [ 553D77C2DFD88360E78170C2DA6FDAAD, 62661BBDF449B7C2CE255A1ACB6494088423E7F06C1ADDFC324B25D130BB3C53 ] C:\Windows\System32\gpsvc.dll
17:13:27.0087 0x1788  C:\Windows\System32\gpsvc.dll - ok
17:13:27.0103 0x1788  [ B178322B5C3BD53811190158053C0C3A, 3D3FDE852451C69EDAEE3A22B3FDB70F0B19956D466EBD8DCEE2397F01837061 ] C:\Windows\System32\wevtapi.dll
17:13:27.0103 0x1788  C:\Windows\System32\wevtapi.dll - ok
17:13:27.0123 0x1788  [ F7B794AC9DA80BCD0B7AA92D46950357, 242D426BA6A0CE9F01806FEF837995D71986E6ECE0AA0EEAA2DD40F2DD26BA55 ] C:\Windows\System32\dcomp.dll
17:13:27.0123 0x1788  C:\Windows\System32\dcomp.dll - ok
17:13:27.0142 0x1788  [ DCE9FD22B136C127C85F285E083B928B, 769A0D7836B2703110D8C44770256DEED37A8655C07C8591463BB9EA24A6997A ] C:\Windows\System32\nlaapi.dll
17:13:27.0142 0x1788  C:\Windows\System32\nlaapi.dll - ok
17:13:27.0162 0x1788  [ C5807DD86FC93EFCB3824F558A7EC2AA, 0781D828EC62E28D16B562EF762A3171CB2FF3CE9E4ADB305BF7AB5AEB0956AB ] C:\Windows\System32\profsvc.dll
17:13:27.0162 0x1788  C:\Windows\System32\profsvc.dll - ok
17:13:27.0180 0x1788  [ 784D5EFA2DC1528F440DE40A4D8D94A6, F3B6155C9431ABDCEFC41FC1B2D44033EA54CC7C298B1C90A85824D5ED5F0FB8 ] C:\Windows\System32\dsrole.dll
17:13:27.0181 0x1788  C:\Windows\System32\dsrole.dll - ok
17:13:27.0191 0x1788  [ 3E2CEA9289F6E239307DB3B73914EF5C, 0CCC5FE173285F01E5D228B91B1BA7B670238F06147FF4B6542CFB3927FB8733 ] C:\Windows\System32\ntdsapi.dll
17:13:27.0192 0x1788  C:\Windows\System32\ntdsapi.dll - ok
17:13:27.0208 0x1788  [ 34239918ADB0CABD25F0741BEC645B5E, 4D7CCD94B2CB9C869F6A3DDD74EA1D9E58DA3CA47CB90D0388C0FB4862A165AB ] C:\Windows\System32\profsvcext.dll
17:13:27.0209 0x1788  C:\Windows\System32\profsvcext.dll - ok
17:13:27.0226 0x1788  [ 422CCE58B99B9CE19B168CD9FBC21098, 89CF0E8ACF435BC7190F4E10720C483348D6DAD100BE7E865CAC2E9884C6ADC5 ] C:\Windows\System32\WindowsCodecs.dll
17:13:27.0226 0x1788  C:\Windows\System32\WindowsCodecs.dll - ok
17:13:27.0243 0x1788  [ AF454A1198076CE87B171AD85AC2966A, 4B99F12DE00D0FDF5D75285F2F1D352BA429D72B81F5CA77A9DE4172DA103E2C ] C:\Windows\System32\dui70.dll
17:13:27.0243 0x1788  C:\Windows\System32\dui70.dll - ok
17:13:27.0262 0x1788  [ AFCE65CE603AEBCF55333D186D133681, 9E2A898DE479F20D71ABF73F20F96D0FA7C5FE5652C668D1AC47F56DBFC360FA ] C:\Windows\System32\netapi32.dll
17:13:27.0262 0x1788  C:\Windows\System32\netapi32.dll - ok
17:13:27.0279 0x1788  [ 6D732B796501D1A09FAA61FCA4659990, 424BEBFB83E626666A10E39B593C8FD5B1629D0FFD3B9DE0FC0154B0FE3AB1F2 ] C:\Windows\System32\atl.dll
17:13:27.0280 0x1788  C:\Windows\System32\atl.dll - ok
17:13:27.0297 0x1788  [ CB43D4396475652528112B2CC3739FAB, 5A0156BBBFB7E4E5354C02D3A09F4CFDEB72644E46273645BA46BC759687A9AC ] C:\Windows\System32\es.dll
17:13:27.0297 0x1788  C:\Windows\System32\es.dll - ok
17:13:27.0313 0x1788  [ C2DA9D9EAD0F7AAA9FF42C603C11D90A, 87A4D5DAF002F7E6BCB8949B6A7C0F8E8A4ACB99CBCCB25F375B265815511E97 ] C:\Windows\System32\wkscli.dll
17:13:27.0313 0x1788  C:\Windows\System32\wkscli.dll - ok
17:13:27.0331 0x1788  [ E41E1FCFE5774E3928705A17BA4C4A6F, 2072969B4A3B16D2841D6FFD825DDE5A56DCE66F856844C854BBC0DEAE5FBBF9 ] C:\Windows\System32\taskschd.dll
17:13:27.0331 0x1788  C:\Windows\System32\taskschd.dll - ok
17:13:27.0350 0x1788  [ 003EFF1DD70E56136B7BCCA365173276, 94B8CB1A796FAE827928D293DB1E9A019874E158E3667A7588D7F35278B012F1 ] C:\Windows\System32\dwmapi.dll
17:13:27.0350 0x1788  C:\Windows\System32\dwmapi.dll - ok
17:13:27.0368 0x1788  [ C5E75EC2DD14E8F0A47E21A433F3532A, 831E57D7ABD3AE919C27BE4BD1B10BAA5E09C3A2179A66CEB6CCB3439B316A83 ] C:\Windows\System32\wmiclnt.dll
17:13:27.0368 0x1788  C:\Windows\System32\wmiclnt.dll - ok
17:13:27.0386 0x1788  [ E83BDF98DE5C56095E213B3EDFA7F9E8, 21AD43DEAC8347349A4D148AC5751BE6E5A188FB95581437041C15823559075F ] C:\Windows\System32\avrt.dll
17:13:27.0386 0x1788  C:\Windows\System32\avrt.dll - ok
17:13:27.0403 0x1788  [ 82290A934A5164ECE8B1CE41460A9DEA, B97A0E0004BC034FAD927CE62A7B5EA4F35CDAA3572768037B2E24579CC25C01 ] C:\Windows\System32\d3d11.dll
17:13:27.0403 0x1788  C:\Windows\System32\d3d11.dll - ok
17:13:27.0420 0x1788  [ D6C313B593DCB2B298E14EF9D6890222, 7B72DDC79CF247D6B0AD18C035DC4198E84FB0605F081ED478C0ADFAF500146E ] C:\Windows\System32\wtsapi32.dll
17:13:27.0420 0x1788  C:\Windows\System32\wtsapi32.dll - ok
17:13:27.0437 0x1788  [ 7C25BEAFA695BF6BC06F2A1580CE24A2, E528B589D4ACAE97D2A13C2A3F731DCB2B72B18421E1F4A523B943D0911D493D ] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee\comctl32.dll
17:13:27.0437 0x1788  C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee\comctl32.dll - ok
17:13:27.0450 0x1788  [ FEB8BCDFB8A75720DECBE34232597338, 3B13A754FCABBD4F1BCE2FB705F6D020FA9CDD1D4285CA89D59FBC70EBBABD33 ] C:\Windows\System32\Sens.dll
17:13:27.0450 0x1788  C:\Windows\System32\Sens.dll - ok
17:13:27.0468 0x1788  [ 798ECCEB169C290378D98D79816EC3E4, 8BC81B9EC30CBEFEB99C7BE7CF9D8163B5ABC3ED7F0ADF7320C298B09F9D3053 ] C:\Windows\System32\AudioEndpointBuilder.dll
17:13:27.0468 0x1788  C:\Windows\System32\AudioEndpointBuilder.dll - ok
17:13:27.0484 0x1788  [ 00CC7A6FFC120FC1B1F406B3EF6E2659, 5ADB0C628EECC3967F106228DCE5C27211073A3A93CF88A36FB7E04137F3E979 ] C:\Windows\System32\mmcss.dll
17:13:27.0484 0x1788  C:\Windows\System32\mmcss.dll - ok
17:13:27.0501 0x1788  [ EA8045B4C1B6CD9AB17DDF82CB86E16C, DED39C9E0601421BB90984B9FFC69D8FEEF895DA069A735468E932AB22D1983F ] C:\Windows\System32\FntCache.dll
17:13:27.0502 0x1788  C:\Windows\System32\FntCache.dll - ok
17:13:27.0518 0x1788  [ D12F7CF48C4035D6FCFF161E5EEBA6CC, 7711CE247F5F8A2714A716686798DD79962F474460747FF875D5B21989D82B97 ] C:\Windows\System32\MMDevAPI.dll
17:13:27.0518 0x1788  C:\Windows\System32\MMDevAPI.dll - ok
17:13:27.0535 0x1788  [ FC1810D273E5B4BE5F74E4B235D35013, BA9B508A59D28B222FCBDE3500EE4C2B555ABD71E75F9153CEBD5E0EAC81E249 ] C:\Windows\System32\dxgi.dll
17:13:27.0535 0x1788  C:\Windows\System32\dxgi.dll - ok
17:13:27.0553 0x1788  [ D7738D6DE4E5C8D6E04D71E8F7653231, 771DB630C7F07DB39EA12208998110A370CFD087AB5F5241DD62667C24D4A035 ] C:\Windows\System32\d3d10warp.dll
17:13:27.0553 0x1788  C:\Windows\System32\d3d10warp.dll - ok
17:13:27.0571 0x1788  [ 27097A653B844B5EBE62A2A753F16725, 8053742FB5F5FA19DD3502C1E50309D6B59ADC6CE56592A41CA75F266ED71C36 ] C:\Windows\System32\duser.dll
17:13:27.0571 0x1788  C:\Windows\System32\duser.dll - ok
17:13:27.0587 0x1788  [ 0027ECBF64B748231B5CE824CC2F0470, B617C86B83ED59EC1A53FD710891A92E2EFD1D6A4C10CEC2E2531F333B991697 ] C:\Windows\System32\SndVolSSO.dll
17:13:27.0587 0x1788  C:\Windows\System32\SndVolSSO.dll - ok
17:13:27.0603 0x1788  [ CC4A07377E8D987CF3077B18FC6D133B, F5F6AF17028C5E9A2B6B05AE7DFD405047FC8E1DCDFAED9E6ACC4A8F9CA3AEC2 ] C:\Windows\System32\slc.dll
17:13:27.0604 0x1788  C:\Windows\System32\slc.dll - ok
17:13:27.0620 0x1788  [ 7C4829EC5B8ECF4B3C43CAFA1C175939, 18CC93B44D540FB7E5A2181890E83422FB50EAB531AEFAFFB3DB9CAA830EFE2E ] C:\Windows\System32\sppc.dll
17:13:27.0620 0x1788  C:\Windows\System32\sppc.dll - ok
17:13:27.0636 0x1788  [ 7D1D6E407010F8ABDD81070B958080BC, 35EF1C57CB8A7CF7A64C269747A552CF5838AD6A58E78BB7619994571292FD37 ] C:\Windows\System32\BCP47Langs.dll
17:13:27.0636 0x1788  C:\Windows\System32\BCP47Langs.dll - ok
17:13:27.0654 0x1788  [ 7747934159158A94F554A6ECB08D1D4C, 0CB3C3B0FC6790A74BD7E54AAB66FC5D90DA406DA27DC33B68900D23F0268C8D ] C:\Windows\System32\igdumd32.dll
17:13:27.0654 0x1788  C:\Windows\System32\igdumd32.dll - ok
17:13:27.0674 0x1788  [ E5DDB8D6AF261A73BB4E127F3F3C15C3, 1A00ABB448B7F938E7330CC26A2D79A4B21D8C671EADC9C3B13871B999BE7DDD ] C:\Windows\System32\audiosrv.dll
17:13:27.0674 0x1788  C:\Windows\System32\audiosrv.dll - ok
17:13:27.0692 0x1788  [ 4DC9712E9344D7AC41F0B7EA165B92C3, 55997E2B1FCF2810C11138DFF7B86A2038908116D691A6DA491C4F8AD8C82DB4 ] C:\Windows\System32\SmartcardCredentialProvider.dll
17:13:27.0692 0x1788  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
17:13:27.0703 0x1788  [ 9F02393012A2BFC21CA85C3B850BD7BB, 8B457A205969F353145623FA5E61263A2653C2D915252DCD1C4A7004C9372300 ] C:\Windows\System32\ksuser.dll
17:13:27.0703 0x1788  C:\Windows\System32\ksuser.dll - ok
17:13:27.0721 0x1788  [ A6B83F04D58CD574B61D346207CAD9D9, 556A3949680DAF98458B8820D8E3624C3B14FB737A49C81FDBA01DF6E1EE8C45 ] C:\Windows\System32\d3d10level9.dll
17:13:27.0721 0x1788  C:\Windows\System32\d3d10level9.dll - ok
17:13:27.0738 0x1788  [ 1A4F3D16348DE9B90081947BBCE618B0, 9D3B3CC3B7E00C7D6F419D918B2BBD0A23E134DEC6F0F050066E2E06D222ECF2 ] C:\Windows\System32\DWrite.dll
17:13:27.0738 0x1788  C:\Windows\System32\DWrite.dll - ok
17:13:27.0758 0x1788  [ B138A527F11849011B695DA251F02F34, B56CD13349F1AB5AF66260E1F87507EEF03BB3A7F0E52CF4474BD81CA7970E72 ] C:\Windows\System32\samlib.dll
17:13:27.0758 0x1788  C:\Windows\System32\samlib.dll - ok
17:13:27.0775 0x1788  [ 355DEE5EE934B8440930B1022FAF0714, 35BC51F2EF78996C7CC620AD9EA32D75940662746107EB8DD25DBEF40C08E78F ] C:\Windows\System32\TabSvc.dll
17:13:27.0775 0x1788  C:\Windows\System32\TabSvc.dll - ok
17:13:27.0792 0x1788  [ 369ED2626209D245BA1CEBB626F9A376, C28A0B4998DF1027AB3C234742AD51E140889CC065CF2F073665297B61A31F6F ] C:\Windows\System32\Drivers\lltdio.sys
17:13:27.0793 0x1788  C:\Windows\System32\Drivers\lltdio.sys - ok
17:13:27.0810 0x1788  [ 1AE3667D33AF9D403858D81D1DA76F21, E199182239D338D8D9208507C3C0BB2952151627F21273158D197F971AEBEF78 ] C:\Windows\System32\Drivers\nwifi.sys
17:13:27.0810 0x1788  C:\Windows\System32\Drivers\nwifi.sys - ok
17:13:27.0827 0x1788  [ E5250C9D336B4E926EBAC8A8B973C8B2, 9566FFAEDA25C0C0F4D96B7E62484E659D994653A3699D56411122EB25E73437 ] C:\Windows\System32\uDWM.dll
17:13:27.0827 0x1788  C:\Windows\System32\uDWM.dll - ok
17:13:27.0845 0x1788  [ BA7ECBAC5D1A826C55DD3A32855668B4, 4CDE5A345BC7C3B47BC1C2EF0D8D09BB2403EFA0A1D01600DC0FE177F098E198 ] C:\Windows\System32\cngcredui.dll
17:13:27.0845 0x1788  C:\Windows\System32\cngcredui.dll - ok
17:13:27.0863 0x1788  [ 1D34650E97E74DF51BD86E0A102DB241, B4B6A2C073348C3829E5CD0565A0B44CA6A0AD05E3744767FA8D89134ED8002E ] C:\Windows\System32\Drivers\ndisuio.sys
17:13:27.0863 0x1788  C:\Windows\System32\Drivers\ndisuio.sys - ok
17:13:27.0880 0x1788  [ A7B0D780D365635525B8A2B10CE493C4, D27F12DAB4B6BD7BE2E72650ED5BD48790E706B290A838882C6A34123B67D70E ] C:\Windows\System32\Drivers\rspndr.sys
17:13:27.0880 0x1788  C:\Windows\System32\Drivers\rspndr.sys - ok
17:13:27.0899 0x1788  [ 5E33D044399C9BE1E47D625EEB42D340, F7B2ECC44BA4FD88072284585E92DCFF218A122AC6C8C3D043C7FF03B597C23B ] C:\Windows\System32\lmhsvc.dll
17:13:27.0899 0x1788  C:\Windows\System32\lmhsvc.dll - ok
17:13:27.0916 0x1788  [ E4F84B855CF1D9AC90AC7BD5CD8FCA44, 99B09A9FC6F6C3862C355840236698C53144334E55782EB914DE4A411CE87B0F ] C:\Windows\System32\oleacc.dll
17:13:27.0917 0x1788  C:\Windows\System32\oleacc.dll - ok
17:13:27.0933 0x1788  [ 9F8CCC693334EABE9AD9C61C8263A84B, 24F70676A12CB84CC7770421D8F446BD115E9BEA2B877DD4B6D4CB7B80B47A8C ] C:\Windows\System32\IPHLPAPI.DLL
17:13:27.0933 0x1788  C:\Windows\System32\IPHLPAPI.DLL - ok
17:13:27.0944 0x1788  [ 24D4B7A9858186DA60239DAA6D471CF0, 40E5695CEECC3D3568BDABA0D8542498F43E3D11DDC674EDAD1752327B39E55A ] C:\Windows\System32\nsisvc.dll
17:13:27.0944 0x1788  C:\Windows\System32\nsisvc.dll - ok
17:13:27.0962 0x1788  [ 08B39777A2068282A79C97EEA3120F23, BE8EB75E9D8D05E3618C4EF400A7AF7AD7CBA703DBD505F422B1972CE5C8FAD2 ] C:\Windows\System32\BioCredProv.dll
17:13:27.0962 0x1788  C:\Windows\System32\BioCredProv.dll - ok
17:13:27.0980 0x1788  [ 72EF440E98C37AACA84BA168042AF7C0, 535C50847AC5F33AAF72F3C3A879669304F883BBCCBA6129118D97CF12BDEF98 ] C:\Windows\System32\nrpsrv.dll
17:13:27.0980 0x1788  C:\Windows\System32\nrpsrv.dll - ok
17:13:27.0997 0x1788  [ 0B98F0185AC5611DA04CEBB190AFA228, 88EA3CD54A00FEB4EDCD5CD82B0179266085F321EFA24EFDFAF3CFAE897AC0DE ] C:\Windows\System32\wcmsvc.dll
17:13:27.0997 0x1788  C:\Windows\System32\wcmsvc.dll - ok
17:13:28.0014 0x1788  [ 97F6806A9E9E36C14C319218DDD82B8B, D4746BA7D785DFB1FC625D52B0DEF75C72BD980E0891732009155610D2EC8774 ] C:\Windows\System32\winnsi.dll
17:13:28.0014 0x1788  C:\Windows\System32\winnsi.dll - ok
17:13:28.0031 0x1788  [ 1A5B54C22E3087FC96D01EFAEAC5B3DB, D221F8C99CB2E71B655024135E5E965805C585F3E1063847955E9D2E58580E26 ] C:\Windows\System32\UIAnimation.dll
17:13:28.0031 0x1788  C:\Windows\System32\UIAnimation.dll - ok
17:13:28.0048 0x1788  [ 913B496B799FA75F672DADFB4226D43F, 9068EB60C453DFFE3FA84E8BCF79825CE08B59E257324D192E94178067A41D72 ] C:\Windows\System32\dhcpcore.dll
17:13:28.0048 0x1788  C:\Windows\System32\dhcpcore.dll - ok
17:13:28.0065 0x1788  [ 9038E64188DFE399FE06878319AD7C21, 0F46345231DEC75C3E6C897E0F073B7F95F42B46E0F9CD3ED5CE5408B990F281 ] C:\Windows\System32\winbio.dll
17:13:28.0065 0x1788  C:\Windows\System32\winbio.dll - ok
17:13:28.0082 0x1788  [ 369F45B870E32DC6DB5ECB6246382C2C, 4FB2295A371D72E5C157A2C4B61850C520588563C9262495E2D96CC23A80B113 ] C:\Windows\System32\certCredProvider.dll
17:13:28.0082 0x1788  C:\Windows\System32\certCredProvider.dll - ok
17:13:28.0100 0x1788  [ 92F70A87793C9CE2F8D9B8141B10E2DF, 20CDD442C58C0DD7F0A3436223C9665BC1B9F3D57EB8EDA58A3AD6232C1FE33F ] C:\Windows\System32\d2d1.dll
17:13:28.0100 0x1788  C:\Windows\System32\d2d1.dll - ok
17:13:28.0116 0x1788  [ B22CD5A695DF966ABD30C89381DF2499, EDDEFCCEF563771AF2E551E78FEDAC62BB23768DB03057718F76FAA253B7D0A4 ] C:\Windows\System32\wcmcsp.dll
17:13:28.0116 0x1788  C:\Windows\System32\wcmcsp.dll - ok
17:13:28.0135 0x1788  [ 43C5EBFC791BAAE8EE570710754E5554, 18848D04987D035B871C4B78F308405ABA7EB4F66388CFEE20B5A2A21423644E ] C:\Windows\System32\dhcpcore6.dll
17:13:28.0135 0x1788  C:\Windows\System32\dhcpcore6.dll - ok
17:13:28.0153 0x1788  [ 881E5746C6973834AAE9D9D6B08C6AD9, 4D3A13182CE52B448458363777F64BF9867360393AFA7316B01188DD72D7305D ] C:\Windows\System32\dnsrslvr.dll
17:13:28.0153 0x1788  C:\Windows\System32\dnsrslvr.dll - ok
17:13:28.0171 0x1788  [ BE496D150BD33CEB926897003B44F9FC, 8BD141B1AECF643029248F8057C64BBB961E44B3A7ED20DBE438673C4BADC360 ] C:\Windows\System32\wlansvc.dll
17:13:28.0171 0x1788  C:\Windows\System32\wlansvc.dll - ok
17:13:28.0188 0x1788  [ 0A45D9492ACB843A5D27D156C30D892D, 5951604C35D62478A8CF41B1791FE1C8E425E4F5F10288CF03C4DC3125616729 ] C:\Windows\System32\wlidcredprov.dll
17:13:28.0188 0x1788  C:\Windows\System32\wlidcredprov.dll - ok
17:13:28.0199 0x1788  [ 46F1C93A178B52FB3F776D8A042B0935, 64BF60F8F8A292A10F59E40542669B7027B166440A0D44FD76E5BF1F880B9E57 ] C:\Windows\System32\rasplap.dll
17:13:28.0199 0x1788  C:\Windows\System32\rasplap.dll - ok
17:13:28.0218 0x1788  [ 6658E616E766290B32E703FEA44C077F, 15651FF8A07DE7099F29CA2CC3589B95D6D790C3E93826E7C81352BD1EEF52D8 ] C:\Windows\System32\FWPUCLNT.DLL
17:13:28.0218 0x1788  C:\Windows\System32\FWPUCLNT.DLL - ok
17:13:28.0234 0x1788  [ 6A40FFFA55E4C8EA1702184B33725E71, 98867D1A93D478C17BF8DBC3E760912077D4C459FABB9A735293A00513E0CB27 ] C:\Windows\System32\dnsext.dll
17:13:28.0234 0x1788  C:\Windows\System32\dnsext.dll - ok
17:13:28.0251 0x1788  [ D8F8046DA2CA5F52F5FD1CB6230E21CC, 05DA8AE5EF01E861A7A1F0EC1C17A959161D9C3788DE653F29BE0F25B1F7A741 ] C:\Windows\System32\rasapi32.dll
17:13:28.0251 0x1788  C:\Windows\System32\rasapi32.dll - ok
17:13:28.0269 0x1788  [ E56FC64A7DBF166F13BD37F941B559F6, D3CBB676098E654FDE8BA7C36E9D154F983A3E7C85FBC0AFAE325FB606C5FE09 ] C:\Windows\System32\dhcpcsvc6.dll
17:13:28.0269 0x1788  C:\Windows\System32\dhcpcsvc6.dll - ok
17:13:28.0287 0x1788  [ 2F592D95A9B099DD548097E2D2CC0E40, B5F8B00008DA73F431DFA688187505149FC33699E5695408F87D3461FA640906 ] C:\Windows\System32\dhcpcsvc.dll
17:13:28.0287 0x1788  C:\Windows\System32\dhcpcsvc.dll - ok
17:13:28.0304 0x1788  [ 6BE8DC5C568DBB1C6659482500E2C4C2, 5BD82F45AE2BEFDE1A8511C835A68E6ED330E4F44D912F3941C7329CFE5BB228 ] C:\Windows\System32\wlanmsm.dll
17:13:28.0304 0x1788  C:\Windows\System32\wlanmsm.dll - ok
17:13:28.0321 0x1788  [ 42E5899626EFCEADD7EFBE18B70F231F, 7339B1B37E4C3B55B79DF2DB31D63E3967DF7F69F5192FDAA4A9B5A56EA6E29F ] C:\Windows\System32\rtutils.dll
17:13:28.0321 0x1788  C:\Windows\System32\rtutils.dll - ok
17:13:28.0340 0x1788  [ 4A65A1541DCA6CD4E88828AA6FE277BD, 5F35502B5042DC81BB8D4443A1A195F779AD96E74F940B02B6625CBE0E5672D7 ] C:\Windows\System32\onex.dll
17:13:28.0340 0x1788  C:\Windows\System32\onex.dll - ok
17:13:28.0357 0x1788  [ E49E9DB05732B27B2E42B524D7950321, 6D0CC8188F0746F940B1BE6766A7757D2CEDB2D68C9943F6E609267321EE11AC ] C:\Windows\System32\rasman.dll
17:13:28.0358 0x1788  C:\Windows\System32\rasman.dll - ok
17:13:28.0374 0x1788  [ DD5FA2E18A77238BFBFECBF547DE7FB5, 889A7BB625F0C346EA1572359767F4299E930C5B569F791E4AA9B2A133F8F89E ] C:\Windows\System32\wlansec.dll
17:13:28.0374 0x1788  C:\Windows\System32\wlansec.dll - ok
17:13:28.0391 0x1788  [ B3C49AB23E9853939CEE1C0B24663B6E, 53160C7AA5A39D01A5AFFBB13563A5BB8964349B448C162524AC4A269FA413A3 ] C:\Windows\System32\eappprxy.dll
17:13:28.0391 0x1788  C:\Windows\System32\eappprxy.dll - ok
17:13:28.0409 0x1788  [ F1C97E486ABE2D84AB0C09BB3EEC3940, C4C8ADD02EE83C75D91B195D9FF4F26E36040F6875E0FE26AA10BD9C676DEB6C ] C:\Windows\System32\winbrand.dll
17:13:28.0409 0x1788  C:\Windows\System32\winbrand.dll - ok
17:13:28.0426 0x1788  [ 9E2D86747B843E887529655FFE40B900, 3015795025248935CD299F0BBD5F892B8E6D3C483745ADDE648DDAF7972F97B1 ] C:\Windows\System32\AuthExt.dll
17:13:28.0426 0x1788  C:\Windows\System32\AuthExt.dll - ok
17:13:28.0446 0x1788  [ 873E3334A9468D59D40C75636BABABA6, 6968BF4743DC4AFC8F29A2C6C4C99BF025104995C0164CDF25F1515087060D05 ] C:\Windows\System32\wlansvcpal.dll
17:13:28.0446 0x1788  C:\Windows\System32\wlansvcpal.dll - ok
17:13:28.0460 0x1788  [ 2D2C20DF59F51A8EEA12F3D6DE2E7D9B, C3FB31A979387D6C8955153495C06D1F5B6A540ED4CB385AACDEC71311D556CA ] C:\Windows\System32\msxml6.dll
17:13:28.0461 0x1788  C:\Windows\System32\msxml6.dll - ok
17:13:28.0478 0x1788  [ F44508F6DA6128E57DDD2456B717E231, 9923629CD36EE336A210C10B72065B698428813074F578E0AFA2E35EC3C38270 ] C:\Windows\System32\propsys.dll
17:13:28.0479 0x1788  C:\Windows\System32\propsys.dll - ok
17:13:28.0496 0x1788  [ B74B9075100C070037D61ECC682580E7, CDDB568225EDC768200AE6605702B0863424AE8A4B3B1F7551827340BD49DA26 ] C:\Windows\System32\xmllite.dll
17:13:28.0496 0x1788  C:\Windows\System32\xmllite.dll - ok
17:13:28.0514 0x1788  [ 773BCA176D12E2974D65F1789A4F3B1A, 942ADCA7134E0DD6F8BC99C1A9A94A3EFDE5AEF727623E768DE8C8FF5A2E1FC4 ] C:\Windows\System32\NetworkStatus.dll
17:13:28.0514 0x1788  C:\Windows\System32\NetworkStatus.dll - ok
17:13:28.0531 0x1788  [ 69B6C853389A021181E4A636509C6D3C, 78A817506BCCB6B6BE4EC305879C18CE3B6C5BE90CD60D0D6FCE89775FEF6EBF ] C:\Windows\System32\shacct.dll
17:13:28.0531 0x1788  C:\Windows\System32\shacct.dll - ok
17:13:28.0551 0x1788  [ 26F01907408D6BF10D151F4CD2D23145, 0F62AEDD63CFA616984E92885A92E3CF646490D06747CF2DC56612557A84F581 ] C:\Windows\System32\InputSwitch.dll
17:13:28.0552 0x1788  C:\Windows\System32\InputSwitch.dll - ok
17:13:28.0568 0x1788  [ 70C34F5CC9B0E51B87C417FB65C120F9, 1F134C5211AC5B69C11F6F63ADB09F3A1E04E12416AAA5596905FA859610A80A ] C:\Windows\System32\Windows.UI.Immersive.dll
17:13:28.0569 0x1788  C:\Windows\System32\Windows.UI.Immersive.dll - ok
17:13:28.0587 0x1788  [ 235F3A84A2CC9EF1823B9B714EA61278, B439AC9EC88D102032F79B369DE6C328AE87B1471AF3B72825B13DF2F6E6560C ] C:\Windows\System32\TetheringIeProvider.dll
17:13:28.0588 0x1788  C:\Windows\System32\TetheringIeProvider.dll - ok
17:13:28.0606 0x1788  [ CAE173731AC6BB5BA52EDAC928D75481, 8373E87DE01800A59EDFF9C83A020EE252A0EF16C579BA056CE48A56F0E616DD ] C:\Windows\System32\WiFiDisplay.dll
17:13:28.0606 0x1788  C:\Windows\System32\WiFiDisplay.dll - ok
17:13:28.0622 0x1788  [ 4A263719E8E784A8C6CCBF4C298586C3, CD3CFD0F8B9156E3F1BD5D599AC6037863DFB5E5BBE1397F6AAF83BE96A8499F ] C:\Windows\System32\wlanapi.dll
17:13:28.0623 0x1788  C:\Windows\System32\wlanapi.dll - ok
17:13:28.0639 0x1788  [ 09E2446B8BE7BA66E19FBC033043A844, DAC83EF39DF5902E20FFF4F428C3F18211BB25289076C48132D21C60AA5A9155 ] C:\Windows\System32\wlgpclnt.dll
17:13:28.0639 0x1788  C:\Windows\System32\wlgpclnt.dll - ok
17:13:28.0658 0x1788  [ CE608BD38EB89CCF3E95CB23752ADAFD, 16F22B2C8F001DA6F88D7C302DA597AFB6BB3CEEB27E444D3A64C8A53B7123E3 ] C:\Windows\System32\l2gpstore.dll
17:13:28.0659 0x1788  C:\Windows\System32\l2gpstore.dll - ok
17:13:28.0676 0x1788  [ 8C5AC6E142A13CA7E26EC0487DD8D7D8, 2AA58741B7603F429D2D8BE2627FFE9079E8678E77FCBDBBACD91D2F76FF524C ] C:\Windows\System32\wuaext.dll
17:13:28.0676 0x1788  C:\Windows\System32\wuaext.dll - ok
17:13:28.0692 0x1788  [ 95AB9B30166221ED22E43290D47198CD, AB2E7BC5A2E120148E14FBD1625C15655F9E2489C911537EDC96BDCF560DFDF8 ] C:\Windows\System32\PhotoMetadataHandler.dll
17:13:28.0693 0x1788  C:\Windows\System32\PhotoMetadataHandler.dll - ok
17:13:28.0710 0x1788  [ C42272BFFA4F921DE406F3C7455D709B, D6FB69495914124EE1D8CF463662C7DA33315321B9620D51C7FB47F4EE4F153B ] C:\Windows\System32\shsvcs.dll
17:13:28.0710 0x1788  C:\Windows\System32\shsvcs.dll - ok
17:13:28.0721 0x1788  [ E038A3A272DF23F77219BCE7C4859018, 375A676ABB687146C469805E025092FCF602B0902538BEAAF88A22687FD25B0D ] C:\Windows\System32\wlanhlp.dll
17:13:28.0721 0x1788  C:\Windows\System32\wlanhlp.dll - ok
17:13:28.0740 0x1788  [ 639E2E06506438A9AE6F1BCD8A70C210, 1B24BAFD2C9690F0940870F0DCC82E36FAF5A06A4677A9174D25E3CCFC3C1EFF ] C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
17:13:28.0740 0x1788  C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe - ok
17:13:28.0758 0x1788  [ 4B8665681D13A0B5B9D4884DDC55A2DF, 603A3568E9BE3F5CB0A4DFC21EDBD56D3E90F7138A2DA6970A0C5E83957C08FE ] C:\Windows\System32\SubscriptionMgr.dll
17:13:28.0758 0x1788  C:\Windows\System32\SubscriptionMgr.dll - ok
17:13:28.0777 0x1788  [ 5872637151998A4A45D7516924B41C1D, DF3F9300D321D00C606910E024122B905BD071D082FED8A3E0D77411ABED0720 ] C:\Windows\System32\IDStore.dll
17:13:28.0777 0x1788  C:\Windows\System32\IDStore.dll - ok
17:13:28.0794 0x1788  [ ED5ABB7F84C7EA40C34204739E5D4AD1, 17446B9681D7893DEB789A598BAE1CC515B0D9982B7437936C2C8C364A4ED964 ] C:\Windows\System32\fveapi.dll
17:13:28.0794 0x1788  C:\Windows\System32\fveapi.dll - ok
17:13:28.0811 0x1788  [ 955466AE2B73E419822068FBD8D6D31F, CF2CC5572152688C5947391D3059FDC274244B97933FF88041E31ABACA3201D6 ] C:\Windows\System32\samcli.dll
17:13:28.0811 0x1788  C:\Windows\System32\samcli.dll - ok
17:13:28.0828 0x1788  [ 87292231D5EA445EE0B69D5024E6B35D, FA1F423B76FC2C36D757397AC06EED0181CFBDF8CA836D268D39E03AA0B8187B ] C:\Windows\System32\wbiosrvc.dll
17:13:28.0828 0x1788  C:\Windows\System32\wbiosrvc.dll - ok
17:13:28.0846 0x1788  [ D83A7019E4026BA19A8B106DC5394CDD, 6BE8761EDF870F1A45DCA58F073C6A5678762B583C6C10F1DE5C437F3B71203C ] C:\Program Files\Common Files\microsoft shared\ink\tipskins.dll
17:13:28.0846 0x1788  C:\Program Files\Common Files\microsoft shared\ink\tipskins.dll - ok
17:13:28.0865 0x1788  [ 3F49AEC6A02E2A2CA660AAA7A1A22F91, DBF6AFFDA78614749E6E388D80FCDDE99B2731417B78C469D6E5ACC5644C9644 ] C:\Windows\System32\bcd.dll
17:13:28.0865 0x1788  C:\Windows\System32\bcd.dll - ok
17:13:28.0882 0x1788  [ 381A021EE00483B6EC48042D79CE867B, 8B2C88306F30F68C9CDE70BA961881CBCB5437289B7A417EA6726AF82456C43D ] C:\Windows\System32\fvecerts.dll
17:13:28.0883 0x1788  C:\Windows\System32\fvecerts.dll - ok
17:13:28.0899 0x1788  [ 414FD07C36AA1E1FA2C62C6BE3B2954A, D5E5627493442A5962CA1849E11710A60BE31109A7127283ED0D569C8A5699B3 ] C:\Windows\System32\schedsvc.dll
17:13:28.0899 0x1788  C:\Windows\System32\schedsvc.dll - ok
17:13:28.0919 0x1788  [ 87B72D0E53A972C8AAE086925972B1DC, 5CB96A43EDBAC02879853B784F27A7EBA80288B2A9550BB2192A8310FBE06EEA ] C:\Windows\System32\wlidres.dll
17:13:28.0919 0x1788  C:\Windows\System32\wlidres.dll - ok
17:13:28.0935 0x1788  [ 00ED6F8562702A00D8AEC9F70CA7DDFE, C8BDC3179DF091DB9021A7D0372CCB0EF75ACD8EAEB899DCDA3C2F0D33C81B08 ] C:\Windows\System32\UIAutomationCore.dll
17:13:28.0936 0x1788  C:\Windows\System32\UIAutomationCore.dll - ok
17:13:28.0952 0x1788  [ 632A23DA33B53B9B33AC504E0C8300F8, 06CD7DC6B123A10756ADF20D7F3F989F1844476F7BE5CA2F790497334EB0F670 ] C:\Windows\System32\ubpm.dll
17:13:28.0953 0x1788  C:\Windows\System32\ubpm.dll - ok
17:13:28.0965 0x1788  [ 7915FC2AFDAD6A87E03EDDA192088947, 6B13588BEF0C074867615E2C0E6AFF619EC0A0457CF9B24A6BED5CAFDA4AA273 ] C:\Windows\System32\batmeter.dll
17:13:28.0965 0x1788  C:\Windows\System32\batmeter.dll - ok
17:13:28.0983 0x1788  [ 6B5198FC1610CE5BDE5FFC453C8FE4DA, 53CEF6113C3289710E1158FD4615F30E2F414A4D0169D17EC061E7AB295CCDED ] C:\Windows\System32\ktmw32.dll
17:13:28.0984 0x1788  C:\Windows\System32\ktmw32.dll - ok
17:13:29.0001 0x1788  [ 2486CF334A64B2E0766B5C94F44FFF8C, F874442C8655316C845DACB955C513068E740D39E153C0FD964A8E130B9D9EEA ] C:\Windows\System32\CSystemEventsBrokerClient.dll
17:13:29.0001 0x1788  C:\Windows\System32\CSystemEventsBrokerClient.dll - ok
17:13:29.0018 0x1788  [ 63BDCB2187A6AFAE17A7F745D55BF1FA, DE1170FED9D7BBB8719C8996DCD34C28A0D98BAAFC931597001C463323123D19 ] C:\Windows\System32\tbs.dll
17:13:29.0018 0x1788  C:\Windows\System32\tbs.dll - ok
17:13:29.0034 0x1788  [ DFB5B36AAF5C6DC0BC482C102D7F43E1, F05EF68DF08FA7E465617B43888FD5E08E38A8C8BD22DA9A08D394FF00528E5B ] C:\Windows\System32\taskcomp.dll
17:13:29.0034 0x1788  C:\Windows\System32\taskcomp.dll - ok
17:13:29.0050 0x1788  [ A153AE01A8B83739B121D8808EFF86E2, 24A8CD3807A257303FD2D3435BDBD4619C33970C98A420B7877E5DB2A5BA5C58 ] C:\Windows\System32\netcfgx.dll
17:13:29.0050 0x1788  C:\Windows\System32\netcfgx.dll - ok
17:13:29.0068 0x1788  [ E6F0072B5C314D961D3E1F16F9666DA5, C5C9540787BA8CA89FC3081A38E914D8F891B5412B494BF75039E73C6CFE63C3 ] C:\Windows\System32\twinapi.dll
17:13:29.0068 0x1788  C:\Windows\System32\twinapi.dll - ok
17:13:29.0085 0x1788  [ 053BE425ACB22AD533936C3E381CBAFF, 40338051B271A7F50F44F4B1154A7BEE6043E186F6B7B724C20AB6BB3FC4B506 ] C:\Windows\System32\devrtl.dll
17:13:29.0085 0x1788  C:\Windows\System32\devrtl.dll - ok
17:13:29.0103 0x1788  [ 1811EA281309DF3998933FBA59271227, E599DAEBABD9AB1568DFC09D21A7D887C4141C4325983113FC054D5352E8FBFD ] C:\Windows\System32\ntmarta.dll
17:13:29.0104 0x1788  C:\Windows\System32\ntmarta.dll - ok
17:13:29.0120 0x1788  [ 4F8FD5CB96D3FD963D773DFAC5E997FF, 3330B86033F434AF7D583789FA205F0EDCC37FE0729F9A48F47FB4AC59BA0EC6 ] C:\Program Files\Common Files\microsoft shared\ink\TipRes.dll
17:13:29.0120 0x1788  C:\Program Files\Common Files\microsoft shared\ink\TipRes.dll - ok
17:13:29.0140 0x1788  [ E45E3C70398FE3D28868862CDBA3B9D5, 8372BF047B520FAACC0C7259F4A4B946E23B196505B74D2AEB224986F91CD0F2 ] C:\Windows\System32\Drivers\http.sys
17:13:29.0147 0x1788  C:\Windows\System32\Drivers\http.sys - ok
17:13:29.0159 0x1788  [ DAFCED9CBD13A790AF5DF4263DEF9169, B4BCB0642233907DC3014C40ED383C79D4A55AD34DE05E15249D031F5C601CAE ] C:\Windows\System32\Drivers\vwifimp.sys
17:13:29.0160 0x1788  C:\Windows\System32\Drivers\vwifimp.sys - ok
17:13:29.0178 0x1788  [ 1219A9EA51C5A1A6ED0964AF6696B8FB, 1B741F1C2D8A1F3558846B87ADDD2EE9785A2779E88372A493B24A872320B560 ] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9600.18470_none_dadee7b65bc6429b\GdiPlus.dll
17:13:29.0178 0x1788  C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9600.18470_none_dadee7b65bc6429b\GdiPlus.dll - ok
17:13:29.0195 0x1788  [ A0A1DAC8B002E75AF4E09A369E877CB2, B58D4F8038D28D76B3692B6368ABDC30BB343B06CC61C88918127B4512FFAEFC ] C:\Windows\System32\spoolsv.exe
17:13:29.0195 0x1788  C:\Windows\System32\spoolsv.exe - ok
17:13:29.0212 0x1788  [ 8C76CB7D8F35552B751A1FB620B8344E, 6A5A898DB922866178430E68480B2CB825053CEC163575C9DF968AACC992E327 ] C:\Windows\System32\Windows.Globalization.dll
17:13:29.0212 0x1788  C:\Windows\System32\Windows.Globalization.dll - ok
17:13:29.0224 0x1788  [ 662E9D94AB3564323F0E4DB21ECC1212, 7F160ACCF597EFB2FCE7B4940690CC4BE0C14C8A81A8811023794DC7B169BC2A ] C:\Windows\System32\wcmapi.dll
17:13:29.0224 0x1788  C:\Windows\System32\wcmapi.dll - ok
17:13:29.0242 0x1788  [ 4577BA56C4FA74F8D12870420AEFE074, 9215F471BC7A6C85FE46E6162F59C85A04BCE5AC942775EC2069CCF690A2373E ] C:\Windows\System32\atlthunk.dll
17:13:29.0242 0x1788  C:\Windows\System32\atlthunk.dll - ok
17:13:29.0259 0x1788  [ C9F702A1C979C4DAF192C0A66BD4EB97, 46C9B5CB4B174ADBFD19C1F2B2E615F7152E5449B85FCBF2596293CBD4CED066 ] C:\Windows\System32\Windows.UI.dll
17:13:29.0259 0x1788  C:\Windows\System32\Windows.UI.dll - ok
17:13:29.0278 0x1788  [ 00DDCA458B06F9FDBD94B0245011D108, 9C585910A0C8A6263E442662B5DF0AF4D40CE3AEADBA2AED7962E55911C84920 ] C:\Windows\System32\msftedit.dll
17:13:29.0278 0x1788  C:\Windows\System32\msftedit.dll - ok
17:13:29.0295 0x1788  [ D4A5D4AD3DD96440648AF99609F7AFFD, 58669E41CE749487A14472A8C41766475F06D2A7BCEA5091128180EB219C5844 ] C:\Windows\System32\ninput.dll
17:13:29.0295 0x1788  C:\Windows\System32\ninput.dll - ok
17:13:29.0314 0x1788  [ BDF705FBBA194C5A9E049EC4240FD1FB, 8D9F3BAF2A058B2EAAF9D0EA464516A2AAE02ED91C87DBBF928037C5F83F6D29 ] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
17:13:29.0314 0x1788  C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll - ok
17:13:29.0331 0x1788  [ 21D814B59852861CA3FA4F39056AC24B, 57246801E7D1B0D81802F791D85D93DB13C589D92917CA8DEE354EE2DBB5FE3E ] C:\Windows\System32\taskhost.exe
17:13:29.0331 0x1788  C:\Windows\System32\taskhost.exe - ok
17:13:29.0350 0x1788  [ D8F06D74DEFE74C882589FC44E819874, 0DAE18A88FDFC231C08425F43F6EE999822D709F3B9320F2CACCC278C2378079 ] C:\Windows\System32\ProximityService.dll
17:13:29.0350 0x1788  C:\Windows\System32\ProximityService.dll - ok
17:13:29.0367 0x1788  [ B29DC5ACB28007C4418FE7505656A755, 77A7A79AB3022B2063AC25615311508FEC9073F99CA2A4F45F18EE20B55B1C64 ] C:\Windows\System32\BFE.DLL
17:13:29.0367 0x1788  C:\Windows\System32\BFE.DLL - ok
17:13:29.0384 0x1788  [ C3D8AE69A5EA63246D00144C12829E4B, AAE36B6F674484BE8605F719B0AD743C73B3DCE1FFCC26B8AE239D043340641C ] C:\Windows\System32\msimg32.dll
17:13:29.0385 0x1788  C:\Windows\System32\msimg32.dll - ok
17:13:29.0402 0x1788  [ 8D9F449062664E79051DFF5A08248693, 026584B20754776E82889C8424571C52F02FED2218C0260C7492ADFC2CB0CE86 ] C:\Windows\System32\ProximityCommon.dll
17:13:29.0403 0x1788  C:\Windows\System32\ProximityCommon.dll - ok
17:13:29.0422 0x1788  [ 37688FBB279B3F8F967F722AEBA58F6A, A590A602524955DE063DD7C9C539A28B7AECCF1EA329C68D3FB16EC57EA322D6 ] C:\Windows\System32\ProximityServicePal.dll
17:13:29.0422 0x1788  C:\Windows\System32\ProximityServicePal.dll - ok
17:13:29.0439 0x1788  [ 0030C7A2B3AF3DA6FA490C582FD9D82A, C2713274A74C87DD5B6571CC3F41C56EBFD13E72408F5697D46A0697A154D257 ] C:\Windows\System32\globinputhost.dll
17:13:29.0439 0x1788  C:\Windows\System32\globinputhost.dll - ok
17:13:29.0459 0x1788  [ 073C76C7CE1A4F9B6926BFB6E0E148FD, F5A6EEE575FBB488614101771C20A41A6D4732931D8DB7C5E3485ECFD85B2B42 ] C:\Windows\System32\ProximityCommonPal.dll
17:13:29.0459 0x1788  C:\Windows\System32\ProximityCommonPal.dll - ok
17:13:29.0475 0x1788  [ C74D5C9CA15816050CB2EDCBF9606AF1, 9957AB3506C1583CF146C4FF53E74C12FE9A238633E7A4625A09B072DC3A0F11 ] C:\Windows\System32\TpmTasks.dll
17:13:29.0476 0x1788  C:\Windows\System32\TpmTasks.dll - ok
17:13:29.0487 0x1788  [ 6B17BD59BFD90AE014BBCD8AB0960C6D, 9581449C1C81E06F24AA68EAE858C5D0DA86EB1130D05B1A2523BC9F8F920798 ] C:\Windows\System32\aepic.dll
17:13:29.0487 0x1788  C:\Windows\System32\aepic.dll - ok
17:13:29.0506 0x1788  [ 48994408B15CD74AE1A4E7CFA1A1762E, A4C5E8CC506843B61695E4A0DCD843EC1D8B6C824621528EE033ED2E67C44307 ] C:\Windows\System32\sfc_os.dll
17:13:29.0506 0x1788  C:\Windows\System32\sfc_os.dll - ok
17:13:29.0523 0x1788  [ 1741BDC6EF1DC754517D9861BFC4AB43, 0FAA4BDA3D21C5F810444586A82097C91A0D85AD801A7BEA05EC343D543B252D ] C:\Windows\System32\iertutil.dll
17:13:29.0524 0x1788  C:\Windows\System32\iertutil.dll - ok
17:13:29.0544 0x1788  [ DBC7CC6CADD146F0FD4701A12C407530, C3BF12772B439A91C443A8B422550ED42874A9C81FAB2610F87B0E364A3BF299 ] C:\Windows\System32\wbemcomn.dll
17:13:29.0544 0x1788  C:\Windows\System32\wbemcomn.dll - ok
17:13:29.0562 0x1788  [ 5603633CA44D0B025DB7A907FCA5262F, 74109F091509623D0EE7896ED0AD9099DCA72A55E2E420EDEE0F9E0265BC87E9 ] C:\Windows\System32\wbem\wbemprox.dll
17:13:29.0562 0x1788  C:\Windows\System32\wbem\wbemprox.dll - ok
17:13:29.0580 0x1788  [ 4E3071E55F83A28E0B6B4F8CDDF7B3F4, 19AF3C7E7859850EBF507897A14024BB9A18278D1FEF9EE06A1A75F2F00AD7E2 ] C:\Windows\System32\Drivers\bowser.sys
17:13:29.0580 0x1788  C:\Windows\System32\Drivers\bowser.sys - ok
17:13:29.0599 0x1788  [ 9274A2503AAC12367BD74B13C8323A86, A08790B697EFBE851F49445D2633D1546274A0C9860FBCB441C4DE0BD5410099 ] C:\Windows\System32\Drivers\mpsdrv.sys
17:13:29.0599 0x1788  C:\Windows\System32\Drivers\mpsdrv.sys - ok
17:13:29.0617 0x1788  [ 4266F7654C29CF138C3D424ED6646C03, 333E4F441617C15E464E138703AF3840FD5D1D7AD6291F7360DEA37CF23BD8CC ] C:\Windows\System32\Drivers\mrxsmb.sys
17:13:29.0618 0x1788  C:\Windows\System32\Drivers\mrxsmb.sys - ok
17:13:29.0636 0x1788  [ 5C2E551BB97C4D3F0B90028AE5BDADA7, B3C648444F089DCA5DBF1DF58ADAD50C835E1D32A0C69502FA9F9C2F2B1E15F6 ] C:\Windows\System32\MPSSVC.dll
17:13:29.0636 0x1788  C:\Windows\System32\MPSSVC.dll - ok
17:13:29.0653 0x1788  [ F61F853E3148740EA98307A32424B15B, 16E38416F74C416519E43FE5A03C1A834E8EAF5C78E2952F1BBFCCB2FE19AEE8 ] C:\Windows\System32\Drivers\mrxsmb20.sys
17:13:29.0653 0x1788  C:\Windows\System32\Drivers\mrxsmb20.sys - ok
17:13:29.0672 0x1788  [ B1DE65556E41B1C775FD6B11D750AD93, A3A66C8E58D7CC247DDFCF1B2EB305D60496D7E5BD8A7D02A77A8503B82B2E3D ] C:\Windows\System32\adhapi.dll
17:13:29.0672 0x1788  C:\Windows\System32\adhapi.dll - ok
17:13:29.0692 0x1788  [ 15686CA90AF360103FE75EDB50654698, D2589B609E11E282474488941CE731C29820AEFBE0FC3F8AF2B1F6DA6D070347 ] C:\Windows\System32\wkssvc.dll
17:13:29.0693 0x1788  C:\Windows\System32\wkssvc.dll - ok
17:13:29.0712 0x1788  [ 86B928F774B48AC71E16BD5527B0DA21, 8A95D71F706CC57BDC8353634DB344BBCA5AAEC62B9B948465D5393DE5BA28CE ] C:\Windows\System32\Drivers\parport.sys
17:13:29.0712 0x1788  C:\Windows\System32\Drivers\parport.sys - ok
17:13:29.0729 0x1788  [ 95B8C952D389F5CEE49AC55F99C864CB, 5336948C89DA15FE30FC18E2EFD76818A05431643095A4633F23C131ECC929EB ] C:\Windows\System32\wfapigp.dll
17:13:29.0729 0x1788  C:\Windows\System32\wfapigp.dll - ok
17:13:29.0743 0x1788  [ C92B0A0957ACAD3CEEF502A2CA10ACB8, 78BF46318B69D9479ECDC83446DD8D454AA2A9A9D94B33C5FC68933DB18AFA3B ] C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
17:13:29.0743 0x1788  C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
17:13:29.0762 0x1788  [ 31D858C6F1C453AF516343758A4B2C69, 12ABCF99DD28BF35B3C224ACCFE2587BA5F4199D163224B344CDC770EED36130 ] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_5094ca96bcb6b2bb\msvcr90.dll
17:13:29.0762 0x1788  C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_5094ca96bcb6b2bb\msvcr90.dll - ok
17:13:29.0783 0x1788  [ 8D5AAD5A95F8AB1030096998954E19A9, CBAC30BE2E28777722C83FDE627F12333967D3E174A3F0F62B64DDC1C1D0C54A ] C:\Windows\System32\Drivers\apesdetech.sys
17:13:29.0784 0x1788  C:\Windows\System32\Drivers\apesdetech.sys - ok
17:13:29.0801 0x1788  [ D5496CF5DF8921CFC1EF1770F98C2192, A79AB7808E25B42785D3241CFCAE05E20B103B2AA58BBF1F9671295DE692829F ] C:\Windows\System32\MrmCoreR.dll
17:13:29.0802 0x1788  C:\Windows\System32\MrmCoreR.dll - ok
17:13:29.0820 0x1788  [ D3E1C9DF5EB2FCCA4C2E7E47934CB410, 0ABF5BC4D421E95777FA550B0AF446AC15D424CC98467015742838F53EB312B8 ] C:\Windows\System32\urlmon.dll
17:13:29.0820 0x1788  C:\Windows\System32\urlmon.dll - ok
17:13:29.0839 0x1788  [ F4F5123B45BFCFD2F035280FDCB5BBBE, 5DFBFDAF3F63ABFD124B36F8520FAB95895639219AA8C0FB9726A0239FBC96F0 ] C:\Windows\System32\wininet.dll
17:13:29.0840 0x1788  C:\Windows\System32\wininet.dll - ok
17:13:29.0861 0x1788  [ 466BC43FBDD4E1D92E8071944DB7238D, 8FEF4246807573330C2B84929BF3C96844104E4F5232CD288224DD3A6545D2FD ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavSvc.exe
17:13:29.0861 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavSvc.exe - ok
17:13:29.0881 0x1788  [ FD9C35D2E3E9B7A01107D2EE833447FB, 4D5ED56B5E9834D1AE34842DEBA2AACCC733853C2C3957EED5ACACF5512117D4 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavQv.dll
17:13:29.0881 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavQv.dll - ok
17:13:29.0900 0x1788  [ 7AECC4A527CCB00039491D1A60007088, E3B30E5809C349B1AE363E066141064BF879A63F6299FB46FA8C3797B56FC85C ] C:\Windows\System32\pdh.dll
17:13:29.0901 0x1788  C:\Windows\System32\pdh.dll - ok
17:13:29.0917 0x1788  [ 3552FEB0FCE9FF1FA1E8E04FE3CF6EF5, 48806EB3C52837B8CC110E29E1C97C20719F1FF8997F5734F4D8D4A4C985911A ] C:\Windows\System32\version.dll
17:13:29.0918 0x1788  C:\Windows\System32\version.dll - ok
17:13:29.0937 0x1788  [ BC8532A1608ED5E245AA1552AF2497E6, A871C343431AFD7130F064F63DC0B23E72DA685E6AFEAFEECE2B6628E18A3D7C ] C:\Windows\System32\msi.dll
17:13:29.0938 0x1788  C:\Windows\System32\msi.dll - ok
17:13:29.0959 0x1788  [ 025E2CE47AE27FB873B5454711168153, 70FFFB1710831744A5F1C611DE2EBA44E4CB2BF721323B24F8E9A8747F46E9FD ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\log.dll
17:13:29.0960 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\log.dll - ok
17:13:29.0980 0x1788  [ 1FC102F3A0D65EE382600539AC9FD36F, D02CA556B83FDAC91F6D7B866B826AFD5ABDF8232516BF3673F1690F168C36A9 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\HipsLogger.dll
17:13:29.0980 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\HipsLogger.dll - ok
17:13:29.0992 0x1788  [ DCE74D3F37505108C23649499FE55D3E, 9D7C3B91D716EBD57494B51A459AFD041FC3ADED2C948E46352A2AD5D9FF8550 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavCommon.dll
17:13:29.0992 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavCommon.dll - ok
17:13:30.0011 0x1788  [ AC7D7440632FD5F6A9259CE39334E856, D07A88F117010B06507595ABDD43802C726D7545B5B01D2B88CFF9ED0BD47EB4 ] C:\Windows\System32\winhttp.dll
17:13:30.0012 0x1788  C:\Windows\System32\winhttp.dll - ok
17:13:30.0032 0x1788  [ 988F1EDDF83BDC6CFC6CE8EC5617A8F4, 95F3331BEE8346227FD6838A1B55AC80012249EFA88A6BE4551B67F62898EAD8 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Communication.dll
17:13:30.0032 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Communication.dll - ok
17:13:30.0054 0x1788  [ 4BA3104B9EE78ECBDD93DB61624D5F07, ABE0FDB1C4087966452E898D6A10C1D14B03A605FF86EB1BAAE65338098FC24F ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavDllFilter.dll
17:13:30.0054 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavDllFilter.dll - ok
17:13:30.0077 0x1788  [ 933D941BEAF78DD20369BD0981D4D7AD, 9F55238A69C3E7C40A0341BCB2D2AAAA2C35BC6569B324416FFC13A997138419 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\ReportComm.dll
17:13:30.0077 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\ReportComm.dll - ok
17:13:30.0096 0x1788  [ 5995604FB87BD7AAF4209AF94E035CB4, 1811C492B350B762292F0D82E1425A96E4A0FE813960C68DA8A0864FF36E4B15 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\IntellNoDisturb.dll
17:13:30.0096 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\IntellNoDisturb.dll - ok
17:13:30.0116 0x1788  [ 78B62E4C13378F737603136975A07E1A, 7CC6C299A20B2DE62B3844417F085FCE7FEA32CC006A10658B3E4815B536329F ] C:\Windows\WinSxS\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.4148_none_51ca66a2bbe76806\ATL90.dll
17:13:30.0116 0x1788  C:\Windows\WinSxS\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.4148_none_51ca66a2bbe76806\ATL90.dll - ok
17:13:30.0137 0x1788  [ 34D7B359AF1BB7FCB9E3786D5CE51773, 1AA292EABBF3A4C8DAD7A43A831111172C815B226AD4B655954340C875C6D80C ] C:\Windows\System32\webio.dll
17:13:30.0138 0x1788  C:\Windows\System32\webio.dll - ok
17:13:30.0161 0x1788  [ 75A1CAC657303B223D1C977ED49AF0FB, 00115BA812CAB5290A84D107A018CC60E90B3C8E51450996D9320DB559FB5527 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BHipsSvc.exe
17:13:30.0162 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BHipsSvc.exe - ok
17:13:30.0184 0x1788  [ 2CD943B8247931FBF6FE7C4DD0C8FE2D, 2F13F98FF9D31455D811A1EB6B74D800F1BA26363581B4993119AE498E73AD4D ] C:\Windows\System32\rasadhlp.dll
17:13:30.0184 0x1788  C:\Windows\System32\rasadhlp.dll - ok
17:13:30.0208 0x1788  [ EDBC3513C1D5987564DD00F4C400CEA4, A1B65BD7CB0D65E55758A508E3A91E7418C139DC7DC5E9AC3744BB3D0CEF0CD5 ] C:\Windows\System32\winspool.drv
17:13:30.0208 0x1788  C:\Windows\System32\winspool.drv - ok
17:13:30.0232 0x1788  [ 3DEEE45FD8262E1ECB6CF872E7FFE6F5, EB6580FEF7AD884C9FF845BB0DE7890D50D0892CB859ADFAB78F32FD2EF82459 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\HipsCfg.dll
17:13:30.0232 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\HipsCfg.dll - ok
17:13:30.0250 0x1788  [ 4ACBCD7F7DEBBF5C55473BF44E66D95D, CB8AFEE59779A1416E900C564B8A02D39624066C75D0E45EBDE3868D79B05B61 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BDrvComm.dll
17:13:30.0250 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BDrvComm.dll - ok
17:13:30.0275 0x1788  [ D93FC9EF129C214D6E91DFE3DF98C38C, 96E079C2F46B382FA2F784AC35335673E4DA0ECBF65C44C3A25EE89DB4F4484F ] C:\Program Files\Acer\Acer Cloud\CCDMonitorService.exe
17:13:30.0275 0x1788  C:\Program Files\Acer\Acer Cloud\CCDMonitorService.exe - ok
17:13:30.0298 0x1788  [ D8AE168A1ED9CBA960F9FBF0F28E7F16, 0923CCA52D3C4BF11C6D0CDE2F128E55B61CB4D6E7B0ABE753A73A462FB48D45 ] C:\Windows\System32\fltLib.dll
17:13:30.0298 0x1788  C:\Windows\System32\fltLib.dll - ok
17:13:30.0320 0x1788  [ 67FF0F9F82C8D6BE2FBE30824CF877E9, 8F626B8310BF14B077AE7F27384B1E0473E853D174DE79180721FCCA74EFC721 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BHFramework.dll
17:13:30.0320 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BHFramework.dll - ok
17:13:30.0348 0x1788  [ D7653B1B7F9DDEA43FA52491E67F3370, DB8BE7BE0E516C91E00782DB59CF4271F86EDC3EE83616E8D2C2C611267F249D ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\HipsDR.dll
17:13:30.0348 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\HipsDR.dll - ok
17:13:30.0373 0x1788  [ 5433EE6EE9AD64B8D45729815221866B, 664A55F1ACAE07AEFC32EDDFD20BCB3EFD76DF7F78743ECACDF9500A08F630FD ] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_5094ca96bcb6b2bb\msvcp90.dll
17:13:30.0373 0x1788  C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_5094ca96bcb6b2bb\msvcp90.dll - ok
17:13:30.0395 0x1788  [ 697177C5242095DBDB3A3B52DD27C400, 42C29A40D6493E8E0F03FA953DD559D194CC410DBBD45397331151897887BFE2 ] C:\Windows\System32\dbghelp.dll
17:13:30.0395 0x1788  C:\Windows\System32\dbghelp.dll - ok
17:13:30.0417 0x1788  [ 7A964BE9BC0509DEEFCA46CDF389CF6D, 8EF1847FEDC540385E89ACE1199C5082C99E0BC46CD67C555622353320F35A5C ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BHipsCore.dll
17:13:30.0417 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BHipsCore.dll - ok
17:13:30.0442 0x1788  [ 705860E98E5D0B653A998EB1F0AC4D87, 988292FB4BB1709C57E05901F68D13BFAAF2F6954503438D555BFED9A92D9639 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\ExtendHandler.dll
17:13:30.0442 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\ExtendHandler.dll - ok
17:13:30.0466 0x1788  [ 221B655FB9030200EE7FDB13F4B0BF5D, D1425F9F447991A2BAC1F5C55E66A8C656BB756D196B90A250D1DCD0BFD75818 ] C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
17:13:30.0466 0x1788  C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe - ok
17:13:30.0490 0x1788  [ C010C55F8C2F63D6984551CFE33203EC, 94EEED9E8ED61FFF217AAE9E95EF2A2379705A9241AB6B1064A0EDC50D61878F ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavPe.dll
17:13:30.0491 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavPe.dll - ok
17:13:30.0503 0x1788  [ 2EAEF94EBD9D8930CF352B94EE0CAE09, 7C0CB4E13CAE68FE2F304FBA2229871F2C1BBEA558E2CD2B8B4CBC69FB3317F0 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\HipsHp.dll
17:13:30.0508 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\HipsHp.dll - ok
17:13:30.0525 0x1788  [ 6E529A5AF842ABCC6A9D28F94B12599D, D769ABDD5BA671C6242A9DE0734C0B8D1B2661F71A5C1992C7E0F4C834EE37DB ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\CheckNetwork.exe
17:13:30.0526 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\CheckNetwork.exe - ok
17:13:30.0548 0x1788  [ 0E37FBFA79D349D672456923EC5FBBE3, 8793353461826FBD48F25EA8B835BE204B758CE7510DB2AF631B28850355BD18 ] C:\Program Files\Microsoft Office 15\ClientX86\msvcr100.dll
17:13:30.0548 0x1788  C:\Program Files\Microsoft Office 15\ClientX86\msvcr100.dll - ok
17:13:30.0567 0x1788  [ A9DC531C321CEAB1F5E6DF91D41B60FE, 6A289B6B68225E15AAF73786E6553F7F533B84096F53C1CD204AF5CAD972D3C7 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\sqlite.dll
17:13:30.0568 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\sqlite.dll - ok
17:13:30.0587 0x1788  [ C8A7949EBAC42923D59B2C2630D2AD84, F5828C42AC40B873A09879F80B8C5F51ED36F9633A11A2A34846BBB890A416B9 ] C:\Windows\System32\Drivers\condrv.sys
17:13:30.0588 0x1788  C:\Windows\System32\Drivers\condrv.sys - ok
17:13:30.0605 0x1788  [ 9348EA720010DCAC55D322ED4EEABA36, 6DB7389B89CF1366E562D76214264390D30C31635588ABAC47DCB61F84BF3A3F ] C:\Windows\System32\conhost.exe
17:13:30.0606 0x1788  C:\Windows\System32\conhost.exe - ok
17:13:30.0626 0x1788  [ 9168F9EA62244076865D675363E14D59, EA2DAA319C41759E6AE979BA93B8E7E138228F62921CD7D97D96C5CA8ED7A715 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BdApiUtil.dll
17:13:30.0626 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BdApiUtil.dll - ok
17:13:30.0648 0x1788  [ BC83108B18756547013ED443B8CDB31B, B2AD109C15EAA92079582787B7772BA0A2F034F7D075907FF87028DF0EAEA671 ] C:\Program Files\Microsoft Office 15\ClientX86\msvcp100.dll
17:13:30.0649 0x1788  C:\Program Files\Microsoft Office 15\ClientX86\msvcp100.dll - ok
17:13:30.0668 0x1788  [ 2224095501FB76422797A332CB203223, 563A65B5349B99BB36F9C4C5B16B505D22065446E1DBAC7340EB07678A5E0B67 ] C:\Program Files\Microsoft Office 15\ClientX86\c2rui.dll
17:13:30.0668 0x1788  C:\Program Files\Microsoft Office 15\ClientX86\c2rui.dll - ok
17:13:30.0686 0x1788  [ D2C2083892F36E0A3A6CD7EA6A021883, 68B34FE126B265A6DFE17488C4D04B76A3ECFFD3C621A6124DA5AEB8FC6462D7 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\HipsAp.dll
17:13:30.0686 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\HipsAp.dll - ok
17:13:30.0705 0x1788  [ FC485BE7CBF7878962E215BE719C141E, F6EBCB79FD6941AB161AAE460F1C1991718FC4610C95E53E74AE47EF574D82A9 ] C:\Windows\System32\RstrtMgr.dll
17:13:30.0706 0x1788  C:\Windows\System32\RstrtMgr.dll - ok
17:13:30.0732 0x1788  [ AE2A59B4A9FCCE004B8E18AB38A318BA, A6DDD490D76A3A4E81048207913D2A5C6531CFCCFA126BEF10F1BA40B6C0188B ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\HipsNetFlt.dll
17:13:30.0732 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\HipsNetFlt.dll - ok
17:13:30.0752 0x1788  [ C6CAC02672EF5F8A047E682D31EBB2F2, 6E5709A3ED01EFDF5CCFA8AA33BAA1C13592CE2FA22A2C19EDB7B918449AD324 ] C:\Program Files\Microsoft Office 15\ClientX86\apiclient.dll
17:13:30.0752 0x1788  C:\Program Files\Microsoft Office 15\ClientX86\apiclient.dll - ok
17:13:30.0765 0x1788  [ B173B1EE05A8487143C9B5AF90E466E0, E9E1E7B0B77B4292D0F5EFC7AFF904D394E816B845D09416793137B9E1BBF7CC ] C:\Windows\System32\cabinet.dll
17:13:30.0765 0x1788  C:\Windows\System32\cabinet.dll - ok
17:13:30.0783 0x1788  [ 0D99F2FD6696D19F20C6E646E449C495, EE896ABEE229E53A42FE41A5BD4EC7A4218135EB77BBD55E73043E76358F7202 ] C:\Windows\System32\secur32.dll
17:13:30.0783 0x1788  C:\Windows\System32\secur32.dll - ok
17:13:30.0802 0x1788  [ D1F1B56B11FA7104D7AC865D7DED97C8, 76414C8D9A86D4471430B7EEA28C339F5BB0C63AC7C0D44FCADAA22B1295DB36 ] C:\Windows\System32\cryptsvc.dll
17:13:30.0802 0x1788  C:\Windows\System32\cryptsvc.dll - ok
17:13:30.0820 0x1788  [ AAC387469BF7083EB96954F037705942, 982F37871E0275317B62944ABB6F5B136069C3EE6096A346E6E3DC977C3BF951 ] C:\Windows\System32\OnDemandConnRouteHelper.dll
17:13:30.0820 0x1788  C:\Windows\System32\OnDemandConnRouteHelper.dll - ok
17:13:30.0839 0x1788  [ B89D7C6D05E3704FAEBCC8F146BE7BDB, 3870CAB957FB5F6B5F231C147EFDB49E884A3E0A3A75E129E7CBB34D5F0387C7 ] C:\Program Files\Microsoft Office 15\ClientX86\streamserver.dll
17:13:30.0839 0x1788  C:\Program Files\Microsoft Office 15\ClientX86\streamserver.dll - ok
17:13:30.0859 0x1788  [ 5858FDE8187F71DCE310BB905B0EFE99, 3AEE9F9F315F1148CECF4D3EF48F44146C5861165874BEA17B7F193FC05518D7 ] C:\Windows\System32\crypttpmeksvc.dll
17:13:30.0860 0x1788  C:\Windows\System32\crypttpmeksvc.dll - ok
17:13:30.0876 0x1788  [ 5CE66243519065EDEE3286FBDF2FB1D0, 563721FDF69DFD084B05E5E7BD7379FB1878448C670C8F45E80C626594947703 ] C:\Windows\System32\das.dll
17:13:30.0877 0x1788  C:\Windows\System32\das.dll - ok
17:13:30.0894 0x1788  [ 2657CC393BDA075DBC0870838F3B0238, C78ACF45036604C9C25DB88E927C08025DE2B325B07FFF4927E4EF1541876A42 ] C:\Windows\System32\cryptcatsvc.dll
17:13:30.0894 0x1788  C:\Windows\System32\cryptcatsvc.dll - ok
17:13:30.0914 0x1788  [ 68BB24E5BD0E8E00957055E3AEAAD48D, 23CACD19934A1C816AD4D0B7BE79226B45FB1B54D8C695C94F00D64E50FE6D55 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\dark.dll
17:13:30.0914 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\dark.dll - ok
17:13:30.0933 0x1788  [ 5905E9083722283220925A22AB58757E, 9CA65885A6FB37526DAFF17747F6AD9DCD51045777AB986D320BAC2ACB10DE21 ] C:\Windows\System32\vssapi.dll
17:13:30.0933 0x1788  C:\Windows\System32\vssapi.dll - ok
17:13:30.0953 0x1788  [ DB3D0D76B83BD62463F0FA8512934DF4, D6B56E30DFB108F2B6FFD442553D9D6B2E90503A9987223B01A695F9C26497E2 ] C:\Windows\System32\msdelta.dll
17:13:30.0953 0x1788  C:\Windows\System32\msdelta.dll - ok
17:13:30.0971 0x1788  [ 24710A3A997FDEDB72F2CF451B0744A3, 8B4EF75CF14E9E97F8EFD779921AE2E1E0A9DC6D0D67FD385A9098818BA048D1 ] C:\Windows\System32\dasHost.exe
17:13:30.0971 0x1788  C:\Windows\System32\dasHost.exe - ok
17:13:30.0990 0x1788  [ 9DE6541265BEF3D3A0ADFB5B9A816859, 73319FEF41CA5E5CCAE5E3B40C0A9573CC549EFB51499634D1BB73FD8AB7F9A1 ] C:\Program Files\Microsoft Office 15\ClientX86\AppVIsvApi.dll
17:13:30.0990 0x1788  C:\Program Files\Microsoft Office 15\ClientX86\AppVIsvApi.dll - ok
17:13:31.0011 0x1788  [ 4A081C98C1B93A444D436AD2C3C22E48, 785D4DA3F2373A71D1E5E9BC1F41D3E55D5B3F6BC4E9C3097ACC2568AFBF1317 ] C:\Windows\System32\diagtrack.dll
17:13:31.0011 0x1788  C:\Windows\System32\diagtrack.dll - ok
17:13:31.0026 0x1788  [ 135B1D270912241A59D8A8F6AF0102FC, DC8CA4DA0AEF9F94CA2A7F9C34186F617D4CFA9DC0B8A90E7D5E909E931941A8 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\DrvInst.dll
17:13:31.0027 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\DrvInst.dll - ok
17:13:31.0044 0x1788  [ DDD45811B9833CBF81E09A5C933F3BB8, 100B634F2C997F4BED58898261005369E866559583F0196158225A680A0AC625 ] C:\Windows\System32\dps.dll
17:13:31.0044 0x1788  C:\Windows\System32\dps.dll - ok
17:13:31.0064 0x1788  [ CC8DD7F987D8CA885F4B74F117859EA4, AD16CB0A841644868CAD49CDDAA663696F2CB5EB986A2136886797630A0D2876 ] C:\Windows\System32\vsstrace.dll
17:13:31.0064 0x1788  C:\Windows\System32\vsstrace.dll - ok
17:13:31.0083 0x1788  [ 02A2926201C87CB3167F79EDE892D7D1, C7817C93756D3A8A519F0015C0CA5D5B214A336B43AC65B5F5609936BD1D4813 ] C:\Program Files\Microsoft Office 15\ClientX86\AppVPolicy.dll
17:13:31.0083 0x1788  C:\Program Files\Microsoft Office 15\ClientX86\AppVPolicy.dll - ok
17:13:31.0102 0x1788  [ C86AD804F67250A744ACFF66F50A180C, C57F36639DBFFDAE7C8AE4D0C8A9AC084911D8A38AFD7205A0795D3A8D7593DB ] C:\Windows\System32\DptfParticipantDisplayService.exe
17:13:31.0102 0x1788  C:\Windows\System32\DptfParticipantDisplayService.exe - ok
17:13:31.0122 0x1788  [ DCB0AEF357F529C2D15410DA87164EB9, 59E6666174E0EF0421EEABEF5416967BF65F5DC525797FB1747EF7F7B0110EC7 ] C:\Program Files\Microsoft Office 15\ClientX86\AppVOrchestration.dll
17:13:31.0122 0x1788  C:\Program Files\Microsoft Office 15\ClientX86\AppVOrchestration.dll - ok
17:13:31.0140 0x1788  [ ACAFAEC1A05FD30E7D4173450F9543A0, CED438BE5EA93884DB4E02E3F992E6F764C61072477BB0DA54131991AB04E661 ] C:\Windows\System32\DptfParticipantProcessorService.exe
17:13:31.0140 0x1788  C:\Windows\System32\DptfParticipantProcessorService.exe - ok
17:13:31.0160 0x1788  [ 75AA1C4F89B031585568EFBA1CB9508B, 74C79B255714D12AB84FD8F89C804D10D8614310859ECF88D490197DE562F0E9 ] C:\Windows\System32\ReAgent.dll
17:13:31.0161 0x1788  C:\Windows\System32\ReAgent.dll - ok
17:13:31.0184 0x1788  [ E837ADE8F1B990C8857F7191F7909BFD, 0E61AE1B80C191679472AA1941939A4A48C0DE37491C84A9BC353FC78937BFD5 ] C:\Program Files\Microsoft Office 15\ClientX86\AppVIsvStreamingManager.dll
17:13:31.0184 0x1788  C:\Program Files\Microsoft Office 15\ClientX86\AppVIsvStreamingManager.dll - ok
17:13:31.0203 0x1788  [ 5A7AFE4F65494080DA136BE76E3E7B43, B91D9208733A2DB6D1A058F46746651803ED17A6FDD19505A14E129D61F6504F ] C:\Program Files\Microsoft Office 15\ClientX86\AppVManifest.dll
17:13:31.0203 0x1788  C:\Program Files\Microsoft Office 15\ClientX86\AppVManifest.dll - ok
17:13:31.0223 0x1788  [ 5A7C0B7311A4B06BAAD0F2660968248C, 1DC9FA56D563AF3C464B0C5053B77FDBBD22A154969E6D0BBC29A0143B70108A ] C:\Windows\System32\DptfPolicyConfigTDPService.exe
17:13:31.0223 0x1788  C:\Windows\System32\DptfPolicyConfigTDPService.exe - ok
17:13:31.0241 0x1788  [ 1BF5FCCEAE8E64626D5CD8778441F12A, 42DB702AA9134D7D6933B080CA5C2AA3F670CB0F0FEABAD062C20434E6D72750 ] C:\Program Files\Microsoft Office 15\ClientX86\AppVCatalog.dll
17:13:31.0241 0x1788  C:\Program Files\Microsoft Office 15\ClientX86\AppVCatalog.dll - ok
17:13:31.0262 0x1788  [ 6DA808E3296C02E632B3A0D66660DF90, AAFCB38B34405A1F5F57EFECC9E6D248228010C24726B64B9EAD80177E80FCAE ] C:\Windows\System32\wdscore.dll
17:13:31.0262 0x1788  C:\Windows\System32\wdscore.dll - ok
17:13:31.0274 0x1788  [ 97A0A942AB5B53C244D739F3BF350B73, 1748FFE1A26BCCCA70DA34A0A3C485D76A54F21525CB4D6436B4DC84DCA0D6D3 ] C:\Program Files\Microsoft Office 15\ClientX86\AppVIsvVirtualization.dll
17:13:31.0274 0x1788  C:\Program Files\Microsoft Office 15\ClientX86\AppVIsvVirtualization.dll - ok
17:13:31.0296 0x1788  [ 9FA3559B2E8805F6290934EC3EAD5CDE, 0041931C0DA6DEA6C4E18DDDD1342CABBE362C8A66E0EC8C640CDDC770EDF038 ] C:\Windows\System32\DismApi.dll
17:13:31.0296 0x1788  C:\Windows\System32\DismApi.dll - ok
17:13:31.0316 0x1788  [ 7C5EA66850F5422B8D66E68F7D3BC524, 6DFB05876532BBF5DDA460A1EE64C34F1472D695DB77F91DCF4052FF855D3043 ] C:\Program Files\Microsoft Office 15\ClientX86\AppVIntegration.dll
17:13:31.0317 0x1788  C:\Program Files\Microsoft Office 15\ClientX86\AppVIntegration.dll - ok
17:13:31.0337 0x1788  [ 2CE4DCFC8B04CF2B23AF8EBDBAFE35C5, 301F78A7AB0C5814C3166FCED475BF6C8DBE48907633F50A5926F4A7D7C84B9A ] C:\Windows\System32\DptfPolicyCriticalService.exe
17:13:31.0337 0x1788  C:\Windows\System32\DptfPolicyCriticalService.exe - ok
17:13:31.0357 0x1788  [ A79FB7125A6C095BA511C5AB3845905E, 64A01805FB4282F7F3E9BAC14F5A184E8FB8E325582F7C3B069A2F0F36FAE040 ] C:\Program Files\Microsoft Office 15\ClientX86\AppVIsvSubsystemController.dll
17:13:31.0358 0x1788  C:\Program Files\Microsoft Office 15\ClientX86\AppVIsvSubsystemController.dll - ok
17:13:31.0382 0x1788  [ 5E04EE3944F3C9C456D65AF8DF3F1136, 4A51394A4A20BAC3705C1F33A5374C82F7FE0BA1A5E95573EF28A49EB68034B5 ] C:\Windows\System32\DptfPolicyLpmService.exe
17:13:31.0382 0x1788  C:\Windows\System32\DptfPolicyLpmService.exe - ok
17:13:31.0401 0x1788  [ 8F7F81DEC2DF14D83056E7022890B6FA, D00EC62648813B41276408554853FC4ABFC1C64AA0CF890BA44E381581B119B4 ] C:\Program Files\Microsoft Office 15\ClientX86\AppVFileSystemMetadata.dll
17:13:31.0401 0x1788  C:\Program Files\Microsoft Office 15\ClientX86\AppVFileSystemMetadata.dll - ok
17:13:31.0422 0x1788  [ AA1706BE796F8D87743D3146F702BE48, 4FE2B6129D3B778A2B0F830EA6E508D9CC4EC809B96646F00FF6A7480C700A87 ] C:\Program Files\Acer\Device Control\DeviceCtrlSvc.exe
17:13:31.0422 0x1788  C:\Program Files\Acer\Device Control\DeviceCtrlSvc.exe - ok
17:13:31.0442 0x1788  [ 2B3FAFD3543CA3000FC2F23E3AF64595, BEEE924C3B184238A3050E2E7F6397FF681C6CCB4FA636A1C8926B4B6B521485 ] C:\Program Files\Acer\Device Control\DsiAdSet.dll
17:13:31.0442 0x1788  C:\Program Files\Acer\Device Control\DsiAdSet.dll - ok
17:13:31.0465 0x1788  [ 390322986D2D49B782D273F15CDBC48E, 234818E01342B108274815C9754D7E8F909A03185848F001AEB885D1559DC250 ] C:\Windows\System32\netprofm.dll
17:13:31.0465 0x1788  C:\Windows\System32\netprofm.dll - ok
17:13:31.0483 0x1788  [ FCDB33C6DA2A84ADA343341BFB41940D, A90BFC32508E6620CF5E9A3575CFFA948E09C9D1E8C382C42E0939C3ECEE7360 ] C:\Windows\System32\efssvc.dll
17:13:31.0483 0x1788  C:\Windows\System32\efssvc.dll - ok
17:13:31.0502 0x1788  [ 852AC14292E440A6A6B3D3295078D1F3, 1B72C9D82DA4EF28394617BDA141FBD0F0204F7DD792A6DB5233502E91FE999E ] C:\Windows\System32\Drivers\mrxsmb10.sys
17:13:31.0502 0x1788  C:\Windows\System32\Drivers\mrxsmb10.sys - ok
17:13:31.0525 0x1788  [ 71E5EDD82053AD8AA65FC5DAA590FC39, D39C0B7A8A06412B6663F332421E8D205F896B36BD2367532C7CFC992D6889BE ] C:\Windows\System32\efscore.dll
17:13:31.0525 0x1788  C:\Windows\System32\efscore.dll - ok
17:13:31.0542 0x1788  [ 2AA8347BC82BE40F80E69DBA45AE97CE, 1BC6FE8B465EDD4CCB38F996E0F012B98B943E25DEC09791587D41D53A864831 ] C:\Windows\System32\Drivers\Ndu.sys
17:13:31.0542 0x1788  C:\Windows\System32\Drivers\Ndu.sys - ok
17:13:31.0565 0x1788  [ 6842AD26A80857A2A912ACFD7B97D036, 64A4C50554810339A94B3D067D5E6C3728F5C9F9027C1FF6432989267EAC84AA ] C:\Windows\System32\efsutil.dll
17:13:31.0565 0x1788  C:\Windows\System32\efsutil.dll - ok
17:13:31.0587 0x1788  [ 2EB4CB43A7AEA50C5E36053EE0B5DE9F, 582E2B998765749698EA836490885CBCD5EF7E9324CEC33A044901646764BCDC ] C:\Windows\System32\nlasvc.dll
17:13:31.0587 0x1788  C:\Windows\System32\nlasvc.dll - ok
17:13:31.0607 0x1788  [ 434AC762820B1C04351CB30C4884D3F7, AA9848B96132CE20FED91B45C73E6B46F9A281773946804BBD0A9A29A7B1D345 ] C:\Windows\System32\ncsi.dll
17:13:31.0607 0x1788  C:\Windows\System32\ncsi.dll - ok
17:13:31.0629 0x1788  [ 752ACB0D75AEC3ADE6FA7202E404D88E, 5582408CC367EF6A288F3D408A8715086A96BB8DFEEAE52FA8469F94549B15D7 ] C:\Program Files\Symantec\Norton Online Backup\NOBuAgent.exe
17:13:31.0629 0x1788  C:\Program Files\Symantec\Norton Online Backup\NOBuAgent.exe - ok
17:13:31.0655 0x1788  [ 43C28FF34155D12270FEC94049773220, 703C39092C1E7F39902CA39C7C4C7A939D519E08F331B5CAC740898188B03CE4 ] C:\Windows\System32\ssdpapi.dll
17:13:31.0655 0x1788  C:\Windows\System32\ssdpapi.dll - ok
17:13:31.0681 0x1788  [ A6FEC9BA98F4C18884142D72785B85BE, CDEDFEDCFC5C2E7026B5C45E0D694F08667C48AA645CB5FF5334578529A4DDF6 ] C:\Program Files\Symantec\Norton Online Backup\BuEng.dll
17:13:31.0681 0x1788  C:\Program Files\Symantec\Norton Online Backup\BuEng.dll - ok
17:13:31.0702 0x1788  [ 96DDE4973F177C470CAF5B24FFD4D1E9, A5CD4F26C96E3E2A21A10E76ECE750ECF89FB28D08A211CCB45B419DFDBAF147 ] C:\Windows\System32\wsock32.dll
17:13:31.0702 0x1788  C:\Windows\System32\wsock32.dll - ok
17:13:31.0725 0x1788  [ E158112933843EF53EC546167E569AC5, 4AFED49BEDB45B81821FCF03B0007FA177AF9680060170082C5C9ED93667DD97 ] C:\Program Files\NTI\Acer Backup Manager\IScheduleSvc.exe
17:13:31.0725 0x1788  C:\Program Files\NTI\Acer Backup Manager\IScheduleSvc.exe - ok
17:13:31.0750 0x1788  [ 96BDBC6C8BAE23F93574B6A31A57F258, 84E374D6D1E0160A95094724924B386D35D2578A654437482768F23F68E5DC91 ] C:\Program Files\NTI\Acer Backup Manager\Pehook.dll
17:13:31.0750 0x1788  C:\Program Files\NTI\Acer Backup Manager\Pehook.dll - ok
17:13:31.0771 0x1788  [ 1A9DFE5854BD66E28178431E9C96E77D, 8731CAB4C426FC641864A868AADC33EAED00E08A2E2F9B9F31484EE3852C1D6D ] C:\Windows\System32\Drivers\PEAuth.sys
17:13:31.0771 0x1788  C:\Windows\System32\Drivers\PEAuth.sys - ok
17:13:31.0784 0x1788  [ 2AB5E8D7DE5368F2067CFBB5D2D4E307, 7993CDC83BFC2CC8737AB1898A78E7F36B8F19C1282F15044DC8E61C87AD8217 ] C:\Program Files\NTI\Acer Backup Manager\ISchedule.dll
17:13:31.0784 0x1788  C:\Program Files\NTI\Acer Backup Manager\ISchedule.dll - ok
17:13:31.0805 0x1788  [ B0EDCA1168C874812A180EBCD1A43EB5, 0690E2A9D5B3D9481069D4B9B290C107FDC555422F2AE4B135816F95DB57932F ] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.9600.17810_none_7c5b6194aa0716f1\comctl32.dll
17:13:31.0806 0x1788  C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.9600.17810_none_7c5b6194aa0716f1\comctl32.dll - ok
17:13:31.0828 0x1788  [ EFB1547DBE999F28AA9DF565AA541047, F14F85F6AA4F5752782341DCC95E1E347335FE6053F9F2F981254FAF3BADA328 ] C:\Windows\System32\Drivers\srvnet.sys
17:13:31.0828 0x1788  C:\Windows\System32\Drivers\srvnet.sys - ok
17:13:31.0847 0x1788  [ 3B5F18EB0CD6512BFA9E72487BC091F7, 09CF2E656A796893DA2EE76C4CEAB6B161CF22C13F1DB8338122E7FA6B1110CE ] C:\Windows\System32\SensApi.dll
17:13:31.0848 0x1788  C:\Windows\System32\SensApi.dll - ok
17:13:31.0870 0x1788  [ 6308689C002D231796C8E8CB2E4A5FAC, 2BCDD6332A9046C7751130A0288187B1953B931571E85DBF286F87B675322E65 ] C:\Program Files\NTI\Acer Backup Manager\SyncDll.dll
17:13:31.0870 0x1788  C:\Program Files\NTI\Acer Backup Manager\SyncDll.dll - ok
17:13:31.0889 0x1788  [ 31D0E1BF76AA85F5A72F4FD488C3B508, AADDDAB1B41356EDDE6BE7091BAC24345C4D0BEC4DABD2B4F50D753320A6E1AE ] C:\Windows\System32\Drivers\tcpipreg.sys
17:13:31.0889 0x1788  C:\Windows\System32\Drivers\tcpipreg.sys - ok
17:13:31.0906 0x1788  [ FDAE1D5618782BFCE2F25130E6AE7C2F, CA29681A87341A6B6F4A5B61F1C30D147EB52BDA59F814D0241889D75663D193 ] C:\Windows\System32\sysmain.dll
17:13:31.0906 0x1788  C:\Windows\System32\sysmain.dll - ok
17:13:31.0923 0x1788  [ 35CC16416C8423D090FEFD305999F64D, 2F574D2600A60AC4B01ED50FFA5CA8481CC672A708834173A702DFCEFD20649D ] C:\Windows\System32\wiaservc.dll
17:13:31.0923 0x1788  C:\Windows\System32\wiaservc.dll - ok
17:13:31.0940 0x1788  [ 29EE64BC62CB5EE942C04123EAA06813, 689795557962D0CC81508A2FB0CB713438E760C92CA7D5A61DF1E5652174C632 ] C:\Windows\System32\adtsexternal.dll
17:13:31.0940 0x1788  C:\Windows\System32\adtsexternal.dll - ok
17:13:31.0960 0x1788  [ C7044689370C4BA40D10DC5326036997, 3CB59820940C287C0AA9C4D11B66776ACBF5EEC2CB2459CF15914BC63540D90D ] C:\Program Files\NTI\Acer Backup Manager\sqlite3.dll
17:13:31.0961 0x1788  C:\Program Files\NTI\Acer Backup Manager\sqlite3.dll - ok
17:13:31.0980 0x1788  [ 9A8E8AB525F4E8C2163B4AC4172DC49F, 3937196C182CA097DB5F8712B5711CA6C7F887ED609D937418835D9323E05E02 ] C:\Windows\System32\Drivers\srv2.sys
17:13:31.0980 0x1788  C:\Windows\System32\Drivers\srv2.sys - ok
17:13:31.0996 0x1788  [ 809F9BDEE605603504E68B02B1DAE530, 62D987AADC9119ED0CC256CFC2A2DE3D2B0F81750416AC12E39C5E02A404C483 ] C:\Windows\System32\wbem\WMIsvc.dll
17:13:31.0996 0x1788  C:\Windows\System32\wbem\WMIsvc.dll - ok
17:13:32.0013 0x1788  [ 71D56E9C40376B2D2902617F3F6BD7FC, 86AC364C8D73B029F6A7290000FF126DF98F4A305F38ECB21577D4A015F8AB48 ] C:\Program Files\NTI\Acer Backup Manager\agent_stub.dll
17:13:32.0013 0x1788  C:\Program Files\NTI\Acer Backup Manager\agent_stub.dll - ok
17:13:32.0029 0x1788  [ 7781DF14F6BD1522B500303D28CB0276, FAD5A5FD1A611292D70C7B40A71984EEE85BDD94702AE942725B403DE74D8C9A ] C:\Windows\System32\wiatrace.dll
17:13:32.0030 0x1788  C:\Windows\System32\wiatrace.dll - ok
17:13:32.0040 0x1788  [ 1106D9460FDB5F496A324C2644F61214, 706558E8322CF2D6BF86084D644C4B1F4B5A00ED4CA149D34DFF874CE5D3744C ] C:\Program Files\NTI\Acer Backup Manager\OutlookDispatch.dll
17:13:32.0040 0x1788  C:\Program Files\NTI\Acer Backup Manager\OutlookDispatch.dll - ok
17:13:32.0058 0x1788  [ FCF1F549C91A7912FB1CCEC438ED2FC0, 60F2F30556AF0365D49F7CDF309921AB42D4192BA063BE9ED48B0B333D51FAF2 ] C:\Windows\System32\trkwks.dll
17:13:32.0058 0x1788  C:\Windows\System32\trkwks.dll - ok
17:13:32.0075 0x1788  [ A6BF174C935AE5CB5725E2E914F47D0D, 0D368F9353491685552971F84771BB5EC08A87C1F3C26EC661350CB00D191983 ] C:\Program Files\NTI\Acer Backup Manager\BookmarkDLL.dll
17:13:32.0075 0x1788  C:\Program Files\NTI\Acer Backup Manager\BookmarkDLL.dll - ok
17:13:32.0091 0x1788  [ 62DFA8A52C2892456EBD5E9EB6A811BB, E1DB15652E318A70BA66AB2A9BC262634E788E9A7144EA49E5BDE0D4CBD06D71 ] C:\Windows\System32\Drivers\srv.sys
17:13:32.0091 0x1788  C:\Windows\System32\Drivers\srv.sys - ok
17:13:32.0108 0x1788  [ 1FA6A08408F8776AB02E2B56F0B1C000, C8DC98928FDFB9450B18709FCB331E23384EBE56EE712042E36ED3A27BCDB3E4 ] C:\Windows\System32\srvsvc.dll
17:13:32.0108 0x1788  C:\Windows\System32\srvsvc.dll - ok
17:13:32.0125 0x1788  [ 20DE29BE5706CA636B2CDC0E54144B29, 4DEC6AE5E950151D11E319321F267C96A34402864BED6614F8D533995C50EEE6 ] C:\Program Files\NTI\Acer Backup Manager\WinSetDLL.dll
17:13:32.0126 0x1788  C:\Program Files\NTI\Acer Backup Manager\WinSetDLL.dll - ok
17:13:32.0143 0x1788  [ 6981AABF48B61C4EA52EA67B7ADD5EE9, 470C0B8D7D04A95786962BE3A08EFA695CEC4923A486F37E3B33D5AF65B4615A ] C:\Program Files\NTI\Acer Backup Manager\MailConverter32.dll
17:13:32.0144 0x1788  C:\Program Files\NTI\Acer Backup Manager\MailConverter32.dll - ok
17:13:32.0162 0x1788  [ 080A64B031545DDCABF1B9BE61DA1AD8, 1F026FF88952A9C70D7C80238235000CEF1FC3469FC21598F725321056C0D91A ] C:\Program Files\NTI\Acer Backup Manager\VolumeSnapshot.dll
17:13:32.0162 0x1788  C:\Program Files\NTI\Acer Backup Manager\VolumeSnapshot.dll - ok
17:13:32.0180 0x1788  [ 925D73EF4C384CCF71BE9FD473B3464F, E10294FFB88DE1E925E6C5D3E66EAAD8C6350E45B3734F249F0A8F3C2C666B02 ] C:\Windows\System32\wbem\wbemcore.dll
17:13:32.0180 0x1788  C:\Windows\System32\wbem\wbemcore.dll - ok
17:13:32.0198 0x1788  [ 1F5EE799CDDE27ADCBECA9BEC136A08C, 004742C4EA1E322355CC84A2B34787CE8D13B9BA8EE590061D56C53A10B61D4F ] C:\Program Files\NTI\Acer Backup Manager\Online.dll
17:13:32.0199 0x1788  C:\Program Files\NTI\Acer Backup Manager\Online.dll - ok
17:13:32.0218 0x1788  [ 325C4B34D684B06D0D11791149757597, 58F81D858BD85FAB2389CB4F2E57BA7585466C79B494882104E87DB9DABEFDC6 ] C:\Windows\System32\wsdchngr.dll
17:13:32.0218 0x1788  C:\Windows\System32\wsdchngr.dll - ok
17:13:32.0237 0x1788  [ 246333067A121F1A04C02D2E889606CC, DC5C93C45CBD1BDDEE69E22321A3BBE93DE8055E1921AC6C880FC958F37C77EB ] C:\Program Files\NTI\Acer Backup Manager\AppProfilesDLL.dll
17:13:32.0237 0x1788  C:\Program Files\NTI\Acer Backup Manager\AppProfilesDLL.dll - ok

nici_st 23.12.2016 17:25
und Teil 3:

Code:
17:13:32.0255 0x1788  [ 4467164289790973B49E83D681D044BE, E6BC53F9BC054B7C057B6EDF34DAF1183040E79F09D2A8C535F96BD9A25ACA0A ] C:\Windows\System32\deviceassociation.dll
17:13:32.0255 0x1788  C:\Windows\System32\deviceassociation.dll - ok
17:13:32.0272 0x1788  [ 69931AD75597014B368F4714A50CEDAB, 8011B5CDF1BEC5B3FA0611F6CB88D357B2F668B5DF2241D82F34D8C9DCF2E352 ] C:\Windows\System32\fundisc.dll
17:13:32.0272 0x1788  C:\Windows\System32\fundisc.dll - ok
17:13:32.0289 0x1788  [ 1EAA4FBBC8BF3D435D6BFD6E948FE68D, E8F061C95339B882DDCD3C7C5079A91EA00534B151B0994206BBA8C2B278578C ] C:\Windows\System32\fdPnp.dll
17:13:32.0289 0x1788  C:\Windows\System32\fdPnp.dll - ok
17:13:32.0307 0x1788  [ 29466585AC1739981EDAC5523921F8F8, FDA40BDD9992576D9AE356B4138164942116A8CE1EAED4B4CCD6CD9D47486B09 ] C:\Windows\System32\wbem\esscli.dll
17:13:32.0307 0x1788  C:\Windows\System32\wbem\esscli.dll - ok
17:13:32.0325 0x1788  [ 423069307FB726E51E2A66F1C3F738FE, 314EF0E1C636AC553C0E09F992B34573DA4A89ACCB759BDA27335E8125C08E35 ] C:\Windows\WinSxS\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4bf5400abf9d60b7\mfc90u.dll
17:13:32.0325 0x1788  C:\Windows\WinSxS\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4bf5400abf9d60b7\mfc90u.dll - ok
17:13:32.0343 0x1788  [ 3FB8091B01C9680F215B6DBE8B7DCF1E, 29F688C11299F1F14598EA054AF55C603BA465CE3842E4042D5B4CEC668D6477 ] C:\Windows\System32\wbem\fastprox.dll
17:13:32.0343 0x1788  C:\Windows\System32\wbem\fastprox.dll - ok
17:13:32.0361 0x1788  [ 42EB2C16852D2A33AC2452288C986174, 84F4705D6E342C60DC06E72A022B3DAECA8317620763D8E99BF38E3361D75B6E ] C:\Windows\System32\iphlpsvc.dll
17:13:32.0361 0x1788  C:\Windows\System32\iphlpsvc.dll - ok
17:13:32.0379 0x1788  [ 076D76E9C7A1495D7AF4201AD6F86C1B, 8C66988F4E5EC9BE8B25C460B7E4724BA6C5621799357C89980C1D6CA248151E ] C:\Windows\System32\wbem\wbemsvc.dll
17:13:32.0380 0x1788  C:\Windows\System32\wbem\wbemsvc.dll - ok
17:13:32.0397 0x1788  [ DFA11D3BE1D81B6C1B8359EC350F87A5, C464E7427CDC544F1DAB48F414D41CF45F9ECCC3046E852C05A1704A39040244 ] C:\Windows\System32\mi.dll
17:13:32.0397 0x1788  C:\Windows\System32\mi.dll - ok
17:13:32.0413 0x1788  [ B671071159879C190E3275C9C2732778, 1C8409418DA0F3C582280F6C334AC093232D124EAE95A329D33F104B340E95B6 ] C:\Windows\System32\sscore.dll
17:13:32.0414 0x1788  C:\Windows\System32\sscore.dll - ok
17:13:32.0430 0x1788  [ 08A51B0351E9C80EF1110C449BBE5DB5, 0CB1EB2E6B1BD8F9DBF543AE0B3A1A0F22964B693DB89D13BFA68541971BC7D4 ] C:\Windows\System32\sscoreext.dll
17:13:32.0431 0x1788  C:\Windows\System32\sscoreext.dll - ok
17:13:32.0449 0x1788  [ EDA954A38B1126957747FB3BC074AB40, 60E69ACC2ADD026CD85CF01C6B85D2B6AE3DC1AB68820D3EFA3D7016503BEC93 ] C:\Windows\System32\miutils.dll
17:13:32.0449 0x1788  C:\Windows\System32\miutils.dll - ok
17:13:32.0465 0x1788  [ 7C5DD052088177595E6D4788ACB47C35, 9D8E19C6CFFEE0D74E8CC3C9A901839350A93CB1C199C42C51C2761BA5FD130B ] C:\Windows\System32\httpprxm.dll
17:13:32.0465 0x1788  C:\Windows\System32\httpprxm.dll - ok
17:13:32.0489 0x1788  [ 5CA4543F826A7B7BB26811BB8046E0A4, 9325943F52ACECC665424FE137B82731BAAA35B618312F5460DE5CA22DDACEDA ] C:\Windows\System32\wmidcom.dll
17:13:32.0489 0x1788  C:\Windows\System32\wmidcom.dll - ok
17:13:32.0507 0x1788  [ 34898DB5AFD23E501E5F1DD349E89CAB, 0BF5304B4D4CCC4134BD4480DBF2E0E74689F1A53F8809B61BB75D4E0CCCDDCF ] C:\Windows\System32\wbem\wmiutils.dll
17:13:32.0507 0x1788  C:\Windows\System32\wbem\wmiutils.dll - ok
17:13:32.0525 0x1788  [ 8C88D863410E3F702DD334ADF79D73D9, B283F9E61AE6CFBBAC3CC9437DC272310951EEBCC7856A6D9D70E06EC5702E79 ] C:\Program Files\NTI\Acer Backup Manager\cryptopp.dll
17:13:32.0526 0x1788  C:\Program Files\NTI\Acer Backup Manager\cryptopp.dll - ok
17:13:32.0543 0x1788  [ 3FF06B6F793B871F041AD0F195BE1660, 041E54DB72A4993CBBC0FD141283DC8CF3EC0190D1ADCA673164E40342A3FD48 ] C:\Windows\System32\adhsvc.dll
17:13:32.0543 0x1788  C:\Windows\System32\adhsvc.dll - ok
17:13:32.0556 0x1788  [ 8C72DC3F0A421E2121C75CA67CDA9521, 2A0B2D00D009D58CC86FBD52ED9F941FE8E877E81B0F228B5F201A321CB54B2F ] C:\Windows\System32\resutils.dll
17:13:32.0556 0x1788  C:\Windows\System32\resutils.dll - ok
17:13:32.0577 0x1788  [ FD31543E548B72847408B6827EA8A9D8, 3B9286FA1E30012747200A5CAF4EDAED8512F62738530FCB3757FD5259106978 ] C:\Windows\System32\clusapi.dll
17:13:32.0577 0x1788  C:\Windows\System32\clusapi.dll - ok
17:13:32.0594 0x1788  [ 77B2E7D8654F1FD958C72DF237CBA797, B09F0D09750BD3EB6BC664E4B53AA0D6DCA47EBC2DADE50C4AEF0C014EEB9CCA ] C:\Windows\System32\wbem\repdrvfs.dll
17:13:32.0594 0x1788  C:\Windows\System32\wbem\repdrvfs.dll - ok
17:13:32.0611 0x1788  [ 41B051E70375C3EA0713EC8B5052244A, A9F1BF3061C781409ACFDFB4972CCE6787039E2A9E5452C7B254B35699A39D96 ] C:\Program Files\NTI\Acer Backup Manager\IShadowFileBackup.dll
17:13:32.0612 0x1788  C:\Program Files\NTI\Acer Backup Manager\IShadowFileBackup.dll - ok
17:13:32.0628 0x1788  [ 425250201CF473E48CC489F2410C3584, 2AFEEC8D3B736454AFB9C0E362E21AA504C4ADE53D6AB49DA8AE2C8E29443C6C ] C:\Windows\System32\sqmapi.dll
17:13:32.0628 0x1788  C:\Windows\System32\sqmapi.dll - ok
17:13:32.0644 0x1788  [ 550015DB8C5CC4FE4C41F18FDB6A8D52, 6A7965703D936DD610452D89F14F5FA5AB066C03E3B9C7D4EDC4594890BE3820 ] C:\Program Files\NTI\Acer Backup Manager\ACE.dll
17:13:32.0645 0x1788  C:\Program Files\NTI\Acer Backup Manager\ACE.dll - ok
17:13:32.0662 0x1788  [ D0D82EB5ADD9A904070F9B5132B52C14, F210C80C751FDF218464AD67B572592E84FD2485FD9C8B5C7E6AF9C59D5ED55F ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Bnmon.sys
17:13:32.0662 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Bnmon.sys - ok
17:13:32.0680 0x1788  [ DE8D48B3CD555FFA586FCB3D8D9CEFF4, 66DE8E5424E7874F9AE4A07A79A080F11AF7E0B26C52F3A4994D234FD66E033F ] C:\Windows\System32\dafupnp.dll
17:13:32.0680 0x1788  C:\Windows\System32\dafupnp.dll - ok
17:13:32.0698 0x1788  [ 0B3CE2B8338FC5A8EDB1A26A09489767, DB779121889B875AA01888AD1B57E44302D8B8CA82E6C768D33FB3AE5E9A168F ] C:\Windows\System32\twinapi.appcore.dll
17:13:32.0698 0x1788  C:\Windows\System32\twinapi.appcore.dll - ok
17:13:32.0715 0x1788  [ 850736AA5546E6BB37B570D3B23E191D, AB9FB96B882C8865C39FCFAA3845F8AA63087F2653422987D2B1078E2CF85431 ] C:\Windows\System32\Drivers\BHipsEx.sys
17:13:32.0715 0x1788  C:\Windows\System32\Drivers\BHipsEx.sys - ok
17:13:32.0732 0x1788  [ 7AEC949CD72B92B1D7D3FFF772B76E03, BEF2839ADEFA7B7785BBAB2ADDE42B0D9F26B7D9DE4FD1F05AF2FE1227449C5E ] C:\Windows\System32\netprofmsvc.dll
17:13:32.0732 0x1788  C:\Windows\System32\netprofmsvc.dll - ok
17:13:32.0750 0x1788  [ 219186F3BD0ED759DF0C3B7FAAE6C0E2, 401E0F23602F548FE8C97959B84AF686822B925CD3965C1E853207627AC5778E ] C:\Windows\System32\Drivers\bdark.sys
17:13:32.0750 0x1788  C:\Windows\System32\Drivers\bdark.sys - ok
17:13:32.0768 0x1788  [ 7E1F98A1EDBF8EF347B38AC5AD36C52E, 451A3F469DC9352DE028F1212932A2D6650FCF994040C9D81E31CAD93ADFDC8B ] C:\Windows\System32\mapi32.dll
17:13:32.0769 0x1788  C:\Windows\System32\mapi32.dll - ok
17:13:32.0786 0x1788  [ C5D4C94445C1CCAFC9CED173590B07F5, 549AE59F9762AA01FB1A8E9F7ED751228C1921CC1B692ED940A4C50C1103990C ] C:\Windows\System32\wdi.dll
17:13:32.0786 0x1788  C:\Windows\System32\wdi.dll - ok
17:13:32.0803 0x1788  [ 67EC459E42D3081DD8FD34356F7CAFC1, 1221A09484964A6F38AF5E34EE292B9AFEFCCB3DC6E55435FD3AAF7C235D9067 ] C:\Program Files\NTI\Acer Backup Manager\msvcr100.dll
17:13:32.0804 0x1788  C:\Program Files\NTI\Acer Backup Manager\msvcr100.dll - ok
17:13:32.0826 0x1788  [ 62AC1D4453F3FD17C22EF1DEE0F361D4, 5D45B02ABAE48663034487188DEC4E29DCD0E3FB3745CF4AA4E71027F5632B11 ] C:\Windows\System32\diagperf.dll
17:13:32.0826 0x1788  C:\Windows\System32\diagperf.dll - ok
17:13:32.0843 0x1788  [ AF36B23A704BCEC98D16FB15D1275194, B1E020FAE6BBDBFD4B9B066DCA89CF818FDE7FFE44A2F623A424AA0D3AD7D9DC ] C:\Windows\System32\perftrack.dll
17:13:32.0843 0x1788  C:\Windows\System32\perftrack.dll - ok
17:13:32.0861 0x1788  [ 85C244B02FDD704EEB383E5500E1FD38, D7C8A43B17DAA886260AB4DF4AC2A236A1E6730CD6257A9E089704B785971F28 ] C:\Windows\System32\Drivers\WUDFPf.sys
17:13:32.0861 0x1788  C:\Windows\System32\Drivers\WUDFPf.sys - ok
17:13:32.0878 0x1788  [ 03E9314004F504A14A61C3D364B62F66, A3BA6421991241BEA9C8334B62C3088F8F131AB906C3CC52113945D05016A35F ] C:\Program Files\NTI\Acer Backup Manager\msvcp100.dll
17:13:32.0878 0x1788  C:\Program Files\NTI\Acer Backup Manager\msvcp100.dll - ok
17:13:32.0895 0x1788  [ 135E8C9F01071E4DFD00E3E566A889C7, C94743C4AC64E89787758012450F1D08699CB46FE5FE8DAF37AB12ED4BAB8CF4 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BEVMApi001.dll
17:13:32.0895 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BEVMApi001.dll - ok
17:13:32.0912 0x1788  [ 84F20198CAE435DE32ABDB4511550BD7, 89D1F58963BEFE5FE26E03292242F85F7D36731B9A177266B7B036E2C921594B ] C:\Windows\System32\mscoree.dll
17:13:32.0912 0x1788  C:\Windows\System32\mscoree.dll - ok
17:13:32.0928 0x1788  [ A1500BB5DA261FA673E8B8DA60C06375, 2858BFA45ADA3BADBBD07E2F77D004A4EAB034AA2F4973E9651EF8AB6C7F7754 ] C:\Windows\System32\wpdbusenum.dll
17:13:32.0929 0x1788  C:\Windows\System32\wpdbusenum.dll - ok
17:13:32.0947 0x1788  [ 3E66922A463E04AE3A37317F09959AE3, 41259B1CA27CB3021A5ED140D8F6A74C8EAC724B769694D916DC448572F725A3 ] C:\Windows\System32\PortableDeviceApi.dll
17:13:32.0947 0x1788  C:\Windows\System32\PortableDeviceApi.dll - ok
17:13:32.0967 0x1788  [ C31B61A8FF27C891551AB1715B2EBDF1, 669752AE588185C92B8255283C7FEE628642BD441FBC0E5D77D4969C896E8262 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavClean.dll
17:13:32.0967 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavClean.dll - ok
17:13:32.0984 0x1788  [ 522CFAA0E7599A52CF96A781E1C6DE8F, 3BD17925E3900F53F665DCD99E63CE65602FC4D6316B2E6821CD93287B5749EE ] C:\Program Files\NTI\Acer Backup Manager\OsSettingPort.dll
17:13:32.0985 0x1788  C:\Program Files\NTI\Acer Backup Manager\OsSettingPort.dll - ok
17:13:33.0003 0x1788  [ 1EB1C1E43C1901865C5AE34A9771C069, 63B3A591C355F9DD0D27388F057D68BA2366E8671DCDC7D4D53609E441337F92 ] C:\Windows\System32\wer.dll
17:13:33.0003 0x1788  C:\Windows\System32\wer.dll - ok
17:13:33.0020 0x1788  [ 7E086A5A3E0AEE55D9AD2657B152E3E9, 92747BBFC400260B7F5AC76D295F4F99191D35015881C0A31AA3411FD3118470 ] C:\Windows\System32\NapiNSP.dll
17:13:33.0020 0x1788  C:\Windows\System32\NapiNSP.dll - ok
17:13:33.0038 0x1788  [ 9F9DD8F373CB78CE14C813F0A9542855, 38C32DFAB2CA505B5C699E83EF0378833FEBD2748D747E2F1B58795FFBF0A0C1 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavCns.dll
17:13:33.0038 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavCns.dll - ok
17:13:33.0057 0x1788  [ A4A25620378F585848F8C6547665FEC6, 732232A410D07DEAE8517F8C995F4CE37A423EB02F361FE1B63992082B1F18D0 ] C:\Program Files\NTI\Acer Backup Manager\NtiSdk.dll
17:13:33.0057 0x1788  C:\Program Files\NTI\Acer Backup Manager\NtiSdk.dll - ok
17:13:33.0073 0x1788  [ 6E82CB95062B9CC15127D069AFCFD66B, 82AE11575FA233133A7B790A2D3C34F06301960F6FB6A0619F3DCF4995734E56 ] C:\Windows\System32\WUDFPlatform.dll
17:13:33.0073 0x1788  C:\Windows\System32\WUDFPlatform.dll - ok
17:13:33.0091 0x1788  [ 2F14C07D9A590AEF048554DA70F7038A, E0913549B1B110313EE1FA7F56D438F915F659445D40B069B824E715A2D755DD ] C:\Windows\System32\WUDFSvc.dll
17:13:33.0091 0x1788  C:\Windows\System32\WUDFSvc.dll - ok
17:13:33.0108 0x1788  [ 9AFB6579DCF5A3E56DECA8C9C9B7E66F, F0B005606C11AC9C476B0915D8F0F365FD6326A87AC51450DD8833F356CEAABC ] C:\Windows\System32\wdiasqmmodule.dll
17:13:33.0108 0x1788  C:\Windows\System32\wdiasqmmodule.dll - ok
17:13:33.0124 0x1788  [ 56B2D553EC6BB2DEEF27120CF490E648, 7FC883EECC165CD5D322FD051D1E58C8AFA004AC92BCA40E7B9803599DA04788 ] C:\Program Files\NTI\Acer Backup Manager\UltraBurn.dll
17:13:33.0125 0x1788  C:\Program Files\NTI\Acer Backup Manager\UltraBurn.dll - ok
17:13:33.0141 0x1788  [ 19275944F74155AD3677ABA500337DB9, AC242595867154F527FC4D7E3768C2526E543DBD690989439C881031A8BB7FE1 ] C:\Windows\System32\pnrpnsp.dll
17:13:33.0141 0x1788  C:\Windows\System32\pnrpnsp.dll - ok
17:13:33.0159 0x1788  [ AA02870F35E46E77F91E6741B791BD2A, 7A46A2098185ADFCE7F85090E9DCE2B1C89D785823344DA6FE66D6CC4CF822BC ] C:\Windows\System32\winrnr.dll
17:13:33.0159 0x1788  C:\Windows\System32\winrnr.dll - ok
17:13:33.0175 0x1788  [ 57754697EEA9C8072F5B56569297F14F, 281B79F21264F2ADF34A5403572BC0CBF2F693C245E93DC5B1A63A1923319982 ] C:\Windows\System32\mpr.dll
17:13:33.0175 0x1788  C:\Windows\System32\mpr.dll - ok
17:13:33.0192 0x1788  [ 3349267C3A75722671C5F0C9BD7D46DD, A93FE0F51320860DC2E602FADED1E62541BC7747853845984D237A041D462E18 ] C:\Windows\System32\wshbth.dll
17:13:33.0192 0x1788  C:\Windows\System32\wshbth.dll - ok
17:13:33.0211 0x1788  [ 3E4E72C2B02A0FDC18D864FDCC5D37FB, F33E4960017CA5C82486F305BCAF43164332FC9937717CE10B123924D3518C29 ] C:\Program Files\NTI\Acer Backup Manager\OutlookShadow.dll
17:13:33.0211 0x1788  C:\Program Files\NTI\Acer Backup Manager\OutlookShadow.dll - ok
17:13:33.0230 0x1788  [ AFAAF20CE491E1844AF7408EE42432AF, 0483269B445ADFC37A101FAF9E75B9DE343EF24BA82EB3B3F1F425E466F89161 ] C:\Windows\System32\npmproxy.dll
17:13:33.0230 0x1788  C:\Windows\System32\npmproxy.dll - ok
17:13:33.0249 0x1788  [ 1B438C1B334F62F18F8CCD2706150264, 05D3C94BFFC4435AD8A5872C25981D4304667D3911D8D9ABE248903CFA7BE04C ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavFi.dll
17:13:33.0250 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavFi.dll - ok
17:13:33.0267 0x1788  [ AE71B1BC1A17000F7B8F9AB79D4668D4, 2A0A337A0E879634721BF445579437236426E4EA2DCBE95473E89F588513CD6D ] C:\Windows\System32\hidserv.dll
17:13:33.0268 0x1788  C:\Windows\System32\hidserv.dll - ok
17:13:33.0286 0x1788  [ 9BB831771F1D9C6DBF719F84CDB72804, 2618C5BD448605E2E5321B0ABE64CF22C0ED17992B0169117DF4C0E17801BF02 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavBh.dll
17:13:33.0287 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavBh.dll - ok
17:13:33.0306 0x1788  [ F48844BF6750A7E6ECC6457FB4EAB38A, 77F971C8F26329C09FD59DCA3FFD925953AC703AE820874CB73BBD137CF5B59F ] C:\Windows\System32\pnpts.dll
17:13:33.0306 0x1788  C:\Windows\System32\pnpts.dll - ok
17:13:33.0323 0x1788  [ 4513568E569C052972CED30C52838FEA, 257CDB9E98FB9C8877253F173BD2D4C4ED6F79FD0BD7113A1654BA6DB5F5EDCC ] C:\Windows\System32\browser.dll
17:13:33.0323 0x1788  C:\Windows\System32\browser.dll - ok
17:13:33.0334 0x1788  [ 1985B3FF9AF9DF5276C44B963A3E4C80, CFE60AEFB40B5C76CE380A495410E07AAC2BADFB6DE8BA9788BDC90D9122B216 ] C:\Program Files\NTI\Acer Backup Manager\IShadowS3.dll
17:13:33.0335 0x1788  C:\Program Files\NTI\Acer Backup Manager\IShadowS3.dll - ok
17:13:33.0351 0x1788  [ F2D7B35D211474A0F82CD3CF0E803CD6, E389881192E3CF95B3E4188FB80EB3AB3E372130C00BB6CB21A13D6E85620098 ] C:\Windows\System32\PortableDeviceConnectApi.dll
17:13:33.0352 0x1788  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
17:13:33.0369 0x1788  [ 645163B6AEA9FB8B60A56F8388D1A90C, 55624EDEE9C45E2344BFAAD6D6D8B3B0E07D9072074D836637D7FCAC999AC40A ] C:\Windows\System32\wbem\WmiPrvSD.dll
17:13:33.0369 0x1788  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
17:13:33.0388 0x1788  [ 1B1C8D17FA40B69265116B24C2C515AE, 02FFE55D280AD33F99FA57E1D94B60E44C29A85C5A609604F64F6B1397E93C9F ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavUl.dll
17:13:33.0388 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavUl.dll - ok
17:13:33.0405 0x1788  [ F8869BA61DFFE0F4FF408368898A18C5, 8763D7F4C36B097ED993C78D831689093C15271989C0895DBEF7FB80FEB566BA ] C:\Windows\System32\bthserv.dll
17:13:33.0405 0x1788  C:\Windows\System32\bthserv.dll - ok
17:13:33.0422 0x1788  [ 317D4792E227E123FB333C4C7BADA72C, 03A4F0C7718961F152AD972850BBF393E80B3859A80D7D9D764EC07A45C92413 ] C:\Windows\System32\srumsvc.dll
17:13:33.0422 0x1788  C:\Windows\System32\srumsvc.dll - ok
17:13:33.0439 0x1788  [ EAFB726E85A2914313DDAB5D382DED33, 0DCF944371D2E9FA07D2990FDE59EFAE02637366A9B2E2F93D6DF2B3476A2516 ] C:\Windows\System32\ncobjapi.dll
17:13:33.0439 0x1788  C:\Windows\System32\ncobjapi.dll - ok
17:13:33.0458 0x1788  [ D3E5FBC4B4A87DB1036C431C90694D3B, 3B9F2D7AE2B8BF00B7E39C572AF3B41C77C93E378AF4FFCFB80DEAD587BB8E5E ] C:\Windows\System32\winmm.dll
17:13:33.0458 0x1788  C:\Windows\System32\winmm.dll - ok
17:13:33.0474 0x1788  [ F78809A5D04A7B749446AFD8F49C154B, 1F765B10B1B47AD59EC4542101451BB61ACABFC95771497B66876958FA697C4A ] C:\Windows\System32\WUDFHost.exe
17:13:33.0474 0x1788  C:\Windows\System32\WUDFHost.exe - ok
17:13:33.0490 0x1788  [ 75EB6ED62567CED8C9749ED05261504E, 602872FC6C7595FA3857F7EDE9CF593572B5BD02CD6AD7374C85EC0EAF541708 ] C:\Windows\System32\winmmbase.dll
17:13:33.0490 0x1788  C:\Windows\System32\winmmbase.dll - ok
17:13:33.0509 0x1788  [ 3FC08248A264A984796C691F4BC6D604, EC1C4E2DC10148134123061173E77F6F32835AC58D50F4911BC5560959A8F36C ] C:\Windows\System32\activeds.dll
17:13:33.0509 0x1788  C:\Windows\System32\activeds.dll - ok
17:13:33.0526 0x1788  [ 28ABD6DAEDA9956B7734621349F6AC0C, FB1D9A83AB4D88C1DD53A9569BA1D3BD40A254ED7ED41A2179FF0CF57D404DB2 ] C:\Windows\System32\esent.dll
17:13:33.0526 0x1788  C:\Windows\System32\esent.dll - ok
17:13:33.0542 0x1788  [ 9C71865FEAFF30DF3FA7910747A97867, 44A3F1FBE7B307001895CE1A6C1B5B80C93098D4C7D70AD638C091A98BC49361 ] C:\Windows\System32\adsldpc.dll
17:13:33.0542 0x1788  C:\Windows\System32\adsldpc.dll - ok
17:13:33.0560 0x1788  [ 255742E72E7A4C331620F9601C29344E, 4BE5532F6EFA7D7B08613437B64DE9C1594A670299E9E9CA9FD7F4CE0A0DA2F3 ] C:\Windows\WinSxS\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4973eb1d754a9dc9\MFC90DEU.DLL
17:13:33.0560 0x1788  C:\Windows\WinSxS\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4973eb1d754a9dc9\MFC90DEU.DLL - ok
17:13:33.0579 0x1788  [ 5324C0300133B405D720FAE26F62B4AC, D4B32590112894DEE7707FFCCE2C97336BEF4D24ACAB421BCF5106F5FB76C180 ] C:\Windows\System32\BluetoothApis.dll
17:13:33.0579 0x1788  C:\Windows\System32\BluetoothApis.dll - ok
17:13:33.0592 0x1788  [ 4345ECCB826B0B637B1B50543D8CFAFB, 26AB01C7A9D5FE7D9C0B58CE96CF90DF1279C1D7BF2F49A595C0821CDC064165 ] C:\Windows\System32\dafBth.dll
17:13:33.0592 0x1788  C:\Windows\System32\dafBth.dll - ok
17:13:33.0609 0x1788  [ 8E906B30470BF9AE50FDD5DB00EC58DE, 604BBAE4CE2038662D3EEE91FF375ABB7D55A9D80B8D361A6CC93AB1985A05F4 ] C:\Windows\System32\adsldp.dll
17:13:33.0609 0x1788  C:\Windows\System32\adsldp.dll - ok
17:13:33.0626 0x1788  [ 4BE30AA6A0B1E06A521D338704F093F7, BB9E8A6610F9B6034F7CD4F33B860122841DA7501F981E4142F961FCA2ECE9D7 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
17:13:33.0626 0x1788  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
17:13:33.0643 0x1788  [ 178A5F19FBE4874A42405050075C780D, 5CE23977807B76062CADE9BB73CB9D4B20E17296865049D0B0790B634DFA10E7 ] C:\Windows\System32\wbem\wbemess.dll
17:13:33.0643 0x1788  C:\Windows\System32\wbem\wbemess.dll - ok
17:13:33.0661 0x1788  [ 85192E60899C1A3BE20FEBC7F89AF898, B2CF1C65F1922C79A99A6A853C888CDE99D6CB64A139E6CB657C0FC59A571411 ] C:\Windows\System32\Drivers\UMDF\bcmnfcser.dll
17:13:33.0661 0x1788  C:\Windows\System32\Drivers\UMDF\bcmnfcser.dll - ok
17:13:33.0679 0x1788  [ A0DDFE3DB78F8CD55F369DB3FA52E6AE, 42BDE475AC680D6D533CD7EFF6B9D672361700A55D27FAE9909C1A87C67A59E1 ] C:\Windows\System32\cscapi.dll
17:13:33.0679 0x1788  C:\Windows\System32\cscapi.dll - ok
17:13:33.0696 0x1788  [ FB38A2E605C953168751041379CFEBE9, 96DA8785E0A0C091DD146821B00B0403A0653995761D0ED42B4B09E907CAE007 ] C:\Windows\System32\WUDFx.dll
17:13:33.0696 0x1788  C:\Windows\System32\WUDFx.dll - ok
17:13:33.0713 0x1788  [ BFBE7B59A680F0CBA4BB73650A508ACF, 2D90C234ECDC6DF02ABB4F25B98FF7CFF016799332B61A3B559E1B4C69F1B15F ] C:\Windows\System32\hnetcfg.dll
17:13:33.0713 0x1788  C:\Windows\System32\hnetcfg.dll - ok
17:13:33.0730 0x1788  [ 020DA16EC240EC969C71514BF1BC9829, 4C3670D011953588294912C41DE018735009C6EB0C3653BD8EA5E70967094415 ] C:\Windows\System32\ssdpsrv.dll
17:13:33.0730 0x1788  C:\Windows\System32\ssdpsrv.dll - ok
17:13:33.0748 0x1788  [ 66C4680CD2F3683D866CA887170F30A7, 649D51DB9319057F5991515A7DC0CD2C3F79ECF9A57520AF22FD0C8BC402B6AC ] C:\Windows\System32\nduprov.dll
17:13:33.0748 0x1788  C:\Windows\System32\nduprov.dll - ok
17:13:33.0764 0x1788  [ ED0D8AD26C1180E237DD7D61076AB4BE, E66E9F8C3DD9021A1F34026AEDF4323E9B67721515B03E9BE9FE8D6F7DB15494 ] C:\Windows\System32\appsruprov.dll
17:13:33.0764 0x1788  C:\Windows\System32\appsruprov.dll - ok
17:13:33.0781 0x1788  [ 359FCDB6D1D42317A29CEBCCD690604C, BC93B7EDAEB63FD12B221C47EE2234E9A1BDFD57314F128DAD993C2BD8C1522F ] C:\Windows\System32\wbem\WmiPrvSE.exe
17:13:33.0781 0x1788  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
17:13:33.0797 0x1788  [ 1381E879B992A9BC52C0B29ACA65EBBB, F9E15887831F6886CECF2CA2D7F46C15F8D3BB318320B620033963D0687A61C9 ] C:\Windows\System32\wpnsruprov.dll
17:13:33.0798 0x1788  C:\Windows\System32\wpnsruprov.dll - ok
17:13:33.0814 0x1788  [ F3C1EB2E3010CE6ED031842F8EAA0035, B3BE4C84AF2268A9271915F0A3B12BAC80449887F585CC6A867D85B385745A59 ] C:\Windows\System32\ncuprov.dll
17:13:33.0815 0x1788  C:\Windows\System32\ncuprov.dll - ok
17:13:33.0831 0x1788  [ 1F3FF6015194A55FBB12E456F68F031A, 342501649B6704300032B62986A5241542548BBFF86AB6149B17C7903767B620 ] C:\Windows\System32\wwapi.dll
17:13:33.0831 0x1788  C:\Windows\System32\wwapi.dll - ok
17:13:33.0842 0x1788  [ EDDE958704EE01E50AA50EEB83C0BAC7, 4A43827C118C38B604E82811781A8BD25225FA123A5703C49D3C7A7F3EAF21CA ] C:\Windows\System32\energyprov.dll
17:13:33.0842 0x1788  C:\Windows\System32\energyprov.dll - ok
17:13:33.0859 0x1788  [ BAE12D431C542EC88BD741F1AA4E0CE8, CCAF6D509131071E00D0E9A88C240BF79A8311340274927080864A8F0F79AE1A ] C:\Windows\System32\srumapi.dll
17:13:33.0859 0x1788  C:\Windows\System32\srumapi.dll - ok
17:13:33.0877 0x1788  [ 867519A6EF0521AB63CDC77FA6E5878D, C849A3A5CBFA8FB10BF222E5240536B8C26C576CC0C8DFE9CC9330F4D213803A ] C:\Windows\System32\deviceaccess.dll
17:13:33.0877 0x1788  C:\Windows\System32\deviceaccess.dll - ok
17:13:33.0895 0x1788  [ 7AF0D98BDCF2D82395C396534F0A94B9, 540ADE9A3CA145832B1F35324C6778259778E0DD6237477A9B6D2F7AA792E14C ] C:\Windows\System32\wbem\Win32_Tpm.dll
17:13:33.0895 0x1788  C:\Windows\System32\wbem\Win32_Tpm.dll - ok
17:13:33.0915 0x1788  [ 967E5DDE6F62272607AE575BFD08C529, 42C6AF09F003C72FE89C1965F2083E43D6234E7F43D453215A6BD1BD31D9CA33 ] C:\Windows\System32\Drivers\UMDF\SensorsHIDClassDriver.dll
17:13:33.0916 0x1788  C:\Windows\System32\Drivers\UMDF\SensorsHIDClassDriver.dll - ok
17:13:33.0935 0x1788  [ 96677B29F4738CDC638BEF885DB040CF, C042B63F5B1B3982F33547294DD7B9A68086875416257369EDA91F80BE2FE198 ] C:\Windows\System32\PortableDeviceTypes.dll
17:13:33.0935 0x1788  C:\Windows\System32\PortableDeviceTypes.dll - ok
17:13:33.0959 0x1788  [ 88C19DEA192934D62ECCEFA28B750CF6, 1138B216864529A4E031487A105D387B3D2AECD8860A930B1D7BDE5FE60644EE ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavUp.dll
17:13:33.0959 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavUp.dll - ok
17:13:33.0977 0x1788  [ 336FAC8C36F180D794CDDC54D00C0C71, D7D9D02DB5F3112FCE3B993EB705410B67582142C5961FFD1C7CD32B24A0A1F7 ] C:\Windows\System32\SensorsClassExtension.dll
17:13:33.0977 0x1788  C:\Windows\System32\SensorsClassExtension.dll - ok
17:13:33.0994 0x1788  [ FEADDDC3471A38D216063DA8ECD7FC18, 1B404B8DCAC532B6B8A38775DCC1324C2CECF736AEABEF8715E57D3CDE49E472 ] C:\Windows\System32\PortableDeviceClassExtension.dll
17:13:33.0994 0x1788  C:\Windows\System32\PortableDeviceClassExtension.dll - ok
17:13:34.0016 0x1788  [ EF6F95AE3D0D97933C9DF633C88F83B3, 0B5496E6B610405C990C7A8603E38BA4C443E9B3EC53E51BF08765D2B9D517E3 ] C:\Windows\System32\sensrsvc.dll
17:13:34.0016 0x1788  C:\Windows\System32\sensrsvc.dll - ok
17:13:34.0035 0x1788  [ C124980DDC276CE1CD865D23BCFD3374, 0D08CFAAFBD49993F8056E2ADBA77911514EBAA67386C03EE2A314ED410D2613 ] C:\Windows\System32\SensorsApi.dll
17:13:34.0036 0x1788  C:\Windows\System32\SensorsApi.dll - ok
17:13:34.0057 0x1788  [ CAF1C8CF157D6EB5EA27A73BFBB03C1E, D3743617DE5077139830D8714C7580FF927F7171A013CB92DEF5D11BA56F8EDF ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavR3Base.sys
17:13:34.0057 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavR3Base.sys - ok
17:13:34.0074 0x1788  [ 463873126358017A07CE8976451759EF, 48AF9F4898C0828622BA993FA4326846D3E7DC527B07510F5447303B42424B90 ] C:\Windows\System32\PCPKsp.dll
17:13:34.0075 0x1788  C:\Windows\System32\PCPKsp.dll - ok
17:13:34.0093 0x1788  [ A6D9724BD58F98AEB489A57508653710, 35DCB606E5F5B60807EC75F9D5E3AC2A52FBBF2C2B0CCBCC6B0798AB8511973C ] C:\Windows\System32\PCPTpm12.dll
17:13:34.0094 0x1788  C:\Windows\System32\PCPTpm12.dll - ok
17:13:34.0110 0x1788  [ 4BAE8754A110C7DF8FB9CE60CD1804F4, 9D8EE7D85C5E07615E02C5ECFF7396868C115E78DAFD3184AD82B81E87D4C0B7 ] C:\Program Files\Windows Portable Devices\sqmapi.dll
17:13:34.0110 0x1788  C:\Program Files\Windows Portable Devices\sqmapi.dll - ok
17:13:34.0130 0x1788  [ 1709683D6B2DD6776CEEF3830F7CF1FF, 9ECC939D625589BF384D26249B738C7ABAD5ADA7EF1762528650013AFF0FAFB8 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavOa.dll
17:13:34.0131 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavOa.dll - ok
17:13:34.0151 0x1788  [ D3E027716A726A5827DCC5E166558B23, 9CE66720BEE5C807AFE934ECE9ADB0D39B46279D297BBDDD871A8341231D25E9 ] C:\Windows\System32\RotMgr.dll
17:13:34.0151 0x1788  C:\Windows\System32\RotMgr.dll - ok
17:13:34.0170 0x1788  [ EE988B174E496223E382AC92BE1F7E5D, EDCAAD7C8A9DB312CFB0F2F2E3D96F3E9F125715EFFBFFBF9B05F0291561C5E3 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavScan.dll
17:13:34.0171 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavScan.dll - ok
17:13:34.0192 0x1788  [ BD3B3D9EBBAA59E594352E64B81EBC5C, 7454391017347895CE27378344F90E62503C3738BF392C64A25997AE3278BE0D ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavWl.dll
17:13:34.0192 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavWl.dll - ok
17:13:34.0214 0x1788  [ C60C13BDEEAFF84502DDA9C78C219324, 6F9ABA29035D1C93DAEDC0C3C880A021DA674829ED7413C394D2E3C52AE7DEE1 ] C:\Windows\System32\Drivers\UMDF\SensorsServiceDriver.dll
17:13:34.0214 0x1788  C:\Windows\System32\Drivers\UMDF\SensorsServiceDriver.dll - ok
17:13:34.0233 0x1788  [ 6F2908E981B620BDB6C1C987F81E8CF2, B5A398B49153449CBD9776FC4817C4441A52A60322143F1233253ACA68CB7A88 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavBase.dll
17:13:34.0233 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavBase.dll - ok
17:13:34.0252 0x1788  [ CFAD3E8AAFCA9EE0C587F5B36CDE19D8, CE8A27F6CF29A2CD9158181E5489AA3DA476429FF62DB37672A74F995149154C ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavSig.dll
17:13:34.0252 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavSig.dll - ok
17:13:34.0277 0x1788  [ DE5F6F1159C0230279CA42B5ACC67AB1, 3E42CDC642CB72A0065E03FDCABCA95CC31F95B397291000E395DCBF0848ADCE ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavAs.dll
17:13:34.0277 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavAs.dll - ok
17:13:34.0298 0x1788  [ 58807B66970BAAD121E6B558C10CF720, 196C28817DB7BEB7CB3B8B4C081DFA95F7FA56937D2C20A841123C911507D87A ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavVM.dll
17:13:34.0298 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavVM.dll - ok
17:13:34.0319 0x1788  [ FFDCBB3EB5701069E89A06DF7AB1D18A, 0A6C1A6B85B49ABB82F4DE3A6786025EC5DE4034E59F132D4CD32AF542E58074 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavDd.dll
17:13:34.0320 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavDd.dll - ok
17:13:34.0344 0x1788  [ 510B86ED65EBAA33C16BA54B43D945B7, F3E7C7D1A71D0F7B9AD86A7F2C1E76F32D9DA9C2D87098F4ED17C74201AACD3D ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavSk.dll
17:13:34.0344 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavSk.dll - ok
17:13:34.0360 0x1788  [ 9AB213AA2954D9B271EDBBA3E390000C, 05C2C851B1308B690772B792E338088B9B1BADC5941F29269EA3F3A494676825 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavSs.dll
17:13:34.0361 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavSs.dll - ok
17:13:34.0381 0x1788  [ 13FA17B612F55E2675A0534787F397BB, 17D7B08AB8D5F35F28E8281E215C8A20A9C2AF42C1065B35F903F070E6331D40 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavVt.dll
17:13:34.0382 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavVt.dll - ok
17:13:34.0404 0x1788  [ 3BCB17F3663C57635AD1EDAFF43CA996, 02EBA276A1EB94371EFF964EEC5FA156A8215476F6B5349B2ADDD953C8B4B271 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavRr.dll
17:13:34.0405 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavRr.dll - ok
17:13:34.0427 0x1788  [ 028AEF9A85B99C31CFBAD17E2624B54D, 3EC996080960467AC5C580A60F9A7F03938D06F1DE424F0900BAE331964D2166 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavUa.dll
17:13:34.0427 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavUa.dll - ok
17:13:34.0447 0x1788  [ 96E82C2DFC014DB8F8D78C6BF80F7BBF, 82E09457BEE25F7963190E204FAA2BD729018EA63497AA4BDE241FB04EEAE351 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavSu.dll
17:13:34.0448 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavSu.dll - ok
17:13:34.0472 0x1788  [ 0A253767D13703D17FA6BD681247582C, CE928B0BADB3D65D7FBB8358D2B8C2095A96463F2D6FEA631AB6A0D90140937B ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavMem.dll
17:13:34.0472 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavMem.dll - ok
17:13:34.0493 0x1788  [ E77D3FA0643FE96715794DEA1DA1E5FF, 1EB24E70C4FA0CA4C612BC35D356271A6D21ABDA82289588439C254D9EFC83AF ] C:\Windows\System32\dimsjob.dll
17:13:34.0493 0x1788  C:\Windows\System32\dimsjob.dll - ok
17:13:34.0511 0x1788  [ 4077E813CC0AF38799C1F3CF4FE7EAAF, 7B1DF069058FFC034956B7C09B41F2B765E99C9685717479F4CAE751A68FD104 ] C:\Windows\System32\pautoenr.dll
17:13:34.0511 0x1788  C:\Windows\System32\pautoenr.dll - ok
17:13:34.0531 0x1788  [ 23F2DB97C61DD70749A4F27D6527F97F, BF80F3D55DDF575F657CFE6746ACF85CA66B9A11104E5D5C88479CBA8749D851 ] C:\Windows\System32\certca.dll
17:13:34.0531 0x1788  C:\Windows\System32\certca.dll - ok
17:13:34.0552 0x1788  [ 45B32760EE7F74AE0D8657286C2B274C, FEEE3F4B8AE7BD9F3640B8672DF860BF1CFB82C6121D25C0A909D3988762C353 ] C:\Windows\System32\CertEnroll.dll
17:13:34.0553 0x1788  C:\Windows\System32\CertEnroll.dll - ok
17:13:34.0572 0x1788  [ BC8FB8CA5BD6A993CC5DE53122EB03CE, 9DF7D0FD158D4FBF4745A8BD0462CED520E553EEF0235C67E6AD13D49120E288 ] C:\Windows\System32\wscapi.dll
17:13:34.0573 0x1788  C:\Windows\System32\wscapi.dll - ok
17:13:34.0592 0x1788  [ 61745E3D9B70DD45B3705B043CED9EA5, 5A6C3CDCA88DE16ABD12D7AE42A1649275463000FF4CF98C391AE6798B2651A5 ] C:\Windows\System32\wscisvif.dll
17:13:34.0600 0x1788  C:\Windows\System32\wscisvif.dll - ok
17:13:34.0615 0x1788  [ 35D191064BE55DC21FE643686AFFE7DA, 0E64231E1CEEEE28C93B2467C9D08A7065B7EBAD128F78DD1C6AC942021AE02B ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BsrScan\BavBsr.dll
17:13:34.0615 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BsrScan\BavBsr.dll - ok
17:13:34.0629 0x1788  [ 3AA79A83EC7D1B16D296029035A9C399, 4674894D18CE9026CA54AFA9556987023C14A92EC24AFCB29030B80ABF7E0535 ] C:\Windows\System32\sfc.dll
17:13:34.0630 0x1788  C:\Windows\System32\sfc.dll - ok
17:13:34.0652 0x1788  [ 19CCD36F272CF75E0445FA8810FD63C2, A9D74116DC041574C0372BB0B6465AEDC92A215430F0458B38498D18466B2851 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BsrScan\BsrScript.dll
17:13:34.0652 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BsrScan\BsrScript.dll - ok
17:13:34.0674 0x1788  [ 53166038F5957488A958AB310163A1C3, 6A400E4CC21214ECB2E03A99367B5FDB800A414CE3B1D7FA715B764C220A5411 ] C:\Windows\System32\SettingSyncCore.dll
17:13:34.0674 0x1788  C:\Windows\System32\SettingSyncCore.dll - ok
17:13:34.0694 0x1788  [ CC05C14EEFF5E7813A49718BA88E59B0, 771151FDEB8E30545F4BBFE1B73EEE0E1187DB905A535E9CC12D2C57AA0ACC8D ] C:\Windows\System32\dllhost.exe
17:13:34.0695 0x1788  C:\Windows\System32\dllhost.exe - ok
17:13:34.0716 0x1788  [ 8592C798D7FEAA80714B6FC0A852DAD2, C5D4FE3E00D969749F2F3AB1B64C17EE70A7CE93680D907A9395F79D1C666949 ] C:\Windows\System32\CredentialMigrationHandler.dll
17:13:34.0717 0x1788  C:\Windows\System32\CredentialMigrationHandler.dll - ok
17:13:34.0741 0x1788  [ 887DBBE8CF300A6AE9D0B5D8FF7C0915, 2441BB8867308A05E24DD6370397730288FB9C177F0961BDCA1B4BAB69EEE3B5 ] C:\Windows\System32\AppxAllUserStore.dll
17:13:34.0742 0x1788  C:\Windows\System32\AppxAllUserStore.dll - ok
17:13:34.0766 0x1788  [ 5B7288EA34AB9B1BD91633737933E100, F9B39282D28973E774DE8F9377ED42CA2E17C16B11DEBA1D7314023417DA9A6C ] C:\Windows\System32\taskhostex.exe
17:13:34.0766 0x1788  C:\Windows\System32\taskhostex.exe - ok
17:13:34.0786 0x1788  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] C:\Program Files\Google\Update\GoogleUpdate.exe
17:13:34.0786 0x1788  C:\Program Files\Google\Update\GoogleUpdate.exe - ok
17:13:34.0806 0x1788  [ 1A6B6EE6B5C17A397D1685FDF7E20E90, 0D0E8F6953A823A315C1DF3DEFA76DC46F422A6E9704DE908D71CBD238FAFDDA ] C:\Program Files\Google\Update\1.3.32.7\goopdate.dll
17:13:34.0806 0x1788  C:\Program Files\Google\Update\1.3.32.7\goopdate.dll - ok
17:13:34.0824 0x1788  [ 86A215AA6146F83C24E24F1939D2ECEC, 4EAB9CE08214AB7DD7EBD3D55D80307B5EBA121B0AB89759610BAF353F69311F ] C:\Windows\System32\radardt.dll
17:13:34.0824 0x1788  C:\Windows\System32\radardt.dll - ok
17:13:34.0844 0x1788  [ 4648540B5642077BDB6FA8D725EE67B7, D3C63A2FA9FAB913DAC94FBA2EBEDC4561B2D1BE6DAD97CCD3BC600F5BC1972D ] C:\Windows\System32\PlaySndSrv.dll
17:13:34.0844 0x1788  C:\Windows\System32\PlaySndSrv.dll - ok
17:13:34.0867 0x1788  [ 1EDE65A10BD45C5C3FACD4C7C1E4555B, 328BF3A27F21C622195752CF6C3BA29D4C7F40C8C0EAD0D675618FB7E78723CA ] C:\Windows\System32\MsCtfMonitor.dll
17:13:34.0867 0x1788  C:\Windows\System32\MsCtfMonitor.dll - ok
17:13:34.0880 0x1788  [ 3395247F0D93D8A2553C664FFE7797F9, F7C05590850F10B971F13B44525CEA3A0DE116C1F7C4AFC295759D50E7120E52 ] C:\Windows\System32\msutb.dll
17:13:34.0880 0x1788  C:\Windows\System32\msutb.dll - ok
17:13:34.0899 0x1788  [ B90FBBE506E1AAAF7B67C5DA6445E7E1, 94755D0C49EC3238BA3C74054EFE54D4843CAEB913A58EFC1B696063FE107116 ] C:\Windows\System32\AtBroker.exe
17:13:34.0899 0x1788  C:\Windows\System32\AtBroker.exe - ok
17:13:34.0919 0x1788  [ D10643FC0095434C819316CA6CD748C0, 0D392968DED34D674409A7A79FF6981990FA732A9E67A767CBEDC4C98A0D7CBE ] C:\Windows\System32\userinit.exe
17:13:34.0919 0x1788  C:\Windows\System32\userinit.exe - ok
17:13:34.0941 0x1788  [ 45FB84DFED858A1E556D166DEB36AD90, 6B89177FD8AF2B9CF5040462735032F73CFD154ACD91BF07852C002A4D2C4E90 ] C:\Windows\System32\userinitext.dll
17:13:34.0941 0x1788  C:\Windows\System32\userinitext.dll - ok
17:13:34.0963 0x1788  [ 042216FBB8B0CCC7402C3C77E58E1BC9, 0412DD9C9E1F2934751967E072FDB75FFA37AC7D31671424E5618DF5D7F83E3E ] C:\Windows\explorer.exe
17:13:34.0963 0x1788  C:\Windows\explorer.exe - ok
17:13:34.0985 0x1788  [ FE40EC349D80C0ED24A5808DCFE9A0D2, 7697E2CADD4F9D2F2874DAF6F0AE2FF96AB5452F26F802226461B063320C3D33 ] C:\Program Files\Google\Update\1.3.32.7\GoogleCrashHandler.exe
17:13:34.0985 0x1788  C:\Program Files\Google\Update\1.3.32.7\GoogleCrashHandler.exe - ok
17:13:35.0008 0x1788  [ 9354B48DF9A08EE2A690777D7B7FADB0, 4629C5C20CABD16686960AC69A3F318FF4F21CD6A1C13384D8CF3A6FAF42BFAC ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Bavnt.dll
17:13:35.0008 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Bavnt.dll - ok
17:13:35.0034 0x1788  [ 0DD8ADA24D2FAB6A3A39ECD075034F38, DC46E1EECECB8AD5743CF8F118EE913721903B76F21FC32323499AFCD804092F ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavUm.dll
17:13:35.0034 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavUm.dll - ok
17:13:35.0056 0x1788  [ 4DDF02597E105067A95002168092D266, B2A61E1CAE679CA59940F7EE8574B6661589EE6216BF1086D1CF39DD5B94E22A ] C:\Windows\System32\appinfo.dll
17:13:35.0056 0x1788  C:\Windows\System32\appinfo.dll - ok
17:13:35.0075 0x1788  [ 2F0FF942FC55D9719D5126C3BD5D6FC2, D4F991ADFDD1949AE08A106DAD8A7899FEF0BF5E691AC74099137FC5FFD9386F ] C:\Windows\System32\runonce.exe
17:13:35.0075 0x1788  C:\Windows\System32\runonce.exe - ok
17:13:35.0100 0x1788  [ 622D21C40A25F9834A03BFD5FF4710C1, 48985B22A895154CC44F9EB77489CFDF54FA54506E8ECAEF492FE30F40D27E90 ] C:\Windows\System32\cmd.exe
17:13:35.0100 0x1788  C:\Windows\System32\cmd.exe - ok
17:13:35.0119 0x1788  [ 4AE1645286D07AF628DDB2AE978CE526, F7DF65AEA001F78FA3E7A009A599B36C7BAC9D9E430C52E772BF192DF26BF93A ] C:\Windows\System32\cmdext.dll
17:13:35.0119 0x1788  C:\Windows\System32\cmdext.dll - ok
17:13:35.0139 0x1788  [ F1AA5C522EC0054B80B722C7DD31E970, 3A0FB2C9F6566B8C65FACC2D13EFF720BA878F784BA42A621D8FD82A5DD89D53 ] C:\Users\nici_st\AppData\Local\Temp\{555F0F84-E59A-4431-8D44-352F770A14DF}\{E0353B14-4998-4097-87E4-73F5F1E6823F}.exe
17:13:35.0140 0x1788  C:\Users\nici_st\AppData\Local\Temp\{555F0F84-E59A-4431-8D44-352F770A14DF}\{E0353B14-4998-4097-87E4-73F5F1E6823F}.exe - ok
17:13:35.0156 0x1788  [ 13B40ED7E62385FAA6F8BC03A54C489F, 63738EBFC9C451896CD2F1A75F24A170169DCB8658EF9E341276030520F6C8DC ] C:\Windows\System32\pcacli.dll
17:13:35.0156 0x1788  C:\Windows\System32\pcacli.dll - ok
17:13:35.0175 0x1788  [ F252215BFC8DEEE0949A3A0C75133CDF, 65F4D3750EFE97A1D86FB115B2F06938469847FC482874246D8424A9A64106BA ] C:\Windows\System32\pcasvc.dll
17:13:35.0175 0x1788  C:\Windows\System32\pcasvc.dll - ok
17:13:35.0200 0x1788  [ 461D86E2A01D38E432689D60A9A65918, 2075A781784E7CD1D90FA8AF9FB055D227583562B3FCBA0735378715BEFB6AD3 ] C:\Windows\System32\aelupsvc.dll
17:13:35.0200 0x1788  C:\Windows\System32\aelupsvc.dll - ok
17:13:35.0222 0x1788  [ A8D99CE6949498ECA69F7F81927BD37E, 5EE85D351109B1CD441A569264EFC89AABD1A85EC2FFF15867E83DAC5532452F ] C:\Windows\System32\themeui.dll
17:13:35.0223 0x1788  C:\Windows\System32\themeui.dll - ok
17:13:35.0246 0x1788  [ 391C50DED48EDF10824A5E126A46728C, 317E9AB72AC1E03AE29880E5A6276534FF960C40308DB8BCD9182BB046A2693E ] C:\Windows\System32\twinui.dll
17:13:35.0246 0x1788  C:\Windows\System32\twinui.dll - ok
17:13:35.0266 0x1788  [ 7C4FA268CD7681E6BE46B3B9FD4FC8F2, 708AA3A68B36BCED433972CDC26101B45B01E45432D6D7A3149CB0E04A87D56A ] C:\Windows\System32\cryptnet.dll
17:13:35.0266 0x1788  C:\Windows\System32\cryptnet.dll - ok
17:13:35.0290 0x1788  [ DC075BCF1B03FD0ECDF5A15419F0C220, 80BD4B0C2934E3BC56F88365717CBFC783BA7B22B1E30EAE1CB49AC6191A3129 ] C:\Windows\System32\actxprxy.dll
17:13:35.0290 0x1788  C:\Windows\System32\actxprxy.dll - ok
17:13:35.0309 0x1788  [ 17C5D5794D00549C01C8D886F91302F0, A4652A3A86FC0E8A521AA029BCEF8262B7C6319B35EB0A2779AB6359FD8E756E ] C:\Windows\System32\ExplorerFrame.dll
17:13:35.0309 0x1788  C:\Windows\System32\ExplorerFrame.dll - ok
17:13:35.0330 0x1788  [ 27EC87C04C2BFAD36CEE6A7539134039, B0F2C283080D242F7AB09F56DD696D85E3120844848C361FA30BD6D36B8A8C93 ] C:\Windows\System32\Tabbtn.dll
17:13:35.0330 0x1788  C:\Windows\System32\Tabbtn.dll - ok
17:13:35.0348 0x1788  [ AF6B990244D5EDD52F2F50B04A8D5537, 9B2EB8E3840AE5D44A19F06508FAFAA8096A0ADCF530D45444D461C0393466FA ] C:\Windows\System32\TabbtnEx.dll
17:13:35.0348 0x1788  C:\Windows\System32\TabbtnEx.dll - ok
17:13:35.0367 0x1788  [ 18EE99F0088E98D8EC95538533BD77AD, 9796E599C5C1765C355FA9568B29F00CC0DF3E4F19C6807CB06F56791C098DC5 ] C:\Windows\System32\windows.immersiveshell.serviceprovider.dll
17:13:35.0367 0x1788  C:\Windows\System32\windows.immersiveshell.serviceprovider.dll - ok
17:13:35.0386 0x1788  [ CE31CF618096074F7D523401B5EF2AA2, F227019B315FC92F014BF7AE4DBB0391C53E2C62EF831661F332175521579BCA ] C:\Program Files\Common Files\microsoft shared\ink\TipBand.dll
17:13:35.0386 0x1788  C:\Program Files\Common Files\microsoft shared\ink\TipBand.dll - ok
17:13:35.0398 0x1788  [ 1F1C28B4566C06910790BE07FC6F45E6, CC35648DA1CFB76ADDE786C7CAF86A0D24778B566FC483505C34F4E23BA5C1BA ] C:\Windows\System32\wldp.dll
17:13:35.0398 0x1788  C:\Windows\System32\wldp.dll - ok
17:13:35.0417 0x1788  [ 1200A0010B4774EBC40E0E897A2E21EA, F2242DCBAE3076A54772DBC240069BDC86B46FA8C4D71E96BEAA8CD020B83A65 ] C:\Windows\System32\twinui.appcore.dll
17:13:35.0417 0x1788  C:\Windows\System32\twinui.appcore.dll - ok
17:13:35.0435 0x1788  [ 26521ADDF554C4D8B622B07FAAF90BF0, A1AB31C1CEC592476D7C04D125F5BDED4E6AD6839CE46F91BBE2772E2575E45D ] C:\Windows\System32\wpncore.dll
17:13:35.0435 0x1788  C:\Windows\System32\wpncore.dll - ok
17:13:35.0453 0x1788  [ F595E51368FAEC71AAC9B760D0D855F5, B770FC3AFAF028DFFB65A1DBB8C3B016A565E58C2492C1A57E98F1D4FFC5F4D5 ] C:\Windows\System32\WinTypes.dll
17:13:35.0453 0x1788  C:\Windows\System32\WinTypes.dll - ok
17:13:35.0472 0x1788  [ 6F353D571E5B49EB2854A7973CAE5235, 739D79804F7F42D0925E0C3FB21E4ABC2A75923C6ED01727A2FF1C076B01D679 ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\livecomm.exe
17:13:35.0472 0x1788  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\livecomm.exe - ok
17:13:35.0492 0x1788  [ D4FDC86205342901F9DECA881586688B, 67704E56E361116E0F78CA69E72C76A96ED4B65F2B737AD16B95851559D850AC ] C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00_12.0.21005.1_x86__8wekyb3d8bbwe\msvcr120_app.dll
17:13:35.0493 0x1788  C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00_12.0.21005.1_x86__8wekyb3d8bbwe\msvcr120_app.dll - ok
17:13:35.0513 0x1788  [ A15873E66390873816B811DB9F013954, FA05C50FEB2D62B5B9DA7D550CF4117481EE3D19F3C4D6F06DD5D3ACCAFB91E8 ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\wllog.dll
17:13:35.0513 0x1788  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\wllog.dll - ok
17:13:35.0535 0x1788  [ 82DB53D6155E4ADCC9223B371404149E, CA5CF968916FF96061EAB4C2E89BBEF18A350E450506675200E19563093F1632 ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\microsoft.windowslive.platform.service.dll
17:13:35.0535 0x1788  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\microsoft.windowslive.platform.service.dll - ok
17:13:35.0557 0x1788  [ 59E0F65710FBEC5D045BEF3FF7BE341C, 35BD208E41CCFBA473C51ABB035F5B0C505838523530A2CC882251C6C1A02177 ] C:\Windows\System32\wlidprov.dll
17:13:35.0557 0x1788  C:\Windows\System32\wlidprov.dll - ok
17:13:35.0576 0x1788  [ C24F109C9DA6437BCF78FCA47852BDCF, 0ADD724113DDFB53556F23F17757AD233F4314BDBE7E2140F667B15D68941BDF ] C:\Windows\System32\thumbcache.dll
17:13:35.0577 0x1788  C:\Windows\System32\thumbcache.dll - ok
17:13:35.0595 0x1788  [ 946D73063DE07748EAE1C7515C5F9E44, DF6782B87375110D5C8A72FD86EDFA2875AD751769A1070A235B6C39DC9B73F7 ] C:\Windows\System32\Windows.Networking.Connectivity.dll
17:13:35.0596 0x1788  C:\Windows\System32\Windows.Networking.Connectivity.dll - ok
17:13:35.0616 0x1788  [ 2EF0F0CE44504F052B59EEDBAAF02885, CF68760C3D61A4EF527EEDA5BD1C7235B3BC4E5A2747CC700EDE08C422056126 ] C:\Windows\System32\lockscreencn.dll
17:13:35.0616 0x1788  C:\Windows\System32\lockscreencn.dll - ok
17:13:35.0639 0x1788  [ 1F78F6E71BB4F00B6FC67A5628DFA581, 1DA01EB8EB032F8E572D71A8DD035F6A2FF3F7E504FC20575AF514D9EEB0A6FA ] C:\Windows\System32\Windows.Storage.ApplicationData.dll
17:13:35.0639 0x1788  C:\Windows\System32\Windows.Storage.ApplicationData.dll - ok
17:13:35.0654 0x1788  [ 386AF1F18332316F3DD253EE596348F9, 7FCE32B455C2FE330682F04226915567A4598D984E1D7950482133DDEAA3BA61 ] C:\Windows\System32\ELSCore.dll
17:13:35.0654 0x1788  C:\Windows\System32\ELSCore.dll - ok
17:13:35.0674 0x1788  [ 78D6B0484A1A24113DF8C1074033F569, 4D18958224EDC75D9AB2C844809F8C4982C236A87A0B4A50297AE978DF5A7258 ] C:\Windows\System32\ncbservice.dll
17:13:35.0674 0x1788  C:\Windows\System32\ncbservice.dll - ok
17:13:35.0697 0x1788  [ 3292D8C22CE2A208266ED833C50BD044, CF02CF61BE19CFC551605DC58C4C13221FAF2EE09FB240417D5709E6E4829911 ] C:\Windows\System32\BrokerLib.dll
17:13:35.0697 0x1788  C:\Windows\System32\BrokerLib.dll - ok
17:13:35.0716 0x1788  [ C6B767170B2B249CE0F03687F35674E9, 372C1F1C83B5F8F3D833CECAABA3DB2CE1DE8DFF6A3B48C6259C3F5A883C92E3 ] C:\Windows\System32\elsTrans.dll
17:13:35.0716 0x1788  C:\Windows\System32\elsTrans.dll - ok
17:13:35.0734 0x1788  [ 1CB01FDA8163A21997485EDD7ECA9CBE, 2F1A7E011FEEECB5580FC0C2BEB25A8879EEB3285722920856B4B37639D20FD4 ] C:\Windows\System32\TimeBrokerServer.dll
17:13:35.0734 0x1788  C:\Windows\System32\TimeBrokerServer.dll - ok
17:13:35.0753 0x1788  [ A512524699CB28791AD113953D39FE94, 8C946A3E716BF557AA43966B337AD6AC8348D25BAA087AC9F60F4FC5CCF48C29 ] C:\Windows\System32\elslad.dll
17:13:35.0753 0x1788  C:\Windows\System32\elslad.dll - ok
17:13:35.0772 0x1788  [ E728B66AF8C47D0E751385101175A769, 07DD8695A29B56ED74A216114D2396BB1EF2E7DEC039471BA3829F1F926ACB41 ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\bici.dll
17:13:35.0772 0x1788  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\bici.dll - ok
17:13:35.0791 0x1788  [ BFD49E51FCC3651C67A12E3ACB318B13, 488692D5BE42FE4B79DCCBC1D3C58EC591D302EDEDC4471198AC2EFBBC1C3406 ] C:\Windows\System32\threadpoolwinrt.dll
17:13:35.0791 0x1788  C:\Windows\System32\threadpoolwinrt.dll - ok
17:13:35.0811 0x1788  [ 216E8314D6380BA33762967AEF7EB865, 8EB1C5078DC6983395F56A00C2D6EDB4BA5DF0319D107322534FC1E5C87AAE17 ] C:\Windows\System32\biwinrt.dll
17:13:35.0812 0x1788  C:\Windows\System32\biwinrt.dll - ok
17:13:35.0831 0x1788  [ 6CD5201846E8B99B6AE774A116E90BB5, AA5CE823474048339743DE7AD2B17F0DF91DBEAD1DEE04821DBEBF5298A37DA2 ] C:\Windows\System32\Windows.Globalization.Fontgroups.dll
17:13:35.0831 0x1788  C:\Windows\System32\Windows.Globalization.Fontgroups.dll - ok
17:13:35.0849 0x1788  [ EC835DFB5038C5349ADD76908959432E, DD15DB4307A5D30CC9E669A1E92040A354335D3EA1C09F2EF90DC95C2688DD41 ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\microsoft.windowslive.platform.dll
17:13:35.0849 0x1788  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\microsoft.windowslive.platform.dll - ok
17:13:35.0868 0x1788  [ 8678E3A80ABBDF635ACEB44686CC938B, 19C92CC6A11EDBB2288FD293653FA4519FDD29DECDB90E9147430322BA17F123 ] C:\Windows\System32\Windows.UI.Search.dll
17:13:35.0868 0x1788  C:\Windows\System32\Windows.UI.Search.dll - ok
17:13:35.0887 0x1788  [ 9610A95D72E258ABFC4EC30A5F1B12CA, CBA1AAD8560DA513A8531369640F71C19C49578E1356265EB17D0375BA1B1A85 ] C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll
17:13:35.0887 0x1788  C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll - ok
17:13:35.0906 0x1788  [ 9EFA0602C50E020B52DE9C250C8533B4, 2D1D550A4C8D5407F19CCB47CE184185863077339701BE96476A53E73C3A7C6E ] C:\Windows\System32\Windows.ApplicationModel.dll
17:13:35.0906 0x1788  C:\Windows\System32\Windows.ApplicationModel.dll - ok
17:13:35.0917 0x1788  [ FB96FC6491FF602CCFA2D38ED1DA5B5E, 14033CEBB6C250C22A62A38CFD46A5286FE11A83A7228AFD01E8E215546F2494 ] C:\Windows\System32\RuntimeBroker.exe
17:13:35.0917 0x1788  C:\Windows\System32\RuntimeBroker.exe - ok
17:13:35.0935 0x1788  [ E027A6E99EF709AFD195FD6329224C47, B31B85BF369DC36363B0E527AE3B8E95B33699D17D09C6313C43E7373A3E6874 ] C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{2F5BE909-461A-4767-9F81-835F596BFC0E}.tmp
17:13:35.0935 0x1788  C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{2F5BE909-461A-4767-9F81-835F596BFC0E}.tmp - ok
17:13:35.0958 0x1788  [ EB098EE776B0D2D5265407BE00ACA19F, 7E5753905ABAC8731D08B3E743FDCF95E01BE246BD32C9934A3EEA0AA281B4A6 ] C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll
17:13:35.0959 0x1788  C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll - ok
17:13:35.0978 0x1788  [ AB67816718E5C65CC326BE56AC0B9E73, D6F19026CB87C9BB5521D668B13347B68F297FCE34C5F1BFE530574B16ADB2D5 ] C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{3A995A0A-A181-4733-BF30-506687E87E35}.tmp
17:13:36.0009 0x1788  C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{3A995A0A-A181-4733-BF30-506687E87E35}.tmp - ok
17:13:36.0020 0x1788  [ 321FF1DF7F4CEF3FA690419110BEE55A, 41243293C9876D8B94F83B28C98F1797CD217140153DDEE631C2EEB8E102C6A0 ] C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{DE32CDB2-5EE3-4D67-ACAF-10CE2EAF7D51}.tmp
17:13:36.0020 0x1788  C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{DE32CDB2-5EE3-4D67-ACAF-10CE2EAF7D51}.tmp - ok
17:13:36.0036 0x1788  [ 617FF0BD5DC7C898E586375A877683D4, DF5D0CC0BB1CC7626AF9240061F402530003CD89D4240ACB5238CF73772F50C0 ] C:\Windows\System32\wincorlib.dll
17:13:36.0036 0x1788  C:\Windows\System32\wincorlib.dll - ok
17:13:36.0056 0x1788  [ 1B9F453A54240A8920B99F6D78B109D5, 8922E3DCD3EF74FA071A097DBC46CB6608D64EC0D4FAF362DBFD83E82EC01E1E ] C:\Windows\System32\WSClient.dll
17:13:36.0056 0x1788  C:\Windows\System32\WSClient.dll - ok
17:13:36.0074 0x1788  [ 5D3EADE2F3C9F79F8ED40E724CBBB5EC, D29D21813293A7A6723F30C9902C5DBF919A0294B315D34E25934981CE710D84 ] C:\Windows\System32\WSShared.dll
17:13:36.0074 0x1788  C:\Windows\System32\WSShared.dll - ok
17:13:36.0091 0x1788  [ 1CFDB4AA0931ED7885D3C5F18DEF397C, 72325CABEA5973C440A56D66C5ADB8BADDA3A5743B15867DD95EE70EDABC2B4F ] C:\Windows\System32\WSSync.dll
17:13:36.0091 0x1788  C:\Windows\System32\WSSync.dll - ok
17:13:36.0108 0x1788  [ DC6DB08D85337C9675F94B01043279AE, B09E491113F9E95F4EE00BB51BB21D4967BAC333C0DCD030A10AEA9B9E52032B ] C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{DC1CD353-1118-4285-9908-F2C957B610B7}.tmp
17:13:36.0108 0x1788  C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{DC1CD353-1118-4285-9908-F2C957B610B7}.tmp - ok
17:13:36.0126 0x1788  [ C74D46C1F542F5FEB9B7E1A8EC04986D, FA83733A81BA8D96EDFD15C1914D5A6056D73C61540C8747E9AE1343DA47A63D ] C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{8154C50D-925D-457B-B8D8-7BEA97E44CC2}.tmp
17:13:36.0126 0x1788  C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{8154C50D-925D-457B-B8D8-7BEA97E44CC2}.tmp - ok
17:13:36.0146 0x1788  [ B7ED11D0E6054E05EF7B99835A8D89A4, 4A3B035B2B4602278075D8FBA45C67A20FB6BE86203E49ED397286F234687041 ] C:\Windows\System32\SettingSyncPolicy.dll
17:13:36.0146 0x1788  C:\Windows\System32\SettingSyncPolicy.dll - ok
17:13:36.0165 0x1788  [ 4CA047ECA771B3F32BDE96626D71BEAD, A90E1C1CB02129ED9994CEB07B2447CBCE54BFB934B0ADC3A5BCD0ED25B3F72F ] C:\Windows\System32\stobject.dll
17:13:36.0165 0x1788  C:\Windows\System32\stobject.dll - ok
17:13:36.0175 0x1788  [ 517ECD823EB9A03368294C6C33A695D0, 7BA4EF2C5E9D15A4EE8ACC169CA233010DF8D1BC7088665E06C9E71BBA0CD40C ] C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{3B3113BA-B005-4D50-A749-5780BA8993F0}.tmp
17:13:36.0176 0x1788  C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{3B3113BA-B005-4D50-A749-5780BA8993F0}.tmp - ok
17:13:36.0193 0x1788  [ 3428F170E1953B4C4EA10A5F58B55908, B554E04021472C3C2BBDED2B4BBB4F6648932356F8DA409A2A7F6AC02E54B306 ] C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{805A4694-ED1F-403D-8212-0B0F5AD1C70F}.tmp
17:13:36.0194 0x1788  C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{805A4694-ED1F-403D-8212-0B0F5AD1C70F}.tmp - ok
17:13:36.0212 0x1788  [ 96D681B7DE0BA6BFA1DC55915003CD05, 26CDA6A9A67F20A494F0EF3577D14F5DDA1F0D4428891DBD271A757833285939 ] C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{A8A0BA00-61D0-48DD-8A85-33C92151D302}.tmp
17:13:36.0212 0x1788  C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{A8A0BA00-61D0-48DD-8A85-33C92151D302}.tmp - ok
17:13:36.0231 0x1788  [ 85D8D497E3CFCD66607DAD332378DE8B, FEB2FF9315B41A7D13C9F3EB4CFDD612C951CA02330BC5A9129881E148769C7F ] C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{914C34C9-486B-4D40-A5B3-932740326A78}.tmp
17:13:36.0231 0x1788  C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{914C34C9-486B-4D40-A5B3-932740326A78}.tmp - ok
17:13:36.0251 0x1788  [ 7FA4D74CC9940BD4FDF248C64FE19F20, E0F59FB811C548C8743B39D7A9E9E8B8F47551C30C4008B3F508F3C32767101F ] C:\Windows\System32\Windows.UI.Xaml.dll
17:13:36.0251 0x1788  C:\Windows\System32\Windows.UI.Xaml.dll - ok
17:13:36.0272 0x1788  [ CD0DAF878147B723108C428370FF0355, A5C3D8A516FD0A15DAAB442DA424E996112C355239B985413EAA4DC1FAB76303 ] C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{67E0D6C0-C0F8-40AA-8D24-B7D784487CD1}.tmp
17:13:36.0272 0x1788  C:\Users\nici_st\AppData\Local\Temp\{385A4E18-6447-485A-966C-40EA5D8AB3D9}\{67E0D6C0-C0F8-40AA-8D24-B7D784487CD1}.tmp - ok
17:13:36.0290 0x1788  [ 3AB72DEB6B51776FEE7045DF17268313, 6784269501E37EEABEEF9EF6BB0F0C690AC90E904E9B901C540CFAA7A4DBCED7 ] C:\Windows\System32\ThumbnailExtractionHost.exe
17:13:36.0290 0x1788  C:\Windows\System32\ThumbnailExtractionHost.exe - ok
17:13:36.0307 0x1788  [ EB0C095277773C274427ECB49DF74A05, 3332BE79EA198DC185EE6BC8314A5DACCA87E1DC91D0032F7B4827E85CC61CC0 ] C:\Windows\System32\VAN.dll
17:13:36.0307 0x1788  C:\Windows\System32\VAN.dll - ok
17:13:36.0324 0x1788  [ 6916E5DB91DE11935F56D9D33DBEBE1E, E0450AA1F561E92FC59ECC9D856CF8C12C61E448ACC8AC4DA9E16594BBFF07BE ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\wlcore.dll
17:13:36.0324 0x1788  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\wlcore.dll - ok
17:13:36.0342 0x1788  [ 13795F68EE65DD645572FD5626C30E23, 118C53A22E72763E8307BD3169D6CEEC96E941EDE4771A21888A50A4BEF52C56 ] C:\Windows\System32\wpnapps.dll
17:13:36.0342 0x1788  C:\Windows\System32\wpnapps.dll - ok
17:13:36.0362 0x1788  [ AE31F0762D5FF5527553A8FBAA574F97, 86D638E2688785B5869F0AFB562881BEAF36C916735F542BB904D71D4F785134 ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\microsoft.windowslive.platform.calendar.dll
17:13:36.0362 0x1788  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\microsoft.windowslive.platform.calendar.dll - ok
17:13:36.0380 0x1788  [ AD9FFA97884BDC76BAFB7AA8EB99FC65, B79FFBE413E0C2C095A09F2844FB51BA11716764C7A569B2D80D17469CD15D90 ] C:\Windows\System32\riched20.dll
17:13:36.0380 0x1788  C:\Windows\System32\riched20.dll - ok
17:13:36.0399 0x1788  [ 492BA0BA3E5AF9C10DCF54A606CE9EF9, 0FCE0145488AA3EA55BF36C628328DD2C3F7F425C50E977AF95E6892F753F7E0 ] C:\Windows\System32\msls31.dll
17:13:36.0399 0x1788  C:\Windows\System32\msls31.dll - ok
17:13:36.0416 0x1788  [ 385481616CAD8046BFAF993877AC5A0D, 161F5DF6657D1C2BA1604851161011823BDCB460B0E9D4CBADA4FC566A033DE7 ] C:\Windows\System32\usp10.dll
17:13:36.0416 0x1788  C:\Windows\System32\usp10.dll - ok
17:13:36.0427 0x1788  [ E1A1DEA43A60E7610B4FBB8B8B3DE3A3, B6493EE4E0C65D0A062D9432B2ADB266837C4DD32E934574D206A2F644995AEB ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\microsoft.windowslive.platform.eas.dll
17:13:36.0427 0x1788  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\microsoft.windowslive.platform.eas.dll - ok
17:13:36.0451 0x1788  [ 116818B8A3745F526D93CA44D7DB6EF9, F8D666CE018CEFC25A358432616A204AA91B5305C9D9BC18DA1ED27B725620C7 ] C:\Program Files\Common Files\microsoft shared\ink\InkObj.dll
17:13:36.0451 0x1788  C:\Program Files\Common Files\microsoft shared\ink\InkObj.dll - ok
17:13:36.0469 0x1788  [ 70946771D2542C00756BBEB575CA84B2, 12944D29ADF1FEB7AFFF4A6D965E4EBD5603B09EB971566E389826B504F6E50C ] C:\Windows\System32\SearchFolder.dll
17:13:36.0469 0x1788  C:\Windows\System32\SearchFolder.dll - ok
17:13:36.0486 0x1788  [ 3A9C7B54A15F3BE1FC1E2C4664454C03, 15985D526D573A2A63B35BE16C38C41ACA2DEA7BF574604A8242E13A9768F0E7 ] C:\Windows\System32\mlang.dll
17:13:36.0486 0x1788  C:\Windows\System32\mlang.dll - ok
17:13:36.0503 0x1788  [ 3F159FB2DD653630E26EAC7D24D692FE, C9EE45A22A7BB3AFBAE3F9C2593CF44BBF240E6F1C2C147CCBC5A763A7694181 ] C:\Windows\System32\wpnprv.dll
17:13:36.0503 0x1788  C:\Windows\System32\wpnprv.dll - ok
17:13:36.0520 0x1788  [ DDD98338F1D4B71AAB293CCF98F398DD, CE6F6F87C64402F03F790BFDC6C649C2D5710367614C4014249ABB6721D9ACD1 ] C:\Windows\System32\StructuredQuery.dll
17:13:36.0520 0x1788  C:\Windows\System32\StructuredQuery.dll - ok
17:13:36.0540 0x1788  [ 480054E3A3B2A27050F7D56C35FAE59D, DBDB77E109628CFCA733434587AD072C4A20CBB99889785366534676F2AF50EA ] C:\Windows\System32\TimeBrokerClient.dll
17:13:36.0540 0x1788  C:\Windows\System32\TimeBrokerClient.dll - ok
17:13:36.0559 0x1788  [ AB52541A12C8E6C80FDD52299BD097D9, 73663F3579E1A6003CB859710EB7B36F4F8AC11E5C5245957AB607B824F8B8C3 ] C:\Windows\System32\AuthBroker.dll
17:13:36.0560 0x1788  C:\Windows\System32\AuthBroker.dll - ok
17:13:36.0576 0x1788  [ DE011C2DE5DD8842DA313B6D701B9290, E78AF31EB2D277304B200740CA13AF7B260A14E692F06BEA0108BC98C3B2EFFA ] C:\Windows\System32\msauserext.dll
17:13:36.0576 0x1788  C:\Windows\System32\msauserext.dll - ok
17:13:36.0595 0x1788  [ 8D4CEAEE747097A70342B80EA32E018D, 4D102781948914D4A0B2F82EC8FB79ED83D61E8A0D47868597187B8FC9FDF378 ] C:\Windows\System32\SearchIndexer.exe
17:13:36.0595 0x1788  C:\Windows\System32\SearchIndexer.exe - ok
17:13:36.0612 0x1788  [ E9A91A0A589AED5328E30D8C7E59E5AE, 5E6FA1C03A63C97E201606E563BE45111CB3F85EFEBB0F1FAC2A4F315D4231F0 ] C:\Windows\System32\tquery.dll
17:13:36.0612 0x1788  C:\Windows\System32\tquery.dll - ok
17:13:36.0630 0x1788  [ BAB8862FE2352DB48B55E66300F45E3D, 4A6DC06EB442AD7E5DDE947315E6F6FD3C4FEEC7FB963ED2149C5E7A133BDF22 ] C:\Windows\System32\prnfldr.dll
17:13:36.0630 0x1788  C:\Windows\System32\prnfldr.dll - ok
17:13:36.0650 0x1788  [ 7775B577E35FD22B0B300035FDC093FA, 50A52AE1396AEE31E380315C2609278F34DE4D30D8FFD600046AE29E9403B375 ] C:\Windows\System32\profext.dll
17:13:36.0650 0x1788  C:\Windows\System32\profext.dll - ok
17:13:36.0669 0x1788  [ 5466220BB7851B9DCEC07814AE8346A4, D6CEBD855A52CD9A08E94D0E21F917E154E278171D16AE58DF2D64A245F41181 ] C:\Program Files\Internet Explorer\sqmapi.dll
17:13:36.0669 0x1788  C:\Program Files\Internet Explorer\sqmapi.dll - ok
17:13:36.0680 0x1788  [ 0226079EFADB4BBDF849EC3FBD23C845, F0887CB3C029A39A7CAC97FA852D97AE9EB205A5CB04742CF37FDED47D034498 ] C:\Windows\System32\ncryptsslp.dll
17:13:36.0680 0x1788  C:\Windows\System32\ncryptsslp.dll - ok
17:13:36.0698 0x1788  [ 1B73F1F26EB084CCCB8E6E93B4D0E144, 84E4D68EF47BA9850C1A1FD7A09BE8D8101127FDE3C361FE5C6F9FAEF0B2941C ] C:\Windows\System32\ncryptprov.dll
17:13:36.0698 0x1788  C:\Windows\System32\ncryptprov.dll - ok
17:13:36.0717 0x1788  [ 5027CAF4BFB31E4CD2918B2C2DFFC4CB, 0059BA9F74C3092D13E17D792DFD6830651C4FE84D1DA398C2C6F94BB3D582B0 ] C:\Windows\System32\mssrch.dll
17:13:36.0717 0x1788  C:\Windows\System32\mssrch.dll - ok
17:13:36.0733 0x1788  [ 73B4FF7FC30E2D722AC5435CC8EDF55E, A40D13FEA1D38E74EC37BAD8B6F482029FBA05954A1A2FF60959AAF6D2D2DE7F ] C:\Windows\System32\dssenh.dll
17:13:36.0734 0x1788  C:\Windows\System32\dssenh.dll - ok
17:13:36.0751 0x1788  [ 090F78D73F73ADE08B7E484A55CF1060, ED9F6A40BE953A8FC7E8BD667A331A7CD6F1BA6D2274435DC5B10ED9AE9127A9 ] C:\Windows\System32\DeviceSetupManagerAPI.dll
17:13:36.0751 0x1788  C:\Windows\System32\DeviceSetupManagerAPI.dll - ok
17:13:36.0768 0x1788  [ CC1AAF6F0287F9C6AC9EC8FB290A5489, B2948D831BAB10C7AED0F947B8880794F6FAC85D5273C450C85CEB927098F2DC ] C:\Windows\System32\msidle.dll
17:13:36.0768 0x1788  C:\Windows\System32\msidle.dll - ok
17:13:36.0786 0x1788  [ B5867FF96CD0F7712CB4985EAC9F9147, 9AF0C8E6D4D1C36C35004ED980A62EAF2265DDAEAE6D0BE0DABE1396014842F3 ] C:\Windows\System32\AudioSes.dll
17:13:36.0786 0x1788  C:\Windows\System32\AudioSes.dll - ok
17:13:36.0804 0x1788  [ 4C22EF158F34BDDCE7D4941246F3D215, D87C0E3ED1D256D89BBEB8C3DAF3B3731F5A94A481F532A26E49FEBD8E2F56A2 ] C:\Program Files\Common Files\microsoft shared\ink\IpsPlugin.dll
17:13:36.0804 0x1788  C:\Program Files\Common Files\microsoft shared\ink\IpsPlugin.dll - ok
17:13:36.0822 0x1788  [ 6B4C6312E8D9CE7BEBB4F8A08EDA4DFE, 642430EF780B8EB9C23C9A2C06B41FF48E80403FE5DA70060A7E71CD27484C6C ] C:\Windows\System32\DXP.dll
17:13:36.0822 0x1788  C:\Windows\System32\DXP.dll - ok
17:13:36.0838 0x1788  [ 31E1E5275E5D102ECFF251FBD31CE503, 059C853AAE31CA3D5D2B569FFA3004261E9589FBEE5E9F147C7AF0DB35BFD625 ] C:\Windows\System32\shdocvw.dll
17:13:36.0838 0x1788  C:\Windows\System32\shdocvw.dll - ok
17:13:36.0855 0x1788  [ 36943894F7C13594C0D2B99AC77A31FA, 2AC70D1FCFE9AEC422433B1B6CDE21140BDEA0AC42767D43EF378A12E6784486 ] C:\Windows\System32\Syncreg.dll
17:13:36.0855 0x1788  C:\Windows\System32\Syncreg.dll - ok
17:13:36.0871 0x1788  [ ED5B09923D8594CB7CE9073C361E74D3, 2C3DE0EC08023CB89850A776A2B0D28AC43BDDF65F1EF4FCA6034A6BAE85C220 ] C:\Windows\System32\WWanAPI.dll
17:13:36.0871 0x1788  C:\Windows\System32\WWanAPI.dll - ok
17:13:36.0887 0x1788  [ 3F5E5B619179E8BCE3F6D0A892CE3C69, 9DC664AE5CB67B3A0226A95064843AEA029DDF0735520A3BE51714D70C0B84EB ] C:\Windows\System32\SkyDrive.exe
17:13:36.0888 0x1788  C:\Windows\System32\SkyDrive.exe - ok
17:13:36.0905 0x1788  [ 1C01B1A404CFFCE8775CAAF2C7294320, 0883C72734F7E6FE66D35AC04B8828C713DBF5D95DF976FB1FCC41C5110D5644 ] C:\Windows\System32\SkyDriveTelemetry.dll
17:13:36.0905 0x1788  C:\Windows\System32\SkyDriveTelemetry.dll - ok
17:13:36.0921 0x1788  [ A08E04BD42A1C863E852898A53BEE1CC, 6C4E099C35BAB306D16F389A514BED5A13BCC823D7575CC7206C16C39F0F9120 ] C:\Windows\System32\AltTab.dll
17:13:36.0921 0x1788  C:\Windows\System32\AltTab.dll - ok
17:13:36.0937 0x1788  [ 0D12DC2A06A55D4E53E69471E33A9C9A, 2C2CC0E9C32DC0361565D66C95DA8384D7360DAD8F1D2ED91E1B4CA139551EB6 ] C:\Windows\System32\SyncEngine.dll
17:13:36.0937 0x1788  C:\Windows\System32\SyncEngine.dll - ok
17:13:36.0950 0x1788  [ 14B5D6506A366585F8D6B6097530F7F2, FE159BE642B86F0EF47E9CDD828FE868753EE0F14506565F2D4AF7A311EA9F23 ] C:\Windows\System32\SearchProtocolHost.exe
17:13:36.0951 0x1788  C:\Windows\System32\SearchProtocolHost.exe - ok
17:13:36.0968 0x1788  [ 5C81139C56651B8772318A9766A372CE, 1145C92642E76072CE9CD2004FB893538AB474CA4EA5E7F1751E93D21CDF0D06 ] C:\Windows\System32\msshooks.dll
17:13:36.0968 0x1788  C:\Windows\System32\msshooks.dll - ok
17:13:36.0984 0x1788  [ 2CC0E5DC1650A5247638C8B1C1004828, 15B747A6630D648BE98FF974D869D61B23E4BF10AB0FD828144661980BE10C19 ] C:\Windows\System32\WPDShServiceObj.dll
17:13:36.0984 0x1788  C:\Windows\System32\WPDShServiceObj.dll - ok
17:13:37.0002 0x1788  [ 784AD7AB320F7453A1856097589A25A0, E1C3DD4A5F5163C8BEA56C54AFA4201FDA62D79896C30A100398F5AA915DC9EE ] C:\Program Files\Microsoft Office 15\root\office15\MAPISHELL.DLL
17:13:37.0002 0x1788  C:\Program Files\Microsoft Office 15\root\office15\MAPISHELL.DLL - ok
17:13:37.0020 0x1788  [ 0E37FBFA79D349D672456923EC5FBBE3, 8793353461826FBD48F25EA8B835BE204B758CE7510DB2AF631B28850355BD18 ] C:\Program Files\Microsoft Office 15\root\office15\msvcr100.dll
17:13:37.0020 0x1788  C:\Program Files\Microsoft Office 15\root\office15\msvcr100.dll - ok
17:13:37.0037 0x1788  [ 1629E70C423461DC7480A495FED8BC24, 09EC69E602AED4ACBD22814F915A3211851676C3B682DEF85B8B5B0063E0C577 ] C:\Windows\System32\SearchFilterHost.exe
17:13:37.0037 0x1788  C:\Windows\System32\SearchFilterHost.exe - ok
17:13:37.0055 0x1788  [ FA0C555DF511A6D4F97745D15A44A977, 417020DEE0CDF1B8A1BF663AF5D47107D465616060A6A992F53008D471C92822 ] C:\Windows\System32\winbici.dll
17:13:37.0055 0x1788  C:\Windows\System32\winbici.dll - ok
17:13:37.0072 0x1788  [ 563BC826684C36FE69E57A3DEA21A58F, 19B3F0651488618A72B27CAD619FB6169AC57919B4442EC14C8904C7AA100D08 ] C:\Windows\System32\loadperf.dll
17:13:37.0073 0x1788  C:\Windows\System32\loadperf.dll - ok
17:13:37.0089 0x1788  [ C41BDB3963A03443B76D991E0C6A0CC1, 949C597FE025BC6DE9943B84EC3E70B7FA07D06D1DED3F8A519D65B9EE8FBEB0 ] C:\Windows\System32\SettingMonitor.dll
17:13:37.0089 0x1788  C:\Windows\System32\SettingMonitor.dll - ok
17:13:37.0105 0x1788  [ F1D70EC713A9FB006B5825E6270EF2D1, 0DB960FF86940FFFFCCC6C3C8C15EDF0F36BBED894E8414B29004DCEDE6CF137 ] C:\Windows\System32\pnidui.dll
17:13:37.0106 0x1788  C:\Windows\System32\pnidui.dll - ok
17:13:37.0124 0x1788  [ D96F08E02B9F1C410F6B7124C97E7E0B, 9430D9138764FB5DA427865D89FD20A66D7FB624BB8462359B1C577C531E9B6D ] C:\Windows\System32\mssprxy.dll
17:13:37.0124 0x1788  C:\Windows\System32\mssprxy.dll - ok
17:13:37.0143 0x1788  [ 4739A0A6A9CDFA27594FF7CFB76FCCA5, 47349FE8FB53DF4C93D7A2C951A8C1A9C24465E9386AA8DB8E25274FE5B9BFC5 ] C:\Windows\System32\ieframe.dll
17:13:37.0143 0x1788  C:\Windows\System32\ieframe.dll - ok
17:13:37.0160 0x1788  [ B95D112E19CFEC74692F7791ABBB03BE, 4BF319AE1043136548F1739F9B831162728C712CF6FD1076D2B88F689CFCCB5F ] C:\Windows\System32\mssph.dll
17:13:37.0160 0x1788  C:\Windows\System32\mssph.dll - ok
17:13:37.0176 0x1788  [ C3235DCF822A755E297BB4DADD0C984C, 2DA5323A539E2B85EB53C2AC5FC0164CAC1DB32FDED48CB9BA7906186CAC1E3C ] C:\Windows\System32\MSWB7.dll
17:13:37.0176 0x1788  C:\Windows\System32\MSWB7.dll - ok
17:13:37.0193 0x1788  [ 769E0E0B76AB47CA094E23B11B0AB311, 593089BCCEFFED3E7C403D486D19BF905790F8C6DA9474C28E4F9E23B09B3D54 ] C:\Windows\System32\NaturalLanguage6.dll
17:13:37.0193 0x1788  C:\Windows\System32\NaturalLanguage6.dll - ok
17:13:37.0203 0x1788  [ 6DB72520A1C358023CF34D95DDEFB2F5, 25CE0FD799C3F32063E617BB1A16CAE03DAE21B61A34988805EE621EE2F7A3C0 ] C:\Windows\System32\wlidsvc.dll
17:13:37.0204 0x1788  C:\Windows\System32\wlidsvc.dll - ok
17:13:37.0219 0x1788  [ 3F92DAAFBCF62CD5C71128B934AF3EAF, D7FA0B242879063C47BA5032D5C6FA6060F453A0650BA3CA7D48D1C7F6E97862 ] C:\Windows\System32\SkyDriveShell.dll
17:13:37.0219 0x1788  C:\Windows\System32\SkyDriveShell.dll - ok
17:13:37.0236 0x1788  [ 958F80256B7C28634E0E0882F9CA5E93, FFB4AA2789DE9F8C98818C67A75E87110B9ADFF45E327328D47BEEA6F97F6C4D ] C:\Windows\System32\ActionCenter.dll
17:13:37.0236 0x1788  C:\Windows\System32\ActionCenter.dll - ok
17:13:37.0253 0x1788  [ AE7C7ABEB4B107629A44F858E276A39E, C1070EC16767954B32143DC860BE49FC7BDCE7503CA763296B6B046072AF5F5C ] C:\Windows\System32\AepRoam.dll
17:13:37.0253 0x1788  C:\Windows\System32\AepRoam.dll - ok
17:13:37.0272 0x1788  [ 9E5CFBFB6B854124740DDEDC4E4EF80E, 9512CF6C381BF86BFC1F098B6C3A5116285E10E2EC30C0A259C61C3C61840556 ] C:\Windows\System32\bthprops.cpl
17:13:37.0272 0x1788  C:\Windows\System32\bthprops.cpl - ok
17:13:37.0291 0x1788  [ 50B6B1D4EFCB81298DE7F9415879C51B, D0293269072A7BA8E3A5281AF0D48E18989E9CB334E6A95E17122EE493D46B32 ] C:\Windows\System32\mssvp.dll
17:13:37.0291 0x1788  C:\Windows\System32\mssvp.dll - ok
17:13:37.0309 0x1788  [ 843DA0425DC59CD8AD1D4BA25B7B3BAB, 2FAAB1F464FC5D0D297224B67254AA51A33DE84BC527486030019DBA2FF33992 ] C:\Windows\System32\linkinfo.dll
17:13:37.0309 0x1788  C:\Windows\System32\linkinfo.dll - ok
17:13:37.0327 0x1788  [ E3CB224F6A2E8B88EB035539BF363C00, 38C0A1216D1D24E2FBFC11E0B28D88796804C01BC44A96D714AE9E3C8D195FDA ] C:\Windows\System32\networkexplorer.dll
17:13:37.0327 0x1788  C:\Windows\System32\networkexplorer.dll - ok
17:13:37.0344 0x1788  [ 80B91B3933496CC95079381954677D10, 0F6F25F87A93BC9F2C800D7885611098A1107598E9F8F6FAFC1EB1F4EEA85360 ] C:\Windows\System32\PackageStateRoaming.dll
17:13:37.0344 0x1788  C:\Windows\System32\PackageStateRoaming.dll - ok
17:13:37.0362 0x1788  [ 54B14E239DB82DD1B1A3BC8818E56503, DCF7D82D4284029082D83863E5C173B50B9471FAF3692422BBEB713FE2FC7DE9 ] C:\Windows\System32\srchadmin.dll
17:13:37.0362 0x1788  C:\Windows\System32\srchadmin.dll - ok
17:13:37.0379 0x1788  [ 423F30B7B921DC2D833CF1373109109F, 2BBB2F10A0AB23905CE374E8B8A298E668D1FEC0C809F58A7BC531D7AB55CCCF ] C:\Windows\System32\SyncCenter.dll
17:13:37.0379 0x1788  C:\Windows\System32\SyncCenter.dll - ok
17:13:37.0396 0x1788  [ 484F71331AF6FD5B5914A0DA1AA43CEA, 39916658EE074D56A9F1647B3D8BFFE76F8280914581A913299D2B5AB930F026 ] C:\Windows\System32\imapi2.dll
17:13:37.0396 0x1788  C:\Windows\System32\imapi2.dll - ok
17:13:37.0412 0x1788  [ A19C33C9FBD061AB7CCC9D85FFC27C56, 7EF0735B2797A7D1B89528F42C1B3A7DBCA9F901524C9F1E82C8303CEA8668FC ] C:\Windows\System32\hgcpl.dll
17:13:37.0412 0x1788  C:\Windows\System32\hgcpl.dll - ok
17:13:37.0428 0x1788  [ 3EB1E5CE667345E91395801A8FB97518, 0E1D8E3AFA85AF4182419F5F7A88A3452C15D63F072FABF530A5E0635861EE5D ] C:\Windows\System32\provsvc.dll
17:13:37.0428 0x1788  C:\Windows\System32\provsvc.dll - ok
17:13:37.0444 0x1788  [ AE5639082FFE24B16321DE3ECC595895, E2032B5812109CE5C4AD526395D95524739964495B4FEEF86608A8BDB886AF98 ] C:\Windows\System32\ntshrui.dll
17:13:37.0444 0x1788  C:\Windows\System32\ntshrui.dll - ok
17:13:37.0455 0x1788  [ CAD2914D96AD61E43DE2686AEC822721, 158E567C52DDCC296B5BA15DB7C78089487560B84F93DAAF1046B97DD2AAF5CF ] C:\Windows\System32\gameux.dll
17:13:37.0456 0x1788  C:\Windows\System32\gameux.dll - ok
17:13:37.0473 0x1788  [ 3342A2B6D33FB77979D61295B285E98D, 4F9BAE05FF1BAFAA3BC026AAC88E4AE6D855731D5F5A894039F79BB41EAD922C ] C:\Windows\System32\msiltcfg.dll
17:13:37.0474 0x1788  C:\Windows\System32\msiltcfg.dll - ok
17:13:37.0491 0x1788  [ 35A41581AAFEE273E3D291F60242B1DD, B1D30389BD13A5967426718936A0F0BBBDDC659543A8C68E3D3C7D4D5457BF31 ] C:\Users\nici_st\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll
17:13:37.0491 0x1788  C:\Users\nici_st\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll - ok
17:13:37.0509 0x1788  [ 57EE6061B15D0B89421BBF3364E330D5, 8F5218359CC3DED01BA6AB371347069C280C604FA1E7F0933EE388C3FFDEA81B ] C:\Windows\System32\EhStorShell.dll
17:13:37.0509 0x1788  C:\Windows\System32\EhStorShell.dll - ok
17:13:37.0526 0x1788  [ C363FE0A60158855B75809D6985867F9, DD00093F4A9D5CE5433E8F6F5962543D651A42DDA275B7A63B64320DA56DE3B1 ] C:\Windows\System32\drprov.dll
17:13:37.0526 0x1788  C:\Windows\System32\drprov.dll - ok
17:13:37.0543 0x1788  [ 1467236922B38B4706BF2539D7BAC4B3, 51338A34D36AF907C1949DF7DC57A06DD50E529EFAAAC287907D9D6D21C66E17 ] C:\Windows\System32\davclnt.dll
17:13:37.0543 0x1788  C:\Windows\System32\davclnt.dll - ok
17:13:37.0561 0x1788  [ E0943319D7BDC576E163783575936373, 4B90EF49180D2AE9294E8340D620ABC698313F4D28B16D3765E7B2DDC1A82109 ] C:\Windows\System32\ntlanman.dll
17:13:37.0562 0x1788  C:\Windows\System32\ntlanman.dll - ok
17:13:37.0580 0x1788  [ 6E0AF3819DC1B9A20657ED3193C8F03B, E7031ECBBDDD4E6966AF97C7864106B545A2A9B7786A4F2C10FAAD9791289B1A ] C:\Windows\System32\davhlpr.dll
17:13:37.0580 0x1788  C:\Windows\System32\davhlpr.dll - ok
17:13:37.0598 0x1788  [ 3F34F43D384363BC610186B8DA3FB46A, 8F4B4EBAA5DCAB500E0141893676DC300BC0CDE7E5EC84513FA01A1C7AF21679 ] C:\Windows\System32\CertPolEng.dll
17:13:37.0600 0x1788  C:\Windows\System32\CertPolEng.dll - ok
17:13:37.0616 0x1788  [ CB28FE372A0DC085C59CF20D38A4EBF9, A28BA9BDDF62B4479846705D99986AC19D541006CEAA966EFB0BC41AD9DE379C ] C:\Windows\System32\apprepapi.dll
17:13:37.0616 0x1788  C:\Windows\System32\apprepapi.dll - ok
17:13:37.0632 0x1788  [ E03919601CCC72B0B399AD29C7F6D551, F5A9443EA8E9C7B215E291A46E17F542CC27E2014A0D7F48BCD9EACBB31029B6 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavTray.exe
17:13:37.0633 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavTray.exe - ok
17:13:37.0652 0x1788  [ ED5C5F90CD146C40F0936D398A6C04C9, 68E6DDC91C6DCFC38DB6D33D7C9E558672D055168696FAEA3FBC842224649DBC ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Plugins\IPlug_Scan\IPlug_Scan.dll
17:13:37.0653 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Plugins\IPlug_Scan\IPlug_Scan.dll - ok
17:13:37.0671 0x1788  [ F477948B421F7EAD50B4E7F632CB0787, 6C720B86096A83B752CD9227D56C4284C5AD55F600EC9ACEE710707FB256C217 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Plugins\IPlug_Hips\IPlug_Hips.dll
17:13:37.0671 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Plugins\IPlug_Hips\IPlug_Hips.dll - ok
17:13:37.0689 0x1788  [ 4A0EDF37EB6A6AA38C4BDFC4AE07E915, CFC863E9B8C1B051E1F53AB44EC8FB52FE52405907CEAF82DAA2F50E746AF313 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\DirectUI.dll
17:13:37.0689 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\DirectUI.dll - ok
17:13:37.0700 0x1788  [ 9CC6FA6444A43DF8845AC739E816D5BC, 9BA8935D3A96540EF5362E39AE5699ECD3EEB35D8078F2F99FCEA87BBAC40153 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavPBMisc.dll
17:13:37.0700 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavPBMisc.dll - ok
17:13:37.0720 0x1788  [ 523BC16E85DDE0653078312D0EDABCE1, F0B8CF4A0E5218CD51A93E93DD4B19E0CD1C3BDDB36451362AC29009677C3C60 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavAdvTools.dll
17:13:37.0720 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavAdvTools.dll - ok
17:13:37.0737 0x1788  [ 81EAFE2AB97035654091F88862E7DE47, 594B7B28CBC2F51CBD63C13C756790B859A2D9FDD2048BE97C7F8DA943EB83CE ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Plugins\Plugin_Pop_Hips\Plugin_Pop_Hips.dll
17:13:37.0737 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Plugins\Plugin_Pop_Hips\Plugin_Pop_Hips.dll - ok
17:13:37.0756 0x1788  [ 2F7514BE2BA66BED375FC4F776713D27, 4560F6C28B7B07E2BE1ACA0045E5800FB27948489BF50DD4FEDE9506C12E1980 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Plugins\Plugin_Pop_OA\Plugin_Pop_OA.dll
17:13:37.0756 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Plugins\Plugin_Pop_OA\Plugin_Pop_OA.dll - ok
17:13:37.0776 0x1788  [ 2330B56F08F705C33C34F7B41D829DB7, 33DB5111E282395348C373ECF0710814A5FE4228E453D0E0F64BA1745E70265D ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Pulgin_Dark_DeleteFileTip.dll
17:13:37.0777 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Pulgin_Dark_DeleteFileTip.dll - ok
17:13:37.0795 0x1788  [ BEEE47E27874A948AA9F4E295802AC28, C79D0A0C92E26DECE04662D57B7FC730FCA2AE4E28770F7E52F4956CE5AB1E37 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Plugins\Plugin_Pop_Download\Plugin_Pop_Download.dll
17:13:37.0795 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Plugins\Plugin_Pop_Download\Plugin_Pop_Download.dll - ok
17:13:37.0813 0x1788  [ A44C8FBC319F83912F64AB398BF86C24, 1FC6F5664D927369EA5485804DDC3C7B4B582E601B823F5F5DC4BB9D6A424178 ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Plugins\Plugin_USBProtect\Plugin_USBProtect.dll
17:13:37.0813 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Plugins\Plugin_USBProtect\Plugin_USBProtect.dll - ok
17:13:37.0830 0x1788  [ 123D21639682641705546CFFD32956F9, 549C19ADF268E3F9AFFC2FFC0BFE5024C511A3F1A701F64EFA4D10B5D1691A4C ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Plugins\Plugin_Adp\Plugin_HipsAdp.dll
17:13:37.0830 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Plugins\Plugin_Adp\Plugin_HipsAdp.dll - ok
17:13:37.0852 0x1788  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] C:\Users\nici_st\AppData\Local\Dropbox\Update\DropboxUpdate.exe
17:13:37.0853 0x1788  C:\Users\nici_st\AppData\Local\Dropbox\Update\DropboxUpdate.exe - ok
17:13:37.0871 0x1788  [ 815713B523B84B3BDFBEEDE424E8DAE2, 71F12645782F3817CB29FC501DD060A682F78C4F7B4E916C2B91AF7D9D0C8FAA ] C:\Users\nici_st\AppData\Local\Dropbox\Update\1.3.59.1\goopdate.dll
17:13:37.0871 0x1788  C:\Users\nici_st\AppData\Local\Dropbox\Update\1.3.59.1\goopdate.dll - ok
17:13:37.0889 0x1788  [ A8880785A80185B14D12AB330D88FF9C, BAD26B5499B53ED6E4AF1EB4B5B7BB056D9CB0B8455E8FB3ACD763A9290305DF ] C:\Users\nici_st\AppData\Local\Dropbox\Update\1.3.59.1\DropboxCrashHandler.exe
17:13:37.0889 0x1788  C:\Users\nici_st\AppData\Local\Dropbox\Update\1.3.59.1\DropboxCrashHandler.exe - ok
17:13:37.0905 0x1788  [ E4CEFA3ED555AB9F39DF2AB4E5F85F98, B04F07F5D2339846756C69AC0D4A0454923117075746CBE497CF96EB3A30C4B1 ] C:\Windows\System32\mstask.dll
17:13:37.0905 0x1788  C:\Windows\System32\mstask.dll - ok
17:13:37.0922 0x1788  [ 842897D3785C0ADE5021263268B59911, C691324618B66A5B9D5B54331F84AC97E1B20E7601B7A441C17F4BC32382FB4E ] C:\Windows\System32\SettingSyncHost.exe
17:13:37.0922 0x1788  C:\Windows\System32\SettingSyncHost.exe - ok
17:13:37.0938 0x1788  [ 6DA643A87AC80E8A56E9BE917E476A05, FCC717213457F193A519FA11078EAAE1BC2C831E6E2E3AB65990C546AF993A97 ] C:\Windows\System32\fdPHost.dll
17:13:37.0938 0x1788  C:\Windows\System32\fdPHost.dll - ok
17:13:37.0956 0x1788  [ 6DBF25155569605CA62F6607B84BF421, 609E3C89856510EF9EF77F90390AD315D74808F89C2BDB9EA23E4519087CBD09 ] C:\Windows\System32\FDResPub.dll
17:13:37.0956 0x1788  C:\Windows\System32\FDResPub.dll - ok
17:13:37.0967 0x1788  [ A0A58A7EF82188E276F494966059FCE4, D3267367916225333A75AC4A38ADD5E028D07D0B3AEE4570934967693BCB93A8 ] C:\Windows\System32\fdWSD.dll
17:13:37.0967 0x1788  C:\Windows\System32\fdWSD.dll - ok
17:13:37.0983 0x1788  [ 150AA4B3E8BBA095EA4503F25E2795F0, CFC4A1EB88C84B84FDD810BC45EA6685890B31EADF825729471ED975D150B26A ] C:\Windows\System32\WSDApi.dll
17:13:37.0983 0x1788  C:\Windows\System32\WSDApi.dll - ok
17:13:38.0001 0x1788  [ 92B29E6BE97F5B2C5894904D1447BBFE, C8BF1ABDC9EDE0264ED7A818F61BB84BA2D42F160FDEA45DE6ED6EF816A6425E ] C:\Program Files\Google\Chrome\Application\chrome.exe
17:13:38.0001 0x1788  C:\Program Files\Google\Chrome\Application\chrome.exe - ok
17:13:38.0017 0x1788  [ 7E68372DF4B4C18DF9B83D92358A58BD, 2BF8B0E28CBAB8A893945D9D2ACB9FE5085BDDCCF760C995D960BFEB7BF0016A ] C:\Windows\System32\webservices.dll
17:13:38.0017 0x1788  C:\Windows\System32\webservices.dll - ok
17:13:38.0033 0x1788  [ 445FCF5E73412AD183F44D6938EB8E0A, 79D029367E7A0E52B03D342519E637175360F071FA16E32C7C75DA1486E586C2 ] C:\Windows\System32\fdSSDP.dll
17:13:38.0034 0x1788  C:\Windows\System32\fdSSDP.dll - ok
17:13:38.0049 0x1788  [ 4F58A413C74FA8D3DC7CEBA3A6602F6D, D07B16BB5177DC1A10808397F116480B18B80F3F9E3587E4BBB805D10A1912A6 ] C:\Windows\System32\httpapi.dll
17:13:38.0050 0x1788  C:\Windows\System32\httpapi.dll - ok
17:13:38.0067 0x1788  [ 2BC566829965B30D0A82058F2EAE60EA, 3FB02C77002FA5037C6B2AC7DD21A9D2572510752733BA7DD27D3384BC25BAFC ] C:\Program Files\Google\Chrome\Application\55.0.2883.87\chrome_elf.dll
17:13:38.0067 0x1788  C:\Program Files\Google\Chrome\Application\55.0.2883.87\chrome_elf.dll - ok
17:13:38.0087 0x1788  [ F27B9CB264A87758117160012AE9C1DB, DF7429EB33F066BE4D73EB2995A7750004F9EE2D5AA649BE5A075A427D9DDDE9 ] C:\Windows\System32\NcdAutoSetup.dll
17:13:38.0087 0x1788  C:\Windows\System32\NcdAutoSetup.dll - ok
17:13:38.0105 0x1788  [ 221A8EC1168D496912A40B1C8B224D7F, 1647666D0A28F4C7E6C8FC818B392E6F3A0D17AD47EFB678E859BF750B4A7F1C ] C:\Windows\System32\ListSvc.dll
17:13:38.0105 0x1788  C:\Windows\System32\ListSvc.dll - ok
17:13:38.0121 0x1788  [ B2C2E356BC54DFE7A99A5C263D72842B, 929768030A84A2583719C7151DFBDA25E72241538D66414C516B64B1810C9292 ] C:\Windows\System32\P2P.dll
17:13:38.0121 0x1788  C:\Windows\System32\P2P.dll - ok
17:13:38.0138 0x1788  [ EAF04ACC90A9786BF11397A235827989, 5F90F55AD27F04C5B1AFC72CFDFB38EDB87C75A9EFD3D98DF235CC419E9AEE8E ] C:\Windows\System32\dtsh.dll
17:13:38.0138 0x1788  C:\Windows\System32\dtsh.dll - ok
17:13:38.0155 0x1788  [ 6888E503E79C85127454313B737D7440, 654277384C91C5BB6403531A1C5669EC97906CA58497712A521A65F3AAF607FE ] C:\Windows\System32\fdProxy.dll
17:13:38.0155 0x1788  C:\Windows\System32\fdProxy.dll - ok
17:13:38.0171 0x1788  [ B93F33C0156F135D55316C6B5D1199CF, 23B890D7A7D96CC549229427CEEF571A1135939A042BB05D79C54FB7250C5193 ] C:\Windows\System32\pnrpsvc.dll
17:13:38.0171 0x1788  C:\Windows\System32\pnrpsvc.dll - ok
17:13:38.0188 0x1788  [ 5F19AE5358B1F376FE3EA4D671DFC4D6, 845B740A785CCACB7A7E6C67B97BA741107F2BD976847A4D09DD7FDB943D3ACD ] C:\Windows\System32\fhlisten.dll
17:13:38.0188 0x1788  C:\Windows\System32\fhlisten.dll - ok
17:13:38.0205 0x1788  [ 37E9D54542B3E79D0DAD0B95EA2AFC14, B73F3F0EAE00D28F26544A2F2AE3C2810650C96DB3D036BFEAD80F784957861D ] C:\Windows\System32\hgprint.dll
17:13:38.0205 0x1788  C:\Windows\System32\hgprint.dll - ok
17:13:38.0214 0x1788  [ C8AF4695ED4A76D295DEFE7DA3BF0B34, 1322A29491D627340FDADA12A16BD619766E5BFCE7F7B4CBA1505AD971471676 ] C:\Windows\System32\IdListen.dll
17:13:38.0214 0x1788  C:\Windows\System32\IdListen.dll - ok
17:13:38.0232 0x1788  [ 5DBE7FC7D9EB80289916EEB521FD874A, 94985A3D4D2FD44ADBD451B984C0ECB39446F8A9C2BE31CA0D2D6E62D0CC8965 ] C:\Windows\System32\DAFWSD.dll
17:13:38.0232 0x1788  C:\Windows\System32\DAFWSD.dll - ok
17:13:38.0249 0x1788  [ 2B9B4271E23C69F9D121B59476968EAA, D2CDB4EFE4C3CC2BCBCDD34E1E2A362A24A4E1EB386577719FEEC5CEFB388992 ] C:\Program Files\Google\Chrome\Application\55.0.2883.87\chrome.dll
17:13:38.0249 0x1788  C:\Program Files\Google\Chrome\Application\55.0.2883.87\chrome.dll - ok
17:13:38.0267 0x1788  [ 7CA1665B597457EA1CB05B076C61B15D, 9954502612BB4123A8AFB908A0FCD970351C13478BABF52B43685FCA49369365 ] C:\Windows\System32\p2psvc.dll
17:13:38.0267 0x1788  C:\Windows\System32\p2psvc.dll - ok
17:13:38.0285 0x1788  [ FE29784989D710BBCF35734BB5EA1BDF, A99FB30356514BDB14E9FD192AD3E600C6B083C7D0CB6E57F83F120C90472B03 ] C:\Windows\System32\P2PGraph.dll
17:13:38.0285 0x1788  C:\Windows\System32\P2PGraph.dll - ok
17:13:38.0301 0x1788  [ 16B881B874E3FCE2D4BD1869258E63D9, 31086381597CDFAB56319C362A521219B2B9E8E524E55E298FEC82E3143D7CCA ] C:\Windows\System32\SettingSync.dll
17:13:38.0302 0x1788  C:\Windows\System32\SettingSync.dll - ok
17:13:38.0318 0x1788  [ D52676C1A7D6F864CA859FF4C6EC4399, F7554CE2ABADC0D81D887E704D10359E937011CCF994E188B75EC19576F39ABF ] C:\Windows\System32\WinSync.dll
17:13:38.0318 0x1788  C:\Windows\System32\WinSync.dll - ok
17:13:38.0335 0x1788  [ 9F6F0AE5857535C4125891232D76C12F, 4DC80DF22F3A6E2D0AAEA8CC4DE91664CAAAB0AD3617841451FBCBB631704177 ] C:\Windows\System32\credui.dll
17:13:38.0335 0x1788  C:\Windows\System32\credui.dll - ok
17:13:38.0354 0x1788  [ 264BF62E54F6D73A8956C1A39040E573, 6246E0A8330E8079F13946B10E24082BF0E32C80BB2672255EC157929191B143 ] C:\Program Files\Google\Chrome\Application\55.0.2883.87\chrome_watcher.dll
17:13:38.0354 0x1788  C:\Program Files\Google\Chrome\Application\55.0.2883.87\chrome_watcher.dll - ok
17:13:38.0371 0x1788  [ D3A0C6428EFA6FEBB2A06B7A2B3A24FF, CA4E061008052C85EEB398F790A897EA7609AF75530A15E9B3C8D7EE0CF73B34 ] C:\Windows\System32\Wpc.dll
17:13:38.0371 0x1788  C:\Windows\System32\Wpc.dll - ok
17:13:38.0387 0x1788  [ F4F2CBB5FDE5AFFA4D01D13F1BD77CAA, DC69B1ADD3C1EF148B2C182D335F5EC6F3EDD54AAE89B3A6972E23C4597600F0 ] C:\Windows\System32\drttransport.dll
17:13:38.0387 0x1788  C:\Windows\System32\drttransport.dll - ok
17:13:38.0404 0x1788  [ 94E2CCD440457BFBB019EB3FD084E6BC, 36C94E8C90E7C6E268ED9CA07251CEAE3078CE0E0996EE1933325D7873173762 ] C:\Windows\System32\drt.dll
17:13:38.0404 0x1788  C:\Windows\System32\drt.dll - ok
17:13:38.0421 0x1788  [ F5589BCEFEE7D6C74E6C929F6FD35E3F, 9063DDC28834C75BE1119666ADF346BB155D54BBC967BBA2F5B1ABBDC4E1C93F ] C:\Windows\System32\mscms.dll
17:13:38.0421 0x1788  C:\Windows\System32\mscms.dll - ok
17:13:38.0439 0x1788  [ BF0319C91260940E9933B216B3A48417, 9576EA46D4CAF738CB49BA3CA9D3B9D6C36535CF0E084DAF872BA9D3B6909413 ] C:\Program Files\Google\Chrome\Application\55.0.2883.87\chrome_child.dll
17:13:38.0439 0x1788  C:\Program Files\Google\Chrome\Application\55.0.2883.87\chrome_child.dll - ok
17:13:38.0457 0x1788  [ 3F86C7FC92E86227D7C9DA28ABC4B870, 502850CCA72F07638A3DC5E19027E5D97F37C29E85DF610DD2CA37BEE7EE57E0 ] C:\Windows\System32\mf.dll
17:13:38.0457 0x1788  C:\Windows\System32\mf.dll - ok
17:13:38.0466 0x1788  [ 44429583601975E49B7AA87AACADA15E, 95B9EBCF35ABA3DAE87C3C676D7B620C680340F90D4DE6E0046665C9EB6EBB24 ] C:\Windows\System32\mfplat.dll
17:13:38.0466 0x1788  C:\Windows\System32\mfplat.dll - ok
17:13:38.0483 0x1788  [ 6003B39C17595C0F16F7C60B39B8F431, E8C3B2F482C3CED08BB161B4CA12A187203904BAE17C0BA261E5610E2D844F49 ] C:\Windows\System32\RTWorkQ.dll
17:13:38.0483 0x1788  C:\Windows\System32\RTWorkQ.dll - ok
17:13:38.0500 0x1788  [ 70C52FDEA869A3CD08229F0326E90F64, 1F418587B7B164A824BF7DD7BC07BD12E553DDB7BCFDCA06E76363B46E13ACB6 ] C:\Windows\System32\msmpeg2vdec.dll
17:13:38.0500 0x1788  C:\Windows\System32\msmpeg2vdec.dll - ok
17:13:38.0517 0x1788  [ EA56E98D7CAF1938E9B78F549243BC86, E5F246B6B09B6FF38A0624CC614AF943D32A4A0A29CAE2CD26769E56B50C5A8E ] C:\Windows\System32\dxva2.dll
17:13:38.0517 0x1788  C:\Windows\System32\dxva2.dll - ok
17:13:38.0533 0x1788  [ 93061910095FFABB9577A419393DF12A, 3E2A371CA108DE14785A3789656A2F7C1EB64DFDB2B1CA8487B29D4A500C0F8E ] C:\Windows\System32\msvproc.dll
17:13:38.0533 0x1788  C:\Windows\System32\msvproc.dll - ok
17:13:38.0550 0x1788  [ 08B8F2E5FAAC73EF1AFD99B2AEC104FD, 82F2D985D7D3F45258C48CB3CE35F9FAE600EFD2935577E583BE673270B2BF5C ] C:\Windows\System32\D3DCompiler_47.dll
17:13:38.0551 0x1788  C:\Windows\System32\D3DCompiler_47.dll - ok
17:13:38.0569 0x1788  [ 91F071416758BB518A7E1FE326109B76, E52D90DA423A1C4BAAE6CFC63DEC4A4E066F00BC4BE7093D20F7C67DCBD9A196 ] C:\Program Files\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
17:13:38.0569 0x1788  C:\Program Files\Google\Chrome\Application\55.0.2883.87\libglesv2.dll - ok
17:13:38.0586 0x1788  [ FDB1465B7D9F4050E940DFF339696A05, 539479B678D796EC4832CE7643EDF04F8B2D84D166F12111941F4D3DB4EFC39F ] C:\Windows\System32\bdesvc.dll
17:13:38.0586 0x1788  C:\Windows\System32\bdesvc.dll - ok
17:13:38.0604 0x1788  [ 0936955770489965EB9041D00636369D, 768DA3EBFF94F394BC43B658CF738B0B195189FFE51CA8FFE6728AFED71D86F7 ] C:\Windows\System32\d3d9.dll
17:13:38.0604 0x1788  C:\Windows\System32\d3d9.dll - ok
17:13:38.0624 0x1788  [ C02585D6BB5A6D7B2F88C1299A5B1B79, 792A02F06591922E6E05981D45EE93BBF5F8FFB113AEFB718D809AFD02D71EDD ] C:\Program Files\Google\Chrome\Application\55.0.2883.87\libegl.dll
17:13:38.0624 0x1788  C:\Program Files\Google\Chrome\Application\55.0.2883.87\libegl.dll - ok
17:13:38.0641 0x1788  [ EA1B27A1BA20419C6E525A1D69BAC76E, 48EF2FF395CDA7A11B288C1B1F85F2990D719F81675AD09AEC2E5F19FEB3C255 ] C:\Windows\System32\BdeUISrv.exe
17:13:38.0641 0x1788  C:\Windows\System32\BdeUISrv.exe - ok
17:13:38.0659 0x1788  [ 6522516F3432348E2AA9CBB9416D52D8, 28E9F02BB580780F48D824E652D67FD2C2652A0C48C94ED75BEC7BA6BC780CA7 ] C:\Windows\System32\SystemEventsBrokerClient.dll
17:13:38.0660 0x1788  C:\Windows\System32\SystemEventsBrokerClient.dll - ok
17:13:38.0676 0x1788  [ 3DE0CBE59DD79A5F2E0A7031CE0B87B2, A7DF044E3D10280000B3D1EC6EAD3FF91DE013DB0A02F03B777E8B884A352C11 ] C:\Windows\System32\ReInfo.dll
17:13:38.0676 0x1788  C:\Windows\System32\ReInfo.dll - ok
17:13:38.0693 0x1788  [ 7BC113AF92B09D3A63476BC4EF88079F, DEB9F04E561E90C2E381D7282097A5CF000AB1C4802BDCE9163BC703FCDA8312 ] C:\Windows\System32\msxml3.dll
17:13:38.0693 0x1788  C:\Windows\System32\msxml3.dll - ok
17:13:38.0709 0x1788  [ 720578C4EBF7EE857E87B4DF49B8C5AE, A9CDF548C7EADE327F24DEC68C6C49509DE5EA96BF29769BEDF0617547F7E5C5 ] C:\Windows\System32\keyiso.dll
17:13:38.0709 0x1788  C:\Windows\System32\keyiso.dll - ok
17:13:38.0720 0x1788  [ DF417DD496AA2E4D97D6A1C3A08B8291, 72C7278AB7DE4CE873E22E701EFD49FDDA7E4DAA289D39E5F067B12108197DE1 ] C:\Program Files\LastPass\nplastpass.exe
17:13:38.0721 0x1788  C:\Program Files\LastPass\nplastpass.exe - ok
17:13:38.0737 0x1788  [ 1E7EA92B6B04DCC8F3A013B3B463BCEF, 3EDFDBE80182323184E7704FD2B237C50B4CF1D244995B49B08B02F84A782E3A ] C:\Windows\System32\DafPrintProvider.dll
17:13:38.0737 0x1788  C:\Windows\System32\DafPrintProvider.dll - ok
17:13:38.0756 0x1788  [ 8129656D3CBD7F9FD71A80D0B8267B10, 3CF9C3C49CAB099E15C021341B9B52074CF43A2572EFA022046BA464D9F5AAF2 ] C:\Windows\System32\localspl.dll
17:13:38.0756 0x1788  C:\Windows\System32\localspl.dll - ok
17:13:38.0773 0x1788  [ 0313371DFA9F6CD6C454B875E96F06E1, 5F12D0D68D0593B11DBE9FE36B2A78A4D964829C1E172579E5880F2FC4214D6A ] C:\Windows\System32\spoolss.dll
17:13:38.0773 0x1788  C:\Windows\System32\spoolss.dll - ok
17:13:38.0791 0x1788  [ 97C24995956DBAEC9E3C8B431F19A02E, 9683A9E4879A5C1B5EAC1132DB2983A0549D87A71373B3E5DD44B7F187D97DBC ] C:\Windows\System32\PrintIsolationProxy.dll
17:13:38.0791 0x1788  C:\Windows\System32\PrintIsolationProxy.dll - ok
17:13:38.0809 0x1788  [ 6A437E8991C407728B615F4D63AF36F7, 357EB4CB1D058EBA1EAD5086E2E45D50A9157782B3F4948BC28E76F68B110AB9 ] C:\Windows\System32\CNMLMAE.DLL
17:13:38.0809 0x1788  C:\Windows\System32\CNMLMAE.DLL - ok
17:13:38.0826 0x1788  [ 43E3E26DEF839B237FD9EE2BFBB7DAC8, 62A7F16D7922F2079772A4C3CC2B217A8752B9233435B7698BAB8B845C3A1CD7 ] C:\Windows\System32\CNMXLMAE.DLL
17:13:38.0826 0x1788  C:\Windows\System32\CNMXLMAE.DLL - ok
17:13:38.0844 0x1788  [ B3B13025E236417E8B6BC8E96D7773EF, F9FAA4BD2ECDD63118310B66B4AE44B1F9D2EB7ADB1922A9002B9A699BC2A453 ] C:\Windows\System32\CNMNPPM.DLL
17:13:38.0844 0x1788  C:\Windows\System32\CNMNPPM.DLL - ok
17:13:38.0861 0x1788  [ D2EE2FEFF8A1A35E6AC182D1746ED1B2, 7E8EB6CCC5CF2591DAD9016E773EAE4FE1A10CA3CDE6F987EE46C19ACA1AFB3C ] C:\Windows\System32\FXSMON.dll
17:13:38.0861 0x1788  C:\Windows\System32\FXSMON.dll - ok
17:13:38.0879 0x1788  [ 5FE1C9DFB8296D0B82F652D8844B8758, 9EC8D1615C1ADC59DEC83C00BBA6C8245BB477E4DA5F989EA107F01E2C57BEEF ] C:\Windows\System32\tcpmon.dll
17:13:38.0879 0x1788  C:\Windows\System32\tcpmon.dll - ok
17:13:38.0895 0x1788  [ 15F5399E5A8F5F9DF63DBFFB2BB93D13, 9D880AA558D6DC23FD96DA75C3BF1E93CF0B5176FAF859A6765F09E228BF84C8 ] C:\Windows\System32\snmpapi.dll
17:13:38.0895 0x1788  C:\Windows\System32\snmpapi.dll - ok
17:13:38.0912 0x1788  [ AA900A3E69CAE6CD76F42CDA144D43E0, 9109DB26B27667EE4E99570FA548E92941E31595A7BD2DA7F84C6951156E5651 ] C:\Windows\System32\wsnmp32.dll
17:13:38.0912 0x1788  C:\Windows\System32\wsnmp32.dll - ok
17:13:38.0928 0x1788  [ 706F418D2348D28FD243FD53AB2A2156, 28397A6A8F72084BC15BE98930726DAD0721F7D855EE3F677B009AD96D6071E9 ] C:\Windows\System32\usbmon.dll
17:13:38.0928 0x1788  C:\Windows\System32\usbmon.dll - ok
17:13:38.0944 0x1788  [ 3D7F7ECF9A109BE548E31B73D497331C, 806A5B8276C73C57F8E90A1914047795E87B109C15B572AD63032EB3AB07B3BA ] C:\Windows\System32\WSDMon.dll
17:13:38.0944 0x1788  C:\Windows\System32\WSDMon.dll - ok
17:13:38.0961 0x1788  [ AC71E783A9CDF141716C99E9D786D702, 640101E908083A0F38322F259428AF6B1BB2024101D49B88E9A19AD07FF033D4 ] C:\Windows\System32\drvstore.dll
17:13:38.0961 0x1788  C:\Windows\System32\drvstore.dll - ok
17:13:38.0971 0x1788  [ 40CF067C3A227639687FD9D4D483C55B, D5AB669A83C53ACF8B66EB31F72F833962C7388F312BE706FF6329B52A58ACB9 ] C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll
17:13:38.0971 0x1788  C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll - ok
17:13:38.0988 0x1788  [ 672DCEE749BF8A259448991B0297187D, D96259AAA52691F1DFAD34594DD87DF13FC5056C288982E896ADB039BF4F02A6 ] C:\Windows\System32\spool\prtprocs\w32x86\CNMPDAE.DLL
17:13:38.0989 0x1788  C:\Windows\System32\spool\prtprocs\w32x86\CNMPDAE.DLL - ok
17:13:39.0008 0x1788  [ C9B5CCFBF466D3A8D2399A2BA5D2A084, 7B04B2A8BFC58024320A17A2E46E1EF4EDD1BD1086459E93BC5741E4DC4D9D8E ] C:\Windows\System32\win32spl.dll
17:13:39.0008 0x1788  C:\Windows\System32\win32spl.dll - ok
17:13:39.0024 0x1788  [ 4BE78050B82266C5B0F27A078969943C, A3BB3EF5E556D2E991BA6E6B47DB8CD2D6DAB825AE62EDE8C20750AE2344D57D ] C:\Windows\System32\inetpp.dll
17:13:39.0024 0x1788  C:\Windows\System32\inetpp.dll - ok
17:13:39.0040 0x1788  [ 3264899FEAC73C636771F186AD240348, 080746BE9C23500EE162B5EC5844C0E9B63C406760AE4CDF69B860D8F02266DC ] C:\Windows\System32\VaultRoaming.dll
17:13:39.0041 0x1788  C:\Windows\System32\VaultRoaming.dll - ok
17:13:39.0058 0x1788  [ 19D7A32DB8C994749F9A35C5AAE525E5, DADFBD8FD9DF8C3F48F90E2D6A495DD3F8CD1A0797AE5C236D465F47E4A90EC1 ] C:\Windows\System32\vaultcli.dll
17:13:39.0059 0x1788  C:\Windows\System32\vaultcli.dll - ok
17:13:39.0077 0x1788  [ 644206F9803DDAD74394F3E095EC70B3, 7DA657F5ABAA22BE67389E38ECBD8936D4B2D70F88FA62716FE5F5C250CA6312 ] C:\Windows\System32\vaultsvc.dll
17:13:39.0077 0x1788  C:\Windows\System32\vaultsvc.dll - ok
17:13:39.0093 0x1788  [ 3686670235793F2C36E0FE8791D5F0B6, 75EE0D1905B7066F7728DA6D9F582C76AB886298AC6306CF338CAC6905B3AF03 ] C:\Windows\System32\fhcfg.dll
17:13:39.0093 0x1788  C:\Windows\System32\fhcfg.dll - ok
17:13:39.0109 0x1788  [ 7C1B3C841C053B53DDDF28ADBAF87818, 62B38EE007EBA68779C4493D8A6E3A415EC310EA403B507F1DEBA2DED864E363 ] C:\Windows\System32\InputMethod\SHARED\JpnKorRoaming.dll
17:13:39.0109 0x1788  C:\Windows\System32\InputMethod\SHARED\JpnKorRoaming.dll - ok
17:13:39.0122 0x1788  [ 76D0BAB3578CA05C92EE6A7E28C812E6, 21096FD503C3A95B9FAB9729FD1BA653B9D263F5BA8F50196417FFAA042ECF39 ] C:\Windows\System32\InputMethod\SHARED\IHDS.DLL
17:13:39.0122 0x1788  C:\Windows\System32\InputMethod\SHARED\IHDS.DLL - ok
17:13:39.0140 0x1788  [ 9D935FF4170E33A5F7FFC83F29BAF14C, 01580A74C848D08A964B59446BA06766EF9101BA936CE21FA21EC76FEB3C0DE8 ] C:\Windows\System32\SystemSettingsDatabase.dll
17:13:39.0141 0x1788  C:\Windows\System32\SystemSettingsDatabase.dll - ok
17:13:39.0159 0x1788  [ A45A4EB3B41B5621F4534CDD2C0FE096, 2DF0194CED1FA53D348808B1CE99BA477325CA888CFA60B36EC3EF04D42F7887 ] C:\Windows\System32\SettingsHandlers.dll
17:13:39.0159 0x1788  C:\Windows\System32\SettingsHandlers.dll - ok
17:13:39.0175 0x1788  [ 6CF44EB1277E011F8061A926531AE37B, A9D45BBEFDC8080BE8015E805F43221AA53AD657FEFB8031F91510EC2CD77A1B ] C:\Windows\System32\Winlangdb.dll
17:13:39.0175 0x1788  C:\Windows\System32\Winlangdb.dll - ok
17:13:39.0191 0x1788  [ 934D2CDCAADCF909D42EFE66E601835F, C777CB2C9E01583C4F588839DF1070720CD97E31F4418EDB204C2DEA4FB6E5E1 ] C:\Windows\System32\input.dll
17:13:39.0191 0x1788  C:\Windows\System32\input.dll - ok
17:13:39.0211 0x1788  [ A8736F1F79268C0CC46E6CE4ABDC283F, D78A90823C155EFF1C47E176F6EE13247B9B3D3E91461FE358C70182DEFF440F ] C:\Windows\System32\InputMethod\CHS\ChsRoaming.DLL
17:13:39.0211 0x1788  C:\Windows\System32\InputMethod\CHS\ChsRoaming.DLL - ok
17:13:39.0229 0x1788  [ 4CD660FA3B82FDC9ECCF2863AFAF09B5, AE9A15818C761304DC3411D869E8483AB57863CA1683FE9716327F740B1BC8FA ] C:\Windows\System32\wpninprc.dll
17:13:39.0229 0x1788  C:\Windows\System32\wpninprc.dll - ok
17:13:39.0240 0x1788  [ D38BDF3076B99305A11748FD8C6B187F, CB9D888BB57AB41D55246CB760BB58D7F0834043952131107C406F4EED9FC1BC ] C:\Program Files\FileZilla FTP Client\fzshellext.dll
17:13:39.0240 0x1788  C:\Program Files\FileZilla FTP Client\fzshellext.dll - ok
17:13:39.0258 0x1788  [ 9B1501F441AE89A8F5548E5A21E32BE7, B7D6B390C5B2F7B317B9A4AC2B2E378A9E72532348FA66F47433FEE812B92B3B ] C:\Program Files\Mozilla Firefox\firefox.exe
17:13:39.0258 0x1788  C:\Program Files\Mozilla Firefox\firefox.exe - ok
17:13:39.0275 0x1788  [ 4CE1483308AEF64E9DCE8FEF8C10BAEA, 97ACD996ACA9F5BE0C8F4C9A3D9B0504A7FD584797ACF7CB781145ADF568A7D3 ] C:\Program Files\Mozilla Firefox\mozglue.dll
17:13:39.0275 0x1788  C:\Program Files\Mozilla Firefox\mozglue.dll - ok
17:13:39.0293 0x1788  [ A84A8A708751E2CB1F2BB117E9B7F390, F656F0F98CF2510F4E0FE5D5666643028A6B8BAC50BF553C0A464456C0E82934 ] C:\Program Files\Mozilla Firefox\msvcp140.dll
17:13:39.0293 0x1788  C:\Program Files\Mozilla Firefox\msvcp140.dll - ok
17:13:39.0311 0x1788  [ B7EBC19A5B23D0D32FF014E30BE26061, 5695560A50ED9746696C0D647E55D77459F5981907C177D086DF36656A978B19 ] C:\Program Files\Mozilla Firefox\vcruntime140.dll
17:13:39.0312 0x1788  C:\Program Files\Mozilla Firefox\vcruntime140.dll - ok
17:13:39.0328 0x1788  [ E8CCECAC4F06679B9D5E77333D216EE0, 2CF24C6AAC48261AB04EB616E85DD707417697764F860FC29DD3955DD2C49226 ] C:\Program Files\Mozilla Firefox\api-ms-win-crt-environment-l1-1-0.dll
17:13:39.0329 0x1788  C:\Program Files\Mozilla Firefox\api-ms-win-crt-environment-l1-1-0.dll - ok
17:13:39.0346 0x1788  [ 65FE48962755451A1A5BAB26E6FD978D, 5A3D9A0A2C1F9B14CB52D9CCE92B761EC1FE0460EA7D994179C96648455EAD84 ] C:\Program Files\Mozilla Firefox\api-ms-win-crt-stdio-l1-1-0.dll
17:13:39.0346 0x1788  C:\Program Files\Mozilla Firefox\api-ms-win-crt-stdio-l1-1-0.dll - ok
17:13:39.0364 0x1788  [ A3ECCD7F2F2C45D1553055593278645A, D51DFD972E6DF5E8185DCE0B4EB26DCCB0527C5F1C63BC081677335F69B92B67 ] C:\Program Files\Mozilla Firefox\api-ms-win-crt-string-l1-1-0.dll
17:13:39.0364 0x1788  C:\Program Files\Mozilla Firefox\api-ms-win-crt-string-l1-1-0.dll - ok
17:13:39.0383 0x1788  [ 1028042A84AEFE816280F22A4517DC68, 4A88F73CAE12080B9A637F76F8AB1B8AC29829817FF03DDD611A25B6981EE573 ] C:\Program Files\Mozilla Firefox\api-ms-win-crt-math-l1-1-0.dll
17:13:39.0383 0x1788  C:\Program Files\Mozilla Firefox\api-ms-win-crt-math-l1-1-0.dll - ok
17:13:39.0402 0x1788  [ 2F10F2255271B09D58AF75F58476899C, 24BC147F7C8A2DFCBE9296D83CE75A1F2C02076D8F6E6C81F6032C927ED5888A ] C:\Program Files\Mozilla Firefox\api-ms-win-crt-runtime-l1-1-0.dll
17:13:39.0402 0x1788  C:\Program Files\Mozilla Firefox\api-ms-win-crt-runtime-l1-1-0.dll - ok
17:13:39.0421 0x1788  [ E0AEBA2D9D9AE584D6C1AA0F5929526B, 4ECA5B9E5BE5750B0BC03FD74B6D5E351CB6D70FD63D5F740A1A122F906390E0 ] C:\Program Files\Mozilla Firefox\api-ms-win-crt-utility-l1-1-0.dll
17:13:39.0422 0x1788  C:\Program Files\Mozilla Firefox\api-ms-win-crt-utility-l1-1-0.dll - ok
17:13:39.0439 0x1788  [ 94E386A317FAA200AA1DC270CE54E5FD, E4CCD13D5861E3E28984FC7263D79B580A0BC7BBE0D234ED8F1A69706EF908F3 ] C:\Program Files\Mozilla Firefox\api-ms-win-crt-convert-l1-1-0.dll
17:13:39.0439 0x1788  C:\Program Files\Mozilla Firefox\api-ms-win-crt-convert-l1-1-0.dll - ok
17:13:39.0458 0x1788  [ AAD41D33906CFDB31681CE8276648481, 242CB185643DF586A5F55735E8810B8D2B6B095C78BE206E42CDAAE7665BB2CF ] C:\Program Files\Mozilla Firefox\api-ms-win-crt-heap-l1-1-0.dll
17:13:39.0458 0x1788  C:\Program Files\Mozilla Firefox\api-ms-win-crt-heap-l1-1-0.dll - ok
17:13:39.0476 0x1788  [ BC75B80A80802146E79C383C94542F06, 81A7A98E11AE94236F34A82A0D450A1100A9B8E752205248DE0037A764B91A07 ] C:\Program Files\Mozilla Firefox\api-ms-win-crt-locale-l1-1-0.dll
17:13:39.0476 0x1788  C:\Program Files\Mozilla Firefox\api-ms-win-crt-locale-l1-1-0.dll - ok
17:13:39.0486 0x1788  [ 42153324A982F848D7A49BB7406125C2, FCD8B213E2E9962B84D1EEC4296BBEFDF4465398A235E118BE12C878FDC08C05 ] C:\Program Files\Mozilla Firefox\api-ms-win-crt-filesystem-l1-1-0.dll
17:13:39.0486 0x1788  C:\Program Files\Mozilla Firefox\api-ms-win-crt-filesystem-l1-1-0.dll - ok
17:13:39.0505 0x1788  [ B7E1023EBBF0E5018C58B5488C03A643, E7238F5E38D3991E9D6219255E8CD951D6DD431402C4B4B295A68BD43EFA3D48 ] C:\Program Files\Mozilla Firefox\api-ms-win-crt-multibyte-l1-1-0.dll
17:13:39.0505 0x1788  C:\Program Files\Mozilla Firefox\api-ms-win-crt-multibyte-l1-1-0.dll - ok
17:13:39.0523 0x1788  [ C8F1A3B19E5103751202010805BCE5C9, D5E2FB8495BBBFB66B2612CD5179C1A5F4746DCDD043ECD474363FFE4A8DEB4F ] C:\Program Files\Mozilla Firefox\api-ms-win-crt-time-l1-1-0.dll
17:13:39.0524 0x1788  C:\Program Files\Mozilla Firefox\api-ms-win-crt-time-l1-1-0.dll - ok
17:13:39.0542 0x1788  [ 015B30309491A911E75748AD69C9E680, DD32570B8183A8B117233333153DA29CC8D2AC5B1C868440DD852D9C3F77BAF5 ] C:\Program Files\Mozilla Firefox\ucrtbase.dll
17:13:39.0542 0x1788  C:\Program Files\Mozilla Firefox\ucrtbase.dll - ok
17:13:39.0559 0x1788  [ FEA66B6953355941D0A0C915A89BA2CC, 8C3CA548855FFFA9E9833718F36266C30187609694DFD5CE16311A6CD00F6CAA ] C:\Program Files\Mozilla Firefox\nss3.dll
17:13:39.0560 0x1788  C:\Program Files\Mozilla Firefox\nss3.dll - ok
17:13:39.0576 0x1788  [ 352F3614DB3391F024D442DACAD14E03, 131E72C9E1DA969D44126717A55149A2C3C39158234CF39DDC5AFF07F68F3A18 ] C:\Program Files\Mozilla Firefox\lgpllibs.dll
17:13:39.0576 0x1788  C:\Program Files\Mozilla Firefox\lgpllibs.dll - ok
17:13:39.0593 0x1788  [ 00000000000000000000000000000000, 0000000000000000000000000000000000000000000000000000000000000000 ] C:\Program Files\Mozilla Firefox\xul.dll
17:13:39.0594 0x1788  C:\Program Files\Mozilla Firefox\xul.dll - ok
17:13:39.0611 0x1788  [ 3ABE1A9830AFFF0F9E26E3623C2FAFA0, 1BA20AECF05F1F69608AC667B0D17D81DDC92EA3A9F24A020C32280EC7128FE7 ] C:\Program Files\Mozilla Firefox\updater.exe
17:13:39.0611 0x1788  C:\Program Files\Mozilla Firefox\updater.exe - ok
17:13:39.0628 0x1788  [ E01EE8BE64C8E4C450E1CCDDEEE8AFC8, 31D318A6294C0218781A8514B16D0708BB7BE1ABD81B334D35874E0186A48FA0 ] C:\Windows\System32\consent.exe
17:13:39.0628 0x1788  C:\Windows\System32\consent.exe - ok
17:13:39.0644 0x1788  [ E62BAA1DDD8AD07CDA05AE21BBAB01E3, 094302D52DCFF22B545DAA0DD4BB114EBEFA9F66696877C35FAEE1B2CDC17B90 ] C:\Windows\System32\twext.dll
17:13:39.0644 0x1788  C:\Windows\System32\twext.dll - ok
17:13:39.0662 0x1788  [ 1A29329D4ABDB7D765A9ED2BFE39A515, 5E81FC0BC3B3AF084E1AC0F420AC56CC9A738CC0BAA115881F3587CFB3F6C91E ] C:\Malwarebytes Anti-Malware\mbamext.dll
17:13:39.0663 0x1788  C:\Malwarebytes Anti-Malware\mbamext.dll - ok
17:13:39.0679 0x1788  [ 292D9ED18790EB8DB93EDC3004CCB6C5, 9775211E038A0D391D456AF5F9B61A651531133263662302F0E7303AA59FBA0C ] C:\Windows\System32\wdmaud.drv
17:13:39.0679 0x1788  C:\Windows\System32\wdmaud.drv - ok
17:13:39.0694 0x1788  [ 13C71A428DEE565FFF4FDEEC897D86E8, 905C41B10EEFE90D580435B7ADEBF69579F7774B8827793CA5B812955D7D7161 ] C:\Windows\System32\msacm32.drv
17:13:39.0694 0x1788  C:\Windows\System32\msacm32.drv - ok
17:13:39.0711 0x1788  [ 11013F42DE5B572B65362F937DD53EAF, 83221459F8D2A45962BF9788ACBE70D14F344B186B9F4ED67F0022FB8A3A0016 ] C:\Windows\System32\msacm32.dll
17:13:39.0711 0x1788  C:\Windows\System32\msacm32.dll - ok
17:13:39.0727 0x1788  [ 541DA19DCE1B7179D6B2557A92EE2D19, 9E9A31AFB554C63819ED0CD04E3625018D48BE7E4AA66B0F98B5ADDFDEA75F87 ] C:\Windows\System32\WorkFoldersShell.dll
17:13:39.0727 0x1788  C:\Windows\System32\WorkFoldersShell.dll - ok
17:13:39.0744 0x1788  [ 4B4018B292DD560A2552ECCBA3172104, 9C103622905FEF0C35BADE6F7771AD423DDA325A32992316F772CF14E366068A ] C:\Windows\System32\midimap.dll
17:13:39.0744 0x1788  C:\Windows\System32\midimap.dll - ok
17:13:39.0756 0x1788  [ BB24FF761356F73A766AA045D0EBA6C3, 060C5F1EE7ECD22DDEE79A6C04A677B25884F5E10E9EA4A8604EC80665E19FBB ] C:\Windows\System32\audiodg.exe
17:13:39.0756 0x1788  C:\Windows\System32\audiodg.exe - ok
17:13:39.0774 0x1788  [ FF5B03BA47CB2821FBA197EEC6C4CF0B, 07FDD7ED165E7CBE1546E9BCDB713981D5120A8915D48B86388B0EDF2FC5873F ] C:\Windows\System32\syncui.dll
17:13:39.0774 0x1788  C:\Windows\System32\syncui.dll - ok
17:13:39.0793 0x1788  [ 2F85D8018AC13ABD2E1D89C368DCCCF4, BD4B7FF2D68F01DBA3664C03C3EDAA79592AC0A4F47E55B5BF09C2428232A3A2 ] C:\Windows\System32\synceng.dll
17:13:39.0793 0x1788  C:\Windows\System32\synceng.dll - ok
17:13:39.0810 0x1788  [ A3BE01FD34B7EF9C416B79766108751C, D5B5966E31D56FE5FD2E2EA03DC5A7C78AA8B96D8C3CF05C900C13F45EEB75CF ] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavShx.dll
17:13:39.0810 0x1788  C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavShx.dll - ok
17:13:39.0827 0x1788  [ 290075961DD4856211078377D14942C8, 949FD56C5A63D3F1C20769BC2285AC5517C4CA84250C807F18247A2D93EFC1A4 ] C:\Windows\System32\acppage.dll
17:13:39.0827 0x1788  C:\Windows\System32\acppage.dll - ok
17:13:39.0844 0x1788  [ 7B2643AE85322EA168B0E760B73258FF, A399626684AACD5384B6CD34418C2FEE7628A5952D341139EB5F95DFFE5F0F62 ] C:\Windows\System32\AudioEng.dll
17:13:39.0844 0x1788  C:\Windows\System32\AudioEng.dll - ok
17:13:39.0860 0x1788  [ 4B07B24705A9225EB565650569BDA26B, A70FBD6E82C00896644B1A9A52D53236BB53A648222FF372BE57CDE45F4717DE ] C:\Windows\System32\AUDIOKSE.dll
17:13:39.0861 0x1788  C:\Windows\System32\AUDIOKSE.dll - ok
17:13:39.0877 0x1788  [ D47A81EBFB34F04176B171B036275919, F42251D1C2655128BC37A35D6B75C689EB2E72EA7B6665932013AED6F66280E4 ] C:\Program Files\Mozilla Firefox\browser\components\browsercomps.dll
17:13:39.0878 0x1788  C:\Program Files\Mozilla Firefox\browser\components\browsercomps.dll - ok
17:13:39.0894 0x1788  [ A4FF4D761950729F106584AC87F9AFB1, 03CA91BE05FC916560716C0A5E76495FF3A2BF31B2D77856989129CFF62AA53B ] C:\Windows\System32\wbem\cimwin32.dll
17:13:39.0894 0x1788  C:\Windows\System32\wbem\cimwin32.dll - ok
17:13:39.0911 0x1788  [ 42926ECD657A4E9FED008E4A23BEE459, 4CD5DA7E82C3EE191A8FA4F9457EA5FE54939C6B21FBDAA7E6E47C47FDCBA4A9 ] C:\Windows\System32\framedynos.dll
17:13:39.0911 0x1788  C:\Windows\System32\framedynos.dll - ok
17:13:39.0927 0x1788  [ 033FFB8B9EF468743507B895323A0B1F, 796D4DC1F38B966DA771E9206BA03C3ECCABF5AAF54002E0561465A642F044EA ] C:\Windows\System32\wmi.dll
17:13:39.0928 0x1788  C:\Windows\System32\wmi.dll - ok
17:13:39.0944 0x1788  [ D3F13A99E51DB992F5D1423532E36585, 428BF262ABE8D794303162E39B5B3AF2DC784FAA880D3F58BEA0A45E838DA253 ] C:\Program Files\Mozilla Firefox\softokn3.dll
17:13:39.0944 0x1788  C:\Program Files\Mozilla Firefox\softokn3.dll - ok
17:13:39.0961 0x1788  [ 75B580492F3C16FC2A2BC2D62FFC88EE, 39C022F2436EAC25BF7793AA5B8CFA0389B818DBB8F6899F84995EE6AFE8D648 ] C:\Program Files\Mozilla Firefox\nssdbm3.dll
17:13:39.0961 0x1788  C:\Program Files\Mozilla Firefox\nssdbm3.dll - ok
17:13:39.0977 0x1788  [ 4890687806FAA7A223CAEF42ED0FBC42, 464FAE09697F15C4E8802ADD4648287990BCC52B471108A3BF492A86534FC6A4 ] C:\Program Files\Mozilla Firefox\freebl3.dll
17:13:39.0977 0x1788  C:\Program Files\Mozilla Firefox\freebl3.dll - ok
17:13:39.0994 0x1788  [ A8B19B604B690259D617C4840046B002, EE2E2B0D8B1A0A3A4006A2EC034A2B5F5337244B3574879AC6E4D059BA3ACA18 ] C:\Program Files\Mozilla Firefox\nssckbi.dll
17:13:39.0994 0x1788  C:\Program Files\Mozilla Firefox\nssckbi.dll - ok
17:13:40.0004 0x1788  [ 7543ADD28E5755173A900BB1E0CFFBC6, ADDFA9A9A48907C8F55EEEBCEC4CF65D17E535AC5FAAA34F0CE85FD6B147B234 ] C:\Windows\System32\evr.dll
17:13:40.0004 0x1788  C:\Windows\System32\evr.dll - ok
17:13:40.0020 0x1788  [ 29057F9E0730903E26083DFC6FDFED19, C39E5FDE2FB61EB71113D274ECB4BE8D0AD4B7CD3C9F3A13A35006FF05B73228 ] C:\Windows\System32\MSAudDecMFT.dll
17:13:40.0020 0x1788  C:\Windows\System32\MSAudDecMFT.dll - ok
17:13:40.0037 0x1788  [ 1DA4FFF05FC86A2751F767F7F9DAAAC4, 161BDE54B9D712A1C8AEA6382EE033FBE014949AC339C6CAB46446056CA830E7 ] C:\Users\nici_st\AppData\Roaming\Mozilla\Firefox\Profiles\wvoi6zna.default\extensions\support@lastpass.com\platform\WINNT_x86-msvc\components\lpxpcom.dll
17:13:40.0037 0x1788  C:\Users\nici_st\AppData\Roaming\Mozilla\Firefox\Profiles\wvoi6zna.default\extensions\support@lastpass.com\platform\WINNT_x86-msvc\components\lpxpcom.dll - ok
17:13:40.0053 0x1788  [ C7105AACC709DCBD04BB734BA3E37259, A8E2E153541D8E4BB5B8512D77E49C860D15E7FDA3BCB7C6CEF6BA669A24FD91 ] C:\Windows\System32\wbem\NCProv.dll
17:13:40.0054 0x1788  C:\Windows\System32\wbem\NCProv.dll - ok
17:13:40.0069 0x1788  [ 3D98D7FD6EA4DC7C0AF3CEC9AFBAF303, AD7E352125925A315AD584DAA9BDE22EF34EB09BEBB1D567BC21EEA7CDD1F4B4 ] C:\Windows\System32\sppsvc.exe
17:13:40.0070 0x1788  C:\Windows\System32\sppsvc.exe - ok
17:13:40.0086 0x1788  [ 5294CF018BF48C3C5C40C073CAD9BC00, 3E80669FD8DF7D0CD4A4F79866FD20E27845350AF780FA418CF8857C32062AA4 ] C:\Windows\System32\cryptxml.dll
17:13:40.0086 0x1788  C:\Windows\System32\cryptxml.dll - ok
17:13:40.0103 0x1788  [ 7AFE9F55C3DB0F9B39648D89F082439B, 23EC7C40123441D32E98B43A94CC535DD97DF6D7E703EB9922DD3419B0F69664 ] C:\Windows\System32\wscsvc.dll
17:13:40.0103 0x1788  C:\Windows\System32\wscsvc.dll - ok
17:13:40.0120 0x1788  [ B14B3A2B7CE94B8DB4A862FC05A30A73, 2D29F800E3DC22CFF50D6AB0E36A044A42721AD122AABA8158EE2DD049782936 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
17:13:40.0120 0x1788  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
17:13:40.0137 0x1788  [ 8C5DD41EBAC8116DBD935427C5FE4255, A38EC2FFE724FB7714CF0F3C50A8B468CCCCD62595223BB903EC7DA861847799 ] C:\Windows\System32\wuapi.dll
17:13:40.0137 0x1788  C:\Windows\System32\wuapi.dll - ok
17:13:40.0155 0x1788  [ 6125B69B76160B3B7D07653EE8034272, B1BA1BA919F06E5EE19F7CC5FA5F17042F6A95BC7473999D9933909F5DFCA2ED ] C:\Windows\System32\wups.dll
17:13:40.0155 0x1788  C:\Windows\System32\wups.dll - ok
17:13:40.0173 0x1788  [ CBEF7D91BEFC6DD37B368627CEAD37B3, 69EAF0A57D00F4279798DFE3334DB1AFA1018D74A8C2D5DBECD163AA7ADBDCE2 ] C:\Windows\System32\wu.upgrade.ps.dll
17:13:40.0174 0x1788  C:\Windows\System32\wu.upgrade.ps.dll - ok
17:13:40.0191 0x1788  [ 573D8CC7352D7B2B79AEDD92F5641DA7, 4AD02D66AAFE981C3727F16C7A0CC4EFEFF87BE788F1264F050D18A077110EEC ] C:\Program Files\Windows Defender\MpCmdRun.exe
17:13:40.0191 0x1788  C:\Program Files\Windows Defender\MpCmdRun.exe - ok
17:13:40.0208 0x1788  [ 7CD02E04BC1DFF8B9582EC4BBFFA7533, D8C799FBC8AC1DC52B569F3713EA8DCB89057E62EECABAD1BF52422DEE59EF2B ] C:\Program Files\Windows Defender\MpClient.dll
17:13:40.0208 0x1788  C:\Program Files\Windows Defender\MpClient.dll - ok
17:13:40.0224 0x1788  [ BC5CA9490E379FD5A457AEEC247D7B34, E9CF3F3ADEDC6CA48B4D6A6C39B72F30B8CFEE3695DAB84393618B595F2C26FA ] C:\Windows\System32\wmpmde.dll
17:13:40.0225 0x1788  C:\Windows\System32\wmpmde.dll - ok
17:13:40.0241 0x1788  [ DCAE83B49A2CCB4C8C5AE303E336E5E4, 0863B9C0C8C43BC526CE5D530FE39AD52E3FBDF2CA4BA4826507B5E4F19E064D ] C:\Windows\System32\mfcore.dll
17:13:40.0241 0x1788  C:\Windows\System32\mfcore.dll - ok
17:13:40.0263 0x1788  [ 01F912183D4F167C11D234E01FDC162D, 6D0215E0C4AB812F599B916AA689A95E72DA6E4979702CC48AE638ECFA958C4F ] C:\Windows\System32\WinSATAPI.dll
17:13:40.0263 0x1788  C:\Windows\System32\WinSATAPI.dll - ok
17:13:40.0275 0x1788  [ B4A82594BCCE30573A99E54BF6CB49B2, 90D167D316F2DDFB6243FB68BF311178BB9C1F7948977C880EB88E5A059C6CB3 ] C:\Windows\System32\MSMPEG2ENC.DLL
17:13:40.0275 0x1788  C:\Windows\System32\MSMPEG2ENC.DLL - ok
17:13:40.0291 0x1788  [ 28D363ED6186013FE25EB3AF6CE71DF7, 460B6ACC44E0EA27DB590E69FB1E88FF2B6E9252CDD5A8FFADD912EEEA5C0569 ] C:\Windows\System32\upnphost.dll
17:13:40.0291 0x1788  C:\Windows\System32\upnphost.dll - ok
17:13:40.0314 0x1788  [ B01830CA3AEC7E8991DC8390F2DE60BF, 13FE562472D17FFDE6FE8E3E1A05135D529319899A3F61D931BFA8215F7D9DCC ] C:\Windows\System32\wbem\wmiprov.dll
17:13:40.0314 0x1788  C:\Windows\System32\wbem\wmiprov.dll - ok
17:13:40.0332 0x1788  [ C388D03B33E4B12D68A9678798EF9A0A, 36447B54C7CBC4C6A878A46B39484DCD818153B79B0BEA84F445122ECC8FE125 ] C:\Windows\System32\udhisapi.dll
17:13:40.0332 0x1788  C:\Windows\System32\udhisapi.dll - ok
17:13:40.0353 0x1788  [ CFB7B2C48B2017EFB667BAA7D2B769BF, 26C8A90540FEF9EC7A9A7278577E2E736923DA2C329CA5F5C7C57F5DC7EED651 ] C:\Windows\System32\sppwinob.dll
17:13:40.0353 0x1788  C:\Windows\System32\sppwinob.dll - ok
17:13:40.0369 0x1788  [ BA1298382A60D470B7CB3DE2C0DD6005, 58C04A4125D5E118B5AF3FDBA3B9D1B3B93651E93AB944BC7FF4D1B184152A2A ] C:\Windows\System32\Windows.Media.Streaming.dll
17:13:40.0369 0x1788  C:\Windows\System32\Windows.Media.Streaming.dll - ok
17:13:40.0386 0x1788  [ C437E03C079A9F559E7D54C5F7FE5740, 17562A49705253C8C3FFD3CAE2F966CD28988EFA66B5FB0BD753ADFC874D0530 ] C:\Windows\System32\upnp.dll
17:13:40.0386 0x1788  C:\Windows\System32\upnp.dll - ok
17:13:40.0406 0x1788  [ 1B70C2A3B6CE38E528E104F807EEAF9C, FCCBFFDA7E2D5503AEA2AE51CA8F594473FC25C99D915077000BD639114C4025 ] C:\Windows\System32\sppobjs.dll
17:13:40.0406 0x1788  C:\Windows\System32\sppobjs.dll - ok
17:13:40.0425 0x1788  [ 1676189CC24EE08099076091F58A8EFC, 00D152388A148757193E2B6BA403E135B064F5981B326E64DDFD1E404F146475 ] C:\Windows\System32\wscinterop.dll
17:13:40.0425 0x1788  C:\Windows\System32\wscinterop.dll - ok
17:13:40.0442 0x1788  [ 6208178C5D413977CCC8E3781E067EF0, E7EF77BE1023928764B0DC1B76164C60B5CAFBBB1462F9AD593A1245FA3378AD ] C:\Windows\System32\wscui.cpl
17:13:40.0442 0x1788  C:\Windows\System32\wscui.cpl - ok
17:13:40.0457 0x1788  [ 84E41632D6633BCCFE36ACF89E76D199, D7EAC939305BC97E6AF40059BE6D75036DF4A919782B4310273B02A9B8D49C3B ] C:\Windows\System32\werconcpl.dll
17:13:40.0458 0x1788  C:\Windows\System32\werconcpl.dll - ok
17:13:40.0475 0x1788  [ 43640F577375112387C64F9C7735DCD8, E8FD4D2681F783DACE04A1ED05B431AEFE3EDE26CE4D78D83C8E0C7C36579B96 ] C:\Windows\System32\wercplsupport.dll
17:13:40.0475 0x1788  C:\Windows\System32\wercplsupport.dll - ok
17:13:40.0492 0x1788  [ BED98AF7582A69120828CAF83A25D24D, 074E83243A0ABCC6D9861D2B9ACC0B5862C603E543CA7791E2ABD63642CA5D77 ] C:\Windows\System32\hcproviders.dll
17:13:40.0492 0x1788  C:\Windows\System32\hcproviders.dll - ok
17:13:40.0509 0x1788  [ CB6B3EE84B3D6694E98BB5297EE084F8, 68FD48AB6B34CED3FAEF6F753384DDE5FDED0D91F3AC0D7C64954CCEB3E832FC ] C:\Program Files\Internet Explorer\ieproxy.dll
17:13:40.0509 0x1788  C:\Program Files\Internet Explorer\ieproxy.dll - ok
17:13:40.0517 0x1788  ================ Scan generic autorun ======================
17:13:40.0518 0x1788  Baidu Antivirus - ok
17:13:40.0519 0x1788  Dropbox Update - ok
17:13:40.0529 0x1788  GoogleChromeAutoLaunch_5B86E73E03933FC4D2E0933328283FFF - ok
17:13:40.0618 0x1788  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x60100 ( disabled : updated )
17:13:40.0621 0x1788  AV detected via SS2: Baidu Antivirus, C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavSvc.exe ( 5.4.3.17894 ), 0x71000 ( enabled : updated )
17:13:40.0631 0x1788  Win FW state via NFP2: enabled ( trusted )
17:13:40.0821 0x1788  ============================================================
17:13:40.0821 0x1788  Scan finished
17:13:40.0821 0x1788  ============================================================
17:13:40.0883 0x0fc4  Detected object count: 0
17:13:40.0883 0x0fc4  Actual detected object count: 0


Alle Zeitangaben in WEZ +1. Es ist jetzt 10:31 Uhr.
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55