Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Botnet - zjištěna infikace malwarem

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
durod
Návštěvník
Návštěvník
Příspěvky: 71
Registrován: 10 črc 2008 11:18

Botnet - zjištěna infikace malwarem

#1 Příspěvek od durod »

Zdravim a prosil bych o pomoc....

Dnes mne pristal email od UPC....
Vážený zákazníku,

dovolujeme si Vás tímto upozornit na pravděpodobné infikování některého z Vašich zařízení připojených do sítě UPC Česká republika, s.r.o. (dále jen "UPC") malwarem nebo virem. Abychom předešli zneužití, kvůli němuž by mohlo dojít k narušení bezpečnosti a dostupnosti veřejné komunikační sítě UPC včetně služeb elektronických komunikací poskytovaných prostřednictvím této sítě, vyzýváme Vás ke zjednání nezbytné nápravy.

Odhalené zranitelnosti:
Botnet - zjištěna infikace malwarem
IP: ........., čas zjištění: ........., incident č.........

Podle charakteru aktivity, která byla u Vás zjištěna, se některé Vaše zařízení připojené k Internetu pravděpodobně stalo obětí nákazy malwarem ze sítě botnet. Obecně se jedná o speciálně upravený škodlivý program instalovaný do zařízení zpravidla bez vědomí uživatele nebo z nepozornosti. Často je takto napadána výpočetní technika bez aktivní ochrany v reálném čase (chybí antiviry nebo jiný bezpečnostní program) nebo pravidelně aktualizovaného software. Někdy se malware šíří zneužitím obecně známé nevyřešené zranitelnosti v systémech. Po průniku infekce je aktivita programu řízena skrytě na dálku za účelem způsobení škody ostatním uživatelům veřejné sítě Internet, případně přímo Vám (z Vašeho zařízení se tak může stát nástroj pro rozesílání spamu, DDoS útoky na velké korporace nebo internetové služby, může dojít k odesílání citlivých dat uživatele apod.)
Bližší informace o tomto typu nákazy získáte například zde:
https://cs.wikipedia.org/wiki/Botnet

Přestože je společnost UPC přesvědčena, že zmíněný nedostatek není způsoben z Vaší strany úmyslně, musíme Vás touto cestou upozornit a současně nabídnout pomoc. Pro odstranění výše uvedených zranitelností Vám doporučujeme zkontrolovat zabezpečení všech Vašich zařízení, které k internetu připojujete, prostřednictvím některého z dostupných antivirových programů (pro účely okamžité nápravy aktuálního bezpečnostního incidentu lze u řady z nich využít bezplatného zkušebního období, případně existují i zcela bezplatné verze). Příklad některých z nich uvádíme zde:
UPC Smart Guard (bezpečnostní balík UPC od výrobce F-Secure pro PC a Mac, dostupný na http://www.upc.cz/internet/bezpecny-internet/)
Free Antivirus společnosti AVAST (pro PC s Windows a mobilní zařízení s Android OS a iOS, dostupný na https://www.avast.com/cs-cz/index)
Malwarebytes Anti-Malware (vhodný pro odstraňování malware, pro PC a Mac a mobilní zařízení s Android OS, dostupný na https://www.malwarebytes.com/mwb-download/thankyou/)
Norton Security společnosti Symantec (pro PC s Windows a mobilní zařízení s Android OS a iOS, zkušební verze, dostupná na https://cz.norton.com/downloads)
Eset Family Security Pack (pro PC s Windows a mobilní zařízení s Android OS a iOS, zkušební verze, dostupná na https://www.eset.com/cz/domacnosti/fami ... rity-pack/)
Kaspersky Internet Security (pro PC s Windows a mobilní zařízení s Android OS a iOS, zkušební/placená verze, dostupná na https://www.kaspersky.cz/#compare-products)

Potřebujete-li více informací s řešením výše uvedeného incidentu, kontaktuje prosím naše pracovníky technického oddělení pomocí e-mailu technicka.podpora@upc.cz, případně na telefonním čísle +420 241 005 100. Při komunikaci s našimi pracovníky uvádějte prosím číslo incidentu 62686.

Včasným odstraněním závadného stavu do 14 dnů od doručení tohoto sdělení předejdete situaci, při které bude společnost UPC nucena v souladu s Všeobecnými obchodními podmínkami omezit téměř veškerý odchozí provoz služeb. Bude povolena komunikace pouze na portech 80 (http), 443 (https), 110 (POP3), 143 (IMAP), 53 (DNS), 67 a 68 (DHCP).

Pro zajištění přiměřené ochrany Vaší výpočetní techniky včetně uložených dat před útoky z internetu doporučujeme v budoucnu nepodceňovat význam placených antivirových programů nebo bezpečnostních balíků a instalovat je nejen na všechny Vaše počítače, ale také na mobilní zařízení, která využívají připojení k internetu (smartphony, tablety aj.), můžete tím omezit nebo vyloučit výskyt podobných bezpečnostních incidentů.

Věříme, že výše uvedené sdělení, kterým se snažíme zamezit možné zneužití veřejné komunikační sítě UPC a jejich služeb, přijmete s pochopením, neboť tím bude zajištěna nejen bezpečnost Vaše, ale i všech ostatních uživatelů.

S pozdravem

Klientské centrum – technická podpora
UPC Česká republika, s.r.o.
tel: +420 241 005 100
email: technicka.podpora@upc.cz
Zjistil jsem, ze v pravo dole na liste nemam antivirus(pouzivam zabudovany ve Windows 10) a kdyz jsem ho chtel rucne spustit, nemuzu ho najit...
Dekuji za pomoc...
Nahoru
durod
Návštěvník
Návštěvník
Příspěvky: 71
Registrován: 10 črc 2008 11:18

Re: Botnet - zjištěna infikace malwarem

#2 Příspěvek od durod »

log
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-06-2019
Ran by Slavicek (administrator) on DESKTOP-KQ46S14 (24-06-2019 15:57:18)
Running from C:\Users\Slavicek\Pictures\Adamko\Trash
Loaded Profiles: Slavicek (Available Profiles: Slavicek)
Platform: Windows 10 Pro Version 1903 18362.175 (X64) Language: Slovak (Slovakia)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.19418.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1812.10048.0_x64__8wekyb3d8bbwe\Calculator.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18111.17311.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amddvr.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiesrxx.exe
(Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
(Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
(Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginClientService.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(F.lux Software LLC -> f.lux Software LLC) C:\Users\Slavicek\AppData\Local\FluxSoftware\Flux\flux.exe
(Foxit Software Incorporated -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
(Google LLC -> Google LLC) C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\HelpPane.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(SatoshiLabs s.r.o. -> ) C:\Program Files (x86)\TREZOR Bridge\trezord.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-04-10] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Policies\Explorer\Run: [localSPM] => C:\WINDOWS\runkey.exe [469688 2018-12-07] (Clever Security Software Ltd -> )
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-79263149-2179494062-2174528413-1001\...\Run: [f.lux] => C:\Users\Slavicek\AppData\Local\FluxSoftware\Flux\flux.exe [1378824 2019-05-07] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-79263149-2179494062-2174528413-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [807936 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TREZOR Bridge.lnk [2019-04-06]
ShortcutTarget: TREZOR Bridge.lnk -> C:\Program Files (x86)\TREZOR Bridge\trezord.exe (SatoshiLabs s.r.o. -> )
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07D073D0-2976-4723-A91C-16F8EC903D2B} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [69512 2018-01-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {1BF3B7B3-7C9E-4A80-8E77-2E3AF3528F9B} - System32\Tasks\Opera scheduled assistant Autoupdate 1547228286 => C:\Users\Slavicek\AppData\Local\Programs\Opera\launcher.exe
Task: {1E68C37B-7DF7-4C5F-8BAF-90CA8EEF1C9B} - System32\Tasks\Opera scheduled Autoupdate 1541932983 => C:\Users\Slavicek\AppData\Local\Programs\Opera\launcher.exe
Task: {1F789508-C885-4A6E-848A-53E75169B047} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4470824 2019-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {2ABD07BB-8EC3-4A4A-86CA-EA44FE572896} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26167288 2019-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {53752D3B-1B5A-4889-B55B-D64CFA29158A} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49544 2018-01-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {6D70B114-EE3C-45E6-B181-8DD7BF66E637} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [112664 2019-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {757EA12D-65B9-49CA-BC60-232693F13515} - System32\Tasks\RTSS => C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe [252008 2017-12-14] (Alexey Nicolaychuk -> )
Task: {840A56DA-C204-4C79-A70C-F89893C4B6C8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26167288 2019-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {85D83971-2FF5-4C2F-A38C-01917C8847AB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4470824 2019-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {87022583-CE90-4F51-B334-96AACD6E94D1} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [725288 2017-12-15] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {8AA7D8AD-B74A-457B-A1E1-68BC9077AA88} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1448480 2019-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {B1013120-30D4-48C9-9183-2905E114C700} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-79263149-2179494062-2174528413-1001UA => C:\Users\Slavicek\AppData\Local\Google\Update\GoogleUpdate.exe [153168 2017-12-07] (Google Inc -> Google Inc.)
Task: {B56AB060-1F52-47FB-8DDF-9B0E42298D95} - System32\Tasks\NvNgxUpdateCheckDaily_{A6B397E0-97E0-97E0-97E0-A6B397E097E0} => regsvr32 /s /n /u /i:"C:\Users\Slavicek\AppData\Roaming\frdesci" scrobj
Task: {B5830178-3CE5-43C9-9826-3ADE9C86535D} - System32\Tasks\csrss => C:\WINDOWS\rss\csrss.exe <==== ATTENTION
Task: {B97DF53D-9DB4-4306-9F94-8F527FB0C6AB} - System32\Tasks\FlashServis => C:\ProgramData\FlashSys\CurlMSI.exe
Task: {BABF9EE0-1BA1-4310-AAA0-8C8636D9FFC0} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [112664 2019-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {D718A7C8-07E9-4F89-94DD-8520AEFB9779} - System32\Tasks\7ZipUnis => C:\Users\Slavicek\AppData\Roaming\Microsoft\SystemCertificates\My\CTLs\7ZipArchiver\volumfix.exe
Task: {E6DB8C85-0852-47DA-89FF-EC59D8FD1F4B} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1448480 2019-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {FDBA97A5-221B-4173-9B14-12E26BB8F177} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-79263149-2179494062-2174528413-1001Core => C:\Users\Slavicek\AppData\Local\Google\Update\GoogleUpdate.exe [153168 2017-12-07] (Google Inc -> Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{c7018ace-a901-41c6-926b-1b6789db9eee}: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{d15c54cf-cdbb-4ccf-8eb4-c96569ce65b9}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-79263149-2179494062-2174528413-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5WszJVNa71HsDQZbDofAi-Kk1qldtLoeDTW5WF4kD52_3ZiP4f-3xj0C8pBF5oe36QEXJR7aN4uYWozWxRhLktXrBHwNpRN_8Oed1bstzvrmOGfWaGhjv0aKSsVALwfCxXYv56ECfggD4O01gUqezOg5wO2S62Grqnk,&q={searchTerms}
HKU\S-1-5-21-79263149-2179494062-2174528413-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5WszJVNa71HsDQZbDofAi-Kk1qldtLoeDTW5WF4kD52_3ZiP4f-3xj0C8pBF5oe36QEbVhJiOol_xE0DKegj0HN6gXJIbnAbB8jINDwcpDysik77REXlJUeER-QdeKL1qtjhzBAiIOUwekCVskgnWG-LumPQNqoe2aw,
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-06-03] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2018-10-13] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2018-10-13] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-03] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: vj5yttn1.default
FF ProfilePath: C:\Users\Slavicek\AppData\Roaming\Mozilla\Firefox\Profiles\vj5yttn1.default [2019-06-18]
FF Homepage: Mozilla\Firefox\Profiles\vj5yttn1.default -> hxxps://www.google.com/
FF NewTab: Mozilla\Firefox\Profiles\vj5yttn1.default -> file:///C:/ProgramData/Quoteexs/ff.NT
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2018-10-13] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2018-10-13] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN -> VideoLAN)
FF Plugin HKU\S-1-5-21-79263149-2179494062-2174528413-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Slavicek\AppData\Local\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin HKU\S-1-5-21-79263149-2179494062-2174528413-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Slavicek\AppData\Local\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Profile: C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default [2019-06-24]
CHR Extension: (Google Translate) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2017-12-07]
CHR Extension: (Slides) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-07]
CHR Extension: (TooManyTabs for Chrome) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\amigcgbheognjmfkaieeeadojiibgbdp [2017-12-07]
CHR Extension: (Magio GO) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\anoiechkjklgabdfompidjolhpfdpjdd [2017-12-07]
CHR Extension: (Docs) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-07]
CHR Extension: (Google Drive) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-12-07]
CHR Extension: (Session Manager) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbcnbpafconjjigibnhbfmmgdbbkcjfi [2017-12-07]
CHR Extension: (Touch VPN) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bihmplhobchoageeokmgbdihknkjbknd [2018-11-01]
CHR Extension: (Auto Copy) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bijpdibkloghppkbmhcklkogpjaenfkg [2018-01-12]
CHR Extension: (Skype Calling) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2017-12-07]
CHR Extension: (YouTube) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-07]
CHR Extension: (Copy Without Formatting) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekbgkmeapobkbadclnkjfjdbpbcaobd [2017-12-07]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-04-22]
CHR Extension: (uBlock Origin) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-06-20]
CHR Extension: (Adblock for Youtube™) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2019-03-23]
CHR Extension: (Videostream for Google Chromecast™) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnciopoikihiagdjbjpnocolokfelagl [2018-09-05]
CHR Extension: (Recent History) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbmkfdfomhhlonpbnpiibloacemdhjjm [2017-12-07]
CHR Extension: (Sheets) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-07]
CHR Extension: (Play to Kodi) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fncjhcjfnnooidlkijollckpakkebden [2019-04-30]
CHR Extension: (AdBlock Premium) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj [2019-02-13]
CHR Extension: (Office Editing for Docs, Sheets & Slides) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbkeegbaiigmenfmjfclcdgdpimamgkj [2019-05-21]
CHR Extension: (Google Docs Offline) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-16]
CHR Extension: (AdBlock) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-05-29]
CHR Extension: (IE Tab) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2019-06-15]
CHR Extension: (Disconnect) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2019-04-02]
CHR Extension: (CrxMouse Chrome™ Gestures) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlgkpaicikihijadgifklkbpdajbkhjo [2019-03-06]
CHR Extension: (Better Battlelog (BBLog)) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjlfnjepjdmlppapoikepbaabbghofma [2017-12-07]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2019-01-12]
CHR Extension: (Google Mail Checker) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2019-04-24]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (shortfuts) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\piepdojghinggmddebidfkhfbdaggnmh [2019-06-19]
CHR Extension: (Gmail) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29]
CHR Extension: (Chrome Media Router) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-20]
CHR Profile: C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-06-13]
CHR Profile: C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1 [2019-06-13]
CHR Extension: (Slides) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-20]
CHR Extension: (Docs) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-20]
CHR Extension: (Google Drive) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-20]
CHR Extension: (Touch VPN) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bihmplhobchoageeokmgbdihknkjbknd [2018-12-23]
CHR Extension: (YouTube) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-20]
CHR Extension: (Honey) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2018-12-23]
CHR Extension: (Adblock Plus) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-12-23]
CHR Extension: (AHA Music - Music Identifier) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dpacanjfikmhoddligfbehkpomnbgblf [2018-12-23]
CHR Extension: (Sheets) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-20]
CHR Extension: (Google Docs Offline) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-23]
CHR Extension: (AdBlock) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-12-23]
CHR Extension: (Betternet Unlimited Free VPN Proxy) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gjknjjomckknofjidppipffbpoekiipm [2018-12-23]
CHR Extension: (Roblox+) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jfbnmfgkohlfclfnplnlenbalpppohkm [2018-12-23]
CHR Extension: (Grammarly for Chrome) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2018-12-23]
CHR Extension: (TubeBuddy for YouTube) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mhkhmbddkmdggbhaaaodilponhnccicb [2018-12-23]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-12-20]
CHR Extension: (Gmail) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-12-20]
CHR Extension: (Chrome Media Router) - C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-20]
CHR Profile: C:\Users\Slavicek\AppData\Local\Google\Chrome\User Data\System Profile [2019-06-13]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiesrxx.exe [481768 2018-01-18] (Advanced Micro Devices, Inc. -> AMD)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-03-27] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11146224 2019-06-06] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [780928 2018-05-19] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 FoxitReaderService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1659456 2017-12-12] (Foxit Software Incorporated -> Foxit Software Inc.)
R3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2303792 2019-05-31] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3175728 2019-05-31] (Electronic Arts, Inc. -> Electronic Arts)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atikmdag.sys [41703912 2018-01-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atikmpag.sys [546280 2018-01-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [111112 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-08-08] (Logitech Inc -> Logitech Inc.)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [36600 2014-08-19] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [662528 2019-03-19] (Microsoft Windows -> Realtek )
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 SMARTMouseFilterx64; C:\WINDOWS\System32\drivers\SMARTMouseFilterx64.sys [18952 2019-05-14] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
S3 SMARTVHidMiniVistaAmd64; C:\WINDOWS\System32\drivers\SMARTVHidMiniVistaAmd64.sys [28168 2019-05-14] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-06-18 15:26 - 2019-06-18 15:26 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2019-06-18 15:09 - 2019-06-18 15:09 - 000000000 ___HD C:\$SysReset
2019-06-18 09:43 - 2019-06-18 15:38 - 002492808 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-06-18 09:43 - 2019-06-18 09:43 - 000000258 __RSH C:\Users\Slavicek\ntuser.pol
2019-06-18 09:43 - 2019-06-18 09:43 - 000000020 ___SH C:\Users\Slavicek\ntuser.ini
2019-06-18 09:42 - 2019-06-18 15:32 - 000003382 _____ C:\WINDOWS\System32\Tasks\NvNgxUpdateCheckDaily_{A6B397E0-97E0-97E0-97E0-A6B397E097E0}
2019-06-18 09:42 - 2019-06-18 15:31 - 000003148 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
2019-06-18 09:42 - 2019-06-18 15:31 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-06-18 09:42 - 2019-06-18 15:27 - 000003380 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-79263149-2179494062-2174528413-1001
2019-06-18 09:42 - 2019-06-18 09:43 - 000003522 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-79263149-2179494062-2174528413-1001UA
2019-06-18 09:42 - 2019-06-18 09:43 - 000003254 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-79263149-2179494062-2174528413-1001Core
2019-06-18 09:42 - 2019-06-18 09:43 - 000002602 _____ C:\WINDOWS\System32\Tasks\7ZipUnis
2019-06-18 09:42 - 2019-06-18 09:43 - 000002486 _____ C:\WINDOWS\System32\Tasks\FlashServis
2019-06-18 09:42 - 2019-06-18 09:42 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2019-06-18 09:42 - 2019-06-18 09:42 - 000007623 _____ C:\WINDOWS\diagerr.xml
2019-06-18 09:42 - 2019-06-18 09:42 - 000003878 _____ C:\WINDOWS\System32\Tasks\Opera scheduled assistant Autoupdate 1547228286
2019-06-18 09:42 - 2019-06-18 09:42 - 000003618 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1541932983
2019-06-18 09:42 - 2019-06-18 09:42 - 000002414 _____ C:\WINDOWS\System32\Tasks\RTSS
2019-06-18 09:42 - 2019-06-18 09:42 - 000002394 _____ C:\WINDOWS\System32\Tasks\csrss
2019-06-18 09:42 - 2019-06-18 09:42 - 000002146 _____ C:\WINDOWS\System32\Tasks\StartCN
2019-06-18 09:42 - 2019-06-18 09:42 - 000002060 _____ C:\WINDOWS\System32\Tasks\StartDVR
2019-06-18 09:42 - 2019-06-18 09:42 - 000000000 ____D C:\WINDOWS\System32\Tasks\S-1-5-21-79263149-2179494062-2174528413-1001
2019-06-18 09:37 - 2019-06-18 09:37 - 000000000 ____D C:\ProgramData\USOShared
2019-06-18 09:36 - 2019-06-18 09:07 - 002874368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2019-06-18 09:35 - 2019-06-24 15:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-06-18 09:35 - 2019-06-18 09:43 - 000000000 ____D C:\Windows.old
2019-06-18 09:35 - 2019-06-18 09:39 - 000484712 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-06-18 09:27 - 2019-06-18 09:27 - 000066064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WinSetupBoot.sys
2019-06-18 09:12 - 2019-06-18 09:12 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2019-06-18 09:11 - 2019-06-18 15:27 - 000002372 ____C C:\Users\Slavicek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-06-18 09:11 - 2019-06-18 09:43 - 000000000 ____D C:\Users\Slavicek
2019-06-18 09:11 - 2019-06-18 09:12 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2019-06-18 09:08 - 2019-06-18 09:08 - 025445376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 018006528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 007802224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 007006720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 006141440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 005919744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 005499904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 005083352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 005014016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 004306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 004128904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 003837440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 003635200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 003525080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 003486208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-06-18 09:08 - 2019-06-18 09:08 - 002494440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 002398208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 002314440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 001603584 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 001510960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 001493944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 001248256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2019-06-18 09:08 - 2019-06-18 09:08 - 001244728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 001105776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 001098712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 001079296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 001039872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2019-06-18 09:08 - 2019-06-18 09:08 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 000744248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2019-06-18 09:08 - 2019-06-18 09:08 - 000737552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2019-06-18 09:08 - 2019-06-18 09:08 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 000682744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2019-06-18 09:08 - 2019-06-18 09:08 - 000666280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2019-06-18 09:08 - 2019-06-18 09:08 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 000551824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 000537608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2019-06-18 09:08 - 2019-06-18 09:08 - 000463272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 000420360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2019-06-18 09:08 - 2019-06-18 09:08 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2019-06-18 09:07 - 2019-06-18 09:08 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2019-06-18 09:07 - 2019-06-18 09:07 - 025902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 022610944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 017786368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 009917992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 008010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 007887656 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 007831368 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 007757312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 007636848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 007275008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 007241800 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 007103488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 006536976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 006381568 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 006225832 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 006068328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 006036480 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 005939712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 005745504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 005071360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 004867584 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 004577280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 004562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 004553616 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 004537344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 004470784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 004034048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 004008960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 004008448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 003947520 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 003915752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 003771392 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 003734456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 003725824 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 003684864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 003590672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 003550720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 003373256 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 003094528 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 002990392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 002799616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 002769976 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 002763312 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2019-06-18 09:07 - 2019-06-18 09:07 - 002724352 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 002698552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 002694144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 002587328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 002584576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 002550584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 002449456 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 002443776 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 002321408 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 002281472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 002256592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 002178048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaclient.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 002117168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 002081464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001999440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001954952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001944064 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001940952 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001893888 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001884672 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001853440 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001847808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001830416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001784832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001762304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001754024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-06-18 09:07 - 2019-06-18 09:07 - 001745408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001721344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001688576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001647584 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001635328 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001633648 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001608704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001562640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001553408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaserver.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 001537024 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001515008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaclient.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001509728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 001505808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001478656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001473488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001458176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001437184 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 001422848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001413704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001395600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001392144 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 001366344 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-06-18 09:07 - 2019-06-18 09:07 - 001363456 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001356800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001333248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001321472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001283384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-06-18 09:07 - 2019-06-18 09:07 - 001282560 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsf3gip.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001271808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001258496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001246000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 001213456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001192088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 001182448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001149200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 001072168 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 001068856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001065984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaserver.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001042944 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2019-06-18 09:07 - 2019-06-18 09:07 - 001010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001007160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001007104 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 001006592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000950272 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000939504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000911360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000909736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000888936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000888056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000879576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-06-18 09:07 - 2019-06-18 09:07 - 000876856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000864768 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000822072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000811192 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-06-18 09:07 - 2019-06-18 09:07 - 000811192 _____ C:\WINDOWS\system32\locale.nls
2019-06-18 09:07 - 2019-06-18 09:07 - 000804880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000797112 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000782120 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000773944 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000773168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000751256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000726328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000680760 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000679368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000674792 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000673320 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000667272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000628616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000613904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_9.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000574976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_9.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000568120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-06-18 09:07 - 2019-06-18 09:07 - 000537088 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000537088 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.UserService.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000529072 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000515896 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000477712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-06-18 09:07 - 2019-06-18 09:07 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2019-06-18 09:07 - 2019-06-18 09:07 - 000466624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000462352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000451896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000441352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000422008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000420152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmicmiplugin.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-06-18 09:07 - 2019-06-18 09:07 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000404392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000401416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000386832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000381240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000379192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000363624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000358944 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000338800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2019-06-18 09:07 - 2019-06-18 09:07 - 000300392 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000284536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000279624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000267728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000261016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityUxHost.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-06-18 09:07 - 2019-06-18 09:07 - 000223248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000220472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidclass.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000208184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000205112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winquic.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000201256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000199688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000199184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000199184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000194176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winquic.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-06-18 09:07 - 2019-06-18 09:07 - 000180536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000178192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000161848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaproxystub.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000146744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000146416 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\GraphicsCapture.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000139472 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000136720 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000134760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameChatTranscription.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000120352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapistub.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapi32.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000116184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Taskbar.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GraphicsCapture.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapistub.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapi32.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameChatTranscription.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2019-06-18 09:07 - 2019-06-18 09:07 - 000093712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompMgmtLauncher.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000088064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000084520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000066360 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaproxystub.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000056008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000055608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidparse.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidusb.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000037888 _____ C:\WINDOWS\system32\usocoreps.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2019-06-18 09:07 - 2019-06-18 09:07 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2019-06-18 09:07 - 2019-06-18 09:07 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wci.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000021512 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fixmapi.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fixmapi.exe
2019-06-18 09:07 - 2019-06-18 09:07 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL
2019-06-18 09:07 - 2019-06-18 09:07 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3r.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2019-06-18 09:07 - 2019-06-18 09:07 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3r.dll
2019-06-18 09:04 - 2019-06-18 15:38 - 000707652 _____ C:\WINDOWS\system32\perfh005.dat
2019-06-18 09:04 - 2019-06-18 15:38 - 000144902 _____ C:\WINDOWS\system32\perfc005.dat
2019-06-18 09:04 - 2019-06-18 09:04 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2019-06-18 09:04 - 2019-06-18 09:04 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2019-06-18 09:04 - 2019-06-18 09:04 - 000000000 ____D C:\WINDOWS\system32\cs
2019-06-18 09:04 - 2019-06-18 09:03 - 000296964 _____ C:\WINDOWS\system32\perfi005.dat
2019-06-18 09:04 - 2019-06-18 09:03 - 000038778 _____ C:\WINDOWS\system32\perfd005.dat
2019-06-18 08:56 - 2019-06-18 08:56 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2019-06-18 08:56 - 2019-06-18 08:56 - 000000000 ____D C:\WINDOWS\system32\msmq
2019-06-18 08:56 - 2019-06-18 08:56 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2019-06-18 08:55 - 2019-06-18 08:55 - 000778912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2019-06-18 08:55 - 2019-06-18 08:55 - 000103072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-06-18 08:55 - 2019-06-18 08:55 - 000035592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2019-06-18 08:55 - 2019-06-18 08:55 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-06-18 08:55 - 2019-06-18 08:55 - 000000000 ____D C:\Program Files\MSBuild
2019-06-18 08:55 - 2019-06-18 08:55 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2019-06-18 08:55 - 2019-06-18 08:55 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-06-18 08:54 - 2019-06-18 08:55 - 001166488 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2019-06-18 08:54 - 2019-06-18 08:55 - 000124568 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2019-06-18 08:54 - 2019-06-18 08:55 - 000035592 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2019-06-18 08:54 - 2019-06-18 08:54 - 006472704 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0005.dll
2019-06-18 08:54 - 2019-06-18 08:54 - 006359552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2019-06-18 08:54 - 2019-06-18 08:54 - 005739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2019-06-18 08:54 - 2019-06-18 08:54 - 005496832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2019-06-18 08:54 - 2019-06-18 08:54 - 004470272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-06-18 08:54 - 2019-06-18 08:54 - 002629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2019-06-18 08:54 - 2019-06-18 08:54 - 000903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2019-06-18 08:54 - 2019-06-18 08:54 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2019-06-18 08:54 - 2019-06-18 08:54 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2019-06-18 08:54 - 2019-06-18 08:54 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2019-06-18 08:54 - 2019-06-18 08:54 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2019-06-18 08:54 - 2019-06-18 08:54 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2019-06-18 08:49 - 2019-06-18 08:49 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2019-06-18 08:32 - 2019-06-18 09:43 - 000000000 ___DC C:\WINDOWS\Panther
2019-06-18 08:20 - 2019-06-18 08:21 - 000000000 ____D C:\AdwCleaner
2019-06-18 08:13 - 2019-06-18 08:13 - 000000000 ___HD C:\$Windows.~WS
2019-06-18 08:08 - 2019-06-18 08:32 - 000000036 _____ C:\WINDOWS\progress.ini
2019-06-18 08:02 - 2019-06-24 15:57 - 000000000 ____D C:\FRST
2019-06-18 07:58 - 2019-06-18 09:43 - 000000000 ___HD C:\$GetCurrent
2019-06-18 07:58 - 2019-06-18 09:43 - 000000000 ____D C:\Windows10Upgrade
2019-06-18 07:58 - 2019-06-18 08:29 - 000000731 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10 Update Assistant.lnk
2019-06-18 06:44 - 2019-06-18 09:35 - 000000000 ____D C:\Program Files\UNP
2019-06-15 13:23 - 2019-06-18 09:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2019-06-15 13:23 - 2019-06-15 13:23 - 000000914 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2019-06-15 13:23 - 2019-06-15 13:23 - 000000000 ____D C:\Program Files\CPUID
2019-06-14 19:19 - 2019-06-18 09:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2019-06-14 16:58 - 2018-12-07 14:32 - 000469688 _____ C:\WINDOWS\runkey.exe
2019-06-13 16:00 - 2019-06-13 16:00 - 000000000 ____D C:\Users\Slavicek\AppData\Local\mbamtray
2019-06-13 16:00 - 2019-06-13 16:00 - 000000000 ____D C:\Users\Slavicek\AppData\Local\mbam
2019-06-13 15:43 - 2019-06-13 16:03 - 000000000 ____D C:\Users\Slavicek\AppData\Roaming\gxxxunc4lxy
2019-06-13 15:43 - 2019-06-13 16:03 - 000000000 ____D C:\Program Files\PGE7KV0ZBR
2019-06-13 15:43 - 2019-06-13 15:43 - 000000000 ____D C:\ProgramData\Pader
2019-06-13 15:42 - 2019-06-13 16:03 - 000000000 ____D C:\Program Files (x86)\Rundll
2019-06-13 15:41 - 2019-06-18 15:26 - 000003262 __RSH C:\ProgramData\ntuser.pol
2019-06-13 15:41 - 2019-06-13 15:41 - 001895383 _____ C:\Users\Slavicek\AppData\Local\SumQvozap.bin
2019-06-13 15:40 - 2019-06-13 21:40 - 000000000 __SHD C:\ProgramData\FlashSys
2019-06-13 15:40 - 2019-06-13 15:54 - 000722944 _____ C:\Users\Slavicek\AppData\Local\sha.db
2019-06-13 15:40 - 2019-06-13 15:40 - 007942656 _____ C:\Users\Slavicek\AppData\Local\agent.dat
2019-06-13 15:40 - 2019-06-13 15:40 - 002039734 _____ C:\Users\Slavicek\AppData\Local\Vivalatlax.tst
2019-06-13 15:40 - 2019-06-13 15:40 - 001630720 _____ (TODO: <Company name>) C:\Users\Slavicek\AppData\Local\Vivalatlax.exe
2019-06-13 15:40 - 2019-06-13 15:40 - 001630720 _____ (TODO: <Company name>) C:\Users\Slavicek\AppData\Local\HatDonlax.exe
2019-06-13 15:40 - 2019-06-13 15:40 - 000140800 _____ C:\Users\Slavicek\AppData\Local\installer.dat
2019-06-13 15:40 - 2019-06-13 15:40 - 000126464 _____ C:\Users\Slavicek\AppData\Local\noah.dat
2019-06-13 15:40 - 2019-06-13 15:40 - 000126464 _____ C:\Users\Slavicek\AppData\Local\lobby.dat
2019-06-13 15:40 - 2019-06-13 15:40 - 000072787 _____ C:\Users\Slavicek\AppData\Local\HatDonlax.tst
2019-06-13 15:40 - 2019-06-13 15:40 - 000070992 _____ C:\Users\Slavicek\AppData\Local\Config.xml
2019-06-13 15:40 - 2019-06-13 15:40 - 000054272 _____ C:\Users\Slavicek\AppData\Local\ApplicationHosting.dat
2019-06-13 15:40 - 2019-06-13 15:40 - 000005568 _____ C:\Users\Slavicek\AppData\Local\md.xml
2019-06-13 15:40 - 2019-06-13 15:40 - 000000000 ___SH C:\Users\Slavicek\AppData\Roaming\6
2019-06-13 15:40 - 2019-06-13 15:40 - 000000000 ____D C:\Users\Slavicek\AppData\Local\AdvinstAnalytics
2019-06-09 14:40 - 2019-06-09 14:40 - 000000000 ____D C:\Users\Slavicek\AppData\Roaming\AMD
2019-06-09 14:38 - 2019-06-18 09:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2019-06-09 14:38 - 2019-06-09 14:43 - 000000000 ____D C:\Users\Slavicek\AppData\Roaming\obs-studio
2019-06-09 14:38 - 2019-06-09 14:38 - 000001052 _____ C:\Users\Public\Desktop\OBS Studio.lnk
2019-06-09 14:38 - 2019-06-09 14:38 - 000000000 ____D C:\Program Files\obs-studio
2019-06-09 14:37 - 2019-06-09 14:37 - 069794432 _____ (obsproject.com) C:\Users\Slavicek\Desktop\OBS-Studio-23.1-Full-Installer-x64.exe
2019-05-26 17:09 - 2019-06-04 17:20 - 000000000 ___DC C:\Users\Slavicek\Desktop\tabulka herbar
2019-05-25 18:55 - 2019-05-25 18:55 - 000000000 ___DC C:\Users\Slavicek\Documents\My Notebook Content
2019-05-25 18:55 - 2019-05-25 18:55 - 000000000 ___DC C:\Users\Slavicek\Documents\LabVIEW Data
2019-05-25 18:55 - 2019-05-25 18:55 - 000000000 ____D C:\Users\Slavicek\AppData\Roaming\SMART Technologies Inc
2019-05-25 18:55 - 2019-05-25 18:55 - 000000000 ____D C:\Users\Slavicek\AppData\Local\SMART Technologies Inc
2019-05-25 18:53 - 2019-05-25 18:55 - 000000000 ___DC C:\Users\Slavicek\Documents\SMART Notebook
2019-05-25 18:53 - 2019-05-25 18:55 - 000000000 ____D C:\Users\Slavicek\AppData\Local\SMART Technologies
2019-05-25 18:53 - 2019-05-25 18:54 - 000000000 ____D C:\Users\Slavicek\AppData\Roaming\SMART Technologies
2019-05-25 18:42 - 2019-06-14 17:01 - 000000000 ____D C:\ProgramData\SMART Technologies
2019-05-25 18:41 - 2019-05-25 18:52 - 000000000 ____D C:\ProgramData\Downloaded Installations
2019-05-25 18:30 - 2019-05-25 18:30 - 000000000 ___DC C:\Users\Slavicek\Documents\Electronic Arts
2019-05-25 11:18 - 2019-06-18 09:35 - 000000000 ____D C:\WINDOWS\system32\appmgmt

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-06-24 15:46 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-06-24 07:09 - 2018-03-28 13:16 - 000000000 ___DC C:\Users\Slavicek\AppData\Roaming\Origin
2019-06-23 20:52 - 2018-02-03 17:08 - 000000000 ___DC C:\Users\Slavicek\AppData\Roaming\vlc
2019-06-23 15:26 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-06-23 15:26 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2019-06-23 15:15 - 2018-08-10 08:55 - 000000000 ___DC C:\Users\Slavicek\AppData\Local\D3DSCache
2019-06-22 19:12 - 2018-10-04 19:11 - 000001432 ____C C:\Users\Slavicek\Desktop\Roblox Player.lnk
2019-06-22 19:12 - 2018-10-04 19:11 - 000001247 ____C C:\Users\Slavicek\Desktop\Roblox Studio.lnk
2019-06-22 19:12 - 2018-09-28 18:41 - 000000000 ___DC C:\Users\Slavicek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2019-06-22 19:10 - 2018-03-28 13:16 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-06-22 19:10 - 2018-03-28 13:15 - 000000000 ____D C:\Program Files (x86)\Origin
2019-06-22 19:10 - 2018-03-28 13:14 - 000000000 ____D C:\ProgramData\Origin
2019-06-22 18:05 - 2018-08-28 21:30 - 000006157 ____C C:\Users\Slavicek\Desktop\PS4.txt
2019-06-22 09:45 - 2018-01-23 16:21 - 000002171 ____C C:\Users\Slavicek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk
2019-06-20 06:38 - 2017-12-07 22:15 - 000002525 ____C C:\Users\Slavicek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-06-19 06:29 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\appcompat
2019-06-18 22:00 - 2018-03-12 15:41 - 000000000 __RDC C:\Users\Slavicek\Documents\Scanned Documents
2019-06-18 15:38 - 2018-03-30 21:22 - 000625188 _____ C:\WINDOWS\system32\perfh01B.dat
2019-06-18 15:38 - 2018-03-30 21:22 - 000178136 _____ C:\WINDOWS\system32\perfc01B.dat
2019-06-18 15:31 - 2019-03-19 06:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-06-18 15:31 - 2017-12-07 22:18 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2019-06-18 15:27 - 2017-12-07 22:13 - 000000000 ___RD C:\Users\Slavicek\OneDrive
2019-06-18 15:17 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-06-18 10:50 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2019-06-18 10:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-06-18 10:50 - 2018-08-10 09:11 - 000000000 ____D C:\ProgramData\Packages
2019-06-18 10:49 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-06-18 10:49 - 2017-12-07 22:11 - 000000000 ___DC C:\Users\Slavicek\AppData\Local\Packages
2019-06-18 09:43 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\USOPrivate
2019-06-18 09:43 - 2017-12-07 22:11 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-06-18 09:43 - 2017-12-07 22:11 - 000000000 ___RD C:\Users\Slavicek\3D Objects
2019-06-18 09:40 - 2019-03-19 06:52 - 000000000 __RSD C:\WINDOWS\Media
2019-06-18 09:38 - 2019-04-06 18:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TREZOR Bridge
2019-06-18 09:38 - 2019-03-19 06:52 - 000000000 __RHD C:\Users\Public\Libraries
2019-06-18 09:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2019-06-18 09:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Registration
2019-06-18 09:38 - 2019-03-16 09:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClownfishVoiceChanger
2019-06-18 09:38 - 2019-01-12 17:56 - 000000000 ___DC C:\Users\Slavicek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Plague Inc Evolved
2019-06-18 09:38 - 2018-12-26 18:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\ClockworkMod
2019-06-18 09:38 - 2018-12-18 17:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2019-06-18 09:38 - 2018-10-13 20:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-06-18 09:38 - 2018-09-30 09:44 - 000000000 ___DC C:\Users\Slavicek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blender
2019-06-18 09:38 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2019-06-18 09:38 - 2018-06-05 09:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GnuCash
2019-06-18 09:38 - 2018-03-28 13:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2019-06-18 09:38 - 2018-03-11 14:48 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.5
2019-06-18 09:38 - 2018-03-11 14:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2019-06-18 09:38 - 2018-02-12 17:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeKe
2019-06-18 09:38 - 2018-02-03 17:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2019-06-18 09:38 - 2018-01-23 17:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2019-06-18 09:38 - 2018-01-23 16:19 - 000000000 ___DC C:\Users\Slavicek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2019-06-18 09:38 - 2018-01-23 16:18 - 000000000 ___DC C:\Users\Slavicek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2019-06-18 09:38 - 2018-01-16 18:13 - 000000000 ___DC C:\Users\Slavicek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2019-06-18 09:38 - 2018-01-15 18:34 - 000000000 ___DC C:\Users\Slavicek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2019-06-18 09:38 - 2017-12-07 23:48 - 000000000 ___DC C:\Users\Slavicek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-06-18 09:38 - 2017-12-07 23:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-06-18 09:38 - 2017-12-07 23:46 - 000000000 ___DC C:\Users\Slavicek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2019-06-18 09:38 - 2017-12-07 22:17 - 000000000 ___DC C:\Users\Slavicek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome
2019-06-18 09:35 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\spool
2019-06-18 09:35 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ServiceState
2019-06-18 09:35 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-06-18 09:35 - 2019-03-19 06:49 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2019-06-18 09:35 - 2018-01-23 17:28 - 000000000 ____D C:\Program Files\AMD
2019-06-18 09:35 - 2017-09-29 15:46 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2019-06-18 09:27 - 2019-03-19 06:56 - 000000000 ____D C:\WINDOWS\Setup
2019-06-18 09:12 - 2019-04-17 21:31 - 000000000 ___DC C:\Users\Slavicek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2019-06-18 09:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-06-18 09:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Resources
2019-06-18 09:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Help
2019-06-18 09:12 - 2019-03-13 17:13 - 000000000 ___DC C:\Users\Slavicek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2019-06-18 09:12 - 2018-12-18 17:49 - 000000000 ___DC C:\Users\Slavicek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-06-18 09:12 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2019-06-18 09:12 - 2018-08-01 13:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2019-06-18 09:12 - 2018-01-23 17:51 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2019-06-18 09:10 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-06-18 09:10 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2019-06-18 09:10 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-06-18 09:10 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-06-18 09:10 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-06-18 09:10 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-06-18 09:10 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-06-18 09:04 - 2019-03-19 12:56 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2019-06-18 09:04 - 2019-03-19 12:56 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-06-18 09:04 - 2019-03-19 12:56 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2019-06-18 09:04 - 2019-03-19 12:54 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2019-06-18 09:04 - 2019-03-19 12:54 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2019-06-18 09:04 - 2019-03-19 12:54 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2019-06-18 09:04 - 2019-03-19 12:54 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2019-06-18 09:04 - 2019-03-19 12:54 - 000000000 ____D C:\WINDOWS\system32\winrm
2019-06-18 09:04 - 2019-03-19 12:54 - 000000000 ____D C:\WINDOWS\system32\WCN
2019-06-18 09:04 - 2019-03-19 12:54 - 000000000 ____D C:\WINDOWS\system32\slmgr
2019-06-18 09:04 - 2019-03-19 12:54 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\F12
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\MUI
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Com
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\IME
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Windows Defender
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\System
2019-06-18 09:04 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2019-06-18 09:04 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\servicing
2019-06-18 08:56 - 2019-03-19 07:00 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2019-06-18 08:56 - 2019-03-19 07:00 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2019-06-18 08:56 - 2019-03-19 07:00 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2019-06-18 08:56 - 2019-03-19 07:00 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2019-06-18 08:56 - 2019-03-19 07:00 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2019-06-18 08:56 - 2019-03-19 07:00 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2019-06-18 08:56 - 2019-03-19 07:00 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2019-06-18 08:56 - 2019-03-19 07:00 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2019-06-18 08:56 - 2019-03-19 07:00 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2019-06-18 08:56 - 2019-03-19 07:00 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2019-06-18 08:56 - 2019-03-19 07:00 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2019-06-18 08:56 - 2019-03-19 07:00 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2019-06-18 08:56 - 2019-03-19 07:00 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2019-06-18 08:56 - 2019-03-19 07:00 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2019-06-18 08:56 - 2019-03-19 07:00 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2019-06-18 08:56 - 2019-03-19 07:00 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2019-06-18 08:56 - 2019-03-19 07:00 - 000009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2019-06-18 08:56 - 2019-03-19 07:00 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2019-06-18 08:56 - 2019-03-19 07:00 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2019-06-18 08:56 - 2019-03-19 07:00 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2019-06-18 08:56 - 2019-03-19 07:00 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2019-06-18 08:56 - 2019-03-19 06:58 - 001401344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2019-06-18 08:56 - 2019-03-19 06:58 - 000783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2019-06-18 08:56 - 2019-03-19 06:58 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2019-06-18 08:56 - 2019-03-19 06:58 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2019-06-18 08:56 - 2019-03-19 06:58 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2019-06-18 08:56 - 2019-03-19 06:58 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2019-06-18 08:56 - 2019-03-19 06:58 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2019-06-18 08:56 - 2019-03-19 06:58 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2019-06-18 08:56 - 2019-03-19 06:58 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2019-06-18 08:56 - 2019-03-19 06:58 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2019-06-18 08:56 - 2019-03-19 06:58 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2019-06-18 08:56 - 2019-03-19 06:58 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2019-06-18 08:56 - 2019-03-19 06:58 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2019-06-18 08:56 - 2019-03-19 06:58 - 000009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2019-06-18 08:56 - 2019-03-19 06:57 - 000472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2019-06-18 08:56 - 2019-03-19 06:57 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2019-06-18 08:56 - 2019-03-19 06:57 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2019-06-18 08:56 - 2019-03-19 06:57 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2019-06-18 08:56 - 2019-03-19 06:57 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2019-06-18 08:56 - 2019-03-19 06:57 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2019-06-18 08:56 - 2019-03-19 06:57 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2019-06-18 08:56 - 2019-03-19 06:57 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2019-06-18 08:54 - 2019-03-19 12:55 - 000000000 ____D C:\WINDOWS\OCR
2019-06-18 08:54 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2019-06-18 08:54 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2019-06-18 08:54 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2019-06-18 08:54 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2019-06-18 08:54 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2019-06-18 08:54 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2019-06-18 08:54 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\et-EE
2019-06-18 08:54 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\es-MX
2019-06-18 08:17 - 2018-10-24 22:08 - 000000000 ____D C:\ESD
2019-06-18 07:45 - 2018-02-12 16:51 - 000000000 ____D C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}
2019-06-14 19:19 - 2018-12-15 11:49 - 000002559 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-06-14 19:19 - 2018-12-15 11:49 - 000002553 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-06-14 19:19 - 2018-12-15 11:49 - 000002530 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-06-14 19:19 - 2018-12-15 11:49 - 000002525 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-06-14 19:19 - 2018-12-15 11:49 - 000002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype pro firmy.lnk
2019-06-14 19:19 - 2018-12-15 11:49 - 000002486 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-06-14 19:19 - 2018-12-15 11:49 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-06-14 19:19 - 2018-12-15 11:49 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-06-14 19:19 - 2018-10-03 19:23 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-06-14 16:57 - 2018-11-11 12:43 - 000000000 ___DC C:\Users\Slavicek\AppData\Local\Opera Software
2019-06-14 16:57 - 2018-11-11 12:42 - 000000000 ___DC C:\Users\Slavicek\AppData\Roaming\Opera Software
2019-06-14 16:57 - 2018-05-03 15:15 - 000000000 ___DC C:\Users\Slavicek\AppData\LocalLow\Mozilla
2019-06-13 20:02 - 2018-12-15 11:08 - 000000000 ___DC C:\Users\Slavicek\Desktop\Adamko
2019-06-13 16:16 - 2019-01-12 19:38 - 000000000 ____D C:\Users\Slavicek\Downloads\opera autoupdate
2019-06-12 17:21 - 2019-03-13 17:13 - 000000000 ___DC C:\Users\Slavicek\AppData\Roaming\Discord
2019-06-12 10:30 - 2018-09-27 22:35 - 000000000 ___DC C:\Users\Slavicek\Desktop\kupa ps4
2019-06-11 20:18 - 2017-12-08 00:18 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-06-11 20:16 - 2017-12-08 00:18 - 135349160 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-06-08 23:28 - 2018-01-15 18:33 - 000000000 ___DC C:\Users\Slavicek\AppData\Local\JDownloader 2.0
2019-06-08 11:21 - 2019-03-16 09:03 - 000000344 ____C C:\Users\Slavicek\Documents\ClownfishVoiceChanger.ini
2019-06-05 16:01 - 2018-03-02 18:54 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-05-26 11:33 - 2018-10-13 20:39 - 000000000 ___DC C:\Users\Slavicek\AppData\Roaming\.minecraft
2019-05-25 11:16 - 2018-06-05 09:45 - 000000000 ____D C:\Users\Public\HMRC

==================== Files in the root of some directories ================

2019-04-17 17:11 - 2019-04-17 17:11 - 005294464 _____ (Microsoft Corporation) C:\Users\Slavicek\setup.exe
2019-06-13 15:40 - 2019-06-13 15:40 - 000000000 ___SH () C:\Users\Slavicek\AppData\Roaming\6
2019-03-19 06:43 - 2019-03-19 06:43 - 000000273 ___SH () C:\Users\Slavicek\AppData\Roaming\frdesci
2018-09-15 09:28 - 2018-09-15 09:28 - 000718336 ___SH (Google Inc.) C:\Users\Slavicek\AppData\Roaming\jwfgbtb
2019-06-13 15:40 - 2019-06-13 15:40 - 007942656 _____ () C:\Users\Slavicek\AppData\Local\agent.dat
2019-06-13 15:40 - 2019-06-13 15:40 - 000054272 _____ () C:\Users\Slavicek\AppData\Local\ApplicationHosting.dat
2019-06-13 15:40 - 2019-06-13 15:40 - 000070992 _____ () C:\Users\Slavicek\AppData\Local\Config.xml
2019-06-13 15:40 - 2019-06-13 15:40 - 001630720 _____ (TODO: <Company name>) C:\Users\Slavicek\AppData\Local\HatDonlax.exe
2019-06-13 15:40 - 2019-06-13 15:40 - 000072787 _____ () C:\Users\Slavicek\AppData\Local\HatDonlax.tst
2019-06-13 15:40 - 2019-06-13 15:40 - 000140800 _____ () C:\Users\Slavicek\AppData\Local\installer.dat
2019-06-13 15:40 - 2019-06-13 15:40 - 000126464 _____ () C:\Users\Slavicek\AppData\Local\lobby.dat
2019-06-13 15:40 - 2019-06-13 15:40 - 000005568 _____ () C:\Users\Slavicek\AppData\Local\md.xml
2019-06-13 15:40 - 2019-06-13 15:40 - 000126464 _____ () C:\Users\Slavicek\AppData\Local\noah.dat
2017-12-08 00:04 - 2017-12-08 00:04 - 000007604 ____C () C:\Users\Slavicek\AppData\Local\Resmon.ResmonCfg
2019-06-13 15:40 - 2019-06-13 15:54 - 000722944 _____ () C:\Users\Slavicek\AppData\Local\sha.db
2019-06-13 15:41 - 2019-06-13 15:41 - 001895383 _____ () C:\Users\Slavicek\AppData\Local\SumQvozap.bin
2019-06-13 15:41 - 2019-06-13 15:41 - 000032038 _____ () C:\Users\Slavicek\AppData\Local\uninstall_temp.ico
2019-06-13 15:40 - 2019-06-13 15:40 - 001630720 _____ (TODO: <Company name>) C:\Users\Slavicek\AppData\Local\Vivalatlax.exe
2019-06-13 15:40 - 2019-06-13 15:40 - 002039734 _____ () C:\Users\Slavicek\AppData\Local\Vivalatlax.tst

==================== FLock ================

2017-12-07 22:10 C:\WINDOWS\CSC

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================
Nahoru
durod
Návštěvník
Návštěvník
Příspěvky: 71
Registrován: 10 črc 2008 11:18

Re: Botnet - zjištěna infikace malwarem

#3 Příspěvek od durod »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-06-2019
Ran by Slavicek (24-06-2019 15:58:19)
Running from C:\Users\Slavicek\Pictures\Adamko\Trash
Windows 10 Pro Version 1903 18362.175 (X64) (2019-06-18 07:43:39)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-79263149-2179494062-2174528413-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-79263149-2179494062-2174528413-503 - Limited - Disabled)
Guest (S-1-5-21-79263149-2179494062-2174528413-501 - Limited - Disabled)
Slavicek (S-1-5-21-79263149-2179494062-2174528413-1001 - Administrator - Enabled) => C:\Users\Slavicek
WDAGUtilityAccount (S-1-5-21-79263149-2179494062-2174528413-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.1.1 - Advanced Micro Devices, Inc.)
Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version: - Ubisoft)
Blender (HKLM\...\{E29A1273-2E7A-40E7-AA63-428A11D59429}) (Version: 2.79.2 - Blender Foundation)
Clownfish Voice Changer (HKLM\...\ClownfishVoiceChanger) (Version: - )
CPUID CPU-Z 1.89 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.89 - CPUID, Inc.)
Discord (HKU\S-1-5-21-79263149-2179494062-2174528413-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{93BFE5DF-776E-436F-8693-DF1F72C0E3C1}) (Version: 1.1.151.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
f.lux (HKU\S-1-5-21-79263149-2179494062-2174528413-1001\...\Flux) (Version: - f.lux Software LLC)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.0.1.1049 - Foxit Software Inc.)
GnuCash 3.1 (HKLM-x32\...\GnuCash_is1) (Version: - GnuCash Development Team)
Google Chrome (HKU\S-1-5-21-79263149-2179494062-2174528413-1001\...\Google Chrome) (Version: 75.0.3770.100 - Google LLC)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000060-0200-1033-84C8-B8D95FA3C8C3}) (Version: 20.60.0 - Intel Corporation)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Life Is Strange - Complete First Season verze 1.0 u13 (HKLM-x32\...\{2EC1CC17-23FA-49C5-898C-F15B3F708B7E}_is1) (Version: 1.0 u13 - )
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 16.0.11629.20246 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-79263149-2179494062-2174528413-1001\...\OneDriveSetup.exe) (Version: 19.002.0107.0005 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 61.0.2 (x64 sk) (HKLM\...\Mozilla Firefox 61.0.2 (x64 sk)) (Version: 61.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 59.0.3 - Mozilla)
MSI Afterburner 4.4.2 (HKLM-x32\...\Afterburner) (Version: 4.4.2 - MSI Co., LTD)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 23.1.0 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11629.20246 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11629.20246 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11629.20246 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.11629.20246 - Microsoft Corporation) Hidden
OpenOffice 4.1.5 (HKLM-x32\...\{E177AC33-EC9C-4537-8996-37ED331D9227}) (Version: 4.15.9789 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.40.26928 - Electronic Arts, Inc.)
paint.net (HKLM\...\{B998B716-4001-4919-BA90-BA14B51DFEB5}) (Version: 4.1.6 - dotPDN LLC)
Plague Inc Evolved (HKLM-x32\...\Plague Inc Evolved) (Version: - Plague Inc Evolved)
RivaTuner Statistics Server 7.0.2 (HKLM-x32\...\RTSS) (Version: 7.0.2 - Unwinder)
Roblox Player for Slavicek (HKU\S-1-5-21-79263149-2179494062-2174528413-1001\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for Slavicek (HKU\S-1-5-21-79263149-2179494062-2174528413-1001\...\roblox-studio) (Version: - Roblox Corporation)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TechSmith Screen Capture Codec (HKLM-x32\...\{84FE50F5-B0F3-4D18-8BE8-A4DEEE0C37AD}) (Version: 4.1.1.0 - TechSmith Corporation) Hidden
The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.52.100.1020 - Electronic Arts Inc.)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.12 - Ghisler Software GmbH)
Universal Adb Driver (HKLM-x32\...\{C0E08D8D-6076-4117-B644-2AF34F35B757}) (Version: 1.0.4 - ClockworkMod)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{B2E25355-C24E-4E7D-8AD3-455D59810838}) (Version: 2.57.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.8 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.0 (HKLM\...\VulkanRT1.0.65.0) (Version: 1.0.65.0 - LunarG, Inc.) Hidden
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22807 - Microsoft Corporation)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - CACE Technologies)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Wondershare Filmora(Build 8.7.2) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software)

Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_1.7.0.0_x64__tf1gferkr813w [2017-12-07] (Autodesk Inc.)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_4.1.2.0_x86__kgqvnymyfvs32 [2017-12-07] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.101.900.0_x86__kgqvnymyfvs32 [2017-12-07] (king.com)
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_2.6.0.9_x86__h6adky7gbf63m [2017-12-07] (Gameloft.)
File Viewer Plus -> C:\Program Files\WindowsApps\SharpenedProductions.FileViewerPlus_3.1.1.0_x86__xkt78gamzntbr [2018-12-16] (Sharpened Productions)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_85.1.379.0_x64__v10z8vjag6ke6 [2018-08-10] (HP Inc.)
Mail and Calendar -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe [2019-06-18] (Microsoft Corporation) [MS Ad]
March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_2.9.0.10_x86__h6adky7gbf63m [2017-12-07] (Gameloft.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1804.2.0_x86__8wekyb3d8bbwe [2019-04-28] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2019-06-18] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.2.11280.0_x86__8wekyb3d8bbwe [2019-06-18] (Microsoft Studios) [MS Ad]
MSN News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.21.2212.0_x64__8wekyb3d8bbwe [2017-12-07] (Microsoft Corporation) [MS Ad]
MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.25.20211.0_x64__8wekyb3d8bbwe [2019-06-18] (Microsoft Corporation) [MS Ad]
TVHPlayer Beta -> C:\Program Files\WindowsApps\9388Wally.465111A6D3D5_0.9.2.5_x86__srjp817t7b3e0 [2018-02-03] (Wally)
WinZip Universal -> C:\Program Files\WindowsApps\WinZipComputing.WinZipUniversal_1.1.18.0_x64__3ykzqggjzj4z0 [2017-12-07] (WinZip Computing)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-79263149-2179494062-2174528413-1001_Classes\CLSID\{62634D95-960B-4834-8E71-A70408AD8FD9}\InprocServer32 -> C:\Users\Slavicek\AppData\Local\Google\Update\1.3.34.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-79263149-2179494062-2174528413-1001_Classes\CLSID\{86508D42-E5D7-4D10-9C6F-D427AEEB85B5}\InprocServer32 -> C:\Users\Slavicek\AppData\Local\Google\Update\1.3.34.11\psuser_64.dll (Google Inc -> Google LLC)
CustomCLSID: HKU\S-1-5-21-79263149-2179494062-2174528413-1001_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\Slavicek\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-79263149-2179494062-2174528413-1001_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\75.0.3770.100\notification_helper.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-79263149-2179494062-2174528413-1001_Classes\CLSID\{A804CF1A-91E5-4F0C-9E8C-DB39E74056DD}\InprocServer32 -> C:\Users\Slavicek\AppData\Local\Google\Update\1.3.33.23\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-79263149-2179494062-2174528413-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Slavicek\AppData\Local\Google\Update\1.3.34.11\psuser_64.dll (Google Inc -> Google LLC)
CustomCLSID: HKU\S-1-5-21-79263149-2179494062-2174528413-1001_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\Slavicek\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll => No File
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-12-11] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2018-01-12] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-12-11] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\Slavicek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome\Videostream for Google Chromecast™.lnk -> C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=cnciopoikihiagdjbjpnocolokfelagl
ShortcutWithArgument: C:\Users\Slavicek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\e4e87164dc0ac3b3\adamer.rosik@gmail.com - Chrome.lnk -> C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) ==============

2018-05-19 19:39 - 2018-05-19 19:39 - 098275328 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2018-05-19 19:39 - 2018-05-19 19:39 - 000092672 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2018-05-19 19:39 - 2018-05-19 19:39 - 003922432 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2017-12-14 19:56 - 2017-12-14 19:56 - 000232448 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2017-12-14 19:56 - 2017-12-14 19:56 - 000056832 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2017-12-14 19:57 - 2017-12-14 19:57 - 000566784 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2017-12-14 19:56 - 2017-12-14 19:56 - 000071680 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2017-12-14 19:56 - 2017-12-14 19:56 - 000357888 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2018-03-28 13:15 - 2019-05-25 09:55 - 000015360 _____ () [File not signed] C:\Program Files (x86)\Origin\libEGL.DLL
2018-03-28 13:15 - 2019-05-25 09:55 - 003090944 _____ () [File not signed] C:\Program Files (x86)\Origin\libGLESv2.dll
2017-12-14 19:46 - 2017-12-14 19:46 - 000055808 _____ () [File not signed] C:\Program Files (x86)\RivaTuner Statistics Server\RTFC.dll
2017-12-14 19:46 - 2017-12-14 19:46 - 000071680 _____ () [File not signed] C:\Program Files (x86)\RivaTuner Statistics Server\RTMUI.dll
2017-12-14 19:46 - 2017-12-14 19:46 - 000353792 _____ () [File not signed] C:\Program Files (x86)\RivaTuner Statistics Server\RTUI.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000015360 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2017-06-05 06:13 - 2017-06-05 06:13 - 002519040 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2018-01-12 17:42 - 2018-01-12 17:42 - 001433088 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\CNext\CNext\atiacm64.dll
2018-01-12 17:59 - 2018-01-12 17:59 - 000155688 _____ (AMD PMP-PE CB Code Signer v20170331 -> Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\SYSTEM32\amdihk64.dll
2018-05-19 19:39 - 2018-05-19 19:39 - 000547840 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2019-06-22 19:10 - 2018-03-28 13:15 - 000002560 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icudt58.dll
2019-06-22 19:10 - 2018-03-28 13:15 - 001252864 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icuuc58.dll
2018-03-28 13:15 - 2018-03-28 13:15 - 001548288 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2018-03-28 13:15 - 2018-03-28 13:15 - 000395776 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\SSLEAY32.dll
2019-06-22 19:10 - 2019-05-25 09:55 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qgif.dll
2019-06-22 19:10 - 2019-05-25 09:55 - 000032768 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qico.dll
2019-06-22 19:10 - 2019-05-25 09:55 - 000256512 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2019-06-22 19:10 - 2019-05-25 09:55 - 000026112 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtga.dll
2019-06-22 19:10 - 2019-05-25 09:55 - 000305152 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2019-06-22 19:10 - 2019-05-25 09:55 - 000025600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2018-03-28 13:15 - 2019-05-25 09:55 - 000278016 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\mediaservice\dsengine.dll
2018-03-28 13:15 - 2019-05-25 09:55 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2019-06-22 19:10 - 2019-05-25 09:56 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2019-06-22 19:10 - 2019-05-25 09:56 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2019-06-22 19:10 - 2019-05-25 09:56 - 000709120 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Multimedia.dll
2019-06-22 19:10 - 2019-05-25 09:56 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2019-06-22 19:10 - 2019-05-25 09:56 - 000207360 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Positioning.dll
2019-06-22 19:10 - 2019-05-25 09:56 - 000310272 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5PrintSupport.dll
2019-06-22 19:10 - 2019-05-25 09:56 - 003513344 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Qml.dll
2019-06-22 19:10 - 2019-05-25 09:56 - 003390976 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Quick.dll
2019-06-22 19:10 - 2019-05-25 09:56 - 000068096 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5QuickWidgets.dll
2019-06-22 19:10 - 2019-05-25 09:56 - 000045568 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5TextToSpeech.dll
2019-06-22 19:10 - 2019-05-25 09:56 - 000116224 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebChannel.dll
2019-06-22 19:10 - 2019-05-25 09:56 - 054064128 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineCore.dll
2019-06-22 19:10 - 2019-05-25 09:56 - 000211456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineWidgets.dll
2019-06-22 19:10 - 2019-05-25 09:56 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2019-06-22 19:10 - 2019-05-25 09:56 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2019-06-22 19:10 - 2019-05-25 09:56 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000032768 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000039936 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000034816 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000237568 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000025600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000025600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000024064 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000481792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 001336832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2018-01-12 17:42 - 2018-01-12 17:42 - 005766144 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 006045696 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 001204736 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000279552 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 003234304 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 003406848 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000328704 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000110080 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000325632 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 068669952 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 005523456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000283136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000194560 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 003281408 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000049152 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000018432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000018432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000311296 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000089600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2017-06-05 06:13 - 2017-06-05 06:13 - 000018432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\AppData:CSM [474]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [476]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 15:46 - 2019-06-13 15:42 - 000001116 _____ C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 space1.adminpressure.space
127.0.0.1 trackpressure.website
127.0.0.1 htagzdownload.pw
127.0.0.1 360devtraking.website
127.0.0.1 room1.360dev.info
127.0.0.1 djapp.info
127.0.0.1 sharefolder.online
127.0.0.1 telechargini.com
127.0.0.1 fffffk.xyz
127.0.0.1 smarttrackk.xyz

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-79263149-2179494062-2174528413-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Slavicek\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\20190623_115234.jpg
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-79263149-2179494062-2174528413-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-79263149-2179494062-2174528413-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-79263149-2179494062-2174528413-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-79263149-2179494062-2174528413-1001\...\StartupApproved\Run: => "7304226"
HKU\S-1-5-21-79263149-2179494062-2174528413-1001\...\StartupApproved\Run: => "3XBF5784YLKYYGS"
HKU\S-1-5-21-79263149-2179494062-2174528413-1001\...\StartupApproved\Run: => "1796984"
HKU\S-1-5-21-79263149-2179494062-2174528413-1001\...\StartupApproved\Run: => "seemzxo"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{03513F34-92B9-4159-9D45-25E792C05DEA}C:\windows\syswow64\svchost.exe] => (Block) C:\windows\syswow64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [TCP Query User{6A536E7A-8E44-4524-A015-0B3AE2EF2758}C:\windows\syswow64\svchost.exe] => (Block) C:\windows\syswow64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{2F57C7F8-CE95-4BB7-8709-4C21208B2284}] => (Allow) C:\Users\Slavicek\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe No File
FirewallRules: [{6D1C8152-5782-46DA-B579-91963A579134}] => (Allow) C:\WINDOWS\rss\csrss.exe No File
FirewallRules: [{CB5CA05E-19A5-4B8C-9BDC-C36422E9A1A2}] => (Allow) C:\Users\Slavicek\AppData\Local\Programs\Opera\60.0.3255.151\opera.exe No File
FirewallRules: [{EB92E8D1-018A-4798-83E7-452A4A94CA0C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{53B2B6EB-E441-4621-A27C-E787C96C45ED}] => (Allow) C:\Users\Slavicek\AppData\Local\Programs\Opera\60.0.3255.109\opera.exe No File
FirewallRules: [UDP Query User{C7ED3982-2FA5-4641-A7E1-A76E6218DE34}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe No File
FirewallRules: [TCP Query User{37BF5091-A596-474C-895B-15D57AF62A1D}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe No File
FirewallRules: [UDP Query User{80CA397F-28C0-4324-A944-64D3AE847B31}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{B6F84E87-F3A6-4FCC-8AAD-EC6F4012977A}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{773B181C-39B5-4CAE-A59C-58A29C33978E}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{C48DA8F7-478C-49D2-826B-38A28941F83D}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{BB8013A1-8737-4796-974B-FEC547E46011}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B4785CCF-2BF9-4073-B95E-CDD5A5B7E5AD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4632AB01-333F-425E-9928-32DD9DEEC0C4}] => (Allow) LPort=5558
FirewallRules: [{E46849C2-A68F-4A05-A31D-D7AED9CEC7F1}] => (Allow) LPort=5556
FirewallRules: [UDP Query User{C4C4583E-4F9D-4352-97E4-37933D8DEF9D}C:\users\slavicek\desktop\odorik.exe] => (Allow) C:\users\slavicek\desktop\odorik.exe (Odorik.cz) [File not signed]
FirewallRules: [TCP Query User{5A872D68-D54C-4FF2-AAEA-1E1D5677C520}C:\users\slavicek\desktop\odorik.exe] => (Allow) C:\users\slavicek\desktop\odorik.exe (Odorik.cz) [File not signed]
FirewallRules: [{4A314205-58FA-4627-B21E-65541C998966}] => (Block) C:\users\slavicek\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{5891494F-428A-495B-AAD4-44EFB87EFA30}] => (Block) C:\users\slavicek\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{59C644F9-81E3-4E6B-9BB6-5393916B4DBE}C:\users\slavicek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\slavicek\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{03994D94-3F24-4EBA-9C0F-75D2129C31D8}C:\users\slavicek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\slavicek\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{28819002-4F9A-4009-9115-BB46B6D616DF}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe No File
FirewallRules: [UDP Query User{0DB069FE-766F-4822-9D31-C851767C5AE5}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe No File
FirewallRules: [{6EC6DAC7-B3B7-4A97-B35B-EA1C502533A4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BDD97B8D-0757-4C58-BFB0-52292BF6F71B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{D81B8BD3-3B67-474B-BA6D-72323733FC90}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{DB4862B7-1CCF-4A9E-8DE8-028661F902C9}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [TCP Query User{BC7B43CA-FB4B-41AC-813B-53D919F4B380}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{BDB3C070-E70C-4E42-8F61-586C39B065D9}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{21D88489-CFD7-45BD-8BBB-1102D7AC41BD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{08C3FB04-6BD8-4D9E-BF37-A6ED81186C0A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F7CC01F0-022A-4F39-BB12-B3B175F6AF59}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{77E768F0-6AEE-41B1-AB2E-1B3F10B0E7F3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{E2CB89DF-2405-43EA-A234-247400346EB2}] => (Allow) D:1\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe No File
FirewallRules: [{707EDAE2-899A-4843-9D1F-6DA8E56FAE0C}] => (Allow) D:1\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe No File
FirewallRules: [{958CB981-D5FB-4B77-A164-8E8A7FBA2665}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{C16555BE-0705-47B9-8006-C0F2B77A340A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A7F06730-A410-438D-8873-B1282607A9A2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{34EE703D-91F4-4DC4-831F-8FFA67A2B85C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{07B99EB4-C9D7-47C2-B401-74FB262FF525}D:\xgames\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\xgames\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{806382E6-DB0C-451E-91F8-0F8CB29398BB}D:\xgames\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\xgames\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{E9E85B90-8151-4607-BD85-7B12830AA327}] => (Allow) D:\Ubisoft Game Launcher\games\Assassin's Creed Unity\ACU.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{42C37B5A-BEF7-4BED-A76A-F2B767FB1397}] => (Allow) D:\Ubisoft Game Launcher\games\Assassin's Creed Unity\ACU.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{6A9210C1-805D-496E-9637-89E46F38576D}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{53329BC7-A8FF-479B-A350-48A0BF0753EC}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{897727BA-5DD0-402D-8ECE-10DAF261B55D}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{CA8DE110-38E6-47CB-AC5B-2A975DF54D50}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/23/2019 03:51:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program TOTALCMD64.EXE version 9.1.2.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: ed8

Start Time: 01d529c839cffa16

Termination Time: 4294967295

Application Path: C:\Program Files\totalcmd\TOTALCMD64.EXE

Report Id: c5c020a2-8820-492a-8d49-f5abc55965ec

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (06/23/2019 03:42:31 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program rundll32.exe version 10.0.18362.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 2324

Start Time: 01d529c94a9a640a

Termination Time: 12987

Application Path: C:\Windows\System32\rundll32.exe

Report Id: 58fb8049-f184-47c2-a296-e111f8e92d50

Faulting package full name:

Faulting package-relative application ID:

Hang type: Unknown

Error: (06/23/2019 03:37:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program rundll32.exe version 10.0.18362.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 3444

Start Time: 01d529c88f4f9fe8

Termination Time: 273

Application Path: C:\Windows\System32\rundll32.exe

Report Id: 088fb853-6aef-414b-a289-1a73d9396994

Faulting package full name:

Faulting package-relative application ID:

Hang type: Unknown

Error: (06/23/2019 03:33:00 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program TOTALCMD64.EXE version 9.1.2.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 31a4

Start Time: 01d529be87fb2ba0

Termination Time: 4294967295

Application Path: C:\Program Files\totalcmd\TOTALCMD64.EXE

Report Id: c3639755-a2aa-4515-99e4-fd28af6e90bc

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (06/19/2019 05:40:15 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program vlc.exe version 2.2.8.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 81c

Start Time: 01d526b468e6942c

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\VideoLAN\VLC\vlc.exe

Report Id: 6de4c224-252b-4808-9ece-cd8ab939a44f

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (06/19/2019 05:33:50 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program vlc.exe version 2.2.8.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 940

Start Time: 01d526b263bb9781

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\VideoLAN\VLC\vlc.exe

Report Id: 5015a2ce-e151-434e-b894-5818fad3a30c

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (06/18/2019 10:01:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Microsoft.Photos.exe, version: 2019.18114.19410.0, time stamp: 0x5c5610e0
Faulting module name: SharedLibrary.dll, version: 2.2.27011.1, time stamp: 0x5bc013a9
Exception code: 0x00001007
Fault offset: 0x00000000007e368e
Faulting process ID: 0x2538
Faulting application start time: 0x01d525e36f855651
Faulting application path: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.19418.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
Faulting module path: C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.2.2_2.2.27011.0_x64__8wekyb3d8bbwe\SharedLibrary.dll
Report ID: 7654646a-ce9a-4a7b-80bf-0b830cc8c131
Faulting package full name: Microsoft.Windows.Photos_2019.18114.19418.0_x64__8wekyb3d8bbwe
Faulting package-relative application ID: App

Error: (06/18/2019 03:32:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Explorer.EXE, version: 10.0.18362.145, time stamp: 0x8a1c1adf
Faulting module name: ntdll.dll, version: 10.0.18362.145, time stamp: 0xd3b10352
Exception code: 0xc0000374
Fault offset: 0x00000000000f9269
Faulting process ID: 0x173c
Faulting application start time: 0x01d525da32dd2b27
Faulting application path: C:\WINDOWS\Explorer.EXE
Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll
Report ID: df080afb-a300-40b3-b249-0a63381fafb0
Faulting package full name:
Faulting package-relative application ID:


System errors:
=============
Error: (06/24/2019 06:55:48 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (06/23/2019 10:03:07 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (06/23/2019 04:04:10 PM) (Source: disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk3\DR5, has a bad block.

Error: (06/23/2019 04:04:07 PM) (Source: disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk3\DR5, has a bad block.

Error: (06/23/2019 04:04:04 PM) (Source: disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk3\DR5, has a bad block.

Error: (06/23/2019 04:04:01 PM) (Source: disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk3\DR5, has a bad block.

Error: (06/23/2019 04:03:58 PM) (Source: disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk3\DR5, has a bad block.

Error: (06/23/2019 04:03:55 PM) (Source: disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk3\DR5, has a bad block.


==================== Memory info ===========================

BIOS: American Megatrends Inc. 1608 05/10/2011
Motherboard: ASUSTeK Computer INC. P8P67
Processor: Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz
Percentage of memory in use: 28%
Total physical RAM: 16360.79 MB
Available physical RAM: 11686.81 MB
Total Virtual: 19304.79 MB
Available Virtual: 11417.62 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:88.89 GB) (Free:17.92 GB) NTFS
Drive d: (Nový zväzok) (Fixed) (Total:345.57 GB) (Free:15.03 GB) NTFS
Drive e: (Install_FIlmy) (Fixed) (Total:585.94 GB) (Free:64.9 GB) NTFS
Drive f: (Nový zväzok) (Fixed) (Total:376.27 GB) (Free:64.27 GB) NTFS
Drive g: () (Fixed) (Total:110 GB) (Free:5.29 GB) NTFS
Drive h: (Adrika) (Fixed) (Total:109.89 GB) (Free:7.94 GB) NTFS

\\?\Volume{05a743f9-0000-0000-0000-100000000000}\ (Vyhradené systémom) (Fixed) (Total:0.54 GB) (Free:0.12 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 4284FF7D)
Partition 1: (Not Active) - (Size=345.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=585.9 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 596.2 GB) (Disk ID: 9B64CFD8)
Partition 1: (Not Active) - (Size=376.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=219.9 GB) - (Type=0F Extended)

========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 89.4 GB) (Disk ID: 05A743F9)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=88.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================
Nahoru
durod
Návštěvník
Návštěvník
Příspěvky: 71
Registrován: 10 črc 2008 11:18

Re: Botnet - zjištěna infikace malwarem

#4 Příspěvek od durod »

misto widows defender mam tohle
Obrázek
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Botnet - zjištěna infikace malwarem

#5 Příspěvek od Conder »

Ahoj :)

:arrow: Urob sken PC cez KVRT a posli log - https://www.kaspersky.com/downloads/tha ... moval-tool
Navod, ale so starsimi screenshotmi: https://forum.viry.cz/viewtopic.php?f=29&t=58179
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
durod
Návštěvník
Návštěvník
Příspěvky: 71
Registrován: 10 črc 2008 11:18

Re: Botnet - zjištěna infikace malwarem

#6 Příspěvek od durod »

Nevztvorilo to zadny kopirovatelny log.

Udelal jsem screenshot
Poprve to naslo 3 virusy
Přílohy
kaspersky AV tool.png
kaspersky AV tool.png (41.86 KiB) Zobrazeno 4312 x
Nahoru
durod
Návštěvník
Návštěvník
Příspěvky: 71
Registrován: 10 črc 2008 11:18

Re: Botnet - zjištěna infikace malwarem

#7 Příspěvek od durod »

Pote mne to vyzvalo restartovat a pokracoval scanning
vysledek je zde:
Obrázek
Obrázek
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Botnet - zjištěna infikace malwarem

#8 Příspěvek od Conder »

:arrow: Stiahni TDSSKiller: http://www.bleepingcomputer.com/download/tdsskiller/
  • Uloz na plochu a spusti ako spravca
  • Potvrd licencne podmienky
  • Klikni na Change parameters a zaskrtni "Loaded modules"
  • Potvrd restart PC kliknutim na "Reboot Now"
  • Po restartovani klikni na "Start Scan" a pockaj na dokoncenie
  • V pripade nalezov vyber u vsetkych nalezov "Skip" a klikni na "Continue"
  • Klikni na "Report" (vpravo hore) a tento log sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
durod
Návštěvník
Návštěvník
Příspěvky: 71
Registrován: 10 črc 2008 11:18

Re: Botnet - zjištěna infikace malwarem

#9 Příspěvek od durod »

Nenaslo nic, report zde
21:32:53.0916 0x2c2c TDSS rootkit removing tool 3.1.0.28 Apr 9 2019 21:11:46
21:32:57.0872 0x2c2c ============================================================
21:32:57.0872 0x2c2c Current date / time: 2019/06/24 21:32:57.0872
21:32:57.0872 0x2c2c SystemInfo:
21:32:57.0872 0x2c2c
21:32:57.0872 0x2c2c OS Version: 10.0.18362 ServicePack: 0.0
21:32:57.0872 0x2c2c Product type: Workstation
21:32:57.0872 0x2c2c ComputerName: DESKTOP-KQ46S14
21:32:57.0872 0x2c2c UserName: Slavicek
21:32:57.0872 0x2c2c Windows directory: C:\WINDOWS
21:32:57.0872 0x2c2c System windows directory: C:\WINDOWS
21:32:57.0872 0x2c2c Running under WOW64
21:32:57.0872 0x2c2c Processor architecture: Intel x64
21:32:57.0872 0x2c2c Number of processors: 4
21:32:57.0872 0x2c2c Page size: 0x1000
21:32:57.0872 0x2c2c Boot type: Normal boot
21:32:57.0872 0x2c2c CodeIntegrityOptions = 0x00000001
21:32:57.0872 0x2c2c ============================================================
21:32:57.0872 0x2c2c KLMD ARK init status: drvProperties = 0xFFFF00, osBuild = 18362.1, osProperties = 0x19
21:32:57.0872 0x2c2c KLMD BG init status: drvProperties = 0xFFFF00, osBuild = 18362.1, osProperties = 0x19
21:32:57.0872 0x2c2c BG loaded
21:32:57.0934 0x2c2c System UUID: {B4E290B6-ADCB-8477-EFE1-6AD3D16CA7B9}
21:32:58.0028 0x2c2c Drive \Device\Harddisk0\DR0 - Size: 0xE8E0CADE00 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:32:58.0043 0x2c2c Drive \Device\Harddisk1\DR1 - Size: 0x950AF4DE00 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:32:58.0043 0x2c2c Drive \Device\Harddisk2\DR2 - Size: 0x165BBCDE00 ( 89.43 Gb ), SectorSize: 0x200, Cylinders: 0x2D9A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:32:58.0043 0x2c2c ============================================================
21:32:58.0043 0x2c2c \Device\Harddisk0\DR0:
21:32:58.0043 0x2c2c MBR partitions:
21:32:58.0043 0x2c2c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2B325800
21:32:58.0043 0x2c2c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2B326000, BlocksNum 0x493DF000
21:32:58.0043 0x2c2c \Device\Harddisk1\DR1:
21:32:58.0043 0x2c2c MBR partitions:
21:32:58.0043 0x2c2c \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2F08A800
21:32:58.0059 0x2c2c \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x2F08C000, BlocksNum 0xDC01FF8
21:32:58.0075 0x2c2c \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x3CC8E000, BlocksNum 0xDBC8800
21:32:58.0075 0x2c2c \Device\Harddisk2\DR2:
21:32:58.0075 0x2c2c MBR partitions:
21:32:58.0075 0x2c2c \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x112800
21:32:58.0075 0x2c2c \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0x113000, BlocksNum 0xB1CA000
21:32:58.0075 0x2c2c ============================================================
21:32:58.0075 0x2c2c C: <-> \Device\Harddisk2\DR2\Partition2
21:32:58.0106 0x2c2c D: <-> \Device\Harddisk0\DR0\Partition1
21:32:58.0106 0x2c2c E: <-> \Device\Harddisk0\DR0\Partition2
21:32:58.0153 0x2c2c F: <-> \Device\Harddisk1\DR1\Partition1
21:32:58.0184 0x2c2c G: <-> \Device\Harddisk1\DR1\Partition2
21:32:58.0215 0x2c2c H: <-> \Device\Harddisk1\DR1\Partition3
21:32:58.0215 0x2c2c ============================================================
21:32:58.0215 0x2c2c Initialize success
21:32:58.0215 0x2c2c ============================================================
21:33:11.0938 0x2c98 ============================================================
21:33:11.0938 0x2c98 Scan started
21:33:11.0938 0x2c98 Mode: Manual;
21:33:11.0938 0x2c98 ============================================================
21:33:11.0938 0x2c98 KSN ping started
21:33:12.0016 0x2c98 KSN ping finished: true
21:33:13.0594 0x2c98 ================ Scan BIOS =================================
21:33:13.0594 0x2c98 BIOS info: vendor = American Megatrends Inc., version = 1608, releaseDate = 05/10/2011
21:33:13.0594 0x2c98 Base board info: manufacturer = ASUSTeK Computer INC., product = P8P67, version = Rev 1.xx
21:33:15.0907 0x2c98 [ 6B78D777B4BA99B970DCA22764D29387, E96780A37FA46941EDFF8CFA3BE059B64E3B8BB04D9C76FB64B8F3D084634A72 ] BIOS
21:33:15.0907 0x2c98 BIOS - ok
21:33:15.0907 0x2c98 ================ Scan system memory ========================
21:33:15.0907 0x2c98 System memory - ok
21:33:15.0923 0x2c98 ================ Scan services =============================
21:33:15.0969 0x2c98 1394ohci - ok
21:33:15.0985 0x2c98 3ware - ok
21:33:15.0985 0x2c98 AarSvc - ok
21:33:15.0985 0x2c98 ACPI - ok
21:33:15.0985 0x2c98 AcpiDev - ok
21:33:16.0001 0x2c98 acpiex - ok
21:33:16.0001 0x2c98 acpipagr - ok
21:33:16.0001 0x2c98 AcpiPmi - ok
21:33:16.0001 0x2c98 acpitime - ok
21:33:16.0001 0x2c98 Acx01000 - ok
21:33:16.0016 0x2c98 ADP80XX - ok
21:33:16.0016 0x2c98 AFD - ok
21:33:16.0016 0x2c98 afunix - ok
21:33:16.0016 0x2c98 ahcache - ok
21:33:16.0016 0x2c98 AJRouter - ok
21:33:16.0032 0x2c98 ALG - ok
21:33:16.0048 0x2c98 [ 21D0D2ACAC5C86A2BB0602A704F93EF7, 933ED34750DCCB89315487D3652E0F969C985A32283E008198C24A663166AFB1 ] AMD External Events Utility C:\WINDOWS\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiesrxx.exe
21:33:16.0063 0x2c98 AMD External Events Utility - ok
21:33:16.0063 0x2c98 amdgpio2 - ok
21:33:16.0063 0x2c98 amdi2c - ok
21:33:16.0079 0x2c98 AmdK8 - ok
21:33:16.0079 0x2c98 amdkmdag - ok
21:33:16.0094 0x2c98 [ EBCE8EF1728AF57A619CDDFD92CDFE33, 4E404950397831D2F3238337626AC6D8AF926515B89A188AB66BEA194DE0E1F7 ] amdkmdap C:\WINDOWS\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atikmpag.sys
21:33:16.0094 0x2c98 amdkmdap - ok
21:33:16.0094 0x2c98 AmdPPM - ok
21:33:16.0110 0x2c98 amdsata - ok
21:33:16.0110 0x2c98 amdsbs - ok
21:33:16.0110 0x2c98 amdxata - ok
21:33:16.0110 0x2c98 AppID - ok
21:33:16.0110 0x2c98 AppIDSvc - ok
21:33:16.0110 0x2c98 Appinfo - ok
21:33:16.0126 0x2c98 applockerfltr - ok
21:33:16.0126 0x2c98 AppMgmt - ok
21:33:16.0126 0x2c98 AppReadiness - ok
21:33:16.0126 0x2c98 AppVClient - ok
21:33:16.0126 0x2c98 AppvStrm - ok
21:33:16.0141 0x2c98 AppvVemgr - ok
21:33:16.0141 0x2c98 AppvVfs - ok
21:33:16.0141 0x2c98 AppXSvc - ok
21:33:16.0141 0x2c98 arcsas - ok
21:33:16.0141 0x2c98 AssignedAccessManagerSvc - ok
21:33:16.0157 0x2c98 [ 53BB10742E10991AF4AD280FCB134151, 65008817EB97635826A8708A6411D7B50F762BAB81304E457119D669382944C3 ] aswArPot C:\WINDOWS\system32\drivers\aswArPot.sys
21:33:16.0157 0x2c98 aswArPot - ok
21:33:16.0266 0x2c98 [ 520ECC2C8BC6979A6C9623D0309F2DA8, B16AC2831A89AE98DCF2E6A1A5F4274F3C3438099B4521AE693953327678CBE9 ] aswbIDSAgent C:\Program Files\AVAST Software\Avast\aswidsagent.exe
21:33:16.0360 0x2c98 aswbIDSAgent - ok
21:33:16.0376 0x2c98 [ DD8DF0E7B74C52A2746C70CE7EAB8741, FDB8B9E752AB38785DE131387A077DC00B6E7DB657D895FC70A2EA541A846E7C ] aswbidsdriver C:\WINDOWS\system32\drivers\aswbidsdriver.sys
21:33:16.0376 0x2c98 aswbidsdriver - ok
21:33:16.0376 0x2c98 [ 00136B36119C6739243769EBD9043469, E4173A628D63633895566B5FB2ABFBD419231CD4570C51C8F2BB5EDD8778827A ] aswbidsh C:\WINDOWS\system32\drivers\aswbidsh.sys
21:33:16.0376 0x2c98 aswbidsh - ok
21:33:16.0391 0x2c98 [ 04205DBD938ED0FEF2C0691A4E5F497E, 916C3459BF442D9F5CFD43442F70B91D2A9D69585E45BA6804A1F1DB8F77266F ] aswbuniv C:\WINDOWS\system32\drivers\aswbuniv.sys
21:33:16.0391 0x2c98 aswbuniv - ok
21:33:16.0391 0x2c98 [ 51EAD3FF390326279C353D871F1EB0C1, 882AB9EC8F0270E8B9CF7299BA3AF99F173AC6BAA9131741C2E8B29C0B84BC39 ] aswElam C:\WINDOWS\system32\drivers\aswElam.sys
21:33:16.0391 0x2c98 aswElam - ok
21:33:16.0391 0x2c98 [ 0F4C355B3ED29C14C4B6D85030709077, 044AD5C09D3E194A382B3585EDA4E81300FCFEFB8A9205B54B7A2ADCD3038DAA ] aswKbd C:\WINDOWS\system32\drivers\aswKbd.sys
21:33:16.0391 0x2c98 aswKbd - ok
21:33:16.0407 0x2c98 [ 9C1AB79940120DFC30EA8F7D599FA222, 42B24D333D7ECB8E78FCAF30D8BCFBEB71970576CB958165AD09B820F12E20D5 ] aswMonFlt C:\WINDOWS\system32\drivers\aswMonFlt.sys
21:33:16.0407 0x2c98 aswMonFlt - ok
21:33:16.0423 0x2c98 [ 6562B09D325506BC8E9B731310407077, 5EEE0B6797F70AB2430A4D5458904EF09B6FFE41DDA9B702D8B1E25526EE6E67 ] aswNetSec C:\WINDOWS\system32\drivers\aswNetSec.sys
21:33:16.0423 0x2c98 aswNetSec - ok
21:33:16.0423 0x2c98 [ 5E5491B5B9B9BB144C5130F050B6208A, 7E3C17A2AA784B67A3FD124CD8B5C5F5AC6C6919332AA776BA07DD1048ACE92B ] aswRdr C:\WINDOWS\system32\drivers\aswRdr2.sys
21:33:16.0438 0x2c98 aswRdr - ok
21:33:16.0438 0x2c98 [ BA75118126C0F0743E43EE5211DEA16B, E0CA5BB4A7A54A7C2F534006D5DB02D777D39C66AFA2B6E66908DA45046A51D2 ] aswRvrt C:\WINDOWS\system32\drivers\aswRvrt.sys
21:33:16.0438 0x2c98 aswRvrt - ok
21:33:16.0454 0x2c98 [ 881E6B1E718C42DA4A57A63643C253F9, 3E4350013EE887499EC0560747465BCA6AB272C631CA466A2C429BE53488662D ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
21:33:16.0469 0x2c98 aswSnx - ok
21:33:16.0485 0x2c98 [ 44E0D836AB00D71C425918D3707B523F, EF7EDE5A1F4F5D4A8D6968D27D2E1F81219F9C4ED51FAD0AD6C918386A5A4BE5 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
21:33:16.0485 0x2c98 aswSP - ok
21:33:16.0501 0x2c98 [ 7485E13DFD9DCF4E398F44AD71B4CE3B, 66D4388AC3F27F8E12B1EBB953A8890452C53E5D4F93E4B62C126C644DB0610A ] aswStm C:\WINDOWS\system32\drivers\aswStm.sys
21:33:16.0501 0x2c98 aswStm - ok
21:33:16.0501 0x2c98 [ DA06CF75DE5314B5A1D7FF366BBD5166, D4AD8022D8BBBF0BE014FF7E73943F7027E78FBDBEB49F24092E36052F7861D2 ] aswVmm C:\WINDOWS\system32\drivers\aswVmm.sys
21:33:16.0516 0x2c98 aswVmm - ok
21:33:16.0516 0x2c98 AsyncMac - ok
21:33:16.0516 0x2c98 atapi - ok
21:33:16.0532 0x2c98 [ D1A54E20877DBE8F5772FD249B0A6F2C, 671EAC571E8A987067F09D5BAD5BDAE5B346FAE3192B9E2FEB9953AC378EC968 ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdWT6.sys
21:33:16.0532 0x2c98 AtiHDAudioService - ok
21:33:16.0532 0x2c98 AudioEndpointBuilder - ok
21:33:16.0532 0x2c98 Audiosrv - ok
21:33:16.0532 0x2c98 autotimesvc - ok
21:33:16.0548 0x2c98 [ 7E9BC13F9711047BF1C6DA0B2584BD7E, BAD6FEFC7F3F997ACD63724389246A62C5BABDDE6D82A9BB2455B56768A66498 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
21:33:16.0548 0x2c98 avast! Antivirus - ok
21:33:16.0563 0x2c98 [ 15F4D9B956B218A34C3EAC24C9C76A85, 086E4649C237DFF503EDD3E3CFB08CBA9780178EC5EC97555961E6714D3EC418 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
21:33:16.0563 0x2c98 avast! Firewall - ok
21:33:16.0563 0x2c98 [ 39C1A0150B844E75B7B510C064D409D7, 7A331DD98B8BB126A3F782B5E5994E650E8CE131D60085DB4B4FDEB8C84300C9 ] AvastWscReporter C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
21:33:16.0563 0x2c98 AvastWscReporter - ok
21:33:16.0579 0x2c98 AxInstSV - ok
21:33:16.0579 0x2c98 b06bdrv - ok
21:33:16.0579 0x2c98 bam - ok
21:33:16.0579 0x2c98 BasicDisplay - ok
21:33:16.0579 0x2c98 BasicRender - ok
21:33:16.0594 0x2c98 BcastDVRUserService - ok
21:33:16.0594 0x2c98 bcmfn2 - ok
21:33:16.0594 0x2c98 BDESVC - ok
21:33:16.0594 0x2c98 Beep - ok
21:33:16.0735 0x2c98 [ 4C7A320A62D6C56CFFC7B8F0B83C2511, 02E163F1F5FACCE5406181BE8BF7D2376802EF2D0CCD79AC1B9562C49B265FCF ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
21:33:16.0844 0x2c98 BEService - ok
21:33:16.0844 0x2c98 BFE - ok
21:33:16.0860 0x2c98 bindflt - ok
21:33:16.0860 0x2c98 BITS - ok
21:33:16.0860 0x2c98 BluetoothUserService - ok
21:33:16.0860 0x2c98 bowser - ok
21:33:16.0860 0x2c98 BrokerInfrastructure - ok
21:33:16.0876 0x2c98 BTAGService - ok
21:33:16.0876 0x2c98 BthA2dp - ok
21:33:16.0876 0x2c98 BthAvctpSvc - ok
21:33:16.0876 0x2c98 BthEnum - ok
21:33:16.0876 0x2c98 BthHFEnum - ok
21:33:16.0891 0x2c98 BthLEEnum - ok
21:33:16.0891 0x2c98 BthMini - ok
21:33:16.0891 0x2c98 BTHMODEM - ok
21:33:16.0891 0x2c98 BTHPORT - ok
21:33:16.0891 0x2c98 bthserv - ok
21:33:16.0891 0x2c98 BTHUSB - ok
21:33:16.0907 0x2c98 bttflt - ok
21:33:16.0907 0x2c98 buttonconverter - ok
21:33:16.0907 0x2c98 CAD - ok
21:33:16.0907 0x2c98 camsvc - ok
21:33:16.0907 0x2c98 CaptureService - ok
21:33:16.0923 0x2c98 cbdhsvc - ok
21:33:16.0923 0x2c98 cdfs - ok
21:33:16.0923 0x2c98 CDPSvc - ok
21:33:16.0923 0x2c98 CDPUserSvc - ok
21:33:16.0938 0x2c98 cdrom - ok
21:33:16.0938 0x2c98 CertPropSvc - ok
21:33:16.0938 0x2c98 cht4iscsi - ok
21:33:16.0938 0x2c98 cht4vbd - ok
21:33:16.0938 0x2c98 circlass - ok
21:33:16.0938 0x2c98 CldFlt - ok
21:33:16.0954 0x2c98 CLFS - ok
21:33:17.0141 0x2c98 [ 457CB99DFD97BF60B1B18534C7503B6E, E281B8659BD55054E427CB20F16E958893E37BA4FFC4817D3B74887F9E68AE92 ] ClickToRunSvc C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
21:33:17.0282 0x2c98 ClickToRunSvc - ok
21:33:17.0298 0x2c98 ClipSVC - ok
21:33:17.0298 0x2c98 CmBatt - ok
21:33:17.0298 0x2c98 CNG - ok
21:33:17.0298 0x2c98 cnghwassist - ok
21:33:17.0313 0x2c98 CompositeBus - ok
21:33:17.0313 0x2c98 COMSysApp - ok
21:33:17.0313 0x2c98 condrv - ok
21:33:17.0313 0x2c98 ConsentUxUserSvc - ok
21:33:17.0313 0x2c98 CoreMessagingRegistrar - ok
21:33:17.0329 0x2c98 CredentialEnrollmentManagerUserSvc - ok
21:33:17.0329 0x2c98 CredentialEnrollmentManagerUserSvc_452771 - ok
21:33:17.0329 0x2c98 CryptSvc - ok
21:33:17.0329 0x2c98 CSC - ok
21:33:17.0329 0x2c98 CscService - ok
21:33:17.0344 0x2c98 dam - ok
21:33:17.0344 0x2c98 DcomLaunch - ok
21:33:17.0344 0x2c98 defragsvc - ok
21:33:17.0344 0x2c98 DeviceAssociationBrokerSvc - ok
21:33:17.0344 0x2c98 DeviceAssociationService - ok
21:33:17.0360 0x2c98 DeviceInstall - ok
21:33:17.0360 0x2c98 DevicePickerUserSvc - ok
21:33:17.0360 0x2c98 DevicesFlowUserSvc - ok
21:33:17.0360 0x2c98 DevQueryBroker - ok
21:33:17.0360 0x2c98 Dfsc - ok
21:33:17.0376 0x2c98 [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
21:33:17.0376 0x2c98 dg_ssudbus - ok
21:33:17.0376 0x2c98 Dhcp - ok
21:33:17.0376 0x2c98 diagnosticshub.standardcollector.service - ok
21:33:17.0376 0x2c98 diagsvc - ok
21:33:17.0391 0x2c98 disk - ok
21:33:17.0391 0x2c98 DispBrokerDesktopSvc - ok
21:33:17.0391 0x2c98 DisplayEnhancementService - ok
21:33:17.0391 0x2c98 DmEnrollmentSvc - ok
21:33:17.0391 0x2c98 dmvsc - ok
21:33:17.0391 0x2c98 Dnscache - ok
21:33:17.0407 0x2c98 dot3svc - ok
21:33:17.0407 0x2c98 DPS - ok
21:33:17.0407 0x2c98 drmkaud - ok
21:33:17.0407 0x2c98 DsmSvc - ok
21:33:17.0407 0x2c98 DsSvc - ok
21:33:17.0423 0x2c98 DusmSvc - ok
21:33:17.0423 0x2c98 DXGKrnl - ok
21:33:17.0423 0x2c98 Eaphost - ok
21:33:17.0438 0x2c98 [ 119EB6D23AACDD2BE31DCEEF11F0E1F4, 68502C3F57A7CE3F858D57A0BD19FEA4E096AB631523B0090A7D074C72537D14 ] EasyAntiCheat C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
21:33:17.0454 0x2c98 EasyAntiCheat - ok
21:33:17.0454 0x2c98 ebdrv - ok
21:33:17.0454 0x2c98 EFS - ok
21:33:17.0454 0x2c98 EhStorClass - ok
21:33:17.0454 0x2c98 EhStorTcgDrv - ok
21:33:17.0469 0x2c98 embeddedmode - ok
21:33:17.0469 0x2c98 EntAppSvc - ok
21:33:17.0469 0x2c98 ErrDev - ok
21:33:17.0469 0x2c98 EventLog - ok
21:33:17.0485 0x2c98 EventSystem - ok
21:33:17.0485 0x2c98 exfat - ok
21:33:17.0485 0x2c98 fastfat - ok
21:33:17.0485 0x2c98 Fax - ok
21:33:17.0485 0x2c98 fdc - ok
21:33:17.0485 0x2c98 fdPHost - ok
21:33:17.0501 0x2c98 FDResPub - ok
21:33:17.0501 0x2c98 fhsvc - ok
21:33:17.0501 0x2c98 FileCrypt - ok
21:33:17.0501 0x2c98 FileInfo - ok
21:33:17.0501 0x2c98 Filetrace - ok
21:33:17.0501 0x2c98 flpydisk - ok
21:33:17.0516 0x2c98 FltMgr - ok
21:33:17.0516 0x2c98 FontCache - ok
21:33:17.0516 0x2c98 FontCache3.0.0.0 - ok
21:33:17.0548 0x2c98 [ 6EA68C9EE76B7CC7FC556AE5FD184B5A, F0E5BDD8432F7BE76211CBF4A4D75A916C9EEC59D7C608DE30A49B5A87CE08C1 ] FoxitReaderService C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
21:33:17.0563 0x2c98 FoxitReaderService - ok
21:33:17.0563 0x2c98 FrameServer - ok
21:33:17.0579 0x2c98 FsDepends - ok
21:33:17.0579 0x2c98 Fs_Rec - ok
21:33:17.0579 0x2c98 fvevol - ok
21:33:17.0579 0x2c98 gencounter - ok
21:33:17.0579 0x2c98 genericusbfn - ok
21:33:17.0594 0x2c98 GPIOClx0101 - ok
21:33:17.0594 0x2c98 gpsvc - ok
21:33:17.0594 0x2c98 GpuEnergyDrv - ok
21:33:17.0594 0x2c98 GraphicsPerfSvc - ok
21:33:17.0594 0x2c98 HdAudAddService - ok
21:33:17.0594 0x2c98 HDAudBus - ok
21:33:17.0610 0x2c98 HidBatt - ok
21:33:17.0610 0x2c98 HidBth - ok
21:33:17.0610 0x2c98 hidi2c - ok
21:33:17.0610 0x2c98 hidinterrupt - ok
21:33:17.0610 0x2c98 HidIr - ok
21:33:17.0610 0x2c98 hidserv - ok
21:33:17.0626 0x2c98 hidspi - ok
21:33:17.0626 0x2c98 HidUsb - ok
21:33:17.0626 0x2c98 HpSAMD - ok
21:33:17.0626 0x2c98 HTTP - ok
21:33:17.0641 0x2c98 hvcrash - ok
21:33:17.0641 0x2c98 HvHost - ok
21:33:17.0641 0x2c98 hvservice - ok
21:33:17.0641 0x2c98 HwNClx0101 - ok
21:33:17.0641 0x2c98 hwpolicy - ok
21:33:17.0641 0x2c98 hyperkbd - ok
21:33:17.0657 0x2c98 HyperVideo - ok
21:33:17.0657 0x2c98 i8042prt - ok
21:33:17.0657 0x2c98 iagpio - ok
21:33:17.0657 0x2c98 iai2c - ok
21:33:17.0657 0x2c98 iaLPSS2i_GPIO2 - ok
21:33:17.0657 0x2c98 iaLPSS2i_GPIO2_BXT_P - ok
21:33:17.0673 0x2c98 iaLPSS2i_GPIO2_CNL - ok
21:33:17.0673 0x2c98 iaLPSS2i_GPIO2_GLK - ok
21:33:17.0673 0x2c98 iaLPSS2i_I2C - ok
21:33:17.0673 0x2c98 iaLPSS2i_I2C_BXT_P - ok
21:33:17.0673 0x2c98 iaLPSS2i_I2C_CNL - ok
21:33:17.0688 0x2c98 iaLPSS2i_I2C_GLK - ok
21:33:17.0688 0x2c98 iaLPSSi_GPIO - ok
21:33:17.0688 0x2c98 iaLPSSi_I2C - ok
21:33:17.0688 0x2c98 iaStorAVC - ok
21:33:17.0688 0x2c98 iaStorV - ok
21:33:17.0688 0x2c98 ibbus - ok
21:33:17.0704 0x2c98 icssvc - ok
21:33:17.0704 0x2c98 IKEEXT - ok
21:33:17.0704 0x2c98 IndirectKmd - ok
21:33:17.0704 0x2c98 InstallService - ok
21:33:17.0704 0x2c98 intelide - ok
21:33:17.0719 0x2c98 intelpep - ok
21:33:17.0719 0x2c98 intelpmax - ok
21:33:17.0719 0x2c98 intelppm - ok
21:33:17.0719 0x2c98 iorate - ok
21:33:17.0719 0x2c98 IpFilterDriver - ok
21:33:17.0719 0x2c98 iphlpsvc - ok
21:33:17.0735 0x2c98 IPMIDRV - ok
21:33:17.0735 0x2c98 IPNAT - ok
21:33:17.0735 0x2c98 IPT - ok
21:33:17.0735 0x2c98 IpxlatCfgSvc - ok
21:33:17.0735 0x2c98 isapnp - ok
21:33:17.0735 0x2c98 iScsiPrt - ok
21:33:17.0751 0x2c98 ItSas35i - ok
21:33:17.0751 0x2c98 kbdclass - ok
21:33:17.0751 0x2c98 kbdhid - ok
21:33:17.0751 0x2c98 kdnic - ok
21:33:17.0751 0x2c98 KeyIso - ok
21:33:17.0751 0x2c98 KSecDD - ok
21:33:17.0766 0x2c98 KSecPkg - ok
21:33:17.0766 0x2c98 ksthunk - ok
21:33:17.0766 0x2c98 KtmRm - ok
21:33:17.0766 0x2c98 LanmanServer - ok
21:33:17.0766 0x2c98 LanmanWorkstation - ok
21:33:17.0782 0x2c98 lfsvc - ok
21:33:17.0782 0x2c98 [ A6F294B38F3DFB67D6B6E1D1E60A402A, 11C51B35DB2A3510258F3B722C12326BF068360CFA1E81FF552BA0BD19DE38E8 ] LGBusEnum C:\WINDOWS\system32\drivers\LGBusEnum.sys
21:33:17.0782 0x2c98 LGBusEnum - ok
21:33:17.0782 0x2c98 [ 2A9F60E6531F42B31874618743037719, BFD61AD03ADEF69421ECB07820EDB79D425048EC01A65A0D1E8A4527699196DC ] LGJoyXlCore C:\WINDOWS\system32\drivers\LGJoyXlCore.sys
21:33:17.0782 0x2c98 LGJoyXlCore - ok
21:33:17.0782 0x2c98 LicenseManager - ok
21:33:17.0798 0x2c98 lltdio - ok
21:33:17.0798 0x2c98 lltdsvc - ok
21:33:17.0798 0x2c98 lmhosts - ok
21:33:17.0798 0x2c98 LSI_SAS - ok
21:33:17.0798 0x2c98 LSI_SAS2i - ok
21:33:17.0813 0x2c98 LSI_SAS3i - ok
21:33:17.0813 0x2c98 LSI_SSS - ok
21:33:17.0813 0x2c98 LSM - ok
21:33:17.0813 0x2c98 luafv - ok
21:33:17.0813 0x2c98 LxpSvc - ok
21:33:17.0829 0x2c98 MapsBroker - ok
21:33:17.0829 0x2c98 mausbhost - ok
21:33:17.0829 0x2c98 mausbip - ok
21:33:17.0829 0x2c98 [ 31E4AC0C3D3BAC32082304BD43560760, 228CA2A510BB8BBF0E0AB29455BB0961B82774FF74E664BB20A864758B8B0904 ] MbamElam C:\WINDOWS\system32\DRIVERS\MbamElam.sys
21:33:17.0829 0x2c98 MbamElam - ok
21:33:17.0954 0x2c98 [ 4223C695C09CC3027B839803BB0359A1, A6CD44D233429F40DF3D0E411C98D88F7188EF5F66052E2E3ED703BABADC9438 ] MBAMService C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
21:33:18.0032 0x2c98 MBAMService - ok
21:33:18.0032 0x2c98 MbbCx - ok
21:33:18.0032 0x2c98 megasas - ok
21:33:18.0048 0x2c98 megasas2i - ok
21:33:18.0048 0x2c98 megasas35i - ok
21:33:18.0048 0x2c98 megasr - ok
21:33:18.0048 0x2c98 [ 8EC6459491D8508BBA5E3CEC5C930914, E01AEE2E6F569429BC5582AEB63A2CB288499A878B0806D21CC9D78F00E0B284 ] MEIx64 C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
21:33:18.0063 0x2c98 MEIx64 - ok
21:33:18.0063 0x2c98 MessagingService - ok
21:33:18.0063 0x2c98 Microsoft_Bluetooth_AvrcpTransport - ok
21:33:18.0063 0x2c98 mlx4_bus - ok
21:33:18.0063 0x2c98 MMCSS - ok
21:33:18.0079 0x2c98 Modem - ok
21:33:18.0079 0x2c98 monitor - ok
21:33:18.0079 0x2c98 mouclass - ok
21:33:18.0079 0x2c98 mouhid - ok
21:33:18.0079 0x2c98 mountmgr - ok
21:33:18.0094 0x2c98 [ 6B9E93FF7C9213359E548A494D733D52, 406CE127B6F8B4334B4EADD35788246E50FB505FE1E391B91FF60B1E56348295 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:33:18.0094 0x2c98 MozillaMaintenance - ok
21:33:18.0094 0x2c98 mpsdrv - ok
21:33:18.0094 0x2c98 mpssvc - ok
21:33:18.0094 0x2c98 MQAC - ok
21:33:18.0110 0x2c98 MRxDAV - ok
21:33:18.0110 0x2c98 mrxsmb - ok
21:33:18.0110 0x2c98 mrxsmb20 - ok
21:33:18.0110 0x2c98 MsBridge - ok
21:33:18.0110 0x2c98 MSDTC - ok
21:33:18.0126 0x2c98 Msfs - ok
21:33:18.0126 0x2c98 msgpiowin32 - ok
21:33:18.0126 0x2c98 mshidkmdf - ok
21:33:18.0126 0x2c98 mshidumdf - ok
21:33:18.0126 0x2c98 msisadrv - ok
21:33:18.0126 0x2c98 MSiSCSI - ok
21:33:18.0141 0x2c98 msiserver - ok
21:33:18.0141 0x2c98 MSKSSRV - ok
21:33:18.0141 0x2c98 MsLldp - ok
21:33:18.0141 0x2c98 MSMQ - ok
21:33:18.0141 0x2c98 MSPCLOCK - ok
21:33:18.0141 0x2c98 MSPQM - ok
21:33:18.0157 0x2c98 MsRPC - ok
21:33:18.0157 0x2c98 MsSecFlt - ok
21:33:18.0157 0x2c98 mssmbios - ok
21:33:18.0157 0x2c98 MSTEE - ok
21:33:18.0157 0x2c98 MTConfig - ok
21:33:18.0173 0x2c98 Mup - ok
21:33:18.0173 0x2c98 mvumis - ok
21:33:18.0173 0x2c98 NativeWifiP - ok
21:33:18.0173 0x2c98 NaturalAuthentication - ok
21:33:18.0173 0x2c98 NcaSvc - ok
21:33:18.0173 0x2c98 NcbService - ok
21:33:18.0188 0x2c98 NcdAutoSetup - ok
21:33:18.0188 0x2c98 ndfltr - ok
21:33:18.0188 0x2c98 NDIS - ok
21:33:18.0188 0x2c98 NdisCap - ok
21:33:18.0188 0x2c98 NdisImPlatform - ok
21:33:18.0204 0x2c98 NdisTapi - ok
21:33:18.0204 0x2c98 Ndisuio - ok
21:33:18.0204 0x2c98 NdisVirtualBus - ok
21:33:18.0204 0x2c98 NdisWan - ok
21:33:18.0204 0x2c98 ndiswanlegacy - ok
21:33:18.0204 0x2c98 NDKPing - ok
21:33:18.0219 0x2c98 ndproxy - ok
21:33:18.0219 0x2c98 Ndu - ok
21:33:18.0219 0x2c98 NetAdapterCx - ok
21:33:18.0219 0x2c98 NetBIOS - ok
21:33:18.0219 0x2c98 NetBT - ok
21:33:18.0235 0x2c98 Netlogon - ok
21:33:18.0235 0x2c98 Netman - ok
21:33:18.0235 0x2c98 netprofm - ok
21:33:18.0235 0x2c98 NetSetupSvc - ok
21:33:18.0251 0x2c98 NetTcpPortSharing - ok
21:33:18.0251 0x2c98 netvsc - ok
21:33:18.0251 0x2c98 NgcCtnrSvc - ok
21:33:18.0251 0x2c98 NgcSvc - ok
21:33:18.0251 0x2c98 NlaSvc - ok
21:33:18.0266 0x2c98 [ DE7FCC77F4A503AF4CA6A47D49B3713D, 4BFAA99393F635CD05D91A64DE73EDB5639412C129E049F0FE34F88517A10FC6 ] npf C:\WINDOWS\system32\drivers\npf.sys
21:33:18.0266 0x2c98 npf - ok
21:33:18.0266 0x2c98 Npfs - ok
21:33:18.0266 0x2c98 npsvctrig - ok
21:33:18.0266 0x2c98 nsi - ok
21:33:18.0266 0x2c98 nsiproxy - ok
21:33:18.0282 0x2c98 Ntfs - ok
21:33:18.0282 0x2c98 Null - ok
21:33:18.0282 0x2c98 nvdimm - ok
21:33:18.0282 0x2c98 nvraid - ok
21:33:18.0282 0x2c98 nvstor - ok
21:33:18.0298 0x2c98 OneSyncSvc - ok
21:33:18.0329 0x2c98 [ 0C42A8B66F5EDDA04760C12F8264E644, DA3184A8B8465196F01A1B2F5F5D9839A1E8B782CB9A2CEA2299F7D3D4AE7F44 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
21:33:18.0360 0x2c98 Origin Client Service - ok
21:33:18.0423 0x2c98 [ 5FB1A8EB513DD1CB6D03C445615C6C7E, C6F62D45900F93F473FE448EB30DFA8AB6221244FDD618D6F6E19524893C1BCB ] Origin Web Helper Service C:\Program Files (x86)\Origin\OriginWebHelperService.exe
21:33:18.0454 0x2c98 Origin Web Helper Service - ok
21:33:18.0469 0x2c98 [ 24459799BCCFF1CDF47D9DD1E1999B1A, AEED77DBD8244893F12E3AE0B389E8B919CB298D20DFAB075D39CF99BD21EB53 ] ose c:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:33:18.0469 0x2c98 ose - ok
21:33:18.0469 0x2c98 p2pimsvc - ok
21:33:18.0469 0x2c98 p2psvc - ok
21:33:18.0485 0x2c98 Parport - ok
21:33:18.0485 0x2c98 partmgr - ok
21:33:18.0485 0x2c98 PcaSvc - ok
21:33:18.0485 0x2c98 pci - ok
21:33:18.0485 0x2c98 pciide - ok
21:33:18.0485 0x2c98 pcmcia - ok
21:33:18.0501 0x2c98 pcw - ok
21:33:18.0501 0x2c98 pdc - ok
21:33:18.0501 0x2c98 PEAUTH - ok
21:33:18.0501 0x2c98 PeerDistSvc - ok
21:33:18.0501 0x2c98 perceptionsimulation - ok
21:33:18.0516 0x2c98 percsas2i - ok
21:33:18.0516 0x2c98 percsas3i - ok
21:33:18.0548 0x2c98 PerfHost - ok
21:33:18.0548 0x2c98 PhoneSvc - ok
21:33:18.0548 0x2c98 PimIndexMaintenanceSvc - ok
21:33:18.0563 0x2c98 PktMon - ok
21:33:18.0563 0x2c98 pla - ok
21:33:18.0563 0x2c98 PlugPlay - ok
21:33:18.0563 0x2c98 pmem - ok
21:33:18.0563 0x2c98 PNPMEM - ok
21:33:18.0579 0x2c98 PNRPAutoReg - ok
21:33:18.0579 0x2c98 PNRPsvc - ok
21:33:18.0579 0x2c98 PolicyAgent - ok
21:33:18.0579 0x2c98 portcfg - ok
21:33:18.0579 0x2c98 Power - ok
21:33:18.0594 0x2c98 PptpMiniport - ok
21:33:18.0657 0x2c98 [ 6173803E45D401CB58BBD1BD34DFDA59, EF086494C47CF19CA8586C54AD5FE87F2CE2BD3D4D767EFA917110BEFDBFCF7A ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
21:33:18.0704 0x2c98 PrintNotify - ok
21:33:18.0704 0x2c98 PrintWorkflowUserSvc - ok
21:33:18.0719 0x2c98 Processor - ok
21:33:18.0719 0x2c98 ProfSvc - ok
21:33:18.0719 0x2c98 Psched - ok
21:33:18.0719 0x2c98 PushToInstall - ok
21:33:18.0719 0x2c98 QWAVE - ok
21:33:18.0719 0x2c98 QWAVEdrv - ok
21:33:18.0735 0x2c98 Ramdisk - ok
21:33:18.0735 0x2c98 RasAcd - ok
21:33:18.0735 0x2c98 RasAgileVpn - ok
21:33:18.0735 0x2c98 RasAuto - ok
21:33:18.0735 0x2c98 Rasl2tp - ok
21:33:18.0751 0x2c98 RasMan - ok
21:33:18.0751 0x2c98 RasPppoe - ok
21:33:18.0751 0x2c98 RasSstp - ok
21:33:18.0751 0x2c98 rdbss - ok
21:33:18.0751 0x2c98 rdpbus - ok
21:33:18.0766 0x2c98 RDPDR - ok
21:33:18.0766 0x2c98 RdpVideoMiniport - ok
21:33:18.0766 0x2c98 rdyboost - ok
21:33:18.0766 0x2c98 ReFS - ok
21:33:18.0766 0x2c98 ReFSv1 - ok
21:33:18.0782 0x2c98 RemoteAccess - ok
21:33:18.0782 0x2c98 RemoteRegistry - ok
21:33:18.0782 0x2c98 RetailDemo - ok
21:33:18.0782 0x2c98 RFCOMM - ok
21:33:18.0782 0x2c98 rhproxy - ok
21:33:18.0798 0x2c98 RmSvc - ok
21:33:18.0798 0x2c98 RpcEptMapper - ok
21:33:18.0798 0x2c98 RpcLocator - ok
21:33:18.0798 0x2c98 RpcSs - ok
21:33:18.0798 0x2c98 rspndr - ok
21:33:18.0813 0x2c98 rt640x64 - ok
21:33:18.0813 0x2c98 [ 2D8E4F38B36C334D0A32A7324832501D, 01AA278B07B58DC46C84BD0B1B5C8E9EE4E62EA0BF7A695862444AF32E87F1FD ] RTCore64 C:\Program Files (x86)\MSI Afterburner\RTCore64.sys
21:33:18.0813 0x2c98 RTCore64 - ok
21:33:18.0813 0x2c98 s3cap - ok
21:33:18.0813 0x2c98 SamSs - ok
21:33:18.0829 0x2c98 sbp2port - ok
21:33:18.0829 0x2c98 SCardSvr - ok
21:33:18.0829 0x2c98 ScDeviceEnum - ok
21:33:18.0829 0x2c98 scfilter - ok
21:33:18.0829 0x2c98 Schedule - ok
21:33:18.0844 0x2c98 scmbus - ok
21:33:18.0844 0x2c98 SCPolicySvc - ok
21:33:18.0844 0x2c98 [ 0447065A6E10774EFCECFDD0EB970A79, 384A9AC72E756F96D43EE4B144A466564476AFD8778092C979116BB29A514433 ] ScpVBus C:\WINDOWS\System32\drivers\ScpVBus.sys
21:33:18.0844 0x2c98 ScpVBus - ok
21:33:18.0844 0x2c98 sdbus - ok
21:33:18.0844 0x2c98 SDFRd - ok
21:33:18.0860 0x2c98 SDRSVC - ok
21:33:18.0860 0x2c98 sdstor - ok
21:33:18.0860 0x2c98 seclogon - ok
21:33:18.0860 0x2c98 SEMgrSvc - ok
21:33:18.0860 0x2c98 SENS - ok
21:33:18.0876 0x2c98 SensorDataService - ok
21:33:18.0876 0x2c98 SensorService - ok
21:33:18.0876 0x2c98 SensrSvc - ok
21:33:18.0876 0x2c98 SerCx - ok
21:33:18.0876 0x2c98 SerCx2 - ok
21:33:18.0891 0x2c98 Serenum - ok
21:33:18.0891 0x2c98 Serial - ok
21:33:18.0891 0x2c98 sermouse - ok
21:33:18.0891 0x2c98 SessionEnv - ok
21:33:18.0907 0x2c98 sfloppy - ok
21:33:18.0907 0x2c98 SgrmAgent - ok
21:33:18.0907 0x2c98 SgrmBroker - ok
21:33:18.0907 0x2c98 SharedAccess - ok
21:33:18.0923 0x2c98 SharedRealitySvc - ok
21:33:18.0923 0x2c98 ShellHWDetection - ok
21:33:18.0923 0x2c98 shpamsvc - ok
21:33:18.0923 0x2c98 SiSRaid2 - ok
21:33:18.0938 0x2c98 SiSRaid4 - ok
21:33:18.0938 0x2c98 [ FCFE8B946F8755A67EF44EFB457F73DE, A0E4D1A1DB6B5B532A5146A9D84A038022CCF47B864BD2363212B0B9FC0B8426 ] SMARTMouseFilterx64 C:\WINDOWS\System32\drivers\SMARTMouseFilterx64.sys
21:33:18.0938 0x2c98 SMARTMouseFilterx64 - ok
21:33:18.0938 0x2c98 SmartSAMD - ok
21:33:18.0938 0x2c98 [ F32787E43FCA185FC634A7253AE1A02E, 3544B04C61EFB256885815F76C7F82FE2FBEBCE4FBC757B2B0E340AF3C0D1E81 ] SMARTVHidMiniVistaAmd64 C:\WINDOWS\System32\drivers\SMARTVHidMiniVistaAmd64.sys
21:33:18.0938 0x2c98 SMARTVHidMiniVistaAmd64 - ok
21:33:18.0954 0x2c98 smbdirect - ok
21:33:18.0954 0x2c98 smphost - ok
21:33:18.0954 0x2c98 SmsRouter - ok
21:33:18.0954 0x2c98 SNMPTRAP - ok
21:33:18.0969 0x2c98 spaceport - ok
21:33:18.0969 0x2c98 SpatialGraphFilter - ok
21:33:18.0969 0x2c98 SpbCx - ok
21:33:18.0969 0x2c98 spectrum - ok
21:33:19.0001 0x2c98 [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan C:\Windows\SysWOW64\speedfan.sys
21:33:19.0016 0x2c98 speedfan - ok
21:33:19.0016 0x2c98 Spooler - ok
21:33:19.0016 0x2c98 sppsvc - ok
21:33:19.0016 0x2c98 srv2 - ok
21:33:19.0016 0x2c98 srvnet - ok
21:33:19.0032 0x2c98 SSDPSRV - ok
21:33:19.0032 0x2c98 ssh-agent - ok
21:33:19.0032 0x2c98 SstpSvc - ok
21:33:19.0032 0x2c98 [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
21:33:19.0048 0x2c98 ssudmdm - ok
21:33:19.0048 0x2c98 StateRepository - ok
21:33:19.0079 0x2c98 [ DFD37B0AF31043629F6D8AB38AF0831E, 32D9E85E3F5D0A68EB2521BC56FE2B9201E68250E9B13B68464BB46A941302CD ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
21:33:19.0094 0x2c98 Steam Client Service - ok
21:33:19.0094 0x2c98 stexstor - ok
21:33:19.0110 0x2c98 stisvc - ok
21:33:19.0110 0x2c98 storahci - ok
21:33:19.0110 0x2c98 storflt - ok
21:33:19.0110 0x2c98 stornvme - ok
21:33:19.0110 0x2c98 storqosflt - ok
21:33:19.0126 0x2c98 StorSvc - ok
21:33:19.0126 0x2c98 storufs - ok
21:33:19.0126 0x2c98 storvsc - ok
21:33:19.0126 0x2c98 svsvc - ok
21:33:19.0141 0x2c98 swenum - ok
21:33:19.0141 0x2c98 swprv - ok
21:33:19.0157 0x2c98 Synth3dVsc - ok
21:33:19.0157 0x2c98 SysMain - ok
21:33:19.0157 0x2c98 SystemEventsBroker - ok
21:33:19.0157 0x2c98 TabletInputService - ok
21:33:19.0157 0x2c98 TapiSrv - ok
21:33:19.0173 0x2c98 Tcpip - ok
21:33:19.0173 0x2c98 Tcpip6 - ok
21:33:19.0173 0x2c98 tcpipreg - ok
21:33:19.0173 0x2c98 tdx - ok
21:33:19.0188 0x2c98 terminpt - ok
21:33:19.0188 0x2c98 TermService - ok
21:33:19.0188 0x2c98 Themes - ok
21:33:19.0188 0x2c98 TieringEngineService - ok
21:33:19.0204 0x2c98 TimeBrokerSvc - ok
21:33:19.0204 0x2c98 TokenBroker - ok
21:33:19.0204 0x2c98 TPM - ok
21:33:19.0204 0x2c98 TrkWks - ok
21:33:19.0204 0x2c98 TroubleshootingSvc - ok
21:33:19.0219 0x2c98 TrustedInstaller - ok
21:33:19.0219 0x2c98 TsUsbFlt - ok
21:33:19.0219 0x2c98 TsUsbGD - ok
21:33:19.0219 0x2c98 tsusbhub - ok
21:33:19.0219 0x2c98 tunnel - ok
21:33:19.0235 0x2c98 tzautoupdate - ok
21:33:19.0235 0x2c98 UASPStor - ok
21:33:19.0235 0x2c98 UcmCx0101 - ok
21:33:19.0235 0x2c98 UcmTcpciCx0101 - ok
21:33:19.0235 0x2c98 UcmUcsiAcpiClient - ok
21:33:19.0251 0x2c98 UcmUcsiCx0101 - ok
21:33:19.0251 0x2c98 Ucx01000 - ok
21:33:19.0251 0x2c98 UdeCx - ok
21:33:19.0251 0x2c98 udfs - ok
21:33:19.0251 0x2c98 UEFI - ok
21:33:19.0266 0x2c98 UevAgentDriver - ok
21:33:19.0266 0x2c98 UevAgentService - ok
21:33:19.0266 0x2c98 Ufx01000 - ok
21:33:19.0266 0x2c98 UfxChipidea - ok
21:33:19.0266 0x2c98 ufxsynopsys - ok
21:33:19.0282 0x2c98 umbus - ok
21:33:19.0282 0x2c98 UmPass - ok
21:33:19.0282 0x2c98 UmRdpService - ok
21:33:19.0298 0x2c98 UnistoreSvc - ok
21:33:19.0298 0x2c98 upnphost - ok
21:33:19.0298 0x2c98 UrsChipidea - ok
21:33:19.0298 0x2c98 UrsCx01000 - ok
21:33:19.0298 0x2c98 UrsSynopsys - ok
21:33:19.0313 0x2c98 usbaudio - ok
21:33:19.0313 0x2c98 usbaudio2 - ok
21:33:19.0313 0x2c98 usbccgp - ok
21:33:19.0313 0x2c98 usbcir - ok
21:33:19.0329 0x2c98 usbehci - ok
21:33:19.0329 0x2c98 usbhub - ok
21:33:19.0329 0x2c98 USBHUB3 - ok
21:33:19.0329 0x2c98 usbohci - ok
21:33:19.0329 0x2c98 usbprint - ok
21:33:19.0344 0x2c98 usbser - ok
21:33:19.0344 0x2c98 USBSTOR - ok
21:33:19.0344 0x2c98 usbuhci - ok
21:33:19.0344 0x2c98 USBXHCI - ok
21:33:19.0360 0x2c98 UserDataSvc - ok
21:33:19.0360 0x2c98 UserManager - ok
21:33:19.0360 0x2c98 UsoSvc - ok
21:33:19.0360 0x2c98 VacSvc - ok
21:33:19.0360 0x2c98 VaultSvc - ok
21:33:19.0376 0x2c98 vdrvroot - ok
21:33:19.0376 0x2c98 vds - ok
21:33:19.0376 0x2c98 VerifierExt - ok
21:33:19.0376 0x2c98 vhdmp - ok
21:33:19.0391 0x2c98 vhf - ok
21:33:19.0391 0x2c98 Vid - ok
21:33:19.0391 0x2c98 vmbus - ok
21:33:19.0391 0x2c98 VMBusHID - ok
21:33:19.0391 0x2c98 vmgid - ok
21:33:19.0407 0x2c98 vmicguestinterface - ok
21:33:19.0407 0x2c98 vmicheartbeat - ok
21:33:19.0407 0x2c98 vmickvpexchange - ok
21:33:19.0407 0x2c98 vmicrdv - ok
21:33:19.0407 0x2c98 vmicshutdown - ok
21:33:19.0423 0x2c98 vmictimesync - ok
21:33:19.0423 0x2c98 vmicvmsession - ok
21:33:19.0423 0x2c98 vmicvss - ok
21:33:19.0423 0x2c98 volmgr - ok
21:33:19.0423 0x2c98 volmgrx - ok
21:33:19.0438 0x2c98 volsnap - ok
21:33:19.0438 0x2c98 volume - ok
21:33:19.0438 0x2c98 vpci - ok
21:33:19.0438 0x2c98 vsmraid - ok
21:33:19.0454 0x2c98 VSS - ok
21:33:19.0454 0x2c98 VSTXRAID - ok
21:33:19.0454 0x2c98 vwifibus - ok
21:33:19.0454 0x2c98 vwififlt - ok
21:33:19.0454 0x2c98 W32Time - ok
21:33:19.0469 0x2c98 WaaSMedicSvc - ok
21:33:19.0469 0x2c98 WacomPen - ok
21:33:19.0469 0x2c98 WalletService - ok
21:33:19.0469 0x2c98 wanarp - ok
21:33:19.0469 0x2c98 wanarpv6 - ok
21:33:19.0485 0x2c98 WarpJITSvc - ok
21:33:19.0485 0x2c98 wbengine - ok
21:33:19.0485 0x2c98 WbioSrvc - ok
21:33:19.0485 0x2c98 wcifs - ok
21:33:19.0485 0x2c98 Wcmsvc - ok
21:33:19.0501 0x2c98 wcncsvc - ok
21:33:19.0501 0x2c98 wcnfs - ok
21:33:19.0501 0x2c98 WdBoot - ok
21:33:19.0501 0x2c98 Wdf01000 - ok
21:33:19.0516 0x2c98 WdiServiceHost - ok
21:33:19.0516 0x2c98 WdiSystemHost - ok
21:33:19.0516 0x2c98 wdiwifi - ok
21:33:19.0516 0x2c98 WdmCompanionFilter - ok
21:33:19.0516 0x2c98 WdNisDrv - ok
21:33:19.0532 0x2c98 WebClient - ok
21:33:19.0532 0x2c98 Wecsvc - ok
21:33:19.0532 0x2c98 WEPHOSTSVC - ok
21:33:19.0532 0x2c98 wercplsupport - ok
21:33:19.0532 0x2c98 WerSvc - ok
21:33:19.0548 0x2c98 WFDSConMgrSvc - ok
21:33:19.0548 0x2c98 WFPLWFS - ok
21:33:19.0548 0x2c98 WiaRpc - ok
21:33:19.0548 0x2c98 WIMMount - ok
21:33:19.0563 0x2c98 WindowsTrustedRT - ok
21:33:19.0563 0x2c98 WindowsTrustedRTProxy - ok
21:33:19.0563 0x2c98 WinHttpAutoProxySvc - ok
21:33:19.0563 0x2c98 WinMad - ok
21:33:19.0579 0x2c98 Winmgmt - ok
21:33:19.0579 0x2c98 WinNat - ok
21:33:19.0579 0x2c98 WinQuic - ok
21:33:19.0594 0x2c98 WinRM - ok
21:33:19.0594 0x2c98 WINUSB - ok
21:33:19.0594 0x2c98 WinVerbs - ok
21:33:19.0610 0x2c98 wisvc - ok
21:33:19.0610 0x2c98 WlanSvc - ok
21:33:19.0610 0x2c98 wlidsvc - ok
21:33:19.0610 0x2c98 wlpasvc - ok
21:33:19.0610 0x2c98 WManSvc - ok
21:33:19.0626 0x2c98 WmiAcpi - ok
21:33:19.0626 0x2c98 wmiApSrv - ok
21:33:19.0626 0x2c98 WMPNetworkSvc - ok
21:33:19.0641 0x2c98 [ 9105D21DD27B3D2FB99884F210F43EF8, B06109B748EA35E7C9587D9AB6DB06B5C66E1A61FA6E276E394EADBC95F1D958 ] Wof C:\WINDOWS\system32\drivers\Wof.sys
21:33:19.0641 0x2c98 Wof - ok
21:33:19.0641 0x2c98 workfolderssvc - ok
21:33:19.0657 0x2c98 WpcMonSvc - ok
21:33:19.0657 0x2c98 WPDBusEnum - ok
21:33:19.0657 0x2c98 WpdUpFltr - ok
21:33:19.0657 0x2c98 WpnService - ok
21:33:19.0657 0x2c98 WpnUserService - ok
21:33:19.0673 0x2c98 ws2ifsl - ok
21:33:19.0673 0x2c98 WSDPrintDevice - ok
21:33:19.0673 0x2c98 WSDScan - ok
21:33:19.0673 0x2c98 WSearch - ok
21:33:19.0688 0x2c98 WudfPf - ok
21:33:19.0688 0x2c98 WUDFRd - ok
21:33:19.0688 0x2c98 WUDFWpdFs - ok
21:33:19.0688 0x2c98 WUDFWpdMtp - ok
21:33:19.0704 0x2c98 WwanSvc - ok
21:33:19.0704 0x2c98 XblAuthManager - ok
21:33:19.0704 0x2c98 XblGameSave - ok
21:33:19.0704 0x2c98 xboxgip - ok
21:33:19.0719 0x2c98 XboxGipSvc - ok
21:33:19.0719 0x2c98 XboxNetApiSvc - ok
21:33:19.0719 0x2c98 xinputhid - ok
21:33:19.0719 0x2c98 ================ Scan global ===============================
21:33:19.0735 0x2c98 [ Global ] - ok
21:33:19.0735 0x2c98 ================ Scan MBR ==================================
21:33:19.0735 0x2c98 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:33:19.0735 0x2c98 \Device\Harddisk0\DR0 - ok
21:33:19.0751 0x2c98 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
21:33:19.0766 0x2c98 \Device\Harddisk1\DR1 - ok
21:33:19.0782 0x2c98 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
21:33:19.0860 0x2c98 \Device\Harddisk2\DR2 - ok
21:33:19.0860 0x2c98 ================ Scan VBR ==================================
21:33:19.0860 0x2c98 [ 8C4238C9CAA5C65E3AA651454EC10A7C ] \Device\Harddisk0\DR0\Partition1
21:33:19.0860 0x2c98 \Device\Harddisk0\DR0\Partition1 - ok
21:33:19.0860 0x2c98 [ ED1A065CCB5590DE415D5225594DD965 ] \Device\Harddisk0\DR0\Partition2
21:33:19.0876 0x2c98 \Device\Harddisk0\DR0\Partition2 - ok
21:33:19.0876 0x2c98 [ 4A8753BFCF35E464BA7255006FAAAFB2 ] \Device\Harddisk1\DR1\Partition1
21:33:19.0876 0x2c98 \Device\Harddisk1\DR1\Partition1 - ok
21:33:19.0876 0x2c98 [ D2B6BA86647ADE872438E36004ADFDAE ] \Device\Harddisk1\DR1\Partition2
21:33:19.0876 0x2c98 \Device\Harddisk1\DR1\Partition2 - ok
21:33:19.0891 0x2c98 [ 700494C6402CBF289D07E8F64B85CADE ] \Device\Harddisk1\DR1\Partition3
21:33:19.0891 0x2c98 \Device\Harddisk1\DR1\Partition3 - ok
21:33:19.0891 0x2c98 [ D4BC281BB052C376A5501FD0DAF66357 ] \Device\Harddisk2\DR2\Partition1
21:33:19.0891 0x2c98 \Device\Harddisk2\DR2\Partition1 - ok
21:33:19.0891 0x2c98 [ 10609835853165A993A5B6265F4269F1 ] \Device\Harddisk2\DR2\Partition2
21:33:19.0891 0x2c98 \Device\Harddisk2\DR2\Partition2 - ok
21:33:19.0891 0x2c98 ================ Scan active images ========================
21:33:19.0891 0x2c98 [ B9C3D35ABFD8853CDDD2F2A701C06CA8, E6BFB2E36EC4CE10ADCA92F85CA809B7B8566CDA56B4BEE01F7203F9A6BBDD17 ] C:\Windows\System32\drivers\crashdmp.sys
21:33:19.0891 0x2c98 C:\Windows\System32\drivers\crashdmp.sys - ok
21:33:19.0891 0x2c98 [ B532795B6478A46F823815EAE94330F9, 5093142252A760D4772EDCAE895042085C808542A3EDC08B5DE08D911F8B70F7 ] C:\Windows\System32\drivers\Diskdump.sys
21:33:19.0891 0x2c98 C:\Windows\System32\drivers\Diskdump.sys - ok
21:33:19.0907 0x2c98 [ CFFB368D55907AC6E0AF31994115FF04, 38F7F8DC3E5E8B096A4993876DDE783AADDF57A2EB7471F739E8F05EBC13C0A2 ] C:\Windows\System32\drivers\dumpfve.sys
21:33:19.0907 0x2c98 C:\Windows\System32\drivers\dumpfve.sys - ok
21:33:19.0907 0x2c98 [ 0DBA29E779414EA9A28E491983FD9364, A2777033052FBBAFEDFA3F2667D311C56B169D815EA03A01294DE615FBFAF663 ] C:\Windows\System32\drivers\storahci.sys
21:33:19.0907 0x2c98 C:\Windows\System32\drivers\storahci.sys - ok
21:33:19.0907 0x2c98 [ 44E0D836AB00D71C425918D3707B523F, EF7EDE5A1F4F5D4A8D6968D27D2E1F81219F9C4ED51FAD0AD6C918386A5A4BE5 ] C:\Windows\System32\drivers\aswSP.sys
21:33:19.0907 0x2c98 C:\Windows\System32\drivers\aswSP.sys - ok
21:33:19.0907 0x2c98 [ 81E3779064C04790E30F25770F0AEADD, E7460E7C556D9C1497B9962838E3E1D261AA39392BB2501C67B2DDB870AF2EBB ] C:\Windows\System32\drivers\cdrom.sys
21:33:19.0907 0x2c98 C:\Windows\System32\drivers\cdrom.sys - ok
21:33:19.0907 0x2c98 [ 881E6B1E718C42DA4A57A63643C253F9, 3E4350013EE887499EC0560747465BCA6AB272C631CA466A2C429BE53488662D ] C:\Windows\System32\drivers\aswSnx.sys
21:33:19.0907 0x2c98 C:\Windows\System32\drivers\aswSnx.sys - ok
21:33:19.0907 0x2c98 [ E7598D36DC6CB8169896DA59ED61268D, 63F3CB7DC5FC9644799DADF9A0A2CAD893AFFFFE8C06148459DFC3BDDC5CC343 ] C:\Windows\System32\drivers\ks.sys
21:33:19.0907 0x2c98 C:\Windows\System32\drivers\ks.sys - ok
21:33:19.0923 0x2c98 [ 35E6FE3288B6147F844B1845564FF161, 167F38BBDE88FDF7F30A626D7E1AF59006FE936D40D14C27FAEBDFCB2ECB6DAF ] C:\Windows\System32\drivers\filecrypt.sys
21:33:19.0923 0x2c98 C:\Windows\System32\drivers\filecrypt.sys - ok
21:33:19.0923 0x2c98 [ DDB6A98E5A8EF217BAAD382FC1A05664, BF162361B425C166C8FFA0CAE6B07E35CEE247672234FCC7506BBD5ABE1E1913 ] C:\Windows\System32\drivers\tbs.sys
21:33:19.0923 0x2c98 C:\Windows\System32\drivers\tbs.sys - ok
21:33:19.0923 0x2c98 [ A5D43CA19863A29D219C3C588D936FFC, EECA12E6D5BB7C827BE0B7E5C4484BECEEDF53E5E9BF81B7EEBE7EC43CA8AD53 ] C:\Windows\System32\drivers\beep.sys
21:33:19.0923 0x2c98 C:\Windows\System32\drivers\beep.sys - ok
21:33:19.0923 0x2c98 [ 7DE33B6BCD2113B39090D005BA5CFE9E, 1E84F2E321BB303320F6A40CC1EF22328BC162C9E433E4559F7D42160058EA78 ] C:\Windows\System32\drivers\null.sys
21:33:19.0923 0x2c98 C:\Windows\System32\drivers\null.sys - ok
21:33:19.0923 0x2c98 [ 0F4C355B3ED29C14C4B6D85030709077, 044AD5C09D3E194A382B3585EDA4E81300FCFEFB8A9205B54B7A2ADCD3038DAA ] C:\Windows\System32\drivers\aswKbd.sys
21:33:19.0923 0x2c98 C:\Windows\System32\drivers\aswKbd.sys - ok
21:33:19.0923 0x2c98 [ CD80CE98400A005D18186E5B8B568454, 9AA84CB6C667E288903B1D60B31D1D74AFF3D39A1867D432DE2F6CDA4C29E7D9 ] C:\Windows\System32\drivers\watchdog.sys
21:33:19.0923 0x2c98 C:\Windows\System32\drivers\watchdog.sys - ok
21:33:19.0923 0x2c98 [ 39ACE8DE29E4F6FF7F96659B9522FCB7, 0DFB3678B986CBF8213BD4463C7E68633FB85510727FC8DB03D55DA2E0C5B807 ] C:\Windows\System32\drivers\dxgkrnl.sys
21:33:19.0923 0x2c98 C:\Windows\System32\drivers\dxgkrnl.sys - ok
21:33:19.0938 0x2c98 [ 4EA199B92656589744DDB917EABFFCF7, CB38872F5B35B76D8234A89B6B5C87E0D123D52A9CC26AD2359B9267F6976B20 ] C:\Windows\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_25ab9510fd18cfda\BasicDisplay.sys
21:33:19.0938 0x2c98 C:\Windows\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_25ab9510fd18cfda\BasicDisplay.sys - ok
21:33:19.0938 0x2c98 [ 9F85EBFCB94166C69703CBF0AEB9C554, 3A928C9B2D132729D933FEAAC3603699418E87E05AF13FDE85593A47866EF37B ] C:\Windows\System32\DriverStore\FileRepository\basicrender.inf_amd64_9ff437f462543a42\BasicRender.sys
21:33:19.0938 0x2c98 C:\Windows\System32\DriverStore\FileRepository\basicrender.inf_amd64_9ff437f462543a42\BasicRender.sys - ok
21:33:19.0938 0x2c98 [ 7F697FDDE2D60DBFC3E1ABF456C3DF81, 2E3BD8FD4BBEA735595053F4608E3D914B5A0ACE214DF4290217F110AA21FBF1 ] C:\Windows\System32\drivers\msfs.sys
21:33:19.0938 0x2c98 C:\Windows\System32\drivers\msfs.sys - ok
21:33:19.0938 0x2c98 [ CA4A53E42DE123AB09231EDFE08050C9, 4533C062116F3B41125CD0FD7790F8C29FF8B8A4C676CFAD06B93048B9E88DF7 ] C:\Windows\System32\drivers\npfs.sys
21:33:19.0938 0x2c98 C:\Windows\System32\drivers\npfs.sys - ok
21:33:19.0938 0x2c98 [ D01E0C5C6FD2021545B89E7E29EC053D, 27E58D53F8D16F3E85B196164E9EB30F87D7E218E7ACACF351040EE42B221393 ] C:\Windows\System32\drivers\tdi.sys
21:33:19.0938 0x2c98 C:\Windows\System32\drivers\tdi.sys - ok
21:33:19.0938 0x2c98 [ 9AF99FB2DA176C88C68D886046C56B01, 8465D551BA060AAC7E178072899534F78BFCE35B69FA69CFACCEACCCB7BDAF4B ] C:\Windows\System32\drivers\tdx.sys
21:33:19.0938 0x2c98 C:\Windows\System32\drivers\tdx.sys - ok
21:33:19.0954 0x2c98 [ 5E5491B5B9B9BB144C5130F050B6208A, 7E3C17A2AA784B67A3FD124CD8B5C5F5AC6C6919332AA776BA07DD1048ACE92B ] C:\Windows\System32\drivers\aswRdr2.sys
21:33:19.0954 0x2c98 C:\Windows\System32\drivers\aswRdr2.sys - ok
21:33:19.0954 0x2c98 [ 729ED379D3A960CFBE02C7634651AC63, 734FD9F077F413CDC07F0218C75B24806BA1B82F7A3C32C16E45C48C1EBA51C9 ] C:\Windows\System32\drivers\netbt.sys
21:33:19.0954 0x2c98 C:\Windows\System32\drivers\netbt.sys - ok
21:33:19.0954 0x2c98 [ DE2CAA60B963E5103B3543C0DE45D25D, 998D4ECCFAED88005EF802DCAC7C8C47E1AFDD11B5437E6D18C3E665FC5DFC39 ] C:\Windows\System32\drivers\afd.sys
21:33:19.0954 0x2c98 C:\Windows\System32\drivers\afd.sys - ok
21:33:19.0954 0x2c98 [ 033DE3E43A9FC3F02B04E791148D0F11, D7037CF10A5829DD94DD9866FBAB222FC04FDF2691E5E23BC451217E693AEAD7 ] C:\Windows\System32\drivers\afunix.sys
21:33:19.0954 0x2c98 C:\Windows\System32\drivers\afunix.sys - ok
21:33:19.0954 0x2c98 [ 489782EABA27384E116243E60EFFEEE7, 510E97FAE86E9B0162E74D93A5F4ECDDAA9EFC5534AD755327B1402BFC9EEDFB ] C:\Windows\System32\drivers\vwififlt.sys
21:33:19.0954 0x2c98 C:\Windows\System32\drivers\vwififlt.sys - ok
21:33:19.0954 0x2c98 [ 6562B09D325506BC8E9B731310407077, 5EEE0B6797F70AB2430A4D5458904EF09B6FFE41DDA9B702D8B1E25526EE6E67 ] C:\Windows\System32\drivers\aswNetSec.sys
21:33:19.0954 0x2c98 C:\Windows\System32\drivers\aswNetSec.sys - ok
21:33:19.0954 0x2c98 [ C0EF1DA7CB74EB2E0B87686AB7AA7454, 2053809FAD23211A336F30F306B5C11D93F6DE5E7A38CE021CD535E5E5EDE21D ] C:\Windows\System32\drivers\pacer.sys
21:33:19.0954 0x2c98 C:\Windows\System32\drivers\pacer.sys - ok
21:33:19.0969 0x2c98 [ 42F0CF6F74257A58D8F1EA68EA7782B8, 7BF400D21BF8098CBC2B697FBE5E680DF22CC77379299F2F15B71DAEE4D04F7F ] C:\Windows\System32\drivers\netbios.sys
21:33:19.0969 0x2c98 C:\Windows\System32\drivers\netbios.sys - ok
21:33:19.0969 0x2c98 [ BE097B4311AF763B354580A36FCEEF2D, 9A0B2F536FBCCC5D2EDD4A26F3FF8BFAEF2EDA97AECC9549491D5CFEC65B37EE ] C:\Windows\System32\drivers\rdbss.sys
21:33:19.0969 0x2c98 C:\Windows\System32\drivers\rdbss.sys - ok
21:33:19.0969 0x2c98 [ C3D248818AA938B436A540D8EB2B78E7, A0335AFAFE6DA1B8D427AE10D8296D452465D32AB69C740C6B3A3A3CDF5FAE4E ] C:\Windows\System32\drivers\csc.sys
21:33:19.0969 0x2c98 C:\Windows\System32\drivers\csc.sys - ok
21:33:19.0969 0x2c98 [ ECF72E76711455EEB362E2E175395F87, 14E3D4396678303BACA9EE6A60869CE3EBBCEF58E71B25FA077D6DA4F94F1390 ] C:\Windows\System32\drivers\gpuenergydrv.sys
21:33:19.0969 0x2c98 C:\Windows\System32\drivers\gpuenergydrv.sys - ok
21:33:19.0969 0x2c98 [ 84AB9DA4C598BE81A7D0B88C8AE2DF41, A52BDE35B576B48EEECE245D9FD28FFDEAD402C17BC411A92849BEC93C7A1AAA ] C:\Windows\System32\drivers\mssmbios.sys
21:33:19.0969 0x2c98 C:\Windows\System32\drivers\mssmbios.sys - ok
21:33:19.0969 0x2c98 [ 2F0A6D060CB7A32A96004A5A8A61E9FE, D450F549C380C9DA4663ADA1777F6687C7461D82DCB6C739FA708870B4118964 ] C:\Windows\System32\drivers\npsvctrig.sys
21:33:19.0969 0x2c98 C:\Windows\System32\drivers\npsvctrig.sys - ok
21:33:19.0985 0x2c98 [ 77D961B4AC9C70A3D89274C92D3FA8ED, 014F5E30C8CCC4EE413FC3C13D1D590509A78816A6FD73C1A8B96EC36BDCD091 ] C:\Windows\System32\drivers\nsiproxy.sys
21:33:19.0985 0x2c98 C:\Windows\System32\drivers\nsiproxy.sys - ok
21:33:19.0985 0x2c98 [ D32047ED7F2718871AFC215FFF4760C2, A3F954BC3C22EEEC50610039CB8E6082C1533AE5C92C12C85BAF3569D499A7BE ] C:\Windows\System32\drivers\dam.sys
21:33:19.0985 0x2c98 C:\Windows\System32\drivers\dam.sys - ok
21:33:19.0985 0x2c98 [ D974C10E19DDC10622E30904AEE16FA3, 02A219750F23F183A8E2927AF0EFF8DCD631529FA618A704BE090E94057120AB ] C:\Windows\System32\drivers\dfsc.sys
21:33:19.0985 0x2c98 C:\Windows\System32\drivers\dfsc.sys - ok
21:33:19.0985 0x2c98 [ DD8DF0E7B74C52A2746C70CE7EAB8741, FDB8B9E752AB38785DE131387A077DC00B6E7DB657D895FC70A2EA541A846E7C ] C:\Windows\System32\drivers\aswbidsdriver.sys
21:33:19.0985 0x2c98 C:\Windows\System32\drivers\aswbidsdriver.sys - ok
21:33:19.0985 0x2c98 [ 96ECA99B219CBB4F7C95176E492F53BF, 8189D0DBA3331145FB99D4EE188DE48799F0940DE79D46FB9444914C5B4D4146 ] C:\Windows\System32\drivers\bam.sys
21:33:19.0985 0x2c98 C:\Windows\System32\drivers\bam.sys - ok
21:33:19.0985 0x2c98 [ 53BB10742E10991AF4AD280FCB134151, 65008817EB97635826A8708A6411D7B50F762BAB81304E457119D669382944C3 ] C:\Windows\System32\drivers\aswArPot.sys
21:33:19.0985 0x2c98 C:\Windows\System32\drivers\aswArPot.sys - ok
21:33:19.0985 0x2c98 [ 1772CB571F5CAB57E407CB1DCE570D4B, 9193187D102B336D665FD1C67EF1E94EEF204F7B2321EBB076322B2BB39E7985 ] C:\Windows\System32\drivers\ahcache.sys
21:33:19.0985 0x2c98 C:\Windows\System32\drivers\ahcache.sys - ok
21:33:20.0001 0x2c98 [ EB21139080ACDA2BEFE7B086870EC841, 70041A01F1D42F1C1F56434136C01F482FF3169A7E7BECFDBCA072E3112D57B9 ] C:\Windows\System32\drivers\Vid.sys
21:33:20.0001 0x2c98 C:\Windows\System32\drivers\Vid.sys - ok
21:33:20.0001 0x2c98 [ 2835A463517494BDCAABA38A4A80E91F, B88492453D1C49076079311A5BD0DC4DB47AE9033FB4911B33E06B8A795F5644 ] C:\Windows\System32\drivers\winhvr.sys
21:33:20.0001 0x2c98 C:\Windows\System32\drivers\winhvr.sys - ok
21:33:20.0001 0x2c98 [ 0622956186DCBECF5D6CD38ADD507B80, 766428CAB29147AB1FB899197F15DE2612FC2B66F3FF52667CB6F7273C22E2CF ] C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_095624d60edd8fe5\CompositeBus.sys
21:33:20.0001 0x2c98 C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_095624d60edd8fe5\CompositeBus.sys - ok
21:33:20.0001 0x2c98 [ 366629038CF8C160CD0E7821C33F5638, 6C6C12669FCB4F9A16A60D1BC5A1D8ECC7A11EC9409952E4618B17D943690DA6 ] C:\Windows\System32\DriverStore\FileRepository\umbus.inf_amd64_0a69be6a385b49f7\umbus.sys
21:33:20.0001 0x2c98 C:\Windows\System32\DriverStore\FileRepository\umbus.inf_amd64_0a69be6a385b49f7\umbus.sys - ok
21:33:20.0001 0x2c98 [ B773A19F81C442DF6FE7C6271ED7CFF4, DCF1CEC745A9B6D8B8A4C031707FA6E618B522B4C4D7D51725BB2ED691DED48F ] C:\Windows\System32\drivers\kdnic.sys
21:33:20.0001 0x2c98 C:\Windows\System32\drivers\kdnic.sys - ok
21:33:20.0001 0x2c98 [ EBCE8EF1728AF57A619CDDFD92CDFE33, 4E404950397831D2F3238337626AC6D8AF926515B89A188AB66BEA194DE0E1F7 ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atikmpag.sys
21:33:20.0001 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atikmpag.sys - ok
21:33:20.0016 0x2c98 [ 68E7F355F8DAEC785C9C53A0520453FA, E1D18A00BE3CC0011A26859BD0CA9C045442E5A79F8F9B12624DBA195336D50F ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atikmdag.sys
21:33:20.0016 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atikmdag.sys - ok
21:33:20.0016 0x2c98 [ 174A32932D68DCCF493366C8E3BD6E42, F5D4630670532EE1CA229678C9B8767C2968A77267560AA5F22E78362408D340 ] C:\Windows\System32\ntdll.dll
21:33:20.0016 0x2c98 C:\Windows\System32\ntdll.dll - ok
21:33:20.0016 0x2c98 [ 6CE93967F7235F88940092E88AD18AAB, 14A5FB352FD89A8969147FEEE9473BE2086391AF7D5AF0D2D5583F4A324826DF ] C:\Windows\System32\smss.exe
21:33:20.0016 0x2c98 C:\Windows\System32\smss.exe - ok
21:33:20.0016 0x2c98 [ 04B058D188908EB631CED20F7B2EA3D9, F9AA66AA0B302FD79D34447C371816237D8915F371CD53F19744B720B6A03B99 ] C:\Windows\System32\setupapi.dll
21:33:20.0016 0x2c98 C:\Windows\System32\setupapi.dll - ok
21:33:20.0016 0x2c98 [ 9C897DB5845E9D0CC704CB0CC8674369, 5E826F83B929A9993DC31F448E1D15E7394A332585A6150170592E908316B19A ] C:\Windows\System32\sechost.dll
21:33:20.0016 0x2c98 C:\Windows\System32\sechost.dll - ok
21:33:20.0016 0x2c98 [ 657C78E4DE6B180AC24ED875A9B0C687, 92239750D45A421E92EF640809E8A1D08CBD518938C518E1644AD3456DFF37C2 ] C:\Windows\System32\ole32.dll
21:33:20.0016 0x2c98 C:\Windows\System32\ole32.dll - ok
21:33:20.0016 0x2c98 [ 9F36804C2BECC7CA3449B8068581BD3A, D8C06AC0523C0C74F96D14ACDEC64DBAC0D57F9C1157C3645F062B14DCBDD330 ] C:\Windows\System32\msctf.dll
21:33:20.0016 0x2c98 C:\Windows\System32\msctf.dll - ok
21:33:20.0032 0x2c98 [ BAFD5A295E5A65F8887AC0A7B248CC5B, 6396191587728CE813053CE10795AD3DC61448A292062C204BD1EF1F2FE751FE ] C:\Windows\System32\SHCore.dll
21:33:20.0032 0x2c98 C:\Windows\System32\SHCore.dll - ok
21:33:20.0032 0x2c98 [ 2178B488AD1F72F5A1B2628E6E2054AA, F192FD98AE3C6B8D296492847E4EB48D9532C2F579EFBB7A7F9E2FB905C12779 ] C:\Windows\System32\wow64win.dll
21:33:20.0032 0x2c98 C:\Windows\System32\wow64win.dll - ok
21:33:20.0032 0x2c98 [ CB403C12503E2FE10F96C5F6645BD5DD, 89063EFD2C5BB16F7454BBBF5F08F2682B33992E50043AFAEAEA7C16C2370DD2 ] C:\Windows\System32\comdlg32.dll
21:33:20.0032 0x2c98 C:\Windows\System32\comdlg32.dll - ok
21:33:20.0032 0x2c98 [ BFB85A9022324E41FCEC5011BCB5FD23, 3CDA144CFB6278DA47267FE1E1FE258716A074C3D3DD8413B259DA7DA1039871 ] C:\Windows\System32\shlwapi.dll
21:33:20.0032 0x2c98 C:\Windows\System32\shlwapi.dll - ok
21:33:20.0032 0x2c98 [ 4B179D7C6AA9424831847BA6BACDB260, F0541B07D7B00C8D09BC72DF7E2D974F83482E42CD88B4E8260B832B7A71682E ] C:\Windows\System32\clbcatq.dll
21:33:20.0032 0x2c98 C:\Windows\System32\clbcatq.dll - ok
21:33:20.0032 0x2c98 [ 781C8C496335E927F7EC20F31991743A, EDE565A6ED8C00EF238E36BEEFD2D0E4E5CAEE5C296B047ACBFFA07768AD29E9 ] C:\Windows\System32\difxapi.dll
21:33:20.0032 0x2c98 C:\Windows\System32\difxapi.dll - ok
21:33:20.0032 0x2c98 [ 44F5E9206813B92918F5BB5F42F8E5D0, 71D3E6D772E122CF233F014149964E6C7112BE077AE084EC4D0BF7EDADB791AD ] C:\Windows\System32\user32.dll
21:33:20.0032 0x2c98 C:\Windows\System32\user32.dll - ok
21:33:20.0048 0x2c98 [ 5A545E170673868185B378391A895524, EE733D86EF7A18136F6F4EFCC7A70911F6EF6A556CC720F9DEA3550B7554CD50 ] C:\Windows\System32\imm32.dll
21:33:20.0048 0x2c98 C:\Windows\System32\imm32.dll - ok
21:33:20.0048 0x2c98 [ 36354D9B5B0A58A4B9A19103852C00A2, E5A863D3F4BFEFED7D73A7B1499F81B7235BC9AE3C108065041BCB8E5446B1BB ] C:\Windows\System32\msvcrt.dll
21:33:20.0048 0x2c98 C:\Windows\System32\msvcrt.dll - ok
21:33:20.0048 0x2c98 [ F105C1E82D891C3A00B5F81F7C1AA19E, A69671768F8E0061C3DD07FD49AEC6219720856FC63D568E7BA75A0A54D931B1 ] C:\Windows\System32\wow64cpu.dll
21:33:20.0048 0x2c98 C:\Windows\System32\wow64cpu.dll - ok
21:33:20.0048 0x2c98 [ 99397B1093EEDFFAC7BE2F90B385573C, C4B05BC7C48BADB3020678FF8DE7EFC9ABED0155A9643D4052794B7FB31B4E45 ] C:\Windows\System32\shell32.dll
21:33:20.0048 0x2c98 C:\Windows\System32\shell32.dll - ok
21:33:20.0048 0x2c98 [ B0D70EDD534FD9B66F18A18FB4D2E4E8, 7D4267D2324561C964B1FB1CE61D0DCD858CC9F0EC77432E1E82E15957F67256 ] C:\Windows\System32\kernel32.dll
21:33:20.0048 0x2c98 C:\Windows\System32\kernel32.dll - ok
21:33:20.0048 0x2c98 [ 2839609118F48DEA292084E43FAA72D8, 4FC9460147D5A3AA1F9498863CF10BB7BE6099BEF1A3D55503164CA51E36E27E ] C:\Windows\System32\gdi32.dll
21:33:20.0048 0x2c98 C:\Windows\System32\gdi32.dll - ok
21:33:20.0063 0x2c98 [ A1DB11A87BA91EA909A9F798C7BF028B, C1FE1ACC6DBE60FCC266520AE103B5E3E74C596ED748E3DFC0C5911DFD4C051D ] C:\Windows\System32\imagehlp.dll
21:33:20.0063 0x2c98 C:\Windows\System32\imagehlp.dll - ok
21:33:20.0063 0x2c98 [ 727673EC5D0CD9B726D8F2CFBDC747AB, 4C67CDC79D8EB20EE49DEF0D8CB5126D5BF660C7BF5E25D17DD6FC48C2902F5E ] C:\Windows\System32\coml2.dll
21:33:20.0063 0x2c98 C:\Windows\System32\coml2.dll - ok
21:33:20.0063 0x2c98 [ A98C785827338C747DD7DC45910C7389, B4DE7B6F431019BDD4DE0A2F4A3E5D41AECBE5C369775DC39E9A35C9F052CD04 ] C:\Windows\System32\oleaut32.dll
21:33:20.0063 0x2c98 C:\Windows\System32\oleaut32.dll - ok
21:33:20.0063 0x2c98 [ 33F5F2BB761CCBA765E0977BF825D047, CB9E75CD7FBE008D032D02AAF2AAE668ED7139F395A4AA394159AFF503F1F359 ] C:\Windows\System32\combase.dll
21:33:20.0063 0x2c98 C:\Windows\System32\combase.dll - ok
21:33:20.0063 0x2c98 [ DA132C88434FE7689E9503ACA5CD93B3, E1D2CEF7DEF91E45317C03DC64764AF145AA74468881CCEF0666B39A87DF9EE3 ] C:\Windows\System32\advapi32.dll
21:33:20.0063 0x2c98 C:\Windows\System32\advapi32.dll - ok
21:33:20.0063 0x2c98 [ B9DAD4D39729B785D9B7309BA9A1262F, 6F5E3856E07D8F9BCD1CCBD90ADCD35E9DD8C72FDEA97F6715AB22349600C7F2 ] C:\Windows\System32\drivers\drmk.sys
21:33:20.0063 0x2c98 C:\Windows\System32\drivers\drmk.sys - ok
21:33:20.0063 0x2c98 [ A74BC1676314EEBD0C3418D307A08C8F, 961791F2CB1BD9940BA11541E245752D4899A4160809C05C122E45C679A7D5C7 ] C:\Windows\System32\drivers\portcls.sys
21:33:20.0063 0x2c98 C:\Windows\System32\drivers\portcls.sys - ok
21:33:20.0079 0x2c98 [ 7F2568836476437410BC7E9E003CFD74, 15E4D6BBD17C56F1813FAA9F62E636949FEBDFB3AE5F89711D075FC35A3BBEDA ] C:\Windows\System32\drivers\hdaudbus.sys
21:33:20.0079 0x2c98 C:\Windows\System32\drivers\hdaudbus.sys - ok
21:33:20.0079 0x2c98 [ 8EC6459491D8508BBA5E3CEC5C930914, E01AEE2E6F569429BC5582AEB63A2CB288499A878B0806D21CC9D78F00E0B284 ] C:\Windows\System32\drivers\TeeDriverW8x64.sys
21:33:20.0079 0x2c98 C:\Windows\System32\drivers\TeeDriverW8x64.sys - ok
21:33:20.0079 0x2c98 [ 32E56383D79742D66FBCC4A94E2BFCC2, EC895532D3B54FC5EC0993B17AF549B891D7783EE8E38C5FB808B8185821172E ] C:\Windows\System32\GdiPlus.dll
21:33:20.0079 0x2c98 C:\Windows\System32\GdiPlus.dll - ok
21:33:20.0079 0x2c98 [ CB7082099B6CA280DF2A53725BFEBCD2, 6595D04CB9453D1F72F2AB257456F067C8652EFFCA2E7EDB7F95D7388FCE3959 ] C:\Windows\System32\drivers\usbport.sys
21:33:20.0079 0x2c98 C:\Windows\System32\drivers\usbport.sys - ok
21:33:20.0079 0x2c98 [ 89D92079F45D2F2539BCD1EEF73A701E, 6DAE0B5BAC5B2C34FD313B51AC793B6F0C270DA01474E4D1016B119FC1F9CE8F ] C:\Windows\System32\psapi.dll
21:33:20.0079 0x2c98 C:\Windows\System32\psapi.dll - ok
21:33:20.0079 0x2c98 [ 5FE7D4743D216091DA8760D9336E500B, 5A59802A226DA91D349B6C207491EBA4FC3FB457850A193090BD704A6FC9A00C ] C:\Windows\System32\Wldap32.dll
21:33:20.0079 0x2c98 C:\Windows\System32\Wldap32.dll - ok
21:33:20.0079 0x2c98 [ A1EFF2E07889DB46C82520238D8225EF, 092B52141612B6643A744DF11BD45EEA846130B4251BA75E7016231B5DF45D11 ] C:\Windows\System32\drivers\usbehci.sys
21:33:20.0079 0x2c98 C:\Windows\System32\drivers\usbehci.sys - ok
21:33:20.0094 0x2c98 [ F1ECA4F2ED08CE2D0C41E1200E2961F9, 78C4D3F9607A399DCD96E9067A14F143E9838FB02E78E7775675BC7D46D8D703 ] C:\Windows\System32\rpcrt4.dll
21:33:20.0094 0x2c98 C:\Windows\System32\rpcrt4.dll - ok
21:33:20.0094 0x2c98 [ D111694A8F376B645A9A24219B67C3B8, C272682D9D99F786C80A7339FDF79F1F826FC364B821F0DEB352690D91B237FE ] C:\Windows\System32\drivers\Ucx01000.sys
21:33:20.0094 0x2c98 C:\Windows\System32\drivers\Ucx01000.sys - ok
21:33:20.0094 0x2c98 [ C15328D7F6D76EA65B5102D46DC78B14, 7C7BAF750EE4319A8B1D16C8E91EE17B5377955314F61CE04FA8DF4703F87B00 ] C:\Windows\System32\drivers\USBXHCI.SYS
21:33:20.0094 0x2c98 C:\Windows\System32\drivers\USBXHCI.SYS - ok
21:33:20.0094 0x2c98 [ F5B9C63D8F22C9B98D8A36B3A1A2DD07, AEC702D91834A07E17CFC8F06975BB131E4ED9ED27F84C5B45AEA97904A665AF ] C:\Windows\System32\normaliz.dll
21:33:20.0094 0x2c98 C:\Windows\System32\normaliz.dll - ok
21:33:20.0094 0x2c98 [ D471D537457155436E2027A8F3EBF271, E0E1398106BCF030102AD39A32F0C049AA148AE4909BC0F8D37050FDE7AAA0C4 ] C:\Windows\System32\nsi.dll
21:33:20.0094 0x2c98 C:\Windows\System32\nsi.dll - ok
21:33:20.0094 0x2c98 [ 2AD2D3E7C6A09BB30D4885251F85B7A2, FC706ECB1E62C626F8F5ED158833118C8736F973A4C630759825DA524FFE91E0 ] C:\Windows\System32\wow64.dll
21:33:20.0094 0x2c98 C:\Windows\System32\wow64.dll - ok
21:33:20.0094 0x2c98 [ 5AD57454D306F465E4A729F4BE270916, 28D15FBD5FECB85323EB971C86A89EAF589E0E13835391FD6DA02813D89CDC40 ] C:\Windows\System32\KernelBase.dll
21:33:20.0094 0x2c98 C:\Windows\System32\KernelBase.dll - ok
21:33:20.0110 0x2c98 [ B4B4D1FDDA13A47DD066899AF6DDA40B, CC13039A4EF75A793A97773EA0A1A06B13A5B2F3826FCD6A569367C4DEADDDC4 ] C:\Windows\System32\ws2_32.dll
21:33:20.0110 0x2c98 C:\Windows\System32\ws2_32.dll - ok
21:33:20.0110 0x2c98 [ 8150D5CE75302A803C68878F405A62CD, 53FC737C3E3DFF599951F08F65DF6E4FB4701C352D43BB76FB81BA4EF882B801 ] C:\Windows\System32\drivers\rt640x64.sys
21:33:20.0110 0x2c98 C:\Windows\System32\drivers\rt640x64.sys - ok
21:33:20.0110 0x2c98 [ 99F3A85D7D1CCAC669D2413CBD8F4CFC, D1AC46BF3232B9460C107A96370ED531593EEE03CBC7B8B68071CE381CBA745A ] C:\Windows\System32\drivers\intelppm.sys
21:33:20.0110 0x2c98 C:\Windows\System32\drivers\intelppm.sys - ok
21:33:20.0110 0x2c98 [ B4ABE535AB99C02E3678AA1ED5EC56B2, FC9A55CD935488CC0826E0A28C4D2EAB52C87C88D15B4D542A70BD3EDB355966 ] C:\Windows\System32\drivers\wmiacpi.sys
21:33:20.0110 0x2c98 C:\Windows\System32\drivers\wmiacpi.sys - ok
21:33:20.0110 0x2c98 [ E33BF62B7D7325E0A0DFB82D269E85CF, 60B1F98FA7095ADA9E75CE84ACEB50E0E20DC599393D6D50D97C17C11D1E809C ] C:\Windows\System32\cfgmgr32.dll
21:33:20.0110 0x2c98 C:\Windows\System32\cfgmgr32.dll - ok
21:33:20.0110 0x2c98 [ DF2FD353A991C9FD83FE6F148A8E2A40, C2157C5F8B9E6430B7DCE884C81DC54780C0769E898C8EC59AB64F3D78E417B1 ] C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_9ebb9a8726114d22\swenum.sys
21:33:20.0110 0x2c98 C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_9ebb9a8726114d22\swenum.sys - ok
21:33:20.0126 0x2c98 [ 44FB0EB6FD78309E8A6A767B91AF3374, DB4E3333A64CF4B6E3A1EACC14D44BE264ACC89773CDE1449D8752D9A3D2811F ] C:\Windows\System32\drivers\NdisVirtualBus.sys
21:33:20.0126 0x2c98 C:\Windows\System32\drivers\NdisVirtualBus.sys - ok
21:33:20.0126 0x2c98 [ 0447065A6E10774EFCECFDD0EB970A79, 384A9AC72E756F96D43EE4B144A466564476AFD8778092C979116BB29A514433 ] C:\Windows\System32\drivers\ScpVBus.sys
21:33:20.0126 0x2c98 C:\Windows\System32\drivers\ScpVBus.sys - ok
21:33:20.0126 0x2c98 [ 692F6AADF76658CC0CA9EA6BCDBFF5D7, 94B3312E30002AF31D4C49088A0A45E74F2140E8AF0F3CDA2E10E8D4D2186E0C ] C:\Windows\System32\wintrust.dll
21:33:20.0126 0x2c98 C:\Windows\System32\wintrust.dll - ok
21:33:20.0126 0x2c98 [ D02EA52890750A5980EE970586942695, 4E321C27D0DC476F27A3B0720BC1188F6E549D1FA7B7E77E6BDE5F869E983A08 ] C:\Windows\System32\drivers\rdpbus.sys
21:33:20.0126 0x2c98 C:\Windows\System32\drivers\rdpbus.sys - ok
21:33:20.0126 0x2c98 [ F4EA1C6D233364AF932D1A0A41F12CD0, 72BED83B19046DD9890F82B0C131CF0810C799CD73764B692406E5DDB6E5EA50 ] C:\Windows\System32\gdi32full.dll
21:33:20.0126 0x2c98 C:\Windows\System32\gdi32full.dll - ok
21:33:20.0126 0x2c98 [ 42BF982F420517A454C9B3DA60C66DE2, 6F426D5E2AD8F09F78D000E37FE00D5F745DBE669079FED6AAA0B573A400C0B1 ] C:\Windows\System32\win32u.dll
21:33:20.0126 0x2c98 C:\Windows\System32\win32u.dll - ok
21:33:20.0126 0x2c98 [ 4B900361DD3F14F08AC465AEC4F94F25, 1F6EC6209D1071DFE8F3295DBD21395B570020243913F71700CF0E8E7D0E5261 ] C:\Windows\System32\windows.storage.dll
21:33:20.0126 0x2c98 C:\Windows\System32\windows.storage.dll - ok
21:33:20.0141 0x2c98 [ 284AFB2BF99806CA5374F4530F6B6112, 54812016FDC18FDD6318B35714024459913B51E8CDA88B9F5B8DA0D7B0407229 ] C:\Windows\System32\bcryptprimitives.dll
21:33:20.0141 0x2c98 C:\Windows\System32\bcryptprimitives.dll - ok
21:33:20.0141 0x2c98 [ FC1892C13103E726F62DD6004F389BD6, 3A048F77F1AF8CB200DD3FFCEB41732F74853B3D852C8503A6DA54823C18D632 ] C:\Windows\System32\comctl32.dll
21:33:20.0141 0x2c98 C:\Windows\System32\comctl32.dll - ok
21:33:20.0141 0x2c98 [ E3E6F8CF136910305DA93F81101177A1, AEE341007B9149282E99B95336BC627474E85D36176FC240AE66EC12FEECC169 ] C:\Windows\System32\ucrtbase.dll
21:33:20.0141 0x2c98 C:\Windows\System32\ucrtbase.dll - ok
21:33:20.0141 0x2c98 [ E25D67561F894B5371E23C1A4C1B6BAA, 5C93145704D06D1E8E432C976E2CD54794D5B79C8A8019CD3B72CF9280DB809C ] C:\Windows\System32\msvcp_win.dll
21:33:20.0141 0x2c98 C:\Windows\System32\msvcp_win.dll - ok
21:33:20.0141 0x2c98 [ CC7B3372C3CEC0E758D30336AB93FE96, 0027FF90DCA79C2CC1359DF54B8CECDE3D88FF87A3222D463A52D600086095E3 ] C:\Windows\System32\crypt32.dll
21:33:20.0141 0x2c98 C:\Windows\System32\crypt32.dll - ok
21:33:20.0141 0x2c98 [ 537DE18D461AFD39FB340EA746C35383, 7416BC52DC617EEEC8BD4B8B00DD0C687FF213CD7FAB57C362B8EA21CD0D3DD1 ] C:\Windows\System32\bcrypt.dll
21:33:20.0141 0x2c98 C:\Windows\System32\bcrypt.dll - ok
21:33:20.0157 0x2c98 [ ACE18C6797090A1AA259BB8713917F98, F5E118F67745792909973717FAE1F9FE68B2619332A4451AD04E0C9072B8D605 ] C:\Windows\System32\cryptsp.dll
21:33:20.0157 0x2c98 C:\Windows\System32\cryptsp.dll - ok
21:33:20.0157 0x2c98 [ EDF981437C0FD1B9DBF9EA42CE97CE60, 42164F81BC8FC2D0A6B71DAA492BE6A6D4785821AA4FDCA27B9273721EDB23D9 ] C:\Windows\System32\kernel.appcore.dll
21:33:20.0157 0x2c98 C:\Windows\System32\kernel.appcore.dll - ok
21:33:20.0157 0x2c98 [ 23D95BFDCD23EC6AFFF7E4B0703CE464, 18DE438E2C068383700C5A87423B70B251302F0D5107F331BC7EDE5097504907 ] C:\Windows\System32\msasn1.dll
21:33:20.0157 0x2c98 C:\Windows\System32\msasn1.dll - ok
21:33:20.0157 0x2c98 [ 07B027B1E0B775FAE815E487F28137B9, 21358CE9A416C7F6DB063095102E91F014BDB85B08A4E783E17234792C9B483A ] C:\Windows\System32\powrprof.dll
21:33:20.0157 0x2c98 C:\Windows\System32\powrprof.dll - ok
21:33:20.0157 0x2c98 [ BD6856804DC75C5A3AD9C9C4A6C9CCD7, BCBB916CFCA837DF782F5B6B6F98AB9835F1D147794F76D6E21D2FC48D3BC498 ] C:\Windows\System32\profapi.dll
21:33:20.0157 0x2c98 C:\Windows\System32\profapi.dll - ok
21:33:20.0157 0x2c98 [ B9A75ED4500DD953DF172FE6F63578E8, 709B99BA1DFEF6D9B2483F37D242B12F29B1E1ADE13E338B4D7041C55B55204B ] C:\Windows\System32\umpdc.dll
21:33:20.0157 0x2c98 C:\Windows\System32\umpdc.dll - ok
21:33:20.0157 0x2c98 [ 5800209092835E9087C4A970614E2418, F0529E0BB932C11A5A7B519845E5F4C12341F90888A295366D75B57180A50058 ] C:\Windows\System32\drivers\usbd.sys
21:33:20.0157 0x2c98 C:\Windows\System32\drivers\usbd.sys - ok
21:33:20.0173 0x2c98 [ F6656FC6BA03CD046F5F82D968F02CC0, 7D1605BE823DC0DC1EA9D330455BF18ED4A4AF993508EB2C38A7C137CCF643A5 ] C:\Windows\System32\drivers\usbhub.sys
21:33:20.0173 0x2c98 C:\Windows\System32\drivers\usbhub.sys - ok
21:33:20.0173 0x2c98 [ F752225A44526D36E2B0F56090AFA881, 60169BAA6E0122DE2BD46303611D6B4F9F3128BE65DEAB26F661C58F4182DA94 ] C:\Windows\System32\autochk.exe
21:33:20.0173 0x2c98 C:\Windows\System32\autochk.exe - ok
21:33:20.0173 0x2c98 [ D1A54E20877DBE8F5772FD249B0A6F2C, 671EAC571E8A987067F09D5BAD5BDAE5B346FAE3192B9E2FEB9953AC378EC968 ] C:\Windows\System32\drivers\AtihdWT6.sys
21:33:20.0173 0x2c98 C:\Windows\System32\drivers\AtihdWT6.sys - ok
21:33:20.0173 0x2c98 [ C1BD8216C0CBD104B2D12A8B52DC8E3E, F68E5497D0E1C97F8BCF8F724D3D145DA6DB7E7E41C0FFC0D1B553389DB1420E ] C:\Windows\System32\drivers\HdAudio.sys
21:33:20.0173 0x2c98 C:\Windows\System32\drivers\HdAudio.sys - ok
21:33:20.0173 0x2c98 [ 85F56430EDB7F15D7E74562B4B9F45ED, 8546D87E71206BE9DEEB7885152554719A322B5BBC5C02A56193F16E4A516FB9 ] C:\Windows\System32\drivers\ksthunk.sys
21:33:20.0173 0x2c98 C:\Windows\System32\drivers\ksthunk.sys - ok
21:33:20.0173 0x2c98 [ 95235AF07E459393CF5B51AE665048B1, 48CE92C954052A556C195473A128CDBA6BA6A260CC346B609F833AF764A948BA ] C:\Windows\System32\drivers\USBHUB3.SYS
21:33:20.0173 0x2c98 C:\Windows\System32\drivers\USBHUB3.SYS - ok
21:33:20.0188 0x2c98 [ E45B5A4D0CD7FAA616D2CF24BEAF5C99, B3D75CC944407F57B4C93D61E313FE60A42A2D18ECAAFD19DC09C49C540AD9FA ] C:\Windows\System32\drivers\usbccgp.sys
21:33:20.0188 0x2c98 C:\Windows\System32\drivers\usbccgp.sys - ok
21:33:20.0188 0x2c98 [ 087BE155D9DEF275A6D2C9EE3157D381, 42750442F80C2032AD303CFEB9C647C02F004B097BB7B944EAE147EA0AF9C426 ] C:\Windows\System32\drivers\hidclass.sys
21:33:20.0188 0x2c98 C:\Windows\System32\drivers\hidclass.sys - ok
21:33:20.0188 0x2c98 [ 5C0CFCF444E43D0DCC265AE29663209B, 53081A785EE55604C4D22BE500F51A55C4028ACF979E5C6092E64AA454CF7BD0 ] C:\Windows\System32\drivers\hidparse.sys
21:33:20.0188 0x2c98 C:\Windows\System32\drivers\hidparse.sys - ok
21:33:20.0188 0x2c98 [ E6FB73DDF8BB4DF3F9BAE8D650ED2540, 6419EA5EA3F5FB0091335A784C3F133503C085C4E33A6C44557AB98F9F0B8495 ] C:\Windows\System32\drivers\hidusb.sys
21:33:20.0188 0x2c98 C:\Windows\System32\drivers\hidusb.sys - ok
21:33:20.0188 0x2c98 [ 60F1F6AE03F579B0E5C2E73C6F266CED, C94CE623729B2D50E15A88E0F68BC3B6EC19BB54611219A6EC72A507E3503555 ] C:\Windows\System32\win32kbase.sys
21:33:20.0188 0x2c98 C:\Windows\System32\win32kbase.sys - ok
21:33:20.0188 0x2c98 [ 0F6D75A9E21A1E6007FDE08FCD9C7169, 1A62BCBA0E5D7D5B8A65F8FCBBF48A89F2023BAEBB76657600BEAC8A6C69E3F5 ] C:\Windows\System32\win32kfull.sys
21:33:20.0188 0x2c98 C:\Windows\System32\win32kfull.sys - ok
21:33:20.0188 0x2c98 [ F199856BEF665A24EF7B3CE97329F83B, 19B4441F03511347981831994B4E684E02B6C2A36CE3CD9D8E74B5C85037758D ] C:\Windows\System32\win32k.sys
21:33:20.0188 0x2c98 C:\Windows\System32\win32k.sys - ok
21:33:20.0204 0x2c98 [ 23019322FFECB179746210BE52D6DE60, F2C7D894ABE8AC0B4C2A597CAA6B3EFE7AD2BDB4226845798D954C5AB9C9BF15 ] C:\Windows\System32\csrss.exe
21:33:20.0204 0x2c98 C:\Windows\System32\csrss.exe - ok
21:33:20.0204 0x2c98 [ B21455B8FF82C98410E1ECDCDC50A67E, 2518696AA3CD15AA0C324A008A87680555911B73DC0DAB6BB5C25230B1F97FD9 ] C:\Windows\System32\basesrv.dll
21:33:20.0204 0x2c98 C:\Windows\System32\basesrv.dll - ok
21:33:20.0204 0x2c98 [ 442A283D2CD40465465AA01BF1D687FD, 07B201E729248B9FF9656023316CAC0D571AFDF133AC09838B051CE3541CC1B3 ] C:\Windows\System32\csrsrv.dll
21:33:20.0204 0x2c98 C:\Windows\System32\csrsrv.dll - ok
21:33:20.0204 0x2c98 [ 5D7E5826FF94D08CE87B197B0E99DDB4, FCA2A1651C8E8ED34E322BFE8D872A8FDE4C2CEC5545DD8EA2E2ADF7D13F3B2A ] C:\Windows\System32\winsrv.dll
21:33:20.0204 0x2c98 C:\Windows\System32\winsrv.dll - ok
21:33:20.0204 0x2c98 [ B44E707196D01F125D30FF6E5DF18698, 5A6FEF8AF5A4760C3F4D65D3885D0B37E44DA45350A7D498CD771640FA1F88C3 ] C:\Windows\System32\winsrvext.dll
21:33:20.0204 0x2c98 C:\Windows\System32\winsrvext.dll - ok
21:33:20.0204 0x2c98 [ 2636838B7F077F20C9FE4EB6C4762887, 152B4D9DCA39CEBE703ACACFCD4D020EA65E503BA417811C5168BBD64FD51840 ] C:\Windows\System32\drivers\mouclass.sys
21:33:20.0204 0x2c98 C:\Windows\System32\drivers\mouclass.sys - ok
21:33:20.0204 0x2c98 [ A461B82FE51C46FA77C124190E1A24E5, A0A1854783D9415892F5BCAF02BB5D0005C321CC051D8262D7C042A21E694EEB ] C:\Windows\System32\drivers\mouhid.sys
21:33:20.0204 0x2c98 C:\Windows\System32\drivers\mouhid.sys - ok
21:33:20.0219 0x2c98 [ A6C674D09B6231702D1DE55E26441BA8, 395DEEACDA99CC90B567FB493F613FC2C34ABF4A34A158E173367F550AE31D87 ] C:\Windows\System32\drivers\kbdclass.sys
21:33:20.0219 0x2c98 C:\Windows\System32\drivers\kbdclass.sys - ok
21:33:20.0219 0x2c98 [ FC6793F3CEA0B44CB516BEE39CA47538, A211547E85B488DDEA3D9FA6080CA9014FB08EAA7C72D54E561D159909F548F6 ] C:\Windows\System32\drivers\kbdhid.sys
21:33:20.0219 0x2c98 C:\Windows\System32\drivers\kbdhid.sys - ok
21:33:20.0219 0x2c98 [ 8C3ED8768951DCFF825A228A550791F7, 3DA70DF19A996A40D6BDCC7CDA345C05001F6F6928133F35FB82324B252DC348 ] C:\Windows\System32\drivers\dxgmms2.sys
21:33:20.0219 0x2c98 C:\Windows\System32\drivers\dxgmms2.sys - ok
21:33:20.0219 0x2c98 [ 4872E5FB09A4482204AEA5D95BAA41D7, 6862DF76CDC84E0CA3129F888D1C4872D286F009AF4ACDC4C55F1FA71A1A79CD ] C:\Windows\System32\drivers\monitor.sys
21:33:20.0219 0x2c98 C:\Windows\System32\drivers\monitor.sys - ok
21:33:20.0219 0x2c98 [ 0901C559D0731D97EDAA68D36660CE90, C82203C444FD09F0396CCD3DA249BD17F0035EBFF75A23853E5920735FB3DFDF ] C:\Windows\System32\sxssrv.dll
21:33:20.0219 0x2c98 C:\Windows\System32\sxssrv.dll - ok
21:33:20.0219 0x2c98 [ 9520279A6AD9B4A25815135C6B39CE16, 2EF3FB620BFD78597D6117795E85E9D20E9999032E334B2E3DE5004C0AF8F7F8 ] C:\Windows\System32\wininit.exe
21:33:20.0219 0x2c98 C:\Windows\System32\wininit.exe - ok
21:33:20.0219 0x2c98 [ 3E966F088D46A0EB482E3DC4AF266C0F, 106C7873DB17E4542022245EEA148F815CE547C36523861DDDB50103C65D8B07 ] C:\Windows\System32\sspicli.dll
21:33:20.0219 0x2c98 C:\Windows\System32\sspicli.dll - ok
21:33:20.0235 0x2c98 [ 424C75E5D97003511A9548A4AC885B85, D8638A57871A4682A3E9FEA94DB24F7A656A5250083F8937E23E2A5C941F9750 ] C:\Windows\System32\userenv.dll
21:33:20.0235 0x2c98 C:\Windows\System32\userenv.dll - ok
21:33:20.0235 0x2c98 [ DDD2CDDFBA3A77526A131CB099AC209C, 6B1515C702BE2DC2BEC0F2E9B17C271C88B734A11CAECED7B9499AE049E283AD ] C:\Windows\System32\wininitext.dll
21:33:20.0235 0x2c98 C:\Windows\System32\wininitext.dll - ok
21:33:20.0235 0x2c98 [ EDB3A7EC1820A58CC5210F80562B7B4D, 91EFAC7374168416295059FCB83E0FB3B7F775E1CF0F45E7A468D9F0C4376FE6 ] C:\Windows\System32\KBDCZ.DLL
21:33:20.0235 0x2c98 C:\Windows\System32\KBDCZ.DLL - ok
21:33:20.0235 0x2c98 [ 3144EDD5CC58D48D7F46BE62E68787EE, 92475075B89B595EFD8ABD30D2EA26D0CD17E2D36E871A20C4AAB1D91DA87D73 ] C:\Windows\System32\KBDSL.DLL
21:33:20.0235 0x2c98 C:\Windows\System32\KBDSL.DLL - ok
21:33:20.0235 0x2c98 [ 7B7CE5F62EA32ADABC9F9E7EEE2134AA, EF91182BCBF3DBDB876D78026C6BD5107FA7CA413323DB62E8DDC45FFFE3DE21 ] C:\Windows\System32\KBDUK.DLL
21:33:20.0235 0x2c98 C:\Windows\System32\KBDUK.DLL - ok
21:33:20.0235 0x2c98 [ 52CB1307F373F6B0B19637496485131F, 71EA78DEBAE511A5380EB982C93FD1B264174668DD813B50AD9DA6B1B31C109D ] C:\Windows\System32\sxs.dll
21:33:20.0235 0x2c98 C:\Windows\System32\sxs.dll - ok
21:33:20.0235 0x2c98 [ 03C70933698C6E3E466076DD9C3FAA18, AA52B2D3DD4B9B47FF4496C0460BDEDDA791354018CF0782B899EF28ACEE8D21 ] C:\Windows\System32\lsass.exe
21:33:20.0235 0x2c98 C:\Windows\System32\lsass.exe - ok
21:33:20.0251 0x2c98 [ 7FA1495521AF93EACC859E104D8CD7AF, 1EC5C585D5C45FD46AA78507452E3000E2F2F3E49B595F4D4AC9330A3B4BC780 ] C:\Windows\System32\services.exe
21:33:20.0251 0x2c98 C:\Windows\System32\services.exe - ok
21:33:20.0251 0x2c98 [ F6BD67F5D1536D4298FC804B58688D2B, 5C78FB862F4D489F5607D274DFB9604C0D608C75B4D9E4E3CF8B7647CFA2D3CC ] C:\Windows\System32\devobj.dll
21:33:20.0251 0x2c98 C:\Windows\System32\devobj.dll - ok
21:33:20.0251 0x2c98 [ 001A6318869C546CDCEFF29E7593397C, 10581A1870FB06587E4A4874179464C6CA8782C5F36F45D91DF7D5CB32E00954 ] C:\Windows\System32\EventAggregation.dll
21:33:20.0251 0x2c98 C:\Windows\System32\EventAggregation.dll - ok
21:33:20.0251 0x2c98 [ 03F5933CD9C5A8388577C3E5324A2A05, DF64A577BF70AA0D0815BA1BCE78F37809ED73695A9ABFEDABDE0E226A5EB7E5 ] C:\Windows\System32\lsasrv.dll
21:33:20.0251 0x2c98 C:\Windows\System32\lsasrv.dll - ok
21:33:20.0251 0x2c98 [ E9EB69986959F6CF58B15960375F279E, F34AEA3CF753971BF83CD496718772D1D02BBE6C0B7C68004053A0D6B2D61617 ] C:\Windows\System32\samsrv.dll
21:33:20.0251 0x2c98 C:\Windows\System32\samsrv.dll - ok
21:33:20.0251 0x2c98 [ FF1EF5A267E237E061D6CF7655C61502, 53E8C9D12372004D56D489231C29134FCE6C39AE14F00682559E29D41DD4D7BD ] C:\Windows\System32\ncrypt.dll
21:33:20.0251 0x2c98 C:\Windows\System32\ncrypt.dll - ok
21:33:20.0266 0x2c98 [ 0365BBD35F91F2E3990A72DF66572586, C1979FED6A92EB1864EC03F1ACEEDA4455D1FD498C460BD52E469054ACD7B953 ] C:\Windows\System32\ntasn1.dll
21:33:20.0266 0x2c98 C:\Windows\System32\ntasn1.dll - ok
21:33:20.0266 0x2c98 [ 2AD1079ABEFC753590363242278D68BE, EE96581F9088ACAA2D1348D2BA7F592B7BA98EC8AAD2CAF22E82E5BAF1A49D65 ] C:\Windows\System32\wldp.dll
21:33:20.0266 0x2c98 C:\Windows\System32\wldp.dll - ok
21:33:20.0266 0x2c98 [ 62F8F15B391A7F3EB588FD876BBE7C4C, ADBF209151114EBAD60B9A498C24063C3C9C58A0492C114012E455549F8E7A60 ] C:\Windows\System32\joinutil.dll
21:33:20.0266 0x2c98 C:\Windows\System32\joinutil.dll - ok
21:33:20.0266 0x2c98 [ C6018DAE912B62DEA7B07265E4D5DFAF, 0E0257D5AA76B6D475C53AC07015138CE6B27F2E422E3C753E0FD26437BBDE54 ] C:\Windows\System32\msprivs.dll
21:33:20.0266 0x2c98 C:\Windows\System32\msprivs.dll - ok
21:33:20.0266 0x2c98 [ 0C44B73CF41BEF25339126F8AD1BD6D4, B60C4EFC3075A2F9AA836811DA6C9ED9EBD20021FBEDDE3664F6AF41E4451EC6 ] C:\Windows\System32\netprovfw.dll
21:33:20.0266 0x2c98 C:\Windows\System32\netprovfw.dll - ok
21:33:20.0266 0x2c98 [ 26887DE7D7D1928F52A452E3A63E55E8, EA86D9754164CA2C01B4A7F81188B2490CEE1F350E177861A4702C92DFD6D066 ] C:\Windows\System32\cryptbase.dll
21:33:20.0266 0x2c98 C:\Windows\System32\cryptbase.dll - ok
21:33:20.0266 0x2c98 [ 5A6E79EC5901D1F5CF6AD068A62097EC, FCF6DDD28DF5E2AF715A0D73727015C1D6D020984637B49325524C2640066E2D ] C:\Windows\System32\kerberos.dll
21:33:20.0266 0x2c98 C:\Windows\System32\kerberos.dll - ok
21:33:20.0282 0x2c98 [ 914601C1356001631219086804D24ACF, B7085CD1293AB1F35D9A3C4781D464BB09BE823C1EFCFCC3A4979419C4FBA211 ] C:\Windows\System32\negoexts.dll
21:33:20.0282 0x2c98 C:\Windows\System32\negoexts.dll - ok
21:33:20.0282 0x2c98 [ EF5BEB86315CDF02845C6A0736283980, 2A578C2FC5FF5BD21174EA49C6F489D78C14714286DEF302815639FDDFC4EE0A ] C:\Windows\System32\cdd.dll
21:33:20.0282 0x2c98 C:\Windows\System32\cdd.dll - ok
21:33:20.0282 0x2c98 [ D688CD24DFA347ED9C3EFD8F7756D404, F4BA3B1A3CFE6C67562642F012D1567510DA4BEFFA27FD4B4257A500158FC011 ] C:\Windows\System32\cryptdll.dll
21:33:20.0282 0x2c98 C:\Windows\System32\cryptdll.dll - ok
21:33:20.0282 0x2c98 [ FCB5DCDEF3A4511936EC2EC21B465EA2, 1C64F922BDBFD41405B806DE951E7EAC4817D7AB234AB8CCBE1867C4E7835258 ] C:\Windows\System32\KerbClientShared.dll
21:33:20.0282 0x2c98 C:\Windows\System32\KerbClientShared.dll - ok
21:33:20.0282 0x2c98 [ 6F39B772947F9CAB54CC946CACAA464A, 30E627B5C6C4AFFF4190B8CB940B2F21871BF407069ED5F519EFB27DE75E5FC4 ] C:\Windows\System32\msv1_0.dll
21:33:20.0282 0x2c98 C:\Windows\System32\msv1_0.dll - ok
21:33:20.0282 0x2c98 [ 614D39388965D0E7B3DBE5B83C7CA164, 266A5502D91A16FDAD816E8C2BBE002BB33DEF30047E4058FD09512C87D3A23D ] C:\Windows\System32\mswsock.dll
21:33:20.0282 0x2c98 C:\Windows\System32\mswsock.dll - ok
21:33:20.0298 0x2c98 [ 0DAE4B9FB1E2043C18B7A7E7CBA5964B, 1EC22744B80B5BC3DA793C45EDAB71B47D744ECBDC7EC9A7604BD604573A17DA ] C:\Windows\System32\winlogon.exe
21:33:20.0298 0x2c98 C:\Windows\System32\winlogon.exe - ok
21:33:20.0298 0x2c98 [ A800AE6D9EE5F18D956CFC58E2F8836A, 1DD5DA8453102DDE04248EFA98E3281BA458BCC419BCF40E0D09E6F967E63F67 ] C:\Windows\System32\netlogon.dll
21:33:20.0298 0x2c98 C:\Windows\System32\netlogon.dll - ok
21:33:20.0298 0x2c98 [ 418190F1043867AF1EA6A46600136134, 7E034CC4E80106CDA064C21176333534EA949837E8DC2F11333D937814125DE6 ] C:\Windows\System32\NtlmShared.dll
21:33:20.0298 0x2c98 C:\Windows\System32\NtlmShared.dll - ok
21:33:20.0298 0x2c98 [ 2B1627A5E6EFAA1C100A1CD87E37F7DA, 9CCE7C5AE66B0939A75F16235724AC2D1FB1DB18A2878CAB5BCD13FF674DEAED ] C:\Windows\System32\dnsapi.dll
21:33:20.0298 0x2c98 C:\Windows\System32\dnsapi.dll - ok
21:33:20.0298 0x2c98 [ 360F1EE2A85D9602FB0D21E9A39B281D, 04D74124E187D66B31389A94E75031E8AA61B554B50E43BF4F7A4BB73EA117D2 ] C:\Windows\System32\gmsaclient.dll
21:33:20.0298 0x2c98 C:\Windows\System32\gmsaclient.dll - ok
21:33:20.0298 0x2c98 [ 3929147A2A34B0902152C7D0F241B02A, AD1C5309AA873F6A284EABE382812868E20C3D3D64197F3E6EF9D015EA060CAA ] C:\Windows\System32\IPHLPAPI.DLL
21:33:20.0298 0x2c98 C:\Windows\System32\IPHLPAPI.DLL - ok
21:33:20.0298 0x2c98 [ 56B24BF15E6E88A2D6EF9AFC26BF7FCF, 74DC0C738188BBF385E9C3295C9904A6CEF4A947AFB71F2A0825037BBB27C92A ] C:\Windows\System32\netutils.dll
21:33:20.0298 0x2c98 C:\Windows\System32\netutils.dll - ok
21:33:20.0313 0x2c98 [ 49010941576D87C3773B9D3B624B182E, 6AFEB3B06E559E704043F70F188863EE482655226930AB1DD534D9580FEB8095 ] C:\Windows\System32\TSpkg.dll
21:33:20.0313 0x2c98 C:\Windows\System32\TSpkg.dll - ok
21:33:20.0313 0x2c98 [ BD6DF7AEE63AB72A60D1AD91425BA08F, 7F8EBEEE565BDEFE320B7FC500FF6F928B29AE0BF84553F3D73E06CE3684A847 ] C:\Windows\System32\winsta.dll
21:33:20.0313 0x2c98 C:\Windows\System32\winsta.dll - ok
21:33:20.0313 0x2c98 [ 06E882ADEFFAB78EB4C89BAF6632178E, 04F9649981E2C7FA1DCADF1263EA1FD7E45F979A8B917715296E10EE9BB0D54F ] C:\Windows\System32\cloudAP.dll
21:33:20.0313 0x2c98 C:\Windows\System32\cloudAP.dll - ok
21:33:20.0313 0x2c98 [ D5EC1EAC015895F6129D5AE7B002DE74, F6E9ADA3E2EEC23DD0CCC28D8B160BCE8B5A6EFDE97B865B06047F019E53F167 ] C:\Windows\System32\pku2u.dll
21:33:20.0313 0x2c98 C:\Windows\System32\pku2u.dll - ok
21:33:20.0313 0x2c98 [ 105772C052983D98D630C09C9029D558, 319D73EBEB20113E7B0A988CE10E7C3E1EA0885B30045821223D8B7739D4CDA5 ] C:\Windows\System32\dpapi.dll
21:33:20.0313 0x2c98 C:\Windows\System32\dpapi.dll - ok
21:33:20.0313 0x2c98 [ 7A84B90CCABC4F87948C9E466A74439E, 548273A240B37916BA735F93110E4F6D4610D3A761196CAAEBA904D92124B565 ] C:\Windows\System32\MicrosoftAccountCloudAP.dll
21:33:20.0313 0x2c98 C:\Windows\System32\MicrosoftAccountCloudAP.dll - ok
21:33:20.0329 0x2c98 [ D3102BD5CD3C24E02C68CF6770379402, 49BF93C5C4D0D4AEE050ED83193DCF3FCB08D50DB5F0B7740436B24B83D14023 ] C:\Windows\System32\rsaenh.dll
21:33:20.0329 0x2c98 C:\Windows\System32\rsaenh.dll - ok
21:33:20.0329 0x2c98 [ 98BB4D3ACA0506DE97CAF7310C551349, C67A60C7C391E4A559C78015728EDC095BE8F97DE0A2122E4ACFF7C7E7EBBCEC ] C:\Windows\System32\schannel.dll
21:33:20.0329 0x2c98 C:\Windows\System32\schannel.dll - ok
21:33:20.0329 0x2c98 [ CA4C63873E4A4C55497D07EE3822EF95, 4BBBC3F01593BE70CBECD459A9D2D8CC16596E3819FA6AF7E5ACCD6B3D3D552D ] C:\Windows\System32\wdigest.dll
21:33:20.0329 0x2c98 C:\Windows\System32\wdigest.dll - ok
21:33:20.0329 0x2c98 [ 83623D9B240A92D165910AE72CF234B3, 51CE4AC7BB746FA0AB102EC1A6C92176F6575CA0FAE4EBCD92A8E87CBCCEF79E ] C:\Windows\System32\credssp.dll
21:33:20.0329 0x2c98 C:\Windows\System32\credssp.dll - ok
21:33:20.0329 0x2c98 [ E7770185328FA24AA5EF8AF1FDEC5B0F, 31CDD62B397CD79735D4D4B0DB58B5F35F5C54248E85E6D2E458A6225B26D368 ] C:\Windows\System32\dpapisrv.dll
21:33:20.0329 0x2c98 C:\Windows\System32\dpapisrv.dll - ok
21:33:20.0329 0x2c98 [ 6A23C50DD175ED2B7996A7BFE93F18FF, 956140B3C92EAF11497242A253A33CB373F373CB101B33A71D0C1CD824DD12C9 ] C:\Windows\System32\efslsaext.dll
21:33:20.0329 0x2c98 C:\Windows\System32\efslsaext.dll - ok
21:33:20.0329 0x2c98 [ 64A9F0D0D13631E673C2A38A5B43FC5B, B6F504D78FDBDE7422DBC16075154D235C615C6188BCCDD5E18963C0428BFDD5 ] C:\Windows\System32\sspisrv.dll
21:33:20.0329 0x2c98 C:\Windows\System32\sspisrv.dll - ok
21:33:20.0344 0x2c98 [ B4D633B1EC4DD582E99AA2D5AA4CCC52, 95ADC30BD94DF5BC38C72DD6E2D12C4DCEFCB3D87256CFAFC26C74C5EB8FAC2F ] C:\Windows\System32\kdcpw.dll
21:33:20.0344 0x2c98 C:\Windows\System32\kdcpw.dll - ok
21:33:20.0344 0x2c98 [ 13F4184A9751928FAB5FFAA9587873AE, 6917DF85758CE7A31B2BE75DD026751809F3268F224011F8B18753E923754918 ] C:\Windows\System32\scecli.dll
21:33:20.0344 0x2c98 C:\Windows\System32\scecli.dll - ok
21:33:20.0344 0x2c98 [ E4DB4352D9552BB65B40F27FC2C2E4E7, 1825FBF81DC5AF84966AF83DAAA6751484FF69DF982D5C54E524F3734E647224 ] C:\Windows\System32\scesrv.dll
21:33:20.0344 0x2c98 C:\Windows\System32\scesrv.dll - ok
21:33:20.0344 0x2c98 [ 984173FF935793794A817ABA374B8B1B, AA6F5C2741E76F614932188DDF88320417B40C8DDACF2B044F52D7759FD612FD ] C:\Windows\System32\authz.dll
21:33:20.0344 0x2c98 C:\Windows\System32\authz.dll - ok
21:33:20.0344 0x2c98 [ 435009D1DDC0365BFA34B8C8D3F85286, 2F94628F056FE65EA81351E134E59ECE813FEC5E8400C12D6DFA49DEFD126D01 ] C:\Windows\System32\ntmarta.dll
21:33:20.0344 0x2c98 C:\Windows\System32\ntmarta.dll - ok
21:33:20.0344 0x2c98 [ AA3B85B51DE8AE702A4E2E67889AB8D9, D52B822F3D320548DD0C9E778AC6A19948F668E960B86C23A2F5CA16D358E164 ] C:\Windows\System32\profext.dll
21:33:20.0344 0x2c98 C:\Windows\System32\profext.dll - ok
21:33:20.0344 0x2c98 [ 04D1CC742FB64C66445C3D594E09729B, F844AB1867AA257EDF6FB0E4512E69BBA195A67F2A6441C927725F560C4ADC09 ] C:\Windows\System32\FirewallAPI.dll
21:33:20.0344 0x2c98 C:\Windows\System32\FirewallAPI.dll - ok
21:33:20.0360 0x2c98 [ 084A3E05AD7F33856E78C9AC41BA472D, 38064E124B33A43FB1D22D657AF56E0712141639E60356C17E2B26668E5A1506 ] C:\Windows\System32\fwbase.dll
21:33:20.0360 0x2c98 C:\Windows\System32\fwbase.dll - ok
21:33:20.0360 0x2c98 [ 9520A99E77D6196D0D09833146424113, DD191A5B23DF92E12A8852291F9FB5ED594B76A28A5A464418442584AFD1E048 ] C:\Windows\System32\svchost.exe
21:33:20.0360 0x2c98 C:\Windows\System32\svchost.exe - ok
21:33:20.0360 0x2c98 [ 3912B342C40662258184F385ED79CC42, 6CA9423AB5D7A9D518C9AD64FBA415272C2F124B8728128DE4D7844856ADB76F ] C:\Windows\System32\WUDFPlatform.dll
21:33:20.0360 0x2c98 C:\Windows\System32\WUDFPlatform.dll - ok
21:33:20.0360 0x2c98 [ 667A265D48919BF3A4F07EF8A8F7BC8D, 50B49E76BE3DA121EB9063740D2B6CC16F66BC8AC9BC200FA209DE0EB43FB4FF ] C:\Windows\System32\fontdrvhost.exe
21:33:20.0360 0x2c98 C:\Windows\System32\fontdrvhost.exe - ok
21:33:20.0360 0x2c98 [ C28BA33FE1373DE12B5FC1873FFAE4BE, 54D6EC2E21DFBA341EFE237ABDB08F00EA8A2479124750C3719375FC628459D8 ] C:\Windows\System32\umpnpmgr.dll
21:33:20.0360 0x2c98 C:\Windows\System32\umpnpmgr.dll - ok
21:33:20.0360 0x2c98 [ E0EB98C5FD0C959A0439555284B720A9, 3A7418D25E3EFEB1482EEE5CD4576F3E4BA503C0D0876B2F7976EAE515C68944 ] C:\Windows\System32\slc.dll
21:33:20.0360 0x2c98 C:\Windows\System32\slc.dll - ok
21:33:20.0360 0x2c98 [ 2ABCC164C08A68859168D05BBC49D396, CF57DA34D5A97AD000EAF9DDD554F9A5B019EF624DAFCA17EB7AAFDA2C117FB6 ] C:\Windows\System32\sppc.dll
21:33:20.0360 0x2c98 C:\Windows\System32\sppc.dll - ok
21:33:20.0376 0x2c98 [ 45B46028483B439C51916A0FF329E7DA, 64CE60391F90E5050C76239A0AAA6E88191F2C61482FF80FEBDBCBF1D88FCB59 ] C:\Windows\System32\umpo.dll
21:33:20.0376 0x2c98 C:\Windows\System32\umpo.dll - ok
21:33:20.0376 0x2c98 [ 72DD7E9ABE185939D4C26857A99BBBE7, E98E1C0E7B23CFE0E74F10A892B99071F40B0082B8D3F5ECF1D2327B27EF92C5 ] C:\Windows\System32\tdh.dll
21:33:20.0376 0x2c98 C:\Windows\System32\tdh.dll - ok
21:33:20.0376 0x2c98 [ E9BC95ABEBFBEBC851F57C5A9C2AEC5D, 16E3C96F953C7DDA0256AA75523ED3E249AC15E8C03987E9B39017CFA4741812 ] C:\Windows\System32\umpoext.dll
21:33:20.0376 0x2c98 C:\Windows\System32\umpoext.dll - ok
21:33:20.0376 0x2c98 [ 5A628B2C17C07B491DADE464B2CE7CD6, 410D56267FF99D47112D359A7B2527919FDA4B8EB29D1C6A860A8248B53DD0BD ] C:\Windows\System32\dxgi.dll
21:33:20.0376 0x2c98 C:\Windows\System32\dxgi.dll - ok
21:33:20.0376 0x2c98 [ 0431695AB8754780B61A166A30036313, 2E5A3168700BA8C2555B4DE729D19203DEFB2C51986990E849C69BB600DCEBFF ] C:\Windows\System32\DXCore.dll
21:33:20.0376 0x2c98 C:\Windows\System32\DXCore.dll - ok
21:33:20.0376 0x2c98 [ 431151D8C73561916A3B94F999FA7588, 6AE30B39DA6C511DF8D87C34008F00E800AF598B9420159B4C6E821366675FEB ] C:\Windows\System32\mintdh.dll
21:33:20.0376 0x2c98 C:\Windows\System32\mintdh.dll - ok
21:33:20.0376 0x2c98 [ FADE8C903AA2924A6ED9D0261405F186, 85CB2884DCB2E1E93AD04148B0BBFFE17D8BCCA0BF27E9AC5BA1FE7AE69B1D9A ] C:\Windows\System32\gpapi.dll
21:33:20.0376 0x2c98 C:\Windows\System32\gpapi.dll - ok
21:33:20.0391 0x2c98 [ 7CAABA7444AF8A187779DDD7DA7B5735, 916C2533103271882698F98913DDF4F9CFF399828611661183F6765FC0BD0D6D ] C:\Windows\System32\umpo-overrides.dll
21:33:20.0391 0x2c98 C:\Windows\System32\umpo-overrides.dll - ok
21:33:20.0391 0x2c98 [ A5AE4AE12AE7CADA9B6A8CF9D28E3F6F, A2DC3039C8C8618822C2940EAD78B9961C6EC25A82375C2A8A41FE1EAA370AC1 ] C:\Windows\System32\hid.dll
21:33:20.0391 0x2c98 C:\Windows\System32\hid.dll - ok
21:33:20.0391 0x2c98 [ 34EA1A04B3D62138CFD3ABD866AB589A, 49EDA0B9B1F9EA86DA5EBD7BDAFA661D35D30C6B15F5683640FF9523C3D82C00 ] C:\Windows\System32\rpcss.dll
21:33:20.0391 0x2c98 C:\Windows\System32\rpcss.dll - ok
21:33:20.0391 0x2c98 [ 9F8C24A7E07A8363D069F4D49993994C, 20042FA6280BC42FA10F585036E1945545EE1B99E141B469114686C065CFFD73 ] C:\Windows\System32\RpcEpMap.dll
21:33:20.0391 0x2c98 C:\Windows\System32\RpcEpMap.dll - ok
21:33:20.0391 0x2c98 [ E8C629FB1D64AAEB1BE9CF77A2C9C068, 9AF659ACA297A04BDCACAC41C4A4479EDB1AD3BA8D73DA32D79E8E1A8788B467 ] C:\Windows\System32\RpcRtRemote.dll
21:33:20.0391 0x2c98 C:\Windows\System32\RpcRtRemote.dll - ok
21:33:20.0391 0x2c98 [ C95A0B391062A3B058CD2B94F0ACD972, D5399CE8134B871A1AE2BF294F9E1BA515235F96CDED85E0F0AAD2FD156C4CC8 ] C:\Windows\System32\psmsrv.dll
21:33:20.0391 0x2c98 C:\Windows\System32\psmsrv.dll - ok
21:33:20.0391 0x2c98 [ BDA93061DADEAEFB75CC2FD0D54CDC4C, 2FB16DE5EB8A1DB9E489B16C0AFC60CD0B645C48D8528A09D02A571933E43F34 ] C:\Windows\System32\lsm.dll
21:33:20.0391 0x2c98 C:\Windows\System32\lsm.dll - ok
21:33:20.0407 0x2c98 [ 49556AD60DEE979C4961893F38D1C09E, 012E29D5112E4B4DC5CA07AA230BD759B79DAA7EB62CD630BCF1FD5D4D9EBACB ] C:\Windows\System32\PsmServiceExtHost.dll
21:33:20.0407 0x2c98 C:\Windows\System32\PsmServiceExtHost.dll - ok
21:33:20.0407 0x2c98 [ 08F8859E171332CA6ABFBF2EC5241413, DD6F2228A187519BFD23A6BE7E23EBB91DA6BD8452734C45BEB05478A7B1BAF7 ] C:\Windows\System32\rmclient.dll
21:33:20.0407 0x2c98 C:\Windows\System32\rmclient.dll - ok
21:33:20.0407 0x2c98 [ 15F1F954858D1D155BF4171F1374A2F8, 030F1BAF0DCDAFE1B17A87E3856889771044847F0DAA87C135AFC7BA72A8A09E ] C:\Windows\System32\wer.dll
21:33:20.0407 0x2c98 C:\Windows\System32\wer.dll - ok
21:33:20.0407 0x2c98 [ E48CAF329F2ABF872FF46BDFBD4FEE41, 973A2EB8C7D5211CEC7274B3625EC06DF578D231CE7815DA0DC94824CDEF949D ] C:\Windows\System32\bisrv.dll
21:33:20.0407 0x2c98 C:\Windows\System32\bisrv.dll - ok
21:33:20.0407 0x2c98 [ AE2B02A483B21C79B4F77517783B0C93, DF2E7E2FC8FC90CF808357318DD51B6AC87232BF2CAA37E4BB1E6498719E6626 ] C:\Windows\System32\dwmapi.dll
21:33:20.0407 0x2c98 C:\Windows\System32\dwmapi.dll - ok
21:33:20.0407 0x2c98 [ D650CABF2BBF3A3D1EEC52D0179D353F, E1990EF54AC2CDB5362C8A3E6E12F06CA57FB2D63B11FB78931A844EECE999A6 ] C:\Windows\System32\sysntfy.dll
21:33:20.0407 0x2c98 C:\Windows\System32\sysntfy.dll - ok
21:33:20.0407 0x2c98 [ 3A86116E01A981B26CCB1E963D07AA5E, 47DAA7439A420D5DF50E957E59C50E12F445ED943595ED90CE493784F99322CF ] C:\Windows\System32\twinapi.appcore.dll
21:33:20.0407 0x2c98 C:\Windows\System32\twinapi.appcore.dll - ok
21:33:20.0423 0x2c98 [ F443DCB1CFC58DEAA6B5F243D5705DF5, 57B7192C4C6255D0833340D2BAED823BE4716AC8BD32143905ADEFA5791D5091 ] C:\Windows\System32\UXInit.dll
21:33:20.0423 0x2c98 C:\Windows\System32\UXInit.dll - ok
21:33:20.0423 0x2c98 [ 0556742D0B884E434013016F3C100F68, 12810CBC43D04B3530DC3922F4DACDB0E2AB6E51C78C1A5CC13EE97B7B3F9E62 ] C:\Windows\System32\uxtheme.dll
21:33:20.0423 0x2c98 C:\Windows\System32\uxtheme.dll - ok
21:33:20.0423 0x2c98 [ DFEF317C7E3F51053E14D1E36DB1F383, 07FDC4E2A93F1389B7A337ED4447BBCBDA15A5285D0F90DE8B84CCB5E5DE91A4 ] C:\Windows\System32\ResourcePolicyClient.dll
21:33:20.0423 0x2c98 C:\Windows\System32\ResourcePolicyClient.dll - ok
21:33:20.0423 0x2c98 [ 231CB847B38E6FCF6245468CEFE1955B, 0EB9C7451DF0397A565089F714E1F9628C0F8C346DB720535E6E63A9D9E8D159 ] C:\Windows\System32\audioresourceregistrar.dll
21:33:20.0423 0x2c98 C:\Windows\System32\audioresourceregistrar.dll - ok
21:33:20.0423 0x2c98 [ 59DDA82893C6D8FF42BEE721BA2863E9, EA41260153D23A56906A4B5F39F0AA1A47BB66A67B2293A4F21D9F0A64C5CF74 ] C:\Windows\System32\dwminit.dll
21:33:20.0423 0x2c98 C:\Windows\System32\dwminit.dll - ok
21:33:20.0423 0x2c98 [ AC838B9D0E1C5003BEE05F4CDFC84476, 6F98BEA16ADC7C9B53556B3C58C3015E869B478ECED64FA2BFEA978FAF645739 ] C:\Windows\System32\embeddedmodesvcapi.dll
21:33:20.0423 0x2c98 C:\Windows\System32\embeddedmodesvcapi.dll - ok
21:33:20.0438 0x2c98 [ E4D6BF6C69BE766A875EC3BF61C6D3B6, 1A58E4D3C66D47D36EB6DD901C4AB77FDB511154BC17E664EC098551E33FC41B ] C:\Windows\System32\xmllite.dll
21:33:20.0438 0x2c98 C:\Windows\System32\xmllite.dll - ok
21:33:20.0438 0x2c98 [ 929AFBF6453DA8E969C7BBA44BCE0906, 1E32F6BFD882ACC2300F34D9A7D0D574A66075F4BDE70088C94954D464380327 ] C:\Windows\System32\apphelp.dll
21:33:20.0438 0x2c98 C:\Windows\System32\apphelp.dll - ok
21:33:20.0438 0x2c98 [ DAA5CD4C86D5FCD6B3A215B34264FE78, 630067181FA5B2E7D9E7F50C6CECF3C3E60EEA426A7AB0125810E3337E14BAE0 ] C:\Windows\System32\LogonUI.exe
21:33:20.0438 0x2c98 C:\Windows\System32\LogonUI.exe - ok
21:33:20.0438 0x2c98 [ 0C6E2F0A999F6AB783944B2AE91FD13A, AD15BFE6A270CAEC1AD0EFBD8EAC8F123F3232B73AB3AC0EE9A4FF2E7B8D7F7B ] C:\Windows\System32\ResourcePolicyServer.dll
21:33:20.0438 0x2c98 C:\Windows\System32\ResourcePolicyServer.dll - ok
21:33:20.0438 0x2c98 [ BD2756FE247EC0D8E3DCEB5A24792A9D, 1FDC0BEBCA6761686A87C4A88D3B55E7ECA6321243C96BA9E96EC9233D6A529F ] C:\Windows\System32\BrokerLib.dll
21:33:20.0438 0x2c98 C:\Windows\System32\BrokerLib.dll - ok
21:33:20.0438 0x2c98 [ DEDB7B0F1B3D1FD41054994BA0F87E4F, 95F72AB2AFB5DF5A1B686BBF9365A41DAA86CB7E1646C3F6D98D197EDDCFC377 ] C:\Windows\System32\dwm.exe
21:33:20.0438 0x2c98 C:\Windows\System32\dwm.exe - ok
21:33:20.0454 0x2c98 [ 056CAFB286EE69964F6F1C37BDD2207A, F333D5C39FA447B11FB24E4CF1452111C5E9EE7A33F2064C541548B9CD33E69C ] C:\Windows\System32\LogonController.dll
21:33:20.0454 0x2c98 C:\Windows\System32\LogonController.dll - ok
21:33:20.0454 0x2c98 [ D942CEB6B2B01DA00FC20EA1C36DF8BC, B93C15A5F08D5792CFC0C6ED2D19EEB18EA8F642CF389CF0788649CE6AFD7896 ] C:\Windows\System32\SystemEventsBrokerServer.dll
21:33:20.0454 0x2c98 C:\Windows\System32\SystemEventsBrokerServer.dll - ok
21:33:20.0454 0x2c98 [ BC77F70FCB5758A9322208F4F78A9103, B895EFB78706256C9762E2488BFB5971FF93B1DA23B7058AB0FCF6EE314DD1C0 ] C:\Windows\System32\dab.dll
21:33:20.0454 0x2c98 C:\Windows\System32\dab.dll - ok
21:33:20.0454 0x2c98 [ 68ABF43B84B5C0E8EEBB6F83041B55F2, 4D5517AD83820DEB5B6028728888DAE8FE913B0FC2FE54FEB4129B42A9945774 ] C:\Windows\System32\dabapi.dll
21:33:20.0454 0x2c98 C:\Windows\System32\dabapi.dll - ok
21:33:20.0454 0x2c98 [ 24AD1FF993C109CEF0F41392A0470993, 7C4F7ED05C5F2C0AA52B9F1934C6582787E52AF3EAD77FFF3263F7D9B51C4716 ] C:\Windows\System32\dwmredir.dll
21:33:20.0454 0x2c98 C:\Windows\System32\dwmredir.dll - ok
21:33:20.0454 0x2c98 [ A1FE1448866AEB07FE8A5136C4473AF7, F5F3D5F39AA766006D24984DF3425346D2A58632DC15FC9942E28D5492EB87D0 ] C:\Windows\System32\uDWM.dll
21:33:20.0454 0x2c98 C:\Windows\System32\uDWM.dll - ok
21:33:20.0454 0x2c98 [ 965EB822D0EF8FDA78CCB1F41DEF093D, AD43D686930EAE0F57A55EE75D10BD1882747089A291371FFE1E131EB5F76938 ] C:\Windows\System32\winmm.dll
21:33:20.0454 0x2c98 C:\Windows\System32\winmm.dll - ok
21:33:20.0469 0x2c98 [ E6450257BA3DF5161684E4C73EBB8F92, 948F13FE144CD80F93565DED2AC2E96D000869BB2761538996D28942495CB1D7 ] C:\Windows\System32\winmmbase.dll
21:33:20.0469 0x2c98 C:\Windows\System32\winmmbase.dll - ok
21:33:20.0469 0x2c98 [ 7435F4CC61734A50F136C2AB0767860B, 61FC03384562FB0F26D9228B322AC412FE1217F7126BA70F723353E9934A0999 ] C:\Windows\System32\dsreg.dll
21:33:20.0469 0x2c98 C:\Windows\System32\dsreg.dll - ok
21:33:20.0469 0x2c98 [ 478B5F68973FC23D0A8D6F14C901CD1D, 9E687F0211B50130BC80F1327E3C5E0215FF11009FAF2C13A254E24FB7A6221F ] C:\Windows\System32\dwmcore.dll
21:33:20.0469 0x2c98 C:\Windows\System32\dwmcore.dll - ok
21:33:20.0469 0x2c98 [ 2661AB2C26F6FD9E3A868C58D408297E, 3DC331F24BBD33EA0712C3ED7AFC41956F1409360EF88CBDCF0C2E288AEDB1E6 ] C:\Windows\System32\msvcp110_win.dll
21:33:20.0469 0x2c98 C:\Windows\System32\msvcp110_win.dll - ok
21:33:20.0469 0x2c98 [ 19840E5A1F6EF9664C92D35B350AE9C6, F538B498A0134043BECF98251A52B1BDE32A6748DE4FEFD6E0C3358D65E6F2AA ] C:\Windows\System32\wtsapi32.dll
21:33:20.0469 0x2c98 C:\Windows\System32\wtsapi32.dll - ok
21:33:20.0469 0x2c98 [ 1AC4FA8878EFEE7960E96EB847E27D12, 2A25FDFB9BB7667180A25E3AB73EF1A0BDD73CFD66C25B3FE1AB2CB99C88E108 ] C:\Windows\System32\samlib.dll
21:33:20.0469 0x2c98 C:\Windows\System32\samlib.dll - ok
21:33:20.0469 0x2c98 [ 6B85524A90323AF76A366F073A3980CC, 2EA26E14251E94FCB8F7ED15EC57148D9E3E9E0A376B7C5B480C5520B0C90210 ] C:\Windows\System32\shacct.dll
21:33:20.0469 0x2c98 C:\Windows\System32\shacct.dll - ok
21:33:20.0485 0x2c98 [ 64C146E79B02051548A3D2790071C96A, 86F31D86E4E6E692E2FD195C0D1B02B3F720688491A330C98E124E55E1FB492A ] C:\Windows\System32\CoreMessaging.dll
21:33:20.0485 0x2c98 C:\Windows\System32\CoreMessaging.dll - ok
21:33:20.0485 0x2c98 [ 2A6EEA251877EB33048A0E8A320F505C, 46CB246E11BA91985F59C77CCDE2725313BA4F57A8D298AEDBED83EBA84BDAA1 ] C:\Windows\System32\gpsvc.dll
21:33:20.0485 0x2c98 C:\Windows\System32\gpsvc.dll - ok
21:33:20.0485 0x2c98 [ E8AA4A19EA935E2B17C0EE198F3AD67A, 41FB3654F7F1B54AD7878D892D8004CDF1212B297B778458B40A9E08FDE8702C ] C:\Windows\System32\propsys.dll
21:33:20.0485 0x2c98 C:\Windows\System32\propsys.dll - ok
21:33:20.0485 0x2c98 [ 150E97ED14F3F73CA8BA08E778DE362F, B00E0BAD6A15EF715E3F7CE6621BB52CDEF253D72DF2D10F5F0A3952390CBB53 ] C:\Windows\System32\dcomp.dll
21:33:20.0485 0x2c98 C:\Windows\System32\dcomp.dll - ok
21:33:20.0485 0x2c98 [ A9290114AC1F044DCF06A0F2545539F8, E036E2EAF386B09FAF64C25B17C971A3A5A5F0725A79E0244C264DA37E8211F5 ] C:\Windows\System32\nlaapi.dll
21:33:20.0485 0x2c98 C:\Windows\System32\nlaapi.dll - ok
21:33:20.0485 0x2c98 [ 124C6777238FE63D9D8DF3DA8A7ECAF5, FDA31E4E319851AE51D4E1CB183AD376999F652D2D79D69B793E6111061AEA2B ] C:\Windows\System32\d3d11.dll
21:33:20.0485 0x2c98 C:\Windows\System32\d3d11.dll - ok
21:33:20.0501 0x2c98 [ 609AC3B4E090CB1894F56D978E74C4F1, 108A9798E55A91928F7FE8EBC5087EEDBB6C023D958F18A6CEFD46BA5399BE61 ] C:\Windows\System32\dsrole.dll
21:33:20.0501 0x2c98 C:\Windows\System32\dsrole.dll - ok
21:33:20.0501 0x2c98 [ C696D73070AA5BFB0B5A6107ADB78B71, 3574B99AE6B3BE0B43EEEB4376CDD57E51F7BE8770359AC18C459AAAA1B3E409 ] C:\Windows\System32\usermgrcli.dll
21:33:20.0501 0x2c98 C:\Windows\System32\usermgrcli.dll - ok
21:33:20.0501 0x2c98 [ 2FFE2081F5581CF744D75A2ABE56DBFC, E43C1490D017EA4ED1CB725C8943B4C0DEAB2A4EF39BFDB18110268AC91AD836 ] C:\Windows\System32\taskschd.dll
21:33:20.0501 0x2c98 C:\Windows\System32\taskschd.dll - ok
21:33:20.0501 0x2c98 [ 21DCCE84ACEE6DF560A54901460B1974, 2EE4A5C334CAD770B5A4BE77D0FDF10F084B10FCC9DFAF434338224B263A23B6 ] C:\Windows\System32\lmhsvc.dll
21:33:20.0501 0x2c98 C:\Windows\System32\lmhsvc.dll - ok
21:33:20.0501 0x2c98 [ DF5A8E0E5E3FE297FCBC0F9F7E7DF4AC, 24C777939766DFEC356A2B17D842F2E5098101202B2FA083F9927B7692A5A0E2 ] C:\Windows\System32\ncbservice.dll
21:33:20.0501 0x2c98 C:\Windows\System32\ncbservice.dll - ok
21:33:20.0501 0x2c98 [ CC35C393E9551AB32288D192256C1FA2, 898E215B88039B30495BA8A4BEAB2B7F0D0DC91B82D0362DF1734759201B7FF6 ] C:\Windows\System32\SystemEventsBrokerClient.dll
21:33:20.0501 0x2c98 C:\Windows\System32\SystemEventsBrokerClient.dll - ok
21:33:20.0501 0x2c98 [ AED022158618781B1816CEB14897E755, EC74A356E6AC9281AD99391C167B035AD7FFC84FB89C559DD9FD6DCB4917646A ] C:\Windows\System32\TimeBrokerServer.dll
21:33:20.0501 0x2c98 C:\Windows\System32\TimeBrokerServer.dll - ok
21:33:20.0516 0x2c98 [ 6979FD69C9D5D4C09288AD9C39FE04F5, CCB29A8D093FB9D9134D5A6D8E6DB96A734C50292B4A9A7648DBDCEA4D924553 ] C:\Windows\System32\D3DCompiler_47.dll
21:33:20.0516 0x2c98 C:\Windows\System32\D3DCompiler_47.dll - ok
21:33:20.0516 0x2c98 [ 2623F189AF807C611985D97A53A6E135, CF401E98272CF9E57C27370E7D18111A7E16A74EC7DA80F58F5E07005A4FEA57 ] C:\Windows\System32\nrpsrv.dll
21:33:20.0516 0x2c98 C:\Windows\System32\nrpsrv.dll - ok
21:33:20.0516 0x2c98 [ 3C98793F86C58C8863450EAB6C7C1859, 3F56CD3C79B77F48B1ACABB02BC93A827C36F220AA1652A1EF22FE04A5C50BED ] C:\Windows\System32\Windows.Devices.Radios.dll
21:33:20.0516 0x2c98 C:\Windows\System32\Windows.Devices.Radios.dll - ok
21:33:20.0516 0x2c98 [ 23363DD70AE4C75F527FD673947C4E50, F6E948C0301A5112C06A84AF22E12781BE6694DBB05D09E9B788D8078F612765 ] C:\Windows\System32\httpprxc.dll
21:33:20.0516 0x2c98 C:\Windows\System32\httpprxc.dll - ok
21:33:20.0516 0x2c98 [ 92DF3F338D3F35194724F6F55BBD4AEC, 6DB8306022C65926B163759CF12D799B31031D068CB6B7A136E1CB333FABC647 ] C:\Windows\System32\bi.dll
21:33:20.0516 0x2c98 C:\Windows\System32\bi.dll - ok
21:33:20.0516 0x2c98 [ 794304DCC7DA5761DDF23F94F409BC6E, 8CCD2BA5088D67C2ABAB903E51C90D6E940428317F952EB755D59BA60725E409 ] C:\Windows\System32\BluetoothApis.dll
21:33:20.0516 0x2c98 C:\Windows\System32\BluetoothApis.dll - ok
21:33:20.0516 0x2c98 [ 27963F8392CF2C54479D9BF8CA871A29, D771884EAEA54D50630A538F7F08579337FAD244E4D86181EAE02CAB02921EEA ] C:\Windows\System32\BthRadioMedia.dll
21:33:20.0516 0x2c98 C:\Windows\System32\BthRadioMedia.dll - ok
21:33:20.0532 0x2c98 [ 76BA3F13DD8576A1BB93E084455FF599, 2C6838883D5BC90EE13939BAC0F3DB22DDC25FAA9325271069F04DE0C18A5E99 ] C:\Windows\System32\schedsvc.dll
21:33:20.0532 0x2c98 C:\Windows\System32\schedsvc.dll - ok
21:33:20.0532 0x2c98 [ 53B0B4ABC5D773C4C990EF3C5E11AE08, 74311BD53248EAB08D948C0A71786E1BC7F28725C786AFB69C4DF00EF4E6AA97 ] C:\Windows\System32\netprofm.dll
21:33:20.0532 0x2c98 C:\Windows\System32\netprofm.dll - ok
21:33:20.0532 0x2c98 [ 418194FEBF245694D772547B9E60C2F3, 5E4D2695D05E1C1299833F24FCA8F645AD9AA8F7EAC2D1AC6DEADC08095E7555 ] C:\Windows\System32\profsvc.dll
21:33:20.0532 0x2c98 C:\Windows\System32\profsvc.dll - ok
21:33:20.0532 0x2c98 [ F9065B2FB2FDEBFF4DE43EC3FB45F783, 5CFBD82594EFF5F06D01C30EC6656DD8B37C5FB9336F3A9273A9569388D22327 ] C:\Windows\System32\ubpm.dll
21:33:20.0532 0x2c98 C:\Windows\System32\ubpm.dll - ok
21:33:20.0532 0x2c98 [ 13D59688448C919ECC823462295914D9, E33DF58E0CACF6C633F07C5F6D52DE45380838775535C66EBE1D3759C6289F85 ] C:\Windows\System32\wmiclnt.dll
21:33:20.0532 0x2c98 C:\Windows\System32\wmiclnt.dll - ok
21:33:20.0532 0x2c98 [ 18EBE1983BD915B1E92F093612D31D22, CA841F7D8069E6E3285F1B509414035C1E990516795EABAD2836FC4311F0FCF8 ] C:\Windows\System32\d2d1.dll
21:33:20.0532 0x2c98 C:\Windows\System32\d2d1.dll - ok
21:33:20.0548 0x2c98 [ ACA51FC51A8D0959D3FF0E822A760E77, 2D780AA5D36E6A95CF1F0513B0BCAEC94ED2B9CC85CD071F630F3DC9B068086D ] C:\Windows\System32\hidserv.dll
21:33:20.0548 0x2c98 C:\Windows\System32\hidserv.dll - ok
21:33:20.0548 0x2c98 [ B53E29AB910D368948BAC7DE9BB71246, 1FD3D009908897FAC6B9B045460A1B7870AE6AF1A9BAB04DA3716B3B01D7B594 ] C:\Windows\System32\profsvcext.dll
21:33:20.0548 0x2c98 C:\Windows\System32\profsvcext.dll - ok
21:33:20.0548 0x2c98 [ BDE08B4E529BF374905AD63421261349, 6D4A3C0AD1090E57CA6FF347B1B9321DFB9D2444CE0EB8A8DEBAB75EE03F0D04 ] C:\Windows\System32\logoncli.dll
21:33:20.0548 0x2c98 C:\Windows\System32\logoncli.dll - ok
21:33:20.0548 0x2c98 [ A63E9A0BE6EE75D9C6F015B63E54F46D, A845226B2E9EFAA799FEC94117FB950B2C6B127D2DCF9E8909719C332F7518CA ] C:\Windows\System32\mstask.dll
21:33:20.0548 0x2c98 C:\Windows\System32\mstask.dll - ok
21:33:20.0548 0x2c98 [ 6E99DD73FC7E841C59C381DDCEA61408, AB5CE95D062768DED0A5F08072A3BC213438B5F9FF486F73421D1E89144996E1 ] C:\Windows\System32\taskcomp.dll
21:33:20.0548 0x2c98 C:\Windows\System32\taskcomp.dll - ok
21:33:20.0548 0x2c98 [ 4360E20DD6066012AC81F0897B6A619F, AB8CEADDD86F11559EB6EA9BBE804E4A8ACD39B35E94EA5F32BC87181D6A9811 ] C:\Windows\System32\wevtsvc.dll
21:33:20.0548 0x2c98 C:\Windows\System32\wevtsvc.dll - ok
21:33:20.0548 0x2c98 [ 9C24FF0EDBEB9DCDF269C0E8C2BA7EBB, 4E901CEA73190D8FA0F2A8AF40855215F8E4416CB5D9813BFF3E4432A4FC3F5C ] C:\Windows\System32\wkscli.dll
21:33:20.0548 0x2c98 C:\Windows\System32\wkscli.dll - ok
21:33:20.0563 0x2c98 [ E6FC7083391EC4DD0AFD61BDA82BEE93, F1804C12AA78079874A5F1DDF577B613843788D0CDF5DA5C6E94B47CF2F2499C ] C:\Windows\System32\PortableDeviceApi.dll
21:33:20.0563 0x2c98 C:\Windows\System32\PortableDeviceApi.dll - ok
21:33:20.0563 0x2c98 [ CC25007DBB7A5F1F2F42C5487B97CCC2, E8CD4661B393A1A66E02257672F2940DE10A6EE8C06F9121A8787BFFC49AD430 ] C:\Windows\System32\upfc.exe
21:33:20.0563 0x2c98 C:\Windows\System32\upfc.exe - ok
21:33:20.0563 0x2c98 [ 4F8555E6D62557DD9B4200EB969B8207, 74880A5ACD6DDE50A4D021CD62DB5EF775F1245DDEF8754AF064C3A5C97AB9DB ] C:\Windows\System32\wpdbusenum.dll
21:33:20.0563 0x2c98 C:\Windows\System32\wpdbusenum.dll - ok
21:33:20.0563 0x2c98 [ B1F6D849F8DDF1406454899C1BF5A1C5, 15E66A2DC64AAF1810C26827E2E95FD6393DEA843034A0CAA51AE9580CCBB822 ] C:\Windows\System32\drivers\luafv.sys
21:33:20.0563 0x2c98 C:\Windows\System32\drivers\luafv.sys - ok
21:33:20.0563 0x2c98 [ 3768190B8941193760025B79AAC1E4B4, 1DFDB0E3C8EED968F21F7169572366191442580F2841243375A2AF0A3055E4C1 ] C:\Windows\System32\drivers\wcifs.sys
21:33:20.0563 0x2c98 C:\Windows\System32\drivers\wcifs.sys - ok
21:33:20.0563 0x2c98 [ 8F2491FF4CFBF4F049BA9825679E28F9, E4B885C3E376BDA823B7FC9495AF94DC1B50524536DFA293B87FF6B2BB8E3AEE ] C:\Windows\System32\CSystemEventsBrokerClient.dll
21:33:20.0563 0x2c98 C:\Windows\System32\CSystemEventsBrokerClient.dll - ok
21:33:20.0563 0x2c98 [ C339B551B1233A139AFD73C9DD8B50EC, 1921C9B41516E3028E707D03077EC59080BA88CA596508E14CC3A7A10910DDAC ] C:\Windows\System32\drivers\WUDFRd.sys
21:33:20.0563 0x2c98 C:\Windows\System32\drivers\WUDFRd.sys - ok
21:33:20.0579 0x2c98 [ 68C4E5BBC72EAA7B983EAB869E7BF976, 70C5D7D9F18AFB906F394C72ED2699DF807F53378A8522855E3629E1D2A6E2AE ] C:\Windows\System32\PortableDeviceConnectApi.dll
21:33:20.0579 0x2c98 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
21:33:20.0579 0x2c98 [ 58CD56BD6647BCAD784D9EB172D3132B, 7343D35C3883B44575BAFABD15EF057172393C3A952AD1E26C9F4636BDE0F254 ] C:\Windows\System32\drivers\WpdUpFltr.sys
21:33:20.0579 0x2c98 C:\Windows\System32\drivers\WpdUpFltr.sys - ok
21:33:20.0579 0x2c98 [ C9A1A9F4BAAE4DA670B1964E946A9619, A30AA9F32F24FA093A52B9597F6E223C97245E3C553E9B5C3C5828AE406BB8F1 ] C:\Windows\System32\dwmghost.dll
21:33:20.0579 0x2c98 C:\Windows\System32\dwmghost.dll - ok
21:33:20.0579 0x2c98 [ C74D6825D4F8F587AFBFE4CFAFA6CCE2, 8E00369E9DF24BAB5314B7BFC748A5413124654DA9CA37DE90B9309FD68139AE ] C:\Windows\System32\lfsvc.dll
21:33:20.0579 0x2c98 C:\Windows\System32\lfsvc.dll - ok
21:33:20.0579 0x2c98 [ B2F12FD9E811F8E8BDFF51C5A7DDD9B9, CFD052614E925F3D24845D4C0216851A369CE464017A748CB1FEDE58126A338C ] C:\Windows\System32\drivers\cldflt.sys
21:33:20.0579 0x2c98 C:\Windows\System32\drivers\cldflt.sys - ok
21:33:20.0579 0x2c98 [ 465B1ED08E2838A6C28692262C11B2F6, BCF62D992E0A78B9FA85635AF0C788C8DA17B838A6B7984832F071DC76D54654 ] C:\Windows\System32\LocationFramework.dll
21:33:20.0579 0x2c98 C:\Windows\System32\LocationFramework.dll - ok
21:33:20.0594 0x2c98 [ 48912D42E676AA39C3B9D5936722D136, 0B2460EFFDA9E77492E7A898CCB950B8BD0C3403BC84628BA736FC02275DD2F8 ] C:\Windows\System32\policymanager.dll
21:33:20.0594 0x2c98 C:\Windows\System32\policymanager.dll - ok
21:33:20.0594 0x2c98 [ 965F8F4DEE28CB15831AEBB5D368DBAB, F60AF1E723CB80A3505D1E1E69EC07F98169168E9CFDFE771FD87DC17DFB09C6 ] C:\Windows\System32\TimeBrokerClient.dll
21:33:20.0594 0x2c98 C:\Windows\System32\TimeBrokerClient.dll - ok
21:33:20.0594 0x2c98 [ 3CDA02F057095F94DC578E329746B74E, 7266151C13119EE95140D0B3E0DE13EB1742E649F644050648BFBB0DADA9AFF1 ] C:\Windows\System32\usermgr.dll
21:33:20.0594 0x2c98 C:\Windows\System32\usermgr.dll - ok
21:33:20.0594 0x2c98 [ 90B9369F6E13CB377ABBE500618BE66D, 8FE1E68D6EA8C270E81EE2AC71FCAE54BE037875977995D6793629B175D9CB8D ] C:\Windows\System32\WUDFHost.exe
21:33:20.0594 0x2c98 C:\Windows\System32\WUDFHost.exe - ok
21:33:20.0594 0x2c98 [ 0299DD4703C1DF952CEACB8F83F82231, 742383DBC35D8EDDAFEB4E5C933A1F3AAAB442AC372C7AA8492B61EBF5360148 ] C:\Windows\System32\nsisvc.dll
21:33:20.0594 0x2c98 C:\Windows\System32\nsisvc.dll - ok
21:33:20.0594 0x2c98 [ 5E08AB8974BCC0C1712A07982276FFAB, 81B4BA011F20567FD5D1A79C4C6F45C8DE5EB4ACCCBBADFEC967E3A52A57A908 ] C:\Windows\System32\WPTaskScheduler.dll
21:33:20.0594 0x2c98 C:\Windows\System32\WPTaskScheduler.dll - ok
21:33:20.0594 0x2c98 [ 9530B91AEA3AB9E15669C09457E3A969, 6C407E992BE12D2D7560A3C0A410E48D2D091368E0243045BA6699E980916DD1 ] C:\Windows\System32\avrt.dll
21:33:20.0594 0x2c98 C:\Windows\System32\avrt.dll - ok
21:33:20.0610 0x2c98 [ 59D5626EC27D43039D76A6AA71CE5B01, A1D7EDE04A85129866560DB97E8F5F4F3A8E80B82ECB7BB347D1D1E84C4F32E0 ] C:\Windows\System32\drivers\storqosflt.sys
21:33:20.0610 0x2c98 C:\Windows\System32\drivers\storqosflt.sys - ok
21:33:20.0610 0x2c98 [ 967BADFE6B57C013F07F6AAF8FAB935A, 6429122C3BB9D3076F7F303B0DBDFAC43089D77BAE99C61B0E2CCDF9600A883A ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
21:33:20.0610 0x2c98 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
21:33:20.0610 0x2c98 [ 85687CC346507FBF126BE3C5E40EDF4E, DA8970B8A882ED1A80E3674FED4742DDF0C174B371408E1853614D7F45C92528 ] C:\Windows\System32\ISM.dll
21:33:20.0610 0x2c98 C:\Windows\System32\ISM.dll - ok
21:33:20.0610 0x2c98 [ 5F131D5A74B6B513A68154FAD40862E9, 4961EADCE6E69E3E3CF5EFED32D681E021A7B25B04C93B21F640418D68EECAE9 ] C:\Windows\System32\netjoin.dll
21:33:20.0610 0x2c98 C:\Windows\System32\netjoin.dll - ok
21:33:20.0610 0x2c98 [ EB30D40F28A6B41B36A3FB0133683A8D, 60D36A0478077A7E84817D80F84279B712013EC57BFC80B943453F50567CF69D ] C:\Windows\System32\wmi.dll
21:33:20.0610 0x2c98 C:\Windows\System32\wmi.dll - ok
21:33:20.0610 0x2c98 [ 679CB56398DC3ACFE3671FCB952FF8C0, BB1591C2D778F0BFD82E1876E22411C29DE9A6DD46A5457E848699D86D352B98 ] C:\Windows\System32\dhcpcore.dll
21:33:20.0610 0x2c98 C:\Windows\System32\dhcpcore.dll - ok
21:33:20.0610 0x2c98 [ 9C1AB79940120DFC30EA8F7D599FA222, 42B24D333D7ECB8E78FCAF30D8BCFBEB71970576CB958165AD09B820F12E20D5 ] C:\Windows\System32\drivers\aswMonFlt.sys
21:33:20.0610 0x2c98 C:\Windows\System32\drivers\aswMonFlt.sys - ok
21:33:20.0626 0x2c98 [ BFE8E078140A14FE3F2024BFC1B0E075, 07C9217AC0B68F5CFC130E76DA704EE8AE4B4623AD3F4518732A3B6073A82513 ] C:\Windows\System32\winhttp.dll
21:33:20.0626 0x2c98 C:\Windows\System32\winhttp.dll - ok
21:33:20.0626 0x2c98 [ 69815D6BEDF893491051DE8005CCA3A6, 337E2F5C530D50627A62561C9791551C858D922A7BEBE484451FCE9C9D096B2B ] C:\Windows\System32\WinTypes.dll
21:33:20.0626 0x2c98 C:\Windows\System32\WinTypes.dll - ok
21:33:20.0626 0x2c98 [ D6D81A3625ECDF0E1E94AC935E59CEE1, F25C595189B77331148F54FFC658EE69AE9EC53A5626985C32BDB7875DDBD88F ] C:\Windows\System32\WMVCORE.DLL
21:33:20.0626 0x2c98 C:\Windows\System32\WMVCORE.DLL - ok
21:33:20.0626 0x2c98 [ AF6D573FF797ACE9F62CF693A18CE8AF, 0C7C976D097788650CDD4440A421FC5F80E6A3AB33445E7E8AC49BD0D999FEA0 ] C:\Windows\System32\drivers\MbamChameleon.sys
21:33:20.0626 0x2c98 C:\Windows\System32\drivers\MbamChameleon.sys - ok
21:33:20.0626 0x2c98 [ 32451DBD57F348822DF8634DD888DA8D, 53D75F534B06AF4EA13AAAE3422E6EC28CA0C22E972EB166A3666962474C6344 ] C:\Windows\System32\CoreUIComponents.dll
21:33:20.0626 0x2c98 C:\Windows\System32\CoreUIComponents.dll - ok
21:33:20.0626 0x2c98 [ 34EC72094DAC1FB7C122068CF5CEDD5F, D23BC9DE9586C1C49D9A15A36957E3560D7F1A83C0FF88B02F054635D920D9BF ] C:\Windows\System32\dhcpcore6.dll
21:33:20.0626 0x2c98 C:\Windows\System32\dhcpcore6.dll - ok
21:33:20.0641 0x2c98 [ BA0B10749BAE470BD0AB33ED3E0ACA71, B048B7037474926559CBF17BB19F3E7D571A2456823568E6068E50407E471120 ] C:\Windows\System32\samcli.dll
21:33:20.0641 0x2c98 C:\Windows\System32\samcli.dll - ok
21:33:20.0641 0x2c98 [ DE1185DC5EA6E4A153AF5696C88E610D, FD58E34C18455D20C686C6C9297A5DCD7113A68B6F83F7EBA260D1E32B07FEC4 ] C:\Windows\System32\taskhostw.exe
21:33:20.0641 0x2c98 C:\Windows\System32\taskhostw.exe - ok
21:33:20.0641 0x2c98 [ 21D0D2ACAC5C86A2BB0602A704F93EF7, 933ED34750DCCB89315487D3652E0F969C985A32283E008198C24A663166AFB1 ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiesrxx.exe
21:33:20.0641 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiesrxx.exe - ok
21:33:20.0641 0x2c98 [ 12FB138D9414FC9A8AD457C5DC2CA06B, 7686241E0AA2F440C6192F803A1676480158FCD4A785C07BC74C3695D47770E7 ] C:\Windows\System32\winnsi.dll
21:33:20.0641 0x2c98 C:\Windows\System32\winnsi.dll - ok
21:33:20.0641 0x2c98 [ E9126A82B7B949DB161006340488A336, 75E8C1B8EBA93D57B76C54B70707E98EF85A4F32A90B96262A5758B839533E8D ] C:\Windows\System32\AppXDeploymentClient.dll
21:33:20.0641 0x2c98 C:\Windows\System32\AppXDeploymentClient.dll - ok
21:33:20.0641 0x2c98 [ 98E67DE77636FD3607951FE2A3F116FE, 08A5F9A5D8AE6FA6A2A89B2A789D1A599E3D129B30C1B2A8628634F397079DD0 ] C:\Windows\System32\dhcpcsvc6.dll
21:33:20.0641 0x2c98 C:\Windows\System32\dhcpcsvc6.dll - ok
21:33:20.0641 0x2c98 [ 2B97E66D854D6FFC37C75B1EECE55439, 0F084B6EE3F761623493105C0AD2548801F3725A06864968A3AC14139B01EEAB ] C:\Windows\System32\mfperfhelper.dll
21:33:20.0641 0x2c98 C:\Windows\System32\mfperfhelper.dll - ok
21:33:20.0657 0x2c98 [ 0EB249C1F3A097A162D077DBEB4B14DC, 3882A032F220AACD2F0FFF3722450F1F5B84127F9391BA04862663CD8110F934 ] C:\Windows\System32\WMASF.DLL
21:33:20.0657 0x2c98 C:\Windows\System32\WMASF.DLL - ok
21:33:20.0657 0x2c98 [ 6EDAC9E4340B468519FB2AA79DD2A113, 19F63D1F0BC5FE8A9D87F3BB12032EA6C15951EBBEBE46B35B7355DD31E071C7 ] C:\Windows\System32\dhcpcsvc.dll
21:33:20.0657 0x2c98 C:\Windows\System32\dhcpcsvc.dll - ok
21:33:20.0657 0x2c98 [ B19811B206C150C238C9321C1D46D37A, 72D9ADD0A7F2E9ED2FD338D9D606E169ED18169FF88F55123FC10030DA6BE729 ] C:\Windows\System32\StateRepository.Core.dll
21:33:20.0657 0x2c98 C:\Windows\System32\StateRepository.Core.dll - ok
21:33:20.0657 0x2c98 [ AB8D53E3B97770AFF719A1BB83567BB4, 0BB1084C2BC887DB565CB6416899265EA380D4D9514EB20EFC14B4815ADF3D30 ] C:\Windows\System32\WUDFx.dll
21:33:20.0657 0x2c98 C:\Windows\System32\WUDFx.dll - ok
21:33:20.0657 0x2c98 [ 67FE2430E6508EDB96AF0DF5DCF15CE6, 022318B141299EEBD7F94320E9B9F319DD042554ABE337C9CF0B98FFE8EBAB77 ] C:\Windows\System32\ninput.dll
21:33:20.0657 0x2c98 C:\Windows\System32\ninput.dll - ok
21:33:20.0657 0x2c98 [ 6CD48C3C331506BA0A5B91C72744FAF7, 0BD1E42D628A732CEA0F3FF7B521C09FB138DD9EE55306D76A94268EDF97ABA1 ] C:\Windows\System32\provtool.exe
21:33:20.0657 0x2c98 C:\Windows\System32\provtool.exe - ok
21:33:20.0657 0x2c98 [ 0FF1D3312BB5492BCAD9D4D483CDCB63, 6A66DDE0F6E6E400D2831073A233F7063DEB2257C5CF74B2443D2E54298C9558 ] C:\Windows\System32\nlasvc.dll
21:33:20.0657 0x2c98 C:\Windows\System32\nlasvc.dll - ok
21:33:20.0673 0x2c98 [ E619081D7DCD60B20F56E124F22D7079, 51080A21F7CFCAC820A2605C5BD8EFBFF159D0C747CBC6123ECD663E2B376435 ] C:\Windows\System32\PortableDeviceClassExtension.dll
21:33:20.0673 0x2c98 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
21:33:20.0673 0x2c98 [ A8004EBB0694140D7C8D0F27561C87C4, 1699895CB2B8A5817C97ABFE558E788574CA45DDFB4D47E610B42564FA6AA843 ] C:\Windows\System32\UserMgrProxy.dll
21:33:20.0673 0x2c98 C:\Windows\System32\UserMgrProxy.dll - ok
21:33:20.0673 0x2c98 [ 6B3972528DF29F6A0E71FFC2605B2F47, D0E7AAA10B7970C8007E4E24A287151FA3F20717A1F0328BCF0635A13E340EAC ] C:\Windows\System32\WindowsCodecs.dll
21:33:20.0673 0x2c98 C:\Windows\System32\WindowsCodecs.dll - ok
21:33:20.0673 0x2c98 [ A37AB0565C228D7D4744F77B5AB37995, 94D472BB05D0ECBD8F7A699D8749D8D2E61836E9AF5F8B960CD0FAF6B298EEB8 ] C:\Windows\System32\ncsi.dll
21:33:20.0673 0x2c98 C:\Windows\System32\ncsi.dll - ok
21:33:20.0673 0x2c98 [ DA17CEF7606FF83DA7C41BC50019E060, 0E4559528459E580814D9F0077CECC02B729567C713AF949935E74BBB35FBB39 ] C:\Windows\System32\dnsrslvr.dll
21:33:20.0673 0x2c98 C:\Windows\System32\dnsrslvr.dll - ok
21:33:20.0673 0x2c98 [ 4FEF4515ADE48924727A38802E33B0C1, 8F1D8AD330CFC337777012DD2CC2A9E1DA6AD1489282ABEC0C5735E73D605B4D ] C:\Windows\System32\PortableDeviceTypes.dll
21:33:20.0673 0x2c98 C:\Windows\System32\PortableDeviceTypes.dll - ok
21:33:20.0673 0x2c98 [ E916DE5CFBD224C4E4FF8DEC414B27C5, 69460091F867EE5BDDAE703A278835C682D55C3C0861435A5D3DB6261A756DA9 ] C:\Windows\System32\ssdpapi.dll
21:33:20.0673 0x2c98 C:\Windows\System32\ssdpapi.dll - ok
21:33:20.0688 0x2c98 [ 0919CCC6725DA98E8A71308D8335381B, A4C3217F5706661F867F8BAE42CDE1FF19191B72B950A4FD368A87B52C6D307B ] C:\Windows\System32\Windows.Gaming.Input.dll
21:33:20.0688 0x2c98 C:\Windows\System32\Windows.Gaming.Input.dll - ok
21:33:20.0688 0x2c98 [ 688F9ABB0753E2D13D70DB910F784458, B6558496BFF7F43AAB9860E51B368EC62B2933A8167BD4C9BC57BB45361691B3 ] C:\Windows\System32\FWPUCLNT.DLL
21:33:20.0688 0x2c98 C:\Windows\System32\FWPUCLNT.DLL - ok
21:33:20.0688 0x2c98 [ CA004F2782CADD1C2CA33E7BA464EA6F, 54F73E5CEFB686EC993D05A87A448D1FC04116D084B2DE6232D1DE930FE8592D ] C:\Windows\System32\UIAnimation.dll
21:33:20.0688 0x2c98 C:\Windows\System32\UIAnimation.dll - ok
21:33:20.0688 0x2c98 [ 771A2F98EA940349AA0B490DD35156E5, DD6645D0089C8638B47364C747CF3340D319DB8630720174AB7EBC59983E7A2A ] C:\Windows\System32\CapabilityAccessManager.dll
21:33:20.0688 0x2c98 C:\Windows\System32\CapabilityAccessManager.dll - ok
21:33:20.0688 0x2c98 [ F3FFC49376F70DB3D120B403BA2F3CA5, C7BCB83A2BA1E91C7E474CE11E9BF29C156959836FE23007E4B3B43C66CD440D ] C:\Windows\System32\OneCoreUAPCommonProxyStub.dll
21:33:20.0688 0x2c98 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll - ok
21:33:20.0688 0x2c98 [ 51B8EE94F31F20C506DD9F7FAC5FCA98, D23A2AF45713F64143F345933247C5FA353CC56E37801EB5512772C4E54F74C3 ] C:\Windows\System32\wevtapi.dll
21:33:20.0688 0x2c98 C:\Windows\System32\wevtapi.dll - ok
21:33:20.0704 0x2c98 [ 1FB26A05C2ACAF77341F3C3AF4C5D560, C516892FCE3F62AD7408CC17899A7816E602D67114122D0B2AD66B25156B6698 ] C:\Windows\System32\wlanapi.dll
21:33:20.0704 0x2c98 C:\Windows\System32\wlanapi.dll - ok
21:33:20.0704 0x2c98 [ CF8A38D4818D4EFB6E0E430F591206E3, 4F604E44559DB5C2B0A718245B35278556B9ABD5E2A7E3AA094125BD2CDCDCE7 ] C:\Windows\System32\CapabilityAccessManagerClient.dll
21:33:20.0704 0x2c98 C:\Windows\System32\CapabilityAccessManagerClient.dll - ok
21:33:20.0704 0x2c98 [ F40E8A24F2DAF523492AD0E4391498D9, 1896C044671FF6E1F23D158B882B6F467D6EF45F1EE7D54D1B279D5664A4D221 ] C:\Windows\System32\CapabilityAccessHandlers.dll
21:33:20.0704 0x2c98 C:\Windows\System32\CapabilityAccessHandlers.dll - ok
21:33:20.0704 0x2c98 [ D65874265E85BEF4E54740FB69803430, 5A368710766359A45B9E5ED0C381D2B3DD971C4D4BA563EAF2464AC3E372F7DE ] C:\Windows\System32\drivers\mslldp.sys
21:33:20.0704 0x2c98 C:\Windows\System32\drivers\mslldp.sys - ok
21:33:20.0704 0x2c98 [ 141F061FE815F0235E3A0CC83D1B7E96, E16154E1EC26AF0BACE5EB1BDA142FDAA15DA30438B14C0A95C1FF2A1172A65A ] C:\Windows\System32\netprofmsvc.dll
21:33:20.0704 0x2c98 C:\Windows\System32\netprofmsvc.dll - ok
21:33:20.0704 0x2c98 [ 1A34E56E2B66B07D869DF1356F69895C, 218179FCA49A3B2FBF65F8CFEA503417FD89E532DC9FD6568B2202A056956E8D ] C:\Windows\System32\DispBroker.Desktop.dll
21:33:20.0704 0x2c98 C:\Windows\System32\DispBroker.Desktop.dll - ok
21:33:20.0704 0x2c98 [ 021A6406430881C579F4289BF330CFE3, CFB55F5B451D0E698F2501F5929C93D8B76C907471C60D54192FC13FA01D440D ] C:\Windows\System32\coloradapterclient.dll
21:33:20.0704 0x2c98 C:\Windows\System32\coloradapterclient.dll - ok
21:33:20.0719 0x2c98 [ 947A5110BA01838C08B1BCEFD3E51620, 357991BEC52866DFF9BE3156A56DA88137409A28BFC2817BB4256FB277DC72D8 ] C:\Windows\System32\LocationWinPalMisc.dll
21:33:20.0719 0x2c98 C:\Windows\System32\LocationWinPalMisc.dll - ok
21:33:20.0719 0x2c98 [ 1B1B9A13D7B26DE6FD186B8B3E1FE921, C58510E219AF4AE9886E58BC88DDCBA99DA95C797FA2F3779FC2E6011A9447F1 ] C:\Windows\System32\mscms.dll
21:33:20.0719 0x2c98 C:\Windows\System32\mscms.dll - ok
21:33:20.0719 0x2c98 [ 10E2408C2CA4F393616B08A847285654, 4A4153334BAD94B39EE6C7D588D6452F405286662BB42943070C3DF7AF64F989 ] C:\Windows\System32\MdmCommon.dll
21:33:20.0719 0x2c98 C:\Windows\System32\MdmCommon.dll - ok
21:33:20.0719 0x2c98 [ B7401B41ED29D6B16035203DA0E1951E, 55B11017C090146BA19A09334B66251778413739E45C7CC2683FAB0CEAAC50F6 ] C:\Windows\System32\IDStore.dll
21:33:20.0719 0x2c98 C:\Windows\System32\IDStore.dll - ok
21:33:20.0719 0x2c98 [ 2663A3277743D328D1DA3A15A9587F4D, E74BD34E106E5E704525FD148AC0F22F49C3E5291009930CA57FCF6BB840B2BB ] C:\Windows\System32\wlidprov.dll
21:33:20.0719 0x2c98 C:\Windows\System32\wlidprov.dll - ok
21:33:20.0719 0x2c98 [ 7144FD03C03295575A006831BD718C5D, 712C38665C374944356055AB1DDE1B8C34DE3B277731378D63DB98DF12D2A82E ] C:\Windows\System32\dmcommandlineutils.dll
21:33:20.0719 0x2c98 C:\Windows\System32\dmcommandlineutils.dll - ok
21:33:20.0735 0x2c98 [ 8CA1BE6186A5721A39ED3D5456066EB6, 9FD1D36BDDFFCF39AFF95260F0C6FEFE11F087D641246546DF3A24C2C7623824 ] C:\Windows\System32\actxprxy.dll
21:33:20.0735 0x2c98 C:\Windows\System32\actxprxy.dll - ok
21:33:20.0735 0x2c98 [ F0E31AEB3A524BCAF21394111D8727AA, FDD77788B4A16EF9943486BF6AD28A43F17EDC83D83CBFDBEDFFE437B1599573 ] C:\Windows\System32\DispBroker.dll
21:33:20.0735 0x2c98 C:\Windows\System32\DispBroker.dll - ok
21:33:20.0735 0x2c98 [ A9A8BD3F340728523CA5DECBC9FA652E, 8130CF519C2D0C4982F08EE5523900D12B113E98B3801BBCB1E5A7DF65EA6E88 ] C:\Windows\System32\dmcmnutils.dll
21:33:20.0735 0x2c98 C:\Windows\System32\dmcmnutils.dll - ok
21:33:20.0735 0x2c98 [ 3CA365088223DD328FA705F9D4A3B956, C40F87FC49F1499476ACBB42936E7D7D50154145F181AA6EC0A0E069AAFAE027 ] C:\Windows\System32\MitigationConfiguration.dll
21:33:20.0735 0x2c98 C:\Windows\System32\MitigationConfiguration.dll - ok
21:33:20.0735 0x2c98 [ 6801C8222FF756C27037BBF9006A15BE, 507DF5B6132C9D4655F028363690DCE70DDD91F37CFD578D9B5DDD4A7D766AB9 ] C:\Windows\System32\Windows.Graphics.dll
21:33:20.0735 0x2c98 C:\Windows\System32\Windows.Graphics.dll - ok
21:33:20.0735 0x2c98 [ 9E68C6ECE4CECE2C7F7FEF96FFF43821, 83244E08E0D3E01B892A8F4F740292F7AF517D61E8C969D9D0E620A6D053D043 ] C:\Windows\System32\urlmon.dll
21:33:20.0735 0x2c98 C:\Windows\System32\urlmon.dll - ok
21:33:20.0735 0x2c98 [ A60DCC4F1CE38740F86B95E57B526545, D9F436579BFEA8147220B376FC038A6C2B6E39FEFECEA0647744945F2E0CF8C2 ] C:\Windows\System32\wlidsvc.dll
21:33:20.0735 0x2c98 C:\Windows\System32\wlidsvc.dll - ok
21:33:20.0751 0x2c98 [ 4F88B110B25531EC1CC84D621B2C74EC, 10D9A19C15FD98216EABA9AB1468756CCD3E17C67146F77F5D262BD1657D79E8 ] C:\Windows\System32\SEMgrSvc.dll
21:33:20.0751 0x2c98 C:\Windows\System32\SEMgrSvc.dll - ok
21:33:20.0751 0x2c98 [ 41F4F23408794693ECB600C162B060D1, 47994347B30B82B220115E551D3DA234A130052EF1166D828D42AC75F3E40660 ] C:\Windows\System32\Clipc.dll
21:33:20.0751 0x2c98 C:\Windows\System32\Clipc.dll - ok
21:33:20.0751 0x2c98 [ 3236152BB28393AF6573EE69546386E3, 8B0820368B30EDD5E3BCFACBFA577B88866D3FB0FCD7434FA07BE3D8C630DA30 ] C:\Windows\System32\cryptngc.dll
21:33:20.0751 0x2c98 C:\Windows\System32\cryptngc.dll - ok
21:33:20.0751 0x2c98 [ ACFC3F6DBECDB7A1A21F254FB52A2661, AAF64AB1196C325279D8AD0005BC163FF7022A780C72E5B8B499874F22FB78A3 ] C:\Windows\System32\AudioSes.dll
21:33:20.0751 0x2c98 C:\Windows\System32\AudioSes.dll - ok
21:33:20.0751 0x2c98 [ BE836B49E615CC2341F74F8F87DE3D37, ADD528742B2D78C5A586AA724AA932431C31EA32B0C11EB3C332A8EAFB327D6A ] C:\Windows\System32\msxml6.dll
21:33:20.0751 0x2c98 C:\Windows\System32\msxml6.dll - ok
21:33:20.0751 0x2c98 [ D37697ECCEF20F0FAECFB79C60B7C4EE, BA203E5FA42876B45D724304E6D3B6C8EAB13E7740F0A46258A06268733B5138 ] C:\Windows\System32\iertutil.dll
21:33:20.0751 0x2c98 C:\Windows\System32\iertutil.dll - ok
21:33:20.0751 0x2c98 [ 717E0127C5E675595501BD59A6C9DD5B, E9A79F079937ADDA56C5894F07DBC3DEE6366CB213B87DA69C5E474897A26B57 ] C:\Windows\System32\MMDevAPI.dll
21:33:20.0751 0x2c98 C:\Windows\System32\MMDevAPI.dll - ok
21:33:20.0766 0x2c98 [ 0F1B83008DCE9E3CB7EDB7220B906222, 35D221DFCFD0A5279EEFBC8D49587D6E211316153F258A0E47135B7F1F99B94E ] C:\Windows\System32\PCPKsp.dll
21:33:20.0766 0x2c98 C:\Windows\System32\PCPKsp.dll - ok
21:33:20.0766 0x2c98 [ 9D1E318E09783AFBBF2F51D6E9950662, 48C0E264A522173740EBD7627900BE7E6FEDAEE2264F67A00E78D4A6D76865D8 ] C:\Windows\System32\OnDemandConnRouteHelper.dll
21:33:20.0766 0x2c98 C:\Windows\System32\OnDemandConnRouteHelper.dll - ok
21:33:20.0766 0x2c98 [ 0E79D466F25FCBEC4E8506A643751868, 89AAA014B6708DA51AC28CBE670278532505122D1D7641665C04E7A8BF482123 ] C:\Windows\System32\capauthz.dll
21:33:20.0766 0x2c98 C:\Windows\System32\capauthz.dll - ok
21:33:20.0766 0x2c98 [ 6F282FC01643B8320F44149FD429F46B, F70AEF15A81547DD078E09BE0214116C7529F2DE6500BB1EDF8FB738EC02C98B ] C:\Windows\System32\npmproxy.dll
21:33:20.0766 0x2c98 C:\Windows\System32\npmproxy.dll - ok
21:33:20.0766 0x2c98 [ 93302A8AE68C27131B19A936B63C3C08, 6B242507DD4D0B13057F11DE272CC2D37DEB4427E8B46BBBA5DE33C720315501 ] C:\Windows\System32\tbs.dll
21:33:20.0766 0x2c98 C:\Windows\System32\tbs.dll - ok
21:33:20.0766 0x2c98 [ 4E8DB0DC3A4246A380D8E28A160F3D93, 1B4B9153C602229730AF1F7D6B0E8545B419F476C8A58C0F41AE95A53A5D9BB3 ] C:\Windows\System32\D3D12.dll
21:33:20.0766 0x2c98 C:\Windows\System32\D3D12.dll - ok
21:33:20.0766 0x2c98 [ 3F095547EF68AF8FBA429BC3D6D405C7, A8F1EAA2BE98BE43B79F743FDE5D360974ECC0A3DC4AD57EAD3033F689C3B67C ] C:\Windows\System32\dxgiadaptercache.exe
21:33:20.0766 0x2c98 C:\Windows\System32\dxgiadaptercache.exe - ok
21:33:20.0782 0x2c98 [ 285EB69E85F9C587B55DDD5816B827A4, B009AF1CFFE8441149B1903B7841DA14B15BEE931F6709C20655668F2019F9D8 ] C:\Windows\System32\rasadhlp.dll
21:33:20.0782 0x2c98 C:\Windows\System32\rasadhlp.dll - ok
21:33:20.0782 0x2c98 [ DE53745DB8AC796648B2AD32FA2D4990, BE43F383212ABA789518C87182B7DC535CC474DAA864D854B40ACD7C606CED74 ] C:\Windows\System32\provops.dll
21:33:20.0782 0x2c98 C:\Windows\System32\provops.dll - ok
21:33:20.0782 0x2c98 [ CA9BCF60B4B999C5BB375176921C7959, 0C6A1A82171221D77FCE7CA6E2F943684E67D01C2FFE94B2364B6CADA012A12D ] C:\Windows\System32\ClipRenew.exe
21:33:20.0782 0x2c98 C:\Windows\System32\ClipRenew.exe - ok
21:33:20.0782 0x2c98 [ C549AC8CA0E25F656D0A0857F50F1FEE, 5FF7197260AD734E1498AC7A267CCC82F545BF3C650AD4A5EBF8F1A4623F85FE ] C:\Windows\System32\dmenrollengine.dll
21:33:20.0782 0x2c98 C:\Windows\System32\dmenrollengine.dll - ok
21:33:20.0782 0x2c98 [ BC4CD1BEE0C7AF3D9FE0C21979FB8F75, 29FFD9A6C59239BD622DADC3DDB6D9161AADE1A07E067B75B19CE4138E2E07CD ] C:\Windows\System32\provpackageapidll.dll
21:33:20.0782 0x2c98 C:\Windows\System32\provpackageapidll.dll - ok
21:33:20.0782 0x2c98 [ B8A8DA681A79C82A48E26128CA892290, 291C430B291C31E37C6C14ED6A805183F0C6B7952260233689003D4CF8CBF04F ] C:\Windows\System32\spinf.dll
21:33:20.0782 0x2c98 C:\Windows\System32\spinf.dll - ok
21:33:20.0798 0x2c98 [ 4CC98E22BA3E3DB71F449F2A141A62DD, 5DE27FFCDC606BBA373E21399B81BCF419D7A8D7B7E8FB19616DF8E56D9D2A01 ] C:\Windows\System32\wimgapi.dll
21:33:20.0798 0x2c98 C:\Windows\System32\wimgapi.dll - ok
21:33:20.0798 0x2c98 [ C24288B3D1474E50136A3942F6F23708, 228C8ACD016788A3C25D03316CFE669CF1F2062D6FBA606EB224846A0787E00B ] C:\Windows\System32\provdatastore.dll
21:33:20.0798 0x2c98 C:\Windows\System32\provdatastore.dll - ok
21:33:20.0798 0x2c98 [ 1C35C8ECE1CD95CFFE8FFE6AA7A1A075, F7E98179BF83BB17C381D69645B07587260341D917E8777811E2C3AA7B726BC8 ] C:\Windows\System32\provengine.dll
21:33:20.0798 0x2c98 C:\Windows\System32\provengine.dll - ok
21:33:20.0798 0x2c98 [ DCC88E6532DE0A55A0D11EFD84A886C0, A4C0E4ECA5EEC92645D597B868C4D9AFA4587E3677E5B22A294A7B9F35B74005 ] C:\Windows\System32\configmanager2.dll
21:33:20.0798 0x2c98 C:\Windows\System32\configmanager2.dll - ok
21:33:20.0798 0x2c98 [ 22A867CFE7EA0FA17705786FFD66670C, 409B5EF449E808F108CBC1E3F6B1CCDC5D99BCFBBA66EDA69084969BAB421C11 ] C:\Windows\System32\dmenterprisediagnostics.dll
21:33:20.0798 0x2c98 C:\Windows\System32\dmenterprisediagnostics.dll - ok
21:33:20.0798 0x2c98 [ A2E6A800E467852C0ADD8CD3069AB47F, 780B96838265E16013006499ADBB03965600BFADD6C3D08CE47A7DC7EB474EB0 ] C:\Windows\System32\dmiso8601utils.dll
21:33:20.0798 0x2c98 C:\Windows\System32\dmiso8601utils.dll - ok
21:33:20.0798 0x2c98 [ D3027FD63760E9F33717FBF5842F1D73, 36C53F6AB075C22C4F57A4D78C6ACDB28A397A9FA5D065B0B8D28042C7238AF9 ] C:\Windows\System32\enterpriseresourcemanager.dll
21:33:20.0798 0x2c98 C:\Windows\System32\enterpriseresourcemanager.dll - ok
21:33:20.0813 0x2c98 [ 0C3140315895CE7641E3E9BB49A506ED, 5C5790871BF7ACF87619C0FAB991DDFC98935B559EC38D1813E77A8E491BEF2F ] C:\Windows\System32\DiagnosticLogCSP.dll
21:33:20.0813 0x2c98 C:\Windows\System32\DiagnosticLogCSP.dll - ok
21:33:20.0813 0x2c98 [ DF45B6EBEBB59AE4E6A931C2120C1C15, 48D6E271E986AF97B96B287B7D7E0A249892B143485FA278F1817AF39E5E0931 ] C:\Windows\System32\dmoleaututils.dll
21:33:20.0813 0x2c98 C:\Windows\System32\dmoleaututils.dll - ok
21:33:20.0813 0x2c98 [ 9B9AE7500C130D68798CF2DA239C948E, B4CF9461A5AF88E47BEA1651A8339BBDE5C2B851FF4147FD216EA418C7492411 ] C:\Windows\System32\MdmDiagnostics.dll
21:33:20.0813 0x2c98 C:\Windows\System32\MdmDiagnostics.dll - ok
21:33:20.0813 0x2c98 [ BABB9D3E066859357CE4E957AB71D440, 62F969E57AAE179BD6C2A31C3EC0B2ACCFA470A4B6ED69AE0B2BFCCE3B4F16CD ] C:\Windows\System32\BCP47Langs.dll
21:33:20.0813 0x2c98 C:\Windows\System32\BCP47Langs.dll - ok
21:33:20.0813 0x2c98 [ CF5D49D262AF1BC59EC1CD0E5C321820, 3A05D4E3F8520D7459583D7F5510A28928DCA61BF6E0BBD7471A7F7659531181 ] C:\Windows\System32\BCP47mrm.dll
21:33:20.0813 0x2c98 C:\Windows\System32\BCP47mrm.dll - ok
21:33:20.0813 0x2c98 [ 83056D569AD7F76B6AAB0FA418BE2DB3, 11880362567BD44E060C6D54CA375E093CA30729D82BF6C298231B8E7A769E36 ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\aticfx64.dll
21:33:20.0813 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\aticfx64.dll - ok
21:33:20.0829 0x2c98 [ 25AB858F734A85ACCD99ED9540895108, 9E8D5A1CC4186D103E2D8618FC18E3D1AEBC681B461F8026116AECB85BAACFFC ] C:\Windows\System32\icm32.dll
21:33:20.0829 0x2c98 C:\Windows\System32\icm32.dll - ok
21:33:20.0829 0x2c98 [ 048E53E99C27DA20EF25D2D50AE38B4D, 2457E6E3309A92C632099A47C3E153CD7FC81D1C4B176E5219C8CA7C8362C2A9 ] C:\Windows\System32\Winlangdb.dll
21:33:20.0829 0x2c98 C:\Windows\System32\Winlangdb.dll - ok
21:33:20.0829 0x2c98 [ BEFB6101FFEA8B81C406F0CE116E323F, 1411B72A12D3A9D36B5E0B13AED02A82F2D360EF1720602BBB9E1790618CC957 ] C:\Windows\System32\globinputhost.dll
21:33:20.0829 0x2c98 C:\Windows\System32\globinputhost.dll - ok
21:33:20.0829 0x2c98 [ 2C7C14627CFF3384C52E61D4DBD0ECC3, 41B4D85D84A86E41B948694B9B5F398A0D79F47629D6D969EB5B461D4F5D0347 ] C:\Windows\System32\version.dll
21:33:20.0829 0x2c98 C:\Windows\System32\version.dll - ok
21:33:20.0829 0x2c98 [ 37F8A28DF4F62A51A7C1B72FAFE018F4, 4B307EF382BCB8799DE11F7416DBC1A33A0A5628238BBA1B9DD97909F193D290 ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiuxp64.dll
21:33:20.0829 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiuxp64.dll - ok
21:33:20.0829 0x2c98 [ B78EF93D79A0388A1AF91B5DB35E7E93, A2EA4ADA443B9700B00A46FEF46858409BAE7741594EF0DD6512AFB64DC3CED8 ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atidxx64.dll
21:33:20.0829 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atidxx64.dll - ok
21:33:20.0829 0x2c98 [ 4E3AD7FFF364A662AF23D124BB4CF0B5, C74080D825D50CB17A804358EA63980BBAD909891B611F58FE92882A439D6066 ] C:\Windows\System32\omadmapi.dll
21:33:20.0829 0x2c98 C:\Windows\System32\omadmapi.dll - ok
21:33:20.0844 0x2c98 [ 7601240A48D863C48C1A77E41D2BB54C, BB50D8F00897AEFD8FFA9747C3902996161523F510A1D6DD78AE95A2AD274806 ] C:\Windows\System32\Windows.UI.Logon.dll
21:33:20.0844 0x2c98 C:\Windows\System32\Windows.UI.Logon.dll - ok
21:33:20.0844 0x2c98 [ 238CC08C94EC6EF57957C8B129390599, 71DAFD66FA3DC0EAADC48510A0C104E98DC6D17F2029BA27CB41BAD8ECED59FB ] C:\Windows\System32\wininet.dll
21:33:20.0844 0x2c98 C:\Windows\System32\wininet.dll - ok
21:33:20.0844 0x2c98 [ D6A1B0D91E2D5EA7020A68C566D55291, 092945C90715010F742CAFBAD7AB0F1E101F3474E46E7EC137380BA41D3CD37A ] C:\Windows\System32\atieclxx.exe
21:33:20.0844 0x2c98 C:\Windows\System32\atieclxx.exe - ok
21:33:20.0844 0x2c98 [ 3B09BAB568BD4ED4B7A1998D47ECCF0C, E3668B4D57174032C36987AA97043E9F7D731E3E5D7A14EB10B5A18E339DCB09 ] C:\Windows\System32\themeservice.dll
21:33:20.0844 0x2c98 C:\Windows\System32\themeservice.dll - ok
21:33:20.0844 0x2c98 [ 49A0406F7AC1F1E592EF6E165D884BE9, E6C995018B6B0EE54FD1E90D87F35DC342719F0B4B40FC617392E99E1C8DECE5 ] C:\Windows\System32\wincorlib.dll
21:33:20.0844 0x2c98 C:\Windows\System32\wincorlib.dll - ok
21:33:20.0844 0x2c98 [ B35DF93E24892EE15363AFAA678AF78E, 77418D8D8D349915B1ED60C8716F59276B20EF27B60C6B2B567033113E71E3EF ] C:\Windows\System32\es.dll
21:33:20.0844 0x2c98 C:\Windows\System32\es.dll - ok
21:33:20.0860 0x2c98 [ 63D35B6A43E6B5DE5B9D9CB3BDF81C11, 9FD8A3357711966DA11A8C8A1BD7A248CD2039CFB48F5F6D28CF4EDF55997DAB ] C:\Windows\System32\sysmain.dll
21:33:20.0860 0x2c98 C:\Windows\System32\sysmain.dll - ok
21:33:20.0860 0x2c98 [ 8955982C83B402367C3B96110AE5672B, 79E7169067C365396EF87BDAD54176014C3B683D7119D048329C6D08AECE6F92 ] C:\Windows\System32\Windows.UI.XamlHost.dll
21:33:20.0860 0x2c98 C:\Windows\System32\Windows.UI.XamlHost.dll - ok
21:33:20.0860 0x2c98 [ 9613887376E16B14E97C01125BD3263C, BD7556D81D7370D2C12AF56156039443F1942F05DF4DFB0ED231B739C1FBF316 ] C:\Windows\System32\MrmCoreR.dll
21:33:20.0860 0x2c98 C:\Windows\System32\MrmCoreR.dll - ok
21:33:20.0860 0x2c98 [ A26A1E76618F60244E67209D560B88B8, 2C753F3270A06BB90C8F8CF9CB5E2525EF3DB2FD7362D51747830BA3A7955A03 ] C:\Windows\System32\Windows.UI.dll
21:33:20.0860 0x2c98 C:\Windows\System32\Windows.UI.dll - ok
Nahoru
durod
Návštěvník
Návštěvník
Příspěvky: 71
Registrován: 10 črc 2008 11:18

Re: Botnet - zjištěna infikace malwarem

#10 Příspěvek od durod »

pokracovani
21:33:20.0860 0x2c98 [ A2F377DD11CE4DD3E97790CB188EF757, 640259996940B4811E9DEDEE42E4CF391A4A7067975DC11FE0266AFA39EBE0E6 ] C:\Windows\System32\dynamoapi.dll
21:33:20.0860 0x2c98 C:\Windows\System32\dynamoapi.dll - ok
21:33:20.0860 0x2c98 [ 50CE14C5A67D00B5BAC14432C1DA47AB, A1663541BE39656BDF349E7035BADFF6DB7DDFC8F3D201CF69A4CDE22E55D133 ] C:\Windows\System32\InputHost.dll
21:33:20.0860 0x2c98 C:\Windows\System32\InputHost.dll - ok
21:33:20.0860 0x2c98 [ D3076DD46377B4951147D9B49ABAE825, 83B0711149F0155BCDA5BF403EFCF8838BF9883B36262FCD38E277688ECAB4DC ] C:\Windows\System32\TextInputFramework.dll
21:33:20.0860 0x2c98 C:\Windows\System32\TextInputFramework.dll - ok
21:33:20.0876 0x2c98 [ 381D9313EA5A1E3512E4852F2602AD47, EE69D198A7A26937E6E23786D06138FC34C50FAE6A157821FC8A5253275C0420 ] C:\Windows\System32\amdihk64.dll
21:33:20.0876 0x2c98 C:\Windows\System32\amdihk64.dll - ok
21:33:20.0876 0x2c98 [ 84F8DAF82B643F63D5D6EF93F8F5BB95, B946740A87C875713829F4ED88C44B2D8ADF7132683CDF8E89B70D16B77B60B8 ] C:\Windows\System32\Sens.dll
21:33:20.0876 0x2c98 C:\Windows\System32\Sens.dll - ok
21:33:20.0876 0x2c98 [ 50FC1A6E335C48790C5FC2739C9B027F, A2B1E29A1B4289402FBF308D1F12B468BD42C77A8462E4A3F60C4B1B5A95D307 ] C:\Windows\System32\LanguageOverlayUtil.dll
21:33:20.0876 0x2c98 C:\Windows\System32\LanguageOverlayUtil.dll - ok
21:33:20.0876 0x2c98 [ 14598C8D6C5B341A875A1B87B5D930CB, 356207CDF15BC36896F53C924B79B7D0B74ABAE44E16ADA8E3CFF47B0300BD06 ] C:\Windows\System32\AudioEndpointBuilder.dll
21:33:20.0876 0x2c98 C:\Windows\System32\AudioEndpointBuilder.dll - ok
21:33:20.0876 0x2c98 [ A85391BC699B5B971986052006A33DA4, A5BEB250C33217284704A67FEFD3BD701D2928599820B81342633128F1B14765 ] C:\Windows\System32\D3DSCache.dll
21:33:20.0876 0x2c98 C:\Windows\System32\D3DSCache.dll - ok
21:33:20.0876 0x2c98 [ EF0377C82D1F49F7215F3CC65CE240A8, 5C4CE9F173A7B32BEB502C9F836DBB7656BEA3F96C374B0BB8E0A469A7EA0F0C ] C:\Windows\System32\FntCache.dll
21:33:20.0876 0x2c98 C:\Windows\System32\FntCache.dll - ok
21:33:20.0876 0x2c98 [ D52CE4DBB7605E76EE088CC7EB19D147, 86609D073F7F769DAF0C3B3E8EC32503D727932896C9C62925FD7979ECC42366 ] C:\Windows\System32\cabinet.dll
21:33:20.0876 0x2c98 C:\Windows\System32\cabinet.dll - ok
21:33:20.0891 0x2c98 [ 34A880F65EDF91DFF56B7212ABC72C68, CFD87DE5909F672BE8968BB3AC3231AF10B33767D2E49AC9182DFA9A604497D0 ] C:\Windows\System32\Windows.UI.Xaml.dll
21:33:20.0891 0x2c98 C:\Windows\System32\Windows.UI.Xaml.dll - ok
21:33:20.0891 0x2c98 [ FEE0770611C10581470386A7D95F9273, C683F44BC76D65EEA24ADAF28F13E5003601325312B2B8865B61D4B3AEEA38F8 ] C:\Windows\System32\iri.dll
21:33:20.0891 0x2c98 C:\Windows\System32\iri.dll - ok
21:33:20.0891 0x2c98 [ 59B172E61EB3A8C1356CEE9FD45FBA27, 9E7CE315415A989C59B936FFB8D6E79B2C88DF7E5F7F4577E47413101A272E5B ] C:\Windows\System32\FontProvider.dll
21:33:20.0891 0x2c98 C:\Windows\System32\FontProvider.dll - ok
21:33:20.0891 0x2c98 [ A5B184122EC809D55517DD43EFA8E798, 7AC8A292D9572D34A60DAF283F2FAEE1DFB194FF9839EA738C37A808DA116ECF ] C:\Windows\System32\wshhyperv.dll
21:33:20.0891 0x2c98 C:\Windows\System32\wshhyperv.dll - ok
21:33:20.0891 0x2c98 [ CAF5590389B55FEEECA71C40CEABAB07, 7ED927D22EF10038323CEC61C41760613587FA0250BF3F8D50C6D409BC5839B9 ] C:\Windows\System32\wship6.dll
21:33:20.0891 0x2c98 C:\Windows\System32\wship6.dll - ok
21:33:20.0891 0x2c98 [ 43B1FFA120D776818900D4A0B5796CE8, 71D8558B1295C8EC089124A4D6F979728412699C5D9A65E7AC7E32CC090E321D ] C:\Windows\System32\wshqos.dll
21:33:20.0891 0x2c98 C:\Windows\System32\wshqos.dll - ok
21:33:20.0907 0x2c98 [ 4F44149C861C7CBB6F58EDF285E315A4, A4F2A116986094805C270332B852F685E7811259CD2FE38CA009F0548B657B63 ] C:\Windows\System32\WSHTCPIP.DLL
21:33:20.0907 0x2c98 C:\Windows\System32\WSHTCPIP.DLL - ok
21:33:20.0907 0x2c98 [ 4920DCA195876CB0CEB3F0146D8E8C4B, 7DB5E81F31C74C0E5166048F24AB49C90CC4A97418677BED344FC0BC7264254D ] C:\Windows\System32\wermgr.exe
21:33:20.0907 0x2c98 C:\Windows\System32\wermgr.exe - ok
21:33:20.0907 0x2c98 [ 75BBADEFDFC0896EC4A763407C74CB8B, 058767DB19E130C1519BA9128B1573462603583ACC0B00D8C2DC65BDE24BBEEA ] C:\Windows\System32\Windows.UI.Immersive.dll
21:33:20.0907 0x2c98 C:\Windows\System32\Windows.UI.Immersive.dll - ok
21:33:20.0907 0x2c98 [ B0914230A2B1BAAA863D059B44E649B1, 86B5234ABB2F25C30C7BDC35E39309AF1534B262AF7A5643CAEA169B85DF5FE4 ] C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.175_none_e6c3ab1f131014c9\comctl32.dll
21:33:20.0907 0x2c98 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.175_none_e6c3ab1f131014c9\comctl32.dll - ok
21:33:20.0907 0x2c98 [ 99737333A5493750CC4CBB8C2BD323BB, 8EA82295AB6C02F03E4A969C152FF0347D1561D191644998CA9E9F0039820715 ] C:\Windows\System32\drivers\winquic.sys
21:33:20.0907 0x2c98 C:\Windows\System32\drivers\winquic.sys - ok
21:33:20.0907 0x2c98 [ 9EB402A3A00433B271C2DE5B904AA770, 4E95FECBF1C71F7CB574651FA2B1F8B23AE16543887D80432D178809A5833C42 ] C:\Windows\System32\NcdAutoSetup.dll
21:33:20.0907 0x2c98 C:\Windows\System32\NcdAutoSetup.dll - ok
21:33:20.0907 0x2c98 [ 8EFF0A8C33FB0A47BCE8133134B7ED02, 35D90FED7BF7512138F0CCB256DE29C0B79A9EA431DDBD8B10D216CE79CBDE7A ] C:\Windows\System32\deviceassociation.dll
21:33:20.0907 0x2c98 C:\Windows\System32\deviceassociation.dll - ok
21:33:20.0923 0x2c98 [ 3E1218D6A2754C6CEF90E52B01A65B85, 712083965F738F234DF1729F02683E3BD0FCF1AF3D5F553907FE68F11038C36F ] C:\Windows\System32\drivers\http.sys
21:33:20.0923 0x2c98 C:\Windows\System32\drivers\http.sys - ok
21:33:20.0923 0x2c98 [ 1E526993F8C8EF91AAEC8739CCF46D52, 388AB7CDFD8E117E4475F3F69CEBB4690682BE6396B75C292124CE1794F176F0 ] C:\Windows\System32\dtsh.dll
21:33:20.0923 0x2c98 C:\Windows\System32\dtsh.dll - ok
21:33:20.0923 0x2c98 [ 574937AAC16BC828BA35DA6639972660, BCC1431B0062AFA56B2A754EC381FD3BDDF0864929BB16B174E13827D2088D9C ] C:\Windows\System32\fdPHost.dll
21:33:20.0923 0x2c98 C:\Windows\System32\fdPHost.dll - ok
21:33:20.0923 0x2c98 [ 4C880DC6A73B0DD102DF513AE7E65FAF, AF5178421559A240EF26816523D13CC229B61FC1A3EA815CFB78BA200AA6FE76 ] C:\Windows\System32\fdWSD.dll
21:33:20.0923 0x2c98 C:\Windows\System32\fdWSD.dll - ok
21:33:20.0923 0x2c98 [ 100D374C7F87104A9C42C4190DBA7DF4, 3F24D6F5549F51D49F38684B070D3B61BE4CBCD1B2CE366E87B7330B824B5F48 ] C:\Windows\System32\WSDApi.dll
21:33:20.0923 0x2c98 C:\Windows\System32\WSDApi.dll - ok
21:33:20.0923 0x2c98 [ AF1FF79545FD839C3DD08BE291DCDFA0, 5E3CA3FB6DF4300CE08FAA4DDE075E0289546FA22091C11B2041A2F326B4CF6B ] C:\Windows\System32\wbemcomn.dll
21:33:20.0923 0x2c98 C:\Windows\System32\wbemcomn.dll - ok
21:33:20.0923 0x2c98 [ 1DF9F7750C1F0FD8D2DB4A24BC89AF87, 3FA4641ECA80FE270E5B2A1DB22CDB0EC700C858BDE9C6F3AD53FBD275D76B68 ] C:\Windows\System32\wbem\wbemprox.dll
21:33:20.0923 0x2c98 C:\Windows\System32\wbem\wbemprox.dll - ok
21:33:20.0938 0x2c98 [ 633FF822A6006740CC0D1D1A2AD6CED7, A5F0218EACDD583DDF6D6C37644742F8196B8416F97D9623C0CC64C28B05C7CC ] C:\Windows\System32\webservices.dll
21:33:20.0938 0x2c98 C:\Windows\System32\webservices.dll - ok
21:33:20.0938 0x2c98 [ D0163FDDA8F2FCCBB4ED72AC72D9F365, 690522AD1929692BC1258DEAE3B3F1C0BAB86D93EE1B9014530BC6BA351BBA6F ] C:\Windows\System32\DWrite.dll
21:33:20.0938 0x2c98 C:\Windows\System32\DWrite.dll - ok
21:33:20.0938 0x2c98 [ 2EFFDAB75A65800DCF933B30C104B998, 3F20E01D08F620804556451073435D6A598B5402D59688D7E221078BE7896F3B ] C:\Windows\System32\fdSSDP.dll
21:33:20.0938 0x2c98 C:\Windows\System32\fdSSDP.dll - ok
21:33:20.0938 0x2c98 [ E7B5AC14EF3F0116D59E851A2F38DA74, 18327A5219C35791C8037AF5F717166467F7844202773D2C1CB10874BABE6DCD ] C:\Windows\System32\wbem\WMIsvc.dll
21:33:20.0938 0x2c98 C:\Windows\System32\wbem\WMIsvc.dll - ok
21:33:20.0938 0x2c98 [ 86A9DF3FA9D5FCAC8EF57601FCCD78F9, F8CDA38FD3FF371E772875EA657A37662321EBB7AD8D6978DBCCCA7FC6DB64F1 ] C:\Windows\System32\netapi32.dll
21:33:20.0938 0x2c98 C:\Windows\System32\netapi32.dll - ok
21:33:20.0938 0x2c98 [ 50E9EC03BDB43840A2DD60E019077F12, A3887E20DA67E7C6E7ED165BB6CCF507903D51AA09C1232C1A31CB2D3236DD93 ] C:\Windows\System32\vssapi.dll
21:33:20.0938 0x2c98 C:\Windows\System32\vssapi.dll - ok
21:33:20.0938 0x2c98 [ 496191A83B01C68C05E80007E215A8D9, A3E78657CE253E1E1D77B06B9781B013CF71BA96FC5DCE619CFE94A7E359888F ] C:\Windows\System32\Windows.Globalization.dll
21:33:20.0938 0x2c98 C:\Windows\System32\Windows.Globalization.dll - ok
21:33:20.0954 0x2c98 [ 5414A54236322C5ED8691CEC1A38EF80, A66E093F96383FAD9AB11C350A9712D64016F3EF7753124ABA368F969B74B276 ] C:\Windows\System32\FDResPub.dll
21:33:20.0954 0x2c98 C:\Windows\System32\FDResPub.dll - ok
21:33:20.0954 0x2c98 [ 7543600E02FA9EC7F4F0A1A520418C29, 2314AAEB9E4FE45953D5582A873A336EA5BEE99640B6290E58F226C8786E344D ] C:\Windows\System32\fundisc.dll
21:33:20.0954 0x2c98 C:\Windows\System32\fundisc.dll - ok
21:33:20.0954 0x2c98 [ 6ACE66A6008317D15807CD9A66A867C0, 809B2A71453BBB84252A06548C7F0BC16A045C7A27F30EB70E2A32C5759D9BD0 ] C:\Windows\System32\vsstrace.dll
21:33:20.0954 0x2c98 C:\Windows\System32\vsstrace.dll - ok
21:33:20.0954 0x2c98 [ 5924323A3B9FD73EEA6F54E28E389993, 8B0BA73BC2C4B09C960D0028F5CF1D2D8721E7BB55B6D52D179C2FCE433C85DD ] C:\Windows\System32\directmanipulation.dll
21:33:20.0954 0x2c98 C:\Windows\System32\directmanipulation.dll - ok
21:33:20.0954 0x2c98 [ 5F88040FD6990354ECFBCE059A5CE22A, 89CEBA6E00F0B6EDB4CE1B50C6F1D315C3C7DDE9781E4F37B70877B982D1AE81 ] C:\Windows\System32\wbem\wbemcore.dll
21:33:20.0954 0x2c98 C:\Windows\System32\wbem\wbemcore.dll - ok
21:33:20.0954 0x2c98 [ 18EB21F581376F1DE995FC8EEACD9C52, C2B08EA50344FFA822EC7594C0EC7237416465B444F0FE90D6889A0126898FD8 ] C:\Windows\System32\wbem\fastprox.dll
21:33:20.0954 0x2c98 C:\Windows\System32\wbem\fastprox.dll - ok
21:33:20.0969 0x2c98 [ 9DD95E84D4AEDF5BEE1C3DFF6D898ADD, 25A4688CEA24A261640B77BF0F43B91D467E17B02223F1F08EFCF5EF6981065C ] C:\Windows\System32\wbem\esscli.dll
21:33:20.0969 0x2c98 C:\Windows\System32\wbem\esscli.dll - ok
21:33:20.0969 0x2c98 [ 59AC7AF17974F19C71AF61F6A9DDDE56, E29112AFA82DE0E2F5C0089DA4501350BF4DBB79D6B73C67F4CDF06E4819BC4C ] C:\Windows\System32\Windows.UI.Xaml.Controls.dll
21:33:20.0969 0x2c98 C:\Windows\System32\Windows.UI.Xaml.Controls.dll - ok
21:33:20.0969 0x2c98 [ 1310B0EDDFDD818F34DF7C43A41EE2EE, 8130E4A2D023862DD0162397DF9123C7D9299B6AA6C5B16F93D015EFA263C803 ] C:\Windows\System32\wbem\wbemsvc.dll
21:33:20.0969 0x2c98 C:\Windows\System32\wbem\wbemsvc.dll - ok
21:33:20.0969 0x2c98 [ 9639A13D44802D3060BAB0072EB7945A, 45446583DDBD1DA38B545603AF62E305F13DD480B09F4A689BE4ADC98BC4A4AF ] C:\Windows\System32\wbem\wmiutils.dll
21:33:20.0969 0x2c98 C:\Windows\System32\wbem\wmiutils.dll - ok
21:33:20.0969 0x2c98 [ E77AB63A6EC17140EDA7ACE9D8AE34AD, 906681BD14DCC3B00CC3FBDF96EB547C7B203ECAB232BCA0521C68BE71CBEE17 ] C:\Windows\System32\wbem\repdrvfs.dll
21:33:20.0969 0x2c98 C:\Windows\System32\wbem\repdrvfs.dll - ok
21:33:20.0969 0x2c98 [ 7DAEE8A57E21AC826A61B64E8C3AD505, 823BEC4BF10F36328C2706801FBA7F51A385EB67DD9F788C44A06E11A2795932 ] C:\Windows\System32\FontGlyphAnimator.dll
21:33:20.0969 0x2c98 C:\Windows\System32\FontGlyphAnimator.dll - ok
21:33:20.0969 0x2c98 [ 6C3FE64F4D10589AEBB9D6FBEC2D092E, DBBD268C019485ECD1FE284F0557D9FAA107B622655CCD70D0605F9A00BC96EE ] C:\Windows\System32\AuthExt.dll
21:33:20.0969 0x2c98 C:\Windows\System32\AuthExt.dll - ok
21:33:20.0985 0x2c98 [ B3D6B425D98463A14ACAD353FB92572F, D95182167456EB58F7DD5AFD7262C87FEABC94BFC238EA03897129F24B1A31E7 ] C:\Windows\System32\devrtl.dll
21:33:20.0985 0x2c98 C:\Windows\System32\devrtl.dll - ok
21:33:20.0985 0x2c98 [ 38AFA52FD7161B95F3927CC6B95896B6, 5B47DBE7FFF515409EC916AEB152503798CE453871BE34823870BD50C38643F0 ] C:\Windows\System32\httpapi.dll
21:33:20.0985 0x2c98 C:\Windows\System32\httpapi.dll - ok
21:33:20.0985 0x2c98 [ 7D7C2EE6C244998D0C64F18E7CC0E69C, B96F8302A8D181002330C896A48B47294E61BD03B7FDAB95E04614F271281269 ] C:\Windows\System32\NetworkStatus.dll
21:33:20.0985 0x2c98 C:\Windows\System32\NetworkStatus.dll - ok
21:33:20.0985 0x2c98 [ E266A4DE9E8F977F50A3A958B1607FFA, E88B377ADC55C8C8A0E071D4A6AEAB78ECA44E110DD33FB8AFF8A126E5ED34EE ] C:\Windows\System32\InputSwitch.dll
21:33:20.0985 0x2c98 C:\Windows\System32\InputSwitch.dll - ok
21:33:20.0985 0x2c98 [ 5C5E6FA1C7518E42BABE5B4692B42581, 7C281B7177C52A33AAC9A76DC41511BB09AA9BA49955AECA8097331D4041D07B ] C:\Windows\System32\CredProvDataModel.dll
21:33:20.0985 0x2c98 C:\Windows\System32\CredProvDataModel.dll - ok
21:33:20.0985 0x2c98 [ D4B3839DCF193B483A029C599B27B176, A0924312372FB8FD65072D0A209F4BDB34C73F8155D5C75822E95CB7060D8E7A ] C:\Windows\System32\threadpoolwinrt.dll
21:33:20.0985 0x2c98 C:\Windows\System32\threadpoolwinrt.dll - ok
21:33:21.0001 0x2c98 [ 0DFB8E947959967C6110312551007D34, D64BE47A0454F8B9743AB5A0FE8DA69ED30A4E6A02BEA266BD30322222B9BFF8 ] C:\Windows\System32\Windows.ApplicationModel.dll
21:33:21.0001 0x2c98 C:\Windows\System32\Windows.ApplicationModel.dll - ok
21:33:21.0001 0x2c98 [ 2223D317927DF39A2524A188381B69FA, 90D9747258623608F5B263376B3E32A6D1EC6834E5BD58DCDDC18682A7A256CA ] C:\Windows\System32\wuceffects.dll
21:33:21.0001 0x2c98 C:\Windows\System32\wuceffects.dll - ok
21:33:21.0001 0x2c98 [ 6864CA6C823D4BB7918CCEB1B3C78040, 893C729D8157797C3278389F879C08A03736A8F6D0BC2DDFF0EAE85C1AC50069 ] C:\Windows\System32\credprovhost.dll
21:33:21.0001 0x2c98 C:\Windows\System32\credprovhost.dll - ok
21:33:21.0001 0x2c98 [ 7638B8F902CC57AF2127AC8697F85D78, F5C0FD61738B05BDA3737398973C9FC5460F9BE7BB6794D1F4C96C3B99584A39 ] C:\Windows\System32\credprovs.dll
21:33:21.0001 0x2c98 C:\Windows\System32\credprovs.dll - ok
21:33:21.0001 0x2c98 [ C61D7397F3446FF9EFECF3F5338C0318, 1F98AFFCCBF80EA90EFF2A5211C68F47DC02D76B3E67C419EFFF5168F933CDB2 ] C:\Windows\System32\audiosrv.dll
21:33:21.0001 0x2c98 C:\Windows\System32\audiosrv.dll - ok
21:33:21.0001 0x2c98 [ 96CC24FB9255B8D14B82418F39030AFD, 6EFBA70917603D5C790886EC6CA92E35092222C2F251600D557F7C1F70B94831 ] C:\Windows\System32\credprovslegacy.dll
21:33:21.0001 0x2c98 C:\Windows\System32\credprovslegacy.dll - ok
21:33:21.0001 0x2c98 [ 3DD9D408CB6AE896F5A781F828125D2D, 282620DCDBC39683E2784BFF1F478C914F4CCEC6D2C8B0EA986732CFE92FB88A ] C:\Windows\System32\AudioSrvPolicyManager.dll
21:33:21.0001 0x2c98 C:\Windows\System32\AudioSrvPolicyManager.dll - ok
21:33:21.0016 0x2c98 [ E04A79BDB0FD588A98D842565B8FD8FA, 62428CE023ED902FE30057922CB08020B4872CFE1E6ED5BB245388A1BD815219 ] C:\Windows\System32\facecredentialprovider.dll
21:33:21.0016 0x2c98 C:\Windows\System32\facecredentialprovider.dll - ok
21:33:21.0016 0x2c98 [ C0EFDB2787AD057ABD109562B62B7948, A1594989136B777C5894477894D6673E90629A141B85262DC4F2F6329065D7F0 ] C:\Windows\System32\Windows.Devices.Enumeration.dll
21:33:21.0016 0x2c98 C:\Windows\System32\Windows.Devices.Enumeration.dll - ok
21:33:21.0016 0x2c98 [ DB410727616D6DA49028DB743906D1D8, ADFA857E9EDEBEB6DA6728350CD7B80A03C5F13A3289290242D616387DDE5350 ] C:\Windows\System32\SmartcardCredentialProvider.dll
21:33:21.0016 0x2c98 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
21:33:21.0016 0x2c98 [ D8FF651468E99AB7A97EAC7817855814, DFF581F05BE8EBCA4188D07E30F61871D0856D87F2E521A659C06255E0095B6F ] C:\Windows\System32\coreaudiopolicymanagerext.dll
21:33:21.0016 0x2c98 C:\Windows\System32\coreaudiopolicymanagerext.dll - ok
21:33:21.0016 0x2c98 [ EDBF60F6C9DA5FC995CD99B2CC963FC1, 221F0EDC0267EB09036926CD91E3BF5CEF15A271A34DCC841EF470D4E2A726FD ] C:\Windows\System32\StructuredQuery.dll
21:33:21.0016 0x2c98 C:\Windows\System32\StructuredQuery.dll - ok
21:33:21.0016 0x2c98 [ FD50FE3D3988206940BE2FD28F3B7C68, 7A94EE8DACE34F0A24B484CF717F9368F9AAEE6D8805697EAF2C80ACE129E973 ] C:\Windows\System32\Windows.Media.Devices.dll
21:33:21.0016 0x2c98 C:\Windows\System32\Windows.Media.Devices.dll - ok
21:33:21.0032 0x2c98 [ ADA808E488E7A68BA46F4FD06AECD5D3, 5516E53A3419B186A0C4611030CF67C1D5A2EC8D13025DFEC8A5BBF152FE5A68 ] C:\Windows\System32\BioCredProv.dll
21:33:21.0032 0x2c98 C:\Windows\System32\BioCredProv.dll - ok
21:33:21.0032 0x2c98 [ 7485E13DFD9DCF4E398F44AD71B4CE3B, 66D4388AC3F27F8E12B1EBB953A8890452C53E5D4F93E4B62C126C644DB0610A ] C:\Windows\System32\drivers\aswStm.sys
21:33:21.0032 0x2c98 C:\Windows\System32\drivers\aswStm.sys - ok
21:33:21.0032 0x2c98 [ 022FCD8FB67D9633CC8A94AA099F2241, 4DA14943A68B2CFA37BFD357E4A543753BF2A0C8A04237058072EDF503FE67AF ] C:\Windows\System32\ngckeyenum.dll
21:33:21.0032 0x2c98 C:\Windows\System32\ngckeyenum.dll - ok
21:33:21.0032 0x2c98 [ F24EFC7D3C2C787D7478E0B6E9478D51, 247E381808189870DF66D69B6C2C913B32B0E706B269305A20CC6B526A6D8E13 ] C:\Windows\System32\cxcredprov.dll
21:33:21.0032 0x2c98 C:\Windows\System32\cxcredprov.dll - ok
21:33:21.0032 0x2c98 [ A0D1856F57DFCF58D8A9E23D8B205886, 228803C88590C8AC10A1730CADA38A48DEB0236FDC6695673D70C40F91F3948D ] C:\Windows\System32\drivers\lltdio.sys
21:33:21.0032 0x2c98 C:\Windows\System32\drivers\lltdio.sys - ok
21:33:21.0032 0x2c98 [ 2C65B33D84734C7A0E957550D3BA3A24, 9EA47048842B66F19D10ABB9AB7FFBF5A3172A0593187112EE905B5070C42B9D ] C:\Windows\System32\HrtfApo.dll
21:33:21.0032 0x2c98 C:\Windows\System32\HrtfApo.dll - ok
21:33:21.0032 0x2c98 [ BFB0DEB02701DD0CFCA43FFFF570E666, 484F81315E327EDCA5E5BB56C4814C4C3DA5EC9A73A8230D13405B171B9DCDBE ] C:\Windows\System32\MSWB7.dll
21:33:21.0032 0x2c98 C:\Windows\System32\MSWB7.dll - ok
21:33:21.0048 0x2c98 [ DC92E3279E532B1AE81844FC1302C833, 6C2D24223954746595254B85B6A2B4B0D01EE055E9367D48FC74F9087EA230AF ] C:\Windows\System32\CompPkgSup.dll
21:33:21.0048 0x2c98 C:\Windows\System32\CompPkgSup.dll - ok
21:33:21.0048 0x2c98 [ CCF4A5CEC8FA38035007AB19EB0EBE2E, 05C7701A1A2FCEDCD0F5EC6EF069F73C48D920448EFB010E5E7FBEEA3438F014 ] C:\Windows\System32\drivers\rspndr.sys
21:33:21.0048 0x2c98 C:\Windows\System32\drivers\rspndr.sys - ok
21:33:21.0048 0x2c98 [ FD677BFC95C62AA2FFEA4AFF3BED4D42, 4EDD75E09679A7AD07794BC6C121BDA2C0EF806A7064C4EEE11C2EE0501DDFEB ] C:\Windows\System32\ngccredprov.dll
21:33:21.0048 0x2c98 C:\Windows\System32\ngccredprov.dll - ok
21:33:21.0048 0x2c98 [ 5DF483C5235074D2242CFEF57D1E3830, 585F96C026866FAD7009D2F50AED9D03524D799DF9FE36CF2304CF417DD080AF ] C:\Windows\System32\drivers\wanarp.sys
21:33:21.0048 0x2c98 C:\Windows\System32\drivers\wanarp.sys - ok
21:33:21.0048 0x2c98 [ 3EAFC35AC1EF80C00C087CAB7C42F24B, E887983D3BD8934171D08BDF318364920760A94918DFB5A496D29B4789EF982A ] C:\Windows\System32\wlidcredprov.dll
21:33:21.0048 0x2c98 C:\Windows\System32\wlidcredprov.dll - ok
21:33:21.0048 0x2c98 [ 5F74158F98277E08CEA499AC7041A798, 517338614196FC5F0F70F6AC8C89590D093912D33F46D0D580CDFA6E8E8F919B ] C:\Windows\System32\drivers\ndisuio.sys
21:33:21.0048 0x2c98 C:\Windows\System32\drivers\ndisuio.sys - ok
21:33:21.0048 0x2c98 [ 0007751F2228E8FEED01FD504EA8139F, 058800B5D4968EAC23D85892151FB1E9CB4266A0A932F126C5012109A32AF50E ] C:\Windows\System32\rasplap.dll
21:33:21.0048 0x2c98 C:\Windows\System32\rasplap.dll - ok
21:33:21.0063 0x2c98 [ 772ADB3073FE8A14479DF89BD81AA5D2, 14F471EA3D922911DF7845077B07FC8F61F46B6B3CB57F2229625DD4E96D52AF ] C:\Windows\System32\DevDispItemProvider.dll
21:33:21.0063 0x2c98 C:\Windows\System32\DevDispItemProvider.dll - ok
21:33:21.0063 0x2c98 [ 8B80D85EFC77DD69E163D63F929E7B1A, FF0B9393C98EDC81E2E304191108E0FF0F97709FF65613713B8371D38645F281 ] C:\Windows\System32\drivers\nwifi.sys
21:33:21.0063 0x2c98 C:\Windows\System32\drivers\nwifi.sys - ok
21:33:21.0063 0x2c98 [ C5FAD96F680BA111C0745BD84350E527, 4AAE261CFF4C130DD29C0FAD0041795705CD1D58BC6DF6326203199DB7FD0573 ] C:\Windows\System32\rtutils.dll
21:33:21.0063 0x2c98 C:\Windows\System32\rtutils.dll - ok
21:33:21.0063 0x2c98 [ E3E503AAC930FAFE13365EE42324DBF0, 73D1929E02E165C859609818C52E7CDFAB244086D56782B3EC4823F75A7DE1F2 ] C:\Windows\System32\CredProv2faHelper.dll
21:33:21.0063 0x2c98 C:\Windows\System32\CredProv2faHelper.dll - ok
21:33:21.0063 0x2c98 [ A88D0286ED9CF7DF8DC0182C56106F32, 9A5D3D5447C704247A9F5A6C2940ED909C5849DC45F548B82171928DA91454CE ] C:\Windows\System32\CredProvHelper.dll
21:33:21.0063 0x2c98 C:\Windows\System32\CredProvHelper.dll - ok
21:33:21.0063 0x2c98 [ 6A34FC162F61E26010BD0BF0F211C4A2, 9BFEEE32F77CAC78D8395024CB342E07E64B370ACE9CD5AB6C9B63689A2F70C0 ] C:\Windows\System32\dusmsvc.dll
21:33:21.0063 0x2c98 C:\Windows\System32\dusmsvc.dll - ok
21:33:21.0079 0x2c98 [ 9AC5E05D599A49DC91E2F438F93D719F, E3D583CA50ECDAC508EBC1642F5565DD42541E4E9C7AE1B709A042CB1A3A0CC0 ] C:\Windows\System32\fhsvc.dll
21:33:21.0079 0x2c98 C:\Windows\System32\fhsvc.dll - ok
21:33:21.0079 0x2c98 [ 6593F0B89DB15903B745A8506ECA5209, D94AD3D5ED36464DF5300444D10FF79F49197476398CE1DD30CBCA858C4286E2 ] C:\Windows\System32\wcmsvc.dll
21:33:21.0079 0x2c98 C:\Windows\System32\wcmsvc.dll - ok
21:33:21.0079 0x2c98 [ 7B95F9C1FC5CFADC7F922E76DA711A9C, 38A637F56306BBEFB9EC7A2F487ECF9C7411E7DDC1CB215B5BF5FACC39DCFFC8 ] C:\Windows\System32\Windows.StateRepository.dll
21:33:21.0079 0x2c98 C:\Windows\System32\Windows.StateRepository.dll - ok
21:33:21.0079 0x2c98 [ 767459FCDAFDFD6CAA70D5EB2DA98CF5, C8FBE62E60829E353C88ADE8094B90397F621C05AD7D17564966CB50AC1D0FF0 ] C:\Windows\System32\dosvc.dll
21:33:21.0079 0x2c98 C:\Windows\System32\dosvc.dll - ok
21:33:21.0079 0x2c98 [ 00D03841F983C0DDE3C40CE552B4ECEB, 24D481B992974B76471631CD7C0AE1F54C248C0DCB1809D8851867D067E539FE ] C:\Windows\System32\Windows.Media.dll
21:33:21.0079 0x2c98 C:\Windows\System32\Windows.Media.dll - ok
21:33:21.0079 0x2c98 [ 1B8CB9EB68D32F74A91ECFBB97D6003C, 2803A7C22A6643A070EE9ADCD1BF787CCBF547598C091BF054FF430D07C38EAE ] C:\Windows\System32\BFE.DLL
21:33:21.0079 0x2c98 C:\Windows\System32\BFE.DLL - ok
21:33:21.0079 0x2c98 [ 67A3BD6204817236801B91AFF4049A32, 7E720C09BB8C5A247073BCB110F87660B9A87879D22C51941FBE671E28E24218 ] C:\Windows\System32\msidle.dll
21:33:21.0079 0x2c98 C:\Windows\System32\msidle.dll - ok
21:33:21.0094 0x2c98 [ 83755F1329EE4FA1DFF2FB1D94B1446C, D752CECF87938347562102C557052A209FC08BF03D47B15E1C518CD4B526E68B ] C:\Windows\System32\mobilenetworking.dll
21:33:21.0094 0x2c98 C:\Windows\System32\mobilenetworking.dll - ok
21:33:21.0094 0x2c98 [ 4D2925DB2F3D2F61F3AEBF3865F89536, 2230042BE5917A847842678CBA2D9BE82309B35904213F44BE54767ECD28D6D0 ] C:\Windows\System32\cmintegrator.dll
21:33:21.0094 0x2c98 C:\Windows\System32\cmintegrator.dll - ok
21:33:21.0094 0x2c98 [ 11007956CA83771C77B17BD7E4DFC580, DA77C573CEB9C9F81A50F69164E4C3C017D90F911198CFC116777293B342FBFE ] C:\Windows\System32\wcmcsp.dll
21:33:21.0094 0x2c98 C:\Windows\System32\wcmcsp.dll - ok
21:33:21.0094 0x2c98 [ BEF4D04BB9D627616070D66628AC7191, 36B41552BE0F17D4C0B4108951817C72E550F1DBB1165548E2217FC2580046AA ] C:\Program Files\Windows Defender\MpOAV.dll
21:33:21.0094 0x2c98 C:\Program Files\Windows Defender\MpOAV.dll - ok
21:33:21.0094 0x2c98 [ 1C188194C6C1880FB7D9E6F54383FF40, 0A6947B24CAED32006E86DD83A29C1570DFE4ED363AE22D1277D9211430F73AD ] C:\Windows\System32\amsi.dll
21:33:21.0094 0x2c98 C:\Windows\System32\amsi.dll - ok
21:33:21.0094 0x2c98 [ 23E2D726EC248AEDC1BB4F8A5111575B, 2ECD09D0E2EE0042776DB64403D70FA180F32651DB9C6217E118AFD24ACB304C ] C:\Windows\System32\RTWorkQ.dll
21:33:21.0094 0x2c98 C:\Windows\System32\RTWorkQ.dll - ok
21:33:21.0110 0x2c98 [ 107227A25921345A5362084DAD62F631, 03276B4D8CAA6E2133B7BF0E3665C998E3F5AD11E6192974A3E8622CB23FBE9F ] C:\Program Files\AVAST Software\Avast\aswAMSI.dll
21:33:21.0110 0x2c98 C:\Program Files\AVAST Software\Avast\aswAMSI.dll - ok
21:33:21.0110 0x2c98 [ E8A08965677B3DE3EC25437167F126CD, 9BC4D549A1268A51C5A8379B53387AD6371A854E28931FE39889CD68ED5514A4 ] C:\Windows\System32\wlansvc.dll
21:33:21.0110 0x2c98 C:\Windows\System32\wlansvc.dll - ok
21:33:21.0110 0x2c98 [ AE2E15D100C28D330F1DBEF65F8E095A, 0941406F33D64057E327052D4491343B41E1F1EE782525532E4ECE2395A3644B ] C:\Windows\System32\winbio.dll
21:33:21.0110 0x2c98 C:\Windows\System32\winbio.dll - ok
21:33:21.0110 0x2c98 [ 2568C86E5182AED5892A80601953D103, BF9161D2AAF34E5A6273CB49029D5DC22083DE8D12DD9989EF091CEABE765162 ] C:\Windows\System32\ngclocal.dll
21:33:21.0110 0x2c98 C:\Windows\System32\ngclocal.dll - ok
21:33:21.0110 0x2c98 [ 52FD8D360E0118EFF32A6B92DB3E3021, 3E604742F4B404D415225C16B450D12020AE4D11FEE8947DFA9D0648C97448E4 ] C:\Windows\System32\wlanmsm.dll
21:33:21.0110 0x2c98 C:\Windows\System32\wlanmsm.dll - ok
21:33:21.0110 0x2c98 [ BA72C2F6F465926980ADC2FB7F8B3490, 86881A7054532019291C162F0A8177980C1C2B45490F7E88543F22915D08D9FF ] C:\Windows\WinSxS\amd64_avast.vc140.crt_fcc99ee6193ebbca_14.0.27012.0_none_5ca6eb17137337f1\msvcp140.dll
21:33:21.0110 0x2c98 C:\Windows\WinSxS\amd64_avast.vc140.crt_fcc99ee6193ebbca_14.0.27012.0_none_5ca6eb17137337f1\msvcp140.dll - ok
21:33:21.0110 0x2c98 [ DA5A58889982B7F965C514AD45AD5E55, 96175C68D788AB17481AE5C5625EC6DCFFD1D44AE87CC23560F875B58A6B4D58 ] C:\Windows\System32\onex.dll
21:33:21.0110 0x2c98 C:\Windows\System32\onex.dll - ok
21:33:21.0126 0x2c98 [ 0C583614EB8FFB4C8C2D9E9880220F1D, 6CADB4FEF773C23B511ACC8B715A084815C6E41DD8C694BC70090A97B3B03FB9 ] C:\Windows\WinSxS\amd64_avast.vc140.crt_fcc99ee6193ebbca_14.0.27012.0_none_5ca6eb17137337f1\vcruntime140.dll
21:33:21.0126 0x2c98 C:\Windows\WinSxS\amd64_avast.vc140.crt_fcc99ee6193ebbca_14.0.27012.0_none_5ca6eb17137337f1\vcruntime140.dll - ok
21:33:21.0126 0x2c98 [ F8CB6126D000DD2DC064972C83D5B8ED, 9118037F947403A2C87283CDC0CE0B9D0D5F543AEA2A981B2AFC6251E6760796 ] C:\Windows\System32\dbghelp.dll
21:33:21.0126 0x2c98 C:\Windows\System32\dbghelp.dll - ok
21:33:21.0126 0x2c98 [ B7BE410B22042C4320DE48C59081F839, 1B8B56F5DF00E0ADBBF0B5C65152C1973D8FD104D20030B497938CDCD5D8FB95 ] C:\Windows\System32\eappprxy.dll
21:33:21.0126 0x2c98 C:\Windows\System32\eappprxy.dll - ok
21:33:21.0126 0x2c98 [ 5A4A1E1DD2D07AFD42EE8B6EC9FD9952, AA54C6B67EE9680BC4B226D69391A77B5EB34487ED95A55941D777C414C0B554 ] C:\Windows\System32\wlansec.dll
21:33:21.0126 0x2c98 C:\Windows\System32\wlansec.dll - ok
21:33:21.0126 0x2c98 [ AD92544DB12E3B50ECBD9B0F8FF1331F, CC7DCCBAE53DD4EF0521A9AD260B5094D91F2C5A631072687279C03281C1579C ] C:\Windows\System32\dbgcore.dll
21:33:21.0126 0x2c98 C:\Windows\System32\dbgcore.dll - ok
21:33:21.0126 0x2c98 [ CBF73272292FFA4AA820A9F458096D29, 04060805EA87E86BBDD214FEA502B52D0761FE1F12891319431E9F3218B27732 ] C:\Windows\System32\ngcsvc.dll
21:33:21.0126 0x2c98 C:\Windows\System32\ngcsvc.dll - ok
21:33:21.0126 0x2c98 [ 9794F885536FB7891637D1AD6CABAD11, D372E03068F71AF8F3B79E180EED8467EA835BCC53D23CFA1CCD68E7CA8DB031 ] C:\Windows\System32\wlansvcpal.dll
21:33:21.0141 0x2c98 C:\Windows\System32\wlansvcpal.dll - ok
21:33:21.0141 0x2c98 [ 7E9BC13F9711047BF1C6DA0B2584BD7E, BAD6FEFC7F3F997ACD63724389246A62C5BABDDE6D82A9BB2455B56768A66498 ] C:\Program Files\AVAST Software\Avast\AvastSvc.exe
21:33:21.0141 0x2c98 C:\Program Files\AVAST Software\Avast\AvastSvc.exe - ok
21:33:21.0141 0x2c98 [ 3DBC631887FD8B54070A82099C3423D5, 587877B1914C82B947687B1BCEA8464B833AC2124B0CCA1E2BA5F8FEAE59693D ] C:\Windows\System32\vaultcli.dll
21:33:21.0141 0x2c98 C:\Windows\System32\vaultcli.dll - ok
21:33:21.0141 0x2c98 [ 9350C86BD3EE222B1A3A36C42C6A0B56, 30FB0058E4E1EE45A717BA6A277DE525EE09E2A400D00ABFD518051E63068035 ] C:\Windows\System32\vaultsvc.dll
21:33:21.0141 0x2c98 C:\Windows\System32\vaultsvc.dll - ok
21:33:21.0141 0x2c98 [ 0D08EC73414522A1570DD96BA2D4CC87, FA01F35DEA00A7B0C2D554E0F0086D1ECECAD78529D0E1F145D3822A57350B7D ] C:\Program Files\AVAST Software\Avast\ashBase.dll
21:33:21.0141 0x2c98 C:\Program Files\AVAST Software\Avast\ashBase.dll - ok
21:33:21.0141 0x2c98 [ CF744C9803E369BCE86838EA1E1889F0, AB194EFE9B1A3507D123F604B1C05291FCAC6925B851D823F0CBA2060CFB7C90 ] C:\Program Files\AVAST Software\Avast\dll_loader.dll
21:33:21.0141 0x2c98 C:\Program Files\AVAST Software\Avast\dll_loader.dll - ok
21:33:21.0141 0x2c98 [ 66E6C9C7AEB812EF3F7ED69143E8E287, 4C85FF6D3281EBD05DA823B6FD272EFA53C3AFD2C41A86E4684BB43E4FCF003A ] C:\Windows\System32\shsvcs.dll
21:33:21.0141 0x2c98 C:\Windows\System32\shsvcs.dll - ok
21:33:21.0157 0x2c98 [ A040925B20401FEFD6BD1CDC20EE969D, A1069C25A885CFAD4208869CE8C158DC01E0B68B0D417B3A1D26E1F7CE2922A4 ] C:\Windows\System32\TetheringIeProvider.dll
21:33:21.0157 0x2c98 C:\Windows\System32\TetheringIeProvider.dll - ok
21:33:21.0157 0x2c98 [ FE57C9C7E92F72914223D458EE2A12FC, E3656054CEFC0998FFB7339DE40C5DEBD73FD94697697A2A3F73B1FF8DB2CA2B ] C:\Windows\System32\wsock32.dll
21:33:21.0157 0x2c98 C:\Windows\System32\wsock32.dll - ok
21:33:21.0157 0x2c98 [ BBF664198C851F80B121B1B67DD5C0C0, A023B63A5A2B4D81FBC329067DE6D4DFE54DD74A1815F114DDBA40D2E32973F8 ] C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
21:33:21.0157 0x2c98 C:\Program Files\AVAST Software\Avast\aswCmnOS.dll - ok
21:33:21.0157 0x2c98 [ D5AB6711918057FCD6A317C160084ECD, 076B9B5C5186C3A443512F4E557CE25A5628A08961A0578BCA5E1025084136D9 ] C:\Windows\System32\WiFiDisplay.dll
21:33:21.0157 0x2c98 C:\Windows\System32\WiFiDisplay.dll - ok
21:33:21.0157 0x2c98 [ 6D37DD15B9B501403B34F48AFB379FEB, 3DD58BFDE5838556EFE0D01667384A833C091ECA507B77026D70A17086369A96 ] C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
21:33:21.0157 0x2c98 C:\Program Files\AVAST Software\Avast\aswCmnIS.dll - ok
21:33:21.0157 0x2c98 [ CE97C5E61E1961516A2E0D28FC970086, 302B20FF32A1D2F3B6A9BAC673E07A5F1C9634A38C578BB84F531C8DCEB09962 ] C:\Windows\System32\fveapi.dll
21:33:21.0157 0x2c98 C:\Windows\System32\fveapi.dll - ok
21:33:21.0157 0x2c98 [ 666C4E26399F15325B3027F3A0CD1029, B81D15C8BBEFBC9CCEBD8C7D2D4650F99D2028D866CF515575BFAF760993C455 ] C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
21:33:21.0157 0x2c98 C:\Program Files\AVAST Software\Avast\aswEngLdr.dll - ok
21:33:21.0173 0x2c98 [ 715BFEC76CAD9907DB4E809C35BF8F60, 6054F39282B33DE850E23F23E991335F415FA124285DFD7D7311EC61973D3C61 ] C:\Program Files\AVAST Software\Avast\libcrypto-1_1-x64.dll
21:33:21.0173 0x2c98 C:\Program Files\AVAST Software\Avast\libcrypto-1_1-x64.dll - ok
21:33:21.0173 0x2c98 [ B62980C59B3CC6A31FE0D767128EB072, 9675F7DE17D980A398514DC983CE8E2B39532584DFA8C7CEA0428C9DD0A2FA1D ] C:\Windows\System32\wlgpclnt.dll
21:33:21.0173 0x2c98 C:\Windows\System32\wlgpclnt.dll - ok
21:33:21.0173 0x2c98 [ 7240124B059BE3BAAAF2634FE8112F5E, 46824D7710B84345EF163ACF972B5910F8CD128BD9B9F16931EB535B1915B0BC ] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
21:33:21.0173 0x2c98 C:\Program Files\AVAST Software\Avast\aswCmnBS.dll - ok
21:33:21.0173 0x2c98 [ DDBAB7B8ECB840B4887B56BB29052CB8, A8323DE43A0B37131B2ECA10A58D50DE04CB8455B680658A9E9073CFE13C1D19 ] C:\Program Files\AVAST Software\Avast\log.dll
21:33:21.0173 0x2c98 C:\Program Files\AVAST Software\Avast\log.dll - ok
21:33:21.0173 0x2c98 [ F80F76318AD914EFF054CB773AAD3D5E, 934A5124B4A4BF1919DE92E443A26E96A4B50AF99111940B26AED13DBFE7E98B ] C:\Windows\System32\wifinetworkmanager.dll
21:33:21.0173 0x2c98 C:\Windows\System32\wifinetworkmanager.dll - ok
21:33:21.0173 0x2c98 [ 38EE7045688E3FC8FCF939D169D4ECB5, B8286AB558900F698C332373BDA3B2AC0538E426982BC319D6AB7BCC090FF064 ] C:\Program Files\AVAST Software\Avast\libssl-1_1-x64.dll
21:33:21.0173 0x2c98 C:\Program Files\AVAST Software\Avast\libssl-1_1-x64.dll - ok
21:33:21.0188 0x2c98 [ 617E14AC7EB25095CE1B053965524572, 9A501FD3F9B7A21356E4A9F90C900FFA62D62459F133BF6AEB2503CB9B02B8E5 ] C:\Program Files\AVAST Software\Avast\module_lifetime.dll
21:33:21.0188 0x2c98 C:\Program Files\AVAST Software\Avast\module_lifetime.dll - ok
21:33:21.0188 0x2c98 [ E0790DAF32DF0BF1AD34D877FA716600, 543C180C5E58FC877A18334205EBDE3C59FEB132E5157ACC7EF9E30C42316BBB ] C:\Windows\System32\wlanhlp.dll
21:33:21.0188 0x2c98 C:\Windows\System32\wlanhlp.dll - ok
21:33:21.0188 0x2c98 [ 9D024B6CF0130031F73BCEE108ABC92E, 9150E94A58023569A914AF0A3B6479D579A9178C79A72C39CF448577AAD5AB2F ] C:\Windows\System32\WlanRadioManager.dll
21:33:21.0188 0x2c98 C:\Windows\System32\WlanRadioManager.dll - ok
21:33:21.0188 0x2c98 [ F6E970FD17E06C67188D9D13522B61B1, 6C2A94FE51002C088027D169BCCB315186FEF283858D8B94D51231188EED0FB9 ] C:\Program Files\AVAST Software\Avast\aswIP.dll
21:33:21.0188 0x2c98 C:\Program Files\AVAST Software\Avast\aswIP.dll - ok
21:33:21.0188 0x2c98 [ 5E23DDA16F8763683BF458AD24FCD73A, 7988B1880F22A1917F70EA66B2AF1A12C36DB44C7549FD0FFC89EA9E8B0417F4 ] C:\Program Files\AVAST Software\Avast\aswProperty.dll
21:33:21.0188 0x2c98 C:\Program Files\AVAST Software\Avast\aswProperty.dll - ok
21:33:21.0188 0x2c98 [ 120E9CE295E1DCB89E95EF325FC6BF86, 59B3CB3A07FDCEC725670BC0BC94D526462F5B234D527A6CEA7A1B8C1FFAA474 ] C:\Windows\System32\CellularAPI.dll
21:33:21.0188 0x2c98 C:\Windows\System32\CellularAPI.dll - ok
21:33:21.0188 0x2c98 [ 3FF45D2D8AB137BC0931D67BC0A67BB7, 2A9B75FFC84B7FBA306E89F297BFB066660250BC4509E72229EDEE7123008D88 ] C:\Program Files\AVAST Software\Avast\CommChannel.dll
21:33:21.0188 0x2c98 C:\Program Files\AVAST Software\Avast\CommChannel.dll - ok
21:33:21.0204 0x2c98 [ 82EC83A3FF470C0D6D28F860A9D1645B, C2C940800A379DF10E6531AF81AF7BB1B080489EEA87DD037DF2B6E2FC096C1A ] C:\Windows\System32\rilproxy.dll
21:33:21.0204 0x2c98 C:\Windows\System32\rilproxy.dll - ok
21:33:21.0204 0x2c98 [ 381919E86545AAD8806D5B3EEC51545A, 6D78DC49CE9657222A7768C99620FCC032176D0FAE2C841E7D878FAB36BCDE56 ] C:\Program Files\AVAST Software\Avast\aswPropertyAv.dll
21:33:21.0204 0x2c98 C:\Program Files\AVAST Software\Avast\aswPropertyAv.dll - ok
21:33:21.0204 0x2c98 [ B3584D8DA5CC36CFE3673F8AB14E71D2, DDC0AA60A958FA520E860CAD1A582C2B2024DAD2E8A23695BFC6B69AE037962C ] C:\Windows\System32\ProximityService.dll
21:33:21.0204 0x2c98 C:\Windows\System32\ProximityService.dll - ok
21:33:21.0219 0x2c98 [ 397B27BD1CB6CB49CE0A88B0C133094E, 773A69CD17C720BC8008052DEA017A967500C47DFD8B0E8AB0E79B3A05493B1A ] C:\Windows\System32\wwapi.dll
21:33:21.0219 0x2c98 C:\Windows\System32\wwapi.dll - ok
21:33:21.0219 0x2c98 [ AEB1B45E054472D28D1D5552BEF896A9, 4B040095825FE20759668AC442C08BDE79360C1B504657F9B139E5CEFADDB135 ] C:\Windows\System32\ProximityCommon.dll
21:33:21.0219 0x2c98 C:\Windows\System32\ProximityCommon.dll - ok
21:33:21.0219 0x2c98 [ 7C109CD89B4077813B1D3948A03FFE17, 7EE5EC35C8F321329DE2E7D2B66B8C1EB4A50E5E46466162BB65773ED02A2E30 ] C:\Windows\System32\ProximityCommonPal.dll
21:33:21.0219 0x2c98 C:\Windows\System32\ProximityCommonPal.dll - ok
21:33:21.0219 0x2c98 [ 62318D749E723AB37CF37859D22C120A, 46D04D3F670B6F4DB65F897F9D02BBB899C15210CCFA892EBBC06CB4242133C6 ] C:\Windows\System32\ProximityServicePal.dll
21:33:21.0219 0x2c98 C:\Windows\System32\ProximityServicePal.dll - ok
21:33:21.0219 0x2c98 [ 611754E03FD4D8CE5ADD985FB09D65F0, A91722B9B5A371766F373F57DDC86D7DC824AA300C760BC85800608CB4356DDD ] C:\Program Files\AVAST Software\Avast\AavmRpch.dll
21:33:21.0219 0x2c98 C:\Program Files\AVAST Software\Avast\AavmRpch.dll - ok
21:33:21.0219 0x2c98 [ CC0F8905715BCDF6AB5FD8381E887D1F, AD066FA7A8F776BAD56196BFF3D995BC5E95E6DCA70D3427C18B6FFA36D7BDE4 ] C:\Program Files\AVAST Software\Avast\tasks_core.dll
21:33:21.0219 0x2c98 C:\Program Files\AVAST Software\Avast\tasks_core.dll - ok
21:33:21.0235 0x2c98 [ CA6620798543538051CBA26DB5058E5A, E51EF6743A296A02B933AE0B2F09DB483D4C1491303B2AAA11C0FF7EC4B1092C ] C:\Windows\System32\wbem\WmiPrvSD.dll
21:33:21.0235 0x2c98 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
21:33:21.0235 0x2c98 [ 63CE78C54DC234733627D72C0B693BDD, F7FD9331FDC065F027A7D59FDB0F0EA818EB14B94C0B9DFFD1953431F469304B ] C:\Program Files\AVAST Software\Avast\2057\Base.dll
21:33:21.0235 0x2c98 C:\Program Files\AVAST Software\Avast\2057\Base.dll - ok
21:33:21.0235 0x2c98 [ 7089D0AFBAABA2353A0DB19B07E238FD, 1F49DB7538E9FF003D35377B15D3EA0E020A260516C5BF6FD711D25D59D75E6A ] C:\Program Files\AVAST Software\Avast\ashServ.dll
21:33:21.0235 0x2c98 C:\Program Files\AVAST Software\Avast\ashServ.dll - ok
21:33:21.0235 0x2c98 [ EE3BD96DB188B9703B17B2D6ED392633, 42168B39DAD41AE11D80C3FEAE265125B82F3057BC5A4BCBF36C668B5ECDA240 ] C:\Windows\System32\ncobjapi.dll
21:33:21.0235 0x2c98 C:\Windows\System32\ncobjapi.dll - ok
21:33:21.0235 0x2c98 [ AFB7B22C61D233A65EFB1669E74738AE, A6FFA7286701530ACADB1624D4B34864BEEB4BD030D2962536D18756DEA4CF55 ] C:\Windows\System32\wbem\wbemess.dll
21:33:21.0235 0x2c98 C:\Windows\System32\wbem\wbemess.dll - ok
21:33:21.0235 0x2c98 [ 4DC03769C719D6140287978E77FA118D, 89E7F15E73D26E2FE6889F0A54C0B887B7D41165AB977BF18F95181C34EB02C4 ] C:\Program Files\AVAST Software\Avast\Aavm4h.dll
21:33:21.0235 0x2c98 C:\Program Files\AVAST Software\Avast\Aavm4h.dll - ok
21:33:21.0251 0x2c98 [ DF9610CBD44DA36F6D2B2E4C6CAF8EE1, E80DB0EDA4DEDBD8EBD5CCB07872B8791DEB9788FD4674794E8EEAB88118916F ] C:\Program Files\AVAST Software\Avast\anen.dll
21:33:21.0251 0x2c98 C:\Program Files\AVAST Software\Avast\anen.dll - ok
21:33:21.0251 0x2c98 [ FD980D5C9084245321B240FD1F0B5775, 07BA44C5EDFE830D333DE8AD5ED7125B79396E9550D5055BB422B7D142A472F4 ] C:\Program Files\AVAST Software\Avast\ashTask.dll
21:33:21.0251 0x2c98 C:\Program Files\AVAST Software\Avast\ashTask.dll - ok
21:33:21.0251 0x2c98 [ 7CC3F83B0CF62E245D3551B322AEA186, 58324E70CC174D76E3C315C74F98D63B85BB6F9E74E0CA674238F476BED81A1A ] C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
21:33:21.0251 0x2c98 C:\Program Files\AVAST Software\Avast\ashTaskEx.dll - ok
21:33:21.0251 0x2c98 [ C541252012A924082B144B6CFA2AE796, 886D98D0C033A214FF7331E247D156200A71D025E70C72933ECA719413E77477 ] C:\Program Files\AVAST Software\Avast\aswAux.dll
21:33:21.0251 0x2c98 C:\Program Files\AVAST Software\Avast\aswAux.dll - ok
21:33:21.0251 0x2c98 [ 1F10EA53F0703B0A8A48398A0FCFA159, 2227F3C43B09DF16D453441DDF1663DB37BAE15CEF2A6086999F181191CD59E3 ] C:\Program Files\AVAST Software\Avast\aswStrm.dll
21:33:21.0251 0x2c98 C:\Program Files\AVAST Software\Avast\aswStrm.dll - ok
21:33:21.0251 0x2c98 [ 073AC8F16B94CF15FBCD172C56EF67EE, B929E55824A5D939CC43187BE9A9F03015EAE8DB949E7F84A2C49F1C4FF53539 ] C:\Program Files\AVAST Software\Avast\aswLog.dll
21:33:21.0251 0x2c98 C:\Program Files\AVAST Software\Avast\aswLog.dll - ok
21:33:21.0266 0x2c98 [ CAF5CBFE9876F90C0AB1E0F04379661F, BC858DF593118712B488B72FAD110FE7F46E1068CE021DBE5593C8880B89D299 ] C:\Program Files\AVAST Software\Avast\aswSqLt.dll
21:33:21.0266 0x2c98 C:\Program Files\AVAST Software\Avast\aswSqLt.dll - ok
21:33:21.0266 0x2c98 [ 971839DDCAD42A1B28B58D7B2C867744, 9E0791F0DD390059C127FD0777A0602B094FEAD9ADA58CC5299669CDCD6F6832 ] C:\Program Files\AVAST Software\Avast\streamback.dll
21:33:21.0266 0x2c98 C:\Program Files\AVAST Software\Avast\streamback.dll - ok
21:33:21.0266 0x2c98 [ 7EF028BF08D65A648CA1CCB990F56E76, 7C0BB0E011E290FEBEB41C12224C8D68809D41B38478A3FD570D040893D57BEF ] C:\Windows\System32\srvcli.dll
21:33:21.0266 0x2c98 C:\Windows\System32\srvcli.dll - ok
21:33:21.0266 0x2c98 [ F95878733369E914AF1305E829B43135, 5B7BD9D37B3EF1AD9CF743A4ADEBBC59E77787B4464A78F9342D0995C8BF3EB8 ] C:\Program Files\AVAST Software\Avast\event_routing.dll
21:33:21.0266 0x2c98 C:\Program Files\AVAST Software\Avast\event_routing.dll - ok
21:33:21.0266 0x2c98 [ 1096F67170CCD4DCE97D2DE3FC421712, A26658A11FB78B9EDB9189A7DF3CB69DF24AF1B57941543F53FE5A90E02FEB8C ] C:\Windows\System32\spoolsv.exe
21:33:21.0266 0x2c98 C:\Windows\System32\spoolsv.exe - ok
21:33:21.0282 0x2c98 [ 4D90BCEA750237CA8E043BB39085F0D7, 1E90C20C8B77292DDBC6888C10A0F139F9ABE992C443F59A29595CFE34C51B89 ] C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
21:33:21.0282 0x2c98 C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll - ok
21:33:21.0282 0x2c98 [ 4F42CBB27A7B4AA26BE4DCCA6C25D136, 0987ABF8212CDC420B0F40E040E4097D414D389DC0010DD58167593E31C6E97D ] C:\Windows\System32\drivers\mpsdrv.sys
21:33:21.0282 0x2c98 C:\Windows\System32\drivers\mpsdrv.sys - ok
21:33:21.0282 0x2c98 [ EE14F8F0269DB5C26D3DAD7B1A65894B, F1BFA7B723B324F78B8DED1597BAD8091FF0298BC8DBAC29FB793F2D33F5456C ] C:\Windows\System32\drivers\bowser.sys
21:33:21.0282 0x2c98 C:\Windows\System32\drivers\bowser.sys - ok
21:33:21.0282 0x2c98 [ 52FF7603F271565717083328A5EAA3D4, 0394A0B4F5C5F8CA7D23946BF8163F33C2BC1BFEAB4A95802CF20D2E580BF650 ] C:\Program Files\AVAST Software\Avast\serialization.dll
21:33:21.0282 0x2c98 C:\Program Files\AVAST Software\Avast\serialization.dll - ok
21:33:21.0282 0x2c98 [ 70FBA82E3B3BC9E053BEEC5C3B57E340, 27DA9FE387A416E0374BF0AE8D69FEA8A42ADC0311FA3AE092020E32897C319A ] C:\Windows\System32\drivers\mrxsmb.sys
21:33:21.0282 0x2c98 C:\Windows\System32\drivers\mrxsmb.sys - ok
21:33:21.0282 0x2c98 [ 15B278D8090743CE107B0E3F96894953, B11E2946EB1A491E656B6A5EB511E8C8E23D3C0AD4FC0B938508AEDF45BDC37E ] C:\Program Files\AVAST Software\Avast\process_monitor.dll
21:33:21.0282 0x2c98 C:\Program Files\AVAST Software\Avast\process_monitor.dll - ok
21:33:21.0298 0x2c98 [ 336626E08C360F7385BC94D1F454A0EF, 825CE0D71C44D07EA9C018D4090D8F40EC3F61685260B4448204A7B6CC046F0C ] C:\Windows\System32\drivers\mrxsmb20.sys
21:33:21.0298 0x2c98 C:\Windows\System32\drivers\mrxsmb20.sys - ok
21:33:21.0298 0x2c98 [ D4A1359A1150D6D01EF6FFD872F3EBD5, E16A831FBD584333364C87EE09D2CF829554BCE133EF7B5D49BF3FFEF319CBEB ] C:\Program Files\AVAST Software\Avast\event_manager.dll
21:33:21.0298 0x2c98 C:\Program Files\AVAST Software\Avast\event_manager.dll - ok
21:33:21.0298 0x2c98 [ B4F3F99989B4F9C195D8228ACA899836, 1EB7AC24346F218BF789B37B8C3CD9E20CE1DADEF14736DF5ECDD3E5B3997C9C ] C:\Windows\System32\NgcCtnrSvc.dll
21:33:21.0298 0x2c98 C:\Windows\System32\NgcCtnrSvc.dll - ok
21:33:21.0298 0x2c98 [ B9BB71BBE52F43CD43016F86CB9004FC, 38DA15DFEABA65871AFFEF411836C8CF79586A77F3C9C9C06B326437599C8029 ] C:\Program Files\AVAST Software\Avast\event_manager_burger.dll
21:33:21.0298 0x2c98 C:\Program Files\AVAST Software\Avast\event_manager_burger.dll - ok
21:33:21.0298 0x2c98 [ 8AB0C55A78B0C18991ACC62C13167DDD, D7E24A6611FEBA7F69E1261B00DE4AB45019EE525B28F45F6AE20E6E11670D52 ] C:\Windows\System32\das.dll
21:33:21.0298 0x2c98 C:\Windows\System32\das.dll - ok
21:33:21.0298 0x2c98 [ 0FD588543A0C7D2ECE62CF10BB4B755C, 6E87D1E5C8FE97BED685CF9EF9029FAD1BF3BAA4B11D69E6A8C7286C21CEAF05 ] C:\Windows\System32\wkssvc.dll
21:33:21.0298 0x2c98 C:\Windows\System32\wkssvc.dll - ok
21:33:21.0298 0x2c98 [ 58E1D1183C5037EC839E295750230D8B, 96F12DD1E1A732E63A87F2CC25133035ACDFDDBD10CA00B75421681C3215C5A6 ] C:\Program Files\AVAST Software\Avast\burger_client.dll
21:33:21.0298 0x2c98 C:\Program Files\AVAST Software\Avast\burger_client.dll - ok
21:33:21.0313 0x2c98 [ F61D80FF10D7E75132BEA2B1054D96F3, CDE134E7E9F35B4A3312877A297C2069768E51303A76F4C76BC10AD6071B661F ] C:\Windows\System32\dsparse.dll
21:33:21.0313 0x2c98 C:\Windows\System32\dsparse.dll - ok
21:33:21.0313 0x2c98 [ 44B4D47F3DDD5DA2E4EE0B328E7F2DC8, F07E5BA7FEEB9A18810D72E6A3A9B769C5A3D88064D71F92784FC8EA0F22491A ] C:\Windows\System32\dasHost.exe
21:33:21.0313 0x2c98 C:\Windows\System32\dasHost.exe - ok
21:33:21.0313 0x2c98 [ 96A1B045EDB74D87CCB618249910EC2D, 82A71FFABCEDFD0A5843908FE2B81468C09B4E006501A1625CC073FAE16B8C9E ] C:\Windows\System32\NgcCtnrGidsHandler.dll
21:33:21.0313 0x2c98 C:\Windows\System32\NgcCtnrGidsHandler.dll - ok
21:33:21.0313 0x2c98 [ 10A457FA29F673B79D2B9946E1130F5B, 4F7CB8954858626384FDEAC9F0BDDAC35E86B6579F206776469DACF6B8DD0BFB ] C:\Program Files\AVAST Software\Avast\network_notifications.dll
21:33:21.0313 0x2c98 C:\Program Files\AVAST Software\Avast\network_notifications.dll - ok
21:33:21.0313 0x2c98 [ EE74C259D01B2FB43650A91F3393783E, 9C523CA31D5E9C674C3A4B5865CA44C10325A4763E2C13558C5A5ACF77202C90 ] C:\Windows\System32\ktmw32.dll
21:33:21.0313 0x2c98 C:\Windows\System32\ktmw32.dll - ok
21:33:21.0313 0x2c98 [ AEEB7F0CE522178AF8FAA82BE1763018, 7BFFB413CD9DA7D4B761213A5D59C0A558B41127AB58CECE56F50005604FD336 ] C:\Program Files\AVAST Software\Avast\event_manager_ga.dll
21:33:21.0313 0x2c98 C:\Program Files\AVAST Software\Avast\event_manager_ga.dll - ok
21:33:21.0313 0x2c98 [ 08DD3B12784ADD5B2EFE9D7A3EB38A06, ED110FC48CC3E22351B954BA37ECBE8FAF37DFB205F5AC9005B81E649BA4452E ] C:\Windows\System32\NgcCtnr.dll
21:33:21.0313 0x2c98 C:\Windows\System32\NgcCtnr.dll - ok
21:33:21.0329 0x2c98 [ 53BA3CE632BFE0759295D9E3464B144C, 89000656E8BAF0652265A5333710018176BDC9886FFD59E96C248DAEDE4C35A1 ] C:\Program Files\AVAST Software\Avast\event_manager_er.dll
21:33:21.0329 0x2c98 C:\Program Files\AVAST Software\Avast\event_manager_er.dll - ok
21:33:21.0329 0x2c98 [ 34D66C9B7DD1BBC3EE3D7ACBF40ADD9F, E74EDB77CF8634E58F2624325C99A672548455BD52B2AEC5EAE37AD92EDCFBDD ] C:\Windows\System32\wlidres.dll
21:33:21.0329 0x2c98 C:\Windows\System32\wlidres.dll - ok
21:33:21.0329 0x2c98 [ 96CC3C9F95CFCDAD5D323F0E2CC831FC, DA2A5C1A016DA5E483B2B45642339F96630CE4D341B2D0E96D0FB2C83C5DC8DD ] C:\Windows\System32\msftedit.dll
21:33:21.0329 0x2c98 C:\Windows\System32\msftedit.dll - ok
21:33:21.0329 0x2c98 [ 0B73AE519C9E1887B18AD44659325CCE, 9F96A91B00BE4120E202F440D4900751301A9074C1B88580BEEA548D6FAB6A2D ] C:\Program Files\AVAST Software\Avast\lim.dll
21:33:21.0329 0x2c98 C:\Program Files\AVAST Software\Avast\lim.dll - ok
21:33:21.0329 0x2c98 [ A5FD513D39B2E6E7B62447E6BBC23630, A9397EBA288A35ED512940DA3AFA0642143D08817BBF70D3272004DE091A356F ] C:\Windows\System32\DeviceCredential.dll
21:33:21.0329 0x2c98 C:\Windows\System32\DeviceCredential.dll - ok
21:33:21.0329 0x2c98 [ 48AC6C1026F06CB797E2D756E16CE75B, FF88852646266A00B13EB2D48A567947D384367A52F40C2788B1E69580480FC1 ] C:\Windows\System32\dafupnp.dll
21:33:21.0329 0x2c98 C:\Windows\System32\dafupnp.dll - ok
21:33:21.0329 0x2c98 [ 224EDC24FDDC7432E4863165DF784860, F6D9F50F81EC3627DB842C6B9CCEB665C5966070CB3E0D9746D4A54D9B105EEF ] C:\Program Files\AVAST Software\Avast\defs\19062404\aswEngin.dll
21:33:21.0329 0x2c98 C:\Program Files\AVAST Software\Avast\defs\19062404\aswEngin.dll - ok
21:33:21.0344 0x2c98 [ C2A28EB2DEB874351A157BD9FC6AB3AA, 35C73A0B3EEBC183A96C173C302D374A4877E81A413B83CBCE688ADE103EE715 ] C:\Program Files\AVAST Software\Avast\defs\19062404\aswCmnIS64.dll
21:33:21.0344 0x2c98 C:\Program Files\AVAST Software\Avast\defs\19062404\aswCmnIS64.dll - ok
21:33:21.0344 0x2c98 [ 9DF8AE3EEF94D2A4BD3BB410B33417F1, 0AD273AD34205BFE9F70C8C67A24CE1CD047034C0EB7ED58D6AFE29C9E287C30 ] C:\Program Files\AVAST Software\Avast\defs\19062404\aswCmnOS.dll
21:33:21.0344 0x2c98 C:\Program Files\AVAST Software\Avast\defs\19062404\aswCmnOS.dll - ok
21:33:21.0344 0x2c98 [ 1E04BB38543AAC33C2E188042040698D, D186B355E6EDAFCB7CAC01CC206CFAB9AA236786E3303300AEC707765D3F656A ] C:\Windows\System32\ssdpsrv.dll
21:33:21.0344 0x2c98 C:\Windows\System32\ssdpsrv.dll - ok
21:33:21.0344 0x2c98 [ D56F547A492FCBA698AB9BB338B29BDF, B1C72210F781A6795CDB9580775CC30F182EB9F89747F3A9CE7A8E6E7CFE3861 ] C:\Program Files\AVAST Software\Avast\defs\19062404\aswCmnBS.dll
21:33:21.0344 0x2c98 C:\Program Files\AVAST Software\Avast\defs\19062404\aswCmnBS.dll - ok
21:33:21.0344 0x2c98 [ 8E50EB2573C3F998860D1DC1347B0554, 0EEB0259F79F623EF96C81543FEA7E2BBC607430466A174783ED9181A49293D6 ] C:\Program Files\AVAST Software\Avast\defs\19062404\aswRep.dll
21:33:21.0344 0x2c98 C:\Program Files\AVAST Software\Avast\defs\19062404\aswRep.dll - ok
21:33:21.0344 0x2c98 [ 879D95C96AFBFDAFC4ABFA9290B82112, 137F7C550C9B1D6D45BC3E7E0A444A49E86A2BD595596175A13DF4697FBF59E9 ] C:\Program Files\AVAST Software\Avast\defs\19062404\aswArray.dll
21:33:21.0344 0x2c98 C:\Program Files\AVAST Software\Avast\defs\19062404\aswArray.dll - ok
21:33:21.0360 0x2c98 [ 653E69CAB1CAA46FB1C5F2B11D46B2AE, C004C269E140B5D527174EB1CF1339EB8977D99AAD8AD9CEF049AB383F671566 ] C:\Program Files\AVAST Software\Avast\defs\19062404\aswFiDb.dll
21:33:21.0360 0x2c98 C:\Program Files\AVAST Software\Avast\defs\19062404\aswFiDb.dll - ok
21:33:21.0360 0x2c98 [ 524E4C8E9834386F57B1CF535DE5A5E6, A1FC34D5C769D1102C491B76F8262DF0F32387AF53124C8DF8CD8617437006C7 ] C:\Program Files\AVAST Software\Avast\defs\19062404\aswCleanerDLL.dll
21:33:21.0360 0x2c98 C:\Program Files\AVAST Software\Avast\defs\19062404\aswCleanerDLL.dll - ok
21:33:21.0360 0x2c98 [ 16D8C386899BE32BD150143776F08AA7, 0CA67168DAA60A0B03D0DA7B0E6C289F13D582208D119B077883127BEFF26B1C ] C:\Windows\System32\Windows.CloudStore.dll
21:33:21.0360 0x2c98 C:\Windows\System32\Windows.CloudStore.dll - ok
21:33:21.0360 0x2c98 [ 96A787B24240E8048C4C9205F39A7F73, 045F44C300D353548286DC6758B98A4A9D24804F0EC4C7B02D53D2D62D910DD8 ] C:\Windows\System32\SettingSync.dll
21:33:21.0360 0x2c98 C:\Windows\System32\SettingSync.dll - ok
21:33:21.0360 0x2c98 [ 56237E2C72C543065EF6A0DD9D5248A0, CF63588EEA96648CC3F7751B024653D636377AEB587D6B09628CACCE8B98A92B ] C:\Windows\System32\shacctprofile.dll
21:33:21.0360 0x2c98 C:\Windows\System32\shacctprofile.dll - ok
21:33:21.0360 0x2c98 [ F6FB56B0019E1EBB807E949DD064605D, 559CDBB312EF563CAD29EEA468175B1640A9DBD654660678400014C181725B93 ] C:\Windows\System32\fhcfg.dll
21:33:21.0360 0x2c98 C:\Windows\System32\fhcfg.dll - ok
21:33:21.0376 0x2c98 [ 1B68FB0E35389DECF9F8E257D8BB867C, BF630A8AD9EA7FCD2E4B4E89DC8E4609DCC5B2D17F03E6A97FC108B44F7DD695 ] C:\Windows\System32\AppxAllUserStore.dll
21:33:21.0376 0x2c98 C:\Windows\System32\AppxAllUserStore.dll - ok
21:33:21.0376 0x2c98 [ B3138B60D413AC8B0F838856610375AC, 3CCA8D1A9C38FA7F32DB749016D9A8D237F046056092D18741F343DF659A0829 ] C:\Windows\System32\DAFWSD.dll
21:33:21.0376 0x2c98 C:\Windows\System32\DAFWSD.dll - ok
21:33:21.0376 0x2c98 [ 43293DAB81C0D59309ABF6BB52F490A5, 87186595B68F9F096A0125717BC85E4E26ACFE6A097C4039FB79AF2D1D49F98A ] C:\Windows\System32\efsutil.dll
21:33:21.0376 0x2c98 C:\Windows\System32\efsutil.dll - ok
21:33:21.0376 0x2c98 [ 7CE9D034ED633FF213BABC432DEFFC9E, 14B0BE646D4B5137B39F921FF891E10046C517A930E60EFED717DC33F1857E50 ] C:\Windows\System32\mpr.dll
21:33:21.0376 0x2c98 C:\Windows\System32\mpr.dll - ok
21:33:21.0376 0x2c98 [ C9276B244EE4E8FC133150BAD1A263D7, C16133410BE3CFC5DFA5B3645E3CEF93910C9181FB937B8F71345C0A80AFA524 ] C:\Windows\System32\drivers\WSDPrint.sys
21:33:21.0376 0x2c98 C:\Windows\System32\drivers\WSDPrint.sys - ok
21:33:21.0376 0x2c98 [ CCE40E0B567093AB00F7D244EBBEEF52, F3D0C77F3E28AC404BF25F24416FDA9A2047751BA542E58579E258BE88C3F969 ] C:\Windows\System32\drivers\WSDScan.sys
21:33:21.0376 0x2c98 C:\Windows\System32\drivers\WSDScan.sys - ok
21:33:21.0376 0x2c98 [ 5403127A6F6BA8B6E51FDCE057D24A34, ABF5747A63C7E02C34F960FACE6FB61B60C50E20F380988A5CC3FA8F1E8AAC87 ] C:\Windows\System32\webio.dll
21:33:21.0376 0x2c98 C:\Windows\System32\webio.dll - ok
21:33:21.0391 0x2c98 [ 259D746528A65ED5953E6294D8EC1507, 40A86A19EF9AFA0021CA59D08454034E6A6C37D620BE583C26E05E1D55D11CA0 ] C:\Windows\System32\sihost.exe
21:33:21.0391 0x2c98 C:\Windows\System32\sihost.exe - ok
21:33:21.0391 0x2c98 [ AC175920EE3AD69645EF9498C6B138EF, 852F77BD33EAC35C8106F1EFDBBC930A9939C235BA25FD599792484D343EC343 ] C:\Windows\System32\cdpusersvc.dll
21:33:21.0391 0x2c98 C:\Windows\System32\cdpusersvc.dll - ok
21:33:21.0391 0x2c98 [ 31F1A664A73A6ECF348E6A40AAE33884, D96EC43E9C26D0340D5B69CD80C9107D637E68E7C1936F7B54933EC88F1915A6 ] C:\Windows\System32\DesktopShellExt.dll
21:33:21.0391 0x2c98 C:\Windows\System32\DesktopShellExt.dll - ok
21:33:21.0391 0x2c98 [ 490669D8EAB8FC43F6F8469920CD4410, 6C106CF541CFE36762112A0501F5F627B4F11BD6310E4C502B252222A146FDDB ] C:\Windows\System32\provplatformdesktop.dll
21:33:21.0391 0x2c98 C:\Windows\System32\provplatformdesktop.dll - ok
21:33:21.0391 0x2c98 [ 5730FC5BCA110A82F699A1DE20A2988F, 19A4C7653971EDDFE5BBD585196153A7617E791AA03AE07B8ACB4F8ED2EF6E0A ] C:\Windows\System32\cdp.dll
21:33:21.0391 0x2c98 C:\Windows\System32\cdp.dll - ok
21:33:21.0391 0x2c98 [ D314A717FA9630AD081C6BDEB4C61016, 41ED39261F76565961742935CC0E22CF59ED9E35F1FA16626DC306A671665002 ] C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll
21:33:21.0391 0x2c98 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll - ok
21:33:21.0391 0x2c98 [ 2BFDD5F2C254A993746C651804CCA3F9, 3E014E8E9A0ED9F73D6039EF145638858DD92E366AC12912AA1B2C296A4F4DE0 ] C:\Windows\System32\ClipboardServer.dll
21:33:21.0391 0x2c98 C:\Windows\System32\ClipboardServer.dll - ok
21:33:21.0407 0x2c98 [ 85BC75452244CC5441EB320CF23B17FD, 763289FA0FC1044827A357FAADFBFB7B155D3FAD9DEC235954808C287A3EA123 ] C:\Windows\System32\ActivationManager.dll
21:33:21.0407 0x2c98 C:\Windows\System32\ActivationManager.dll - ok
21:33:21.0407 0x2c98 [ 98A29FC8A867A5AD942A588844E8F02F, 6FE82B32D876632A9E1A8E1BE60EBD51AA3CA5FDAE7292C49FCDF02B54A832EA ] C:\Windows\System32\AppointmentActivation.dll
21:33:21.0407 0x2c98 C:\Windows\System32\AppointmentActivation.dll - ok
21:33:21.0407 0x2c98 [ 5B4F5B8F36DE5DE960300947E77CDE0A, 7D3728AB6ABE7D103B60A2A869EB2B7C2F720D0630E7FF913055E142E87B86F2 ] C:\Windows\System32\Windows.StateRepositoryCore.dll
21:33:21.0407 0x2c98 C:\Windows\System32\Windows.StateRepositoryCore.dll - ok
21:33:21.0407 0x2c98 [ 6BDFE3C64DCB3FD224FB4722A9E37C0E, F5EC248B79DB3861DB58388C5234879063FAF4BBEAACA7352EE42EB0AF3FA74C ] C:\Windows\System32\TokenBroker.dll
21:33:21.0407 0x2c98 C:\Windows\System32\TokenBroker.dll - ok
21:33:21.0407 0x2c98 [ B10C7C8714D4D279F56072EBAC17F6DD, E4E8328AA54976256824C5016499F11A8F44B9EEA9E83537B061EE32C5D0BB86 ] C:\Windows\System32\WpnUserService.dll
21:33:21.0407 0x2c98 C:\Windows\System32\WpnUserService.dll - ok
21:33:21.0407 0x2c98 [ AA67172F25440A631498E05F13909210, 21515BE768161F6C3EF8ABFFF48C3D2FDA53B8BE55469EE4F869A14CBCB98076 ] C:\Windows\System32\modernexecserver.dll
21:33:21.0407 0x2c98 C:\Windows\System32\modernexecserver.dll - ok
21:33:21.0407 0x2c98 [ 61CE748C4E472632A0BD92A092A18295, E3A9CA4135DB1D678BE474790DA3042CF99426CA06A20148A6B07304602F2FA2 ] C:\Windows\System32\wpncore.dll
21:33:21.0407 0x2c98 C:\Windows\System32\wpncore.dll - ok
21:33:21.0423 0x2c98 [ BE61A748DEE636EEADE8DABA4CAFE6B9, 5BDB88ABC06469ADA325A6B442D07EABFDE0533A033A29B25514285273AADB6E ] C:\Windows\System32\tokenbinding.dll
21:33:21.0423 0x2c98 C:\Windows\System32\tokenbinding.dll - ok
21:33:21.0423 0x2c98 [ 74BA9BF35CDC441A3BC1BCEEE9F86853, 26226F99373CD614B4F9DC58FE92855857DAA8DC859638EB85253AB3BD2F691A ] C:\Windows\System32\winsqlite3.dll
21:33:21.0423 0x2c98 C:\Windows\System32\winsqlite3.dll - ok
21:33:21.0423 0x2c98 [ 3AED567C154DD4B81F88D1C1C6E14AAE, 465BDCD1ECA802F2C934CCFFAD755D1DBE5933FE548CB8A0E48772ECD46752B3 ] C:\Windows\System32\ExecModelClient.dll
21:33:21.0423 0x2c98 C:\Windows\System32\ExecModelClient.dll - ok
21:33:21.0423 0x2c98 [ 1BDFF0FDE360817CD68544138317C569, E647227C4D1655D57D4C4E7BAA30E45B083348A7FFC3B35BD79D97CA2A9297F7 ] C:\Windows\System32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
21:33:21.0423 0x2c98 C:\Windows\System32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll - ok
21:33:21.0423 0x2c98 [ 6046C69FCC228AD619D95A347ED674FB, 91A8872D0CEF481933B6455D7515596046D0CC5D2B234CA7BC992200D431B40F ] C:\Windows\System32\ACPBackgroundManagerPolicy.dll
21:33:21.0423 0x2c98 C:\Windows\System32\ACPBackgroundManagerPolicy.dll - ok
21:33:21.0423 0x2c98 [ 487811250009542E3F8C1CE31D9934F2, 3A668CD1331D60DF1E0AF1824AE8403E17FC6782D64411D2A3A7B7A07895265E ] C:\Windows\System32\WindowManagement.dll
21:33:21.0423 0x2c98 C:\Windows\System32\WindowManagement.dll - ok
21:33:21.0438 0x2c98 [ 945A87A174AD0AF069A61C6D27ADECBD, A1286C32D96DE8A56CF0367E0DEBB530CA38A50634F3BEBEBECBEDC887BE2EF5 ] C:\Program Files\AMD\CNext\CNext\dvrcmd.exe
21:33:21.0438 0x2c98 C:\Program Files\AMD\CNext\CNext\dvrcmd.exe - ok
21:33:21.0438 0x2c98 [ 7A19CFF10AC56B637EA6CD12FA208AB6, 1675EC7D02A061E6E84BEF978795925ACE31CAEE75E7969E84C168CCBA1501E7 ] C:\Program Files\AMD\CNext\CNext\cncmd.exe
21:33:21.0438 0x2c98 C:\Program Files\AMD\CNext\CNext\cncmd.exe - ok
21:33:21.0438 0x2c98 [ 6182C9195911E5930F0227AC02ED143A, EB549E652D0204B203A25EB44C33BCA882A408D4ED9D4C4D990EFADC9D9B7F53 ] C:\Windows\System32\NotificationController.dll
21:33:21.0438 0x2c98 C:\Windows\System32\NotificationController.dll - ok
21:33:21.0438 0x2c98 [ C4A8BC824B88FFDD7EFEB085277D251F, 91A6EA9555B2913E9E51A0925F360ADCB97AC25B01775BA7A59D74AA09771E51 ] C:\Windows\System32\BackgroundMediaPolicy.dll
21:33:21.0438 0x2c98 C:\Windows\System32\BackgroundMediaPolicy.dll - ok
21:33:21.0438 0x2c98 [ 7EBFDCF78039F8A62E76687F29973FDE, DC80D03DBCBB7D276E6D14EC19EAF6A31C6BE4EEFE8562FDF086BF73DF3BE5F6 ] C:\Windows\System32\OneCoreCommonProxyStub.dll
21:33:21.0438 0x2c98 C:\Windows\System32\OneCoreCommonProxyStub.dll - ok
21:33:21.0438 0x2c98 [ 6A698A552CB610D4BFFE1A6655EA70D7, C9A72250A87A599A3E7B1A897F59A39C1DCB1A5DDD71266079922FA5B3FE20AC ] C:\Windows\System32\MDMAgent.exe
21:33:21.0438 0x2c98 C:\Windows\System32\MDMAgent.exe - ok
21:33:21.0454 0x2c98 [ 55DC4D4C1FD151F64C97B3BC4A2E1DE2, 4DB7DD7A51985EA42A8AE4E61F833B49824375CC4406CAA43980DA5580FA2CC9 ] C:\Windows\System32\notificationplatformcomponent.dll
21:33:21.0454 0x2c98 C:\Windows\System32\notificationplatformcomponent.dll - ok
21:33:21.0454 0x2c98 [ 1E2A7282872074D83EC9C44BED474B96, E67C384FE977D5C4980634EA10A8C40BBE0A90A5F3A13C4B2A86D915CD255A26 ] C:\Windows\System32\SmartCardBackgroundPolicy.dll
21:33:21.0454 0x2c98 C:\Windows\System32\SmartCardBackgroundPolicy.dll - ok
21:33:21.0454 0x2c98 [ DEC1456DB4AC64DDB340010E9F344CD2, 8C1E9860B281724A7BBC65C0390501D13780299E266E63B94BF6AE9A8FA0FFBB ] C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll
21:33:21.0454 0x2c98 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll - ok
21:33:21.0454 0x2c98 [ E83B95489A9DB43771C2354C220040D3, 4B209C089394E81389DF8D6CC6D80661FED3A6A7FEC8D3AA21A8DBD32768D0C9 ] C:\Windows\System32\AppContracts.dll
21:33:21.0454 0x2c98 C:\Windows\System32\AppContracts.dll - ok
21:33:21.0454 0x2c98 [ 59A981733013188BF629F246D9B7D12F, C4E13B89E168B5C6BADACE7C5049ABFAF6FDD98E2B7AEB0D74C4463666B901C0 ] C:\Windows\System32\SebBackgroundManagerPolicy.dll
21:33:21.0454 0x2c98 C:\Windows\System32\SebBackgroundManagerPolicy.dll - ok
21:33:21.0454 0x2c98 [ 80F14BC11C374A3AD7F639FCB4CAB329, 3C20EB67B0FE1ADBC42AA768BF0A0C886336AB872708DD1F9EC0F6CCD2EAAE41 ] C:\Windows\System32\MPSSVC.dll
21:33:21.0454 0x2c98 C:\Windows\System32\MPSSVC.dll - ok
21:33:21.0454 0x2c98 [ 15F4D9B956B218A34C3EAC24C9C76A85, 086E4649C237DFF503EDD3E3CFB08CBA9780178EC5EC97555961E6714D3EC418 ] C:\Program Files\AVAST Software\Avast\afwServ.exe
21:33:21.0454 0x2c98 C:\Program Files\AVAST Software\Avast\afwServ.exe - ok
21:33:21.0469 0x2c98 [ 3C96CEF3A4C49B9E0D3D3924E3410F36, 92F5538FD21E7A6311467A9EDCF0E0B3FF2DB00CE6AE5B0A40AA85077B1D503B ] C:\Windows\System32\iphlpsvc.dll
21:33:21.0469 0x2c98 C:\Windows\System32\iphlpsvc.dll - ok
21:33:21.0469 0x2c98 [ 5FA6841638D70FC3761680FF71583787, 82A224FCEA0B070EC43CC0EF4B78838FE1B95789B6CC081EF828F30347F5D22B ] C:\Windows\System32\QuietHours.dll
21:33:21.0469 0x2c98 C:\Windows\System32\QuietHours.dll - ok
21:33:21.0469 0x2c98 [ 3DA919A966BAAAC137DC2E4769D25846, 35248CB92DFFE67D4918D002147C6EE654A61164158F78FC7C4B718D44059A2D ] C:\Program Files\AVAST Software\Avast\afwCore.dll
21:33:21.0469 0x2c98 C:\Program Files\AVAST Software\Avast\afwCore.dll - ok
21:33:21.0469 0x2c98 [ FA99D405ACFBD5D9D70DC8747F932EAF, EB8E5253C1E6F9742486A18C8AB6A9D9DEB54489ED969F97BC0E675817A44797 ] C:\Program Files\AVAST Software\Avast\afwCoreServ.dll
21:33:21.0469 0x2c98 C:\Program Files\AVAST Software\Avast\afwCoreServ.dll - ok
21:33:21.0469 0x2c98 [ F21AEB84889462FCFD29438DBD0B5E89, 26BB120034F4BC3698B1C32AA5BA1F2FBF17FBD5479A8206B10EF4D51ABCBBA2 ] C:\Windows\System32\fwpolicyiomgr.dll
21:33:21.0469 0x2c98 C:\Windows\System32\fwpolicyiomgr.dll - ok
21:33:21.0469 0x2c98 [ B0B5518C66B0004D84728A02FB61F598, 1F8548D547C50A769E05DFB70F797022C592C2C16BBA33D10205817B631F2965 ] C:\Windows\System32\ShareHost.dll
21:33:21.0469 0x2c98 C:\Windows\System32\ShareHost.dll - ok
21:33:21.0485 0x2c98 [ 3D58A31EDE20EF00771B009DDAD17ED3, B71EF87ED0B21863C875F1C604D879A32C30C78845C353F7F68FBD0B93265A35 ] C:\Windows\System32\PlaySndSrv.dll
21:33:21.0485 0x2c98 C:\Windows\System32\PlaySndSrv.dll - ok
21:33:21.0485 0x2c98 [ 973169A51605438142E1D5535725133F, D6385098AE2F2790154EC084267D57C881C3E2E91E12EF4749D43DEBDCA7761B ] C:\Program Files\AVAST Software\Avast\afwRpc.dll
21:33:21.0485 0x2c98 C:\Program Files\AVAST Software\Avast\afwRpc.dll - ok
21:33:21.0485 0x2c98 [ 5EC3FFC9C8BD2585A8AB1CC9304110DC, F670A1BFA05BE91BF60979AED1A034BD95E1A0A71D4B0C98D887F23B8292C98B ] C:\Windows\System32\NetSetupApi.dll
21:33:21.0485 0x2c98 C:\Windows\System32\NetSetupApi.dll - ok
21:33:21.0485 0x2c98 [ 7C0E95B570C2474123B9FC5FFA347E8F, BFDE71C66B63796FB2CA00CD4D8AB45056AF54BC4907D7DE780AF8CCC3D6D11E ] C:\Program Files\AVAST Software\Avast\afwCoreClient.dll
21:33:21.0485 0x2c98 C:\Program Files\AVAST Software\Avast\afwCoreClient.dll - ok
21:33:21.0485 0x2c98 [ 3975AF80B5E031CD0B0BB589C1794D57, 37D20339081A24AA8DAC632CB8E735307148B9D3094A5F96D67877EF401DC49C ] C:\Windows\System32\execmodelproxy.dll
21:33:21.0485 0x2c98 C:\Windows\System32\execmodelproxy.dll - ok
21:33:21.0485 0x2c98 [ 564E279FE93EB2EDE62271ED7083999A, B42C83A3A9D74490B507C50275A146AE99EF87EDC7186574F4FD675782FF172D ] C:\Windows\System32\MsCtfMonitor.dll
21:33:21.0485 0x2c98 C:\Windows\System32\MsCtfMonitor.dll - ok
21:33:21.0485 0x2c98 [ 5BE71F29B26D4CA602C50E23938B451D, FC64D7E5864ABB9AB78E501F792A857555E2082158CF1FC6CFD6F5390908B8DA ] C:\Windows\System32\Windows.Internal.Management.dll
21:33:21.0485 0x2c98 C:\Windows\System32\Windows.Internal.Management.dll - ok
21:33:21.0501 0x2c98 [ 3B9729969F5CE72B685E95559DB9A7EE, 8789911439CFF232E5BA4F55CD477F51112F5A292AB2ABD3FCCC8CD2C5DEFA62 ] C:\Windows\System32\httpprxm.dll
21:33:21.0501 0x2c98 C:\Windows\System32\httpprxm.dll - ok
21:33:21.0501 0x2c98 [ BBE724FAFDEDD7A286817CE8486A5F65, 6DA9AE19EC32775AAE81D6D751372CF66AA5100AC62BC1CC7586F61F43131FC1 ] C:\Windows\System32\msutb.dll
21:33:21.0501 0x2c98 C:\Windows\System32\msutb.dll - ok
21:33:21.0501 0x2c98 [ 742638BB8D6D2DFEA6D8FCEB862F69DB, 9EBBA8E89C22FDAE3F9DEE88B0290DE4CEDF9597F0F41473E9B20413085CD427 ] C:\Windows\System32\Windows.System.Launcher.dll
21:33:21.0501 0x2c98 C:\Windows\System32\Windows.System.Launcher.dll - ok
21:33:21.0501 0x2c98 [ 4057976B2C1BA3978EA92548B140DFEF, B36CC9F423ED93D6702560B71DDAD3D9350E5A31CDB1E1F5B068C4D737AB66DA ] C:\Windows\System32\adhsvc.dll
21:33:21.0501 0x2c98 C:\Windows\System32\adhsvc.dll - ok
21:33:21.0501 0x2c98 [ 39FD8CBDA5610EBDE17DDC383F0FD0B0, 6D1D65708A5E99A44028B4E8910C9126364E9E66A3D7745424451B6DBB1D7204 ] C:\Windows\System32\esent.dll
21:33:21.0501 0x2c98 C:\Windows\System32\esent.dll - ok
21:33:21.0501 0x2c98 [ 231B6CD5E07259681E2F6D9F07929DD4, B2CAE3DE8F5A86304677F79B11F02DE1F39D277DF9CC98F330E61E3B7492A24F ] C:\Windows\System32\PackageStateChangeHandler.dll
21:33:21.0501 0x2c98 C:\Windows\System32\PackageStateChangeHandler.dll - ok
21:33:21.0516 0x2c98 [ 6DCDB3E41F56482326A6EEEA3458CAE4, 5EA04E391584526E83980BA43A353A4D7D92D50415FCDF2A07E3AD24FD5E93C4 ] C:\Windows\System32\NcaSvc.dll
21:33:21.0516 0x2c98 C:\Windows\System32\NcaSvc.dll - ok
21:33:21.0516 0x2c98 [ 56080B9032A439AE2CF71C140BF95B81, 0A393682123222D1BDDFE2D4832B3389C7B6018FBB8916E2B2C510A096685721 ] C:\Windows\System32\adhapi.dll
21:33:21.0516 0x2c98 C:\Windows\System32\adhapi.dll - ok
21:33:21.0516 0x2c98 [ D79C8F7F04616ADF654FBDA9847CF3EB, E7AFD9057D55A493B331981B62F8F08B78FB682DB7313F182036642858CDE6B5 ] C:\Windows\System32\TabSvc.dll
21:33:21.0516 0x2c98 C:\Windows\System32\TabSvc.dll - ok
21:33:21.0516 0x2c98 [ C01513688AC4D8F98C65A2453160D516, 84A627512DF4B0FCF128D58FB4F0EEF2444EE790A0D5AD7462D13637B82834AC ] C:\Windows\System32\twinui.appcore.dll
21:33:21.0516 0x2c98 C:\Windows\System32\twinui.appcore.dll - ok
21:33:21.0516 0x2c98 [ 8ED3E9B5F33CF2951D9D9F0D5E17A10B, 44E4EA6AD17C12E572E94BB7E371C2BEE2778360DBCDA92C479841BF236730A4 ] C:\Windows\System32\HNetCfgClient.dll
21:33:21.0516 0x2c98 C:\Windows\System32\HNetCfgClient.dll - ok
21:33:21.0516 0x2c98 [ BB145A34C6B212B60C278619EE4A3931, 1413504EE1B8DEEB555CD1C2B1FCC9593A12890F9BA59CFFF3456B58E67BB31F ] C:\Windows\System32\httpprxp.dll
21:33:21.0516 0x2c98 C:\Windows\System32\httpprxp.dll - ok
21:33:21.0516 0x2c98 [ 4D4C3855D866CF0797ED3BC0070D5537, FD0F80B1B4F57D9A2104356B46207C9DAC3FA0EF743C0C31FABCA4D896EC9B06 ] C:\Windows\System32\mdmmigrator.dll
21:33:21.0516 0x2c98 C:\Windows\System32\mdmmigrator.dll - ok
21:33:21.0532 0x2c98 [ F6F91998251F48A4F35F11FF21078D69, E945CB50AFED53436EAF58D7AB33D0D8C5B05D69511146693959EC5299A7A650 ] C:\Windows\System32\UiaManager.dll
21:33:21.0532 0x2c98 C:\Windows\System32\UiaManager.dll - ok
21:33:21.0532 0x2c98 [ 27CCFBB6873A88F08797C14C3B75E98B, F5B10140E27D09860F085CEDC64888C9C6B1BEBDA0465AC2342FB7FC010F4FCB ] C:\Windows\System32\wfapigp.dll
21:33:21.0532 0x2c98 C:\Windows\System32\wfapigp.dll - ok
21:33:21.0532 0x2c98 [ 819592EA2C71C0D94A75DFB1389725DF, 08BCC21050D2D0F12F009A615196AEAE4DE2C4E067CE26B6EDDAA2423E0FC23B ] C:\Windows\System32\drivers\srvnet.sys
21:33:21.0532 0x2c98 C:\Windows\System32\drivers\srvnet.sys - ok
21:33:21.0532 0x2c98 [ A1F2CF496F181AA75352E102978E60D0, A0DF21D82DAA60F8181589F4CE96441891B6E13716F353E9D71C8B303CF398D2 ] C:\Windows\System32\ctfmon.exe
21:33:21.0532 0x2c98 C:\Windows\System32\ctfmon.exe - ok
21:33:21.0532 0x2c98 [ 4915C39A06FECF4F516FA806F8ADBD2A, 51D62D031462C3CD623EBB5BD41C0A42BEA16E2D54E48D2BCC279810CF983402 ] C:\Windows\System32\IKEEXT.DLL
21:33:21.0532 0x2c98 C:\Windows\System32\IKEEXT.DLL - ok
21:33:21.0532 0x2c98 [ F47972C77B03F421BE57CFEEE384D98B, 8015327D5DE0E632276B5F6B079DBBFB453872175E463ECC4814E4AA9EB8138C ] C:\Windows\System32\trkwks.dll
21:33:21.0532 0x2c98 C:\Windows\System32\trkwks.dll - ok
21:33:21.0532 0x2c98 [ 093FD1EA9E8863E77ACA35F9C794ACBD, B1F0536C3AED6A7F271E31FCBD23973D42182F7D9F15E62728860CAB24F88CC7 ] C:\Windows\System32\wiaservc.dll
21:33:21.0532 0x2c98 C:\Windows\System32\wiaservc.dll - ok
21:33:21.0548 0x2c98 [ 0C757F912068DD931C2BB80845702779, 9FE5843B1943814B61DD859B313CDC739E0B24CBDC2DDD55D16895E4D445C0D9 ] C:\Windows\System32\cryptsvc.dll
21:33:21.0548 0x2c98 C:\Windows\System32\cryptsvc.dll - ok
21:33:21.0548 0x2c98 [ 5778543F5A5201B9661AFDA420FF0AF6, 26AEBACD5C17F36DE6B6E893B2EFE0D0967813005F90A4ED95C72354152CC58B ] C:\Windows\System32\sstpsvc.dll
21:33:21.0548 0x2c98 C:\Windows\System32\sstpsvc.dll - ok
21:33:21.0548 0x2c98 [ 284A09F32FBC600106261643359173CE, 1C0B364A993A30FCED2978E00CC495848635DF5E22EA6509A13170D9E327C143 ] C:\Windows\System32\wpnservice.dll
21:33:21.0548 0x2c98 C:\Windows\System32\wpnservice.dll - ok
21:33:21.0548 0x2c98 [ FC37ABA7F9026FFB255CEC78AC2410E4, EEBE379C184D39F821BB0B11EB3F7A68EBEF2964CACCCC0197A79A1E770FBCA5 ] C:\Windows\System32\dps.dll
21:33:21.0548 0x2c98 C:\Windows\System32\dps.dll - ok
21:33:21.0548 0x2c98 [ 65AE63EC8F388BB53CBD3D9751464E04, CAC6CD1380CED871283022ACD9EB8DD0AEFE53F056C5425CCA324319F388F4A5 ] C:\Windows\System32\tapisrv.dll
21:33:21.0548 0x2c98 C:\Windows\System32\tapisrv.dll - ok
21:33:21.0548 0x2c98 [ 667EF139A7F3CE53755A1BB4D73F5001, DEFC9A3773A2432CA6182B3027298543E80E352F08BA456DD213AD032FCFBEB3 ] C:\Windows\System32\crypttpmeksvc.dll
21:33:21.0548 0x2c98 C:\Windows\System32\crypttpmeksvc.dll - ok
21:33:21.0563 0x2c98 [ 795ECFEFCAD1D8AB3CCF2F2E6AD98E69, 109790EDAC94786B015AB5D1320E639BE41A131FD19C0C8D606DD002D90A6582 ] C:\Windows\System32\daxexec.dll
21:33:21.0563 0x2c98 C:\Windows\System32\daxexec.dll - ok
21:33:21.0563 0x2c98 [ AFE065F50216E507A24A714C38260436, A33E104F7DDBCED23D831AB99A9EA3B8C1F60BDFAC9968CFAAEF57CBA1C52175 ] C:\Windows\System32\InputService.dll
21:33:21.0563 0x2c98 C:\Windows\System32\InputService.dll - ok
21:33:21.0563 0x2c98 [ 42ABB5DCED014C5F590E93887731D9BC, F857F4B528A128FFCCEAC46ED15D0D8E4F02E5E5C54757E197421AA53C3364E0 ] C:\Windows\System32\wiatrace.dll
21:33:21.0563 0x2c98 C:\Windows\System32\wiatrace.dll - ok
21:33:21.0563 0x2c98 [ 9A6772917441ECF56629E3317865FCD0, 494D7E1664A480C4A54512008CC08E098A8D4A6B9396F6C04621A17D54A9DAF4 ] C:\Windows\System32\cryptcatsvc.dll
21:33:21.0563 0x2c98 C:\Windows\System32\cryptcatsvc.dll - ok
21:33:21.0563 0x2c98 [ AA843CF3C016B79340C6FDACDA20D75D, 1BC8F5BBE7BCBB194406D74FD0EABE763F2F7BBBF6CBC81300355050AB44B675 ] C:\Windows\System32\wdi.dll
21:33:21.0563 0x2c98 C:\Windows\System32\wdi.dll - ok
21:33:21.0563 0x2c98 [ E7EB57DE62BBB16CABC088BB57B6C039, AC346CA15B87005122EBE4AD6913E664B54D34E1BB1780442132F969EABF121D ] C:\Windows\System32\webauthn.dll
21:33:21.0563 0x2c98 C:\Windows\System32\webauthn.dll - ok
21:33:21.0563 0x2c98 [ E202DD92848C5103C9ABF8ECD22BC539, 353F8D4E647A11F235F4262D913F7BAC4C4F266EAC4601EA416E861AFD611912 ] C:\Windows\System32\fltLib.dll
21:33:21.0563 0x2c98 C:\Windows\System32\fltLib.dll - ok
21:33:21.0579 0x2c98 [ D84112C91A334DDA3B378103AE1753E5, 35B225DE5321F81155692F679DF59CE546242A517ACF7628A8549EBA98223626 ] C:\Windows\System32\container.dll
21:33:21.0579 0x2c98 C:\Windows\System32\container.dll - ok
21:33:21.0579 0x2c98 [ 03B741C943867AC9B4742611623842BD, 562F339F605731149C931D21F101EF8CFA20CDE33EB89DD1E747D19C7301A4D6 ] C:\Windows\System32\WSDScDrv.dll
21:33:21.0579 0x2c98 C:\Windows\System32\WSDScDrv.dll - ok
21:33:21.0579 0x2c98 [ CABA725AA198FB1B8FC88BC863BC6C4E, F4A467FFFEA42EC236E7CAFC22DDCE630608722B7DE84806D1C97DCE7A66756E ] C:\Windows\System32\drivers\mmcss.sys
21:33:21.0579 0x2c98 C:\Windows\System32\drivers\mmcss.sys - ok
21:33:21.0579 0x2c98 [ E4C54839C48E107947507A1FE11168B3, 6DF271EB46510A1692D1029840EC409DA204669CF07FE36393042A17E1E72940 ] C:\Program Files\AVAST Software\Avast\defs\19062404\fwAux.dll
21:33:21.0579 0x2c98 C:\Program Files\AVAST Software\Avast\defs\19062404\fwAux.dll - ok
21:33:21.0579 0x2c98 [ 39AEEDCA4F1A185F0CC702CA81C8AE57, 99D1B9FDB14FE1705BF7674957755BBCA99993AB7D5DB443EE2F52E5AD2A4EBF ] C:\Windows\System32\diagperf.dll
21:33:21.0579 0x2c98 C:\Windows\System32\diagperf.dll - ok
21:33:21.0579 0x2c98 [ 7142D60D37CED14EAEFA178BC2AC4EF2, 08AA0137BB77FFF5896730318B859FF676105BCD88D0FAF9E122CB144414AB00 ] C:\Windows\System32\mssrch.dll
21:33:21.0579 0x2c98 C:\Windows\System32\mssrch.dll - ok
21:33:21.0579 0x2c98 [ 32E56383D79742D66FBCC4A94E2BFCC2, EC895532D3B54FC5EC0993B17AF549B891D7783EE8E38C5FB808B8185821172E ] C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.18362.175_none_17ae9e046da28e97\GdiPlus.dll
21:33:21.0579 0x2c98 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.18362.175_none_17ae9e046da28e97\GdiPlus.dll - ok
21:33:21.0594 0x2c98 [ 457CB99DFD97BF60B1B18534C7503B6E, E281B8659BD55054E427CB20F16E958893E37BA4FFC4817D3B74887F9E68AE92 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
21:33:21.0594 0x2c98 C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe - ok
21:33:21.0594 0x2c98 [ 4138FBE12D58ED111329F97A46BC3C23, 213BA4830C9F4F979E03CF87CAB571E1053912CA2EF9D90DCB8BAEAC31A35995 ] C:\Windows\System32\TextInputMethodFormatter.dll
21:33:21.0594 0x2c98 C:\Windows\System32\TextInputMethodFormatter.dll - ok
21:33:21.0594 0x2c98 [ 834ACE6CC3C88EE8531FED87D7ECC8AB, 3DD1F7A34F2A6E5E08BF2EE991ADB24555C15B897FCA8372561EB6E4027204E0 ] C:\Windows\System32\tquery.dll
21:33:21.0594 0x2c98 C:\Windows\System32\tquery.dll - ok
21:33:21.0594 0x2c98 [ 6EA68C9EE76B7CC7FC556AE5FD184B5A, F0E5BDD8432F7BE76211CBF4A4D75A916C9EEC59D7C608DE30A49B5A87CE08C1 ] C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
21:33:21.0594 0x2c98 C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe - ok
21:33:21.0594 0x2c98 [ 5FB1A8EB513DD1CB6D03C445615C6C7E, C6F62D45900F93F473FE448EB30DFA8AB6221244FDD618D6F6E19524893C1BCB ] C:\Program Files (x86)\Origin\OriginWebHelperService.exe
21:33:21.0594 0x2c98 C:\Program Files (x86)\Origin\OriginWebHelperService.exe - ok
21:33:21.0594 0x2c98 [ F6B065D52A8AD398C9509D43FC8E470D, 29245277CE9B8521D4682F74A83F7378D9B3322AE8884FB9FCBD7997F68B67F0 ] C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe
21:33:21.0594 0x2c98 C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe - ok
21:33:21.0610 0x2c98 [ 61DC656EB0E3BB3BEF70D10E626F6C09, 798B6EE8B9C6365384FE13C7C0EB5FF67D7FE9FFB9468A5CAA682EA207BF2F32 ] C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
21:33:21.0610 0x2c98 C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe - ok
21:33:21.0610 0x2c98 [ A0DA67EC91399531E79B774383278D09, 34310C911B9A48F127023CF923D3EE05BF8486CB081E06663BBD91175DFCA64C ] C:\Windows\System32\drivers\mqac.sys
21:33:21.0610 0x2c98 C:\Windows\System32\drivers\mqac.sys - ok
21:33:21.0610 0x2c98 [ 34B6706F1E043CCD534A9DB9CBBE2DAA, 16B415C7559050732E2BC78C6742967189D3A7BE9421C33CA27F0B6B19C2BE66 ] C:\Windows\System32\pnpts.dll
21:33:21.0610 0x2c98 C:\Windows\System32\pnpts.dll - ok
21:33:21.0610 0x2c98 [ EC148CAC12083B35E2B58EB0779AC2CA, D9B6662CDD7933BB9E5C9C36F49B39D7D2C7BE89066CF0B41C9062779DA6C042 ] C:\Windows\System32\TileDataRepository.dll
21:33:21.0610 0x2c98 C:\Windows\System32\TileDataRepository.dll - ok
21:33:21.0610 0x2c98 [ 6794A5A4148E46450342538502B9E00C, 44F20CD74D834AF7CBAFDDB27EB7F45C1BE540C42B5F60054B705CD663F37B32 ] C:\Windows\System32\wsdchngr.dll
21:33:21.0610 0x2c98 C:\Windows\System32\wsdchngr.dll - ok
21:33:21.0610 0x2c98 [ EF5014472A2A0DD29E8C132A5700005A, 63D049C0603DDCEC860C0C4CCC5AD0468DAC003FC8E1AA774336B0E164CD7AD2 ] C:\Windows\SysWOW64\ntdll.dll
21:33:21.0610 0x2c98 C:\Windows\SysWOW64\ntdll.dll - ok
21:33:21.0610 0x2c98 [ DE7FCC77F4A503AF4CA6A47D49B3713D, 4BFAA99393F635CD05D91A64DE73EDB5639412C129E049F0FE34F88517A10FC6 ] C:\Windows\System32\drivers\npf.sys
21:33:21.0610 0x2c98 C:\Windows\System32\drivers\npf.sys - ok
21:33:21.0626 0x2c98 [ 3CA73A784270B1A63F0737A66F52209A, CD4D05E368C24E34BEF9EFA1BD452E25A1F16D230E9A64F9E4DFD0DCF4FE06FC ] C:\Windows\System32\MTFServer.dll
21:33:21.0626 0x2c98 C:\Windows\System32\MTFServer.dll - ok
21:33:21.0626 0x2c98 [ D91335F8D1F3010DACC66D34C5DA4DFF, E3BE1A38E3B61746F1E3976C6AA7C90EEDCBC19AA3C95FD5605B6194A73DA9B7 ] C:\Windows\System32\perftrack.dll
21:33:21.0626 0x2c98 C:\Windows\System32\perftrack.dll - ok
21:33:21.0626 0x2c98 [ 9C593B783915A79995707AFA5038BBBB, 541A5F22708980F133E3B6C0AA0AD3AAA428069775FD5A32570A51A3454F0C1D ] C:\Windows\SysWOW64\kernel32.dll
21:33:21.0626 0x2c98 C:\Windows\SysWOW64\kernel32.dll - ok
21:33:21.0626 0x2c98 [ 66836116657794D2B4192A808E112ABA, 5F6AA949DA677552DBFBD759CD92183D274EE4BA78C97FB6581D55DD6FD7DB3C ] C:\Program Files\Common Files\microsoft shared\ClickToRun\vcruntime140.dll
21:33:21.0626 0x2c98 C:\Program Files\Common Files\microsoft shared\ClickToRun\vcruntime140.dll - ok
21:33:21.0626 0x2c98 [ 340AC1BF4E5727DC58E16E9F0806B36F, 5BFB10B9BAECBCBC6C8E61FF3E9D82CB3F1779681268687AFB742B015C5F1740 ] C:\Windows\System32\drivers\Ndu.sys
21:33:21.0626 0x2c98 C:\Windows\System32\drivers\Ndu.sys - ok
21:33:21.0626 0x2c98 [ E4C666F8DA8FE9ADAA4B271229A38DA6, ED0CE552CF3C83DA274BF00A63CAB78F25018850E8E168964A67592E226E359D ] C:\Windows\System32\InputLocaleManager.dll
21:33:21.0626 0x2c98 C:\Windows\System32\InputLocaleManager.dll - ok
21:33:21.0641 0x2c98 [ 4EEBB4F42CCFC52BECFE64285D835E07, 3D1099A0B4C85BEECB6FBC47BA38F890C1A888874D430E770F56BDD8B4EB62C2 ] C:\Windows\System32\Windows.Networking.Connectivity.dll
21:33:21.0641 0x2c98 C:\Windows\System32\Windows.Networking.Connectivity.dll - ok
21:33:21.0641 0x2c98 [ 7DD7A2D9B7F36BD927BD5FDEFCC499EB, 8D26732FE7F32B16A9A33B5E6B999FEF37B39EB46AE4E2E7A68B575D271ED710 ] C:\Windows\SysWOW64\KernelBase.dll
21:33:21.0641 0x2c98 C:\Windows\SysWOW64\KernelBase.dll - ok
21:33:21.0641 0x2c98 [ 635F58FBC0BA6C2B2F36FFFE66200AD6, 34E000CAC2B5D89ED287535757042CE48963CD8B6553684A7D31803723D52710 ] C:\Windows\System32\CoreShellExtFramework.dll
21:33:21.0641 0x2c98 C:\Windows\System32\CoreShellExtFramework.dll - ok
21:33:21.0641 0x2c98 [ 5C28980D6DF62656ADACDA185AC99416, 341A98A5E38E55FC97AF2526396421125A220AFA28614753CC7CCC7D9C34EF01 ] C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
21:33:21.0641 0x2c98 C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe - ok
21:33:21.0641 0x2c98 [ 39C1A0150B844E75B7B510C064D409D7, 7A331DD98B8BB126A3F782B5E5994E650E8CE131D60085DB4B4FDEB8C84300C9 ] C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
21:33:21.0641 0x2c98 C:\Program Files\AVAST Software\Avast\wsc_proxy.exe - ok
21:33:21.0641 0x2c98 [ 65BDF7F28D391AC160FEDCED5145CB23, CD6085337991A516C0855284D21CADAE8F9B41900585583D521DBA1B3CC5D158 ] C:\Windows\System32\radardt.dll
21:33:21.0641 0x2c98 C:\Windows\System32\radardt.dll - ok
21:33:21.0641 0x2c98 [ CFF1E33FD0FD2DAB8A21C29153BE3983, 60E6A38B5FDF822ABA36AA0A7C42C745C3E7251CE2FCA8F98EBCA7DB5204987E ] C:\Program Files\Common Files\microsoft shared\ClickToRun\ApiClient.dll
21:33:21.0641 0x2c98 C:\Program Files\Common Files\microsoft shared\ClickToRun\ApiClient.dll - ok
21:33:21.0657 0x2c98 [ 9F9C1B7E9A302A77F9C1EC5AA2E8FB18, 96E5365462A915BCBC2023F30C771B1F281F2BDA27DD0F83A6B45E81896C5C19 ] C:\Windows\System32\fdPnp.dll
21:33:21.0657 0x2c98 C:\Windows\System32\fdPnp.dll - ok
21:33:21.0657 0x2c98 [ 93F726B446AC319A49FEF3A607B402A8, 363025A239010531A712AA264DA75EEC05CC0B23628F0BE26433AF8E33B5E31D ] C:\Windows\System32\RstrtMgr.dll
21:33:21.0657 0x2c98 C:\Windows\System32\RstrtMgr.dll - ok
21:33:21.0657 0x2c98 [ C38400AE5870E547B4633EE07887BA3D, 2BFE17524DF5E9419ABA562922681696454D647425C0B43829AF2E6B5AA47A0F ] C:\Program Files\AVAST Software\Avast\wsc.dll
21:33:21.0657 0x2c98 C:\Program Files\AVAST Software\Avast\wsc.dll - ok
21:33:21.0657 0x2c98 [ FE1B5597C05DA6960FDAF995F60B043C, 10A9D4BCB4DEB3E6A5E78120CE48C26371A90C807E969C142AF1ACF7D61F764C ] C:\Windows\System32\dui70.dll
21:33:21.0657 0x2c98 C:\Windows\System32\dui70.dll - ok
21:33:21.0657 0x2c98 [ 817DDF7FC186AC0140F13652C30F5D98, 666213B2C24AA522BDA90C28CD511D2259589828F92A672BD720D3F84B884CEF ] C:\Windows\System32\wpnprv.dll
21:33:21.0657 0x2c98 C:\Windows\System32\wpnprv.dll - ok
21:33:21.0657 0x2c98 [ DF9A3C43493C62853D4DA23AF97D97C2, 2F60F955B0CB7BCC95CD40269017B865DD4A7335D91A3D6942EFBD1302CACDED ] C:\Windows\SysWOW64\advapi32.dll
21:33:21.0657 0x2c98 C:\Windows\SysWOW64\advapi32.dll - ok
21:33:21.0673 0x2c98 [ 4E7FBE38E5A7B6054DC7C33C62B87651, FA239E1F8B6883FFBB78F207B1D24BAF705876373EE416052D035021626E2E4B ] C:\Windows\SysWOW64\gdi32.dll
21:33:21.0673 0x2c98 C:\Windows\SysWOW64\gdi32.dll - ok
21:33:21.0673 0x2c98 [ 5AA0F4573AB4E6B12E0542A23857E1EE, 5B0E0370147F2BAA891CD7ED7CC9008511CCA225EB9DDC0F1EAF8EE247C6C81D ] C:\Windows\SysWOW64\user32.dll
21:33:21.0673 0x2c98 C:\Windows\SysWOW64\user32.dll - ok
21:33:21.0673 0x2c98 [ 51A08192752EDFDD0BA99ADB7032A239, 8EB1D03DD3E18681CAD35F0D1E14874CABD200C345682D03AF1B724645C4EC8A ] C:\Windows\SysWOW64\shlwapi.dll
21:33:21.0673 0x2c98 C:\Windows\SysWOW64\shlwapi.dll - ok
21:33:21.0673 0x2c98 [ E3DFB67351E42781F48CE94DCEF81FC4, 77DF2328893C8463E930E7D83B6703ADD9E4694D5680749CD85AB4E5BD1F1E4A ] C:\Program Files\Common Files\microsoft shared\ClickToRun\msvcp140.dll
21:33:21.0673 0x2c98 C:\Program Files\Common Files\microsoft shared\ClickToRun\msvcp140.dll - ok
21:33:21.0673 0x2c98 [ 14C8B0D022CDD56939E5385CBCAB60A6, A80846377F8E6BAAD467F4B0064CF929CF51629BAAF47044B7CB3F3C4E627476 ] C:\Windows\SysWOW64\msvcrt.dll
21:33:21.0673 0x2c98 C:\Windows\SysWOW64\msvcrt.dll - ok
21:33:21.0673 0x2c98 [ 6BB995D0395C886BA21C9241E92A0E55, 457992FC90BFBFFCB028B222669BE5F5E57DAA45BB9AC97949670101D48D5025 ] C:\Windows\SysWOW64\win32u.dll
21:33:21.0673 0x2c98 C:\Windows\SysWOW64\win32u.dll - ok
21:33:21.0673 0x2c98 [ 72B2DA51CBB7B3E8785AE4776AEF2CB7, 09ECEB71DE269BBBB4AB4E826F80D6840814DBFF0AC3951C796C9A530B722F93 ] C:\Windows\System32\dusmapi.dll
21:33:21.0673 0x2c98 C:\Windows\System32\dusmapi.dll - ok
21:33:21.0688 0x2c98 [ DB1CAB7588B1B321850E6804CE3B1521, CB115BFE9BED68D4A6ED699B28BB6A91E551792CBE971468835F55684A7D25D2 ] C:\Windows\System32\drivers\PEAuth.sys
21:33:21.0688 0x2c98 C:\Windows\System32\drivers\PEAuth.sys - ok
21:33:21.0688 0x2c98 [ 6B7624996FB7D631C60B2A60E3D87DB1, E9126B0A7BB7E2B3FFB97F344C77191916EFD92B2EC71BF3AE39816B0A86278D ] C:\Windows\System32\ResetEngine.dll
21:33:21.0688 0x2c98 C:\Windows\System32\ResetEngine.dll - ok
21:33:21.0688 0x2c98 [ 5202DB72736BCD22BFEE0D4A22330033, D5624FBC93483D33AA5BDB2291CF93502C752DAC81DBB481BF97CF83B3144CD3 ] C:\Windows\SysWOW64\combase.dll
21:33:21.0688 0x2c98 C:\Windows\SysWOW64\combase.dll - ok
21:33:21.0688 0x2c98 [ 706429DF1055E10494885B39C35F55B1, CD17FAA34AF42758430919A036A8F804BA1A8520CFD0FCDFDF3FACD4E4B56E2A ] C:\Windows\SysWOW64\rpcrt4.dll
21:33:21.0688 0x2c98 C:\Windows\SysWOW64\rpcrt4.dll - ok
21:33:21.0688 0x2c98 [ 531A78DDEEDB090EB35BAEFA8101229B, 8300C82B2FB2533E05EA97E45A3552387DA016B43CEF95F3B62D4F53354C0F80 ] C:\Windows\SysWOW64\sechost.dll
21:33:21.0688 0x2c98 C:\Windows\SysWOW64\sechost.dll - ok
21:33:21.0688 0x2c98 [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] C:\Windows\SysWOW64\speedfan.sys
21:33:21.0688 0x2c98 C:\Windows\SysWOW64\speedfan.sys - ok
21:33:21.0688 0x2c98 [ BA380711ACDA591685CFBAF26676A51F, 57835DB16F427A773A12F456B3C6ED4CF587D7FC0E3D239106C04F49BF64DA5E ] C:\Windows\System32\atl.dll
21:33:21.0688 0x2c98 C:\Windows\System32\atl.dll - ok
21:33:21.0704 0x2c98 [ 6A6D4EE00469704BC0091AF5AC73C6DD, E2504FCFF084F8004BD5EA3735426D2DDEBF4372A7512EEFF4CB13076C77C213 ] C:\Windows\System32\drivers\tcpipreg.sys
21:33:21.0704 0x2c98 C:\Windows\System32\drivers\tcpipreg.sys - ok
21:33:21.0704 0x2c98 [ 428BEFFB462A84C2C0ED2D489D80B545, F2418933E914532D4885B90438E6AE85B6E07D4FF03921F800FE83164A09BEA7 ] C:\Windows\System32\msi.dll
21:33:21.0704 0x2c98 C:\Windows\System32\msi.dll - ok
21:33:21.0704 0x2c98 [ 2F04E70138975D6F07BBFF8537F010DD, 86DE369322164CF4483284F874AC7FD28B0EE7B721D90FA3ED488FC3205C2EB9 ] C:\Windows\SysWOW64\gdi32full.dll
21:33:21.0704 0x2c98 C:\Windows\SysWOW64\gdi32full.dll - ok
21:33:21.0704 0x2c98 [ E10FBE976FD4B1A9BF7E6E8EC02D4D5C, A214DA23BDB7EDD4D1A053E6B913C68315C4668C6EC958A586A257B6A143E781 ] C:\Windows\SysWOW64\sspicli.dll
21:33:21.0704 0x2c98 C:\Windows\SysWOW64\sspicli.dll - ok
21:33:21.0704 0x2c98 [ A20AAB46167FFB31E2D1B243E8013F2B, C5C7468E998B13B6A65788C988C327D6E41924C8355CB47D4348AB8C2D5F5874 ] C:\Windows\SysWOW64\ucrtbase.dll
21:33:21.0704 0x2c98 C:\Windows\SysWOW64\ucrtbase.dll - ok
21:33:21.0704 0x2c98 [ BD48763BC6A474E5E53E0FED30FC9C23, A034B8DAE5EA4C84C3A33711EDC3C32B606F00B03FB6132518A56BA032B567EC ] C:\Windows\SysWOW64\bcryptprimitives.dll
21:33:21.0704 0x2c98 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
21:33:21.0704 0x2c98 [ 4F66B719C3DCEB50A4A568FA93CD2DC3, C4D6D1B372BBB3A3B668B8B953FBE0C64FF677232F2BE9A9EAA4E3709F4AD6F3 ] C:\Windows\SysWOW64\cryptbase.dll
21:33:21.0704 0x2c98 C:\Windows\SysWOW64\cryptbase.dll - ok
21:33:21.0719 0x2c98 [ 4BE9228E2B5FC780BE48697C17A741E3, 13DF27669EEF36FCB8D95F6A712FD44452CEF7CFA8BCACEBF2F989FCA8CEA10E ] C:\Windows\System32\drivers\srv2.sys
21:33:21.0719 0x2c98 C:\Windows\System32\drivers\srv2.sys - ok
21:33:21.0719 0x2c98 [ D401A3A4F75E146FB68B95A6F093237D, 7A3E16C56751AF47B875B2D7D62567CD585E5EBB1704265F8AF1980672591BEA ] C:\Windows\SysWOW64\msvcp_win.dll
21:33:21.0719 0x2c98 C:\Windows\SysWOW64\msvcp_win.dll - ok
21:33:21.0719 0x2c98 [ B36170EDB03BD7C01420442A2064214E, 2B7D03E47FD914F4D3B74194A2F79C3CFA5529CA3256C59421E2319914920187 ] C:\Windows\SysWOW64\crypt32.dll
21:33:21.0719 0x2c98 C:\Windows\SysWOW64\crypt32.dll - ok
21:33:21.0719 0x2c98 [ 6D57383093A68B01441569ED9104C8B4, 8CB5ED05544C3ECA714B9F4165B9C3A03111AAFC457BF17425F3CF27A34D0533 ] C:\Windows\SysWOW64\comdlg32.dll
21:33:21.0719 0x2c98 C:\Windows\SysWOW64\comdlg32.dll - ok
21:33:21.0719 0x2c98 [ 8F66627141F0E8E6B54FC37075175743, C43C78494F82C443AD48B3616D90ED51FE917FA3D1E0BA9C5BB6C9A93C6F42DB ] C:\Windows\SysWOW64\oleaut32.dll
21:33:21.0719 0x2c98 C:\Windows\SysWOW64\oleaut32.dll - ok
21:33:21.0719 0x2c98 [ FE1C387B8C3BC89D907D3BB06F83315F, F5F219A3D68914571DCC514AD418F8681E03D120090E2ED39ED4557D6BD1F0AF ] C:\Windows\System32\drivers\rassstp.sys
21:33:21.0719 0x2c98 C:\Windows\System32\drivers\rassstp.sys - ok
21:33:21.0735 0x2c98 [ 6206506DDECBF5E5DD220507D4AB5504, D0CEE8D015B4D4329FEF39AF9079155517360BD170E266E75C79AF81720E2488 ] C:\Windows\System32\ncryptsslp.dll
21:33:21.0735 0x2c98 C:\Windows\System32\ncryptsslp.dll - ok
21:33:21.0735 0x2c98 [ 7445884AB1995E1605840E5C8947DDA3, FC7817855F8CA8616BD5A941992468E6EB7FFFCAA21E332C3E4B832E7CA92EF4 ] C:\Windows\System32\srvsvc.dll
21:33:21.0735 0x2c98 C:\Windows\System32\srvsvc.dll - ok
21:33:21.0735 0x2c98 [ 5E66A3ED8F267AA2CCEA3FFCFE9FFECC, 998BF96D571D1F4193C8389367A237719848483082F2C953921148D034423BF9 ] C:\Windows\SysWOW64\msasn1.dll
21:33:21.0735 0x2c98 C:\Windows\SysWOW64\msasn1.dll - ok
21:33:21.0735 0x2c98 [ E68ECC5F0EF31FB18D15C6D602C10879, 5A6D1CFBC6FCB6EA9B81BB1ACD74A73EE6A7126B2FBBEB129C3D6CBAA2E64223 ] C:\Program Files (x86)\Origin\Qt5Network.dll
21:33:21.0735 0x2c98 C:\Program Files (x86)\Origin\Qt5Network.dll - ok
21:33:21.0735 0x2c98 [ 062DA346E0E6DA8329030BF89B0515FD, 5D023B9F25591C2786487F9D93CD90B7546C322CF7519BE1A9D9734DFC6CCECB ] C:\Windows\System32\ncryptprov.dll
21:33:21.0735 0x2c98 C:\Windows\System32\ncryptprov.dll - ok
21:33:21.0735 0x2c98 [ 4C6B9E494678FD0985D29C76DC015AA0, 44F7B23325B7389B44496FE3F4571353E2DE8B48668EAFE2C59D1AC502152C84 ] C:\Windows\SysWOW64\ole32.dll
21:33:21.0735 0x2c98 C:\Windows\SysWOW64\ole32.dll - ok
21:33:21.0735 0x2c98 [ 19124084CD600940DD99284E36BFCC28, 5AE75CD50F2ED85D5365365269398B3080D170A28E0C668CA4A607E71193229C ] C:\Program Files (x86)\Origin\Qt5Core.dll
21:33:21.0735 0x2c98 C:\Program Files (x86)\Origin\Qt5Core.dll - ok
21:33:21.0751 0x2c98 [ DC6C29C47D56397130EC24FD39B8861E, 6800E2B9CB4A0278F49E9DBAD880CCC6171570ACC7FED9D6DCA14F65F45E8A03 ] C:\Windows\System32\MTF.dll
21:33:21.0751 0x2c98 C:\Windows\System32\MTF.dll - ok
21:33:21.0751 0x2c98 [ EE38E325722949712AA76E6EEFEA5BB8, D41D7BAD91A416D9ABC2309F1BAA87131F06E7DD95E2D3F635B7D8AFF82275B7 ] C:\Windows\SysWOW64\msimg32.dll
21:33:21.0751 0x2c98 C:\Windows\SysWOW64\msimg32.dll - ok
21:33:21.0751 0x2c98 [ AEDCEEFE8452C230E0860E8EE1AAB8CA, 8D0461045E99201B8BD07FBB574702985310D314167D961CAF1AE661BCACB653 ] C:\Windows\SysWOW64\SHCore.dll
21:33:21.0751 0x2c98 C:\Windows\SysWOW64\SHCore.dll - ok
21:33:21.0751 0x2c98 [ 18F0013B50FACC5ACADD267D537F0EF1, 4424E234BF5EAADB7DB444ECEB3AF8CF398EE774BDB0E23E1C0B6BDECE727C6B ] C:\Windows\System32\drivers\ndproxy.sys
21:33:21.0751 0x2c98 C:\Windows\System32\drivers\ndproxy.sys - ok
21:33:21.0751 0x2c98 [ F496A7632A9A6416D2FD2FDA687721BB, 787607E339DC23120ED95D2ECCE0768D91F7836064973274CF26C888C9EAD68C ] C:\Windows\System32\sscore.dll
21:33:21.0751 0x2c98 C:\Windows\System32\sscore.dll - ok
21:33:21.0751 0x2c98 [ 71B4B353057E530969B21666C02E1B94, 4808168765AB91960B56DE4630E1506B5F2879705F9793126B1316130A976805 ] C:\Windows\SysWOW64\ws2_32.dll
21:33:21.0751 0x2c98 C:\Windows\SysWOW64\ws2_32.dll - ok
21:33:21.0751 0x2c98 [ 5656992AA07675F676F29C378C67FABB, 2510ECDA72E9323B0DF827164D63ECFBE965D02790C3E5DB675A3CEE066E83C5 ] C:\Program Files (x86)\Origin\Qt5Widgets.dll
21:33:21.0751 0x2c98 C:\Program Files (x86)\Origin\Qt5Widgets.dll - ok
21:33:21.0766 0x2c98 [ 248A20F70D8DB28212A8B78FDCA60E8B, 12D80F08CD33B9EE1DF9D7091329B7441B086FEAFA396398435EF7A2C963FAFF ] C:\Windows\System32\dssenh.dll
21:33:21.0766 0x2c98 C:\Windows\System32\dssenh.dll - ok
21:33:21.0766 0x2c98 [ C239B212BBBC4722E79539FA499F6AEB, 886FADC250ED66A205F8BA1BE1D373D4F7C80B880D8249656347E6EF704E2B0F ] C:\Windows\SysWOW64\shell32.dll
21:33:21.0766 0x2c98 C:\Windows\SysWOW64\shell32.dll - ok
21:33:21.0766 0x2c98 [ A046D82D5BEF5D1C08436DA4496FA3CC, C36E0E0A0311C3516ABE3220D22B8B87A7DDC2026BC8C6B93E97D49C819E1B8E ] C:\Windows\System32\sscoreext.dll
21:33:21.0766 0x2c98 C:\Windows\System32\sscoreext.dll - ok
21:33:21.0766 0x2c98 [ 774997BD018A0CC54C42BB545EBB400C, 7BF763DAB6EC4C1840E1EC884E23C42AB78AB1E59D706B7FA994025C8D31219A ] C:\Windows\SysWOW64\msvcp140.dll
21:33:21.0766 0x2c98 C:\Windows\SysWOW64\msvcp140.dll - ok
21:33:21.0766 0x2c98 [ C594A3EC9DEC4F7AC6E36BCAA14A11A8, 723E38C7F34B540A2F8CB91A0D53F65A33117D9FA2C408363B1A806CB6AAAE9C ] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.18362.175_none_71d750ad5ae3c5a6\comctl32.dll
21:33:21.0766 0x2c98 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.18362.175_none_71d750ad5ae3c5a6\comctl32.dll - ok
21:33:21.0766 0x2c98 [ C662B3B48B1460AD6DDCB6BA2CA69A10, A1667D0D212BDE2DF1F28526A35D2D29D49FF5696F64CAF72D4BFA9DEFABCDA2 ] C:\Windows\System32\mi.dll
21:33:21.0766 0x2c98 C:\Windows\System32\mi.dll - ok
21:33:21.0782 0x2c98 [ D101E825371DBE0845B9E08F1C091FBF, 85C7857C7D9C90301739B886DE7395615D9D2421EF4AAAF2716EDAD893AD5196 ] C:\Windows\System32\mskeyprotect.dll
21:33:21.0782 0x2c98 C:\Windows\System32\mskeyprotect.dll - ok
21:33:21.0782 0x2c98 [ 0401E6B46A2158A1E7BDE58AC163BD1B, 6028B8AC3473A4E71442C31607C0DC89D0CAAE3A16D6DBA0717B525FFE2C4FED ] C:\Windows\System32\rasmans.dll
21:33:21.0782 0x2c98 C:\Windows\System32\rasmans.dll - ok
21:33:21.0782 0x2c98 [ FA83F6215D5AAD7B601AA5A50DE35750, C2DC55884E167B603336C4494A5D783BB091A0186ACB2CF26AC8BDD27EBC49B1 ] C:\Windows\System32\miutils.dll
21:33:21.0782 0x2c98 C:\Windows\System32\miutils.dll - ok
21:33:21.0782 0x2c98 [ 445DB74963FCD0303CBDB186DD786F2C, 62E1E73145B435EE16AE62340F948BF1B556CF590CE0AC3139F4CC514990CDA0 ] C:\Windows\SysWOW64\cfgmgr32.dll
21:33:21.0782 0x2c98 C:\Windows\SysWOW64\cfgmgr32.dll - ok
21:33:21.0782 0x2c98 [ 23E73E7D3B304E661DC14F8D7217872C, C055D3F7D818CCD88A6D1DB2071A8E3946259E574FF00FFE10B66F37B0683CA3 ] C:\Windows\SysWOW64\dnsapi.dll
21:33:21.0782 0x2c98 C:\Windows\SysWOW64\dnsapi.dll - ok
21:33:21.0782 0x2c98 [ FB360A9A2D2131C9B4F2272B65370D0C, B50350C40C642DDEB1ABFCC80F90FA3BB60E0954417B0B86FD6061CEF24340BC ] C:\Windows\System32\dimsjob.dll
21:33:21.0782 0x2c98 C:\Windows\System32\dimsjob.dll - ok
21:33:21.0782 0x2c98 [ F1C7A0B888AE21B85749DCCC18CB1B39, D70FE697431EAA77EEE2D98D9ECDA7A9F00EAD5295593D7417AC0FE1696FAE47 ] C:\Windows\SysWOW64\nsi.dll
21:33:21.0782 0x2c98 C:\Windows\SysWOW64\nsi.dll - ok
21:33:21.0798 0x2c98 [ A8CF1729DBFE1417858A8D15867E3D7F, 3BCCF979A9CF6D1D5B5CB0AB28D2125539ADED4B18952DA8F2B875A960921558 ] C:\Windows\SysWOW64\windows.storage.dll
21:33:21.0798 0x2c98 C:\Windows\SysWOW64\windows.storage.dll - ok
21:33:21.0798 0x2c98 [ 978CB8A268F9F4B0FEEB4281A007B33E, 76597E925252640174A6FCEF02E182126212D220CD10614AE39F3501BA7C45DB ] C:\Windows\SysWOW64\wintrust.dll
21:33:21.0798 0x2c98 C:\Windows\SysWOW64\wintrust.dll - ok
21:33:21.0798 0x2c98 [ 4FC9AC0B06074E1669FBF126C593A153, ABB0DEF921BCB84DE1BEFA6EACDFD4E0081F141E7F542CB3983593B97CE61371 ] C:\Windows\System32\IPSECSVC.DLL
21:33:21.0798 0x2c98 C:\Windows\System32\IPSECSVC.DLL - ok
21:33:21.0798 0x2c98 [ 14F7AAF6C00ED8A5DE8169A1A73CC147, 79AE4970DB82AF8826EDC9825404DBEDDA869EC81C7ED80411D22D65DBA8C956 ] C:\Windows\System32\wmidcom.dll
21:33:21.0798 0x2c98 C:\Windows\System32\wmidcom.dll - ok
21:33:21.0798 0x2c98 [ B833F6751CA2A859F06AE455A593B422, 65D6066BE72FDC4251B948A827CCF0CDC18D11CE020233490EB06C99952BF402 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
21:33:21.0798 0x2c98 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
21:33:21.0798 0x2c98 [ F55417E2C1E9B79E3AF466B5B7BC645B, 99141FF0C16B65DF0F63C3CAFA40F7A1FD983F964BFF67BE3ABD5A38592D3278 ] C:\Windows\System32\mqsvc.exe
21:33:21.0798 0x2c98 C:\Windows\System32\mqsvc.exe - ok
21:33:21.0798 0x2c98 [ 65D55905AFF650AE19D2C9D7279B2321, 8993A660C3F1C907264F64BB15E383C1CCE4B07D04F3FCF9A33712905D7CA793 ] C:\Windows\System32\bcd.dll
21:33:21.0798 0x2c98 C:\Windows\System32\bcd.dll - ok
21:33:21.0813 0x2c98 [ E7344BBDAC6E5F6083B35F59E0F3C933, 938DBE1D4B0C4A664C50B8F92037244D8F8F8C6B45B7374F1B92E5AE4C88AB55 ] C:\Windows\System32\resutils.dll
21:33:21.0813 0x2c98 C:\Windows\System32\resutils.dll - ok
21:33:21.0813 0x2c98 [ E45B3CE00BD907CAAE11510234297AA2, 1F2695BEAF50D2A840929845A2DFA3233712CB18658034DEC8C333EDCB3B3C8C ] C:\Program Files\Common Files\microsoft shared\ClickToRun\StreamServer.dll
21:33:21.0813 0x2c98 C:\Program Files\Common Files\microsoft shared\ClickToRun\StreamServer.dll - ok
21:33:21.0813 0x2c98 [ 2C4351750E30D98D22A5C487259668D2, C9CDC177E78F32B7E735F387B2C0A422AD2BE5481CABDF4B6B72CFA646110A8B ] C:\Windows\System32\drivers\agilevpn.sys
21:33:21.0813 0x2c98 C:\Windows\System32\drivers\agilevpn.sys - ok
21:33:21.0813 0x2c98 [ 4E4E05614184AD868A86F14FE5F7178A, E50ECDA18AAFFB95868ABB42E01434E3C3C51F32A2CF22D820FE4517570A4A0A ] C:\Windows\System32\FwRemoteSvr.dll
21:33:21.0813 0x2c98 C:\Windows\System32\FwRemoteSvr.dll - ok
21:33:21.0813 0x2c98 [ C645527A6477D90BF79D80EC4C530ECC, B62E5DBC41F4D46B6A0B672E845FC5C4A4CC6215CD012E02D7EBBCF72EBBD508 ] C:\Windows\System32\mqqm.dll
21:33:21.0813 0x2c98 C:\Windows\System32\mqqm.dll - ok
21:33:21.0813 0x2c98 [ 36BCC8A924E534CAC45D80041F6A07EA, ABDA782A9566081DCA5E99F40DF8FC5F1F90A7F95835ECCC66AF21B4D4A9CFA2 ] C:\Windows\System32\WSDScanProxy.dll
21:33:21.0813 0x2c98 C:\Windows\System32\WSDScanProxy.dll - ok
21:33:21.0813 0x2c98 [ 555E33527CC3C34620E49F5F86C8F7B0, 3E5EF22BA5CD091C55D71D66FA803C7990846887A1295A063A62F5088238538E ] C:\Windows\System32\drivers\rasl2tp.sys
21:33:21.0813 0x2c98 C:\Windows\System32\drivers\rasl2tp.sys - ok
21:33:21.0829 0x2c98 [ 98CDEC7A103E158D7222E345E19BB9FF, 8749289DD56728332696C3B07B838D156BE50B1238B2FC437488B1D9631CDB19 ] C:\Windows\SysWOW64\powrprof.dll
21:33:21.0829 0x2c98 C:\Windows\SysWOW64\powrprof.dll - ok
21:33:21.0829 0x2c98 [ 5B35D91730CF7930D90CB07290A0FE53, BB3421E63DC1E1ED482098EC64AE0D62333D21D66BE383952D7FA356769176C3 ] C:\Windows\SysWOW64\profapi.dll
21:33:21.0829 0x2c98 C:\Windows\SysWOW64\profapi.dll - ok
21:33:21.0829 0x2c98 [ AA357A587802848BD310C66166948DAA, 3438CD45233295D70A86B5F412319752039336CF8E9B0B4F12235EE309F6AAE3 ] C:\Windows\System32\activeds.dll
21:33:21.0829 0x2c98 C:\Windows\System32\activeds.dll - ok
21:33:21.0829 0x2c98 [ 0F4EB22E890FF8729616D538A4420648, E91B863C0051471A65EB7FBA17987849C89718320886FC20C627C081916C9FC7 ] C:\Windows\System32\clusapi.dll
21:33:21.0829 0x2c98 C:\Windows\System32\clusapi.dll - ok
21:33:21.0829 0x2c98 [ 0A62C1B88C6C5FBDBD93EC00AABBCAC4, 3143483D3EFCC143C201BE1F3AF87259DED4854AB647F362C8411C60809127BF ] C:\Windows\SysWOW64\kernel.appcore.dll
21:33:21.0829 0x2c98 C:\Windows\SysWOW64\kernel.appcore.dll - ok
21:33:21.0829 0x2c98 [ 6C0B99BB629982510C1DA46E47AE6F6D, B15E5AD0C6A24B8D7A07A50C77D0BD5D17670515BAD710332EA19DC4C169E65F ] C:\Windows\SysWOW64\umpdc.dll
21:33:21.0829 0x2c98 C:\Windows\SysWOW64\umpdc.dll - ok
21:33:21.0829 0x2c98 [ 9B22263A62DCD0556E4BD9CEA223CB3B, 2B51C69681ED57F3092E9CAC1EE364E9C8AE70EF1C25BFD5D83448DDA2704A96 ] C:\Windows\SysWOW64\vcruntime140.dll
21:33:21.0829 0x2c98 C:\Windows\SysWOW64\vcruntime140.dll - ok
21:33:21.0844 0x2c98 [ 627C7573539A6CD64E5C34D4F630A3B1, B1837DC01C4F5ECBC65F0D5CC4331CB30E620789B7CF00B77A50FA3F55481BDB ] C:\Windows\System32\drivers\raspptp.sys
21:33:21.0844 0x2c98 C:\Windows\System32\drivers\raspptp.sys - ok
21:33:21.0844 0x2c98 [ 453B545586BC20FE09AE1D2DAD01D337, 7942B3F20184632A317E82987864B6566BD2426BA60BDFF6E9EDDB6E5363E4C9 ] C:\Windows\System32\mqutil.dll
21:33:21.0844 0x2c98 C:\Windows\System32\mqutil.dll - ok
21:33:21.0844 0x2c98 [ 2C98AA00D1633E9AFAEAABA6CC87F287, 5DD8571132EF404927ADF7A1AC7EB26823D89271F62883F1E56C6EEEABC3D466 ] C:\Windows\System32\secur32.dll
21:33:21.0844 0x2c98 C:\Windows\System32\secur32.dll - ok
21:33:21.0844 0x2c98 [ 8E9395E08F1F8D0A6EFEC70BAB5C0658, 0E087F4CE55EDA8BC79E739A80101F7CB048D6FE66670046F1FC2A2D7269F117 ] C:\Windows\System32\SecureTimeAggregator.dll
21:33:21.0844 0x2c98 C:\Windows\System32\SecureTimeAggregator.dll - ok
21:33:21.0844 0x2c98 [ 88C579E96AC16A5BDC467D04CCC46FB7, C6B2EC889E49EEE73B31CE4A20442BD79ADBBFE447D22017D4A71F33D5614645 ] C:\Program Files (x86)\Origin\Qt5Gui.dll
21:33:21.0844 0x2c98 C:\Program Files (x86)\Origin\Qt5Gui.dll - ok
21:33:21.0844 0x2c98 [ A27C3ED6E44DFCF6DAF320698E6C6657, 86460FE188E96D7FBE9D92FE48C521216ECE733C00EEBEEF476769842B2D81D8 ] C:\Windows\System32\mqsec.dll
21:33:21.0844 0x2c98 C:\Windows\System32\mqsec.dll - ok
21:33:21.0860 0x2c98 [ 11581CB85F2769BEBDC37F106BB5E7B7, 90FBAE86F096909D9C4968B7204133FC6C0409007109C7909239C708C29EE241 ] C:\Windows\System32\srumsvc.dll
21:33:21.0860 0x2c98 C:\Windows\System32\srumsvc.dll - ok
21:33:21.0860 0x2c98 [ 3ECC23A415568AD67F9A0293B2D801CE, AD0D54107118F6EBCF826F0A0E46D78D1115263F86E5C5A0452117C8A026E357 ] C:\Windows\System32\adsldpc.dll
21:33:21.0860 0x2c98 C:\Windows\System32\adsldpc.dll - ok
21:33:21.0860 0x2c98 [ A0FED0081751E1B82D3E0E4F724F887E, F6DEF89D3F9CCC7D5BAB304D3D5E96792369F768CF58CB26FBAC25BA6220DAD1 ] C:\Windows\System32\msdelta.dll
21:33:21.0860 0x2c98 C:\Windows\System32\msdelta.dll - ok
21:33:21.0860 0x2c98 [ 7F48D30FD7AF2898C58E78058B188361, 723563F8BB4D7FAFF5C1B202902866F8A0982B14E09E5E636EBAF2FA9B9100FE ] C:\Windows\System32\cryptnet.dll
21:33:21.0860 0x2c98 C:\Windows\System32\cryptnet.dll - ok
21:33:21.0860 0x2c98 [ A5FBC5FD8026AE164ECAD4882B24486E, 4B757832CDAC4C269E618013146E5AA94371CCDCF1ED7426DBC2724458DC08FD ] C:\Windows\System32\drivers\raspppoe.sys
21:33:21.0860 0x2c98 C:\Windows\System32\drivers\raspppoe.sys - ok
21:33:21.0860 0x2c98 [ DB2FA444D40CA9795CCDC63E1D74C48C, 96DCA7A371B00E9305E8C4DD49FCFFB8DF7A3BA171DC1448F633434FFEE2A243 ] C:\Windows\System32\drivers\ndistapi.sys
21:33:21.0860 0x2c98 C:\Windows\System32\drivers\ndistapi.sys - ok
21:33:21.0860 0x2c98 [ 8E80F56A79B220B24E40C9AFA5C6BEAD, DF7D8DBACB87C591EEB124C5C2BD78797D93374BFBA782A8AA4488E16FB57EBE ] C:\Windows\System32\cscapi.dll
21:33:21.0860 0x2c98 C:\Windows\System32\cscapi.dll - ok
21:33:21.0876 0x2c98 [ E7F6AC29B5359F78169AD5C82925332D, 64314C66DE2A03941CB6B741F1C3EBE0BA5F08D1633008FCCD2928C64D682DC9 ] C:\Windows\System32\drivers\ndiswan.sys
21:33:21.0876 0x2c98 C:\Windows\System32\drivers\ndiswan.sys - ok
21:33:21.0876 0x2c98 [ 29774BD2C13B90CFA934E91926315397, 61F4CF89A0B3B48911EE349460D29D2FD8A5EFCA4F04917403F003A77B1CED6F ] C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll
21:33:21.0876 0x2c98 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll - ok
21:33:21.0876 0x2c98 [ CD0FD8A767EC4F1E177DB2B77001E16A, 033EDBC7A032E745EAD8C924417234CF3A4CD27AEFC474CC1A79A2426FEB15FB ] C:\Windows\SysWOW64\cryptsp.dll
21:33:21.0876 0x2c98 C:\Windows\SysWOW64\cryptsp.dll - ok
21:33:21.0876 0x2c98 [ F0DD189F9F6D031A4BD8B9DE1E49A85A, E2D6076E51A64F770216C5BED6F983576B4DDE13BAD366E7A604E6DC62FE0B62 ] C:\Windows\SysWOW64\imm32.dll
21:33:21.0876 0x2c98 C:\Windows\SysWOW64\imm32.dll - ok
21:33:21.0876 0x2c98 [ 5ED979A04D670B5889199B6ADBEF2A3C, FAF346794695BF1D7385BCAD818E240C6C88B7D89326D7FD2B5F1321DFABC899 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvApi.dll
21:33:21.0876 0x2c98 C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvApi.dll - ok
21:33:21.0876 0x2c98 [ 8174B363521C19401E26EAAF737ABAEC, B35D742D8FF8B4E581181E0F9DC45E19B79B0357B820E0A40C2C8F30713BE3DC ] C:\Windows\System32\pnpui.dll
21:33:21.0876 0x2c98 C:\Windows\System32\pnpui.dll - ok
21:33:21.0876 0x2c98 [ 7579E91D40FB7567EF5801D78F303683, C4CD4CC2550597B2E5511774E67D7DA235105258FE79A23324928916ABBEA4AA ] C:\Windows\SysWOW64\dwmapi.dll
21:33:21.0876 0x2c98 C:\Windows\SysWOW64\dwmapi.dll - ok
21:33:21.0891 0x2c98 [ 35DBBC0752636C8165ECE4CD9E8B1237, E50DE3612121E3E32C45AD0D33311FB0D7646E108F48D565B491E0232912E153 ] C:\Windows\SysWOW64\uxtheme.dll
21:33:21.0891 0x2c98 C:\Windows\SysWOW64\uxtheme.dll - ok
21:33:21.0891 0x2c98 [ 7A34BD9A3AA1AD23517F2BCBA1A696CC, C98D99193F5ACC5D8875FCB6152BD0A634702915B5ECEC4602DE5D68659C1319 ] C:\Windows\SysWOW64\wininet.dll
21:33:21.0891 0x2c98 C:\Windows\SysWOW64\wininet.dll - ok
21:33:21.0891 0x2c98 [ 261B4B7436E9CC466D67F926DE1076B2, CA537DB085554B944D7B926B499550E3068706B1EB958A3108E0DDBFE084A531 ] C:\Windows\SysWOW64\winspool.drv
21:33:21.0891 0x2c98 C:\Windows\SysWOW64\winspool.drv - ok
21:33:21.0891 0x2c98 [ 81ED5263C7B463F354D4FD5908258E64, EDCB5232D2CDBB3DA2214C045E9C02A7384EFC5F15B38F07FC4FB42B237E123C ] C:\Program Files (x86)\Origin\Qt5Xml.dll
21:33:21.0891 0x2c98 C:\Program Files (x86)\Origin\Qt5Xml.dll - ok
21:33:21.0891 0x2c98 [ 8F2E19CD1F1C96A507742E34A22DC4CE, B18A62253BC3C41A80F30DBD369EE75438195F918FE82BF8B2FB5D2F663485F3 ] C:\Windows\SysWOW64\oleacc.dll
21:33:21.0891 0x2c98 C:\Windows\SysWOW64\oleacc.dll - ok
21:33:21.0891 0x2c98 [ 0941A4243D3085B05A77A0A30FE851E9, AE20558823E60BE4123F0ECAA016BF2725FEA03D059A2F6393FFF9D6C87E6E99 ] C:\Windows\SysWOW64\userenv.dll
21:33:21.0891 0x2c98 C:\Windows\SysWOW64\userenv.dll - ok
21:33:21.0891 0x2c98 [ 7F48CE53DBAF54EDF1F514680E00C55E, 7CD846CA00DD16389969BEAF23F083027468D6A222AC55E81E606FD84C0F8D75 ] C:\Windows\SysWOW64\winmm.dll
21:33:21.0891 0x2c98 C:\Windows\SysWOW64\winmm.dll - ok
21:33:21.0907 0x2c98 [ B59A91E5BA3C050A488935BF1C97ECD6, CAD662BEF464BD6180732F04EC9107325FA10F56FEF9423841204BA7CD4F4E9F ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVPolicy.dll
21:33:21.0907 0x2c98 C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVPolicy.dll - ok
21:33:21.0907 0x2c98 [ 8C8D1140787DA60A343DD11C1CDF4992, 6AA1ECE9DD340D05AEC43248592A78B70D21959DE8727F506D21A3A962348583 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\msvcp120.dll
21:33:21.0907 0x2c98 C:\Program Files\Common Files\microsoft shared\ClickToRun\msvcp120.dll - ok
21:33:21.0907 0x2c98 [ 09BBCCE8685C90592903A66D8CE5D573, 9AD256EBF507B4B73A828AB0BEE916D3F3D710AD34E5AF03A0DACFA870EDEEC3 ] C:\Windows\System32\rastapi.dll
21:33:21.0907 0x2c98 C:\Windows\System32\rastapi.dll - ok
21:33:21.0907 0x2c98 [ 5D463FD683D8B43F9325995E5D5508C9, 7185B5EDFCF9072E26D74B67EF0DC620FF91FFED059D16EA1E85F71C4F44B68F ] C:\Windows\SysWOW64\bcrypt.dll
21:33:21.0907 0x2c98 C:\Windows\SysWOW64\bcrypt.dll - ok
21:33:21.0907 0x2c98 [ 93AB9D59FB5AE617124ACE9B6F6F746C, 1C74E5A6971FD7C946D5211692B93D6131642253C9764E9208490AA13AD7220F ] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.18362.175_none_5f5bd4db821eb79d\GdiPlus.dll
21:33:21.0907 0x2c98 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.18362.175_none_5f5bd4db821eb79d\GdiPlus.dll - ok
21:33:21.0907 0x2c98 [ 7864763B087BBF4800F5274384C1E065, 93F8F296FC05E60230925E5836372C8E3B9EDEE0A275C765DAEE55DDE5C3DE58 ] C:\Windows\SysWOW64\version.dll
21:33:21.0907 0x2c98 C:\Windows\SysWOW64\version.dll - ok
21:33:21.0923 0x2c98 [ 844CD0B4126F8925855143BF4AAC3AC6, 404279F5D066101050782A0D3A6DA9CF24F2777F15539504BDFA18FE8432E6CF ] C:\Program Files (x86)\Origin\libeay32.dll
21:33:21.0923 0x2c98 C:\Program Files (x86)\Origin\libeay32.dll - ok
21:33:21.0923 0x2c98 [ E83CBC95F9EB8216BA1DA9007ECD6BCF, F38B12B88F84C4D8F3A99707F5A0F22E6C9B5A391A713794957F7B7CED81E978 ] C:\Windows\SysWOW64\winmmbase.dll
21:33:21.0923 0x2c98 C:\Windows\SysWOW64\winmmbase.dll - ok
21:33:21.0923 0x2c98 [ 3AE52192B054659B2CA0F7578E5847B0, 9FD057688F8C889E81C8C4481A143394D69278FFAD4E3C1078C7F1886B373B7C ] C:\Windows\System32\tapi32.dll
21:33:21.0923 0x2c98 C:\Windows\System32\tapi32.dll - ok
21:33:21.0923 0x2c98 [ 2C1812780D1A95AB47DA90400EB9E842, 7854ED187DC3D7AC6A54088218B4227290D44847F1A5C71BEEC1C360F6C38E4B ] C:\Windows\SysWOW64\mpr.dll
21:33:21.0923 0x2c98 C:\Windows\SysWOW64\mpr.dll - ok
21:33:21.0923 0x2c98 [ 49FB6E786B2F9DF8812E0E317CED55CB, 9461F2E4ADD5C650102ACDE0C62377FF86D9B19FC20D0003F326CCD474E8B7B9 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\msvcr120.dll
21:33:21.0923 0x2c98 C:\Program Files\Common Files\microsoft shared\ClickToRun\msvcr120.dll - ok
21:33:21.0923 0x2c98 [ 1AE39601761C02C0687BF882D67A0378, 9D2BA028583BCDF71B108874A83F86AD216CF1EFC6B4F4035A4FC0D5786605C0 ] C:\Windows\System32\eeprov.dll
21:33:21.0923 0x2c98 C:\Windows\System32\eeprov.dll - ok
21:33:21.0923 0x2c98 [ B076F7CD33F7650706378798E91D8990, 630AC971AE9F1E2339E0AF289405E47DD805D4723313ED70B97F3371FA6F95C4 ] C:\Windows\SysWOW64\propsys.dll
21:33:21.0923 0x2c98 C:\Windows\SysWOW64\propsys.dll - ok
21:33:21.0938 0x2c98 [ 6CE8A85A53B4165437435D8B953B76AA, B6156619AEA9A448032B085901BFA67AA48CC9497CC658A463D7B6FF11913D01 ] C:\Windows\System32\unimdm.tsp
21:33:21.0938 0x2c98 C:\Windows\System32\unimdm.tsp - ok
21:33:21.0938 0x2c98 [ EBF311B99C59F81FAC31445F5414FE68, C6E99FF7A374474DB0C9E93319222BC88A149099FC7563E83FF1409109D8A85E ] C:\Windows\System32\vfuprov.dll
21:33:21.0938 0x2c98 C:\Windows\System32\vfuprov.dll - ok
21:33:21.0938 0x2c98 [ 84CF9D0DE2E776FABF6EC77C25CA187E, C7030C8BADCA046022B367B56CCFD3E0FA44F9A8D73EBB7D04F6F6CD6B2DBEE1 ] C:\Windows\System32\nduprov.dll
21:33:21.0938 0x2c98 C:\Windows\System32\nduprov.dll - ok
21:33:21.0938 0x2c98 [ 757B24C2F43B292EF6EC92423A83D888, 21031070DEFEA5092913AAEEB1009548FC8EF3F90FF2F3420941843103B857DE ] C:\Windows\System32\kmddsp.tsp
21:33:21.0938 0x2c98 C:\Windows\System32\kmddsp.tsp - ok
21:33:21.0938 0x2c98 [ B95D6115268888704E4F2692CE5457FE, 608075ACE74462CC6948395481868EEF1B6646E466AE7EF2CD9255FD2C68AE91 ] C:\Windows\System32\uniplat.dll
21:33:21.0938 0x2c98 C:\Windows\System32\uniplat.dll - ok
21:33:21.0938 0x2c98 [ DCDE0DF5A4A5D56D787C8996F94D7037, F5C8D758738FA562A84C05F14C61AADB169BA18272E53EE2D9285407F151A97A ] C:\Windows\System32\wpnsruprov.dll
21:33:21.0938 0x2c98 C:\Windows\System32\wpnsruprov.dll - ok
21:33:21.0954 0x2c98 [ A7A491910FB688308FC8F7D9C0CCEF39, B1C95035A73151FF1ACFAE8EAF448A8DDD84B43FBC0918409C4B2F67E0CA1E3F ] C:\Windows\System32\appsruprov.dll
21:33:21.0954 0x2c98 C:\Windows\System32\appsruprov.dll - ok
21:33:21.0954 0x2c98 [ DA83C5D9CFCA4BDB01C2B171D337E3C4, D387F9966C91CF63A9C6486ED91ADC0CF4ABD70066934730F1A79366B2AFC932 ] C:\Windows\System32\hidphone.tsp
21:33:21.0954 0x2c98 C:\Windows\System32\hidphone.tsp - ok
21:33:21.0954 0x2c98 [ 238A223A10866037DF927ACAB76AB2DC, 04A098CB5CD2CBF9D01DCCF126E46FDA8783C4851CF3448AD42A152E32921391 ] C:\Windows\SysWOW64\wtsapi32.dll
21:33:21.0954 0x2c98 C:\Windows\SysWOW64\wtsapi32.dll - ok
21:33:21.0954 0x2c98 [ 416C78004FD8A91ADAC3923CC44F04DC, 5940A69E2D6B478CF4B3F781FEF3E5513980696B58AFF470E0D762536E935DC3 ] C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ServicePlugin\ConnectPDFService.dll
21:33:21.0954 0x2c98 C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ServicePlugin\ConnectPDFService.dll - ok
21:33:21.0954 0x2c98 [ 87B73E459F808913B99E55D07BF08655, 243EFFC7D0371AE5F70EA3DEA9BBDD58B56EE274961E3C82DAEF136F1F88ECD4 ] C:\Windows\System32\rasppp.dll
21:33:21.0954 0x2c98 C:\Windows\System32\rasppp.dll - ok
21:33:21.0954 0x2c98 [ 13182B9497BC17B9F4A2E291C8E0B33C, 54230D82F296C67D81337C9A4F85DA32605FB74BC68C8CEFDE9962FB56368E38 ] C:\Windows\System32\rasapi32.dll
21:33:21.0954 0x2c98 C:\Windows\System32\rasapi32.dll - ok
21:33:21.0954 0x2c98 [ 2C54C55290F01E9CCCE47C332B67310D, 35D5ED7BA610A916D8E592D53D1880AFC381A2032B76A4785E137BBC39451851 ] C:\Program Files (x86)\Foxit Software\Foxit Reader\FPCSDK.dll
21:33:21.0954 0x2c98 C:\Program Files (x86)\Foxit Software\Foxit Reader\FPCSDK.dll - ok
21:33:21.0969 0x2c98 [ D81F5BEF648594E66C7B2978C7AAA75D, 9E333BB28A3807075DFD0F9958D160DB223DD92BE44AAF420CADCF7866E10A8B ] C:\Windows\System32\eappcfg.dll
21:33:21.0969 0x2c98 C:\Windows\System32\eappcfg.dll - ok
21:33:21.0969 0x2c98 [ DDD9C37C2F80E000594A567E0658556A, 960AE22A190D29AA287F52E1DD361C6F861D7B66F20720068E4374D3B92FB766 ] C:\Windows\System32\mqlogmgr.dll
21:33:21.0969 0x2c98 C:\Windows\System32\mqlogmgr.dll - ok
21:33:21.0969 0x2c98 [ 84587E382BC8AA17CEA1128AFAD459B7, AA1EFC39F6C3469932F816E17EA3A87BB3DFF8265D571322234435C691EED314 ] C:\Windows\System32\rasman.dll
21:33:21.0969 0x2c98 C:\Windows\System32\rasman.dll - ok
21:33:21.0969 0x2c98 [ 1FC78021AFABC987FC50A9E106FCD106, AE821949EC3BA6D07C0FAEA57009615A115CC37296C70C555CADC39B43FE2D2F ] C:\Windows\SysWOW64\urlmon.dll
21:33:21.0969 0x2c98 C:\Windows\SysWOW64\urlmon.dll - ok
21:33:21.0969 0x2c98 [ 4223C695C09CC3027B839803BB0359A1, A6CD44D233429F40DF3D0E411C98D88F7188EF5F66052E2E3ED703BABADC9438 ] C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
21:33:21.0969 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe - ok
21:33:21.0969 0x2c98 [ 103340BAFBFBC154A5EC608C1651E525, 6685B51D04C84F864B9CA0C22AEDC36FEF1C51E3D22C912A31B8D1B7FC243128 ] C:\Windows\System32\vpnike.dll
21:33:21.0969 0x2c98 C:\Windows\System32\vpnike.dll - ok
21:33:21.0985 0x2c98 [ D4C0621AD177FA7F118133661DA82110, 7E65C8C9D4C8C3F67EDE93F938EC1197A2EDFD73F6C2E15605D32D0603C65D65 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVOrchestration.dll
21:33:21.0985 0x2c98 C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVOrchestration.dll - ok
21:33:21.0985 0x2c98 [ 2212034E55B4CB092B2E8DC0CF59993E, D0980BC0C92538DE4D8CC57C6FB518E49B0359FB468937AFBFBA0D0987E35C04 ] C:\Windows\System32\rascustom.dll
21:33:21.0985 0x2c98 C:\Windows\System32\rascustom.dll - ok
21:33:21.0985 0x2c98 [ CA29260ABAE5B7A73AD4C2ADFC7AD237, 30AD19898026A6FDA3C0617A8C014817BCF82B54A5306F92C93C6C711D1EE7B2 ] C:\Windows\SysWOW64\iertutil.dll
21:33:21.0985 0x2c98 C:\Windows\SysWOW64\iertutil.dll - ok
21:33:21.0985 0x2c98 [ B2EA955F25DF188E2AE499F52D24A0B0, CD55CD966F39FE009F8E386008F80F1C10842F48F7223446EE4FFC076ABF283B ] C:\Windows\System32\dmprocessxmlfiltered.dll
21:33:21.0985 0x2c98 C:\Windows\System32\dmprocessxmlfiltered.dll - ok
21:33:21.0985 0x2c98 [ 436E106DDA3E6E1171D9C2CB1EE0F7A2, 97432BE6707B59520CA94E61A71287FC750C6600F16F6D9AEA087B1BBED15118 ] C:\Windows\SysWOW64\winhttp.dll
21:33:21.0985 0x2c98 C:\Windows\SysWOW64\winhttp.dll - ok
21:33:21.0985 0x2c98 [ 249AF188C2618F911664B70E9DF64B89, 71E202C6587C9A0F3E37D9CC04AEB5F7ECE20C38501309598C821FEF1716DCBB ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvStreamingManager.dll
21:33:21.0985 0x2c98 C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvStreamingManager.dll - ok
21:33:21.0985 0x2c98 [ AC3461D87DC5B8BBF54E5B145FE2324F, 9F7C98F7E074FABA54D785E624A6A4B31492ED64E6898C03293C7911B4F197DD ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVManifest.dll
21:33:21.0985 0x2c98 C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVManifest.dll - ok
21:33:22.0001 0x2c98 [ EDF9D5C18111D82CF10EC99F6AFA6B47, D89C7B863FC1AC3A179D45D5FE1B9FD35FB6FBD45171CA68D0D68AB1C1AD04FB ] C:\Program Files\AMD\CNext\CNext\vcruntime140.dll
21:33:22.0001 0x2c98 C:\Program Files\AMD\CNext\CNext\vcruntime140.dll - ok
21:33:22.0001 0x2c98 [ 6DAA098FB091C5C6FD498E731CC8B7ED, 5412213F37AFE90EC4D1054415A638DA3E115A237D68A0CC5D14A7FE6A0D3334 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVCatalog.dll
21:33:22.0001 0x2c98 C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVCatalog.dll - ok
21:33:22.0001 0x2c98 [ A63649B2CD85AA8D66E4E6B4C439A292, 31FD1DAE9A387A3CA8EB227332D8112501FE747E5D4F260F5A9AA90D8B1B522D ] C:\Windows\SysWOW64\OnDemandConnRouteHelper.dll
21:33:22.0001 0x2c98 C:\Windows\SysWOW64\OnDemandConnRouteHelper.dll - ok
21:33:22.0001 0x2c98 [ 9FF712C25312821B8AEC84C4F8782A34, 517CD3AAC2177A357CCA6032F07AD7360EE8CA212A02DD6E1301BF6CFADE2094 ] C:\Program Files\AMD\CNext\CNext\msvcp140.dll
21:33:22.0001 0x2c98 C:\Program Files\AMD\CNext\CNext\msvcp140.dll - ok
21:33:22.0001 0x2c98 [ F0ACB89732759696CF2ED34A6A235E58, 653E39121005551384B17505BA0F2C1B89235518A5954CCBE7B8768104FC1180 ] C:\Windows\System32\raschap.dll
21:33:22.0001 0x2c98 C:\Windows\System32\raschap.dll - ok
21:33:22.0001 0x2c98 [ A740038C83882E731BB2CE84EB20BDE6, 71C3FC2F5EF0DA21B737A29944B3DAB061005DC7BF6E81D50AC8CF3321C57C3E ] C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll
21:33:22.0001 0x2c98 C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll - ok
21:33:22.0016 0x2c98 [ 2F1058E44947F92439DFE79A9A19E194, 6C7C20102B134254BBA834048A1423950A50919CCD29DD7988668FE309F1109D ] C:\Windows\SysWOW64\mswsock.dll
21:33:22.0016 0x2c98 C:\Windows\SysWOW64\mswsock.dll - ok
21:33:22.0016 0x2c98 [ 4534481363DB2FF2FC751B26610BED30, 9EF2097975D63AD131B426A6CE6CCF9A6A644D7A3A996B472B52BC894461722E ] C:\Windows\SysWOW64\winnsi.dll
21:33:22.0016 0x2c98 C:\Windows\SysWOW64\winnsi.dll - ok
21:33:22.0016 0x2c98 [ 58C8F960E281ADB02AB8CC95155C3988, 501D65A243582811404641BB8FC4DA5A224215D44E4069BC583675B236F02B64 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvVirtualization.dll
21:33:22.0016 0x2c98 C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvVirtualization.dll - ok
21:33:22.0016 0x2c98 [ 15874C5281377BCE62D70F9DBE3BA6BD, C5C1FA9E43E7409E3C36B8F3D1A64628209C67DEDBEEFF8B601A4077A1F367BD ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIntegration.dll
21:33:22.0016 0x2c98 C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIntegration.dll - ok
21:33:22.0016 0x2c98 [ E48D3EDC65D3CEEE095251752DCC41A2, 41295CBD360DC19B3CF7DCEEF6DD6E720EF375ABCEB79D2271CA5812A9ED8352 ] C:\Windows\SysWOW64\rasadhlp.dll
21:33:22.0016 0x2c98 C:\Windows\SysWOW64\rasadhlp.dll - ok
21:33:22.0016 0x2c98 [ C59300C93B13A38FA815D9131C416F1F, C9B2BD0F08AD2335A7DA79B62E6291348EB76D6C2ABF133B701293573B2109A6 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
21:33:22.0016 0x2c98 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
21:33:22.0016 0x2c98 [ 06571842956644D5F6C66A5345290DBC, 388A1013E5C17C705B392234F6F68DA16842607D6924024075361E38D70A85D2 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvSubsystemController.dll
21:33:22.0016 0x2c98 C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvSubsystemController.dll - ok
21:33:22.0032 0x2c98 [ 6B8ECC5DF3652DBFD42F6B03A6C9B891, DBAF9C655E4C624125900CE0DAFC3A1CD2D137A16DE885CC381F2CAA2E4850BC ] C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVFileSystemMetadata.dll
21:33:22.0032 0x2c98 C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVFileSystemMetadata.dll - ok
21:33:22.0032 0x2c98 [ 69D87ADA8D240550D7469E5CE7C75369, B44957BECD817BB9FEBCFC627627709916C82F366EECAC6E71E630E5BFFAFC79 ] C:\Program Files\Malwarebytes\Anti-Malware\PoliciesControllerImpl.dll
21:33:22.0032 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\PoliciesControllerImpl.dll - ok
21:33:22.0032 0x2c98 [ 77C5CFF051CFA8585F4010E49B6D1C38, 08814F5B95BB8C1C96A4668E97AA97F738406BB310F1D943BEA42D4C934BD1D0 ] C:\Program Files\Malwarebytes\Anti-Malware\LicenseControllerImpl.dll
21:33:22.0032 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\LicenseControllerImpl.dll - ok
21:33:22.0032 0x2c98 [ 749829E443362F82089F4C3DEB283969, CF7279C50E68AA9D8156CCE0821633E5B76D844715E12FC7CF706F03BA1D6C61 ] C:\Windows\SysWOW64\dhcpcsvc.dll
21:33:22.0032 0x2c98 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
21:33:22.0032 0x2c98 [ 0DB7DD975CB81F9C928138AF1463CFF3, 6EDAD644E28FA9113C79CA20615A2067D347F9B99FAC3DF6B46C401221A3D8BE ] C:\Program Files\Malwarebytes\Anti-Malware\UpdateControllerImpl.dll
21:33:22.0032 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\UpdateControllerImpl.dll - ok
21:33:22.0032 0x2c98 [ E98BCC5D0DFF3EC1FD79BDF67DA14E65, E5A13AC0489C37422C64FA4DA516872A703FEA62F1FEE58850AD7D7CC15EFEC0 ] C:\Windows\System32\cdpsvc.dll
21:33:22.0032 0x2c98 C:\Windows\System32\cdpsvc.dll - ok
21:33:22.0048 0x2c98 [ DC5BCEBC6F053F3F4340C33D00CD76C6, 0E6CA7F1152ECB16524AC57FEF90BBCDAEB07509F96AB16AD176D903E3ADA65E ] C:\Windows\SysWOW64\schannel.dll
21:33:22.0048 0x2c98 C:\Windows\SysWOW64\schannel.dll - ok
21:33:22.0048 0x2c98 [ A91C3F1595587144903ADCB46DB2BF93, EA2E97E8FF3BDA00EF6F5D7068DB59E372F94E3C864E565CD276C0B9E89EFBFA ] C:\Windows\System32\keyiso.dll
21:33:22.0048 0x2c98 C:\Windows\System32\keyiso.dll - ok
21:33:22.0048 0x2c98 [ 801E8003C257C8F540B20F1E0DECD3A6, A75C85F3B089993E9C042FB82ECB7757E8F460ED8065FC7991CAA38A6DE0F50C ] C:\Windows\System32\wbem\WmiPrvSE.exe
21:33:22.0048 0x2c98 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
21:33:22.0048 0x2c98 [ AAE9ECBE50B6CBA8FB76D1160CF05BA2, B7BE6ED7AC65B2A65D784565D6ED1B555796E29C70B19B9219332E1E0A236177 ] C:\Windows\System32\wbem\cimwin32.dll
21:33:22.0048 0x2c98 C:\Windows\System32\wbem\cimwin32.dll - ok
21:33:22.0048 0x2c98 [ E6AD44B0C3066F77818312599C485A58, 5D471889669436E566A21BD47D8458F41A80B0886C0D4F78D6CC0E89EB232004 ] C:\Windows\SysWOW64\mskeyprotect.dll
21:33:22.0048 0x2c98 C:\Windows\SysWOW64\mskeyprotect.dll - ok
21:33:22.0048 0x2c98 [ ED5AAE836DDB4968152E439309906DB6, FBE38F910037175C0519D4E3B1C0EE1022748A30A0A4652E8331ED57A1017555 ] C:\Windows\SysWOW64\ncrypt.dll
21:33:22.0048 0x2c98 C:\Windows\SysWOW64\ncrypt.dll - ok
21:33:22.0048 0x2c98 [ 1776A7AB60F25ACA9232F7B780DF9E96, DE68808760A03001F93A4379590BD36288B31D1250F40994033E7BA1BCFF0CA1 ] C:\Windows\System32\framedynos.dll
21:33:22.0048 0x2c98 C:\Windows\System32\framedynos.dll - ok
21:33:22.0063 0x2c98 [ E7D435999C45E1BE48B2AA4A8224FBF9, 5E6D0F371594B4388C51D5153D7209EF9A8E691E669C6A6499C97EC33B290FD4 ] C:\Windows\System32\wshbth.dll
21:33:22.0063 0x2c98 C:\Windows\System32\wshbth.dll - ok
21:33:22.0063 0x2c98 [ 7180E86838CA995F12D224098A5D8904, 806F5B3CD8ACB701A0399AD865220A9159064E2E766E6669CA5533EF9D8EB0ED ] C:\Windows\SysWOW64\ntasn1.dll
21:33:22.0063 0x2c98 C:\Windows\SysWOW64\ntasn1.dll - ok
21:33:22.0063 0x2c98 [ 8D3EB7024FF626E105DE895E859CB227, B9E263AB0132125A1B41EEA97B23D3536662B4F92A295741E5DB20E2E3E69973 ] C:\Windows\System32\sbservicetrigger.dll
21:33:22.0063 0x2c98 C:\Windows\System32\sbservicetrigger.dll - ok
21:33:22.0063 0x2c98 [ E53B387F4039A65CA14B8FBA8F012E21, 55E2665FCEE832F4BB3E3E54247C00C630987C48950EC242BF0949EB059A55B5 ] C:\Windows\SysWOW64\dpapi.dll
21:33:22.0063 0x2c98 C:\Windows\SysWOW64\dpapi.dll - ok
21:33:22.0063 0x2c98 [ AD0EFB0FDEA0ABB8EE1545C0B48231DB, 224B850AFF0FBE036D458E63D05F0B5A24DB5CD7C720A867109301751FC55048 ] C:\Windows\SysWOW64\rsaenh.dll
21:33:22.0063 0x2c98 C:\Windows\SysWOW64\rsaenh.dll - ok
21:33:22.0063 0x2c98 [ 185028DE298C2E42E1882E0011CF5244, B7AE2BE90E6B6CEBE0F3095EB194D143B1EF80E1841EC9211237113DC9F8FB6F ] C:\Program Files\AVAST Software\Avast\defs\19062404\algo64.dll
21:33:22.0063 0x2c98 C:\Program Files\AVAST Software\Avast\defs\19062404\algo64.dll - ok
21:33:22.0079 0x2c98 [ BDA006D82069DB5CEDCDB8F077E5DACE, C80AA7FA9EADE2DD24D291C2A2822297E60B12306A7056703D8C7F849095FADE ] C:\Windows\System32\DismApi.dll
21:33:22.0079 0x2c98 C:\Windows\System32\DismApi.dll - ok
21:33:22.0079 0x2c98 [ 5B92FC86DA50CD3FF1825DEBD54F0248, 47F069941F6B06ED44FAD0D49C84A7EFC2DDACA5977CFCFE6E63079C0D41E569 ] C:\Windows\System32\dxva2.dll
21:33:22.0079 0x2c98 C:\Windows\System32\dxva2.dll - ok
21:33:22.0079 0x2c98 [ 5963633010616B25503EE126F55E8DE4, A1A6F3E18B097AB046E8771A01F8B727A44348B28B82B5BEB15EE311AD27CDD6 ] C:\Windows\WinSxS\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90.dll
21:33:22.0079 0x2c98 C:\Windows\WinSxS\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90.dll - ok
21:33:22.0079 0x2c98 [ 1A18B5A8710541512AA3211A03D0B4F7, B7A819C44F0068198E3A36E89D41877343E23DA12D039EA7E01245A4DD4EBC70 ] C:\Windows\System32\SettingSyncCore.dll
21:33:22.0079 0x2c98 C:\Windows\System32\SettingSyncCore.dll - ok
21:33:22.0079 0x2c98 [ 14C8454649DE1930093BA1B2602E244A, 1B5653DDF108BEC8E0096C9096B5D708134CDB783AA0DD1735C40D9DC2E65B08 ] C:\Windows\SysWOW64\ncryptsslp.dll
21:33:22.0079 0x2c98 C:\Windows\SysWOW64\ncryptsslp.dll - ok
21:33:22.0079 0x2c98 [ DF7DDAD9B6B26A2320095EA1C83E73D5, 4A60B9EF0A83E7A8FDDDD4BA9608941BE90EFDA314BC984A81805637F9C1607F ] C:\Windows\System32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
21:33:22.0079 0x2c98 C:\Windows\System32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll - ok
21:33:22.0079 0x2c98 [ 1B5C42A4E92703D7F1C85B6D0B8F1C34, 2E13FA6FEAA89396A67FB0C1C32924D2019236D34B6F97CF13287CC7D7395149 ] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9619_none_508d9c7abcbd32b6\msvcr90.dll
21:33:22.0079 0x2c98 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9619_none_508d9c7abcbd32b6\msvcr90.dll - ok
21:33:22.0094 0x2c98 [ A317BC660054145AF10298A4C1AA3622, 8110A8B4C68E08A57CB09EB0000757E7A4882B8E4F7508C26B1BD6D44EC5BC70 ] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.175_none_2e70e1f6278c3dcf\comctl32.dll
21:33:22.0094 0x2c98 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.175_none_2e70e1f6278c3dcf\comctl32.dll - ok
21:33:22.0094 0x2c98 [ D6D75D90387EABA55966B08D665C3316, 45F3938B84A157EE7570AB599306DEDB2F2EE5A31FAA51DAA3C69FFCD2BA753E ] C:\Program Files (x86)\RivaTuner Statistics Server\RTFC.dll
21:33:22.0094 0x2c98 C:\Program Files (x86)\RivaTuner Statistics Server\RTFC.dll - ok
21:33:22.0094 0x2c98 [ 9238954B63F3A8DD14620CFFDDBB853E, C77EB5EE8851AC726120C7D29792EBE8892E68BB1AD81DE4BEA1AB7B82F61118 ] C:\Program Files (x86)\RivaTuner Statistics Server\RTMUI.dll
21:33:22.0094 0x2c98 C:\Program Files (x86)\RivaTuner Statistics Server\RTMUI.dll - ok
21:33:22.0094 0x2c98 [ CCCE83B08BB830CC26F1B0A080E5649B, CAA5192F74BDE9D56C2947F50DA0F61AABF34A8076A49C774FD345D81EACB29B ] C:\Program Files (x86)\RivaTuner Statistics Server\RTUI.dll
21:33:22.0094 0x2c98 C:\Program Files (x86)\RivaTuner Statistics Server\RTUI.dll - ok
21:33:22.0094 0x2c98 [ EB429BB714DD091D35121A0D8942ACF6, 54EF92856C230E482EE5B08C13B5FCF78A740EA5B674DEF6E2F595F73827D0AF ] C:\Windows\System32\pautoenr.dll
21:33:22.0094 0x2c98 C:\Windows\System32\pautoenr.dll - ok
21:33:22.0094 0x2c98 [ 5372AD8212817A6826B6FAB4437A98B7, 78153BC08DC51746A0D2B03E2C6DDA57460C0A55278AEB7489874EC5B0DBD8E7 ] C:\Program Files (x86)\MSI Afterburner\RTCore.dll
21:33:22.0094 0x2c98 C:\Program Files (x86)\MSI Afterburner\RTCore.dll - ok
21:33:22.0110 0x2c98 [ 44CEFD5CAFABD7054BC3CC9E0E6B461E, 3A1A84045AA124C4C6A368DA3F54673E86FD32BF0EE1814AE81A45FE5A739694 ] C:\Program Files (x86)\MSI Afterburner\RTFC.dll
21:33:22.0110 0x2c98 C:\Program Files (x86)\MSI Afterburner\RTFC.dll - ok
21:33:22.0110 0x2c98 [ C406FE62C2B1587E434DAC69CAC91CCA, F52D23B7B28935C032C9AF44E33BE43D559D1E40274F6B3DE00496BBDB4115D3 ] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
21:33:22.0110 0x2c98 C:\Program Files (x86)\MSI Afterburner\RTMUI.dll - ok
21:33:22.0110 0x2c98 [ 5B521E02D0CD13BC928135CACAAD9CB3, C2C6F46073D283B6EE03A108FA75F52DFC4D45B2B914684CD79AD2B2B97D4953 ] C:\Program Files (x86)\MSI Afterburner\RTUI.dll
21:33:22.0110 0x2c98 C:\Program Files (x86)\MSI Afterburner\RTUI.dll - ok
21:33:22.0110 0x2c98 [ 431B17D768489262031A9C8BD532F879, 3A220935309CFB9603D46A84A7F9A7BAA3CEFF3A23FE07853190ED19847B8E6F ] C:\Windows\System32\ReAgent.dll
21:33:22.0110 0x2c98 C:\Windows\System32\ReAgent.dll - ok
21:33:22.0110 0x2c98 [ 7DDAE9EB013117AF0E630B52BACB851D, 79880EC28AA09E27551971F885CFBA5D089671EB29951970DBDA384B502A1944 ] C:\Windows\System32\Windows.StateRepositoryPS.dll
21:33:22.0110 0x2c98 C:\Windows\System32\Windows.StateRepositoryPS.dll - ok
21:33:22.0110 0x2c98 [ D831C64DBBD1C6BC42F815B63150BBAB, 8BC27A530175098D36E8DD3CCF4F3C4D9AD47C7ED3CFDCF1BF114D9B2EACF53A ] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
21:33:22.0110 0x2c98 C:\Program Files (x86)\MSI Afterburner\RTHAL.dll - ok
21:33:22.0126 0x2c98 [ 7012D257D53828045ADEDBB1C019F868, CA213A630910D946F2BBA8AA6D42F29C7CCE6EFED312D33AFF7C817F95E50700 ] C:\Windows\System32\AppXDeploymentServer.dll
21:33:22.0126 0x2c98 C:\Windows\System32\AppXDeploymentServer.dll - ok
21:33:22.0126 0x2c98 [ DC64F9420C5FF37E27D719BDC9757756, 97EA65EB716F44B8738B0A6AB70D9EB92F7DF8540BD76A76E8068E88FB24AF8E ] C:\Windows\System32\NapiNSP.dll
21:33:22.0126 0x2c98 C:\Windows\System32\NapiNSP.dll - ok
21:33:22.0126 0x2c98 [ 4CDF605AA79CFCC3F980316F2BE29EEE, 53D6996C37A647AB2DA1B8F775484032E9015A22EC3877C748242FD03F2FFE84 ] C:\Windows\System32\pnrpnsp.dll
21:33:22.0126 0x2c98 C:\Windows\System32\pnrpnsp.dll - ok
21:33:22.0126 0x2c98 [ 4CC3B1AEE5AF09FDAB0F89DD21A7E7AA, 0CE5DE9525699EFA35D7378472391BE583E3CB160557EB5908FDD5F6A38324F9 ] C:\Windows\System32\winrnr.dll
21:33:22.0126 0x2c98 C:\Windows\System32\winrnr.dll - ok
21:33:22.0126 0x2c98 [ A3A3B005EBB133C68EBE50CD4A995209, 7422FC7FCA03EF6B6C620A46063353D2265DD376FC9F094FDD83EC7BFC9BE01A ] C:\Windows\System32\Windows.StateRepositoryBroker.dll
21:33:22.0126 0x2c98 C:\Windows\System32\Windows.StateRepositoryBroker.dll - ok
21:33:22.0126 0x2c98 [ 762DB0A5A2944B83336C6CD09895D006, E5EF97E505F61F891C6AABCF55D7BCC0287BE90DF255AC690EA3780D4CB2B031 ] C:\Windows\System32\Windows.StateRepositoryClient.dll
21:33:22.0126 0x2c98 C:\Windows\System32\Windows.StateRepositoryClient.dll - ok
21:33:22.0126 0x2c98 [ 5255FD6589B3D2C64EE4950843CD2366, 0409E0D8E0BF12A81CC273832B77B323FDB0FA93E4F2EF2336A55CE85C03971F ] C:\Windows\System32\MrmDeploy.dll
21:33:22.0126 0x2c98 C:\Windows\System32\MrmDeploy.dll - ok
21:33:22.0141 0x2c98 [ D125A8FE65E635A2A0B38B048859E05A, 368998EE4C7AFE2026AE32A759C6F204B25D82F3D3C3F143BE479FAA9145E8F2 ] C:\Windows\System32\AppResolver.dll
21:33:22.0141 0x2c98 C:\Windows\System32\AppResolver.dll - ok
21:33:22.0141 0x2c98 [ C5C9F2E158CC7A59DA110B3D29215989, 8DC5FF5EC0C5F4B53B5C4A256D540B2070B5A4E66FD22B484A9B9F7F2B62F445 ] C:\Windows\System32\Windows.CloudStore.Schema.Shell.dll
21:33:22.0141 0x2c98 C:\Windows\System32\Windows.CloudStore.Schema.Shell.dll - ok
21:33:22.0141 0x2c98 [ 07D4E38D7D0203834BD4D4133095C397, 5CAFA78EBCA4D6DB04F6F5F840073D056C65DCA6315350A2A63E88774FEAD5C7 ] C:\Program Files\Malwarebytes\Anti-Malware\CloudControllerImpl.dll
21:33:22.0141 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\CloudControllerImpl.dll - ok
21:33:22.0141 0x2c98 [ 736B52DD6A0379E18B1A0FE0B87883AF, 342C95ABCEA85E4B0D1DD79799D1016517C3AA4C635F19A68996B1E3F717E70B ] C:\Windows\System32\wpnclient.dll
21:33:22.0141 0x2c98 C:\Windows\System32\wpnclient.dll - ok
21:33:22.0141 0x2c98 [ B78269EF4034474766CB1351E94EDF5C, 7065057320320C99D0749F1DEDCBEA2E5B540404497244EB5F92DED38646F21D ] C:\Windows\System32\userinit.exe
21:33:22.0141 0x2c98 C:\Windows\System32\userinit.exe - ok
21:33:22.0141 0x2c98 [ 8BE3EFB2C8DD10C16D17602544F64F32, 5C4D9DE61B3293D34664EDCC4FAD8C74B4051AB5A4EF721F08D25499EAAA1729 ] C:\Windows\System32\wpnapps.dll
21:33:22.0141 0x2c98 C:\Windows\System32\wpnapps.dll - ok
21:33:22.0157 0x2c98 [ B9FFB9431BD10C15BB017701377ACAD6, F637BDCC57C3F8029189FF2162C9463A413D6FB98C87DD9268D573524F34698A ] C:\Windows\System32\userinitext.dll
21:33:22.0157 0x2c98 C:\Windows\System32\userinitext.dll - ok
21:33:22.0157 0x2c98 [ 05A6F151FC41248BF21DEF7A8A8D7765, 6F44331252EB4D1509416931DD8E734EEAC0736A344ACDF9FF1E079ABD3A019B ] C:\Windows\System32\ContentDeliveryManager.Utilities.dll
21:33:22.0157 0x2c98 C:\Windows\System32\ContentDeliveryManager.Utilities.dll - ok
21:33:22.0157 0x2c98 [ A2CC0A771F7507D28D4EA0131695186A, 2D9B0F8632C6DF2EC2AA1E75D839A6D61128A7724B5509F939078F3A52005E92 ] C:\Program Files\Malwarebytes\Anti-Malware\7z.dll
21:33:22.0157 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\7z.dll - ok
21:33:22.0157 0x2c98 [ FA49D1831A94E8BB39086ECDAE0715BB, 6B0F68EF8BBD2D5521AF6A9D1E9AA3A8F30EC731822D3A96A983B3C06E4400BA ] C:\Program Files\Malwarebytes\Anti-Malware\TelemetryControllerImpl.dll
21:33:22.0157 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\TelemetryControllerImpl.dll - ok
21:33:22.0157 0x2c98 [ 2646DCBFDBE9811FE265B9FF1D0DBD77, 2B3EE518F6C4BE73546100FF825ACF7A4791A668213F2E1A6165D9DDA5C53CC2 ] C:\Windows\System32\twinui.pcshell.dll
21:33:22.0157 0x2c98 C:\Windows\System32\twinui.pcshell.dll - ok
21:33:22.0157 0x2c98 [ 515B5A63C0BF2690EB39BE352ABAC65C, B526507685ED3A7505F60FE9DBE9A93826BF5A34165A4812088076AA1E546431 ] C:\Windows\System32\Windows.Web.dll
21:33:22.0157 0x2c98 C:\Windows\System32\Windows.Web.dll - ok
21:33:22.0157 0x2c98 [ 75096A78EBCBF6002E999D7A4229D5C4, 87962D8FC963E06D421C548E3D7CFD8264B93DCED73402B0D5B3D16C8E96A867 ] C:\Windows\System32\NotificationControllerPS.dll
21:33:22.0157 0x2c98 C:\Windows\System32\NotificationControllerPS.dll - ok
21:33:22.0173 0x2c98 [ 0F6BF032E3F2432B344318B4097F1C8F, 5E7C62C8D06D27226918E5EA423ACECE97B09655CA2B893DDF086D9C8E6938E4 ] C:\Program Files\Malwarebytes\Anti-Malware\CleanControllerImpl.dll
21:33:22.0173 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\CleanControllerImpl.dll - ok
21:33:22.0173 0x2c98 [ F1D9600C5E0A191C6FE18A4436116C7D, 4190DDF6B3914CB5397155E12378AE2140EF1FE3858EE4A92DDA445F904E5F4D ] C:\Windows\explorer.exe
21:33:22.0173 0x2c98 C:\Windows\explorer.exe - ok
21:33:22.0173 0x2c98 [ 11CE1327B543350D514CF30E93E265B3, 186474217B808B3FF2652E3C66B89E2ECFA8F26D3BC724923AB01F266CEF49C8 ] C:\Windows\System32\sfc.dll
21:33:22.0173 0x2c98 C:\Windows\System32\sfc.dll - ok
21:33:22.0173 0x2c98 [ C7FCE36E0BE5CD6BD8D9DAF6F2E699DF, 4C2931FAFABB7677E851BBBE28890ECAC758F76C7A76C43B228225F40CB7D7A5 ] C:\Windows\System32\sfc_os.dll
21:33:22.0173 0x2c98 C:\Windows\System32\sfc_os.dll - ok
21:33:22.0173 0x2c98 [ 63DF04BA26B4E485E7E6D9ACD497DFD8, 67BBF76887027A8924CEFF2D81F119A36283A882C2611C104F137D8375F10ACB ] C:\Program Files\Malwarebytes\Anti-Malware\ActionsShim.dll
21:33:22.0173 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\ActionsShim.dll - ok
21:33:22.0173 0x2c98 [ B8DD43C1649856AF7F34D8A0DBCE8447, 910D0B95FDE88FC6208624507DED047F741C8D7E6C9013B6167E63B337A22841 ] C:\Windows\System32\twinapi.dll
21:33:22.0173 0x2c98 C:\Windows\System32\twinapi.dll - ok
21:33:22.0188 0x2c98 [ C774DE4CADD57D2607DAE7A5BD8EDE9A, 955A9ACF857BCB7173E69A5239F5996403EAA127DB9950927BDA63E5D86751BD ] C:\Program Files\Malwarebytes\Anti-Malware\ScanControllerImpl.dll
21:33:22.0188 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\ScanControllerImpl.dll - ok
21:33:22.0188 0x2c98 [ 96BDED4523BB423B51A6D8046A10132B, 0D3AA8451DA1894DB98F492152005DEFE1947EA911446DD1112868F219F31244 ] C:\Program Files\Malwarebytes\Anti-Malware\Actions.dll
21:33:22.0188 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\Actions.dll - ok
21:33:22.0188 0x2c98 [ 7821333CE81660424940FEE144AE859B, 804A146BC91474F9A87ACCD473802EFC74441020BEB4CD455EE0B316D0B86D47 ] C:\Program Files\Malwarebytes\Anti-Malware\MBAMShim.dll
21:33:22.0188 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\MBAMShim.dll - ok
21:33:22.0188 0x2c98 [ E1E0E1E5342CACB856BEAF7F5791CE3C, 7C61BCDED4713B4B156139833C0DA0D1076A790A54218F6E3C7B51752CD6FA9E ] C:\Program Files\Malwarebytes\Anti-Malware\SwissarmyShim.dll
21:33:22.0188 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\SwissarmyShim.dll - ok
21:33:22.0188 0x2c98 [ F6C48C255DD496E69F8472173C839EEC, ACBE6DEE30302D78E4DE1D6467823E7B483CA446C78D94568C4913751EBD9E40 ] C:\Program Files\AVAST Software\Avast\ring_client.dll
21:33:22.0188 0x2c98 C:\Program Files\AVAST Software\Avast\ring_client.dll - ok
21:33:22.0188 0x2c98 [ BBA22E78C119BB5EBDB904ECB9558D7D, E149A3ECC5B44B50FCD5A70B884A7715EDC4AC0DAE904ADD3D1CB3C2D93F1F6A ] C:\Program Files\Malwarebytes\Anti-Malware\Swissarmy.dll
21:33:22.0188 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\Swissarmy.dll - ok
21:33:22.0188 0x2c98 [ F5589ED3BBE3682E278126A5DD4BA2B1, B4F9AF7592931E48C2373D0FDF6F8714083DDCD001DB4D37B7ED10D785A3D2A1 ] C:\Windows\System32\StartTileData.dll
21:33:22.0188 0x2c98 C:\Windows\System32\StartTileData.dll - ok
21:33:22.0204 0x2c98 [ 50414F7B22C6CC31CD18B88CE4C745DE, D81B59E3C96C9BC5C7B53679F928EEB189ABE4D1604AB8F150E9091AA35775BB ] C:\Windows\System32\drvstore.dll
21:33:22.0204 0x2c98 C:\Windows\System32\drvstore.dll - ok
21:33:22.0204 0x2c98 [ 520B1835AE4DAB5F31135457609AD23E, 01032AFE6291D73561078AE7A4257D5440157FC6E8C5DB98A8CD01C7A3E27458 ] C:\Windows\System32\spfileq.dll
21:33:22.0204 0x2c98 C:\Windows\System32\spfileq.dll - ok
21:33:22.0204 0x2c98 [ 898A45DFD02DFF3A880FEF65D3F9A111, A09E332E1D8CFCE612EDFC2086474CC78669BF1F97196D4CE773AEAF45AFF157 ] C:\Windows\System32\appinfo.dll
21:33:22.0204 0x2c98 C:\Windows\System32\appinfo.dll - ok
21:33:22.0204 0x2c98 [ CD872013A854EC0CF0183636E7F93E8F, 4EEF39ED7E2B225FA83B1057E6F02753C10EF0B7102552F94A7F0FE77F6E258C ] C:\Windows\System32\appinfoext.dll
21:33:22.0204 0x2c98 C:\Windows\System32\appinfoext.dll - ok
21:33:22.0204 0x2c98 [ 8E8BD6D080EF2AAAE2B17D14F41597A9, 2DD652DA9CCB71D593CB68D6CEAF6D626CCE3418B20FBEB50F34462EF0B52145 ] C:\Windows\System32\SearchIndexer.exe
21:33:22.0204 0x2c98 C:\Windows\System32\SearchIndexer.exe - ok
21:33:22.0204 0x2c98 [ 82014B48165774F3DE63E3ADCF1C9C9C, 60783BDF30B026D8FB92CBE6E2FA79E8352B38EABFD21F7E4310E3522888F33F ] C:\Windows\System32\runonce.exe
21:33:22.0204 0x2c98 C:\Windows\System32\runonce.exe - ok
21:33:22.0204 0x2c98 [ 40DAD5A56AF8DBC8640CC0E7C44E1F74, AE47CBD30BB65D1F200BE90473772A762184D5D5F1181DADBE852C60708161EE ] C:\Windows\System32\SndVolSSO.dll
21:33:22.0204 0x2c98 C:\Windows\System32\SndVolSSO.dll - ok
21:33:22.0219 0x2c98 [ A0BB0A1EEA7A26FCEB46B70AB3FD6864, ACB135204BFE0ABA0EA32369C0F74F585060108CE626741AB91D1A8A64AC6242 ] C:\Windows\System32\oleacc.dll
21:33:22.0219 0x2c98 C:\Windows\System32\oleacc.dll - ok
21:33:22.0219 0x2c98 [ AC215E26CE0D0CFAFDFAEA7C6E159208, 645AC8ACFE1973925E3BF1EDAEAAF139B8B4DA54FF6CA8B5F42E9EBC6940FAA9 ] C:\Windows\SysWOW64\runonce.exe
21:33:22.0219 0x2c98 C:\Windows\SysWOW64\runonce.exe - ok
21:33:22.0219 0x2c98 [ 385C979431FA61C848B058D023B00CFC, 3976E47AC4FE9F6FD9DBB65DBD55812E4C975B934B239056E858F44FE3B43F41 ] C:\Windows\System32\DataExchange.dll
21:33:22.0219 0x2c98 C:\Windows\System32\DataExchange.dll - ok
21:33:22.0219 0x2c98 [ 2D986E33BF8BFBE7565B3B7BBA8CF74C, EA6C226A8B6E3819EC7E11A635B34591A0318F45950A32BD3B6EE19D564C58F1 ] C:\Windows\System32\ExplorerFrame.dll
21:33:22.0219 0x2c98 C:\Windows\System32\ExplorerFrame.dll - ok
21:33:22.0219 0x2c98 [ E02B3AB0562A646B00E65411F8E903E2, 03F1BA54B8265B71503CA81F561B380BE32FF35CC60111230A54400500A5B98B ] C:\Windows\System32\OneDriveSettingSyncProvider.dll
21:33:22.0219 0x2c98 C:\Windows\System32\OneDriveSettingSyncProvider.dll - ok
21:33:22.0219 0x2c98 [ 1B3B5CB4A08EAB184CC704A678B80A46, 6C9D12503F75DFF06678488C964496A8820A95E9048E9B44AE5B883F9CE6BCC9 ] C:\Windows\SysWOW64\clbcatq.dll
21:33:22.0219 0x2c98 C:\Windows\SysWOW64\clbcatq.dll - ok
21:33:22.0235 0x2c98 [ B0F59D4D33CAD4B26F4F34C32B879B4E, 84A0CA65CF31773211D9DAB347FF5417D3E64C9B1DE6AEA9B9DC1FEF2C73B1B6 ] C:\Windows\System32\mssprxy.dll
21:33:22.0235 0x2c98 C:\Windows\System32\mssprxy.dll - ok
21:33:22.0235 0x2c98 [ 835E8E6F3264ADF021439BAFA592C354, E9FF17FE68A8581CC61B7EEF30516A9DD666251294A4CFEA7D113C23B7BCFC81 ] C:\Program Files\AVAST Software\Avast\fltlib_wrapper.dll
21:33:22.0235 0x2c98 C:\Program Files\AVAST Software\Avast\fltlib_wrapper.dll - ok
21:33:22.0235 0x2c98 [ E6BBF6FE14658B87E78B3FCE673EDEEC, 412160A0B49AF2EA18FB31B0B9EA95116004D48E1731FEA62D9BDCA8FF63720B ] C:\Windows\SysWOW64\Windows.StateRepositoryPS.dll
21:33:22.0235 0x2c98 C:\Windows\SysWOW64\Windows.StateRepositoryPS.dll - ok
21:33:22.0235 0x2c98 [ 85B87A7B4F529EC541818C241B8C0F43, 2505CBAB7459C0ECD8EDDCD3E2C09827B08D718BAF197AB24BB4E69B3948A27F ] C:\Windows\System32\edputil.dll
21:33:22.0235 0x2c98 C:\Windows\System32\edputil.dll - ok
21:33:22.0235 0x2c98 [ 76F653E7C25BCC3B924EC808E90CA461, 509F428FE8DE667EC379779D29975F937EED8DA8AC4C11FDBCC9146DB9F9373E ] C:\Windows\System32\thumbcache.dll
21:33:22.0235 0x2c98 C:\Windows\System32\thumbcache.dll - ok
21:33:22.0235 0x2c98 [ E930CA5593534CDBE299CF8F444EED44, 2FD6FCDD665D2BC00B2E709229E7B4B70330F8AAB9E8D9C846C12205A4C66DE5 ] C:\Windows\System32\windows.immersiveshell.serviceprovider.dll
21:33:22.0235 0x2c98 C:\Windows\System32\windows.immersiveshell.serviceprovider.dll - ok
21:33:22.0235 0x2c98 [ A0F67438C0D5CB82C8CF41EC02F3F486, 00015FA066E590A25F190B53DA7A7D0E150140C6DB70D1DC895A7BD91CF2D5D9 ] C:\Windows\System32\cldapi.dll
21:33:22.0235 0x2c98 C:\Windows\System32\cldapi.dll - ok
21:33:22.0251 0x2c98 [ 0C3AE732FCB7FCA35CD23C0813B032F3, 97F8CEEF50DC6257F7BEFC58CC426FF5A09AEF182EA43EC6F494BBA7C803BA41 ] C:\Windows\System32\CBDHSvc.dll
21:33:22.0251 0x2c98 C:\Windows\System32\CBDHSvc.dll - ok
21:33:22.0251 0x2c98 [ CA90905B687352D1DD825501F17B254F, 1E5FED08C1816D8A12F10EBE7F6E311AD8F9405F239B6E8A2E4E927D72324CE2 ] C:\Windows\System32\ncuprov.dll
21:33:22.0251 0x2c98 C:\Windows\System32\ncuprov.dll - ok
21:33:22.0251 0x2c98 [ 448B157DD6D590D2EBE7D761E7D799E2, FF6DADB0D5727BB571F5C1977E6D1D73FE967A027331F9E52FCBC34B8EBFF438 ] C:\Program Files\Common Files\microsoft shared\ink\IpsPlugin.dll
21:33:22.0251 0x2c98 C:\Program Files\Common Files\microsoft shared\ink\IpsPlugin.dll - ok
21:33:22.0251 0x2c98 [ 303F8C619D472C98754B369E582F8E17, 1D5EC9DD832EA97B5984939605897749C786094460CBD731AC2C44712B65CF0C ] C:\Windows\System32\drivers\mbamswissarmy.sys
21:33:22.0251 0x2c98 C:\Windows\System32\drivers\mbamswissarmy.sys - ok
21:33:22.0251 0x2c98 [ 684475093A4A806350A80FDBC3D11332, 91511A1E0349AEBD43A1067BB627798A5038752364F60A3A81D24217B433E10B ] C:\Windows\System32\energyprov.dll
21:33:22.0251 0x2c98 C:\Windows\System32\energyprov.dll - ok
21:33:22.0251 0x2c98 [ 5C6A18B45EEF87554C20B35AEBBAF095, 750AA87AD53C56300295639F1B1FB9ED70E6450C83C806E951948C7BE2A86A99 ] C:\Program Files\Malwarebytes\Anti-Malware\BrowserSDKDLLShim.dll
21:33:22.0251 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\BrowserSDKDLLShim.dll - ok
21:33:22.0251 0x2c98 [ 7FD7619E61A7019683DC36EEAD617F07, 99DE1115C6ECEF8D6FEC3120F2C44216D8380F5104BA3584C8ADEB14EFB670CC ] C:\Windows\System32\wdscore.dll
21:33:22.0251 0x2c98 C:\Windows\System32\wdscore.dll - ok
21:33:22.0266 0x2c98 [ 97101E83C8C5687CE6D025EAA027810E, A54A6122A7CFD914ACEA164A4C452A7A3191AADBAB6CE76A5CD5EEB3DD0D3F1B ] C:\Windows\System32\WofUtil.dll
21:33:22.0266 0x2c98 C:\Windows\System32\WofUtil.dll - ok
21:33:22.0266 0x2c98 [ 90C263E92A907F2453E95D55A9928E52, A9B591A3C9F6CA64CE956A4E0BCDB6F8E3054987D0EBB418F1C6419E6A146012 ] C:\Windows\SysWOW64\setupapi.dll
21:33:22.0266 0x2c98 C:\Windows\SysWOW64\setupapi.dll - ok
21:33:22.0266 0x2c98 [ 00B0A7E23AFB9EB2C42FBF6150D4F28F, 83CDCF045E76DD2728D8A1307CA24CAA7C0CBAA9D2CCC9D54CCCB8C841CDB01F ] C:\Program Files\Malwarebytes\Anti-Malware\BrowserSDKDLL.dll
21:33:22.0266 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\BrowserSDKDLL.dll - ok
21:33:22.0266 0x2c98 [ 4D23AF42F9A23755C89A973C041A8EB4, E1C657D6743C536AC4CDD2663F13155A4DC236FC8243273A5D406AEAFCBD0522 ] C:\Windows\System32\srumapi.dll
21:33:22.0266 0x2c98 C:\Windows\System32\srumapi.dll - ok
21:33:22.0266 0x2c98 [ A534B3A34AED69BC0CAA772E013AF9ED, D078E24D7D96ACB7D8D07EA1602F10870F8E807151E5FC9F6B034BF27D396F5C ] C:\Windows\SysWOW64\edputil.dll
21:33:22.0266 0x2c98 C:\Windows\SysWOW64\edputil.dll - ok
21:33:22.0266 0x2c98 [ 9A012F7D4A8E0DE2CA123E0923C6AF97, EBD6D48DE81DBC195E5DC5FFAB3664F28CCE5E8F998F34AA05A98E32AB2EAD62 ] C:\Windows\System32\CertEnroll.dll
21:33:22.0266 0x2c98 C:\Windows\System32\CertEnroll.dll - ok
21:33:22.0282 0x2c98 [ 2373AFF15817593C98995DBB1D82FD35, E21DDFBC0900C58F47B681CF8320FEB4BCFB4FB75165E60DEFD794889A1323DF ] C:\Windows\System32\twinui.dll
21:33:22.0282 0x2c98 C:\Windows\System32\twinui.dll - ok
21:33:22.0282 0x2c98 [ 319D41D79B0224EB69A72E2A0ADAFFB2, 6B64F64E2C54E3D67CEFDC2092E734A57B6B10A64B9C0B735D3927C6E95181B3 ] C:\Windows\SysWOW64\cldapi.dll
21:33:22.0282 0x2c98 C:\Windows\SysWOW64\cldapi.dll - ok
21:33:22.0282 0x2c98 [ 76AA537DA1D659BC84A91D011A64FB3D, A765D4DDEC7C9709C118EECBB02AFF844E5017E5AB1A81A61BF59CF5C07235E9 ] C:\Windows\SysWOW64\fltLib.dll
21:33:22.0282 0x2c98 C:\Windows\SysWOW64\fltLib.dll - ok
21:33:22.0282 0x2c98 [ B1F5A32218CA84BFDDF93AA5949E9841, 35074DE59D1DA4E78B9E405F3040604953C9BC29FDCC900AA037103B1460D2CE ] C:\Program Files\Malwarebytes\Anti-Malware\RTPControllerImpl.dll
21:33:22.0282 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\RTPControllerImpl.dll - ok
21:33:22.0282 0x2c98 [ 6ADCF6EFB740B694B63AA04F6F34188F, A3855578776B857A68355F1CAE40F51A529FBC08EC3779F4E343D987EA50608E ] C:\Windows\System32\pdh.dll
21:33:22.0282 0x2c98 C:\Windows\System32\pdh.dll - ok
21:33:22.0282 0x2c98 [ 3462C734AAE98242BC0B10C215DA3ABB, 8A110245D661D520DA03DFE9D91227F12793AEEBF3E5867B2734DAAD376A1E1D ] C:\Windows\System32\PhotoMetadataHandler.dll
21:33:22.0282 0x2c98 C:\Windows\System32\PhotoMetadataHandler.dll - ok
21:33:22.0298 0x2c98 [ 6517C937702411A7EB4BD78C57C0560A, DED400C0F29477A3432071670E79F7C906532F4442C2BD4508A9580CB94C7D94 ] C:\Windows\SysWOW64\WinTypes.dll
21:33:22.0298 0x2c98 C:\Windows\SysWOW64\WinTypes.dll - ok
21:33:22.0298 0x2c98 [ E2B8FFC5C985AAF2E935B9C8B62F1E73, A95B4A97F2C33F081D3830363F5BF72AC215816220288EC1697495D7FAF83BC8 ] C:\Windows\System32\ApplicationFrame.dll
21:33:22.0298 0x2c98 C:\Windows\System32\ApplicationFrame.dll - ok
21:33:22.0298 0x2c98 [ 7F5DE5039C79F67D0FBEB457238899D5, 410AE5F24EA5E1FC17FA64140CB746F22C80D54AF59F7F0377CB8531A0BBE0A3 ] C:\Windows\System32\windows.applicationmodel.datatransfer.dll
21:33:22.0298 0x2c98 C:\Windows\System32\windows.applicationmodel.datatransfer.dll - ok
21:33:22.0298 0x2c98 [ C3B479E2A2D285AE8B4BDFB0EE2393C8, 43EC853B32E88E8B4D160354908D34A036D188C9E6636CE24CF3A8622939C819 ] C:\Windows\System32\ntshrui.dll
21:33:22.0298 0x2c98 C:\Windows\System32\ntshrui.dll - ok
21:33:22.0298 0x2c98 [ 972E868DEB50ECA9255FA766D207B66D, 55E5DBA3BFA947B5A09A6395E9E03039E24F209344F42DDB1C1A012FE613AFC3 ] C:\Windows\SysWOW64\AppResolver.dll
21:33:22.0298 0x2c98 C:\Windows\SysWOW64\AppResolver.dll - ok
21:33:22.0298 0x2c98 [ E67D726BDA7476B90A46797683B8EB11, 8990C260048EE4DD6365E309CD96CEB93CFF5146FDF170ABEDB13F645FB18CE5 ] C:\Program Files\Malwarebytes\Anti-Malware\RtpShim.dll
21:33:22.0298 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\RtpShim.dll - ok
21:33:22.0298 0x2c98 [ AF86324445A0E09599FAE2CD6EC084D0, 4547015D0BA482D8FCB828A0DCDCC17E42FD1B0A3FE1D1C126592B712B5DCC08 ] C:\Windows\System32\HolographicExtensions.dll
21:33:22.0298 0x2c98 C:\Windows\System32\HolographicExtensions.dll - ok
21:33:22.0313 0x2c98 [ B4E2DE34E8417A96D79520F12FB1070D, 5CEA5939CB6B17B230108653E1D8797468833ABC61332240BFE220C9A905612C ] C:\Windows\SysWOW64\BCP47Langs.dll
21:33:22.0313 0x2c98 C:\Windows\SysWOW64\BCP47Langs.dll - ok
21:33:22.0313 0x2c98 [ 40635BC9F0E432C8F8873879DCBDA413, CD5A136387F7FBFB207A4F1C6D2FAEEFAF51530D9D7B0322A72382F11883E6BB ] C:\Windows\SysWOW64\slc.dll
21:33:22.0313 0x2c98 C:\Windows\SysWOW64\slc.dll - ok
21:33:22.0313 0x2c98 [ C02C407ECEDC2DD942B4819CEC71CFCD, 506A8066A3290C0DDDBFAFFC2E642E99F96639CB06177F9CDC05EB7082DD7FB4 ] C:\Windows\SysWOW64\sppc.dll
21:33:22.0313 0x2c98 C:\Windows\SysWOW64\sppc.dll - ok
21:33:22.0313 0x2c98 [ 33912F43AA5037C7DA331ED74E335584, E4CF3CDDEA2550D235E0566BA28626D3EB7F9C9120F66C727DFF92953DDD1959 ] C:\Program Files\Malwarebytes\Anti-Malware\MWACControllerImpl.dll
21:33:22.0313 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\MWACControllerImpl.dll - ok
21:33:22.0313 0x2c98 [ E9A66CB07CCDB9B99F084315E04FCBC7, BE68700366A365302569C3A5CCE8B96E17940D9D2987E8448978E322F94B1A9A ] C:\Windows\System32\VirtualMonitorManager.dll
21:33:22.0313 0x2c98 C:\Windows\System32\VirtualMonitorManager.dll - ok
21:33:22.0313 0x2c98 [ 6A1688F6ECB06DC0B162A699025EFF30, F6CA5B670E61C2429D923503EF033EC78B73A00BB8DF2E4CD7F383B9404A6304 ] C:\Windows\SysWOW64\OneCoreCommonProxyStub.dll
21:33:22.0313 0x2c98 C:\Windows\SysWOW64\OneCoreCommonProxyStub.dll - ok
21:33:22.0329 0x2c98 [ 39CAB582AD47DBD38FBDE5A84826DC1B, 816D95F50D6E8FEB4258AC156796533F1DD1814968F08DADB98896B8793DF7C1 ] C:\Windows\System32\AboveLockAppHost.dll
21:33:22.0329 0x2c98 C:\Windows\System32\AboveLockAppHost.dll - ok
21:33:22.0329 0x2c98 [ 77FE273FA6FFE487E689194DB20ACAE2, EFA8E4F01E77F3D83A5212CE2F6097EEFEE433653685BDBBF07A2E17CC8AE178 ] C:\Windows\System32\drivers\condrv.sys
21:33:22.0329 0x2c98 C:\Windows\System32\drivers\condrv.sys - ok
21:33:22.0329 0x2c98 [ 4943BA1A9B41D69643F69685E35B2943, 6AEEA6272E1C304D1B8907B9258513AA27CF2F35F10B76365CA8567CABB70459 ] C:\Windows\SysWOW64\cmd.exe
21:33:22.0329 0x2c98 C:\Windows\SysWOW64\cmd.exe - ok
21:33:22.0329 0x2c98 [ 56F22ED158CE034930363090ADEA6DD2, 09F7F3059BF9CD69DDA7920CB1342D2F138CC2B49F553EA074DC994632DAEAC7 ] C:\Program Files\Malwarebytes\Anti-Malware\MBAMCore.dll
21:33:22.0329 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\MBAMCore.dll - ok
21:33:22.0329 0x2c98 [ C5E9B1D1103EDCEA2E408E9497A5A88F, BAF97B2A629723947539CFF84E896CD29565AB4BB68B0CEC515EB5C5D6637B69 ] C:\Windows\System32\conhost.exe
21:33:22.0329 0x2c98 C:\Windows\System32\conhost.exe - ok
21:33:22.0329 0x2c98 [ 590EDE606E4AD541A529F7899795A430, 26904703C9B2F0E1BF0B535BF15CB91FF0A63340E12613D09876BF891A97B2F3 ] C:\Windows\System32\linkinfo.dll
21:33:22.0329 0x2c98 C:\Windows\System32\linkinfo.dll - ok
21:33:22.0329 0x2c98 [ 0600E039921A3C0CEA1BB74458648F89, D6BA200228E445A198B7021D83EB809A403748C2E0937F8CA907A7801C6A99E3 ] C:\Windows\SysWOW64\ddraw.dll
21:33:22.0329 0x2c98 C:\Windows\SysWOW64\ddraw.dll - ok
21:33:22.0344 0x2c98 [ FBFCA1A574D47EE575448B719CBBF2E4, B7CAB2D0D95679B05EFC8E1303BAA65C9B3B80527C3FD3AECDC0D2E59919D36E ] C:\Windows\WinSxS\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
21:33:22.0344 0x2c98 C:\Windows\WinSxS\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
21:33:22.0344 0x2c98 [ E59F6AEA535F84B2D10E8A5C3D75BC87, D99A975CCEF15335D0A58F52E3F2B69A20ED86445EE0899FD491FF029E0A4A0B ] C:\Windows\System32\certca.dll
21:33:22.0344 0x2c98 C:\Windows\System32\certca.dll - ok
21:33:22.0344 0x2c98 [ 3276F35D996208227346536B3D0AED0F, D941CC9C8C58D691E5F053F0B9716C2B393D6120EF8FDF068269DF368B5CDBE6 ] C:\Windows\System32\NPSM.dll
21:33:22.0344 0x2c98 C:\Windows\System32\NPSM.dll - ok
21:33:22.0344 0x2c98 [ 24F281C2B812A4C8B6C3F84A1EE178BA, DD3573105BCCBDC135BBA212FED183D4D7DAE6F517943ABA8E854D9653BD9AF8 ] C:\Windows\SysWOW64\dxgi.dll
21:33:22.0344 0x2c98 C:\Windows\SysWOW64\dxgi.dll - ok
21:33:22.0344 0x2c98 [ CBAE5FD1DAACCC60707F647A2BB5F765, BD563A8DE8DFD1B0DFBE04D5570C8205ED9B0303B4B1FC7C0AC529D5DC2A6552 ] C:\Windows\System32\ieframe.dll
21:33:22.0344 0x2c98 C:\Windows\System32\ieframe.dll - ok
21:33:22.0344 0x2c98 [ 26B064ED0BFDA418BD48EBFF46BBC2BD, CF11CBDC5722179BBB0A8BA8DAA6039B29A117F565E2CE8056FA487A4CAEE91C ] C:\Windows\System32\provhandlers.dll
21:33:22.0344 0x2c98 C:\Windows\System32\provhandlers.dll - ok
21:33:22.0360 0x2c98 [ 345E29F3359094B5049BB23A4A340CBF, 6A466FE74C46F084FD537E1212BF4095ADE29B31BDBD8F4C8084A896DAC9368A ] C:\Windows\SysWOW64\DXCore.dll
21:33:22.0360 0x2c98 C:\Windows\SysWOW64\DXCore.dll - ok
21:33:22.0360 0x2c98 [ D8C0739FBA5668530B0E9DACBC68DEC7, 40DB38763B787B60D0104E18B499DB961C97E458C95520A61816005AC68F5DBE ] C:\Windows\System32\msIso.dll
21:33:22.0360 0x2c98 C:\Windows\System32\msIso.dll - ok
21:33:22.0360 0x2c98 [ 9CAC7D20B75ECF63D1B3322802B53650, 5C258A9A97D81767386926C7D51B3BF436276B279DA0E007B06D3F0553110FB0 ] C:\Windows\System32\Windows.Shell.BlueLightReduction.dll
21:33:22.0360 0x2c98 C:\Windows\System32\Windows.Shell.BlueLightReduction.dll - ok
21:33:22.0360 0x2c98 [ 21F68466C5951E11F2B1014C30C16EA3, E9C732B49D5FC29EA77B9F4502FF2A0CF9AE9B68431BF2D79D38FAD7BC7AD6B1 ] C:\Windows\SysWOW64\msi.dll
21:33:22.0360 0x2c98 C:\Windows\SysWOW64\msi.dll - ok
21:33:22.0360 0x2c98 [ 5E2B40A5B3D489F4771E919A11863050, E303CB163DC713B0B321240918AD1DA3137CFB492B4FFE203AD88CF526D4EA62 ] C:\Windows\SysWOW64\dciman32.dll
21:33:22.0360 0x2c98 C:\Windows\SysWOW64\dciman32.dll - ok
21:33:22.0360 0x2c98 [ 6AC4698E7D42BA3396B7332531455577, D642FB67ED110CA7C2FD4D10E7D4F71151ACB591689991415C3031D6C4F33C7B ] C:\Windows\System32\SettingSyncHost.exe
21:33:22.0360 0x2c98 C:\Windows\System32\SettingSyncHost.exe - ok
21:33:22.0360 0x2c98 [ B6C6C247CE9B4D56BEBFFFEF654FE924, 4DC499B8192330AAA6AAF31523A36EFE71E845C8F6A09708F3A990A792E9C6E7 ] C:\Windows\System32\Windows.Internal.Signals.dll
21:33:22.0360 0x2c98 C:\Windows\System32\Windows.Internal.Signals.dll - ok
21:33:22.0376 0x2c98 [ 10E22431299DA9FD1DD3F2D6807B4CA5, AA3E4875923E365066EE282403FDF186CA56E69104F75CA1CB3818B81B29E6C6 ] C:\Windows\System32\TaskFlowDataEngine.dll
21:33:22.0376 0x2c98 C:\Windows\System32\TaskFlowDataEngine.dll - ok
21:33:22.0376 0x2c98 [ D435052398A8E3EE738CC0BAEFD219D1, 20417F927450753069860D4ACED575DC1AE667FCB5BDF5D9280573ABB0188B55 ] C:\Windows\SysWOW64\secur32.dll
21:33:22.0376 0x2c98 C:\Windows\SysWOW64\secur32.dll - ok
21:33:22.0376 0x2c98 [ 2007ED3D284EBCD73B343208D8FCEA92, 0D07A271CE0A11662CE8DA04D77A68924047D3A4F979709345434D202605AA4B ] C:\Windows\System32\Windows.Data.Activities.dll
21:33:22.0376 0x2c98 C:\Windows\System32\Windows.Data.Activities.dll - ok
21:33:22.0376 0x2c98 [ 86792B4A79F3DBC24F94372EC015A9D0, A07AC26E2DADED1B7C06ADC04E12B79ABA8D69962BCF2E374CCBD622D49224D4 ] C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
21:33:22.0376 0x2c98 C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll - ok
21:33:22.0376 0x2c98 [ 9EE730A5EAC93D0B67AC7D489F06DBAF, B3CCCBE2B0E192BC0C9DD8C715D121CACC332A0BEBABB1D4FCFA06801FB8DDCD ] C:\Windows\System32\Windows.UI.Core.TextInput.dll
21:33:22.0376 0x2c98 C:\Windows\System32\Windows.UI.Core.TextInput.dll - ok
21:33:22.0376 0x2c98 [ 92E13300355C7E6520B8AD8D6D327973, 1B5CBCC286A1A7D64B3F7A6A9E390AB8E5A7A6FCBB4954ED1FA337AFF356363C ] C:\Users\Slavicek\AppData\Local\Microsoft\OneDrive\19.002.0107.0005\amd64\FileSyncShell64.dll
Nahoru
durod
Návštěvník
Návštěvník
Příspěvky: 71
Registrován: 10 črc 2008 11:18

Re: Botnet - zjištěna infikace malwarem

#11 Příspěvek od durod »

pokracovani
21:33:22.0376 0x2c98 C:\Users\Slavicek\AppData\Local\Microsoft\OneDrive\19.002.0107.0005\amd64\FileSyncShell64.dll - ok
21:33:22.0391 0x2c98 [ 3DCB21D5CB2DBD5839DBCBB6A85EE147, D0D025258D02843062F2030D6E5F2E0A21D527C7587AFD73FBCE6890052A496F ] C:\Windows\SysWOW64\apphelp.dll
21:33:22.0391 0x2c98 C:\Windows\SysWOW64\apphelp.dll - ok
21:33:22.0391 0x2c98 [ 4E76662667CCFF1A16A21044BB785C13, A85766D62E4567F1025C46C307482D96011902EC42848F07F0FC9D926C03F429 ] C:\Windows\SysWOW64\pcacli.dll
21:33:22.0391 0x2c98 C:\Windows\SysWOW64\pcacli.dll - ok
21:33:22.0391 0x2c98 [ 33FBF469E8C4DD7BB8A937D2732AED9B, E3C73D25890C1CBAA39547EE6FFDE1AF132C5083D35A80D9F1A093CD8BA3EF27 ] C:\Windows\SysWOW64\sfc_os.dll
21:33:22.0391 0x2c98 C:\Windows\SysWOW64\sfc_os.dll - ok
21:33:22.0391 0x2c98 [ D779E26BF137EBDAEFDB138531989D3A, 1F8153429CA9B2923E6D91A4BEAE44C94C5A5EF9E3370CB0F70DD6ADA1863B69 ] C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
21:33:22.0391 0x2c98 C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe - ok
21:33:22.0391 0x2c98 [ A290E9849A0C0948136A785F5096F48B, FB3269CDA55197891F2FE9971D4C933D3C8BB4CCBE8EA6676F4CA3288B5A7EAD ] C:\Users\Slavicek\AppData\Local\Temp\{B2FD902D-DBB0-4E5F-AD7B-8919443F2C25}\{45D4E031-8D29-47ED-87C5-EC1B6ADF55A1}.exe
21:33:22.0391 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{B2FD902D-DBB0-4E5F-AD7B-8919443F2C25}\{45D4E031-8D29-47ED-87C5-EC1B6ADF55A1}.exe - ok
21:33:22.0391 0x2c98 [ 968A2B3D6632B5128366B44E0FA29965, 0AE10E5C99DFECADFFCC0D88132B1151B8BDC3900E4FD15DD6F291B4A237E1AA ] C:\Windows\System32\provsvc.dll
21:33:22.0391 0x2c98 C:\Windows\System32\provsvc.dll - ok
21:33:22.0391 0x2c98 [ 61A46C85E3769C163C7701D0E7ECC54B, 6F265E0B114A473A448D9FB3E36A4F14EE0C825153D9445723A2B9E857D99DDB ] C:\Program Files\AVAST Software\Avast\ashShell.dll
21:33:22.0391 0x2c98 C:\Program Files\AVAST Software\Avast\ashShell.dll - ok
21:33:22.0407 0x2c98 [ D6402D9D7E2FC26773B1D5BE17DC59AC, AC9D9701EB99C0FBDEAF1525A390804785E6D4C30129D2E51E47AEDEA02D438A ] C:\Windows\System32\mlang.dll
21:33:22.0407 0x2c98 C:\Windows\System32\mlang.dll - ok
21:33:22.0407 0x2c98 [ 78A206FE36F46440B32417C5F0B082E0, 1C373DB2E8B9D51D0502A7F0786ADF522F83166DFE0D365271D340C15AC2F97A ] C:\Windows\System32\PCShellCommonProxyStub.dll
21:33:22.0407 0x2c98 C:\Windows\System32\PCShellCommonProxyStub.dll - ok
21:33:22.0407 0x2c98 [ C517044EA89A2AD71D1A389454B925EA, 3015929F24B9A2E1896DA71698B8E09BBD99EF77DAE7ECEBCA77781A41BD8771 ] C:\Windows\System32\EhStorShell.dll
21:33:22.0407 0x2c98 C:\Windows\System32\EhStorShell.dll - ok
21:33:22.0407 0x2c98 [ 3F5D787E296D31E1956358F28F0A3F5E, 0187E0545E16438FD5D6C0BC4CE05C3FDBEF15C049F562673AA3EEF4A2AF3A49 ] C:\Windows\System32\ShellCommonCommonProxyStub.dll
21:33:22.0407 0x2c98 C:\Windows\System32\ShellCommonCommonProxyStub.dll - ok
21:33:22.0407 0x2c98 [ 1028DAE9A5EE765A293BF7C5E45F6D2D, C61342A0777620F65EF037783662CE8F442DAC2DE6451ED35982BC41164DB66E ] C:\Windows\System32\cscui.dll
21:33:22.0407 0x2c98 C:\Windows\System32\cscui.dll - ok
21:33:22.0407 0x2c98 [ 680045579134D8AD9D0400A9DBE30786, 6A8F00C4BF7CE696EDEBA9E6C401FF9DD7EB59F34AF25D7EEE591B4837D67C7C ] C:\Windows\System32\dllhost.exe
21:33:22.0407 0x2c98 C:\Windows\System32\dllhost.exe - ok
21:33:22.0423 0x2c98 [ 6F32F49A3D9E81C336D8E95CAC9A7256, D8BED3F65B5515969EB77203F98AB37EECBCF12AD0F5E1EF6202D60FA0E708F7 ] C:\Windows\System32\LicenseManagerApi.dll
21:33:22.0423 0x2c98 C:\Windows\System32\LicenseManagerApi.dll - ok
21:33:22.0423 0x2c98 [ CD674116E73598A606B69C6AD616586F, 10F3B473F9D9E9434D3FE39DFF822A387D1F98B6DE5F793C3128DDBE79E76982 ] C:\Windows\System32\IconCodecService.dll
21:33:22.0423 0x2c98 C:\Windows\System32\IconCodecService.dll - ok
21:33:22.0423 0x2c98 [ C8C105F63CDE2E1A5687A4565E16B2A5, BE0C00D236F8B8EF7E2724414BC0DF58BD9732666A3BE54F4E395BD577F5849A ] C:\Windows\System32\cflapi.dll
21:33:22.0423 0x2c98 C:\Windows\System32\cflapi.dll - ok
21:33:22.0423 0x2c98 [ E2D19F5D7A6C8DA27DD29967026DF0D3, BB4A13D34634B65C5F51ACF8AFECF2B78C978449F5C52E0AB2E57892C2899BD1 ] C:\Windows\SysWOW64\msctf.dll
21:33:22.0423 0x2c98 C:\Windows\SysWOW64\msctf.dll - ok
21:33:22.0423 0x2c98 [ 6AFF12D8D6DEE5CEE7A75740BBB60F72, F18FCC5E4EA4275FB97D9B18B7E59D9DE6E5DF4FF274592EEECD79FECC8AA1C7 ] C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
21:33:22.0423 0x2c98 C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe - ok
21:33:22.0423 0x2c98 [ 29286AE45DB7EC4D9F8FC15BB3BEA51A, 81A3A7C75B0F8A3F41930AEE18A13487846499F506E9D89A458B8E3EA2E178A6 ] C:\Windows\SysWOW64\webio.dll
21:33:22.0423 0x2c98 C:\Windows\SysWOW64\webio.dll - ok
21:33:22.0423 0x2c98 [ A7449DA6B6E49C9D713FA1CA9BF4A27E, F3EEC5A3C67FEF3EA832AC6486690508B24DEAB6E96EC313AAE7E5C8559259B1 ] C:\Windows\ShellExperiences\StartUI.dll
21:33:22.0423 0x2c98 C:\Windows\ShellExperiences\StartUI.dll - ok
21:33:22.0438 0x2c98 [ F621B9A71CE03D32550AFB205C50BA07, 45E3D6B6B9AA91EBB9ADBF97E50E30C64A576DD8932BCA68970F34595940E034 ] C:\Windows\System32\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
21:33:22.0438 0x2c98 C:\Windows\System32\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll - ok
21:33:22.0438 0x2c98 [ AC6176926C761BB4DD9A8086811713BA, A7699AFED5C8B5C0BA0C3F06A5658812E52AE28FCAFD00C554D72452B42F3A24 ] C:\Windows\System32\Windows.Storage.ApplicationData.dll
21:33:22.0438 0x2c98 C:\Windows\System32\Windows.Storage.ApplicationData.dll - ok
21:33:22.0438 0x2c98 [ 644E395707A900098ACB3A7A2707EA97, 13EE6A61D5DE7485B39E74E955D79ED6E61BF6847C01E1844850B701137C820B ] C:\Windows\System32\biwinrt.dll
21:33:22.0438 0x2c98 C:\Windows\System32\biwinrt.dll - ok
21:33:22.0438 0x2c98 [ 6CFF0673CE2002A2FE2218642605187A, 5E979C34A5FEB14ED18F36E956B0614FF305C8596DD01571A2EBABDC8131CE77 ] C:\Windows\System32\RuntimeBroker.exe
21:33:22.0438 0x2c98 C:\Windows\System32\RuntimeBroker.exe - ok
21:33:22.0438 0x2c98 [ 0990ECA30D0E67665BF4533957A34221, E3ED4DD60814A7D2C9961EB67FEBE9ABA0B50C6E47363D6CED100C98FBD37747 ] C:\Program Files\AVAST Software\Avast\aswSecDns.dll
21:33:22.0438 0x2c98 C:\Program Files\AVAST Software\Avast\aswSecDns.dll - ok
21:33:22.0438 0x2c98 [ 4578E6EFA9E558CB6D58D96C8D416F9E, E467A7C75984580E9F2CD05A6A0DE8A0FC16B69F27B4F2A7D7D1977B824C587D ] C:\Windows\System32\SensApi.dll
21:33:22.0438 0x2c98 C:\Windows\System32\SensApi.dll - ok
21:33:22.0454 0x2c98 [ 1078B70DC6798712162EDFC3EEA5B043, 2A144C99974B31124EA0D5CE3A8F115AD80237D682E05955ED32E39A9A59898E ] C:\Program Files\AVAST Software\Avast\aswpsic.dll
21:33:22.0454 0x2c98 C:\Program Files\AVAST Software\Avast\aswpsic.dll - ok
21:33:22.0454 0x2c98 [ B4785F3568D19AD5A8018A7AC957D8EB, 5010746CF4102526D8D4511F4868A100EE49FCC70885C6C072EB8C44E27199FC ] C:\Program Files\AVAST Software\Avast\aswsys.dll
21:33:22.0454 0x2c98 C:\Program Files\AVAST Software\Avast\aswsys.dll - ok
21:33:22.0454 0x2c98 [ 9A8F5F6E4CAD0E173D48CE4316C80973, B5AF083176A72D0CFBEA1E1D9DF73EF75B059453782AD64DA4992E0BFD842FCF ] C:\Program Files\AVAST Software\Avast\AhResMai.dll
21:33:22.0454 0x2c98 C:\Program Files\AVAST Software\Avast\AhResMai.dll - ok
21:33:22.0454 0x2c98 [ CAE7F91C4619B8ECF1761D1827FEBDB2, 2CC74C97E393BA448330B263829590CB6A5DB513AE7D2B9DC660BEEF8695357D ] C:\Windows\System32\Windows.Internal.Shell.Broker.dll
21:33:22.0454 0x2c98 C:\Windows\System32\Windows.Internal.Shell.Broker.dll - ok
21:33:22.0454 0x2c98 [ 194D3A8BDE71F71AD416008B1304DFD0, DBA84821DF9251F2CCC34BB6B2B6BBFE3D8C4EC4427A061C7A4C10558F6AAEAB ] C:\Program Files\AVAST Software\Avast\AhResStd.dll
21:33:22.0454 0x2c98 C:\Program Files\AVAST Software\Avast\AhResStd.dll - ok
21:33:22.0454 0x2c98 [ 7CCD1B4960B56B8AB2183007FC6C6BE2, E0906096E3EB4BDA953D3659E85BE1DA5F80C2AF89C68D74FA0B94D2E15D7385 ] C:\Windows\System32\fontgroupsoverride.dll
21:33:22.0454 0x2c98 C:\Windows\System32\fontgroupsoverride.dll - ok
21:33:22.0454 0x2c98 [ B1518A05E8EE48DD0C48EC028CD1BDF4, D7E1CACB4DA5905E5B897BBE70C4ED27C1C141595E90B85E2831E94FC6A6B2C1 ] C:\Windows\System32\Windows.Globalization.Fontgroups.dll
21:33:22.0454 0x2c98 C:\Windows\System32\Windows.Globalization.Fontgroups.dll - ok
21:33:22.0469 0x2c98 [ A6F758B05834ED04D95AD1A4A137F5FC, 659D8E5B1B560189F973D10BBA021E02796103C84434899768BBD672F2D4DF3B ] C:\Windows\SysWOW64\netprofm.dll
21:33:22.0469 0x2c98 C:\Windows\SysWOW64\netprofm.dll - ok
21:33:22.0469 0x2c98 [ 9EFB3F88464A6C6D787887C19A388B2E, 65C1661D6901C78FAA247E49586DBC3C25DB6C6A65DEB75F973C28148F15B9D1 ] C:\Program Files\AVAST Software\Avast\AhResWS2.dll
21:33:22.0469 0x2c98 C:\Program Files\AVAST Software\Avast\AhResWS2.dll - ok
21:33:22.0469 0x2c98 [ BC4DF52F3AB86143E3041BCC74EFB5C5, F3258AA91AB40B3418C7028190866A9E723C7EED712B06FE91656E869DFEE542 ] C:\Program Files\AVAST Software\Avast\AhResRsw.dll
21:33:22.0469 0x2c98 C:\Program Files\AVAST Software\Avast\AhResRsw.dll - ok
21:33:22.0469 0x2c98 [ 5CD213B355D5A4869BE21916C2E03E00, A7CBA1CBA5BEFA50B67FE8E822076564175A1D403F7B561935E95470540308CD ] C:\Program Files\AVAST Software\Avast\aswsecapi.dll
21:33:22.0469 0x2c98 C:\Program Files\AVAST Software\Avast\aswsecapi.dll - ok
21:33:22.0469 0x2c98 [ A473A8F0E0AC2FFBE202E4A9B05B413D, 7FB77B264807FAFA8AB0EC009B88C726838F0F1B32BD7A66C005326F90BD111D ] C:\Windows\System32\Windows.Services.TargetedContent.dll
21:33:22.0469 0x2c98 C:\Windows\System32\Windows.Services.TargetedContent.dll - ok
21:33:22.0469 0x2c98 [ 548F9DC89AA91C611D824C849C2CAD3F, AD800EF62C659B0D79E32F7E2486610196F4A57340D284ED4E5BCAE582D3EF48 ] C:\Windows\System32\d3d9.dll
21:33:22.0469 0x2c98 C:\Windows\System32\d3d9.dll - ok
21:33:22.0485 0x2c98 [ 7930632DCF005CD2AB07B07905E853E3, 5F9FCBA8E1E57B30C92817F827A2C1EE43DCD986151245222142ECEF9735879E ] C:\Program Files\AVAST Software\Avast\aswcml.dll
21:33:22.0485 0x2c98 C:\Program Files\AVAST Software\Avast\aswcml.dll - ok
21:33:22.0485 0x2c98 [ 90186582C16A309B61EAE4803A69AC46, 6E0FE2989255E3F562FFC46017785E93AE3C941CC72D502CFD05AE4451BB2A7B ] C:\Program Files\AVAST Software\Avast\aswidplog.dll
21:33:22.0485 0x2c98 C:\Program Files\AVAST Software\Avast\aswidplog.dll - ok
21:33:22.0485 0x2c98 [ 0304630DE1F0E2CDDABD63B064208C91, C7A1EE21898C2E8002121C3DA8876787AC90016E1C3A0BCDD6C7957E6CFC32D3 ] C:\Program Files\AVAST Software\Avast\aswdetallocator.dll
21:33:22.0485 0x2c98 C:\Program Files\AVAST Software\Avast\aswdetallocator.dll - ok
21:33:22.0485 0x2c98 [ 3C56E9E4159C5DE3605166152A9350B6, CCF2C81D5F3C12B1A8D4C2EE356B0B45D066AD673055C7AA3B7E41EDEA7E4E82 ] C:\Program Files\AVAST Software\Avast\aswcomm.dll
21:33:22.0485 0x2c98 C:\Program Files\AVAST Software\Avast\aswcomm.dll - ok
21:33:22.0485 0x2c98 [ 097A3F87D8DD45A68A4C2467C0A78D71, BD6C34A3FD7A6CA32DE47104636833DFA2F4B96DB827F6DA6290F4C2A5F545A4 ] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
21:33:22.0485 0x2c98 C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll - ok
21:33:22.0485 0x2c98 [ 5686FDCB3C962DF1347CF8DF6FFA2AE4, 2E5895C89791B0CF231C86EFB62BB7889B49151DF6C2049A262D0115DBB88B0A ] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
21:33:22.0485 0x2c98 C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll - ok
21:33:22.0485 0x2c98 [ E137F5D05E63B2B1718E1FE0382F4BC2, C001C843B9A6BBCEBE02477607984D7376D6ABE3A3C052511CDE80618D992862 ] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
21:33:22.0485 0x2c98 C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll - ok
21:33:22.0501 0x2c98 [ 1FE417ABACFD43D48DCE98BECC3DBCF7, 46FF59A51E3A6F210B9CDB5C8A443C0AFD84563A9817660D29C788B434EDAE1D ] C:\Program Files\AVAST Software\Avast\aswremoval.dll
21:33:22.0501 0x2c98 C:\Program Files\AVAST Software\Avast\aswremoval.dll - ok
21:33:22.0501 0x2c98 [ 7FFC5296181C8A82C719DE75429AF725, 5806EA6A62701D1B72FBF56DDE8F7996BDE59543E27198DEDCD3D506F92D8D4B ] C:\Windows\System32\Windows.Storage.Search.dll
21:33:22.0501 0x2c98 C:\Windows\System32\Windows.Storage.Search.dll - ok
21:33:22.0501 0x2c98 [ A5E524722DC716D404BCDD6FA6737CD4, 7E33D41C9C7EA58299157ADD036AA062840BB911982992CC7360325284E69D3C ] C:\Program Files\AVAST Software\Avast\aswntsqlite.dll
21:33:22.0501 0x2c98 C:\Program Files\AVAST Software\Avast\aswntsqlite.dll - ok
21:33:22.0501 0x2c98 [ 874EA26A48B134F229759F306F3EF58E, 5D4EF16279FA046C5DF64EF8B1DEF6117905764215B80C35E59F338394B6B533 ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
21:33:22.0501 0x2c98 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe - ok
21:33:22.0501 0x2c98 [ 38BE2B03F7FD8D885B9BF4B10D86B04C, 2AEB4B06D0F1DF657F4A2CDAFF8B72172163E2D8632E3E55DC8E3FC69EB7CD77 ] C:\Program Files\AVAST Software\Avast\aswwinamapi.dll
21:33:22.0501 0x2c98 C:\Program Files\AVAST Software\Avast\aswwinamapi.dll - ok
21:33:22.0501 0x2c98 [ 6C42AC75999EDAC78BF007FE6EABC698, DAF1E9CF817999006E0C1A23C2A884AFC3404DCF8590122E55185C54D4A70BC2 ] C:\Program Files\AVAST Software\Avast\ahResSecDns.dll
21:33:22.0501 0x2c98 C:\Program Files\AVAST Software\Avast\ahResSecDns.dll - ok
21:33:22.0516 0x2c98 [ 71FD1575C29372AFAAD551FA9E157202, 429DF5A795A038A800CF4B1C96BE47CF39AC57D9252C12412E07A415AD51642C ] C:\Program Files\AVAST Software\Avast\AhResIdp.dll
21:33:22.0516 0x2c98 C:\Program Files\AVAST Software\Avast\AhResIdp.dll - ok
21:33:22.0516 0x2c98 [ 6FA5BAE043C3207B3B758C8433DBA34C, AACFA93C193EE895890B2342903DE5E0F85216844C7419C694CAEB0F02E65238 ] C:\Program Files\AVAST Software\Avast\aswVmm.dll
21:33:22.0516 0x2c98 C:\Program Files\AVAST Software\Avast\aswVmm.dll - ok
21:33:22.0516 0x2c98 [ 657899E593B30BA309A2DE1C041E913B, B9DACF424EA9E9B2BAB7275107D6721581CC9DD8E1328129B492C93E59BA7348 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
21:33:22.0516 0x2c98 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
21:33:22.0516 0x2c98 [ 4B56C2B7500F7487E1709BDC14F881A5, D23300D16ECED56B143D48C968DAC6365055639E968D4E53EC4CACE58C6FE67E ] C:\Windows\SysWOW64\normaliz.dll
21:33:22.0516 0x2c98 C:\Windows\SysWOW64\normaliz.dll - ok
21:33:22.0516 0x2c98 [ 44E37C309BEAAE30B43CE9BF23C310BA, B64C8076AB51233CB5063CB3170BCE349BE4F361C5EBD533B502BADA19D51984 ] C:\Windows\SysWOW64\npmproxy.dll
21:33:22.0516 0x2c98 C:\Windows\SysWOW64\npmproxy.dll - ok
21:33:22.0516 0x2c98 [ 00000000000000000000000000000000, 0000000000000000000000000000000000000000000000000000000000000000 ] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
21:33:22.0516 0x2c98 C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll - ok
21:33:22.0516 0x2c98 [ 845B791E6C148419279A68043959EE3A, C5CE01B5200B3CA753D4416DDD26D0CE9B40B75AE5059AAC2B09887CBAE75B7B ] C:\Windows\System32\RTMediaFrame.dll
21:33:22.0516 0x2c98 C:\Windows\System32\RTMediaFrame.dll - ok
21:33:22.0532 0x2c98 [ 961D9A30C79A5ED54FE7F0D7E161EE40, 722305E1516E2A45A3BF81617B86DF8B95CF25A5F1A52DB01E3FC40F90C5EA62 ] C:\Program Files\AVAST Software\Avast\custody.dll
21:33:22.0532 0x2c98 C:\Program Files\AVAST Software\Avast\custody.dll - ok
21:33:22.0532 0x2c98 [ AF9BF3BC55135CC3FCA8BA086F77039F, 1392AEA257193009E0CD974BDB169FDF6CE063E66DBA2994F86F2F547BA63F95 ] C:\Program Files\AVAST Software\Avast\ffl2.dll
21:33:22.0532 0x2c98 C:\Program Files\AVAST Software\Avast\ffl2.dll - ok
21:33:22.0532 0x2c98 [ CFF02437DE52F8970A91E870ECC3F43A, 668DB64B8EB24473E09C510FF032779D533C838D71D853823023B63EBBBEF001 ] C:\Program Files\AVAST Software\Avast\defs\19062404\ArPot.dll
21:33:22.0532 0x2c98 C:\Program Files\AVAST Software\Avast\defs\19062404\ArPot.dll - ok
21:33:22.0532 0x2c98 [ E70A3DAD86E2D24B28A315A140E20807, 1A97AF4597E65B39A1CC2C26C62FDBC5FEB4BFE9F5ADD48F0AB8EBB462DBF7A2 ] C:\Windows\System32\UIAutomationCore.dll
21:33:22.0532 0x2c98 C:\Windows\System32\UIAutomationCore.dll - ok
21:33:22.0532 0x2c98 [ 53D13E814846BAD9C30F00F496227C90, 9FCE67386DAFEB33C6BD140D73A8271C04866EDD1F8CEC707A9EAF54B7DA6A97 ] C:\Program Files\AVAST Software\Avast\gui_cache.dll
21:33:22.0532 0x2c98 C:\Program Files\AVAST Software\Avast\gui_cache.dll - ok
21:33:22.0532 0x2c98 [ B5F86843EAA8EF32E4C6D9E15987D788, 49171641715B8F72B089B738DF723C51753824DC29F9BF7324358F5567D6E5AB ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
21:33:22.0532 0x2c98 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll - ok
21:33:22.0548 0x2c98 [ E027A6E99EF709AFD195FD6329224C47, B31B85BF369DC36363B0E527AE3B8E95B33699D17D09C6313C43E7373A3E6874 ] C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{4C8C0BEA-DB3B-4813-A4F4-DE5FDA7E598F}.tmp
21:33:22.0548 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{4C8C0BEA-DB3B-4813-A4F4-DE5FDA7E598F}.tmp - ok
21:33:22.0548 0x2c98 [ AB67816718E5C65CC326BE56AC0B9E73, D6F19026CB87C9BB5521D668B13347B68F297FCE34C5F1BFE530574B16ADB2D5 ] C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{C889ED98-4590-4872-A7DB-DF8CDDB39288}.tmp
21:33:22.0548 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{C889ED98-4590-4872-A7DB-DF8CDDB39288}.tmp - ok
21:33:22.0548 0x2c98 [ 650B50DCC517FEABB1C5EAEBFEEF2EF8, D99BA9C6B2236185B9C0E9D5D4EF0FD5D8AEBBB701DA27CB2D41632EFDF93D08 ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll
21:33:22.0548 0x2c98 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll - ok
21:33:22.0548 0x2c98 [ FA17EC109029B01C1DC956FF3BD6FC77, D657D71001E5ECDA4BBBC4C35B2B17BF7FC87E90C965A115D59670A3EDD5F8CD ] C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{20287C20-0356-4CFB-92AF-4CDD0EB37A32}.tmp
21:33:22.0548 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{20287C20-0356-4CFB-92AF-4CDD0EB37A32}.tmp - ok
21:33:22.0548 0x2c98 [ 9D1698A1CE1FDF608C620DB0E446A900, 99B2BEDB872AB71E7335D1B403E6D56A834A35B65CAE9DE542CEF8089EC71775 ] C:\Windows\System32\Windows.Cortana.PAL.Desktop.dll
21:33:22.0548 0x2c98 C:\Windows\System32\Windows.Cortana.PAL.Desktop.dll - ok
21:33:22.0548 0x2c98 [ ADA0AC9EACD2DD91C300918AED32AD9D, C090C77E0C7244818B97D1B3DE6FECEB3C8EA226C29F82654A9352AB64ECECD3 ] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
21:33:22.0548 0x2c98 C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll - ok
21:33:22.0563 0x2c98 [ 9316D7FAE2B2A1A444A8823DCEF20189, 6EC60215507D4E671F743164A247362DA212ACD65F9E0CFB676ABB0F9A428DFA ] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
21:33:22.0563 0x2c98 C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll - ok
21:33:22.0563 0x2c98 [ 3C4690B89C5F7AE5D97140916DE236B9, D13058DC3605EE4A556A45806519076EB07E20DC831B64BF4AC2918E6DF47B88 ] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
21:33:22.0563 0x2c98 C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll - ok
21:33:22.0563 0x2c98 [ BAE2B3BE1E6E037B9F61E14F19A72F0F, 7B6D06A39CB7FEF411885570F19A5AB216C120DBE6C0250ED26FFAE4863021A3 ] C:\Program Files\AVAST Software\Avast\ashMaiSv.dll
21:33:22.0563 0x2c98 C:\Program Files\AVAST Software\Avast\ashMaiSv.dll - ok
21:33:22.0563 0x2c98 [ 2E939E8DC2C1910056D4D7B72E79EDEC, B1B0E848DFB98074211B284D087C3CEB756FB6ABD9F3B6E3F74DA4028E0CBCD9 ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
21:33:22.0563 0x2c98 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll - ok
21:33:22.0563 0x2c98 [ BC01CBA4007FFADB6229B2535775C39C, 27405AE5A5DB02D2F7B8D59568549B6C771708A2E221FF4AC4F43151EBF941CB ] C:\Windows\System32\ActionMgr.dll
21:33:22.0563 0x2c98 C:\Windows\System32\ActionMgr.dll - ok
21:33:22.0563 0x2c98 [ 5FD52C0806F86E4CFBE6DD833760ABB6, 391BB3E897A45B6D25C5C6FF7FF6C5B0FA15C14A862A923248DFF56C4260B913 ] C:\Program Files\AVAST Software\Avast\defs\19062404\exts.dll
21:33:22.0563 0x2c98 C:\Program Files\AVAST Software\Avast\defs\19062404\exts.dll - ok
21:33:22.0579 0x2c98 [ 82A46BC3984CCF523B908425C0EAB2F4, 60E1E0D83C67F9699B7C5F61712BFC81F4EA4EBE363344D78101CAA8EA97EAAE ] C:\Windows\System32\PersonaX.dll
21:33:22.0579 0x2c98 C:\Windows\System32\PersonaX.dll - ok
21:33:22.0579 0x2c98 [ 72621D5222EC454DCFB8FB9AD25F55A8, F756F0911C85EA8DDF22AC2FBC659DDA2DA18EE4AF38C1A1327F809ED3CB14AF ] C:\Windows\System32\Speech_OneCore\common\sapi_onecore.dll
21:33:22.0579 0x2c98 C:\Windows\System32\Speech_OneCore\common\sapi_onecore.dll - ok
21:33:22.0579 0x2c98 [ 688A7FB5E3B7637294A2C49ED7BEACF7, 27C4C2ED4E0CE6BA78D0C107C5307EB1CCF6778DC09DC9097BD67E64313849F4 ] C:\Program Files\AVAST Software\Avast\aswStreamFilter.dll
21:33:22.0579 0x2c98 C:\Program Files\AVAST Software\Avast\aswStreamFilter.dll - ok
21:33:22.0579 0x2c98 [ 761C34D7A04923722FBDD8171A34242D, 1B920F84A33CFACF51B76D86A6A8EF44B22DAEBAD5BEDC67F5985709CA7F8451 ] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
21:33:22.0579 0x2c98 C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll - ok
21:33:22.0579 0x2c98 [ 31443B78827233DA2F6C0CF357E59EFB, C816119546638F05E7F48BAE22AC7A089BB970DC6FADCD35E06F1E58936E5CD7 ] C:\Program Files\AVAST Software\Avast\hns_tools.dll
21:33:22.0579 0x2c98 C:\Program Files\AVAST Software\Avast\hns_tools.dll - ok
21:33:22.0579 0x2c98 [ 115656AD28855045091855370D5D2BDB, 1F53E14F435173A9A054EEBB60F4D4F2837FD82FA795CDD7D247C41FF611AFA6 ] C:\Program Files\AVAST Software\Avast\aswDnsCache.dll
21:33:22.0579 0x2c98 C:\Program Files\AVAST Software\Avast\aswDnsCache.dll - ok
21:33:22.0579 0x2c98 [ 520ECC2C8BC6979A6C9623D0309F2DA8, B16AC2831A89AE98DCF2E6A1A5F4274F3C3438099B4521AE693953327678CBE9 ] C:\Program Files\AVAST Software\Avast\aswidsagent.exe
21:33:22.0579 0x2c98 C:\Program Files\AVAST Software\Avast\aswidsagent.exe - ok
21:33:22.0594 0x2c98 [ EADDF2E0335ED7E440A220C6A63214BA, C78001A6657A8892BDB67DE37D931D81AB7151A9DF284C20CFD51B1B4456C0F4 ] C:\Program Files\AVAST Software\Avast\aswUrlCache.dll
21:33:22.0594 0x2c98 C:\Program Files\AVAST Software\Avast\aswUrlCache.dll - ok
21:33:22.0594 0x2c98 [ DC6DB08D85337C9675F94B01043279AE, B09E491113F9E95F4EE00BB51BB21D4967BAC333C0DCD030A10AEA9B9E52032B ] C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{C080863B-A89C-4D88-ACDC-EF2116763D63}.tmp
21:33:22.0594 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{C080863B-A89C-4D88-ACDC-EF2116763D63}.tmp - ok
21:33:22.0594 0x2c98 [ 8C2513482E1A2A379DF2648C701919D8, 03E8609DF217332CE77F2B44AD5CBEF08E76A60DFB84D8142DB21171CFD08953 ] C:\Program Files\AVAST Software\Avast\rescue_disk.dll
21:33:22.0594 0x2c98 C:\Program Files\AVAST Software\Avast\rescue_disk.dll - ok
21:33:22.0594 0x2c98 [ C220CF0847FA2EC83CA30901ACEA030F, 408CF06907FF98A49A9A675224430B0DE7398AA183225B307CD2E10CE1AB8A79 ] C:\Windows\System32\ConstraintIndex.Search.dll
21:33:22.0594 0x2c98 C:\Windows\System32\ConstraintIndex.Search.dll - ok
21:33:22.0594 0x2c98 [ C74D46C1F542F5FEB9B7E1A8EC04986D, FA83733A81BA8D96EDFD15C1914D5A6056D73C61540C8747E9AE1343DA47A63D ] C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{7BAE6D00-5CC2-4DDE-A57C-D981A356951E}.tmp
21:33:22.0594 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{7BAE6D00-5CC2-4DDE-A57C-D981A356951E}.tmp - ok
21:33:22.0594 0x2c98 [ 3EA0DDAAB62367549D5BA95EBED69266, 7F1440F068B0606ADF8DAA49519378CEB0A1A3F498D13C16FF247BD55B6F3734 ] C:\Windows\System32\Windows.Web.Http.dll
21:33:22.0594 0x2c98 C:\Windows\System32\Windows.Web.Http.dll - ok
21:33:22.0610 0x2c98 [ 517ECD823EB9A03368294C6C33A695D0, 7BA4EF2C5E9D15A4EE8ACC169CA233010DF8D1BC7088665E06C9E71BBA0CD40C ] C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{4C533BFC-1B7B-4D17-89C0-02F4211C3966}.tmp
21:33:22.0610 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{4C533BFC-1B7B-4D17-89C0-02F4211C3966}.tmp - ok
21:33:22.0610 0x2c98 [ 3428F170E1953B4C4EA10A5F58B55908, B554E04021472C3C2BBDED2B4BBB4F6648932356F8DA409A2A7F6AC02E54B306 ] C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{B40FDBFF-CE85-4266-9B7C-10B770A107EC}.tmp
21:33:22.0610 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{B40FDBFF-CE85-4266-9B7C-10B770A107EC}.tmp - ok
21:33:22.0610 0x2c98 [ 96D681B7DE0BA6BFA1DC55915003CD05, 26CDA6A9A67F20A494F0EF3577D14F5DDA1F0D4428891DBD271A757833285939 ] C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{19C80014-1964-440B-B493-B0A6532C9516}.tmp
21:33:22.0610 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{19C80014-1964-440B-B493-B0A6532C9516}.tmp - ok
21:33:22.0610 0x2c98 [ 85D8D497E3CFCD66607DAD332378DE8B, FEB2FF9315B41A7D13C9F3EB4CFDD612C951CA02330BC5A9129881E148769C7F ] C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{FBFA0994-63FF-4B69-9EC4-9E09002B1347}.tmp
21:33:22.0610 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{FBFA0994-63FF-4B69-9EC4-9E09002B1347}.tmp - ok
21:33:22.0610 0x2c98 [ CD0DAF878147B723108C428370FF0355, A5C3D8A516FD0A15DAAB442DA424E996112C355239B985413EAA4DC1FAB76303 ] C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{F644C994-C578-48CB-AA52-2FE080B81A41}.tmp
21:33:22.0610 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{5C39B74B-7809-4F27-B898-ECFB06C580D6}\{F644C994-C578-48CB-AA52-2FE080B81A41}.tmp - ok
21:33:22.0610 0x2c98 [ C0759311707FDDB9ADB9301CCEADBD12, 5F1D8F77488FA12F77B6513C699EC3B20B9293E2E3D66FF2BAA83403207260C4 ] C:\Windows\System32\FlightSettings.dll
21:33:22.0610 0x2c98 C:\Windows\System32\FlightSettings.dll - ok
21:33:22.0626 0x2c98 [ 6A1994B132643694370EB3B22C55CED6, C457B801357DA943113B6538F81247115333413B911DE85361DCCC1C67925957 ] C:\Windows\SysWOW64\netapi32.dll
21:33:22.0626 0x2c98 C:\Windows\SysWOW64\netapi32.dll - ok
21:33:22.0626 0x2c98 [ 254DFC72DDF0F3DC78EB799437B1CFA9, 7D1ACD9F1C1CB8C001519FC01B7C9582667DC713C72E5BC293C8F04038CB48DB ] C:\Windows\SysWOW64\wkscli.dll
21:33:22.0626 0x2c98 C:\Windows\SysWOW64\wkscli.dll - ok
21:33:22.0626 0x2c98 [ 7E964F67F32B39F44D3395A4FB7946DE, 1C6F61488A2E9DE48959DE5024C509C65FE23F10B2BC91486693FFA74F8EC4CB ] C:\Program Files\Malwarebytes\Anti-Malware\ArwControllerImpl.dll
21:33:22.0626 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\ArwControllerImpl.dll - ok
21:33:22.0626 0x2c98 [ A719D86E2E1375B08DC359757DAAD475, 9B8ED77FEDDB409FBDE00034B4049574D8AE5AE5062AA1A834F7F1C84086D4D1 ] C:\Windows\SysWOW64\netutils.dll
21:33:22.0626 0x2c98 C:\Windows\SysWOW64\netutils.dll - ok
21:33:22.0626 0x2c98 [ 2BE237D32CCF7B12AD1AFDE20E742A1E, F3971BE41E9C299761D232F5D9A2B1E24040EBDBA91F7FBD6DB192D02B18A112 ] C:\Program Files\AVAST Software\Avast\setup\instup.exe
21:33:22.0626 0x2c98 C:\Program Files\AVAST Software\Avast\setup\instup.exe - ok
21:33:22.0626 0x2c98 [ C81C552A15C9A6E6861A8AE58A9EEB94, FBD0FEB04DB81DB2C565BB63016E3D4D03AB174ED4FC20270BAB542D83D9C3C1 ] C:\Program Files\Malwarebytes\Anti-Malware\MwacSdkShim.dll
21:33:22.0626 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\MwacSdkShim.dll - ok
21:33:22.0626 0x2c98 [ 11DF7C777F72662DA0233C58FB918379, E1257C328D3FC0A3186CCDC67D05950851506193ED58AE21F02D56482A3752C1 ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
21:33:22.0626 0x2c98 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll - ok
21:33:22.0641 0x2c98 [ 51E635028068CB6A2EE7370B01CF863E, AA6370C848E39B14C8E70632D7D3B7159E326E414B5E0C89E445949B2C9F80A9 ] C:\Program Files\AVAST Software\Avast\shepherdsync.dll
21:33:22.0641 0x2c98 C:\Program Files\AVAST Software\Avast\shepherdsync.dll - ok
21:33:22.0641 0x2c98 [ 21747912F160C2F4904FB8E4459EA751, A09B159512A693C9ADC78C4BA3FD2ABDCB544F228E47014019B92C41F6864033 ] C:\Program Files\Malwarebytes\Anti-Malware\MwacLib.dll
21:33:22.0641 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\MwacLib.dll - ok
21:33:22.0641 0x2c98 [ CC71C23C8F7A204880604D5812A4C76A, 36673278B17E670F5B0197655B920BA5FEBC485CFC823C5E202792F4EA99CC90 ] C:\Program Files\AVAST Software\Avast\defs\19062404\aswAR.dll
21:33:22.0641 0x2c98 C:\Program Files\AVAST Software\Avast\defs\19062404\aswAR.dll - ok
21:33:22.0641 0x2c98 [ 61C2B0B6DA1A1EA12381B709DE416E55, ECA7191C2E23CBD2739E8A9ABD065ABCE38570EACCB43C30683CF84609F4ABC8 ] C:\Program Files\AVAST Software\Avast\defs\19062404\aswRawFS64.dll
21:33:22.0641 0x2c98 C:\Program Files\AVAST Software\Avast\defs\19062404\aswRawFS64.dll - ok
21:33:22.0641 0x2c98 [ 6AB672F42045A17EFA29B23110CFFCC5, FB09645B62E9B649F9A48DC56479C5FD2C8F0012B799A39897D17203344B0E60 ] C:\Program Files\Malwarebytes\Anti-Malware\ArwSdkShim.dll
21:33:22.0641 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\ArwSdkShim.dll - ok
21:33:22.0641 0x2c98 [ 426E7CF427D7411D6403A1E0A407E9BA, 0BDF042A90BFF2F7C2D7C46E5ACC95FD7979A5F96E0E14764EFFE0C057EFAD41 ] C:\Program Files\Malwarebytes\Anti-Malware\arwlib.dll
21:33:22.0641 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\arwlib.dll - ok
21:33:22.0657 0x2c98 [ 856C0312267DF750BDCD8031E0F72234, B276A1C01984E41C7947A259D29E97CA9A8376A81BABDBD29013291B2B7918FC ] C:\Program Files\AVAST Software\Avast\TuneupBin\TuneupSmartScan.dll
21:33:22.0657 0x2c98 C:\Program Files\AVAST Software\Avast\TuneupBin\TuneupSmartScan.dll - ok
21:33:22.0657 0x2c98 [ 4457C093C287EED77C2F3EC041441A0E, A79A8E91C4101365F9E56410C7995CFF984364E3435729A8099A022C8F4754DF ] C:\Windows\System32\drivers\mwac.sys
21:33:22.0657 0x2c98 C:\Windows\System32\drivers\mwac.sys - ok
21:33:22.0657 0x2c98 [ F6C106398692517A2FD6F4276CF17EC0, 4BB94C5ED6802A247EA793D629D2C55C09B7BF661EBB478981118CD56FA1C57F ] C:\Windows\SysWOW64\CoreMessaging.dll
21:33:22.0657 0x2c98 C:\Windows\SysWOW64\CoreMessaging.dll - ok
21:33:22.0657 0x2c98 [ 48AABA846D909B51F3F7D6BE7736B0BA, 5340481F1F6C35E4BC46413A12E352C2055B0644F5D807CDE4CBFC3DB8F5405D ] C:\Windows\SysWOW64\riched20.dll
21:33:22.0657 0x2c98 C:\Windows\SysWOW64\riched20.dll - ok
21:33:22.0657 0x2c98 [ 22E4A4775CFD015AAB721C3453AACBC7, 1622A35645943153418C24D53D959768DFE5DFE1EA65364F7C6AFDD54B9701A8 ] C:\Windows\SysWOW64\msls31.dll
21:33:22.0657 0x2c98 C:\Windows\SysWOW64\msls31.dll - ok
21:33:22.0657 0x2c98 [ E72A8C1E5C2A77892C704A3C1F9FE855, CD2F4F1A732DFFFB3DCECA3454E3F02FB0CF49B8EB78F541C8E1A43F5B21E143 ] C:\Windows\SysWOW64\usp10.dll
21:33:22.0657 0x2c98 C:\Windows\SysWOW64\usp10.dll - ok
21:33:22.0657 0x2c98 [ D5C4AF4E43854561FF73C4BAFD6C16BB, DA625632AD1B8AD38ABBFA275D3C172BDF8C2AFAA6033F94AEDF1DF1D9DEFE58 ] C:\Windows\SysWOW64\ExplorerFrame.dll
21:33:22.0657 0x2c98 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
21:33:22.0673 0x2c98 [ 8F948A046560B967B107D90A587990A8, 72040639B5619371817CE9986CCA74976FB79651965EE5E7B22AEB21128D4567 ] C:\Program Files\AVAST Software\Avast\vaarclient.dll
21:33:22.0673 0x2c98 C:\Program Files\AVAST Software\Avast\vaarclient.dll - ok
21:33:22.0673 0x2c98 [ DA916F087B9152C6A1169F9113F25BB3, AF86194920C8A71DC65D3AAA9C5BFBAE96436248F1E22B498A3D578FF06C7762 ] C:\Windows\System32\Windows.UI.Input.Inking.dll
21:33:22.0673 0x2c98 C:\Windows\System32\Windows.UI.Input.Inking.dll - ok
21:33:22.0673 0x2c98 [ FE6BB14D517DF567C4F06621F2BF85C6, 201B4DF2290B441AFC9B30E19CB2B9762D6AFB89FC27659F0050F80C43DA66D9 ] C:\Windows\System32\mfplat.dll
21:33:22.0673 0x2c98 C:\Windows\System32\mfplat.dll - ok
21:33:22.0673 0x2c98 [ B80C7C6302A5D8CC94CF0CDA224B8A48, 2C127C2016D7A3C7BE4F36F162AD3336018CDA3E502C1D4ECB84DD6E0E0B6BA4 ] C:\Windows\System32\edgehtml.dll
21:33:22.0673 0x2c98 C:\Windows\System32\edgehtml.dll - ok
21:33:22.0673 0x2c98 [ 6075CDEC9ACA56531B871C14C196B2A3, AE95BA5768776A2A62920457CD1EF32BD0DA4A81885DB98EB20A4BEE82E60E28 ] C:\Windows\System32\EdgeManager.dll
21:33:22.0673 0x2c98 C:\Windows\System32\EdgeManager.dll - ok
21:33:22.0673 0x2c98 [ 5C84D57F1BEAA32320364DF2FEF8530F, 07C4F932EF2EC975C04768260C413AC6E63F4A2D28883BADB62415F18A61A539 ] C:\Windows\System32\stobject.dll
21:33:22.0673 0x2c98 C:\Windows\System32\stobject.dll - ok
21:33:22.0673 0x2c98 [ 6D510F2D604DF80C7EF0F97D9E4A145C, B635237D7890DB338C6AC5B99E8DE93E5399FBFD8F832B2699EB6B2FDAF76064 ] C:\Windows\System32\wbem\wmiprov.dll
21:33:22.0673 0x2c98 C:\Windows\System32\wbem\wmiprov.dll - ok
21:33:22.0688 0x2c98 [ F7191A19CD4D44482E775935B6710074, 8F0EC5ADF7AAACBE62E47A147F0425F0C6C331A217811E8EE3EFE1A56B1C6FA9 ] C:\Windows\System32\batmeter.dll
21:33:22.0688 0x2c98 C:\Windows\System32\batmeter.dll - ok
21:33:22.0688 0x2c98 [ 8BA9F78AC38ED617D9E42FA8B76C6873, 7EE76BFCDA4150F31CD9512B197086E9EDBED595ED44C3AC8F528AA3223FA66E ] C:\Windows\System32\Windows.UI.Shell.dll
21:33:22.0688 0x2c98 C:\Windows\System32\Windows.UI.Shell.dll - ok
21:33:22.0688 0x2c98 [ A996450FD41451D358D7D883525659A0, 5815270E54991F20E63CEBEE88557E31894A51234450F5F25335BD9341BF857D ] C:\Windows\System32\prnfldr.dll
21:33:22.0688 0x2c98 C:\Windows\System32\prnfldr.dll - ok
21:33:22.0688 0x2c98 [ BCA5CED790B8E6A422F2ACA1EC0644BC, BF2DD57424661710A5DB7EAA5574510179489BE9002C964F28F6331546D087BB ] C:\Windows\System32\wbem\unsecapp.exe
21:33:22.0688 0x2c98 C:\Windows\System32\wbem\unsecapp.exe - ok
21:33:22.0688 0x2c98 [ E0BF6609379635EAAE180F50E2127BE8, B2770AFC998C97575FEA0C05CCA53E39950C809CBB9E36669A7B6523BBEE821B ] C:\Windows\System32\Chakra.dll
21:33:22.0688 0x2c98 C:\Windows\System32\Chakra.dll - ok
21:33:22.0688 0x2c98 [ 14321E60E6C3A4ACF31E48818A168FC4, 33D21E85C59BE91382AE5CA63A7B237E6B960B690E392E170D405C566A81F990 ] C:\Windows\System32\rometadata.dll
21:33:22.0688 0x2c98 C:\Windows\System32\rometadata.dll - ok
21:33:22.0704 0x2c98 [ 487FCDF49E57EE0E44DC9B646285B0F4, EDDD48B3E6058E53557AA7D03F19610C3345EB7B8232C461774722E8E0768A65 ] C:\Windows\System32\d3d10warp.dll
21:33:22.0704 0x2c98 C:\Windows\System32\d3d10warp.dll - ok
21:33:22.0704 0x2c98 [ D2A4919E61E99157AD2DE994795C0F83, 586BB42E0D60CA93B9EB7005E5822DCE69AF9D7A1A264279DC743ADC33D75DAA ] C:\Windows\System32\icuin.dll
21:33:22.0704 0x2c98 C:\Windows\System32\icuin.dll - ok
21:33:22.0704 0x2c98 [ 2E977573411A099BD0213832B7442F0E, 8B3A33D85F352883902546FCF204DE2A666771466B477103BE38877F55735C4F ] C:\Windows\System32\icu.dll
21:33:22.0704 0x2c98 C:\Windows\System32\icu.dll - ok
21:33:22.0704 0x2c98 [ 003EEDD728E2952E23DB9F6516B9194A, 9E64DE8C86446E89AE6054A4219521826077FEE563EC04E7E7D4F18F720EC878 ] C:\Windows\System32\icuuc.dll
21:33:22.0704 0x2c98 C:\Windows\System32\icuuc.dll - ok
21:33:22.0704 0x2c98 [ 4478C87F07F683DF7EB4835656D620B2, EA8AD36694662151D30120B6627965F9822FD60E9A4C176CAC31A7C62BE1FD25 ] C:\Windows\System32\DeviceSetupManagerAPI.dll
21:33:22.0704 0x2c98 C:\Windows\System32\DeviceSetupManagerAPI.dll - ok
21:33:22.0704 0x2c98 [ 3BE748DA74D667EE6AF1FE75A69FF083, 0F6EC32B641D1E622439EC76E327BB8DE72CAC6D3E2ABD6FBED154B3782A9AAB ] C:\Windows\System32\atlthunk.dll
21:33:22.0704 0x2c98 C:\Windows\System32\atlthunk.dll - ok
21:33:22.0704 0x2c98 [ D23928639C36A6510A8814C99415AA3E, 42126B66D81C4B17BF7FBCDE1971FF0674EE6C47C4ABDC6D30846F5F52EE642E ] C:\Windows\System32\DXP.dll
21:33:22.0704 0x2c98 C:\Windows\System32\DXP.dll - ok
21:33:22.0719 0x2c98 [ 9AD7736F27A12DCEA04DF3208EC9C964, 7C89DB3B4B7AEA02DED4CDB269A3B5887D41188B81F04C3A9832C8E9B4944181 ] C:\Windows\System32\srpapi.dll
21:33:22.0719 0x2c98 C:\Windows\System32\srpapi.dll - ok
21:33:22.0719 0x2c98 [ 6805E1D5AA09EE1FAF200089D9F57724, 2F951DE271A7D7D72B554BA4F025EE30B505FE11F790EAE917E69D7B512097C0 ] C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll
21:33:22.0719 0x2c98 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll - ok
21:33:22.0719 0x2c98 [ 62E30F22E4FAB28A9F614BF9F2EDCED7, A17D267D628432CB780BAFBB7F4E710577EDC8B1B1C549CE2AF1F44935DD936D ] C:\Windows\System32\Windows.Internal.SecurityMitigationsBroker.dll
21:33:22.0719 0x2c98 C:\Windows\System32\Windows.Internal.SecurityMitigationsBroker.dll - ok
21:33:22.0719 0x2c98 [ 3CCD98C0314FC443470697684FAF41DD, 1884AAB03F59A7B005586B1322BEAC9B41648B8E5C73E3CDEDBF1891464440E0 ] C:\Windows\System32\shdocvw.dll
21:33:22.0719 0x2c98 C:\Windows\System32\shdocvw.dll - ok
21:33:22.0719 0x2c98 [ 32B75FAD7488F55212A343A10BD138D7, ECC25E496A80423D4DDC6CFA891E1CD7CA7AD3933BB90E4542C2C61BDDA9FC4E ] C:\Windows\System32\wbem\NCProv.dll
21:33:22.0719 0x2c98 C:\Windows\System32\wbem\NCProv.dll - ok
21:33:22.0719 0x2c98 [ E78134514BCA999067CC2134A1C61357, 0AF363A718417DA6D6B3E1FFA2910748B4EFE634853EE4CE1D7AAC04B7CD7441 ] C:\Windows\System32\edgeIso.dll
21:33:22.0719 0x2c98 C:\Windows\System32\edgeIso.dll - ok
21:33:22.0719 0x2c98 [ FD31AC05B6401737927AFA7C842CF951, D62D10890832D5EE36D7BF87E5B0363B366D0DA1604E658C9C4920BB8918C9A5 ] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\SkypeApp.exe
21:33:22.0719 0x2c98 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\SkypeApp.exe - ok
21:33:22.0735 0x2c98 [ 0842BC678D0C603CBF5BC14B7DB9621D, 45D8B2CB5EF56B34E8395DBFF0B1EA0D3EB7C7B698AFBF5990AA4213C629DE0F ] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
21:33:22.0735 0x2c98 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe - ok
21:33:22.0735 0x2c98 [ 1A144B1EF1571528BCC1F9D710C935F4, 0B6E34FB6BA77DA496FCE7E67C19D8DE140E6F627AD97E384A937D927F023C48 ] C:\Windows\System32\ActionCenter.dll
21:33:22.0735 0x2c98 C:\Windows\System32\ActionCenter.dll - ok
21:33:22.0735 0x2c98 [ 9BA06F47B09F1FA15D11AE8C3491C1BE, B6C10F0B1CF7D14F8BDAA8C9A838A2977FC6D504C1C79D75A23503B947A53A60 ] C:\Windows\System32\authui.dll
21:33:22.0735 0x2c98 C:\Windows\System32\authui.dll - ok
21:33:22.0735 0x2c98 [ CBD0768F19FD2CECB4DA3143AD631D70, A6880164D01DCCCE1A27641CB86DAD1288BE11D0BED00730018E6D347DB01CB3 ] C:\Windows\System32\msimtf.dll
21:33:22.0735 0x2c98 C:\Windows\System32\msimtf.dll - ok
21:33:22.0735 0x2c98 [ F14BA393E0CD36574C5655A47F373ACA, 9D89CAB6EDD8551037E33A5C3562E8620279015CE50B1514C4EEA06D427177A7 ] C:\Windows\System32\Syncreg.dll
21:33:22.0735 0x2c98 C:\Windows\System32\Syncreg.dll - ok
21:33:22.0735 0x2c98 [ A6B50AE55E2A76EC568242B651E5A4FE, 428C611F5395F349CF58BA46D1BA10EFD8654FDD882E804941E09FDEF7C31E05 ] C:\Windows\System32\pnidui.dll
21:33:22.0735 0x2c98 C:\Windows\System32\pnidui.dll - ok
21:33:22.0751 0x2c98 [ EBED4A8D8B572FB96CB2CF9348B8CE61, FF6C2F204C810244DBF6BBDF35558DED667953B98ECC1FFBDEEE1C42E679068E ] C:\Windows\System32\smartscreenps.dll
21:33:22.0751 0x2c98 C:\Windows\System32\smartscreenps.dll - ok
21:33:22.0751 0x2c98 [ B016CB4169FAFDD305BFE65564D6C935, EA95C9375C12730EBADD8164BE3308802B6387B5135275EEE83F24E4ECB15062 ] C:\Windows\System32\NetworkUXBroker.dll
21:33:22.0751 0x2c98 C:\Windows\System32\NetworkUXBroker.dll - ok
21:33:22.0751 0x2c98 [ 457597DD0035B4198C733C8FE7667B38, E02D27197908BA9250F7DC74100B69D87AF25C52E181A2896603406FC30CE148 ] C:\Windows\System32\EthernetMediaManager.dll
21:33:22.0751 0x2c98 C:\Windows\System32\EthernetMediaManager.dll - ok
21:33:22.0751 0x2c98 [ 3EE54011F33618BB508C4BF0038D746B, 63E450042CD942481C9D16036381D10E1445ED81C792F640C8FEC854513E7DAF ] C:\Windows\System32\WlanMediaManager.dll
21:33:22.0751 0x2c98 C:\Windows\System32\WlanMediaManager.dll - ok
21:33:22.0751 0x2c98 [ 98321825F06128D24ADE15AA703E193F, 111219E1022DCAB31864C35DE32BAF34CE34FA580E2505D91ED1E3430DDFC340 ] C:\Windows\System32\smartscreen.exe
21:33:22.0751 0x2c98 C:\Windows\System32\smartscreen.exe - ok
21:33:22.0751 0x2c98 [ B4526848ABA02201AC042D180B968E6E, F5D402591566F552314C788B9351B16DB5F8BAE8F03C6DAB0C35A42C4F005B9C ] C:\Windows\System32\TetheringStation.dll
21:33:22.0751 0x2c98 C:\Windows\System32\TetheringStation.dll - ok
21:33:22.0751 0x2c98 [ 5DFB4C04A06AB25E3858CF58BBEB7542, 2BB679469FE08F0D829F040D2021A0832007C2CBD01F03A5BE9A109374940D85 ] C:\Windows\System32\WinMetadata\Windows.Foundation.winmd
21:33:22.0751 0x2c98 C:\Windows\System32\WinMetadata\Windows.Foundation.winmd - ok
21:33:22.0766 0x2c98 [ BD25D5B6DECB046405404A3FB4E6C3C0, 957613856D5D64ED67A1CB28D38F21CDBEF3EB3B3450414C04C7DB2E7F6DFAFC ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Internal.Search.winmd
21:33:22.0766 0x2c98 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Internal.Search.winmd - ok
21:33:22.0766 0x2c98 [ 72E469BC56AAA3269299D8BA03F62671, 71652A9A744B988BED85637DF1F5A1BF5EFF00D672C5CD0CD8147BB477FCAF2D ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Search.winmd
21:33:22.0766 0x2c98 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Search.winmd - ok
21:33:22.0766 0x2c98 [ 7AF95F1E635405FAE00F277C2142F494, 6949213B2E4E5F38D960EC55D7F0A90689D859B1CB0717993D5E886CCA8F9C50 ] C:\Windows\System32\WinMetadata\Windows.Security.winmd
21:33:22.0766 0x2c98 C:\Windows\System32\WinMetadata\Windows.Security.winmd - ok
21:33:22.0766 0x2c98 [ 23C55F8CDB3AF65B66183267B46388CB, BF257D5621FC9A20BBF9D32C35081DE1DC46A5183AA9E9E5EB87CFD12B5EE34D ] C:\Windows\System32\WinMetadata\Windows.Storage.winmd
21:33:22.0766 0x2c98 C:\Windows\System32\WinMetadata\Windows.Storage.winmd - ok
21:33:22.0766 0x2c98 [ 523F85E52F70C17CFB76F6131A052F1B, 6CBAB78E9D85A39E66DED2EB8AAB22CCF98853EA1913C42217F771C1F367DF52 ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Tips.winmd
21:33:22.0766 0x2c98 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Tips.winmd - ok
21:33:22.0766 0x2c98 [ 4C5B12A549B7377E29FEED70575B6308, 23156F550B02F4B9F121E58B2EECC1A8F1DF75D2EC3C8769A2ABA87DA866D654 ] C:\Windows\System32\WinMetadata\Windows.System.winmd
21:33:22.0766 0x2c98 C:\Windows\System32\WinMetadata\Windows.System.winmd - ok
21:33:22.0782 0x2c98 [ A47498E9118BC03B3024E14214979C24, 50ECE8B650A593F8C26EC6596C916A87761A7B5C0FE85FFB8ACFB24AFF771E3A ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.SPA.winmd
21:33:22.0782 0x2c98 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.SPA.winmd - ok
21:33:22.0782 0x2c98 [ FAD6C8C827A980FF1E2AF2BB71470640, A6F5528591F4E2A22E63762EB7BBF8A6E397BF10263103DAC2FCCBD09F2983C4 ] C:\Windows\System32\bthprops.cpl
21:33:22.0782 0x2c98 C:\Windows\System32\bthprops.cpl - ok
21:33:22.0782 0x2c98 [ A7F4BFED307FE44FC280917F2D4A1759, 1409BFC8C64E95E9AAFEA7F3CC03801BBA8BDBCE73BF103AB0318C3BAF0D8968 ] C:\Windows\System32\drivers\farflt.sys
21:33:22.0782 0x2c98 C:\Windows\System32\drivers\farflt.sys - ok
21:33:22.0782 0x2c98 [ 09C57F15B3C0970083C257343064309C, 629A7A3970711D47740BD027BB8AA8205BACF6CBE38C5598AF10F628D6EF6F02 ] C:\Windows\System32\WPDShServiceObj.dll
21:33:22.0782 0x2c98 C:\Windows\System32\WPDShServiceObj.dll - ok
21:33:22.0782 0x2c98 [ 524098153D17D5B3E6D33649915517CF, 451A2B853685564FF1A4C1C11C65EAA1370310F535820ADEF807A001780CB3C0 ] C:\Windows\System32\WinMetadata\Windows.UI.winmd
21:33:22.0782 0x2c98 C:\Windows\System32\WinMetadata\Windows.UI.winmd - ok
21:33:22.0782 0x2c98 [ 526D1A7C0251923635DF6DB531834AE8, 8EF22296D699A3884F1E75B793C7CDAA4C24BA9F2360952B5992CF20FCABDB65 ] C:\Windows\System32\SettingMonitor.dll
21:33:22.0782 0x2c98 C:\Windows\System32\SettingMonitor.dll - ok
21:33:22.0782 0x2c98 [ 72EC638E05052A1E8922326B3D76B76E, DDC8AEA8A60E20B5EE48C871738B67EC3E22CB6B2FAACE0FB1FE363F30AF6F64 ] C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
21:33:22.0782 0x2c98 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll - ok
21:33:22.0798 0x2c98 [ 406B5D77817C50BD1DEDCC7F67AC1C43, 03A7395E3014175DB1C9D702590D8ECCC659780E25968676F068CC92F0F87018 ] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
21:33:22.0798 0x2c98 C:\Program Files\AMD\CNext\CNext\Qt5Network.dll - ok
21:33:22.0798 0x2c98 [ 5F4EF232265A99E2371E91ACE444B514, 4FE04CB708140CC7F05BE0151F08AAE3E73D50C29746745E9F65C8BB2319DD82 ] C:\Windows\System32\WinMetadata\Windows.Web.winmd
21:33:22.0798 0x2c98 C:\Windows\System32\WinMetadata\Windows.Web.winmd - ok
21:33:22.0798 0x2c98 [ 4C422ED065AFC0510A63AB3CCF48C959, 5ECFE9784672ADF04C9E96CB2D277DC3D1A53EE4CB6B1D4BE73660A06D7B2937 ] C:\Windows\System32\WinMetadata\Windows.ApplicationModel.winmd
21:33:22.0798 0x2c98 C:\Windows\System32\WinMetadata\Windows.ApplicationModel.winmd - ok
21:33:22.0798 0x2c98 [ 417807E41F535B993BA3CD2C89D46591, 0C3D4733C7D63394AFDFFF18A1CBB658B51503A2EB7E625222C75566A536559C ] C:\Program Files\Malwarebytes\Anti-Malware\AEControllerImpl.dll
21:33:22.0798 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\AEControllerImpl.dll - ok
21:33:22.0798 0x2c98 [ 74D3FC9158A342A250125746F26D0253, BE2899B1C1EF88253D4A72E3156A0BCAB85B2482F629075D28C61E662920C381 ] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
21:33:22.0798 0x2c98 C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll - ok
21:33:22.0798 0x2c98 [ 9ADA327B68C9C25B041026FFE3A35C55, ACEBBD48810A859FA6481B0E274518D8D9F70CB76B67223D8EF5257575415E38 ] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
21:33:22.0798 0x2c98 C:\Program Files\AMD\CNext\CNext\Qt5Core.dll - ok
21:33:22.0813 0x2c98 [ 57CC5779CED1ECCC3BA35C59ECB8C09D, 8D8441572608471E7D9C11C8D911E71B7FFF1410A03E757FC2EB3CF535CD99CC ] C:\Windows\SysWOW64\taskschd.dll
21:33:22.0813 0x2c98 C:\Windows\SysWOW64\taskschd.dll - ok
21:33:22.0813 0x2c98 [ 2D93FB14CAC78596596FBFEA8C14363D, BB302586F8708FE1E11701D7C6494AD083D8F1404995844939FB07218D0E2591 ] C:\Program Files\Malwarebytes\Anti-Malware\AeShim.dll
21:33:22.0813 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\AeShim.dll - ok
21:33:22.0813 0x2c98 [ 10E0B26AB8F2007D0B63F3E8172FB03F, 82AAEE8322266663CB6D11C066A24FA62AEA59EE832FE49439B77928BD04AA3D ] C:\Program Files\Malwarebytes\Anti-Malware\SPControllerImpl.dll
21:33:22.0813 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\SPControllerImpl.dll - ok
21:33:22.0813 0x2c98 [ 84695DFB43C689CB2CC64E180190E375, A21A0F560DE35964EDBB9ACE6BD9B4DC0374030D15E5AE6796BEAB356AA727F4 ] C:\Program Files\Malwarebytes\Anti-Malware\SelfProtectionShim.dll
21:33:22.0813 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\SelfProtectionShim.dll - ok
21:33:22.0813 0x2c98 [ 6A8D3016698535CF6C8F12C3F2623B8B, 36A69D4B47A5C0EA32F5E25AB2BE3590F1C4C0CE8E3F006C5A07A15CF5F452B5 ] C:\Program Files\Malwarebytes\Anti-Malware\rtp.dll
21:33:22.0813 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\rtp.dll - ok
21:33:22.0813 0x2c98 [ AAC083CDAFA1710A551AF78B4CFB31CA, 5B641223B741DE1C4CA04140C400FADE9F34CE2BB031FF30F36455973D87D2E5 ] C:\Program Files\Malwarebytes\Anti-Malware\SelfProtectionSdk.dll
21:33:22.0813 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\SelfProtectionSdk.dll - ok
21:33:22.0813 0x2c98 [ 45D79334F8A1263D5D851FF68649C787, ADB6EC8F94F15BE94041A898A20EB1DC538B7C7A64453792419EED3EDCAB9389 ] C:\Program Files\Malwarebytes\Anti-Malware\mbae-api-na.dll
21:33:22.0813 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\mbae-api-na.dll - ok
21:33:22.0829 0x2c98 [ 2D8E4F38B36C334D0A32A7324832501D, 01AA278B07B58DC46C84BD0B1B5C8E9EE4E62EA0BF7A695862444AF32E87F1FD ] C:\Program Files (x86)\MSI Afterburner\RTCore64.sys
21:33:22.0829 0x2c98 C:\Program Files (x86)\MSI Afterburner\RTCore64.sys - ok
21:33:22.0829 0x2c98 [ 31D0910E0326B2B6510044C38E808130, F631E33A264C444ACFB70D179688F7D891050AC452CE4578DC428E515B2F9728 ] C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.26706.0_x64__8wekyb3d8bbwe\msvcp140_app.dll
21:33:22.0829 0x2c98 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.26706.0_x64__8wekyb3d8bbwe\msvcp140_app.dll - ok
21:33:22.0829 0x2c98 [ FE9A7D7BC2D18D34007EFEC4C09EEDA0, 67F599B55336FD741A3A264309C6562694ED3846069D381443CA5E88244715BF ] C:\Windows\SysWOW64\xmllite.dll
21:33:22.0829 0x2c98 C:\Windows\SysWOW64\xmllite.dll - ok
21:33:22.0829 0x2c98 [ C30ACEB6BEBD614C1C7FD75F8610FF97, 865CD8B60C9102DF901C876022E09BCA80072A64363C01369F16BE03BA316C97 ] C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.26706.0_x64__8wekyb3d8bbwe\concrt140_app.dll
21:33:22.0829 0x2c98 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.26706.0_x64__8wekyb3d8bbwe\concrt140_app.dll - ok
21:33:22.0829 0x2c98 [ 694708310FC1DD1034CC28B9B30CDA1A, 5F76ABB5B30CB305E4E414401C9004F27BC7BC5FD19186E422571E2EC64D3DDC ] C:\Windows\SysWOW64\devobj.dll
21:33:22.0829 0x2c98 C:\Windows\SysWOW64\devobj.dll - ok
21:33:22.0829 0x2c98 [ 74DBF5DE5CB747E73EC1FC6C3AC1CCFE, FDF2B5D381EE9BB1BE820D5BE86B6232030354B2CFBDC0494AC0BD4E85D9F32B ] C:\Windows\System32\drivers\mbae64.sys
21:33:22.0829 0x2c98 C:\Windows\System32\drivers\mbae64.sys - ok
21:33:22.0844 0x2c98 [ 58F57CABBDC2D377B44F944734D3E448, 8463E89AF7D2CF814B00C33C4DF2B747EB525CCFDB34600860F4846947F1CC13 ] C:\Windows\System32\cscobj.dll
21:33:22.0844 0x2c98 C:\Windows\System32\cscobj.dll - ok
21:33:22.0844 0x2c98 [ DC71015FEA5862DFDF5F9E529A6E5EED, AA63294024A981DA79DE27414FCE90DA2A685F801B6FDCD6E8163D29A35E4675 ] C:\Program Files\AVAST Software\Avast\setup\instup.dll
21:33:22.0844 0x2c98 C:\Program Files\AVAST Software\Avast\setup\instup.dll - ok
21:33:22.0844 0x2c98 [ 8855FCB1A45F3DE6C37879CD7606CABA, 4750BA5D97C49430AC3A483D9C06C126DEB0DF4519A52431DE63A752AA1BA8FD ] C:\Windows\System32\srchadmin.dll
21:33:22.0844 0x2c98 C:\Windows\System32\srchadmin.dll - ok
21:33:22.0844 0x2c98 [ 22EE0900AE79A23A88E69B1302FD550A, C016043BA9DA14E472918002CF1ABC45B706D0F2D2683C6799E2274025634919 ] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
21:33:22.0844 0x2c98 C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll - ok
21:33:22.0844 0x2c98 [ 071257B0A7B17683810A12FE6C1C6BA6, C65297A1CFA3064220545C7FBDDB9A03F7678972C84D8CD9EFC6C06B81D2BF11 ] C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.26706.0_x64__8wekyb3d8bbwe\vcruntime140_app.dll
21:33:22.0844 0x2c98 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.26706.0_x64__8wekyb3d8bbwe\vcruntime140_app.dll - ok
21:33:22.0844 0x2c98 [ 37C3E6DFF3121033DEEAF91F22188391, DFE5179243D400EDCB03205FF8D02839BCB584D6D7540517B3F4D7240B073633 ] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
21:33:22.0844 0x2c98 C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll - ok
21:33:22.0860 0x2c98 [ 2219F5896BE5A2FB9F04B8109A81A33F, 9F9E61620F4C518BE1FA9F0D34472B068E703687DC500D19D028CE96315C70FE ] C:\Windows\SysWOW64\atiadlxx.dll
21:33:22.0860 0x2c98 C:\Windows\SysWOW64\atiadlxx.dll - ok
21:33:22.0860 0x2c98 [ C0102E358C211C07DE99770F8C9CEA7B, C40FE9B47681482AD3FEBA61A7FB7E90DD97AD7C39981BAC3B8F7E568182ADE2 ] C:\Windows\SysWOW64\psapi.dll
21:33:22.0860 0x2c98 C:\Windows\SysWOW64\psapi.dll - ok
21:33:22.0860 0x2c98 [ 9C1A2CDE17AAA046A12FA32675B4DD97, 319A6D912C774EE6A3F5E88443E5E8E9A52C72847BAE3069F00303C58963A973 ] C:\Windows\System32\usp10.dll
21:33:22.0860 0x2c98 C:\Windows\System32\usp10.dll - ok
21:33:22.0860 0x2c98 [ D7922968AB6B304CBFFA44E8B1650B47, 93957E28B192D2DE5D0E42B86B28AF979AD423AD9A46A232177938C13D6A52C4 ] C:\Windows\System32\winspool.drv
21:33:22.0860 0x2c98 C:\Windows\System32\winspool.drv - ok
21:33:22.0860 0x2c98 [ 25AD59CA35A3A87F20AC9E2EC4617857, D85BD1F141A41E2CAE7D8E233E6F891EC531039359D0F527749F8514FCE81ECE ] C:\Windows\System32\fontsub.dll
21:33:22.0860 0x2c98 C:\Windows\System32\fontsub.dll - ok
21:33:22.0860 0x2c98 [ BDA120F8A72875A2C0A3A013821C3572, ED97A1A6319FF787F0A9F9B97FC7CFF119B248BDF09E4FF444446C9B61DFD8D8 ] C:\Windows\System32\Windows.Cortana.OneCore.dll
21:33:22.0860 0x2c98 C:\Windows\System32\Windows.Cortana.OneCore.dll - ok
21:33:22.0860 0x2c98 [ 5752EACD5BE110DDBF96E205BEF9499A, DD93C38F161D6BE7D11D9429769369491F11397C785AD055EB1394A70EF10512 ] C:\Windows\System32\msimg32.dll
21:33:22.0860 0x2c98 C:\Windows\System32\msimg32.dll - ok
21:33:22.0876 0x2c98 [ 2D761365B986E20AE778F7BDFC515256, 6DF7BC2ECE9091B1FA7D1D0FAB932719D47577D3CF5D2AF8F487D0CBEE6C6D88 ] C:\Windows\System32\FXSST.dll
21:33:22.0876 0x2c98 C:\Windows\System32\FXSST.dll - ok
21:33:22.0876 0x2c98 [ 5502444208C541F5CAFF82A6A6CEB620, 3BF3060FBCC5B26205F37902E28B3A1205419859D7CB6EE85360A5075A710694 ] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\SkypeApp.dll
21:33:22.0876 0x2c98 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\SkypeApp.dll - ok
21:33:22.0876 0x2c98 [ 5E16AA99976F0077171808CB62F8B887, C10A0B3FBF92C9A8BD324314DA6BB270F9AF4169A41893975BF66009438D1437 ] C:\Windows\System32\Windows.Cortana.ProxyStub.dll
21:33:22.0876 0x2c98 C:\Windows\System32\Windows.Cortana.ProxyStub.dll - ok
21:33:22.0876 0x2c98 [ 95FEE3FEAC7BF615162F7D35B9580FE4, 6DF4DC8927D6D122DA3D5797DE12DEA53AA718AAF8418668831B4EA515289ACA ] C:\Program Files (x86)\Origin\platforms\qwindows.dll
21:33:22.0876 0x2c98 C:\Program Files (x86)\Origin\platforms\qwindows.dll - ok
21:33:22.0876 0x2c98 [ 9284E22B772883BA07A747FE5C7B4AAC, 22EC7BC6510AC2162FDF9D255BF01C3FDBC686AA6A2BB864372B7A4D15C3A3CE ] C:\Windows\System32\atiadlxx.dll
21:33:22.0876 0x2c98 C:\Windows\System32\atiadlxx.dll - ok
21:33:22.0876 0x2c98 [ 94FC2F221D3FDE319714BF6171E8EB0C, ED588EA8621BD11D4A6EAD8D54C8989CB41F3DE939BD96D68117AD8A48062764 ] C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.2.2_2.2.27011.0_x64__8wekyb3d8bbwe\SharedLibrary.dll
21:33:22.0876 0x2c98 C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.2.2_2.2.27011.0_x64__8wekyb3d8bbwe\SharedLibrary.dll - ok
21:33:22.0891 0x2c98 [ 43B2D4FBF59806A3908305DD81B68F51, EEF425BCA591A7C8723647BAA2AB573AA25300939F00000ACD1882692DC7BB87 ] C:\Program Files\WindowsApps\Microsoft.NET.Native.Runtime.2.2_2.2.27011.0_x64__8wekyb3d8bbwe\mrt100_app.dll
21:33:22.0891 0x2c98 C:\Program Files\WindowsApps\Microsoft.NET.Native.Runtime.2.2_2.2.27011.0_x64__8wekyb3d8bbwe\mrt100_app.dll - ok
21:33:22.0891 0x2c98 [ B5684336C3E694B3011B8FD3A32C4829, BABF4028B8D1E7C0071190B73EC8A3973D09FCF4BE0830A66DCFCD63CB7D5489 ] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\yoga.dll
21:33:22.0891 0x2c98 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\yoga.dll - ok
21:33:22.0891 0x2c98 [ 9CF66BAAC6CEDA3DFC6A2E5503F12B97, 25CFB20A9424EC910682DA07F91B10CD7FAA43170464B4F9BE57FE1F9C739634 ] C:\Windows\System32\mf.dll
21:33:22.0891 0x2c98 C:\Windows\System32\mf.dll - ok
21:33:22.0891 0x2c98 [ 9841828D0160BE5066926F836DD2F6CA, 9C38A83BF7143306A65188F6A79812617FF6C4C81B5790418079F5287A7313AC ] C:\Windows\System32\FXSAPI.dll
21:33:22.0891 0x2c98 C:\Windows\System32\FXSAPI.dll - ok
21:33:22.0891 0x2c98 [ 829FD69F82BE31F5388D4DF278301D9B, 0768D3DA54BC7FEC5E80FE97DDD7F0F402E550EE213D1E62408613FCC32E4A49 ] C:\Windows\System32\FXSRESM.dll
21:33:22.0891 0x2c98 C:\Windows\System32\FXSRESM.dll - ok
21:33:22.0891 0x2c98 [ F8A835EA2C41E63DC8CE3FD736F8C129, 1D9A10F75C538D2FA4B96AFFC872CC2ECF58DD01B7B5F48ACC3B6ED4E52FE68A ] C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
21:33:22.0891 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe - ok
21:33:22.0891 0x2c98 [ 41E432466E7C9C31A62D3D9A20D4A13E, EDFFAD4D322A907668D9DCA3AA19C97D54B92E57C349AF1CA147485AF56008AA ] C:\Windows\System32\SyncCenter.dll
21:33:22.0891 0x2c98 C:\Windows\System32\SyncCenter.dll - ok
21:33:22.0907 0x2c98 [ E22E7BD6B146BDE93DC48643B772D8BB, 74B3323405CDFB85CFC9D5C1CD29C816C80361DF154801E44F14863C9058906E ] C:\Windows\System32\backgroundTaskHost.exe
21:33:22.0907 0x2c98 C:\Windows\System32\backgroundTaskHost.exe - ok
21:33:22.0907 0x2c98 [ 10B28B901B4EE7F929B67E091FDC7457, 604451B38F490E204C8754AE2E369B28325A11FC157009FC178A037DA048EF79 ] C:\Windows\System32\WinRtTracing.dll
21:33:22.0907 0x2c98 C:\Windows\System32\WinRtTracing.dll - ok
21:33:22.0907 0x2c98 [ 8933C302F99565DEA12FBFE23B0521A7, 62039F9DE4840AD82FD6F88495C5F71EBA4DF37CEAC6D02314C66EB309412B01 ] C:\Windows\System32\imapi2.dll
21:33:22.0907 0x2c98 C:\Windows\System32\imapi2.dll - ok
21:33:22.0907 0x2c98 [ 605CCC9CE1839BC5583017DF7CAE27A6, F1F67830FC3531DFBDAF5315F59422438AB9F243D89491AC75D1818E7ED98B5D ] C:\Users\Slavicek\AppData\Local\Google\Update\GoogleUpdate.exe
21:33:22.0907 0x2c98 C:\Users\Slavicek\AppData\Local\Google\Update\GoogleUpdate.exe - ok
21:33:22.0907 0x2c98 [ 09CD5F8F6594EA4AF2D96A7C6A457FE8, FB2552AB995C45C1631F54C19CA11D95AF089EA3A09861144FB13276D833CE51 ] C:\Windows\System32\drivers\mbam.sys
21:33:22.0907 0x2c98 C:\Windows\System32\drivers\mbam.sys - ok
21:33:22.0907 0x2c98 [ 661D529682C7C090F939DC551DF4586C, 6081312F257E7D240B259E0DD3DBC0404594FBF9DEAE706DA211B37902F00510 ] C:\Windows\System32\wscapi.dll
21:33:22.0907 0x2c98 C:\Windows\System32\wscapi.dll - ok
21:33:22.0907 0x2c98 [ EA2EB8A5E11C8A2232FC9E510B22C138, EA1FA8565592B4A89BFE6A8E8EE4457C4EB1BCB16754E65C8F6229AF0AD4D06B ] C:\Program Files\AVAST Software\Avast\x86\aswhook.dll
21:33:22.0907 0x2c98 C:\Program Files\AVAST Software\Avast\x86\aswhook.dll - ok
21:33:22.0923 0x2c98 [ 4F3FEB6219777CE1B9D50DA9061EEC82, CFB89F3EE4A6C012CF0323FAACD66CCE19162591681188CE9852CE4A9E54C46C ] C:\Windows\runkey.exe
21:33:22.0923 0x2c98 C:\Windows\runkey.exe - ok
21:33:22.0923 0x2c98 [ 984EEFEB48B347AB5693E86D03D0BD48, 04FE9960D579A3ECFC947928CCB6800D3249216E8B50E74E8B4AE1D20A134941 ] C:\Windows\System32\mobsync.exe
21:33:22.0923 0x2c98 C:\Windows\System32\mobsync.exe - ok
21:33:22.0923 0x2c98 [ 7A557EB3A1F389500185C419F2C58474, FAF7D278316967409BB53D6B69041EDAA7D8398E8A70B58B8776E7F81C41D3EC ] C:\Program Files\AVAST Software\Avast\aswhook.dll
21:33:22.0923 0x2c98 C:\Program Files\AVAST Software\Avast\aswhook.dll - ok
21:33:22.0923 0x2c98 [ 8C8633098F662050FAEED6B3A3F39549, 7B2BD80E70C8EA9946E70F9C67FAA0DB9A01AA5B0BDA8C32F021D4EEEA844ED5 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
21:33:22.0923 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll - ok
21:33:22.0923 0x2c98 [ F022AF24ACE84F96219EB6AD93B0EF1C, 1737DDD52AA9D1AE0C8021DE6BD1CD9B2D66A11AC02C04BD1190A9DF2BA8547C ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
21:33:22.0923 0x2c98 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll - ok
21:33:22.0923 0x2c98 [ 3C34C028D438B28687F0E46D753DB0EA, 70C95E90D215F6E01F13A6C40D9D33F77C2D7F8626A4226CCE97852D9843C4EC ] C:\Windows\SysWOW64\wsock32.dll
21:33:22.0923 0x2c98 C:\Windows\SysWOW64\wsock32.dll - ok
21:33:22.0938 0x2c98 [ 1CF83C15485D3C694FEAFBFC2B420E24, BEBC84CF2751CA58FE948898C083570037099FE33E393D3A9A873BE977DA5FB4 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
21:33:22.0938 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll - ok
21:33:22.0938 0x2c98 [ 69D1BF5384CEA587E6CC69AC827CC02D, D8F9C6A2E3F784E4A9C9DD714E1FBFEA1883B920216DC01AD9D56700B17C0671 ] C:\Users\Slavicek\AppData\Local\Google\Update\1.3.34.11\goopdate.dll
21:33:22.0938 0x2c98 C:\Users\Slavicek\AppData\Local\Google\Update\1.3.34.11\goopdate.dll - ok
21:33:22.0938 0x2c98 [ 187ED312466EE3108A43FA4C672C6DDD, 9DB0CC27479FF8059047AAA6C86553F855010B58CC1DE9AC5F91B059C57FE668 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
21:33:22.0938 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll - ok
21:33:22.0938 0x2c98 [ D7AA8906BA8627D5D7BE1ED9E502C22A, 26038138B4B5222B8817C0E4235DDBACAD3AD3BF960367DFB26783E4E1E2EC4F ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
21:33:22.0938 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll - ok
21:33:22.0938 0x2c98 [ 8EE6F8E308E76A5FE2E8342628875081, 23B24DF10F95026DEC1FB9FA04FEEE74EA49FA0530A6AB6CA3683DF9A2BF1B92 ] C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
21:33:22.0938 0x2c98 C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe - ok
21:33:22.0938 0x2c98 [ AFB78150D9652018CC1B4DCA3C09042E, 95D46DAC89C878C858ED41684B6AABA6552E806C269ADFB4C946526C8303651E ] C:\Windows\System32\SyncInfrastructure.dll
21:33:22.0938 0x2c98 C:\Windows\System32\SyncInfrastructure.dll - ok
21:33:22.0954 0x2c98 [ CE634B66ABFEF30D6E0E6AF34CDAD74D, 8A8899B9C091A0FA2B6A31524E796A2E11E8CD264A58FAB07E394BFDD91FAAE0 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
21:33:22.0954 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll - ok
21:33:22.0954 0x2c98 [ F5C3D5C41DECF63710F94D77AD5B33A9, 1ABB93FCCA4993F9D042412BE8F3164F040AA59B1AAA8B6EE8C20B3BB7912F04 ] C:\Windows\SysWOW64\TextInputFramework.dll
21:33:22.0954 0x2c98 C:\Windows\SysWOW64\TextInputFramework.dll - ok
21:33:22.0954 0x2c98 [ 5A1ECFEC10B9729F976161D665966C85, 3D535F82E53DF037B4C65EAB977B73AE77B02838050FF0A718526B94EC81D8EE ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
21:33:22.0954 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll - ok
21:33:22.0954 0x2c98 [ 74AF9A21A23FD7C78984C05423A51BCB, EA9A925B25051E7C7EA682014145F5CAFE47E9029DD690ADEA9769D435FC6E2A ] C:\Windows\SysWOW64\CoreUIComponents.dll
21:33:22.0954 0x2c98 C:\Windows\SysWOW64\CoreUIComponents.dll - ok
21:33:22.0954 0x2c98 [ 20DEBC1B769B83744CE09410B65ACE9F, 69B18CE957A58CBEED9C90CDE41B834124037F0EBFD3683FB67A8DEB1BA861B9 ] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\clrcompression.dll
21:33:22.0954 0x2c98 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\clrcompression.dll - ok
21:33:22.0954 0x2c98 [ FE06A07D20B5044EFE2CF04860BF56E9, BA564499AC884CF9C6EAEB31E2C718D2CE39A333C0F0692BD8F49311C226B395 ] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
21:33:22.0954 0x2c98 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll - ok
21:33:22.0954 0x2c98 [ D93628F34A5682BAC4D274AD64F7E470, B1FAB93E3A88E232AD975F53CC533F1452967085F5AD406E2739C8948759FF13 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
21:33:22.0954 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll - ok
21:33:22.0969 0x2c98 [ CF4C6B621BF9D10E75CD76D4C0FDA7A1, 82AB894E60EDF7828EFD6B808125095C5D8D8CC0E3C87FA967725BA008D1157C ] C:\Windows\SysWOW64\ntmarta.dll
21:33:22.0969 0x2c98 C:\Windows\SysWOW64\ntmarta.dll - ok
21:33:22.0969 0x2c98 [ 6CA33E938D940C54C2CDFA23E460CC41, CB56F8FE94A66BB73B019A76D758A3E566156F220578D3BCD6B0C01F3BD215BD ] C:\Windows\SysWOW64\cscapi.dll
21:33:22.0969 0x2c98 C:\Windows\SysWOW64\cscapi.dll - ok
21:33:22.0969 0x2c98 [ 9DDA681B0406C3575E666F52CBDE4F80, 1ECD899F18B58A7915069E17582B8BF9F491A907C3FDF22B1BA1CBB2727B69B3 ] C:\Program Files\Malwarebytes\Anti-Malware\msvcp140.dll
21:33:22.0969 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\msvcp140.dll - ok
21:33:22.0969 0x2c98 [ E79EF25890B214B13A7473E52330D0EC, 7A114A9C1CA86E532D7F38E81C48F24EF2BFE6084F6056B3D4C3566BA43003D6 ] C:\Program Files\Malwarebytes\Anti-Malware\vcruntime140.dll
21:33:22.0969 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\vcruntime140.dll - ok
21:33:22.0969 0x2c98 [ 703034BBC5BAA2FBAAA78D9E0A63CDC0, 3A97878F2ECFE6D1DA5422672DE3AD827AFCD010D306CAA542C06318F2EC6081 ] C:\Windows\System32\cdprt.dll
21:33:22.0969 0x2c98 C:\Windows\System32\cdprt.dll - ok
21:33:22.0969 0x2c98 [ 69C415DBAD6532509EC9A2A3DB111310, 9FA289D78CDD62216BC458EAB5EA07C1420C22395C4A4BD20F62BCDA796CC2B1 ] C:\Program Files\Malwarebytes\Anti-Malware\mbcut.dll
21:33:22.0969 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\mbcut.dll - ok
21:33:22.0985 0x2c98 [ C8E90B99D158D05AD649CB258E273DF8, 23642565D8806A6B73E8C0841A4ADC6CDE3DC2D881045E250E453C25E7596A06 ] C:\Windows\System32\SecurityHealthSystray.exe
21:33:22.0985 0x2c98 C:\Windows\System32\SecurityHealthSystray.exe - ok
21:33:22.0985 0x2c98 [ D5755535FC45D1C917E99A60C4317F81, AEA9ED5ECAE69934D79F090073B3549E7D827888604ED1DEAA880F1F7943FFAE ] C:\Windows\SysWOW64\opengl32.dll
21:33:22.0985 0x2c98 C:\Windows\SysWOW64\opengl32.dll - ok
21:33:22.0985 0x2c98 [ EF59C37F2437C1FBA8B2E8CECF38726E, 0ECD9DD6C5D6A5F283CCD8F2EFB3AC5C37DD0BADD61398AB076E61BCA067E524 ] C:\Windows\SysWOW64\glu32.dll
21:33:22.0985 0x2c98 C:\Windows\SysWOW64\glu32.dll - ok
21:33:22.0985 0x2c98 [ D3B2AA855B0231FC7E478AC2D5788D22, 95F0046F3D3B339FB717A6CA7CFCA6B9537A9D19C18392A3AEFFE77B8894A5A0 ] C:\Windows\System32\SecurityHealthSSO.dll
21:33:22.0985 0x2c98 C:\Windows\System32\SecurityHealthSSO.dll - ok
21:33:22.0985 0x2c98 [ 1D36577B113E459418270DD146EF76D3, 008AED87BF6060F66BC1E71ECA0D48966D94EAD272DCDC3303FF192F5580E551 ] C:\Windows\SysWOW64\srvcli.dll
21:33:22.0985 0x2c98 C:\Windows\SysWOW64\srvcli.dll - ok
21:33:22.0985 0x2c98 [ 7B5C1324CFBF133F97741B35328D7B16, DA28CB87BB54BB1E85F4853B665393385929F877AF39ECF300C1F28CA59CAC75 ] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
21:33:22.0985 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll - ok
21:33:22.0985 0x2c98 [ 3DA5AA25B23C638EBA0594569B6236E3, 9C5D091BAA6C64C2230E78FE3D5DCEFF3EB9544C51EFA5D10231FB01AB7DC78A ] C:\Windows\System32\MicrosoftAccountWAMExtension.dll
21:33:22.0985 0x2c98 C:\Windows\System32\MicrosoftAccountWAMExtension.dll - ok
21:33:23.0001 0x2c98 [ 86F39616E219AE469D66CB6D6B097B7D, AFDE535F13D6C43E17FDF038FFEE1D0923A3ED85433D49EE740370F9FD6F3F89 ] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll
21:33:23.0001 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll - ok
21:33:23.0001 0x2c98 [ CE417556533D71B22FFBAF8FA5DAD938, A7CD62842B69925B1F13C0916317F90A0D8FA674D85CAEFA36CAA2CB7B7648B7 ] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
21:33:23.0001 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll - ok
21:33:23.0001 0x2c98 [ F19E861523557FC4C99B577271FFD671, C998DC75D1F255D29B3197FBC4E9724DB54E3AD8F959444DF601D641570364CA ] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
21:33:23.0001 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll - ok
21:33:23.0001 0x2c98 [ 095DC8D379FA03570C131515896B2F63, 6B07BC76A99A5FF8082A50BEEFE09E6D76FFB66C1E584C8BEFEE91A68488E6E5 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
21:33:23.0001 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll - ok
21:33:23.0001 0x2c98 [ 199F53EA0F9541B3A8B4E9AC225FC6F4, 4A96D1145515C45B2C5C91D76E87C201A0BCAD2F25EB622F1B47D65773BB15C9 ] C:\Windows\System32\msauserext.dll
21:33:23.0001 0x2c98 C:\Windows\System32\msauserext.dll - ok
21:33:23.0001 0x2c98 [ 2C0E756592527F4B80FBC8E59E0BE0BB, 8718678C94FBB230C11C256158DF0CC9052BD1468BA34BF83F3D82C70FBDFEC1 ] C:\Windows\System32\ngcpopkeysrv.dll
21:33:23.0001 0x2c98 C:\Windows\System32\ngcpopkeysrv.dll - ok
21:33:23.0001 0x2c98 [ 124F32DE47E4E6549BFB0DB432B043D4, 7CDADB3F092A3474C1EE84171A25808EF8570B472C5D3A92E25E1748B4F1490A ] C:\Program Files\AVAST Software\Avast\setup\uat_7244.dll
21:33:23.0001 0x2c98 C:\Program Files\AVAST Software\Avast\setup\uat_7244.dll - ok
21:33:23.0016 0x2c98 [ F68AF942FD7CCC0E7BAB1A2335D2AD26, 11064E9EDC605BD5B0C0A505538A0D5FD7DE53883AF342F091687CAE8628ACD0 ] C:\Windows\System32\rundll32.exe
21:33:23.0016 0x2c98 C:\Windows\System32\rundll32.exe - ok
21:33:23.0016 0x2c98 [ D58170960FEC29AF49BA997503361F84, F5A160398C6CC002BFD7BD0891857B488F579888C6DDD8E8DC5691A3CF23DA20 ] C:\Windows\System32\drprov.dll
21:33:23.0016 0x2c98 C:\Windows\System32\drprov.dll - ok
21:33:23.0016 0x2c98 [ 9844F20F5620A17B06F4D8B4C6F688CD, C6D7F16E776A6A83067660ACBD0366955873FDB905AD4886991FE400F56DED87 ] C:\Windows\System32\davclnt.dll
21:33:23.0016 0x2c98 C:\Windows\System32\davclnt.dll - ok
21:33:23.0016 0x2c98 [ 9403B6AD06EBC6FEA78D6FB50C1288CB, EF500D50609E09A5F7727DA37EEF1822C99240BFB91B6BE250BDA3887DE4A737 ] C:\Windows\System32\davhlpr.dll
21:33:23.0016 0x2c98 C:\Windows\System32\davhlpr.dll - ok
21:33:23.0016 0x2c98 [ 7B8676603EC91CF938A809B880121708, 61FB29E20CB8C9E633A5C316A0C5601A2DF8869FA6094C894D626C2E3DC5E643 ] C:\Windows\System32\ntlanman.dll
21:33:23.0016 0x2c98 C:\Windows\System32\ntlanman.dll - ok
21:33:23.0016 0x2c98 [ 01501C5E989B3C40071B234B4AEE6165, 76F0B0A4D220E1A238084664C437E4738F30775956F122084455B9BD2EC85632 ] C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
21:33:23.0016 0x2c98 C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe - ok
21:33:23.0032 0x2c98 [ 563C5371429D50F358DD0D3696E2B01B, 247D2AAC921BBF05C8EA8E4636188EA3D4631552F50145C17ADBFE46DD5E0269 ] C:\Windows\SysWOW64\sxs.dll
21:33:23.0032 0x2c98 C:\Windows\SysWOW64\sxs.dll - ok
21:33:23.0032 0x2c98 [ D132AC693CD4486320C24CEB34D1A3A8, 435CD452E686E54E0ABAEC01A0353A8C830C037B69964B25372C94192B0CA52A ] C:\Windows\System32\appwiz.cpl
21:33:23.0032 0x2c98 C:\Windows\System32\appwiz.cpl - ok
21:33:23.0032 0x2c98 [ 384A4E63CAC0BD82F23EB846AEA7FB62, 67133B833442C2A2D3422B0481C29DA174F5015142CBC1AD5DB3C3F87CA15520 ] C:\Windows\SysWOW64\dbghelp.dll
21:33:23.0032 0x2c98 C:\Windows\SysWOW64\dbghelp.dll - ok
21:33:23.0032 0x2c98 [ F269FEDF6F112D1F55A1B1715B1CF3BC, 7F063DC07B2D088DD464F4975C0A862625B524AF21201BC2BCBB4D1A337ABDBF ] C:\Windows\System32\duser.dll
21:33:23.0032 0x2c98 C:\Windows\System32\duser.dll - ok
21:33:23.0032 0x2c98 [ BECED9569A4BC58BF6CAAC4057EB531E, D15DCE71972ED04491421AAA0526E1B1748E1BCB30FD9895E4CC51FA24D3AC5D ] C:\Windows\System32\osbaseln.dll
21:33:23.0032 0x2c98 C:\Windows\System32\osbaseln.dll - ok
21:33:23.0032 0x2c98 [ 9BFC4D9FC415E79A65CAD6AC0F694E30, 886D4891C51E10CD2E117983838C7DE99766E83DB99A6ED80CFCC724FCB9EB03 ] C:\Windows\System32\DeviceCenter.dll
21:33:23.0032 0x2c98 C:\Windows\System32\DeviceCenter.dll - ok
21:33:23.0032 0x2c98 [ B1BCB646CD9873F4E641472A8892151C, 26CCB798294D90845330012876E5E87994541BE212FEC8D5A9F01ADADC093D18 ] C:\Windows\System32\mrt100.dll
21:33:23.0032 0x2c98 C:\Windows\System32\mrt100.dll - ok
21:33:23.0048 0x2c98 [ 09A2B9895BD4AEBB99643D38D7C1E4B6, 92F11FF5EFAF7048D4DC3D42BC904F8278F650B72B32D93492516ECE6C277E5A ] C:\Windows\SysWOW64\dbgcore.dll
21:33:23.0048 0x2c98 C:\Windows\SysWOW64\dbgcore.dll - ok
21:33:23.0048 0x2c98 [ 7858DCA08F29C6E0E645255B9DDEBE37, 99B07E5C8EFC610E4F51BAA1C640646A10D298C500B4B3DF17046F9F49F69FA1 ] C:\Windows\System32\wpdshext.dll
21:33:23.0048 0x2c98 C:\Windows\System32\wpdshext.dll - ok
21:33:23.0048 0x2c98 [ C825AE4DE7600AAF0372A501AABA5CEC, 0739598DD4B8ABC01AD29641EC0926F64584D755C02339B25DB0525AE21E591E ] C:\Program Files\AVAST Software\Avast\AvLaunch.exe
21:33:23.0048 0x2c98 C:\Program Files\AVAST Software\Avast\AvLaunch.exe - ok
21:33:23.0048 0x2c98 [ 21B70976B69F6FB5AC93D649BD612E05, E6A7F14D79AA29AE4AFAC8087B1A50D29B4247B4634E25DA931B2B9D3F59B14C ] C:\Windows\System32\Windows.System.Diagnostics.dll
21:33:23.0048 0x2c98 C:\Windows\System32\Windows.System.Diagnostics.dll - ok
21:33:23.0048 0x2c98 [ 4F605E1C8A8AAA7828126F671AD5C1AD, B84C46335EBE349ABAC0225942E4003DEAD225CB2E6FC8B4DF69614A3195102C ] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
21:33:23.0048 0x2c98 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\ChakraBridge.dll - ok
21:33:23.0048 0x2c98 [ 67303BFACCB4B578847A40ED4369F4EC, 69359DDA48FF62C7D6C332A8D49BFA25C3335217648AFC1620C992E919D57C2C ] C:\Windows\System32\Windows.System.Profile.RetailInfo.dll
21:33:23.0048 0x2c98 C:\Windows\System32\Windows.System.Profile.RetailInfo.dll - ok
21:33:23.0063 0x2c98 [ 734D1370C9B48C67AB9C47B212FD0511, E584BBEE953E1E8B05D8E3B96C7F105D4CDA01D736DB07167758B2943DC8126D ] C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.26706.0_x64__8wekyb3d8bbwe\vccorlib140_app.dll
21:33:23.0063 0x2c98 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.26706.0_x64__8wekyb3d8bbwe\vccorlib140_app.dll - ok
21:33:23.0063 0x2c98 [ E1E6B09DE057C1CA91AECD51775E9502, 90197780A41C863200F20D3F5ABDBDDCCC58751A4BD7F527CC72358E5982D626 ] C:\Program Files\Malwarebytes\Anti-Malware\MbamPt.exe
21:33:23.0063 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\MbamPt.exe - ok
21:33:23.0063 0x2c98 [ 639C79216A321518B1B263B99082BF22, 24A8C53C5C4C1B1E422C996DBA16B29CEE9DB10F3F392DFD9FEB833EF60B125D ] C:\Program Files\AVAST Software\Avast\aswRvrt.dll.tmp
21:33:23.0063 0x2c98 C:\Program Files\AVAST Software\Avast\aswRvrt.dll.tmp - ok
21:33:23.0063 0x2c98 [ 1F1E9FBB7FE7A39A84A061F6EF7003B4, 1F5B4F8B7256F47794A80E81FE5E58CB5A50007209B2469B7309424B2D9F58F1 ] C:\Windows\System32\LogiLDA.DLL
21:33:23.0063 0x2c98 C:\Windows\System32\LogiLDA.DLL - ok
21:33:23.0063 0x2c98 [ 1891BC7CFE94A0B9EBF3E45CC5A02389, 751B4973EAB9C7BF8E978766C4532EDB0DECA5B3764B04498FB069AD123DEED2 ] C:\Windows\System32\ConnectedAccountState.dll
21:33:23.0063 0x2c98 C:\Windows\System32\ConnectedAccountState.dll - ok
21:33:23.0063 0x2c98 [ 9EDDD07D4C5E64EF590203E906E9E623, 814BFEA6788DB77F3ADE936F0BF896DEABBC1AC6867CCABE67EA51081F802F3C ] C:\Windows\SysWOW64\NapiNSP.dll
21:33:23.0063 0x2c98 C:\Windows\SysWOW64\NapiNSP.dll - ok
21:33:23.0063 0x2c98 [ 2AA845C9F8999FD9B635ECD68D50174A, C98493EA7AD57422C21279332191915A377146FD67F1D846050C519AFB64ED50 ] C:\Windows\SysWOW64\pnrpnsp.dll
21:33:23.0063 0x2c98 C:\Windows\SysWOW64\pnrpnsp.dll - ok
21:33:23.0079 0x2c98 [ FB7DDD5B0F0DA76C4ED19432339C7100, B487A51F296C9FEEA8619EB42232F8493882150A7A55C3E53301EBD9236BDF6A ] C:\Windows\SysWOW64\nlaapi.dll
21:33:23.0079 0x2c98 C:\Windows\SysWOW64\nlaapi.dll - ok
21:33:23.0079 0x2c98 [ 3BFD2D9EAE2C24B1F3985D8923F5CCE5, A34582B2684B44FDCC24501C01C9F6B93791F0FE3013B399AC46A8F97697081D ] C:\Windows\SysWOW64\winrnr.dll
21:33:23.0079 0x2c98 C:\Windows\SysWOW64\winrnr.dll - ok
21:33:23.0079 0x2c98 [ B3A766CB8F67FB0F1820B8B050C17650, 4734705D9B4400E5D0291C2C4B4999EDC833D47CDA5DE0665DC7AD4834FE97EF ] C:\Windows\SysWOW64\wshbth.dll
21:33:23.0079 0x2c98 C:\Windows\SysWOW64\wshbth.dll - ok
21:33:23.0079 0x2c98 [ DB9994291123A3EC17F76106FF72E603, 9F361178E0A332532434D62B25460F09C84E047643F159EA8BE7D1A0715184EE ] C:\Users\Slavicek\AppData\Local\FluxSoftware\Flux\flux.exe
21:33:23.0079 0x2c98 C:\Users\Slavicek\AppData\Local\FluxSoftware\Flux\flux.exe - ok
21:33:23.0079 0x2c98 [ 2AEB4F8E2BD49FA46E7FCA142A1003A8, F5F635C0CF8252B81C8283AE7063E5BDBC7D608EE8798EC6064707B489339D5D ] C:\Windows\System32\vccorlib110.dll
21:33:23.0079 0x2c98 C:\Windows\System32\vccorlib110.dll - ok
21:33:23.0079 0x2c98 [ 9CCF694C9D47C28FF93C791F8940C616, 5BB4C1D178B4C67182C1F2B6DB854790CF2A63B8F105318489B01DBEF45BA0E2 ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
21:33:23.0079 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll - ok
21:33:23.0079 0x2c98 [ 9A08FE7E228EB82814969E1D15A97DF8, 31C4D0331B95525A90FBE1884B67D4C52B77A775F857DA2AEBF3945B39C1D957 ] C:\Windows\System32\oledlg.dll
21:33:23.0079 0x2c98 C:\Windows\System32\oledlg.dll - ok
21:33:23.0094 0x2c98 [ 7166D19748D716EF7B427847AE6EE1BD, 3C431D6AC6061FA011487B87BBFFF1367F4AB09EB7A01E90E8AB992AE8E0853F ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
21:33:23.0094 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll - ok
21:33:23.0094 0x2c98 [ 7C3B449F661D99A9B1033A14033D2987, AE996EDB9B050677C4F82D56092EFDC75F0ADDC97A14E2C46753E2DB3F6BD732 ] C:\Windows\System32\msvcr110.dll
21:33:23.0094 0x2c98 C:\Windows\System32\msvcr110.dll - ok
21:33:23.0094 0x2c98 [ B6A1B605D97DED93432FF863CF06DB3E, 56832ADCC52EC67B7B3B1D55A45ECE93A1C988BE6D04E10719E6A19547FF45EB ] C:\Windows\SysWOW64\dxva2.dll
21:33:23.0094 0x2c98 C:\Windows\SysWOW64\dxva2.dll - ok
21:33:23.0094 0x2c98 [ F1C71F721FE49B81C187D4E76EE02E34, 95494C9FCA91C83EC4B2A13851685AB1D9310BE013747C65A0D38428C86A0863 ] C:\Windows\SysWOW64\Magnification.dll
21:33:23.0094 0x2c98 C:\Windows\SysWOW64\Magnification.dll - ok
21:33:23.0094 0x2c98 [ 7CAA1B97A3311EB5A695E3C9028616E7, 27F394AE01D12F851F1DEE3632DEE3C5AFA1D267F7A96321D35FD43105B035AD ] C:\Windows\System32\msvcp110.dll
21:33:23.0094 0x2c98 C:\Windows\System32\msvcp110.dll - ok
21:33:23.0094 0x2c98 [ C43FF714C6827837A483C7172C5FB1FB, F9A84E3AA7C2AB2052C9F9312664F5354E6E5CA94A652C1BDB01EE32A9D6CFDC ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
21:33:23.0094 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll - ok
21:33:23.0110 0x2c98 [ 77A32041891A2EDEE43B85DEC1BCCEEC, B51818C2B239B4530FD03B1D750A72D02475DAEC6654483408BB51CAC23E59CD ] C:\Windows\SysWOW64\d3d9.dll
21:33:23.0110 0x2c98 C:\Windows\SysWOW64\d3d9.dll - ok
21:33:23.0110 0x2c98 [ 235825F2A95CC5B10CAD02D7EFCF57F7, F5EC086B8EC3B55352FCDE5472D9A083BF8C6F2549FB922D998843AA7A66DD44 ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
21:33:23.0110 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll - ok
21:33:23.0110 0x2c98 [ 6B8C44390224BE5BC91595A5BBB2FEC5, D43726035E8E7E1C6E89030D88D01277FB442306A347A3F1EE1A76D04A4CD401 ] C:\Windows\SysWOW64\mscms.dll
21:33:23.0110 0x2c98 C:\Windows\SysWOW64\mscms.dll - ok
21:33:23.0110 0x2c98 [ 0E02B94939B9EADD4907B6E922DEA655, DF91F4C6D1561D0913E1C952A332E1E1BEE48B898C427ACFFA248C40936A6653 ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
21:33:23.0110 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll - ok
21:33:23.0110 0x2c98 [ FC1892C13103E726F62DD6004F389BD6, 3A048F77F1AF8CB200DD3FFCEB41732F74853B3D852C8503A6DA54823C18D632 ] C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.18362.175_none_2a2a19d646679ca0\comctl32.dll
21:33:23.0110 0x2c98 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.18362.175_none_2a2a19d646679ca0\comctl32.dll - ok
21:33:23.0110 0x2c98 [ 053122F5BF3B38656392EE6FA2230602, 835DE4F0BC014473FD6ED5941D0AADF8B5C93DE67E39EA1E9C21BCFC5837358E ] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
21:33:23.0110 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll - ok
21:33:23.0126 0x2c98 [ 67B0F920AA08E48AC2D6DF7E97B84F3A, B7552F07E38F518EB974C36090F17A0007A353CB61628C12547C58587BE5F8DD ] C:\Windows\SysWOW64\coloradapterclient.dll
21:33:23.0126 0x2c98 C:\Windows\SysWOW64\coloradapterclient.dll - ok
21:33:23.0126 0x2c98 [ B343639A7FB9EC5CEBDB1361247C2E44, 056EFF4B0485A2278E6CA1D3B65F5A1DF3F61CD071568B8529A86A9DDFE3458E ] C:\Windows\SysWOW64\wbem\wbemprox.dll
21:33:23.0126 0x2c98 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
21:33:23.0126 0x2c98 [ 07939BC6CEBE196269BF7B1752117722, A47E40C5C089674D2596678CEEE7662E3999E86ABA880055918988457950D4A1 ] C:\Windows\SysWOW64\wbemcomn.dll
21:33:23.0126 0x2c98 C:\Windows\SysWOW64\wbemcomn.dll - ok
21:33:23.0126 0x2c98 [ 2A8DAB7AA50CC8305264683B13B61D6D, 8DB1EB12AE13E0699FBBE9FDE717465C8B3DF9E760A74E1B0BA2F7F1AD46B9E4 ] C:\Windows\WinSxS\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90.dll
21:33:23.0126 0x2c98 C:\Windows\WinSxS\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90.dll - ok
21:33:23.0126 0x2c98 [ 60F6488416F02D1B15857614E44DE947, 3B1B6913F10BBF6E62FA73CE33D48D22DA8026DE29446DAFC0B53688085D3A96 ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll
21:33:23.0126 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll - ok
21:33:23.0126 0x2c98 [ B287281FA5F24BAE94FE1A15390BC951, 21A553A3586547283CD34EA40018F0C8C34D2478B102989C9DE1387E2404214A ] C:\Windows\SysWOW64\icm32.dll
21:33:23.0126 0x2c98 C:\Windows\SysWOW64\icm32.dll - ok
21:33:23.0126 0x2c98 [ 9CBABCE306C52F3A3F82BC547256BE0C, 14979120FF2C3A9607C735713EB8B8F2040119A64B4398302EEFB8ED14AD9637 ] C:\Windows\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
21:33:23.0126 0x2c98 C:\Windows\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll - ok
21:33:23.0141 0x2c98 [ 66D694938088145FFF39A597BB6650B9, C52DEE7EF5412667E0C10FE4A746BF95E6DA46D28E47B9C874D273B4307F29B2 ] C:\Windows\SysWOW64\DataExchange.dll
21:33:23.0141 0x2c98 C:\Windows\SysWOW64\DataExchange.dll - ok
21:33:23.0141 0x2c98 [ 1E7C6DC78E16F9BE215995A8BB9CA5F6, 83A902D9D5FDACEF161619259100E09912C7C0CB40E24427CC428A4CDA3F260C ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
21:33:23.0141 0x2c98 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
21:33:23.0141 0x2c98 [ AB2156D75B2C9589F925FC2AB83607E6, BC832BFBC5FA36B6E712C9D3DE99D5EBE57EC94FE2838CA2F81DB42EED49EFCC ] C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9619_none_08e065a3a84109b0\msvcr90.dll
21:33:23.0141 0x2c98 C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9619_none_08e065a3a84109b0\msvcr90.dll - ok
21:33:23.0141 0x2c98 [ AE6B79DCBEB64A2C26AD67C15C7DB97D, 839843B1CB8AF912192FCD3163525208744B733CB55F551B55FFCC4F9D55008A ] C:\Windows\SysWOW64\d3d11.dll
21:33:23.0141 0x2c98 C:\Windows\SysWOW64\d3d11.dll - ok
21:33:23.0141 0x2c98 [ 954EA0ED1BF27E66A0A9F5661BC4FDAB, DB83DAB37EFA6EEAB379E5E402218738E2E0DB3A09C26B6E3FE857DF47342674 ] C:\Windows\SysWOW64\wbem\fastprox.dll
21:33:23.0141 0x2c98 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
21:33:23.0141 0x2c98 [ 75E9620784A6DAFD45ACC1F41ADB3582, 81513A9130832390F6F42A3A2EF1A6EC5782AAAB44311B67077E62639860146D ] C:\Program Files (x86)\Windows Defender\MpOAV.dll
21:33:23.0141 0x2c98 C:\Program Files (x86)\Windows Defender\MpOAV.dll - ok
21:33:23.0157 0x2c98 [ 010F9A1FB71B09797D00DA14C746DB23, 57EFAA41E3D64A39FAE2E6E4C5BC4659CCC8D8FDDAF6E68F56DA35B3E7EC121F ] C:\Windows\SysWOW64\amsi.dll
21:33:23.0157 0x2c98 C:\Windows\SysWOW64\amsi.dll - ok
21:33:23.0157 0x2c98 [ 65D40C6145F985CE7E5AFA6691BA6E3E, 1FFA4A9FBA1ABD394223A4DE3899581A534F3983E601571094F4215117ED0A90 ] C:\Windows\SysWOW64\dcomp.dll
21:33:23.0157 0x2c98 C:\Windows\SysWOW64\dcomp.dll - ok
21:33:23.0157 0x2c98 [ C6044950797DCC56CD344FDE4FD1B3A4, 43B68E9311305B8E120FEFABC509EBF49CBB9E1916F0420CBD4203E3BB5FC73B ] C:\Windows\SysWOW64\twinapi.appcore.dll
21:33:23.0157 0x2c98 C:\Windows\SysWOW64\twinapi.appcore.dll - ok
21:33:23.0157 0x2c98 [ 98449E67E7B7AE1EDF5694AF9D25536F, 63714A54666A4DF135DF81C047F8432BA2BE0DFBF965D886E8DA4034F0A90F03 ] C:\Windows\SysWOW64\rmclient.dll
21:33:23.0157 0x2c98 C:\Windows\SysWOW64\rmclient.dll - ok
21:33:23.0157 0x2c98 [ 714F83AFDC3F5F45D60B9A0F881D41FD, 36806156EF7DFF14820364084BB1EC107F11176321CC2826D2B6A5BC3C249DE9 ] C:\Program Files\Malwarebytes\Anti-Malware\iconengines\qsvgicon.dll
21:33:23.0157 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\iconengines\qsvgicon.dll - ok
21:33:23.0157 0x2c98 [ E4099BADCFBE77E99B9639D8D04B2ADF, 3D821BFB87A6407F5F769F112902FB57D5265EA483F75CD3C2056155ABD0FE0B ] C:\Program Files\AVAST Software\Avast\x86\aswAMSI.dll
21:33:23.0157 0x2c98 C:\Program Files\AVAST Software\Avast\x86\aswAMSI.dll - ok
21:33:23.0157 0x2c98 [ 1FB93933FD087215A3C7B0800E6BB703, 2DB7FD3C9C3C4B67F2D50A5A50E8C69154DC859780DD487C28A4E6ED1AF90D01 ] C:\Windows\WinSxS\x86_avast.vc140.crt_fcc99ee6193ebbca_14.0.27012.0_none_a45421ee27ef60f7\msvcp140.dll
21:33:23.0157 0x2c98 C:\Windows\WinSxS\x86_avast.vc140.crt_fcc99ee6193ebbca_14.0.27012.0_none_a45421ee27ef60f7\msvcp140.dll - ok
21:33:23.0173 0x2c98 [ 1B171F9A428C44ACF85F89989007C328, 9D02E952396BDFF3ABFE5654E07B7A713C84268A225E11ED9A3BF338ED1E424C ] C:\Windows\WinSxS\x86_avast.vc140.crt_fcc99ee6193ebbca_14.0.27012.0_none_a45421ee27ef60f7\vcruntime140.dll
21:33:23.0173 0x2c98 C:\Windows\WinSxS\x86_avast.vc140.crt_fcc99ee6193ebbca_14.0.27012.0_none_a45421ee27ef60f7\vcruntime140.dll - ok
21:33:23.0173 0x2c98 [ F9DF4947EF51324BAE4DBC5F65049DA3, 9FD8D4B1CB0528922D119376CD8D420054C936E00235BB5178BD0635FB03AA07 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
21:33:23.0173 0x2c98 C:\Program Files\AVAST Software\Avast\AvastUI.exe - ok
21:33:23.0173 0x2c98 [ 3B47B9B2353EB14DFD13C55E398EFA66, 1C93889B8302FD78803A546C0DE51503A5AA608367E2B66F07D2CD1A68C73ABF ] C:\Program Files\AVAST Software\Avast\x86\dll_loader.dll
21:33:23.0173 0x2c98 C:\Program Files\AVAST Software\Avast\x86\dll_loader.dll - ok
21:33:23.0173 0x2c98 [ 931DECA33972B1CFDDA8F5DDA986CEC7, F93B7DF3CB32B838A3E044CD885D3C068485E6C7AED839AC08F5E6FEB0245727 ] C:\Program Files\AVAST Software\Avast\x86\aswCmnOS.dll
21:33:23.0173 0x2c98 C:\Program Files\AVAST Software\Avast\x86\aswCmnOS.dll - ok
21:33:23.0173 0x2c98 [ 2453E6672CF9C6DEF2EC5E5D895191D7, C41170CBDADD0CB50EB9FB3729A8B20C941422C9672C287A871F49215F38FAA2 ] C:\Program Files\AVAST Software\Avast\x86\aswCmnIS.dll
21:33:23.0173 0x2c98 C:\Program Files\AVAST Software\Avast\x86\aswCmnIS.dll - ok
21:33:23.0188 0x2c98 [ 9FE640847C8D78469EF43D8BF4F3BE04, 053036165720FE356E0D17F2F7CEE30930FAA03B68F6F2FD97B954FE07F7A61A ] C:\Program Files\AVAST Software\Avast\x86\AavmRpch.dll
21:33:23.0188 0x2c98 C:\Program Files\AVAST Software\Avast\x86\AavmRpch.dll - ok
21:33:23.0188 0x2c98 [ B198010910AF4568A62B177ACC7AF4BF, 98E55C730557B9B28EAC389290C78EE85ADAB5A02794CB3E6A832C007CDEAF81 ] C:\Windows\System32\cryptui.dll
21:33:23.0188 0x2c98 C:\Windows\System32\cryptui.dll - ok
21:33:23.0188 0x2c98 [ 21C45D93CE0C98F6409C06798B45BA25, A1A1372544627EAD59633CFD6AA25E9C007B1A9EDFAA3E99C3543F961440C323 ] C:\Program Files (x86)\TREZOR Bridge\trezord.exe
21:33:23.0188 0x2c98 C:\Program Files (x86)\TREZOR Bridge\trezord.exe - ok
21:33:23.0188 0x2c98 [ D918AF3EA07D248F911F7C6B801AA1E3, B4A8D057519E87BAE47E5318D939E80F8ACD0E09DC07AEE54774BB83F38F93BC ] C:\Windows\WinSxS\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_01c9581e60cbee58\MFC90ENU.DLL
21:33:23.0188 0x2c98 C:\Windows\WinSxS\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_01c9581e60cbee58\MFC90ENU.DLL - ok
21:33:23.0188 0x2c98 [ E3C1749298C17BCD54210CD9A65D7D30, EF8B88CB3EBA87A4790B7FF5250CA9D81D9E98E23ED2ABE00700B7B593741B3C ] C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooks64.dll
21:33:23.0188 0x2c98 C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooks64.dll - ok
21:33:23.0188 0x2c98 [ 261EC74EBDEC9E2D6241563C3FD0F593, 37619FCCC083F3E68FB78D2567D61A3F0BAA758E9634DB84155F36FC48573DF7 ] C:\Windows\System32\winusb.dll
21:33:23.0188 0x2c98 C:\Windows\System32\winusb.dll - ok
21:33:23.0188 0x2c98 [ DF6C9361A1AF1232AE37BFDCC880E046, A5E8922B23C12E0C7F7BA311414DA9A0F7E1C88291C0D56E9112D2979EAAF156 ] C:\Windows\SysWOW64\cryptnet.dll
21:33:23.0188 0x2c98 C:\Windows\SysWOW64\cryptnet.dll - ok
21:33:23.0204 0x2c98 [ E76D58D8DC1A32F6F25C336BC2538300, 3E1BA7B607113AF3F6707A176463A8DDBCDB69DD89B4A974392AC20F455E1DCD ] C:\Program Files\AVAST Software\Avast\CommonUI.dll
21:33:23.0204 0x2c98 C:\Program Files\AVAST Software\Avast\CommonUI.dll - ok
21:33:23.0204 0x2c98 [ 73519A55863CCBA43EF814C3D16BA8AA, E72E76CB39A896F4ED087B6FED7DB4CA302BC0C76725AF9EEC28158120FD5370 ] C:\Windows\System32\pcacli.dll
21:33:23.0204 0x2c98 C:\Windows\System32\pcacli.dll - ok
21:33:23.0204 0x2c98 [ 9B9E718C034E2EFFF269B0B81D4B9046, 2099142F0FB00631EFBD60A188373F631CC8C522146708304953A560543DDE77 ] C:\Windows\System32\pcadm.dll
21:33:23.0204 0x2c98 C:\Windows\System32\pcadm.dll - ok
21:33:23.0204 0x2c98 [ 4DE2E408331A9B1BC5CD221C26DB7502, 6CEB8CBE115065F5AC72A376E4F0EA7C3323937B974770E89B9E2F2C303809DD ] C:\Windows\System32\apisampling.dll
21:33:23.0204 0x2c98 C:\Windows\System32\apisampling.dll - ok
21:33:23.0204 0x2c98 [ 4974606294A5BD160D8548CE876A6682, D21456BDD87364D6DE249ADF6137D2753B1A77AD7ECB145800847965D913F7F2 ] C:\Windows\System32\pcasvc.dll
21:33:23.0204 0x2c98 C:\Windows\System32\pcasvc.dll - ok
21:33:23.0204 0x2c98 [ 98310FB46B0A82B86075E927D86A7454, 205040F6E90D5F99CCC396CA81C75CAEE41C72AEAFFA08FF6EAF40C678F292B0 ] C:\Windows\System32\aepic.dll
21:33:23.0204 0x2c98 C:\Windows\System32\aepic.dll - ok
21:33:23.0204 0x2c98 [ 0DE749734427576A4E512A231D5161EC, F03BB654E2168A6E277347B7D3313B11084414A2D9536D5EA0F894A903D95A39 ] C:\Windows\SysWOW64\DWrite.dll
21:33:23.0204 0x2c98 C:\Windows\SysWOW64\DWrite.dll - ok
21:33:23.0219 0x2c98 [ B51169048D44B6C45FA353A44E9C89F9, 61D10B42E9097100B5792C6585457F71B7EA2ABCEC3461D7D82F83113F98AFC6 ] C:\Program Files\AVAST Software\Avast\aswUtil.dll
21:33:23.0219 0x2c98 C:\Program Files\AVAST Software\Avast\aswUtil.dll - ok
21:33:23.0219 0x2c98 [ DE782244B87FE398D858B8C5F7BB56C6, B08E6FB1F3B3B01F0030853F22E2845A9C2F9BF4CB4692BE626B7893FF4CBEB2 ] C:\Windows\WinSxS\amd64_avast.vc140.mfc_fcc99ee6193ebbca_14.0.27012.0_none_6186ed0910476724\mfc140u.dll
21:33:23.0219 0x2c98 C:\Windows\WinSxS\amd64_avast.vc140.mfc_fcc99ee6193ebbca_14.0.27012.0_none_6186ed0910476724\mfc140u.dll - ok
21:33:23.0219 0x2c98 [ D3ACE2273613D06D1CF9A1D63F36BB4A, 1DEB48670BE82D1351E3557DE317D8BF082AB04B302D28710AD3AF6F10C4D449 ] C:\Program Files (x86)\Origin\ssleay32.dll
21:33:23.0219 0x2c98 C:\Program Files (x86)\Origin\ssleay32.dll - ok
21:33:23.0219 0x2c98 [ 8F02FA29D168693538FB242CEB2B50C1, BD5F602B947F041F4A99C387B244713EB9364089A0E6E07ECB85EC0479EFC01B ] C:\Program Files\AVAST Software\Avast\afwGeoIP.dll
21:33:23.0219 0x2c98 C:\Program Files\AVAST Software\Avast\afwGeoIP.dll - ok
21:33:23.0219 0x2c98 [ 7C94E684E54128CA92C0F11F999B387E, 7E4A460ED6A72CD49C2A788421D91C4912124AE4BC2DD9D24C12BDCAD50F8C37 ] C:\Windows\System32\Windows.Cortana.Desktop.dll
21:33:23.0219 0x2c98 C:\Windows\System32\Windows.Cortana.Desktop.dll - ok
21:33:23.0219 0x2c98 [ A3DF6749ED64351E1015071F2394ED58, E4A692E8BD35623DF221BD074423426B68AD1D7F8A7A97895398DF9B01C5FCD4 ] C:\Windows\System32\SystemSettings.DataModel.dll
21:33:23.0219 0x2c98 C:\Windows\System32\SystemSettings.DataModel.dll - ok
21:33:23.0235 0x2c98 [ D2D96B5540A5CF187E6A056C771CF199, 83B312E015DFD738119B0799396088F6572D0DDAB1BE311540F004702E8A1F37 ] C:\Windows\System32\dlnashext.dll
21:33:23.0235 0x2c98 C:\Windows\System32\dlnashext.dll - ok
21:33:23.0235 0x2c98 [ 84AF2B8FC8B516CE2FE25C65B7CA4872, F366A00CBC6B7F64ACEB8EE28925D286E7644FFD3A9D6F47000762321699C7FB ] C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooks.dll
21:33:23.0235 0x2c98 C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooks.dll - ok
21:33:23.0235 0x2c98 [ E2A9F5806503917CAC695DA3086D5603, B0FAE9E5A6D510C39543A1376ECE354A0594B01D83F8B4DE4F3927FDD8858132 ] C:\Windows\System32\perfos.dll
21:33:23.0235 0x2c98 C:\Windows\System32\perfos.dll - ok
21:33:23.0235 0x2c98 [ FC1791DDD1B5E3C3AC3012BF712F9556, 29E856E602F088433943830F2A38F9691312B760CBA01C096BFFBC44B2831C38 ] C:\Windows\System32\WinMetadata\Windows.UI.Xaml.winmd
21:33:23.0235 0x2c98 C:\Windows\System32\WinMetadata\Windows.UI.Xaml.winmd - ok
21:33:23.0235 0x2c98 [ A2F70285DED01DE7431733792568F3C3, AE4F11CD5D9326E03F35A123CB8755FAE50972DBF4F0004C2F8C8364AE7D455E ] C:\Windows\System32\Windows.ApplicationModel.Store.dll
21:33:23.0235 0x2c98 C:\Windows\System32\Windows.ApplicationModel.Store.dll - ok
21:33:23.0235 0x2c98 [ 1DDE097A358F533F58060B49A06B0AA4, F392D6EB5FD31A5A063E0DD091C3438A6C02DBBBDE12515C663BEB815F17587B ] C:\Windows\System32\LicenseManagerSvc.dll
21:33:23.0235 0x2c98 C:\Windows\System32\LicenseManagerSvc.dll - ok
21:33:23.0235 0x2c98 [ 942B1A730EF69B69908003433EA95861, 7D82F940460A4FB15C6A0768B57E7C8101CD9CD4F90718AD83DEFC1D0B8FA4D8 ] C:\Windows\System32\LicenseManager.dll
21:33:23.0235 0x2c98 C:\Windows\System32\LicenseManager.dll - ok
21:33:23.0251 0x2c98 [ 8EB1FE6CCBC06D324959B7C6797DB79F, 241F731BCE6BB304D0506B76D5BD10BE5736904DF1CE0090513D09A740F7B44C ] C:\Windows\System32\ClipSVC.dll
21:33:23.0251 0x2c98 C:\Windows\System32\ClipSVC.dll - ok
21:33:23.0251 0x2c98 [ CC83EA0BC673140184E6301E4538D65A, 7B3E59A8702C5992203493B16EDF39F25FF1DE870A388A73D97432285D42EE82 ] C:\Windows\System32\winbrand.dll
21:33:23.0251 0x2c98 C:\Windows\System32\winbrand.dll - ok
21:33:23.0251 0x2c98 [ 451C909285D25FD28979E460EF8E7889, 11AC6F24577B853BE050AAD54E432206ABD857A1F30B0C591B843A823E555FC1 ] C:\Windows\System32\ContactActivation.dll
21:33:23.0251 0x2c98 C:\Windows\System32\ContactActivation.dll - ok
21:33:23.0251 0x2c98 [ 2054742BCDE1939326B8D6187F32C6BE, FF53FF8EEC03A32D66697596861F4E91FD198F5BFF9CCC6CA497B2609F80DC43 ] C:\Windows\System32\ContactApis.dll
21:33:23.0251 0x2c98 C:\Windows\System32\ContactApis.dll - ok
21:33:23.0251 0x2c98 [ 0E51223F79FB0BBBBA473F5EE5AB97AE, 61CF50DA050BF7E0A87C5B2CA403B8A3A9C08786D334F30C937EB50D31C911A1 ] C:\Windows\System32\UserDataPlatformHelperUtil.dll
21:33:23.0251 0x2c98 C:\Windows\System32\UserDataPlatformHelperUtil.dll - ok
21:33:23.0251 0x2c98 [ F014C547CFD0F33FD50DF09A08409105, 633E3D4458FD14FD36F3436EE1620F6BFA8E2760A05982D16B2CD047475CA3AF ] C:\Windows\System32\Phoneutil.dll
21:33:23.0251 0x2c98 C:\Windows\System32\Phoneutil.dll - ok
21:33:23.0251 0x2c98 [ 272DD53663A93345091BAE57D078033C, B3193B8A5DEC3FBDDCE19C71C7308556EDDB3E9211C42E79BA8731503C9DCE5B ] C:\Windows\System32\UserDataLanguageUtil.dll
21:33:23.0251 0x2c98 C:\Windows\System32\UserDataLanguageUtil.dll - ok
21:33:23.0266 0x2c98 [ 670820F20642457130E4447BB35CE72D, D84D4BC4B14B7B578A32F6E35B181D8A8A83598B81A97E6E99FF450FE08F6880 ] C:\Windows\System32\UserDataTypeHelperUtil.dll
21:33:23.0266 0x2c98 C:\Windows\System32\UserDataTypeHelperUtil.dll - ok
21:33:23.0266 0x2c98 [ 61A86390B20D77F9E7782873112CAAFB, 67B72E79B39A7D9C2504668BD0DE8F7F5A200BB1350312E9A4494C2B092DA5B7 ] C:\Windows\System32\Windows.Energy.dll
21:33:23.0266 0x2c98 C:\Windows\System32\Windows.Energy.dll - ok
21:33:23.0266 0x2c98 [ 9953FB68C373CAE3E1D52F34E201CB0C, 4E41359032E476BB33B5EED443311CE95737148384078D098B39795BA32EC19D ] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\Microsoft.Graphics.Canvas.dll
21:33:23.0266 0x2c98 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\Microsoft.Graphics.Canvas.dll - ok
21:33:23.0266 0x2c98 [ 7677541EA60B693886CAA4D6028982EF, 7AEFA746822F7C65B4340219E2578006E6F1C46C4FF8A5FEC0BCAB62598324EA ] C:\Windows\System32\CryptoWinRT.dll
21:33:23.0266 0x2c98 C:\Windows\System32\CryptoWinRT.dll - ok
21:33:23.0266 0x2c98 [ C22EAA026307EA2E46812F66D71D4F55, 83DA3857A80278093B8322392982C1DF1E0DFB88771751652FEAC006989D4A41 ] C:\Program Files\AMD\CNext\CNext\amddvr.exe
21:33:23.0266 0x2c98 C:\Program Files\AMD\CNext\CNext\amddvr.exe - ok
21:33:23.0266 0x2c98 [ EE2A1C85C472F89B146CC8EE598CCCBC, 19FD0010DA92B654D1CA270247061A39EA13C0A58529FD8257A97E2EF7794911 ] C:\Windows\System32\consent.exe
21:33:23.0266 0x2c98 C:\Windows\System32\consent.exe - ok
21:33:23.0282 0x2c98 [ A5BF57FE0AB5046B73BA4ED59871636E, 7BE8970ECDE9D69EBA8E76ECADC1037DEBCD15821657F431A0183EE21451AC39 ] C:\Windows\System32\wmsgapi.dll
21:33:23.0282 0x2c98 C:\Windows\System32\wmsgapi.dll - ok
21:33:23.0282 0x2c98 [ 3E87827274659DFCD590E0EB3CD9A88F, 55B53257FF4C30D52076C017F13309D4419D60BD6BF576D8D37007FAA7B56744 ] C:\Windows\System32\mfreadwrite.dll
21:33:23.0282 0x2c98 C:\Windows\System32\mfreadwrite.dll - ok
21:33:23.0282 0x2c98 [ 51F10C1D938D7A1ED5C7272209EE76BC, E93F8435A994E034819404F801C71F5497E5A1F156527484DEAC49FBEE28ACA5 ] C:\Windows\System32\OpenCL.dll
21:33:23.0282 0x2c98 C:\Windows\System32\OpenCL.dll - ok
21:33:23.0282 0x2c98 [ 48BC096633ECD790DA1A2E4907E43FA5, 7864BB22155DD96A04C96E9F4FE552881D2FF8F7DEEFA8A094B5E953FFBA2BFB ] C:\Windows\System32\opengl32.dll
21:33:23.0282 0x2c98 C:\Windows\System32\opengl32.dll - ok
21:33:23.0282 0x2c98 [ E873268B1611F3DA4617D2C478C3B688, 6EF1584A1854D59729D99C4755FF263D47E2A75A86C16C0EFA3AA14EF0CA2F9F ] C:\Windows\System32\glu32.dll
21:33:23.0282 0x2c98 C:\Windows\System32\glu32.dll - ok
21:33:23.0282 0x2c98 [ 8107AB38CD8129C01C1BBE7D43EB520C, 75BA62E4DD8B1BA8E252F9FBE78E9C19C297A63698BE97DA049957130D46B5AF ] C:\Windows\System32\mfcore.dll
21:33:23.0282 0x2c98 C:\Windows\System32\mfcore.dll - ok
21:33:23.0282 0x2c98 [ 72C5591BDE25CF2E0E0EEF5A4EACDA23, 5C324554939BE1FAAE36996BF262263F22F43D34CB2F77AD5D33BF3137F6131A ] C:\Windows\System32\ksuser.dll
21:33:23.0282 0x2c98 C:\Windows\System32\ksuser.dll - ok
21:33:23.0298 0x2c98 [ 9951F1DDE702E368A354B87C49521022, B606ADA5DB34CBF324354D3000CBAEFFC2DADCB8F6732343902F88499C5513AC ] C:\Windows\System32\amfrt64.dll
21:33:23.0298 0x2c98 C:\Windows\System32\amfrt64.dll - ok
21:33:23.0298 0x2c98 [ 431C45AC707EF30F8A05AC7522F7DC4C, DB78E81B3F71C96E91D4A38FA4B8B8570B2C794484FEDB581E03621656901954 ] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
21:33:23.0298 0x2c98 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll - ok
21:33:23.0298 0x2c98 [ ADA5AD1F886B336B98D14805AE7BDEAC, E8E35F5DE850DB9C49F4910AFA28FD1CE590F2648268C32E72212C2ECCD84B99 ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atig6pxx.dll
21:33:23.0298 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atig6pxx.dll - ok
21:33:23.0298 0x2c98 [ 9AC10E6CE78A9C71944E3C7562A1B01E, 25F1CEDBDD2505962D5AF014357588D235626FAEDC911EE8B7E06A4E85ECE3EB ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atio6axx.dll
21:33:23.0298 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atio6axx.dll - ok
21:33:23.0298 0x2c98 [ FC3C7B2A12FEC9B486A945D7A56AEABD, A06D7FEBBB5335977032D690BDEE6858B9AD394C08C6385E950F399412AF4C01 ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atig6txx.dll
21:33:23.0298 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atig6txx.dll - ok
21:33:23.0313 0x2c98 [ 39395C032F0F222A1DAC5A175F4F5914, B316BA6538A37F2D3FE72D4690FA723E41F176E39363AA5973EBCE8C605762D6 ] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\LibWrapper.dll
21:33:23.0313 0x2c98 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\LibWrapper.dll - ok
21:33:23.0313 0x2c98 [ FC9C40A3064E3CFFE9CE73CF4DC94CCB, FBC6A1D8054F65774BC6921E74520B6E8E71DB27222FA76CA68264619382D9CE ] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\skypert.dll
21:33:23.0313 0x2c98 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\skypert.dll - ok
21:33:23.0313 0x2c98 [ 3CFCA7FEA3D639C457BAF1CD58272908, 5F2A75F4CBB716DC1944441211B0C17C2C70C92B6F8A35AE13B0DB69CC540BEF ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiu9p64.dll
21:33:23.0313 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiu9p64.dll - ok
21:33:23.0313 0x2c98 [ D1CAE744E96D390F0394CEEE3592F179, 9ABA8E926DFA31631ADF8D706AB93836DCBB11885E32D16C3C284CD3AC327642 ] C:\Windows\System32\Windows.System.Profile.SystemId.dll
21:33:23.0313 0x2c98 C:\Windows\System32\Windows.System.Profile.SystemId.dll - ok
21:33:23.0313 0x2c98 [ 4280815B26E6F805149F70C4B9F71236, C5367FC2D9092823BC1A4CA5CA1DA5100411170665E0F8F48F33E92B8AEC3AFC ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiumd64.dll
21:33:23.0313 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiumd64.dll - ok
21:33:23.0313 0x2c98 [ DB3968DF375252A9E98BCEAE5D2BED53, 7702AA3E2156B5F6983C2362855502FF3649A4B5DF9F4E22B2B1EE75A8A4F1E3 ] C:\Windows\System32\Windows.System.Profile.HardwareId.dll
21:33:23.0313 0x2c98 C:\Windows\System32\Windows.System.Profile.HardwareId.dll - ok
21:33:23.0329 0x2c98 [ E79CBD6C099B979B41D2DBF9FCE7D1EF, 575EE9D0B6B7626B766E320421063722F05489785E13ACAC27DCC1609F18BC5F ] C:\Windows\System32\WWanAPI.dll
21:33:23.0329 0x2c98 C:\Windows\System32\WWanAPI.dll - ok
21:33:23.0329 0x2c98 [ 5DEEB84DF48CDC136979715AD212AE50, 2EAB9DD16A7CE91C50BE4E2164D5A4B630AFB229207194F378C76CEB074E5276 ] C:\Windows\System32\Windows.Networking.HostName.dll
21:33:23.0329 0x2c98 C:\Windows\System32\Windows.Networking.HostName.dll - ok
21:33:23.0329 0x2c98 [ 59937F033F6677A47E8595A3953508B8, 305C4D89BE7C850272F5C11C1EF9127BEFC1B6C4C6D6C882C25D1F4CFEE6E061 ] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\rtmpal.dll
21:33:23.0329 0x2c98 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\rtmpal.dll - ok
21:33:23.0329 0x2c98 [ C0FF63A8364B5B4975E3807A7C3680A2, 50DC01E0670C8A84152E12455A9832434A810CD20C13D860F139263CB159C198 ] C:\Windows\System32\Windows.Networking.dll
21:33:23.0329 0x2c98 C:\Windows\System32\Windows.Networking.dll - ok
21:33:23.0329 0x2c98 [ 17DA8DD2D5FC9F1000965E48F796C4F0, E55BE523CBC9796BB5DA18CCA24A57BE6AF8E164D38D36C918D6C7108F893443 ] C:\Windows\System32\drivers\bindflt.sys
21:33:23.0329 0x2c98 C:\Windows\System32\drivers\bindflt.sys - ok
21:33:23.0329 0x2c98 [ D41D9C26A61A2EDD947E2AFB2D8925DE, A6FAED9FF56A9BEA0CDF755FD7ABB3FA28C0C27C93D51447C2FFB48CD76F086C ] C:\Windows\System32\Windows.Devices.WiFi.dll
21:33:23.0329 0x2c98 C:\Windows\System32\Windows.Devices.WiFi.dll - ok
21:33:23.0344 0x2c98 [ 09D7EC0E01A9D53FBD0DED9C0163747F, 57C570DDBAFBB734C27C666F62523826488E7CCEF3DA7B44DFBC2A7DAB0235EF ] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
21:33:23.0344 0x2c98 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe - ok
21:33:23.0344 0x2c98 [ 55BBF137F156C36DAF1D2B64B96855D0, E5E1024A623202EE915EE4BE5161D0BA03830038C5E0FEDCF09E842CD1427463 ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiumd6a.dll
21:33:23.0344 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiumd6a.dll - ok
21:33:23.0344 0x2c98 [ 8FFAA80338156FD443D34F4CE9BD8431, 696A78B8C7E32163E3752A8D73A13C70C12BBB05E20EB28295B786E5A88D7FDB ] C:\Windows\System32\mscoree.dll
21:33:23.0344 0x2c98 C:\Windows\System32\mscoree.dll - ok
21:33:23.0344 0x2c98 [ 63EBFC5FBEE40FAC83ED0A445C59BA77, 9032531A36C403127F1B9EA6E113132B9B6E531A78EEA2D056CE32C022992317 ] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\rtmcodecs.dll
21:33:23.0344 0x2c98 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\rtmcodecs.dll - ok
21:33:23.0344 0x2c98 [ 72CDCA95ABB5D243922BC191FBE79742, 07073E71F6B15091DF109CF97C26862755F013FF99382C08979C7DB2699DF50F ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
21:33:23.0344 0x2c98 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
21:33:23.0344 0x2c98 [ 3402B81205C8C29722454A35E29F70A5, 86EE1618E04F30E6B4687B52A203DF3810114E7B3C4C2A874A7A67450E9A944E ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
21:33:23.0344 0x2c98 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll - ok
21:33:23.0344 0x2c98 [ 1833A13310B0AC75FFDCF994575C285B, 57E5CA3F379DEB5C8365B6A4F10C19B0C28D0CFFDB41F9502CFD8F5A26E8BAE9 ] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\rtmpltfm.dll
21:33:23.0344 0x2c98 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\rtmpltfm.dll - ok
21:33:23.0360 0x2c98 [ 63936588122BDEE9624D02CE3F8F54EA, 21F7E6165CE8DD92DB8CDF48CEE83DE64B2B0807B7B499CF87678B70C6F8C32F ] C:\Windows\System32\vcruntime140_clr0400.dll
21:33:23.0360 0x2c98 C:\Windows\System32\vcruntime140_clr0400.dll - ok
21:33:23.0360 0x2c98 [ F8F171BE1820544E15B555847005355C, CDDF9A2BF085AE59BA464B3BA6394AACFC342DA5F17D77FD5306054C8AABF153 ] C:\Windows\System32\ucrtbase_clr0400.dll
21:33:23.0360 0x2c98 C:\Windows\System32\ucrtbase_clr0400.dll - ok
21:33:23.0360 0x2c98 [ 30EEBFCBCCAD3E1C32610F92B93AE1F5, 08F3AE83C747706A88CC649017166E6501E3FB91302FD73CCCEBE0AC98A42887 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\8d60a20bcb7b36d0ddf74b96d554c96e\mscorlib.ni.dll
21:33:23.0360 0x2c98 C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\8d60a20bcb7b36d0ddf74b96d554c96e\mscorlib.ni.dll - ok
21:33:23.0360 0x2c98 [ 9D435467F0D3AF4E09CFE28E1D8FF39B, D2D4509D2AC077EC8EEFB131C34DD2AB40797EF35B42E39E194473AF8A0BDF18 ] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\RtmMediaManager.dll
21:33:23.0360 0x2c98 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\RtmMediaManager.dll - ok
21:33:23.0360 0x2c98 [ EFB7FE94E71C23CECE221FD39E45B27D, EF3D77E1FAFC3D3AB0C458325A640CB883D40ABA6039333DF4E47CADBD7CD6BD ] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\ssScreenVVS2.dll
21:33:23.0360 0x2c98 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\ssScreenVVS2.dll - ok
21:33:23.0360 0x2c98 [ 07E328D75A398A27DCB1455CDB6C0A3A, ED2AF2DDB001DDE47EF8C60D7B74EDD8268DB2F1E5647F192A833711DC7640BE ] C:\Windows\System32\DDORes.dll
21:33:23.0360 0x2c98 C:\Windows\System32\DDORes.dll - ok
21:33:23.0376 0x2c98 [ 06581D811BD4498317F959EDB856E75E, FC1DF85F196E64D768447474CA03CACCA9E1FD399FEB7E189496BC0BC28B902A ] C:\Windows\System32\DefaultDeviceManager.dll
21:33:23.0376 0x2c98 C:\Windows\System32\DefaultDeviceManager.dll - ok
21:33:23.0376 0x2c98 [ 00000000000000000000000000000000, 0000000000000000000000000000000000000000000000000000000000000000 ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\amdocl64.dll
21:33:23.0376 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\amdocl64.dll - ok
21:33:23.0376 0x2c98 [ A8CC557969C88135B6B6651460ABF3CB, 290FA4D30937D82619DA91200025F237A59BFAEB7ADF9F4F828D002B599C5BF3 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll
21:33:23.0376 0x2c98 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll - ok
21:33:23.0376 0x2c98 [ B0559C126B46E45A10D662C09C4E4D23, D5CB0AD6FE3B6A4236F85255F8BFE6171337FFB443A47118E220C775DFCB5988 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System\fef08a9d97fc5fe2e9193fbcb2227e37\System.ni.dll
21:33:23.0376 0x2c98 C:\Windows\assembly\NativeImages_v4.0.30319_64\System\fef08a9d97fc5fe2e9193fbcb2227e37\System.ni.dll - ok
21:33:23.0376 0x2c98 [ 5A5C75CE916C182FE6C5816C9C85D49D, 00CA94D1DB47451285B466CEC1798524BBAA2E7416C00715D95A0D719E2F7F1E ] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
21:33:23.0376 0x2c98 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll - ok
21:33:23.0376 0x2c98 [ 16AA3FFDEB4807322BE0B0169E8E928E, 4D7E26DAF9C6A7DB15C3E3ACD0678B930D0E311CAA4CF9CCE5A10FED46FEE97A ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runt73a1fc9d#\28ded34e9d09ec16f16a5b240a240c04\System.Runtime.Remoting.ni.dll
21:33:23.0376 0x2c98 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runt73a1fc9d#\28ded34e9d09ec16f16a5b240a240c04\System.Runtime.Remoting.ni.dll - ok
21:33:23.0391 0x2c98 [ C699E8D7175DEB3B660DE701E91DB62D, C5F8C149C38F624D8949BF18D5196543002CE4EE865716629A4182DE3391ECC5 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\b4bf7266d73c05a0e87b198b961a00a0\System.Core.ni.dll
21:33:23.0391 0x2c98 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\b4bf7266d73c05a0e87b198b961a00a0\System.Core.ni.dll - ok
21:33:23.0391 0x2c98 [ 7CEA0D2DB56EBBC459E3AF7225E59550, AB188D15E8173BAC9A787DEFE842341EDE8086ED8594BD87FB665EAB79ADE321 ] C:\Windows\System32\audiodg.exe
21:33:23.0391 0x2c98 C:\Windows\System32\audiodg.exe - ok
21:33:23.0391 0x2c98 [ C64A9175D5F5D801E9BAEAC828B2DB79, 37B502BF18231AC812AA81725E00CC6CC9549D5B11AA388381B3738FAE5FA385 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\250e8caa0952158e01ed2360a5e29908\System.Configuration.ni.dll
21:33:23.0391 0x2c98 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\250e8caa0952158e01ed2360a5e29908\System.Configuration.ni.dll - ok
21:33:23.0391 0x2c98 [ B4AD45CE4BA77B6134FA9BF4597AA58C, 12EC1C4EEFE6733D1C0B59B1D1A87B7CF70E480D16F421C94D0F8D869BFF0142 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\c33e6b4f8a7247b0990b8cf35428bc43\System.Xml.ni.dll
21:33:23.0391 0x2c98 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\c33e6b4f8a7247b0990b8cf35428bc43\System.Xml.ni.dll - ok
21:33:23.0391 0x2c98 [ 4E0D4AA67EF0A2E76E58DDA6A1C61967, AD112689195B4DF11CFC31F11B2C6A1E223D7EB6A9856331F0F8246E5E2E363D ] C:\Windows\System32\WMALFXGFXDSP.dll
21:33:23.0391 0x2c98 C:\Windows\System32\WMALFXGFXDSP.dll - ok
21:33:23.0391 0x2c98 [ AEDBF156B566CF436B4452865250B65F, CEC4E17550C9251F128DBFCF3151AB437E3B5216BF346DCA2081F2E75C210971 ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\amdocl12cl64.dll
21:33:23.0391 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\amdocl12cl64.dll - ok
21:33:23.0407 0x2c98 [ 06AE378B4E5E2236D1A4CE59365C8378, 46F112A993A6AC621332E97A0C5AD672C59088495B6C50C8B4B68914113C9343 ] C:\Windows\System32\Windows.Perception.Stub.dll
21:33:23.0407 0x2c98 C:\Windows\System32\Windows.Perception.Stub.dll - ok
21:33:23.0407 0x2c98 [ 47FBA21F3401384F008D4A1A9D281D9E, 634150D72C83A3168B94D897805C8C2B79A0D34365D97F61DD20CF52CB0F2CB8 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\c6d7a40d12247c54531a7ab2d7219dac\System.Drawing.ni.dll
21:33:23.0407 0x2c98 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\c6d7a40d12247c54531a7ab2d7219dac\System.Drawing.ni.dll - ok
21:33:23.0407 0x2c98 [ 75EBBA0D7482649D357F6A65849257C8, 01C7B52EFE589C5D3A09B90A78995FFD727994A510F026E32E7FFC0B76654468 ] C:\Windows\System32\AudioEng.dll
21:33:23.0407 0x2c98 C:\Windows\System32\AudioEng.dll - ok
21:33:23.0407 0x2c98 [ 1A29A483F4AC15E2A6E3FCC28C754DD1, 433C05B74C05ACF3ED6570636B2746212EAFE8C5939D3BCABE99B4DDA92C0E37 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Windows.Forms\2c083e80c5a030fa98949290d8996943\System.Windows.Forms.ni.dll
21:33:23.0407 0x2c98 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Windows.Forms\2c083e80c5a030fa98949290d8996943\System.Windows.Forms.ni.dll - ok
21:33:23.0407 0x2c98 [ 1084F445456377D25DD9EDA81EB4E520, FA946F6FAEB080C373E73394CFC5252D025A7DD0A79C72DCFA2608A67DA50BFD ] C:\Windows\System32\AUDIOKSE.dll
21:33:23.0407 0x2c98 C:\Windows\System32\AUDIOKSE.dll - ok
21:33:23.0407 0x2c98 [ 476CAC33EC17DCF116CE5154453949DD, 0F9327AE06B432B3DB1796247FF102BCB3AD677703A0D096CD05A371D264458D ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime\27f60e563f6c7201bc48b93fbcda44a2\System.Runtime.ni.dll
21:33:23.0407 0x2c98 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime\27f60e563f6c7201bc48b93fbcda44a2\System.Runtime.ni.dll - ok
21:33:23.0407 0x2c98 [ 0A1A20028854DF6BD30CEA55527A4CCF, 43254DD02F909C68F64C476D87E07B88FC3EF1B782AE8233C6F91745DC03EC52 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runtbff93e24#\0ccbe3bfcb4beecaa4e0ee1cdb82a73a\System.Runtime.InteropServices.WindowsRuntime.ni.dll
21:33:23.0407 0x2c98 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runtbff93e24#\0ccbe3bfcb4beecaa4e0ee1cdb82a73a\System.Runtime.InteropServices.WindowsRuntime.ni.dll - ok
21:33:23.0423 0x2c98 [ 83BABB19395C0BC7E471B6A1CBC28D8D, 6F3A94A945754E533F5B71757EC6DB1D3EA3E43AF49D1210BB4D46592407962B ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runt0d283adf#\e0acc5bb3e811215ca276bfec44cb707\System.Runtime.WindowsRuntime.ni.dll
21:33:23.0423 0x2c98 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runt0d283adf#\e0acc5bb3e811215ca276bfec44cb707\System.Runtime.WindowsRuntime.ni.dll - ok
21:33:23.0423 0x2c98 [ C7DDB89302CDF2BB69E5B8C59FF83CE0, 6A7D5BAF2494A10C7BFF7F46A58ACEB9AB25467D0021EAD51A73A99331DE1C11 ] C:\Windows\System32\OnDemandBrokerClient.dll
21:33:23.0423 0x2c98 C:\Windows\System32\OnDemandBrokerClient.dll - ok
21:33:23.0423 0x2c98 [ 19F95BAFFE7FD7F2CB4F8E2248C1A8B5, 609A049A3FC49E0D70375AE1652F0EFFA3454B442E957AD6D17A00CB20962488 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Numerics\c7407a0ad2ae7d7e3f2f4a931f4a00bf\System.Numerics.ni.dll
21:33:23.0423 0x2c98 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Numerics\c7407a0ad2ae7d7e3f2f4a931f4a00bf\System.Numerics.ni.dll - ok
21:33:23.0423 0x2c98 [ 7D88199D4A77C86F59CD6DB36087E082, C6BB682D1AB41195A4FD79DF0D81F5B6FC8ED76419F7E8C920CB9C788E74C8E7 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\f7e5aae3c1cec018e996a4fdb1d29ce3\System.Runtime.Serialization.ni.dll
21:33:23.0423 0x2c98 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\f7e5aae3c1cec018e996a4fdb1d29ce3\System.Runtime.Serialization.ni.dll - ok
21:33:23.0423 0x2c98 [ 060B220ABA59CB221FBA537E892E376D, 9E14B1E6A52328E117949AAD0870E9EA8E7FC57DABEB9B60153DD9FF95780FCC ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.Linq\fc0f48af079a84941a2dd4017bbfe907\System.Xml.Linq.ni.dll
21:33:23.0423 0x2c98 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.Linq\fc0f48af079a84941a2dd4017bbfe907\System.Xml.Linq.ni.dll - ok
21:33:23.0423 0x2c98 [ D20CA9296CC3042F29ED5FE52C103909, 04F9F13A1DD28688370A1910E407E0B9C8BFF8FA7BF3853765D0A1808A3356BD ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Data\db427565e809442f21a3befd343d2102\System.Data.ni.dll
21:33:23.0423 0x2c98 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Data\db427565e809442f21a3befd343d2102\System.Data.ni.dll - ok
21:33:23.0438 0x2c98 [ 5E6F32740C2ACF93C255C7730CC530F1, 722A11024A5FCB1B4143F9AD8515EF8FA1044C747A0F8D2D03C59A29E3068B6C ] C:\Windows\Microsoft.NET\assembly\GAC_64\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
21:33:23.0438 0x2c98 C:\Windows\Microsoft.NET\assembly\GAC_64\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll - ok
21:33:23.0438 0x2c98 [ 61F2BA84EF64EE5577B03AAE27A7F46A, 85E2A6B0A7C1A24B49071B23437B3533C6995EE0BCDAA59718117C1B8F8DD564 ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\amduve64.dll
21:33:23.0438 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\amduve64.dll - ok
21:33:23.0438 0x2c98 [ 123E5B115DCBB9BAF8773D8032EACA4C, 266DD531F5BBC0E0D84CA197BC03EF47F246EF95C1A009EF872CAC79E757F2B6 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Web\c739d6629ebd4f6121aaaa4ed26f6c8e\System.Web.ni.dll
21:33:23.0438 0x2c98 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Web\c739d6629ebd4f6121aaaa4ed26f6c8e\System.Web.ni.dll - ok
21:33:23.0438 0x2c98 [ F35F45A69E7E6594F38C991FE6E02654, 2A7278D622CBE120773BCF6A41B15E878DC96A82A2CE68027BE7BF986693C285 ] C:\Program Files\AMD\CNext\CNext\amdow.exe
21:33:23.0438 0x2c98 C:\Program Files\AMD\CNext\CNext\amdow.exe - ok
21:33:23.0438 0x2c98 [ 271542367CFE176418063E1202C5DA59, 45B8C7AE8C3EA35AA2FABE4655B6CC8F91B369C19BD9DBEA247E56CE411FBE4C ] C:\Windows\System32\wlrmdr.exe
21:33:23.0438 0x2c98 C:\Windows\System32\wlrmdr.exe - ok
21:33:23.0438 0x2c98 [ 5468F27B6AC073EE4AF420D99F90F6A6, 32451B1FE77A2C621A52D5567B07094E5AFE35F7405E666480C143FF9E3C1134 ] C:\Windows\System32\WindowsInternal.ComposableShell.DesktopHosting.dll
21:33:23.0438 0x2c98 C:\Windows\System32\WindowsInternal.ComposableShell.DesktopHosting.dll - ok
21:33:23.0454 0x2c98 [ F278CBD45A44C2C03C2AD11A73D533C1, C1785FC50672F1277825AAE25C8C00CBAD9DE64BF7017AE3D692E5DFD945C062 ] C:\Windows\ShellComponents\WindowsInternal.ComposableShell.Experiences.Switcher.dll
21:33:23.0454 0x2c98 C:\Windows\ShellComponents\WindowsInternal.ComposableShell.Experiences.Switcher.dll - ok
21:33:23.0454 0x2c98 [ 29BA4D4F329C4ECD77BC0C4D2C049619, 99C3E9E85BC91C64E0FF7438F3A7C003919A33226DFA23D4642606C13A45F454 ] C:\Windows\ShellExperiences\TileControl.dll
21:33:23.0454 0x2c98 C:\Windows\ShellExperiences\TileControl.dll - ok
21:33:23.0454 0x2c98 [ 64893526221497F1CF8FA159D45EB1CD, 5D7A760CB5AD34F72E337BE393E63DDA8DBF4D58C85780B6D076D39B8F727D5B ] C:\Windows\ShellComponents\TaskFlowUI.dll
21:33:23.0454 0x2c98 C:\Windows\ShellComponents\TaskFlowUI.dll - ok
21:33:23.0454 0x2c98 [ C94442C27FD192AD3F888D72997EE25B, EA98906D830C798DB02214E6D03CE2406E151C116462281E7EAAD340CFBC232C ] C:\Program Files\Malwarebytes\Anti-Malware\assistant.exe
21:33:23.0454 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\assistant.exe - ok
21:33:23.0454 0x2c98 [ 0648C3D8809EF0B7CEFDDB78A3C97E73, 6AC13DC1D81B7AA4B60E6B46BB82480394F920C14FCF051F1E9A04463596AFE6 ] C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
21:33:23.0454 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe - ok
21:33:23.0454 0x2c98 [ DBF20D2240CC90672EC694392C09716B, 80C7CFF49438AD7C328EAF645414BF4E337CCA9365564F1DE68E906FB5127F19 ] C:\Windows\System32\ploptin.dll
21:33:23.0454 0x2c98 C:\Windows\System32\ploptin.dll - ok
21:33:23.0469 0x2c98 [ 25E1EFCAE5AF71D79111BEE87D102466, 55DCEAF653CE91ED6143BAA85B6E93A50C4DFAE96346DF4FBED907C8A001FEDB ] C:\Program Files\Malwarebytes\Anti-Malware\QtWinExtras\qml_winextras.dll
21:33:23.0469 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\QtWinExtras\qml_winextras.dll - ok
21:33:23.0469 0x2c98 [ 18F82A1AA3849BDA2DEB231B0C0BC614, CA728EA12134C00D8F7B55048309EE936CFCAD3EC3C774A3C14C63F3A8B3E71F ] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\Private\dialogsprivateplugin.dll
21:33:23.0469 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\Private\dialogsprivateplugin.dll - ok
21:33:23.0469 0x2c98 [ 9E2333E64ED1785E5E7683EDB3881C8B, 8EE14900D1FFAF2029A44033040B3B1E93533C6FD0DA88E0657BD533E4790811 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt\labs\folderlistmodel\qmlfolderlistmodelplugin.dll
21:33:23.0469 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\Qt\labs\folderlistmodel\qmlfolderlistmodelplugin.dll - ok
21:33:23.0469 0x2c98 [ EE91AD323B4A4DE6D07D64C102D5B10F, 41755F8EC5581905C405252C80E6FD08405A6D6959FCDD3B912B875CE90A4A86 ] C:\Program Files\Malwarebytes\Anti-Malware\Qt\labs\settings\qmlsettingsplugin.dll
21:33:23.0469 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\Qt\labs\settings\qmlsettingsplugin.dll - ok
21:33:23.0469 0x2c98 [ 9CFDD90D8B3CE1DEE57AAC1A2799F028, BAC5EE33310942C9BE783C30256F35135898988C897E5EFF1E14FEC2D146EAB7 ] C:\Windows\SysWOW64\dlnashext.dll
21:33:23.0469 0x2c98 C:\Windows\SysWOW64\dlnashext.dll - ok
21:33:23.0469 0x2c98 [ 277063242C4848B252D346043AF8A98B, 41FF505A09E44CDCE86B0DD53C5C75DCC18BF479CCFA0C607D31B7E7247B2657 ] C:\Windows\SysWOW64\wpdshext.dll
21:33:23.0469 0x2c98 C:\Windows\SysWOW64\wpdshext.dll - ok
21:33:23.0469 0x2c98 [ 1D54AFC746BC9DA93BAB7C586F378767, 3054E3338886C08B47182A7F36BA02A5DB232297AC59143B908F557F5F5A883D ] C:\Windows\SysWOW64\policymanager.dll
21:33:23.0469 0x2c98 C:\Windows\SysWOW64\policymanager.dll - ok
21:33:23.0485 0x2c98 [ 44DD63C848366E9D9B77E626AFDD674C, ACB6E5FE18B11AF07AAE100F8EB310E255490159632FB0B8CC409AA73E46782A ] C:\Windows\SysWOW64\msvcp110_win.dll
21:33:23.0485 0x2c98 C:\Windows\SysWOW64\msvcp110_win.dll - ok
21:33:23.0485 0x2c98 [ A7554DA154B00E9CBAA3A4B4D16260A9, F9C516B58C48ED2D992CFAAF4CEEA7826B4A99509F4ACF826F83F5FEBEE441B2 ] C:\Windows\SysWOW64\WindowsCodecs.dll
21:33:23.0485 0x2c98 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
21:33:23.0485 0x2c98 [ DA9ADC9318971B77378A277600197C00, 29291906AC7512A8D14C5F4C2013CD9F334BAB16C422A25462B56FE204B0AF7C ] C:\Windows\SysWOW64\thumbcache.dll
21:33:23.0485 0x2c98 C:\Windows\SysWOW64\thumbcache.dll - ok
21:33:23.0485 0x2c98 [ 3C6157F0EC515CCD90BC0E3A0E8A732B, 6E65863C2C401ED00A016DDB65B22676E2CB37265D51246DE8315A10B1522060 ] C:\Program Files\AVAST Software\Avast\aswPatchMgt.dll
21:33:23.0485 0x2c98 C:\Program Files\AVAST Software\Avast\aswPatchMgt.dll - ok
21:33:23.0485 0x2c98 [ AB5F0C8272DFE862D0AA7462FCCC918C, 4D82E5152B1646EED2A4F5E5EC4FD446A290FB76465CD2AFCD79469C4D4FCFF6 ] C:\Program Files\AVAST Software\Avast\defs\19062404\swhealthex2.dll
21:33:23.0485 0x2c98 C:\Program Files\AVAST Software\Avast\defs\19062404\swhealthex2.dll - ok
21:33:23.0485 0x2c98 [ F8C5CF8A518FAFE5E2577CBC2E6D1820, FF7895DDC7D4DFB528B431B95001C6AD44178ED697FA5C29A77BFD033D73800C ] C:\Windows\System32\powercfg.exe
21:33:23.0485 0x2c98 C:\Windows\System32\powercfg.exe - ok
21:33:23.0501 0x2c98 [ 87C47E7A9A1A52680648374825DA494B, EE75CCFA4C6DA3B71865F94868CB526237199BF02E769EF53396E3960B022F8F ] C:\Program Files\AVAST Software\Avast\gaming_mode.dll
21:33:23.0501 0x2c98 C:\Program Files\AVAST Software\Avast\gaming_mode.dll - ok
21:33:23.0501 0x2c98 [ B9731383F9C25C3D2873C61165E103FA, 76C0F5433EA6D11789D2F0FB15AB4ED7ED065546AD817B01E241E494FF2BAEBB ] C:\Windows\System32\energy.dll
21:33:23.0501 0x2c98 C:\Windows\System32\energy.dll - ok
21:33:23.0501 0x2c98 [ DF3C4CC59E2FC998C50B08CCEF85CFDF, 71A1CA978834C0DDBAB05E3987CB4BD6CC2783F9E05B3D00C8FCD333349528AC ] C:\Windows\System32\ApplicationFrameHost.exe
21:33:23.0501 0x2c98 C:\Windows\System32\ApplicationFrameHost.exe - ok
21:33:23.0501 0x2c98 [ 823A7C1FCE57454293D7150AF2876813, 1EA52B220058AE80A6A6ECBC5A2BAC67A71146D089204DAF766A1E581BDA616F ] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.App.exe
21:33:23.0501 0x2c98 C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.App.exe - ok
21:33:23.0501 0x2c98 [ 359B655CCEA0462DF4E3C18933165E0D, FEA1DDD8FCFE5EA42BCD6B691CA695268E465F41F00FE9679A8B2454C5054E5E ] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.App.dll
21:33:23.0501 0x2c98 C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.App.dll - ok
21:33:23.0501 0x2c98 [ DDBF85233525AD0B0AC4490C84A58880, C65495960F769006D8B9504DDB850A0E25D86E733963CFB992A69369C3443B4C ] C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.1.7_1.7.25531.0_x64__8wekyb3d8bbwe\SharedLibrary.dll
21:33:23.0501 0x2c98 C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.1.7_1.7.25531.0_x64__8wekyb3d8bbwe\SharedLibrary.dll - ok
21:33:23.0516 0x2c98 [ F5E44A252955BF8058202F567172B2CD, 9FAFB42E7F2DDDFC6A14375EEC9E75BE39DD78447F6CC149997592BD7AE89B34 ] C:\Program Files\WindowsApps\Microsoft.NET.Native.Runtime.1.7_1.7.25531.0_x64__8wekyb3d8bbwe\mrt100_app.dll
21:33:23.0516 0x2c98 C:\Program Files\WindowsApps\Microsoft.NET.Native.Runtime.1.7_1.7.25531.0_x64__8wekyb3d8bbwe\mrt100_app.dll - ok
21:33:23.0516 0x2c98 [ 73F4902114C30B587CDD8404AAFE0714, FA54010A6AC4AE856B7D2EEE3342B92343B319E7424F1B481744C8AFA81E1DE7 ] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
21:33:23.0516 0x2c98 C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll - ok
21:33:23.0516 0x2c98 [ 69343DA8FAF268C33750100F0F8E400E, 27EF9C4C547667F498B93100579D3B7C890AB3EF730D8ED36C84B94C585769CB ] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
21:33:23.0516 0x2c98 C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll - ok
21:33:23.0516 0x2c98 [ 4F467C2B28D68743356C4E1263CDBD49, D7FBA1BA665FBE5F5D587C714A90778F0DC3A49756A0E4AAD43022863C12381E ] C:\Windows\System32\XblAuthTokenBrokerExt.dll
21:33:23.0516 0x2c98 C:\Windows\System32\XblAuthTokenBrokerExt.dll - ok
21:33:23.0516 0x2c98 [ 5A185AD39FBA3409D7AD7DDCDA29DBA0, 18B67F1B06B8A0626B04721FC88C79875713072EF354F67DEA4090BAC77903B7 ] C:\Windows\System32\XblAuthManager.dll
21:33:23.0516 0x2c98 C:\Windows\System32\XblAuthManager.dll - ok
21:33:23.0516 0x2c98 [ 80E2BF3EBBC198885BC0D2CDE0EDB35F, EBDF85C0DF3F7FC9F6966D61D41DA1FC1101051D19C5929DB23C6E10FE1BE3C4 ] C:\Windows\System32\XblAuthManagerProxy.dll
21:33:23.0516 0x2c98 C:\Windows\System32\XblAuthManagerProxy.dll - ok
21:33:23.0516 0x2c98 [ 8F1F76CAC5F656ED46683B6C854383CF, B9B6671664875E33D44B31407249029C7BCEDBF8083038504C6498841183C9E3 ] C:\Program Files\WindowsApps\Microsoft.XboxIdentityProvider_12.50.6001.0_x64__8wekyb3d8bbwe\XboxIdp.dll
21:33:23.0516 0x2c98 C:\Program Files\WindowsApps\Microsoft.XboxIdentityProvider_12.50.6001.0_x64__8wekyb3d8bbwe\XboxIdp.dll - ok
21:33:23.0532 0x2c98 [ 7722C33BC4472527436898B3A1A1CBC4, 40A1409C7DC7B1A2C3CE2A181A3EE9AA5E72781B5419D492DCC7AFA7640D28EA ] C:\Program Files\WindowsApps\Microsoft.XboxIdentityProvider_12.50.6001.0_x64__8wekyb3d8bbwe\XboxIdp.Native.dll
21:33:23.0532 0x2c98 C:\Program Files\WindowsApps\Microsoft.XboxIdentityProvider_12.50.6001.0_x64__8wekyb3d8bbwe\XboxIdp.Native.dll - ok
21:33:23.0532 0x2c98 [ 13A47AF365281C05FB432DD4561C24CF, E9A83D6F363EE0AC8458986A47EFD8C4E6B0A7A9DBEB5C7ACFBFB28E2CFD5F19 ] C:\Windows\System32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
21:33:23.0532 0x2c98 C:\Windows\System32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll - ok
21:33:23.0532 0x2c98 [ 4970B4C1E9AB76D2E314216AC34E3165, 77E3112A80791BE3AC7E963FCF15DC832B8599D172E6F2AAC4AE01ED5FC3659D ] C:\Windows\System32\EditionUpgradeHelper.dll
21:33:23.0532 0x2c98 C:\Windows\System32\EditionUpgradeHelper.dll - ok
21:33:23.0532 0x2c98 [ 9C12C780418F91D2B47608D0F53C0D54, F4B9E46C9DB4AE46B853C0293A1179943CA7EF5CD9A5702AEF0799ABAFB2256F ] C:\Windows\System32\Windows.Security.Integrity.dll
21:33:23.0532 0x2c98 C:\Windows\System32\Windows.Security.Integrity.dll - ok
21:33:23.0532 0x2c98 [ 927DFF86F152733A4305FDAE449B9224, 5FAA3F910E2DEF2B92DC708327D2A19720332852F8BF8B251EC5BD3CF0DD2AF9 ] C:\Windows\System32\Windows.System.UserProfile.DiagnosticsSettings.dll
21:33:23.0532 0x2c98 C:\Windows\System32\Windows.System.UserProfile.DiagnosticsSettings.dll - ok
21:33:23.0532 0x2c98 [ 375A9FD173B76B9954EA150516931D42, B068BE58EB9B5A278E8474339B41F9C3ADF735F033AB9534485745B5AFAAC3A2 ] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
21:33:23.0532 0x2c98 C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll - ok
21:33:23.0548 0x2c98 [ C23B86F1635BDCF7B0377248EF56A90C, 6D01DB032DB6FC08378BB20846CAC97F9BADE539427959D2FCF5C059A9F17526 ] C:\Windows\System32\Windows.UI.Xaml.Phone.dll
21:33:23.0548 0x2c98 C:\Windows\System32\Windows.UI.Xaml.Phone.dll - ok
21:33:23.0548 0x2c98 [ 5FC436A05584C60DB4083719078B44AC, 1AAEC641D85F906529FE0DA3DEFE58C01BFE5F21BA9DE58B6BDEF0FB44C1F694 ] C:\Windows\System32\InstallService.dll
21:33:23.0548 0x2c98 C:\Windows\System32\InstallService.dll - ok
21:33:23.0548 0x2c98 [ 7F935D5B1F97E8203888BCB335C96431, 39EBA17FDFF5B97ACFB5D5B09201CAFC3E5AB6DC712C0F144026561A7522D717 ] C:\Windows\System32\wuapi.dll
21:33:23.0548 0x2c98 C:\Windows\System32\wuapi.dll - ok
21:33:23.0548 0x2c98 [ 9EC2B66F7E26C0F84BC26823E3830AA0, 41A27B0675A4564DECF5BFA0A0EDBAD9957802C0BF1DFB69B3EC7A579A48C839 ] C:\Windows\System32\wups.dll
21:33:23.0548 0x2c98 C:\Windows\System32\wups.dll - ok
21:33:23.0548 0x2c98 [ 898B6B2DD46E8A27787372631128FCD5, 5946BD256D3308874308A90D81EF618DB49B06B856BDC4D9A93F0E95ED7FF1EC ] C:\Windows\System32\EAMProgressHandler.dll
21:33:23.0548 0x2c98 C:\Windows\System32\EAMProgressHandler.dll - ok
21:33:23.0548 0x2c98 [ 259F652AF53343501BC949D31A30D12D, A0E4E91C6520556A530D100B992C4DE24EEC5CEB6F0D07B92944AAE5C24ACDA7 ] C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
21:33:23.0548 0x2c98 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe - ok
21:33:23.0563 0x2c98 [ 04A2CD7AF6F9E1C57EA0505923910A6C, 75F5F29F6105CA029C9258C775ABA521BB4D0F08A10846C822A2772BD9EC02B8 ] C:\Windows\ShellExperiences\QuickActions.dll
21:33:23.0563 0x2c98 C:\Windows\ShellExperiences\QuickActions.dll - ok
21:33:23.0563 0x2c98 [ 3E74187A3C38563F9B5D71329B692162, A22D337EAEC7DBB4B1D2B77201801F3AF9174CEF4AE4D7344BAD856110A70C98 ] C:\Windows\ShellExperiences\Windows.UI.ActionCenter.dll
21:33:23.0563 0x2c98 C:\Windows\ShellExperiences\Windows.UI.ActionCenter.dll - ok
21:33:23.0563 0x2c98 [ 78CD1CA06F32883FA53A701799919949, C0023039988887D259B9516595605D04E523AFB2836DEE28F991A33E0138D9A1 ] C:\Windows\System32\QuickActionsDataModel.dll
21:33:23.0563 0x2c98 C:\Windows\System32\QuickActionsDataModel.dll - ok
21:33:23.0563 0x2c98 [ 0AF8938425B3F8EEA56265B1C5903B4C, 429D09EDA3DC3D866B75770E6D54568F987CC4B32091BE4C10A208E6F98020F2 ] C:\Windows\ShellExperiences\NetworkUX.dll
21:33:23.0563 0x2c98 C:\Windows\ShellExperiences\NetworkUX.dll - ok
21:33:23.0563 0x2c98 [ 9F3E19D924FACE8153FF41C44DE93D8C, 4CC933A6D1613DE211E133845A3D714A4563E882538989E0490E01BBD3766388 ] C:\Windows\System32\DAMediaManager.dll
21:33:23.0563 0x2c98 C:\Windows\System32\DAMediaManager.dll - ok
21:33:23.0563 0x2c98 [ 397672E1E45259EC762061EE6666F3F7, EE3DE2AEC838991A271E1EA25A71F651E371457133F9719B531FAF3DE906F323 ] C:\Windows\System32\NcaApi.dll
21:33:23.0563 0x2c98 C:\Windows\System32\NcaApi.dll - ok
21:33:23.0563 0x2c98 [ 794F7886865393851170C131952CB915, 37B615ED3A15C63807255889C579BEED29862D2F8BB6D07868EF880971070BAB ] C:\Windows\System32\RasMediaManager.dll
21:33:23.0563 0x2c98 C:\Windows\System32\RasMediaManager.dll - ok
21:33:23.0579 0x2c98 [ B090342D74FDD091A0719EDB78B4C4D4, 196D89037B3C5AE01DAC4E0309425325C1CDDB1B39D6A6A766EDEE88178E2A94 ] C:\Windows\System32\RMapi.dll
21:33:23.0579 0x2c98 C:\Windows\System32\RMapi.dll - ok
21:33:23.0579 0x2c98 [ C9DB084BBF38396FC137DCF4B8764DE4, F6B8F80CCFB044FCDB58035E1D5DEE45850179D5846048BAC582F923C0BC72AC ] C:\Windows\System32\WwanRadioManager.dll
21:33:23.0579 0x2c98 C:\Windows\System32\WwanRadioManager.dll - ok
21:33:23.0579 0x2c98 [ 946362CE4369CE219F858F6AFE1B4F5A, 25D798AD5EE3B151F27264FDABB7C258DCFBC8E63A9E5A605B0876BDE14C2FD3 ] C:\Windows\System32\NfcRadioMedia.dll
21:33:23.0579 0x2c98 C:\Windows\System32\NfcRadioMedia.dll - ok
21:33:23.0579 0x2c98 [ 21BF2F457BDF675B605A231A8D03AF5A, 26678A4BF5809200A1959918B70F8DA075B1729C83EB4D4413F208AF7E7FC3F8 ] C:\Windows\System32\regapi.dll
21:33:23.0579 0x2c98 C:\Windows\System32\regapi.dll - ok
21:33:23.0579 0x2c98 [ 37BEFA84E419C2C50DD7E522394CA10F, F077DA0BBBBD7EFB737AA9A34EE6ACF9AD79EECA15749A35146D77FA39B20EF8 ] C:\Windows\System32\SettingsEnvironment.Desktop.dll
21:33:23.0579 0x2c98 C:\Windows\System32\SettingsEnvironment.Desktop.dll - ok
21:33:23.0579 0x2c98 [ BAB40CFF1F066B9BFD5E15FADA2E22C7, 85B2FA4A987D6C1E98C57BD028287ED044E9EB8A40CF94C2BCE06270DD29CE10 ] C:\Windows\System32\XboxGipRadioManager.dll
21:33:23.0579 0x2c98 C:\Windows\System32\XboxGipRadioManager.dll - ok
21:33:23.0594 0x2c98 [ B455EAE79E881B94C547A2CC18539BCA, D4A6DC9C5EB09E80320112A2B7A55AC56433293B38BB9F5015CD05C83139F534 ] C:\Program Files\AVAST Software\Avast\Cef_Renderer.dll
21:33:23.0594 0x2c98 C:\Program Files\AVAST Software\Avast\Cef_Renderer.dll - ok
21:33:23.0594 0x2c98 [ 00000000000000000000000000000000, 0000000000000000000000000000000000000000000000000000000000000000 ] C:\Program Files\AVAST Software\Avast\libcef.dll
21:33:23.0594 0x2c98 C:\Program Files\AVAST Software\Avast\libcef.dll - ok
21:33:23.0594 0x2c98 [ F6987150D1E23317111F09ABC4E94CCC, F194F02AAF78B40573BAFED818ED13234576DB378FEAC44C229ACC1ACE9A7727 ] C:\Program Files\AVAST Software\Avast\chrome_elf.dll
21:33:23.0594 0x2c98 C:\Program Files\AVAST Software\Avast\chrome_elf.dll - ok
21:33:23.0594 0x2c98 [ B7995EC4FFFBA4A5733CB60BB666E625, ADFF1D0415FBB9B3F92A1D8EADFD850B129000F37ECDAE6B61A04EA8642107A7 ] C:\Windows\System32\credui.dll
21:33:23.0594 0x2c98 C:\Windows\System32\credui.dll - ok
21:33:23.0594 0x2c98 [ 55E7B1D8CC969D91DE08A9C456F050EC, 4AAD9864F5AD0261509D8E665325BC990314D5457699CEBF022B8124728B0AB9 ] C:\Program Files\AVAST Software\Avast\aswData.dll
21:33:23.0594 0x2c98 C:\Program Files\AVAST Software\Avast\aswData.dll - ok
21:33:23.0594 0x2c98 [ 3038A6011C5CD07B2C2B55F3A9F62D6B, 2C417242648E5439DCF2831DD3B6307D9E6FCBF730A11E945734C0B85011693C ] C:\Program Files\AVAST Software\Avast\gaming_probe.dll
21:33:23.0594 0x2c98 C:\Program Files\AVAST Software\Avast\gaming_probe.dll - ok
21:33:23.0594 0x2c98 [ E0CA956AC8435387960C0FA3956ED1B9, AA4D965371AF2DDD5410B9498A161209D4865F131D51BA96A8B63326A1317035 ] C:\Program Files\AVAST Software\Avast\2057\uiLangRes.dll
21:33:23.0594 0x2c98 C:\Program Files\AVAST Software\Avast\2057\uiLangRes.dll - ok
21:33:23.0610 0x2c98 [ 465E32EF3F0C199F797D2BCB49801F3F, 19F1F74CF96886AC60B09E1C0C610E0BD86936686BC61A75A6A21560279146B3 ] C:\Program Files\AVAST Software\Avast\setup\aswOfferTool.exe
21:33:23.0610 0x2c98 C:\Program Files\AVAST Software\Avast\setup\aswOfferTool.exe - ok
21:33:23.0610 0x2c98 [ 1B1989ABEEB0EEEE6C6C20B20943D74F, E7D47EE7B697F756323B68195624A4039118B516DE61A05DFB1D0CF249413683 ] C:\Program Files\AVAST Software\Avast\CommonRes.dll
21:33:23.0610 0x2c98 C:\Program Files\AVAST Software\Avast\CommonRes.dll - ok
21:33:23.0610 0x2c98 [ 2973AF8515EFFD0A3BFC7A43B03B3FCC, D0E4581210A22135CE5DEB47D9DF4D636A94B3813E0649AAB84822C9F08AF2A0 ] C:\Program Files\AVAST Software\Avast\setup\gcapi_15614042279712.dll
21:33:23.0610 0x2c98 C:\Program Files\AVAST Software\Avast\setup\gcapi_15614042279712.dll - ok
21:33:23.0610 0x2c98 [ 95666291C5CEC12CCE436896B95C515A, 3B45E1853C59DE17168AAA9793C9A71CF64ADADD6AEC23607D4DB245E263BD19 ] C:\Program Files\AVAST Software\Avast\HTMLayout.dll
21:33:23.0610 0x2c98 C:\Program Files\AVAST Software\Avast\HTMLayout.dll - ok
21:33:23.0610 0x2c98 [ 693B5E60C18BE95F23CBB2777D872B89, FAE27E044857F343410B46F874B1EB229633B46BF4D178CB21C91A5DD6884C2C ] C:\Program Files\AVAST Software\Avast\defs\19062404\uiext.dll
21:33:23.0610 0x2c98 C:\Program Files\AVAST Software\Avast\defs\19062404\uiext.dll - ok
21:33:23.0610 0x2c98 [ A50AD98EC710494639995191D731EBD2, EE3FAF4BA050DCCD295D4F4BABEE41F6F57D6E74A8F8F3CCC568966F60658FF8 ] C:\Program Files\AVAST Software\Avast\pam.dll
21:33:23.0610 0x2c98 C:\Program Files\AVAST Software\Avast\pam.dll - ok
21:33:23.0626 0x2c98 [ 9F14DFB7C53DAD5E7D57C05E71778D04, 43F8FDFA6626DE2FE0182B22E520EBF21567891123D65C95D3B9502159CFDDB1 ] C:\Program Files\AVAST Software\Avast\aswidpm.dll
21:33:23.0626 0x2c98 C:\Program Files\AVAST Software\Avast\aswidpm.dll - ok
21:33:23.0626 0x2c98 [ 8B44C2CF673BA21BC07B1A4E7295BC73, C8E0D9FB9903AFF3638A530B2B10305F19F1993A0CDA18D10CE2D4AB17879A1C ] C:\Program Files\AVAST Software\Avast\aswDataScan.dll
21:33:23.0626 0x2c98 C:\Program Files\AVAST Software\Avast\aswDataScan.dll - ok
21:33:23.0626 0x2c98 [ 7B58F57B8E15B1956E43F18006DA2274, 4C861151468D69F2AA3A909949488F89E00BCE0F475AD80DFB239CDAE7B42D82 ] C:\Windows\System32\Query.dll
21:33:23.0626 0x2c98 C:\Windows\System32\Query.dll - ok
21:33:23.0626 0x2c98 [ A05049FCEC29615258FB6C5D9663C21B, 6B18AADBC5794D7D3EB3A007E3473D24B88A6F1EE1D2F6D5159FB0A6072713DA ] C:\Program Files\AVAST Software\Avast\browser_pass.dll
21:33:23.0626 0x2c98 C:\Program Files\AVAST Software\Avast\browser_pass.dll - ok
21:33:23.0626 0x2c98 [ 1B002C0E1130392A872D034EA4C1EF13, 38C27281816194C4DDA8410DC3FD20125D749C7866F1F7183903D262DFE14122 ] C:\Program Files\Malwarebytes\Anti-Malware\malwarebytes_assistant.exe
21:33:23.0626 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\malwarebytes_assistant.exe - ok
21:33:23.0626 0x2c98 [ 7378A109E20D26FF7AF22B64159D36B1, 718D768C0F32615E4FC6AA03ECC1DCE45CE3A7A141752CAA570C256E959CDEB7 ] C:\Program Files\AVAST Software\Avast\firefox_pass.dll
21:33:23.0626 0x2c98 C:\Program Files\AVAST Software\Avast\firefox_pass.dll - ok
21:33:23.0626 0x2c98 [ B342BB1A847891E66D32C5F6B2FB2165, C21B91E5EDB246D5DDE9A7D5F97A1745BFD6531B4A794820C366EE7460B4B36A ] C:\Windows\System32\wincredui.dll
21:33:23.0626 0x2c98 C:\Windows\System32\wincredui.dll - ok
21:33:23.0641 0x2c98 [ F025E61B97CAF466C96DD5954132FA27, 15B3A7D4D11A22E06551FAE86FB53E9B7BD540E5A97D3E29E4C10F953392C347 ] C:\Windows\System32\Windows.UI.CredDialogController.dll
21:33:23.0641 0x2c98 C:\Windows\System32\Windows.UI.CredDialogController.dll - ok
21:33:23.0641 0x2c98 [ B91945A97B4E68645E3BBA2AAE91B95E, 95DCBACE0D39BD17C15CD2B5FE9948FD6FB5E0E1A9E61E9B0524AA101ADEC731 ] C:\Windows\System32\Windows.UI.Cred.dll
21:33:23.0641 0x2c98 C:\Windows\System32\Windows.UI.Cred.dll - ok
21:33:23.0641 0x2c98 [ 822376A5F64E92CEE8A7C5D265105293, 53F5C81FE2B861CC8448C5ACDB3597A046469944DCFC1B421AD338B0F3264C67 ] C:\Program Files\Mozilla Firefox\nss3.dll
21:33:23.0641 0x2c98 C:\Program Files\Mozilla Firefox\nss3.dll - ok
21:33:23.0641 0x2c98 [ BDC971665B7A622F143D1DED36F04D17, 1757150FC6BE8F77FB2C9D3F8BEF3E4DA33923A5FDB650EDF6393DDA65B21A73 ] C:\Program Files\Mozilla Firefox\mozglue.dll
21:33:23.0641 0x2c98 C:\Program Files\Mozilla Firefox\mozglue.dll - ok
21:33:23.0641 0x2c98 [ 2AFC958AA4DAB421150473DEA8FE1FB3, E23E81EA94C718673CFB7BFB0BDC53FE32BE9B8DF08AB6F44A6BE1B8D06D2704 ] C:\Program Files\Mozilla Firefox\softokn3.dll
21:33:23.0641 0x2c98 C:\Program Files\Mozilla Firefox\softokn3.dll - ok
21:33:23.0641 0x2c98 [ A241C5A4537209CACC185797DBE61C7D, 4139BC5A5F144C45B4C385C8B74D3B73752924CCEE78AADE6CD673A1D3E07BB5 ] C:\Windows\System32\Windows.Internal.UI.Logon.ProxyStub.dll
21:33:23.0641 0x2c98 C:\Windows\System32\Windows.Internal.UI.Logon.ProxyStub.dll - ok
21:33:23.0657 0x2c98 [ CE2E18C1585A4664572FE6E68773C2F6, D2383FE15684B14DB9E5AC6FD58D0E3AD294DD0594D5D99287AE96516B310E28 ] C:\Program Files\Mozilla Firefox\freebl3.dll
21:33:23.0657 0x2c98 C:\Program Files\Mozilla Firefox\freebl3.dll - ok
21:33:23.0657 0x2c98 [ C527EB2E66C542CFFA14BFA98A2B104E, 5A6890469C8F176DED86DA455A43083A0E89E87D692756230235704D47FD11FC ] C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
21:33:23.0657 0x2c98 C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll - ok
21:33:23.0657 0x2c98 [ 73A0ADCC0D48E6E328A0BA8811776F2C, FA01D77D79C98E9B898D8BC8EA9591A53F1035887E6B984C01EB2C1CAF31E160 ] C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe
21:33:23.0657 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe - ok
21:33:23.0657 0x2c98 [ 285A197327849BAA58681BF5CD332BCA, 65DC9C5A226ABF9C55CA46806044DE1BF37E534A98D24281771ABFA26B0567C5 ] C:\Windows\System32\keepaliveprovider.dll
21:33:23.0657 0x2c98 C:\Windows\System32\keepaliveprovider.dll - ok
21:33:23.0657 0x2c98 [ ACDE7B9E14D4CAF1775B31B5426C6B4F, 7EE26D6DACC5C6FAD8179BE5ECCBEAE8F19F88BB39593849F7D0D611F1A280EC ] C:\Windows\System32\aeinv.dll
21:33:23.0657 0x2c98 C:\Windows\System32\aeinv.dll - ok
21:33:23.0657 0x2c98 [ 124120DE305E4CDB8516F10BD854F2DA, 4DD3BB9B85DFD2F792FA3D435FF15F97251AD4AFEB89BE4063A30ED5BE6B6D43 ] C:\Windows\System32\WiFiCloudStore.dll
21:33:23.0657 0x2c98 C:\Windows\System32\WiFiCloudStore.dll - ok
21:33:23.0657 0x2c98 [ 1F32905647613A848EC6E5404BF4C3E2, 04E4FD5EF6095B1DA97E274A1A59933690843E418620AE47A1A626DF96C288CB ] C:\Windows\System32\Windows.CloudStore.Schema.DesktopShell.dll
21:33:23.0657 0x2c98 C:\Windows\System32\Windows.CloudStore.Schema.DesktopShell.dll - ok
21:33:23.0673 0x2c98 [ F012DBB0623CFE5AE425A776D8D464A4, 3267B198C415D7605A3FA85E7995B063BD434C52B4C35A8E3C88E8C61FA8F526 ] C:\Windows\System32\chartv.dll
21:33:23.0673 0x2c98 C:\Windows\System32\chartv.dll - ok
Nahoru
durod
Návštěvník
Návštěvník
Příspěvky: 71
Registrován: 10 črc 2008 11:18

Re: Botnet - zjištěna infikace malwarem

#12 Příspěvek od durod »

posledni cast reportu
21:33:23.0673 0x2c98 [ 1BA91A66C4290D3E16BECD00F7A717F9, 224CF8BBADF57E35776D7444942FA100A6F104115671D7B93DE1B5FCF84B4616 ] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.19418.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
21:33:23.0673 0x2c98 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.19418.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe - ok
21:33:23.0673 0x2c98 [ 135B5C164189764D09E7AE1C8FDA5A28, D7FC770667A215983CD2B7E14F20FCFEE304A9076B3663BEB954E2E4E2079BB6 ] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.19418.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
21:33:23.0673 0x2c98 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.19418.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll - ok
21:33:23.0673 0x2c98 [ 1A89AB98EB679DDB21768F230221BC3C, BBFC974CDCFA4BE22ACE923C59EBEB92F0F295E2CBD1145DE1AF0865885395F3 ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\HxTsr.exe
21:33:23.0673 0x2c98 C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\HxTsr.exe - ok
21:33:23.0673 0x2c98 [ C8BAB372754BCC633E0987A9BDF1AB1B, 64CD4A4F4061D9C382DE2C84792809BEC9DB7EAB8A44BA7A1842CCECF7CB4688 ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\HxOutlookBackground.dll
21:33:23.0673 0x2c98 C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\HxOutlookBackground.dll - ok
21:33:23.0673 0x2c98 [ 8BBBBC05608A9B47D1538EEE93C61EA7, 08B57E8AF43C9C33142B2EDD78F33ADBF87B5CADE8695521B65C46B38ECC22FE ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
21:33:23.0673 0x2c98 C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll - ok
21:33:23.0688 0x2c98 [ B96FAD2F7C70397FFE01D2F608CE2CB8, 9290E05C49D0F47EC4CDB1935DFD7F19FFE28436F6E78B00C810F4EB1CD6C2B0 ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\HxComm.dll
21:33:23.0688 0x2c98 C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\HxComm.dll - ok
21:33:23.0688 0x2c98 [ 5E742A166899BBB6B0D998B5EB56C1C5, 53701CB0A36105F6A0907704E8F06DB274B8DA919953D4E3CA55B8C24849D1A5 ] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStoreTasksWrapper.dll
21:33:23.0688 0x2c98 C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStoreTasksWrapper.dll - ok
21:33:23.0688 0x2c98 [ 121AA57C8E7F2DA90D6F295E182B6210, 066F51881FA2125982FE7411BABA6B20121A2F89675FA824C38B8AB842B50DAC ] C:\Program Files\WindowsApps\Microsoft.OneConnect_5.1902.361.0_x64__8wekyb3d8bbwe\OneConnect.dll
21:33:23.0688 0x2c98 C:\Program Files\WindowsApps\Microsoft.OneConnect_5.1902.361.0_x64__8wekyb3d8bbwe\OneConnect.dll - ok
21:33:23.0688 0x2c98 [ BB3033CA6429F8B578770C12E434738E, 79D92FC45B84EED82477E01F5C51A8BDD5A200F397A77ED480FC444947108FA2 ] C:\Windows\System32\FamilySafetyExt.dll
21:33:23.0688 0x2c98 C:\Windows\System32\FamilySafetyExt.dll - ok
21:33:23.0688 0x2c98 [ 71A63BFE9AAB1770F2CC2D797FFF6235, FDCDAEA144B51B8C46E8331CB6360F395A8ABF24253DCFBC8BE212F1C87E4D7D ] C:\Windows\System32\Wpc.dll
21:33:23.0688 0x2c98 C:\Windows\System32\Wpc.dll - ok
21:33:23.0688 0x2c98 [ 0BE3A4B90703F1177357CF8D3D8D4B01, 22179E4B60D0CCDB8A3BF7328C76847EA893883F6EE511658BC8F718EF6D31AC ] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.19418.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
21:33:23.0688 0x2c98 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.19418.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll - ok
21:33:23.0704 0x2c98 [ 10C6ED17DA154C6E33C3A1D6F0D3A501, 0E94F2AA9C5442245995517716F9BF036F3275550405F71E7F3E3DACDE9CC7F4 ] C:\Windows\System32\Windows.System.Diagnostics.Telemetry.PlatformTelemetryClient.dll
21:33:23.0704 0x2c98 C:\Windows\System32\Windows.System.Diagnostics.Telemetry.PlatformTelemetryClient.dll - ok
21:33:23.0704 0x2c98 [ FA81882B7BE15E5820671A7CF440E3FF, 71ECF8078C855517F953C77CFC360E5A8FCACDAB0C26FC0CBE705EFC33BDFB07 ] C:\Windows\System32\efswrt.dll
21:33:23.0704 0x2c98 C:\Windows\System32\efswrt.dll - ok
21:33:23.0704 0x2c98 [ 789D03AE758D03D03BC6D1869A396FFB, 933150A6751879BE1E72302EE3F09B2076EF423F68AD3CB881EEBA5A23BD41CE ] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.19418.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
21:33:23.0704 0x2c98 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.19418.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll - ok
21:33:23.0704 0x2c98 [ 492324FAC9F72D4DD5C97922A245437B, 61D13171CC72BA7B146363401F418CA99887343712AB07E8760289E221299E27 ] C:\Program Files\WindowsApps\Microsoft.UI.Xaml.2.0_2.1810.18004.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
21:33:23.0704 0x2c98 C:\Program Files\WindowsApps\Microsoft.UI.Xaml.2.0_2.1810.18004.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll - ok
21:33:23.0704 0x2c98 [ 1B8B3EA319CC32108AEDD1077EF007A7, EEC08EB449D259326733DC851E4242716B8077A795602FE78682D2CA882F3855 ] C:\Windows\System32\NPSMDesktopProvider.dll
21:33:23.0704 0x2c98 C:\Windows\System32\NPSMDesktopProvider.dll - ok
21:33:23.0704 0x2c98 [ 87F13AAFFFE1D6E8F4E6317D32E01870, 4254A7C7AFD0581BCCC3D9BAF4F1358D156B96DA1817CDEA021608243419CA63 ] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.19418.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
21:33:23.0704 0x2c98 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.19418.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll - ok
21:33:23.0704 0x2c98 [ 1E7D3129EA216A4E4E479E38F647B300, F62B403CE8BB2239AC8C63742A735EE7CBE608AFCAC0C65C30BFB04A80F481C0 ] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.19418.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
21:33:23.0704 0x2c98 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.19418.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll - ok
21:33:23.0719 0x2c98 [ 42C9AFF4636ACE3DCFB79FEF85345545, CD11AE283264371906D8FAA0F959F13F8CD4A46D5A0D9AFAC657E2FE0F1634C0 ] C:\Windows\System32\BthAvctpSvc.dll
21:33:23.0719 0x2c98 C:\Windows\System32\BthAvctpSvc.dll - ok
21:33:23.0719 0x2c98 [ D24504C99A4D49CFCD647A57E83A72B7, 446E83DCC25BB735428CC8AE67D5E4C5841BF2AB3BA2315A37FABDF82F0AD74A ] C:\Windows\System32\BthTelemetry.dll
21:33:23.0719 0x2c98 C:\Windows\System32\BthTelemetry.dll - ok
21:33:23.0719 0x2c98 [ A6354C5128135126B945F215E88FDA33, 29C40C92E547535C660D2CA3B355140B392B983F875C606D462B677753AC5650 ] C:\Windows\System32\Windows.Media.Import.dll
21:33:23.0719 0x2c98 C:\Windows\System32\Windows.Media.Import.dll - ok
21:33:23.0719 0x2c98 [ 059C7204D0D3929BCA75642DD478911A, 4B856E9BC4216C705DAFB45C8CCC111134A3809A15468D75E8BAA89783D3C187 ] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.19418.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
21:33:23.0719 0x2c98 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.19418.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll - ok
21:33:23.0719 0x2c98 [ AD785CA9966EB89D8EAAAE7A5C7A6217, 42C97DECE595C80AB1413A43E86C23FC7820F8CCA02CBD7C816A96F3BE60313E ] C:\Windows\System32\Windows.AccountsControl.dll
21:33:23.0719 0x2c98 C:\Windows\System32\Windows.AccountsControl.dll - ok
21:33:23.0719 0x2c98 [ 646C6915CF34F79E57F9A9C175801696, 0130E077A70EF3131F5BAFA0140E289BA795A8159B3DC7B037820126623A133C ] C:\Windows\System32\Windows.Management.Workplace.dll
21:33:23.0719 0x2c98 C:\Windows\System32\Windows.Management.Workplace.dll - ok
21:33:23.0735 0x2c98 [ 0BE7B593B99D233B5DD054E7B66AB54C, DE5990E981498C60D420F65E19D1AEB55D2AA920DD85B74CC641A9D0BAEEDC7A ] C:\Windows\System32\SearchFolder.dll
21:33:23.0735 0x2c98 C:\Windows\System32\SearchFolder.dll - ok
21:33:23.0735 0x2c98 [ E5BF8FD461525348B9C65FDA140C3B65, 5417D56B4A90C41C8FEC883E025E6F45096D231F0E0FE89BF3A3A9803C7D833D ] C:\Windows\System32\mssvp.dll
21:33:23.0735 0x2c98 C:\Windows\System32\mssvp.dll - ok
21:33:23.0735 0x2c98 [ 1E8702A33EDCCD661987CFB151923AE5, DB0777F6A8C70CB1FE4CF1C950D57EEAB5B9EE0D8347B32A10F523DC57D0728B ] C:\Windows\SysWOW64\FirewallAPI.dll
21:33:23.0735 0x2c98 C:\Windows\SysWOW64\FirewallAPI.dll - ok
21:33:23.0735 0x2c98 [ 77C323564335479E98665B74536AE0B2, F353F947B2AF0E455C17C00DEF38EDAC523706D4E44F620EC5B946149AF7013C ] C:\Windows\SysWOW64\fwbase.dll
21:33:23.0735 0x2c98 C:\Windows\SysWOW64\fwbase.dll - ok
21:33:23.0735 0x2c98 [ 7CF5093B6DCFDE349399B507A52FB073, BE3D2BA94E34BAC4EC82540FB9C849E7E1B320359F98A1C3AFAC5A9EBDA2E05A ] C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\chrome.exe
21:33:23.0735 0x2c98 C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\chrome.exe - ok
21:33:23.0735 0x2c98 [ 97397EDE76F14A8FAF5B71E8803542D2, 687C6EBD9C897F2DC810D5D88E6DE04D2D1CF0AB5B589A0A6B0C1AE7EC1858D7 ] C:\Program Files\AVAST Software\Avast\snxhk.dll
21:33:23.0735 0x2c98 C:\Program Files\AVAST Software\Avast\snxhk.dll - ok
21:33:23.0735 0x2c98 [ 56572FF2C32CE08BC45562C703249E1D, 270E8C9EE3E09B7CFE45842200062BD78415E3157BD8068B9E23155E75D41585 ] C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\75.0.3770.100\chrome_elf.dll
21:33:23.0735 0x2c98 C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\75.0.3770.100\chrome_elf.dll - ok
21:33:23.0751 0x2c98 [ 00000000000000000000000000000000, 0000000000000000000000000000000000000000000000000000000000000000 ] C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\75.0.3770.100\chrome.dll
21:33:23.0751 0x2c98 C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\75.0.3770.100\chrome.dll - ok
21:33:23.0751 0x2c98 [ 1F183D30F92D001FEFEA668C0787A893, DCBFEEA841C1D8342127B7A060D0D75A0EFF8F7A51097D2336FB0A64754E1267 ] C:\Program Files\AVAST Software\Avast\aswJsFlt.dll
21:33:23.0751 0x2c98 C:\Program Files\AVAST Software\Avast\aswJsFlt.dll - ok
21:33:23.0751 0x2c98 [ D402180251B553EEAA4F793393C00C18, 7D440DFF5641DDB9760A3B37A1CCE4347197CD15D809E1E0A53DCEDAD005BB59 ] C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\75.0.3770.100\chrome_watcher.dll
21:33:23.0751 0x2c98 C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\75.0.3770.100\chrome_watcher.dll - ok
21:33:23.0751 0x2c98 [ AB8D05444ABE5FE96D6B6308BC061018, F4C687172A8829CDF4FB9EAF4EAF0DF9EA438B0665FE4FACB49D667E0D6D1F74 ] C:\Windows\System32\mdmregistration.dll
21:33:23.0751 0x2c98 C:\Windows\System32\mdmregistration.dll - ok
21:33:23.0751 0x2c98 [ 4CD90094A0D97870428D8F2ACBFBF074, 8F88B94BEC2668DDE50209E240F17901298CB8BFEED9C16F4239B34889576DFC ] C:\Windows\System32\wbem\WmiPerfClass.dll
21:33:23.0751 0x2c98 C:\Windows\System32\wbem\WmiPerfClass.dll - ok
21:33:23.0751 0x2c98 [ C697623A276730308E0F4EF87187D24F, 565C1096F699B131070D936B5C214305D85AAFEB9E7868264CF42D4BBAC45744 ] C:\Windows\System32\netfxperf.dll
21:33:23.0751 0x2c98 C:\Windows\System32\netfxperf.dll - ok
21:33:23.0766 0x2c98 [ 0E842B02B01FC577ACC7B7947E0E13E1, 015B56AF2F0680181519135A43DD8DF1200E1F359989F47BDA779C014B65DFD9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\PerfCounter.dll
21:33:23.0766 0x2c98 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\PerfCounter.dll - ok
21:33:23.0766 0x2c98 [ F54CA317B1A7FE9D904603EB2939E3E0, 44AE58BECD2A07A466BE5945C4E3E9BAA951A0C42AA01FC73F571B163FF16E21 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\CORPerfMonExt.dll
21:33:23.0766 0x2c98 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\CORPerfMonExt.dll - ok
21:33:23.0766 0x2c98 [ B4D9D64CA74B745A185A31786BE25159, 2CB60654D78DBB76065859E1CBD0645777B34A1D22A9939F5AE9A049A45B92B2 ] C:\Windows\System32\bitsperf.dll
21:33:23.0766 0x2c98 C:\Windows\System32\bitsperf.dll - ok
21:33:23.0766 0x2c98 [ D94A8C3EBAE3FA8E03C82D2122090310, 712EEEE0EFF4C029C76FF2E6A3A5EA97FA94B6712395A6A4511FA39BD5CD31B8 ] C:\Windows\System32\qmgr.dll
21:33:23.0766 0x2c98 C:\Windows\System32\qmgr.dll - ok
21:33:23.0766 0x2c98 [ 3443ECF2AB84E341D2B7C24E1FF3EBD8, A2A35D632EB239C463FA021785D1F8E779331F6D105ABBE39F5760275E8573BC ] C:\Windows\System32\bitsigd.dll
21:33:23.0766 0x2c98 C:\Windows\System32\bitsigd.dll - ok
21:33:23.0766 0x2c98 [ 28A826F585DBE7E4EFB8C7895FEAC69A, D491B93F64AE5FF0328BD36EA1FE83309D4686A2762ABA8BD07D8B2160ECB5EF ] C:\Windows\System32\upnp.dll
21:33:23.0766 0x2c98 C:\Windows\System32\upnp.dll - ok
21:33:23.0766 0x2c98 [ 20516530F8571CC75C69EAA540661E2C, BF8F716B9DBC24B4B43BC1BABFCF4F77EBCB24F807B744B0335F07938910AD7B ] C:\Windows\System32\WsmAuto.dll
21:33:23.0766 0x2c98 C:\Windows\System32\WsmAuto.dll - ok
21:33:23.0782 0x2c98 [ 74E4D3C8A6EF62362187D0C6FC0DC49B, 4410019EE23E6869FBEFC3B1299EF8633E4E8D2EDCD6741779F19C2CD1AEEF85 ] C:\Windows\System32\WsmSvc.dll
21:33:23.0782 0x2c98 C:\Windows\System32\WsmSvc.dll - ok
21:33:23.0782 0x2c98 [ C9D3F6E6D372B4F5468039C1DFF6A88B, C55AD879AF6CE5AE0A000D9A1F333939694D72ED68CBDF95F6993EAECDE8B039 ] C:\Windows\System32\pcwum.dll
21:33:23.0782 0x2c98 C:\Windows\System32\pcwum.dll - ok
21:33:23.0782 0x2c98 [ 00000000000000000000000000000000, 0000000000000000000000000000000000000000000000000000000000000000 ] C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\75.0.3770.100\chrome_child.dll
21:33:23.0782 0x2c98 C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\75.0.3770.100\chrome_child.dll - ok
21:33:23.0782 0x2c98 [ B038523742876D80C85BDA7A4B380439, 6810DC201BA7D6E9339B5AA65C3B10533437030BFCDE2D7AE449C9427EADD68E ] C:\Windows\System32\msmpeg2vdec.dll
21:33:23.0782 0x2c98 C:\Windows\System32\msmpeg2vdec.dll - ok
21:33:23.0782 0x2c98 [ 2DD8BE0F0C1B40D0ACB41C022ADFB0EE, 378B9BABA5C0D7001D0D5A786E376878A8A3825EC66872FC26710D5306F77F59 ] C:\Windows\System32\msvproc.dll
21:33:23.0782 0x2c98 C:\Windows\System32\msvproc.dll - ok
21:33:23.0782 0x2c98 [ D83F10E2DAD184FDD2AC4F17F7E9072E, 36CA7DA17F334BBDC96882D99AAA7E0DAE2AE98751F65F06CA4CB54B0000DA94 ] C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\75.0.3770.100\libglesv2.dll
21:33:23.0782 0x2c98 C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\75.0.3770.100\libglesv2.dll - ok
21:33:23.0782 0x2c98 [ EE9EE105184DFEFCA79728FDBCB107FC, 4F4B2B25D0606374BF47EED85F68DD75430E4AC4ECE025ED21E1C4A4EEB794A9 ] C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\75.0.3770.100\libegl.dll
21:33:23.0782 0x2c98 C:\Users\Slavicek\AppData\Local\Google\Chrome\Application\75.0.3770.100\libegl.dll - ok
21:33:23.0798 0x2c98 [ D7EDC0B06526A5ABE5253BABE6CE6547, 31C094219689E27AB65FDA72A503D73D5A1D7C97B7C31AA9600FC7923BFF5136 ] C:\Windows\System32\mfh264enc.dll
21:33:23.0798 0x2c98 C:\Windows\System32\mfh264enc.dll - ok
21:33:23.0798 0x2c98 [ 6B61564CE8524ACCA9BCD2CEC6B71AB9, 87C2892DF8F1F0503763855E4972CD4B85036AE50F1D6F1B910B3AEC47372B07 ] C:\Windows\System32\CompPkgSrv.exe
21:33:23.0798 0x2c98 C:\Windows\System32\CompPkgSrv.exe - ok
21:33:23.0798 0x2c98 [ 5E5389E837A80A237BC7A4453E99C2CC, 6BDEE106173ACFE128D6EEF17DC674B59A62C706E9C219141791F091451358BA ] C:\Program Files\AVAST Software\Avast\defs\19062404\aswHds.dll
21:33:23.0798 0x2c98 C:\Program Files\AVAST Software\Avast\defs\19062404\aswHds.dll - ok
21:33:23.0798 0x2c98 [ 83287D0D23688B9E8249AFABE65925C6, 8CA0DA78F310899569C72E17D1499013A0558616A0BDEF0BEA98991EC241BF05 ] C:\Windows\System32\dot3api.dll
21:33:23.0798 0x2c98 C:\Windows\System32\dot3api.dll - ok
21:33:23.0798 0x2c98 [ 2514BA447E81C60108FB4AD48C592785, E9A1CEFFB81B88BF4641BE8FF0C619A27988E757DB5ED118CF3F0D762CFBD9E4 ] C:\Windows\System32\BitsProxy.dll
21:33:23.0798 0x2c98 C:\Windows\System32\BitsProxy.dll - ok
21:33:23.0798 0x2c98 [ E01851088F97F0C8627680261939545A, 39F1A561898DC7AC08D28F69583B4CD7A70A8A7065D8BECBE8ADEB4FD36595DA ] C:\Windows\System32\esentprf.dll
21:33:23.0798 0x2c98 C:\Windows\System32\esentprf.dll - ok
21:33:23.0813 0x2c98 [ D12566594813B0AB5D2447144D4F8AC3, E0DF51C8F97A2A1AC56B1D8558207E6461F5DC2C23DB065E704F1F34394F7CBB ] C:\Windows\System32\perfts.dll
21:33:23.0813 0x2c98 C:\Windows\System32\perfts.dll - ok
21:33:23.0813 0x2c98 [ BAEA388D0F944B52128FCD8344970B26, A5BF2ACFAC07A2854AE8BB117A518D1F55A20DA23E38A381BCCD3D6138E5A945 ] C:\Windows\System32\utildll.dll
21:33:23.0813 0x2c98 C:\Windows\System32\utildll.dll - ok
21:33:23.0813 0x2c98 [ 1674982BD7340B13B16E275B84C9FC88, 7F4AC27315C6376CEDF84798CBB10213418E24EA5A75A4301E23CF5C99FD8731 ] C:\Windows\System32\msdtcuiu.dll
21:33:23.0813 0x2c98 C:\Windows\System32\msdtcuiu.dll - ok
21:33:23.0813 0x2c98 [ BD29413E1E6CE8323F59C20BC7EE8AE2, 27C99B4F8B09C529C5EFE5C8BD8745D190B699A08F27EDF4E163734C5E215C2F ] C:\Windows\System32\msdtcprx.dll
21:33:23.0813 0x2c98 C:\Windows\System32\msdtcprx.dll - ok
21:33:23.0813 0x2c98 [ 610411F48E29F5BA917321A3E07F5F76, 8FF47DEF430A5D78044F1BFD8FC1E63C1CD4B0A0FFF83DF1BFD4BD1305B67806 ] C:\Windows\System32\mtxclu.dll
21:33:23.0813 0x2c98 C:\Windows\System32\mtxclu.dll - ok
21:33:23.0813 0x2c98 [ FA18D287C7059F61A5021B66C9D574AD, 251FE8DBC73C9B8F31B8F307F0986BCD413AB5B9383D876E52AB09E7A71E0DCB ] C:\Windows\System32\msscntrs.dll
21:33:23.0813 0x2c98 C:\Windows\System32\msscntrs.dll - ok
21:33:23.0813 0x2c98 [ 868E27F05E16F084386DA965ED90A6A2, 61908B7FDEBA6D7627E5E153822F84E58C0DE4825FB571B55CAC72C3D8B663EC ] C:\Windows\System32\perfdisk.dll
21:33:23.0813 0x2c98 C:\Windows\System32\perfdisk.dll - ok
21:33:23.0829 0x2c98 [ 20976188642D7BD728D76CB33D6802B8, B42C2EA312501F68627D5C12A14FABA8539ECC8BE9D9BF45C91015D4584FCC8E ] C:\Windows\System32\perfnet.dll
21:33:23.0829 0x2c98 C:\Windows\System32\perfnet.dll - ok
21:33:23.0829 0x2c98 [ 3BDE416293D32746F671BDEEEDFEB9DC, CDB368E32AC039A38FF5957D43E137670CF284293F298054B60E2412CC26F43F ] C:\Windows\System32\browcli.dll
21:33:23.0829 0x2c98 C:\Windows\System32\browcli.dll - ok
21:33:23.0829 0x2c98 [ 13808F08C2F75D6B55FFF0E960EB6F20, 7DF48E13703B74DF4C1415F30A2859E8EC1D2B2BF8BE344029E0F711904D3B4F ] C:\Windows\System32\perfproc.dll
21:33:23.0829 0x2c98 C:\Windows\System32\perfproc.dll - ok
21:33:23.0829 0x2c98 [ C6461935E36515E10E3277856C4CC83C, FC0DE937724B400FD7EEFE6223613A3F55B8967601323889A02781B8E4F85F22 ] C:\Windows\System32\rasctrs.dll
21:33:23.0829 0x2c98 C:\Windows\System32\rasctrs.dll - ok
21:33:23.0829 0x2c98 [ F3AAC4CD79DBEF4635C1F0167FE3EE9D, D6EE8BD6DD5BB2C9B0D86136F38718B8B16D0C297FE525B3CBC8723D84E835BA ] C:\Windows\System32\localspl.dll
21:33:23.0829 0x2c98 C:\Windows\System32\localspl.dll - ok
21:33:23.0829 0x2c98 [ 81350A0D4CE2788E58276AF0A0FA8430, 3C39B01D5E0985D219CEB35920B7C0CB543E6B23334DD5C3F3BDA129B767B369 ] C:\Windows\System32\spoolss.dll
21:33:23.0829 0x2c98 C:\Windows\System32\spoolss.dll - ok
21:33:23.0829 0x2c98 [ 11D317675B4FB7F065DBFBAC2DE0F7A1, C92A1E5C395D6CE6D60F8BCC1697ED8404BD977A5AFBBFA6AE3CBF9CA5D4DA69 ] C:\Windows\System32\PrintIsolationProxy.dll
21:33:23.0829 0x2c98 C:\Windows\System32\PrintIsolationProxy.dll - ok
21:33:23.0844 0x2c98 [ 8ADA9A1FEB4CE350BE33C8EF1D9D9EA6, 296137FCE6ADA487A5C00B4E892786D2A685A0BAD7CCF2DECC074B02D4E0588D ] C:\Windows\System32\AppMon.dll
21:33:23.0844 0x2c98 C:\Windows\System32\AppMon.dll - ok
21:33:23.0844 0x2c98 [ 3802C75A422C5BE627A2BCD049D3E306, B321396E497D3CC454CB57AE530FE33973B4A86ED3D415C0F69561A2D919C641 ] C:\Windows\System32\hpinkstsAD11LM.dll
21:33:23.0844 0x2c98 C:\Windows\System32\hpinkstsAD11LM.dll - ok
21:33:23.0844 0x2c98 [ 61987AAE93564AFBF152EB906CD22EE8, 8E812AC712AD9B671C2AE88B697C244810458248C6A774F4B7BDBD0629D99202 ] C:\Windows\System32\FXSMON.dll
21:33:23.0844 0x2c98 C:\Windows\System32\FXSMON.dll - ok
21:33:23.0844 0x2c98 [ C78571AA5D3F7B37309BD00543DB605A, B2AE08C1B25A715F9889100C960CF9966C93E8118EE615B89DA539F9DD217D1E ] C:\Windows\System32\tcpmon.dll
21:33:23.0844 0x2c98 C:\Windows\System32\tcpmon.dll - ok
21:33:23.0844 0x2c98 [ 4F907893121502CC1DDFBC2B8A96538D, 3BD9471CA4225C460FCBA11A4C3D18AC0A380C634B01968D7C2F652CD8374DFA ] C:\Windows\System32\snmpapi.dll
21:33:23.0844 0x2c98 C:\Windows\System32\snmpapi.dll - ok
21:33:23.0844 0x2c98 [ 5ACB9CAA421567E2404EB62019949CC7, 956D3C0A8DF95DB8FC4F97C3A8669C7EF2530A6856FA8FC104D0841E4AA19440 ] C:\Windows\System32\wsnmp32.dll
21:33:23.0844 0x2c98 C:\Windows\System32\wsnmp32.dll - ok
21:33:23.0844 0x2c98 [ 4B132A8DBD0FD73A439893C43904D428, 9CE8D86AEDCCDEF0C75F926DB10DF00DAC39C4E0CB85E6AB46D5196333474EFD ] C:\Windows\System32\usbmon.dll
21:33:23.0844 0x2c98 C:\Windows\System32\usbmon.dll - ok
21:33:23.0860 0x2c98 [ E60F771BACAC0DFDB63364116EEB5C64, E94A28390EEBF9FCD2E314974D2CF266F2209E6F7055E694D59947F11941D61A ] C:\Windows\System32\APMon.dll
21:33:23.0860 0x2c98 C:\Windows\System32\APMon.dll - ok
21:33:23.0860 0x2c98 [ 1FAC346BB22EE47B76DC7DC419E7BCF5, 3F1C51F3BDFAD63D75FDA28EB3C51FBDA6284B00E50DBC77C4BF04F913D6B0BF ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
21:33:23.0860 0x2c98 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
21:33:23.0860 0x2c98 [ 449F7D8D9F69BF027E388F825D6F75AB, CC19C56CA288B3DA78C510B81E37B50E3D9B4E59B2D92802B6244D62A6B53260 ] C:\Windows\System32\win32spl.dll
21:33:23.0860 0x2c98 C:\Windows\System32\win32spl.dll - ok
21:33:23.0860 0x2c98 [ 8FC2BEB19A8BFF687BED3246A5A00756, 45C44A7312CD1171C72E1046CB7828F91926062484D6AC8060B46ED6802623D0 ] C:\Windows\System32\inetpp.dll
21:33:23.0860 0x2c98 C:\Windows\System32\inetpp.dll - ok
21:33:23.0860 0x2c98 [ 02C746B91AA15141415593E6AB64C7A5, 7DB78C4E3F7E5A89B5664E2A40A816D5C9E1B1F42D44CDF576145F0376EE7BF6 ] C:\Windows\System32\tapiperf.dll
21:33:23.0860 0x2c98 C:\Windows\System32\tapiperf.dll - ok
21:33:23.0860 0x2c98 [ D4693E208716DD46D8C10098DF04CFC1, 5A91FB02AD4923F6F695C024772BB314F870C8C76EC82F85C511207A3A32D7FD ] C:\Windows\System32\perfctrs.dll
21:33:23.0860 0x2c98 C:\Windows\System32\perfctrs.dll - ok
21:33:23.0876 0x2c98 [ EE7F951BA64541FFBF1D0408DDB58682, 50D0155163B41DE17BDB9FFB4649E521F272D56D1C80182429A018F76AF2BFAF ] C:\Windows\System32\usbperf.dll
21:33:23.0876 0x2c98 C:\Windows\System32\usbperf.dll - ok
21:33:23.0876 0x2c98 [ EBD0657D908B30F309E419FC3821D9A7, 35C4C2D9DF8692C5260948B3670D4811FC2E1EAD78294DFF2C9FBAC722F96DF6 ] C:\Windows\System32\wbem\WmiApRpl.dll
21:33:23.0876 0x2c98 C:\Windows\System32\wbem\WmiApRpl.dll - ok
21:33:23.0876 0x2c98 [ 6173803E45D401CB58BBD1BD34DFDA59, EF086494C47CF19CA8586C54AD5FE87F2CE2BD3D4D767EFA917110BEFDBFCF7A ] C:\Windows\System32\DriverStore\FileRepository\prnms003.inf_amd64_e4ff50d4d5f8b2aa\Amd64\PrintConfig.dll
21:33:23.0876 0x2c98 C:\Windows\System32\DriverStore\FileRepository\prnms003.inf_amd64_e4ff50d4d5f8b2aa\Amd64\PrintConfig.dll - ok
21:33:23.0876 0x2c98 [ C7F478EA11228D5B205B1D7CCD69C059, 1B6EF0288942455E8AF58160B34BB383326B86A16A734DC48C01359C506F0E98 ] C:\Windows\System32\prntvpt.dll
21:33:23.0876 0x2c98 C:\Windows\System32\prntvpt.dll - ok
21:33:23.0876 0x2c98 [ 2492C287BB2AB2724E0865C972839BBD, 09AD88A65D9040C301A5167FBEE9602CF890B7C74C7E7156C934A4525F888740 ] C:\Windows\System32\bidispl.dll
21:33:23.0876 0x2c98 C:\Windows\System32\bidispl.dll - ok
21:33:23.0876 0x2c98 [ 6C121E27E40C887D45ACCED622D87494, 87D84F94E84DDEA1F27434D30882122C234F1809DB84E48CF6902896B7BE79DF ] C:\Windows\System32\tcpmib.dll
21:33:23.0876 0x2c98 C:\Windows\System32\tcpmib.dll - ok
21:33:23.0876 0x2c98 [ 4671645C7BEC86AE3145BD589FFCD0BC, 2DCBDB237E2F591522156D7B59CB013F72C6BBFFB0968481FB5A5DA08520788F ] C:\Windows\System32\mgmtapi.dll
21:33:23.0876 0x2c98 C:\Windows\System32\mgmtapi.dll - ok
21:33:23.0891 0x2c98 [ 6173803E45D401CB58BBD1BD34DFDA59, EF086494C47CF19CA8586C54AD5FE87F2CE2BD3D4D767EFA917110BEFDBFCF7A ] C:\Windows\System32\spool\drivers\x64\3\PrintConfig.dll
21:33:23.0891 0x2c98 C:\Windows\System32\spool\drivers\x64\3\PrintConfig.dll - ok
21:33:23.0891 0x2c98 [ 72260CE9438A7A9A8A5BA101EDA4D6BD, 8A221672E37FD7F30D35B3466CA9F1A473F9A77C27A5A16C6392BCEECCAFEA6F ] C:\Windows\System32\wbem\WmiApSrv.exe
21:33:23.0891 0x2c98 C:\Windows\System32\wbem\WmiApSrv.exe - ok
21:33:23.0891 0x2c98 [ A6220A592B9CCE7265D0A156A57BA36E, DE07B2B4BE924567C3E686C96619A456C6C8C563E66CBCF5B48DC481E2B417DC ] C:\Windows\System32\loadperf.dll
21:33:23.0891 0x2c98 C:\Windows\System32\loadperf.dll - ok
21:33:23.0891 0x2c98 [ 5BE4706E8E5FEBF2DF073B35580AFD2A, A618EFDD7BAE9268FAC54371482B64E72B6EC06C252EFEA3955C08C5572A976F ] C:\Windows\System32\wbem\WmiPerfInst.dll
21:33:23.0891 0x2c98 C:\Windows\System32\wbem\WmiPerfInst.dll - ok
21:33:23.0891 0x2c98 [ E5D6B1AE7AD1E02CD2828AE4525B98A4, 2C1DB1335A55332DB8686FFAA5B0D148BE38CE9BAC3FCD67652B12CB9E8C12BD ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\amdxc64.dll
21:33:23.0891 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\amdxc64.dll - ok
21:33:23.0891 0x2c98 [ CBD9DE83E1EA3177484797DE9F481E7E, 160345FB96628DC3D585C3E3EC92CB5AC3A17AF80416043FA3204FB2B2810F75 ] C:\Windows\System32\vulkan-1.dll
21:33:23.0891 0x2c98 C:\Windows\System32\vulkan-1.dll - ok
21:33:23.0907 0x2c98 [ CEFBF580C0D1EA2499863EBEFCAFD41D, DBE2CB3E3617C1D0D9C54414B27A10FF04C8C3B44D324390E037A28FFB65FA82 ] C:\Windows\System32\amdvlk64.dll
21:33:23.0907 0x2c98 C:\Windows\System32\amdvlk64.dll - ok
21:33:23.0907 0x2c98 [ 09EAA73E11453F890C6796DD4801FD0B, 1E60A762FD58284CD28FF90C0B0832FF3DC2B327DD35A340D31992954A03196F ] C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1812.10048.0_x64__8wekyb3d8bbwe\Calculator.exe
21:33:23.0907 0x2c98 C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1812.10048.0_x64__8wekyb3d8bbwe\Calculator.exe - ok
21:33:23.0907 0x2c98 [ 1D3D98D5B848FEA9C6B0AC4339C3ED0D, 52BCE31667ABD1901B59B4C87E9B439BFFE406D9391DB230BF30FA68F0CB023C ] C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
21:33:23.0907 0x2c98 C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe - ok
21:33:23.0907 0x2c98 [ 639C79216A321518B1B263B99082BF22, 24A8C53C5C4C1B1E422C996DBA16B29CEE9DB10F3F392DFD9FEB833EF60B125D ] C:\Program Files\AVAST Software\Avast\aswRvrt.dll
21:33:23.0907 0x2c98 C:\Program Files\AVAST Software\Avast\aswRvrt.dll - ok
21:33:23.0907 0x2c98 [ DB53CDDF5B58E4FA425D99EDA4918C08, 5856FEDECF85E863D2D7A39E8B5030E0167A1F18671316E0999EE03816E91BEC ] C:\Program Files\AVAST Software\Avast\AvBugReport.exe
21:33:23.0907 0x2c98 C:\Program Files\AVAST Software\Avast\AvBugReport.exe - ok
21:33:23.0907 0x2c98 [ 464C685801474077A3BA79529E6459E1, 48E3C12D68E4E4AB7B622F742BBFB8564482E33C20532AF4004D0298BA270691 ] C:\Windows\System32\APHostService.dll
21:33:23.0907 0x2c98 C:\Windows\System32\APHostService.dll - ok
21:33:23.0907 0x2c98 [ 814BECC2710B2CD1120861B942626C02, 7B725B5CE257EF9D3F7C8D82BD32991152C89B9333F8CB729701F0DD57D4FE18 ] C:\Windows\System32\MCCSPal.dll
21:33:23.0907 0x2c98 C:\Windows\System32\MCCSPal.dll - ok
21:33:23.0923 0x2c98 [ 2D85CB79458186EBD660A54461A6B6AA, 76C1F4BDE2CFB0E3B50345E0B9508263A06E26AC93CCD68B21C49068FC446FA8 ] C:\Windows\System32\networkhelper.dll
21:33:23.0923 0x2c98 C:\Windows\System32\networkhelper.dll - ok
21:33:23.0923 0x2c98 [ 410997D576FCF88E1B99F63FDDCF1C91, 593456C13EB0312A16A142A7C17622A303A855315F0F0BE1D2515B98B7E92ADB ] C:\Windows\System32\syncutil.dll
21:33:23.0923 0x2c98 C:\Windows\System32\syncutil.dll - ok
21:33:23.0923 0x2c98 [ 7D41859B2CF8E916797B47666BD4744A, E5DA3E043FD7846BFE2E5B5FACCE0CD59ED4AA87AC759B83046CE04688D90D42 ] C:\Windows\System32\dmcfgutils.dll
21:33:23.0923 0x2c98 C:\Windows\System32\dmcfgutils.dll - ok
21:33:23.0923 0x2c98 [ 065F2DFA29E612A6BCE2EA7684A05C9C, 16ABE437D895A24D15342E54E55981DB13565C7AD4AFB185DD0DC49E206D3136 ] C:\Windows\System32\dmxmlhelputils.dll
21:33:23.0923 0x2c98 C:\Windows\System32\dmxmlhelputils.dll - ok
21:33:23.0923 0x2c98 [ 1845E1533FE2379A5B8E4AB867D93571, 2008A59735F1868D68A9D45FA679B1318A8C50144315B7D232C12E9FCC753AEA ] C:\Windows\System32\InprocLogger.dll
21:33:23.0923 0x2c98 C:\Windows\System32\InprocLogger.dll - ok
21:33:23.0923 0x2c98 [ CC00E8A1E59C524FE5AEB36851AC3532, 8B6C73557E7A7EFAE20B1AD71E33C4028C034DED4DAD47BA7B7EF66CB834D985 ] C:\Windows\System32\Pimstore.dll
21:33:23.0923 0x2c98 C:\Windows\System32\Pimstore.dll - ok
21:33:23.0938 0x2c98 [ 9EC1CCFF8267CD9E43B6154CA3A918B6, 78AFE66D158E852524030D6712D55E084D785EAE34BDC795F5A930AF44D4B98F ] C:\Windows\System32\SyncController.dll
21:33:23.0938 0x2c98 C:\Windows\System32\SyncController.dll - ok
21:33:23.0938 0x2c98 [ 08D80B47E6ABB6A1D9026922593B1863, 1D2CF20E441E608D65E307B5846386F501FBB813DAC92077CEDDF87E2D62BBEB ] C:\Windows\System32\accountaccessor.dll
21:33:23.0938 0x2c98 C:\Windows\System32\accountaccessor.dll - ok
21:33:23.0938 0x2c98 [ 3E93F684D6BBDE9FFAA24228F00B1F61, BA115F5C1D809267F3BC40F3B4D8B244B7F5FEF4C24E427F85C15C4834298262 ] C:\Windows\System32\APHostClient.dll
21:33:23.0938 0x2c98 C:\Windows\System32\APHostClient.dll - ok
21:33:23.0938 0x2c98 [ A6FCD3344C785AD130445C7B9C5CC297, CD41A6E43646A429958B2F2B4D3F4F782CF762F4FC0C66FECE0208CB632B27E7 ] C:\Windows\System32\dsclient.dll
21:33:23.0938 0x2c98 C:\Windows\System32\dsclient.dll - ok
21:33:23.0938 0x2c98 [ 33A016BA40D292716BBF31E60F84C3CF, 5EE182C04A7E6AA4A8330E67AA61B8A9476EE4D6BB9589303ED455CB7294CA66 ] C:\Windows\System32\cemapi.dll
21:33:23.0938 0x2c98 C:\Windows\System32\cemapi.dll - ok
21:33:23.0938 0x2c98 [ 86F2124FCCF9B50FE892FA693819EC70, ECD9453942AF488E72BAD4C8ED4D5676C121566D2CC8A481B9E536739B83773D ] C:\Windows\System32\MCCSEngineShared.dll
21:33:23.0938 0x2c98 C:\Windows\System32\MCCSEngineShared.dll - ok
21:33:23.0938 0x2c98 [ 9F187EB2F928390538ABAF158A7482B0, 84A47A8DBB955BCDC52AA822268165C02C7BCE9BF251E523105778669260519E ] C:\Windows\ImmersiveControlPanel\SystemSettings.exe
21:33:23.0938 0x2c98 C:\Windows\ImmersiveControlPanel\SystemSettings.exe - ok
21:33:23.0954 0x2c98 [ 5D21F1017DEAD892E5ACFDA15FB36BC1, 295E86E9F75BBE358EDEDF492533410063559674777D346A07296E0EDE836A8B ] C:\Windows\ImmersiveControlPanel\SystemSettings.dll
21:33:23.0954 0x2c98 C:\Windows\ImmersiveControlPanel\SystemSettings.dll - ok
21:33:23.0954 0x2c98 [ 868336504B1AD28994F09F95162EF033, AF83A69200CB8E6A75A4F0FECC136D3C6C3AA51ECA378AABC2F8A12E847C03D0 ] C:\Windows\ImmersiveControlPanel\Telemetry.Common.dll
21:33:23.0954 0x2c98 C:\Windows\ImmersiveControlPanel\Telemetry.Common.dll - ok
21:33:23.0954 0x2c98 [ D6280311697CE2BE96DF256E784478E9, FAC4EA400A3820074D3239410DE54B61A329FE0BAFF358C52430686359FAEE8A ] C:\Windows\ImmersiveControlPanel\SystemSettingsViewModel.Desktop.dll
21:33:23.0954 0x2c98 C:\Windows\ImmersiveControlPanel\SystemSettingsViewModel.Desktop.dll - ok
21:33:23.0954 0x2c98 [ 046A288DE677D531B246D38B0D3C0C27, 4F3CE7C50CE7AFDDFD0BD406E591FB2E4B9CABCA5CB5FA932BB984599F486CBF ] C:\Windows\System32\SettingsHandlers_nt.dll
21:33:23.0954 0x2c98 C:\Windows\System32\SettingsHandlers_nt.dll - ok
21:33:23.0954 0x2c98 [ F56268EA38CBD331A92C94A913143B47, 255A8AD99C0A5F50C1A116D7D2D5C1F509DF6D104DD5FDAF7075467453774643 ] C:\Windows\System32\ErrorDetailsCore.dll
21:33:23.0954 0x2c98 C:\Windows\System32\ErrorDetailsCore.dll - ok
21:33:23.0954 0x2c98 [ 8C9869CBF9E1E7DA14650E4CAD8344A9, D7D49D40E7082A121182B7E04621012EBB9046607AFCD02BC67CF15E58123B63 ] C:\Windows\System32\SettingsHandlers_User.dll
21:33:23.0954 0x2c98 C:\Windows\System32\SettingsHandlers_User.dll - ok
21:33:23.0969 0x2c98 [ 1FFBA1554A8CA99C2D38AC678CF1E535, A653DB152FE998EFC0EE0F6173DC68738555AF7D2EEC1108F4080074BABA7F07 ] C:\Windows\System32\deviceaccess.dll
21:33:23.0969 0x2c98 C:\Windows\System32\deviceaccess.dll - ok
21:33:23.0969 0x2c98 [ 6D3CE8C622C15EB4796699ECC50DD0E9, 53B1736579283EF272E6A919590EB86B44C133F1BF7D1B137D0C5614CEA0CDC5 ] C:\Windows\System32\usercpl.dll
21:33:23.0969 0x2c98 C:\Windows\System32\usercpl.dll - ok
21:33:23.0969 0x2c98 [ F371BE44CFC1175E18ED1669DFBB1542, 0751123AB9341AD581C29876788898C2DF04DFCD364CA6B014B8EA87245E7D6A ] C:\Windows\System32\shgina.dll
21:33:23.0969 0x2c98 C:\Windows\System32\shgina.dll - ok
21:33:23.0969 0x2c98 [ 14B1E704D2F90ADE169ADFA51B4CD537, E42D1E84FD1101B8FCB7ADA388CE6BCDB54EB623EFC7B5B265887F279B8DB478 ] C:\Windows\System32\Windows.Media.Speech.dll
21:33:23.0969 0x2c98 C:\Windows\System32\Windows.Media.Speech.dll - ok
21:33:23.0969 0x2c98 [ AB34F380D4051ED882075C981633000E, F7A59394FA865D135A94B251F45FF3A5C90B8BE25F6C7B73589FC26E0639EC3F ] C:\Windows\System32\Speech_OneCore\common\SpeechBrokeredApi.dll
21:33:23.0969 0x2c98 C:\Windows\System32\Speech_OneCore\common\SpeechBrokeredApi.dll - ok
21:33:23.0969 0x2c98 [ 786513003A0852D4461668CFEB0EA851, 6D546B44274BCE58270C33AAC2FEF3036EBD51408F58925ED80F493272BD0388 ] C:\Windows\System32\Speech_OneCore\common\SpeechServiceWinRTApi.ProxyStub.dll
21:33:23.0969 0x2c98 C:\Windows\System32\Speech_OneCore\common\SpeechServiceWinRTApi.ProxyStub.dll - ok
21:33:23.0969 0x2c98 [ 61334FA917EAE557B7B77DB5B7BD328F, DD45C37C39FBEE84E245B67AFF8970A652D53FC6DD78BFBE36D1F8A04D21D582 ] C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
21:33:23.0969 0x2c98 C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe - ok
21:33:23.0985 0x2c98 [ A49E17680E06B392CC6ECB47F01A6E64, 7B042F2A5CACA738631891C07044718C08543888F62BC4D03C931A7F33F87B19 ] C:\Windows\System32\wbiosrvc.dll
21:33:23.0985 0x2c98 C:\Windows\System32\wbiosrvc.dll - ok
21:33:23.0985 0x2c98 [ 34F4439B8ECEE59EE80CE9B1A15D8979, 691EA0A466417E272F6CEE832F3D65967EF91474F0899561E6E28F66A95B0DE5 ] C:\Windows\System32\winbioext.dll
21:33:23.0985 0x2c98 C:\Windows\System32\winbioext.dll - ok
21:33:23.0985 0x2c98 [ D5617D024996880369DD2EADD9DCC3CC, 4CAFB4E1A3D999D69A30DEAB2646FE2C388180A4B69A6F018BC17170F31E34A0 ] C:\Windows\System32\WinBioPlugIns\FaceBootstrapAdapter.dll
21:33:23.0985 0x2c98 C:\Windows\System32\WinBioPlugIns\FaceBootstrapAdapter.dll - ok
21:33:23.0985 0x2c98 [ 3A1F638209B105175BE1A6E90E2CF376, 407A3107AA0755AEB7406D90C77A052391D0C0508AE6217575922BCD7AA31CA3 ] C:\Windows\System32\newdev.dll
21:33:23.0985 0x2c98 C:\Windows\System32\newdev.dll - ok
21:33:23.0985 0x2c98 [ 1D2A528E205D3B2597895398A43B5DD5, A971516EF2BDE35BFB731809F9BDAE16BC12B27F318773E6F50208ACDE4337F4 ] C:\Windows\System32\WinBioPlugIns\NUIVoiceWBSAdapters.dll
21:33:23.0985 0x2c98 C:\Windows\System32\WinBioPlugIns\NUIVoiceWBSAdapters.dll - ok
21:33:23.0985 0x2c98 [ C4558F51357DA8B541750CF4C0CCF7C2, 0CC2B3E48F7973016D30568D3D2F238E8132638B62FAA8A6B6E79941C53277B9 ] C:\Windows\System32\Speech_OneCore\common\Windows.Speech.Pal.Desktop.dll
21:33:23.0985 0x2c98 C:\Windows\System32\Speech_OneCore\common\Windows.Speech.Pal.Desktop.dll - ok
21:33:23.0985 0x2c98 [ 81B8F6FB95D6636F50F239EF5896FEAB, C1B4CBAE490976E1358554201537E4F42367FB75262928EB7AF58C93C2E6062C ] C:\Windows\System32\WinBioPlugIns\winbiostorageadapter.dll
21:33:23.0985 0x2c98 C:\Windows\System32\WinBioPlugIns\winbiostorageadapter.dll - ok
21:33:24.0001 0x2c98 [ F123324F1DF5E73BD3A0D7A28B8B2F44, 051F4E624BAE02169DB7965ADA385E8D717DE9B872E6CE8A3C80616EEBC29F7F ] C:\Windows\System32\Speech_OneCore\common\Windows.Speech.Dictation.dll
21:33:24.0001 0x2c98 C:\Windows\System32\Speech_OneCore\common\Windows.Speech.Dictation.dll - ok
21:33:24.0001 0x2c98 [ CB2CCB75C817BE192C9FD049894148BC, F06B619FDEC0293F8CFF932BB2257714F46EE44F5A249B4A1F7056374D40E699 ] C:\Windows\System32\Speech_OneCore\common\Windows.Speech.Shell.dll
21:33:24.0001 0x2c98 C:\Windows\System32\Speech_OneCore\common\Windows.Speech.Shell.dll - ok
21:33:24.0001 0x2c98 [ 83008A040257EF4237F9EDB3397037CE, 954EE86F5FF99ABD385AA6781EB045C11E86BDC2A9FEB9764ED4A349DE2687BE ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
21:33:24.0001 0x2c98 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll - ok
21:33:24.0001 0x2c98 [ 48B7B1C095705021485B17BFDC1F34BA, 66A93B28FA922AFE428E8718498D4F75178612B3F2F3274402BB6733ECAD9802 ] C:\Windows\System32\SpeechPal.dll
21:33:24.0001 0x2c98 C:\Windows\System32\SpeechPal.dll - ok
21:33:24.0001 0x2c98 [ 0870EDE8C331BE6FCA4A39D60276EBB0, E9ACA3A740A52990FC109C7A6A3E1BD2EF6E78A6F3067D847123DB17ED7E7621 ] C:\Windows\System32\MiracastReceiver.dll
21:33:24.0001 0x2c98 C:\Windows\System32\MiracastReceiver.dll - ok
21:33:24.0001 0x2c98 [ FEEAA31D7AAC2119B4AE5C340490524B, EA975CD0935916961F3F131B07A799983D6AE0617F687EFC21C1404D43FC1F7E ] C:\Windows\System32\bcastdvruserservice.dll
21:33:24.0001 0x2c98 C:\Windows\System32\bcastdvruserservice.dll - ok
21:33:24.0016 0x2c98 [ 8F2BF99665E45EBC191DC5DFB83746B0, 483DA82157DEC11821268FB83BE5DC6D3A26CD9E5C3F02D7D5395FC1FB6091F9 ] C:\Windows\System32\BcastDVRCommon.dll
21:33:24.0016 0x2c98 C:\Windows\System32\BcastDVRCommon.dll - ok
21:33:24.0016 0x2c98 [ EB19185782F14067A7E731FD26AAFA02, 601CA7529E9965390596D748F8F420513AE147B55619DF5219D43A5C64D78C4B ] C:\Windows\System32\bcastdvr.proxy.dll
21:33:24.0016 0x2c98 C:\Windows\System32\bcastdvr.proxy.dll - ok
21:33:24.0016 0x2c98 [ 8184710119831B33C814B2570B71C32A, 919E818BE5C9471B9008F1EDD58E360CD578E6F2131302F7E0803604F169E819 ] C:\Windows\System32\fhsettingsprovider.dll
21:33:24.0016 0x2c98 C:\Windows\System32\fhsettingsprovider.dll - ok
21:33:24.0016 0x2c98 [ 0A3799E1AF886E85A2B142674440B6BD, D9C3047AEDE71EF101494606A58D3C613AD321E2EF085985A8DD5174C1EC0913 ] C:\Windows\System32\fhsvcctl.dll
21:33:24.0016 0x2c98 C:\Windows\System32\fhsvcctl.dll - ok
21:33:24.0016 0x2c98 [ CE9354083CA2D82AECE0C56E7340B12A, 551B78FA0CBB8414F19363C17FF35606C964A655EA801517FD7DA9FA98C8FFE2 ] C:\Windows\System32\OneBackupHandler.dll
21:33:24.0016 0x2c98 C:\Windows\System32\OneBackupHandler.dll - ok
21:33:24.0016 0x2c98 [ 6EB03C24D6899D97DBEA166D5D20D4EA, 5E31F72CD6636B0CBC6F0EA0E8A08C303EE6F9386860C26213A9391CD8B2A5B5 ] C:\Windows\System32\sdengin2.dll
21:33:24.0016 0x2c98 C:\Windows\System32\sdengin2.dll - ok
21:33:24.0016 0x2c98 [ 4D461A1A9443B174B0C8BDE84BEE303D, 101545C70D5967D8B874227B94038352BBA6010BADF904C507470571A72FAE28 ] C:\Windows\System32\spp.dll
21:33:24.0016 0x2c98 C:\Windows\System32\spp.dll - ok
21:33:24.0032 0x2c98 [ 08445DA8CE7A668F8F5A5ACF0244371D, C7F822282240008C4E3B45009A596AC8EBADDDBFB61B31D827B41E844174D917 ] C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
21:33:24.0032 0x2c98 C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe - ok
21:33:24.0032 0x2c98 [ 224164B1F0647AB4F90449F392238074, B079F5A8ADE5E17A1EFDCE1ACB9A289C7DA8BB8978EC8DA85DF507AD4C2C59B9 ] C:\Windows\TextInput\WindowsInternal.ComposableShell.Experiences.TextInput.dll
21:33:24.0032 0x2c98 C:\Windows\TextInput\WindowsInternal.ComposableShell.Experiences.TextInput.dll - ok
21:33:24.0032 0x2c98 [ 612142FCF05AE5A4CDEDE6C234C67445, 7BEA621AED2DA98ACE95C9F4D77AA47607C5CECAD67872BC85B29C707384E347 ] C:\Windows\System32\DictationManager.dll
21:33:24.0032 0x2c98 C:\Windows\System32\DictationManager.dll - ok
21:33:24.0032 0x2c98 [ 2B204F704A1D720D3E48E88294FC6F8E, 868BCA78B2E5125C828D5BC8EAD3111A406DF174AEF1CB88CB1850E8CD42496A ] C:\Windows\TextInput\WindowsInternal.ComposableShell.Experiences.TextInput.LayoutData.dll
21:33:24.0032 0x2c98 C:\Windows\TextInput\WindowsInternal.ComposableShell.Experiences.TextInput.LayoutData.dll - ok
21:33:24.0032 0x2c98 [ 70E2B1BBF0596CE63578C4D9AFAE9AF3, EAC7E32D7CE1FFA36BD34AD538669AEED00E8E004215AE753A88BCF221CDACE3 ] C:\Windows\System32\wscinterop.dll
21:33:24.0032 0x2c98 C:\Windows\System32\wscinterop.dll - ok
21:33:24.0032 0x2c98 [ 737F7ECF2EC63BB025F9510DFF75EACC, 28DA20596D3DED4AFF2B9DCEDFF1C1434C779E195EBAAF0691EDA18B77C9C88C ] C:\Windows\System32\werconcpl.dll
21:33:24.0032 0x2c98 C:\Windows\System32\werconcpl.dll - ok
21:33:24.0048 0x2c98 [ C675BF4BF8A4B54359E91E82578FB535, C2EB0A1A287726D31203CD24DD95A3EE25027421BA695A796EB8C2F4F7CC06EC ] C:\Windows\System32\hcproviders.dll
21:33:24.0048 0x2c98 C:\Windows\System32\hcproviders.dll - ok
21:33:24.0048 0x2c98 [ 628D3C3C5F52D4C8326BE409AC069D36, A12C332B42519E756DBEB2F468EA95681CB807FD38351470E3ADA95CEAC8D16B ] C:\Windows\System32\ieproxy.dll
21:33:24.0048 0x2c98 C:\Windows\System32\ieproxy.dll - ok
21:33:24.0048 0x2c98 [ AACBCF90E0226234BAAF7AA98334EFD7, 7626DE49D0984CD70D43B3DA079ACAA43B6E02FA46D5BB6F5C0110649F9FFFE5 ] C:\Windows\System32\twext.dll
21:33:24.0048 0x2c98 C:\Windows\System32\twext.dll - ok
21:33:24.0048 0x2c98 [ CABC8AF5CC3AB47BBD2CBFC6F7FD2A46, FB72667B966996DA3E2F2FD1DC5E6195E06D64B74D608DBDE34E9AD450B1157A ] C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll
21:33:24.0048 0x2c98 C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll - ok
21:33:24.0048 0x2c98 [ D32EE28CB9C2D40F55F4A6297D21662C, 523662156DCB6C6C3A619E93F4BE93A1C04BEF08A60FD988E40E3DC718FBBA7F ] C:\Windows\System32\WorkFoldersShell.dll
21:33:24.0048 0x2c98 C:\Windows\System32\WorkFoldersShell.dll - ok
21:33:24.0048 0x2c98 [ 3EC593FF01FA4846CD0D27A0D6C61F7F, F98F775C6B81FC0E6B6B61B5B85CC5EF1FD57655E8384183FB296F4694A640A0 ] C:\Program Files\WinRAR\RarExt.dll
21:33:24.0048 0x2c98 C:\Program Files\WinRAR\RarExt.dll - ok
21:33:24.0048 0x2c98 [ EA95A7836B51A51E3B3BC43E2827952F, 738AD77143EF3FAD12B4C9C35BD667311D8EEB630A57CC1A79446836C4314CFD ] C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll
21:33:24.0048 0x2c98 C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll - ok
21:33:24.0063 0x2c98 [ 3ACE21CCBDF4184C60FDD2FA36F57A6E, AAE537652698B1A46B134FC2D38190FF384F2715087BAAC34835473F16AAC35D ] C:\Program Files\Windows Defender\shellext.dll
21:33:24.0063 0x2c98 C:\Program Files\Windows Defender\shellext.dll - ok
21:33:24.0063 0x2c98 [ 0BC679D5CBCE7B982CF6CB86EAFEFBC6, DECD7C77B340716663027EC6E3ECC458970F0D768BDAAC67AB940B36D4FA0E99 ] C:\Windows\System32\zipfldr.dll
21:33:24.0063 0x2c98 C:\Windows\System32\zipfldr.dll - ok
21:33:24.0063 0x2c98 [ 9E048002FD55229FA4C8766EB4333224, 72F6E593BC5A97F6C04EFA48F43802AD429366B69C052B8FE3A90EDB5E71B9B0 ] C:\Windows\System32\acppage.dll
21:33:24.0063 0x2c98 C:\Windows\System32\acppage.dll - ok
21:33:24.0063 0x2c98 [ E830BAFBAC861DA2B54895900AB66791, D1B0D4A1D99824C057148D6178B9E21FD26B667006810EA355AEF2F822C60A9D ] C:\Windows\System32\sendmail.dll
21:33:24.0063 0x2c98 C:\Windows\System32\sendmail.dll - ok
21:33:24.0063 0x2c98 [ 1294A83A7E61544E5C3678A40237F842, 120EC51CAA8D917E6B6FBD1E22E7AC59858C148EADA9B3F81EB03D82DD608EFD ] C:\Windows\System32\moshost.dll
21:33:24.0063 0x2c98 C:\Windows\System32\moshost.dll - ok
21:33:24.0063 0x2c98 [ F21606A927EA74A75D6ACFD23C6B6AF0, 56E0D1231AC987D5EF9EE8BDA6282422E9962D1652B5FE89C4E62DCF42E17C9D ] C:\Windows\System32\MapsBtSvc.dll
21:33:24.0063 0x2c98 C:\Windows\System32\MapsBtSvc.dll - ok
21:33:24.0063 0x2c98 [ B13A1680497B9A5C1F0FF4CA7A8D490E, 2DE0C4D99E7FA27F04224EF977FD0CB481661734C5F617C376E8C0619D8EAFB5 ] C:\Windows\System32\MosStorage.dll
21:33:24.0063 0x2c98 C:\Windows\System32\MosStorage.dll - ok
21:33:24.0079 0x2c98 [ 043354116F94BC9D00570B5E35BFF79C, B06473F20ECC797F036540BFCA52CF82C0AC15A26A2D4CBE96FADC8724E96D87 ] C:\Windows\System32\ztrace_maps.dll
21:33:24.0079 0x2c98 C:\Windows\System32\ztrace_maps.dll - ok
21:33:24.0079 0x2c98 [ CF935198969A037DA42019ADCB634DED, A14F39B0AE08400229D403B8A30B31B356A406C85F586678D371ECEB9995E73D ] C:\Windows\System32\MapConfiguration.dll
21:33:24.0079 0x2c98 C:\Windows\System32\MapConfiguration.dll - ok
21:33:24.0079 0x2c98 [ C51AA0BB954EA45E85572E6CC29BA6F4, 2DF8A183B3DCA4DE156433280FD69B49E7B20B474211D7125FBE256CA25D769C ] C:\Windows\System32\SgrmBroker.exe
21:33:24.0079 0x2c98 C:\Windows\System32\SgrmBroker.exe - ok
21:33:24.0079 0x2c98 [ 06597687236CA7508DBF5D41EDF8B7A2, 3C327568F219862BCF8F60C312C018836A5F7D241DDF5C0CA8D150746512138B ] C:\Windows\System32\SgrmEnclave.dll
21:33:24.0079 0x2c98 C:\Windows\System32\SgrmEnclave.dll - ok
21:33:24.0079 0x2c98 [ B98F29C1B52DEAAE0C6AECC8A0811A94, 88B2700F5F0FDE317321645C704154F0B8A2321BA553F780FBAF58C30D01078D ] C:\Windows\System32\sppsvc.exe
21:33:24.0079 0x2c98 C:\Windows\System32\sppsvc.exe - ok
21:33:24.0079 0x2c98 [ 9764D4F46C7712F313E85ADE9D5F667E, F05B9B9910D6CDCCF7D07E29C777D8014A1550BBDF97E64FE705B3DAEAEC193D ] C:\Windows\System32\cryptxml.dll
21:33:24.0079 0x2c98 C:\Windows\System32\cryptxml.dll - ok
21:33:24.0094 0x2c98 [ CFACD61073762CE0CBC678308DB554B6, 26002792816104B4592137A906E74894A745F50081807FA1A59C2272D73F21C7 ] C:\Windows\System32\sppwinob.dll
21:33:24.0094 0x2c98 C:\Windows\System32\sppwinob.dll - ok
21:33:24.0094 0x2c98 [ 4D767A177A5B7297BB9A503ACE517CE7, FE5F5B0C61B69C99C81D133BB533A1B5653A3175316D0D3F48C630CD4F9D0CAE ] C:\Windows\System32\pkeyhelper.dll
21:33:24.0094 0x2c98 C:\Windows\System32\pkeyhelper.dll - ok
21:33:24.0094 0x2c98 [ 24D04A3302B181A94603EED1B00BFD00, 9A9CC4980B710CAFFEB8BDCFD25D73D03B7C1B1840E061C87FAB5BFFC495FCB8 ] C:\Windows\System32\sppobjs.dll
21:33:24.0094 0x2c98 C:\Windows\System32\sppobjs.dll - ok
21:33:24.0094 0x2c98 [ D5BE102311B2BD0C1904C12DB28F9151, AEADB801DF5161119A0376EE7A75DC14548F3F048DD1CFF4361C0C8F53F8E192 ] C:\Windows\System32\usosvc.dll
21:33:24.0094 0x2c98 C:\Windows\System32\usosvc.dll - ok
21:33:24.0094 0x2c98 [ 2F0B833BE5166A25B8474965F008D19D, 5CD9CA084E381CDA86F8EA87BDFD64B3A6E72A28E6573B749C836C05D72A488C ] C:\Windows\System32\updatepolicy.dll
21:33:24.0094 0x2c98 C:\Windows\System32\updatepolicy.dll - ok
21:33:24.0094 0x2c98 [ E46C638010C25479F66BACBE8596CA76, 39C59C362649090B4D34E5C8221C6E86552C07FE2DF3478D591A68B70917BC0A ] C:\Windows\System32\sc.exe
21:33:24.0094 0x2c98 C:\Windows\System32\sc.exe - ok
21:33:24.0094 0x2c98 [ 34F064C964229611B694B5D01AAF4152, E15E4D37A07D3BC247D47FC429401A5FD97A2E1744ABE6BDBE8CE2BEECF8EE71 ] C:\Windows\System32\PushToInstall.dll
21:33:24.0094 0x2c98 C:\Windows\System32\PushToInstall.dll - ok
21:33:24.0110 0x2c98 [ 0A3EFBAD56D2131ED36287D8E8829F55, DB844F69381751FE7AECBB8C8A0C3B5D4E1C59491A203191EF283563C539A887 ] C:\Windows\System32\wbem\WMIADAP.exe
21:33:24.0110 0x2c98 C:\Windows\System32\wbem\WMIADAP.exe - ok
21:33:24.0110 0x2c98 [ 009BF3DB4FFD6531DAC4843CF3A594D8, BA8C31BA333295B41A574EAC4006FCEBBE73FD3155949A4313E168D67CF5AD66 ] C:\Windows\System32\Windows.UI.AppDefaults.dll
21:33:24.0110 0x2c98 C:\Windows\System32\Windows.UI.AppDefaults.dll - ok
21:33:24.0110 0x2c98 [ F1139811BBF61362915958806AD30211, F1D62648EF915D85CB4FC140359E925395D315C70F3566B63BB3E21151CB2CE3 ] C:\Windows\System32\notepad.exe
21:33:24.0110 0x2c98 C:\Windows\System32\notepad.exe - ok
21:33:24.0110 0x2c98 [ C20F1640EDB642A6EEF76A811D5C22C9, D29276C5C1778F63BF9254FE211EC2479C23310E56091345CD0C943528DF0986 ] C:\Windows\System32\UserDataTimeUtil.dll
21:33:24.0110 0x2c98 C:\Windows\System32\UserDataTimeUtil.dll - ok
21:33:24.0110 0x2c98 [ 09F0631B2D0C6E6F9A7978A20C68DCD7, FDEE6B649C27E059042CD707A82657D5C226D5F078768F8C4B95186DA4BD0FC1 ] C:\Windows\System32\SearchProtocolHost.exe
21:33:24.0110 0x2c98 C:\Windows\System32\SearchProtocolHost.exe - ok
21:33:24.0110 0x2c98 [ E8DE810899702D27A131B98479FB5CA9, 293692557FE6B60CEEA1966DD4970249402BF809DBCC61EF03F8B1A0E69DC55A ] C:\Windows\System32\SearchFilterHost.exe
21:33:24.0110 0x2c98 C:\Windows\System32\SearchFilterHost.exe - ok
21:33:24.0126 0x2c98 [ 7BC26670A76211E45B14071FDDAA5A00, 23738EC6220E3BBB92930B74555A4763148F0672F0FC02448050A203C0A13139 ] C:\Windows\System32\mssph.dll
21:33:24.0126 0x2c98 C:\Windows\System32\mssph.dll - ok
21:33:24.0126 0x2c98 [ 4118FCD821B503A94E3E73F9336C2180, 651D24A9DEC312B43E2BBC65C32AB20F8090EB0A1939724BB960FE45C318D88E ] C:\Windows\System32\NaturalLanguage6.dll
21:33:24.0126 0x2c98 C:\Windows\System32\NaturalLanguage6.dll - ok
21:33:24.0126 0x2c98 [ 512C72DC2A10DA554A23ACB52309CADC, 66D4797F28F3D29BBEF1470C4841F7960EAA0971AF277239722450C64BD04799 ] C:\Windows\System32\MLS2.dll
21:33:24.0126 0x2c98 C:\Windows\System32\MLS2.dll - ok
21:33:24.0126 0x2c98 [ 54CD5242C1539AA7182E5735C6A93C1C, 1E0A2B0A75134C59B70F07A5B07EB747E784AE71D8993D5D89F5D3A0F328A073 ] C:\Windows\System32\NlsData001b.dll
21:33:24.0126 0x2c98 C:\Windows\System32\NlsData001b.dll - ok
21:33:24.0126 0x2c98 [ F33D5F0B823E5EB9D88C8F47A8003A47, 62E38C8DEFB12882905BF25D7DA4D5B860F9BFE877BE5EED23F6322FC62EC093 ] C:\Windows\System32\wbem\WmiApRes.dll
21:33:24.0126 0x2c98 C:\Windows\System32\wbem\WmiApRes.dll - ok
21:33:24.0126 0x2c98 [ B1AB15CEFE62214F9DB86A63FE08B978, 409020767892F153CE1E95E41DD845A299814054620C5B052A38CD0DC5E913E0 ] C:\Windows\System32\wdmaud.drv
21:33:24.0126 0x2c98 C:\Windows\System32\wdmaud.drv - ok
21:33:24.0126 0x2c98 [ 983FB639C1E69A126FCC55D68FB3CCF0, DFCDEBB8B77AD814A138BECB88AEA9622A673C5CECF497B454868A25D7E8226F ] C:\Windows\System32\midimap.dll
21:33:24.0126 0x2c98 C:\Windows\System32\midimap.dll - ok
21:33:24.0141 0x2c98 [ 4C3FAB694A8D2E7028AA6AC914CCF5D5, 6CA0C4B5D524F187D49AE5154589678F63C28E2E6B9B495E4CF8C19C3A9C114A ] C:\Windows\System32\msacm32.dll
21:33:24.0141 0x2c98 C:\Windows\System32\msacm32.dll - ok
21:33:24.0141 0x2c98 [ 3E1D97BFE925BA53E5E7C2316B412002, F6E1B001049E91327D09D8BCDC1385D8AF2A55B82E72107FD101D563439E5CB7 ] C:\Windows\System32\msacm32.drv
21:33:24.0141 0x2c98 C:\Windows\System32\msacm32.drv - ok
21:33:24.0141 0x2c98 [ F1B7EC04DAC52368AD19E011E0D31427, 407A5ABD37E55F54F79D87078591D48444D08FF627F4845EBF5A1C816F0A96F7 ] C:\Program Files\totalcmd\TOTALCMD64.EXE
21:33:24.0141 0x2c98 C:\Program Files\totalcmd\TOTALCMD64.EXE - ok
21:33:24.0141 0x2c98 [ 585F872431B1003199BDC3C4A275E79F, F42A370B7DF15CFA69B3D73F2FCACF8788196230EB0891451FC8F15212528C51 ] C:\Windows\System32\PlayToDevice.dll
21:33:24.0141 0x2c98 C:\Windows\System32\PlayToDevice.dll - ok
21:33:24.0141 0x2c98 [ B8716C60C57F2245CC41507258F490B9, 0926640328E679D38241852D52CFCC09C28D8A8113EC33A0871E8BDDA75114D7 ] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
21:33:24.0141 0x2c98 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll - ok
21:33:24.0141 0x2c98 [ FF17AAAA5421F484F5778901BED3E11C, 5AC80EC38655BD3E17579380F4AA6E2C1568777CCA6607B451C9DA09DAF704A4 ] C:\Windows\System32\EhStorAPI.dll
21:33:24.0141 0x2c98 C:\Windows\System32\EhStorAPI.dll - ok
21:33:24.0157 0x2c98 [ D3E947FE29FFBDF98E95B5653D03192C, FD2713AEDA83D6E9F2B13D68C3CAEE05930227E6B8C141612AE32F318C0AF4DD ] C:\Windows\System32\TaskSchdPS.dll
21:33:24.0157 0x2c98 C:\Windows\System32\TaskSchdPS.dll - ok
21:33:24.0157 0x2c98 [ 20106E200685F0CBD9E9C65C2D83DCF8, 0CFA1DDB5E79F1A8C1C02D0C86A703BF9A121862D4961E4063C2AF764AF47565 ] C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe
21:33:24.0157 0x2c98 C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe - ok
21:33:24.0157 0x2c98 [ 51B64E269AD7041B6DF11FB4B1FB3212, 28B3BB7900C1A0E2E676C3D69E0D98A1BB5BF81E39ECAE657EC34F64B457A773 ] C:\Windows\System32\hlink.dll
21:33:24.0157 0x2c98 C:\Windows\System32\hlink.dll - ok
21:33:24.0157 0x2c98 [ C3D9EADC68DD0501E7EE52F176941F2C, C706BAD36666583D21D1D22DEE7D175BBDD986EB315CA850665DFAC28909A1E0 ] C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\spkl.exe
21:33:24.0157 0x2c98 C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\spkl.exe - ok
21:33:24.0157 0x2c98 [ 2F6F0A50CFEFAAF952B834F83825E6C9, 7FBC8FBD5BA080C6007E16A36EE2D36B34A2828CF03933A0222B450DF0C7A79C ] C:\Windows\SysWOW64\quartz.dll
21:33:24.0157 0x2c98 C:\Windows\SysWOW64\quartz.dll - ok
21:33:24.0157 0x2c98 [ FDE51AF08E8093E9EFFDEECF51ECA283, 869FAFC3B8E20B39CFC010A160E36C0A4191AB6F518B51278F3E69F5E5933862 ] C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\ime32.dll
21:33:24.0157 0x2c98 C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\ime32.dll - ok
21:33:24.0157 0x2c98 [ 16A1612789DC9063EBEA1CB55433B45B, 6DEAEC2F96C8A1C20698A93DDD468D5447B55AC426DC381EEF5D91B19953BB7B ] C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\sqlite3.dll
21:33:24.0157 0x2c98 C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\sqlite3.dll - ok
21:33:24.0173 0x2c98 [ AB83562445D10E15C19E63478CEE4B4E, 1F633F50CAF7FF2FD1BA88A069E9ACA9D132360574B46ADCFAAAD8C4350FEF96 ] C:\Windows\SysWOW64\samcli.dll
21:33:24.0173 0x2c98 C:\Windows\SysWOW64\samcli.dll - ok
21:33:24.0173 0x2c98 [ 594EA7F79A130CA71BC54F92F071782C, 6AD4C670363AC49F46140FC36E69EA1D6223EFFE2DADA17572CD889A1F62E158 ] C:\Windows\SysWOW64\olepro32.dll
21:33:24.0173 0x2c98 C:\Windows\SysWOW64\olepro32.dll - ok
21:33:24.0173 0x2c98 [ 0C7DDF23EA5E5BF1F79C50F46758BC1C, 71C7495018BC5E15028046C4E8CA71E97A97AD4B1B53DE61E594A94039D1226A ] C:\Windows\SysWOW64\security.dll
21:33:24.0173 0x2c98 C:\Windows\SysWOW64\security.dll - ok
21:33:24.0173 0x2c98 [ 76E28B28ACF0ED071EE80BA7EC5D0D95, EFB36E6C86974B59A9843ECC0C366ED5C8FBF28F21036C8F8D44BADEA26C3269 ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\aticfx32.dll
21:33:24.0173 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\aticfx32.dll - ok
21:33:24.0173 0x2c98 [ CF2ECAF843F4A7ABEE6D3C9B4A13A91B, 95B280E2DC6105BAC30A8AB1730362EEF2E648E0500A45AB4B844869FC81D3A9 ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiu9pag.dll
21:33:24.0173 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiu9pag.dll - ok
21:33:24.0173 0x2c98 [ D34E687C2C663BB5E88EACCAA342EC52, FB138868C3944A0584F47BBF53712B0DA93C3D9BD899A2B189C262AA574EA5FA ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiumdag.dll
21:33:24.0173 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiumdag.dll - ok
21:33:24.0188 0x2c98 [ 678E72A9311529B932859386D7CD5A1D, 1423845D74DD8C7F7067575FB28E2F9543D37E5AE777B44F7C217DE845AB307B ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiumdva.dll
21:33:24.0188 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\atiumdva.dll - ok
21:33:24.0188 0x2c98 [ 8735B6034C743C63E91121C997B58220, 848B519A7687F7133B273A92D1315DBD9284430D0DFABFFB998AE4F45225B11E ] C:\Windows\SysWOW64\amdihk32.dll
21:33:24.0188 0x2c98 C:\Windows\SysWOW64\amdihk32.dll - ok
21:33:24.0188 0x2c98 [ 789190C1EA8DDE874C2CF3BD92DCD50F, 9B725B954CE4F2FFD069693C07331C1D056B6DDC21041398E08C562B0C1A006C ] C:\Windows\SysWOW64\ieframe.dll
21:33:24.0188 0x2c98 C:\Windows\SysWOW64\ieframe.dll - ok
21:33:24.0188 0x2c98 [ 159247803C6F9DCB7E57800E2196B0C4, 638B0F151C2FA7EECFF32BA7718A7653FF7679628E480B52DB0393E47D7FA036 ] C:\Windows\SysWOW64\msIso.dll
21:33:24.0188 0x2c98 C:\Windows\SysWOW64\msIso.dll - ok
21:33:24.0188 0x2c98 [ 443FB5069BF99497E6FEF11FA091E95E, FE7C1BD03D80133AB8FEC2D4866E6DBA06E850B73B05E3BD8C444E960061127A ] C:\Windows\SysWOW64\idndl.dll
21:33:24.0188 0x2c98 C:\Windows\SysWOW64\idndl.dll - ok
21:33:24.0188 0x2c98 [ 2291291EE51CC1FB0BBD5B27EE7FC76C, B5ED91FFC5C8C89B9A3DD79FDDCF3DB2E69FA45D5FCFF7D02C33AD559375C672 ] C:\Windows\SysWOW64\wbem\wbemdisp.dll
21:33:24.0188 0x2c98 C:\Windows\SysWOW64\wbem\wbemdisp.dll - ok
21:33:24.0188 0x2c98 [ C0B39B381394816773628CB13642DFDB, 726BF826199F6F8A919F1F9666BAD2B258F78611DE3311AC6E8091F74259FDC8 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
21:33:24.0188 0x2c98 C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
21:33:24.0204 0x2c98 [ 8CFB8FB2DF5E04620DD3135CEAC56B35, B86ACDD100A24E61C29633FDBF1042BBCEE85471349F3DDC0C3ECDA0869756BF ] C:\Windows\System32\schedcli.dll
21:33:24.0204 0x2c98 C:\Windows\System32\schedcli.dll - ok
21:33:24.0204 0x2c98 [ 3C48CFB62ED14C91743DCB32318687CB, 3E0FE26DC52EACC16DAA5D51B4722BD340CF44808E60AC5AB21EFDAF17603180 ] C:\Windows\System32\security.dll
21:33:24.0204 0x2c98 C:\Windows\System32\security.dll - ok
21:33:24.0204 0x2c98 [ 8350D6223577CAFB1EA7CFBEEDF4CD57, 9554A38F44848D47512EA21367C2392206448F0F3A54CA97856DEAD6D7A0D244 ] C:\Windows\System32\wscisvif.dll
21:33:24.0204 0x2c98 C:\Windows\System32\wscisvif.dll - ok
21:33:24.0204 0x2c98 [ 3C36FEA9AB7AD6B13DE7BBAF0150BAB0, 30B12F72150A6FBB64BFC82DFB593B444623A2E49388B3C42B221EB4F2C98CF7 ] C:\Windows\System32\wscproxystub.dll
21:33:24.0204 0x2c98 C:\Windows\System32\wscproxystub.dll - ok
21:33:24.0204 0x2c98 [ B71C7524C0D45A77F2CF31DF3B7DEEEC, 28ED3D20D14BF3F76BDCE754D930F1994E334F6D974E2C22145CFD415F304B8C ] C:\Windows\SysWOW64\devenum.dll
21:33:24.0204 0x2c98 C:\Windows\SysWOW64\devenum.dll - ok
21:33:24.0204 0x2c98 [ 609392709AE28A0AA7D3EDE218767237, 4CD41B92F91FEFC3218F20969604D5168A24E48A687223D9FB26DBD8BA68C092 ] C:\Windows\SysWOW64\avicap32.dll
21:33:24.0204 0x2c98 C:\Windows\SysWOW64\avicap32.dll - ok
21:33:24.0204 0x2c98 [ 603ADACF549E1D2B241352D790E27AB9, B638D19EF67A0ED57036D2A71620C41E2B7084791D508BBAFE3BC34D43A5D275 ] C:\Windows\SysWOW64\msdmo.dll
21:33:24.0204 0x2c98 C:\Windows\SysWOW64\msdmo.dll - ok
21:33:24.0219 0x2c98 [ 8D53B9277290EEE4842DF5A28F314AFD, D7CB15568E269FBCD645B2C86E7BC0101C0EA2E6D4277DB2D7DB8EF08C1BE7B5 ] C:\Windows\SysWOW64\msvfw32.dll
21:33:24.0219 0x2c98 C:\Windows\SysWOW64\msvfw32.dll - ok
21:33:24.0219 0x2c98 [ EF3F22663A919E0B6FDDC0A86BF9F654, E52B52FBADD7334FE81B070954625206F70BAFE8767DE7E17F748F817BCE090F ] C:\Windows\SysWOW64\samlib.dll
21:33:24.0219 0x2c98 C:\Windows\SysWOW64\samlib.dll - ok
21:33:24.0219 0x2c98 [ 898DABA9CBFBA76FF209246FCB922CF8, 35B3B16EB311B91C0089B715CEB9C9B954EEA85E71E851F20400C1780B6BC211 ] C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\sime64.exe
21:33:24.0219 0x2c98 C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\sime64.exe - ok
21:33:24.0219 0x2c98 [ 6BCEBCAA06CE39C6B527E55928C91840, 30525D2FF7E494C6535822A80C12E4A9F33A4161BFB79B873918A143A23B2687 ] C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\ime64.dll
21:33:24.0219 0x2c98 C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\ime64.dll - ok
21:33:24.0219 0x2c98 [ D9EA512EE580ECFFEE587A4C3759527F, 4C493F7DC51A50BBE139993CDB1267DD1F7A33020DF9075ECD7D28FDCE9EC63F ] C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\qrl.exe
21:33:24.0219 0x2c98 C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\qrl.exe - ok
21:33:24.0219 0x2c98 [ 6D52EE44E4589506CC90286C3D0CDE66, 49447FB8716785EC020570D2769DD53034C5A4113B70DF3217C4172784C8DFE9 ] C:\Windows\SysWOW64\Wldap32.dll
21:33:24.0219 0x2c98 C:\Windows\SysWOW64\Wldap32.dll - ok
21:33:24.0235 0x2c98 [ 1AD93B77E8170D0D2B58F42A1AA0AAB4, 012CED2E95B7C1CABAC35F14DEBA130305B70241FDAA99E17336CB6C2955D10D ] C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\spmm.exe
21:33:24.0235 0x2c98 C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\spmm.exe - ok
21:33:24.0235 0x2c98 [ 451C04666FACDC220442DF6289AEE9AE, 469E3409CEA490BFA1024328BFA864BC4F9A71DA0DBE8F86C59DDC254FC119F7 ] C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\sps.exe
21:33:24.0235 0x2c98 C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\sps.exe - ok
21:33:24.0235 0x2c98 [ D66922B7D10F688564B1CFB25B2681EC, E0E0697DBCD35C5C8E6E0E19C8A4186F7902D95227E8D7C0AE1C90E0E56370A1 ] C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\libeay32.dll
21:33:24.0235 0x2c98 C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\libeay32.dll - ok
21:33:24.0235 0x2c98 [ CB66A1FEC9236CD46E2A3E5A00D887A5, 73234A2B168E2CA92B2E09346C48FB85CF10085FAF76D7923257986B3F528E1C ] C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\ssleay32.dll
21:33:24.0235 0x2c98 C:\ProgramData\{827D21CC-A22D-45D6-23CA-451DDAC769BA}\ssleay32.dll - ok
21:33:24.0235 0x2c98 [ 3491BD7D827E6D9DE74B5CC68FA97B3B, 70D0F2448DBB184565CDCBDCABE060DF5420B5DBDEF4B7E1E4BE21E496D8B13F ] C:\Windows\System32\mantle64.dll
21:33:24.0235 0x2c98 C:\Windows\System32\mantle64.dll - ok
21:33:24.0235 0x2c98 [ 399DCCBF6D500DFCC66AEC70FB7BAFA4, 4730782C887F551C84EAE84BCDB03B049AA9C26E403564D0A4BE6BD78A81CAE0 ] C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\amdmantle64.dll
21:33:24.0235 0x2c98 C:\Windows\System32\DriverStore\FileRepository\c0322990.inf_amd64_06c9aec2ef966091\amdmantle64.dll - ok
21:33:24.0251 0x2c98 [ DE7FBA980220FAF5D709DD7848A56787, 7E62F049A9CD0498D2A770D57850F93DFBFA4E52760F498CE474A55BCE9EF0BC ] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
21:33:24.0251 0x2c98 C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll - ok
21:33:24.0251 0x2c98 [ 15E29FAC1C35215109CDCDFE16106D93, 488355A60FA90446EA830B5ED9783726516D8B44782FB9A50146EFB75E524599 ] C:\Program Files\AMD\CNext\CNext\libEGL.dll
21:33:24.0251 0x2c98 C:\Program Files\AMD\CNext\CNext\libEGL.dll - ok
21:33:24.0251 0x2c98 [ A159BB10E55A64E7A981B92277F99249, 692FF074DE007DDF1B53D09AC549D2E5BB6768121D0999EE466DDF4FE1F2F958 ] C:\Program Files\AMD\CNext\CNext\libGLESV2.dll
21:33:24.0251 0x2c98 C:\Program Files\AMD\CNext\CNext\libGLESV2.dll - ok
21:33:24.0251 0x2c98 [ 2E925B1ED3D825EB835E0705CE3889A4, 2479326683045ED9A344FB60CBE9AC124648319E8AD14E75005228EAED5E0A5C ] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
21:33:24.0251 0x2c98 C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll - ok
21:33:24.0251 0x2c98 [ C969A2D69AE29DE635E90B808C204B80, 541A8AB55D06BB1C45AE1AD5349EF4D12570F601D27276925E6D969B648A9182 ] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
21:33:24.0251 0x2c98 C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll - ok
21:33:24.0251 0x2c98 [ E2E0BDD080E57CFAFA002E9A77659725, 41F7F1C6354FB7DF78EFA6C300069617E172565FDFDC009B1ADE8EE53E454283 ] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
21:33:24.0251 0x2c98 C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll - ok
21:33:24.0251 0x2c98 [ 85E46CA17B81821A568D721AFD93FA06, C6B283B89FB32320EEC47CD25C017F530F35DAB22C67DC2B9814F2F3B0DB9853 ] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
21:33:24.0251 0x2c98 C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll - ok
21:33:24.0266 0x2c98 [ 42C8FEC602252658F3D6DE2BFA2FE9FD, 45A11F9B597C2361C8A40837625C3F93AE3443562D088BC0DC6514E09E20B1ED ] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
21:33:24.0266 0x2c98 C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll - ok
21:33:24.0266 0x2c98 [ C29F7B9A4190786C7F28FA409940D31A, 10E7D593FC6B533889AB65A2EE63478A60420CD75752E33D3FC7CBBE4A27DB6B ] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
21:33:24.0266 0x2c98 C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll - ok
21:33:24.0266 0x2c98 [ 6AF3C5B92CBB73092BA40A9F4AAE874D, ED370BD43B491DDF754C65CC081C7EA3B77880CE930EDF02870570622B508422 ] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
21:33:24.0266 0x2c98 C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll - ok
21:33:24.0266 0x2c98 [ 354EECCE0FDDD8330FA014D38C0E0812, B6671368CA4DB77F8F7227386CC24A6812C72B36C61946D43D39730035562D47 ] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
21:33:24.0266 0x2c98 C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll - ok
21:33:24.0266 0x2c98 [ D8F7380986E6689257017F428639C83F, 637869594B6EDB51DCC09ADF35A940EBF233D78DEB1D22B3EAC041BBD6CE35B2 ] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
21:33:24.0266 0x2c98 C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll - ok
21:33:24.0266 0x2c98 [ 4051CD4120036621D8C4A2508B281152, 083DBBF8129D8F584A882DE1EF323EADA9A685606FF828E814D4D9F6E03A1366 ] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
21:33:24.0266 0x2c98 C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll - ok
21:33:24.0282 0x2c98 [ ACEF7BEAB7B27B75EE369126682C1E5C, B2569CD03B20FC15B1F9EB45EB7A4A65392E350B52E0A3D79EA090F0A2EBF51D ] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
21:33:24.0282 0x2c98 C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll - ok
21:33:24.0282 0x2c98 [ 0424BD2A857BB81E1A47714836B062C4, B4792807429B41A9FA35B1BF6F84F2A614C0E713AFC8650E18FEE0FD1976C5B0 ] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
21:33:24.0282 0x2c98 C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll - ok
21:33:24.0282 0x2c98 [ BDF5560F858B5DBD3C6B13358DB9A10F, 342D8F6A10E6A22F7889E4AE814DFA8429A1EE5816D96C870A8268E29D01A154 ] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
21:33:24.0282 0x2c98 C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll - ok
21:33:24.0282 0x2c98 [ 8E6724923A3F716258049202F5628220, 6F2291BC76D9EAC716F3D0F3544CCD9EE3FE394E47245E80F5963CEE297666CD ] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
21:33:24.0282 0x2c98 C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll - ok
21:33:24.0282 0x2c98 [ 9CE05B3301473A9CD9323653712F726C, 0E10F748D888B7F6B33FB1FDDF81004BA8F9D901882471FD4A85053DC7E482F3 ] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
21:33:24.0282 0x2c98 C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll - ok
21:33:24.0282 0x2c98 [ B0AE3AA9DD1EBD60BDF51CB94834CD04, E994847E01A6F1E4CBDC5A864616AC262F67EE4F14DB194984661A8D927AB7F4 ] C:\Program Files\AMD\CNext\CNext\D3Dcompiler_47.dll
21:33:24.0282 0x2c98 C:\Program Files\AMD\CNext\CNext\D3Dcompiler_47.dll - ok
21:33:24.0282 0x2c98 [ 00206186B630262327A68AC086632B77, 932909702B40C2109675C8D91CAE384D3F6A8DE02AE7146304590DD6EB8E1065 ] C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
21:33:24.0282 0x2c98 C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL - ok
21:33:24.0298 0x2c98 [ 66836116657794D2B4192A808E112ABA, 5F6AA949DA677552DBFBD759CD92183D274EE4BA78C97FB6581D55DD6FD7DB3C ] C:\Windows\System32\vcruntime140.dll
21:33:24.0298 0x2c98 C:\Windows\System32\vcruntime140.dll - ok
21:33:24.0298 0x2c98 [ 85C5D53951940F54FDABDDD3507AC5D7, 5E7C89AF044C4753A4C66ED696D01097505BBD1A92ED43F11B9FFC3A09A769D7 ] C:\Windows\System32\MTFFuzzyDS.dll
21:33:24.0298 0x2c98 C:\Windows\System32\MTFFuzzyDS.dll - ok
21:33:24.0298 0x2c98 [ 158A3D6CE918D2C904A92C5800C92D4B, 59F3DADD45D825514BF997EFE60C3F93205605217736C214C7D481493C7F39DE ] C:\Windows\System32\trie.dll
21:33:24.0298 0x2c98 C:\Windows\System32\trie.dll - ok
21:33:24.0298 0x2c98 [ 48BCC162675417A3FC585744F2011338, 238AC7AAC30CCC957468F31ED6F17589CB0765F082583FAB71806CC686ABB53E ] C:\Windows\System32\SystemSettings.SettingsExtensibility.dll
21:33:24.0298 0x2c98 C:\Windows\System32\SystemSettings.SettingsExtensibility.dll - ok
21:33:24.0298 0x2c98 [ 740581B4EB7ED46BAE7065EB9ADD9717, 7E1C2789144B4E9DA6BA9DFDAC035425A0CD04C4E9F5B67C665EDE67D27A26B9 ] C:\Windows\System32\cellulardatacapabilityhandler.dll
21:33:24.0298 0x2c98 C:\Windows\System32\cellulardatacapabilityhandler.dll - ok
21:33:24.0298 0x2c98 [ D2E15B0D5C4E601D183ED60FE933DA2D, 7ACC72B841E1D54FBE7AA74F99676B6DA89E7907E35E1F905C8506EC9DB6C7F8 ] C:\Windows\System32\SettingsHandlers_Fonts.dll
21:33:24.0298 0x2c98 C:\Windows\System32\SettingsHandlers_Fonts.dll - ok
21:33:24.0313 0x2c98 [ 0EDDFEDDB67C3B1D769DB4867CF8A054, E82462B7E9FABC61EDC0E92C28FEB65D7DFC864C21515530B923D6E9ED71E7EF ] C:\Windows\System32\LockScreenContent.dll
21:33:24.0313 0x2c98 C:\Windows\System32\LockScreenContent.dll - ok
21:33:24.0313 0x2c98 [ 777FEE1001985232A99E49EBD6E41726, 54761EC556E8A9CC7D7935E7BA8358A7DD4BE039C5A31C5AE56BB635D044EFA5 ] C:\Windows\System32\themeui.dll
21:33:24.0313 0x2c98 C:\Windows\System32\themeui.dll - ok
21:33:24.0313 0x2c98 [ A1293077CE0C2A1FB72B6ED20CD407B5, 41636E6B0C87B257FA5FD3E534B4E39E168FD5D53384C82C1556425D698DFC78 ] C:\Windows\System32\LockScreenData.dll
21:33:24.0313 0x2c98 C:\Windows\System32\LockScreenData.dll - ok
21:33:24.0313 0x2c98 [ 2350D873840111FC51F5B90B7562AFBC, 327BB7354DA20D31416021F47D5AFC5C79482630C86D33CA2F0496736BC81889 ] C:\Windows\System32\ELSCore.dll
21:33:24.0313 0x2c98 C:\Windows\System32\ELSCore.dll - ok
21:33:24.0313 0x2c98 [ 7F4552224FCAC7F54FB7EF3D26D8D4A6, A57B51E3B6BB12E2B10BDCFECA18639A5AC2F72C80A7FD66BC081CD8713DBA0A ] C:\Windows\System32\elsTrans.dll
21:33:24.0313 0x2c98 C:\Windows\System32\elsTrans.dll - ok
21:33:24.0313 0x2c98 [ FA7F0F0F75D8DB0B74C2C9CA00AF4A31, 50321C14A4FCD382003BFF84607C373CF3DA3471D123E3BEA924AECB67D5BFF9 ] C:\Windows\System32\MsSpellCheckingFacility.dll
21:33:24.0313 0x2c98 C:\Windows\System32\MsSpellCheckingFacility.dll - ok
21:33:24.0329 0x2c98 [ 1E4DEA843C1CB652F1ED4F39EBEC6221, 2E92161B07326121253D67BD7354DB674657E144DAD722808B24A058A69705AE ] C:\Windows\System32\WordBreakers.dll
21:33:24.0329 0x2c98 C:\Windows\System32\WordBreakers.dll - ok
21:33:24.0329 0x2c98 [ 283C06A0A21A06D2AAFAA3B504187C0A, 87D702281B747DD24733689F5A5E974CA955BE6601E8FFD242D9F04EF2D36157 ] C:\Windows\System32\SettingsHandlers_Language.dll
21:33:24.0329 0x2c98 C:\Windows\System32\SettingsHandlers_Language.dll - ok
21:33:24.0329 0x2c98 [ DC7712526D81C6D718AC7AC7FC0354D0, 761856B82E71825AB0CD95B4AF8C9113D65F9FC0D780DEBF9DBE57CC4E9F1F97 ] C:\Windows\System32\ProductEnumerator.dll
21:33:24.0329 0x2c98 C:\Windows\System32\ProductEnumerator.dll - ok
21:33:24.0329 0x2c98 [ 7086C04C19191D834A3B20DE7F7358DF, F79837E7D45057293683270D59EC70FFB1F7D2A260A4158B013AC8D4F6A251F7 ] C:\Windows\System32\input.dll
21:33:24.0329 0x2c98 C:\Windows\System32\input.dll - ok
21:33:24.0329 0x2c98 [ 41744BD2D3FBA7BD8C910913152A88C4, AF91CB5A27E25A72F6DC8BB8D87202543E17D1BBBB30B950D597A75DD2748984 ] C:\Windows\System32\LanguageOverlayServer.dll
21:33:24.0329 0x2c98 C:\Windows\System32\LanguageOverlayServer.dll - ok
21:33:24.0329 0x2c98 [ 8B5AFFC4987F9AE41DF15940C6EF66CB, 520273402F22ADA8948F8E1CB0899D0A5B1BC01CFF787747C1227945B336E4C5 ] C:\Windows\servicing\TrustedInstaller.exe
21:33:24.0329 0x2c98 C:\Windows\servicing\TrustedInstaller.exe - ok
21:33:24.0329 0x2c98 [ 7FD7619E61A7019683DC36EEAD617F07, 99DE1115C6ECEF8D6FEC3120F2C44216D8380F5104BA3584C8ADEB14EFB670CC ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.144_none_5f365e4058e531c4\wdscore.dll
21:33:24.0329 0x2c98 C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.144_none_5f365e4058e531c4\wdscore.dll - ok
21:33:24.0344 0x2c98 [ 9864E49DF596F18573E9C221420C9488, 19212817C83CC4FEDF521BA4B60E148EC0AC73C1CA7E0DB1A3EC716E66C9C705 ] C:\Windows\servicing\CbsApi.dll
21:33:24.0344 0x2c98 C:\Windows\servicing\CbsApi.dll - ok
21:33:24.0344 0x2c98 [ 0ECD172646FE879F84FF33DA8FFA9373, C26DC49916EE8298F8A8CBF8ACE62A4538775F8D8D5B33322A316BA7555616B6 ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.144_none_5f365e4058e531c4\TiWorker.exe
21:33:24.0344 0x2c98 C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.144_none_5f365e4058e531c4\TiWorker.exe - ok
21:33:24.0344 0x2c98 [ 62C3110ABDD07C99D4C010ED90EA8D8A, 2EA1B3DE0011563B03F15B50E1CC6879AB04B22BC510F11E41E2C5F8295539B3 ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.144_none_5f365e4058e531c4\CbsCore.dll
21:33:24.0344 0x2c98 C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.144_none_5f365e4058e531c4\CbsCore.dll - ok
21:33:24.0344 0x2c98 [ 9D7260D8C11C185F75E85DC889918E72, B6F3DAA7C08D718DE3569807999DC943FD13277829DB78E611C38F0D964B32CC ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.144_none_5f365e4058e531c4\dpx.dll
21:33:24.0344 0x2c98 C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.144_none_5f365e4058e531c4\dpx.dll - ok
21:33:24.0344 0x2c98 [ B1FB258A92F2A20840B021526E4C7BCB, C47D396E492B5BBB242C1835C027366EA6CFDFC5AB9B42403A48E81B1F04D406 ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.144_none_5f365e4058e531c4\wcp.dll
21:33:24.0344 0x2c98 C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.144_none_5f365e4058e531c4\wcp.dll - ok
21:33:24.0344 0x2c98 [ 406D2A944E16AC705D1B0ECDD4FD75F2, AD99D822EDE3E20C168A90631E69B7BC372FACB81ED55274C7B69783E7587EB7 ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.144_none_5f365e4058e531c4\drupdate.dll
21:33:24.0344 0x2c98 C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.144_none_5f365e4058e531c4\drupdate.dll - ok
21:33:24.0360 0x2c98 [ 465A1CCC02B4FB4BC56AF3066A5291DB, B63F8A09B263172E2EF24CA19E8D76C92DBA4D319A823A93DDAB8FCD2111B46D ] C:\Windows\System32\srclient.dll
21:33:24.0360 0x2c98 C:\Windows\System32\srclient.dll - ok
21:33:24.0360 0x2c98 [ 9D74A44C2061AB7A7EB1178831657371, 2002CD255525621039036FFBD793ECEFD6C09ECD0F0C1BB851BA438988C0EA66 ] C:\Windows\System32\msTextPrediction.dll
21:33:24.0360 0x2c98 C:\Windows\System32\msTextPrediction.dll - ok
21:33:24.0360 0x2c98 [ C0321796149A85A9259709D06F5A7D33, BDAB63BCBAF190B129CAE4EFEE2083E2FBE86C9795C57ADB62B2F40286B2DE1F ] C:\Windows\System32\tsf3gip.dll
21:33:24.0360 0x2c98 C:\Windows\System32\tsf3gip.dll - ok
21:33:24.0360 0x2c98 [ 7DB6961148F11E3501EC98809A25B30F, E74EB4132CC74FE14C1078039A8C672ACEA50593A4F14321F424FE58B785B8FB ] C:\Windows\System32\UserLanguageProfileCallback.dll
21:33:24.0360 0x2c98 C:\Windows\System32\UserLanguageProfileCallback.dll - ok
21:33:24.0360 0x2c98 [ 7B0AB814D4C4CC4BFE15321E202FAF97, 86D4D0BBD49FC51A21305FB5327DBA8F6EB1D5DAA8B728B86C01343BBB52EE44 ] C:\Windows\System32\SystemSettingsAdminFlows.exe
21:33:24.0360 0x2c98 C:\Windows\System32\SystemSettingsAdminFlows.exe - ok
21:33:24.0360 0x2c98 [ 840D327F9A5BDB3402541C1D8CCD1E3F, 7838DB54BB55FAA4B1E6D235A18993DBA14FC6ED6F233134FCF348E44D4151BB ] C:\Windows\System32\SystemSettingsThresholdAdminFlowUI.dll
21:33:24.0360 0x2c98 C:\Windows\System32\SystemSettingsThresholdAdminFlowUI.dll - ok
21:33:24.0376 0x2c98 [ 599C671F4E53944FE2C4ADCEBBEFE9EF, 9DDC83BCFBE49AFE25FBD4B9446DE61BBC34352F896584291CE1238970C0B7DA ] C:\Windows\System32\timesync.dll
21:33:24.0376 0x2c98 C:\Windows\System32\timesync.dll - ok
21:33:24.0376 0x2c98 [ EA48F9073419296CA7CBC2FE77E76F46, 8746915A07484B213CC4A98E31CB1050C7F5171CF49D73466E3E98192CF626D7 ] C:\Windows\System32\Windows.UI.BlockedShutdown.dll
21:33:24.0376 0x2c98 C:\Windows\System32\Windows.UI.BlockedShutdown.dll - ok
21:33:24.0376 0x2c98 [ 027CBEE5046B85125BECA062EA569D4A, 15ADCA2DB2DDBD147D023AB519378862AC45AE62D88A7AD1D9EF4E3C92B80394 ] C:\Windows\System32\WinSATAPI.dll
21:33:24.0376 0x2c98 C:\Windows\System32\WinSATAPI.dll - ok
21:33:24.0376 0x2c98 [ B7427C87D60FD2E4F2FA194611F91C4A, 400B60FA4E51C9EB016DB2061BCE77BFE3AF602BDA9F90F4FC1E307C30C35B30 ] C:\Windows\System32\winlogonext.dll
21:33:24.0376 0x2c98 C:\Windows\System32\winlogonext.dll - ok
21:33:24.0376 0x2c98 [ F3E8052B4C251A3950F9964ABA0F595E, D0349BB399B7C6B8F137C87D6CB53AD832180CD44A9B7F2EF3787F5CB3AE1B5D ] C:\Windows\System32\upshared.dll
21:33:24.0376 0x2c98 C:\Windows\System32\upshared.dll - ok
21:33:24.0376 0x2c98 [ 6BFBFBC03832B6E9299CD338386AC027, 896CBEC8D8B2354DD8FC49F02F8E27E425AEDAFA44CE19E2A1045D4587468AC7 ] C:\Windows\System32\desk.cpl
21:33:24.0376 0x2c98 C:\Windows\System32\desk.cpl - ok
21:33:24.0376 0x2c98 [ 0E3D2952FD05F7AC6D8AC09FDD5EDA79, 65F09B93A7D42B5C0026A4B843F205AF96F95DFB826632D527E6982F54CF3D1F ] C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
21:33:24.0376 0x2c98 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll - ok
21:33:24.0391 0x2c98 [ 39702ECBA557CCC0B41B2E084EC827EC, 1D591419CD3079E000889AA09D67FE3AFE4DD7391A89B675B7323B66A9F10F9A ] C:\Windows\System32\webplatstorageserver.dll
21:33:24.0391 0x2c98 C:\Windows\System32\webplatstorageserver.dll - ok
21:33:24.0391 0x2c98 [ 6E1B815FCC9C2B229FAA4AC726618D18, 9C584A782435B3AFAF8A9365C865143EC5744EF8603836C74B040B7317BBD202 ] C:\Windows\System32\XamlTileRender.dll
21:33:24.0391 0x2c98 C:\Windows\System32\XamlTileRender.dll - ok
21:33:24.0391 0x2c98 [ 2973AF8515EFFD0A3BFC7A43B03B3FCC, D0E4581210A22135CE5DEB47D9DF4D636A94B3813E0649AAB84822C9F08AF2A0 ] C:\Program Files\AVAST Software\Avast\setup\gcapi_15614047174272.dll
21:33:24.0391 0x2c98 C:\Program Files\AVAST Software\Avast\setup\gcapi_15614047174272.dll - ok
21:33:24.0391 0x2c98 [ 3C0F5A781AAB2DC76202C5087A1A4E98, 8766A59DDD474C08C64F7830F9C96A5E0B85DAF95FEF7039C00842F056A7FEBD ] C:\Windows\System32\elslad.dll
21:33:24.0391 0x2c98 C:\Windows\System32\elslad.dll - ok
21:33:24.0391 0x2c98 [ ADEDAF270508208B9511A75F1950EA22, 43E8E46DC7D803CCB54DF00708DC5CD1E6310D722F301CFD3DE6506C507D5B92 ] C:\Windows\System32\WindowsCodecsExt.dll
21:33:24.0391 0x2c98 C:\Windows\System32\WindowsCodecsExt.dll - ok
21:33:24.0391 0x2c98 [ 165B34AB1ACF4DF76428E48FD9F2B7FA, 44DDE60665B8E8EFA7C65D1C060C42E9DA604A01BBF3088152EC6EFA24013349 ] C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
21:33:24.0391 0x2c98 C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe - ok
21:33:24.0407 0x2c98 [ 89F3863A689E5990CEC73CBB9BFFA8AF, C8E6C1376DD6BBD061F21E693605C92722059C92DC789E70E8B7C9E8EEF4E924 ] C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll
21:33:24.0407 0x2c98 C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll - ok
21:33:24.0407 0x2c98 [ 18CB1CDF0666FF08918BADE605087CEC, 4CB149DB4441B25F3C837B97477BF5A81C51735D76B123D396AA214FED100522 ] C:\Windows\System32\SecurityHealthHost.exe
21:33:24.0407 0x2c98 C:\Windows\System32\SecurityHealthHost.exe - ok
21:33:24.0407 0x2c98 [ DF79E3DF90328B84FDB4036AD802C893, CBEE21C3724F020367D346A7EA9737C1E6DEC07A605276839D0EE76A25884586 ] C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUITelemetry.dll
21:33:24.0407 0x2c98 C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUITelemetry.dll - ok
21:33:24.0407 0x2c98 [ CD9A3AD51B498E81D178E07962827B75, 8B068EEBAA2FE8FFCD0A88091908BF672DABD6A2B3AB5422EB8DCF7853C7579A ] C:\Windows\System32\SecurityHealthAgent.dll
21:33:24.0407 0x2c98 C:\Windows\System32\SecurityHealthAgent.dll - ok
21:33:24.0407 0x2c98 [ FA5F350F819FE8D65111F26D4AAAAE3E, C0BD061E12224387B9105F40E14EA58890A347FE59E73DE4C788FA9CC37A01D4 ] C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll
21:33:24.0407 0x2c98 C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll - ok
21:33:24.0407 0x2c98 [ A850F334E2D47D383F225282309B6CCE, C60BF14133F6D34DADA50AB3DF736359AEB2AEB394E4A093B78F3A074EA12469 ] C:\Windows\System32\UIRibbon.dll
21:33:24.0407 0x2c98 C:\Windows\System32\UIRibbon.dll - ok
21:33:24.0407 0x2c98 [ 0D4B38D3CCAEF8CDCFAE0ED7EE48E65F, 65DBD573E3DA45198E9B1F21C8405343960800B4933646F5F4BA5D8FB9EA5AE3 ] C:\Windows\System32\networkexplorer.dll
21:33:24.0407 0x2c98 C:\Windows\System32\networkexplorer.dll - ok
21:33:24.0423 0x2c98 [ FF1EFF0E0F1F2EABE1199AE71194E560, 2D823C8B6076E932D696E8CB8A2C5C5DF6D392526CBA8E39B64C43635F683009 ] C:\Users\Slavicek\Pictures\Adamko\Trash\tdsskiller.exe
21:33:24.0423 0x2c98 C:\Users\Slavicek\Pictures\Adamko\Trash\tdsskiller.exe - ok
21:33:24.0423 0x2c98 [ 941975936444DE3829B2E3AFFE5F0881, 3D30876A58624CC6BC367179179898D89AA75F6D1DE261CBDA0B50E6F28C78EB ] C:\Windows\System32\sqmapi.dll
21:33:24.0423 0x2c98 C:\Windows\System32\sqmapi.dll - ok
21:33:24.0423 0x2c98 [ A290E9849A0C0948136A785F5096F48B, FB3269CDA55197891F2FE9971D4C933D3C8BB4CCBE8EA6676F4CA3288B5A7EAD ] C:\Users\Slavicek\AppData\Local\Temp\{3725FF26-9FF2-4A70-B617-94BB5A1B5025}\{DB123677-C6F8-49FB-89C4-19BDC1ADC3F2}.exe
21:33:24.0423 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{3725FF26-9FF2-4A70-B617-94BB5A1B5025}\{DB123677-C6F8-49FB-89C4-19BDC1ADC3F2}.exe - ok
21:33:24.0423 0x2c98 [ E027A6E99EF709AFD195FD6329224C47, B31B85BF369DC36363B0E527AE3B8E95B33699D17D09C6313C43E7373A3E6874 ] C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{78C1889E-48F8-4A41-A6E9-FEF359501A6B}.tmp
21:33:24.0423 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{78C1889E-48F8-4A41-A6E9-FEF359501A6B}.tmp - ok
21:33:24.0423 0x2c98 [ AB67816718E5C65CC326BE56AC0B9E73, D6F19026CB87C9BB5521D668B13347B68F297FCE34C5F1BFE530574B16ADB2D5 ] C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{F1087ECC-B420-4AE6-B173-D318B7128E6B}.tmp
21:33:24.0423 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{F1087ECC-B420-4AE6-B173-D318B7128E6B}.tmp - ok
21:33:24.0423 0x2c98 [ FA17EC109029B01C1DC956FF3BD6FC77, D657D71001E5ECDA4BBBC4C35B2B17BF7FC87E90C965A115D59670A3EDD5F8CD ] C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{AA0920E2-0386-4200-8B12-5F343A1845C3}.tmp
21:33:24.0423 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{AA0920E2-0386-4200-8B12-5F343A1845C3}.tmp - ok
21:33:24.0438 0x2c98 [ C74D46C1F542F5FEB9B7E1A8EC04986D, FA83733A81BA8D96EDFD15C1914D5A6056D73C61540C8747E9AE1343DA47A63D ] C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{543E3824-A07C-42C8-9644-3DA0505904B3}.tmp
21:33:24.0438 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{543E3824-A07C-42C8-9644-3DA0505904B3}.tmp - ok
21:33:24.0438 0x2c98 [ DC6DB08D85337C9675F94B01043279AE, B09E491113F9E95F4EE00BB51BB21D4967BAC333C0DCD030A10AEA9B9E52032B ] C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{D41E2DB2-9D05-449D-B9E3-B7BB9FAB7436}.tmp
21:33:24.0438 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{D41E2DB2-9D05-449D-B9E3-B7BB9FAB7436}.tmp - ok
21:33:24.0438 0x2c98 [ 517ECD823EB9A03368294C6C33A695D0, 7BA4EF2C5E9D15A4EE8ACC169CA233010DF8D1BC7088665E06C9E71BBA0CD40C ] C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{0E61E0C1-43D0-4EEB-AA23-2EDE89587C8C}.tmp
21:33:24.0438 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{0E61E0C1-43D0-4EEB-AA23-2EDE89587C8C}.tmp - ok
21:33:24.0438 0x2c98 [ 3428F170E1953B4C4EA10A5F58B55908, B554E04021472C3C2BBDED2B4BBB4F6648932356F8DA409A2A7F6AC02E54B306 ] C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{C5096F36-359E-4285-B77E-9EFFCC21EF45}.tmp
21:33:24.0438 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{C5096F36-359E-4285-B77E-9EFFCC21EF45}.tmp - ok
21:33:24.0438 0x2c98 [ 96D681B7DE0BA6BFA1DC55915003CD05, 26CDA6A9A67F20A494F0EF3577D14F5DDA1F0D4428891DBD271A757833285939 ] C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{A323BFB0-2CC0-41FF-AC82-9960EC3FA9DF}.tmp
21:33:24.0438 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{A323BFB0-2CC0-41FF-AC82-9960EC3FA9DF}.tmp - ok
21:33:24.0438 0x2c98 [ 85D8D497E3CFCD66607DAD332378DE8B, FEB2FF9315B41A7D13C9F3EB4CFDD612C951CA02330BC5A9129881E148769C7F ] C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{46658A1F-6FB5-4CE3-9F29-4F6E85407A19}.tmp
21:33:24.0438 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{46658A1F-6FB5-4CE3-9F29-4F6E85407A19}.tmp - ok
21:33:24.0454 0x2c98 [ CD0DAF878147B723108C428370FF0355, A5C3D8A516FD0A15DAAB442DA424E996112C355239B985413EAA4DC1FAB76303 ] C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{BDAB8AA2-D2E5-41BB-8FB8-7C124181C8AA}.tmp
21:33:24.0454 0x2c98 C:\Users\Slavicek\AppData\Local\Temp\{33436375-81AF-4CE4-A92E-6CFB20787C37}\{BDAB8AA2-D2E5-41BB-8FB8-7C124181C8AA}.tmp - ok
21:33:24.0454 0x2c98 ================ Scan generic autorun ======================
21:33:24.0454 0x2c98 SecurityHealth - ok
21:33:24.0454 0x2c98 Logitech Download Assistant - ok
21:33:24.0469 0x2c98 [ C825AE4DE7600AAF0372A501AABA5CEC, 0739598DD4B8ABC01AD29641EC0926F64584D755C02339B25DB0525AE21E591E ] C:\Program Files\AVAST Software\Avast\AvLaunch.exe
21:33:24.0469 0x2c98 AvastUI.exe - ok
21:33:24.0501 0x2c98 [ FE84F125C65B81039ACC9EA54B887EA8, 546DBCC7A073099096A027EFBA2598B8242476A0EE20D7026DDEE2251B0EDF57 ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
21:33:24.0532 0x2c98 Wondershare Helper Compact.exe - ok
21:33:24.0532 0x2c98 [ 8790F03F7F652FCE43E39AA6B641CEA8, C8F60AD22F292F908636A9678B8C4B3ABDB4603E56AE97099914B7EB045B167B ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
21:33:24.0548 0x2c98 SunJavaUpdateSched - ok
21:33:24.0579 0x2c98 OneDriveSetup - ok
21:33:24.0579 0x2c98 WAB Migrate - ok
21:33:24.0579 0x2c98 OneDriveSetup - ok
21:33:24.0579 0x2c98 WAB Migrate - ok
21:33:24.0610 0x2c98 [ DB9994291123A3EC17F76106FF72E603, 9F361178E0A332532434D62B25460F09C84E047643F159EA8BE7D1A0715184EE ] C:\Users\Slavicek\AppData\Local\FluxSoftware\Flux\flux.exe
21:33:24.0626 0x2c98 f.lux - ok
21:33:24.0626 0x2c98 Waiting for KSN requests completion. In queue: 4
21:33:25.0735 0x2c98 AV detected via SS2: Windows Defender, windowsdefender:// ( ), 0x61100 ( enabled : updated )
21:33:25.0751 0x2c98 Win FW state via NFP2: enabled ( trusted )
21:33:25.0876 0x2c98 ============================================================
21:33:25.0876 0x2c98 Scan finished
21:33:25.0876 0x2c98 ============================================================
21:33:25.0876 0x2c88 Detected object count: 0
21:33:25.0876 0x2c88 Actual detected object count: 0
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Botnet - zjištěna infikace malwarem

#13 Příspěvek od Conder »

:arrow: Urob v Malwarebytes uplny sken
  • Stiahni a nainstaluj Malwarebytes (MB/MBAM): https://www.malwarebytes.com/mwb-download/thankyou/
  • Ignoruj skusobnu trial verziu
  • Otvor Malwarebytes a vlavo klikni na "Skenovat"
  • Klikni na "Vlastne skenovanie" a potom na "Nakonfigurovat skenovanie" (Nastavit sken)
  • Vpravo oznac vsetky disky v PC a vlavo oznac moznost "Vyhladavat rootkity"
  • Klikni na Skenovat teraz a pockaj na dokoncenie
  • Po dokonceni klikni na Exportovat zhrnutie -> Skopirovat do schranky
  • Skopirovany log vloz do dalsej odpovede
  • Obrazkovy navod (bohuzial pre starsiu verziu): https://forum.viry.cz/viewtopic.php?f=29&t=144868
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
durod
Návštěvník
Návštěvník
Příspěvky: 71
Registrován: 10 črc 2008 11:18

Re: Botnet - zjištěna infikace malwarem

#14 Příspěvek od durod »

Mezicasem jsem smazal avast a naistaloval Bitdefender(podle googlu, udajne jeden z lepsich free antiviru)

Udelal jsem scan pomoci malwarebytes, zde report. Je zatim bez rootkit detection, protoze jsem to omylel neoznacil. Prave ted delam s rotkit, ale trva to dost dlohou, tak zatim takhle
Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 25.06.19
Čas skenování: 5:31
Logovací soubor: b029046a-96f9-11e9-8eb6-bcaec5b6e7f2.json

-Informace o softwaru-
Verze: 3.7.1.2839
Verze komponentů: 1.0.586
Aktualizovat verzi balíku komponent: 1.0.11232
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 18362.175)
CPU: x64
Systém souborů: NTFS
Uživatel: DESKTOP-KQ46S14\Slavicek

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 529771
Zjištěné hrozby: 44
Hrozby umístěné do karantény: 0
Uplynulý čas: 5 min, 41 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 25.06.19
Čas skenování: 5:31
Logovací soubor: b029046a-96f9-11e9-8eb6-bcaec5b6e7f2.json

-Informace o softwaru-
Verze: 3.7.1.2839
Verze komponentů: 1.0.586
Aktualizovat verzi balíku komponent: 1.0.11232
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 18362.175)
CPU: x64
Systém souborů: NTFS
Uživatel: DESKTOP-KQ46S14\Slavicek

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 529771
Zjištěné hrozby: 44
Hrozby umístěné do karantény: 0
Uplynulý čas: 5 min, 41 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 14
Trojan.Clicker, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\csrss, Žádná uživatelská akce, [3197], [431499],1.0.11232
Trojan.Clicker, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B5830178-3CE5-43C9-9826-3ADE9C86535D}, Žádná uživatelská akce, [3197], [431499],1.0.11232
Trojan.Clicker, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{B5830178-3CE5-43C9-9826-3ADE9C86535D}, Žádná uživatelská akce, [3197], [431499],1.0.11232
Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\FLASHSERVIS, Žádná uživatelská akce, [436], [697281],1.0.11232
Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B97DF53D-9DB4-4306-9F94-8F527FB0C6AB}, Žádná uživatelská akce, [436], [697281],1.0.11232
Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{B97DF53D-9DB4-4306-9F94-8F527FB0C6AB}, Žádná uživatelská akce, [436], [697281],1.0.11232
Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{D718A7C8-07E9-4F89-94DD-8520AEFB9779}, Žádná uživatelská akce, [436], [697271],1.0.11232
Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{D718A7C8-07E9-4F89-94DD-8520AEFB9779}, Žádná uživatelská akce, [436], [697271],1.0.11232
Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\7ZipUnis, Žádná uživatelská akce, [436], [697271],1.0.11232
PUP.Optional.1Bbot, HKU\S-1-5-21-79263149-2179494062-2174528413-1001\SOFTWARE\1BTC Software, Žádná uživatelská akce, [3476], [584329],1.0.11232
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\bestavicampaign563, Žádná uživatelská akce, [467], [584322],1.0.11232
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\campaign9961, Žádná uživatelská akce, [467], [518478],1.0.11232
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\multitimercampaign84170, Žádná uživatelská akce, [467], [518476],1.0.11232
Trojan.MalPack, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\RubusFund 2.0, Žádná uživatelská akce, [547], [631644],1.0.11232

Hodnota v registru: 10
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-79263149-2179494062-2174528413-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|DEFAULT, Žádná uživatelská akce, [832], [259988],1.0.11232
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, Žádná uživatelská akce, [832], [-1],0.0.0
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, Žádná uživatelská akce, [832], [-1],0.0.0
Trojan.Downloader.E, HKU\S-1-5-21-79263149-2179494062-2174528413-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\STARTUPAPPROVED\RUN|7304226, Žádná uživatelská akce, [3753], [451404],1.0.11232
Trojan.Downloader.E, HKU\S-1-5-21-79263149-2179494062-2174528413-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\STARTUPAPPROVED\RUN|1796984, Žádná uživatelská akce, [3753], [451404],1.0.11232
Trojan.Clicker, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B5830178-3CE5-43C9-9826-3ADE9C86535D}|PATH, Žádná uživatelská akce, [3197], [431497],1.0.11232
Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B97DF53D-9DB4-4306-9F94-8F527FB0C6AB}|PATH, Žádná uživatelská akce, [436], [697278],1.0.11232
Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{D718A7C8-07E9-4F89-94DD-8520AEFB9779}|PATH, Žádná uživatelská akce, [436], [697272],1.0.11232
PUP.Optional.CloudNet, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREWALLRULES|{2F57C7F8-CE95-4BB7-8709-4C21208B2284}, Žádná uživatelská akce, [6063], [446028],1.0.11232
Trojan.BitCoinMiner, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREWALLRULES|{6D1C8152-5782-46DA-B579-91963A579134}, Žádná uživatelská akce, [623], [446017],1.0.11232

Data registrů: 5
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-79263149-2179494062-2174528413-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCH PAGE, Žádná uživatelská akce, [832], [293485],1.0.11232
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-79263149-2179494062-2174528413-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|START PAGE, Žádná uživatelská akce, [832], [293485],1.0.11232
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-79263149-2179494062-2174528413-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCH BAR, Žádná uživatelská akce, [832], [293485],1.0.11232
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-79263149-2179494062-2174528413-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCHASSISTANT, Žádná uživatelská akce, [832], [293485],1.0.11232
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-79263149-2179494062-2174528413-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|DEFAULT_SEARCH_URL, Žádná uživatelská akce, [832], [293486],1.0.11232

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 1
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\PGE7KV0ZBR, Žádná uživatelská akce, [3698], [357599],1.0.11232

Soubor: 14
Adware.Linkury.Generic, C:\USERS\SLAVICEK\APPDATA\LOCAL\MD.XML, Žádná uživatelská akce, [3737], [404866],1.0.11232
Adware.Linkury.Generic, C:\USERS\SLAVICEK\APPDATA\LOCAL\HatDonlax.tst, Žádná uživatelská akce, [3737], [404871],1.0.11232
Adware.Linkury.Generic, C:\USERS\SLAVICEK\APPDATA\LOCAL\UNINSTALL_TEMP.ICO, Žádná uživatelská akce, [3737], [404862],1.0.11232
Adware.Linkury.Generic, C:\USERS\SLAVICEK\APPDATA\LOCAL\Vivalatlax.tst, Žádná uživatelská akce, [3737], [404871],1.0.11232
Trojan.Clicker, C:\WINDOWS\SYSTEM32\TASKS\CSRSS, Žádná uživatelská akce, [3197], [431499],1.0.11232
Trojan.Agent, C:\WINDOWS\SYSTEM32\TASKS\FLASHSERVIS, Žádná uživatelská akce, [436], [697281],1.0.11232
Trojan.Agent, C:\WINDOWS\SYSTEM32\TASKS\7ZIPUNIS, Žádná uživatelská akce, [436], [697271],1.0.11232
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\PGE7KV0ZBR\CAST.CONFIG, Žádná uživatelská akce, [3698], [357599],1.0.11232
Adware.Tuto4PC.Generic, C:\Program Files\PGE7KV0ZBR\PGE7KV0ZB.exe.config, Žádná uživatelská akce, [3698], [357599],1.0.11232
Adware.Tuto4PC.Generic, C:\Program Files\PGE7KV0ZBR\uninstaller.exe.config, Žádná uživatelská akce, [3698], [357599],1.0.11232
Adware.Linkury.Generic, C:\USERS\SLAVICEK\APPDATA\LOCAL\CONFIG.XML, Žádná uživatelská akce, [3737], [404859],1.0.11232
PUP.Optional.Spigot, C:\USERS\SLAVICEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Žádná uživatelská akce, [162], [454814],1.0.11232
PUP.Optional.Linkury.Generic, C:\USERS\SLAVICEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Žádná uživatelská akce, [212], [454805],1.0.11232
PUP.Optional.SonicSearch, C:\USERS\SLAVICEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Žádná uživatelská akce, [386], [519968],1.0.11232

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)
Nahoru
durod
Návštěvník
Návštěvník
Příspěvky: 71
Registrován: 10 črc 2008 11:18

Re: Botnet - zjištěna infikace malwarem

#15 Příspěvek od durod »

Skenovani na rootkity negativni, takze predchozi log mozno pokladat za finalni...
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“