Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Virus problem on laptop


  • Please log in to reply
16 replies to this topic

#1 ddt904

ddt904

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:01:03 PM

Posted 26 February 2013 - 12:04 AM

 Hi I have a work lap top that has gotten a virus and I need to keep the files on it but absolutely have to get this virus out of here. Please help. I am running windows 7 on a toshiba L655. Thanks in advance



BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:03 PM

Posted 26 February 2013 - 01:34 AM

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters




  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now




  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue




  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.



  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.



  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the   button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results


 



#3 ddt904

ddt904
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:01:03 PM

Posted 26 February 2013 - 11:06 PM

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-02-26 22:57:44
-----------------------------
22:57:44.227    OS Version: Windows x64 6.1.7600
22:57:44.227    Number of processors: 2 586 0x2505
22:57:44.227    ComputerName: TOSHIBA  UserName: Tosh
22:57:45.054    Initialize success
22:57:55.566    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
22:57:55.566    Disk 0 Vendor: Hitachi_ PB3O Size: 305245MB BusType: 3
22:57:55.582    Disk 0 MBR read successfully
22:57:55.582    Disk 0 MBR scan
22:57:55.597    Disk 0 Windows VISTA default MBR code
22:57:55.597    Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS         1500 MB offset 2048
22:57:55.629    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS       293159 MB offset 3074048
22:57:55.660    Disk 0 Partition 3 00     17 Hidd HPFS/NTFS NTFS        10585 MB offset 603463680
22:57:55.691    Disk 0 scanning C:\windows\system32\drivers
22:58:01.182    Service scanning
22:58:18.139    Modules scanning
22:58:18.139    Disk 0 trace - called modules:
22:58:18.186    ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
22:58:18.186    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800333a060]
22:58:18.202    3 CLASSPNP.SYS[fffff88001b4c43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80031c5050]
22:58:18.217    Scan finished successfully
22:59:42.926    Disk 0 MBR has been saved successfully to "C:\Users\Tosh\Desktop\MBR.dat"
22:59:42.926    The log file has been saved successfully to "C:\Users\Tosh\Desktop\aswMBR.txt"


 



#4 ddt904

ddt904
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:01:03 PM

Posted 26 February 2013 - 11:31 PM

TDS killer log is too long



#5 ddt904

ddt904
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:01:03 PM

Posted 26 February 2013 - 11:42 PM

23:00:01.0507 4740  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
23:00:02.0146 4740  ============================================================
23:00:02.0146 4740  Current date / time: 2013/02/26 23:00:02.0146
23:00:02.0146 4740  SystemInfo:
23:00:02.0146 4740 
23:00:02.0146 4740  OS Version: 6.1.7600 ServicePack: 0.0
23:00:02.0146 4740  Product type: Workstation
23:00:02.0146 4740  ComputerName: TOSHIBA
23:00:02.0146 4740  UserName: Tosh
23:00:02.0146 4740  Windows directory: C:\windows
23:00:02.0146 4740  System windows directory: C:\windows
23:00:02.0146 4740  Running under WOW64
23:00:02.0146 4740  Processor architecture: Intel x64
23:00:02.0146 4740  Number of processors: 2
23:00:02.0146 4740  Page size: 0x1000
23:00:02.0146 4740  Boot type: Normal boot
23:00:02.0146 4740  ============================================================
23:00:02.0178 4740  BG loaded
23:00:02.0661 4740  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:00:02.0661 4740  ============================================================
23:00:02.0661 4740  \Device\Harddisk0\DR0:
23:00:02.0661 4740  MBR partitions:
23:00:02.0661 4740  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x23C93800
23:00:02.0661 4740  ============================================================
23:00:02.0692 4740  C: <-> \Device\Harddisk0\DR0\Partition1
23:00:02.0692 4740  ============================================================
23:00:02.0692 4740  Initialize success
23:00:02.0692 4740  ============================================================
23:00:13.0004 4676  ============================================================
23:00:13.0004 4676  Scan started
23:00:13.0004 4676  Mode: Manual;
23:00:13.0004 4676  ============================================================
23:00:13.0160 4676  ================ Scan system memory ========================
23:00:13.0160 4676  System memory - ok
23:00:13.0160 4676  ================ Scan services =============================
23:00:13.0394 4676  [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci        C:\windows\system32\DRIVERS\1394ohci.sys
23:00:13.0410 4676  1394ohci - ok
23:00:13.0581 4676  [ B33CF4DE909A5B30F526D82053A63C8E ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
23:00:13.0597 4676  ABBYY.Licensing.FineReader.Sprint.9.0 - ok
23:00:13.0659 4676  [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI            C:\windows\system32\DRIVERS\ACPI.sys
23:00:13.0659 4676  ACPI - ok
23:00:13.0722 4676  [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi         C:\windows\system32\DRIVERS\acpipmi.sys
23:00:13.0737 4676  AcpiPmi - ok
23:00:13.0893 4676  [ 9942DC4CC265CDA00486504444EF521D ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:00:13.0909 4676  AdobeFlashPlayerUpdateSvc - ok
23:00:14.0018 4676  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\windows\system32\DRIVERS\adp94xx.sys
23:00:14.0018 4676  adp94xx - ok
23:00:14.0096 4676  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\windows\system32\DRIVERS\adpahci.sys
23:00:14.0096 4676  adpahci - ok
23:00:14.0127 4676  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\windows\system32\DRIVERS\adpu320.sys
23:00:14.0127 4676  adpu320 - ok
23:00:14.0174 4676  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
23:00:14.0174 4676  AeLookupSvc - ok
23:00:14.0252 4676  [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD             C:\windows\system32\drivers\afd.sys
23:00:14.0252 4676  AFD - ok
23:00:14.0330 4676  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\windows\system32\DRIVERS\agp440.sys
23:00:14.0330 4676  agp440 - ok
23:00:14.0392 4676  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\windows\System32\alg.exe
23:00:14.0392 4676  ALG - ok
23:00:14.0424 4676  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\windows\system32\DRIVERS\aliide.sys
23:00:14.0424 4676  aliide - ok
23:00:14.0439 4676  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\windows\system32\DRIVERS\amdide.sys
23:00:14.0439 4676  amdide - ok
23:00:14.0470 4676  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\windows\system32\DRIVERS\amdk8.sys
23:00:14.0470 4676  AmdK8 - ok
23:00:14.0486 4676  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\windows\system32\DRIVERS\amdppm.sys
23:00:14.0486 4676  AmdPPM - ok
23:00:14.0548 4676  [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata         C:\windows\system32\drivers\amdsata.sys
23:00:14.0548 4676  amdsata - ok
23:00:14.0595 4676  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\windows\system32\DRIVERS\amdsbs.sys
23:00:14.0595 4676  amdsbs - ok
23:00:14.0626 4676  [ DB27766102C7BF7E95140A2AA81D042E ] amdxata         C:\windows\system32\drivers\amdxata.sys
23:00:14.0626 4676  amdxata - ok
23:00:14.0673 4676  [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID           C:\windows\system32\drivers\appid.sys
23:00:14.0673 4676  AppID - ok
23:00:14.0720 4676  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\windows\System32\appidsvc.dll
23:00:14.0720 4676  AppIDSvc - ok
23:00:14.0751 4676  [ D065BE66822847B7F127D1F90158376E ] Appinfo         C:\windows\System32\appinfo.dll
23:00:14.0751 4676  Appinfo - ok
23:00:14.0814 4676  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\windows\system32\DRIVERS\arc.sys
23:00:14.0814 4676  arc - ok
23:00:14.0860 4676  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\windows\system32\DRIVERS\arcsas.sys
23:00:14.0876 4676  arcsas - ok
23:00:14.0876 4676  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
23:00:14.0876 4676  AsyncMac - ok
23:00:14.0938 4676  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\windows\system32\DRIVERS\atapi.sys
23:00:14.0938 4676  atapi - ok
23:00:15.0016 4676  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
23:00:15.0016 4676  AudioEndpointBuilder - ok
23:00:15.0032 4676  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv        C:\windows\System32\Audiosrv.dll
23:00:15.0048 4676  AudioSrv - ok
23:00:15.0110 4676  [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV        C:\windows\System32\AxInstSV.dll
23:00:15.0110 4676  AxInstSV - ok
23:00:15.0188 4676  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\windows\system32\DRIVERS\bxvbda.sys
23:00:15.0188 4676  b06bdrv - ok
23:00:15.0266 4676  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
23:00:15.0266 4676  b57nd60a - ok
23:00:15.0344 4676  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\windows\System32\bdesvc.dll
23:00:15.0344 4676  BDESVC - ok
23:00:15.0375 4676  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\windows\system32\drivers\Beep.sys
23:00:15.0375 4676  Beep - ok
23:00:15.0453 4676  [ 4992C609A6315671463E30F6512BC022 ] BFE             C:\windows\System32\bfe.dll
23:00:15.0453 4676  BFE - ok
23:00:15.0547 4676  [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS            C:\windows\system32\qmgr.dll
23:00:15.0562 4676  BITS - ok
23:00:15.0625 4676  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys
23:00:15.0625 4676  blbdrive - ok
23:00:15.0734 4676  [ 19D20159708E152267E53B66677A4995 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
23:00:15.0734 4676  bowser - ok
23:00:15.0781 4676  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\windows\system32\DRIVERS\BrFiltLo.sys
23:00:15.0781 4676  BrFiltLo - ok
23:00:15.0796 4676  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\windows\system32\DRIVERS\BrFiltUp.sys
23:00:15.0796 4676  BrFiltUp - ok
23:00:15.0828 4676  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\windows\system32\DRIVERS\bridge.sys
23:00:15.0843 4676  BridgeMP - ok
23:00:15.0890 4676  [ 6B054C67AAA87843504E8E3C09102009 ] Browser         C:\windows\System32\browser.dll
23:00:15.0890 4676  Browser - ok
23:00:15.0921 4676  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\windows\System32\Drivers\Brserid.sys
23:00:15.0921 4676  Brserid - ok
23:00:15.0937 4676  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
23:00:15.0937 4676  BrSerWdm - ok
23:00:15.0952 4676  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
23:00:15.0952 4676  BrUsbMdm - ok
23:00:15.0952 4676  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
23:00:15.0952 4676  BrUsbSer - ok
23:00:15.0999 4676  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\windows\system32\DRIVERS\bthmodem.sys
23:00:15.0999 4676  BTHMODEM - ok
23:00:16.0062 4676  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\windows\system32\bthserv.dll
23:00:16.0062 4676  bthserv - ok
23:00:16.0093 4676  catchme - ok
23:00:16.0140 4676  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
23:00:16.0140 4676  cdfs - ok
23:00:16.0218 4676  [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom           C:\windows\system32\DRIVERS\cdrom.sys
23:00:16.0218 4676  cdrom - ok
23:00:16.0280 4676  [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc     C:\windows\System32\certprop.dll
23:00:16.0280 4676  CertPropSvc - ok
23:00:16.0311 4676  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\windows\system32\DRIVERS\circlass.sys
23:00:16.0311 4676  circlass - ok
23:00:16.0374 4676  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\windows\system32\CLFS.sys
23:00:16.0389 4676  CLFS - ok
23:00:16.0436 4676  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:00:16.0436 4676  clr_optimization_v2.0.50727_32 - ok
23:00:16.0483 4676  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:00:16.0483 4676  clr_optimization_v2.0.50727_64 - ok
23:00:16.0592 4676  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:00:16.0592 4676  clr_optimization_v4.0.30319_32 - ok
23:00:16.0623 4676  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:00:16.0639 4676  clr_optimization_v4.0.30319_64 - ok
23:00:16.0701 4676  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\windows\system32\DRIVERS\CmBatt.sys
23:00:16.0701 4676  CmBatt - ok
23:00:16.0732 4676  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\windows\system32\DRIVERS\cmdide.sys
23:00:16.0732 4676  cmdide - ok
23:00:16.0795 4676  [ CA7720B73446FDDEC5C69519C1174C98 ] CNG             C:\windows\system32\Drivers\cng.sys
23:00:16.0810 4676  CNG - ok
23:00:16.0888 4676  [ 25C58EE97BE0416A373E3E4F855206B5 ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys
23:00:16.0888 4676  CnxtHdAudService - ok
23:00:16.0951 4676  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\windows\system32\DRIVERS\compbatt.sys
23:00:16.0951 4676  Compbatt - ok
23:00:16.0966 4676  [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus    C:\windows\system32\DRIVERS\CompositeBus.sys
23:00:16.0966 4676  CompositeBus - ok
23:00:16.0998 4676  COMSysApp - ok
23:00:17.0044 4676  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\windows\system32\DRIVERS\crcdisk.sys
23:00:17.0044 4676  crcdisk - ok
23:00:17.0122 4676  [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc        C:\windows\system32\cryptsvc.dll
23:00:17.0122 4676  CryptSvc - ok
23:00:17.0185 4676  [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch      C:\windows\system32\rpcss.dll
23:00:17.0185 4676  DcomLaunch - ok
23:00:17.0263 4676  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\windows\System32\defragsvc.dll
23:00:17.0263 4676  defragsvc - ok
23:00:17.0325 4676  [ 9C253CE7311CA60FC11C774692A13208 ] DfsC            C:\windows\system32\Drivers\dfsc.sys
23:00:17.0325 4676  DfsC - ok
23:00:17.0388 4676  [ CE3B9562D997F69B330D181A8875960F ] Dhcp            C:\windows\system32\dhcpcore.dll
23:00:17.0388 4676  Dhcp - ok
23:00:17.0434 4676  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\windows\system32\drivers\discache.sys
23:00:17.0434 4676  discache - ok
23:00:17.0497 4676  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\windows\system32\DRIVERS\disk.sys
23:00:17.0497 4676  Disk - ok
23:00:17.0528 4676  [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache        C:\windows\System32\dnsrslvr.dll
23:00:17.0528 4676  Dnscache - ok
23:00:17.0590 4676  [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc         C:\windows\System32\dot3svc.dll
23:00:17.0606 4676  dot3svc - ok
23:00:17.0637 4676  [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS             C:\windows\system32\dps.dll
23:00:17.0637 4676  DPS - ok
23:00:17.0715 4676  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
23:00:17.0715 4676  drmkaud - ok
23:00:17.0778 4676  [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
23:00:17.0778 4676  DXGKrnl - ok
23:00:17.0856 4676  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\windows\System32\eapsvc.dll
23:00:17.0856 4676  EapHost - ok
23:00:17.0965 4676  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\windows\system32\DRIVERS\evbda.sys
23:00:17.0996 4676  ebdrv - ok
23:00:18.0027 4676  [ 156F6159457D0AA7E59B62681B56EB90 ] EFS             C:\windows\System32\lsass.exe
23:00:18.0027 4676  EFS - ok
23:00:18.0090 4676  [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr         C:\windows\ehome\ehRecvr.exe
23:00:18.0090 4676  ehRecvr - ok
23:00:18.0121 4676  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\windows\ehome\ehsched.exe
23:00:18.0121 4676  ehSched - ok
23:00:18.0214 4676  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\windows\system32\DRIVERS\elxstor.sys
23:00:18.0214 4676  elxstor - ok
23:00:18.0230 4676  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\windows\system32\DRIVERS\errdev.sys
23:00:18.0230 4676  ErrDev - ok
23:00:18.0292 4676  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\windows\system32\es.dll
23:00:18.0292 4676  EventSystem - ok
23:00:18.0386 4676  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\windows\system32\drivers\exfat.sys
23:00:18.0386 4676  exfat - ok
23:00:18.0402 4676  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\windows\system32\drivers\fastfat.sys
23:00:18.0402 4676  fastfat - ok
23:00:18.0464 4676  [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax             C:\windows\system32\fxssvc.exe
23:00:18.0480 4676  Fax - ok
23:00:18.0495 4676  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\windows\system32\DRIVERS\fdc.sys
23:00:18.0495 4676  fdc - ok
23:00:18.0558 4676  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\windows\system32\fdPHost.dll
23:00:18.0558 4676  fdPHost - ok
23:00:18.0604 4676  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\windows\system32\fdrespub.dll
23:00:18.0604 4676  FDResPub - ok
23:00:18.0651 4676  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
23:00:18.0651 4676  FileInfo - ok
23:00:18.0667 4676  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
23:00:18.0667 4676  Filetrace - ok
23:00:18.0682 4676  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\windows\system32\DRIVERS\flpydisk.sys
23:00:18.0682 4676  flpydisk - ok
23:00:18.0698 4676  [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
23:00:18.0714 4676  FltMgr - ok
23:00:18.0760 4676  [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache       C:\windows\system32\FntCache.dll
23:00:18.0776 4676  FontCache - ok
23:00:18.0823 4676  [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:00:18.0838 4676  FontCache3.0.0.0 - ok
23:00:18.0854 4676  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
23:00:18.0854 4676  FsDepends - ok
23:00:18.0932 4676  [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
23:00:18.0932 4676  Fs_Rec - ok
23:00:19.0010 4676  [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
23:00:19.0010 4676  fvevol - ok
23:00:19.0072 4676  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\windows\system32\DRIVERS\gagp30kx.sys
23:00:19.0072 4676  gagp30kx - ok
23:00:19.0119 4676  [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc           C:\windows\System32\gpsvc.dll
23:00:19.0135 4676  gpsvc - ok
23:00:19.0228 4676  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:00:19.0244 4676  gupdate - ok
23:00:19.0260 4676  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:00:19.0260 4676  gupdatem - ok
23:00:19.0306 4676  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
23:00:19.0306 4676  hcw85cir - ok
23:00:19.0384 4676  [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
23:00:19.0384 4676  HdAudAddService - ok
23:00:19.0447 4676  [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus        C:\windows\system32\DRIVERS\HDAudBus.sys
23:00:19.0447 4676  HDAudBus - ok
23:00:19.0494 4676  [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64         C:\windows\system32\DRIVERS\HECIx64.sys
23:00:19.0509 4676  HECIx64 - ok
23:00:19.0509 4676  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\windows\system32\DRIVERS\HidBatt.sys
23:00:19.0509 4676  HidBatt - ok
23:00:19.0525 4676  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\windows\system32\DRIVERS\hidbth.sys
23:00:19.0525 4676  HidBth - ok
23:00:19.0587 4676  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\windows\system32\DRIVERS\hidir.sys
23:00:19.0587 4676  HidIr - ok
23:00:19.0618 4676  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\windows\System32\hidserv.dll
23:00:19.0618 4676  hidserv - ok
23:00:19.0650 4676  [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys
23:00:19.0650 4676  HidUsb - ok
23:00:19.0728 4676  [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc          C:\windows\system32\kmsvc.dll
23:00:19.0728 4676  hkmsvc - ok
23:00:19.0759 4676  [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\windows\system32\ListSvc.dll
23:00:19.0774 4676  HomeGroupListener - ok
23:00:19.0790 4676  [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\windows\system32\provsvc.dll
23:00:19.0806 4676  HomeGroupProvider - ok
23:00:19.0837 4676  [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD          C:\windows\system32\DRIVERS\HpSAMD.sys
23:00:19.0837 4676  HpSAMD - ok
23:00:19.0899 4676  [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP            C:\windows\system32\drivers\HTTP.sys
23:00:19.0915 4676  HTTP - ok
23:00:19.0977 4676  [ F17766A19145F111856378DF337A5D79 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
23:00:19.0977 4676  hwpolicy - ok
23:00:20.0040 4676  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\windows\system32\DRIVERS\i8042prt.sys
23:00:20.0040 4676  i8042prt - ok
23:00:20.0133 4676  [ 5E60DD5F090AB4A563C7204C289C4650 ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys
23:00:20.0133 4676  iaStor - ok
23:00:20.0196 4676  [ B75E45C564E944A2657167D197AB29DA ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
23:00:20.0211 4676  iaStorV - ok
23:00:20.0305 4676  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
23:00:20.0305 4676  IDriverT - ok
23:00:20.0367 4676  [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:00:20.0383 4676  idsvc - ok
23:00:20.0679 4676  [ 1BE8D9CA4F2363B8E8015621878E0043 ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
23:00:20.0929 4676  igfx - ok
23:00:20.0991 4676  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\windows\system32\DRIVERS\iirsp.sys
23:00:20.0991 4676  iirsp - ok
23:00:21.0038 4676  [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT          C:\windows\System32\ikeext.dll
23:00:21.0054 4676  IKEEXT - ok
23:00:21.0132 4676  [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd           C:\windows\system32\DRIVERS\Impcd.sys
23:00:21.0132 4676  Impcd - ok
23:00:21.0163 4676  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\windows\system32\DRIVERS\intelide.sys
23:00:21.0163 4676  intelide - ok
23:00:21.0225 4676  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
23:00:21.0241 4676  intelppm - ok
23:00:21.0288 4676  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\windows\system32\ipbusenum.dll
23:00:21.0288 4676  IPBusEnum - ok
23:00:21.0334 4676  [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
23:00:21.0334 4676  IpFilterDriver - ok
23:00:21.0397 4676  [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
23:00:21.0412 4676  iphlpsvc - ok
23:00:21.0412 4676  [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV         C:\windows\system32\DRIVERS\IPMIDrv.sys
23:00:21.0428 4676  IPMIDRV - ok
23:00:21.0444 4676  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\windows\system32\drivers\ipnat.sys
23:00:21.0444 4676  IPNAT - ok
23:00:21.0475 4676  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\windows\system32\drivers\irenum.sys
23:00:21.0490 4676  IRENUM - ok
23:00:21.0537 4676  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\windows\system32\DRIVERS\isapnp.sys
23:00:21.0553 4676  isapnp - ok
23:00:21.0584 4676  [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt        C:\windows\system32\DRIVERS\msiscsi.sys
23:00:21.0600 4676  iScsiPrt - ok
23:00:21.0646 4676  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
23:00:21.0646 4676  kbdclass - ok
23:00:21.0646 4676  [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid          C:\windows\system32\DRIVERS\kbdhid.sys
23:00:21.0646 4676  kbdhid - ok
23:00:21.0693 4676  [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso          C:\windows\system32\lsass.exe
23:00:21.0693 4676  KeyIso - ok
23:00:21.0756 4676  [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
23:00:21.0756 4676  KSecDD - ok
23:00:21.0802 4676  [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
23:00:21.0802 4676  KSecPkg - ok
23:00:21.0865 4676  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
23:00:21.0865 4676  ksthunk - ok
23:00:21.0943 4676  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\windows\system32\msdtckrm.dll
23:00:21.0943 4676  KtmRm - ok
23:00:22.0021 4676  [ 55480B9C63F3F91A8EBBADCBF28FE581 ] L1C             C:\windows\system32\DRIVERS\L1C62x64.sys
23:00:22.0021 4676  L1C - ok
23:00:22.0083 4676  [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer    C:\windows\System32\srvsvc.dll
23:00:22.0083 4676  LanmanServer - ok
23:00:22.0146 4676  [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
23:00:22.0146 4676  LanmanWorkstation - ok
23:00:22.0208 4676  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
23:00:22.0208 4676  lltdio - ok
23:00:22.0270 4676  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\windows\System32\lltdsvc.dll
23:00:22.0270 4676  lltdsvc - ok
23:00:22.0333 4676  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\windows\System32\lmhsvc.dll
23:00:22.0348 4676  lmhosts - ok
23:00:22.0426 4676  [ DBC1136A62BD4DECC3632DF650284C2E ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
23:00:22.0426 4676  LMS - ok
23:00:22.0504 4676  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\windows\system32\DRIVERS\lsi_fc.sys
23:00:22.0504 4676  LSI_FC - ok
23:00:22.0504 4676  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\windows\system32\DRIVERS\lsi_sas.sys
23:00:22.0504 4676  LSI_SAS - ok
23:00:22.0520 4676  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\windows\system32\DRIVERS\lsi_sas2.sys
23:00:22.0520 4676  LSI_SAS2 - ok
23:00:22.0536 4676  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\windows\system32\DRIVERS\lsi_scsi.sys
23:00:22.0536 4676  LSI_SCSI - ok
23:00:22.0551 4676  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\windows\system32\drivers\luafv.sys
23:00:22.0551 4676  luafv - ok
23:00:22.0598 4676  [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
23:00:22.0598 4676  Mcx2Svc - ok
23:00:22.0614 4676  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\windows\system32\DRIVERS\megasas.sys
23:00:22.0614 4676  megasas - ok
23:00:22.0629 4676  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\windows\system32\DRIVERS\MegaSR.sys
23:00:22.0629 4676  MegaSR - ok
23:00:22.0660 4676  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\windows\system32\mmcss.dll
23:00:22.0660 4676  MMCSS - ok
23:00:22.0660 4676  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\windows\system32\drivers\modem.sys
23:00:22.0660 4676  Modem - ok
23:00:22.0723 4676  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\windows\system32\DRIVERS\monitor.sys
23:00:22.0723 4676  monitor - ok
23:00:22.0785 4676  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
23:00:22.0785 4676  mouclass - ok
23:00:22.0816 4676  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
23:00:22.0816 4676  mouhid - ok
23:00:22.0848 4676  [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
23:00:22.0848 4676  mountmgr - ok
23:00:22.0879 4676  [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio            C:\windows\system32\DRIVERS\mpio.sys
23:00:22.0879 4676  mpio - ok
23:00:22.0894 4676  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
23:00:22.0894 4676  mpsdrv - ok
23:00:22.0941 4676  [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc          C:\windows\system32\mpssvc.dll
23:00:22.0957 4676  MpsSvc - ok
23:00:22.0988 4676  [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
23:00:22.0988 4676  MRxDAV - ok
23:00:23.0035 4676  [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
23:00:23.0035 4676  mrxsmb - ok
23:00:23.0050 4676  [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
23:00:23.0050 4676  mrxsmb10 - ok
23:00:23.0066 4676  [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
23:00:23.0066 4676  mrxsmb20 - ok
23:00:23.0082 4676  [ 5C37497276E3B3A5488B23A326A754B7 ] msahci          C:\windows\system32\DRIVERS\msahci.sys
23:00:23.0082 4676  msahci - ok
23:00:23.0097 4676  [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm           C:\windows\system32\DRIVERS\msdsm.sys
23:00:23.0097 4676  msdsm - ok
23:00:23.0128 4676  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\windows\System32\msdtc.exe
23:00:23.0128 4676  MSDTC - ok
23:00:23.0191 4676  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\windows\system32\drivers\Msfs.sys
23:00:23.0191 4676  Msfs - ok
23:00:23.0253 4676  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
23:00:23.0253 4676  mshidkmdf - ok
23:00:23.0269 4676  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\windows\system32\DRIVERS\msisadrv.sys
23:00:23.0269 4676  msisadrv - ok
23:00:23.0300 4676  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
23:00:23.0300 4676  MSiSCSI - ok
23:00:23.0316 4676  msiserver - ok
23:00:23.0362 4676  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
23:00:23.0362 4676  MSKSSRV - ok
23:00:23.0394 4676  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
23:00:23.0394 4676  MSPCLOCK - ok
23:00:23.0394 4676  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
23:00:23.0394 4676  MSPQM - ok
23:00:23.0425 4676  [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
23:00:23.0425 4676  MsRPC - ok
23:00:23.0440 4676  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\windows\system32\DRIVERS\mssmbios.sys
23:00:23.0440 4676  mssmbios - ok
23:00:23.0472 4676  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
23:00:23.0472 4676  MSTEE - ok
23:00:23.0487 4676  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\windows\system32\DRIVERS\MTConfig.sys
23:00:23.0487 4676  MTConfig - ok
23:00:23.0503 4676  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\windows\system32\Drivers\mup.sys
23:00:23.0503 4676  Mup - ok
23:00:23.0534 4676  [ 4987E079A4530FA737A128BE54B63B12 ] napagent        C:\windows\system32\qagentRT.dll
23:00:23.0550 4676  napagent - ok
23:00:23.0628 4676  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
23:00:23.0628 4676  NativeWifiP - ok
23:00:23.0674 4676  [ CAD515DBD07D082BB317D9928CE8962C ] NDIS            C:\windows\system32\drivers\ndis.sys
23:00:23.0690 4676  NDIS - ok
23:00:23.0706 4676  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
23:00:23.0721 4676  NdisCap - ok
23:00:23.0784 4676  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
23:00:23.0784 4676  NdisTapi - ok
23:00:23.0799 4676  [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
23:00:23.0799 4676  Ndisuio - ok
23:00:23.0815 4676  [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
23:00:23.0830 4676  NdisWan - ok
23:00:23.0830 4676  [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
23:00:23.0830 4676  NDProxy - ok
23:00:23.0862 4676  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
23:00:23.0862 4676  NetBIOS - ok
23:00:23.0877 4676  [ 9162B273A44AB9DCE5B44362731D062A ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
23:00:23.0893 4676  NetBT - ok
23:00:23.0893 4676  [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon        C:\windows\system32\lsass.exe
23:00:23.0893 4676  Netlogon - ok
23:00:23.0971 4676  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\windows\System32\netman.dll
23:00:23.0986 4676  Netman - ok
23:00:24.0002 4676  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\windows\System32\netprofm.dll
23:00:24.0018 4676  netprofm - ok
23:00:24.0049 4676  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:00:24.0049 4676  NetTcpPortSharing - ok
23:00:24.0111 4676  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\windows\system32\DRIVERS\nfrd960.sys
23:00:24.0111 4676  nfrd960 - ok
23:00:24.0189 4676  [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc          C:\windows\System32\nlasvc.dll
23:00:24.0189 4676  NlaSvc - ok
23:00:24.0205 4676  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\windows\system32\drivers\Npfs.sys
23:00:24.0220 4676  Npfs - ok
23:00:24.0236 4676  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\windows\system32\nsisvc.dll
23:00:24.0236 4676  nsi - ok
23:00:24.0252 4676  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
23:00:24.0252 4676  nsiproxy - ok
23:00:24.0314 4676  [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
23:00:24.0345 4676  Ntfs - ok
23:00:24.0376 4676  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\windows\system32\drivers\Null.sys
23:00:24.0376 4676  Null - ok
23:00:24.0439 4676  [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid          C:\windows\system32\drivers\nvraid.sys
23:00:24.0439 4676  nvraid - ok
23:00:24.0470 4676  [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor          C:\windows\system32\drivers\nvstor.sys
23:00:24.0470 4676  nvstor - ok
23:00:24.0532 4676  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\windows\system32\DRIVERS\nv_agp.sys
23:00:24.0532 4676  nv_agp - ok
23:00:24.0813 4676  [ ABB7C497D43ACE5E1FE94A8D233F807F ] OfficeSvc       C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
23:00:24.0891 4676  OfficeSvc - ok
23:00:24.0907 4676  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\windows\system32\DRIVERS\ohci1394.sys
23:00:24.0907 4676  ohci1394 - ok
23:00:25.0032 4676  [ 9F16274E1B4E65C80CC3BC84F3F44C41 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:00:25.0032 4676  ose - ok
23:00:25.0266 4676  [ FE9C0029E1AF26350D9985D00520E5C8 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
23:00:25.0406 4676  osppsvc - ok
23:00:25.0453 4676  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
23:00:25.0468 4676  p2pimsvc - ok
23:00:25.0484 4676  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\windows\system32\p2psvc.dll
23:00:25.0500 4676  p2psvc - ok
23:00:25.0531 4676  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\windows\system32\DRIVERS\parport.sys
23:00:25.0531 4676  Parport - ok
23:00:25.0562 4676  [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr         C:\windows\system32\drivers\partmgr.sys
23:00:25.0562 4676  partmgr - ok
23:00:25.0593 4676  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\windows\System32\pcasvc.dll
23:00:25.0593 4676  PcaSvc - ok
23:00:25.0609 4676  [ 5AAB2B170536885DE70A6CBA8D7CE52B ] pci             C:\windows\system32\DRIVERS\pci.sys
23:00:25.0609 4676  pci - ok
23:00:25.0624 4676  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\windows\system32\DRIVERS\pciide.sys
23:00:25.0640 4676  pciide - ok
23:00:25.0671 4676  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\windows\system32\DRIVERS\pcmcia.sys
23:00:25.0671 4676  pcmcia - ok
23:00:25.0687 4676  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\windows\system32\drivers\pcw.sys
23:00:25.0687 4676  pcw - ok
23:00:25.0765 4676  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\windows\system32\drivers\peauth.sys
23:00:25.0765 4676  PEAUTH - ok
23:00:25.0874 4676  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\windows\SysWow64\perfhost.exe
23:00:25.0874 4676  PerfHost - ok
23:00:25.0952 4676  [ 663962900E7FEA522126BA287715BB4A ] PGEffect        C:\windows\system32\DRIVERS\pgeffect.sys
23:00:25.0952 4676  PGEffect - ok
23:00:25.0999 4676  [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla             C:\windows\system32\pla.dll
23:00:26.0030 4676  pla - ok
23:00:26.0124 4676  [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
23:00:26.0124 4676  PlugPlay - ok
23:00:26.0155 4676  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
23:00:26.0155 4676  PNRPAutoReg - ok
23:00:26.0186 4676  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
23:00:26.0186 4676  PNRPsvc - ok
23:00:26.0248 4676  [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
23:00:26.0248 4676  PolicyAgent - ok
23:00:26.0295 4676  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\windows\system32\umpo.dll
23:00:26.0295 4676  Power - ok
23:00:26.0358 4676  [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
23:00:26.0358 4676  PptpMiniport - ok
23:00:26.0389 4676  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\windows\system32\DRIVERS\processr.sys
23:00:26.0389 4676  Processor - ok
23:00:26.0436 4676  [ 97293447431311C06703368AD0F6C4BE ] ProfSvc         C:\windows\system32\profsvc.dll
23:00:26.0436 4676  ProfSvc - ok
23:00:26.0451 4676  [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\windows\system32\lsass.exe
23:00:26.0451 4676  ProtectedStorage - ok
23:00:26.0482 4676  [ EE992183BD8EAEFD9973F352E587A299 ] Psched          C:\windows\system32\DRIVERS\pacer.sys
23:00:26.0482 4676  Psched - ok
23:00:26.0545 4676  [ C8FCB4899F8B70CC34E0D9876A80963C ] QIOMem          C:\windows\system32\DRIVERS\QIOMem.sys
23:00:26.0545 4676  QIOMem - ok
23:00:26.0638 4676  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\windows\system32\DRIVERS\ql2300.sys
23:00:26.0670 4676  ql2300 - ok
23:00:26.0685 4676  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\windows\system32\DRIVERS\ql40xx.sys
23:00:26.0685 4676  ql40xx - ok
23:00:26.0732 4676  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\windows\system32\qwave.dll
23:00:26.0748 4676  QWAVE - ok
23:00:26.0748 4676  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
23:00:26.0748 4676  QWAVEdrv - ok
23:00:26.0763 4676  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
23:00:26.0763 4676  RasAcd - ok
23:00:26.0826 4676  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
23:00:26.0826 4676  RasAgileVpn - ok
23:00:26.0841 4676  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\windows\System32\rasauto.dll
23:00:26.0857 4676  RasAuto - ok
23:00:26.0872 4676  [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
23:00:26.0872 4676  Rasl2tp - ok
23:00:26.0888 4676  [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan          C:\windows\System32\rasmans.dll
23:00:26.0904 4676  RasMan - ok
23:00:26.0904 4676  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
23:00:26.0919 4676  RasPppoe - ok
23:00:26.0935 4676  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
23:00:26.0935 4676  RasSstp - ok
23:00:26.0950 4676  [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
23:00:26.0950 4676  rdbss - ok
23:00:26.0982 4676  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\windows\system32\DRIVERS\rdpbus.sys
23:00:26.0982 4676  rdpbus - ok
23:00:27.0028 4676  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
23:00:27.0028 4676  RDPCDD - ok
23:00:27.0075 4676  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
23:00:27.0075 4676  RDPENCDD - ok
23:00:27.0091 4676  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
23:00:27.0091 4676  RDPREFMP - ok
23:00:27.0138 4676  [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
23:00:27.0138 4676  RDPWD - ok
23:00:27.0184 4676  [ E5DC9BA9E439D6DBDD79F8CAACB5BF01 ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
23:00:27.0184 4676  rdyboost - ok
23:00:27.0262 4676  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\windows\System32\mprdim.dll
23:00:27.0262 4676  RemoteAccess - ok
23:00:27.0325 4676  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\windows\system32\regsvc.dll
23:00:27.0325 4676  RemoteRegistry - ok
23:00:27.0340 4676  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
23:00:27.0340 4676  RpcEptMapper - ok
23:00:27.0356 4676  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\windows\system32\locator.exe
23:00:27.0356 4676  RpcLocator - ok
23:00:27.0387 4676  [ 7266972E86890E2B30C0C322E906B027 ] RpcSs           C:\windows\system32\rpcss.dll
23:00:27.0403 4676  RpcSs - ok
23:00:27.0465 4676  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
23:00:27.0465 4676  rspndr - ok
23:00:27.0559 4676  [ 3CEEE53BBF8BA284FF44585CEC0162FE ] RSUSBSTOR       C:\windows\system32\Drivers\RtsUStor.sys
23:00:27.0559 4676  RSUSBSTOR - ok
23:00:27.0652 4676  [ B89C0601A05E1140AC96FA965D94C340 ] rtl8192Ce       C:\windows\system32\DRIVERS\rtl8192Ce.sys
23:00:27.0668 4676  rtl8192Ce - ok
23:00:27.0684 4676  [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs           C:\windows\system32\lsass.exe
23:00:27.0684 4676  SamSs - ok
23:00:27.0699 4676  [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port        C:\windows\system32\DRIVERS\sbp2port.sys
23:00:27.0715 4676  sbp2port - ok
23:00:27.0730 4676  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\windows\System32\SCardSvr.dll
23:00:27.0746 4676  SCardSvr - ok
23:00:27.0793 4676  [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
23:00:27.0793 4676  scfilter - ok
23:00:27.0855 4676  [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule        C:\windows\system32\schedsvc.dll
23:00:27.0871 4676  Schedule - ok
23:00:27.0902 4676  [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc     C:\windows\System32\certprop.dll
23:00:27.0902 4676  SCPolicySvc - ok
23:00:27.0933 4676  [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC          C:\windows\System32\SDRSVC.dll
23:00:27.0933 4676  SDRSVC - ok
23:00:27.0996 4676  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\windows\system32\drivers\secdrv.sys
23:00:27.0996 4676  secdrv - ok
23:00:28.0011 4676  [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon        C:\windows\system32\seclogon.dll
23:00:28.0011 4676  seclogon - ok
23:00:28.0027 4676  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\windows\system32\sens.dll
23:00:28.0027 4676  SENS - ok
23:00:28.0058 4676  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\windows\system32\sensrsvc.dll
23:00:28.0058 4676  SensrSvc - ok
23:00:28.0074 4676  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\windows\system32\DRIVERS\serenum.sys
23:00:28.0074 4676  Serenum - ok
23:00:28.0089 4676  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\windows\system32\DRIVERS\serial.sys
23:00:28.0089 4676  Serial - ok
23:00:28.0105 4676  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\windows\system32\DRIVERS\sermouse.sys
23:00:28.0120 4676  sermouse - ok
23:00:28.0167 4676  [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv      C:\windows\system32\sessenv.dll
23:00:28.0167 4676  SessionEnv - ok
23:00:28.0183 4676  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\windows\system32\DRIVERS\sffdisk.sys
23:00:28.0183 4676  sffdisk - ok
23:00:28.0198 4676  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\windows\system32\DRIVERS\sffp_mmc.sys
23:00:28.0198 4676  sffp_mmc - ok
23:00:28.0198 4676  [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd         C:\windows\system32\DRIVERS\sffp_sd.sys
23:00:28.0198 4676  sffp_sd - ok
23:00:28.0214 4676  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\windows\system32\DRIVERS\sfloppy.sys
23:00:28.0214 4676  sfloppy - ok
23:00:28.0292 4676  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\windows\System32\ipnathlp.dll
23:00:28.0292 4676  SharedAccess - ok
23:00:28.0323 4676  [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\windows\System32\shsvcs.dll
23:00:28.0323 4676  ShellHWDetection - ok
23:00:28.0339 4676  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\windows\system32\DRIVERS\SiSRaid2.sys
23:00:28.0339 4676  SiSRaid2 - ok
23:00:28.0354 4676  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\windows\system32\DRIVERS\sisraid4.sys
23:00:28.0354 4676  SiSRaid4 - ok
23:00:28.0370 4676  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\windows\system32\DRIVERS\smb.sys
23:00:28.0370 4676  Smb - ok
23:00:28.0432 4676  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\windows\System32\snmptrap.exe
23:00:28.0432 4676  SNMPTRAP - ok
23:00:28.0448 4676  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\windows\system32\drivers\spldr.sys
23:00:28.0464 4676  spldr - ok
23:00:28.0495 4676  [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler         C:\windows\System32\spoolsv.exe
23:00:28.0510 4676  Spooler - ok
23:00:28.0620 4676  [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc          C:\windows\system32\sppsvc.exe
23:00:28.0713 4676  sppsvc - ok
23:00:28.0713 4676  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\windows\system32\sppuinotify.dll
23:00:28.0729 4676  sppuinotify - ok
23:00:28.0744 4676  [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv             C:\windows\system32\DRIVERS\srv.sys
23:00:28.0760 4676  srv - ok
23:00:28.0776 4676  [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
23:00:28.0776 4676  srv2 - ok
23:00:28.0854 4676  [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA       C:\windows\system32\DRIVERS\VSTAZL6.SYS
23:00:28.0854 4676  SrvHsfHDA - ok
23:00:28.0916 4676  [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92       C:\windows\system32\DRIVERS\VSTDPV6.SYS
23:00:28.0932 4676  SrvHsfV92 - ok
23:00:28.0963 4676  [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac     C:\windows\system32\DRIVERS\VSTCNXT6.SYS
23:00:28.0978 4676  SrvHsfWinac - ok
23:00:29.0010 4676  [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
23:00:29.0010 4676  srvnet - ok
23:00:29.0088 4676  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
23:00:29.0088 4676  SSDPSRV - ok
23:00:29.0103 4676  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\windows\system32\sstpsvc.dll
23:00:29.0103 4676  SstpSvc - ok
23:00:29.0134 4676  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\windows\system32\DRIVERS\stexstor.sys
23:00:29.0134 4676  stexstor - ok
23:00:29.0212 4676  [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc          C:\windows\System32\wiaservc.dll
23:00:29.0228 4676  stisvc - ok
23:00:29.0228 4676  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\windows\system32\DRIVERS\swenum.sys
23:00:29.0228 4676  swenum - ok
23:00:29.0275 4676  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\windows\System32\swprv.dll
23:00:29.0275 4676  swprv - ok
23:00:29.0353 4676  [ 470C47DABA9CA3966F0AB3F835D7D135 ] SynTP           C:\windows\system32\DRIVERS\SynTP.sys
23:00:29.0368 4676  SynTP - ok
23:00:29.0431 4676  [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain         C:\windows\system32\sysmain.dll
23:00:29.0462 4676  SysMain - ok
23:00:29.0478 4676  [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\windows\System32\TabSvc.dll
23:00:29.0478 4676  TabletInputService - ok
23:00:29.0509 4676  [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv         C:\windows\System32\tapisrv.dll
23:00:29.0509 4676  TapiSrv - ok
23:00:29.0524 4676  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\windows\System32\tbssvc.dll
23:00:29.0524 4676  TBS - ok
23:00:29.0634 4676  [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip           C:\windows\system32\drivers\tcpip.sys
23:00:29.0665 4676  Tcpip - ok
23:00:29.0712 4676  [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
23:00:29.0727 4676  TCPIP6 - ok
23:00:29.0774 4676  [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
23:00:29.0774 4676  tcpipreg - ok
23:00:29.0852 4676  [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst        C:\windows\system32\DRIVERS\tdcmdpst.sys
23:00:29.0852 4676  tdcmdpst - ok
23:00:29.0868 4676  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
23:00:29.0868 4676  TDPIPE - ok
23:00:29.0914 4676  [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
23:00:29.0914 4676  TDTCP - ok
23:00:29.0946 4676  [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx             C:\windows\system32\DRIVERS\tdx.sys
23:00:29.0946 4676  tdx - ok
23:00:29.0977 4676  [ C448651339196C0E869A355171875522 ] TermDD          C:\windows\system32\DRIVERS\termdd.sys
23:00:29.0977 4676  TermDD - ok
23:00:30.0024 4676  [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService     C:\windows\System32\termsrv.dll
23:00:30.0039 4676  TermService - ok
23:00:30.0055 4676  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\windows\system32\themeservice.dll
23:00:30.0055 4676  Themes - ok
23:00:30.0070 4676  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\windows\system32\mmcss.dll
23:00:30.0086 4676  THREADORDER - ok
23:00:30.0180 4676  [ 28644B0523D64EFF2FC7312A2EE74B0A ] TMachInfo       C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
23:00:30.0180 4676  TMachInfo - ok
23:00:30.0211 4676  [ ED32035BDFECED1AD66D459FD9CC1140 ] TODDSrv         C:\Windows\system32\TODDSrv.exe
23:00:30.0226 4676  TODDSrv - ok
23:00:30.0336 4676  [ 98C864481D62F86EC8AF65BE3419A95B ] TosCoSrv        C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
23:00:30.0336 4676  TosCoSrv - ok
23:00:30.0382 4676  [ BAE96AD126F4EED4D361B092BA2E61FE ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
23:00:30.0398 4676  TOSHIBA eco Utility Service - ok
23:00:30.0460 4676  [ 74C2FA8C3765EE71A9C22182EC108457 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
23:00:30.0476 4676  TOSHIBA HDD SSD Alert Service - ok
23:00:30.0507 4676  [ 97687D094AA597DA366E1194B218CC6C ] TPCHSrv         C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
23:00:30.0523 4676  TPCHSrv - ok
23:00:30.0554 4676  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\windows\System32\trkwks.dll
23:00:30.0554 4676  TrkWks - ok
23:00:30.0601 4676  [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
23:00:30.0601 4676  TrustedInstaller - ok
23:00:30.0632 4676  [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
23:00:30.0632 4676  tssecsrv - ok
23:00:30.0694 4676  [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
23:00:30.0710 4676  tunnel - ok
23:00:30.0726 4676  [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ           C:\windows\system32\DRIVERS\TVALZ_O.SYS
23:00:30.0726 4676  TVALZ - ok
23:00:30.0741 4676  [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL         C:\windows\system32\DRIVERS\TVALZFL.sys
23:00:30.0757 4676  TVALZFL - ok
23:00:30.0772 4676  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\windows\system32\DRIVERS\uagp35.sys
23:00:30.0772 4676  uagp35 - ok
23:00:30.0804 4676  [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs            C:\windows\system32\DRIVERS\udfs.sys
23:00:30.0819 4676  udfs - ok
23:00:30.0850 4676  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\windows\system32\UI0Detect.exe
23:00:30.0850 4676  UI0Detect - ok
23:00:30.0913 4676  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\windows\system32\DRIVERS\uliagpkx.sys
23:00:30.0913 4676  uliagpkx - ok
23:00:30.0975 4676  [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus           C:\windows\system32\DRIVERS\umbus.sys
23:00:30.0975 4676  umbus - ok
23:00:31.0022 4676  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\windows\system32\DRIVERS\umpass.sys
23:00:31.0022 4676  UmPass - ok
23:00:31.0116 4676  [ 7466809E6DA561D60C2F1CE8EDE3C73F ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
23:00:31.0147 4676  UNS - ok
23:00:31.0194 4676  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\windows\System32\upnphost.dll
23:00:31.0194 4676  upnphost - ok
23:00:31.0225 4676  [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys
23:00:31.0225 4676  usbccgp - ok
23:00:31.0303 4676  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\windows\system32\DRIVERS\usbcir.sys
23:00:31.0303 4676  usbcir - ok
23:00:31.0318 4676  [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci         C:\windows\system32\drivers\usbehci.sys
23:00:31.0318 4676  usbehci - ok
23:00:31.0381 4676  [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
23:00:31.0381 4676  usbhub - ok
23:00:31.0396 4676  [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci         C:\windows\system32\drivers\usbohci.sys
23:00:31.0396 4676  usbohci - ok
23:00:31.0428 4676  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\windows\system32\DRIVERS\usbprint.sys
23:00:31.0428 4676  usbprint - ok
23:00:31.0459 4676  [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
23:00:31.0459 4676  USBSTOR - ok
23:00:31.0474 4676  [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci         C:\windows\system32\drivers\usbuhci.sys
23:00:31.0474 4676  usbuhci - ok
23:00:31.0537 4676  [ D501E12614B00A3252073101D6A1A74B ] usbvideo        C:\windows\system32\Drivers\usbvideo.sys
23:00:31.0537 4676  usbvideo - ok
23:00:31.0568 4676  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\windows\System32\uxsms.dll
23:00:31.0568 4676  UxSms - ok
23:00:31.0584 4676  [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc        C:\windows\system32\lsass.exe
23:00:31.0584 4676  VaultSvc - ok
23:00:31.0630 4676  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\windows\system32\DRIVERS\vdrvroot.sys
23:00:31.0630 4676  vdrvroot - ok
23:00:31.0662 4676  [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds             C:\windows\System32\vds.exe
23:00:31.0677 4676  vds - ok
23:00:31.0693 4676  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
23:00:31.0693 4676  vga - ok
23:00:31.0724 4676  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\windows\System32\drivers\vga.sys
23:00:31.0724 4676  VgaSave - ok
23:00:31.0740 4676  [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp           C:\windows\system32\DRIVERS\vhdmp.sys
23:00:31.0740 4676  vhdmp - ok
23:00:31.0740 4676  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\windows\system32\DRIVERS\viaide.sys
23:00:31.0740 4676  viaide - ok
23:00:31.0802 4676  [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr          C:\windows\system32\DRIVERS\volmgr.sys
23:00:31.0802 4676  volmgr - ok
23:00:31.0833 4676  [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
23:00:31.0849 4676  volmgrx - ok
23:00:31.0896 4676  [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap         C:\windows\system32\drivers\volsnap.sys
23:00:31.0896 4676  volsnap - ok
23:00:31.0974 4676  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\windows\system32\DRIVERS\vsmraid.sys
23:00:31.0974 4676  vsmraid - ok
23:00:32.0052 4676  [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS             C:\windows\system32\vssvc.exe
23:00:32.0067 4676  VSS - ok
23:00:32.0098 4676  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys
23:00:32.0098 4676  vwifibus - ok
23:00:32.0114 4676  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
23:00:32.0114 4676  vwififlt - ok
23:00:32.0161 4676  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
23:00:32.0161 4676  vwifimp - ok
23:00:32.0208 4676  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\windows\system32\w32time.dll
23:00:32.0208 4676  W32Time - ok
23:00:32.0239 4676  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\windows\system32\DRIVERS\wacompen.sys
23:00:32.0239 4676  WacomPen - ok
23:00:32.0301 4676  [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
23:00:32.0301 4676  WANARP - ok
23:00:32.0301 4676  [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
23:00:32.0301 4676  Wanarpv6 - ok
23:00:32.0395 4676  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
23:00:32.0410 4676  WatAdminSvc - ok
23:00:32.0473 4676  [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine        C:\windows\system32\wbengine.exe
23:00:32.0504 4676  wbengine - ok
23:00:32.0520 4676  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
23:00:32.0520 4676  WbioSrvc - ok
23:00:32.0566 4676  [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc         C:\windows\System32\wcncsvc.dll
23:00:32.0566 4676  wcncsvc - ok
23:00:32.0598 4676  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
23:00:32.0598 4676  WcsPlugInService - ok
23:00:32.0613 4676  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\windows\system32\DRIVERS\wd.sys
23:00:32.0613 4676  Wd - ok
23:00:32.0660 4676  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
23:00:32.0676 4676  Wdf01000 - ok
23:00:32.0691 4676  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\windows\system32\wdi.dll
23:00:32.0707 4676  WdiServiceHost - ok
23:00:32.0707 4676  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\windows\system32\wdi.dll
23:00:32.0707 4676  WdiSystemHost - ok
23:00:32.0738 4676  [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient       C:\windows\System32\webclnt.dll
23:00:32.0754 4676  WebClient - ok
23:00:32.0785 4676  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\windows\system32\wecsvc.dll
23:00:32.0800 4676  Wecsvc - ok
23:00:32.0816 4676  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\windows\System32\wercplsupport.dll
23:00:32.0816 4676  wercplsupport - ok
23:00:32.0847 4676  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\windows\System32\WerSvc.dll
23:00:32.0847 4676  WerSvc - ok
23:00:32.0878 4676  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
23:00:32.0878 4676  WfpLwf - ok
23:00:32.0910 4676  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\windows\system32\drivers\wimmount.sys
23:00:32.0910 4676  WIMMount - ok
23:00:32.0925 4676  WinDefend - ok
23:00:32.0925 4676  WinHttpAutoProxySvc - ok
23:00:32.0988 4676  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
23:00:32.0988 4676  Winmgmt - ok
23:00:33.0066 4676  [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM           C:\windows\system32\WsmSvc.dll
23:00:33.0097 4676  WinRM - ok
23:00:33.0190 4676  [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
23:00:33.0190 4676  WinUsb - ok
23:00:33.0253 4676  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\windows\System32\wlansvc.dll
23:00:33.0268 4676  Wlansvc - ok
23:00:33.0315 4676  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\windows\system32\DRIVERS\wmiacpi.sys
23:00:33.0315 4676  WmiAcpi - ok
23:00:33.0346 4676  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
23:00:33.0346 4676  wmiApSrv - ok
23:00:33.0378 4676  WMPNetworkSvc - ok
23:00:33.0424 4676  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\windows\System32\wpcsvc.dll
23:00:33.0424 4676  WPCSvc - ok
23:00:33.0456 4676  [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
23:00:33.0456 4676  WPDBusEnum - ok
23:00:33.0487 4676  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
23:00:33.0487 4676  ws2ifsl - ok
23:00:33.0518 4676  [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc          C:\windows\system32\wscsvc.dll
23:00:33.0518 4676  wscsvc - ok
23:00:33.0518 4676  WSearch - ok
23:00:33.0612 4676  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\windows\system32\wuaueng.dll
23:00:33.0658 4676  wuauserv - ok
23:00:33.0721 4676  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
23:00:33.0721 4676  WudfPf - ok
23:00:33.0752 4676  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
23:00:33.0752 4676  WUDFRd - ok
23:00:33.0814 4676  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
23:00:33.0814 4676  wudfsvc - ok
23:00:33.0861 4676  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\windows\System32\wwansvc.dll
23:00:33.0861 4676  WwanSvc - ok
23:00:33.0908 4676  ================ Scan global ===============================
23:00:33.0955 4676  [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
23:00:34.0002 4676  [ C4C551E6AB333C0EB812A3A4672E89DB ] C:\windows\system32\winsrv.dll
23:00:34.0033 4676  [ C4C551E6AB333C0EB812A3A4672E89DB ] C:\windows\system32\winsrv.dll
23:00:34.0064 4676  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
23:00:34.0111 4676  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
23:00:34.0126 4676  [Global] - ok
23:00:34.0126 4676  ================ Scan MBR ==================================
23:00:34.0126 4676  [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
23:00:34.0376 4676  \Device\Harddisk0\DR0 - ok
23:00:34.0376 4676  ================ Scan VBR ==================================
23:00:34.0376 4676  [ A3E62ED02610FA1049C3C967BB8B878E ] \Device\Harddisk0\DR0\Partition1
23:00:34.0392 4676  \Device\Harddisk0\DR0\Partition1 - ok
23:00:34.0392 4676  ================ Scan active images ========================
23:00:34.0392 4676  [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
23:00:34.0392 4676  C:\Windows\System32\drivers\crashdmp.sys - ok
23:00:34.0392 4676  [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
23:00:34.0392 4676  C:\Windows\System32\drivers\dumpfve.sys - ok
23:00:34.0407 4676  [ 5E60DD5F090AB4A563C7204C289C4650 ] C:\Windows\System32\drivers\iaStor.sys
23:00:34.0407 4676  C:\Windows\System32\drivers\iaStor.sys - ok
23:00:34.0407 4676  [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
23:00:34.0407 4676  C:\Windows\System32\drivers\beep.sys - ok
23:00:34.0423 4676  [ 83D2D75E1EFB81B3450C18131443F7DB ] C:\Windows\System32\drivers\cdrom.sys
23:00:34.0423 4676  C:\Windows\System32\drivers\cdrom.sys - ok
23:00:34.0423 4676  [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
23:00:34.0423 4676  C:\Windows\System32\drivers\null.sys - ok
23:00:34.0438 4676  [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
23:00:34.0438 4676  C:\Windows\System32\drivers\RDPCDD.sys - ok
23:00:34.0438 4676  [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
23:00:34.0438 4676  C:\Windows\System32\drivers\vga.sys - ok
23:00:34.0454 4676  [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
23:00:34.0454 4676  C:\Windows\System32\drivers\videoprt.sys - ok
23:00:34.0454 4676  [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
23:00:34.0454 4676  C:\Windows\System32\drivers\watchdog.sys - ok
23:00:34.0454 4676  [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
23:00:34.0454 4676  C:\Windows\System32\drivers\RDPENCDD.sys - ok
23:00:34.0470 4676  [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
23:00:34.0470 4676  C:\Windows\System32\drivers\RDPREFMP.sys - ok
23:00:34.0470 4676  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
23:00:34.0470 4676  C:\Windows\System32\drivers\msfs.sys - ok
23:00:34.0470 4676  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
23:00:34.0470 4676  C:\Windows\System32\drivers\npfs.sys - ok
23:00:34.0485 4676  [ DB9D6C6B2CD95A9CA414D045B627422E ] C:\Windows\System32\drivers\afd.sys
23:00:34.0485 4676  C:\Windows\System32\drivers\afd.sys - ok
23:00:34.0485 4676  [ 9162B273A44AB9DCE5B44362731D062A ] C:\Windows\System32\drivers\netbt.sys
23:00:34.0485 4676  C:\Windows\System32\drivers\netbt.sys - ok
23:00:34.0485 4676  [ 0CA6FE26ACC7FFEE1BD0463F40835F32 ] C:\Windows\System32\drivers\tdi.sys
23:00:34.0485 4676  C:\Windows\System32\drivers\tdi.sys - ok
23:00:34.0485 4676  [ 079125C4B17B01FCAEEBCE0BCB290C0F ] C:\Windows\System32\drivers\tdx.sys
23:00:34.0485 4676  C:\Windows\System32\drivers\tdx.sys - ok
23:00:34.0501 4676  [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
23:00:34.0501 4676  C:\Windows\System32\drivers\netbios.sys - ok
23:00:34.0501 4676  [ EE992183BD8EAEFD9973F352E587A299 ] C:\Windows\System32\drivers\pacer.sys
23:00:34.0501 4676  C:\Windows\System32\drivers\pacer.sys - ok
23:00:34.0501 4676  [ C448651339196C0E869A355171875522 ] C:\Windows\System32\drivers\termdd.sys
23:00:34.0501 4676  C:\Windows\System32\drivers\termdd.sys - ok
23:00:34.0501 4676  [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
23:00:34.0501 4676  C:\Windows\System32\drivers\vwififlt.sys - ok
23:00:34.0516 4676  [ 47CA49400643EFFD3F1C9A27E1D69324 ] C:\Windows\System32\drivers\wanarp.sys
23:00:34.0516 4676  C:\Windows\System32\drivers\wanarp.sys - ok
23:00:34.0516 4676  [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
23:00:34.0516 4676  C:\Windows\System32\drivers\wfplwf.sys - ok
23:00:34.0516 4676  [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
23:00:34.0516 4676  C:\Windows\System32\drivers\ws2ifsl.sys - ok
23:00:34.0532 4676  [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
23:00:34.0532 4676  C:\Windows\System32\drivers\blbdrive.sys - ok
23:00:34.0532 4676  [ 9C253CE7311CA60FC11C774692A13208 ] C:\Windows\System32\drivers\dfsc.sys
23:00:34.0532 4676  C:\Windows\System32\drivers\dfsc.sys - ok
23:00:34.0532 4676  [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
23:00:34.0532 4676  C:\Windows\System32\drivers\discache.sys - ok
23:00:34.0532 4676  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
23:00:34.0532 4676  C:\Windows\System32\drivers\mssmbios.sys - ok
23:00:34.0548 4676  [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
23:00:34.0548 4676  C:\Windows\System32\drivers\nsiproxy.sys - ok
23:00:34.0548 4676  [ 3BAC8142102C15D59A87757C1D41DCE5 ] C:\Windows\System32\drivers\rdbss.sys
23:00:34.0548 4676  C:\Windows\System32\drivers\rdbss.sys - ok
23:00:34.0548 4676  [ 3836171A2CDF3AF8EF10856DB9835A70 ] C:\Windows\System32\drivers\tunnel.sys
23:00:34.0548 4676  C:\Windows\System32\drivers\tunnel.sys - ok
23:00:34.0563 4676  [ 68DB778AC4FD7896CE2F153353BA15C8 ] C:\Windows\System32\ntdll.dll
23:00:34.0563 4676  C:\Windows\System32\ntdll.dll - ok
23:00:34.0563 4676  [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
23:00:34.0563 4676  C:\Windows\System32\smss.exe - ok
23:00:34.0563 4676  [ 8B7F8E882A649D81CEA1EDE9BBB68FFF ] C:\Windows\System32\autochk.exe
23:00:34.0563 4676  C:\Windows\System32\autochk.exe - ok
23:00:34.0563 4676  [ 1BE8D9CA4F2363B8E8015621878E0043 ] C:\Windows\System32\drivers\igdkmd64.sys
23:00:34.0563 4676  C:\Windows\System32\drivers\igdkmd64.sys - ok
23:00:34.0579 4676  [ 1633B9ABF52784A1331476397A48CBEF ] C:\Windows\System32\drivers\dxgkrnl.sys
23:00:34.0579 4676  C:\Windows\System32\drivers\dxgkrnl.sys - ok
23:00:34.0579 4676  [ 3238B9078E0766AB5E62DC737A809ADB ] C:\Windows\System32\drivers\dxgmms1.sys
23:00:34.0579 4676  C:\Windows\System32\drivers\dxgmms1.sys - ok
23:00:34.0579 4676  [ B6AC71AAA2B10848F57FC49D55A651AF ] C:\Windows\System32\drivers\HECIx64.sys
23:00:34.0579 4676  C:\Windows\System32\drivers\HECIx64.sys - ok
23:00:34.0579 4676  [ B37C3BF3FFC97177B1A9C016B7C8CDD6 ] C:\Windows\System32\drivers\usbport.sys
23:00:34.0579 4676  C:\Windows\System32\drivers\usbport.sys - ok
23:00:34.0594 4676  [ 0A49913402747A0B67DE940FB42CBDBB ] C:\Windows\System32\drivers\hdaudbus.sys
23:00:34.0594 4676  C:\Windows\System32\drivers\hdaudbus.sys - ok
23:00:34.0594 4676  [ FBB21EBE49F6D560DB37AC25FBC68E66 ] C:\Windows\System32\drivers\usbehci.sys
23:00:34.0594 4676  C:\Windows\System32\drivers\usbehci.sys - ok
23:00:34.0594 4676  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
23:00:34.0594 4676  C:\Windows\System32\drivers\i8042prt.sys - ok
23:00:34.0610 4676  [ 55480B9C63F3F91A8EBBADCBF28FE581 ] C:\Windows\System32\drivers\L1C62x64.sys
23:00:34.0610 4676  C:\Windows\System32\drivers\L1C62x64.sys - ok
23:00:34.0610 4676  [ B89C0601A05E1140AC96FA965D94C340 ] C:\Windows\System32\drivers\rtl8192Ce.sys
23:00:34.0610 4676  C:\Windows\System32\drivers\rtl8192Ce.sys - ok
23:00:34.0610 4676  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
23:00:34.0610 4676  C:\Windows\System32\drivers\vwifibus.sys - ok
23:00:34.0610 4676  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
23:00:34.0610 4676  C:\Windows\System32\drivers\kbdclass.sys - ok
23:00:34.0626 4676  [ F96F7835C8818895C47F6213E3A01F5D ] C:\Windows\System32\drivers\usbd.sys
23:00:34.0626 4676  C:\Windows\System32\drivers\usbd.sys - ok
23:00:34.0626 4676  [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
23:00:34.0626 4676  C:\Windows\System32\drivers\mouclass.sys - ok
23:00:34.0626 4676  [ 470C47DABA9CA3966F0AB3F835D7D135 ] C:\Windows\System32\drivers\SynTP.sys
23:00:34.0626 4676  C:\Windows\System32\drivers\SynTP.sys - ok
23:00:34.0641 4676  [ FD542B661BD22FA69CA789AD0AC58C29 ] C:\Windows\System32\drivers\tdcmdpst.sys
23:00:34.0641 4676  C:\Windows\System32\drivers\tdcmdpst.sys - ok
23:00:34.0641 4676  [ DD587A55390ED2295BCE6D36AD567DA9 ] C:\Windows\System32\drivers\Impcd.sys
23:00:34.0641 4676  C:\Windows\System32\drivers\Impcd.sys - ok
23:00:34.0641 4676  [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
23:00:34.0641 4676  C:\Windows\System32\drivers\agilevpn.sys - ok
23:00:34.0641 4676  [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
23:00:34.0641 4676  C:\Windows\System32\drivers\CmBatt.sys - ok
23:00:34.0657 4676  [ F26B3A86F6FA87CA360B879581AB4123 ] C:\Windows\System32\drivers\CompositeBus.sys
23:00:34.0657 4676  C:\Windows\System32\drivers\CompositeBus.sys - ok
23:00:34.0657 4676  [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
23:00:34.0657 4676  C:\Windows\System32\drivers\intelppm.sys - ok
23:00:34.0657 4676  [ C8FCB4899F8B70CC34E0D9876A80963C ] C:\Windows\System32\drivers\QIOMem.sys
23:00:34.0657 4676  C:\Windows\System32\drivers\QIOMem.sys - ok
23:00:34.0672 4676  [ 9C7191F4B2E49BFF47A6C1144B5923FA ] C:\Windows\System32\drivers\TVALZFL.sys
23:00:34.0672 4676  C:\Windows\System32\drivers\TVALZFL.sys - ok
23:00:34.0672 4676  [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
23:00:34.0672 4676  C:\Windows\System32\drivers\wmiacpi.sys - ok
23:00:34.0672 4676  [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
23:00:34.0672 4676  C:\Windows\System32\drivers\ndistapi.sys - ok
23:00:34.0688 4676  [ 557DFAB9CA1FCB036AC77564C010DAD3 ] C:\Windows\System32\drivers\ndiswan.sys
23:00:34.0688 4676  C:\Windows\System32\drivers\ndiswan.sys - ok
23:00:34.0688 4676  [ 87A6E852A22991580D6D39ADC4790463 ] C:\Windows\System32\drivers\rasl2tp.sys
23:00:34.0688 4676  C:\Windows\System32\drivers\rasl2tp.sys - ok
23:00:34.0688 4676  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
23:00:34.0688 4676  C:\Windows\System32\drivers\raspppoe.sys - ok
23:00:34.0688 4676  [ 5C7AF4A20F5BF67042B2E613D123D111 ] C:\Windows\System32\drivers\ks.sys
23:00:34.0688 4676  C:\Windows\System32\drivers\ks.sys - ok
23:00:34.0704 4676  [ 27CC19E81BA5E3403C48302127BDA717 ] C:\Windows\System32\drivers\raspptp.sys
23:00:34.0704 4676  C:\Windows\System32\drivers\raspptp.sys - ok
23:00:34.0704 4676  [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
23:00:34.0704 4676  C:\Windows\System32\drivers\rassstp.sys - ok
23:00:34.0704 4676  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
23:00:34.0704 4676  C:\Windows\System32\drivers\swenum.sys - ok
23:00:34.0719 4676  [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] C:\Windows\System32\drivers\umbus.sys
23:00:34.0719 4676  C:\Windows\System32\drivers\umbus.sys - ok
23:00:34.0719 4676  [ 6B7A8A99C4A459E73C286A6763EA24CC ] C:\Windows\System32\drivers\usbhub.sys
23:00:34.0719 4676  C:\Windows\System32\drivers\usbhub.sys - ok
23:00:34.0719 4676  [ E1B1255D3A4B3367FE4E9C71E62E3B5A ] C:\Windows\System32\gdi32.dll
23:00:34.0719 4676  C:\Windows\System32\gdi32.dll - ok
23:00:34.0719 4676  [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
23:00:34.0719 4676  C:\Windows\System32\nsi.dll - ok
23:00:34.0735 4676  [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
23:00:34.0735 4676  C:\Windows\System32\advapi32.dll - ok
23:00:34.0735 4676  [ F94B8644F3AFE040EC6E1B6FBC9EFAA9 ] C:\Windows\System32\comdlg32.dll
23:00:34.0735 4676  C:\Windows\System32\comdlg32.dll - ok
23:00:34.0735 4676  [ 659B74FB74B86228D6338D643CD3E3CF ] C:\Windows\System32\drivers\ndproxy.sys
23:00:34.0735 4676  C:\Windows\System32\drivers\ndproxy.sys - ok
23:00:34.0735 4676  [ 15A54626213EBF003F7D4C9D8380A656 ] C:\Windows\System32\imagehlp.dll
23:00:34.0735 4676  C:\Windows\System32\imagehlp.dll - ok
23:00:34.0750 4676  [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
23:00:34.0750 4676  C:\Windows\System32\imm32.dll - ok
23:00:34.0750 4676  [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
23:00:34.0750 4676  C:\Windows\System32\difxapi.dll - ok
23:00:34.0750 4676  [ 7083F463788CB34FCC42F565D56F89E8 ] C:\Windows\System32\ws2_32.dll
23:00:34.0750 4676  C:\Windows\System32\ws2_32.dll - ok
23:00:34.0750 4676  [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
23:00:34.0750 4676  C:\Windows\System32\drivers\drmk.sys - ok
23:00:34.0766 4676  [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
23:00:34.0766 4676  C:\Windows\System32\drivers\portcls.sys - ok
23:00:34.0766 4676  [ 25C58EE97BE0416A373E3E4F855206B5 ] C:\Windows\System32\drivers\CHDRT64.sys
23:00:34.0766 4676  C:\Windows\System32\drivers\CHDRT64.sys - ok
23:00:34.0766 4676  [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
23:00:34.0766 4676  C:\Windows\System32\drivers\ksthunk.sys - ok
23:00:34.0766 4676  [ 6A4EA4C29FBF78112AE20013FB71E9C1 ] C:\Windows\System32\setupapi.dll
23:00:34.0766 4676  C:\Windows\System32\setupapi.dll - ok
23:00:34.0782 4676  [ 5121DB613E10A46A3C5085B479026AA7 ] C:\Windows\System32\wininet.dll
23:00:34.0782 4676  C:\Windows\System32\wininet.dll - ok
23:00:34.0782 4676  [ 72D7B3EA16946E8F0CF7458150031CC6 ] C:\Windows\System32\user32.dll
23:00:34.0782 4676  C:\Windows\System32\user32.dll - ok
23:00:34.0782 4676  [ 579F6AFC6A6561951FA2202EFC3FE485 ] C:\Windows\System32\msvcrt.dll
23:00:34.0782 4676  C:\Windows\System32\msvcrt.dll - ok
23:00:34.0797 4676  [ 2A46451EE42BCD2C842D8AA4923FAC16 ] C:\Windows\System32\oleaut32.dll
23:00:34.0797 4676  C:\Windows\System32\oleaut32.dll - ok
23:00:34.0797 4676  [ 15BDC173EB5FA4F92B67D9FFB269A6EA ] C:\Windows\System32\shlwapi.dll
23:00:34.0797 4676  C:\Windows\System32\shlwapi.dll - ok
23:00:34.0797 4676  [ 48CC125A6AB6C72A13E3D3E9C39AD9D9 ] C:\Windows\System32\shell32.dll
23:00:34.0797 4676  C:\Windows\System32\shell32.dll - ok
23:00:34.0797 4676  [ 48C903068B6BDAB5EF650B9CBEE85295 ] C:\Windows\System32\rpcrt4.dll
23:00:34.0797 4676  C:\Windows\System32\rpcrt4.dll - ok
23:00:34.0813 4676  [ 3CEEE53BBF8BA284FF44585CEC0162FE ] C:\Windows\System32\drivers\RtsUStor.sys
23:00:34.0813 4676  C:\Windows\System32\drivers\RtsUStor.sys - ok
23:00:34.0813 4676  [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
23:00:34.0813 4676  C:\Windows\System32\sechost.dll - ok
23:00:34.0813 4676  [ E5CBF5F8623BBD1DB7B8148A66F6EBA4 ] C:\Windows\System32\Wldap32.dll
23:00:34.0813 4676  C:\Windows\System32\Wldap32.dll - ok
23:00:34.0813 4676  [ A0F52880DDD164F968BE903C1FECD27E ] C:\Windows\System32\iertutil.dll
23:00:34.0813 4676  C:\Windows\System32\iertutil.dll - ok
23:00:34.0828 4676  [ BD5153969C41F697E23B9A43EF9228CE ] C:\Windows\System32\usp10.dll
23:00:34.0828 4676  C:\Windows\System32\usp10.dll - ok
23:00:34.0828 4676  [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
23:00:34.0828 4676  C:\Windows\System32\clbcatq.dll - ok
23:00:34.0828 4676  [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
23:00:34.0828 4676  C:\Windows\System32\msctf.dll - ok
23:00:34.0828 4676  [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
23:00:34.0828 4676  C:\Windows\System32\psapi.dll - ok
23:00:34.0844 4676  [ E3BC37881D92EB59EE0BA3B854A54D1E ] C:\Windows\System32\kernel32.dll
23:00:34.0844 4676  C:\Windows\System32\kernel32.dll - ok
23:00:34.0844 4676  [ 1DBA462CF92D890D8F8E6472E7E8B4B4 ] C:\Windows\System32\urlmon.dll
23:00:34.0844 4676  C:\Windows\System32\urlmon.dll - ok
23:00:34.0844 4676  [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
23:00:34.0844 4676  C:\Windows\System32\normaliz.dll - ok
23:00:34.0860 4676  [ AC8F79017C5C1FB316930EDEAD0AF517 ] C:\Windows\System32\ole32.dll
23:00:34.0860 4676  C:\Windows\System32\ole32.dll - ok
23:00:34.0860 4676  [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] C:\Windows\System32\drivers\usbccgp.sys
23:00:34.0860 4676  C:\Windows\System32\drivers\usbccgp.sys - ok
23:00:34.0860 4676  [ D501E12614B00A3252073101D6A1A74B ] C:\Windows\System32\drivers\usbvideo.sys
23:00:34.0860 4676  C:\Windows\System32\drivers\usbvideo.sys - ok
23:00:34.0860 4676  [ 663962900E7FEA522126BA287715BB4A ] C:\Windows\System32\drivers\PGEffect.sys
23:00:34.0860 4676  C:\Windows\System32\drivers\PGEffect.sys - ok
23:00:34.0875 4676  [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
23:00:34.0875 4676  C:\Windows\System32\lpk.dll - ok
23:00:34.0875 4676  [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\System32\comctl32.dll
23:00:34.0875 4676  C:\Windows\System32\comctl32.dll - ok
23:00:34.0875 4676  [ D05E03C1B2824236531F5E37334B6A8A ] C:\Windows\System32\cfgmgr32.dll
23:00:34.0875 4676  C:\Windows\System32\cfgmgr32.dll - ok
23:00:34.0875 4676  [ D256EB74BF77026FC9A3D7193861C7AD ] C:\Windows\System32\crypt32.dll
23:00:34.0875 4676  C:\Windows\System32\crypt32.dll - ok
23:00:34.0891 4676  [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] C:\Windows\System32\drivers\udfs.sys
23:00:34.0891 4676  C:\Windows\System32\drivers\udfs.sys - ok
23:00:34.0891 4676  [ 987508ED06FC097E754A91BA8A8AAD0E ] C:\Windows\System32\wintrust.dll
23:00:34.0891 4676  C:\Windows\System32\wintrust.dll - ok
23:00:34.0891 4676  [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
23:00:34.0891 4676  C:\Windows\System32\devobj.dll - ok
23:00:34.0906 4676  [ 6657128E165146058C94E33FB497BB50 ] C:\Windows\System32\KernelBase.dll
23:00:34.0906 4676  C:\Windows\System32\KernelBase.dll - ok
23:00:34.0906 4676  [ 98FB7DD3B28A92E3C0E5B4BD9D63EF01 ] C:\Windows\System32\msasn1.dll
23:00:34.0906 4676  C:\Windows\System32\msasn1.dll - ok
23:00:34.0906 4676  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
23:00:34.0906 4676  C:\Windows\SysWOW64\normaliz.dll - ok
23:00:34.0906 4676  [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
23:00:34.0906 4676  C:\Windows\System32\drivers\dxapi.sys - ok
23:00:34.0922 4676  [ 298CC3E47CB19627639BFA84F424BDD4 ] C:\Windows\System32\win32k.sys
23:00:34.0922 4676  C:\Windows\System32\win32k.sys - ok
23:00:34.0922 4676  [ E730EADB8F176DB06A378435BEB2E823 ] C:\Windows\System32\csrsrv.dll
23:00:34.0922 4676  C:\Windows\System32\csrsrv.dll - ok
23:00:34.0922 4676  [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
23:00:34.0922 4676  C:\Windows\System32\csrss.exe - ok
23:00:34.0922 4676  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
23:00:34.0922 4676  C:\Windows\System32\basesrv.dll - ok
23:00:34.0938 4676  [ C4C551E6AB333C0EB812A3A4672E89DB ] C:\Windows\System32\winsrv.dll
23:00:34.0938 4676  C:\Windows\System32\winsrv.dll - ok
23:00:34.0938 4676  [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
23:00:34.0938 4676  C:\Windows\System32\drivers\monitor.sys - ok
23:00:34.0938 4676  [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
23:00:34.0938 4676  C:\Windows\System32\tsddd.dll - ok
23:00:34.0953 4676  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
23:00:34.0953 4676  C:\Windows\System32\sxssrv.dll - ok
23:00:34.0953 4676  [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
23:00:34.0953 4676  C:\Windows\System32\wininit.exe - ok
23:00:34.0953 4676  [ B9A047D231D32FDF5AF2F281E4326A9D ] C:\Windows\System32\KBDUS.DLL
23:00:34.0953 4676  C:\Windows\System32\KBDUS.DLL - ok
23:00:34.0953 4676  [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
23:00:34.0953 4676  C:\Windows\System32\profapi.dll - ok
23:00:34.0969 4676  [ F4389DA7DBDA2E7D292D360CF8E400C7 ] C:\Windows\System32\RpcRtRemote.dll
23:00:34.0969 4676  C:\Windows\System32\RpcRtRemote.dll - ok
23:00:34.0969 4676  [ 100BDF2F89D6056CEE900BB6156DA737 ] C:\Windows\System32\cdd.dll
23:00:34.0969 4676  C:\Windows\System32\cdd.dll - ok
23:00:34.0969 4676  [ 456C92A9D8DB51B9938A6234BBC65FC9 ] C:\Windows\System32\sxs.dll
23:00:34.0969 4676  C:\Windows\System32\sxs.dll - ok
23:00:34.0969 4676  [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
23:00:34.0969 4676  C:\Windows\System32\WlS0WndH.dll - ok
23:00:34.0984 4676  [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
23:00:34.0984 4676  C:\Windows\System32\cryptbase.dll - ok
23:00:34.0984 4676  [ 01A465AC251BCCF6037DF2EF28AA4292 ] C:\Windows\System32\apphelp.dll
23:00:34.0984 4676  C:\Windows\System32\apphelp.dll - ok
23:00:34.0984 4676  [ DA3E2A6FA9660CC75B471530CE88453A ] C:\Windows\System32\winlogon.exe
23:00:34.0984 4676  C:\Windows\System32\winlogon.exe - ok
23:00:34.0984 4676  [ BFA69408620587AFDEC2E8C12CA60492 ] C:\Windows\System32\lsasrv.dll
23:00:34.0984 4676  C:\Windows\System32\lsasrv.dll - ok
23:00:35.0000 4676  [ 156F6159457D0AA7E59B62681B56EB90 ] C:\Windows\System32\lsass.exe
23:00:35.0000 4676  C:\Windows\System32\lsass.exe - ok
23:00:35.0000 4676  [ 04FCA22B77A2E37332CC8226187AF87B ] C:\Windows\System32\lsm.exe
23:00:35.0000 4676  C:\Windows\System32\lsm.exe - ok
23:00:35.0000 4676  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
23:00:35.0000 4676  C:\Windows\System32\services.exe - ok
23:00:35.0000 4676  [ 68EA2513CA68AD8F741FF4F5B8D8590C ] C:\Windows\System32\sspisrv.dll
23:00:35.0000 4676  C:\Windows\System32\sspisrv.dll - ok
23:00:35.0016 4676  [ D8C88512BA9544AE1CC2034F50ECFA12 ] C:\Windows\System32\winsta.dll
23:00:35.0016 4676  C:\Windows\System32\winsta.dll - ok
23:00:35.0016 4676  [ 1F582C6C84D5243692F9C3E04D0A663F ] C:\Windows\System32\sspicli.dll
23:00:35.0016 4676  C:\Windows\System32\sspicli.dll - ok
23:00:35.0016 4676  [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
23:00:35.0016 4676  C:\Windows\System32\sysntfy.dll - ok
23:00:35.0016 4676  [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
23:00:35.0016 4676  C:\Windows\System32\wmsgapi.dll - ok
23:00:35.0031 4676  [ B160ADAEFC76031D92C4FBAC0918B033 ] C:\Windows\System32\samsrv.dll
23:00:35.0031 4676  C:\Windows\System32\samsrv.dll - ok
23:00:35.0031 4676  [ 941AF3C8B0DE1B359BE22DD3288A8C8E ] C:\Windows\System32\scesrv.dll
23:00:35.0031 4676  C:\Windows\System32\scesrv.dll - ok
23:00:35.0031 4676  [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
23:00:35.0031 4676  C:\Windows\System32\scext.dll - ok
23:00:35.0047 4676  [ 74A0871810BF0F2AA3EB6681E9BECDD3 ] C:\Windows\System32\secur32.dll
23:00:35.0047 4676  C:\Windows\System32\secur32.dll - ok
23:00:35.0047 4676  [ D23371AB9607651937C7641A38CD52BC ] C:\Windows\System32\srvcli.dll
23:00:35.0047 4676  C:\Windows\System32\srvcli.dll - ok
23:00:35.0047 4676  [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
23:00:35.0047 4676  C:\Windows\System32\cryptdll.dll - ok
23:00:35.0047 4676  [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
23:00:35.0047 4676  C:\Windows\System32\wevtapi.dll - ok
23:00:35.0062 4676  [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
23:00:35.0062 4676  C:\Windows\System32\aelupsvc.dll - ok
23:00:35.0062 4676  [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
23:00:35.0062 4676  C:\Windows\System32\authz.dll - ok
23:00:35.0062 4676  [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
23:00:35.0062 4676  C:\Windows\System32\cngaudit.dll - ok
23:00:35.0062 4676  [ E2D60E901428A72BB47931C938A1ED95 ] C:\Windows\System32\ncrypt.dll
23:00:35.0062 4676  C:\Windows\System32\ncrypt.dll - ok
23:00:35.0078 4676  [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
23:00:35.0078 4676  C:\Windows\System32\bcrypt.dll - ok
23:00:35.0078 4676  [ 3290D6946B5E30E70414990574883DDB ] C:\Windows\System32\alg.exe
23:00:35.0078 4676  C:\Windows\System32\alg.exe - ok
23:00:35.0078 4676  [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
23:00:35.0078 4676  C:\Windows\System32\msprivs.dll - ok
23:00:35.0078 4676  [ B561B451320B0B40908A8BFD81705262 ] C:\Windows\System32\netjoin.dll
23:00:35.0078 4676  C:\Windows\System32\netjoin.dll - ok
23:00:35.0094 4676  [ 0BC381A15355A3982216F7172F545DE1 ] C:\Windows\System32\appidsvc.dll
23:00:35.0094 4676  C:\Windows\System32\appidsvc.dll - ok
23:00:35.0094 4676  [ 00B40A10E3DB79E4D3E127B9C2233A6B ] C:\Windows\System32\kerberos.dll
23:00:35.0094 4676  C:\Windows\System32\kerberos.dll - ok
23:00:35.0094 4676  [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
23:00:35.0094 4676  C:\Windows\System32\negoexts.dll - ok
23:00:35.0109 4676  [ D065BE66822847B7F127D1F90158376E ] C:\Windows\System32\appinfo.dll
23:00:35.0109 4676  C:\Windows\System32\appinfo.dll - ok
23:00:35.0109 4676  [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
23:00:35.0109 4676  C:\Windows\System32\rascfg.dll - ok
23:00:35.0109 4676  [ 07721A77180EDD4D39CCB865BF63C7FD ] C:\Windows\System32\audiosrv.dll
23:00:35.0109 4676  C:\Windows\System32\audiosrv.dll - ok
23:00:35.0109 4676  [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
23:00:35.0109 4676  C:\Windows\System32\cryptsp.dll - ok
23:00:35.0125 4676  [ FC76FE3C1E1FDB761244D4F74EF560FD ] C:\Windows\System32\mswsock.dll
23:00:35.0125 4676  C:\Windows\System32\mswsock.dll - ok
23:00:35.0125 4676  [ B20B5FA5CA050E9926E4D1DB81501B32 ] C:\Windows\System32\AxInstSv.dll
23:00:35.0125 4676  C:\Windows\System32\AxInstSv.dll - ok
23:00:35.0125 4676  [ FA4DB05923DDDEDE3196ABD09AE0F1E9 ] C:\Windows\System32\msv1_0.dll
23:00:35.0125 4676  C:\Windows\System32\msv1_0.dll - ok
23:00:35.0125 4676  [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
23:00:35.0125 4676  C:\Windows\System32\wship6.dll - ok
23:00:35.0140 4676  [ FDE360167101B4E45A96F939F388AEB0 ] C:\Windows\System32\bdesvc.dll
23:00:35.0140 4676  C:\Windows\System32\bdesvc.dll - ok
23:00:35.0140 4676  [ 956D030D375F207B22FB111E06EF9C35 ] C:\Windows\System32\netlogon.dll
23:00:35.0140 4676  C:\Windows\System32\netlogon.dll - ok
23:00:35.0140 4676  [ 4992C609A6315671463E30F6512BC022 ] C:\Windows\System32\BFE.DLL
23:00:35.0140 4676  C:\Windows\System32\BFE.DLL - ok
23:00:35.0156 4676  [ E247E7DEB20C0CF0801A8AC39E9CE1DF ] C:\Windows\System32\dnsapi.dll
23:00:35.0156 4676  C:\Windows\System32\dnsapi.dll - ok
23:00:35.0156 4676  [ 8CE22E63F08613036DF8C7B00FBDF36B ] C:\Windows\System32\logoncli.dll
23:00:35.0156 4676  C:\Windows\System32\logoncli.dll - ok
23:00:35.0156 4676  [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] C:\Windows\System32\qmgr.dll
23:00:35.0156 4676  C:\Windows\System32\qmgr.dll - ok
23:00:35.0156 4676  [ 90B780886BD813882CB382FF3E90E092 ] C:\Windows\System32\schannel.dll
23:00:35.0156 4676  C:\Windows\System32\schannel.dll - ok
23:00:35.0172 4676  [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
23:00:35.0172 4676  C:\Windows\System32\wdigest.dll - ok
23:00:35.0172 4676  [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
23:00:35.0172 4676  C:\Windows\System32\rsaenh.dll - ok
23:00:35.0172 4676  [ 0DEFD5FBF801DD8F83BC0ED09861A8EC ] C:\Windows\System32\TSpkg.dll
23:00:35.0172 4676  C:\Windows\System32\TSpkg.dll - ok
23:00:35.0172 4676  [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
23:00:35.0172 4676  C:\Windows\System32\pku2u.dll - ok
23:00:35.0187 4676  [ DA090E97E57DCB48888015B5D3C749CD ] C:\Windows\System32\bcryptprimitives.dll
23:00:35.0187 4676  C:\Windows\System32\bcryptprimitives.dll - ok
23:00:35.0187 4676  [ 6B054C67AAA87843504E8E3C09102009 ] C:\Windows\System32\browser.dll
23:00:35.0187 4676  C:\Windows\System32\browser.dll - ok
23:00:35.0187 4676  [ 2D066FBE63F7026C43C662C094B98076 ] C:\Windows\System32\bridgeres.dll
23:00:35.0187 4676  C:\Windows\System32\bridgeres.dll - ok
23:00:35.0187 4676  [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
23:00:35.0203 4676  C:\Windows\System32\efslsaext.dll - ok
23:00:35.0203 4676  [ 9301B8810B2DA4EB6AD55DB75FC1E339 ] C:\Windows\System32\credssp.dll
23:00:35.0203 4676  C:\Windows\System32\credssp.dll - ok
23:00:35.0203 4676  [ 398712DDDAEFB85EDF61DF6A07B65C79 ] C:\Windows\System32\scecli.dll
23:00:35.0203 4676  C:\Windows\System32\scecli.dll - ok
23:00:35.0203 4676  [ 95F9C2976059462CBBF227F7AAB10DE9 ] C:\Windows\System32\bthserv.dll
23:00:35.0203 4676  C:\Windows\System32\bthserv.dll - ok
23:00:35.0218 4676  [ 312E2F82AF11E79906898AC3E3D58A1F ] C:\Windows\System32\certprop.dll
23:00:35.0218 4676  C:\Windows\System32\certprop.dll - ok
23:00:35.0218 4676  [ FE1EC06F2253F691FE36217C592A0206 ] C:\Windows\System32\clfs.sys
23:00:35.0218 4676  C:\Windows\System32\clfs.sys - ok
23:00:35.0218 4676  [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
23:00:35.0218 4676  C:\Windows\System32\comres.dll - ok
23:00:35.0218 4676  [ BAF19B633933A9FB4883D27D66C39E9A ] C:\Windows\System32\cryptsvc.dll
23:00:35.0218 4676  C:\Windows\System32\cryptsvc.dll - ok
23:00:35.0234 4676  [ 732E668096B1A37B7BFD4B9021E69A8E ] C:\Windows\System32\oleres.dll
23:00:35.0234 4676  C:\Windows\System32\oleres.dll - ok
23:00:35.0234 4676  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] C:\Windows\System32\defragsvc.dll
23:00:35.0234 4676  C:\Windows\System32\defragsvc.dll - ok
23:00:35.0234 4676  [ CE3B9562D997F69B330D181A8875960F ] C:\Windows\System32\dhcpcore.dll
23:00:35.0234 4676  C:\Windows\System32\dhcpcore.dll - ok
23:00:35.0234 4676  [ 14452ACDB09B70964C8C21BF80A13ACB ] C:\Windows\System32\dot3svc.dll
23:00:35.0234 4676  C:\Windows\System32\dot3svc.dll - ok
23:00:35.0250 4676  [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] C:\Windows\System32\dps.dll
23:00:35.0250 4676  C:\Windows\System32\dps.dll - ok
23:00:35.0250 4676  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
23:00:35.0250 4676  C:\Windows\System32\eapsvc.dll - ok
23:00:35.0250 4676  [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
23:00:35.0250 4676  C:\Windows\System32\efssvc.dll - ok
23:00:35.0250 4676  [ 47C071994C3F649F23D9CD075AC9304A ] C:\Windows\ehome\ehrecvr.exe
23:00:35.0250 4676  C:\Windows\ehome\ehrecvr.exe - ok
23:00:35.0265 4676  [ 4705E8EF9934482C5BB488CE28AFC681 ] C:\Windows\ehome\ehsched.exe
23:00:35.0265 4676  C:\Windows\ehome\ehsched.exe - ok
23:00:35.0265 4676  [ 99ABDA9C92EC76CBAF52F00239D909C9 ] C:\Windows\System32\wevtsvc.dll
23:00:35.0265 4676  C:\Windows\System32\wevtsvc.dll - ok
23:00:35.0265 4676  [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
23:00:35.0265 4676  C:\Windows\System32\FXSRESM.dll - ok
23:00:35.0281 4676  [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
23:00:35.0281 4676  C:\Windows\System32\fdPHost.dll - ok
23:00:35.0281 4676  [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
23:00:35.0281 4676  C:\Windows\System32\FDResPub.dll - ok
23:00:35.0281 4676  [ 655661BE46B5F5F3FD454E2C3095B930 ] C:\Windows\System32\drivers\fileinfo.sys
23:00:35.0281 4676  C:\Windows\System32\drivers\fileinfo.sys - ok
23:00:35.0281 4676  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] C:\Windows\System32\drivers\filetrace.sys
23:00:35.0281 4676  C:\Windows\System32\drivers\filetrace.sys - ok
23:00:35.0296 4676  [ F7866AF72ABBAF84B1FA5AA195378C59 ] C:\Windows\System32\drivers\fltMgr.sys
23:00:35.0296 4676  C:\Windows\System32\drivers\fltMgr.sys - ok
23:00:35.0296 4676  [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] C:\Windows\System32\FntCache.dll
23:00:35.0296 4676  C:\Windows\System32\FntCache.dll - ok
23:00:35.0296 4676  [ E60BB0CDC5EA153F6D24C51AAD4A73FD ] C:\Windows\System32\PresentationHost.exe
23:00:35.0296 4676  C:\Windows\System32\PresentationHost.exe - ok
23:00:35.0296 4676  [ D43703496149971890703B4B1B723EAC ] C:\Windows\System32\drivers\fsdepends.sys
23:00:35.0296 4676  C:\Windows\System32\drivers\fsdepends.sys - ok
23:00:35.0312 4676  [ AE87BA80D0EC3B57126ED2CDC15B24ED ] C:\Windows\System32\drivers\fvevol.sys
23:00:35.0312 4676  C:\Windows\System32\drivers\fvevol.sys - ok
23:00:35.0312 4676  [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
23:00:35.0312 4676  C:\Windows\System32\gpapi.dll - ok
23:00:35.0312 4676  [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
23:00:35.0312 4676  C:\Windows\System32\hidserv.dll - ok
23:00:35.0328 4676  [ EFA58EDE58DD74388FFD04CB32681518 ] C:\Windows\System32\KMSVC.DLL
23:00:35.0328 4676  C:\Windows\System32\KMSVC.DLL - ok
23:00:35.0328 4676  [ 046B2673767CA626E2CFB7FDF735E9E8 ] C:\Windows\System32\ListSvc.dll
23:00:35.0328 4676  C:\Windows\System32\ListSvc.dll - ok
23:00:35.0328 4676  [ 06A7422224D9865A5613710A089987DF ] C:\Windows\System32\provsvc.dll
23:00:35.0328 4676  C:\Windows\System32\provsvc.dll - ok
23:00:35.0328 4676  [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] C:\Windows\System32\drivers\http.sys
23:00:35.0328 4676  C:\Windows\System32\drivers\http.sys - ok
23:00:35.0343 4676  [ F17766A19145F111856378DF337A5D79 ] C:\Windows\System32\drivers\hwpolicy.sys
23:00:35.0343 4676  C:\Windows\System32\drivers\hwpolicy.sys - ok
23:00:35.0343 4676  [ B9E2DAF71E44626011D70B4889171504 ] C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll
23:00:35.0343 4676  C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll - ok
23:00:35.0343 4676  [ C5B4683680DF085B57BC53E5EF34861F ] C:\Windows\System32\IKEEXT.DLL
23:00:35.0343 4676  C:\Windows\System32\IKEEXT.DLL - ok
23:00:35.0343 4676  [ 098A91C54546A3B878DAD6A7E90A455B ] C:\Windows\System32\IPBusEnum.dll
23:00:35.0343 4676  C:\Windows\System32\IPBusEnum.dll - ok
23:00:35.0359 4676  [ F8E058D17363EC580E4B7232778B6CB5 ] C:\Windows\System32\iphlpsvc.dll
23:00:35.0359 4676  C:\Windows\System32\iphlpsvc.dll - ok
23:00:35.0359 4676  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] C:\Windows\System32\drivers\irenum.sys
23:00:35.0359 4676  C:\Windows\System32\drivers\irenum.sys - ok
23:00:35.0359 4676  [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
23:00:35.0359 4676  C:\Windows\System32\keyiso.dll - ok
23:00:35.0374 4676  [ 81F1D04D4D0E433099365127375FD501 ] C:\Windows\System32\srvsvc.dll
23:00:35.0374 4676  C:\Windows\System32\srvsvc.dll - ok
23:00:35.0374 4676  [ 27026EAC8818E8A6C00A1CAD2F11D29A ] C:\Windows\System32\wkssvc.dll
23:00:35.0374 4676  C:\Windows\System32\wkssvc.dll - ok
23:00:35.0374 4676  [ 7A757C41C3879CD34BDE15F0563C0CE2 ] C:\Windows\System32\lltdres.dll
23:00:35.0374 4676  C:\Windows\System32\lltdres.dll - ok
23:00:35.0374 4676  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
23:00:35.0374 4676  C:\Windows\System32\drivers\luafv.sys - ok
23:00:35.0390 4676  [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
23:00:35.0390 4676  C:\Windows\System32\lmhsvc.dll - ok
23:00:35.0390 4676  [ E5DE3FFD785B6730291AD98E491D58BA ] C:\Windows\ehome\ehres.dll
23:00:35.0390 4676  C:\Windows\ehome\ehres.dll - ok
23:00:35.0390 4676  [ 791AF66C4D0E7C90A3646066386FB571 ] C:\Windows\System32\drivers\mountmgr.sys
23:00:35.0390 4676  C:\Windows\System32\drivers\mountmgr.sys - ok
23:00:35.0390 4676  [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
23:00:35.0390 4676  C:\Windows\System32\mmcss.dll - ok
23:00:35.0406 4676  [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
23:00:35.0406 4676  C:\Windows\System32\FirewallAPI.dll - ok
23:00:35.0406 4676  [ 733006127F235BE7C35354EBEE7B9A7B ] C:\Windows\System32\WebClnt.dll
23:00:35.0406 4676  C:\Windows\System32\WebClnt.dll - ok
23:00:35.0406 4676  [ F9D215A46A8B9753F61767FA72A20326 ] C:\Windows\System32\drivers\mshidkmdf.sys
23:00:35.0406 4676  C:\Windows\System32\drivers\mshidkmdf.sys - ok
23:00:35.0421 4676  [ E11E3F3BBEFDC5C0C160BE13B65E25E4 ] C:\Windows\System32\iscsidsc.dll
23:00:35.0421 4676  C:\Windows\System32\iscsidsc.dll - ok
23:00:35.0421 4676  [ 8EE1C893C50D1C02D4675978BAC756BA ] C:\Windows\System32\msimsg.dll
23:00:35.0421 4676  C:\Windows\System32\msimsg.dll - ok
23:00:35.0421 4676  [ F9A18612FD3526FE473C1BDA678D61C8 ] C:\Windows\System32\drivers\mup.sys
23:00:35.0421 4676  C:\Windows\System32\drivers\mup.sys - ok
23:00:35.0421 4676  [ 4987E079A4530FA737A128BE54B63B12 ] C:\Windows\System32\QAGENTRT.DLL
23:00:35.0421 4676  C:\Windows\System32\QAGENTRT.DLL - ok
23:00:35.0437 4676  [ CAD515DBD07D082BB317D9928CE8962C ] C:\Windows\System32\drivers\ndis.sys
23:00:35.0437 4676  C:\Windows\System32\drivers\ndis.sys - ok
23:00:35.0437 4676  [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
23:00:35.0437 4676  C:\Windows\System32\netman.dll - ok
23:00:35.0437 4676  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
23:00:35.0437 4676  C:\Windows\System32\netprofm.dll - ok
23:00:35.0437 4676  [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] C:\Windows\System32\nlasvc.dll
23:00:35.0437 4676  C:\Windows\System32\nlasvc.dll - ok
23:00:35.0452 4676  [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
23:00:35.0452 4676  C:\Windows\System32\nsisvc.dll - ok
23:00:35.0452 4676  [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
23:00:35.0452 4676  C:\Windows\System32\pnrpsvc.dll - ok
23:00:35.0452 4676  [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
23:00:35.0452 4676  C:\Windows\System32\p2psvc.dll - ok
23:00:35.0452 4676  [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] C:\Windows\System32\drivers\partmgr.sys
23:00:35.0452 4676  C:\Windows\System32\drivers\partmgr.sys - ok
23:00:35.0468 4676  [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
23:00:35.0468 4676  C:\Windows\System32\pcasvc.dll - ok
23:00:35.0468 4676  [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] C:\Windows\System32\pla.dll
23:00:35.0468 4676  C:\Windows\System32\pla.dll - ok
23:00:35.0468 4676  [ 98B1721B8718164293B9701B98C52D77 ] C:\Windows\System32\umpnpmgr.dll
23:00:35.0468 4676  C:\Windows\System32\umpnpmgr.dll - ok
23:00:35.0484 4676  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] C:\Windows\System32\pnrpauto.dll
23:00:35.0484 4676  C:\Windows\System32\pnrpauto.dll - ok
23:00:35.0484 4676  [ 8DEC9C6DD13C4B3B62CD8D5A0FEF1650 ] C:\Windows\System32\polstore.dll
23:00:35.0484 4676  C:\Windows\System32\polstore.dll - ok
23:00:35.0484 4676  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
23:00:35.0484 4676  C:\Windows\System32\umpo.dll - ok
23:00:35.0484 4676  [ 97293447431311C06703368AD0F6C4BE ] C:\Windows\System32\profsvc.dll
23:00:35.0484 4676  C:\Windows\System32\profsvc.dll - ok
23:00:35.0499 4676  [ AB95FBAE4F9A5A56B177CEC427B2B35E ] C:\Windows\System32\psbase.dll
23:00:35.0499 4676  C:\Windows\System32\psbase.dll - ok
23:00:35.0499 4676  [ 906191634E99AEA92C4816150BDA3732 ] C:\Windows\System32\qwave.dll
23:00:35.0499 4676  C:\Windows\System32\qwave.dll - ok
23:00:35.0499 4676  [ 76707BB36430888D9CE9D705398ADB6C ] C:\Windows\System32\drivers\qwavedrv.sys
23:00:35.0499 4676  C:\Windows\System32\drivers\qwavedrv.sys - ok
23:00:35.0499 4676  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] C:\Windows\System32\rasauto.dll
23:00:35.0499 4676  C:\Windows\System32\rasauto.dll - ok
23:00:35.0515 4676  [ 47394ED3D16D053F5906EFE5AB51CC83 ] C:\Windows\System32\rasmans.dll
23:00:35.0515 4676  C:\Windows\System32\rasmans.dll - ok
23:00:35.0515 4676  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
23:00:35.0515 4676  C:\Windows\System32\sstpsvc.dll - ok
23:00:35.0515 4676  [ 254FB7A22D74E5511C73A3F6D802F192 ] C:\Windows\System32\mprdim.dll
23:00:35.0515 4676  C:\Windows\System32\mprdim.dll - ok
23:00:35.0515 4676  [ E4D94F24081440B5FC5AA556C7C62702 ] C:\Windows\System32\regsvc.dll
23:00:35.0515 4676  C:\Windows\System32\regsvc.dll - ok
23:00:35.0530 4676  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
23:00:35.0530 4676  C:\Windows\System32\RpcEpMap.dll - ok
23:00:35.0530 4676  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] C:\Windows\System32\Locator.exe
23:00:35.0530 4676  C:\Windows\System32\Locator.exe - ok
23:00:35.0530 4676  [ 9B7395789E3791A3B6D000FE6F8B131E ] C:\Windows\System32\SCardSvr.dll
23:00:35.0530 4676  C:\Windows\System32\SCardSvr.dll - ok
23:00:35.0546 4676  [ C94DA20C7E3BA1DCA269BC8460D98387 ] C:\Windows\System32\drivers\scfilter.sys
23:00:35.0546 4676  C:\Windows\System32\drivers\scfilter.sys - ok
23:00:35.0546 4676  [ 624D0F5FF99428BB90A5B8A4123E918E ] C:\Windows\System32\schedsvc.dll
23:00:35.0546 4676  C:\Windows\System32\schedsvc.dll - ok
23:00:35.0546 4676  [ 765A27C3279CE11D14CB9E4F5869FCA5 ] C:\Windows\System32\sdrsvc.dll
23:00:35.0546 4676  C:\Windows\System32\sdrsvc.dll - ok
23:00:35.0546 4676  [ 463B386EBC70F98DA5DFF85F7E654346 ] C:\Windows\System32\seclogon.dll
23:00:35.0546 4676  C:\Windows\System32\seclogon.dll - ok
23:00:35.0562 4676  [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
23:00:35.0562 4676  C:\Windows\System32\Sens.dll - ok
23:00:35.0562 4676  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] C:\Windows\System32\sensrsvc.dll
23:00:35.0562 4676  C:\Windows\System32\sensrsvc.dll - ok
23:00:35.0562 4676  [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] C:\Windows\System32\SessEnv.dll
23:00:35.0562 4676  C:\Windows\System32\SessEnv.dll - ok
23:00:35.0562 4676  [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
23:00:35.0562 4676  C:\Windows\System32\ipnathlp.dll - ok
23:00:35.0577 4676  [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] C:\Windows\System32\shsvcs.dll
23:00:35.0577 4676  C:\Windows\System32\shsvcs.dll - ok
23:00:35.0577 4676  [ 1FCD619D8542A248D4E1FF72FFB0E56B ] C:\Windows\System32\tcpipcfg.dll
23:00:35.0577 4676  C:\Windows\System32\tcpipcfg.dll - ok
23:00:35.0577 4676  [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
23:00:35.0577 4676  C:\Windows\System32\snmptrap.exe - ok
23:00:35.0593 4676  [ 567977DC43CC13C4C35ED7084C0B84D5 ] C:\Windows\System32\spoolsv.exe
23:00:35.0593 4676  C:\Windows\System32\spoolsv.exe - ok
23:00:35.0593 4676  [ 913D843498553A1BC8F8DBAD6358E49F ] C:\Windows\System32\sppsvc.exe
23:00:35.0593 4676  C:\Windows\System32\sppsvc.exe - ok
23:00:35.0593 4676  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] C:\Windows\System32\sppuinotify.dll
23:00:35.0593 4676  C:\Windows\System32\sppuinotify.dll - ok
23:00:35.0593 4676  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
23:00:35.0593 4676  C:\Windows\System32\ssdpsrv.dll - ok
23:00:35.0608 4676  [ 52D0E33B681BD0F33FDC08812FEE4F7D ] C:\Windows\System32\wiaservc.dll
23:00:35.0608 4676  C:\Windows\System32\wiaservc.dll - ok
23:00:35.0608 4676  [ E08E46FDD841B7184194011CA1955A0B ] C:\Windows\System32\swprv.dll
23:00:35.0608 4676  C:\Windows\System32\swprv.dll - ok
23:00:35.0608 4676  [ 3C1284516A62078FB68F768DE4F1A7BE ] C:\Windows\System32\sysmain.dll
23:00:35.0608 4676  C:\Windows\System32\sysmain.dll - ok
23:00:35.0608 4676  [ 238935C3CF2854886DC7CBB2A0E2CC66 ] C:\Windows\System32\TabSvc.dll
23:00:35.0608 4676  C:\Windows\System32\TabSvc.dll - ok
23:00:35.0624 4676  [ 884264AC597B690C5707C89723BB8E7B ] C:\Windows\System32\tapisrv.dll
23:00:35.0624 4676  C:\Windows\System32\tapisrv.dll - ok
23:00:35.0624 4676  [ 1BE03AC720F4D302EA01D40F588162F6 ] C:\Windows\System32\tbssvc.dll
23:00:35.0624 4676  C:\Windows\System32\tbssvc.dll - ok
23:00:35.0624 4676  [ 0F05EC2887BFE197AD82A13287D2F404 ] C:\Windows\System32\termsrv.dll
23:00:35.0624 4676  C:\Windows\System32\termsrv.dll - ok
23:00:35.0624 4676  [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
23:00:35.0624 4676  C:\Windows\System32\themeservice.dll - ok
23:00:35.0640 4676  [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
23:00:35.0640 4676  C:\Windows\System32\trkwks.dll - ok
23:00:35.0640 4676  [ 840F7FB849F5887A49BA18C13B2DA920 ] C:\Windows\servicing\TrustedInstaller.exe
23:00:35.0640 4676  C:\Windows\servicing\TrustedInstaller.exe - ok
23:00:35.0640 4676  [ 61B96C26131E37B24E93327A0BD1FB95 ] C:\Windows\System32\drivers\tssecsrv.sys
23:00:35.0640 4676  C:\Windows\System32\drivers\tssecsrv.sys - ok
23:00:35.0655 4676  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] C:\Windows\System32\UI0Detect.exe
23:00:35.0655 4676  C:\Windows\System32\UI0Detect.exe - ok
23:00:35.0655 4676  [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
23:00:35.0655 4676  C:\Windows\System32\upnphost.dll - ok
23:00:35.0655 4676  [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
23:00:35.0655 4676  C:\Windows\System32\dwm.exe - ok
23:00:35.0655 4676  [ 567BC1309E05FCFA680ADB6E02260736 ] C:\Windows\System32\vaultsvc.dll
23:00:35.0655 4676  C:\Windows\System32\vaultsvc.dll - ok
23:00:35.0671 4676  [ 44D73E0BBC1D3C8981304BA15135C2F2 ] C:\Windows\System32\vds.exe
23:00:35.0671 4676  C:\Windows\System32\vds.exe - ok
23:00:35.0671 4676  [ 99B0CBB569CA79ACAED8C91461D765FB ] C:\Windows\System32\drivers\volmgrx.sys
23:00:35.0671 4676  C:\Windows\System32\drivers\volmgrx.sys - ok
23:00:35.0671 4676  [ 787898BF9FB6D7BD87A36E2D95C899BA ] C:\Windows\System32\VSSVC.exe
23:00:35.0671 4676  C:\Windows\System32\VSSVC.exe - ok
23:00:35.0686 4676  [ 1C9D80CC3849B3788048078C26486E1A ] C:\Windows\System32\w32time.dll
23:00:35.0686 4676  C:\Windows\System32\w32time.dll - ok
23:00:35.0686 4676  [ 05E9265E2228799B68DC0F58A94E1AB8 ] C:\Windows\System32\Wat\WatUX.exe
23:00:35.0686 4676  C:\Windows\System32\Wat\WatUX.exe - ok
23:00:35.0686 4676  [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] C:\Windows\System32\wbengine.exe
23:00:35.0686 4676  C:\Windows\System32\wbengine.exe - ok
23:00:35.0686 4676  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] C:\Windows\System32\wbiosrvc.dll
23:00:35.0686 4676  C:\Windows\System32\wbiosrvc.dll - ok
23:00:35.0702 4676  [ DD1BAE8EBFC653824D29CCF8C9054D68 ] C:\Windows\System32\wcncsvc.dll
23:00:35.0702 4676  C:\Windows\System32\wcncsvc.dll - ok
23:00:35.0702 4676  [ 20F7441334B18CEE52027661DF4A6129 ] C:\Windows\System32\WcsPlugInService.dll
23:00:35.0702 4676  C:\Windows\System32\WcsPlugInService.dll - ok
23:00:35.0702 4676  [ 442783E2CB0DA19873B7A63833FF4CB4 ] C:\Windows\System32\drivers\Wdf01000.sys
23:00:35.0702 4676  C:\Windows\System32\drivers\Wdf01000.sys - ok
23:00:35.0702 4676  [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
23:00:35.0702 4676  C:\Windows\System32\wdi.dll - ok
23:00:35.0718 4676  [ C749025A679C5103E575E3B48E092C43 ] C:\Windows\System32\wecsvc.dll
23:00:35.0718 4676  C:\Windows\System32\wecsvc.dll - ok
23:00:35.0718 4676  [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
23:00:35.0718 4676  C:\Windows\System32\wercplsupport.dll - ok
23:00:35.0718 4676  [ 6D137963730144698CBD10F202E9F251 ] C:\Windows\System32\wersvc.dll
23:00:35.0718 4676  C:\Windows\System32\wersvc.dll - ok
23:00:35.0733 4676  [ 2DA738A0A6BEE483A5647A76695AF3B0 ] C:\Program Files\Windows Defender\MsMpRes.dll
23:00:35.0733 4676  C:\Program Files\Windows Defender\MsMpRes.dll - ok
23:00:35.0733 4676  [ 0BF0C2A72F2CB0BA4382C392D3E331AF ] C:\Windows\System32\winhttp.dll
23:00:35.0733 4676  C:\Windows\System32\winhttp.dll - ok
23:00:35.0733 4676  [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
23:00:35.0733 4676  C:\Windows\System32\wbem\WMIsvc.dll - ok
23:00:35.0733 4676  [ 41FBB751936B387F9179E7F03A74FE29 ] C:\Windows\System32\WsmSvc.dll
23:00:35.0733 4676  C:\Windows\System32\WsmSvc.dll - ok
23:00:35.0749 4676  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
23:00:35.0749 4676  C:\Windows\System32\wlansvc.dll - ok
23:00:35.0749 4676  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] C:\Windows\System32\wbem\WmiApSrv.exe
23:00:35.0749 4676  C:\Windows\System32\wbem\WmiApSrv.exe - ok
23:00:35.0749 4676  [ 9BF014C20F91D97055532F2F5496E7BD ] C:\Program Files\Windows Media Player\wmpnetwk.exe
23:00:35.0749 4676  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
23:00:35.0749 4676  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] C:\Windows\System32\wpcsvc.dll
23:00:35.0749 4676  C:\Windows\System32\wpcsvc.dll - ok
23:00:35.0764 4676  [ 2E57DDF2880A7E52E76F41C7E96D327B ] C:\Windows\System32\wpdbusenum.dll
23:00:35.0764 4676  C:\Windows\System32\wpdbusenum.dll - ok
23:00:35.0764 4676  [ 8F9F3969933C02DA96EB0F84576DB43E ] C:\Windows\System32\wscsvc.dll
23:00:35.0764 4676  C:\Windows\System32\wscsvc.dll - ok
23:00:35.0764 4676  [ 8CD2A697B18069A62A035E756E51E934 ] C:\Windows\System32\SearchIndexer.exe
23:00:35.0764 4676  C:\Windows\System32\SearchIndexer.exe - ok
23:00:35.0764 4676  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
23:00:35.0780 4676  C:\Windows\System32\wuaueng.dll - ok
23:00:35.0780 4676  [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
23:00:35.0780 4676  C:\Windows\System32\drivers\WUDFPf.sys - ok
23:00:35.0780 4676  [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
23:00:35.0780 4676  C:\Windows\System32\WUDFSvc.dll - ok
23:00:35.0780 4676  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] C:\Windows\System32\wwansvc.dll
23:00:35.0780 4676  C:\Windows\System32\wwansvc.dll - ok
23:00:35.0796 4676  [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
23:00:35.0796 4676  C:\Windows\System32\ubpm.dll - ok
23:00:35.0796 4676  [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
23:00:35.0796 4676  C:\Windows\System32\SPInf.dll - ok
23:00:35.0796 4676  [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
23:00:35.0796 4676  C:\Windows\System32\svchost.exe - ok
23:00:35.0796 4676  [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
23:00:35.0796 4676  C:\Windows\System32\devrtl.dll - ok
23:00:35.0811 4676  [ 0776CF79590BDEF0A2728B0B9A813B96 ] C:\Windows\System32\userenv.dll
23:00:35.0811 4676  C:\Windows\System32\userenv.dll - ok
23:00:35.0811 4676  [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
23:00:35.0811 4676  C:\Windows\System32\pcwum.dll - ok
23:00:35.0811 4676  [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
23:00:35.0811 4676  C:\Windows\System32\powrprof.dll - ok
23:00:35.0811 4676  [ 7266972E86890E2B30C0C322E906B027 ] C:\Windows\System32\rpcss.dll
23:00:35.0811 4676  C:\Windows\System32\rpcss.dll - ok
23:00:35.0827 4676  [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
23:00:35.0827 4676  C:\Windows\System32\wshqos.dll - ok
23:00:35.0827 4676  [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
23:00:35.0827 4676  C:\Windows\System32\WSHTCPIP.DLL - ok
23:00:35.0827 4676  [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
23:00:35.0827 4676  C:\Windows\System32\version.dll - ok
23:00:35.0827 4676  [ 93E6A39B1DB898F7C949FA5567E774CF ] C:\Windows\System32\LogonUI.exe
23:00:35.0827 4676  C:\Windows\System32\LogonUI.exe - ok
23:00:35.0842 4676  [ BCF0A980D21711E47D0803BDB0E99CAD ] C:\Windows\System32\authui.dll
23:00:35.0842 4676  C:\Windows\System32\authui.dll - ok
23:00:35.0842 4676  [ DBA90306A721FB922FDACED9E9728C28 ] C:\Windows\System32\cryptui.dll
23:00:35.0842 4676  C:\Windows\System32\cryptui.dll - ok
23:00:35.0842 4676  [ 113921FC4A80A3DDF646852998B836D0 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll
23:00:35.0842 4676  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll - ok
23:00:35.0858 4676  [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
23:00:35.0858 4676  C:\Windows\System32\MMDevAPI.dll - ok
23:00:35.0858 4676  [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
23:00:35.0858 4676  C:\Windows\System32\samlib.dll - ok
23:00:35.0858 4676  [ 84F8C8B9FB1F12532999D25F5DD7E77C ] C:\Windows\System32\shacct.dll
23:00:35.0858 4676  C:\Windows\System32\shacct.dll - ok
23:00:35.0858 4676  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
23:00:35.0858 4676  C:\Windows\System32\adtschema.dll - ok
23:00:35.0874 4676  [ B27EA141A7E748B607600A8551A44D5A ] C:\Windows\System32\propsys.dll
23:00:35.0874 4676  C:\Windows\System32\propsys.dll - ok
23:00:35.0874 4676  [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
23:00:35.0874 4676  C:\Windows\System32\avrt.dll - ok
23:00:35.0874 4676  [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
23:00:35.0874 4676  C:\Program Files\Windows Defender\MpEvMsg.dll - ok
23:00:35.0889 4676  [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
23:00:35.0889 4676  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
23:00:35.0889 4676  [ AECAB449567D1846DAD63ECE49E893E3 ] C:\Windows\System32\MPSSVC.dll
23:00:35.0889 4676  C:\Windows\System32\MPSSVC.dll - ok
23:00:35.0889 4676  [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
23:00:35.0889 4676  C:\Windows\System32\PSHED.DLL - ok
23:00:35.0889 4676  [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
23:00:35.0889 4676  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
23:00:35.0905 4676  [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
23:00:35.0905 4676  C:\Windows\System32\uxtheme.dll - ok
23:00:35.0905 4676  [ DD0701DE0AAA010E6EBD0F53B672DCEE ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll
23:00:35.0905 4676  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll - ok
23:00:35.0905 4676  [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
23:00:35.0905 4676  C:\Windows\System32\dui70.dll - ok
23:00:35.0905 4676  [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
23:00:35.0905 4676  C:\Windows\System32\duser.dll - ok
23:00:35.0920 4676  [ B2E3D4BB3389817FB5E4CD9378BC8791 ] C:\Windows\System32\SndVolSSO.dll
23:00:35.0920 4676  C:\Windows\System32\SndVolSSO.dll - ok
23:00:35.0920 4676  [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
23:00:35.0920 4676  C:\Windows\System32\dwmapi.dll - ok
23:00:35.0920 4676  [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
23:00:35.0920 4676  C:\Windows\System32\hid.dll - ok
23:00:35.0936 4676  [ 39F91A948E6017B732C4A0B3086A8E32 ] C:\Windows\System32\xmllite.dll
23:00:35.0936 4676  C:\Windows\System32\xmllite.dll - ok
23:00:35.0936 4676  [ D152EBC32A23069F8AA1D1F24B15E3F9 ] C:\Windows\System32\audiodg.exe
23:00:35.0936 4676  C:\Windows\System32\audiodg.exe - ok
23:00:35.0936 4676  [ EA99F234843BBDDA1ABD2767111ADE25 ] C:\Windows\System32\WindowsCodecs.dll
23:00:35.0936 4676  C:\Windows\System32\WindowsCodecs.dll - ok
23:00:35.0936 4676  [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
23:00:35.0936 4676  C:\Windows\System32\ntmarta.dll - ok
23:00:35.0952 4676  [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
23:00:35.0952 4676  C:\Windows\System32\winmm.dll - ok
23:00:35.0952 4676  [ FE5AB4525BC2EC68B9119A6E5D40128B ] C:\Windows\System32\gpsvc.dll
23:00:35.0952 4676  C:\Windows\System32\gpsvc.dll - ok
23:00:35.0952 4676  [ 30F9BACA07F8251D7DD1805A9E919CE0 ] C:\Windows\System32\wdmaud.drv
23:00:35.0952 4676  C:\Windows\System32\wdmaud.drv - ok
23:00:35.0952 4676  [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
23:00:35.0952 4676  C:\Windows\System32\ksuser.dll - ok
23:00:35.0967 4676  [ 86E3822A34D454032D8E88C72AE8CF2D ] C:\Windows\System32\nlaapi.dll
23:00:35.0967 4676  C:\Windows\System32\nlaapi.dll - ok
23:00:35.0967 4676  [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
23:00:35.0967 4676  C:\Windows\System32\VaultCredProvider.dll - ok
23:00:35.0967 4676  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
23:00:35.0967 4676  C:\Windows\System32\winbrand.dll - ok
23:00:35.0967 4676  [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
23:00:35.0967 4676  C:\Windows\System32\atl.dll - ok
23:00:35.0983 4676  [ 2A381A9740165D7A1405148B6DFB3E38 ] C:\Windows\System32\SmartcardCredentialProvider.dll
23:00:35.0983 4676  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
23:00:35.0983 4676  [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
23:00:35.0983 4676  C:\Windows\System32\wtsapi32.dll - ok
23:00:35.0983 4676  [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
23:00:35.0983 4676  C:\Windows\System32\BioCredProv.dll - ok
23:00:35.0998 4676  [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
23:00:35.0998 4676  C:\Windows\System32\dsrole.dll - ok
23:00:35.0998 4676  [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
23:00:35.0998 4676  C:\Windows\System32\slc.dll - ok
23:00:35.0998 4676  [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
23:00:35.0998 4676  C:\Windows\System32\es.dll - ok
23:00:35.0998 4676  [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
23:00:35.0998 4676  C:\Windows\System32\winbio.dll - ok
23:00:36.0014 4676  [ 97D38371502AA797DB14EB1FA5FCE4CD ] C:\Windows\System32\credui.dll
23:00:36.0014 4676  C:\Windows\System32\credui.dll - ok
23:00:36.0014 4676  [ 3C27B50BC43D5FED43081A784DD17190 ] C:\Windows\System32\netapi32.dll
23:00:36.0014 4676  C:\Windows\System32\netapi32.dll - ok
23:00:36.0014 4676  [ 4C8C2F987FC397DCE98874D6C9C0736A ] C:\Windows\System32\netutils.dll
23:00:36.0014 4676  C:\Windows\System32\netutils.dll - ok
23:00:36.0014 4676  [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
23:00:36.0014 4676  C:\Windows\System32\vaultcli.dll - ok
23:00:36.0030 4676  [ A87205FE194B239D8D96E4972B779CC1 ] C:\Windows\System32\samcli.dll
23:00:36.0030 4676  C:\Windows\System32\samcli.dll - ok
23:00:36.0030 4676  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
23:00:36.0030 4676  C:\Windows\System32\uxsms.dll - ok
23:00:36.0030 4676  [ B33CBD1A8C2A33121321D0FEBD7DD870 ] C:\Windows\System32\wkscli.dll
23:00:36.0030 4676  C:\Windows\System32\wkscli.dll - ok
23:00:36.0045 4676  [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
23:00:36.0045 4676  C:\Windows\System32\WUDFPlatform.dll - ok
23:00:36.0045 4676  [ A5FE3B758D54C108664B1BBFA07833A3 ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVCP.dll
23:00:36.0045 4676  C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVCP.dll - ok
23:00:36.0045 4676  [ 84D6ECEAEA78C64EF280F62CBA9BCA09 ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVHelper.dll
23:00:36.0045 4676  C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVHelper.dll - ok
23:00:36.0045 4676  [ EFFB8EC0A41B0E74AD1555248F5EB0D6 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcp80.dll
23:00:36.0045 4676  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcp80.dll - ok
23:00:36.0061 4676  [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
23:00:36.0061 4676  C:\Windows\System32\drivers\lltdio.sys - ok
23:00:36.0061 4676  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
23:00:36.0061 4676  C:\Windows\System32\drivers\nwifi.sys - ok
23:00:36.0061 4676  [ 9AE75388EE2C110216B8319584E8AC34 ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVCtrl.dll
23:00:36.0061 4676  C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVCtrl.dll - ok
23:00:36.0061 4676  [ F105BA1E22BF1F2EE8F005D4305E4BEC ] C:\Windows\System32\drivers\ndisuio.sys
23:00:36.0061 4676  C:\Windows\System32\drivers\ndisuio.sys - ok
23:00:36.0076 4676  [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
23:00:36.0076 4676  C:\Windows\System32\drivers\rspndr.sys - ok
23:00:36.0076 4676  [ 57FE2CFC2F25C200499D5D934EA24EB5 ] C:\Windows\System32\IPHLPAPI.DLL
23:00:36.0076 4676  C:\Windows\System32\IPHLPAPI.DLL - ok
23:00:36.0076 4676  [ 7B8F7848D3C65DD9589A4898CFF3757D ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll
23:00:36.0076 4676  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll - ok
23:00:36.0092 4676  [ FD5BA198F7190DFE9BE1947EB8710396 ] C:\Windows\System32\nrpsrv.dll
23:00:36.0092 4676  C:\Windows\System32\nrpsrv.dll - ok
23:00:36.0092 4676  [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
23:00:36.0092 4676  C:\Windows\System32\winnsi.dll - ok
23:00:36.0092 4676  [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
23:00:36.0092 4676  C:\Windows\System32\dhcpcore6.dll - ok
23:00:36.0092 4676  [ 85CF424C74A1D5EC33533E1DBFF9920A ] C:\Windows\System32\dnsrslvr.dll
23:00:36.0092 4676  C:\Windows\System32\dnsrslvr.dll - ok
23:00:36.0108 4676  [ 982F5395AD181179320083A4FA7E7CA8 ] C:\Windows\System32\eapphost.dll
23:00:36.0108 4676  C:\Windows\System32\eapphost.dll - ok
23:00:36.0108 4676  [ 138BE04BF17193B27184DEDFE3028548 ] C:\Program Files (x86)\Cisco\Cisco LEAP Module\CiscoEapLeap.dll
23:00:36.0108 4676  C:\Program Files (x86)\Cisco\Cisco LEAP Module\CiscoEapLeap.dll - ok
23:00:36.0108 4676  [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
23:00:36.0108 4676  C:\Windows\System32\FWPUCLNT.DLL - ok
23:00:36.0108 4676  [ 2A9238A326763122424E07EF320D5D3A ] C:\Program Files\TOSHIBA\SmartFaceV\FaceRec.dll
23:00:36.0108 4676  C:\Program Files\TOSHIBA\SmartFaceV\FaceRec.dll - ok
23:00:36.0123 4676  [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
23:00:36.0123 4676  C:\Windows\System32\dhcpcsvc.dll - ok
23:00:36.0123 4676  [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
23:00:36.0123 4676  C:\Windows\System32\dnsext.dll - ok
23:00:36.0123 4676  [ A9B830EAF03F07CD92B045E613379117 ] C:\Program Files (x86)\Cisco\Cisco PEAP Module\CiscoEapPeap.dll
23:00:36.0123 4676  C:\Program Files (x86)\Cisco\Cisco PEAP Module\CiscoEapPeap.dll - ok
23:00:36.0139 4676  [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
23:00:36.0139 4676  C:\Windows\System32\dhcpcsvc6.dll - ok
23:00:36.0139 4676  [ 91175B7E997CFAC64F271A15B4217BC7 ] C:\Program Files\TOSHIBA\SmartFaceV\FaceHI.dll
23:00:36.0139 4676  C:\Program Files\TOSHIBA\SmartFaceV\FaceHI.dll - ok
23:00:36.0139 4676  [ A371EC60804CF07B4D052C295BE9FB9B ] C:\Program Files (x86)\Cisco\Cisco EAP-FAST Module\CiscoEapFast.dll
23:00:36.0139 4676  C:\Program Files (x86)\Cisco\Cisco EAP-FAST Module\CiscoEapFast.dll - ok
23:00:36.0154 4676  [ ABB8771F4C78B7D60DE24437502D6B55 ] C:\Windows\System32\rastls.dll
23:00:36.0154 4676  C:\Windows\System32\rastls.dll - ok
23:00:36.0154 4676  [ 1482CC99F7E2DA2FECF59C6A774FED0A ] C:\Windows\System32\raschap.dll
23:00:36.0154 4676  C:\Windows\System32\raschap.dll - ok
23:00:36.0154 4676  [ 2017BFE87CAB3D7EF632CFD2AA08D3F0 ] C:\Windows\System32\umb.dll
23:00:36.0154 4676  C:\Windows\System32\umb.dll - ok
23:00:36.0154 4676  [ 48A31B7CF046702059A86836DC21D786 ] C:\Windows\System32\wlanmsm.dll
23:00:36.0154 4676  C:\Windows\System32\wlanmsm.dll - ok
23:00:36.0170 4676  [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
23:00:36.0170 4676  C:\Windows\System32\wlansec.dll - ok
23:00:36.0170 4676  [ D2B0D1C2BE5ECA80387F7CB8626DCAFE ] C:\Windows\System32\onex.dll
23:00:36.0170 4676  C:\Windows\System32\onex.dll - ok
23:00:36.0170 4676  [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
23:00:36.0170 4676  C:\Windows\System32\eappprxy.dll - ok
23:00:36.0170 4676  [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
23:00:36.0170 4676  C:\Windows\System32\eappcfg.dll - ok
23:00:36.0186 4676  [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
23:00:36.0186 4676  C:\Windows\System32\l2gpstore.dll - ok
23:00:36.0186 4676  [ 22E7431E7DAE8463AF94A79A054276E5 ] C:\Windows\System32\WinSCard.dll
23:00:36.0186 4676  C:\Windows\System32\WinSCard.dll - ok
23:00:36.0186 4676  [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll



#6 ddt904

ddt904
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:01:03 PM

Posted 26 February 2013 - 11:43 PM

23:00:36.0186 4676  C:\Windows\System32\wlanutil.dll - ok
23:00:36.0186 4676  [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
23:00:36.0186 4676  C:\Windows\System32\wlgpclnt.dll - ok
23:00:36.0201 4676  [ 7C02AD2F4BEF1D5C51CB9B402AB3603F ] C:\Windows\System32\msxml6.dll
23:00:36.0201 4676  C:\Windows\System32\msxml6.dll - ok
23:00:36.0201 4676  [ C79EBD253B2E6D32F63FAEF314371443 ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVLogOn.dll
23:00:36.0201 4676  C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVLogOn.dll - ok
23:00:36.0201 4676  [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
23:00:36.0201 4676  C:\Windows\System32\ktmw32.dll - ok
23:00:36.0217 4676  [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
23:00:36.0217 4676  C:\Windows\System32\certCredProvider.dll - ok
23:00:36.0217 4676  [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
23:00:36.0217 4676  C:\Windows\System32\rasplap.dll - ok
23:00:36.0217 4676  [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
23:00:36.0217 4676  C:\Windows\System32\UXInit.dll - ok
23:00:36.0217 4676  [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
23:00:36.0217 4676  C:\Windows\System32\rasapi32.dll - ok
23:00:36.0232 4676  [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
23:00:36.0232 4676  C:\Windows\System32\rasman.dll - ok
23:00:36.0232 4676  [ 81D64E8D70E5FBF9F7ABF2D41154F54D ] C:\Windows\System32\AudioSes.dll
23:00:36.0232 4676  C:\Windows\System32\AudioSes.dll - ok
23:00:36.0232 4676  [ F5A61F0A0030C80DF319B0C14A4C8885 ] C:\Windows\System32\rtutils.dll
23:00:36.0232 4676  C:\Windows\System32\rtutils.dll - ok
23:00:36.0232 4676  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
23:00:36.0232 4676  C:\Windows\System32\msacm32.dll - ok
23:00:36.0248 4676  [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
23:00:36.0248 4676  C:\Windows\System32\msacm32.drv - ok
23:00:36.0248 4676  [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
23:00:36.0248 4676  C:\Windows\System32\midimap.dll - ok
23:00:36.0248 4676  [ 1B547066D0A6CD40EB3BAAC6A9C7E7A9 ] C:\Windows\System32\taskcomp.dll
23:00:36.0248 4676  C:\Windows\System32\taskcomp.dll - ok
23:00:36.0264 4676  [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
23:00:36.0264 4676  C:\Windows\System32\AudioEng.dll - ok
23:00:36.0264 4676  [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
23:00:36.0264 4676  C:\Windows\System32\AUDIOKSE.dll - ok
23:00:36.0264 4676  [ 8F6D9A20F1FB06F0602A7D5A82840DBF ] C:\Windows\System32\netcfgx.dll
23:00:36.0264 4676  C:\Windows\System32\netcfgx.dll - ok
23:00:36.0264 4676  [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
23:00:36.0264 4676  C:\Windows\System32\imageres.dll - ok
23:00:36.0279 4676  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
23:00:36.0279 4676  C:\Windows\System32\drivers\vwifimp.sys - ok
23:00:36.0279 4676  [ 33BD3605D2907DB11EC431CAEF88154F ] C:\Windows\System32\CX64GP25.dll
23:00:36.0279 4676  C:\Windows\System32\CX64GP25.dll - ok
23:00:36.0279 4676  [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
23:00:36.0279 4676  C:\Windows\System32\WMALFXGFXDSP.dll - ok
23:00:36.0279 4676  [ 19D20159708E152267E53B66677A4995 ] C:\Windows\System32\drivers\bowser.sys
23:00:36.0279 4676  C:\Windows\System32\drivers\bowser.sys - ok
23:00:36.0295 4676  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
23:00:36.0295 4676  C:\Windows\System32\drivers\mpsdrv.sys - ok
23:00:36.0295 4676  [ 040D62A9D8AD28922632137ACDD984F2 ] C:\Windows\System32\drivers\mrxsmb.sys
23:00:36.0295 4676  C:\Windows\System32\drivers\mrxsmb.sys - ok
23:00:36.0295 4676  [ F0067552F8F9B33D7C59403AB808A3CB ] C:\Windows\System32\drivers\mrxsmb10.sys
23:00:36.0295 4676  C:\Windows\System32\drivers\mrxsmb10.sys - ok
23:00:36.0310 4676  [ 3C142D31DE9F2F193218A53FE2632051 ] C:\Windows\System32\drivers\mrxsmb20.sys
23:00:36.0310 4676  C:\Windows\System32\drivers\mrxsmb20.sys - ok
23:00:36.0310 4676  [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
23:00:36.0310 4676  C:\Windows\System32\wfapigp.dll - ok
23:00:36.0310 4676  [ B33CF4DE909A5B30F526D82053A63C8E ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
23:00:36.0310 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe - ok
23:00:36.0310 4676  [ 961036B3C6282C646B9ADBC8BB32C983 ] C:\Windows\System32\mscms.dll
23:00:36.0310 4676  C:\Windows\System32\mscms.dll - ok
23:00:36.0326 4676  [ DB6DD54A93522CA3572D04B56C5DB890 ] C:\Windows\SysWOW64\ntdll.dll
23:00:36.0326 4676  C:\Windows\SysWOW64\ntdll.dll - ok
23:00:36.0326 4676  [ 24BF2F4DD2D23A682967AD364D6AE967 ] C:\Windows\System32\wow64.dll
23:00:36.0326 4676  C:\Windows\System32\wow64.dll - ok
23:00:36.0326 4676  [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
23:00:36.0326 4676  C:\Windows\System32\mfplat.dll - ok
23:00:36.0326 4676  [ 6E52A8EADB1A931D39475800166FC32D ] C:\Windows\System32\wow64win.dll
23:00:36.0326 4676  C:\Windows\System32\wow64win.dll - ok
23:00:36.0342 4676  [ E9FCC0F9BC1F4FBEDAE00BBABA3679E4 ] C:\Windows\System32\wow64cpu.dll
23:00:36.0342 4676  C:\Windows\System32\wow64cpu.dll - ok
23:00:36.0342 4676  [ C95793F4BE3471AEED92F5BF367BE69E ] C:\Windows\SysWOW64\kernel32.dll
23:00:36.0342 4676  C:\Windows\SysWOW64\kernel32.dll - ok
23:00:36.0342 4676  [ D5487F73F2B1FB0A4CCB96AE653A489B ] C:\Windows\SysWOW64\KernelBase.dll
23:00:36.0342 4676  C:\Windows\SysWOW64\KernelBase.dll - ok
23:00:36.0342 4676  [ E8B0FFC209E504CB7E79FC24E6C085F0 ] C:\Windows\SysWOW64\user32.dll
23:00:36.0342 4676  C:\Windows\SysWOW64\user32.dll - ok
23:00:36.0357 4676  [ FBE1E0B9EF53B5BB7C36763AA6A685CF ] C:\Windows\SysWOW64\gdi32.dll
23:00:36.0357 4676  C:\Windows\SysWOW64\gdi32.dll - ok
23:00:36.0357 4676  [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
23:00:36.0357 4676  C:\Windows\SysWOW64\lpk.dll - ok
23:00:36.0357 4676  [ 011B7A81E28C748D7631CF3D72323DD2 ] C:\Windows\SysWOW64\usp10.dll
23:00:36.0357 4676  C:\Windows\SysWOW64\usp10.dll - ok
23:00:36.0373 4676  [ F8A61B2E713309B4616D107919BDAB6E ] C:\Windows\SysWOW64\msvcrt.dll
23:00:36.0373 4676  C:\Windows\SysWOW64\msvcrt.dll - ok
23:00:36.0373 4676  [ 0C65FA8214D6F8378D1D3BA1CA46AF0A ] C:\Windows\SysWOW64\advapi32.dll
23:00:36.0373 4676  C:\Windows\SysWOW64\advapi32.dll - ok
23:00:36.0373 4676  [ 90385551B6B3793E949DF310A11D64E7 ] C:\Windows\SysWOW64\rpcrt4.dll
23:00:36.0373 4676  C:\Windows\SysWOW64\rpcrt4.dll - ok
23:00:36.0373 4676  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
23:00:36.0373 4676  C:\Windows\SysWOW64\sechost.dll - ok
23:00:36.0388 4676  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
23:00:36.0388 4676  C:\Windows\SysWOW64\cryptbase.dll - ok
23:00:36.0388 4676  [ 351F62085F1D007533B4BB159C9EFDE3 ] C:\Windows\SysWOW64\sspicli.dll
23:00:36.0388 4676  C:\Windows\SysWOW64\sspicli.dll - ok
23:00:36.0388 4676  [ E2C2D8C982316C8ABF800C6CE3F28FAB ] C:\Windows\SysWOW64\ole32.dll
23:00:36.0388 4676  C:\Windows\SysWOW64\ole32.dll - ok
23:00:36.0388 4676  [ BE8BD75FD8BE17B95365619D0B34CDBC ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\FineObj.dll
23:00:36.0388 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\FineObj.dll - ok
23:00:36.0404 4676  [ 705C210EFC5564BE49EB026BD7AFF27A ] C:\Windows\SysWOW64\oleaut32.dll
23:00:36.0404 4676  C:\Windows\SysWOW64\oleaut32.dll - ok
23:00:36.0404 4676  [ 2CBC35E872BA9B46474890135B56DD66 ] C:\Windows\SysWOW64\shell32.dll
23:00:36.0404 4676  C:\Windows\SysWOW64\shell32.dll - ok
23:00:36.0404 4676  [ F037DB14CF6165C62F4A64D12A25B07C ] C:\Windows\SysWOW64\shlwapi.dll
23:00:36.0404 4676  C:\Windows\SysWOW64\shlwapi.dll - ok
23:00:36.0420 4676  [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\msvcr71.dll
23:00:36.0420 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\msvcr71.dll - ok
23:00:36.0420 4676  [ 39D3E26AC0C684BCBEA6D2EA99035440 ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\FineNet.dll
23:00:36.0420 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\FineNet.dll - ok
23:00:36.0420 4676  [ 5DE691884C240227B733CC18BBFCA3D8 ] C:\Windows\SysWOW64\netapi32.dll
23:00:36.0420 4676  C:\Windows\SysWOW64\netapi32.dll - ok
23:00:36.0420 4676  [ C6BB27D9A8AC13D4A44486F528B5C884 ] C:\Windows\SysWOW64\netutils.dll
23:00:36.0420 4676  C:\Windows\SysWOW64\netutils.dll - ok
23:00:36.0435 4676  [ 89D840773C9C4358A5031DCC860449EC ] C:\Windows\SysWOW64\srvcli.dll
23:00:36.0435 4676  C:\Windows\SysWOW64\srvcli.dll - ok
23:00:36.0435 4676  [ 7AD12703039056D2A0815F85960E1FA1 ] C:\Windows\SysWOW64\wkscli.dll
23:00:36.0435 4676  C:\Windows\SysWOW64\wkscli.dll - ok
23:00:36.0435 4676  [ 742AA02BD9FA3492C9E525BBD427D87D ] C:\Windows\SysWOW64\samcli.dll
23:00:36.0435 4676  C:\Windows\SysWOW64\samcli.dll - ok
23:00:36.0451 4676  [ 7FA3A810F383588D46220967DE8B64FF ] C:\Windows\SysWOW64\wininet.dll
23:00:36.0451 4676  C:\Windows\SysWOW64\wininet.dll - ok
23:00:36.0451 4676  [ 780E80E5502015EDAEC91DC0A0C96A79 ] C:\Windows\SysWOW64\iertutil.dll
23:00:36.0451 4676  C:\Windows\SysWOW64\iertutil.dll - ok
23:00:36.0451 4676  [ 4266A3230981DD4434C55957F6DD497D ] C:\Windows\SysWOW64\urlmon.dll
23:00:36.0451 4676  C:\Windows\SysWOW64\urlmon.dll - ok
23:00:36.0451 4676  [ DB8AA8CCA66DBD641C2B942ED5C15CE5 ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\AbbyyZlib.dll
23:00:36.0451 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\AbbyyZlib.dll - ok
23:00:36.0466 4676  [ 0DE3069D6E09BA262856EF31C941BEFE ] C:\Windows\SysWOW64\imm32.dll
23:00:36.0466 4676  C:\Windows\SysWOW64\imm32.dll - ok
23:00:36.0466 4676  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
23:00:36.0466 4676  C:\Windows\SysWOW64\msctf.dll - ok
23:00:36.0466 4676  [ FD50B596A5C2FC595AAE0D5A791B939A ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensingShared.dll
23:00:36.0466 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensingShared.dll - ok
23:00:36.0466 4676  [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
23:00:36.0466 4676  C:\Windows\SysWOW64\shfolder.dll - ok
23:00:36.0482 4676  [ 2DE87B444AA507D6DD2BA2FE739B047C ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing0.dll
23:00:36.0482 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing0.dll - ok
23:00:36.0482 4676  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
23:00:36.0482 4676  C:\Windows\SysWOW64\profapi.dll - ok
23:00:36.0482 4676  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
23:00:36.0482 4676  C:\Windows\SysWOW64\version.dll - ok
23:00:36.0498 4676  [ 803260C5EE2EE9289C6D53087EC50017 ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing1.dll
23:00:36.0498 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing1.dll - ok
23:00:36.0498 4676  [ BEDE8BC1F0FE794829269C115C1A588E ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing13.dll
23:00:36.0498 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing13.dll - ok
23:00:36.0498 4676  [ AEFD4172AAC818D987D26EDAF4A3B7C5 ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing14.dll
23:00:36.0498 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing14.dll - ok
23:00:36.0513 4676  [ 81DA9DF8C65BBB4CA871B5E2728674D5 ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing15.dll
23:00:36.0513 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing15.dll - ok
23:00:36.0513 4676  [ 08E688BEE5FEF9214B9BB15CFB36E23A ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing16.dll
23:00:36.0513 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing16.dll - ok
23:00:36.0513 4676  [ F5E2D6E3FF6238893215585A04192AD7 ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing17.dll
23:00:36.0513 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing17.dll - ok
23:00:36.0513 4676  [ 9EF03D654D3AE8DA10F2D089B859337E ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing2.dll
23:00:36.0513 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing2.dll - ok
23:00:36.0529 4676  [ D7EE31A22CA2781FC6EBD12C831F6B59 ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing23.dll
23:00:36.0529 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing23.dll - ok
23:00:36.0529 4676  [ 74BAF2D00BD902B80D69BE42A61F83DD ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing24.dll
23:00:36.0529 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing24.dll - ok
23:00:36.0529 4676  [ 42E2F8798B445F76671C88C155C1F18D ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing26.dll
23:00:36.0529 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing26.dll - ok
23:00:36.0544 4676  [ 239935CF6E2A2D464AB66E51EB067D66 ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing3.dll
23:00:36.0544 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing3.dll - ok
23:00:36.0544 4676  [ 1AA94A15B0CE226341F4D731225D924C ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing5.dll
23:00:36.0544 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing5.dll - ok
23:00:36.0544 4676  [ F85AF7D697A2E3C9E69380C7AABA8F69 ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing6.dll
23:00:36.0544 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing6.dll - ok
23:00:36.0560 4676  [ 7E13358593468500BDE154C5C497EC1A ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing63.dll
23:00:36.0560 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing63.dll - ok
23:00:36.0560 4676  [ 80D7A6E0EA9845F8D20E932DAFA4AC60 ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing64.dll
23:00:36.0560 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing64.dll - ok
23:00:36.0560 4676  [ 28A3EED9BB0A781677E8F28BA4040FF6 ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing65.dll
23:00:36.0560 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing65.dll - ok
23:00:36.0576 4676  [ C70FDA0C297D51B0A42E7AA322856541 ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing69.dll
23:00:36.0576 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing69.dll - ok
23:00:36.0576 4676  [ F1B54578D13C99842EC23238284162F9 ] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing7.dll
23:00:36.0576 4676  C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\ProductLicensing7.dll - ok
23:00:36.0576 4676  [ 4FAC55936209B4F3EB78532181C9ED5E ] C:\Windows\System32\cryptnet.dll
23:00:36.0576 4676  C:\Windows\System32\cryptnet.dll - ok
23:00:36.0576 4676  [ DC57BAF15064ECB79F6D2CCF352E1D88 ] C:\Windows\System32\taskschd.dll
23:00:36.0576 4676  C:\Windows\System32\taskschd.dll - ok
23:00:36.0591 4676  [ A261AD1FDC6D6A658A82B81AF81B215F ] C:\Windows\System32\vssapi.dll
23:00:36.0591 4676  C:\Windows\System32\vssapi.dll - ok
23:00:36.0591 4676  [ DBC1136A62BD4DECC3632DF650284C2E ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
23:00:36.0591 4676  C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe - ok
23:00:36.0591 4676  [ 6C0BD9D59C7E97DEE2FB3407D17BF697 ] C:\Windows\SysWOW64\RpcRtRemote.dll
23:00:36.0591 4676  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
23:00:36.0607 4676  [ 05FE4A30177E858B51F5E1E970FE9925 ] C:\Windows\System32\WSDApi.dll
23:00:36.0607 4676  C:\Windows\System32\WSDApi.dll - ok
23:00:36.0607 4676  [ 41323AB614A2B66AD77B1121D24AC895 ] C:\Windows\SysWOW64\setupapi.dll
23:00:36.0607 4676  C:\Windows\SysWOW64\setupapi.dll - ok
23:00:36.0607 4676  [ 1B38A0F123FCF1546FACEAF1EFAFAA00 ] C:\Windows\System32\fveapi.dll
23:00:36.0607 4676  C:\Windows\System32\fveapi.dll - ok
23:00:36.0607 4676  [ A3EA403D2B74C5F71B7E8B3DAE92DE1E ] C:\Windows\System32\webservices.dll
23:00:36.0607 4676  C:\Windows\System32\webservices.dll - ok
23:00:36.0622 4676  [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
23:00:36.0622 4676  C:\Windows\System32\fvecerts.dll - ok
23:00:36.0622 4676  [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
23:00:36.0622 4676  C:\Windows\System32\tbs.dll - ok
23:00:36.0622 4676  [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
23:00:36.0622 4676  C:\Windows\System32\wiarpc.dll - ok
23:00:36.0622 4676  [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
23:00:36.0622 4676  C:\Windows\System32\fundisc.dll - ok
23:00:36.0638 4676  [ 2196CDBFA4B99BEEDAE300FA21DFE718 ] C:\Windows\System32\webio.dll
23:00:36.0638 4676  C:\Windows\System32\webio.dll - ok
23:00:36.0638 4676  [ E702ED19C332C1F12C1403D100E2F4F3 ] C:\Windows\SysWOW64\cfgmgr32.dll
23:00:36.0638 4676  C:\Windows\SysWOW64\cfgmgr32.dll - ok
23:00:36.0638 4676  [ 4509387963DF66A6401752A0C631F6E8 ] C:\Windows\System32\httpapi.dll
23:00:36.0638 4676  C:\Windows\System32\httpapi.dll - ok
23:00:36.0638 4676  [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
23:00:36.0638 4676  C:\Windows\System32\vsstrace.dll - ok
23:00:36.0654 4676  [ 6C9C05D5344B9AB80E9180FC859BC45A ] C:\Windows\SysWOW64\devobj.dll
23:00:36.0654 4676  C:\Windows\SysWOW64\devobj.dll - ok
23:00:36.0654 4676  [ DAAE8A9B8C0ACC7F858454132553C30D ] C:\Windows\SysWOW64\ws2_32.dll
23:00:36.0654 4676  C:\Windows\SysWOW64\ws2_32.dll - ok
23:00:36.0654 4676  [ 6095266CAAF5E75F394CFD4844CC4C25 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
23:00:36.0654 4676  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
23:00:36.0654 4676  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
23:00:36.0654 4676  C:\Windows\SysWOW64\nsi.dll - ok
23:00:36.0669 4676  [ 62390F4ACE9E2B63E3CA26B7F7497897 ] C:\Windows\SysWOW64\dnsapi.dll
23:00:36.0669 4676  C:\Windows\SysWOW64\dnsapi.dll - ok
23:00:36.0669 4676  [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
23:00:36.0669 4676  C:\Windows\SysWOW64\winnsi.dll - ok
23:00:36.0669 4676  [ 7DA089C75B1E92032D0CBE4ADE7C32BC ] C:\Windows\SysWOW64\crypt32.dll
23:00:36.0669 4676  C:\Windows\SysWOW64\crypt32.dll - ok
23:00:36.0685 4676  [ 4C04900AA8C323F5D4C316A89E976849 ] C:\Windows\SysWOW64\msasn1.dll
23:00:36.0685 4676  C:\Windows\SysWOW64\msasn1.dll - ok
23:00:36.0685 4676  [ 107F279517E2A04DB4AC1B1FAF1D573B ] C:\Windows\System32\ncsi.dll
23:00:36.0685 4676  C:\Windows\System32\ncsi.dll - ok
23:00:36.0685 4676  [ 334A663962618F7A136FA1F80F773C5F ] C:\Windows\SysWOW64\wintrust.dll
23:00:36.0685 4676  C:\Windows\SysWOW64\wintrust.dll - ok
23:00:36.0685 4676  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
23:00:36.0685 4676  C:\Windows\System32\ssdpapi.dll - ok
23:00:36.0700 4676  [ ABB7C497D43ACE5E1FE94A8D233F807F ] C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
23:00:36.0700 4676  C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe - ok
23:00:36.0700 4676  [ DF3CA8D16BDED6A54977B30E66864D33 ] C:\Program Files\Microsoft Office 15\ClientX64\msvcr100.dll
23:00:36.0700 4676  C:\Program Files\Microsoft Office 15\ClientX64\msvcr100.dll - ok
23:00:36.0700 4676  [ 4F096D96285E06CD51AEF7D2D3DE04DA ] C:\Program Files\Microsoft Office 15\ClientX64\msvcp100.dll
23:00:36.0700 4676  C:\Program Files\Microsoft Office 15\ClientX64\msvcp100.dll - ok
23:00:36.0716 4676  [ F3430491954209B8F866C05AFA24D135 ] C:\Program Files\Microsoft Office 15\ClientX64\c2rui.dll
23:00:36.0716 4676  C:\Program Files\Microsoft Office 15\ClientX64\c2rui.dll - ok
23:00:36.0716 4676  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
23:00:36.0716 4676  C:\Windows\System32\wer.dll - ok
23:00:36.0716 4676  [ A7D4E2C269301BEA243676ED56F8B4FF ] C:\Windows\System32\RstrtMgr.dll
23:00:36.0716 4676  C:\Windows\System32\RstrtMgr.dll - ok
23:00:36.0716 4676  [ 64E6A44177ACF348D68255A37F4723DA ] C:\Windows\System32\cabinet.dll
23:00:36.0716 4676  C:\Windows\System32\cabinet.dll - ok
23:00:36.0732 4676  [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
23:00:36.0732 4676  C:\Windows\System32\aepic.dll - ok
23:00:36.0732 4676  [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
23:00:36.0732 4676  C:\Windows\System32\drivers\PEAuth.sys - ok
23:00:36.0732 4676  [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
23:00:36.0732 4676  C:\Windows\System32\sfc.dll - ok
23:00:36.0732 4676  [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
23:00:36.0732 4676  C:\Windows\System32\sfc_os.dll - ok
23:00:36.0747 4676  [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
23:00:36.0747 4676  C:\Windows\System32\drivers\secdrv.sys - ok
23:00:36.0747 4676  [ 0AF6E19D39C70844C5CAA8FB0183C36E ] C:\Windows\System32\drivers\srvnet.sys
23:00:36.0747 4676  C:\Windows\System32\drivers\srvnet.sys - ok
23:00:36.0747 4676  [ 76D078AF6F587B162D50210F761EB9ED ] C:\Windows\System32\drivers\tcpipreg.sys
23:00:36.0747 4676  C:\Windows\System32\drivers\tcpipreg.sys - ok
23:00:36.0763 4676  [ ED32035BDFECED1AD66D459FD9CC1140 ] C:\Windows\System32\TODDSrv.exe
23:00:36.0763 4676  C:\Windows\System32\TODDSrv.exe - ok
23:00:36.0763 4676  [ E9F48A03818EFAB10286A1738881AA1D ] C:\Program Files\Microsoft Office 15\ClientX64\c2r64.dll
23:00:36.0763 4676  C:\Program Files\Microsoft Office 15\ClientX64\c2r64.dll - ok
23:00:36.0763 4676  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
23:00:36.0763 4676  C:\Windows\System32\wiatrace.dll - ok
23:00:36.0763 4676  [ 98C864481D62F86EC8AF65BE3419A95B ] C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
23:00:36.0763 4676  C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe - ok
23:00:36.0778 4676  [ 6992B4EE50A831FE4D4EC9970CA3660C ] C:\Program Files\TOSHIBA\Power Saver\TPwrReg.dll
23:00:36.0778 4676  C:\Program Files\TOSHIBA\Power Saver\TPwrReg.dll - ok
23:00:36.0778 4676  [ 0F14FD6F1F3AEAA510422E5317D4BF52 ] C:\Program Files\TOSHIBA\Power Saver\TPwrFunc.dll
23:00:36.0778 4676  C:\Program Files\TOSHIBA\Power Saver\TPwrFunc.dll - ok
23:00:36.0778 4676  [ BAE96AD126F4EED4D361B092BA2E61FE ] C:\Program Files\TOSHIBA\TECO\TecoService.exe
23:00:36.0778 4676  C:\Program Files\TOSHIBA\TECO\TecoService.exe - ok
23:00:36.0778 4676  [ 0744B19FBF23DD4E9E9EF97ADFE6C659 ] C:\Program Files\TOSHIBA\TECO\TecoHci.dll
23:00:36.0778 4676  C:\Program Files\TOSHIBA\TECO\TecoHci.dll - ok
23:00:36.0794 4676  [ F86D4136E4580CE5979FB7171BD1EF9B ] C:\Program Files\Microsoft Office 15\ClientX64\streamserver.dll
23:00:36.0794 4676  C:\Program Files\Microsoft Office 15\ClientX64\streamserver.dll - ok
23:00:36.0794 4676  [ 146A5F7EE743824D889C0FF8776D3CF5 ] C:\Program Files\TOSHIBA\TECO\TecoPower.dll
23:00:36.0794 4676  C:\Program Files\TOSHIBA\TECO\TecoPower.dll - ok
23:00:36.0794 4676  [ CF318F60A84F15AF352439465A8D05F4 ] C:\Program Files\Windows Defender\MpSvc.dll
23:00:36.0794 4676  C:\Program Files\Windows Defender\MpSvc.dll - ok
23:00:36.0810 4676  [ FAF9BA81FB0543CB4B7EFFD24CFA815F ] C:\Windows\System32\wbemcomn.dll
23:00:36.0810 4676  C:\Windows\System32\wbemcomn.dll - ok
23:00:36.0810 4676  [ F8F532C7509C3238C9827BAE861A48D7 ] C:\Windows\System32\tquery.dll
23:00:36.0810 4676  C:\Windows\System32\tquery.dll - ok
23:00:36.0810 4676  [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
23:00:36.0810 4676  C:\Windows\System32\wbem\WinMgmtR.dll - ok
23:00:36.0810 4676  [ A7582A70802D5B9F28ED3940F6A3E9ED ] C:\Windows\System32\wbem\WmiDcPrv.dll
23:00:36.0810 4676  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
23:00:36.0825 4676  [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
23:00:36.0825 4676  C:\Program Files\Windows Defender\MpClient.dll - ok
23:00:36.0825 4676  [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
23:00:36.0825 4676  C:\Windows\System32\wbem\fastprox.dll - ok
23:00:36.0825 4676  [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
23:00:36.0825 4676  C:\Windows\System32\ntdsapi.dll - ok
23:00:36.0825 4676  [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
23:00:36.0825 4676  C:\Windows\System32\wbem\wbemprox.dll - ok
23:00:36.0841 4676  [ 3B9665D4B8C587A6014B9B8DFF5974A0 ] C:\Windows\System32\wbem\wbemcore.dll
23:00:36.0841 4676  C:\Windows\System32\wbem\wbemcore.dll - ok
23:00:36.0841 4676  [ BA4A19DE93FBDFE6DB5F0EBC99732A06 ] C:\Windows\System32\mssrch.dll
23:00:36.0841 4676  C:\Windows\System32\mssrch.dll - ok
23:00:36.0841 4676  [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
23:00:36.0841 4676  C:\Windows\System32\wbem\esscli.dll - ok
23:00:36.0856 4676  [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
23:00:36.0856 4676  C:\Windows\System32\wbem\wbemsvc.dll - ok
23:00:36.0856 4676  [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
23:00:36.0856 4676  C:\Windows\System32\wbem\wmiutils.dll - ok
23:00:36.0856 4676  [ 2C64AF297F12582BD95D7D94C18E464C ] C:\Windows\System32\esent.dll
23:00:36.0856 4676  C:\Windows\System32\esent.dll - ok
23:00:36.0856 4676  [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
23:00:36.0856 4676  C:\Windows\System32\wbem\repdrvfs.dll - ok
23:00:36.0872 4676  [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
23:00:36.0872 4676  C:\Windows\System32\aeevts.dll - ok
23:00:36.0872 4676  [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
23:00:36.0872 4676  C:\Windows\System32\msidle.dll - ok
23:00:36.0872 4676  [ 76548F7B818881B47D8D1AE1BE9C11F8 ] C:\Windows\System32\drivers\srv2.sys
23:00:36.0872 4676  C:\Windows\System32\drivers\srv2.sys - ok
23:00:36.0872 4676  [ 48A6CA43A5C921C465F70D9B42B3EF1A ] C:\Windows\System32\sqmapi.dll
23:00:36.0872 4676  C:\Windows\System32\sqmapi.dll - ok
23:00:36.0888 4676  [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
23:00:36.0888 4676  C:\Windows\System32\wdscore.dll - ok
23:00:36.0888 4676  [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] C:\Windows\System32\drivers\srv.sys
23:00:36.0888 4676  C:\Windows\System32\drivers\srv.sys - ok
23:00:36.0888 4676  [ 82BC97E5793DEF69691AAD5AB953A200 ] C:\Windows\System32\wbem\WmiPrvSD.dll
23:00:36.0888 4676  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
23:00:36.0903 4676  [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
23:00:36.0903 4676  C:\Windows\System32\ncobjapi.dll - ok
23:00:36.0903 4676  [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
23:00:36.0903 4676  C:\Windows\System32\rastapi.dll - ok
23:00:36.0903 4676  [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
23:00:36.0903 4676  C:\Windows\System32\tapi32.dll - ok
23:00:36.0903 4676  [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
23:00:36.0903 4676  C:\Windows\System32\wbem\wbemess.dll - ok
23:00:36.0919 4676  [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
23:00:36.0919 4676  C:\Windows\System32\hnetcfg.dll - ok
23:00:36.0919 4676  [ 6E03C9E362389A768E6C240933352D11 ] C:\Windows\System32\nci.dll
23:00:36.0919 4676  C:\Windows\System32\nci.dll - ok
23:00:36.0919 4676  [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
23:00:36.0919 4676  C:\Windows\System32\en-US\tquery.dll.mui - ok
23:00:36.0919 4676  [ EE25B470C39126B08055A7CB71A67A58 ] C:\Windows\System32\unimdm.tsp
23:00:36.0919 4676  C:\Windows\System32\unimdm.tsp - ok
23:00:36.0934 4676  [ 88FFC78A4927EE245FCE4DD8D470B5BE ] C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvApi.dll
23:00:36.0934 4676  C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvApi.dll - ok
23:00:36.0934 4676  [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
23:00:36.0934 4676  C:\Windows\System32\uniplat.dll - ok
23:00:36.0934 4676  [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
23:00:36.0934 4676  C:\Windows\System32\hidphone.tsp - ok
23:00:36.0950 4676  [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
23:00:36.0950 4676  C:\Windows\System32\kmddsp.tsp - ok
23:00:36.0950 4676  [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
23:00:36.0950 4676  C:\Windows\System32\ndptsp.tsp - ok
23:00:36.0950 4676  [ DF627325D25191236BABA895D5A51EF6 ] C:\Windows\System32\rasppp.dll
23:00:36.0950 4676  C:\Windows\System32\rasppp.dll - ok
23:00:36.0950 4676  [ E3DA135D4DD0D34512D4FEBCB6ED760E ] C:\Windows\System32\vpnike.dll
23:00:36.0950 4676  C:\Windows\System32\vpnike.dll - ok
23:00:36.0966 4676  [ 114429A77D935053E13A9BF98A8B8CA1 ] C:\Windows\System32\mprapi.dll
23:00:36.0966 4676  C:\Windows\System32\mprapi.dll - ok
23:00:36.0966 4676  [ 6448BE1A31CD03D3097F97D1AF00257D ] C:\Program Files\Microsoft Office 15\ClientX64\AppVPolicy.dll
23:00:36.0966 4676  C:\Program Files\Microsoft Office 15\ClientX64\AppVPolicy.dll - ok
23:00:36.0966 4676  [ 66920354B984D4A3848A84B4E66745EA ] C:\Windows\System32\netshell.dll
23:00:36.0966 4676  C:\Windows\System32\netshell.dll - ok
23:00:36.0966 4676  [ E33A00FA4739240AE2C0F27B711B0176 ] C:\Program Files\Microsoft Office 15\ClientX64\AppVOrchestration.dll
23:00:36.0981 4676  C:\Program Files\Microsoft Office 15\ClientX64\AppVOrchestration.dll - ok
23:00:36.0981 4676  [ F477F6ACB67124FFE5C144B283DFE80E ] C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvStreamingManager.dll
23:00:36.0981 4676  C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvStreamingManager.dll - ok
23:00:36.0981 4676  [ A13C85DD707280EE3F8711CC4B1C6DC7 ] C:\Program Files\Microsoft Office 15\ClientX64\AppVManifest.dll
23:00:36.0981 4676  C:\Program Files\Microsoft Office 15\ClientX64\AppVManifest.dll - ok
23:00:36.0981 4676  [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
23:00:36.0981 4676  C:\Windows\System32\netmsg.dll - ok
23:00:36.0997 4676  [ 4FDFA3F219692D17011BF1B428857C1E ] C:\Program Files\Windows Defender\MpRTP.dll
23:00:36.0997 4676  C:\Program Files\Windows Defender\MpRTP.dll - ok
23:00:36.0997 4676  [ 4EAE37133B78A26A84EA1649D9B21A1E ] C:\Windows\System32\clusapi.dll
23:00:36.0997 4676  C:\Windows\System32\clusapi.dll - ok
23:00:36.0997 4676  [ 836892094209E5D9CF403B4CF2829B5C ] C:\Windows\System32\sscore.dll
23:00:36.0997 4676  C:\Windows\System32\sscore.dll - ok
23:00:36.0997 4676  [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
23:00:37.0012 4676  C:\Windows\System32\tdh.dll - ok
23:00:37.0012 4676  [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
23:00:37.0012 4676  C:\Windows\System32\resutils.dll - ok
23:00:37.0012 4676  [ 4B54E3D4F5B0D2FC5D4408C1BEE92D8A ] C:\Program Files\Microsoft Office 15\ClientX64\AppVCatalog.dll
23:00:37.0012 4676  C:\Program Files\Microsoft Office 15\ClientX64\AppVCatalog.dll - ok
23:00:37.0012 4676  [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
23:00:37.0012 4676  C:\Windows\System32\rasadhlp.dll - ok
23:00:37.0028 4676  [ 24F4E4A4744EF944511FDA2A4EB2C7E0 ] C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvVirtualization.dll
23:00:37.0028 4676  C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvVirtualization.dll - ok
23:00:37.0028 4676  [ 8BCA1DDF0EC20CAFA91A7693EC474A37 ] C:\Program Files\Microsoft Office 15\ClientX64\AppVIntegration.dll
23:00:37.0028 4676  C:\Program Files\Microsoft Office 15\ClientX64\AppVIntegration.dll - ok
23:00:37.0028 4676  [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
23:00:37.0028 4676  C:\Windows\System32\perftrack.dll - ok
23:00:37.0028 4676  [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
23:00:37.0028 4676  C:\Windows\System32\Apphlpdm.dll - ok
23:00:37.0044 4676  [ D891293880F2F00AB7BA959910300EF7 ] C:\Windows\System32\diagperf.dll
23:00:37.0044 4676  C:\Windows\System32\diagperf.dll - ok
23:00:37.0044 4676  [ 5DA7D8934F7AB0884A6A8FC02E8B2AA7 ] C:\Windows\System32\PortableDeviceApi.dll
23:00:37.0044 4676  C:\Windows\System32\PortableDeviceApi.dll - ok
23:00:37.0044 4676  [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
23:00:37.0044 4676  C:\Windows\System32\mprmsg.dll - ok
23:00:37.0059 4676  [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
23:00:37.0059 4676  C:\Windows\System32\ndiscapCfg.dll - ok
23:00:37.0059 4676  [ 76A11F575782DBAE74F05B8796EF7F9D ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{774AC236-4F3C-4986-AD64-BC9ACB047A70}\mpengine.dll
23:00:37.0059 4676  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{774AC236-4F3C-4986-AD64-BC9ACB047A70}\mpengine.dll - ok
23:00:37.0059 4676  [ BF596C0373118195966ECAEFF2C3E1AE ] C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvSubsystemController.dll
23:00:37.0059 4676  C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvSubsystemController.dll - ok
23:00:37.0059 4676  [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
23:00:37.0059 4676  C:\Windows\System32\npmproxy.dll - ok
23:00:37.0075 4676  [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
23:00:37.0075 4676  C:\Windows\System32\pnpts.dll - ok
23:00:37.0075 4676  [ 65AF044B5570D355124DCD1E099AA98F ] C:\Windows\System32\wdiasqmmodule.dll
23:00:37.0075 4676  C:\Windows\System32\wdiasqmmodule.dll - ok
23:00:37.0075 4676  [ 4CC5326A8724E4EEB680EFF1E54C2C40 ] C:\Program Files\Microsoft Office 15\ClientX64\AppVFileSystemMetadata.dll
23:00:37.0075 4676  C:\Program Files\Microsoft Office 15\ClientX64\AppVFileSystemMetadata.dll - ok
23:00:37.0090 4676  [ 5337D7D85493ADB87E6B626D03FD402E ] C:\Windows\System32\taskhost.exe
23:00:37.0090 4676  C:\Windows\System32\taskhost.exe - ok
23:00:37.0090 4676  [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
23:00:37.0090 4676  C:\Windows\System32\winrnr.dll - ok
23:00:37.0090 4676  [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
23:00:37.0090 4676  C:\Windows\System32\wlaninst.dll - ok
23:00:37.0090 4676  [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
23:00:37.0090 4676  C:\Windows\System32\wwaninst.dll - ok
23:00:37.0106 4676  [ 436EB2742ED35C1ED9DDCB83C9BCF68A ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{774AC236-4F3C-4986-AD64-BC9ACB047A70}\mpasbase.vdm
23:00:37.0106 4676  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{774AC236-4F3C-4986-AD64-BC9ACB047A70}\mpasbase.vdm - ok
23:00:37.0106 4676  [ A71E1EF3F7E6D0A0E471492DC459D064 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{774AC236-4F3C-4986-AD64-BC9ACB047A70}\mpasdlta.vdm
23:00:37.0106 4676  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{774AC236-4F3C-4986-AD64-BC9ACB047A70}\mpasdlta.vdm - ok
23:00:37.0106 4676  [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
23:00:37.0106 4676  C:\Windows\System32\dimsjob.dll - ok
23:00:37.0106 4676  [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
23:00:37.0106 4676  C:\Windows\System32\pautoenr.dll - ok
23:00:37.0122 4676  [ AAA6D0DF7356BBA706BD67385A103AAB ] C:\Windows\System32\certcli.dll
23:00:37.0122 4676  C:\Windows\System32\certcli.dll - ok
23:00:37.0122 4676  [ 522BD073F617060AFCB9CC5707778DB1 ] C:\Windows\System32\CertEnroll.dll
23:00:37.0122 4676  C:\Windows\System32\CertEnroll.dll - ok
23:00:37.0122 4676  [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
23:00:37.0122 4676  C:\Windows\System32\NapiNSP.dll - ok
23:00:37.0137 4676  [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
23:00:37.0137 4676  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
23:00:37.0137 4676  [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
23:00:37.0137 4676  C:\Windows\System32\pnrpnsp.dll - ok
23:00:37.0137 4676  [ BDDCD13F341CBA21775FF66A5C27F59E ] C:\Windows\System32\SearchProtocolHost.exe
23:00:37.0137 4676  C:\Windows\System32\SearchProtocolHost.exe - ok
23:00:37.0137 4676  [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
23:00:37.0137 4676  C:\Windows\System32\msshooks.dll - ok
23:00:37.0153 4676  [ F024058C391B99397EC3CCF6F77B7189 ] C:\Windows\System32\SearchFilterHost.exe
23:00:37.0153 4676  C:\Windows\System32\SearchFilterHost.exe - ok
23:00:37.0153 4676  [ 72AB6633E9B39EC7FEBEDF083A9061E5 ] C:\Windows\System32\mscoree.dll
23:00:37.0153 4676  C:\Windows\System32\mscoree.dll - ok
23:00:37.0153 4676  [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
23:00:37.0153 4676  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
23:00:37.0153 4676  [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
23:00:37.0153 4676  C:\Windows\System32\mssprxy.dll - ok
23:00:37.0168 4676  [ 58FAE29A82984E817BBA70D0144E52ED ] C:\Windows\System32\mssph.dll
23:00:37.0168 4676  C:\Windows\System32\mssph.dll - ok
23:00:37.0168 4676  [ 2A556E2D703DED03186C596B90AC6869 ] C:\Windows\System32\mapi32.dll
23:00:37.0168 4676  C:\Windows\System32\mapi32.dll - ok
23:00:37.0168 4676  [ 5F917AEEEA363B8A5DC8624795CB1D60 ] C:\Windows\System32\ntshrui.dll
23:00:37.0168 4676  C:\Windows\System32\ntshrui.dll - ok
23:00:37.0184 4676  [ BFEBE1E4B301F44CEA7C1B4021BD0264 ] C:\Windows\System32\cscapi.dll
23:00:37.0184 4676  C:\Windows\System32\cscapi.dll - ok
23:00:37.0184 4676  [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll
23:00:37.0184 4676  C:\Windows\System32\spfileq.dll - ok
23:00:37.0184 4676  [ 93BB66044FA76734E882C6F3E8EE1900 ] C:\Program Files\Windows Defender\MsMpLics.dll
23:00:37.0184 4676  C:\Program Files\Windows Defender\MsMpLics.dll - ok
23:00:37.0184 4676  [ 85409DCE247D97E4D6958B7C5916BE4A ] C:\Windows\System32\wscapi.dll
23:00:37.0184 4676  C:\Windows\System32\wscapi.dll - ok
23:00:37.0200 4676  [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
23:00:37.0200 4676  C:\Windows\System32\wscisvif.dll - ok
23:00:37.0200 4676  [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
23:00:37.0200 4676  C:\Windows\System32\wscproxystub.dll - ok
23:00:37.0200 4676  [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
23:00:37.0200 4676  C:\Windows\System32\dllhost.exe - ok
23:00:37.0200 4676  [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll
23:00:37.0200 4676  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll - ok
23:00:37.0215 4676  [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
23:00:37.0215 4676  C:\Windows\System32\IDStore.dll - ok
23:00:37.0215 4676  [ 60CAE1FA4888ED41B41AEE91C774E4A2 ] C:\Windows\System32\taskeng.exe
23:00:37.0215 4676  C:\Windows\System32\taskeng.exe - ok
23:00:37.0215 4676  [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
23:00:37.0215 4676  C:\Windows\System32\AtBroker.exe - ok
23:00:37.0231 4676  [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
23:00:37.0231 4676  C:\Windows\System32\mpr.dll - ok
23:00:37.0231 4676  [ 8CFACC72081C21519676BF4AAA1A88A9 ] C:\Windows\System32\localspl.dll
23:00:37.0231 4676  C:\Windows\System32\localspl.dll - ok
23:00:37.0231 4676  [ 6F8F1376A13114CC10C0E69274F5A4DE ] C:\Windows\System32\userinit.exe
23:00:37.0231 4676  C:\Windows\System32\userinit.exe - ok
23:00:37.0231 4676  [ EF184066A851E7838D5BF8C8FAE66CC4 ] C:\Windows\System32\dwmredir.dll
23:00:37.0231 4676  C:\Windows\System32\dwmredir.dll - ok
23:00:37.0246 4676  [ B2742EA6ED844D747E2348A504E491CB ] C:\Windows\System32\dxva2.dll
23:00:37.0246 4676  C:\Windows\System32\dxva2.dll - ok
23:00:37.0246 4676  [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
23:00:37.0246 4676  C:\Windows\System32\spoolss.dll - ok
23:00:37.0246 4676  [ 9D8AB964CE511AF81207DF0E1205184C ] C:\Windows\System32\dwmcore.dll
23:00:37.0246 4676  C:\Windows\System32\dwmcore.dll - ok
23:00:37.0246 4676  [ 02CDEB5D8B3DD5F6770DEFFBBC0CFAD0 ] C:\Windows\System32\winspool.drv
23:00:37.0246 4676  C:\Windows\System32\winspool.drv - ok
23:00:37.0262 4676  [ 20BEB8C403C6E28C9B13644787F5177D ] C:\Windows\System32\FXSMON.dll
23:00:37.0262 4676  C:\Windows\System32\FXSMON.dll - ok
23:00:37.0262 4676  [ 7F37322A489E285CFBCC02F6A53B3F1B ] C:\Windows\System32\HotStartUserAgent.dll
23:00:37.0262 4676  C:\Windows\System32\HotStartUserAgent.dll - ok
23:00:37.0262 4676  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
23:00:37.0262 4676  C:\Windows\System32\MsCtfMonitor.dll - ok
23:00:37.0278 4676  [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
23:00:37.0278 4676  C:\Windows\System32\msutb.dll - ok
23:00:37.0278 4676  [ 33CC7FFA41F6157592E1578BD253F30E ] C:\Windows\System32\PrintIsolationProxy.dll
23:00:37.0278 4676  C:\Windows\System32\PrintIsolationProxy.dll - ok
23:00:37.0278 4676  [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
23:00:37.0278 4676  C:\Windows\System32\tcpmon.dll - ok
23:00:37.0278 4676  [ 0862495E0C825893DB75EF44FAEA8E93 ] C:\Windows\explorer.exe
23:00:37.0278 4676  C:\Windows\explorer.exe - ok
23:00:37.0293 4676  [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
23:00:37.0293 4676  C:\Windows\System32\PlaySndSrv.dll - ok
23:00:37.0293 4676  [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
23:00:37.0293 4676  C:\Windows\System32\snmpapi.dll - ok
23:00:37.0293 4676  [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
23:00:37.0293 4676  C:\Windows\System32\TSChannel.dll - ok
23:00:37.0293 4676  [ AD7C70077D4C81558E909D34EF6B995E ] C:\Windows\System32\wsnmp32.dll
23:00:37.0293 4676  C:\Windows\System32\wsnmp32.dll - ok
23:00:37.0309 4676  [ 58A0C212ED2ABE462B3A9626F5B96261 ] C:\Windows\System32\d3d10_1.dll
23:00:37.0309 4676  C:\Windows\System32\d3d10_1.dll - ok
23:00:37.0309 4676  [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
23:00:37.0309 4676  C:\Windows\System32\usbmon.dll - ok
23:00:37.0309 4676  [ AFBBC34687FA48A4928B99AF097C1EC0 ] C:\Windows\System32\d3d10_1core.dll
23:00:37.0309 4676  C:\Windows\System32\d3d10_1core.dll - ok
23:00:37.0309 4676  [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:00:37.0309 4676  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
23:00:37.0324 4676  [ D95DB5C915C001F78709C17285109BDC ] C:\Windows\System32\dxgi.dll
23:00:37.0324 4676  C:\Windows\System32\dxgi.dll - ok
23:00:37.0324 4676  [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
23:00:37.0324 4676  C:\Windows\System32\WSDMon.dll - ok
23:00:37.0324 4676  [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
23:00:37.0324 4676  C:\Windows\System32\fdPnp.dll - ok
23:00:37.0340 4676  [ 7EDB2BF840ECB14D6E6B11C035708719 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
23:00:37.0340 4676  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
23:00:37.0340 4676  [ ABB515748212F8B5D3A9B07041E97B32 ] C:\Windows\System32\win32spl.dll
23:00:37.0340 4676  C:\Windows\System32\win32spl.dll - ok
23:00:37.0340 4676  [ 7DED1B3E4FFB15E33C07EF0ACAE172B6 ] C:\Windows\System32\igd10umd64.dll
23:00:37.0340 4676  C:\Windows\System32\igd10umd64.dll - ok
23:00:37.0340 4676  [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll
23:00:37.0340 4676  C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll - ok
23:00:37.0356 4676  [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
23:00:37.0356 4676  C:\Windows\System32\radardt.dll - ok
23:00:37.0356 4676  [ 17EAB1AEA937EFFCD107EFBA94FEDB34 ] C:\Windows\System32\inetpp.dll
23:00:37.0356 4676  C:\Windows\System32\inetpp.dll - ok
23:00:37.0356 4676  [ 4B8DD8541C0E26602005DD0137333615 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
23:00:37.0356 4676  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll - ok
23:00:37.0356 4676  [ 1C27E145EC99F20BC1B13FD98165A83F ] C:\Windows\System32\ExplorerFrame.dll
23:00:37.0356 4676  C:\Windows\System32\ExplorerFrame.dll - ok
23:00:37.0371 4676  [ 97CCB4D737B426B200E5EF90C877DF32 ] C:\Windows\SysWOW64\imagehlp.dll
23:00:37.0371 4676  C:\Windows\SysWOW64\imagehlp.dll - ok
23:00:37.0371 4676  [ F1317678AC2FBA9F640279290B2E2988 ] C:\Windows\SysWOW64\msi.dll
23:00:37.0371 4676  C:\Windows\SysWOW64\msi.dll - ok
23:00:37.0371 4676  [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
23:00:37.0371 4676  C:\Windows\System32\uDWM.dll - ok
23:00:37.0387 4676  [ A26F6485E3D6E91FB347275CDD2EAAB1 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
23:00:37.0387 4676  C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL - ok
23:00:37.0387 4676  [ ADD9D33D685DFADDFAD5AFB42CF31A70 ] C:\Windows\SysWOW64\cscapi.dll
23:00:37.0387 4676  C:\Windows\SysWOW64\cscapi.dll - ok
23:00:37.0387 4676  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
23:00:37.0387 4676  C:\Windows\SysWOW64\ntmarta.dll - ok
23:00:37.0387 4676  [ BFA70A99AD1434263F2DFBBA103BDEF8 ] C:\Windows\SysWOW64\Wldap32.dll
23:00:37.0387 4676  C:\Windows\SysWOW64\Wldap32.dll - ok
23:00:37.0402 4676  [ 79C7CFAEA6879A8C1A1E8B5FFE8983AA ] C:\Windows\SysWOW64\dbghelp.dll
23:00:37.0402 4676  C:\Windows\SysWOW64\dbghelp.dll - ok
23:00:37.0402 4676  [ C02E3CE20E7776C922B5C8938350B5F1 ] C:\Windows\SysWOW64\apphelp.dll
23:00:37.0402 4676  C:\Windows\SysWOW64\apphelp.dll - ok
23:00:37.0402 4676  [ BECDDA0990DEBD72A30096533521AD73 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe
23:00:37.0402 4676  C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
23:00:37.0402 4676  [ DF3CA8D16BDED6A54977B30E66864D33 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\msvcr100.dll
23:00:37.0402 4676  C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\msvcr100.dll - ok
23:00:37.0418 4676  [ 9C0DC1DAAD14D443DD5A0D1EE78D775E ] C:\Windows\SysWOW64\userenv.dll
23:00:37.0418 4676  C:\Windows\SysWOW64\userenv.dll - ok
23:00:37.0418 4676  [ B676429E44F2F8ACC3BAE7C89F46B212 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
23:00:37.0418 4676  C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe - ok
23:00:37.0418 4676  [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
23:00:37.0418 4676  C:\Windows\SysWOW64\clbcatq.dll - ok
23:00:37.0434 4676  [ 4F096D96285E06CD51AEF7D2D3DE04DA ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\msvcp100.dll
23:00:37.0434 4676  C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\msvcp100.dll - ok
23:00:37.0434 4676  [ A74316B5C28D94AF0825267D8715549F ] C:\Windows\System32\dbghelp.dll
23:00:37.0434 4676  C:\Windows\System32\dbghelp.dll - ok
23:00:37.0434 4676  [ 5A55E3E6F53592F8170623DEFA2B7954 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\atl100.dll
23:00:37.0434 4676  C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\atl100.dll - ok
23:00:37.0434 4676  [ 599EBE6C7EA52B5FF9603F203E8EC080 ] C:\Windows\System32\msi.dll
23:00:37.0434 4676  C:\Windows\System32\msi.dll - ok
23:00:37.0449 4676  [ 1821A9197482BDA422DD3FFBFD3AC611 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\Cultures\OFFICE.ODF
23:00:37.0449 4676  C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\Cultures\OFFICE.ODF - ok
23:00:37.0449 4676  [ 7FA6470C89F68656D0D86A59177273CD ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
23:00:37.0449 4676  C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll - ok
23:00:37.0449 4676  [ 0089563F324FA784DA849D6A636141E0 ] C:\Windows\SysWOW64\mstask.dll
23:00:37.0449 4676  C:\Windows\SysWOW64\mstask.dll - ok
23:00:37.0465 4676  [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
23:00:37.0465 4676  C:\Windows\System32\EhStorShell.dll - ok
23:00:37.0465 4676  [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
23:00:37.0465 4676  C:\Windows\System32\IconCodecService.dll - ok
23:00:37.0465 4676  [ 6AB6D4DF10EC784CF4A66CBFAF417A11 ] C:\Windows\System32\runonce.exe
23:00:37.0465 4676  C:\Windows\System32\runonce.exe - ok
23:00:37.0465 4676  [ 169F916EFEAA44487E65305B7D2D754B ] C:\Windows\SysWOW64\runonce.exe
23:00:37.0465 4676  C:\Windows\SysWOW64\runonce.exe - ok
23:00:37.0480 4676  [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
23:00:37.0480 4676  C:\Windows\SysWOW64\uxtheme.dll - ok
23:00:37.0480 4676  [ 26EAEE08CAF82AA7F03C5020F51DA541 ] C:\Windows\SysWOW64\propsys.dll
23:00:37.0480 4676  C:\Windows\SysWOW64\propsys.dll - ok
23:00:37.0480 4676  [ 6CC10D9FD128069DBFE476222F097616 ] C:\Windows\SysWOW64\secur32.dll
23:00:37.0480 4676  C:\Windows\SysWOW64\secur32.dll - ok
23:00:37.0480 4676  [ 8AE6DD9A6D246004DA047F704F0CC487 ] C:\Windows\SysWOW64\cmd.exe
23:00:37.0480 4676  C:\Windows\SysWOW64\cmd.exe - ok
23:00:37.0496 4676  [ C6FEF8C40D6F9A3766FDBE31CB3F6640 ] C:\Windows\System32\conhost.exe
23:00:37.0496 4676  C:\Windows\System32\conhost.exe - ok
23:00:37.0496 4676  [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
23:00:37.0496 4676  C:\Windows\SysWOW64\winbrand.dll - ok
23:00:37.0496 4676  [ 5466DCAEF5A648E04D1B6580F2C901B5 ] C:\Windows\SysWOW64\ieframe.dll
23:00:37.0496 4676  C:\Windows\SysWOW64\ieframe.dll - ok
23:00:37.0512 4676  [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
23:00:37.0512 4676  C:\Windows\SysWOW64\psapi.dll - ok
23:00:37.0512 4676  [ 4D59A5B6EF0AF6F9FDF3D157534380AF ] C:\Windows\SysWOW64\oleacc.dll
23:00:37.0512 4676  C:\Windows\SysWOW64\oleacc.dll - ok
23:00:37.0512 4676  [ E07B77C3BDC82A024E294FB67ABFEDA0 ] C:\Windows\SysWOW64\shdocvw.dll
23:00:37.0512 4676  C:\Windows\SysWOW64\shdocvw.dll - ok
23:00:37.0512 4676  [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Tosh\AppData\Local\Temp\9CB0FCE6-91BB-442E-B989-B3AE44D85400.exe
23:00:37.0512 4676  C:\Users\Tosh\AppData\Local\Temp\9CB0FCE6-91BB-442E-B989-B3AE44D85400.exe - ok
23:00:37.0527 4676  [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
23:00:37.0527 4676  C:\Windows\SysWOW64\cryptsp.dll - ok
23:00:37.0527 4676  [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
23:00:37.0527 4676  C:\Windows\SysWOW64\rsaenh.dll - ok
23:00:37.0527 4676  [ 5BBF32865EB3D66988C6E06834EC2675 ] C:\Windows\SysWOW64\ncrypt.dll
23:00:37.0527 4676  C:\Windows\SysWOW64\ncrypt.dll - ok
23:00:37.0527 4676  [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
23:00:37.0527 4676  C:\Windows\SysWOW64\bcrypt.dll - ok
23:00:37.0543 4676  [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
23:00:37.0543 4676  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
23:00:37.0543 4676  [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
23:00:37.0543 4676  C:\Windows\SysWOW64\gpapi.dll - ok
23:00:37.0543 4676  [ 1F778C34C751E1B585E4FC66659BA904 ] C:\Windows\SysWOW64\cryptnet.dll
23:00:37.0543 4676  C:\Windows\SysWOW64\cryptnet.dll - ok
23:00:37.0543 4676  [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
23:00:37.0558 4676  C:\Windows\SysWOW64\SensApi.dll - ok
23:00:37.0558 4676  [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
23:00:37.0558 4676  C:\Windows\SysWOW64\dwmapi.dll - ok
23:00:37.0558 4676  [ 691C8DFB208227F0CBB5C0897C742ACE ] C:\Windows\SysWOW64\WindowsCodecs.dll
23:00:37.0558 4676  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
23:00:37.0558 4676  [ 4528BB0632D1D6F7D515683749FDEF85 ] C:\Program Files\Microsoft Office 15\root\office15\grooveex.dll
23:00:37.0558 4676  C:\Program Files\Microsoft Office 15\root\office15\grooveex.dll - ok
23:00:37.0574 4676  [ BF38660A9125935658CFA3E53FDC7D65 ] C:\Program Files\Microsoft Office 15\root\office15\msvcr100.dll
23:00:37.0574 4676  C:\Program Files\Microsoft Office 15\root\office15\msvcr100.dll - ok
23:00:37.0574 4676  [ E3C817F7FE44CC870ECDBCBC3EA36132 ] C:\Program Files\Microsoft Office 15\root\office15\msvcp100.dll
23:00:37.0574 4676  C:\Program Files\Microsoft Office 15\root\office15\msvcp100.dll - ok
23:00:37.0574 4676  [ 00D2C06A552F782C1F16ACF77DB765A5 ] C:\Program Files\Microsoft Office 15\root\office15\atl100.dll
23:00:37.0574 4676  C:\Program Files\Microsoft Office 15\root\office15\atl100.dll - ok
23:00:37.0590 4676  [ A15C09D748C7A9710D88BDD0D7740896 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\Cultures\OFFICE.ODF
23:00:37.0590 4676  C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\Cultures\OFFICE.ODF - ok
23:00:37.0590 4676  [ 90EA3C8FDCC3B8974E13E9C166AD268E ] C:\Program Files\Microsoft Office 15\root\office15\1033\grooveintlresource.dll
23:00:37.0590 4676  C:\Program Files\Microsoft Office 15\root\office15\1033\grooveintlresource.dll - ok
23:00:37.0590 4676  [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
23:00:37.0590 4676  C:\Windows\SysWOW64\EhStorShell.dll - ok
23:00:37.0590 4676  [ 9141FE8D904CE682A3BDCFAE96BB04EF ] C:\Windows\SysWOW64\ntshrui.dll
23:00:37.0590 4676  C:\Windows\SysWOW64\ntshrui.dll - ok
23:00:37.0605 4676  [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
23:00:37.0605 4676  C:\Windows\SysWOW64\slc.dll - ok
23:00:37.0605 4676  [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
23:00:37.0605 4676  C:\Windows\SysWOW64\imageres.dll - ok
23:00:37.0605 4676  [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
23:00:37.0605 4676  C:\Windows\System32\wbem\NCProv.dll - ok
23:00:37.0605 4676  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
23:00:37.0605 4676  C:\Windows\SysWOW64\sfc.dll - ok
23:00:37.0621 4676  [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
23:00:37.0621 4676  C:\Windows\SysWOW64\sfc_os.dll - ok
23:00:37.0621 4676  [ 11CDF138552BFEC115B60ED6DC3ACEB6 ] C:\Windows\SysWOW64\devrtl.dll
23:00:37.0621 4676  C:\Windows\SysWOW64\devrtl.dll - ok
23:00:37.0621 4676  [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
23:00:37.0621 4676  C:\Windows\SysWOW64\mpr.dll - ok
23:00:37.0636 4676  [ CC9BBCFC715FBEDF7AE476106FE653E9 ] C:\Windows\SysWOW64\winhttp.dll
23:00:37.0636 4676  C:\Windows\SysWOW64\winhttp.dll - ok
23:00:37.0636 4676  [ 550BF4ACD6FC3F41DC5A83EF31B9F9B4 ] C:\Windows\System32\wmploc.DLL
23:00:37.0636 4676  C:\Windows\System32\wmploc.DLL - ok
23:00:37.0636 4676  [ A86A1C5DF1C662D1C75815BF4794F16D ] C:\Windows\SysWOW64\webio.dll
23:00:37.0636 4676  C:\Windows\SysWOW64\webio.dll - ok
23:00:37.0636 4676  [ 740304CDCAA54E4312DEDA7F288CEB06 ] C:\Windows\System32\themeui.dll
23:00:37.0636 4676  C:\Windows\System32\themeui.dll - ok
23:00:37.0652 4676  [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
23:00:37.0683 4676  C:\Windows\System32\ie4uinit.exe - ok
23:00:37.0683 4676  [ 18245DC72B65D488A8B2D75A8FE088EA ] C:\Windows\System32\timedate.cpl
23:00:37.0683 4676  C:\Windows\System32\timedate.cpl - ok
23:00:37.0699 4676  [ 1E4BDDBD5A63059A97063339B4F8986F ] C:\Windows\System32\actxprxy.dll
23:00:37.0699 4676  C:\Windows\System32\actxprxy.dll - ok
23:00:37.0699 4676  [ FBE8EBF528DC49B3DEB186CA9545D97E ] C:\Windows\System32\shdocvw.dll
23:00:37.0699 4676  C:\Windows\System32\shdocvw.dll - ok
23:00:37.0714 4676  [ BF591B5C2CC38314518467E883AE37C5 ] C:\Windows\SysWOW64\credssp.dll
23:00:37.0714 4676  C:\Windows\SysWOW64\credssp.dll - ok
23:00:37.0714 4676  [ 11A41F17527ED75D6B758FDD7F4FD00D ] C:\Windows\SysWOW64\mswsock.dll
23:00:37.0714 4676  C:\Windows\SysWOW64\mswsock.dll - ok
23:00:37.0730 4676  [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
23:00:37.0730 4676  C:\Windows\System32\linkinfo.dll - ok
23:00:37.0730 4676  [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
23:00:37.0730 4676  C:\Windows\SysWOW64\wship6.dll - ok
23:00:37.0746 4676  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
23:00:37.0746 4676  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
23:00:37.0746 4676  [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
23:00:37.0746 4676  C:\Windows\SysWOW64\rasadhlp.dll - ok
23:00:37.0746 4676  [ EF19CFF37E0FF7023577636D0787DC2F ] C:\Windows\System32\accessibilitycpl.dll
23:00:37.0746 4676  C:\Windows\System32\accessibilitycpl.dll - ok
23:00:37.0761 4676  [ 158117F3CF278F01C6F24E89E2141E81 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
23:00:37.0761 4676  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
23:00:37.0761 4676  [ 46EDD0A6B42BA5D2044FA0909BE4BE95 ] C:\Windows\System32\msftedit.dll
23:00:37.0761 4676  C:\Windows\System32\msftedit.dll - ok
23:00:37.0761 4676  [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
23:00:37.0761 4676  C:\Windows\System32\msls31.dll - ok
23:00:37.0777 4676  [ 50EBD31C3527366FAFA468BD609F7352 ] C:\Windows\System32\wucltux.dll
23:00:37.0777 4676  C:\Windows\System32\wucltux.dll - ok
23:00:37.0777 4676  [ 8FC6C4EE0A2D3EBAA70FA38F99141BCE ] C:\Program Files\Windows Sidebar\sidebar.exe
23:00:37.0777 4676  C:\Program Files\Windows Sidebar\sidebar.exe - ok
23:00:37.0777 4676  [ FDA49D1D0C201F6C76BD2593F562BF80 ] C:\Windows\System32\WindowsAnytimeUpgradeui.exe
23:00:37.0777 4676  C:\Windows\System32\WindowsAnytimeUpgradeui.exe - ok
23:00:37.0777 4676  [ 17A7998CB5DA92020A291B85FF7B3681 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
23:00:37.0777 4676  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
23:00:37.0792 4676  [ E83D2495D5867E224FBF42EF40D8856C ] C:\Program Files\DVD Maker\DVDMaker.exe
23:00:37.0792 4676  C:\Program Files\DVD Maker\DVDMaker.exe - ok
23:00:37.0792 4676  [ 492CB6A624D5DAD73EE0294B5DB37DD6 ] C:\Windows\System32\xpsrchvw.exe
23:00:37.0792 4676  C:\Windows\System32\xpsrchvw.exe - ok
23:00:37.0792 4676  [ B795E6138E29A37508285FC31E92BD78 ] C:\Windows\System32\DisplaySwitch.exe
23:00:37.0792 4676  C:\Windows\System32\DisplaySwitch.exe - ok
23:00:37.0808 4676  [ 9FCA314E02437C35C4A8571EAE8B3421 ] C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe
23:00:37.0808 4676  C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe - ok
23:00:37.0808 4676  [ 823BD5F4D89FEDCD90809B8C53D167CC ] C:\Windows\System32\mblctr.exe
23:00:37.0808 4676  C:\Windows\System32\mblctr.exe - ok
23:00:37.0808 4676  [ 5E115854DA4767CF8071F76211DDAC06 ] C:\Windows\System32\mstsc.exe
23:00:37.0808 4676  C:\Windows\System32\mstsc.exe - ok
23:00:37.0808 4676  [ 4F3CD0653217C06664C71443B617863B ] C:\Windows\System32\igfxtray.exe
23:00:37.0808 4676  C:\Windows\System32\igfxtray.exe - ok
23:00:37.0824 4676  [ E0A284479FE11525A75995B38EC7478F ] C:\Windows\System32\hccutils.dll
23:00:37.0824 4676  C:\Windows\System32\hccutils.dll - ok
23:00:37.0824 4676  [ 47F0F526AD4982806C54B845B3289DE1 ] C:\Windows\System32\SoundRecorder.exe
23:00:37.0824 4676  C:\Windows\System32\SoundRecorder.exe - ok
23:00:37.0824 4676  [ 4F45A6BEF54C41323D2CE213346CFDB2 ] C:\Windows\System32\igfxsrvc.exe
23:00:37.0824 4676  C:\Windows\System32\igfxsrvc.exe - ok
23:00:37.0824 4676  [ D204C6D7C66B9FA2D4C87AB750B94891 ] C:\Windows\System32\hkcmd.exe
23:00:37.0824 4676  C:\Windows\System32\hkcmd.exe - ok
23:00:37.0839 4676  [ 0A8BEC706DBC33BEA9A919BEDA137A2D ] C:\Windows\System32\SNTSearch.dll
23:00:37.0839 4676  C:\Windows\System32\SNTSearch.dll - ok
23:00:37.0839 4676  [ B1444F32E84EE728B2DECA70F621C806 ] C:\Windows\System32\igfxsrvc.dll
23:00:37.0839 4676  C:\Windows\System32\igfxsrvc.dll - ok
23:00:37.0839 4676  [ 0476D6445FADB8040A3A3414D3250DB0 ] C:\Windows\System32\igfxdev.dll
23:00:37.0839 4676  C:\Windows\System32\igfxdev.dll - ok
23:00:37.0839 4676  [ 17D08913D321AA7D258C2C38E59A2283 ] C:\Windows\System32\igfxpers.exe
23:00:37.0839 4676  C:\Windows\System32\igfxpers.exe - ok
23:00:37.0855 4676  [ E6F66F31422C44EDC00D9C9329E7DF60 ] C:\Windows\System32\SyncCenter.dll
23:00:37.0855 4676  C:\Windows\System32\SyncCenter.dll - ok
23:00:37.0855 4676  [ 6B4F522AB6E642DB3B627C0E92B5A6C5 ] C:\Windows\System32\igfxrenu.lrc
23:00:37.0855 4676  C:\Windows\System32\igfxrenu.lrc - ok
23:00:37.0855 4676  [ C71E7ABB1A34E56CE73AE117C8DD566F ] C:\Windows\System32\ieframe.dll
23:00:37.0855 4676  C:\Windows\System32\ieframe.dll - ok
23:00:37.0870 4676  [ F468C806267D46B68DB7EB32FBF0A103 ] C:\Windows\System32\thumbcache.dll
23:00:37.0870 4676  C:\Windows\System32\thumbcache.dll - ok
23:00:37.0870 4676  [ 8BC7AE7E16458355508ECF5EC3A04E72 ] C:\Windows\System32\networkexplorer.dll
23:00:37.0870 4676  C:\Windows\System32\networkexplorer.dll - ok
23:00:37.0870 4676  [ F121FF27B30D62EB148E928C4769328B ] C:\Windows\System32\Speech\SpeechUX\sapi.cpl
23:00:37.0870 4676  C:\Windows\System32\Speech\SpeechUX\sapi.cpl - ok
23:00:37.0870 4676  [ E1C670B4855AD88DFD4058D5F110D01E ] C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe
23:00:37.0870 4676  C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe - ok
23:00:37.0886 4676  [ 65383B545D00DCC690FA78749359724A ] C:\Windows\System32\igfxress.dll
23:00:37.0886 4676  C:\Windows\System32\igfxress.dll - ok
23:00:37.0886 4676  [ 1A51E9C642ED4658600F4DF4683EFAE9 ] C:\Program Files\CONEXANT\SAII\SAIICpl.exe
23:00:37.0886 4676  C:\Program Files\CONEXANT\SAII\SAIICpl.exe - ok
23:00:37.0886 4676  [ 3B1864AE25C30F7385FE69495DF772D1 ] C:\Windows\System32\dfrgui.exe
23:00:37.0886 4676  C:\Windows\System32\dfrgui.exe - ok
23:00:37.0902 4676  [ 1EB4061EA92513FD8ECB8F0DB5B5D5CD ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
23:00:37.0902 4676  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
23:00:37.0902 4676  [ 596966F8C575D01A60F9553D9D090F64 ] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
23:00:37.0902 4676  C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe - ok
23:00:37.0902 4676  [ AF36C246EB34999281A4CB34EA14915F ] C:\Windows\System32\wdc.dll
23:00:37.0902 4676  C:\Windows\System32\wdc.dll - ok
23:00:37.0902 4676  [ 61E02CC3184B63FAFE0B83EAC8B3B8EF ] C:\Windows\SysWOW64\winspool.drv
23:00:37.0902 4676  C:\Windows\SysWOW64\winspool.drv - ok
23:00:37.0917 4676  [ DD76912E8D165C68659D9875256710A3 ] C:\Windows\System32\DeviceCenter.dll
23:00:37.0917 4676  C:\Windows\System32\DeviceCenter.dll - ok
23:00:37.0917 4676  [ A7883A685F04E464D38DBB871F297F5A ] C:\Windows\System32\msinfo32.exe
23:00:37.0917 4676  C:\Windows\System32\msinfo32.exe - ok
23:00:37.0917 4676  [ A62882F40163F1262808E380DB5FED69 ] C:\Program Files\TOSHIBA\TBS\HSON.exe
23:00:37.0917 4676  C:\Program Files\TOSHIBA\TBS\HSON.exe - ok
23:00:37.0917 4676  [ F0CEB0B91C934E5E0FC11BABE65FE375 ] C:\Windows\System32\SynCOM.dll
23:00:37.0917 4676  C:\Windows\System32\SynCOM.dll - ok
23:00:37.0933 4676  [ 7577CACC4F6C07175062C03CD1B7B763 ] C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
23:00:37.0933 4676  C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe - ok
23:00:37.0933 4676  [ B9D2FAF624031311CA3E45CC60EDDDE7 ] C:\Windows\System32\rstrui.exe
23:00:37.0933 4676  C:\Windows\System32\rstrui.exe - ok
23:00:37.0933 4676  [ 1B16EFEC853D7F246642E893B33944D8 ] C:\Windows\System32\SynTPAPI.dll
23:00:37.0933 4676  C:\Windows\System32\SynTPAPI.dll - ok
23:00:37.0933 4676  [ FB1096AB46B84957AAB9070994FF5202 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
23:00:37.0933 4676  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
23:00:37.0948 4676  [ D32EE82DA63D39D337D5AEEA2928B1DE ] C:\Windows\System32\consent.exe
23:00:37.0948 4676  C:\Windows\System32\consent.exe - ok
23:00:37.0948 4676  [ 51D186B582C905E49D84B70322F70B21 ] C:\Windows\System32\miguiresource.dll
23:00:37.0948 4676  C:\Windows\System32\miguiresource.dll - ok
23:00:37.0948 4676  [ 2B7AAA05D43988BEC320F965F6384E67 ] C:\Windows\System32\migwiz\wet.dll
23:00:37.0948 4676  C:\Windows\System32\migwiz\wet.dll - ok
23:00:37.0964 4676  [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
23:00:37.0964 4676  C:\Windows\System32\msimg32.dll - ok
23:00:37.0964 4676  [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
23:00:37.0964 4676  C:\Windows\System32\SensApi.dll - ok
23:00:37.0964 4676  [ CA86F41FA141FF6A1345E6416D688E4D ] C:\Program Files\TOSHIBA\Power Saver\TtosFunc.dll
23:00:37.0964 4676  C:\Program Files\TOSHIBA\Power Saver\TtosFunc.dll - ok
23:00:37.0964 4676  [ 19D7EBC78CB04E46B7BB667512714C63 ] C:\Program Files\TOSHIBA\Power Saver\TCooling.dll
23:00:37.0964 4676  C:\Program Files\TOSHIBA\Power Saver\TCooling.dll - ok
23:00:37.0980 4676  [ E186F6B7440F8B822044FDC39CFCBBEC ] C:\Program Files\TOSHIBA\Power Saver\TOddPwr.dll
23:00:37.0980 4676  C:\Program Files\TOSHIBA\Power Saver\TOddPwr.dll - ok
23:00:37.0980 4676  [ 3C332A9161F75C1FFE7FE954A2173B31 ] C:\Program Files\TOSHIBA\Power Saver\TPwrSrv.dll
23:00:37.0980 4676  C:\Program Files\TOSHIBA\Power Saver\TPwrSrv.dll - ok
23:00:37.0980 4676  [ A8C5ECF3FACEB2FE89C2C7B0B75B8C20 ] C:\Program Files\TOSHIBA\Power Saver\T1394Pwr.dll
23:00:37.0980 4676  C:\Program Files\TOSHIBA\Power Saver\T1394Pwr.dll - ok
23:00:37.0995 4676  [ 8A3562B6EE27D8B42C18916AA21F53AF ] C:\Program Files\TOSHIBA\Power Saver\TKBLEDPwr.dll
23:00:37.0995 4676  C:\Program Files\TOSHIBA\Power Saver\TKBLEDPwr.dll - ok
23:00:37.0995 4676  [ 77ED0C1FFA3943BB28E955C70FCF8396 ] C:\Program Files\TOSHIBA\Power Saver\TSDPwr.dll
23:00:37.0995 4676  C:\Program Files\TOSHIBA\Power Saver\TSDPwr.dll - ok
23:00:37.0995 4676  [ 57D7317734B3F5415CE7408DB54DA8C8 ] C:\Program Files\TOSHIBA\Power Saver\TPCIePwr.dll
23:00:37.0995 4676  C:\Program Files\TOSHIBA\Power Saver\TPCIePwr.dll - ok
23:00:37.0995 4676  [ AF28348ED585539C4A33A4341FF23696 ] C:\Windows\System32\oleacc.dll
23:00:37.0995 4676  C:\Windows\System32\oleacc.dll - ok
23:00:38.0011 4676  [ 0FD5A62889B578D05366DFAF32E454EC ] C:\Windows\System32\GfxUI.exe
23:00:38.0011 4676  C:\Windows\System32\GfxUI.exe - ok
23:00:38.0011 4676  [ B701CD6DC1659244DE8C1A4C70758F61 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
23:00:38.0011 4676  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
23:00:38.0011 4676  [ 60CC15392FF14DCB9C29C69B3233741B ] C:\Windows\System32\stobject.dll
23:00:38.0011 4676  C:\Windows\System32\stobject.dll - ok
23:00:38.0011 4676  [ 367DA15EDB9E17880019A98A8CCC2AEA ] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
23:00:38.0011 4676  C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe - ok
23:00:38.0026 4676  [ 86B6AC0FD2881B3D20B80F51C7152AE0 ] C:\Windows\System32\batmeter.dll
23:00:38.0026 4676  C:\Windows\System32\batmeter.dll - ok
23:00:38.0026 4676  [ 9D9C0DD19ED1D36E1FAB8805EA5CE1AF ] C:\Program Files\Common Files\Microsoft Shared\ink\ShapeCollector.exe
23:00:38.0026 4676  C:\Program Files\Common Files\Microsoft Shared\ink\ShapeCollector.exe - ok
23:00:38.0026 4676  [ B8613FCC9717830278E4917EDBED7B91 ] C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe
23:00:38.0026 4676  C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe - ok
23:00:38.0042 4676  [ 4A826F98E1B0860840FE227D1A4FFC05 ] C:\Program Files\Windows Journal\Journal.exe
23:00:38.0042 4676  C:\Program Files\Windows Journal\Journal.exe - ok
23:00:38.0042 4676  [ 90DD0038FCCAE1041D77B86D0C801029 ] C:\Program Files\TOSHIBA\TECO\Teco.exe
23:00:38.0042 4676  C:\Program Files\TOSHIBA\TECO\Teco.exe - ok
23:00:38.0042 4676  [ 78F72D892C6ADAD140A1C83411000936 ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatcher.exe
23:00:38.0042 4676  C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatcher.exe - ok
23:00:38.0042 4676  [ 852D67A27E454BD389FA7F02A8CBE23F ] C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
23:00:38.0042 4676  C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe - ok
23:00:38.0058 4676  [ 06A6FE79BD96C7FEF7322AFE5B45FFFF ] C:\Windows\System32\mycomput.dll
23:00:38.0058 4676  C:\Windows\System32\mycomput.dll - ok
23:00:38.0058 4676  [ F82483A80D49ACCA81193A294FB233CD ] C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe
23:00:38.0058 4676  C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe - ok
23:00:38.0058 4676  [ F9EF20F6FDA1444C0864BD7AEDC10CAF ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe
23:00:38.0058 4676  C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe - ok
23:00:38.0073 4676  [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
23:00:38.0073 4676  C:\Windows\System32\odbcint.dll - ok
23:00:38.0073 4676  [ 651F169718CC46C8A9264880C538D5FF ] C:\Windows\System32\prnfldr.dll
23:00:38.0073 4676  C:\Windows\System32\prnfldr.dll - ok
23:00:38.0073 4676  [ FA8D23D063C709A9971711588356DEA1 ] C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe
23:00:38.0073 4676  C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe - ok
23:00:38.0073 4676  [ A11BB37ED38D2736168F742C7FBCEC1B ] C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
23:00:38.0073 4676  C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe - ok
23:00:38.0089 4676  [ B9CE8CF2FF2D5EAFFDBAA340E7B385A5 ] C:\Windows\System32\iscsicpl.dll
23:00:38.0089 4676  C:\Windows\System32\iscsicpl.dll - ok
23:00:38.0089 4676  [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
23:00:38.0089 4676  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
23:00:38.0089 4676  [ 541B822882607023E75FFEC0C8F90FAF ] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
23:00:38.0089 4676  C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe - ok
23:00:38.0104 4676  [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
23:00:38.0104 4676  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
23:00:38.0104 4676  [ F7E0783DA9043BC131BB37C77EDB04DF ] C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe
23:00:38.0104 4676  C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe - ok
23:00:38.0104 4676  [ A8F0E356CE2A84B31A7D1043CDE31F07 ] C:\Windows\System32\MdSched.exe
23:00:38.0104 4676  C:\Windows\System32\MdSched.exe - ok
23:00:38.0104 4676  [ 913C2E4A03201644FC986EDEB5F8A390 ] C:\Windows\System32\DXP.dll
23:00:38.0104 4676  C:\Windows\System32\DXP.dll - ok
23:00:38.0120 4676  [ 97883E153D1CB56CD5BE39A8AC4DFCBB ] C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll
23:00:38.0120 4676  C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll - ok
23:00:38.0120 4676  [ DE038C40F3033EDA732655FA42DCBD18 ] C:\Windows\System32\filemgmt.dll
23:00:38.0120 4676  C:\Windows\System32\filemgmt.dll - ok
23:00:38.0120 4676  [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
23:00:38.0120 4676  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
23:00:38.0136 4676  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
23:00:38.0136 4676  C:\Windows\System32\Syncreg.dll - ok
23:00:38.0136 4676  [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
23:00:38.0136 4676  C:\Windows\ehome\ehSSO.dll - ok
23:00:38.0136 4676  [ AB01C36BCC34CCFE5B0BB5FFB2605135 ] C:\Windows\System32\WPDShServiceObj.dll
23:00:38.0136 4676  C:\Windows\System32\WPDShServiceObj.dll - ok
23:00:38.0136 4676  [ 72F10370DCF8D86406FD625AA78C87AE ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\b8281946f37a029183f8bdff96ba8602\mscorlib.ni.dll
23:00:38.0136 4676  C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\b8281946f37a029183f8bdff96ba8602\mscorlib.ni.dll - ok
23:00:38.0151 4676  [ FF7F7147E6E96DEA4D63770613767D3E ] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.dll
23:00:38.0151 4676  C:\Program Files\TOSHIBA\FlashCards\TCrdMain.dll - ok
23:00:38.0151 4676  [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
23:00:38.0151 4676  C:\Windows\System32\PortableDeviceTypes.dll - ok
23:00:38.0151 4676  [ 36A934C6FBCBD8F162DB2D29635E35FB ] C:\Program Files\TOSHIBA\FlashCards\TCrdEvnt.dll
23:00:38.0151 4676  C:\Program Files\TOSHIBA\FlashCards\TCrdEvnt.dll - ok
23:00:38.0167 4676  [ A7253C6B106DAAEBB5499FC7AEF68BAB ] C:\Windows\System32\msconfig.exe
23:00:38.0167 4676  C:\Windows\System32\msconfig.exe - ok
23:00:38.0167 4676  [ 9C96B167C21F6DCCF68E96853B0A8F93 ] C:\Program Files\TOSHIBA\FlashCards\FnPRTSC.dll
23:00:38.0167 4676  C:\Program Files\TOSHIBA\FlashCards\FnPRTSC.dll - ok
23:00:38.0167 4676  [ 26A634B2E0FD87F23541AD13A503CA72 ] C:\Windows\SysWOW64\winmm.dll
23:00:38.0167 4676  C:\Windows\SysWOW64\winmm.dll - ok
23:00:38.0167 4676  [ 8402A407CB307B5E61CC7FF29F2EFC93 ] C:\Program Files\TOSHIBA\FlashCards\FnSticky.dll
23:00:38.0167 4676  C:\Program Files\TOSHIBA\FlashCards\FnSticky.dll - ok
23:00:38.0182 4676  [ E6EE5019E84F23C9FFFF7B6E2A5158D0 ] C:\Windows\SysWOW64\WMVCORE.DLL
23:00:38.0182 4676  C:\Windows\SysWOW64\WMVCORE.DLL - ok
23:00:38.0182 4676  [ 8BC00C736E67A75D936E5B440917359B ] C:\Windows\System32\ActionCenter.dll
23:00:38.0182 4676  C:\Windows\System32\ActionCenter.dll - ok
23:00:38.0182 4676  [ 854087DB163B0EF9993B3CA31F021DAA ] C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll
23:00:38.0182 4676  C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll - ok
23:00:38.0182 4676  [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
23:00:38.0198 4676  C:\Windows\System32\oledlg.dll - ok
23:00:38.0198 4676  [ 2C5B8A680A90E96B1EC0D6DA0505E685 ] C:\Windows\System32\srchadmin.dll
23:00:38.0198 4676  C:\Windows\System32\srchadmin.dll - ok
23:00:38.0198 4676  [ 11F174ED2050121C394C17B4F7B69983 ] C:\Windows\System32\AuthFWGP.dll
23:00:38.0198 4676  C:\Windows\System32\AuthFWGP.dll - ok
23:00:38.0198 4676  [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
23:00:38.0198 4676  C:\Windows\System32\FXSST.dll - ok
23:00:38.0214 4676  [ A7DD56261518373F70F23079EB3CD0A2 ] C:\Windows\SysWOW64\WMASF.DLL
23:00:38.0214 4676  C:\Windows\SysWOW64\WMASF.DLL - ok
23:00:38.0214 4676  [ 34E6D8C67E7FD7C917BECFECA326B168 ] C:\Windows\System32\FXSAPI.dll
23:00:38.0214 4676  C:\Windows\System32\FXSAPI.dll - ok
23:00:38.0214 4676  [ 0470997A5ADC2FCDDCB3461D92073FAA ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\GdiPlus.dll
23:00:38.0214 4676  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\GdiPlus.dll - ok
23:00:38.0214 4676  [ C91FABAA63C489C874B97A19906E901C ] C:\Windows\System32\gameux.dll
23:00:38.0214 4676  C:\Windows\System32\gameux.dll - ok
23:00:38.0229 4676  [ 8143FF7001A522FE6C918D8AED88F63F ] C:\Program Files\TOSHIBA\Power Saver\TFunctab.dll
23:00:38.0229 4676  C:\Program Files\TOSHIBA\Power Saver\TFunctab.dll - ok
23:00:38.0229 4676  [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
23:00:38.0229 4676  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
23:00:38.0229 4676  [ F9FC0EF1F8B9DC0A0C394764F99F787D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\9b5409ff43680d37d5d9eb5c70928a9c\System.ni.dll
23:00:38.0229 4676  C:\Windows\assembly\NativeImages_v2.0.50727_64\System\9b5409ff43680d37d5d9eb5c70928a9c\System.ni.dll - ok
23:00:38.0245 4676  [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
23:00:38.0245 4676  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
23:00:38.0245 4676  [ 11615D80DC10ABB83D2A9002B70A4E36 ] C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll
23:00:38.0245 4676  C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll - ok
23:00:38.0245 4676  [ 4FB1F2F9B02FA1138CACD2DEA3F5AEC8 ] C:\Windows\System32\riched20.dll
23:00:38.0245 4676  C:\Windows\System32\riched20.dll - ok
23:00:38.0260 4676  [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
23:00:38.0260 4676  C:\Windows\System32\webcheck.dll - ok
23:00:38.0260 4676  [ 23BC27699804A344A0D6B8FCCD6859B0 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnESC.dll
23:00:38.0260 4676  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnESC.dll - ok
23:00:38.0260 4676  [ C9CB4FB4CA7D5FDA648478EB8966353F ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnZ.dll
23:00:38.0260 4676  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnZ.dll - ok
23:00:38.0260 4676  [ E4621A2361968ACFF0C7D0F562BD5F8E ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\TCrdKBB.exe
23:00:38.0260 4676  C:\Program Files\TOSHIBA\FlashCards\Hotkey\TCrdKBB.exe - ok
23:00:38.0276 4676  [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
23:00:38.0276 4676  C:\Windows\System32\mlang.dll - ok
23:00:38.0276 4676  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
23:00:38.0276 4676  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
23:00:38.0276 4676  [ 9AEEEF46F7BD01A7B52CDFEB9993BBFF ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
23:00:38.0276 4676  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
23:00:38.0292 4676  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
23:00:38.0292 4676  C:\Windows\System32\AltTab.dll - ok
23:00:38.0292 4676  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
23:00:38.0292 4676  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
23:00:38.0292 4676  [ 6AD8F9CEACC4E8E54FC2B191DC628231 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\b98f76a0d66c3a1dc0bd3a503a6f9b96\WindowsBase.ni.dll
23:00:38.0292 4676  C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\b98f76a0d66c3a1dc0bd3a503a6f9b96\WindowsBase.ni.dll - ok
23:00:38.0292 4676  [ F0AAB2A76A7AF04C70A818E96BAF3E64 ] C:\Windows\System32\hgcpl.dll
23:00:38.0292 4676  C:\Windows\System32\hgcpl.dll - ok
23:00:38.0307 4676  [ E30E5BB0DBA49EFE5BBBAFEA440CFBD9 ] C:\Windows\SysWOW64\wtsapi32.dll
23:00:38.0307 4676  C:\Windows\SysWOW64\wtsapi32.dll - ok
23:00:38.0307 4676  [ 73DBAA64D589F3262615550DD6881FEE ] C:\Windows\winsxs\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll
23:00:38.0307 4676  C:\Windows\winsxs\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll - ok
23:00:38.0307 4676  [ 28A09777D2D952122567A8A82F1A2C7B ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
23:00:38.0307 4676  C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
23:00:38.0323 4676  [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] C:\Windows\System32\FXSSVC.exe
23:00:38.0323 4676  C:\Windows\System32\FXSSVC.exe - ok
23:00:38.0323 4676  [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
23:00:38.0323 4676  C:\Windows\SysWOW64\devenum.dll - ok
23:00:38.0323 4676  [ 70F03B29A62194E69911952B3640D9D2 ] C:\Windows\SysWOW64\msdmo.dll
23:00:38.0323 4676  C:\Windows\SysWOW64\msdmo.dll - ok
23:00:38.0323 4676  [ 88B0BCC23660D466879099F26CCB8CA5 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF1.dll
23:00:38.0323 4676  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF1.dll - ok
23:00:38.0338 4676  [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
23:00:38.0338 4676  C:\Windows\SysWOW64\avicap32.dll - ok
23:00:38.0338 4676  [ 27B488B8A9868BD4C9D478625F50ED41 ] C:\Program Files\TOSHIBA\Power Saver\TFunc2.dll
23:00:38.0338 4676  C:\Program Files\TOSHIBA\Power Saver\TFunc2.dll - ok
23:00:38.0338 4676  [ 2DEEB96A0957BD058753FF250E85EF49 ] C:\Windows\SysWOW64\msvfw32.dll
23:00:38.0338 4676  C:\Windows\SysWOW64\msvfw32.dll - ok
23:00:38.0354 4676  [ E32B288B38C3182D9F890F45B067A5DB ] C:\Windows\SysWOW64\vfwwdm32.dll
23:00:38.0354 4676  C:\Windows\SysWOW64\vfwwdm32.dll - ok
23:00:38.0354 4676  [ 8BF179E9513F70EA95DE2D539650EAF0 ] C:\Windows\SysWOW64\ksproxy.ax
23:00:38.0354 4676  C:\Windows\SysWOW64\ksproxy.ax - ok
23:00:38.0354 4676  [ E6BC081DDE7391AD0A044C0796A86D08 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF3.dll
23:00:38.0354 4676  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF3.dll - ok
23:00:38.0354 4676  [ FD4F95ABDE5603478C929B6CB0BDCFFF ] C:\Windows\System32\pnidui.dll
23:00:38.0354 4676  C:\Windows\System32\pnidui.dll - ok
23:00:38.0370 4676  [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
23:00:38.0370 4676  C:\Windows\SysWOW64\ksuser.dll - ok
23:00:38.0370 4676  [ 7459301D21C2E21468823F73042D9F87 ] C:\Windows\SysWOW64\d3d9.dll
23:00:38.0370 4676  C:\Windows\SysWOW64\d3d9.dll - ok
23:00:38.0370 4676  [ EDE3D67AE2951D330AA6A4EB7FEF7739 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF4.dll
23:00:38.0370 4676  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF4.dll - ok
23:00:38.0370 4676  [ 7A6BB250115791CF520407D6308F3226 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\fnf5.dll
23:00:38.0370 4676  C:\Program Files\TOSHIBA\FlashCards\Hotkey\fnf5.dll - ok
23:00:38.0385 4676  [ 073331F96AA4A89B6AA73E6B97BB3075 ] C:\Windows\System32\igfxext.exe
23:00:38.0385 4676  C:\Windows\System32\igfxext.exe - ok
23:00:38.0385 4676  [ E4064A00F4C5627DA67B3EFB16F43CE5 ] C:\Windows\System32\igfxexps.dll
23:00:38.0385 4676  C:\Windows\System32\igfxexps.dll - ok
23:00:38.0385 4676  [ 5A462CA146417C53309FAE0852B7FC3F ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF67.dll
23:00:38.0385 4676  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF67.dll - ok
23:00:38.0401 4676  [ 11397A9621940CE3BD037D9636B329A8 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF8Dll.dll
23:00:38.0401 4676  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF8Dll.dll - ok
23:00:38.0401 4676  [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
23:00:38.0401 4676  C:\Windows\System32\wlanapi.dll - ok
23:00:38.0401 4676  [ 684C3847C7E6EAEFBB72C92CFEB7F455 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF9.dll
23:00:38.0401 4676  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF9.dll - ok
23:00:38.0401 4676  [ 66935625C1758EFEFFAF8CF0E020A6F9 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF10.dll
23:00:38.0401 4676  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF10.dll - ok
23:00:38.0416 4676  [ 4C671C688884F18152441DC16AA629F6 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF11.dll
23:00:38.0416 4676  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF11.dll - ok
23:00:38.0416 4676  [ 60CD44E59A03219B00E659ABE335AF1F ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnSpace.dll
23:00:38.0416 4676  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnSpace.dll - ok
23:00:38.0416 4676  [ 0390219E584F39505E046E6568D3BDDE ] C:\Program Files\TOSHIBA\Toshiba Assist\NotifyX.dll
23:00:38.0416 4676  C:\Program Files\TOSHIBA\Toshiba Assist\NotifyX.dll - ok
23:00:38.0416 4676  [ 6BE1A6D5C978F6E57FC052C8F8C57540 ] C:\Program Files (x86)\TOSHIBA\PCDiag\NotifyPCD.dll
23:00:38.0416 4676  C:\Program Files (x86)\TOSHIBA\PCDiag\NotifyPCD.dll - ok
23:00:38.0432 4676  [ 4773A6F221AD2A84D98135E39253DB8F ] C:\Program Files\TOSHIBA\SmoothView\NotifyTZU.dll
23:00:38.0432 4676  C:\Program Files\TOSHIBA\SmoothView\NotifyTZU.dll - ok
23:00:38.0432 4676  [ D56DB55F7CD6FADBEB334266CFECCB32 ] C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll
23:00:38.0432 4676  C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll - ok
23:00:38.0432 4676  [ 236A40829213BA4C594A8429172DF1B1 ] C:\Program Files\TOSHIBA\Utilities\NotifyX.dll
23:00:38.0432 4676  C:\Program Files\TOSHIBA\Utilities\NotifyX.dll - ok
23:00:38.0448 4676  [ BD03C64C4B1F34D1F330BF6C4AC8113D ] C:\Windows\System32\QUTIL.DLL
23:00:38.0448 4676  C:\Windows\System32\QUTIL.DLL - ok
23:00:38.0448 4676  [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
23:00:38.0448 4676  C:\Windows\SysWOW64\d3d8thk.dll - ok
23:00:38.0448 4676  [ 4DDACA8A66B95ABA02812FF3C13DE198 ] C:\Windows\SysWOW64\vidcap.ax
23:00:38.0448 4676  C:\Windows\SysWOW64\vidcap.ax - ok
23:00:38.0448 4676  [ 4A7A076EA3B1FE59CF4303F6B0BB2C6F ] C:\Windows\System32\sdcpl.dll
23:00:38.0448 4676  C:\Windows\System32\sdcpl.dll - ok
23:00:38.0463 4676  [ 3F41165F3F56547D0BACA826C2651A77 ] C:\Windows\SysWOW64\Kswdmcap.ax
23:00:38.0463 4676  C:\Windows\SysWOW64\Kswdmcap.ax - ok
23:00:38.0463 4676  [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
23:00:38.0463 4676  C:\Windows\System32\fdWSD.dll - ok
23:00:38.0463 4676  [ 74C76BB54B26CE50C4BC755F92687C63 ] C:\Windows\SysWOW64\mfc42.dll
23:00:38.0463 4676  C:\Windows\SysWOW64\mfc42.dll - ok
23:00:38.0463 4676  [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\49553071.sys
23:00:38.0463 4676  C:\Windows\System32\drivers\49553071.sys - ok
23:00:38.0479 4676  [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
23:00:38.0479 4676  C:\Windows\System32\fdSSDP.dll - ok
23:00:38.0479 4676  [ DB8BF64BE3932ADC407505D21C4F2C2C ] C:\Windows\System32\fdProxy.dll
23:00:38.0479 4676  C:\Windows\System32\fdProxy.dll - ok
23:00:38.0479 4676  [ 92AAF75C3EB344A098DC026BC9DDF42A ] C:\Windows\System32\bthprops.cpl
23:00:38.0479 4676  C:\Windows\System32\bthprops.cpl - ok
23:00:38.0494 4676  [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
23:00:38.0494 4676  C:\Windows\System32\P2P.dll - ok
23:00:38.0494 4676  [ 1358D51456CCBE5719FA0A9D996E74A2 ] C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll
23:00:38.0494 4676  C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll - ok
23:00:38.0494 4676  [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
23:00:38.0494 4676  C:\Windows\System32\p2pcollab.dll - ok
23:00:38.0494 4676  [ 5764C381949147EBCFB9A7134E2ABF06 ] C:\Windows\SysWOW64\odbc32.dll
23:00:38.0494 4676  C:\Windows\SysWOW64\odbc32.dll - ok
23:00:38.0510 4676  [ E79DF53BAD587E24B3CF965A5746C7B6 ] C:\Windows\System32\msra.exe
23:00:38.0510 4676  C:\Windows\System32\msra.exe - ok
23:00:38.0510 4676  [ 4204CDBC4E8FCAE6D5EF1E6FABBA197E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\c99cf7561fabf85373567a160fb4a9f8\PresentationCore.ni.dll
23:00:38.0510 4676  C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\c99cf7561fabf85373567a160fb4a9f8\PresentationCore.ni.dll - ok
23:00:38.0510 4676  [ 6EC594AB7EFA45EACDE65FD4040F53D9 ] C:\Windows\SysWOW64\riched20.dll
23:00:38.0510 4676  C:\Windows\SysWOW64\riched20.dll - ok
23:00:38.0510 4676  [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
23:00:38.0510 4676  C:\Windows\SysWOW64\odbcint.dll - ok
23:00:38.0526 4676  [ C1D0691BE5DDB0C230D8370BD96BBE8B ] C:\Program Files\Internet Explorer\ieproxy.dll
23:00:38.0526 4676  C:\Program Files\Internet Explorer\ieproxy.dll - ok
23:00:38.0526 4676  [ 79336EC275429FD9538E772EE2486A0D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\b63f1623847adcba30569d93c4246451\System.Drawing.ni.dll
23:00:38.0526 4676  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\b63f1623847adcba30569d93c4246451\System.Drawing.ni.dll - ok
23:00:38.0526 4676  [ 8898C95862D03D16B2A06DB4DB6BB6B2 ] C:\Windows\SysWOW64\ExplorerFrame.dll
23:00:38.0526 4676  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
23:00:38.0541 4676  [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
23:00:38.0541 4676  C:\Windows\System32\msiltcfg.dll - ok
23:00:38.0541 4676  [ 8C680C0E6B3D6711B2B88AC82FE1804E ] C:\Windows\SysWOW64\MMDevAPI.dll
23:00:38.0541 4676  C:\Windows\SysWOW64\MMDevAPI.dll - ok
23:00:38.0541 4676  [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
23:00:38.0541 4676  C:\Windows\System32\rasdlg.dll - ok
23:00:38.0541 4676  [ AFBB5060A2DAD431A2EAEB2C86CFFE81 ] C:\Windows\SysWOW64\AudioSes.dll
23:00:38.0541 4676  C:\Windows\SysWOW64\AudioSes.dll - ok
23:00:38.0557 4676  [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
23:00:38.0557 4676  C:\Windows\System32\fveui.dll - ok
23:00:38.0557 4676  [ AE5FF948400A51B040F999BF04290373 ] C:\Windows\SysWOW64\winsta.dll
23:00:38.0557 4676  C:\Windows\SysWOW64\winsta.dll - ok
23:00:38.0557 4676  [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
23:00:38.0557 4676  C:\Windows\System32\P2PGraph.dll - ok
23:00:38.0557 4676  [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
23:00:38.0557 4676  C:\Windows\SysWOW64\duser.dll - ok
23:00:38.0572 4676  [ A445E49FA005EBE28D1CD1D289630534 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\1b181c77c509faa27cb78452fe6a1531\PresentationFramework.ni.dll
23:00:38.0572 4676  C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\1b181c77c509faa27cb78452fe6a1531\PresentationFramework.ni.dll - ok
23:00:38.0572 4676  [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
23:00:38.0572 4676  C:\Windows\System32\IdListen.dll - ok
23:00:38.0572 4676  [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
23:00:38.0572 4676  C:\Windows\SysWOW64\dui70.dll - ok
23:00:38.0588 4676  [ B9C7F88D85369548A69F2EDD1A40441E ] C:\Windows\System32\hgprint.dll
23:00:38.0588 4676  C:\Windows\System32\hgprint.dll - ok
23:00:38.0588 4676  [ BB68579E181956E37EB11F9083C01CF3 ] C:\Windows\System32\dot3api.dll
23:00:38.0588 4676  C:\Windows\System32\dot3api.dll - ok
23:00:38.0588 4676  [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
23:00:38.0588 4676  C:\Windows\System32\wlanhlp.dll - ok
23:00:38.0588 4676  [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
23:00:38.0588 4676  C:\Windows\System32\UIAnimation.dll - ok
23:00:38.0604 4676  [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
23:00:38.0604 4676  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
23:00:38.0604 4676  [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
23:00:38.0604 4676  C:\Windows\System32\WWanAPI.dll - ok
23:00:38.0604 4676  [ FB4945158469FE50A87451AB5218E40B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\25fda033ab1e38bc6ad875a992060ab1\System.Windows.Forms.ni.dll
23:00:38.0604 4676  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\25fda033ab1e38bc6ad875a992060ab1\System.Windows.Forms.ni.dll - ok
23:00:38.0619 4676  [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
23:00:38.0619 4676  C:\Windows\System32\wwapi.dll - ok
23:00:38.0619 4676  [ 0B9F7D42D745038437FAE70D97F9AD5A ] C:\Windows\System32\QAGENT.DLL
23:00:38.0619 4676  C:\Windows\System32\QAGENT.DLL - ok
23:00:38.0619 4676  [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
23:00:38.0619 4676  C:\Program Files\Windows Media Player\wmpnssci.dll - ok
23:00:38.0619 4676  [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
23:00:38.0619 4676  C:\Windows\System32\dssenh.dll - ok
23:00:38.0635 4676  [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
23:00:38.0635 4676  C:\Windows\System32\wsock32.dll - ok
23:00:38.0635 4676  [ 302B93586DFA480545C320EBA5BA6572 ] C:\Windows\System32\wmdrmdev.dll
23:00:38.0635 4676  C:\Windows\System32\wmdrmdev.dll - ok
23:00:38.0635 4676  [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
23:00:38.0635 4676  C:\Windows\System32\drmv2clt.dll - ok
23:00:38.0635 4676  [ 4E75477E8BFA55C6F1F2688FB553F0C5 ] C:\Windows\System32\bitsperf.dll
23:00:38.0635 4676  C:\Windows\System32\bitsperf.dll - ok
23:00:38.0650 4676  [ 4F20D081F9C9B91730EE5CB84E9AC8C4 ] C:\Windows\System32\blackbox.dll
23:00:38.0650 4676  C:\Windows\System32\blackbox.dll - ok
23:00:38.0650 4676  [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
23:00:38.0650 4676  C:\Windows\System32\bitsigd.dll - ok
23:00:38.0650 4676  [ 9E29BC11A70165635CC10D42E64CFEE1 ] C:\Windows\System32\upnp.dll
23:00:38.0650 4676  C:\Windows\System32\upnp.dll - ok
23:00:38.0666 4676  [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:00:38.0666 4676  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
23:00:38.0666 4676  [ 3DEBA83ECDAF6ED2E72430D238803117 ] C:\Windows\System32\wmp.dll
23:00:38.0666 4676  C:\Windows\System32\wmp.dll - ok
23:00:38.0666 4676  [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
23:00:38.0666 4676  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
23:00:38.0666 4676  [ 81E9339611B22ACE2E2D7B42F76C0F34 ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
23:00:38.0666 4676  C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
23:00:38.0682 4676  [ 27AB587E5F0696590EF8B83A52952B7B ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
23:00:38.0682 4676  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
23:00:38.0682 4676  [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
23:00:38.0682 4676  C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
23:00:38.0682 4676  [ 128DD9AF8640DBCC711940903C8B554F ] C:\Windows\SysWOW64\mscoree.dll
23:00:38.0682 4676  C:\Windows\SysWOW64\mscoree.dll - ok
23:00:38.0697 4676  [ AB690CD34CF4B4E3DDF78FD4FBCF88C3 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvc.dll
23:00:38.0697 4676  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvc.dll - ok
23:00:38.0697 4676  [ 6C69EA6A0C308A0FB81992CAC9F39C59 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\fusion.dll
23:00:38.0697 4676  C:\Windows\Microsoft.NET\Framework\v4.0.30319\fusion.dll - ok
23:00:38.0697 4676  [ 2E7ADF9B0389CD94605717784D7E416A ] C:\Windows\System32\drttransport.dll
23:00:38.0697 4676  C:\Windows\System32\drttransport.dll - ok
23:00:38.0697 4676  [ C57BC99A4467B3E8F1CC2184A3F46729 ] C:\Windows\System32\drt.dll
23:00:38.0697 4676  C:\Windows\System32\drt.dll - ok
23:00:38.0713 4676  [ 61B2873C02ECBF86CD6455A40F24CE33 ] C:\Windows\System32\msxml3.dll
23:00:38.0713 4676  C:\Windows\System32\msxml3.dll - ok
23:00:38.0713 4676  [ 2A47F573BE5A2A9B6365455AEEAF2138 ] C:\Windows\System32\gfxSrvc.dll
23:00:38.0713 4676  C:\Windows\System32\gfxSrvc.dll - ok
23:00:38.0713 4676  [ CB896532F62F2A5348485523837D6B55 ] C:\Windows\System32\IGFXDEVLib.dll
23:00:38.0713 4676  C:\Windows\System32\IGFXDEVLib.dll - ok
23:00:38.0728 4676  [ 318285F1590C4484E3253BA2B189D2DF ] C:\Windows\System32\d3d9.dll
23:00:38.0728 4676  C:\Windows\System32\d3d9.dll - ok
23:00:38.0728 4676  [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
23:00:38.0728 4676  C:\Windows\System32\d3d8thk.dll - ok
23:00:38.0728 4676  [ F2D3E921B3EE4D1B8E2A7DFAA16C149F ] C:\Windows\System32\igdumd64.dll
23:00:38.0728 4676  C:\Windows\System32\igdumd64.dll - ok
23:00:38.0728 4676  [ 0D286C0FE561D1A7EB30E83A0FF305B2 ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
23:00:38.0728 4676  C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
23:00:38.0744 4676  [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
23:00:38.0744 4676  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
23:00:38.0744 4676  [ A223CF703E28CBD7E9E7982141FA403C ] C:\Windows\SysWOW64\comdlg32.dll
23:00:38.0744 4676  C:\Windows\SysWOW64\comdlg32.dll - ok
23:00:38.0744 4676  [ 139677BB4CA72DBB99FDF80E74FA0B95 ] C:\Program Files\Windows Media Player\WMPMediaSharing.dll
23:00:38.0744 4676  C:\Program Files\Windows Media Player\WMPMediaSharing.dll - ok
23:00:38.0744 4676  [ 2D444C361F758D6CC4B2F51655ECF528 ] C:\Windows\System32\wmpps.dll
23:00:38.0744 4676  C:\Windows\System32\wmpps.dll - ok
23:00:38.0760 4676  [ 701AAEA33113AA4BDB80BA4D6BD21996 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\47b69f0a1685d16970dd7a7cbeb6caae\System.Xml.ni.dll
23:00:38.0760 4676  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\47b69f0a1685d16970dd7a7cbeb6caae\System.Xml.ni.dll - ok
23:00:38.0760 4676  [ DD37622A478EDFE1D43DF561A19C02DD ] C:\Windows\System32\wmpmde.dll
23:00:38.0760 4676  C:\Windows\System32\wmpmde.dll - ok
23:00:38.0760 4676  [ EC7EB038EA11E0D04214D143E0CB6002 ] C:\Windows\System32\WinSATAPI.dll
23:00:38.0760 4676  C:\Windows\System32\WinSATAPI.dll - ok
23:00:38.0775 4676  [ 2BF5A09197251572A74C426EE3E35117 ] C:\Windows\System32\MSMPEG2ENC.DLL
23:00:38.0775 4676  C:\Windows\System32\MSMPEG2ENC.DLL - ok
23:00:38.0775 4676  [ 81600E2E27ED61427AAD865B9BCDDB9D ] C:\Windows\SysWOW64\msidle.dll
23:00:38.0775 4676  C:\Windows\SysWOW64\msidle.dll - ok
23:00:38.0775 4676  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:00:38.0775 4676  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
23:00:38.0775 4676  [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
23:00:38.0775 4676  C:\Windows\SysWOW64\powrprof.dll - ok
23:00:38.0791 4676  [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
23:00:38.0791 4676  C:\Windows\System32\devenum.dll - ok
23:00:38.0791 4676  [ 0B0604BC02CA5F77A1F23C6B0D86AE8C ] C:\Windows\System32\msdmo.dll
23:00:38.0791 4676  C:\Windows\System32\msdmo.dll - ok
23:00:38.0791 4676  [ 64D757051B5B273E55C93E4503EA4F3E ] C:\Windows\System32\wbem\WmiPrvSE.exe
23:00:38.0791 4676  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
23:00:38.0791 4676  [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
23:00:38.0791 4676  C:\Windows\SysWOW64\netprofm.dll - ok
23:00:38.0806 4676  [ 045DB4EAB4FBD23210E85ECC3F464A2E ] C:\Windows\SysWOW64\nlaapi.dll
23:00:38.0806 4676  C:\Windows\SysWOW64\nlaapi.dll - ok
23:00:38.0806 4676  [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
23:00:38.0806 4676  C:\Windows\SysWOW64\npmproxy.dll - ok
23:00:38.0806 4676  [ 62CBF36E3E10BAA74224BC7A6DD998B5 ] C:\Program Files (x86)\Internet Explorer\ieproxy.dll
23:00:38.0806 4676  C:\Program Files (x86)\Internet Explorer\ieproxy.dll - ok
23:00:38.0806 4676  [ 031C6782F2D50336FC2C72F8D14A4C13 ] C:\Windows\System32\wbem\wmiprov.dll
23:00:38.0806 4676  C:\Windows\System32\wbem\wmiprov.dll - ok
23:00:38.0822 4676  [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
23:00:38.0822 4676  C:\Windows\SysWOW64\rasapi32.dll - ok
23:00:38.0822 4676  [ 9E0C5C8535613763CB1FAF257AF19393 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\45ec9c1e591cfab672027218ada2f061\System.Configuration.ni.dll
23:00:38.0822 4676  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\45ec9c1e591cfab672027218ada2f061\System.Configuration.ni.dll - ok
23:00:38.0822 4676  [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
23:00:38.0822 4676  C:\Windows\SysWOW64\rasman.dll - ok
23:00:38.0838 4676  [ 406F7B9C71B99872670EE9A8D52E2FE5 ] C:\Windows\SysWOW64\rtutils.dll
23:00:38.0838 4676  C:\Windows\SysWOW64\rtutils.dll - ok
23:00:38.0838 4676  [ 1D4127FE151165C5FB9C0EED8701A3D1 ] C:\Program Files (x86)\Internet Explorer\IEShims.dll
23:00:38.0838 4676  C:\Program Files (x86)\Internet Explorer\IEShims.dll - ok
23:00:38.0838 4676  [ F9D038A8C2BDC3AE2548150A7AED0F8A ] C:\Windows\SysWOW64\ieui.dll
23:00:38.0838 4676  C:\Windows\SysWOW64\ieui.dll - ok
23:00:38.0838 4676  [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
23:00:38.0838 4676  C:\Windows\SysWOW64\msimg32.dll - ok
23:00:38.0853 4676  [ 0C2AE180D8C35F723BA13A16AA9AC453 ] C:\Windows\SysWOW64\xmllite.dll
23:00:38.0853 4676  C:\Windows\SysWOW64\xmllite.dll - ok
23:00:38.0853 4676  [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
23:00:38.0853 4676  C:\Windows\SysWOW64\mssprxy.dll - ok
23:00:38.0853 4676  [ 07F649CD36F266BBE33B814FA678AA43 ] C:\Windows\SysWOW64\mshtml.dll
23:00:38.0853 4676  C:\Windows\SysWOW64\mshtml.dll - ok
23:00:38.0853 4676  [ E290E3FDF645DF29D00D6368B9127E30 ] C:\Windows\SysWOW64\msfeeds.dll
23:00:38.0853 4676  C:\Windows\SysWOW64\msfeeds.dll - ok
23:00:38.0869 4676  [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
23:00:38.0869 4676  C:\Windows\System32\msvcr100_clr0400.dll - ok
23:00:38.0869 4676  [ 80C834BA6B844C4B717F2465C4E8EC0F ] C:\Windows\System32\WindowsCodecsExt.dll
23:00:38.0869 4676  C:\Windows\System32\WindowsCodecsExt.dll - ok
23:00:38.0869 4676  [ 1D296F090ED401967B30BD2B970DC306 ] C:\Windows\System32\icm32.dll
23:00:38.0869 4676  C:\Windows\System32\icm32.dll - ok
23:00:38.0884 4676  [ C3BE0751879BDBE9652E4688B1B3BF3D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvc.dll
23:00:38.0884 4676  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvc.dll - ok
23:00:38.0884 4676  [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
23:00:38.0884 4676  C:\Windows\System32\drprov.dll - ok
23:00:38.0884 4676  [ 35C81C87EF82E615AD373F4DE2F8AB1B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\45847db1039319078fe9657e8600662c\WindowsFormsIntegration.ni.dll
23:00:38.0884 4676  C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\45847db1039319078fe9657e8600662c\WindowsFormsIntegration.ni.dll - ok
23:00:38.0884 4676  [ 7273921B6DDFEFF3A8567B9800C5673A ] C:\Windows\System32\ntlanman.dll
23:00:38.0884 4676  C:\Windows\System32\ntlanman.dll - ok
23:00:38.0900 4676  [ 73A1430ABA9119A2C25892EF9C3CB7A1 ] C:\Windows\System32\davclnt.dll
23:00:38.0900 4676  C:\Windows\System32\davclnt.dll - ok
23:00:38.0900 4676  [ 3DA5C13008F62D1F4FD2CB539F426331 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\fusion.dll
23:00:38.0900 4676  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\fusion.dll - ok
23:00:38.0900 4676  [ 8CA6311EF5529C0835744BB6F60FD7C3 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\c89932ab16705c48fca93cf4486b8cee\PresentationFramework.Aero.ni.dll
23:00:38.0900 4676  C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\c89932ab16705c48fca93cf4486b8cee\PresentationFramework.Aero.ni.dll - ok
23:00:38.0916 4676  [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
23:00:38.0916 4676  C:\Windows\System32\davhlpr.dll - ok
23:00:38.0916 4676  [ CCA6A20181B7719B584AEE1DD6542A4E ] C:\Program Files (x86)\Internet Explorer\sqmapi.dll
23:00:38.0916 4676  C:\Program Files (x86)\Internet Explorer\sqmapi.dll - ok
23:00:38.0916 4676  [ 9FDF43178419CB0D4B50373C50396BDF ] C:\Windows\SysWOW64\d2d1.dll
23:00:38.0916 4676  C:\Windows\SysWOW64\d2d1.dll - ok
23:00:38.0916 4676  [ 9F9B0AD8804ECFF8CBD279992DCF7210 ] C:\Windows\SysWOW64\DWrite.dll
23:00:38.0916 4676  C:\Windows\SysWOW64\DWrite.dll - ok
23:00:38.0931 4676  [ 0217CD4FDFCDC84E8C8C413FE8BCBDFF ] C:\Program Files\Microsoft Office 15\root\office15\ochelper.dll
23:00:38.0931 4676  C:\Program Files\Microsoft Office 15\root\office15\ochelper.dll - ok
23:00:38.0931 4676  [ 572DD8F57F8EDDC8793BB5694A94E6FC ] C:\Program Files\Microsoft Office 15\root\office15\1033\ochelperresource.dll
23:00:38.0931 4676  C:\Program Files\Microsoft Office 15\root\office15\1033\ochelperresource.dll - ok
23:00:38.0931 4676  [ 94B89DB65451275516F81E5B769A89DF ] C:\Program Files\Microsoft Office 15\root\office15\urlredir.dll
23:00:38.0931 4676  C:\Program Files\Microsoft Office 15\root\office15\urlredir.dll - ok
23:00:38.0947 4676  [ 7AA1A051EAA0B198CDD5BF4F09D3AC76 ] C:\Program Files\Microsoft Office 15\root\office15\msohev.dll
23:00:38.0947 4676  C:\Program Files\Microsoft Office 15\root\office15\msohev.dll - ok
23:00:38.0947 4676  [ ACCBA604D34842844133A731F8045B32 ] C:\Windows\SysWOW64\sxs.dll
23:00:38.0947 4676  C:\Windows\SysWOW64\sxs.dll - ok
23:00:38.0947 4676  [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
23:00:38.0947 4676  C:\Windows\System32\udhisapi.dll - ok
23:00:38.0947 4676  [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
23:00:38.0947 4676  C:\Windows\SysWOW64\mlang.dll - ok
23:00:38.0962 4676  [ DD76301614636306414EFA94A9AC5A03 ] C:\Windows\SysWOW64\dxgi.dll
23:00:38.0962 4676  C:\Windows\SysWOW64\dxgi.dll - ok
23:00:38.0962 4676  [ 0B149FE13EB1EA719E249D2E88D55FD2 ] C:\Windows\SysWOW64\igdumdx32.dll
23:00:38.0962 4676  C:\Windows\SysWOW64\igdumdx32.dll - ok
23:00:38.0962 4676  [ AD8F6914F7A9AC28047389BE7AF56EBF ] C:\Windows\SysWOW64\d3d10_1.dll
23:00:38.0962 4676  C:\Windows\SysWOW64\d3d10_1.dll - ok
23:00:38.0962 4676  [ 9103E020906FC7A166F380EF2D2516B2 ] C:\Windows\SysWOW64\d3d10_1core.dll
23:00:38.0962 4676  C:\Windows\SysWOW64\d3d10_1core.dll - ok
23:00:38.0978 4676  [ 18A14BF9AC85CB5470C03ED01F23BF32 ] C:\Windows\SysWOW64\igd10umd32.dll
23:00:38.0978 4676  C:\Windows\SysWOW64\igd10umd32.dll - ok
23:00:38.0978 4676  [ 76C48F0CD8A526858AB9A4886586942A ] C:\Windows\SysWOW64\schannel.dll
23:00:38.0978 4676  C:\Windows\SysWOW64\schannel.dll - ok
23:00:38.0978 4676  [ 1B0EC94520CAB89A9CE1B2DA405166AF ] C:\Windows\SysWOW64\p2pcollab.dll
23:00:38.0978 4676  C:\Windows\SysWOW64\p2pcollab.dll - ok
23:00:38.0994 4676  [ A3FA99A16F10D44EDB7A8C340FA2EE1B ] C:\Windows\SysWOW64\jscript9.dll
23:00:38.0994 4676  C:\Windows\SysWOW64\jscript9.dll - ok
23:00:38.0994 4676  [ 35DB83C4DE9FA3889E937125D115EAA0 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdateres_en.dll
23:00:38.0994 4676  C:\Program Files (x86)\Google\Update\1.3.21.135\goopdateres_en.dll - ok
23:00:38.0994 4676  [ 7466809E6DA561D60C2F1CE8EDE3C73F ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
23:00:38.0994 4676  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe - ok
23:00:38.0994 4676  [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
23:00:38.0994 4676  C:\Windows\System32\drivers\spsys.sys - ok
23:00:39.0009 4676  [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
23:00:39.0009 4676  C:\Windows\SysWOW64\msimtf.dll - ok
23:00:39.0009 4676  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
23:00:39.0009 4676  C:\Windows\SysWOW64\wsock32.dll - ok
23:00:39.0009 4676  [ D480C9220BFE667DE65A46CDE80EA7E9 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusStrings.dll
23:00:39.0009 4676  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusStrings.dll - ok
23:00:39.0025 4676  [ 122F89E0905FC656D56F65CD7A2E9B4D ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\xerces-c_2_7.dll
23:00:39.0025 4676  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\xerces-c_2_7.dll - ok
23:00:39.0025 4676  [ 1CBAD5EEE017FAFEA2BF75E82330783D ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\DTMessageLib.dll
23:00:39.0025 4676  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\DTMessageLib.dll - ok
23:00:39.0025 4676  [ B7BDBEBC74105E68A3093073C30E3498 ] C:\Windows\System32\sppwinob.dll
23:00:39.0025 4676  C:\Windows\System32\sppwinob.dll - ok
23:00:39.0025 4676  [ CA493A92DA9880B6F1A89C3DBD54BA5B ] C:\Windows\SysWOW64\dxtrans.dll
23:00:39.0025 4676  C:\Windows\SysWOW64\dxtrans.dll - ok
23:00:39.0040 4676  [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
23:00:39.0040 4676  C:\Windows\SysWOW64\atl.dll - ok
23:00:39.0040 4676  [ BAB9EF9A340113666F678AA2474904B6 ] C:\Windows\SysWOW64\ddrawex.dll
23:00:39.0040 4676  C:\Windows\SysWOW64\ddrawex.dll - ok
23:00:39.0040 4676  [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
23:00:39.0040 4676  C:\Windows\SysWOW64\ddraw.dll - ok
23:00:39.0040 4676  [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
23:00:39.0040 4676  C:\Windows\SysWOW64\dciman32.dll - ok
23:00:39.0056 4676  [ 4312DEBDACBE338F0B90E7F08E7672BE ] C:\Windows\SysWOW64\dxtmsft.dll
23:00:39.0056 4676  C:\Windows\SysWOW64\dxtmsft.dll - ok
23:00:39.0056 4676  [ 2572E1F0254E2267E97DE1B15D099EC4 ] C:\Windows\SysWOW64\d3d10.dll
23:00:39.0056 4676  C:\Windows\SysWOW64\d3d10.dll - ok
23:00:39.0056 4676  [ 547F78746F20901C770E8653B242217C ] C:\Windows\SysWOW64\d3d10core.dll
23:00:39.0056 4676  C:\Windows\SysWOW64\d3d10core.dll - ok
23:00:39.0072 4676  [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
23:00:39.0072 4676  C:\Windows\System32\mspatcha.dll - ok
23:00:39.0072 4676  [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
23:00:39.0072 4676  C:\Windows\System32\wuapi.dll - ok
23:00:39.0072 4676  [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
23:00:39.0072 4676  C:\Windows\System32\wups.dll - ok
23:00:39.0072 4676  [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll
23:00:39.0072 4676  C:\Windows\SysWOW64\msls31.dll - ok
23:00:39.0087 4676  [ 2F530C1448D4984F2A3F995895F2D532 ] C:\Windows\System32\sppobjs.dll
23:00:39.0087 4676  C:\Windows\System32\sppobjs.dll - ok
23:00:39.0087 4676  [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
23:00:39.0087 4676  C:\Windows\SysWOW64\winrnr.dll - ok
23:00:39.0087 4676  [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
23:00:39.0087 4676  C:\Windows\SysWOW64\NapiNSP.dll - ok
23:00:39.0087 4676  [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
23:00:39.0087 4676  C:\Windows\SysWOW64\pnrpnsp.dll - ok
23:00:39.0103 4676  [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
23:00:39.0103 4676  C:\Windows\System32\wups2.dll - ok
23:00:39.0103 4676  [ BA7EC41CA58730A485270820F310CD4E ] C:\Windows\System32\NaturalLanguage6.dll
23:00:39.0103 4676  C:\Windows\System32\NaturalLanguage6.dll - ok
23:00:39.0103 4676  [ 701D9F5F3F21580936638D5C5F86B460 ] C:\Windows\System32\NlsData0009.dll
23:00:39.0103 4676  C:\Windows\System32\NlsData0009.dll - ok
23:00:39.0103 4676  [ 148A733B93A2AC104280495DA09D3CC2 ] C:\Windows\System32\NlsLexicons0009.dll
23:00:39.0103 4676  C:\Windows\System32\NlsLexicons0009.dll - ok
23:00:39.0118 4676  [ 76D86E65FF7D10292886A1F2DB93A911 ] C:\Windows\System32\ELSCore.dll
23:00:39.0118 4676  C:\Windows\System32\ELSCore.dll - ok
23:00:39.0118 4676  [ B526181E3F6B9F5136B6B7F776B7468B ] C:\Windows\System32\elsTrans.dll
23:00:39.0118 4676  C:\Windows\System32\elsTrans.dll - ok
23:00:39.0118 4676  [ AEE087CF7423BA44CC2DE03CC565E399 ] C:\Windows\System32\elslad.dll
23:00:39.0118 4676  C:\Windows\System32\elslad.dll - ok
23:00:39.0134 4676  [ 51272A935F4F482A70F2A7D1C3A67AEE ] C:\Windows\System32\NlsData000c.dll
23:00:39.0134 4676  C:\Windows\System32\NlsData000c.dll - ok
23:00:39.0134 4676  [ C2142407A2BE3462247500849B3FF8C7 ] C:\Windows\System32\NlsLexicons000c.dll
23:00:39.0134 4676  C:\Windows\System32\NlsLexicons000c.dll - ok
23:00:39.0134 4676  [ A42FBC61385A5F5F444209EE94D89F27 ] C:\Windows\System32\NlsData0021.dll
23:00:39.0134 4676  C:\Windows\System32\NlsData0021.dll - ok
23:00:39.0134 4676  [ E5283AFD7590ECC37F8D62C4D6F1FB48 ] C:\Windows\System32\NlsLexicons0021.dll
23:00:39.0134 4676  C:\Windows\System32\NlsLexicons0021.dll - ok
23:00:39.0150 4676  [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
23:00:39.0150 4676  C:\Windows\System32\shfolder.dll - ok
23:00:39.0150 4676  [ E7B4D9898041EC24D88AA7E1E875B680 ] C:\Program Files\TOSHIBA\BulletinBoard\TosNcCom.dll
23:00:39.0150 4676  C:\Program Files\TOSHIBA\BulletinBoard\TosNcCom.dll - ok
23:00:39.0150 4676  [ C0CCBA2DDADBB8B068F50D1A832F07EC ] C:\Windows\System32\Query.dll
23:00:39.0150 4676  C:\Windows\System32\Query.dll - ok
23:00:39.0165 4676  [ 0FDB7B1D9CAD750E73EF5739C48ABFEC ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\1d7d2059e4e7328d9efac20e7bab282d\System.ServiceProcess.ni.dll
23:00:39.0165 4676  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\1d7d2059e4e7328d9efac20e7bab282d\System.ServiceProcess.ni.dll - ok
23:00:39.0165 4676  [ 28644B0523D64EFF2FC7312A2EE74B0A ] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
23:00:39.0165 4676  C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe - ok
23:00:39.0165 4676  [ 7FD58BA8562948EE374E2513C6771EF9 ] C:\Windows\System32\mf.dll
23:00:39.0165 4676  C:\Windows\System32\mf.dll - ok
23:00:39.0165 4676  [ E2107F227E1C174C20BEB7A51404BBAC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe
23:00:39.0165 4676  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe - ok
23:00:39.0181 4676  [ D666F929C5960162DD78385E370A31C4 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll
23:00:39.0181 4676  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll - ok
23:00:39.0181 4676  [ 887E034C28F7F379AC7B1C498E708A26 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll
23:00:39.0181 4676  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll - ok
23:00:39.0181 4676  [ 841A005EC594A4D435A8D9E2615D0A52 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll
23:00:39.0181 4676  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll - ok
23:00:39.0196 4676  [ ED520370FA548DC614DE52D2EDD61F43 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
23:00:39.0196 4676  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe - ok
23:00:39.0196 4676  [ 2B7FF5B35924909C4639E876FAF0F7E3 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\e14764f6a423af07d5b2fdf6fa73393a\System.Management.ni.dll
23:00:39.0196 4676  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\e14764f6a423af07d5b2fdf6fa73393a\System.Management.ni.dll - ok
23:00:39.0196 4676  [ 8639237940994AAB9B8E8503F2A551A0 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
23:00:39.0196 4676  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
23:00:39.0196 4676  [ EE24C42561D40F7AD7C2A7A460287090 ] C:\Windows\System32\wbem\cimwin32.dll
23:00:39.0196 4676  C:\Windows\System32\wbem\cimwin32.dll - ok
23:00:39.0212 4676  [ 5D89D063A4CB036C258685C8E057E768 ] C:\Windows\System32\framedynos.dll
23:00:39.0212 4676  C:\Windows\System32\framedynos.dll - ok
23:00:39.0212 4676  [ 76DC9F4FE66BC3867615F142766B4C50 ] C:\Windows\System32\wmi.dll
23:00:39.0212 4676  C:\Windows\System32\wmi.dll - ok
23:00:39.0212 4676  [ 14C6A59904D397C6D85DADA9ACBB6FAB ] C:\Windows\System32\browcli.dll
23:00:39.0212 4676  C:\Windows\System32\browcli.dll - ok
23:00:39.0228 4676  [ 28142AAF1565736CE0E5D7EFCE3CC0F8 ] C:\Windows\System32\schedcli.dll
23:00:39.0228 4676  C:\Windows\System32\schedcli.dll - ok
23:00:39.0228 4676  [ E601860AA04CE2198DBC6AC2AF80AFF7 ] C:\Windows\System32\perfos.dll
23:00:39.0228 4676  C:\Windows\System32\perfos.dll - ok
23:00:39.0228 4676  [ 11542EC1F1C53EDB3CCF5AADF4C9972F ] C:\Windows\System32\NlsData0000.dll
23:00:39.0228 4676  C:\Windows\System32\NlsData0000.dll - ok
23:00:39.0228 4676  [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
23:00:39.0228 4676  C:\Windows\System32\security.dll - ok
23:00:39.0243 4676  [ CFF3C4ABDCC5356B0674743BDF0FB674 ] C:\Windows\System32\mshtml.dll
23:00:39.0243 4676  C:\Windows\System32\mshtml.dll - ok
23:00:39.0243 4676  [ B3CE0951E3C1EA3C733573C472EE85F9 ] C:\Windows\System32\msimtf.dll
23:00:39.0243 4676  C:\Windows\System32\msimtf.dll - ok
23:00:39.0243 4676  [ 7FA5CA36B613A000F3A37E6B5170A195 ] C:\Windows\System32\d2d1.dll
23:00:39.0243 4676  C:\Windows\System32\d2d1.dll - ok
23:00:39.0243 4676  [ E9FD4DA5188391ECD30E6C29213EABF0 ] C:\Windows\System32\DWrite.dll
23:00:39.0243 4676  C:\Windows\System32\DWrite.dll - ok
23:00:39.0259 4676  [ 0CCA9F023E7DC078D7CFBF024655AB7F ] C:\Windows\System32\d3d10warp.dll
23:00:39.0259 4676  C:\Windows\System32\d3d10warp.dll - ok
23:00:39.0259 4676  [ 97687D094AA597DA366E1194B218CC6C ] C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
23:00:39.0259 4676  C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe - ok
23:00:39.0259 4676  [ 018C4AA49AED9E6B6017FD3055D0167C ] C:\Program Files\TOSHIBA\TPHM\TPCHCTL.dll
23:00:39.0259 4676  C:\Program Files\TOSHIBA\TPHM\TPCHCTL.dll - ok
23:00:39.0259 4676  [ 2B9D005F312BCB7318FE9CC4783B0ECA ] C:\Program Files\TOSHIBA\TPHM\TPCHDisk.dll
23:00:39.0259 4676  C:\Program Files\TOSHIBA\TPHM\TPCHDisk.dll - ok
23:00:39.0274 4676  [ 74C2FA8C3765EE71A9C22182EC108457 ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
23:00:39.0274 4676  C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe - ok
23:00:39.0274 4676  [ 82A4C81D96D429BE2F2B22AD5B6697F2 ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
23:00:39.0274 4676  C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe - ok
23:00:39.0274 4676  [ CE09C5417A9B712D69F653DBC71E694F ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosIPCWraper.dll
23:00:39.0274 4676  C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosIPCWraper.dll - ok
23:00:39.0290 4676  [ 867D39EFDD18A0B9FD71C854AA042452 ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TReport.dll
23:00:39.0290 4676  C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TReport.dll - ok
23:00:39.0290 4676  [ C849E9CB02062D4179E4D2A36862A48A ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosReg.dll
23:00:39.0290 4676  C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosReg.dll - ok
23:00:39.0290 4676  [ 1993E30BBCC3EA672EF57E63D0FEEEF6 ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmart.dll
23:00:39.0290 4676  C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmart.dll - ok
23:00:39.0290 4676  [ F1387F5674697F2D8EB6DE2266477860 ] C:\Windows\System32\dskquota.dll
23:00:39.0290 4676  C:\Windows\System32\dskquota.dll - ok
23:00:39.0306 4676  [ C5F285E1CB1150E4D188A6924788B3B8 ] C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
23:00:39.0306 4676  C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe - ok
23:00:39.0306 4676  [ 051734FDDF70E63C174199AC86136E47 ] C:\Program Files\TOSHIBA\TPHM\TReport.dll
23:00:39.0306 4676  C:\Program Files\TOSHIBA\TPHM\TReport.dll - ok
23:00:39.0306 4676  [ 3F12F93B8EF4DCCBE00D98FC6DB8C5C6 ] C:\Program Files\TOSHIBA\TPHM\TPCHMUI.dll
23:00:39.0306 4676  C:\Program Files\TOSHIBA\TPHM\TPCHMUI.dll - ok
23:00:39.0321 4676  [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll
23:00:39.0321 4676  C:\Windows\System32\wscinterop.dll - ok
23:00:39.0321 4676  [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl
23:00:39.0321 4676  C:\Windows\System32\wscui.cpl - ok
23:00:39.0321 4676  [ C3626E674990EF003B6C94807E82B501 ] C:\Windows\System32\werconcpl.dll
23:00:39.0321 4676  C:\Windows\System32\werconcpl.dll - ok
23:00:39.0321 4676  [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll
23:00:39.0321 4676  C:\Windows\System32\hcproviders.dll - ok
23:00:39.0337 4676  [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
23:00:39.0337 4676  C:\Windows\System32\wbem\wmipcima.dll - ok
23:00:39.0337 4676  [ B7213E92B270761B88B313B62BA0E13B ] C:\Windows\System32\slwga.dll
23:00:39.0337 4676  C:\Windows\System32\slwga.dll - ok
23:00:39.0337 4676  [ 64856DFE10FC7B429E6999380BC3BB62 ] C:\Windows\System32\sppc.dll
23:00:39.0337 4676  C:\Windows\System32\sppc.dll - ok
23:00:39.0337 4676  [ 5FBD7BEC6CD3DCAA6A87A7F70CE8AF44 ] C:\Windows\System32\advpack.dll
23:00:39.0337 4676  C:\Windows\System32\advpack.dll - ok
23:00:39.0352 4676  [ C1C03EA437EDDA8A7D4D8786E5AE6751 ] C:\Windows\System32\wuauclt.exe
23:00:39.0352 4676  C:\Windows\System32\wuauclt.exe - ok
23:00:39.0352 4676  [ E836B769DE421DEC40DABDFCCDB49FC2 ] C:\Windows\SoftwareDistribution\Download\Install\mpas-d_bd_1.145.236.0.exe
23:00:39.0352 4676  C:\Windows\SoftwareDistribution\Download\Install\mpas-d_bd_1.145.236.0.exe - ok
23:00:39.0352 4676  [ 137032720108BFE1A50134E0024D06B9 ] C:\Windows\System32\feclient.dll
23:00:39.0352 4676  C:\Windows\System32\feclient.dll - ok
23:00:39.0368 4676  [ 8CFA5D072B6B5A34457273910DFBB98F ] C:\1bbfa4e176b02d68ce1c9456\MpMiniSigStub.exe
23:00:39.0368 4676  C:\1bbfa4e176b02d68ce1c9456\MpMiniSigStub.exe - ok
23:00:39.0368 4676  [ 94BCE5A03EF5F9340AD9095E0D409C82 ] C:\Windows\System32\MpSigStub.exe
23:00:39.0368 4676  C:\Windows\System32\MpSigStub.exe - ok
23:00:39.0368 4676  [ CA61E3BC7788AED9B65086D55A298CF6 ] C:\1bbfa4e176b02d68ce1c9456\9A441E39-B910-45F7-9D3B-77FDE65804A6mpasdlta.vdm
23:00:39.0368 4676  C:\1bbfa4e176b02d68ce1c9456\9A441E39-B910-45F7-9D3B-77FDE65804A6mpasdlta.vdm - ok
23:00:39.0368 4676  [ CA61E3BC7788AED9B65086D55A298CF6 ] C:\1bbfa4e176b02d68ce1c9456\mpasdlta.vdm
23:00:39.0368 4676  C:\1bbfa4e176b02d68ce1c9456\mpasdlta.vdm - ok
23:00:39.0384 4676  [ CA61E3BC7788AED9B65086D55A298CF6 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8D586EF5-74BD-4C4C-B0AE-2F815A65F672}\mpasdlta.vdm
23:00:39.0384 4676  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8D586EF5-74BD-4C4C-B0AE-2F815A65F672}\mpasdlta.vdm - ok
23:00:39.0384 4676  [ 76A11F575782DBAE74F05B8796EF7F9D ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8D586EF5-74BD-4C4C-B0AE-2F815A65F672}\mpengine.dll
23:00:39.0384 4676  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8D586EF5-74BD-4C4C-B0AE-2F815A65F672}\mpengine.dll - ok
23:00:39.0384 4676  [ 288ADDED26C80FDC135CAB4340161686 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll
23:00:39.0384 4676  C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll - ok
23:00:39.0399 4676  [ CFF2D779B7068D39FA444A3D54FAE6F9 ] C:\Windows\System32\dpx.dll
23:00:39.0399 4676  C:\Windows\System32\dpx.dll - ok
23:00:39.0399 4676  [ 436EB2742ED35C1ED9DDCB83C9BCF68A ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8D586EF5-74BD-4C4C-B0AE-2F815A65F672}\mpasbase.vdm
23:00:39.0399 4676  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8D586EF5-74BD-4C4C-B0AE-2F815A65F672}\mpasbase.vdm - ok
23:00:39.0399 4676  [ 7957A194B8421BC070FABBF1C55DB68B ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll
23:00:39.0399 4676  C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll - ok
23:00:39.0399 4676  [ 9297F004FCE79FB7B26DAC6968FB5FEB ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll
23:00:39.0399 4676  C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll - ok
23:00:39.0415 4676  [ FC6C5D860CDB82411DA626821201BDF0 ] C:\Windows\System32\srclient.dll
23:00:39.0415 4676  C:\Windows\System32\srclient.dll - ok
23:00:39.0415 4676  [ 57193858CCEA03BD038FCFE7E396AEC4 ] C:\Windows\System32\spp.dll
23:00:39.0415 4676  C:\Windows\System32\spp.dll - ok
23:00:39.0415 4676  [ 943F48CC3A59169E52A054946C2F59B8 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll
23:00:39.0415 4676  C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll - ok
23:00:39.0430 4676  [ 6685DD5CC357D45EEE30FD089E8A111A ] C:\Windows\System32\sxsstore.dll
23:00:39.0430 4676  C:\Windows\System32\sxsstore.dll - ok
23:00:39.0430 4676  [ D485D1BE97777617B186FC8095F58421 ] C:\Windows\servicing\CbsApi.dll
23:00:39.0430 4676  C:\Windows\servicing\CbsApi.dll - ok
23:00:39.0430 4676  [ 4895F67E1C74A855285C95741F3DA695 ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_6_602_171.ocx
23:00:39.0430 4676  C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_6_602_171.ocx - ok
23:00:39.0430 4676  [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
23:00:39.0430 4676  C:\Windows\System32\wbem\WMIADAP.exe - ok
23:00:39.0446 4676  [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
23:00:39.0446 4676  C:\Windows\System32\loadperf.dll - ok
23:00:39.0446 4676  [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
23:00:39.0446 4676  C:\Windows\SysWOW64\dsound.dll - ok
23:00:39.0446 4676  [ 205B7034B64DE5A68DEB96B47B7E889B ] C:\Windows\SysWOW64\mscms.dll
23:00:39.0446 4676  C:\Windows\SysWOW64\mscms.dll - ok
23:00:39.0446 4676  [ 3D769F1BE09BF8E3E65012FCA909E0D2 ] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_171_ActiveX.exe
23:00:39.0446 4676  C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_171_ActiveX.exe - ok
23:00:39.0462 4676  [ 90FB1802D488FFA9029854A77D4F3F27 ] C:\Windows\SysWOW64\oleaccrc.dll
23:00:39.0462 4676  C:\Windows\SysWOW64\oleaccrc.dll - ok
23:00:39.0462 4676  [ EFCA8B42DC0BC7AF10870DE3C2DCCA8F ] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_171_ActiveX.dll
23:00:39.0462 4676  C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_171_ActiveX.dll - ok
23:00:39.0462 4676  [ 39E9AACC4C5FB3C3C0B12DE6D491553D ] C:\Windows\SysWOW64\WindowsCodecsExt.dll
23:00:39.0462 4676  C:\Windows\SysWOW64\WindowsCodecsExt.dll - ok
23:00:39.0477 4676  [ 816B681CC308FAA128EDCB90643DCED7 ] C:\Windows\SysWOW64\icm32.dll
23:00:39.0477 4676  C:\Windows\SysWOW64\icm32.dll - ok
23:00:39.0477 4676  [ 2A089E7AB1C81D9D2EF5CE9554DB97BB ] C:\Windows\SysWOW64\msxml6.dll
23:00:39.0477 4676  C:\Windows\SysWOW64\msxml6.dll - ok
23:00:39.0477 4676  [ 631289583481C45C7342EFD57442B738 ] C:\Program Files (x86)\Common Files\microsoft shared\VGX\VGX.dll
23:00:39.0477 4676  C:\Program Files (x86)\Common Files\microsoft shared\VGX\VGX.dll - ok
23:00:39.0477 4676  [ 9BCB54208A456D67FB1B11CF0B428130 ] C:\Windows\SysWOW64\Wpc.dll
23:00:39.0477 4676  C:\Windows\SysWOW64\Wpc.dll - ok
23:00:39.0493 4676  [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\SysWOW64\wevtapi.dll
23:00:39.0493 4676  C:\Windows\SysWOW64\wevtapi.dll - ok
23:00:39.0493 4676  [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
23:00:39.0493 4676  C:\Windows\SysWOW64\samlib.dll - ok
23:00:39.0493 4676  [ EE9D715AF1B928982F417238B9914484 ] C:\Windows\SysWOW64\ieapfltr.dll
23:00:39.0493 4676  C:\Windows\SysWOW64\ieapfltr.dll - ok
23:00:39.0508 4676  [ FBE9BC55CF7ED9CC1452F7AF02C31864 ] C:\Windows\SysWOW64\msftedit.dll
23:00:39.0508 4676  C:\Windows\SysWOW64\msftedit.dll - ok
23:00:39.0508 4676  [ 7896EFFDEE215C172BE724A64931EF1C ] C:\Program Files (x86)\Common Files\microsoft shared\ink\tiptsf.dll
23:00:39.0508 4676  C:\Program Files (x86)\Common Files\microsoft shared\ink\tiptsf.dll - ok
23:00:39.0508 4676  [ 8D908F346EEDD752005A32787A6DCAFA ] C:\Windows\SysWOW64\StructuredQuery.dll
23:00:39.0508 4676  C:\Windows\SysWOW64\StructuredQuery.dll - ok
23:00:39.0508 4676  [ B6C4063297C7D07CD0532BDC3350436C ] C:\Windows\SysWOW64\actxprxy.dll
23:00:39.0508 4676  C:\Windows\SysWOW64\actxprxy.dll - ok
23:00:39.0524 4676  [ DBE2AA52B5D67DA319D33A175B8BB41E ] C:\Windows\SysWOW64\thumbcache.dll
23:00:39.0524 4676  C:\Windows\SysWOW64\thumbcache.dll - ok
23:00:39.0524 4676  [ 47098E5D669470801621AC09C7C77CC0 ] C:\Windows\SysWOW64\SearchFolder.dll
23:00:39.0524 4676  C:\Windows\SysWOW64\SearchFolder.dll - ok
23:00:39.0524 4676  [ 4A056D7392F31EDA3AE1975E7010D7E3 ] C:\Windows\SysWOW64\networkexplorer.dll
23:00:39.0524 4676  C:\Windows\SysWOW64\networkexplorer.dll - ok
23:00:39.0524 4676  [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
23:00:39.0524 4676  C:\Windows\SysWOW64\linkinfo.dll - ok
23:00:39.0540 4676  [ D6692338B985D4A0CA52B828314D897D ] C:\Windows\SysWOW64\drprov.dll
23:00:39.0540 4676  C:\Windows\SysWOW64\drprov.dll - ok
23:00:39.0540 4676  [ 06018B349666595970E15397E78A0D77 ] C:\Windows\SysWOW64\ntlanman.dll
23:00:39.0540 4676  C:\Windows\SysWOW64\ntlanman.dll - ok
23:00:39.0540 4676  [ 7FB5696EBCB8131AD2E2DEFE5F19C4B5 ] C:\Windows\SysWOW64\davclnt.dll
23:00:39.0540 4676  C:\Windows\SysWOW64\davclnt.dll - ok
23:00:39.0540 4676  [ 179BECE8D1A4C488DDB7191FF9BE3FB0 ] C:\Windows\SysWOW64\davhlpr.dll
23:00:39.0540 4676  C:\Windows\SysWOW64\davhlpr.dll - ok
23:00:39.0555 4676  [ BAF10E9C4A0A20BBCE6DE4B5A1417351 ] C:\Windows\SysWOW64\wpdshext.dll
23:00:39.0555 4676  C:\Windows\SysWOW64\wpdshext.dll - ok
23:00:39.0555 4676  [ 36060A75D9EDB1AEF0825988C7DD8511 ] C:\Windows\SysWOW64\PortableDeviceApi.dll
23:00:39.0555 4676  C:\Windows\SysWOW64\PortableDeviceApi.dll - ok
23:00:39.0555 4676  [ A63DC5C2EA944E6657203E0C8EDEAF61 ] C:\Windows\SysWOW64\dllhost.exe
23:00:39.0555 4676  C:\Windows\SysWOW64\dllhost.exe - ok
23:00:39.0571 4676  [ 40AFF6158597FC43F32AE2A3979BF603 ] C:\Windows\SysWOW64\audiodev.dll
23:00:39.0571 4676  C:\Windows\SysWOW64\audiodev.dll - ok
23:00:39.0571 4676  [ D3EAD1CF16BA729A7F7C9A5D94AA7C05 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll
23:00:39.0571 4676  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll - ok
23:00:39.0571 4676  [ 705500D7DEC798D36FEF61BD16858AB9 ] C:\Windows\SysWOW64\EhStorAPI.dll
23:00:39.0571 4676  C:\Windows\SysWOW64\EhStorAPI.dll - ok
23:00:39.0571 4676  [ FD0D2E1FAEBAE5031BE2EB8000D973F1 ] C:\Program Files\Internet Explorer\iexplore.exe
23:00:39.0571 4676  C:\Program Files\Internet Explorer\iexplore.exe - ok
23:00:39.0586 4676  [ 5DFE72B9F1FF669070FC032090B7B982 ] C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
23:00:39.0586 4676  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe - ok
23:00:39.0586 4676  [ 7633F554EEAFDE7F144B41C2FCAF5F63 ] C:\Windows\System32\SnippingTool.exe
23:00:39.0586 4676  C:\Windows\System32\SnippingTool.exe - ok
23:00:39.0586 4676  [ CDE81C3D7B325B33D8E0EA1AD7E93655 ] C:\Windows\System32\recdisc.exe
23:00:39.0586 4676  C:\Windows\System32\recdisc.exe - ok
23:00:39.0586 4676  [ 1FF8939ABF6B9CF81F22BD768E5449BD ] C:\Windows\System32\OobeFldr.dll
23:00:39.0586 4676  C:\Windows\System32\OobeFldr.dll - ok
23:00:39.0602 4676  [ D2CB14499799E196CB034448BDD898DD ] C:\Windows\System32\SearchFolder.dll
23:00:39.0602 4676  C:\Windows\System32\SearchFolder.dll - ok
23:00:39.0602 4676  [ 0464F91951FF74105B13921AFCE40413 ] C:\Windows\System32\StructuredQuery.dll
23:00:39.0602 4676  C:\Windows\System32\StructuredQuery.dll - ok
23:00:39.0602 4676  [ EFD63099ED552D8B2410D78ECA4AA040 ] C:\Windows\System32\wpdshext.dll
23:00:39.0602 4676  C:\Windows\System32\wpdshext.dll - ok
23:00:39.0602 4676  [ CFF03DCC74E5C80686FA8AA972CA4770 ] C:\Windows\System32\EhStorAPI.dll
23:00:39.0602 4676  C:\Windows\System32\EhStorAPI.dll - ok
23:00:39.0618 4676  [ EF33F6DD121B7F546F36112B8B73C609 ] C:\Windows\System32\zipfldr.dll
23:00:39.0618 4676  C:\Windows\System32\zipfldr.dll - ok
23:00:39.0618 4676  [ DA756BA453C706A3DE7C93213E9621AA ] C:\Windows\SysWOW64\winshfhc.dll
23:00:39.0618 4676  C:\Windows\SysWOW64\winshfhc.dll - ok
23:00:39.0618 4676  [ 36F0BAA49BD0EBB5E8DBDED3EC75806C ] C:\Windows\SysWOW64\wdscore.dll
23:00:39.0618 4676  C:\Windows\SysWOW64\wdscore.dll - ok
23:00:39.0633 4676  [ 79E485E1361DA3CBE01FF760867F1D26 ] C:\Program Files (x86)\Windows Defender\MpOAV.dll
23:00:39.0633 4676  C:\Program Files (x86)\Windows Defender\MpOAV.dll - ok
23:00:39.0633 4676  [ 20308CF0675AD7CE5AAA6712DB823216 ] C:\Program Files (x86)\Windows Defender\MpClient.dll
23:00:39.0633 4676  C:\Program Files (x86)\Windows Defender\MpClient.dll - ok
23:00:39.0633 4676  [ BE3AB4803C963BE0357541EC3B17D443 ] C:\Users\Tosh\Desktop\aswMBR.exe
23:00:39.0633 4676  C:\Users\Tosh\Desktop\aswMBR.exe - ok
23:00:39.0633 4676  [ 9409DE2CC6AA768D178D95ECB0D39943 ] C:\Users\Tosh\AppData\Local\Temp\aswMBR.sys
23:00:39.0633 4676  C:\Users\Tosh\AppData\Local\Temp\aswMBR.sys - ok
23:00:39.0649 4676  [ 6B198F82D25A06E2E402385038E6785B ] C:\Users\Tosh\AppData\Local\Temp\_av4_\aswEngin.dll
23:00:39.0680 4676  C:\Users\Tosh\AppData\Local\Temp\_av4_\aswEngin.dll - ok
23:00:39.0680 4676  [ 01033EDA5F63E4BA48C25099CE9D6BDD ] C:\Users\Tosh\AppData\Local\Temp\_av4_\aswCmnOS.dll
23:00:39.0680 4676  C:\Users\Tosh\AppData\Local\Temp\_av4_\aswCmnOS.dll - ok
23:00:39.0696 4676  [ 088022E7418526C11831394502A6E5BD ] C:\Users\Tosh\AppData\Local\Temp\_av4_\aswScan.dll
23:00:39.0696 4676  C:\Users\Tosh\AppData\Local\Temp\_av4_\aswScan.dll - ok
23:00:39.0696 4676  [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Users\Tosh\AppData\Local\Temp\_av4_\msvcp71.dll
23:00:39.0696 4676  C:\Users\Tosh\AppData\Local\Temp\_av4_\msvcp71.dll - ok
23:00:39.0711 4676  [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Users\Tosh\AppData\Local\Temp\_av4_\msvcr71.dll
23:00:39.0711 4676  C:\Users\Tosh\AppData\Local\Temp\_av4_\msvcr71.dll - ok
23:00:39.0711 4676  [ 99F500385CB4DFF826F0A9058BEE2C98 ] C:\Users\Tosh\AppData\Local\Temp\_av4_\aswCmnB.dll
23:00:39.0711 4676  C:\Users\Tosh\AppData\Local\Temp\_av4_\aswCmnB.dll - ok
23:00:39.0727 4676  [ 13EEB998A123530809BFBC16A6BE580E ] C:\Users\Tosh\AppData\Local\Temp\_av4_\aswCmnS.dll
23:00:39.0727 4676  C:\Users\Tosh\AppData\Local\Temp\_av4_\aswCmnS.dll - ok
23:00:39.0727 4676  [ 6FC137CFD70DDEFD2DBD5906EF487564 ] C:\Windows\SysWOW64\mssvp.dll
23:00:39.0727 4676  C:\Windows\SysWOW64\mssvp.dll - ok
23:00:39.0727 4676  [ 000B3A704234C202D4D788A171B02243 ] C:\Windows\SysWOW64\mapi32.dll
23:00:39.0727 4676  C:\Windows\SysWOW64\mapi32.dll - ok
23:00:39.0742 4676  [ F2C7BB8ACC97F92E987A2D4087D021B1 ] C:\Windows\System32\notepad.exe
23:00:39.0742 4676  C:\Windows\System32\notepad.exe - ok
23:00:39.0742 4676  [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Tosh\Desktop\tdsskiller.exe
23:00:39.0742 4676  C:\Users\Tosh\Desktop\tdsskiller.exe - ok
23:00:39.0742 4676  [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\96191809.sys
23:00:39.0742 4676  C:\Windows\System32\drivers\96191809.sys - ok
23:00:39.0742 4676  ============================================================
23:00:39.0742 4676  Scan finished
23:00:39.0742 4676  ============================================================
23:00:39.0758 4128  Detected object count: 0
23:00:39.0758 4128  Actual detected object count: 0
23:04:50.0740 2556  Deinitialize success
 



#7 ddt904

ddt904
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:01:03 PM

Posted 27 February 2013 - 12:21 AM

C:\Qoobox\Quarantine\C\$RECYCLE.BIN\S-1-5-21-1861035418-746560588-1734523543-1001\$c5a9c9cae3d20a62800b50e9ffd1c43d\n.vir Win64/Sirefef.AR trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Tosh\AppData\Roaming\skype.dat.vir a variant of Win32/Injector.ADAT trojan cleaned by deleting - quarantined
C:\Users\Tosh\2793790.exe a variant of Win32/Kryptik.ATBL trojan cleaned by deleting - quarantined
C:\Users\Tosh\AppData\Local\Temp\hehda.exe a variant of Win32/Kryptik.ASIQ trojan cleaned by deleting - quarantined
C:\Users\Tosh\AppData\Local\Temp\msimg32.dll a variant of Win32/Kryptik.ASFC trojan cleaned by deleting - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\2fa0f68a-1bc067aa multiple threats deleted - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\6f4f560a-2414727c Java/Exploit.CVE-2013-0422.BV trojan deleted - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\75fbe28a-259343c4 a variant of Java/Exploit.CVE-2013-0422.BJ trojan deleted - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13\10dab18d-42ca8057 a variant of Java/Exploit.CVE-2012-1723.DO trojan deleted - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13\7dfba04d-5a617e44 Win32/LockScreen.APQ trojan deleted - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\6df95790-7f10a095 Win32/LockScreen.APQ trojan deleted - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\a149f93-2c009289 a variant of Java/Exploit.CVE-2013-0422.CF trojan deleted - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\3a699515-2a8d15f2 Java/Exploit.CVE-2013-0422.AW trojan deleted - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\da41098-3aba8c88 a variant of Java/Exploit.CVE-2013-0422.AC trojan deleted - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\30\949b99e-3c5e5e41 a variant of Java/Exploit.CVE-2012-5076.AN trojan deleted - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\3d56ff67-3c3b9cac Java/Exploit.Agent.NIA trojan deleted - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\7d268532-67e59585 a variant of Win32/Kryptik.AVGH trojan cleaned by deleting - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\4af410f5-450ba0e0 a variant of Java/Exploit.CVE-2013-0422.BJ trojan deleted - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\91b2878-507fa11d multiple threats deleted - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\5ca779fa-74adaec0 multiple threats deleted - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\6c4fe9fd-444f8fca a variant of Java/Exploit.CVE-2012-4681.CR trojan deleted - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\48f74e7f-11dbe4a2 a variant of Java/Exploit.CVE-2012-5076.AN trojan deleted - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\3f545807-221344d1 Win32/LockScreen.APQ trojan cleaned by deleting - quarantined
C:\Users\Tosh\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\9\414cf649-772df57d a variant of Java/Exploit.CVE-2012-4681.CR trojan deleted - quarantined
 



#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:03 PM

Posted 27 February 2013 - 03:35 AM

Malwarebytes

--------------------

Please download Malwarebytes Anti-Malware and save it to your desktop.  If you already have it installed launch the program and update the database.

  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.  You can also right click on the link and select Save Link As

Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
    For instructions with screenshots, please refer to this Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------

  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the icon to launch the program
  • Make sure the following options are checked:

    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:


  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log


 



#9 ddt904

ddt904
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:01:03 PM

Posted 27 February 2013 - 09:17 PM

Malwarebytes Anti-Malware (Trial) 1.70.0.1100
www.malwarebytes.org

Database version: v2013.02.27.12

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Tosh :: TOSHIBA [administrator]

Protection: Enabled

2/27/2013 9:12:50 PM
mbam-log-2013-02-27 (21-12-50).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 229196
Time elapsed: 3 minute(s), 43 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)



#10 ddt904

ddt904
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:01:03 PM

Posted 27 February 2013 - 09:22 PM

MiniToolBox by Farbar  Version:10-01-2013
Ran by Tosh (administrator) on 27-02-2013 at 21:19:58
Running from "C:\Users\Tosh\Desktop"
Windows 7 Home Premium  (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC = Wireless Network Connection (Connected)
Atheros AR8152 PCI-E Fast Ethernet Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Toshiba
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Peer-Peer
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 20-7C-8F-47-B0-93
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
   Physical Address. . . . . . . . . : 20-7C-8F-47-B0-93
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::f8f2:7d65:daf9:e891%12(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.4(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Wednesday, February 27, 2013 8:27:51 PM
   Lease Expires . . . . . . . . . . : Thursday, February 28, 2013 8:27:53 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 304118927
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-A4-04-ED-60-EB-69-80-0B-A5
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Atheros AR8152 PCI-E Fast Ethernet Controller
   Physical Address. . . . . . . . . : 60-EB-69-80-0B-A5
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{F6BA7634-F4B0-46C7-9525-B28FF996B1C3}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:fe:1078:9d18:e948(Preferred)
   Link-local IPv6 Address . . . . . : fe80::fe:1078:9d18:e948%13(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 9:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.1.1

Name:    google.com
Addresses:  2607:f8b0:4002:c04::8a
   173.194.37.32
   173.194.37.41
   173.194.37.35
   173.194.37.34
   173.194.37.38
   173.194.37.46
   173.194.37.33
   173.194.37.40
   173.194.37.39
   173.194.37.37
   173.194.37.36


Pinging google.com [74.125.137.139] with 32 bytes of data:
Reply from 74.125.137.139: bytes=32 time=68ms TTL=47
Reply from 74.125.137.139: bytes=32 time=30ms TTL=47

Ping statistics for 74.125.137.139:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 30ms, Maximum = 68ms, Average = 49ms
Server:  UnKnown
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  98.138.253.109
   98.139.183.24
   206.190.36.45


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=120ms TTL=50
Reply from 98.139.183.24: bytes=32 time=326ms TTL=50

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 120ms, Maximum = 326ms, Average = 223ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=17ms TTL=128
Reply from 127.0.0.1: bytes=32 time=7ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 7ms, Maximum = 17ms, Average = 12ms
===========================================================================
Interface List
 15...20 7c 8f 47 b0 93 ......Microsoft Virtual WiFi Miniport Adapter
 12...20 7c 8f 47 b0 93 ......Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
 11...60 eb 69 80 0b a5 ......Atheros AR8152 PCI-E Fast Ethernet Controller
  1...........................Software Loopback Interface 1
 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 17...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #3
 18...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.4     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.4    281
      192.168.1.4  255.255.255.255         On-link       192.168.1.4    281
    192.168.1.255  255.255.255.255         On-link       192.168.1.4    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.4    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.4    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 13     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 13     58 2001::/32                On-link
 13    306 2001:0:9d38:6ab8:fe:1078:9d18:e948/128
                                    On-link
 12    281 fe80::/64                On-link
 13    306 fe80::/64                On-link
 13    306 fe80::fe:1078:9d18:e948/128
                                    On-link
 12    281 fe80::f8f2:7d65:daf9:e891/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    306 ff00::/8                 On-link
 12    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70144] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/26/2013 11:03:22 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16457 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1308

Start Time: 01ce149f433229b0

Termination Time: 31

Application Path: C:\Program Files (x86)\Internet Explorer\iexplore.exe

Report Id:

Error: (02/26/2013 11:02:30 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16457 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: f88

Start Time: 01ce149df8996228

Termination Time: 31

Application Path: C:\Program Files (x86)\Internet Explorer\iexplore.exe

Report Id:

Error: (02/25/2013 11:59:47 PM) (Source: nlsX86cc) (User: )
Description: Stop request seennlsX86cc error: 0

Error: (02/25/2013 11:31:27 PM) (Source: Application Virtualization Client) (User: )
Description: {hap=14:app=Microsoft Word Starter 2010 9014006604090000:tid=14BC:usr=Tosh}
16001E0A-000001D1

Error: (02/25/2013 11:31:27 PM) (Source: Application Virtualization Client) (User: )
Description: {hap=14:app=Microsoft Word Starter 2010 9014006604090000:tid=14BC:usr=Tosh}
http://c2r.microsoft.com/ConsumerC2R/en-us/14.0.4763.1000/ConsumerC2R.en-us_14.0.6131.5001.sft16001E0A-000001D116001E0A-000001D1

Error: (02/25/2013 11:07:30 PM) (Source: Application Virtualization Client) (User: )
Description: {hap=12:app=Microsoft Word Starter 2010 9014006604090000:tid=15B4:usr=Tosh}
16001E0A-000001D1

Error: (02/25/2013 11:07:30 PM) (Source: Application Virtualization Client) (User: )
Description: {hap=12:app=Microsoft Word Starter 2010 9014006604090000:tid=15B4:usr=Tosh}
http://c2r.microsoft.com/ConsumerC2R/en-us/14.0.4763.1000/ConsumerC2R.en-us_14.0.6131.5001.sft16001E0A-000001D116001E0A-000001D1

Error: (02/23/2013 02:13:14 AM) (Source: CVHSVC) (User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed:

Error: (02/18/2013 01:55:03 PM) (Source: CVHSVC) (User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The server name or address could not be resolved

Error: (02/18/2013 01:54:43 PM) (Source: .NET Runtime Optimization Service) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: WindowsLive.Writer.Mshtml, Version=14.0.8117.416, Culture=neutral, PublicKeyToken=31bf3856ad364e35 . Error code = 0x80070005


System errors:
=============
Error: (02/26/2013 10:52:56 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070420

Error: (02/26/2013 00:42:46 AM) (Source: DCOM) (User: Toshiba)
Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}ToshibaToshS-1-5-21-1861035418-746560588-1734523543-1001LocalHost (Using LRPC)

Error: (02/26/2013 00:42:46 AM) (Source: DCOM) (User: Toshiba)
Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}ToshibaToshS-1-5-21-1861035418-746560588-1734523543-1001LocalHost (Using LRPC)

Error: (02/25/2013 10:49:13 PM) (Source: Service Control Manager) (User: )
Description: The Google Update Service (gupdate) service failed to start due to the following error:
%%1053

Error: (02/25/2013 10:49:13 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Google Update Service (gupdate) service to connect.

Error: (02/25/2013 10:33:13 PM) (Source: DCOM) (User: )
Description: 1084wuauserv{E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (02/25/2013 10:31:32 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (02/25/2013 10:31:32 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (02/25/2013 10:31:31 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (02/25/2013 10:31:31 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (02/26/2013 11:03:22 PM) (Source: Application Hang)(User: )
Description: iexplore.exe9.0.8112.16457130801ce149f433229b031C:\Program Files (x86)\Internet Explorer\iexplore.exe

Error: (02/26/2013 11:02:30 PM) (Source: Application Hang)(User: )
Description: iexplore.exe9.0.8112.16457f8801ce149df899622831C:\Program Files (x86)\Internet Explorer\iexplore.exe

Error: (02/25/2013 11:59:47 PM) (Source: nlsX86cc)(User: )
Description: Stop request seennlsX86cc error: 0

Error: (02/25/2013 11:31:27 PM) (Source: Application Virtualization Client)(User: )
Description: {hap=14:app=Microsoft Word Starter 2010 9014006604090000:tid=14BC:usr=Tosh}
16001E0A-000001D1

Error: (02/25/2013 11:31:27 PM) (Source: Application Virtualization Client)(User: )
Description: {hap=14:app=Microsoft Word Starter 2010 9014006604090000:tid=14BC:usr=Tosh}
http://c2r.microsoft.com/ConsumerC2R/en-us/14.0.4763.1000/ConsumerC2R.en-us_14.0.6131.5001.sft16001E0A-000001D116001E0A-000001D1

Error: (02/25/2013 11:07:30 PM) (Source: Application Virtualization Client)(User: )
Description: {hap=12:app=Microsoft Word Starter 2010 9014006604090000:tid=15B4:usr=Tosh}
16001E0A-000001D1

Error: (02/25/2013 11:07:30 PM) (Source: Application Virtualization Client)(User: )
Description: {hap=12:app=Microsoft Word Starter 2010 9014006604090000:tid=15B4:usr=Tosh}
http://c2r.microsoft.com/ConsumerC2R/en-us/14.0.4763.1000/ConsumerC2R.en-us_14.0.6131.5001.sft16001E0A-000001D116001E0A-000001D1

Error: (02/23/2013 02:13:14 AM) (Source: CVHSVC)(User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed:

Error: (02/18/2013 01:55:03 PM) (Source: CVHSVC)(User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The server name or address could not be resolved

Error: (02/18/2013 01:54:43 PM) (Source: .NET Runtime Optimization Service)(User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: WindowsLive.Writer.Mshtml, Version=14.0.8117.416, Culture=neutral, PublicKeyToken=31bf3856ad364e35 . Error code = 0x80070005
WindowsLive.Writer.Mshtml, Version=14.0.8117.416, Culture=neutral, PublicKeyToken=31bf3856ad364e35


CodeIntegrity Errors:
===================================
  Date: 2013-02-18 13:58:37.011
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-02-18 13:58:36.933
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-02-18 13:58:36.839
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-02-18 13:58:36.746
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-10-17 16:51:29.043
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-10-17 16:51:28.981
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

ABBYY FineReader 9.0 Sprint (Version: 9.00.548.58220)
Adobe AIR (Version: 3.3.0.3670)
Adobe Connect Add-in
Adobe Flash Player 11 ActiveX (Version: 11.6.602.171)
Adobe Flash Player 11 Plugin (Version: 11.6.602.171)
Adobe Reader 9.3 (Version: 9.3.0)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.26)
Best Buy pc app (Version: 3.0.0.0)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Conexant HD Audio (Version: 4.119.0.60)
Google Chrome (Version: 25.0.1364.97)
Google Update Helper (Version: 1.3.21.135)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2189)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Rapid Storage Technology (Version: 9.6.1.1001)
Java 7 Update 6 (Version: 7.0.60)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 17 (Version: 6.0.170)
Junk Mail filter update (Version: 14.0.8117.416)
Label@Once 1.0 (Version: 1.0)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office Professional Plus 2013 - en-us (Version: 15.0.4433.1508)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
MSVCRT (Version: 14.0.1468.721)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4433.1508)
Office 15 Click-to-Run Licensing Component (Version: 15.0.4433.1508)
Office 15 Click-to-Run Localization Component (Version: 15.0.4433.1508)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30113)
Realtek WLAN Driver (Version: 2.00.0011)
Synaptics Pointing Device Driver (Version: 15.0.8.1)
TOSHIBA Application Installer (Version: 9.0.1.1)
TOSHIBA Assist (Version: 3.00.11)
Toshiba Book Place (Version: 2.0.3977.0)
TOSHIBA Bulletin Board (Version: 1.6.06.64)
TOSHIBA Disc Creator (Version: 2.1.0.2 for x64)
TOSHIBA eco Utility (Version: 1.2.7.64)
TOSHIBA Face Recognition (Version: 3.1.3.64)
TOSHIBA Hardware Setup (Version: 4.03.02.00)
TOSHIBA HDD/SSD Alert (Version: 3.1.64.6)
TOSHIBA Media Controller (Version: 1.0.80.3.64)
TOSHIBA Media Controller Plug-in (Version: 1.0.4.9)
TOSHIBA PC Health Monitor (Version: 1.6.0.64)
TOSHIBA Quality Application (Version: 1.0.3)
TOSHIBA Recovery Media Creator (Version: 2.1.0.4 for x64)
TOSHIBA ReelTime (Version: 1.6.05.64)
TOSHIBA Service Station (Version: 2.1.40)
TOSHIBA Supervisor Password (Version: 4.03.02.00)
TOSHIBA Value Added Package (Version: 1.3.2.64)
TOSHIBA Web Camera Application (Version: 1.1.1.15)
ToshibaRegistration (Version: 1.0.4)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Mail (Version: 14.0.8117.0416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Movie Maker (Version: 14.0.8117.0416)
Windows Live Photo Gallery (Version: 14.0.8117.416)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8117.0416)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 47%
Total physical RAM: 2933.86 MB
Available physical RAM: 1548.14 MB
Total Pagefile: 5865.86 MB
Available Pagefile: 4268.77 MB
Total Virtual: 4095.88 MB
Available Virtual: 3978.54 MB

========================= Partitions: =====================================

1 Drive c: (TI105927W0F) (Fixed) (Total:286.29 GB) (Free:243.04 GB) NTFS
2 Drive d: (15.0.4433.1508) (CDROM) (Total:2.05 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\TOSHIBA

Administrator            Guest                    Tosh                    


**** End of log ****



#11 ddt904

ddt904
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:01:03 PM

Posted 27 February 2013 - 09:24 PM

Farbar Service Scanner Version: 20-02-2013
Ran by Tosh (administrator) on 27-02-2013 at 21:23:33
Running from "C:\Users\Tosh\Desktop"
Windows 7 Home Premium  (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2013-02-25 22:55] - [2013-01-04 00:41] - 1893224 ____A (Microsoft Corporation) 5CFB7AB8F9524D1A1E14369DE63B83CC

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****



#12 ddt904

ddt904
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:01:03 PM

Posted 27 February 2013 - 10:09 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.6 (02.27.2013:1)
OS: Windows 7 Home Premium x64
Ran by Tosh on Wed 02/27/2013 at 21:33:24.37
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 


~~~ Services

 

~~~ Registry Values

 

~~~ Registry Keys

 

~~~ Files

Successfully deleted: [File] "C:\users\default user\start menu\programs\startup\best buy pc app.lnk"

 

~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\best buy pc app"
Successfully deleted: [Folder] "C:\Users\Tosh\appdata\local\best buy pc app"

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 02/27/2013 at 21:45:42.27
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 02/27/2013 10:08:30 PM in x64 mode.
Windows Version: Windows 7 Home Premium

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * ALERT: ZEROACCESS rootkit symptoms found!

     * HKEY_CLASSES_ROOT\CLSID\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InprocServer32 [ZA Reg Hijack]
     * C:\$Recycle.Bin\S-1-5-21-1861035418-746560588-1734523543-1001\$c5a9c9cae3d20a62800b50e9ffd1c43d\ [ZA Dir]

Checking Windows Service Integrity:

 * No issues found.

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * HOSTS file entries found:

  127.0.0.1       localhost

Program finished at: 02/27/2013 10:08:47 PM
Execution time: 0 hours(s), 0 minute(s), and 16 seconds(s)



#13 ddt904

ddt904
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:01:03 PM

Posted 27 February 2013 - 10:13 PM

# AdwCleaner v2.113 - Logfile created 02/27/2013 at 21:27:47
# Updated 23/02/2013 by Xplode
# Operating system : Windows 7 Home Premium  (64 bits)
# User : Tosh - TOSHIBA
# Boot Mode : Normal
# Running from : C:\Users\Tosh\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\Partner

***** [Registry] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKLM\SOFTWARE\Software

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

-\\ Google Chrome v25.0.1364.97

File : C:\Users\Tosh\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [1196 octets] - [27/02/2013 21:25:58]
AdwCleaner[R2].txt - [1256 octets] - [27/02/2013 21:27:39]
AdwCleaner[S1].txt - [1199 octets] - [27/02/2013 21:27:47]

########## EOF - C:\AdwCleaner[S1].txt - [1259 octets] ##########



#14 ddt904

ddt904
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:01:03 PM

Posted 27 February 2013 - 10:15 PM

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "00TCrdMain" "TOSHIBA Flash Cards" "TOSHIBA Corporation" "c:\program files\toshiba\flashcards\tcrdmain.exe"
+ "cAudioFilterAgent" "Conexant High Definition Audio Filter Agent" "Conexant Systems, Inc." "c:\program files\conexant\caudiofilteragent\caudiofilteragent64.exe"
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe"
+ "HSON" "HotStartOn" "TOSHIBA Corporation" "c:\program files\toshiba\tbs\hson.exe"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe"
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe"
+ "SmartAudio" "SAIICpl MFC Application" "" "c:\program files\conexant\saii\saiicpl.exe"
+ "SmartFaceVWatcher" "SmartFaceVWatcher" "TOSHIBA Corporation" "c:\program files\toshiba\smartfacev\smartfacevwatcher.exe"
+ "SmoothView" "SmoothView" "TOSHIBA Corporation" "c:\program files\toshiba\smoothview\smoothview.exe"
+ "SynTPEnh" "Synaptics TouchPad Enhancements" "Synaptics Incorporated" "c:\program files\synaptics\syntp\syntpenh.exe"
+ "Teco" "TOSHIBA eco Utility" "TOSHIBA Corporation" "c:\program files\toshiba\teco\teco.exe"
+ "TosNC" "Message Center" "TOSHIBA Corporation" "c:\program files\toshiba\bulletinboard\tosnccore.exe"
+ "TosReelTimeMonitor" "Monitor of TOSHIBA ReelTime" "TOSHIBA Corporation" "c:\program files\toshiba\reeltime\tosreeltimemonitor.exe"
+ "TosSENotify" "" "TOSHIBA Corporation" "c:\program files\toshiba\toshiba hdd ssd alert\toswaitsrv.exe"
+ "TosVolRegulator" " Toshiba Volume Regulator" "TOSHIBA Corporation" "c:\program files\toshiba\tosvolregulator\tosvolregulator.exe"
+ "TosWaitSrv" "" "TOSHIBA Corporation" "c:\program files\toshiba\tphm\toswaitsrv.exe"
+ "TPwrMain" "TOSHIBA Power Saver" "TOSHIBA Corporation" "c:\program files\toshiba\power saver\tpwrmain.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
+ "ToshibaServiceStation" "TOSHIBA Service Station" "TOSHIBA Corporation" "c:\program files (x86)\toshiba\toshiba service station\toshibaservicestation.exe"
+ "TWebCamera" "" "TOSHIBA CORPORATION." "c:\program files (x86)\toshiba\toshiba web camera application\twebcamera.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Google Chrome" "Google Chrome" "Google Inc." "c:\program files (x86)\google\chrome\application\25.0.1364.97\installer\chrmstp.exe"
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "igfxcui" "igfxpph Module" "Intel Corporation" "c:\windows\system32\igfxpph.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ " SkyDrivePro1 (ErrorConflict)" "Microsoft SkyDrive Pro Extensions" "Microsoft Corporation" "c:\program files\microsoft office 15\root\vfs\programfilesx64\microsoft office\office15\grooveex.dll"
+ " SkyDrivePro2 (SyncInProgress)" "Microsoft SkyDrive Pro Extensions" "Microsoft Corporation" "c:\program files\microsoft office 15\root\vfs\programfilesx64\microsoft office\office15\grooveex.dll"
+ " SkyDrivePro3 (InSync)" "Microsoft SkyDrive Pro Extensions" "Microsoft Corporation" "c:\program files\microsoft office 15\root\vfs\programfilesx64\microsoft office\office15\grooveex.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ " SkyDrivePro1 (ErrorConflict)" "Microsoft SkyDrive Pro Extensions" "Microsoft Corporation" "c:\program files\microsoft office 15\root\office15\grooveex.dll"
+ " SkyDrivePro2 (SyncInProgress)" "Microsoft SkyDrive Pro Extensions" "Microsoft Corporation" "c:\program files\microsoft office 15\root\office15\grooveex.dll"
+ " SkyDrivePro3 (InSync)" "Microsoft SkyDrive Pro Extensions" "Microsoft Corporation" "c:\program files\microsoft office 15\root\office15\grooveex.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Lync Browser Helper" "Microsoft Lync" "Microsoft Corporation" "c:\program files\microsoft office 15\root\vfs\programfilesx64\microsoft office\office15\ochelper.dll"
+ "Microsoft SkyDrive Pro Browser Helper" "Microsoft SkyDrive Pro Extensions" "Microsoft Corporation" "c:\program files\microsoft office 15\root\vfs\programfilesx64\microsoft office\office15\grooveex.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files\microsoft office 15\root\vfs\programfilesx64\microsoft office\office15\urlredir.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\ssv.dll"
+ "Lync Browser Helper" "Microsoft Lync" "Microsoft Corporation" "c:\program files\microsoft office 15\root\office15\ochelper.dll"
+ "Microsoft SkyDrive Pro Browser Helper" "Microsoft SkyDrive Pro Extensions" "Microsoft Corporation" "c:\program files\microsoft office 15\root\office15\grooveex.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files\microsoft office 15\root\office15\urlredir.dll"
+ "TOSHIBA Media Controller Plug-in" "TOSHIBA Media Controller Plug-in " "<TOSHIBA>" "c:\program files (x86)\toshiba\toshiba media controller plug-in\toshibamediacontrollerie.dll"
+ "Windows Live Sign-in Helper" "WindowsLiveLogin.dll" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "Lync Click to Call" "Microsoft Lync" "Microsoft Corporation" "c:\program files\microsoft office 15\root\vfs\programfilesx64\microsoft office\office15\ochelper.dll"
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office 15\root\vfs\programfilesx64\microsoft office\office15\onbttnielinkednotes.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office 15\root\vfs\programfilesx64\microsoft office\office15\onbttnie.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"
+ "Lync Click to Call" "Microsoft Lync" "Microsoft Corporation" "c:\program files\microsoft office 15\root\office15\ochelper.dll"
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office 15\root\office15\onbttnielinkednotes.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office 15\root\office15\onbttnie.dll"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.6 r602" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\Microsoft\Office\Office Automatic Updates" "Microsoft Office Click-to-Run" "Microsoft Corporation" "c:\program files\microsoft office 15\clientx64\integratedoffice.exe"
+ "\Microsoft\Office\OfficeTelemetryAgentFallBack" "Office Telemetry Agent" "Microsoft Corporation" "c:\program files\microsoft office 15\root\office15\msoia.exe"
+ "\Microsoft\Office\OfficeTelemetryAgentLogOn" "Office Telemetry Agent" "Microsoft Corporation" "c:\program files\microsoft office 15\root\office15\msoia.exe"
+ "\Microsoft\Windows Defender\MP Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows Defender\MpIdleTask" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "ABBYY.Licensing.FineReader.Sprint.9.0" "This service is required for the operation of the ABBYY FineReader 9.0 Express Edition licensing mechanism." "ABBYY" "c:\program files (x86)\common files\abbyy\finereadersprint\9.00\licensing\networklicenseserver.exe"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "IDriverT" "Provides support for the Running Object Table for InstallShield Drivers" "Macrovision Corporation" "c:\program files (x86)\common files\installshield\driver\11\intel 32\idrivert.exe"
+ "LMS" "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"
+ "OfficeSvc" "Manages resource coordination, background streaming, and system integration of Microsoft Office products and their related updates. This service is required to run during the use of any Microsoft Office program, during initial streaming installation and all subsequent updates." "Microsoft Corporation" "c:\program files\microsoft office 15\clientx64\integratedoffice.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Enables the download, installation, and enforcement of digital licenses for Microsoft Office applications. These applications require this service for proper operation. It is strongly recommended that you keep this service enabled." "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "TMachInfo" "TOSHIBA Machine Information Service" "TOSHIBA Corporation" "c:\program files (x86)\toshiba\toshiba service station\tmachinfo.exe"
+ "TODDSrv" "TDCSrv Application" "TOSHIBA Corporation" "c:\windows\system32\toddsrv.exe"
+ "TosCoSrv" "TOSHIBA Power Saver manages power saving settings supported by TOSHIBA. These settings will not work if the service has stopped." "TOSHIBA Corporation" "c:\program files\toshiba\power saver\toscosrv.exe"
+ "TOSHIBA eco Utility Service" "TOSHIBA eco Utility Service" "TOSHIBA Corporation" "c:\program files\toshiba\teco\tecoservice.exe"
+ "TOSHIBA HDD SSD Alert Service" "TOSHIBA HDD SSD Alert" "TOSHIBA Corporation" "c:\program files\toshiba\toshiba hdd ssd alert\tossmartsrv.exe"
+ "TPCHSrv" "TOSHIBA PC Health Monitor" "TOSHIBA Corporation" "c:\program files\toshiba\tphm\tpchsrv.exe"
+ "UNS" "Intel® Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel® Management and Security Application Device." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\uns\uns.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "catchme" "" "" "File not found: C:\ComboFix\catchme.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "CnxtHdAudService" "64-bit High Definition Audio Function Driver" "Conexant Systems Inc." "c:\windows\system32\drivers\chdrt64.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HECIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\hecix64.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStor" "Intel Rapid Storage Technology driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd64.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "Impcd" "Intel® Turbo Boost Technology Driver" "Intel Corporation" "c:\windows\system32\drivers\impcd.sys"
+ "L1C" "Atheros L1c PCI-E Gigabit Ethernet Controller" "Atheros Communications, Inc." "c:\windows\system32\drivers\l1c62x64.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "PGEffect" "TOSHIBA Universal Camera Filter Driver" "TOSHIBA Corporation" "c:\windows\system32\drivers\pgeffect.sys"
+ "QIOMem" "Generic IO & Memory Access" "TOSHIBA" "c:\windows\system32\drivers\qiomem.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RSUSBSTOR" "Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtsustor.sys"
+ "rtl8192Ce" "Realtek RTL81892CE NDIS Driverr" "Realtek Semiconductor Corporation                           " "c:\windows\system32\drivers\rtl8192ce.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "SrvHsfHDA" "HSF_HWAZL WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstazl6.sys"
+ "SrvHsfV92" "HSF_DP driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstdpv6.sys"
+ "SrvHsfWinac" "HSF_CNXT driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstcnxt6.sys"
+ "stexstor" "Promise  SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics Incorporated" "c:\windows\system32\drivers\syntp.sys"
+ "tdcmdpst" "TOSHIBA ODD Writing Driver for x64." "TOSHIBA Corporation." "c:\windows\system32\drivers\tdcmdpst.sys"
+ "TVALZ" "TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver" "TOSHIBA Corporation" "c:\windows\system32\drivers\tvalz_o.sys"
+ "TVALZFL" "TOSHIBA TVALZ Filter Driver for x64" "TOSHIBA Corporation" "c:\windows\system32\drivers\tvalzfl.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "MS PR Source Filter" "PlayReady DirectShow Source Filter DLL" "Microsoft Corporation" "c:\program files\playready\prsource.dll"
+ "PlayReady DMO Wrapper" "PlayReady DirectShow DMO Wrapper Filter DLL" "Microsoft Corporation" "c:\program files\playready\prdmowrapper.dll"
+ "SFVCaptureFilter" "SmartFaceVCapt" "TOSHIBA Corporation" "c:\program files\toshiba\smartfacev\smartfacevcapt.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "Image Effects" "TimeStam Dynamic Link Library" "" "c:\program files (x86)\toshiba\toshiba web camera application\pgtimefilter.dll"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "TOSHIBA Progress Monitor" "TOSHIBA Progress Monitor" "TOSHIBA Corporation" "c:\program files (x86)\toshiba\toshiba disc creator\tprogmon.ax"
+ "TOSHIBA WAV Converter" "TOSHIBA Wav Converter" "TOSHIBA Corporation" "c:\program files (x86)\toshiba\toshiba disc creator\twavconv.ax"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "SmartFaceVCP" "SmartFaceVCP" "TOSHIBA Corporation" "c:\program files\toshiba\smartfacev\smartfacevcp.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll"
 



#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:03 PM

Posted 27 February 2013 - 10:33 PM


Now run RKILL given in previous instructions and post the new log


Edited by narenxp, 28 February 2013 - 03:48 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users