Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Multiple iexplore.exe instances and Google redirect


  • This topic is locked This topic is locked
19 replies to this topic

#1 boingo2000

boingo2000

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Location:Phoenix, AZ
  • Local time:03:46 AM

Posted 03 September 2014 - 10:46 PM

Lately I've been experiencing increasing instances of Google redirects in all browsers (IE, Firefox, Chrome).  Also, there are multiple instances of the iexplore.exe process that start on their own (even without opening the IE browser).  I cancel them, but they keep popping back up.  It's also worth mentioning that everytime I run a scan with Security Essentials or Malwarebytes, it seems to find several problems.  I have the programs clean/quarantine the items, but invariably the next time I scan, it will find something again.

 

I appreciate any help! 

 

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16563
Run by Mitch at 20:20:19 on 2014-09-03
Microsoft® Windows Vista™ Home Premium   6.0.6002.2.1252.1.1033.18.3837.2288 [GMT -7:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k rpcss
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\Ati2evxx.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Program Files (x86)\O2Micro Flash Memory Card Driver\o2flash.exe
C:\TOSHIBA\IVP\ISM\pinger.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
C:\Program Files (x86)\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
C:\Windows\system32\TODDSrv.exe
C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatchSrv.exe
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Users\Mitch\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Windows\System32\regsvr32.exe
C:\Program Files (x86)\Toshiba\ConfigFree\NDSTray.exe
C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\PCMAgent.exe
C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Toshiba\ConfigFree\CFSwMgr.exe
C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
C:\Program Files (x86)\Citrix\Receiver\Receiver.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\SysWOW64\regsvr32.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_14_0_0_176_ActiveX.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://my.yahoo.com/
uDefault_Page_URL = hxxp://www.toshibadirect.com/dpdstart
mDefault_Page_URL = hxxp://www.toshibadirect.com/dpdstart
mWinlogon: Userinit = userinit.exe,
BHO: Adobe PDF Reader Link Helper: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
BHO: SSVHelper Class: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.6.0_06\bin\ssv.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
uRun: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
uRun: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
uRun: [Spotify Web Helper] "C:\Users\Mitch\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
uRun: [Upmedia Update] regsvr32.exe C:\Users\Mitch\AppData\Local\Upmedia\SpaLicExtReg.dll
mRun: [NDSTray.exe] NDSTray.exe
mRun: [cfFncEnabler.exe] cfFncEnabler.exe
mRun: [PCMAgent] "C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\PCMAgent.exe"
mRun: [CLMLServer] "C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe"
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe"
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
mRun: [Camera Assistant Software] "C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe" /start
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [ConnectionCenter] "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup
mRun: [Redirector] "C:\Program Files (x86)\Citrix\ICA Client\redirector.exe" /startup
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC} - C:\Program Files (x86)\Java\jre1.6.0_06\bin\ssv.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab
DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} - hxxps://juniper.net/dana-cached/sc/JuniperSetupClient.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{A8D21037-CEB5-4881-A574-91FB0D81A85C} : DHCPNameServer = 192.168.1.1
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
LSA: Security Packages =  kerberos msv1_0 schannel wdigest tspkg
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.44\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-mDefault_Page_URL = hxxp://www.toshibadirect.com/dpdstart
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [TPwrMain] C:\Program Files (x86)\TOSHIBA\Power Saver\TPwrMain.EXE
x64-Run: [HSON] C:\Program Files (x86)\TOSHIBA\TBS\HSON.exe
x64-Run: [SmoothView] C:\Program Files (x86)\Toshiba\SmoothView\SmoothView.exe
x64-Run: [00TCrdMain] C:\Program Files (x86)\TOSHIBA\FlashCards\TCrdMain.exe
x64-Run: [Windows Defender] C:\Program Files (x86)\Windows Defender\MSASCui.exe -hide
x64-Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
x64-mPolicies-Explorer: NoActiveDesktop = dword:1
x64-mPolicies-Explorer: NoActiveDesktopChanges = dword:1
x64-mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
x64-mPolicies-System: EnableUIADesktopToggle = dword:0
x64-DPF: {AA570693-00E2-4907-B6F1-60A1199B030C} - hxxps://juniper.net/dana-cached/sc/JuniperSetupClient64.cab
x64-Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Mitch\AppData\Roaming\Mozilla\Firefox\Profiles\yry7mjwy.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - plugin: C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll
FF - plugin: C:\Program Files (x86)\Citrix\ICA Client\npURLInterceptorPlugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrlui.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll
FF - ExtSQL: !HIDDEN! 1970-05-29 15:59; {BCDAAA89-3B45-E6E8-2EC7-45A4DD41C498}; -
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2014-1-25 268512]
R0 tos_sps64;TOSHIBA tos_sps64 Service;C:\Windows\System32\drivers\tos_sps64.sys [2008-5-18 531968]
R1 ctxusbm;Citrix USB Monitor Driver;C:\Windows\System32\drivers\ctxusbm.sys [2013-9-24 97768]
R1 JSWPSLWF;JumpStart Wireless Filter Driver;C:\Windows\System32\drivers\jswpslwfx.sys [2011-12-24 26624]
R2 ConfigFree Gadget Service;ConfigFree Gadget Service;C:\Program Files (x86)\Toshiba\ConfigFree\CFProcSRVC.exe [2008-4-3 36864]
R2 ConfigFree Service;ConfigFree Service;C:\Program Files (x86)\Toshiba\ConfigFree\CFSvcs.exe [2008-4-17 40960]
R2 FontCache;Windows Font Cache Service;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-20 27648]
R2 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2011-4-27 133928]
R2 OpenLibSys;OpenLibSys;C:\Program Files (x86)\NXP\FM Radio\OpenLibSysX64.sys [2011-12-24 14544]
R2 TOSHIBA SMART Log Service;TOSHIBA SMART Log Service;C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe [2007-12-3 175104]
R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2014-3-11 347872]
R3 O2MDRDR;O2MDRDR;C:\Windows\System32\drivers\o2mdx64.sys [2008-4-15 62040]
R3 O2SDRDR;O2SDRDR;C:\Windows\System32\drivers\o2sdx64.sys [2008-4-8 51928]
R3 QIOMem;Generic IO & Memory Access;C:\Windows\System32\drivers\QIOMem.sys [2007-4-9 9728]
R3 SmartFaceVWatchSrv;SmartFaceVWatchSrv;C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatchSrv.exe [2008-4-24 84992]
R3 yukonx64;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk60x64.sys [2008-4-4 404992]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 jswpsapi;Jumpstart Wifi Protected Setup;C:\Program Files (x86)\Jumpstart\jswpsapi.exe [2011-12-24 954368]
S3 PerfHost;Performance Counter DLL Host;C:\Windows\SysWOW64\perfhost.exe [2008-1-20 19968]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-9-11 1012344]
S4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2014-8-16 90776]
S4 KR10I64;KR10I64;C:\Windows\System32\drivers\KR10I64.sys [2008-5-18 248320]
S4 KR10N64;KR10N64;C:\Windows\System32\drivers\KR10N64.sys [2008-5-18 237568]
.
=============== File Associations ===============
.
FileExt: .js: JSFile=C:\Windows\SysWOW64\WScript.exe "%1" %*
FileExt: .jse: JSEFile=C:\Windows\SysWOW64\WScript.exe "%1" %*
.
=============== Created Last 30 ================
.
.
==================== Find3M  ====================
.
2014-09-01 22:42:56    122584    ----a-w-    C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-08-29 03:58:13    71344    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-08-29 03:58:13    699568    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2014-08-23 01:05:12    304128    ----a-w-    C:\Windows\SysWow64\gdi32.dll
2014-08-23 00:42:45    390144    ----a-w-    C:\Windows\System32\gdi32.dll
2014-08-22 23:38:23    2782208    ----a-w-    C:\Windows\System32\win32k.sys
2014-08-16 16:55:42    99218768    ----a-w-    C:\Windows\System32\mrt.exe
2014-07-24 19:28:39    17861120    ----a-w-    C:\Windows\System32\mshtml.dll
2014-07-24 19:12:19    2339328    ----a-w-    C:\Windows\System32\jscript9.dll
2014-07-24 19:10:55    10920960    ----a-w-    C:\Windows\System32\ieframe.dll
2014-07-24 19:07:04    1384960    ----a-w-    C:\Windows\System32\urlmon.dll
2014-07-24 19:06:41    1392128    ----a-w-    C:\Windows\System32\wininet.dll
2014-07-24 19:05:30    1494016    ----a-w-    C:\Windows\System32\inetcpl.cpl
2014-07-24 19:05:19    237056    ----a-w-    C:\Windows\System32\url.dll
2014-07-24 19:05:04    86016    ----a-w-    C:\Windows\System32\jsproxy.dll
2014-07-24 19:04:37    173056    ----a-w-    C:\Windows\System32\ieUnatt.exe
2014-07-24 19:04:26    2155520    ----a-w-    C:\Windows\System32\iertutil.dll
2014-07-24 19:04:22    599040    ----a-w-    C:\Windows\System32\vbscript.dll
2014-07-24 19:04:21    816640    ----a-w-    C:\Windows\System32\jscript.dll
2014-07-24 19:04:20    729088    ----a-w-    C:\Windows\System32\msfeeds.dll
2014-07-24 19:04:00    453120    ----a-w-    C:\Windows\System32\dxtmsft.dll
2014-07-24 19:03:49    282112    ----a-w-    C:\Windows\System32\dxtrans.dll
2014-07-24 19:03:44    55296    ----a-w-    C:\Windows\System32\msfeedsbs.dll
2014-07-24 19:03:44    11264    ----a-w-    C:\Windows\System32\msfeedssync.exe
2014-07-24 19:03:29    96768    ----a-w-    C:\Windows\System32\mshtmled.dll
2014-07-24 19:03:22    2382848    ----a-w-    C:\Windows\System32\mshtml.tlb
2014-07-24 19:03:10    12800    ----a-w-    C:\Windows\System32\mshta.exe
2014-07-24 19:02:55    248320    ----a-w-    C:\Windows\System32\ieui.dll
2014-07-24 18:07:38    12356608    ----a-w-    C:\Windows\SysWow64\mshtml.dll
2014-07-24 17:58:33    1810432    ----a-w-    C:\Windows\SysWow64\jscript9.dll
2014-07-24 17:57:19    9739264    ----a-w-    C:\Windows\SysWow64\ieframe.dll
2014-07-24 17:52:27    1137664    ----a-w-    C:\Windows\SysWow64\urlmon.dll
2014-07-24 17:51:52    1129472    ----a-w-    C:\Windows\SysWow64\wininet.dll
2014-07-24 17:51:19    1427968    ----a-w-    C:\Windows\SysWow64\inetcpl.cpl
2014-07-24 17:50:29    231936    ----a-w-    C:\Windows\SysWow64\url.dll
2014-07-24 17:50:10    65536    ----a-w-    C:\Windows\SysWow64\jsproxy.dll
2014-07-24 17:49:47    142848    ----a-w-    C:\Windows\SysWow64\ieUnatt.exe
2014-07-24 17:49:38    421376    ----a-w-    C:\Windows\SysWow64\vbscript.dll
2014-07-24 17:49:37    1802240    ----a-w-    C:\Windows\SysWow64\iertutil.dll
2014-07-24 17:49:29    717824    ----a-w-    C:\Windows\SysWow64\jscript.dll
2014-07-24 17:49:18    607744    ----a-w-    C:\Windows\SysWow64\msfeeds.dll
2014-07-24 17:48:57    353792    ----a-w-    C:\Windows\SysWow64\dxtmsft.dll
2014-07-24 17:48:53    41472    ----a-w-    C:\Windows\SysWow64\msfeedsbs.dll
2014-07-24 17:48:51    223232    ----a-w-    C:\Windows\SysWow64\dxtrans.dll
2014-07-24 17:48:50    10752    ----a-w-    C:\Windows\SysWow64\msfeedssync.exe
2014-07-24 17:48:36    73216    ----a-w-    C:\Windows\SysWow64\mshtmled.dll
2014-07-24 17:48:28    2382848    ----a-w-    C:\Windows\SysWow64\mshtml.tlb
2014-07-24 17:48:21    11776    ----a-w-    C:\Windows\SysWow64\mshta.exe
2014-07-24 17:47:53    176640    ----a-w-    C:\Windows\SysWow64\ieui.dll
2014-07-08 01:12:09    2048    ----a-w-    C:\Windows\System32\tzres.dll
2014-07-08 00:46:44    2048    ----a-w-    C:\Windows\SysWow64\tzres.dll
2014-06-26 22:17:31    8848    ----a-w-    C:\Windows\System32\icardres.dll
2014-06-26 22:17:31    171152    ----a-w-    C:\Windows\System32\infocardapi.dll
2014-06-26 22:17:30    1389200    ----a-w-    C:\Windows\System32\icardagt.exe
2014-06-26 22:17:19    99480    ----a-w-    C:\Windows\SysWow64\infocardapi.dll
2014-06-26 22:17:19    8856    ----a-w-    C:\Windows\SysWow64\icardres.dll
2014-06-26 22:17:19    619664    ----a-w-    C:\Windows\SysWow64\icardagt.exe
2014-06-14 00:56:04    901568    ----a-w-    C:\Windows\System32\drivers\dxgkrnl.sys
2014-06-14 00:51:18    47104    ----a-w-    C:\Windows\System32\cdd.dll
2014-06-06 08:59:38    506880    ----a-w-    C:\Windows\SysWow64\qedit.dll
2014-06-06 07:13:08    620032    ----a-w-    C:\Windows\System32\qedit.dll
2014-06-06 04:29:32    35480    ----a-w-    C:\Windows\System32\TsWpfWrp.exe
2014-06-06 04:28:35    35480    ----a-w-    C:\Windows\SysWow64\TsWpfWrp.exe
.
============= FINISH: 20:21:08.56 ===============

Attached File  attach.txt   8.8KB   0 downloads



BC AdBot (Login to Remove)

 


#2 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:46 PM

Posted 04 September 2014 - 05:38 AM

Hi there,

please run the following scans:


Step 1

Please download TDSSKiller and save it to your Desktop.
  • Start tdsskiller.exe with administrator privileges.
  • Accept the EULA and the KSN Statement.
  • Click on Change parameters.
  • Make sure that all available options (except "Loaded modules") are checked and click OK.
  • Click on Start scan.
  • If any threats are found don't delete them but choose the Skip option for all of them.
  • Click on Report to open the log file. (It is also saved at C:\TDSSKiller.<version_date_time>_log.txt).
    Copy and paste its contents in your next reply.


Step 2

Please download Farbar Recovery Scan Tool and save it to your Desktop.
  • Start FRST with administator privileges.
  • Make sure the option Addition.txt is checked and press the Scan button.
  • When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.
  • Please copy and paste these logs in your next reply.


#3 boingo2000

boingo2000
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Location:Phoenix, AZ
  • Local time:03:46 AM

Posted 04 September 2014 - 10:35 PM

Text of the results follows in separate posts; it looks like I have to split them up due to length::

 

dditional scan result of Farbar Recovery Scan Tool (x64) Version: 03-09-2014 02
Ran by Mitch at 2014-09-04 20:17:12
Running from C:\Users\Mitch\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
µTorrent (HKLM-x32\...\uTorrent) (Version: 3.3.0.29544 - BitTorrent Inc.)
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.176 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Reader 8.1.2 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A81200000003}) (Version: 8.1.2 - Adobe Systems Incorporated)
Apple Application Support (HKLM-x32\...\{A83279FD-CA4B-4206-9535-90974DE76654}) (Version: 2.1.5 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 5.2 - Atheros)
Atheros Wi-Fi Protected Setup Library (HKLM-x32\...\{B0BCDCBD-863D-4CAB-BF68-8D1F6B1BDC13}) (Version:  - Atheros)
ATI Catalyst Install Manager (HKLM\...\{44791AD6-C026-4889-5562-CAC89488EA87}) (Version: 3.0.664.0 - ATI Technologies, Inc.)
AVNavigator 2012.III (HKCU\...\AVNavigator 2012.III) (Version: 1.13.2.012.1 - PIONEER CORPORATION)
Bluetooth Stack for Windows by Toshiba (HKLM\...\{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}) (Version: v6.10.07(T) - TOSHIBA CORPORATION)
Camera Assistant Software for Toshiba (HKLM-x32\...\{37C866E4-AA67-4725-9E95-A39968DD7960}) (Version: 1.7.193.0508L - Chicony Electronics Co.,Ltd.)
Catalyst Control Center - Branding (HKLM-x32\...\{69E5255D-9D43-4CFF-8984-843ABD7753B7}) (Version: 1.00.0000 - ATI)
Catalyst Control Center Core Implementation (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Graphics Full New (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Graphics Light (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Chinese Standard (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Chinese Traditional (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Czech (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Danish (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Dutch (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Finnish (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization French (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization German (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Greek (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Hungarian (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Italian (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Japanese (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Korean (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Norwegian (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Polish (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Portuguese (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Russian (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Spanish (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Swedish (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Thai (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Catalyst Control Center Localization Turkish (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help Czech (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help Danish (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help Dutch (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help English (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help Finnish (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help French (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help German (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help Greek (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help Italian (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help Japanese (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help Korean (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help Polish (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help Russian (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help Spanish (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help Swedish (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help Thai (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
CCC Help Turkish (x32 Version: 2008.0422.2138.36895 - ATI) Hidden
ccc-core-static (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
ccc-utility64 (Version: 2008.0422.2139.36895 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.15 - Piriform)
CD/DVD Drive Acoustic Silencer (HKLM-x32\...\{4C3F3228-13BE-41D0-A782-3DDE7CB2479A}) (Version: 3.01.03 - TOSHIBA)
Citrix Authentication Manager (x32 Version: 5.1.0.62606 - Citrix Systems, Inc.) Hidden
Citrix Receiver (HDX Flash Redirection) (x32 Version: 14.1.0.0 - Citrix Systems, Inc.) Hidden
Citrix Receiver (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 14.1.0.0 - Citrix Systems, Inc.)
Citrix Receiver Inside (x32 Version: 4.1.0.56471 - Citrix Systems, Inc.) Hidden
Citrix Receiver Updater (x32 Version: 4.1.0.56461 - Citrix Systems, Inc.) Hidden
Citrix Receiver(Aero) (x32 Version: 14.1.0.0 - Citrix Systems, Inc.) Hidden
Citrix Receiver(DV) (x32 Version: 14.1.0.0 - Citrix Systems, Inc.) Hidden
Citrix Receiver(USB) (x32 Version: 14.1.0.0 - Citrix Systems, Inc.) Hidden
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.36.7.50 - Conexant)
CyberLink PowerCinema for TOSHIBA (HKLM-x32\...\InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 6.0.1616 - CyberLink Corp.)
CyberLink PowerCinema for TOSHIBA (x32 Version: 6.0.1616 - CyberLink Corp.) Hidden
DVD MovieFactory for TOSHIBA (HKLM-x32\...\{F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}) (Version: 5.51 - Ulead Systems, Inc.)
Exact Audio Copy 1.0beta3 (HKLM-x32\...\Exact Audio Copy) (Version: 1.0beta3 - Andre Wiethoff)
FM Tuner Utility (HKLM-x32\...\{C485E390-78F5-4D5B-B56A-20A4C59B022A}) (Version: 1.8 - NXP Semiconductor Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.44 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
HP Officejet 6700 Basic Device Software (HKLM\...\{C0CA6788-386E-4BE1-B214-629E746A5302}) (Version: 25.0.619.0 - Hewlett-Packard Co.)
Java™ 6 Update 6 (HKLM-x32\...\{3248F0A8-6813-11D6-A77B-00B0D0160060}) (Version: 1.6.0.60 - Sun Microsystems, Inc.)
Juniper Citrix Services Client (HKCU\...\Juniper_Citrix_Services) (Version: 8.0.3.30597 - Juniper Networks)
Juniper Networks Host Checker (HKCU\...\Neoteris_Host_Checker) (Version: 8.0.3.30597 - Juniper Networks)
Juniper Networks Setup Client (HKCU\...\Juniper_Setup_Client) (Version: 8.0.3.44471 - Juniper Networks)
Juniper Networks Setup Client Activex Control (HKLM-x32\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks)
Juniper Networks, Inc. Setup Client 64-bit Activex Control (HKLM\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks, Inc.)
Juniper Terminal Services Client (HKCU\...\Juniper_Term_Services) (Version: 8.0.3.30597 - Juniper Networks)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Marvell Miniport Driver (HKLM\...\{5254156F-AA77-499A-B7C1-D5581D44E788}) (Version: 10.57.4.3 - Marvell)
Memeo AutoBackup (HKLM-x32\...\InstallShield_{C515A5CE-7B56-4C80-881C-86B7768E2FD0}) (Version:  - )
Memeo AutoBackup (Version: 3.00.3251 - Memeo Inc) Hidden
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Suite Activation Assistant (HKLM-x32\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.7 - Microsoft Corporation)
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336 - Microsoft Corporation) Hidden
Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
Microsoft XML Parser (x32 Version: 8.20.8730.4 - Microsoft Corporation) Hidden
Mozilla Firefox 30.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 en-US)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP2 (KB941833) (HKLM-x32\...\{C523D256-313D-4866-B36A-F3DE528246EF}) (Version: 4.20.9849.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
O2Micro Flash Memory Card Reader Driver (x64) (HKLM\...\{AE64AAFB-8C9A-482A-B2A9-3A420A65D5D5}) (Version: 3.23 - O2Micro)
Online Plug-in (x32 Version: 14.1.0.0 - Citrix Systems, Inc.) Hidden
QuickBooks Financial Center (HKLM-x32\...\{890EF3F8-742F-46BD-9E8E-084B3A1F4364}) (Version: 1.00.0000 - Intuit Inc.)
QuickTime (HKLM-x32\...\{7BE15435-2D3E-4B58-867F-9C75BED0208C}) (Version: 7.71.80.42 - Apple Inc.)
Self-service Plug-in (x32 Version: 4.1.0.41738 - Citrix Systems, Inc.) Hidden
Skins (x32 Version: 2008.0422.2139.36895 - ATI) Hidden
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Spotify (HKCU\...\Spotify) (Version: 0.8.3.222.g317ab79d - Spotify AB)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 10.1.7.0 - Synaptics)
TOSHIBA Application Disc Creator (HKLM\...\{B431E4D3-ECE7-4D41-8668-BCF9BD685B62}) (Version: 2.0.0.1b for x64 - TOSHIBA Corporation)
Toshiba Assist (HKLM-x32\...\{1B87C40B-A60B-4EF3-9A68-706CF4B69978}) (Version: 3.00.03 - TOSHIBA)
TOSHIBA ConfigFree (HKLM-x32\...\{0D5D0BEE-FBA9-4928-A50D-6CDFAB827755}) (Version: 7.2.15 - TOSHIBA Corporation)
TOSHIBA Disc Creator (HKLM\...\{5DA0E02F-970B-424B-BF41-513A5018E4C0}) (Version: 2.0.1.3 for x64 - TOSHIBA Corporation)
TOSHIBA DVD PLAYER (HKLM-x32\...\{6C5F3BDC-0A1B-4436-A696-5939629D5C31}) (Version: 1.30.12 - TOSHIBA Corporation)
TOSHIBA Extended Tiles for Windows Mobility Center (HKLM-x32\...\InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF}) (Version:  - )
TOSHIBA Extended Tiles for Windows Mobility Center (Version: 1.01.00 - TOSHIBA Corporation) Hidden
TOSHIBA Face Recognition (HKLM-x32\...\InstallShield_{F67FA545-D8E5-4209-86B1-AEE045D1003F}) (Version: 2.0.2.64 - TOSHIBA)
TOSHIBA Face Recognition (Version: 2.0.2.64 - TOSHIBA) Hidden
TOSHIBA Games (HKLM-x32\...\WildTangent toshiba Master Uninstall) (Version: 1.0.0.50 - WildTangent)
TOSHIBA Hardware Setup (HKLM-x32\...\InstallShield_{E8B39B08-7FAB-48CC-89E9-37C5589E130C}) (Version:  - )
TOSHIBA Hardware Setup (Version: 3.00.01.00 - TOSHIBA) Hidden
TOSHIBA PowerCinema Helper (HKLM-x32\...\{FB356619-7ECE-42BC-A28A-541973E29F28}) (Version: 1.00 - TOSHIBA Corporation)
Toshiba Registration (HKLM-x32\...\{C53D16CC-E56F-47B8-906E-70AAF8EABB4F}) (Version: 1.00.0000 - Datalode Inc.)
TOSHIBA Software Upgrades (HKLM-x32\...\{425A2BC2-AA64-4107-9C29-484245BBEA05}) (Version: 4.3 - TOSHIBA)
TOSHIBA Speech System Applications (HKLM-x32\...\{EE033C1F-443E-41EC-A0E2-559B539A4E4D}) (Version:  - )
TOSHIBA Speech System SR Engine(U.S.) Version1.0 (HKLM-x32\...\{008D69EB-70FF-46AB-9C75-924620DF191A}) (Version:  - )
TOSHIBA Speech System TTS Engine(U.S.) Version1.0 (HKLM-x32\...\{3FBF6F99-8EC6-41B4-8527-0A32241B5496}) (Version:  - )
TOSHIBA Supervisor Password (HKLM-x32\...\InstallShield_{DF0853CA-A1D0-4169-8472-F2822C8FA1EB}) (Version:  - )
TOSHIBA Supervisor Password (Version: 3.00.01.00 - TOSHIBA) Hidden
TOSHIBA Value Added Package (HKLM-x32\...\InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}) (Version: 1.1.19.64 - TOSHIBA Corporation)
TOSHIBA Value Added Package (Version: 1.1.19.64 - TOSHIBA Corporation) Hidden
TOSHIBA Value Added Package (x32 Version: 1.1.19.64 - TOSHIBA Corporation) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM-x32\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
VLC media player 1.1.11 (HKLM-x32\...\VLC media player) (Version: 1.1.11 - VideoLAN)
Windows Media Encoder 9 Series (HKLM-x32\...\Windows Media Encoder 9) (Version:  - )
Windows Media Encoder 9 Series (x32 Version: 9.00.3374 - Microsoft Corporation) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

07-06-2014 21:10:13 Windows Update
11-06-2014 04:43:48 Windows Update
14-06-2014 20:35:44 Windows Update
15-06-2014 04:32:58 Windows Update
19-06-2014 03:44:19 Windows Update
24-06-2014 14:33:30 Windows Update
24-06-2014 16:04:41 Device Driver Package Install: Citrix Systems Inc.
28-06-2014 21:30:43 Windows Update
29-06-2014 19:33:10 Scheduled Checkpoint
17-07-2014 03:13:34 Windows Update
17-07-2014 04:29:30 Windows Update
18-07-2014 04:48:33 Scheduled Checkpoint
21-07-2014 03:26:21 Windows Update
24-07-2014 04:22:41 Windows Update
26-07-2014 16:06:33 Scheduled Checkpoint
02-08-2014 17:15:00 Windows Update
02-08-2014 17:52:26 Windows Update
16-08-2014 15:28:45 Windows Update
16-08-2014 16:39:11 Windows Update
29-08-2014 02:44:52 Windows Update
29-08-2014 03:22:58 Windows Update
01-09-2014 22:23:48 Windows Update
05-09-2014 02:55:27 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2014-06-24 08:13 - 2006-09-18 14:37 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1             localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0AEAFAF6-F116-4A60-AFB4-C8B755A6E975} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {192DDA2D-5815-47B8-983F-65744FEEC03A} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {254095AE-FB97-48EA-94A5-D8BF2AB79714} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-20] (Microsoft Corporation)
Task: {4E946E6C-49EC-4FD9-8F58-EB5AF1752C5D} - System32\Tasks\Microsoft\Windows\PLA\System\ConvertLogEntries => Rundll32.exe %windir%\system32\pla.dll,PlaConvertLogEntries
Task: {670E0AAA-8573-4E00-8093-DD1C58486C76} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {7B1B2837-2053-4D70-B545-FDEFE08A3523} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-01-02] (Google Inc.)
Task: {7C638E5B-ECE5-4424-A7E5-2C913CA682E9} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {80EC9C30-7CA7-40AF-875C-CDB90294AB2B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-01-02] (Google Inc.)
Task: {C9AF5945-412F-4B56-A02A-33E409C5F04A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-28] (Adobe Systems Incorporated)
Task: {D55B492E-2F5F-4474-A2F1-DA88EA8344EB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-06-24] (Piriform Ltd)
Task: {E91D6474-70CC-42BE-80FF-8BED8AF557ED} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-20] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2008-05-18 19:00 - 2007-01-25 18:47 - 00136816 _____ () C:\TOSHIBA\IVP\ISM\pinger.exe
2008-05-18 19:00 - 2007-10-23 16:27 - 00066928 _____ () c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
2008-04-24 19:25 - 2008-04-24 19:25 - 00135680 _____ () C:\Windows\system32\SmartFaceVCtrl.dll
2008-04-24 19:25 - 2008-04-24 19:25 - 07553024 _____ () C:\Windows\system32\FaceHI.dll
2008-04-24 19:25 - 2008-04-24 19:25 - 01032704 _____ () C:\Windows\system32\FaceRec.dll
2011-12-24 16:27 - 2008-04-22 23:05 - 00116736 _____ () C:\Windows\system32\atitmm64.dll
2008-03-06 11:13 - 2008-03-06 11:13 - 05106040 _____ () C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll
2007-12-05 16:36 - 2007-12-05 16:36 - 00102400 _____ () C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll
2008-05-18 18:51 - 2007-04-23 09:09 - 00016896 ____R () C:\Program Files\TOSHIBA\Toshiba Assist\NotifyX.dll
2007-12-25 13:02 - 2007-12-25 13:02 - 00016720 _____ () C:\Program Files (x86)\Toshiba\PCDiag\NotifyPCD.dll
2007-04-24 21:47 - 2007-04-24 21:47 - 00012288 _____ () C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll
2012-05-20 08:21 - 2012-05-20 08:21 - 00932528 _____ () C:\Users\Mitch\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
2011-12-24 16:46 - 2008-05-08 11:11 - 04787712 _____ () C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
2014-08-02 10:10 - 2014-08-02 10:10 - 00820224 _____ () C:\Users\Mitch\AppData\Local\Upmedia\SpaLicExtReg.dll
2008-01-02 20:27 - 2008-01-02 20:27 - 00761856 _____ () C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMediaLibrary.dll
2008-01-02 20:27 - 2008-01-02 20:27 - 00007680 _____ () C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvcPS.dll
2014-06-18 21:06 - 2014-06-18 21:06 - 03852912 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\00852165.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\06046488.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\00852165.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\06046488.sys => ""="Driver"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/04/2014 08:03:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/04/2014 07:45:27 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/03/2014 04:26:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/01/2014 10:23:19 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/01/2014 07:19:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program iexplore.exe version 9.0.8112.16563 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: d28
Start Time: 01cfc65434af461c
Termination Time: 14

Error: (09/01/2014 07:19:15 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/01/2014 06:49:30 PM) (Source: EventSystem) (EventID: 4621) (User: )
Description: 80070005EventSystem.EventSubscription{CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}

Error: (09/01/2014 03:13:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/29/2014 11:37:53 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/28/2014 08:46:25 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (09/04/2014 08:03:39 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (09/04/2014 07:45:43 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (09/03/2014 05:55:54 PM) (Source: BROWSER) (EventID: 8032) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{A8D21037-CEB5-4881-A574-91FB0D81A85C}.
The backup browser is stopping.

Error: (09/03/2014 04:26:49 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (09/01/2014 10:23:28 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (09/01/2014 09:16:43 PM) (Source: BROWSER) (EventID: 8032) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{A8D21037-CEB5-4881-A574-91FB0D81A85C}.
The backup browser is stopping.

Error: (09/01/2014 07:19:04 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (09/01/2014 06:45:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: TOSHIBA Optical Disc Drive Service1

Error: (09/01/2014 03:14:10 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (09/01/2014 03:12:21 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 12:04:08 PM on 9/1/2014 was unexpected.


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2014-09-01 15:52:47.221
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-01 15:52:46.615
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-01 15:52:45.981
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-01 15:52:45.334
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-01 15:52:44.013
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-01 15:52:43.296
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-01 15:52:42.764
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-01 15:52:42.199
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-08-29 06:30:39.437
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-08-29 06:30:38.973
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: AMD Turion™ X2 Dual-Core Mobile RM-70
Percentage of memory in use: 44%
Total physical RAM: 3837.42 MB
Available physical RAM: 2125.53 MB
Total Pagefile: 7897.38 MB
Available Pagefile: 5936.64 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (SQ004740V04) (Fixed) (Total:296.62 GB) (Free:192.16 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 298.1 GB) (Disk ID: 13ECCF05)
Partition 1: (Not Active) - (Size=1.5 GB) - (Type=27)
Partition 2: (Active) - (Size=296.6 GB) - (Type=07 NTFS)

==================== End Of Log ============================



#4 boingo2000

boingo2000
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Location:Phoenix, AZ
  • Local time:03:46 AM

Posted 04 September 2014 - 10:36 PM

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-09-2014 02
Ran by Mitch (administrator) on MITCH-LAPTOP on 04-09-2014 20:16:10
Running from C:\Users\Mitch\Downloads
Platform: Windows Vista ™ Home Premium Service Pack 2 (X64) OS Language: English (United States)
Internet Explorer Version 9
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(TOSHIBA Corporation.) C:\Program Files (x86)\Toshiba\ConfigFree\CFProcSRVC.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\ConfigFree\CFSvcs.exe
(O2Micro International) C:\Program Files (x86)\O2Micro Flash Memory Card Driver\o2flash.exe
() C:\TOSHIBA\IVP\ISM\pinger.exe
() C:\TOSHIBA\IVP\swupdate\swupdtmr.exe
(TOSHIBA Corporation) C:\Program Files (x86)\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
(Ulead Systems, Inc.) C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
(Toshiba) C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatchSrv.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(TOSHIBA) C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
() C:\Users\Mitch\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Microsoft Corporation) C:\Windows\System32\regsvr32.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\ConfigFree\NDSTray.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\ConfigFree\CFSwMgr.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\PCMAgent.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe
(Chicony) C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\Receiver\Receiver.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
() C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\SysWOW64\regsvr32.exe
(Adobe Systems Incorporated) C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_14_0_0_176_ActiveX.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1216808 2007-11-29] (Synaptics, Inc.)
HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [431968 2008-02-06] (TOSHIBA Corporation)
HKLM\...\Run: [HSON] => C:\Program Files\TOSHIBA\TBS\HSON.exe [52560 2007-12-06] (TOSHIBA Corporation)
HKLM\...\Run: [SmoothView] => C:\Program Files\Toshiba\SmoothView\SmoothView.exe [519544 2007-12-11] (TOSHIBA Corporation)
HKLM\...\Run: [00TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [865280 2008-03-19] (TOSHIBA Corporation)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1584184 2008-01-20] (Microsoft Corporation)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM-x32\...\Run: [NDSTray.exe] => NDSTray.exe
HKLM-x32\...\Run: [cfFncEnabler.exe] => cfFncEnabler.exe
HKLM-x32\...\Run: [PCMAgent] => C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\PCMAgent.exe [143360 2007-12-13] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe [184320 2008-02-14] (CyberLink)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe [39792 2008-01-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2008-01-21] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Camera Assistant Software] => C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe [417792 2008-04-29] (Chicony)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-09-27] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2011-10-24] (Apple Inc.)
HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [395656 2013-10-01] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [Redirector] => C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [153992 2013-10-01] (Citrix Systems, Inc.)
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\Run: [TOSCDSPD] => C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [432640 2008-04-24] (TOSHIBA)
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\Run: [Spotify Web Helper] => C:\Users\Mitch\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [932528 2012-05-20] ()
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\Run: [Upmedia Update] => regsvr32.exe C:\Users\Mitch\AppData\Local\Upmedia\SpaLicExtReg.dll
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x00000000
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\MountPoints2: {19107d0d-a56f-11e2-a4ad-001e68966005} - G:\setup.exe -a
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\MountPoints2: {6c654de9-a9fb-11e2-aeb2-001e68966005} - E:\LaunchU3.exe -a
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\MountPoints2: {c706140c-fba7-11e1-972e-001e68966005} - E:\TL-Bootstrap.exe
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\MountPoints2: {c706146c-fba7-11e1-972e-001e68966005} - E:\TL-Bootstrap.exe
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\MountPoints2: {dee14f70-30a8-11e1-9ea2-001e68966005} - G:\TL-Bootstrap.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://my.yahoo.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.toshibadirect.com/dpdstart
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.toshibadirect.com/dpdstart
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.toshibadirect.com/dpdstart
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {52923216-CDA6-4FC9-8F96-F2EFB4AC1C21} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage};
SearchScopes: HKLM - {52923216-CDA6-4FC9-8F96-F2EFB4AC1C21} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage};
SearchScopes: HKLM-x32 - DefaultScope {7CC94BCA-8E5E-4FAD-ACE5-798C208642BC} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKLM-x32 - {7CC94BCA-8E5E-4FAD-ACE5-798C208642BC} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKCU - DefaultScope {7CC94BCA-8E5E-4FAD-ACE5-798C208642BC} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}&rlz=
SearchScopes: HKCU - {7CC94BCA-8E5E-4FAD-ACE5-798C208642BC} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}&rlz=
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO-x32: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.6.0_06\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: HKLM {AA570693-00E2-4907-B6F1-60A1199B030C} https://juniper.net/dana-cached/sc/JuniperSetupClient64.cab
DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://juniper.net/dana-cached/sc/JuniperSetupClient.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Mitch\AppData\Roaming\Mozilla\Firefox\Profiles\yry7mjwy.default
FF Homepage: hxxp://www.google.com/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @Citrix.com/npican -> C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll (Citrix Systems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Extension: OpenDownload² - C:\Users\Mitch\AppData\Roaming\Mozilla\Firefox\Profiles\yry7mjwy.default\Extensions\{210249CE-F888-11DD-B868-4CB456D89593} [2014-09-01]
FF Extension: MMDeviceEnumerator class - C:\Users\Mitch\AppData\Roaming\Mozilla\Firefox\Profiles\yry7mjwy.default\Extensions\{BCDAAA89-3B45-E6E8-2EC7-45A4DD41C498} [2014-05-31]
FF Extension: Adblock Plus - C:\Users\Mitch\AppData\Roaming\Mozilla\Firefox\Profiles\yry7mjwy.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2011-12-27]
FF Extension: BetterPrivacy - C:\Users\Mitch\AppData\Roaming\Mozilla\Firefox\Profiles\yry7mjwy.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2012-02-03]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2011-12-26]

Chrome:
=======
CHR Profile: C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (MMDeviceEnumerator class) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajpgkpeckebdhofmmjfgcjjiiejpodla [2014-05-31]
CHR Extension: (Google Docs) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-16]
CHR Extension: (Google Drive) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-16]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-06-04]
CHR Extension: (YouTube) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-16]
CHR Extension: (Google Cast) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2014-02-16]
CHR Extension: (Google Search) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-16]
CHR Extension: (Google Wallet) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-16]
CHR Extension: (Gmail) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-16]
CHR Profile: C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Docs) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-08]
CHR Extension: (Google Drive) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-08]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-06-08]
CHR Extension: (YouTube) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-08]
CHR Extension: (Google Search) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-08]
CHR Extension: (Google Wallet) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-08]
CHR Extension: (Gmail) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-08]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ConfigFree Gadget Service; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe [36864 2008-04-03] (TOSHIBA Corporation.) [File not signed]
R2 ConfigFree Service; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [40960 2008-04-17] (TOSHIBA CORPORATION) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S3 jswpsapi; C:\Program Files (x86)\Jumpstart\jswpsapi.exe [954368 2008-04-16] (Atheros Communications, Inc.) [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
R2 o2flash; C:\Program Files (x86)\O2Micro Flash Memory Card Driver\o2flash.exe [65536 2007-02-12] (O2Micro International) [File not signed]
R2 pinger; C:\TOSHIBA\IVP\ISM\pinger.exe [136816 2007-01-25] ()
R3 SmartFaceVWatchSrv; C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatchSrv.exe [84992 2008-04-24] (Toshiba) [File not signed]
R2 Swupdtmr; c:\TOSHIBA\IVP\swupdate\swupdtmr.exe [66928 2007-10-23] ()
R2 TNaviSrv; C:\Program Files (x86)\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe [83312 2008-04-11] (TOSHIBA Corporation)
R2 TODDSrv; C:\Windows\system32\TODDSrv.exe [135168 2007-11-21] (TOSHIBA Corporation) [File not signed]
R2 TOSHIBA SMART Log Service; C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe [175104 2007-12-03] (TOSHIBA Corporation) [File not signed]
R2 UleadBurningHelper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2006-08-23] (Ulead Systems, Inc.) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
R3 O2MDRDR; C:\Windows\System32\DRIVERS\o2mdx64.sys [62040 2008-04-15] (O2Micro )
R2 OpenLibSys; C:\Program Files (x86)\NXP\FM Radio\OpenLibSysX64.sys [14544 2007-10-19] (OpenLibSys.org)
S3 Tosrfcom; No ImagePath
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-04 20:16 - 2014-09-04 20:16 - 00023570 _____ () C:\Users\Mitch\Downloads\FRST.txt
2014-09-04 20:15 - 2014-09-04 20:16 - 00000000 ____D () C:\FRST
2014-09-04 20:14 - 2014-09-04 20:15 - 02104832 _____ (Farbar) C:\Users\Mitch\Downloads\FRST64.exe
2014-09-04 20:10 - 2014-09-04 20:10 - 00350405 _____ () C:\Users\Mitch\Documents\tdss_rpt.txt
2014-09-03 20:33 - 2014-09-03 20:33 - 00021073 _____ () C:\Users\Mitch\Documents\DDS.txt
2014-09-03 20:29 - 2014-09-03 20:29 - 00009016 _____ () C:\Users\Mitch\Documents\attach.txt
2014-09-03 20:28 - 2014-09-03 20:28 - 00009016 _____ () C:\Users\Mitch\Documents\dds output.txt
2014-09-03 20:23 - 2014-09-03 20:23 - 00009016 _____ () C:\Users\Mitch\Desktop\attach.txt
2014-09-03 20:23 - 2014-09-03 20:21 - 00021073 _____ () C:\Users\Mitch\Desktop\dds.txt
2014-09-03 20:18 - 2014-09-03 20:18 - 00688992 ____R (Swearware) C:\Users\Mitch\Downloads\dds.com
2014-09-01 22:05 - 2014-09-01 22:05 - 00047295 _____ () C:\Users\Mitch\Documents\2014 depth chart.xlsx
2014-09-01 18:45 - 2014-09-01 18:47 - 00002286 _____ () C:\Users\Mitch\Desktop\Rkill.txt
2014-09-01 18:43 - 2014-09-01 18:43 - 01944824 _____ (Bleeping Computer, LLC) C:\Users\Mitch\Downloads\rkill.exe
2014-09-01 16:14 - 2014-09-01 16:14 - 00039090 _____ () C:\Users\Mitch\Downloads\2014 ffl.xlsx
2014-09-01 15:30 - 2014-09-01 15:30 - 00000000 ____D () C:\TDSSKiller_Quarantine
2014-09-01 15:19 - 2014-09-01 15:19 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Mitch\Downloads\tdsskiller.exe
2014-08-28 23:03 - 2014-08-28 23:03 - 00000000 ____D () C:\Users\Mitch\AppData\Local\Adobe
2014-08-28 20:23 - 2014-08-22 18:05 - 00304128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-28 20:23 - 2014-08-22 17:42 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 20:23 - 2014-08-22 16:38 - 02782208 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-28 20:01 - 2014-09-01 21:52 - 00034938 _____ () C:\Users\Mitch\Documents\2014 ffl.xlsx
2014-08-16 09:41 - 2014-06-26 15:17 - 01389200 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-16 09:41 - 2014-06-26 15:17 - 00619664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-16 09:41 - 2014-06-26 15:17 - 00171152 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-16 09:41 - 2014-06-26 15:17 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-16 09:41 - 2014-06-26 15:17 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-16 09:41 - 2014-06-26 15:17 - 00008848 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-16 09:41 - 2014-06-05 21:29 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-16 09:41 - 2014-06-05 21:28 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-16 09:38 - 2014-07-24 12:28 - 17861120 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-16 09:38 - 2014-07-24 12:12 - 02339328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-16 09:38 - 2014-07-24 12:10 - 10920960 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-16 09:38 - 2014-07-24 12:07 - 01384960 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-16 09:38 - 2014-07-24 12:06 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-16 09:38 - 2014-07-24 12:05 - 01494016 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-16 09:38 - 2014-07-24 12:05 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-08-16 09:38 - 2014-07-24 12:05 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-16 09:38 - 2014-07-24 12:04 - 02155520 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-16 09:38 - 2014-07-24 12:04 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-16 09:38 - 2014-07-24 12:04 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-16 09:38 - 2014-07-24 12:04 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-16 09:38 - 2014-07-24 12:04 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-16 09:38 - 2014-07-24 12:04 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-16 09:38 - 2014-07-24 12:03 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-16 09:38 - 2014-07-24 12:03 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-16 09:38 - 2014-07-24 12:03 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-16 09:38 - 2014-07-24 12:03 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-08-16 09:38 - 2014-07-24 12:03 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-08-16 09:38 - 2014-07-24 12:03 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-08-16 09:38 - 2014-07-24 12:02 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-16 09:38 - 2014-07-24 11:07 - 12356608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-16 09:38 - 2014-07-24 10:58 - 01810432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-16 09:38 - 2014-07-24 10:57 - 09739264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-16 09:38 - 2014-07-24 10:52 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-16 09:38 - 2014-07-24 10:51 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-16 09:38 - 2014-07-24 10:51 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-16 09:38 - 2014-07-24 10:50 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-08-16 09:38 - 2014-07-24 10:50 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-16 09:38 - 2014-07-24 10:49 - 01802240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-16 09:38 - 2014-07-24 10:49 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-08-16 09:38 - 2014-07-24 10:49 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-16 09:38 - 2014-07-24 10:49 - 00421376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-16 09:38 - 2014-07-24 10:49 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-16 09:38 - 2014-07-24 10:48 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-16 09:38 - 2014-07-24 10:48 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-16 09:38 - 2014-07-24 10:48 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-16 09:38 - 2014-07-24 10:48 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-16 09:38 - 2014-07-24 10:48 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-08-16 09:38 - 2014-07-24 10:48 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-08-16 09:38 - 2014-07-24 10:48 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-08-16 09:38 - 2014-07-24 10:47 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-16 09:38 - 2014-07-07 18:12 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-16 09:38 - 2014-07-07 17:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-16 09:38 - 2014-06-13 17:56 - 00901568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-16 09:38 - 2014-06-13 17:51 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-16 09:35 - 2014-06-02 14:30 - 03137536 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-16 09:35 - 2014-06-02 14:30 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-16 09:35 - 2014-06-02 14:29 - 02280448 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-16 09:35 - 2014-06-02 14:29 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-08-16 09:35 - 2014-06-02 13:29 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-16 09:35 - 2014-06-02 03:31 - 02263552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-16 09:35 - 2014-06-02 03:31 - 00332800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-16 09:35 - 2014-06-02 03:30 - 01993728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-04 20:16 - 2014-09-04 20:16 - 00023570 _____ () C:\Users\Mitch\Downloads\FRST.txt
2014-09-04 20:16 - 2014-09-04 20:15 - 00000000 ____D () C:\FRST
2014-09-04 20:15 - 2014-09-04 20:14 - 02104832 _____ (Farbar) C:\Users\Mitch\Downloads\FRST64.exe
2014-09-04 20:10 - 2014-09-04 20:10 - 00350405 _____ () C:\Users\Mitch\Documents\tdss_rpt.txt
2014-09-04 20:06 - 2011-12-24 16:05 - 01248100 _____ () C:\Windows\WindowsUpdate.log
2014-09-04 20:02 - 2012-01-02 19:28 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-04 20:02 - 2006-11-02 08:42 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-04 20:02 - 2006-11-02 08:22 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-04 20:02 - 2006-11-02 08:22 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-04 20:00 - 2006-11-02 08:42 - 00032650 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-09-04 19:47 - 2012-01-02 19:28 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-03 20:40 - 2013-01-24 20:26 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-03 20:33 - 2014-09-03 20:33 - 00021073 _____ () C:\Users\Mitch\Documents\DDS.txt
2014-09-03 20:29 - 2014-09-03 20:29 - 00009016 _____ () C:\Users\Mitch\Documents\attach.txt
2014-09-03 20:28 - 2014-09-03 20:28 - 00009016 _____ () C:\Users\Mitch\Documents\dds output.txt
2014-09-03 20:23 - 2014-09-03 20:23 - 00009016 _____ () C:\Users\Mitch\Desktop\attach.txt
2014-09-03 20:21 - 2014-09-03 20:23 - 00021073 _____ () C:\Users\Mitch\Desktop\dds.txt
2014-09-03 20:18 - 2014-09-03 20:18 - 00688992 ____R (Swearware) C:\Users\Mitch\Downloads\dds.com
2014-09-03 18:00 - 2014-02-16 13:28 - 00002036 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-03 17:54 - 2014-06-08 21:14 - 00002136 _____ () C:\Users\Mitch\Desktop\Mitch - Chrome.lnk
2014-09-01 22:05 - 2014-09-01 22:05 - 00047295 _____ () C:\Users\Mitch\Documents\2014 depth chart.xlsx
2014-09-01 21:52 - 2014-08-28 20:01 - 00034938 _____ () C:\Users\Mitch\Documents\2014 ffl.xlsx
2014-09-01 19:17 - 2008-01-20 20:26 - 00069928 _____ () C:\Windows\PFRO.log
2014-09-01 18:47 - 2014-09-01 18:45 - 00002286 _____ () C:\Users\Mitch\Desktop\Rkill.txt
2014-09-01 18:43 - 2014-09-01 18:43 - 01944824 _____ (Bleeping Computer, LLC) C:\Users\Mitch\Downloads\rkill.exe
2014-09-01 16:14 - 2014-09-01 16:14 - 00039090 _____ () C:\Users\Mitch\Downloads\2014 ffl.xlsx
2014-09-01 15:42 - 2014-06-29 09:56 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-01 15:30 - 2014-09-01 15:30 - 00000000 ____D () C:\TDSSKiller_Quarantine
2014-09-01 15:19 - 2014-09-01 15:19 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Mitch\Downloads\tdsskiller.exe
2014-08-29 11:36 - 2006-11-02 06:33 - 00000000 ____D () C:\Windows\Globalization
2014-08-28 23:03 - 2014-08-28 23:03 - 00000000 ____D () C:\Users\Mitch\AppData\Local\Adobe
2014-08-28 20:58 - 2013-01-24 20:26 - 00003682 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-08-28 20:58 - 2012-05-11 23:02 - 00699568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-08-28 20:58 - 2011-12-28 08:24 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-08-28 20:45 - 2006-11-02 08:21 - 00328888 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-22 18:05 - 2014-08-28 20:23 - 00304128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-22 17:42 - 2014-08-28 20:23 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-22 16:38 - 2014-08-28 20:23 - 02782208 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-16 11:02 - 2006-11-02 06:33 - 00000000 ____D () C:\Windows\rescache
2014-08-16 10:50 - 2006-11-02 05:46 - 00764564 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-16 10:44 - 2006-11-02 08:27 - 00048042 _____ () C:\Windows\setupact.log
2014-08-16 10:02 - 2011-12-24 16:16 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-16 10:01 - 2013-08-19 16:36 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-16 09:55 - 2006-11-02 05:35 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-08-16 08:33 - 2014-05-31 09:04 - 00000000 ____D () C:\Users\Mitch\AppData\Local\Upmedia
2014-08-16 08:26 - 2011-12-27 11:14 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight

Files to move or delete:
====================
C:\Users\Mitch\gotomypc_635.exe


Some content of TEMP:
====================
C:\Users\Mitch\AppData\Local\Temp\dotNetFx40_Client_setup.exe
C:\Users\Mitch\AppData\Local\Temp\dsHostCheckerSetup.exe
C:\Users\Mitch\AppData\Local\Temp\FP_PL_PFS_INSTALLER_32bit.exe
C:\Users\Mitch\AppData\Local\Temp\GoogleToolbarInstaller_en32_signed.exe
C:\Users\Mitch\AppData\Local\Temp\JuniperSetupClientInstaller.exe
C:\Users\Mitch\AppData\Local\Temp\ose00001.exe
C:\Users\Mitch\AppData\Local\Temp\SpotifyUpgrader.exe
C:\Users\Mitch\AppData\Local\Temp\winziprosetup-WZRO6_20130221.exe
C:\Users\Mitch\AppData\Local\Temp\{E79D8B7C-2418-4F10-8CD7-BB1877E88DAC}.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-04 20:08

==================== End Of Log ============================



#5 boingo2000

boingo2000
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Location:Phoenix, AZ
  • Local time:03:46 AM

Posted 04 September 2014 - 10:40 PM

20:03:11.0844 0x0b90  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
20:03:12.0281 0x0b90  ============================================================
20:03:12.0281 0x0b90  Current date / time: 2014/09/04 20:03:12.0281
20:03:12.0281 0x0b90  SystemInfo:
20:03:12.0281 0x0b90  
20:03:12.0296 0x0b90  OS Version: 6.0.6002 ServicePack: 2.0
20:03:12.0296 0x0b90  Product type: Workstation
20:03:12.0296 0x0b90  ComputerName: MITCH-LAPTOP
20:03:12.0296 0x0b90  UserName: Mitch
20:03:12.0296 0x0b90  Windows directory: C:\Windows
20:03:12.0296 0x0b90  System windows directory: C:\Windows
20:03:12.0296 0x0b90  Running under WOW64
20:03:12.0296 0x0b90  Processor architecture: Intel x64
20:03:12.0296 0x0b90  Number of processors: 2
20:03:12.0296 0x0b90  Page size: 0x1000
20:03:12.0296 0x0b90  Boot type: Normal boot
20:03:12.0296 0x0b90  ============================================================
20:03:12.0296 0x0b90  BG loaded
20:03:17.0070 0x0b90  System UUID: {76A6E079-D737-7AC6-9147-16F54915F30C}
20:03:23.0771 0x0b90  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:03:23.0787 0x0b90  ============================================================
20:03:23.0787 0x0b90  \Device\Harddisk0\DR0:
20:03:23.0787 0x0b90  MBR partitions:
20:03:23.0787 0x0b90  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x25140000
20:03:23.0787 0x0b90  ============================================================
20:03:23.0927 0x0b90  C: <-> \Device\Harddisk0\DR0\Partition1
20:03:23.0927 0x0b90  ============================================================
20:03:23.0927 0x0b90  Initialize success
20:03:23.0927 0x0b90  ============================================================
20:04:23.0051 0x0b80  ============================================================
20:04:23.0051 0x0b80  Scan started
20:04:23.0051 0x0b80  Mode: Manual;
20:04:23.0051 0x0b80  ============================================================
20:04:23.0051 0x0b80  KSN ping started
20:04:25.0931 0x0b80  KSN ping finished: true
20:04:34.0036 0x0b80  ================ Scan system memory ========================
20:04:34.0036 0x0b80  Scan was interrupted by user!
20:04:39.0771 0x0b80  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.5.216.0 ), 0x61000 ( enabled : updated )
20:04:39.0782 0x0b80  Win FW state via NFP2: enabled
20:04:42.0298 0x0b80  ============================================================
20:04:42.0298 0x0b80  Scan finished
20:04:42.0298 0x0b80  ============================================================
20:04:42.0312 0x0d40  Detected object count: 0
20:04:42.0312 0x0d40  Actual detected object count: 0
20:04:51.0711 0x1094  ============================================================
20:04:51.0711 0x1094  Scan started
20:04:51.0711 0x1094  Mode: Manual; SigCheck; TDLFS;
20:04:51.0711 0x1094  ============================================================
20:04:51.0711 0x1094  KSN ping started
20:04:54.0194 0x1094  KSN ping finished: true
20:04:57.0710 0x1094  ================ Scan system memory ========================
20:04:57.0710 0x1094  System memory - ok
20:04:57.0712 0x1094  ================ Scan services =============================
20:04:58.0059 0x1094  [ 1965AAFFAB07E3FB03C77F81BEBA3547, 351A1EBB1B95C8E03ED125C8F997DEE810B4DF36AD290E7685FC01963B522BFC ] ACPI            C:\Windows\system32\drivers\acpi.sys
20:04:58.0334 0x1094  ACPI - ok
20:04:58.0640 0x1094  [ 9E5197D65BA34A4DB45B8BEFC3288C23, EBBE6126B6B73616032F8E1731642E35C6CB6B395EF74BCCB781CAE076EE8434 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:04:58.0698 0x1094  AdobeFlashPlayerUpdateSvc - ok
20:04:58.0809 0x1094  [ F14215E37CF124104575073F782111D2, 7F624F7F0FE9909C07AB2E4C74727686FDA9DF33778A9CBBE35027D6579E4F71 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
20:04:58.0897 0x1094  adp94xx - ok
20:04:58.0981 0x1094  [ 7D05A75E3066861A6610F7EE04FF085C, 406F2CE539C306BA60C233FBCDB029153588F0499BBE91E66FC915E5C5D7D2A5 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
20:04:59.0018 0x1094  adpahci - ok
20:04:59.0080 0x1094  [ 820A201FE08A0C345B3BEDBC30E1A77C, 3170B308724CAA0AD50B74D045C837C48BD6A3A11ABA222670BEA82192A861BF ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
20:04:59.0137 0x1094  adpu160m - ok
20:04:59.0224 0x1094  [ 9B4AB6854559DC168FBB4C24FC52E794, 83CD75DE0A16AE66586837565ECA8B98BA9309519139C4C2032474B8DDF5A1AD ] adpu320         C:\Windows\system32\drivers\adpu320.sys
20:04:59.0260 0x1094  adpu320 - ok
20:04:59.0327 0x1094  [ 0F421175574BFE0BF2F4D8E910A253BB, CEABE3A4F546EB6ACA079931AB532DC88FF757DEEF6F434991802220328A9CD6 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
20:04:59.0700 0x1094  AeLookupSvc - ok
20:04:59.0790 0x1094  [ E58A17E945593544C707423F9772EEA0, FC17AFF979354EB89DCA307BF07C52B84629AF540D4C6A32DD537695CA654205 ] AFD             C:\Windows\system32\drivers\afd.sys
20:04:59.0917 0x1094  AFD - ok
20:04:59.0961 0x1094  [ F6F6793B7F17B550ECFDBD3B229173F7, 7EB12A9372B7966440E39F1B567A43C21231D67DDFAA9C1DECC7E68627F82346 ] agp440          C:\Windows\system32\drivers\agp440.sys
20:05:00.0004 0x1094  agp440 - ok
20:05:00.0038 0x1094  [ 222CB641B4B8A1D1126F8033F9FD6A00, 8C7FD4BF87DC00893B99E64344C0E6A3F321DAD9BE60A99763629260E7C6312C ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
20:05:00.0074 0x1094  aic78xx - ok
20:05:00.0114 0x1094  [ 5922F4F59B7868F3D74BBBBEB7B825A3, 71504BC8B596F540BF059059670BC0C138D8759C1DD9F99F1EC368FD5C53F573 ] ALG             C:\Windows\System32\alg.exe
20:05:00.0591 0x1094  ALG - ok
20:05:00.0653 0x1094  [ 157D0898D4B73F075CE9FA26B482DF98, 84C3E163D7393FD306842F155C88A50B7D8AE88B59586F9014DB76B749CC33D5 ] aliide          C:\Windows\system32\drivers\aliide.sys
20:05:00.0707 0x1094  aliide - ok
20:05:00.0731 0x1094  [ 970FA5059E61E30D25307B99903E991E, CFB241803A63EA3469B2596462A42DDCA813B3ACF96E56BB34F5979BB34DDC32 ] amdide          C:\Windows\system32\drivers\amdide.sys
20:05:00.0753 0x1094  amdide - ok
20:05:00.0784 0x1094  [ CDC3632A3A5EA4DBB83E46076A3165A1, 40BE3451A3F29CD3352360FF72165C54237E44D01006390805D493B0D06F51DB ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
20:05:00.0914 0x1094  AmdK8 - ok
20:05:00.0960 0x1094  [ 7C8ECAAD76EA1D076A450C8303D9BD98, 90904B2BE380A51BDCEDADA530214CE5321C06456E10F5985B40E3282902BEF6 ] Appinfo         C:\Windows\System32\appinfo.dll
20:05:01.0040 0x1094  Appinfo - ok
20:05:01.0082 0x1094  [ BA8417D4765F3988FF921F30F630E303, 876A8F34E578020DD9EDD64F7F77A0A3B4592EC568830B500D7EA844D3159C72 ] arc             C:\Windows\system32\drivers\arc.sys
20:05:01.0118 0x1094  arc - ok
20:05:01.0178 0x1094  [ 9D41C435619733B34CC16A511E644B11, DEFFBBB5ECE33B7DF949DF979188AF3B6674E7580FC069397AB756EA84E24822 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
20:05:01.0213 0x1094  arcsas - ok
20:05:01.0392 0x1094  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:05:01.0441 0x1094  aspnet_state - ok
20:05:01.0488 0x1094  [ 22D13FF3DAFEC2A80634752B1EAA2DE6, 503F7E5F1B14D3F7AEAB0982E812B19DABE38FD4104D93922F50F0B2D19BECFB ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
20:05:01.0569 0x1094  AsyncMac - ok
20:05:01.0604 0x1094  [ E68D9B3A3905619732F7FE039466A623, 74C0B29E54EF064660B9C756E03D5A7EB78F261EFF768EB6E74D261FBD34340D ] atapi           C:\Windows\system32\drivers\atapi.sys
20:05:01.0624 0x1094  atapi - ok
20:05:01.0843 0x1094  [ 45511C7E870D3ADDDD60049232EA96B3, 02982BE10E4882E140345BEBE3E60A6FF139B936740F98AA1E72696856F62491 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
20:05:02.0193 0x1094  athr - ok
20:05:02.0311 0x1094  [ 2F0C8FD04FCB78617D48484523C77117, 531E8991FF02E1D301C1002FDFAAE4958702C9411C405C8BD9BE659FF09FD79D ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
20:05:02.0491 0x1094  Ati External Event Utility - ok
20:05:02.0950 0x1094  [ F59742A4507960B9013365C74DC25C48, 6D46F7B7DD973BE478631CED7C28DF7FEA494466477DDA9F1A9CE44DB98986D2 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
20:05:03.0476 0x1094  atikmdag - ok
20:05:03.0567 0x1094  [ 69EEBB256503CDED9BD0E9E43128C626, D4A35FD4CC42058AEDD007B7BEC1A374BCBAAD74B7C759115D116A26B2D918BA ] AtiPcie         C:\Windows\system32\DRIVERS\AtiPcie.sys
20:05:03.0627 0x1094  AtiPcie - ok
20:05:03.0716 0x1094  [ 79318C744693EC983D20E9337A2F8196, 94226786EF8A101C2E805C6BA3C1CF46628BAF1AFCECBC1FAB7A7E7E5E642608 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:05:03.0854 0x1094  AudioEndpointBuilder - ok
20:05:03.0879 0x1094  [ 79318C744693EC983D20E9337A2F8196, 94226786EF8A101C2E805C6BA3C1CF46628BAF1AFCECBC1FAB7A7E7E5E642608 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
20:05:03.0951 0x1094  AudioSrv - ok
20:05:04.0024 0x1094  [ FFB96C2589FFA60473EAD78B39FBDE29, 6A2792753E2CB580672B3107C0DBB9D26B6DAA14B37D5EC314BD0E304197E03E ] BFE             C:\Windows\System32\bfe.dll
20:05:04.0120 0x1094  BFE - ok
20:05:04.0256 0x1094  [ 6D316F4859634071CC25C4FD4589AD2C, 73F69AC9E505F3B11A3CCFF8571930229A9058E672CD008A4BF26C0189564EAE ] BITS            C:\Windows\System32\qmgr.dll
20:05:04.0401 0x1094  BITS - ok
20:05:04.0510 0x1094  [ 79FEEB40056683F8F61398D81DDA65D2, 5EA3016194F71A2A2177C2B5129E82738EC621ACAD269809F4C131B72CFEB6C6 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
20:05:04.0584 0x1094  blbdrive - ok
20:05:04.0668 0x1094  [ 2348447A80920B2493A9B582A23E81E1, 50F9242B7104607E633ABAF4E0A213C1C1226BF81F7FB4E216A9E878247B868C ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
20:05:04.0738 0x1094  bowser - ok
20:05:04.0782 0x1094  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
20:05:04.0850 0x1094  BrFiltLo - ok
20:05:04.0902 0x1094  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
20:05:04.0991 0x1094  BrFiltUp - ok
20:05:05.0111 0x1094  [ A1B39DE453433B115B4EA69EE0343816, 61441E7E9D5259A5987DBD3FC8D4E3221A57F42C7CC0F94DB48E80EEF96CA5D4 ] Browser         C:\Windows\System32\browser.dll
20:05:05.0338 0x1094  Browser - ok
20:05:05.0398 0x1094  [ F0F0BA4D815BE446AA6A4583CA3BCA9B, E0A5DB5A0C7D6AF93ED45F34D2597F77982DFF41E4FDAC827FE5D80323ADED60 ] Brserid         C:\Windows\system32\drivers\brserid.sys
20:05:06.0119 0x1094  Brserid - ok
20:05:06.0178 0x1094  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
20:05:06.0327 0x1094  BrSerWdm - ok
20:05:06.0390 0x1094  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
20:05:06.0539 0x1094  BrUsbMdm - ok
20:05:06.0582 0x1094  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
20:05:06.0703 0x1094  BrUsbSer - ok
20:05:06.0759 0x1094  [ E0777B34E05F8A82A21856EFC900C29F, A7ACE3C65D1773C50ACD98A13B3ADBDD2A6052D7F5D124CB6EE6E7C22151A424 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
20:05:07.0007 0x1094  BTHMODEM - ok
20:05:07.0083 0x1094  [ B4D787DB8D30793A4D4DF9FEED18F136, 2A956F7DCFE61E556F30BDA6D45592A05533541D6ED321C251C1C05F6CEA6DDC ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
20:05:07.0118 0x1330  Object required for P2P: [ 9D41C435619733B34CC16A511E644B11 ] arcsas
20:05:07.0189 0x1094  cdfs - ok
20:05:07.0239 0x1094  [ C025AA69BE3D0D25C7A2E746EF6F94FC, F4754B23CC256ADF92FDD42A9BA80F1ACB74834A58FCBEA2C52650FAFC7F9483 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
20:05:07.0293 0x1094  cdrom - ok
20:05:07.0340 0x1094  [ 5A268127633C7EE2A7FB87F39D748D56, 45C530A0EE0108543A75B9427F77EBB5E8350AE16C235763B6F32E72CE15C449 ] CertPropSvc     C:\Windows\System32\certprop.dll
20:05:07.0387 0x1094  CertPropSvc - ok
20:05:07.0429 0x1094  [ 02EA568D498BBDD4BA55BF3FCE34D456, 5A418B156CBB48D14E0F6B6AE6E03B8CD97AABE838F260757014479566C63F17 ] circlass        C:\Windows\system32\drivers\circlass.sys
20:05:07.0516 0x1094  circlass - ok
20:05:07.0574 0x1094  [ 3DCA9A18B204939CFB24BEA53E31EB48, 73CEDE020A6C8269EE8847A4E43071FD231179DA9430DE2983263B8345AD92B7 ] CLFS            C:\Windows\system32\CLFS.sys
20:05:07.0610 0x1094  CLFS - ok
20:05:07.0744 0x1094  [ 6B6943A0CA56B47D6FB2EE476890854F, 6DA779879487F4A187DF54B0362642643D7871AA8F7E30992D781F558C50F052 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:05:07.0775 0x1094  clr_optimization_v2.0.50727_32 - ok
20:05:07.0887 0x1094  [ 753049933D5326D835F4FCACDF4AD5E3, 715BEE09C19BCBCAD2A93E4725DB3A1FDD8E2FEFFF6E0C3D2F98FC607FED5D3A ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:05:07.0923 0x1094  clr_optimization_v2.0.50727_64 - ok
20:05:08.0209 0x1094  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:05:08.0458 0x1094  clr_optimization_v4.0.30319_32 - ok
20:05:08.0508 0x1094  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:05:08.0705 0x1094  clr_optimization_v4.0.30319_64 - ok
20:05:08.0759 0x1094  [ B52D9A14CE4101577900A364BA86F3DF, A8AA928DDF5FE3861973D4EA03A5B700E99138236F1E8FF594293B9705BF470C ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
20:05:08.0916 0x1094  CmBatt - ok
20:05:08.0950 0x1094  [ E5D5499A1C50A54B5161296B6AFE6192, 20A8A0478918063A9EE81565F21F4ACCAA7B6A8B2E9E084099879D85574BAB3E ] cmdide          C:\Windows\system32\drivers\cmdide.sys
20:05:08.0984 0x1094  cmdide - ok
20:05:09.0062 0x1094  [ 5A220D86C6E0DD92EA0EA157ED3CA267, E2BE521E361587CE049F188FCAB7D0B29897DD6A8DE2E91AB03DA2FD271092CF ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
20:05:09.0129 0x1094  CnxtHdAudService - ok
20:05:09.0169 0x1094  [ 7FB8AD01DB0EABE60C8A861531A8F431, E19353C686B07A0DBBA92CFCC88AB9B6BEBAF389416B78F4470BA673E7CD73C3 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
20:05:09.0198 0x1094  Compbatt - ok
20:05:09.0210 0x1094  COMSysApp - ok
20:05:09.0320 0x1094  [ 5AC8A997E8D9C131B5F90B4F3CCFAE34, D2FFC4F12299D9500390345A707F3FE844CBBE13163D004665FCD82B6C3B6FC6 ] ConfigFree Gadget Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe
20:05:09.0404 0x1094  ConfigFree Gadget Service - detected UnsignedFile.Multi.Generic ( 1 )
20:05:09.0869 0x1330  Object send P2P result: true
20:05:12.0116 0x1094  Detect skipped due to KSN trusted
20:05:12.0116 0x1094  ConfigFree Gadget Service - ok
20:05:12.0169 0x1094  [ D10D01B2DFCD8D2F32A32ED29E8DA1C2, D5F89AFF51D690494A70F0E17CB5609DB81F7C9BACD2952D411C7959E90BEEE3 ] ConfigFree Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
20:05:12.0208 0x1094  ConfigFree Service - detected UnsignedFile.Multi.Generic ( 1 )
20:05:14.0775 0x1094  Detect skipped due to KSN trusted
20:05:14.0775 0x1094  ConfigFree Service - ok
20:05:14.0872 0x1094  [ A8585B6412253803CE8EFCBD6D6DC15C, C3906B080D3BB06CB976FD98C62CBA97DAE74970A5559D51EF5111D773949322 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
20:05:14.0925 0x1094  crcdisk - ok
20:05:14.0994 0x1094  [ 5AAC48EAF8EACF247DB44FB61B900D89, D20FCD5C71CA18F284D3DFD0CED37F6888A296E76B7B0563F2F4668CF90FE752 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
20:05:15.0109 0x1094  CryptSvc - ok
20:05:15.0170 0x1094  [ A193FAE9BF40D981C3094252B17DE601, 585E9F48676DA26DBD30398E4D0E33378D25CB726EFA973E48B69F31C96A6E4E ] ctxusbm         C:\Windows\system32\DRIVERS\ctxusbm.sys
20:05:15.0286 0x1094  ctxusbm - ok
20:05:15.0368 0x1094  [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF, 3BE4B8EE22FA55D3A17D3718781C8BCA631C78F7928092561F6B79BB60E7D7FE ] DcomLaunch      C:\Windows\system32\rpcss.dll
20:05:15.0458 0x1094  DcomLaunch - ok
20:05:15.0514 0x1094  [ 8B722BA35205C71E7951CDC4CDBADE19, 39720A60DFD0532F7E1A1976240E9828559BF9E0C6D1CFBF4D911965BFD94158 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
20:05:15.0605 0x1094  DfsC - ok
20:05:16.0003 0x1094  [ C647F468F7DE343DF8C143655C5557D4, E2D35FE49C408B952D8FE0C7EF70D42798229D30B89CEF9858BAC9F4F9E98EF2 ] DFSR            C:\Windows\system32\DFSR.exe
20:05:16.0619 0x1094  DFSR - ok
20:05:16.0753 0x1094  [ 3ED0321127CE70ACDAABBF77E157C2A7, 10973BD0AEF9597A4EA0A4947BDE922F9168F33D6ED97BFFEE6176AADAD78980 ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
20:05:16.0867 0x1094  Dhcp - ok
20:05:16.0908 0x1094  [ B0107E40ECDB5FA692EBF832F295D905, 76466BB9E4F12436ECCCB9D89EB20762B4785F82F02591B51A735A590E248264 ] disk            C:\Windows\system32\drivers\disk.sys
20:05:16.0935 0x1094  disk - ok
20:05:16.0980 0x1094  [ 06230F1B721494A6DF8D47FD395BB1B0, F6CA8270740E01D9CE2FE8E34BC067C7EDC15BA610F461860E1D17D135C8A379 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
20:05:17.0089 0x1094  Dnscache - ok
20:05:17.0135 0x1094  [ 1A7156DD1E850E9914E5E991E3225B94, 99FF0C7125B01FCB0B92DC44756AE8FAA486F2E7F38DC6204F7EFE5918F8480A ] dot3svc         C:\Windows\System32\dot3svc.dll
20:05:17.0259 0x1094  dot3svc - ok
20:05:17.0334 0x1094  [ 1583B39790DB3EAEC7EDB0CB0140C708, F94F9AE7054A38602CD25D4E10FE7C7B574BD9ED8440C3FDAA7275A1D1E663E7 ] DPS             C:\Windows\system32\dps.dll
20:05:17.0475 0x1094  DPS - ok
20:05:17.0519 0x1094  [ F1A78A98CFC2EE02144C6BEC945447E6, D2E2AA13BE6319F967002476A5D3CF09B1B44350576DD8E1C1C531854F53B488 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
20:05:17.0705 0x1094  drmkaud - ok
20:05:17.0977 0x1094  [ 362CCEF305F45829316D62D3410F2062, 35033749E9B6B5AFC9C8C305F4AA1597E9776D465E7BBC24A20E836B7BEF0D73 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
20:05:18.0102 0x1094  DXGKrnl - ok
20:05:18.0253 0x1094  [ 264CEE7B031A9D6C827F3D0CB031F2FE, 50CAD28A73D29E7E04A45330146CF713BA17101215955009121E36D43CD5C536 ] E1G60           C:\Windows\system32\DRIVERS\E1G6032E.sys
20:05:18.0407 0x1094  E1G60 - ok
20:05:18.0496 0x1094  [ C2303883FD9BE49DC36A6400643002EA, F062D1D6D503CF5195BDE8C1DC75B541F559CB8175ADABCDB7690E9F1CA3EA4E ] EapHost         C:\Windows\System32\eapsvc.dll
20:05:18.0579 0x1094  EapHost - ok
20:05:18.0633 0x1094  [ 5F94962BE5A62DB6E447FF6470C4F48A, D00F9B3315DE8610BBE93FFD3CA3E2CF5B10697C518FC25FA4274CC6894D022B ] Ecache          C:\Windows\system32\drivers\ecache.sys
20:05:18.0680 0x1094  Ecache - ok
20:05:18.0857 0x1094  [ 14CE384D2E27B64C256BDA4DC39C312D, D5FA9C2BB162F1C22E419D33671B8202AAC245A87F6B183B97F83F5BFA165B41 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
20:05:19.0007 0x1094  ehRecvr - ok
20:05:19.0147 0x1094  [ B93159C1313D66FDFBBE876F5189CD52, 51E39160EA56F6B08449267EDF2A0F604612663768D2348DE23554AB07BDBB62 ] ehSched         C:\Windows\ehome\ehsched.exe
20:05:19.0209 0x1094  ehSched - ok
20:05:19.0245 0x1094  [ F5EE2527D74449868E3C3227A59BCD28, 11640E97EE9D8F9A5DC3FEA6BA7A737AA796A7235C7F5C7EF1ABFB51C9D730D3 ] ehstart         C:\Windows\ehome\ehstart.dll
20:05:19.0315 0x1094  ehstart - ok
20:05:19.0405 0x1094  [ C4636D6E10469404AB5308D9FD45ED07, 367D958D19F672395462206F27C1E138386C2F37B0FA77546F4217CF16D05C84 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
20:05:19.0477 0x1094  elxstor - ok
20:05:19.0595 0x1094  [ A9B18B63A4FD6BAAB83326706D857FAB, 7721CC67C0F8CE3060D0EB35A10E4ADC1E3CB470C0797B17D606060C270F96D7 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
20:05:19.0766 0x1094  EMDMgmt - ok
20:05:19.0811 0x1094  [ BC3A58E938BB277E46BF4B3003B01ABD, 2BB054E632A96951DAB25B3BE8541AEC1B97A7739FC8D0E34BE8B9295600C8FC ] ErrDev          C:\Windows\system32\drivers\errdev.sys
20:05:19.0952 0x1094  ErrDev - ok
20:05:20.0062 0x1094  [ E12F22B73F153DECE721CD45EC05B4AF, 41887EEF4BB024329B4079AD50FC5FB705F0EB8BAF6C93A8242DC2A73D3AFD86 ] EventSystem     C:\Windows\system32\es.dll
20:05:20.0262 0x1094  EventSystem - ok
20:05:20.0354 0x1094  [ 486844F47B6636044A42454614ED4523, 3E24E78584B199C0FAA59613EEB7DF67B3B878B277A0130C7A3FF608C130BA2F ] exfat           C:\Windows\system32\drivers\exfat.sys
20:05:20.0460 0x1094  exfat - ok
20:05:20.0528 0x1094  [ 1A4BEE34277784619DDAF0422C0C6E23, 3223E1B5DD4866D8E09F1B465FF82C911DDEE5B01B084543086E47B11D2AEA77 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
20:05:20.0715 0x1094  fastfat - ok
20:05:20.0769 0x1094  [ 81B79B6DF71FA1D2C6D688D830616E39, 62F8BC0DB918A49B10A5BE1724A2E2F17FA7D8208D5D86822FACB2DCD97B3591 ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
20:05:20.0874 0x1094  fdc - ok
20:05:20.0913 0x1094  [ BB9267ACACD8B7533DD936C34A0CBA5E, 32DE6E10ABA540D62F0D8AE30DE8769D7BF29E547838BEBE67C04183CC0B32C7 ] fdPHost         C:\Windows\system32\fdPHost.dll
20:05:20.0982 0x1094  fdPHost - ok
20:05:21.0019 0x1094  [ 300C80931EABBE1DB7591C516EFE8D0F, F031DA96B06B6FA8E0AD56D5E10E5A5882765C3FF258A4DE06A47EC34829FF04 ] FDResPub        C:\Windows\system32\fdrespub.dll
20:05:21.0139 0x1094  FDResPub - ok
20:05:21.0189 0x1094  [ 457B7D1D533E4BD62A99AED9C7BB4C59, 3933907DE163F8D3A81ED25169B693D723296C437C7C990BFE9DEFD60F7635FD ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
20:05:21.0229 0x1094  FileInfo - ok
20:05:21.0285 0x1094  [ D421327FD6EFCCAF884A54C58E1B0D7F, C2F3B72EA36BA8B74A30E128C088307CA768FDBE232BFA216CD78B0F9B7AF18A ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
20:05:21.0503 0x1094  Filetrace - ok
20:05:21.0537 0x1094  [ 230923EA2B80F79B0F88D90F87B87EBD, 1F3287970FEC73011F3B675C447BF0CA35416490D4740C6960595B091181059C ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
20:05:21.0840 0x1094  flpydisk - ok
20:05:21.0915 0x1094  [ E3041BC26D6930D61F42AEDB79C91720, 3556C033BB78445EC8B2F98A82455914764AFC70CBFF634DDBD3539885A1E457 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
20:05:21.0982 0x1094  FltMgr - ok
20:05:22.0144 0x1094  [ F937F278E44138C0386FA1DE69B1F72B, 49180522CCCB5377B5B3A7EF8B9697FBE19A1E5D84BC282D24C39B3D52698851 ] FontCache       C:\Windows\system32\FntCache.dll
20:05:22.0275 0x1094  FontCache - ok
20:05:22.0331 0x1094  [ BC5B0BE5AF3510B0FD8C140EE42C6D3E, B21CA5F14BDB6CFD97A24C28BB2AD0D704C46058F13B01FF4203514FE8B92591 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:05:22.0346 0x1094  FontCache3.0.0.0 - ok
20:05:22.0374 0x1094  [ 5779B86CD8B32519FBECB136394D946A, 68A395CD2287D22CB5C8CFE5A3006A61AC0C3FDAADF166C93240FF83C0315DCF ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
20:05:22.0423 0x1094  Fs_Rec - ok
20:05:22.0478 0x1094  [ C8E416668D3DC2BE3D4FE4C79224997F, 7DBC8E7687179A649638F606C9584F2E8EC2065762997CDF151F9BB99FA8D535 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
20:05:22.0509 0x1094  gagp30kx - ok
20:05:22.0608 0x1094  [ 3EAFDD637416393722AA98E940DFD0A0, 7252B6F3A4A54755A322842D8E8E20F3E52C3205C41D5E6A4F01108A85A47B70 ] GameConsoleService C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
20:05:22.0647 0x1094  GameConsoleService - ok
20:05:22.0729 0x1094  [ A0E1B575BA8F504968CD40C0FAEB2384, F64A24A5A93F4E757882E97C65DA612F07A87F4DDD2E10C1AB0250AFA03BCEF1 ] gpsvc           C:\Windows\System32\gpsvc.dll
20:05:22.0830 0x1094  gpsvc - ok
20:05:22.0968 0x1094  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:05:22.0988 0x1094  gupdate - ok
20:05:23.0036 0x1094  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:05:23.0065 0x1094  gupdatem - ok
20:05:23.0116 0x1094  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
20:05:23.0170 0x1094  gusvc - ok
20:05:23.0251 0x1094  [ DF45F8142DC6DF9D18C39B3EFFBD0409, E0F04525530FF403C5A34B7E9A03CDE70B7BACE12E2E50103554E92AF374BD09 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:05:23.0419 0x1094  HdAudAddService - ok
20:05:23.0487 0x1094  [ F942C5820205F2FB453243EDFEC82A3D, 17A6A3DCF884FB524C93F2477D97E9F2B8E547709F8F2AEA93BEEA322B62E914 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
20:05:23.0609 0x1094  HDAudBus - ok
20:05:23.0648 0x1094  [ B4881C84A180E75B8C25DC1D726C375F, C0BEDBF43EFB0DD442A1D7985EA4A7493671648954B7D1840E30FB2FC46589A4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
20:05:23.0787 0x1094  HidBth - ok
20:05:23.0827 0x1094  [ 4E77A77E2C986E8F88F996BB3E1AD829, 1748676EB038A145405080B829DF4156C2596691BE5C67FD8269BE8D9351B400 ] HidIr           C:\Windows\system32\drivers\hidir.sys
20:05:23.0943 0x1094  HidIr - ok
20:05:23.0973 0x1094  [ 59361D38A297755D46A540E450202B2A, ED97800A3FF9B90EC58BC5122C42B53F46D9C157EFE488481E8677ED7058E33D ] hidserv         C:\Windows\system32\hidserv.dll
20:05:24.0048 0x1094  hidserv - ok
20:05:24.0072 0x1094  [ 443BDD2D30BB4F00795C797E2CF99EDF, BCE1A241AE5CCE3E1C65CCF07ECB4305C7106F2EFFD51F2C519EB00026B474C4 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
20:05:24.0127 0x1094  HidUsb - ok
20:05:24.0156 0x1094  [ B12F367EA39C0795FD57E31242CE1A5A, 498439FE4D1217211EB6C1AC35CDA5D59F3AE8F06AF5E41EE9FDB0DC559FBE27 ] hkmsvc          C:\Windows\system32\kmsvc.dll
20:05:24.0231 0x1094  hkmsvc - ok
20:05:24.0278 0x1094  [ D7109A1E6BD2DFDBCBA72A6BC626A13B, 6141B6645F4152A326ECA8AD0DD04CB38C9EDA395BDF6FF260AB17CB86FC4C87 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
20:05:24.0295 0x1094  HpCISSs - ok
20:05:24.0432 0x1094  [ 098F1E4E5C9CB5B0063A959063631610, 36B02A738413E4745978E3E90D9CE8ABC08376BEE411008A4312A752CB4A2E13 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
20:05:24.0514 0x1094  HTTP - ok
20:05:24.0545 0x1094  [ DA94C854CEA5FAC549D4E1F6E88349E8, 10BEB47DB90F55BD1792C2041E49ED13E4E52BCC11BE6599F6DA8D91B79CC8D1 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
20:05:24.0562 0x1094  i2omp - ok
20:05:24.0603 0x1094  [ CBB597659A2713CE0C9CC20C88C7591F, A2BAC75F7247D871842A32EAA7594D338E728D1BFEAEA3C1FCDBF65F007BC06A ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
20:05:24.0703 0x1094  i8042prt - ok
20:05:24.0751 0x1094  [ 3E3BF3627D886736D0B4E90054F929F6, 95A138B65DC9133E92F53A529C7AD897D8823EFAED343756549FDF6C8C749CD0 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
20:05:24.0834 0x1094  iaStorV - ok
20:05:24.0904 0x1094  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
20:05:24.0925 0x1094  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
20:05:27.0489 0x1094  Detect skipped due to KSN trusted
20:05:27.0489 0x1094  IDriverT - ok
20:05:27.0772 0x1094  [ A9AA69F749AC1D318151E77372CC83DB, 2A50A4D6ED22F5F6CB5DC56A639D904AD71E511DC744A6F6C3D1D4D39756AF31 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:05:28.0020 0x1094  idsvc - ok
20:05:28.0073 0x1094  [ 8C3951AD2FE886EF76C7B5027C3125D3, 85CF7231756E02BD9E5F4378F3FC794394A072B8028F27827F83ACE9EE554499 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
20:05:28.0102 0x1094  iirsp - ok
20:05:28.0161 0x1094  [ 0401A380C88754B2399F8043AC9B2BF9, BFF3B53FAFAE6622AA9F74BAA4A3D522C06E2D732B88916766603B9FE8D0D77F ] IKEEXT          C:\Windows\System32\ikeext.dll
20:05:28.0252 0x1094  IKEEXT - ok
20:05:28.0306 0x1094  [ DF797A12176F11B2D301C5B234BB200E, 384343636B21CA7EDF28EFD1B6728EAB1508CA49CE48FF3DC0D91DB843C0C73E ] intelide        C:\Windows\system32\drivers\intelide.sys
20:05:28.0339 0x1094  intelide - ok
20:05:28.0384 0x1094  [ BFD84AF32FA1BAD6231C4585CB469630, 33E0842F2D0879B02C115301174FCB19ED3AAF7B1B8E6284839CE16DE56476EA ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
20:05:28.0493 0x1094  intelppm - ok
20:05:28.0542 0x1094  [ 5624BC1BC5EEB49C0AB76A8114F05EA3, BD5AA534D8A923AF4D205EEC6DA55A3DC5F915E5F3223BF23F24C09824FA90B6 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
20:05:28.0643 0x1094  IPBusEnum - ok
20:05:28.0684 0x1094  [ D8AABC341311E4780D6FCE8C73C0AD81, 141E8032A934777567E6DAC35FB1C77C40D9B6EE477F17F872F35833A8F57F72 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:05:28.0748 0x1094  IpFilterDriver - ok
20:05:28.0812 0x1094  [ BF0DBFA9792C5C14FA00F61C75116C1B, 24C14DCAF57013F1C238E3C123279737420A714EB29CB69239C9838C9A269A59 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
20:05:28.0903 0x1094  iphlpsvc - ok
20:05:28.0914 0x1094  IpInIp - ok
20:05:28.0962 0x1094  [ 9C2EE2E6E5A7203BFAE15C299475EC67, E51628ECAB9CCCBCE02801C5E71406487A280765FEE318D14B0C227141B87658 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
20:05:29.0033 0x1094  IPMIDRV - ok
20:05:29.0067 0x1094  [ B7E6212F581EA5F6AB0C3A6CEEEB89BE, C29D7F392116BB09F7047A90702331F200DACFB3C94E7F912932971E0B7F0413 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
20:05:29.0159 0x1094  IPNAT - ok
20:05:29.0188 0x1094  [ 8C42CA155343A2F11D29FECA67FAA88D, 699F06D25C5F270CE1194F4D350CB0BE22C6AB609EECF35D066C034AC380BEE3 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
20:05:29.0235 0x1094  IRENUM - ok
20:05:29.0294 0x1094  [ 0672BFCEDC6FC468A2B0500D81437F4F, A0322B569C309F258684AFECCD52924A33F363186261730469245B7FA357C645 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
20:05:29.0313 0x1094  isapnp - ok
20:05:29.0369 0x1094  [ E4FDF99599F27EC25D2CF6D754243520, 9139E708EE30F10652C9A458BD58B0343A3C05E84CD3E71FA0B0E4123503CF7B ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
20:05:29.0405 0x1094  iScsiPrt - ok
20:05:29.0420 0x1094  [ 63C766CDC609FF8206CB447A65ABBA4A, D9CA006FA852C95E90E8A0837E296FCBFD76246DA8AFDE563863D5F95BDFEC52 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
20:05:29.0436 0x1094  iteatapi - ok
20:05:29.0464 0x1094  [ 1281FE73B17664631D12F643CBEA3F59, B27571A0348CDF81DC102A61712CBA9A4AF7AC0015A7702B0DE73AD4E4646853 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
20:05:29.0480 0x1094  iteraid - ok
20:05:29.0581 0x1094  [ 957135960E7533EA5C7EA0BFB34F8EFD, 036B11D7639C49F02A6C15022BC9629BAE023B7FE1F86451F12B0D5C92D5B57E ] jswpsapi        C:\Program Files (x86)\Jumpstart\jswpsapi.exe
20:05:29.0833 0x1094  jswpsapi - detected UnsignedFile.Multi.Generic ( 1 )
20:05:32.0515 0x1094  Detect skipped due to KSN trusted
20:05:32.0516 0x1094  jswpsapi - ok
20:05:32.0574 0x1094  [ 9D86C5091209CA4BD3762BED6F654501, 7396D4D9B25097DB22BD067FA8E58260AD31D4225A30DAA0F2CCFC43796741C3 ] JSWPSLWF        C:\Windows\system32\DRIVERS\jswpslwfx.sys
20:05:32.0698 0x1094  JSWPSLWF - ok
20:05:32.0780 0x1094  [ 423696F3BA6472DD17699209B933BC26, 00C2EAA1A8E9D422D178B7678598743234930C1858D76C632F079EF789BB56C3 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
20:05:32.0833 0x1094  kbdclass - ok
20:05:32.0879 0x1094  [ DBDF75D51464FBC47D0104EC3D572C05, E392EE961E734620245874C7700D56621A1A990C45DF5CE0B7D270BA708F255E ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
20:05:32.0973 0x1094  kbdhid - ok
20:05:33.0042 0x1094  [ 260BF9C43EE12C6898A9F5AAB0FB0E5D, 6585A87CE55EE5C51B18DF86E8EDFC6A909D96C87522FF4183F8BA9355E8DD44 ] KeyIso          C:\Windows\system32\lsass.exe
20:05:33.0144 0x1094  KeyIso - ok
20:05:33.0256 0x1094  [ 7C999F96B239E214154DB3C808E6736A, A043262E6971E67510C8D4CA95F04DF82DFE6409160F39C924104D85F76C52D7 ] KR10I64         C:\Windows\system32\drivers\kr10i64.sys
20:05:33.0384 0x1094  KR10I64 - ok
20:05:33.0439 0x1094  [ 8CB9A9164D4E789424F943FA718FA3F2, 7B102ED8D39D981D6D61591272EA24DBE8E85E543E3290272485B59F9FA5CE60 ] KR10N64         C:\Windows\system32\drivers\kr10n64.sys
20:05:33.0521 0x1094  KR10N64 - ok
20:05:33.0767 0x1094  [ 88956AD9FA510848AD176777A6C6C1F5, 8F2FBF7E70F836C2C11EE5ABCAFE3E51DC26E953DDFBEE3C1B4AA8E58EBDCF5E ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
20:05:33.0863 0x1094  KSecDD - ok
20:05:33.0909 0x1094  [ 1D419CF43DB29396ECD7113D129D94EB, 21ECCE9D17F055C7B5066110864E10C99291CE50B389C545371333904CE2DBB5 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
20:05:34.0030 0x1094  ksthunk - ok
20:05:34.0107 0x1094  [ 1FAF6926F3416D3DA05C5B265491BDAE, 3989E18522691CC3820092033E00ED39D08861DFB369AA0DFFF4B379E48EA1F0 ] KtmRm           C:\Windows\system32\msdtckrm.dll
20:05:34.0222 0x1094  KtmRm - ok
20:05:34.0264 0x1094  [ 50C7A3CB427E9BB5ED0708A669956AB5, 3DAD1C01AE58FE2C6134283B19118E2F3C884DDFFBAE4A46B7B5E4FB1A2567A1 ] LanmanServer    C:\Windows\system32\srvsvc.dll
20:05:34.0325 0x1094  LanmanServer - ok
20:05:34.0372 0x1094  [ CAF86FC1388BE1E470F1A7B43E348ADB, 9E9AE0B617D1031E8462524802A2D997AE7C944A7D00D403FF903145A7FEB761 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:05:34.0406 0x1094  LanmanWorkstation - ok
20:05:34.0436 0x1094  [ 96ECE2659B6654C10A0C310AE3A6D02C, 3322E87B9F64C3ACBCB634F2390AAB212FA7695383BF01F0092A803871BF19B2 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
20:05:34.0525 0x1094  lltdio - ok
20:05:34.0598 0x1094  [ 961CCBD0B1CCB5675D64976FAE37D092, 258378BE76A13E4368C9587E6A22727721E4B267B0D26D3D3E333B3B2A5A0611 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
20:05:34.0838 0x1094  lltdsvc - ok
20:05:34.0879 0x1094  [ A47F8080CACC23C91FE823AD19AA5612, 161575406D158D6D5C9220F1E82C0CC19108C74ADC35C509BAF9B0C414EFD8EE ] lmhosts         C:\Windows\System32\lmhsvc.dll
20:05:34.0990 0x1094  lmhosts - ok
20:05:35.0071 0x1094  [ ACBE1AF32D3123E330A07BFBC5EC4A9B, 0E17E4DD30B5AF8F269EF8EA003836C9E16273262A050B9BE3ED802DD3AC9319 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
20:05:35.0107 0x1094  LSI_FC - ok
20:05:35.0157 0x1094  [ 799FFB2FC4729FA46D2157C0065B3525, AB462A34D061C113DA12641C45159A58D0AEA1C440233D061A20DF99586CFA93 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
20:05:35.0178 0x1094  LSI_SAS - ok
20:05:35.0219 0x1094  [ F445FF1DAAD8A226366BFAF42551226B, 92B63E15363F1EAE8A54D4E74ED21669D0A9FE99C654671556C58456228278B1 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
20:05:35.0249 0x1094  LSI_SCSI - ok
20:05:35.0282 0x1094  [ 52F87B9CC8932C2A7375C3B2A9BE5E3E, 2EB22DD418D4934BDD22C5DB49D5D06178EC0419AB5CC28DD544CA91823987B0 ] luafv           C:\Windows\system32\drivers\luafv.sys
20:05:35.0378 0x1094  luafv - ok
20:05:35.0414 0x1094  [ 76A58DF02BD4EA29F189B82D0BEF17F8, B3A96AABE050BB332ECD9AF7C35D08B468AC459D30FF4D49B609BA3F95ECEEDA ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
20:05:35.0439 0x1094  Mcx2Svc - ok
20:05:35.0484 0x1094  [ 5C5CD6AACED32FB26C3FB34B3DCF972F, 34A66C21FA79800D3CDE933CFA71343218F94D67AAE763EA0B53AC49060CB6D0 ] megasas         C:\Windows\system32\drivers\megasas.sys
20:05:35.0506 0x1094  megasas - ok
20:05:35.0587 0x1094  [ 859BC2436B076C77C159ED694ACFE8F8, 4AEA57A8B9EACEC1B8DED3ECC95621C56E6D65CFE2DA9F07DAF7C7BAD132B624 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
20:05:35.0644 0x1094  MegaSR - ok
20:05:35.0678 0x1094  [ 3CBE4995E80E13CCFBC42E5DCF3AC81A, 18B0E3E83E41C80809E8140F4C90AB051566C84DD891EA411746EA74E6EAF053 ] MMCSS           C:\Windows\system32\mmcss.dll
20:05:35.0752 0x1094  MMCSS - ok
20:05:35.0771 0x1094  [ 59848D5CC74606F0EE7557983BB73C2E, EA6ACF0619DE1E4272AEDC69F2E66E29DA499E8E8094243C9EF735FD8369229D ] Modem           C:\Windows\system32\drivers\modem.sys
20:05:35.0840 0x1094  Modem - ok
20:05:35.0878 0x1094  [ C247CC2A57E0A0C8C6DCCF7807B3E9E5, 357811D1B8F70828F6432879F59DAB916FBB55673B3473D879382DE33CFB3FAF ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
20:05:35.0927 0x1094  monitor - ok
20:05:35.0952 0x1094  [ 9367304E5E412B120CF5F4EA14E4E4F1, F87EBACEE27A50E6610FDCB4BD3001C35A99FEE6D63D643FF2CBF0D484CD082C ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
20:05:35.0981 0x1094  mouclass - ok
20:05:36.0016 0x1094  [ C2C2BD5C5CE5AAF786DDD74B75D2AC69, B77E4A7511923E7BD35A177A40B4E461AC9CB050D6F0575D4799DEF85DA6DA38 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
20:05:36.0084 0x1094  mouhid - ok
20:05:36.0129 0x1094  [ 11BC9B1E8801B01F7F6ADB9EAD30019B, 1BAF820C0AB1B70A114E767B2155A58BF86CD0D9CF582813C1635A86BE3A7A05 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
20:05:36.0150 0x1094  MountMgr - ok
20:05:36.0207 0x1094  [ 26EA1DAD601EE3ACAC301D66F07BA219, C9594BB15D53D4AC2156CCCD2DB65B2C20620F1F60DA85F48D1586FC10028096 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:05:36.0230 0x1094  MozillaMaintenance - ok
20:05:36.0274 0x1094  [ 9EB89625A82AC961F25E7C865947BF9A, 91DB9530CDE883DC60BE621AC4210ACD069631D9466E37411D9D6AEE587098D9 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
20:05:36.0304 0x1094  MpFilter - ok
20:05:36.0368 0x1094  [ F8276EB8698142884498A528DFEA8478, C0FF504F721F1D00F42CFE783D4F32C6728518F64646F5C5C11BA3A4824815BB ] mpio            C:\Windows\system32\drivers\mpio.sys
20:05:36.0399 0x1094  mpio - ok
20:05:36.0432 0x1094  [ C92B9ABDB65A5991E00C28F13491DBA2, D1233381A9E4262F0AB396BBDB7DE402D4370805E11EB8A118C846F6E9474098 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
20:05:36.0484 0x1094  mpsdrv - ok
20:05:36.0556 0x1094  [ 897E3BAF68BA406A61682AE39C83900C, 13F61D5C22BED061BE7C2669CCCAA2BAD4A0CE83800DF57A50306DE0A476FC27 ] MpsSvc          C:\Windows\system32\mpssvc.dll
20:05:36.0625 0x1094  MpsSvc - ok
20:05:36.0658 0x1094  [ 3C200630A89EF2C0864D515B7A75802E, AA4A312E7A28FCE7A944747BADB809CAAD3D67899EBBE663D473621DB25B140A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
20:05:36.0685 0x1094  Mraid35x - ok
20:05:36.0733 0x1094  [ 7C1DE4AA96DC0C071611F9E7DE02A68D, 8B248A82324FB23C64D41FA91BCC22093DE44C48D688E5995C484A7072A6EC08 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
20:05:36.0761 0x1094  MRxDAV - ok
20:05:36.0778 0x1094  [ 1485811B320FF8C7EDAD1CAEBB1C6C2B, 9F157AAA1A793EF7E52817E4126B774C17FFA0036DADCF10A024FDC068F94F67 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
20:05:36.0854 0x1094  mrxsmb - ok
20:05:36.0894 0x1094  [ 3B929A60C833FC615FD97FBA82BC7632, 40EEBEB43F42A1A37FAA529E0C21984426F90C1EEFE1EF9BB2F696164595F91D ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:05:36.0954 0x1094  mrxsmb10 - ok
20:05:36.0982 0x1094  [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3, 197F70E24D2BBDEC35C2D5BC442267ACC4C5AE3FD5BB30A0928976BE9758C942 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:05:37.0036 0x1094  mrxsmb20 - ok
20:05:37.0324 0x1094  [ AA459F2AB3AB603C357FF117CAE3D818, C633178227A0C446920908967E6F2F4979BE77209C7377B9A41B90F5F31B41B3 ] msahci          C:\Windows\system32\drivers\msahci.sys
20:05:37.0354 0x1094  msahci - ok
20:05:37.0503 0x1094  [ 264BBB4AAF312A485F0E44B65A6B7202, 1DF36540C77D5D885B6C2EE91F0446864D8E6D6CFED87A9ED0765E76FE05E102 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
20:05:37.0610 0x1094  msdsm - ok
20:05:37.0666 0x1094  [ 7EC02CE772F068ED0BEAFA3DA341A9BC, 3B5B4EA0BF1D1E57F4DF74A569304A5EE41821F5E2F352760B8C9CA82C6D8292 ] MSDTC           C:\Windows\System32\msdtc.exe
20:05:37.0761 0x1094  MSDTC - ok
20:05:37.0810 0x1094  [ 704F59BFC4512D2BB0146AEC31B10A7C, F7712944DDC192C47953D577BE31B79B4D11217305B1C3D0DCA31B1518CB8DCB ] Msfs            C:\Windows\system32\drivers\Msfs.sys
20:05:37.0881 0x1094  Msfs - ok
20:05:37.0942 0x1094  [ 00EBC952961664780D43DCA157E79B27, 4F8F5718D8574A128E0F6CD54C9BE59A93A7638A5689A8FF68D0C81D3E67808F ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
20:05:37.0958 0x1094  msisadrv - ok
20:05:38.0096 0x1094  [ 366B0C1F4478B519C181E37D43DCDA32, A98E2BC397FAD7D90653F55AC283CACAE7465D7F10A198D715046B1D896AF246 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
20:05:38.0200 0x1094  MSiSCSI - ok
20:05:38.0211 0x1094  msiserver - ok
20:05:38.0256 0x1094  [ 0EA73E498F53B96D83DBFCA074AD4CF8, E3DDE34FCFF272E06CD8DA836F8D79E2515885715D4A7CD7BF8D97D7A4E0E781 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
20:05:38.0351 0x1094  MSKSSRV - ok
20:05:38.0461 0x1094  [ 89F2AEDC2788696702141AB82C3E7866, E166CBD8D3C708737C37172221945D8E56C25C2CC750889C3CE14AA2DE750F33 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
20:05:38.0524 0x1094  MsMpSvc - ok
20:05:38.0605 0x1094  [ 52E59B7E992A58E740AA63F57EDBAE8B, A89F607B330BA1F42CA9FF01EF289BBD088350CF376568E58CB9865F1DA6CD72 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
20:05:38.0782 0x1094  MSPCLOCK - ok
20:05:38.0836 0x1094  [ 49084A75BAE043AE02D5B44D02991BB2, 4CD2692D191035CE9D18F4D21F054FF8C3F9CF2734464EA33EAB480A28AD447F ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
20:05:39.0016 0x1094  MSPQM - ok
20:05:39.0076 0x1094  [ DC6CCF440CDEDE4293DB41C37A5060A5, 768D08A67508E1CE69B67642A5E5A639C0DD1E93C956C56ECC5A56B0E502C953 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
20:05:39.0136 0x1094  MsRPC - ok
20:05:39.0169 0x1094  [ 855796E59DF77EA93AF46F20155BF55B, 75DFCEE16A9D94EDF74295B9686D92552817E8A00958917CB0E17089EDCF6A97 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
20:05:39.0186 0x1094  mssmbios - ok
20:05:39.0270 0x1094  [ 86D632D75D05D5B7C7C043FA3564AE86, 96911FBC106B91E76598EE110B5147D4C55E42C9194E857F866B6B395E78D2CB ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
20:05:39.0345 0x1094  MSTEE - ok
20:05:39.0376 0x1094  [ 0CC49F78D8ACA0877D885F149084E543, 984DDCB52F0DFC1B26C6504FE500E8D9C2CA7F79ED34608AE9866A0915B8BA67 ] Mup             C:\Windows\system32\Drivers\mup.sys
20:05:39.0394 0x1094  Mup - ok
20:05:39.0448 0x1094  [ A5B10C845E7538C60C0F5D87A57CB3F5, 2B4E16702591C59BC2CA2B99DBB504BAB4F4EF0835B0D9C7453D340CBF0BDF16 ] napagent        C:\Windows\system32\qagentRT.dll
20:05:39.0506 0x1094  napagent - ok
20:05:39.0611 0x1094  [ 2007B826C4ACD94AE32232B41F0842B9, 6267D165C3C8C5F83194890A6DBF71226D4B891AECD1D06F7AEB5D738C3DC9CA ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
20:05:39.0728 0x1094  NativeWifiP - ok
20:05:39.0819 0x1094  [ 65950E07329FCEE8E6516B17C8D0ABB6, 4429D9FF9B6E376D28D8FA4906B7554DF566EC23E455E3166C496B579622F204 ] NDIS            C:\Windows\system32\drivers\ndis.sys
20:05:39.0925 0x1094  NDIS - ok
20:05:39.0984 0x1094  [ 64DF698A425478E321981431AC171334, C43177CB60F5D58E1FF7A31E9BE5DA7D92C4B25235867DD65BADC069EDF023F3 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
20:05:40.0085 0x1094  NdisTapi - ok
20:05:40.0131 0x1094  [ 8BAA43196D7B5BB972C9A6B2BBF61A19, 8AFFB26F6E8CF67F562818BBFE12FB448E4FCDF9B68858B625681565DE30DDC1 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
20:05:40.0256 0x1094  Ndisuio - ok
20:05:40.0356 0x1094  [ F8158771905260982CE724076419EF19, B86FFA790A30ED614A11C87F4D738C913EFC0924DC14750D544001D4E9556071 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
20:05:40.0463 0x1094  NdisWan - ok
20:05:40.0515 0x1094  [ 9CB77ED7CB72850253E973A2D6AFDF49, C3C15B317A7F7AE68B7BC62343962C47F075240F252727811DB4BEE443F9103F ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
20:05:40.0611 0x1094  NDProxy - ok
20:05:40.0644 0x1094  [ A499294F5029A7862ADC115BDA7371CE, 6BE0AAFE4EB59E056A929D6C1A009D8DFD547025481108CEFB12E5D6F86DBE14 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
20:05:40.0821 0x1094  NetBIOS - ok
20:05:40.0885 0x1094  [ FC2C792EBDDC8E28DF939D6A92C83D61, 9EDF8B56E2B47C31457074DA371B604E5F7EB2B3B5CD4688CBEEDD5B266D119B ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
20:05:40.0971 0x1094  netbt - ok
20:05:40.0998 0x1094  [ 260BF9C43EE12C6898A9F5AAB0FB0E5D, 6585A87CE55EE5C51B18DF86E8EDFC6A909D96C87522FF4183F8BA9355E8DD44 ] Netlogon        C:\Windows\system32\lsass.exe
20:05:41.0022 0x1094  Netlogon - ok
20:05:41.0135 0x1094  [ 9B63B29DEFC0F3115A559D2597BF5D75, 297319D3F2E97CB34464EA59D8FD96AC2B8B1A4F2AEE666937F16A041128021F ] Netman          C:\Windows\System32\netman.dll
20:05:41.0257 0x1094  Netman - ok
20:05:41.0313 0x1094  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:05:41.0340 0x1094  NetMsmqActivator - ok
20:05:41.0362 0x1094  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:05:41.0386 0x1094  NetPipeActivator - ok
20:05:41.0469 0x1094  [ 7846D0136CC2B264926A73047BA7688A, 6F56CC1B17095C378D98B58A92F9EDA2D009529DDB6F60E815D85C7606C8EDC0 ] netprofm        C:\Windows\System32\netprofm.dll
20:05:41.0590 0x1094  netprofm - ok
20:05:41.0610 0x1094  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:05:41.0636 0x1094  NetTcpActivator - ok
20:05:41.0650 0x1094  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:05:41.0681 0x1094  NetTcpPortSharing - ok
20:05:41.0721 0x1094  [ 4AC08BD6AF2DF42E0C3196D826C8AEA7, 8D7DE921E14BAF09D7E2704CFB2FB1C8A78A46DAF86CDF7A347C5D113A8C110B ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
20:05:41.0750 0x1094  nfrd960 - ok
20:05:41.0805 0x1094  [ C3E0696C3B42F694C5822776AA6FFFDF, 80C3DEC2C48500F96C9E677450EFC1ADA9FE9FBB70F4CC2D7D9244B1A515418B ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
20:05:41.0831 0x1094  NisDrv - ok
20:05:41.0868 0x1094  [ DCEE3592299B2229A0DB98CB415059A2, 709AAA095DF44DDCB6159CE1635AB05EC666D845445790E569F56B297DC64AC3 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
20:05:41.0917 0x1094  NisSrv - ok
20:05:41.0981 0x1094  [ F145BF4C4668E7E312069F81EF847CFC, C4926EFB41FE2813E90D83456C6CB8F3157D835391B443C7E26168F4E1D67DC7 ] NlaSvc          C:\Windows\System32\nlasvc.dll
20:05:42.0054 0x1094  NlaSvc - ok
20:05:42.0101 0x1094  [ B298874F8E0EA93F06EC40AA8D146478, 275D769E5EFD3153985DAF84C5B22B9D65428E09AB41099901ABDD03B3A2625D ] Npfs            C:\Windows\system32\drivers\Npfs.sys
20:05:42.0176 0x1094  Npfs - ok
20:05:42.0211 0x1094  [ ACB62BAA1C319B17752553DF3026EEEB, 5A309DF390A097245250BB64AD5F8575BECA601E0A122DDCB494C67D3D9EA089 ] nsi             C:\Windows\system32\nsisvc.dll
20:05:42.0331 0x1094  nsi - ok
20:05:42.0359 0x1094  [ 1523AF19EE8B030BA682F7A53537EAEB, B000630CE4B562D39B5EE4148409B2E01D8924D33D27607B24ADC901357E7AA5 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
20:05:42.0422 0x1094  nsiproxy - ok
20:05:43.0041 0x1094  [ 2ACCAA3C3C55370A32F17B3595E1A217, 8539A293A5E1EBA2CC0FA9E999099D3B6B035D41069398AE17D737BBE4D9FEA8 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
20:05:43.0267 0x1094  Ntfs - ok
20:05:43.0330 0x1094  [ DD5D684975352B85B52E3FD5347C20CB, BB03C50D5178643550C024130E20FD9A023AE110B3C85A2D6E18FB8DBB3A12E4 ] Null            C:\Windows\system32\drivers\Null.sys
20:05:43.0420 0x1094  Null - ok
20:05:43.0460 0x1094  [ 2C040B7ADA5B06F6FACADAC8514AA034, EF32F7C411090230ED1D95B2D01E8464DCC89D72EFD94BBC8DF6856D00B1A783 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
20:05:43.0498 0x1094  nvraid - ok
20:05:43.0516 0x1094  [ F7EA0FE82842D05EDA3EFDD376DBFDBA, 0ED0543A5331C0D8BBFD1BE3174482ED1B3EE70CA41CE8CE5C81977C37B3D129 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
20:05:43.0547 0x1094  nvstor - ok
20:05:43.0574 0x1094  [ 19067CA93075EF4823E3938A686F532F, 81339372E90CE9E2594461146A82B62452CF9DB3FF53381D30F6922059EDCF99 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
20:05:43.0622 0x1094  nv_agp - ok
20:05:43.0632 0x1094  NwlnkFlt - ok
20:05:43.0646 0x1094  NwlnkFwd - ok
20:05:43.0721 0x1094  [ D955D5DE998DB2476BF0892BE3A96C26, 3828FC1D4A4F9CD685E6D938B92370A602B84A3ACE2C9A674B3B59E633B0AE07 ] o2flash         C:\Program Files (x86)\O2Micro Flash Memory Card Driver\o2flash.exe
20:05:43.0730 0x1094  o2flash - detected UnsignedFile.Multi.Generic ( 1 )
20:05:46.0417 0x1094  Detect skipped due to KSN trusted
20:05:46.0417 0x1094  o2flash - ok
20:05:46.0629 0x1094  [ 6531DCED1F12F8863F5C335C4A89A02E, CC4DFCA4BCDC7E6F611C1630306CBC9FE146578B9C98E038587D694863889966 ] O2MDRDR         C:\Windows\system32\DRIVERS\o2mdx64.sys
20:05:46.0688 0x1094  O2MDRDR - ok
20:05:46.0745 0x1094  [ E91B345D7E8FFAF29164B81311623941, B4A90FACD0138B05D9ADDE303EAFC55A0A64B1DECCE66AC4774C53766EBEB4A6 ] O2SDRDR         C:\Windows\system32\DRIVERS\o2sdx64.sys
20:05:46.0769 0x1094  O2SDRDR - ok
20:05:47.0466 0x1094  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:05:47.0650 0x1094  odserv - ok
20:05:47.0784 0x1094  [ B5B1CE65AC15BBD11C0619E3EF7CFC28, E9AA27724A7576D1869FF861A498DB8AF79A7B297F10272F1D63E6CB88CD455B ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
20:05:47.0944 0x1094  ohci1394 - ok
20:05:48.0181 0x1094  [ CCF523B951AFAA0147F22E2A7AAE4976, 91314768DA140999E682D2A290D48B78BB25A35525EA12C1B1F9634D14602B2C ] OpenLibSys      C:\Program Files (x86)\NXP\FM Radio\OpenLibSysX64.sys
20:05:48.0305 0x1094  OpenLibSys - ok
20:05:48.0402 0x1094  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:05:48.0457 0x1094  ose - ok
20:05:48.0763 0x1094  [ 9AE31D2E1D15C10D91318E0EC149CEAC, CEA8A4AD1D6BB9C1ECBDE7A1946DD655104E20224436B96AD69A76F8E2B25680 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
20:05:49.0142 0x1094  p2pimsvc - ok
20:05:49.0738 0x1094  [ 9AE31D2E1D15C10D91318E0EC149CEAC, CEA8A4AD1D6BB9C1ECBDE7A1946DD655104E20224436B96AD69A76F8E2B25680 ] p2psvc          C:\Windows\system32\p2psvc.dll
20:05:49.0945 0x1094  p2psvc - ok
20:05:50.0155 0x1094  [ AECD57F94C887F58919F307C35498EA0, CD8E8B54A445EF0DC485D5F221588875C98328596F64EE03B2D8BD0B860504FB ] Parport         C:\Windows\system32\drivers\parport.sys
20:05:50.0494 0x1094  Parport - ok
20:05:50.0672 0x1094  [ B43751085E2ABE389DA466BC62A4B987, 167CB6B18B6B7B74A229A976833E1FBE6D51C9C0EB8A23C92FC2465B692DF383 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
20:05:50.0706 0x1094  partmgr - ok
20:05:50.0806 0x1094  [ 9AB157B374192FF276C1628FBDBA2B0E, E63E2EE1ABEEC5234F4F1318757EDB4A7567057B1DF1A2414C8698D47062B6AC ] PcaSvc          C:\Windows\System32\pcasvc.dll
20:05:51.0060 0x1094  PcaSvc - ok
20:05:51.0200 0x1094  [ 47AB1E0FC9D0E12BB53BA246E3A0906D, 82B452D614B535FAD3AFEEA06DFBBF8F7C5031563A2558CFA04F9B94C76E45DF ] pci             C:\Windows\system32\drivers\pci.sys
20:05:51.0304 0x1094  pci - ok
20:05:51.0349 0x1094  [ 2657F6C0B78C36D95034BE109336E382, C85CFDA57A64B7CC1BB09225C2F81629CEF21C5F25735B098F214397D6DE0D2C ] pciide          C:\Windows\system32\drivers\pciide.sys
20:05:51.0381 0x1094  pciide - ok
20:05:51.0584 0x1094  [ 037661F3D7C507C9993B7010CEEE6288, A7B415675B14FD755D0167BBA458A902AA9ABFC4343A1B887289D31DE8A55285 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
20:05:51.0636 0x1094  pcmcia - ok
20:05:51.0865 0x1094  [ 58865916F53592A61549B04941BFD80D, 3511AF2EFD06636E144C36ECA8C7AA1A33C269EDB10A6D879AA25D9E11359AA9 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
20:05:52.0397 0x1094  PEAUTH - ok
20:05:52.0911 0x1094  [ 0ED8727EA0172860F47258456C06CAEA, 3CDAA1044E412EC4303CEABD36A8C7BADA2D6C6692E09B8FE440709E3F4F0166 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
20:05:53.0072 0x1094  PerfHost - ok
20:05:53.0639 0x1094  [ 6DBF2AC2BDAFF355995AB25ECCC4CFE1, F2DD39F6B1489276A913FD62D6C068D79EABADC417D404143E3D2FF8C20CDE01 ] pinger          C:\TOSHIBA\IVP\ISM\pinger.exe
20:05:53.0916 0x1094  pinger - ok
20:05:54.0441 0x1094  [ E9E68C1A0F25CF4A7AC966EEA74EE89E, 6C6903A856C29AD690FDA1B74ADB2222C3453FBE2B364245FA61D53C77C586C0 ] pla             C:\Windows\system32\pla.dll
20:05:54.0654 0x1094  pla - ok
20:05:54.0710 0x1094  [ FE6B0F59215C9FD9F9D26539C58C8B82, 52CF8BE31A28430226D117EB80974AEAE5EA07F39DE881164232D44BF67FF752 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
20:05:54.0756 0x1094  PlugPlay - ok
20:05:54.0808 0x1094  [ 9AE31D2E1D15C10D91318E0EC149CEAC, CEA8A4AD1D6BB9C1ECBDE7A1946DD655104E20224436B96AD69A76F8E2B25680 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
20:05:54.0884 0x1094  PNRPAutoReg - ok
20:05:54.0925 0x1094  [ 9AE31D2E1D15C10D91318E0EC149CEAC, CEA8A4AD1D6BB9C1ECBDE7A1946DD655104E20224436B96AD69A76F8E2B25680 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
20:05:54.0994 0x1094  PNRPsvc - ok
20:05:55.0075 0x1094  [ 89A5560671C2D8B4A4B51F3E1AA069D8, 07DEE5D73DDE09F954E2E13BB5603F0033829B6199C81A7C1709D94AB92B351E ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
20:05:55.0128 0x1094  PolicyAgent - ok
20:05:55.0189 0x1094  [ 23386E9952025F5F21C368971E2E7301, F7241C1799A8AA0E9106B101B841670304DC695FD8D290C690CE0ED5C13BC514 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
20:05:55.0256 0x1094  PptpMiniport - ok
20:05:55.0284 0x1094  [ 5080E59ECEE0BC923F14018803AA7A01, 2E201511821AECCF056962399AFA3533ED765A3E7FD30E7B38A6D13837367E69 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
20:05:55.0346 0x1094  Processor - ok
20:05:55.0386 0x1094  [ E058CE4FC2449D8BFA14739C83B7FF2A, 6ACA086D5E0EF3C3EAEBD78010E50739BBA7CA05E937FFF3A4F2AD22FD57B54A ] ProfSvc         C:\Windows\system32\profsvc.dll
20:05:55.0425 0x1094  ProfSvc - ok
20:05:55.0444 0x1094  [ 260BF9C43EE12C6898A9F5AAB0FB0E5D, 6585A87CE55EE5C51B18DF86E8EDFC6A909D96C87522FF4183F8BA9355E8DD44 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:05:55.0461 0x1094  ProtectedStorage - ok
20:05:55.0516 0x1094  [ C5AB7F0809392D0DA027F4A2A81BFA31, B5BC9712AD93661A77AF4D67DB5F05C58A93CF7CDD6F7BA20568C0A9F4630321 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
20:05:55.0550 0x1094  PSched - ok
20:05:55.0577 0x1094  [ 030176BD0B4AAEA01A651B51EFE295BB, 96CB24C32E3288594BD916F6AEA254F7F55101A52446DBF420CC7DDC50599C2E ] QIOMem          C:\Windows\system32\DRIVERS\QIOMem.sys
20:05:55.0697 0x1094  QIOMem - ok
20:05:55.0836 0x1094  [ 0B83F4E681062F3839BE2EC1D98FD94A, 47E1B8014C59981693F5544872AF00383528AAEF0C6FE9AE8C45A6359EFB067D ] ql2300          C:\Windows\system32\drivers\ql2300.sys
20:05:55.0968 0x1094  ql2300 - ok
20:05:56.0010 0x1094  [ E1C80F8D4D1E39EF9595809C1369BF2A, 5C18F8366049C690FC8AA4A992AA0765A6607F72E0EF889A5F3757E59FB1C143 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
20:05:56.0034 0x1094  ql40xx - ok
20:05:56.0088 0x1094  [ 90574842C3DA781E279061A3EFF91F07, F87DE7355DAA4FACF2126A0427C08BAAD9E647E0B02EE5447746BE969B28DA8D ] QWAVE           C:\Windows\system32\qwave.dll
20:05:56.0146 0x1094  QWAVE - ok
20:05:56.0167 0x1094  [ E8D76EDAB77EC9C634C27B8EAC33ADC5, 171A3C5D5C3C5845C3BF9A4BCD88E744B025C910AC2F528D0E7D66F173FF0BED ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
20:05:56.0218 0x1094  QWAVEdrv - ok
20:05:56.0257 0x1094  [ 1013B3B663A56D3DDD784F581C1BD005, 36B83F234C2D6A6112BC8B5EF0AB5075EE98AC0BED702C37E4C1C3D17EB49956 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
20:05:56.0305 0x1094  RasAcd - ok
20:05:56.0357 0x1094  [ B2AE18F847D07F0044404DDF7CB04497, 24B1D5E1D0621160640264656E3D447C611DEE1B0EE308971EF85F0AC3D9F7DD ] RasAuto         C:\Windows\System32\rasauto.dll
20:05:56.0501 0x1094  RasAuto - ok
20:05:56.0561 0x1094  [ AC7BC4D42A7E558718DFDEC599BBFC2C, E059EB9472FDDB73AF09FFEBA58D8284AFCDAB1516E0C5759980E60C892F8126 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
20:05:56.0675 0x1094  Rasl2tp - ok
20:05:56.0727 0x1094  [ 3AD83E4046C43BE510DE681588ACB8AF, C5445A23F35395B3EA3974C0D5E314E23D900C694D31F7B7A83FE9027D95A91C ] RasMan          C:\Windows\System32\rasmans.dll
20:05:56.0842 0x1094  RasMan - ok
20:05:56.0924 0x1094  [ 4517FBF8B42524AFE4EDE1DE102AAE3E, F01C8A773A637B66192BD16DDE467CAECC6E62853DBDB507FF3FC67B4B388988 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
20:05:57.0027 0x1094  RasPppoe - ok
20:05:57.0074 0x1094  [ C6A593B51F34C33E5474539544072527, 8182C1D15CDC164363D3DD355197160167A00BA9FA833AA444317D06344EF7CE ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
20:05:57.0159 0x1094  RasSstp - ok
20:05:57.0221 0x1094  [ 322DB5C6B55E8D8EE8D6F358B2AAABB1, 07B89F701594F680F50A885B923521763A6131104CEE63D422E1C359C23AE2F6 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
20:05:57.0304 0x1094  rdbss - ok
20:05:57.0377 0x1094  [ 603900CC05F6BE65CCBF373800AF3716, 83B010D51D1087673CF15FD0A992FD91CC910A073FEA9A8F20F6124B6E5489F2 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
20:05:57.0444 0x1094  RDPCDD - ok
20:05:57.0505 0x1094  [ C045D1FB111C28DF0D1BE8D4BDA22C06, 572986C93B982387EE94797A1EDE1C6C444B0F1078AC8201099452BFA021458F ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
20:05:57.0658 0x1094  rdpdr - ok
20:05:57.0733 0x1094  [ CAB9421DAF3D97B33D0D055858E2C3AB, 66C353CD310A91FAB0D0871ACCE71110595B63536560D0331DA70B1E33AC45BE ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
20:05:57.0818 0x1094  RDPENCDD - ok
20:05:57.0877 0x1094  [ AE4BD9E1C33D351D8E607FC81F15160C, AD785CA72B7C6EB9F94B2E797C758C0F804DB26EE056DDC6D4F85BB562A02EA4 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
20:05:57.0968 0x1094  RDPWD - ok
20:05:58.0019 0x1094  [ C612B9557DA73F70D41F8A6FBC8E5344, D7D11F202066F848FBD3F26D9FF915C7F3D68F30631393B2049F3AC5A40FD108 ] RemoteAccess    C:\Windows\System32\mprdim.dll
20:05:58.0122 0x1094  RemoteAccess - ok
20:05:58.0207 0x1094  [ 44B9D8EC2F3EF3A0EFB00857AF70D861, A45D8024A242456A73337C91663A3E1633BF163234CDFD5DF86840F31FFFE84D ] RemoteRegistry  C:\Windows\system32\regsvc.dll
20:05:58.0294 0x1094  RemoteRegistry - ok
20:05:58.0340 0x1094  [ F46C457840D4B7A4DAAFEE739CE04102, 94E946036240B3BAFF17C4A49745E29E492ABBC7BE5110741B212DF4D7F45B84 ] RpcLocator      C:\Windows\system32\locator.exe
20:05:58.0404 0x1094  RpcLocator - ok
20:05:58.0483 0x1094  [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF, 3BE4B8EE22FA55D3A17D3718781C8BCA631C78F7928092561F6B79BB60E7D7FE ] RpcSs           C:\Windows\system32\rpcss.dll
20:05:58.0601 0x1094  RpcSs - ok
20:05:58.0654 0x1094  [ 22A9CB08B1A6707C1550C6BF099AAE73, 46A9D40A03DC0B6C93274C0C1CDB132B2339E76E77CAB0F12AEDAD4C31822B91 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
20:05:58.0740 0x1094  rspndr - ok
20:05:58.0778 0x1094  [ 260BF9C43EE12C6898A9F5AAB0FB0E5D, 6585A87CE55EE5C51B18DF86E8EDFC6A909D96C87522FF4183F8BA9355E8DD44 ] SamSs           C:\Windows\system32\lsass.exe
20:05:58.0808 0x1094  SamSs - ok
20:05:58.0851 0x1094  [ CD9C693589C60AD59BBBCFB0E524E01B, F9EBD4FF4C712A563B1120D123012E41105D31402BE45D6F8C8DA71155D64ECB ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
20:05:58.0880 0x1094  sbp2port - ok
20:05:59.0085 0x1094  [ FD1CDCF108D5EF3366F00D18B70FB89B, 5BCE3A9D5DC0B6937A734264C5B8DE0E6B8F77A869A118F94D57E662AAB28FE2 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
20:05:59.0194 0x1094  SCardSvr - ok
20:05:59.0399 0x1094  [ 0F838C811AD295D2A4489B9993096C63, 3DF2F973359249735810CB5AD52E05126A93A1C7D9F6274ACB018A0A125846BD ] Schedule        C:\Windows\system32\schedsvc.dll
20:05:59.0492 0x1094  Schedule - ok
20:05:59.0535 0x1094  [ 5A268127633C7EE2A7FB87F39D748D56, 45C530A0EE0108543A75B9427F77EBB5E8350AE16C235763B6F32E72CE15C449 ] SCPolicySvc     C:\Windows\System32\certprop.dll
20:05:59.0569 0x1094  SCPolicySvc - ok
20:05:59.0616 0x1094  [ B42EE50F7D24F837F925332EB349ECA5, 5DA793DADA7E244A48FFE3249A0271974BA31839A70173F2F14BE80673C86014 ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
20:05:59.0714 0x1094  sdbus - ok
20:05:59.0756 0x1094  [ 4FF71B076A7760FE75EA5AE2D0EE0018, DDDBC9530120F8C1AB449076F6F06F74354149B4C458E6682F957628EE795DE8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
20:05:59.0817 0x1094  SDRSVC - ok
20:05:59.0846 0x1094  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
20:06:00.0027 0x1094  secdrv - ok
20:06:00.0089 0x1094  [ 5ACDCBC67FCF894A1815B9F96D704490, FE0247A8BEDB860EBD46A9D49C641D0B9AA24EE34132CDDADC9F5A605238FDA7 ] seclogon        C:\Windows\system32\seclogon.dll
20:06:00.0186 0x1094  seclogon - ok
20:06:00.0215 0x1094  [ 90973A64B96CD647FF81C79443618EED, 1D3CB7F724B7EADA6443DF07B258EE7FB7FEC92C2A7A9D3C57F6A220EF0DDDC4 ] SENS            C:\Windows\System32\sens.dll
20:06:00.0281 0x1094  SENS - ok
20:06:00.0325 0x1094  [ F71BFE7AC6C52273B7C82CBF1BB2A222, 8C7F0E426B266DBBFE4BBE3333A33C338209BD8BE0E434A98D0D2CFD78D3F758 ] Serenum         C:\Windows\system32\drivers\serenum.sys
20:06:00.0410 0x1094  Serenum - ok
20:06:00.0436 0x1094  [ E62FAC91EE288DB29A9696A9D279929C, 9B6A420556532F7F8D55FB6580A592A43BEA579A068B970C741A23DB079ECAD1 ] Serial          C:\Windows\system32\drivers\serial.sys
20:06:00.0542 0x1094  Serial - ok
20:06:00.0563 0x1094  [ A842F04833684BCEEA7336211BE478DF, 9D964AEA237C44898098AC9C2D043F00C66EDA7D73C381D616737C01A9D0FF45 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
20:06:00.0636 0x1094  sermouse - ok
20:06:00.0708 0x1094  [ A8E4A4407A09F35DCCC3771AF590B0C4, F56ECE42CE81098FCCBCDFBBF006C3FB9EDD29C62F03C4EAE012EE690669481B ] SessionEnv      C:\Windows\system32\sessenv.dll
20:06:00.0779 0x1094  SessionEnv - ok
20:06:00.0876 0x1094  [ 14D4B4465193A87C127933978E8C4106, A5C3F2F09E9A0715529B05AC1020EF0F432121E129447795257087E0D6A812FC ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
20:06:00.0965 0x1094  sffdisk - ok
20:06:00.0993 0x1094  [ 7073AEE3F82F3D598E3825962AA98AB2, 82A959A0970CBA8CC16D44736ED12158E59E138484F3F53EBDD3A4C02DA3700D ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
20:06:01.0065 0x1094  sffp_mmc - ok
20:06:01.0102 0x1094  [ 35E59EBE4A01A0532ED67975161C7B82, 4F4296B8903FCD06439CC8BF93C703852E523834F09CF9121FDA729A988AF11B ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
20:06:01.0168 0x1094  sffp_sd - ok
20:06:01.0190 0x1094  [ 6B7838C94135768BD455CBDC23E39E5F, 868E054ED546479DEAD7C2834C7AB080820522C16F5B4BEF0F3B279A33ABA9C8 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
20:06:01.0280 0x1094  sfloppy - ok
20:06:01.0345 0x1094  [ 4C5AEE179DA7E1EE9A9CCB9DA289AF34, 9659C7B5046DE2C0416A74FDE6F798C3E78D38327CB71BAE49D57A8347A9097D ] SharedAccess    C:\Windows\System32\ipnathlp.dll
20:06:01.0431 0x1094  SharedAccess - ok
20:06:01.0490 0x1094  [ 56793271ECDEDD350C5ADD305603E963, 7A29407C1C550FF3A6A3544811ABD971E9C760B984A7E64D5A1440C69D6AF483 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:06:01.0560 0x1094  ShellHWDetection - ok
20:06:01.0588 0x1094  [ 7A5DE502AEB719D4594C6471060A78B3, E8E16DF8AFFC230FBB1A5938925D464A1BA776184B8C020B37669EE2105DB9F2 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
20:06:01.0606 0x1094  SiSRaid2 - ok
20:06:01.0635 0x1094  [ 3A2F769FAB9582BC720E11EA1DFB184D, 83EEBCE37E8709FCE15FB44F546C727C56064ED49B73A471EA33480573558419 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
20:06:01.0654 0x1094  SiSRaid4 - ok
20:06:01.0710 0x1094  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
20:06:01.0734 0x1094  SkypeUpdate - ok
20:06:01.0949 0x1094  [ A9A27A8E257B45A604FDAD4F26FE7241, C5A1056522EE2BA7B70D34E391477A0E9351569CEF28B875172F4B363F6D4177 ] slsvc           C:\Windows\system32\SLsvc.exe
20:06:02.0149 0x1094  slsvc - ok
20:06:02.0200 0x1094  [ FD74B4B7C2088E390A30C85A896FC3AF, 897F1F89A4DDB356CF6E59EFBC32A2081C0CADE283793DB6879D263F7B2E313F ] SLUINotify      C:\Windows\system32\SLUINotify.dll
20:06:02.0253 0x1094  SLUINotify - ok
20:06:02.0348 0x1094  [ 79ED2D6DEC26E0FEFB93EA21F09E6A51, 484E083E1D39AE8D54080E77EB199A447EE983EBDEC021EAAF4D478BD651AFE5 ] SmartFaceVWatchSrv C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatchSrv.exe
20:06:02.0367 0x1094  SmartFaceVWatchSrv - detected UnsignedFile.Multi.Generic ( 1 )
20:06:05.0145 0x1094  Detect skipped due to KSN trusted
20:06:05.0146 0x1094  SmartFaceVWatchSrv - ok
20:06:05.0203 0x1094  [ 290B6F6A0EC4FCDFC90F5CB6D7020473, 971888FE760641FF86165B9876E6FC12DBC309C0FED2734C60B9E0EBC078AAE0 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
20:06:05.0360 0x1094  Smb - ok
20:06:05.0434 0x1094  [ F8F47F38909823B1AF28D60B96340CFF, EFD948EE09F22F9F373A98BA6D9BC519FD9244986E4BE7B2BACD92D3C145AD1D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
20:06:05.0467 0x1094  SNMPTRAP - ok
20:06:05.0506 0x1094  [ 386C3C63F00A7040C7EC5E384217E89D, DD8766BCBD77EC6F67979A8B37B943A3A0E5478CE3FB129BF8FCA29B66529721 ] spldr           C:\Windows\system32\drivers\spldr.sys
20:06:05.0536 0x1094  spldr - ok
20:06:05.0642 0x1094  [ F66FF751E7EFC816D266977939EF5DC3, 689BDD0B442830E162F2F9A8EFBD0E137F518C7F0CD92EDF4A43EFBA188B69F4 ] Spooler         C:\Windows\System32\spoolsv.exe
20:06:05.0709 0x1094  Spooler - ok
20:06:05.0769 0x1094  [ 880A57FCCB571EBD063D4DD50E93E46D, D46BA584D1C33F17C4156127742FA470AA044C4BCE9E6A209E5B1F3A44C73350 ] srv             C:\Windows\system32\DRIVERS\srv.sys
20:06:05.0896 0x1094  srv - ok
20:06:05.0963 0x1094  [ A1AD14A6D7A37891FFFECA35EBBB0730, AE00950D330EE4C05F5AA9BC7E63E974766D8E93B607CB3E683C727E8A65049D ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
20:06:06.0068 0x1094  srv2 - ok
20:06:06.0136 0x1094  [ 4BED62F4FA4D8300973F1151F4C4D8A7, 1835895B3E837F8862F7F669DFBDF5EAB627E5656377624474C17E92CF440D2A ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
20:06:06.0215 0x1094  srvnet - ok
20:06:06.0261 0x1094  [ 192C74646EC5725AEF3F80D19FF75F6A, 8F24FF139A46B1F837356B9D682526107D7BADCFA510842FEACB6F06C02D93D9 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
20:06:06.0366 0x1094  SSDPSRV - ok
20:06:06.0421 0x1094  [ 2EE3FA0308E6185BA64A9A7F2E74332B, EC6A15281685E6CDEADABDFD08C4AF980AD3B404C945EB121D7F90AFCA3D6849 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
20:06:06.0473 0x1094  SstpSvc - ok
20:06:06.0553 0x1094  [ 15825C1FBFB8779992CB65087F316AF5, E9431C016D209A7322C0586F11EEF0AB461AB5822960287BB1D0FBC30183614D ] stisvc          C:\Windows\System32\wiaservc.dll
20:06:06.0657 0x1094  stisvc - ok
20:06:06.0686 0x1094  [ 8A851CA908B8B974F89C50D2E18D4F0C, 27EA13E50B5B72ABF6C5B7B7D34A7154A12BB27B1C1B2EEFCAA36A96010DB4DC ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
20:06:06.0709 0x1094  swenum - ok
20:06:06.0759 0x1094  [ 6DE37F4DE19D4EFD9C48C43ADDBC949A, 9C3714238571704CEE2AD4F1E15029243E00B494345C41F74EFDF3F0328CC9EA ] swprv           C:\Windows\System32\swprv.dll
20:06:06.0856 0x1094  swprv - ok
20:06:06.0922 0x1094  [ E1292C1ED4DEB17B8A9B586D22CB2061, 03303CD71BC6614D22374B5804967EBBD8B2C66B0C15CECBD022601CED81D72F ] Swupdtmr        c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
20:06:07.0012 0x1094  Swupdtmr - ok
20:06:07.0059 0x1094  [ 2F26A2C6FC96B29BEFF5D8ED74E6625B, 0227EAF144BC35AA4FF2535E8C9974C0609B7634EE45F4166B9F88F79B17BBF1 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
20:06:07.0086 0x1094  Symc8xx - ok
20:06:07.0106 0x1094  [ A909667976D3BCCD1DF813FED517D837, 0874DD4C1CA7AE2E519EBB45433BC9F11A574408F5D2F9E23A340CA76512F5CE ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
20:06:07.0123 0x1094  Sym_hi - ok
20:06:07.0151 0x1094  [ 36887B56EC2D98B9C362F6AE4DE5B7B0, 7349FABACB633A9EEE3D4E241A5F443C28D23CC87F21EAAB3F1711644AA21D7C ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
20:06:07.0167 0x1094  Sym_u3 - ok
20:06:07.0221 0x1094  [ 8DE55385370E47F0E851C9BD6C310E9D, 168B93C325959755405471DF408BF943DB0B28F39BFD65933A401710BECB57CC ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
20:06:07.0291 0x1094  SynTP - ok
20:06:07.0536 0x1094  [ 92D7A8B0F87B036F17D25885937897A6, 6759BAB11E5FBB143BE13DF1611AE5D41D379DF423D881E92E910DF6A37CBA85 ] SysMain         C:\Windows\system32\sysmain.dll
20:06:07.0672 0x1094  SysMain - ok
20:06:07.0760 0x1094  [ 005CE42567F9113A3BCCB3B20073B029, B1831D71410AD6E7DEB59D26BF6D2D07D2F6112936D6A6FDA57E9296ADA4076D ] TabletInputService C:\Windows\System32\TabSvc.dll
20:06:07.0818 0x1094  TabletInputService - ok
20:06:07.0880 0x1094  [ CC2562B4D55E0B6A4758C65407F63B79, C6AD05B345C699A715EC13830D8EA6EE9822F4B713D15B1F29AC044674A0F498 ] TapiSrv         C:\Windows\System32\tapisrv.dll
20:06:07.0952 0x1094  TapiSrv - ok
20:06:07.0994 0x1094  [ CDBE8D7C1E201B911CDC346D06617FB5, 16D5965E32A109DA38D77F4B6281081569D78371B2F522DE51100967F8776C7A ] TBS             C:\Windows\System32\tbssvc.dll
20:06:08.0049 0x1094  TBS - ok
20:06:08.0206 0x1094  [ 89399663A2F0393AFFC79E8397ECA844, BA7D4DF5A2F5EB5328522D6136BB71F56263305B9396A437A8AFEF5A8C5C496C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
20:06:08.0326 0x1094  Tcpip - ok
20:06:08.0393 0x1094  [ 89399663A2F0393AFFC79E8397ECA844, BA7D4DF5A2F5EB5328522D6136BB71F56263305B9396A437A8AFEF5A8C5C496C ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
20:06:08.0490 0x1094  Tcpip6 - ok
20:06:08.0544 0x1094  [ A7FF25D9B9DA36797BD1EA48DB292DCE, D89C946633E77765923BD698F2665DC03C5CF1676EB2BAF4450A856B2E856997 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
20:06:08.0602 0x1094  tcpipreg - ok
20:06:08.0647 0x1094  [ D45586A9FACB2C9708B10E491EF748A6, 04F6A9D8B89DC8C2FAA77D415ACB12C51AA7FF65A2C9F209088232E447878B9C ] tdcmdpst        C:\Windows\system32\DRIVERS\tdcmdpst.sys
20:06:08.0661 0x1094  tdcmdpst - ok
20:06:08.0698 0x1094  [ 1D8BF4AAA5FB7A2761475781DC1195BC, A28E972E9331BAD685D4C786FDE221565E0AD3E222B24B9182B7FA916BFCD9C8 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
20:06:08.0823 0x1094  TDPIPE - ok
20:06:08.0866 0x1094  [ 7F7E00CDF609DF657F4CDA02DD1C9BB1, 42A408E82D4017D27D3B0BBBA02BF4B21DEC060C89849785ED65962D18029B65 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
20:06:08.0971 0x1094  TDTCP - ok
20:06:09.0021 0x1094  [ 458919C8C42E398DC4802178D5FFEE27, E38828411DCE0AE2E2BF0D270FD80E47B46EDE4B44DAFD1DF11F54D427EACEB5 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
20:06:09.0080 0x1094  tdx - ok
20:06:09.0117 0x1094  [ 8C19678D22649EC002EF2282EAE92F98, 551E7EBA54C2345F2B7FD7AAA7ADA4C852C94F1B35E6E4BBEF883BAFA34F6262 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
20:06:09.0135 0x1094  TermDD - ok
20:06:09.0254 0x1094  [ 5CDD30BC217082DAC71A9878D9BFD566, 260D40973F9EEAE9A1890B813D8DCC01A9434D17DCE5DA1D16B72A57DCF59194 ] TermService     C:\Windows\System32\termsrv.dll
20:06:09.0420 0x1094  TermService - ok
20:06:09.0580 0x1094  [ 56793271ECDEDD350C5ADD305603E963, 7A29407C1C550FF3A6A3544811ABD971E9C760B984A7E64D5A1440C69D6AF483 ] Themes          C:\Windows\system32\shsvcs.dll
20:06:09.0652 0x1094  Themes - ok
20:06:09.0715 0x1094  [ 3CBE4995E80E13CCFBC42E5DCF3AC81A, 18B0E3E83E41C80809E8140F4C90AB051566C84DD891EA411746EA74E6EAF053 ] THREADORDER     C:\Windows\system32\mmcss.dll
20:06:09.0814 0x1094  THREADORDER - ok
20:06:09.0891 0x1094  [ B146492A882A25A2DF1DB4668FCED6C8, B8C46B4536A7DE5A39EB7EE6F4BB6A7962FFA25563AF8ED8615B439123027E92 ] TNaviSrv        C:\Program Files (x86)\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
20:06:09.0908 0x1094  TNaviSrv - ok
20:06:09.0950 0x1094  [ 19AF3434564E973BC232BBD629EC2BF6, 1791B3221F83E7E77A773F9635F1D304E06DCAAD5366292A227A2A453A9B196B ] TODDSrv         C:\Windows\system32\TODDSrv.exe
20:06:09.0972 0x1094  TODDSrv - detected UnsignedFile.Multi.Generic ( 1 )
20:06:12.0756 0x1094  Detect skipped due to KSN trusted
20:06:12.0756 0x1094  TODDSrv - ok
20:06:12.0892 0x1094  [ E17A81E6AD0E89630A3B0F2ED5CBBDF5, BD5B4C1133E0A7ED1A11249ABAB43F42C840F9A4B2168ED1A1B227275E2585D8 ] TosCoSrv        C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
20:06:13.0008 0x1094  TosCoSrv - ok
20:06:13.0108 0x1094  [ 4E5A8546709591D31BA086CA2A69CECD, 228A3058DC833301322CA08CCA7562792F5B03B4B98583D319C70125152F06D6 ] TOSHIBA Bluetooth Service C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
20:06:13.0143 0x1094  TOSHIBA Bluetooth Service - ok
20:06:13.0191 0x1094  [ 19D979B9F6373A7CB17EBB7594FEB819, BCA98AE2AFA37E9FCEB5AFAABB565E4C8F6D4F0D621B43EE0E07D37C57817DB9 ] TOSHIBA SMART Log Service C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
20:06:13.0215 0x1094  TOSHIBA SMART Log Service - detected UnsignedFile.Multi.Generic ( 1 )
20:06:15.0883 0x1094  Detect skipped due to KSN trusted
20:06:15.0884 0x1094  TOSHIBA SMART Log Service - ok
20:06:15.0905 0x1094  Tosrfcom - ok
20:06:15.0982 0x1094  [ 9FB4AA68D4E833C795994513BC9E3ACA, 30435285E183FF8C5A333B927EFC80999889107E902CB1F8FE2516A2D85BDB17 ] tosrfec         C:\Windows\system32\DRIVERS\tosrfec.sys
20:06:16.0049 0x1094  tosrfec - ok
20:06:16.0282 0x1094  [ 711EE5EA958C345A50B69ABBBD74D646, 6244A2632B2A7E4190C677638590FCFECFB9CDDB378921820A42AD61568CC740 ] tos_sps64       C:\Windows\system32\DRIVERS\tos_sps64.sys
20:06:16.0365 0x1094  tos_sps64 - ok
20:06:16.0415 0x1094  [ F4689F05AF472A651A7B1B7B02D200E7, 3D34B8879DBC69013D1A87A3F47B8A622A60B57F2E962E9F5925C5A01F44640F ] TrkWks          C:\Windows\System32\trkwks.dll
20:06:16.0518 0x1094  TrkWks - ok
20:06:16.0584 0x1094  [ 66328B08EF5A9305D8EDE36B93930369, FD8136BF15AB8D2DB15D011C4F813737D68EED1178462DB8CE40606C16185A30 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:06:16.0637 0x1094  TrustedInstaller - ok
20:06:16.0688 0x1094  [ B2388462329ACD17AF50D8701E0C1B18, 959D7B7CCB526367645BAA11C56C88C9AD741EE338BAD6513C54FC7ED43F3AC0 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
20:06:16.0738 0x1094  tssecsrv - ok
20:06:16.0796 0x1094  [ 89EC74A9E602D16A75A4170511029B3C, AACD82A6F5FE31FF1315F5CA69E5EB6BD172DD86610F0641177CCC131B542034 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
20:06:17.0014 0x1094  tunmp - ok
20:06:17.0051 0x1094  [ 30A9B3F45AD081BFFC3BCAA9C812B609, 57204F1F72FEFA086FF1D8A14487D56F4DEDD3C50FBB6903E0C4AC749EA720DE ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
20:06:17.0108 0x1094  tunnel - ok
20:06:17.0220 0x1094  [ 9A744CC3D804EC38A6C2C65BC3C6FCD8, 28CDF1A8614444F4A7249FB7189B423579CA91D1373138CD3E6C048CE6D2799F ] TVALZ           C:\Windows\system32\DRIVERS\TVALZ_O.SYS
20:06:17.0269 0x1094  TVALZ - ok
20:06:17.0351 0x1094  [ FEC266EF401966311744BD0F359F7F56, 6EE0223AEFA7A81BEB155FC0CD4421C2BEBCDCBC9663C23064B0445101114BF8 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
20:06:17.0417 0x1094  uagp35 - ok
20:06:17.0526 0x1094  [ FAF2640A2A76ED03D449E443194C4C34, CC2517DCFE6962EB2EDEB93E44CB53B113974C9C69A050E3F36385C8D78E810B ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
20:06:17.0671 0x1094  udfs - ok
20:06:17.0749 0x1094  [ 060507C4113391394478F6953A79EEDC, 5D0AE5F1184165289DC8E8CD493607FCB68512CF90F748E3BFD2250655D784D4 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
20:06:17.0803 0x1094  UI0Detect - ok
20:06:17.0880 0x1094  [ 332D341D92B933600D41953B08360DFB, 213A5C84ABB0D627C05B355084A26A5081645D4EC398FF19EF6BBCB690B10055 ] UleadBurningHelper C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
20:06:17.0930 0x1094  UleadBurningHelper - detected UnsignedFile.Multi.Generic ( 1 )
20:06:20.0488 0x1094  Detect skipped due to KSN trusted
20:06:20.0488 0x1094  UleadBurningHelper - ok
20:06:20.0562 0x1094  [ 4EC9447AC3AB462647F60E547208CA00, F304125321B1ECA915EDDBDB6A71EAEF3123DCB5604C9497D72F12E0C1BD5315 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
20:06:20.0625 0x1094  uliagpkx - ok
20:06:20.0718 0x1094  [ 697F0446134CDC8F99E69306184FBBB4, A741882B8FE403E3A5DECED5D4A2254B14AF40ACECD4DAA3D00D71C2205C2C5F ] uliahci         C:\Windows\system32\drivers\uliahci.sys
20:06:20.0773 0x1094  uliahci - ok
20:06:20.0830 0x1094  [ 31707F09846056651EA2C37858F5DDB0, A619AC4B32EA77AC29458894614870086C4DDB81525ADBCFF1AB8970FC5C257A ] UlSata          C:\Windows\system32\drivers\ulsata.sys
20:06:20.0871 0x1094  UlSata - ok
20:06:20.0945 0x1094  [ 85E5E43ED5B48C8376281BAB519271B7, DBDA4216553F7C5EA0C579346D0A638E62766D5B8FCB1BFF3149BB37BBF978D3 ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
20:06:21.0002 0x1094  ulsata2 - ok
20:06:21.0041 0x1094  [ 46E9A994C4FED537DD951F60B86AD3F4, 256F93ED3BD43B50F0D4489164D959F95AB070CC25A80A46355D2B387D336224 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
20:06:21.0122 0x1094  umbus - ok
20:06:21.0211 0x1094  [ 7093799FF80E9DECA0680D2E3535BE60, 1CBFCCA84CB9212176BF5A1D32334BD54E58A2668A4746252738800468AD4AD4 ] upnphost        C:\Windows\System32\upnphost.dll
20:06:21.0343 0x1094  upnphost - ok
20:06:21.0403 0x1094  [ A565B509000BD3E42A9B93B9FFD40D3D, A22734F2DDAAD743D479D40EA91024F1A16A18D9D6C9FC4F90F3930AD040BFA3 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
20:06:21.0444 0x1094  usbaudio - ok
20:06:21.0485 0x1094  [ 858CC93477F9A9383E07861892600FF9, C72B25E7F6AF46AC22F8D2A1FA0345B290AAE642442C8A388EA75944334BB289 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
20:06:21.0542 0x1094  usbccgp - ok
20:06:21.0584 0x1094  [ 9247F7E0B65852C1F6631480984D6ED2, E3360A0EE891B8BADEF5FF53F796C79D6AD218961087F866E451F3B6F278672A ] usbcir          C:\Windows\system32\drivers\usbcir.sys
20:06:21.0729 0x1094  usbcir - ok
20:06:21.0778 0x1094  [ 82C3790E4E6F35087EF00994C7A72988, 95FA022BDAC65DCD2DA52C8FCC1F2C186B321F4599F40CB90262E24FD10AE16C ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
20:06:21.0838 0x1094  usbehci - ok
20:06:21.0879 0x1094  [ BE2EB33AF6EE2E5DA07EB987E0A321F5, 0FCFABA080C553451AE4FAFB54DFE57639251D97DA204C07EC66F469826F3B46 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
20:06:21.0905 0x1094  usbhub - ok
20:06:21.0994 0x1094  [ 396041C6EA61202991221AA6A3B16190, 42B2372CF3496F53710C1DEBE49E18B1DAD38F7474A72B0F744DD98EBD3E21E5 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
20:06:22.0029 0x1094  usbohci - ok
20:06:22.0068 0x1094  [ ACFEE697AF477021BB3EC78C5431FED2, DE529549074E7CA1601D889D62CFF45F00741EB584F9F2091D61527944334C2A ] usbprint        C:\Windows\system32\drivers\usbprint.sys
20:06:22.0154 0x1094  usbprint - ok
20:06:22.0286 0x1094  [ B854C1558FCA0C269A38663E8B59B581, 08CC36B33FA2281FC88671BE051863AA8CA911446D24596049DB77FB4CB09EA6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:06:22.0387 0x1094  USBSTOR - ok
20:06:22.0439 0x1094  [ B2872CBF9F47316ABD0E0C74A1ABA507, E9FB3EEA1D834A035675E22A3224E4E278C4D304F6511822D83250409D62BD3A ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
20:06:22.0511 0x1094  usbuhci - ok
20:06:22.0595 0x1094  [ BF7A051DCCBA57C95541135B29CE0FB4, F3570ED5B57CB64A8222164038D53D1C2009013C50CFDE2E6105E8D4F642FEA6 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
20:06:22.0685 0x1094  usbvideo - ok
20:06:22.0731 0x1094  [ 060B7863943625E0193A3575C0C59E52, BF1DD3FEA873D7FCFC1A1E2FC342D4BAA1A244F47FCC8F6A00F11FF164086A51 ] UVCFTR          C:\Windows\system32\Drivers\UVCFTR_S.SYS
20:06:22.0757 0x1094  UVCFTR - ok
20:06:22.0813 0x1094  [ D76E231E4850BB3F88A3D9A78DF191E3, 98CAD31C41AD155EA853DF850D94FA29543C3A7D26262D1B6881281D033CEBAF ] UxSms           C:\Windows\System32\uxsms.dll
20:06:22.0868 0x1094  UxSms - ok
20:06:22.0955 0x1094  [ 294945381DFA7CE58CECF0A9896AF327, 67414C6D79D2826BC86BB37349C9D74DB4B667310CBC1ABFD103E26332AE4A00 ] vds             C:\Windows\System32\vds.exe
20:06:23.0061 0x1094  vds - ok
20:06:23.0109 0x1094  [ 916B94BCF1E09873FFF2D5FB11767BBC, 072007FED4EF30C4D7AF8628CBEB2AC99EEAD99D7AB533E90E3748E3D4F11C28 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
20:06:23.0245 0x1094  vga - ok
20:06:23.0267 0x1094  [ B83AB16B51FEDA65DD81B8C59D114D63, 97D39AA763037752D87216B83896AFD2AD6DFEBB3BCDCED7A9ABFE5706B804C5 ] VgaSave         C:\Windows\System32\drivers\vga.sys
20:06:23.0314 0x1094  VgaSave - ok
20:06:23.0376 0x1094  [ 8294B6C3FDB6C33F24E150DE647ECDAA, FEBD9536EF61F700DFD5D9CB815808C8415D5B23590B3CE17B12D84F4670EA4D ] viaide          C:\Windows\system32\drivers\viaide.sys
20:06:23.0393 0x1094  viaide - ok
20:06:23.0442 0x1094  [ 2B7E885ED951519A12C450D24535DFCA, 249009EBC1D306D51FDFA4A89588462AA2D8B6DF0A20BE250B60DD73200CB7F3 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
20:06:23.0469 0x1094  volmgr - ok
20:06:23.0544 0x1094  [ CEC5AC15277D75D9E5DEC2E1C6EAF877, EA989E257C4409F9AF3B35C4D7ED9134D930FE3733B077C4F3AA5497796F2CB0 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
20:06:23.0591 0x1094  volmgrx - ok
20:06:23.0653 0x1094  [ 582F710097B46140F5A89A19A6573D4B, 6F695B17BF476D027D3012352F3D4DFD0E0815823DA51A136767ECEF6D64A1CA ] volsnap         C:\Windows\system32\drivers\volsnap.sys
20:06:23.0681 0x1094  volsnap - ok
20:06:23.0732 0x1094  [ A68F455ED2673835209318DD61BFBB0E, 8B2B255E8E2F8B415F7AC0F7F4C423F639DD47737F7CEE0F7C816D9A6893C5F7 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
20:06:23.0763 0x1094  vsmraid - ok
20:06:23.0920 0x1094  [ B75232DAD33BFD95BF6F0A3E6BFF51E1, A8120040F144AD42A39347A615F31BF752634994D4D134E2FAD23FEA9C1D71DF ] VSS             C:\Windows\system32\vssvc.exe
20:06:24.0096 0x1094  VSS - ok
20:06:24.0193 0x1094  [ F14A7DE2EA41883E250892E1E5230A9A, EBCB74BE26437F6FE84A3B41AD034F451D4BD12CA77D4C7A433DB912E7D31593 ] W32Time         C:\Windows\system32\w32time.dll
20:06:24.0292 0x1094  W32Time - ok
20:06:24.0345 0x1094  [ FEF8FE5923FEAD2CEE4DFABFCE3393A7, D682FBF78CF987609AF35A019E7C90CBE02800D7DFC272FFDD71D82AA362FA7A ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
20:06:24.0554 0x1094  WacomPen - ok
20:06:24.0610 0x1094  [ B8E7049622300D20BA6D8BE0C47C0CFD, 57CF218D1F7D505E354A15C552D94E3C5A68C2B07D7A76EBB0C87A0BFF5772D9 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
20:06:24.0693 0x1094  Wanarp - ok
20:06:24.0710 0x1094  [ B8E7049622300D20BA6D8BE0C47C0CFD, 57CF218D1F7D505E354A15C552D94E3C5A68C2B07D7A76EBB0C87A0BFF5772D9 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
20:06:24.0759 0x1094  Wanarpv6 - ok
20:06:24.0818 0x1094  [ B4E4C37D0AA6100090A53213EE2BF1C1, 67107F542F3C937FA5D9B28BA2EBFE994FFE287F16C0BFCF79AD20B95C13F78B ] wcncsvc         C:\Windows\System32\wcncsvc.dll
20:06:24.0920 0x1094  wcncsvc - ok
20:06:24.0975 0x1094  [ EA4B369560E986F19D93F45A881484AC, B61411D64901C9CB8C80402CD1E8808F5A0FACA38206C8D584C7C1019F5ADF5A ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:06:25.0052 0x1094  WcsPlugInService - ok
20:06:25.0179 0x1094  [ 0C17A0816F65B89E362E682AD5E7266E, 6233213D07B234056A1EC6FE1166A65371645269132B428FF3A29DDC0000301A ] Wd              C:\Windows\system32\drivers\wd.sys
20:06:25.0235 0x1094  Wd - ok
20:06:25.0382 0x1094  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
20:06:25.0486 0x1094  Wdf01000 - ok
20:06:25.0523 0x1094  [ C5EFDA73EBFCA8B02A094898DE0A9276, DE54E06CBE20EB27D88B29C3AE19CDFA0AE4933D6DCD640912C74A1065C9391C ] WdiServiceHost  C:\Windows\system32\wdi.dll
20:06:25.0641 0x1094  WdiServiceHost - ok
20:06:25.0652 0x1094  [ C5EFDA73EBFCA8B02A094898DE0A9276, DE54E06CBE20EB27D88B29C3AE19CDFA0AE4933D6DCD640912C74A1065C9391C ] WdiSystemHost   C:\Windows\system32\wdi.dll
20:06:25.0725 0x1094  WdiSystemHost - ok
20:06:25.0768 0x1094  [ 3E6D05381CF35F75EBB055544A8ED9AC, BEC43932BD6C34406B8850E28178B937BFD9512E49FD9F8C54DA7EE272B478A9 ] WebClient       C:\Windows\System32\webclnt.dll
20:06:25.0796 0x1094  WebClient - ok
20:06:25.0836 0x1094  [ 8D40BC587993F876658BF9FB0F7D3462, 23748E11F5CCE3D4978D748780283FA5A1154F53FF70D924CB2128FF8A4705F7 ] Wecsvc          C:\Windows\system32\wecsvc.dll
20:06:25.0888 0x1094  Wecsvc - ok
20:06:25.0921 0x1094  [ 9C980351D7E96288EA0C23AE232BD065, BA627B04C4259716B451F421F5310A69D8DE9407DE496AA0489139125E9DC16A ] wercplsupport   C:\Windows\System32\wercplsupport.dll
20:06:25.0977 0x1094  wercplsupport - ok
20:06:26.0009 0x1094  [ 66B9ECEBC46683F47EDC06333C075FEF, 35C33596D97DB65DE0A687644E9AD924AD5FCBAFD83FE4D23E7E58EF4BC4CC87 ] WerSvc          C:\Windows\System32\WerSvc.dll
20:06:26.0070 0x1094  WerSvc - ok
20:06:26.0093 0x1094  WinDefend - ok
20:06:26.0109 0x1094  WinHttpAutoProxySvc - ok
20:06:26.0360 0x1094  [ D2E7296ED1BD26D8DB2799770C077A02, B494719C2DEB7B9D2505866868143C4E4F59B88461920AA49BD9F1251B6571B8 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
20:06:26.0485 0x1094  Winmgmt - ok
20:06:27.0265 0x1094  [ 6CBB0C68F13B9C2EC1B16F5FA5E7C869, 22D53818F4A4ACE441E121151CFD7CB1EDF5E8303DF9E113C9BB304B418A96EF ] WinRM           C:\Windows\system32\WsmSvc.dll
20:06:27.0503 0x1094  WinRM - ok
20:06:27.0597 0x1094  [ EC339C8115E91BAED835957E9A677F16, 3BBE6D4F1731198E8F0CFEE67C4CCA5C31E6968F8E02EF9E029C1847A26F513B ] Wlansvc         C:\Windows\System32\wlansvc.dll
20:06:27.0757 0x1094  Wlansvc - ok
20:06:27.0822 0x1094  [ E18AEBAAA5A773FE11AA2C70F65320F5, 9E2F6FC0F46D0EEEBF4BC1E3D8800B3D268079ABF8EDDD70CD21B789883D7390 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
20:06:27.0931 0x1094  WmiAcpi - ok
20:06:27.0981 0x1094  [ 21FA389E65A852698B6A1341F36EE02D, 2D60911EAAE26C4CE3DEF4FAD1EDE093F912209AA90741AAA8B93F06B37DF605 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
20:06:28.0054 0x1094  wmiApSrv - ok
20:06:28.0094 0x1094  WMPNetworkSvc - ok
20:06:28.0133 0x1094  [ CBC156C913F099E6680D1DF9307DB7A8, FD8B227F445679E31048CA41442A978A98F267FED96E22C235F63C72AEEE2AB0 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
20:06:28.0200 0x1094  WPCSvc - ok
20:06:28.0235 0x1094  [ 490A18B4E4D53DC10879DEAA8E8B70D9, D069D8C22CF78A0970E85C0B9879E08FF19458FAA75AE447BCF9236731F64252 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
20:06:28.0305 0x1094  WPDBusEnum - ok
20:06:28.0358 0x1094  [ 5E2401B3FC1089C90E081291357371A9, 224D378EEBFB721CBC24896CAE01B31DC54B6ED82C19C5B954E96D5E98B83C59 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
20:06:28.0407 0x1094  WpdUsb - ok
20:06:28.0731 0x1094  [ A2BFEDF5D926CBED9C5F7BC46169A99C, 4F336C0D1DFBCDF9583F528331300FD377AE6565E0C70D58CD9E6ACE95B7273F ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
20:06:28.0832 0x1094  WPFFontCache_v0400 - ok
20:06:28.0911 0x1094  [ 8A900348370E359B6BFF6A550E4649E1, 3EAD0B951EAF8E940ED6A79FAAAB7D22ACCF3985795F80206A3A07161D319B39 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
20:06:28.0969 0x1094  ws2ifsl - ok
20:06:29.0011 0x1094  [ 9EA3E6D0EF7A5C2B9181961052A4B01A, F39BAF1FC7DD1600C0052C2A6AA3BCBC8CA3DA96D1AC7B42B0F2810D051EE1B0 ] wscsvc          C:\Windows\System32\wscsvc.dll
20:06:29.0035 0x1094  wscsvc - ok
20:06:29.0076 0x1094  [ DE5F5212AB34221DD1618B5FEFE8DB6C, D07CBEE66F7A42EBE68212A01BDCC32EDF1810841F1BD77AE7950B1AD6DAB5DB ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
20:06:29.0136 0x1094  WSDPrintDevice - ok
20:06:29.0156 0x1094  WSearch - ok
20:06:29.0466 0x1094  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
20:06:29.0620 0x1094  wuauserv - ok
20:06:29.0691 0x1094  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
20:06:29.0756 0x1094  WudfPf - ok
20:06:29.0846 0x1094  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
20:06:29.0941 0x1094  WUDFRd - ok
20:06:29.0989 0x1094  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
20:06:30.0060 0x1094  wudfsvc - ok
20:06:30.0157 0x1094  [ 3373A1402397BD13455608E5852E1505, D78A4A6A7538974B588119A6B3A691F6F9B7EAC6373E3D94C73A65D07EBF0789 ] yukonx64        C:\Windows\system32\DRIVERS\yk60x64.sys
20:06:30.0545 0x1094  yukonx64 - ok
20:06:30.0589 0x1094  ================ Scan global ===============================
20:06:30.0631 0x1094  [ 060DC3A7A9A2626031EB23D90151428D, 4AADA06E83603E9D4894D6CFC8DADB018307B384F438C809D4BC8E22BD937C3B ] C:\Windows\system32\basesrv.dll
20:06:30.0752 0x1094  [ D665D594B7E11133D29D726BDDC7A5B0, 8EE45E719ACB23F388F2BE7E4311588E90DE7CF50988927CF0FED36DE380FACB ] C:\Windows\system32\winsrv.dll
20:06:30.0831 0x1094  [ D665D594B7E11133D29D726BDDC7A5B0, 8EE45E719ACB23F388F2BE7E4311588E90DE7CF50988927CF0FED36DE380FACB ] C:\Windows\system32\winsrv.dll
20:06:30.0920 0x1094  [ 934E0B7D77FF78C18D9F8891221B6DE3, BB1ACD3CD6482D8B7C5931E8733B8094D2CE59C4FBC4012BD0799C8DC367FB74 ] C:\Windows\system32\services.exe
20:06:30.0944 0x1094  [ Global ] - ok
20:06:30.0946 0x1094  ================ Scan MBR ==================================
20:06:30.0972 0x1094  [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
20:06:31.0939 0x1094  \Device\Harddisk0\DR0 - detected TDSS File System ( 1 )
20:06:31.0939 0x1094  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
20:06:34.0493 0x1094  ================ Scan VBR ==================================
20:06:34.0515 0x1094  [ A36DF6E6D5A575A4BE3DEB9D196C27D9 ] \Device\Harddisk0\DR0\Partition1
20:06:34.0551 0x1094  \Device\Harddisk0\DR0\Partition1 - ok
20:06:34.0554 0x1094  ================ Scan active images ========================
20:06:34.0566 0x1094  [ 4F4E1093ADFBAE48544DA6E7CCF09FE4, DBD6D1B1EA8603D16CB26F6C5AB30899BEE642DA8FEC4FE1509ADFD355339353 ] C:\Windows\System32\drivers\crashdmp.sys
20:06:34.0566 0x1094  C:\Windows\System32\drivers\crashdmp.sys - ok
20:06:34.0592 0x1094  [ 7E7270D67964C9EDDE6BFDAAC07B7999, B35D239C57290CC1428C59DBAD20767DC06C3E37D8A73D3FAD5CC7F462EAF8F6 ] C:\Windows\System32\drivers\Dumpata.sys
20:06:34.0592 0x1094  C:\Windows\System32\drivers\Dumpata.sys - ok
20:06:34.0607 0x1094  [ AA459F2AB3AB603C357FF117CAE3D818, C633178227A0C446920908967E6F2F4979BE77209C7377B9A41B90F5F31B41B3 ] C:\Windows\System32\drivers\msahci.sys
20:06:34.0608 0x1094  C:\Windows\System32\drivers\msahci.sys - ok
20:06:34.0634 0x1094  [ 30A9B3F45AD081BFFC3BCAA9C812B609, 57204F1F72FEFA086FF1D8A14487D56F4DEDD3C50FBB6903E0C4AC749EA720DE ] C:\Windows\System32\drivers\tunnel.sys
20:06:34.0634 0x1094  C:\Windows\System32\drivers\tunnel.sys - ok
20:06:34.0660 0x1094  [ 5080E59ECEE0BC923F14018803AA7A01, 2E201511821AECCF056962399AFA3533ED765A3E7FD30E7B38A6D13837367E69 ] C:\Windows\System32\drivers\processr.sys
20:06:34.0660 0x1094  C:\Windows\System32\drivers\processr.sys - ok
20:06:34.0684 0x1094  [ 89EC74A9E602D16A75A4170511029B3C, AACD82A6F5FE31FF1315F5CA69E5EB6BD172DD86610F0641177CCC131B542034 ] C:\Windows\System32\drivers\TUNMP.SYS
20:06:34.0685 0x1094  C:\Windows\System32\drivers\TUNMP.SYS - ok
20:06:34.0714 0x1094  [ E18AEBAAA5A773FE11AA2C70F65320F5, 9E2F6FC0F46D0EEEBF4BC1E3D8800B3D268079ABF8EDDD70CD21B789883D7390 ] C:\Windows\System32\drivers\wmiacpi.sys
20:06:34.0714 0x1094  C:\Windows\System32\drivers\wmiacpi.sys - ok
20:06:34.0721 0x1094  [ F59742A4507960B9013365C74DC25C48, 6D46F7B7DD973BE478631CED7C28DF7FEA494466477DDA9F1A9CE44DB98986D2 ] C:\Windows\System32\drivers\atikmdag.sys
20:06:34.0721 0x1094  C:\Windows\System32\drivers\atikmdag.sys - ok
20:06:34.0739 0x1094  [ 362CCEF305F45829316D62D3410F2062, 35033749E9B6B5AFC9C8C305F4AA1597E9776D465E7BBC24A20E836B7BEF0D73 ] C:\Windows\System32\drivers\dxgkrnl.sys
20:06:34.0740 0x1094  C:\Windows\System32\drivers\dxgkrnl.sys - ok
20:06:34.0754 0x1094  [ 2F956EA22FCCE4C9F15C64175C891A1E, 02D5B295220897CBE7A44DEE75CB01556DE827CBEA632E82104EFFBD0AF1793E ] C:\Windows\System32\drivers\watchdog.sys
20:06:34.0754 0x1094  C:\Windows\System32\drivers\watchdog.sys - ok
20:06:34.0762 0x1094  [ 3373A1402397BD13455608E5852E1505, D78A4A6A7538974B588119A6B3A691F6F9B7EAC6373E3D94C73A65D07EBF0789 ] C:\Windows\System32\drivers\yk60x64.sys
20:06:34.0762 0x1094  C:\Windows\System32\drivers\yk60x64.sys - ok
20:06:34.0771 0x1094  [ 45511C7E870D3ADDDD60049232EA96B3, 02982BE10E4882E140345BEBE3E60A6FF139B936740F98AA1E72696856F62491 ] C:\Windows\System32\drivers\athrx.sys
20:06:34.0772 0x1094  C:\Windows\System32\drivers\athrx.sys - ok
20:06:34.0781 0x1094  [ 6ABF41B83C9691DB492BD209C6967116, 353BD8DB29DCD1B62B1CFFEB4B0A9D4278764AFC0C7F66F919572070DE7455EF ] C:\Windows\System32\drivers\usbport.sys
20:06:34.0781 0x1094  C:\Windows\System32\drivers\usbport.sys - ok
20:06:34.0789 0x1094  [ 82C3790E4E6F35087EF00994C7A72988, 95FA022BDAC65DCD2DA52C8FCC1F2C186B321F4599F40CB90262E24FD10AE16C ] C:\Windows\System32\drivers\usbehci.sys
20:06:34.0790 0x1094  C:\Windows\System32\drivers\usbehci.sys - ok
20:06:34.0798 0x1094  [ 396041C6EA61202991221AA6A3B16190, 42B2372CF3496F53710C1DEBE49E18B1DAD38F7474A72B0F744DD98EBD3E21E5 ] C:\Windows\System32\drivers\usbohci.sys
20:06:34.0799 0x1094  C:\Windows\System32\drivers\usbohci.sys - ok
20:06:34.0808 0x1094  [ C025AA69BE3D0D25C7A2E746EF6F94FC, F4754B23CC256ADF92FDD42A9BA80F1ACB74834A58FCBEA2C52650FAFC7F9483 ] C:\Windows\System32\drivers\cdrom.sys
20:06:34.0808 0x1094  C:\Windows\System32\drivers\cdrom.sys - ok
20:06:34.0817 0x1094  [ D45586A9FACB2C9708B10E491EF748A6, 04F6A9D8B89DC8C2FAA77D415ACB12C51AA7FF65A2C9F209088232E447878B9C ] C:\Windows\System32\drivers\tdcmdpst.sys
20:06:34.0817 0x1094  C:\Windows\System32\drivers\tdcmdpst.sys - ok
20:06:34.0836 0x1094  [ F942C5820205F2FB453243EDFEC82A3D, 17A6A3DCF884FB524C93F2477D97E9F2B8E547709F8F2AEA93BEEA322B62E914 ] C:\Windows\System32\drivers\hdaudbus.sys
20:06:34.0836 0x1094  C:\Windows\System32\drivers\hdaudbus.sys - ok
20:06:34.0848 0x1094  [ CBB597659A2713CE0C9CC20C88C7591F, A2BAC75F7247D871842A32EAA7594D338E728D1BFEAEA3C1FCDBF65F007BC06A ] C:\Windows\System32\drivers\i8042prt.sys
20:06:34.0848 0x1094  C:\Windows\System32\drivers\i8042prt.sys - ok
20:06:34.0854 0x1094  [ 423696F3BA6472DD17699209B933BC26, 00C2EAA1A8E9D422D178B7678598743234930C1858D76C632F079EF789BB56C3 ] C:\Windows\System32\drivers\kbdclass.sys
20:06:34.0854 0x1094  C:\Windows\System32\drivers\kbdclass.sys - ok
20:06:34.0859 0x1094  [ 8DE55385370E47F0E851C9BD6C310E9D, 168B93C325959755405471DF408BF943DB0B28F39BFD65933A401710BECB57CC ] C:\Windows\System32\drivers\SynTP.sys
20:06:34.0859 0x1094  C:\Windows\System32\drivers\SynTP.sys - ok
20:06:34.0868 0x1094  [ 7BCE39EE2B61BC3A17E80BC0583F6797, 4FC84BA8C4BA655A9D12E7C09A05C3A77E5519EE8C83A6B53C1C761A3FD23819 ] C:\Windows\System32\drivers\usbd.sys
20:06:34.0868 0x1094  C:\Windows\System32\drivers\usbd.sys - ok
20:06:34.0876 0x1094  [ 9367304E5E412B120CF5F4EA14E4E4F1, F87EBACEE27A50E6610FDCB4BD3001C35A99FEE6D63D643FF2CBF0D484CD082C ] C:\Windows\System32\drivers\mouclass.sys
20:06:34.0876 0x1094  C:\Windows\System32\drivers\mouclass.sys - ok
20:06:34.0888 0x1094  [ 4BA7814D6067E313A8713CAEB7239594, 3F9BDBAF318F794DD413E210FFD0406D9CE2EDBAD9ACCFE382624F0E051657ED ] C:\Windows\System32\drivers\1394bus.sys
20:06:34.0888 0x1094  C:\Windows\System32\drivers\1394bus.sys - ok
20:06:34.0904 0x1094  [ B5B1CE65AC15BBD11C0619E3EF7CFC28, E9AA27724A7576D1869FF861A498DB8AF79A7B297F10272F1D63E6CB88CD455B ] C:\Windows\System32\drivers\ohci1394.sys
20:06:34.0904 0x1094  C:\Windows\System32\drivers\ohci1394.sys - ok
20:06:34.0913 0x1094  [ E91B345D7E8FFAF29164B81311623941, B4A90FACD0138B05D9ADDE303EAFC55A0A64B1DECCE66AC4774C53766EBEB4A6 ] C:\Windows\System32\drivers\o2sdx64.sys
20:06:34.0913 0x1094  C:\Windows\System32\drivers\o2sdx64.sys - ok
20:06:34.0921 0x1094  [ D6CE4C176CA6657E058DA609A4789B88, FC97F1395434A0D4EDA118A6250A28B381B0B5A21E9BCB751EFAB49EC60A11DE ] C:\Windows\System32\drivers\scsiport.sys
20:06:34.0921 0x1094  C:\Windows\System32\drivers\scsiport.sys - ok
20:06:34.0929 0x1094  [ 6531DCED1F12F8863F5C335C4A89A02E, CC4DFCA4BCDC7E6F611C1630306CBC9FE146578B9C98E038587D694863889966 ] C:\Windows\System32\drivers\o2mdx64.sys
20:06:34.0929 0x1094  C:\Windows\System32\drivers\o2mdx64.sys - ok
20:06:34.0938 0x1094  [ B52D9A14CE4101577900A364BA86F3DF, A8AA928DDF5FE3861973D4EA03A5B700E99138236F1E8FF594293B9705BF470C ] C:\Windows\System32\drivers\CmBatt.sys
20:06:34.0938 0x1094  C:\Windows\System32\drivers\CmBatt.sys - ok
20:06:34.0946 0x1094  [ F78A39ED87D918058A14F36159DE5BDA, 7E00A54F8C7F3284F52C79D1F53B96F46B17E0773DE654B039A9AAC3F86C1744 ] C:\Windows\System32\drivers\Storport.sys
20:06:34.0946 0x1094  C:\Windows\System32\drivers\Storport.sys - ok
20:06:34.0954 0x1094  [ E4FDF99599F27EC25D2CF6D754243520, 9139E708EE30F10652C9A458BD58B0343A3C05E84CD3E71FA0B0E4123503CF7B ] C:\Windows\System32\drivers\msiscsi.sys
20:06:34.0955 0x1094  C:\Windows\System32\drivers\msiscsi.sys - ok
20:06:34.0962 0x1094  [ C39A90534C5B1E28B8BC8B38A3900AFF, C820F2E80C833827FF38B3A31F62CA775A8DAB0B45AF176D065C22BF3150570A ] C:\Windows\System32\drivers\tdi.sys
20:06:34.0963 0x1094  C:\Windows\System32\drivers\tdi.sys - ok
20:06:34.0976 0x1094  [ AC7BC4D42A7E558718DFDEC599BBFC2C, E059EB9472FDDB73AF09FFEBA58D8284AFCDAB1516E0C5759980E60C892F8126 ] C:\Windows\System32\drivers\rasl2tp.sys
20:06:34.0977 0x1094  C:\Windows\System32\drivers\rasl2tp.sys - ok
20:06:34.0986 0x1094  [ 64DF698A425478E321981431AC171334, C43177CB60F5D58E1FF7A31E9BE5DA7D92C4B25235867DD65BADC069EDF023F3 ] C:\Windows\System32\drivers\ndistapi.sys
20:06:34.0986 0x1094  C:\Windows\System32\drivers\ndistapi.sys - ok
20:06:34.0994 0x1094  [ F8158771905260982CE724076419EF19, B86FFA790A30ED614A11C87F4D738C913EFC0924DC14750D544001D4E9556071 ] C:\Windows\System32\drivers\ndiswan.sys
20:06:34.0994 0x1094  C:\Windows\System32\drivers\ndiswan.sys - ok
20:06:35.0004 0x1094  [ 4517FBF8B42524AFE4EDE1DE102AAE3E, F01C8A773A637B66192BD16DDE467CAECC6E62853DBDB507FF3FC67B4B388988 ] C:\Windows\System32\drivers\raspppoe.sys
20:06:35.0004 0x1094  C:\Windows\System32\drivers\raspppoe.sys - ok
20:06:35.0017 0x1094  [ 23386E9952025F5F21C368971E2E7301, F7241C1799A8AA0E9106B101B841670304DC695FD8D290C690CE0ED5C13BC514 ] C:\Windows\System32\drivers\raspptp.sys
20:06:35.0017 0x1094  C:\Windows\System32\drivers\raspptp.sys - ok
20:06:35.0028 0x1094  [ C6A593B51F34C33E5474539544072527, 8182C1D15CDC164363D3DD355197160167A00BA9FA833AA444317D06344EF7CE ] C:\Windows\System32\drivers\rassstp.sys
20:06:35.0028 0x1094  C:\Windows\System32\drivers\rassstp.sys - ok
20:06:35.0040 0x1094  [ 8C19678D22649EC002EF2282EAE92F98, 551E7EBA54C2345F2B7FD7AAA7ADA4C852C94F1B35E6E4BBEF883BAFA34F6262 ] C:\Windows\System32\drivers\termdd.sys
20:06:35.0040 0x1094  C:\Windows\System32\drivers\termdd.sys - ok
20:06:35.0051 0x1094  [ 6DF6A6E5642D97B07214B1FBED4A15B3, 97DE476F5A9ED3C31B01918FDFF7275895B4F7F8AB0B28DE59E9E9DA2F262747 ] C:\Windows\System32\drivers\ks.sys
20:06:35.0052 0x1094  C:\Windows\System32\drivers\ks.sys - ok
20:06:35.0059 0x1094  [ 030176BD0B4AAEA01A651B51EFE295BB, 96CB24C32E3288594BD916F6AEA254F7F55101A52446DBF420CC7DDC50599C2E ] C:\Windows\System32\drivers\QIOMem.sys
20:06:35.0060 0x1094  C:\Windows\System32\drivers\QIOMem.sys - ok
20:06:35.0068 0x1094  [ 8A851CA908B8B974F89C50D2E18D4F0C, 27EA13E50B5B72ABF6C5B7B7D34A7154A12BB27B1C1B2EEFCAA36A96010DB4DC ] C:\Windows\System32\drivers\swenum.sys
20:06:35.0068 0x1094  C:\Windows\System32\drivers\swenum.sys - ok
20:06:35.0076 0x1094  [ 855796E59DF77EA93AF46F20155BF55B, 75DFCEE16A9D94EDF74295B9686D92552817E8A00958917CB0E17089EDCF6A97 ] C:\Windows\System32\drivers\mssmbios.sys
20:06:35.0076 0x1094  C:\Windows\System32\drivers\mssmbios.sys - ok
20:06:35.0088 0x1094  [ 46E9A994C4FED537DD951F60B86AD3F4, 256F93ED3BD43B50F0D4489164D959F95AB070CC25A80A46355D2B387D336224 ] C:\Windows\System32\drivers\umbus.sys
20:06:35.0088 0x1094  C:\Windows\System32\drivers\umbus.sys - ok
20:06:35.0102 0x1094  [ BE2EB33AF6EE2E5DA07EB987E0A321F5, 0FCFABA080C553451AE4FAFB54DFE57639251D97DA204C07EC66F469826F3B46 ] C:\Windows\System32\drivers\usbhub.sys
20:06:35.0102 0x1094  C:\Windows\System32\drivers\usbhub.sys - ok
20:06:35.0110 0x1094  [ 9CB77ED7CB72850253E973A2D6AFDF49, C3C15B317A7F7AE68B7BC62343962C47F075240F252727811DB4BEE443F9103F ] C:\Windows\System32\drivers\ndproxy.sys
20:06:35.0110 0x1094  C:\Windows\System32\drivers\ndproxy.sys - ok
20:06:35.0115 0x1094  [ 5A220D86C6E0DD92EA0EA157ED3CA267, E2BE521E361587CE049F188FCAB7D0B29897DD6A8DE2E91AB03DA2FD271092CF ] C:\Windows\System32\drivers\CHDRT64.sys
20:06:35.0115 0x1094  C:\Windows\System32\drivers\CHDRT64.sys - ok
20:06:35.0123 0x1094  [ 68F3B2DE6A3EE2F8D374A41CD0012771, 2EC3D6F1FC20D8A81908C98EE2AF4053024BC990A2555191198AD23E02337A38 ] C:\Windows\System32\drivers\drmk.sys
20:06:35.0123 0x1094  C:\Windows\System32\drivers\drmk.sys - ok
20:06:35.0132 0x1094  [ 2E5041179CEC0443DC471169D28D1AD4, D30E0C4064D62B6E1762265175814CEF206BC0540BE9ABA4D779CF0CB1A3A060 ] C:\Windows\System32\drivers\portcls.sys
20:06:35.0132 0x1094  C:\Windows\System32\drivers\portcls.sys - ok
20:06:35.0146 0x1094  [ 1D419CF43DB29396ECD7113D129D94EB, 21ECCE9D17F055C7B5066110864E10C99291CE50B389C545371333904CE2DBB5 ] C:\Windows\System32\drivers\ksthunk.sys
20:06:35.0146 0x1094  C:\Windows\System32\drivers\ksthunk.sys - ok
20:06:35.0157 0x1094  [ 5779B86CD8B32519FBECB136394D946A, 68A395CD2287D22CB5C8CFE5A3006A61AC0C3FDAADF166C93240FF83C0315DCF ] C:\Windows\System32\drivers\fs_rec.sys
20:06:35.0157 0x1094  C:\Windows\System32\drivers\fs_rec.sys - ok
20:06:35.0171 0x1094  [ DD5D684975352B85B52E3FD5347C20CB, BB03C50D5178643550C024130E20FD9A023AE110B3C85A2D6E18FB8DBB3A12E4 ] C:\Windows\System32\drivers\null.sys
20:06:35.0171 0x1094  C:\Windows\System32\drivers\null.sys - ok
20:06:35.0184 0x1094  [ A193FAE9BF40D981C3094252B17DE601, 585E9F48676DA26DBD30398E4D0E33378D25CB726EFA973E48B69F31C96A6E4E ] C:\Windows\System32\drivers\ctxusbm.sys
20:06:35.0184 0x1094  C:\Windows\System32\drivers\ctxusbm.sys - ok
20:06:35.0192 0x1094  [ 603F4C5E89B67331DDACECAA6C231CB1, F618931995D4118C323E547F8838B15B05F4D13E6F6365CB5E2B18AB3BE72533 ] C:\Windows\System32\drivers\hidparse.sys
20:06:35.0192 0x1094  C:\Windows\System32\drivers\hidparse.sys - ok
20:06:35.0202 0x1094  [ DBDF75D51464FBC47D0104EC3D572C05, E392EE961E734620245874C7700D56621A1A990C45DF5CE0B7D270BA708F255E ] C:\Windows\System32\drivers\kbdhid.sys
20:06:35.0202 0x1094  C:\Windows\System32\drivers\kbdhid.sys - ok
20:06:35.0210 0x1094  [ 858CC93477F9A9383E07861892600FF9, C72B25E7F6AF46AC22F8D2A1FA0345B290AAE642442C8A388EA75944334BB289 ] C:\Windows\System32\drivers\usbccgp.sys
20:06:35.0210 0x1094  C:\Windows\System32\drivers\usbccgp.sys - ok
20:06:35.0221 0x1094  [ 84F9479F8BD5EF517E98CBBD8D3300F7, 57C726A81BEB3B114850B16B0D6645D8A800E1DA4263C7310F6646AE0889F321 ] C:\Windows\System32\drivers\videoprt.sys
20:06:35.0221 0x1094  C:\Windows\System32\drivers\videoprt.sys - ok
20:06:35.0235 0x1094  [ B83AB16B51FEDA65DD81B8C59D114D63, 97D39AA763037752D87216B83896AFD2AD6DFEBB3BCDCED7A9ABFE5706B804C5 ] C:\Windows\System32\drivers\vga.sys
20:06:35.0235 0x1094  C:\Windows\System32\drivers\vga.sys - ok
20:06:35.0249 0x1094  [ 060B7863943625E0193A3575C0C59E52, BF1DD3FEA873D7FCFC1A1E2FC342D4BAA1A244F47FCC8F6A00F11FF164086A51 ] C:\Windows\System32\drivers\UVCFTR_S.SYS
20:06:35.0249 0x1094  C:\Windows\System32\drivers\UVCFTR_S.SYS - ok
20:06:35.0257 0x1094  [ 603900CC05F6BE65CCBF373800AF3716, 83B010D51D1087673CF15FD0A992FD91CC910A073FEA9A8F20F6124B6E5489F2 ] C:\Windows\System32\drivers\RDPCDD.sys
20:06:35.0257 0x1094  C:\Windows\System32\drivers\RDPCDD.sys - ok
20:06:35.0268 0x1094  [ BF7A051DCCBA57C95541135B29CE0FB4, F3570ED5B57CB64A8222164038D53D1C2009013C50CFDE2E6105E8D4F642FEA6 ] C:\Windows\System32\drivers\usbvideo.sys
20:06:35.0268 0x1094  C:\Windows\System32\drivers\usbvideo.sys - ok
20:06:35.0277 0x1094  [ 704F59BFC4512D2BB0146AEC31B10A7C, F7712944DDC192C47953D577BE31B79B4D11217305B1C3D0DCA31B1518CB8DCB ] C:\Windows\System32\drivers\msfs.sys
20:06:35.0277 0x1094  C:\Windows\System32\drivers\msfs.sys - ok
20:06:35.0288 0x1094  [ CAB9421DAF3D97B33D0D055858E2C3AB, 66C353CD310A91FAB0D0871ACCE71110595B63536560D0331DA70B1E33AC45BE ] C:\Windows\System32\drivers\RDPENCDD.sys
20:06:35.0288 0x1094  C:\Windows\System32\drivers\RDPENCDD.sys - ok
20:06:35.0302 0x1094  [ B298874F8E0EA93F06EC40AA8D146478, 275D769E5EFD3153985DAF84C5B22B9D65428E09AB41099901ABDD03B3A2625D ] C:\Windows\System32\drivers\npfs.sys
20:06:35.0302 0x1094  C:\Windows\System32\drivers\npfs.sys - ok
20:06:35.0310 0x1094  [ 1013B3B663A56D3DDD784F581C1BD005, 36B83F234C2D6A6112BC8B5EF0AB5075EE98AC0BED702C37E4C1C3D17EB49956 ] C:\Windows\System32\drivers\rasacd.sys
20:06:35.0310 0x1094  C:\Windows\System32\drivers\rasacd.sys - ok
20:06:35.0318 0x1094  [ 458919C8C42E398DC4802178D5FFEE27, E38828411DCE0AE2E2BF0D270FD80E47B46EDE4B44DAFD1DF11F54D427EACEB5 ] C:\Windows\System32\drivers\tdx.sys
20:06:35.0318 0x1094  C:\Windows\System32\drivers\tdx.sys - ok
20:06:35.0326 0x1094  [ 290B6F6A0EC4FCDFC90F5CB6D7020473, 971888FE760641FF86165B9876E6FC12DBC309C0FED2734C60B9E0EBC078AAE0 ] C:\Windows\System32\drivers\smb.sys
20:06:35.0326 0x1094  C:\Windows\System32\drivers\smb.sys - ok
20:06:35.0340 0x1094  [ E58A17E945593544C707423F9772EEA0, FC17AFF979354EB89DCA307BF07C52B84629AF540D4C6A32DD537695CA654205 ] C:\Windows\System32\drivers\afd.sys
20:06:35.0340 0x1094  C:\Windows\System32\drivers\afd.sys - ok
20:06:35.0349 0x1094  [ FC2C792EBDDC8E28DF939D6A92C83D61, 9EDF8B56E2B47C31457074DA371B604E5F7EB2B3B5CD4688CBEEDD5B266D119B ] C:\Windows\System32\drivers\netbt.sys
20:06:35.0349 0x1094  C:\Windows\System32\drivers\netbt.sys - ok
20:06:35.0361 0x1094  [ C5AB7F0809392D0DA027F4A2A81BFA31, B5BC9712AD93661A77AF4D67DB5F05C58A93CF7CDD6F7BA20568C0A9F4630321 ] C:\Windows\System32\drivers\pacer.sys
20:06:35.0361 0x1094  C:\Windows\System32\drivers\pacer.sys - ok
20:06:35.0370 0x1094  [ 9D86C5091209CA4BD3762BED6F654501, 7396D4D9B25097DB22BD067FA8E58260AD31D4225A30DAA0F2CCFC43796741C3 ] C:\Windows\System32\drivers\jswpslwfx.sys
20:06:35.0370 0x1094  C:\Windows\System32\drivers\jswpslwfx.sys - ok
20:06:35.0378 0x1094  [ A499294F5029A7862ADC115BDA7371CE, 6BE0AAFE4EB59E056A929D6C1A009D8DFD547025481108CEFB12E5D6F86DBE14 ] C:\Windows\System32\drivers\netbios.sys
20:06:35.0378 0x1094  C:\Windows\System32\drivers\netbios.sys - ok
20:06:35.0389 0x1094  [ B8E7049622300D20BA6D8BE0C47C0CFD, 57CF218D1F7D505E354A15C552D94E3C5A68C2B07D7A76EBB0C87A0BFF5772D9 ] C:\Windows\System32\drivers\wanarp.sys
20:06:35.0389 0x1094  C:\Windows\System32\drivers\wanarp.sys - ok
20:06:35.0399 0x1094  [ 322DB5C6B55E8D8EE8D6F358B2AAABB1, 07B89F701594F680F50A885B923521763A6131104CEE63D422E1C359C23AE2F6 ] C:\Windows\System32\drivers\rdbss.sys
20:06:35.0399 0x1094  C:\Windows\System32\drivers\rdbss.sys - ok



#6 boingo2000

boingo2000
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Location:Phoenix, AZ
  • Local time:03:46 AM

Posted 04 September 2014 - 10:43 PM

20:06:35.0407 0x1094  [ 1523AF19EE8B030BA682F7A53537EAEB, B000630CE4B562D39B5EE4148409B2E01D8924D33D27607B24ADC901357E7AA5 ] C:\Windows\System32\drivers\nsiproxy.sys
20:06:35.0408 0x1094  C:\Windows\System32\drivers\nsiproxy.sys - ok
20:06:35.0419 0x1094  [ 8B722BA35205C71E7951CDC4CDBADE19, 39720A60DFD0532F7E1A1976240E9828559BF9E0C6D1CFBF4D911965BFD94158 ] C:\Windows\System32\drivers\dfsc.sys
20:06:35.0419 0x1094  C:\Windows\System32\drivers\dfsc.sys - ok
20:06:35.0427 0x1094  [ F792A2D43A2C35FBA756093BE73B5130, 328CF7304A65A099D995C49B0809CDB8BCC57CBF6B8C9B81D56878F1FC86FB66 ] C:\Windows\System32\ntdll.dll
20:06:35.0427 0x1094  C:\Windows\System32\ntdll.dll - ok
20:06:35.0436 0x1094  [ 34B7B826716B166778ED454B7628EF5E, 80F3CF626334E185BA17912EC902BB4986E8B28CC95247ABC4CFD738EEED9EB8 ] C:\Windows\System32\smss.exe
20:06:35.0436 0x1094  C:\Windows\System32\smss.exe - ok
20:06:35.0444 0x1094  [ E24D4475713CB382A720D003BDDA9628, EF94B0B2359F6A62EE1C631920F9A087BDF3256D76FC91272C6472F9CF55F3DD ] C:\Windows\System32\autochk.exe
20:06:35.0444 0x1094  C:\Windows\System32\autochk.exe - ok
20:06:35.0453 0x1094  [ 578D38BD26B6B226E9F9A941B21515F1, 2F505D2B2FB57800BC3E01371C0D46A5E5E1EC83A91E393B752023F8FE54478D ] C:\Windows\System32\shell32.dll
20:06:35.0453 0x1094  C:\Windows\System32\shell32.dll - ok
20:06:35.0463 0x1094  [ 604384D4459F4A68FF88E7C212C43F61, 8A28BCC7633543EAEF7E9926EF55B2922EE611DD33D8F58C955FABFAD2C46764 ] C:\Windows\System32\shlwapi.dll
20:06:35.0463 0x1094  C:\Windows\System32\shlwapi.dll - ok
20:06:35.0472 0x1094  [ 87CB61DF57FEC0948A26F9E671ADD81A, 1CFA117F2813202435AFCD989F46D6C81E6CA3E88FA6E216BB39C99F39E7B9BE ] C:\Windows\System32\msctf.dll
20:06:35.0472 0x1094  C:\Windows\System32\msctf.dll - ok
20:06:35.0484 0x1094  [ 3B2671CBC989F1B2084290D787DE8499, 6A4D06C9FF8F5022BDF9080945432C1E976379FB38902CD662AECD8F9B47A23F ] C:\Windows\System32\oleaut32.dll
20:06:35.0484 0x1094  C:\Windows\System32\oleaut32.dll - ok
20:06:35.0497 0x1094  [ 2C74308C8A20F3F3A2226DFE36914CBF, 40C3D44F4C288C676A29026492A6FE556E8A14E7CA527D19AD98B447EB6EB527 ] C:\Windows\System32\msvcrt.dll
20:06:35.0497 0x1094  C:\Windows\System32\msvcrt.dll - ok
20:06:35.0511 0x1094  [ 3D2BC46317D0FB5854F5C86686D593DB, 6D594DDD1E7AD5D643E29B421E39CE4D407D9921847A990C6076655087856EC9 ] C:\Windows\System32\kernel32.dll
20:06:35.0511 0x1094  C:\Windows\System32\kernel32.dll - ok
20:06:35.0519 0x1094  [ 679B740F3194F1C8FC245B8362538733, 546DADB66EE23C75C59A518BDA0BE648AEB62809CAF6551AF9868CCE34224EF5 ] C:\Windows\System32\iertutil.dll
20:06:35.0520 0x1094  C:\Windows\System32\iertutil.dll - ok
20:06:35.0529 0x1094  [ 474DAC0FB53BA3742ABB4CB9DC7B4BC2, AFC19151A95A693E1CA9C0FFD474535C66660AFC67B5951D1067060D745655C5 ] C:\Windows\System32\gdi32.dll
20:06:35.0530 0x1094  C:\Windows\System32\gdi32.dll - ok
20:06:35.0540 0x1094  [ 0CB93E3F36C4F4122E7CBBAA731F67D1, 2DDF6AB37553EC8CEB4C69AC25A0A2574512B397CAC8F3EB1B4A7344181946C0 ] C:\Windows\System32\ole32.dll
20:06:35.0540 0x1094  C:\Windows\System32\ole32.dll - ok
20:06:35.0551 0x1094  [ BB8C4784AA400BDC3D51B6ACAA077E96, 86A597C2D9D28BE2032C9A622B28B4D44CC7C3B34FD3B32D19541108803A68EB ] C:\Windows\System32\advapi32.dll
20:06:35.0551 0x1094  C:\Windows\System32\advapi32.dll - ok
20:06:35.0559 0x1094  [ 62C15795629FA290656C6A7E5CD25F52, AB2D0DDC145DD8380DC1EF66A18C936FB5F5BECC852EC348952D465DC19B432D ] C:\Windows\System32\imm32.dll
20:06:35.0559 0x1094  C:\Windows\System32\imm32.dll - ok
20:06:35.0567 0x1094  [ 229631F3DCB4B4664641AF676E5ABDD3, E4427D93092FC85BA97C8A2C99B9094444538570B5E2FFBF21CF9D62D6151161 ] C:\Windows\System32\imagehlp.dll
20:06:35.0567 0x1094  C:\Windows\System32\imagehlp.dll - ok
20:06:35.0575 0x1094  [ 533B3BA63E5DB49FC59A842A1DE3121F, 302F7C8C42EB503C874EADA45E7F87A26FA895DDEFA8A98EA9090F74E93DD161 ] C:\Windows\System32\normaliz.dll
20:06:35.0575 0x1094  C:\Windows\System32\normaliz.dll - ok
20:06:35.0583 0x1094  [ 00150B5D58D552CC0A9D8C7C5BFE0129, A9AB103D291162FA4788286D550E124759C4BB7CEE30C47ACD8F112C7DCD8B9E ] C:\Windows\System32\usp10.dll
20:06:35.0583 0x1094  C:\Windows\System32\usp10.dll - ok
20:06:35.0596 0x1094  [ 393E484490CE47C7623BB158B0E2F7A9, 2C7C91D0D05A578520BB4692088517556F2191492DF0F709438902318A65FC9D ] C:\Windows\System32\urlmon.dll
20:06:35.0596 0x1094  C:\Windows\System32\urlmon.dll - ok
20:06:35.0610 0x1094  [ 2364DF9C2CAB1E44A3CF6C6B6E363BF1, 238450AE0C90BFF4530A6764106BB3B7253768DF3AE640B2198E941BEADC5350 ] C:\Windows\System32\rpcrt4.dll
20:06:35.0610 0x1094  C:\Windows\System32\rpcrt4.dll - ok
20:06:35.0618 0x1094  [ 868C7FF4F7E19AD9C67EB1302EABB38F, 9405E967AA1DF8BC177048B35E8BC0606C858BEA6A0378A23D2AD36D09A316AD ] C:\Windows\System32\wininet.dll
20:06:35.0619 0x1094  C:\Windows\System32\wininet.dll - ok
20:06:35.0632 0x1094  [ AA09B70F619CBF499EFC22E7A63E3CE6, 07821B699ED97C03863F2E5CC101D960E7C108097A8F128C10968F246EAEDBAB ] C:\Windows\System32\comdlg32.dll
20:06:35.0632 0x1094  C:\Windows\System32\comdlg32.dll - ok
20:06:35.0642 0x1094  [ 7CAF51D586DFE475147DFB158BEBB3F8, 337FC1EA2D0867D21F97904BCD9C9882E3BA1B6216202C06C85996202E1BE4B1 ] C:\Windows\System32\nsi.dll
20:06:35.0643 0x1094  C:\Windows\System32\nsi.dll - ok
20:06:35.0650 0x1094  [ F3F5549E69AE8509342E67E4F972CA1C, 31E7D1EEA26FDD9AD66E4A2D2D52A78743F367C5C43CC9CA9F61C2300A87F8BC ] C:\Windows\System32\user32.dll
20:06:35.0651 0x1094  C:\Windows\System32\user32.dll - ok
20:06:35.0659 0x1094  [ BAB10B35E2D5EE0DC3DE05A177C52C50, EB33A519C124973F00979F44A8BC717C291F8F57B029F3E2EAF7879F5D23344C ] C:\Windows\System32\ws2_32.dll
20:06:35.0659 0x1094  C:\Windows\System32\ws2_32.dll - ok
20:06:35.0671 0x1094  [ 891E1D0DCDE747C8F1EE71E61EA193F5, 0C993EB29E0F3AE0C789A86D9EC3BEDAFF75A34AE22D72046E20F6D1345BFA19 ] C:\Windows\System32\lpk.dll
20:06:35.0671 0x1094  C:\Windows\System32\lpk.dll - ok
20:06:35.0679 0x1094  [ BE2E23B3DD533B33338D9B3D826574DA, 6A48A5F2DD56252D9EB31697F976BD8D2A33A61021D71676545077B13BA7726A ] C:\Windows\System32\setupapi.dll
20:06:35.0679 0x1094  C:\Windows\System32\setupapi.dll - ok
20:06:35.0687 0x1094  [ ADC1964755BB12485A15070A4D4F2697, 35D93675BA2623BFEC98F52F0926B2853399CBBA3A28AA28070C9D51137B0586 ] C:\Windows\System32\Wldap32.dll
20:06:35.0687 0x1094  C:\Windows\System32\Wldap32.dll - ok
20:06:35.0695 0x1094  [ DB310BF331A32FD208CADA64ABA2903A, 23A9634F34A8DEA444A217225E0DAAAD5D9C351850182A860802921FBCA7AAB3 ] C:\Windows\System32\clbcatq.dll
20:06:35.0695 0x1094  C:\Windows\System32\clbcatq.dll - ok
20:06:35.0703 0x1094  [ 2E2B796F36C4DA7BDDA70DF95E3D217A, 0D34D2D0D0D9C2C397094F3D0124241AA1ABC692F3293886D81EBCA79DB4AE12 ] C:\Windows\System32\comctl32.dll
20:06:35.0703 0x1094  C:\Windows\System32\comctl32.dll - ok
20:06:35.0711 0x1094  [ AEF2D8B0B518A5623FC5F9832F622677, F615DD650B3ADE5B9CBAB06466F723267A963EBFA58D5E2E4EE13F1C03673B2B ] C:\Windows\System32\psapi.dll
20:06:35.0711 0x1094  C:\Windows\System32\psapi.dll - ok
20:06:35.0719 0x1094  [ 6F29236AB5926100972924BD29D9D225, E8B517FC36F25C4AE07021473B0BCDCDDD4B6E3FE004E6B0AD449C030267674C ] C:\Windows\SysWOW64\normaliz.dll
20:06:35.0719 0x1094  C:\Windows\SysWOW64\normaliz.dll - ok
20:06:35.0728 0x1094  [ 4C2DC63036D452FDB636D58D8EA7BC90, 41A2653433A76DCEC8F483EF1B8D62261425F1F20E9200490EF3A524743326C4 ] C:\Windows\System32\drivers\dxapi.sys
20:06:35.0728 0x1094  C:\Windows\System32\drivers\dxapi.sys - ok
20:06:35.0741 0x1094  [ 548BA5779A6FBBB4216BFFD43EBD8B37, 765494F0E3CC273F3EC92AED7987C97B2239266AD2A1F7AD8650F578E1864F2E ] C:\Windows\System32\win32k.sys
20:06:35.0742 0x1094  C:\Windows\System32\win32k.sys - ok
20:06:35.0752 0x1094  [ 38CE04857A9A2AE83A4673C691E68D10, 5131F1194B2CC194B8CFC7A55FB323CA9F221489DB34D8481B5469A5C530FA77 ] C:\Windows\System32\csrsrv.dll
20:06:35.0752 0x1094  C:\Windows\System32\csrsrv.dll - ok
20:06:35.0760 0x1094  [ B4ABE68596B173FF2AB2076BC7C35EB4, 9F16B5BEE0800AC3EF1343E1C4333AC444E3A927375682DEDEEAB29D1F975255 ] C:\Windows\System32\csrss.exe
20:06:35.0760 0x1094  C:\Windows\System32\csrss.exe - ok
20:06:35.0768 0x1094  [ 060DC3A7A9A2626031EB23D90151428D, 4AADA06E83603E9D4894D6CFC8DADB018307B384F438C809D4BC8E22BD937C3B ] C:\Windows\System32\basesrv.dll
20:06:35.0768 0x1094  C:\Windows\System32\basesrv.dll - ok
20:06:35.0776 0x1094  [ D665D594B7E11133D29D726BDDC7A5B0, 8EE45E719ACB23F388F2BE7E4311588E90DE7CF50988927CF0FED36DE380FACB ] C:\Windows\System32\winsrv.dll
20:06:35.0776 0x1094  C:\Windows\System32\winsrv.dll - ok
20:06:35.0784 0x1094  [ C247CC2A57E0A0C8C6DCCF7807B3E9E5, 357811D1B8F70828F6432879F59DAB916FBB55673B3473D879382DE33CFB3FAF ] C:\Windows\System32\drivers\monitor.sys
20:06:35.0784 0x1094  C:\Windows\System32\drivers\monitor.sys - ok
20:06:35.0798 0x1094  [ 86173B7125321C93E355DF3837039244, 114416C20C888D5FBDF3DD7D3E19DE6BC70D1FE915C58451BA45639AF056A0AB ] C:\Windows\System32\tsddd.dll
20:06:35.0798 0x1094  C:\Windows\System32\tsddd.dll - ok
20:06:35.0811 0x1094  [ 117EA87DF785CA1B9D821F6F213DCE07, B9C1B9DA26015B8D5A356DA81E263CD6EEDE172FDE09F46064F91F943CB1561A ] C:\Windows\System32\wininit.exe
20:06:35.0811 0x1094  C:\Windows\System32\wininit.exe - ok
20:06:35.0824 0x1094  [ 95E848589698D6CF716ECF1403925DFC, 02F0232265A92310635BBA01046C53BB1844A796265EE6189C5CDE8C8457198B ] C:\Windows\System32\userenv.dll
20:06:35.0824 0x1094  C:\Windows\System32\userenv.dll - ok
20:06:35.0835 0x1094  [ 89A722B06A83706797E283016181BEAB, 19BB0F76A28F9EC4327B779C0031EF1A6C1D94C8473C6C85A6C50398211A538D ] C:\Windows\System32\KBDUS.DLL
20:06:35.0835 0x1094  C:\Windows\System32\KBDUS.DLL - ok
20:06:35.0843 0x1094  [ FEA83138B1C1D6EB55046C4612905888, 38C7922589D0052FAC3E453D74FC84FC00C861D5C8051CF974EF062A820F87A9 ] C:\Windows\System32\secur32.dll
20:06:35.0843 0x1094  C:\Windows\System32\secur32.dll - ok
20:06:35.0853 0x1094  [ D1BDCF6DE24D16E16FC57AEE4A1BE9AE, BDA58E227E62F99E486F75A23BE75BBCA302CCE55E14992B7080A82842BDE9C4 ] C:\Windows\System32\WlS0WndH.dll
20:06:35.0853 0x1094  C:\Windows\System32\WlS0WndH.dll - ok
20:06:35.0861 0x1094  [ F33E804A031F160D128AB78990DE7C91, 243B01A3FC09D0BE0FDEC26E5D83F31A54384CA58BC768AF235C271ED4067FE1 ] C:\Windows\System32\apphelp.dll
20:06:35.0861 0x1094  C:\Windows\System32\apphelp.dll - ok
20:06:35.0870 0x1094  [ 934E0B7D77FF78C18D9F8891221B6DE3, BB1ACD3CD6482D8B7C5931E8733B8094D2CE59C4FBC4012BD0799C8DC367FB74 ] C:\Windows\System32\services.exe
20:06:35.0870 0x1094  C:\Windows\System32\services.exe - ok
20:06:35.0878 0x1094  [ 16687F0351E513BF2019073ABF02B585, 5679C60484898DD1C9B771DF6AE0D053E3074E06F90A1952C081CF18455C1CC8 ] C:\Windows\System32\sxs.dll
20:06:35.0878 0x1094  C:\Windows\System32\sxs.dll - ok
20:06:35.0891 0x1094  [ 6C400000A97F923209FCD5E94F49B30F, 23815FC796D1AB1BE92E4E2D27A58AB38AA31E612E1E26B5D5924351CD3F675B ] C:\Windows\System32\cdd.dll
20:06:35.0891 0x1094  C:\Windows\System32\cdd.dll - ok
20:06:35.0904 0x1094  [ 260BF9C43EE12C6898A9F5AAB0FB0E5D, 6585A87CE55EE5C51B18DF86E8EDFC6A909D96C87522FF4183F8BA9355E8DD44 ] C:\Windows\System32\lsass.exe
20:06:35.0904 0x1094  C:\Windows\System32\lsass.exe - ok
20:06:35.0913 0x1094  [ 54D814DC2FA54AA847D240D4EA0E6586, 620707BDD0D14FFE8424575B3E5CB4ADC4B4CCCF220AA0FCF39B7A83CBD7F716 ] C:\Windows\System32\lsm.exe
20:06:35.0913 0x1094  C:\Windows\System32\lsm.exe - ok
20:06:35.0922 0x1094  [ 902F14A1FDF1B4A543326A35CB21EB1F, 3CA770F26D06F37DC7D097BEBCC6DB9BDE60C2B4712AD34D7430E7660236A137 ] C:\Windows\System32\lsasrv.dll
20:06:35.0922 0x1094  C:\Windows\System32\lsasrv.dll - ok
20:06:35.0930 0x1094  [ 495EB57ACF30983AA441B70A8DE2B7ED, A136EBA780EB958572900EA5EC2641855B9D478C6CCCDC59116BC0A18A5E4F0F ] C:\Windows\System32\scesrv.dll
20:06:35.0930 0x1094  C:\Windows\System32\scesrv.dll - ok
20:06:35.0938 0x1094  [ 009456399B31D69C67654F6C3618D9A8, F0F672666A3BC64ED618E7879A32C85A18756C9316FBD1048ED7970F806F05AC ] C:\Windows\System32\sysntfy.dll
20:06:35.0938 0x1094  C:\Windows\System32\sysntfy.dll - ok
20:06:35.0947 0x1094  [ 0C2E0A8562FE4B33D00E175A97E05793, 79291DE9BAEAF69B6260CD58CFD75F1FC67D9FE3BFD0C2D1EB83249A5E16BAA0 ] C:\Windows\System32\wmsgapi.dll
20:06:35.0947 0x1094  C:\Windows\System32\wmsgapi.dll - ok
20:06:35.0955 0x1094  [ 5EF9205E045643A5A75A82B116395B25, 63E0A153BDA7E688FA44EFC585723BF857ED96D978052F02D47E2D408FC94AAC ] C:\Windows\System32\authz.dll
20:06:35.0955 0x1094  C:\Windows\System32\authz.dll - ok
20:06:35.0963 0x1094  [ F3E5C76AA1175D29F6459BDB7DF345EC, 5E63D5E21B0B8756395239BB895D57E4C14748CDC6DBC24B4602F1D718E5465E ] C:\Windows\System32\netapi32.dll
20:06:35.0963 0x1094  C:\Windows\System32\netapi32.dll - ok
20:06:35.0972 0x1094  [ FA19D9DE54B122316274703D50F34130, FF0CD940AF1CC1EF96AE0EBC69CE63214EDF8B683CAAC538573E1CB942B13C9B ] C:\Windows\System32\ncobjapi.dll
20:06:35.0972 0x1094  C:\Windows\System32\ncobjapi.dll - ok
20:06:35.0980 0x1094  [ 60EEC5440C2D05E5FDA04900E45FF717, CE2ED2BB71564D3059C79A437997C01712B3F732E54952C4E15C86BF5B35AF04 ] C:\Windows\System32\samsrv.dll
20:06:35.0980 0x1094  C:\Windows\System32\samsrv.dll - ok
20:06:35.0988 0x1094  [ 0F421175574BFE0BF2F4D8E910A253BB, CEABE3A4F546EB6ACA079931AB532DC88FF757DEEF6F434991802220328A9CD6 ] C:\Windows\System32\aelupsvc.dll
20:06:35.0988 0x1094  C:\Windows\System32\aelupsvc.dll - ok
20:06:35.0996 0x1094  [ 5922F4F59B7868F3D74BBBBEB7B825A3, 71504BC8B596F540BF059059670BC0C138D8759C1DD9F99F1EC368FD5C53F573 ] C:\Windows\System32\alg.exe
20:06:35.0996 0x1094  C:\Windows\System32\alg.exe - ok
20:06:36.0004 0x1094  [ 7C8ECAAD76EA1D076A450C8303D9BD98, 90904B2BE380A51BDCEDADA530214CE5321C06456E10F5985B40E3282902BEF6 ] C:\Windows\System32\appinfo.dll
20:06:36.0004 0x1094  C:\Windows\System32\appinfo.dll - ok
20:06:36.0012 0x1094  [ 15C815573011719585EB836614ED1DF1, 1EA80157DD32056089491B84B920A0A749534F8DFE1479DB0735C6FFC61FCBC6 ] C:\Windows\System32\rascfg.dll
20:06:36.0012 0x1094  C:\Windows\System32\rascfg.dll - ok
20:06:36.0021 0x1094  [ 79318C744693EC983D20E9337A2F8196, 94226786EF8A101C2E805C6BA3C1CF46628BAF1AFCECBC1FAB7A7E7E5E642608 ] C:\Windows\System32\audiosrv.dll
20:06:36.0021 0x1094  C:\Windows\System32\audiosrv.dll - ok
20:06:36.0029 0x1094  [ 419CE835359938213BD32A7AA327F2B9, 9ECD233A2B76F6C2F9B1E895EB0FA00D819B2ADE91A5D4CDCF839955D80FD242 ] C:\Windows\System32\cryptdll.dll
20:06:36.0029 0x1094  C:\Windows\System32\cryptdll.dll - ok
20:06:36.0038 0x1094  [ E4C283A98F118CEC9E087EAC4E9EFB6A, 24460926E840D497080CEC50F02795A3E0DD94F701AAD051430C39AFD5A3FFC0 ] C:\Windows\System32\dnsapi.dll
20:06:36.0038 0x1094  C:\Windows\System32\dnsapi.dll - ok
20:06:36.0046 0x1094  [ 5279672A8BDAF3CFB0A4C6E0591987AC, CC24FD9BAAD0834161BBE4CE723C1DF168185D03E82B5068CBFE22F44FA4A10A ] C:\Windows\System32\samlib.dll
20:06:36.0046 0x1094  C:\Windows\System32\samlib.dll - ok
20:06:36.0054 0x1094  [ 301D19A870E40C12540BE46034BD6B20, FA3033A9E95BDF6B5C6A61B6882F0CEB4CA4757EBFBC47410D7FD543BC4DD5CF ] C:\Windows\System32\msasn1.dll
20:06:36.0054 0x1094  C:\Windows\System32\msasn1.dll - ok
20:06:36.0062 0x1094  [ FFB96C2589FFA60473EAD78B39FBDE29, 6A2792753E2CB580672B3107C0DBB9D26B6DAA14B37D5EC314BD0E304197E03E ] C:\Windows\System32\BFE.DLL
20:06:36.0062 0x1094  C:\Windows\System32\BFE.DLL - ok
20:06:36.0070 0x1094  [ 33741BA808457C9AF07055C0FBEFE973, 87384E0D7D842310F3E6BA1CDC1BD73E5CEC71B3985895CCFAFFBE7410D8F809 ] C:\Windows\System32\ntdsapi.dll
20:06:36.0070 0x1094  C:\Windows\System32\ntdsapi.dll - ok
20:06:36.0078 0x1094  [ 6D316F4859634071CC25C4FD4589AD2C, 73F69AC9E505F3B11A3CCFF8571930229A9058E672CD008A4BF26C0189564EAE ] C:\Windows\System32\qmgr.dll
20:06:36.0078 0x1094  C:\Windows\System32\qmgr.dll - ok
20:06:36.0087 0x1094  [ D7924B0F3AB5574BF59CA2892BE8961A, 79EDF0649C66A1A8D588CCBCCBC5D7FE6ED7B40AAF426FDE8AD0D6C1490C0ACE ] C:\Windows\System32\feclient.dll
20:06:36.0087 0x1094  C:\Windows\System32\feclient.dll - ok
20:06:36.0095 0x1094  [ B3EBBD687BDFCBBBBCB6115B682D1845, 8AD3B72CF5414F96E9F610FF0436A2A8DC67C3C8CB1A3A400DFED33AE2B060D7 ] C:\Windows\System32\mpr.dll
20:06:36.0095 0x1094  C:\Windows\System32\mpr.dll - ok
20:06:36.0103 0x1094  [ 3B748E0A5FAA10E4DD2165A6E859C59C, 3323C624E7DFDC129CF95C60B36A45A00DBEF6D6E0BCEAD825EB6097A088C4D9 ] C:\Windows\System32\crypt32.dll
20:06:36.0103 0x1094  C:\Windows\System32\crypt32.dll - ok
20:06:36.0111 0x1094  [ A1B39DE453433B115B4EA69EE0343816, 61441E7E9D5259A5987DBD3FC8D4E3221A57F42C7CC0F94DB48E80EEF96CA5D4 ] C:\Windows\System32\browser.dll
20:06:36.0111 0x1094  C:\Windows\System32\browser.dll - ok
20:06:36.0120 0x1094  [ 5A268127633C7EE2A7FB87F39D748D56, 45C530A0EE0108543A75B9427F77EBB5E8350AE16C235763B6F32E72CE15C449 ] C:\Windows\System32\certprop.dll
20:06:36.0120 0x1094  C:\Windows\System32\certprop.dll - ok
20:06:36.0128 0x1094  [ EE11F2630840479C4AA784AF3770F8E2, FEEF4075489AA9213A580ADB89A76F51D0F00EE6D171E2EE19490C55365ED490 ] C:\Windows\System32\SLC.dll
20:06:36.0128 0x1094  C:\Windows\System32\SLC.dll - ok
20:06:36.0137 0x1094  [ 45B4004F43B48E4A3F12B85891F81221, 2161B0DFAA21DA66E4287CB3CF73B10113D5A21907D5FAD5D7B8962554B20053 ] C:\Windows\System32\wevtapi.dll
20:06:36.0137 0x1094  C:\Windows\System32\wevtapi.dll - ok
20:06:36.0145 0x1094  [ DDEE5FE5C3C3141CE02DE6B7B2BF686B, 346FD885E1A5448D966829B2BF6B265E3FEAF16FFD6A9FCA757827E29A1AF802 ] C:\Windows\System32\comres.dll
20:06:36.0145 0x1094  C:\Windows\System32\comres.dll - ok
20:06:36.0154 0x1094  [ A9D70295BA8F31D5EA118B0A6B74183E, 63A57D864664DE940A22A499B9851FD170CFAE20DC90D98BF343FA88E51B4245 ] C:\Windows\System32\IPHLPAPI.DLL
20:06:36.0154 0x1094  C:\Windows\System32\IPHLPAPI.DLL - ok
20:06:36.0162 0x1094  [ 3ED0321127CE70ACDAABBF77E157C2A7, 10973BD0AEF9597A4EA0A4947BDE922F9168F33D6ED97BFFEE6176AADAD78980 ] C:\Windows\System32\dhcpcsvc.dll
20:06:36.0162 0x1094  C:\Windows\System32\dhcpcsvc.dll - ok
20:06:36.0171 0x1094  [ 956148910C7EB6A8C095D9B4E6F94E62, F1A146E17FDE20C2A669A7C56FE3E2CC0914C84EDAD3A00471E00E4C8B4DCDDD ] C:\Windows\System32\dhcpcsvc6.dll
20:06:36.0171 0x1094  C:\Windows\System32\dhcpcsvc6.dll - ok
20:06:36.0179 0x1094  [ 58AAAEA100F45F4F44297D6DE9ACF8ED, B283F5FAD055DEB70D15D3960C14FBC6628CD14DACB77F1443703481EA729DBD ] C:\Windows\System32\winnsi.dll
20:06:36.0179 0x1094  C:\Windows\System32\winnsi.dll - ok
20:06:36.0187 0x1094  [ 21322B1A2AD337C579F4A65EA0D25193, 4225422FF8D7B3DA1389B6B666BD16879F82844447D9E2D24D1572F2148EC343 ] C:\Windows\System32\cngaudit.dll
20:06:36.0188 0x1094  C:\Windows\System32\cngaudit.dll - ok
20:06:36.0195 0x1094  [ FD51DED28EEC823940432D05BACE2490, F371B031E43909FE3A6977A1982B421DBDA6E71FEE4D93026616FF51955D4141 ] C:\Windows\System32\ncrypt.dll
20:06:36.0195 0x1094  C:\Windows\System32\ncrypt.dll - ok
20:06:36.0204 0x1094  [ 02EE316487BCC8F4F6017CAD538365CC, 872F48D84C5DCCA8802B8ECDE9DA30390548E6FB856B0E674A5BA4942E3BE0F8 ] C:\Windows\System32\bcrypt.dll
20:06:36.0204 0x1094  C:\Windows\System32\bcrypt.dll - ok
20:06:36.0212 0x1094  [ B7CCDC4B877DC3CC665DE8F322F2BD9E, ABB7210D40B69E4757D5279A45345B12873BD0BB3792E70CCD8AFDC892D7B1DE ] C:\Windows\System32\credssp.dll
20:06:36.0212 0x1094  C:\Windows\System32\credssp.dll - ok
20:06:36.0220 0x1094  [ 5AAC48EAF8EACF247DB44FB61B900D89, D20FCD5C71CA18F284D3DFD0CED37F6888A296E76B7B0563F2F4668CF90FE752 ] C:\Windows\System32\cryptsvc.dll
20:06:36.0220 0x1094  C:\Windows\System32\cryptsvc.dll - ok
20:06:36.0228 0x1094  [ F7097878AE102618656A04F03951C339, 1917EB58C4CF0419D34DE165A834208DF73052C0C4763B46B38E11F098B955FE ] C:\Windows\System32\msprivs.dll
20:06:36.0228 0x1094  C:\Windows\System32\msprivs.dll - ok
20:06:36.0236 0x1094  [ CD6D49EA9DBBD3EA9E449FD84C51C731, 265F2D675F3DC895BFF6D7D3E1AD61770368A2D0A74A07FDD19B3ADA48970468 ] C:\Windows\System32\kerberos.dll
20:06:36.0236 0x1094  C:\Windows\System32\kerberos.dll - ok
20:06:36.0245 0x1094  [ 2E4733239CB09A2212C44FCD1C1B4CC9, 8D89AF4615F9685B613C0FE20154A4EBCD44408063D45F31ABDC61355D0727CD ] C:\Windows\System32\dfsrres.dll
20:06:36.0245 0x1094  C:\Windows\System32\dfsrres.dll - ok
20:06:36.0253 0x1094  [ CE7183F26642FAFE46C8374AE70A66DB, A0F419A55C423ED0F0021964FC02C549A7EC6F60BBC8716B3BA230C59FB248C9 ] C:\Windows\System32\oleres.dll
20:06:36.0253 0x1094  C:\Windows\System32\oleres.dll - ok
20:06:36.0261 0x1094  [ 1A7156DD1E850E9914E5E991E3225B94, 99FF0C7125B01FCB0B92DC44756AE8FAA486F2E7F38DC6204F7EFE5918F8480A ] C:\Windows\System32\dot3svc.dll
20:06:36.0261 0x1094  C:\Windows\System32\dot3svc.dll - ok
20:06:36.0269 0x1094  [ 1583B39790DB3EAEC7EDB0CB0140C708, F94F9AE7054A38602CD25D4E10FE7C7B574BD9ED8440C3FDAA7275A1D1E663E7 ] C:\Windows\System32\dps.dll
20:06:36.0269 0x1094  C:\Windows\System32\dps.dll - ok
20:06:36.0278 0x1094  [ 2C305F6445662EFF9A08B1BA41784CC0, CD42DE681A29CDA799B5ED5DB9DC8DF22DE1889D0AA91EA538DF41F74A79C3A8 ] C:\Windows\System32\wship6.dll
20:06:36.0278 0x1094  C:\Windows\System32\wship6.dll - ok
20:06:36.0286 0x1094  [ 599DA6EB260D9601D2D67AE177F95568, 5C9D3EE34AF000194C52146200F6CA5A275B7BF1F6ABB5B5C8EA4713581D2692 ] C:\Windows\System32\wshqos.dll
20:06:36.0286 0x1094  C:\Windows\System32\wshqos.dll - ok
20:06:36.0294 0x1094  [ 253607D6C54A1604436F08E67CCED044, 6EBEFB7D6E43F51C2146F7C76C702D18E145BD7A08503BCCDC3FF62854DB0390 ] C:\Windows\System32\WSHTCPIP.DLL
20:06:36.0294 0x1094  C:\Windows\System32\WSHTCPIP.DLL - ok
20:06:36.0302 0x1094  [ 14CE384D2E27B64C256BDA4DC39C312D, D5FA9C2BB162F1C22E419D33671B8202AAC245A87F6B183B97F83F5BFA165B41 ] C:\Windows\ehome\ehrecvr.exe
20:06:36.0302 0x1094  C:\Windows\ehome\ehrecvr.exe - ok
20:06:36.0311 0x1094  [ C2303883FD9BE49DC36A6400643002EA, F062D1D6D503CF5195BDE8C1DC75B541F559CB8175ADABCDB7690E9F1CA3EA4E ] C:\Windows\System32\eapsvc.dll
20:06:36.0311 0x1094  C:\Windows\System32\eapsvc.dll - ok
20:06:36.0320 0x1094  [ F145BF4C4668E7E312069F81EF847CFC, C4926EFB41FE2813E90D83456C6CB8F3157D835391B443C7E26168F4E1D67DC7 ] C:\Windows\System32\nlasvc.dll
20:06:36.0320 0x1094  C:\Windows\System32\nlasvc.dll - ok
20:06:36.0327 0x1094  [ 062972C53BDC6819CE0BAAAA5382F758, 43DB3028B1F35131F6AE21598B1D1E1150613B249F8AD2A9C21FE9346C258CEB ] C:\Windows\System32\NapiNSP.dll
20:06:36.0327 0x1094  C:\Windows\System32\NapiNSP.dll - ok
20:06:36.0335 0x1094  [ E1BAEEE7949ED5019259E69393367400, B8449D9EBE699C16A36D0D355BA179E3528EF4539AE4AE80D6B7DABD3F95B74F ] C:\Windows\System32\pnrpnsp.dll
20:06:36.0335 0x1094  C:\Windows\System32\pnrpnsp.dll - ok
20:06:36.0343 0x1094  [ B93159C1313D66FDFBBE876F5189CD52, 51E39160EA56F6B08449267EDF2A0F604612663768D2348DE23554AB07BDBB62 ] C:\Windows\ehome\ehsched.exe
20:06:36.0343 0x1094  C:\Windows\ehome\ehsched.exe - ok
20:06:36.0351 0x1094  [ BB08D93011B82883EC33C7707A9627BE, E4EFF4D73437A20336ABDCDC94874D8E5C80DC9AFDB04D6354F0D9DF576B273F ] C:\Windows\System32\mswsock.dll
20:06:36.0351 0x1094  C:\Windows\System32\mswsock.dll - ok
20:06:36.0359 0x1094  [ F5EE2527D74449868E3C3227A59BCD28, 11640E97EE9D8F9A5DC3FEA6BA7A737AA796A7235C7F5C7EF1ABFB51C9D730D3 ] C:\Windows\ehome\ehstart.dll
20:06:36.0359 0x1094  C:\Windows\ehome\ehstart.dll - ok
20:06:36.0367 0x1094  [ 6D0773A3A65D28B663F334C90441D01A, 9FD92A56AB1610460D14E4730A75E82302119D617C05384AB1A7213959948C59 ] C:\Windows\System32\winlogon.exe
20:06:36.0367 0x1094  C:\Windows\System32\winlogon.exe - ok
20:06:36.0376 0x1094  [ A9B18B63A4FD6BAAB83326706D857FAB, 7721CC67C0F8CE3060D0EB35A10E4ADC1E3CB470C0797B17D606060C270F96D7 ] C:\Windows\System32\emdmgmt.dll
20:06:36.0376 0x1094  C:\Windows\System32\emdmgmt.dll - ok
20:06:36.0381 0x1094  [ 434B2B82B237FC2F4F8F6844A8FF1909, FE76BECF179DCADB89A92D9CD93DB275200E2135750B10BEA97298711D4A9ACD ] C:\Windows\System32\msv1_0.dll
20:06:36.0381 0x1094  C:\Windows\System32\msv1_0.dll - ok
20:06:36.0389 0x1094  [ 1671EF15434501ABBE9E7BE905EF998B, 9B52DFBDC4D21C476C0B39024CD7E09D3ACAFFD86605D15D3F7E1DD74D24AEF7 ] C:\Windows\System32\winsta.dll
20:06:36.0389 0x1094  C:\Windows\System32\winsta.dll - ok
20:06:36.0397 0x1094  [ B3564B747D0B059D99E888F8369E56BC, A63D86E0D13F928F200F0D5E38F9F26AF817A520221B2278294DEBF4EC5C6E5A ] C:\Windows\System32\wevtsvc.dll
20:06:36.0397 0x1094  C:\Windows\System32\wevtsvc.dll - ok
20:06:36.0405 0x1094  [ A3F1B171702CA04744EE514243B45BFB, 738A9901FBF23A5AC12D7047C32358D6EA72F835C2CDF54304CAD9D53B5C75C0 ] C:\Windows\System32\netlogon.dll
20:06:36.0406 0x1094  C:\Windows\System32\netlogon.dll - ok
20:06:36.0414 0x1094  [ CA307C0BD127FA7ADE5E6FEE8750F046, 91618DBEDABC7137C5AEEF6BC2DC03A8E56858A0102612D08667990802AE4E15 ] C:\Windows\System32\winbrand.dll
20:06:36.0414 0x1094  C:\Windows\System32\winbrand.dll - ok
20:06:36.0422 0x1094  [ BB9267ACACD8B7533DD936C34A0CBA5E, 32DE6E10ABA540D62F0D8AE30DE8769D7BF29E547838BEBE67C04183CC0B32C7 ] C:\Windows\System32\fdPHost.dll
20:06:36.0422 0x1094  C:\Windows\System32\fdPHost.dll - ok
20:06:36.0430 0x1094  [ 300C80931EABBE1DB7591C516EFE8D0F, F031DA96B06B6FA8E0AD56D5E10E5A5882765C3FF258A4DE06A47EC34829FF04 ] C:\Windows\System32\FDResPub.dll
20:06:36.0430 0x1094  C:\Windows\System32\FDResPub.dll - ok
20:06:36.0439 0x1094  [ F937F278E44138C0386FA1DE69B1F72B, 49180522CCCB5377B5B3A7EF8B9697FBE19A1E5D84BC282D24C39B3D52698851 ] C:\Windows\System32\FntCache.dll
20:06:36.0439 0x1094  C:\Windows\System32\FntCache.dll - ok
20:06:36.0447 0x1094  [ 4C7F1DA7E2BF41EB19208540DD5574C8, 94D24073C0EB31650BBB159448A2498B478409A3231C7176271796CFFC45E9EE ] C:\Windows\System32\schannel.dll
20:06:36.0447 0x1094  C:\Windows\System32\schannel.dll - ok
20:06:36.0455 0x1094  [ E60BB0CDC5EA153F6D24C51AAD4A73FD, 4B728AE968AD216EC3CD23B04D9518C7E1DEEB0F5054D6A33787D771AF5C4070 ] C:\Windows\System32\PresentationHost.exe
20:06:36.0455 0x1094  C:\Windows\System32\PresentationHost.exe - ok
20:06:36.0463 0x1094  [ B4A04D5AA66E8F77DE19E0EB89C52D2B, 331D79C0760809B23C452DD136CEAA171FBB3C8D1E3659A8C9847349323732AA ] C:\Windows\System32\wdigest.dll
20:06:36.0463 0x1094  C:\Windows\System32\wdigest.dll - ok
20:06:36.0472 0x1094  [ 899F834C330A96A80EC36DAEDA2FF018, CF15BAE99F68045B2D19328ED28C492B42B6CA99421DA1BA4B54A996921518C6 ] C:\Windows\System32\gpapi.dll
20:06:36.0472 0x1094  C:\Windows\System32\gpapi.dll - ok
20:06:36.0480 0x1094  [ 4D27759CC69F69E4B3228A970FF55F88, 3296E5063B321AFACE96A50E81ECDEADF222B0A93798FA57212FEB8DDFB958E3 ] C:\Windows\System32\rsaenh.dll
20:06:36.0480 0x1094  C:\Windows\System32\rsaenh.dll - ok
20:06:36.0488 0x1094  [ 59361D38A297755D46A540E450202B2A, ED97800A3FF9B90EC58BC5122C42B53F46D9C157EFE488481E8677ED7058E33D ] C:\Windows\System32\hidserv.dll
20:06:36.0489 0x1094  C:\Windows\System32\hidserv.dll - ok
20:06:36.0497 0x1094  [ B12F367EA39C0795FD57E31242CE1A5A, 498439FE4D1217211EB6C1AC35CDA5D59F3AE8F06AF5E41EE9FDB0DC559FBE27 ] C:\Windows\System32\KMSVC.DLL
20:06:36.0497 0x1094  C:\Windows\System32\KMSVC.DLL - ok
20:06:36.0505 0x1094  [ BC69DA355B62C898DFEA93851335EAF0, 2E9C6F7E6B7BB05C08110DFD8F3E65C02756F97216447CC0FAE333B5A4F4F2C6 ] C:\Windows\System32\TSpkg.dll
20:06:36.0505 0x1094  C:\Windows\System32\TSpkg.dll - ok
20:06:36.0513 0x1094  [ 0B48386CB405DB71A50B4ACBADAA225E, B0F0092B68BE5B01451BADD9CC307D179728A68FAD48D5B485D9927DDD2518A5 ] C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll
20:06:36.0513 0x1094  C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll - ok
20:06:36.0522 0x1094  [ 0401A380C88754B2399F8043AC9B2BF9, BFF3B53FAFAE6622AA9F74BAA4A3D522C06E2D732B88916766603B9FE8D0D77F ] C:\Windows\System32\IKEEXT.DLL
20:06:36.0522 0x1094  C:\Windows\System32\IKEEXT.DLL - ok
20:06:36.0530 0x1094  [ 5624BC1BC5EEB49C0AB76A8114F05EA3, BD5AA534D8A923AF4D205EEC6DA55A3DC5F915E5F3223BF23F24C09824FA90B6 ] C:\Windows\System32\IPBusEnum.dll
20:06:36.0530 0x1094  C:\Windows\System32\IPBusEnum.dll - ok
20:06:36.0539 0x1094  [ BF0DBFA9792C5C14FA00F61C75116C1B, 24C14DCAF57013F1C238E3C123279737420A714EB29CB69239C9838C9A269A59 ] C:\Windows\System32\iphlpsvc.dll
20:06:36.0539 0x1094  C:\Windows\System32\iphlpsvc.dll - ok
20:06:36.0547 0x1094  [ C6336D1625515CC5F70E5630CFF14182, 48473D7367CC6CE91CD2B36ECF150D7C2FB173758455AD7224B1A7B217C0FE7B ] C:\Windows\System32\keyiso.dll
20:06:36.0547 0x1094  C:\Windows\System32\keyiso.dll - ok
20:06:36.0555 0x1094  [ 50C7A3CB427E9BB5ED0708A669956AB5, 3DAD1C01AE58FE2C6134283B19118E2F3C884DDFFBAE4A46B7B5E4FB1A2567A1 ] C:\Windows\System32\srvsvc.dll
20:06:36.0555 0x1094  C:\Windows\System32\srvsvc.dll - ok
20:06:36.0563 0x1094  [ CAF86FC1388BE1E470F1A7B43E348ADB, 9E9AE0B617D1031E8462524802A2D997AE7C944A7D00D403FF903145A7FEB761 ] C:\Windows\System32\wkssvc.dll
20:06:36.0563 0x1094  C:\Windows\System32\wkssvc.dll - ok
20:06:36.0571 0x1094  [ 4B8C95B49C58D7A41BF3FE38AA64DC6C, 5A10094111ED30E25A72D2D9B32CB36494352902994E0B6F47A5DEA3D761FE61 ] C:\Windows\System32\lltdres.dll
20:06:36.0571 0x1094  C:\Windows\System32\lltdres.dll - ok
20:06:36.0579 0x1094  [ 4698036AE905F88E02C3F69BA77981FB, CED5E67D20F38E4220D33B98E4B60055C0CEAD55D785FFF9133D78F1ADEDA5EF ] C:\Windows\ehome\ehres.dll
20:06:36.0579 0x1094  C:\Windows\ehome\ehres.dll - ok
20:06:36.0588 0x1094  [ A47F8080CACC23C91FE823AD19AA5612, 161575406D158D6D5C9220F1E82C0CC19108C74ADC35C509BAF9B0C414EFD8EE ] C:\Windows\System32\lmhsvc.dll
20:06:36.0588 0x1094  C:\Windows\System32\lmhsvc.dll - ok
20:06:36.0596 0x1094  [ FFA2B274A5CC6C9A03CBDCF5B8F0239A, 32EAFC03DC37512F64EB298A58B2D8F725E5E0596E32AEC7FD5D5973BD5BAA50 ] C:\Windows\System32\FirewallAPI.dll
20:06:36.0596 0x1094  C:\Windows\System32\FirewallAPI.dll - ok
20:06:36.0604 0x1094  [ 3CBE4995E80E13CCFBC42E5DCF3AC81A, 18B0E3E83E41C80809E8140F4C90AB051566C84DD891EA411746EA74E6EAF053 ] C:\Windows\System32\mmcss.dll
20:06:36.0605 0x1094  C:\Windows\System32\mmcss.dll - ok
20:06:36.0613 0x1094  [ 1371FA9D8B1E567AE852E0F74D41D040, B968E2D8CE1E894C319F91FFEDF919A5E6BA5D2CE66B3254EDD32A37BA84F110 ] C:\Windows\System32\iscsidsc.dll
20:06:36.0613 0x1094  C:\Windows\System32\iscsidsc.dll - ok
20:06:36.0621 0x1094  [ FCD84867883C365A24C61E50AF8A6DB9, 30AEF1BA5FE73BABA00B6DE9C9C71F89D32EED369555D02911B9AED8FEC1DFAF ] C:\Windows\System32\msimsg.dll
20:06:36.0621 0x1094  C:\Windows\System32\msimsg.dll - ok
20:06:36.0630 0x1094  [ A5B10C845E7538C60C0F5D87A57CB3F5, 2B4E16702591C59BC2CA2B99DBB504BAB4F4EF0835B0D9C7453D340CBF0BDF16 ] C:\Windows\System32\QAGENTRT.DLL
20:06:36.0630 0x1094  C:\Windows\System32\QAGENTRT.DLL - ok
20:06:36.0635 0x1094  [ 9B63B29DEFC0F3115A559D2597BF5D75, 297319D3F2E97CB34464EA59D8FD96AC2B8B1A4F2AEE666937F16A041128021F ] C:\Windows\System32\netman.dll
20:06:36.0635 0x1094  C:\Windows\System32\netman.dll - ok
20:06:36.0645 0x1094  [ 82C136E9E2FA0B1CFBA49BC7A18F72FD, 6A02C31F74C212C14E11B053B1B8A8F464AC3BAA8C0CDDA3A242879E296035EF ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll
20:06:36.0645 0x1094  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll - ok
20:06:36.0654 0x1094  [ 0341CB05512AA87BB64A834DE6264C34, 07A7A12F274D96E7E14581C888F33C03ACEE54A52B56C5B4AAC5582F24807C4A ] C:\Windows\System32\netprof.dll
20:06:36.0654 0x1094  C:\Windows\System32\netprof.dll - ok
20:06:36.0663 0x1094  [ 6CCB62D4A9764C6410D34DFCF082ADD6, 13C57E4BE590619F02085C9305F8F87246A0AB9B722116E36E93E13E2A55FAB7 ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
20:06:36.0663 0x1094  C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
20:06:36.0671 0x1094  [ ACB62BAA1C319B17752553DF3026EEEB, 5A309DF390A097245250BB64AD5F8575BECA601E0A122DDCB494C67D3D9EA089 ] C:\Windows\System32\nsisvc.dll
20:06:36.0671 0x1094  C:\Windows\System32\nsisvc.dll - ok
20:06:36.0679 0x1094  [ 9AE31D2E1D15C10D91318E0EC149CEAC, CEA8A4AD1D6BB9C1ECBDE7A1946DD655104E20224436B96AD69A76F8E2B25680 ] C:\Windows\System32\p2psvc.dll
20:06:36.0679 0x1094  C:\Windows\System32\p2psvc.dll - ok
20:06:36.0687 0x1094  [ 9AB157B374192FF276C1628FBDBA2B0E, E63E2EE1ABEEC5234F4F1318757EDB4A7567057B1DF1A2414C8698D47062B6AC ] C:\Windows\System32\pcasvc.dll
20:06:36.0688 0x1094  C:\Windows\System32\pcasvc.dll - ok
20:06:36.0696 0x1094  [ E9E68C1A0F25CF4A7AC966EEA74EE89E, 6C6903A856C29AD690FDA1B74ADB2222C3453FBE2B364245FA61D53C77C586C0 ] C:\Windows\System32\pla.dll
20:06:36.0696 0x1094  C:\Windows\System32\pla.dll - ok
20:06:36.0704 0x1094  [ FE6B0F59215C9FD9F9D26539C58C8B82, 52CF8BE31A28430226D117EB80974AEAE5EA07F39DE881164232D44BF67FF752 ] C:\Windows\System32\umpnpmgr.dll
20:06:36.0704 0x1094  C:\Windows\System32\umpnpmgr.dll - ok
20:06:36.0712 0x1094  [ F7BEA2085635CA9B2B991D8EDC426D3A, AE313241C31757F4A048B39E29889DED9AADEC49B50EE933D06057510B2790E8 ] C:\Windows\System32\polstore.dll
20:06:36.0713 0x1094  C:\Windows\System32\polstore.dll - ok
20:06:36.0720 0x1094  [ E058CE4FC2449D8BFA14739C83B7FF2A, 6ACA086D5E0EF3C3EAEBD78010E50739BBA7CA05E937FFF3A4F2AD22FD57B54A ] C:\Windows\System32\profsvc.dll
20:06:36.0720 0x1094  C:\Windows\System32\profsvc.dll - ok
20:06:36.0729 0x1094  [ 43A4F5B4EAC81FA11DAC3143ADC77CBA, 323530989F5B5DCE5E99DF7E711497E7018C333BE2A15BAA75E8DBA0262CA9D1 ] C:\Windows\System32\psbase.dll
20:06:36.0729 0x1094  C:\Windows\System32\psbase.dll - ok
20:06:36.0737 0x1094  [ 90574842C3DA781E279061A3EFF91F07, F87DE7355DAA4FACF2126A0427C08BAAD9E647E0B02EE5447746BE969B28DA8D ] C:\Windows\System32\qwave.dll
20:06:36.0737 0x1094  C:\Windows\System32\qwave.dll - ok
20:06:36.0745 0x1094  [ E8D76EDAB77EC9C634C27B8EAC33ADC5, 171A3C5D5C3C5845C3BF9A4BCD88E744B025C910AC2F528D0E7D66F173FF0BED ] C:\Windows\System32\drivers\qwavedrv.sys
20:06:36.0745 0x1094  C:\Windows\System32\drivers\qwavedrv.sys - ok
20:06:36.0753 0x1094  [ B2AE18F847D07F0044404DDF7CB04497, 24B1D5E1D0621160640264656E3D447C611DEE1B0EE308971EF85F0AC3D9F7DD ] C:\Windows\System32\rasauto.dll
20:06:36.0753 0x1094  C:\Windows\System32\rasauto.dll - ok
20:06:36.0761 0x1094  [ 3AD83E4046C43BE510DE681588ACB8AF, C5445A23F35395B3EA3974C0D5E314E23D900C694D31F7B7A83FE9027D95A91C ] C:\Windows\System32\rasmans.dll
20:06:36.0761 0x1094  C:\Windows\System32\rasmans.dll - ok
20:06:36.0770 0x1094  [ 2EE3FA0308E6185BA64A9A7F2E74332B, EC6A15281685E6CDEADABDFD08C4AF980AD3B404C945EB121D7F90AFCA3D6849 ] C:\Windows\System32\sstpsvc.dll
20:06:36.0770 0x1094  C:\Windows\System32\sstpsvc.dll - ok
20:06:36.0778 0x1094  [ C612B9557DA73F70D41F8A6FBC8E5344, D7D11F202066F848FBD3F26D9FF915C7F3D68F30631393B2049F3AC5A40FD108 ] C:\Windows\System32\mprdim.dll
20:06:36.0778 0x1094  C:\Windows\System32\mprdim.dll - ok
20:06:36.0786 0x1094  [ 44B9D8EC2F3EF3A0EFB00857AF70D861, A45D8024A242456A73337C91663A3E1633BF163234CDFD5DF86840F31FFFE84D ] C:\Windows\System32\regsvc.dll
20:06:36.0786 0x1094  C:\Windows\System32\regsvc.dll - ok
20:06:36.0794 0x1094  [ F46C457840D4B7A4DAAFEE739CE04102, 94E946036240B3BAFF17C4A49745E29E492ABBC7BE5110741B212DF4D7F45B84 ] C:\Windows\System32\Locator.exe
20:06:36.0795 0x1094  C:\Windows\System32\Locator.exe - ok
20:06:36.0803 0x1094  [ FD1CDCF108D5EF3366F00D18B70FB89B, 5BCE3A9D5DC0B6937A734264C5B8DE0E6B8F77A869A118F94D57E662AAB28FE2 ] C:\Windows\System32\SCardSvr.dll
20:06:36.0803 0x1094  C:\Windows\System32\SCardSvr.dll - ok
20:06:36.0811 0x1094  [ 0F838C811AD295D2A4489B9993096C63, 3DF2F973359249735810CB5AD52E05126A93A1C7D9F6274ACB018A0A125846BD ] C:\Windows\System32\schedsvc.dll
20:06:36.0811 0x1094  C:\Windows\System32\schedsvc.dll - ok
20:06:36.0820 0x1094  [ 4FF71B076A7760FE75EA5AE2D0EE0018, DDDBC9530120F8C1AB449076F6F06F74354149B4C458E6682F957628EE795DE8 ] C:\Windows\System32\sdrsvc.dll
20:06:36.0820 0x1094  C:\Windows\System32\sdrsvc.dll - ok
20:06:36.0828 0x1094  [ 5ACDCBC67FCF894A1815B9F96D704490, FE0247A8BEDB860EBD46A9D49C641D0B9AA24EE34132CDDADC9F5A605238FDA7 ] C:\Windows\System32\seclogon.dll
20:06:36.0828 0x1094  C:\Windows\System32\seclogon.dll - ok
20:06:36.0836 0x1094  [ 90973A64B96CD647FF81C79443618EED, 1D3CB7F724B7EADA6443DF07B258EE7FB7FEC92C2A7A9D3C57F6A220EF0DDDC4 ] C:\Windows\System32\Sens.dll
20:06:36.0836 0x1094  C:\Windows\System32\Sens.dll - ok
20:06:36.0844 0x1094  [ A8E4A4407A09F35DCCC3771AF590B0C4, F56ECE42CE81098FCCBCDFBBF006C3FB9EDD29C62F03C4EAE012EE690669481B ] C:\Windows\System32\SessEnv.dll
20:06:36.0844 0x1094  C:\Windows\System32\SessEnv.dll - ok
20:06:36.0852 0x1094  [ 4C5AEE179DA7E1EE9A9CCB9DA289AF34, 9659C7B5046DE2C0416A74FDE6F798C3E78D38327CB71BAE49D57A8347A9097D ] C:\Windows\System32\ipnathlp.dll
20:06:36.0852 0x1094  C:\Windows\System32\ipnathlp.dll - ok
20:06:36.0861 0x1094  [ 56793271ECDEDD350C5ADD305603E963, 7A29407C1C550FF3A6A3544811ABD971E9C760B984A7E64D5A1440C69D6AF483 ] C:\Windows\System32\shsvcs.dll
20:06:36.0861 0x1094  C:\Windows\System32\shsvcs.dll - ok
20:06:36.0869 0x1094  [ A9A27A8E257B45A604FDAD4F26FE7241, C5A1056522EE2BA7B70D34E391477A0E9351569CEF28B875172F4B363F6D4177 ] C:\Windows\System32\SLsvc.exe
20:06:36.0869 0x1094  C:\Windows\System32\SLsvc.exe - ok
20:06:36.0878 0x1094  [ FD74B4B7C2088E390A30C85A896FC3AF, 897F1F89A4DDB356CF6E59EFBC32A2081C0CADE283793DB6879D263F7B2E313F ] C:\Windows\System32\SLUINotify.dll
20:06:36.0878 0x1094  C:\Windows\System32\SLUINotify.dll - ok
20:06:36.0882 0x1094  [ F8F08779E7D997913607B0146710CC04, 25E60795D1831502460BA037F3FC9C6045A68E370DBCC19637443D5C0FDDF0BA ] C:\Windows\System32\tcpipcfg.dll
20:06:36.0882 0x1094  C:\Windows\System32\tcpipcfg.dll - ok
20:06:36.0891 0x1094  [ F8F47F38909823B1AF28D60B96340CFF, EFD948EE09F22F9F373A98BA6D9BC519FD9244986E4BE7B2BACD92D3C145AD1D ] C:\Windows\System32\snmptrap.exe
20:06:36.0891 0x1094  C:\Windows\System32\snmptrap.exe - ok
20:06:36.0900 0x1094  [ F66FF751E7EFC816D266977939EF5DC3, 689BDD0B442830E162F2F9A8EFBD0E137F518C7F0CD92EDF4A43EFBA188B69F4 ] C:\Windows\System32\spoolsv.exe
20:06:36.0900 0x1094  C:\Windows\System32\spoolsv.exe - ok
20:06:36.0908 0x1094  [ 192C74646EC5725AEF3F80D19FF75F6A, 8F24FF139A46B1F837356B9D682526107D7BADCFA510842FEACB6F06C02D93D9 ] C:\Windows\System32\ssdpsrv.dll
20:06:36.0908 0x1094  C:\Windows\System32\ssdpsrv.dll - ok
20:06:36.0916 0x1094  [ 15825C1FBFB8779992CB65087F316AF5, E9431C016D209A7322C0586F11EEF0AB461AB5822960287BB1D0FBC30183614D ] C:\Windows\System32\wiaservc.dll
20:06:36.0917 0x1094  C:\Windows\System32\wiaservc.dll - ok
20:06:36.0925 0x1094  [ 6DE37F4DE19D4EFD9C48C43ADDBC949A, 9C3714238571704CEE2AD4F1E15029243E00B494345C41F74EFDF3F0328CC9EA ] C:\Windows\System32\swprv.dll
20:06:36.0925 0x1094  C:\Windows\System32\swprv.dll - ok
20:06:36.0933 0x1094  [ 92D7A8B0F87B036F17D25885937897A6, 6759BAB11E5FBB143BE13DF1611AE5D41D379DF423D881E92E910DF6A37CBA85 ] C:\Windows\System32\sysmain.dll
20:06:36.0933 0x1094  C:\Windows\System32\sysmain.dll - ok
20:06:36.0941 0x1094  [ 005CE42567F9113A3BCCB3B20073B029, B1831D71410AD6E7DEB59D26BF6D2D07D2F6112936D6A6FDA57E9296ADA4076D ] C:\Windows\System32\TabSvc.dll
20:06:36.0941 0x1094  C:\Windows\System32\TabSvc.dll - ok
20:06:36.0949 0x1094  [ CC2562B4D55E0B6A4758C65407F63B79, C6AD05B345C699A715EC13830D8EA6EE9822F4B713D15B1F29AC044674A0F498 ] C:\Windows\System32\tapisrv.dll
20:06:36.0949 0x1094  C:\Windows\System32\tapisrv.dll - ok
20:06:36.0958 0x1094  [ CDBE8D7C1E201B911CDC346D06617FB5, 16D5965E32A109DA38D77F4B6281081569D78371B2F522DE51100967F8776C7A ] C:\Windows\System32\tbssvc.dll
20:06:36.0958 0x1094  C:\Windows\System32\tbssvc.dll - ok
20:06:36.0966 0x1094  [ 5CDD30BC217082DAC71A9878D9BFD566, 260D40973F9EEAE9A1890B813D8DCC01A9434D17DCE5DA1D16B72A57DCF59194 ] C:\Windows\System32\termsrv.dll
20:06:36.0966 0x1094  C:\Windows\System32\termsrv.dll - ok
20:06:36.0974 0x1094  [ F4689F05AF472A651A7B1B7B02D200E7, 3D34B8879DBC69013D1A87A3F47B8A622A60B57F2E962E9F5925C5A01F44640F ] C:\Windows\System32\trkwks.dll
20:06:36.0974 0x1094  C:\Windows\System32\trkwks.dll - ok
20:06:36.0983 0x1094  [ 66328B08EF5A9305D8EDE36B93930369, FD8136BF15AB8D2DB15D011C4F813737D68EED1178462DB8CE40606C16185A30 ] C:\Windows\servicing\TrustedInstaller.exe
20:06:36.0983 0x1094  C:\Windows\servicing\TrustedInstaller.exe - ok
20:06:36.0991 0x1094  [ 060507C4113391394478F6953A79EEDC, 5D0AE5F1184165289DC8E8CD493607FCB68512CF90F748E3BFD2250655D784D4 ] C:\Windows\System32\UI0Detect.exe
20:06:36.0992 0x1094  C:\Windows\System32\UI0Detect.exe - ok
20:06:36.0999 0x1094  [ 7093799FF80E9DECA0680D2E3535BE60, 1CBFCCA84CB9212176BF5A1D32334BD54E58A2668A4746252738800468AD4AD4 ] C:\Windows\System32\upnphost.dll
20:06:36.0999 0x1094  C:\Windows\System32\upnphost.dll - ok
20:06:37.0011 0x1094  [ 449F5AB17863698F12F0BC8E99079AA6, C60901949B91D3B129FF8550F934970CB0F6758C135AB41F81A8524CBC1299AB ] C:\Windows\System32\dwm.exe
20:06:37.0011 0x1094  C:\Windows\System32\dwm.exe - ok
20:06:37.0020 0x1094  [ 294945381DFA7CE58CECF0A9896AF327, 67414C6D79D2826BC86BB37349C9D74DB4B667310CBC1ABFD103E26332AE4A00 ] C:\Windows\System32\vds.exe
20:06:37.0020 0x1094  C:\Windows\System32\vds.exe - ok
20:06:37.0030 0x1094  [ B75232DAD33BFD95BF6F0A3E6BFF51E1, A8120040F144AD42A39347A615F31BF752634994D4D134E2FAD23FEA9C1D71DF ] C:\Windows\System32\VSSVC.exe
20:06:37.0030 0x1094  C:\Windows\System32\VSSVC.exe - ok
20:06:37.0038 0x1094  [ F14A7DE2EA41883E250892E1E5230A9A, EBCB74BE26437F6FE84A3B41AD034F451D4BD12CA77D4C7A433DB912E7D31593 ] C:\Windows\System32\w32time.dll
20:06:37.0038 0x1094  C:\Windows\System32\w32time.dll - ok
20:06:37.0046 0x1094  [ B4E4C37D0AA6100090A53213EE2BF1C1, 67107F542F3C937FA5D9B28BA2EBFE994FFE287F16C0BFCF79AD20B95C13F78B ] C:\Windows\System32\wcncsvc.dll
20:06:37.0046 0x1094  C:\Windows\System32\wcncsvc.dll - ok
20:06:37.0054 0x1094  [ EA4B369560E986F19D93F45A881484AC, B61411D64901C9CB8C80402CD1E8808F5A0FACA38206C8D584C7C1019F5ADF5A ] C:\Windows\System32\WcsPlugInService.dll
20:06:37.0055 0x1094  C:\Windows\System32\WcsPlugInService.dll - ok
20:06:37.0064 0x1094  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] C:\Windows\System32\drivers\Wdf01000.sys
20:06:37.0064 0x1094  C:\Windows\System32\drivers\Wdf01000.sys - ok
20:06:37.0072 0x1094  [ C5EFDA73EBFCA8B02A094898DE0A9276, DE54E06CBE20EB27D88B29C3AE19CDFA0AE4933D6DCD640912C74A1065C9391C ] C:\Windows\System32\wdi.dll
20:06:37.0072 0x1094  C:\Windows\System32\wdi.dll - ok
20:06:37.0080 0x1094  [ 3E6D05381CF35F75EBB055544A8ED9AC, BEC43932BD6C34406B8850E28178B937BFD9512E49FD9F8C54DA7EE272B478A9 ] C:\Windows\System32\WebClnt.dll
20:06:37.0080 0x1094  C:\Windows\System32\WebClnt.dll - ok
20:06:37.0088 0x1094  [ 8D40BC587993F876658BF9FB0F7D3462, 23748E11F5CCE3D4978D748780283FA5A1154F53FF70D924CB2128FF8A4705F7 ] C:\Windows\System32\wecsvc.dll
20:06:37.0088 0x1094  C:\Windows\System32\wecsvc.dll - ok
20:06:37.0097 0x1094  [ 9C980351D7E96288EA0C23AE232BD065, BA627B04C4259716B451F421F5310A69D8DE9407DE496AA0489139125E9DC16A ] C:\Windows\System32\wercplsupport.dll
20:06:37.0097 0x1094  C:\Windows\System32\wercplsupport.dll - ok
20:06:37.0105 0x1094  [ 66B9ECEBC46683F47EDC06333C075FEF, 35C33596D97DB65DE0A687644E9AD924AD5FCBAFD83FE4D23E7E58EF4BC4CC87 ] C:\Windows\System32\wersvc.dll
20:06:37.0105 0x1094  C:\Windows\System32\wersvc.dll - ok
20:06:37.0113 0x1094  [ ECFA1AC9D63D42B9B40AF8B5798513E8, 1FA58B5A68C8FE3F07BEDB9CF075B2F8BCE4B8A72DA18198C3B3384417EC7019 ] C:\Program Files\Windows Defender\MsMpRes.dll
20:06:37.0113 0x1094  C:\Program Files\Windows Defender\MsMpRes.dll - ok
20:06:37.0121 0x1094  [ A2D043408A2DC9CDE48CFF88FCD74662, FDA016669FC2F9E64BA691E41FD304F43CE7C5FFA9BAADCE6A8CD65A23340EF9 ] C:\Windows\System32\winhttp.dll
20:06:37.0121 0x1094  C:\Windows\System32\winhttp.dll - ok
20:06:37.0130 0x1094  [ D2E7296ED1BD26D8DB2799770C077A02, B494719C2DEB7B9D2505866868143C4E4F59B88461920AA49BD9F1251B6571B8 ] C:\Windows\System32\wbem\WMIsvc.dll
20:06:37.0130 0x1094  C:\Windows\System32\wbem\WMIsvc.dll - ok
20:06:37.0134 0x1094  [ 6CBB0C68F13B9C2EC1B16F5FA5E7C869, 22D53818F4A4ACE441E121151CFD7CB1EDF5E8303DF9E113C9BB304B418A96EF ] C:\Windows\System32\WsmSvc.dll
20:06:37.0135 0x1094  C:\Windows\System32\WsmSvc.dll - ok
20:06:37.0143 0x1094  [ EC339C8115E91BAED835957E9A677F16, 3BBE6D4F1731198E8F0CFEE67C4CCA5C31E6968F8E02EF9E029C1847A26F513B ] C:\Windows\System32\wlansvc.dll
20:06:37.0143 0x1094  C:\Windows\System32\wlansvc.dll - ok
20:06:37.0151 0x1094  [ 21FA389E65A852698B6A1341F36EE02D, 2D60911EAAE26C4CE3DEF4FAD1EDE093F912209AA90741AAA8B93F06B37DF605 ] C:\Windows\System32\wbem\WmiApSrv.exe
20:06:37.0151 0x1094  C:\Windows\System32\wbem\WmiApSrv.exe - ok
20:06:37.0160 0x1094  [ 56382A5EB85A25446745E3BD6D50A3A5, 94ABCA1238150B74271CC47F0BDE5CCE2CB2D734AEE8E4B04074ECE396482624 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
20:06:37.0160 0x1094  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
20:06:37.0168 0x1094  [ CBC156C913F099E6680D1DF9307DB7A8, FD8B227F445679E31048CA41442A978A98F267FED96E22C235F63C72AEEE2AB0 ] C:\Windows\System32\wpcsvc.dll
20:06:37.0168 0x1094  C:\Windows\System32\wpcsvc.dll - ok
20:06:37.0177 0x1094  [ 490A18B4E4D53DC10879DEAA8E8B70D9, D069D8C22CF78A0970E85C0B9879E08FF19458FAA75AE447BCF9236731F64252 ] C:\Windows\System32\wpdbusenum.dll
20:06:37.0177 0x1094  C:\Windows\System32\wpdbusenum.dll - ok
20:06:37.0185 0x1094  [ A2BFEDF5D926CBED9C5F7BC46169A99C, 4F336C0D1DFBCDF9583F528331300FD377AE6565E0C70D58CD9E6ACE95B7273F ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
20:06:37.0185 0x1094  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe - ok
20:06:37.0193 0x1094  [ 9EA3E6D0EF7A5C2B9181961052A4B01A, F39BAF1FC7DD1600C0052C2A6AA3BCBC8CA3DA96D1AC7B42B0F2810D051EE1B0 ] C:\Windows\System32\wscsvc.dll
20:06:37.0194 0x1094  C:\Windows\System32\wscsvc.dll - ok
20:06:37.0202 0x1094  [ A2AC37A1EEF83BD9E912B0EFCBEA06BD, F51F38E789DE23A53AEC58B505C7AD9ABB3988F08F54A73DADE52E5A5F7F613E ] C:\Windows\System32\SearchIndexer.exe
20:06:37.0202 0x1094  C:\Windows\System32\SearchIndexer.exe - ok
20:06:37.0210 0x1094  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] C:\Windows\System32\wuaueng.dll
20:06:37.0210 0x1094  C:\Windows\System32\wuaueng.dll - ok
20:06:37.0218 0x1094  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] C:\Windows\System32\drivers\WUDFPf.sys
20:06:37.0218 0x1094  C:\Windows\System32\drivers\WUDFPf.sys - ok
20:06:37.0226 0x1094  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] C:\Windows\System32\WUDFSvc.dll
20:06:37.0226 0x1094  C:\Windows\System32\WUDFSvc.dll - ok
20:06:37.0234 0x1094  [ 9922ADB6DCA8F0F5EA038BEFF339C08B, DA74D1019544519AB1D138FDEE9D4BCB25F71DCA155751D1F931067273B32BE7 ] C:\Windows\System32\scecli.dll
20:06:37.0234 0x1094  C:\Windows\System32\scecli.dll - ok
20:06:37.0243 0x1094  [ EE3718BCF5CEF1C457C10A745E410959, F79AA33B471991575E7A7B5BB33588792E4B321DF8706B58E284625FC3BCF110 ] C:\Windows\System32\ntmarta.dll
20:06:37.0243 0x1094  C:\Windows\System32\ntmarta.dll - ok
20:06:37.0251 0x1094  [ CDA9F1373805AF88F6FA4F2064BBA24D, B26AAFFF9A4721A168FEC6DBEFF785121FDD3010BE46BC89815E2C8C4C40B303 ] C:\Windows\System32\svchost.exe
20:06:37.0251 0x1094  C:\Windows\System32\svchost.exe - ok
20:06:37.0259 0x1094  [ 7823A58BF0FE3CAAA555C12B5CF91290, 873435FBE8FAB30A6A50E0924C0D9AB24F0F03938E1F1959D68CB00192559766 ] C:\Windows\System32\powrprof.dll
20:06:37.0259 0x1094  C:\Windows\System32\powrprof.dll - ok
20:06:37.0267 0x1094  [ 52F87B9CC8932C2A7375C3B2A9BE5E3E, 2EB22DD418D4934BDD22C5DB49D5D06178EC0419AB5CC28DD544CA91823987B0 ] C:\Windows\System32\drivers\luafv.sys
20:06:37.0267 0x1094  C:\Windows\System32\drivers\luafv.sys - ok
20:06:37.0276 0x1094  [ BC5B0BE5AF3510B0FD8C140EE42C6D3E, B21CA5F14BDB6CFD97A24C28BB2AD0D704C46058F13B01FF4203514FE8B92591 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
20:06:37.0276 0x1094  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe - ok
20:06:37.0284 0x1094  [ 72AB6633E9B39EC7FEBEDF083A9061E5, 758E5BA89665C574456A2A826EF5A7DC2487C8379893010EB57BC40127AC918F ] C:\Windows\System32\mscoree.dll
20:06:37.0284 0x1094  C:\Windows\System32\mscoree.dll - ok
20:06:37.0293 0x1094  [ D44067027714CC58B8AB0AC38FDA1A0B, 56E96A58B5A53A68485F8D2F7BA286F2B174AB910BD45145258D48251F489F02 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
20:06:37.0293 0x1094  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
20:06:37.0302 0x1094  [ 46662CD685A6341AB4AED86D134D80E9, 7AAEFBFAA824F24A1F9FC7009FBE6355789E0AC80F0C26EE1030A01A0922C90B ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd\comctl32.dll
20:06:37.0302 0x1094  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd\comctl32.dll - ok
20:06:37.0311 0x1094  [ CC8ADF7935AD443F59C5BA2BAEAFCA63, DF8D4F51ED529E9DC3591A611693A01C69DCCD532C7E9718A8A61359B9907C98 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
20:06:37.0311 0x1094  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
20:06:37.0320 0x1094  [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7, 690F12C490BEE2BF17AB7B6804E6E9B96F51C304350CCDE80FE5C7EEFA89720E ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
20:06:37.0320 0x1094  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
20:06:37.0329 0x1094  [ C78F5C6473A6D1B1FE8EC4279AD3EBF7, AAA7A561A48A5A43E58728772642CE18FF67C7AE3559463F5B51B9A76D0E9F33 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\d029a18482e452ebc878f96f8dcbaf8d\mscorlib.ni.dll
20:06:37.0329 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\d029a18482e452ebc878f96f8dcbaf8d\mscorlib.ni.dll - ok
20:06:37.0338 0x1094  [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF, 3BE4B8EE22FA55D3A17D3718781C8BCA631C78F7928092561F6B79BB60E7D7FE ] C:\Windows\System32\rpcss.dll
20:06:37.0338 0x1094  C:\Windows\System32\rpcss.dll - ok
20:06:37.0347 0x1094  [ 4D0252C977B1F00615BF6F9686404717, 16C95F579C43A61C49979D8425B619813D18271BA4FE039F2D39C4977F479BE8 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\87639f286c9d47b2e92742c1656f329d\System.ni.dll
20:06:37.0347 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_64\System\87639f286c9d47b2e92742c1656f329d\System.ni.dll - ok
20:06:37.0356 0x1094  [ FDA037747EAC3FEF223A267282889D3E, 478B99310A54FF039BF632DAACD7CBA630E567841EC1168A18FA9DB658C3F982 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\66b0c65b37a407655524453d726560da\System.ServiceProcess.ni.dll
20:06:37.0356 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\66b0c65b37a407655524453d726560da\System.ServiceProcess.ni.dll - ok
20:06:37.0365 0x1094  [ DB998334D21928780883FC24B3B50988, C21137476B441A550A962FDCC2EAE0CE0D62AE20BBA406643575A812D3B9A267 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
20:06:37.0365 0x1094  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
20:06:37.0375 0x1094  [ 7BCDF81E2E6BE2D374C3F916FA1E9361, 7F8175B14D42AD4736E5F97EB6CCD855EF22837458FC4CB93612EE30B6456068 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\83c3de0bab7889cf47def991cc065295\WindowsBase.ni.dll
20:06:37.0375 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\83c3de0bab7889cf47def991cc065295\WindowsBase.ni.dll - ok
20:06:37.0383 0x1094  [ 8A18A7D0DB72BEDE9B4B7C2FDCE9D13F, 2AD79D1689E242391E8F65965A832F4D1F74CFE6B36CC7F0871FC50AE3982084 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\9a5ad9c3c02a32cf28955cd71dfd5e91\PresentationCore.ni.dll
20:06:37.0383 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\9a5ad9c3c02a32cf28955cd71dfd5e91\PresentationCore.ni.dll - ok
20:06:37.0388 0x1094  [ FB4C144F69C381001347DC56E4971C18, E160454536898EBE85CF3B812285E5C9B07AE326AE28173DF78DAE9A9BEFD05F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
20:06:37.0388 0x1094  C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
20:06:37.0399 0x1094  [ 54A374CD6B0A5E3E418B028BBB787C08, 8DAED00AFC0E84DFF962EA1185FDA693B24F59AC6946BB03E30DB3C123982228 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
20:06:37.0399 0x1094  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
20:06:37.0408 0x1094  [ 7E451C585AD79B895D03A3301EC5A675, EB5D1397C257C7044FAAB1C295BB08F8D5DEC8038E0BE64518B5E199BAAD0004 ] C:\Windows\System32\shfolder.dll
20:06:37.0408 0x1094  C:\Windows\System32\shfolder.dll - ok
20:06:37.0415 0x1094  [ EA3D2B63BA304EB6EDABBAFA21599B47, 01F6951D53721C62C94B4A3F6A0F6A2429B8805E1FCF61C2DA4B5C8368A0AD3A ] C:\Windows\System32\version.dll
20:06:37.0416 0x1094  C:\Windows\System32\version.dll - ok
20:06:37.0424 0x1094  [ 92A0FCE28889EE68552C0D9132096639, 796C1224CA13AD21BD317C6B001125D9759BE6776CBB00D9DB1D6D3D2997EF73 ] C:\Program Files\Microsoft Security Client\MpSvc.dll
20:06:37.0424 0x1094  C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
20:06:37.0433 0x1094  [ 89F2AEDC2788696702141AB82C3E7866, E166CBD8D3C708737C37172221945D8E56C25C2CC750889C3CE14AA2DE750F33 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
20:06:37.0433 0x1094  C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
20:06:37.0442 0x1094  [ BAD79FECE1387CDD8388A3314645757F, A0E5DAE8BD6B29F7F22F28C644E3CCD7C08E9DBBBC2A54CC3C0E542B6F20EFA3 ] C:\Windows\System32\LogonUI.exe
20:06:37.0442 0x1094  C:\Windows\System32\LogonUI.exe - ok
20:06:37.0449 0x1094  [ D2B5BFBA352139FA5CD92DD07C9E0D17, B629DDB5755CA03DAE3502E7883C7A92DF66E7FA01979D1DF66276FE9CF1D984 ] C:\Windows\System32\authui.dll
20:06:37.0449 0x1094  C:\Windows\System32\authui.dll - ok
20:06:37.0457 0x1094  [ 6C2D2558DECB89C83873F80160D19F2C, 88366ABDA198978773150F35FA558C73F19BC261A65D73B66B2C43B89BE25831 ] C:\Windows\System32\wtsapi32.dll
20:06:37.0457 0x1094  C:\Windows\System32\wtsapi32.dll - ok
20:06:37.0467 0x1094  [ F50B9765F2F4B4506F5EF86B888B4350, DBD78B89C51B10DD4F330CBB083FBB9CA63F23E8B5FC7EFD68945645969B58E2 ] C:\Program Files\Microsoft Security Client\MpClient.dll
20:06:37.0467 0x1094  C:\Program Files\Microsoft Security Client\MpClient.dll - ok
20:06:37.0475 0x1094  [ 887337641E72861178B1DA84867298ED, ACC245A9440A2ED882DDD1A03638E27F2DC6AC12D5BA4217D5741C76FFAEC976 ] C:\Windows\System32\wintrust.dll
20:06:37.0475 0x1094  C:\Windows\System32\wintrust.dll - ok
20:06:37.0484 0x1094  [ 6B58266234B36ABCDD43C797B0D1932E, 37A9BB603DEE09FD7BE8C25F489F434EC999791FFCA69E7CC1B46A53F7CA68EA ] C:\Windows\System32\msimg32.dll
20:06:37.0484 0x1094  C:\Windows\System32\msimg32.dll - ok
20:06:37.0493 0x1094  [ 88DBC757681093478BC80211C21695E5, BB3401574E83135DB8B855795040F57D1309C9FE2F4DD38CFF9F100A45FC3B2E ] C:\Windows\System32\uxtheme.dll
20:06:37.0493 0x1094  C:\Windows\System32\uxtheme.dll - ok
20:06:37.0503 0x1094  [ 7D2A43E8FDF725A1133F6C6056A72CDC, D5F7CF0DAB54B380F96777BC918E64987072A1F84666587070724FD8A850186C ] C:\Program Files\Windows Defender\MpSvc.dll
20:06:37.0503 0x1094  C:\Program Files\Windows Defender\MpSvc.dll - ok
20:06:37.0510 0x1094  [ 78AC0946A2843C60994958E70FF19E6F, 09109D28C1F7852DD24C062B8458EDFBA7A32A8364CDB6790182D162224B677E ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.19096_none_56ac6a77b5937fd8\GdiPlus.dll
20:06:37.0510 0x1094  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.19096_none_56ac6a77b5937fd8\GdiPlus.dll - ok
20:06:37.0519 0x1094  [ D07D4DA02FA8C7092FD402634419797D, 8ACC5CE418358DA1AD912A83E8F9C4157C27B273B6EEC238E602BB8E614AADB3 ] C:\Program Files\Windows Defender\MpClient.dll
20:06:37.0519 0x1094  C:\Program Files\Windows Defender\MpClient.dll - ok
20:06:37.0527 0x1094  [ 16881B42E07390FAA8C7331E9B8316A7, CF68AD56E7880DD899AB5E7C36B92ABAAEC4D521F17DC42022554FD3C98571E5 ] C:\Windows\System32\duser.dll
20:06:37.0527 0x1094  C:\Windows\System32\duser.dll - ok
20:06:37.0535 0x1094  [ 656CF740A2FDB99664A91C439D05C0ED, C6F3D698AE412E3918844EA2AA14EE241F981506C74F14E3783A67FE1E6A24A1 ] C:\Windows\System32\xmllite.dll
20:06:37.0535 0x1094  C:\Windows\System32\xmllite.dll - ok
20:06:37.0544 0x1094  [ C501852F1CA40FFC55363ACC0D2DF5BA, 00B0E33941DA5409DFBA95984F167CE8188C89C9090DCD8CD3C2D4CC5C8F6E35 ] C:\Windows\System32\SmartcardCredentialProvider.dll
20:06:37.0544 0x1094  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
20:06:37.0552 0x1094  [ A8DDF2DA87A306E880D319F44B533045, 97403384A7F3A91AE840C5D8E0BD8E623206BD6BCDD8996BFF11FE7DAD8BF9C9 ] C:\Windows\System32\SmartFaceVCP.dll
20:06:37.0552 0x1094  C:\Windows\System32\SmartFaceVCP.dll - ok
20:06:37.0561 0x1094  [ 84B9BEE43277716291F9079E1CB03FF1, 44C3FC4F37BE0578DF62CA97C04C5A7E48A24628C02AFFE02FB956AFC1F4AB43 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
20:06:37.0561 0x1094  C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
20:06:37.0569 0x1094  [ FEB771AF00A645DCA8A7D07CC33F7E8E, 654DE167200DC09F5ED79E3966165FA7BE2E9A50BAE20DAC4346E6955CC18E5C ] C:\Windows\System32\winspool.drv
20:06:37.0569 0x1094  C:\Windows\System32\winspool.drv - ok
20:06:37.0578 0x1094  [ 2F0C8FD04FCB78617D48484523C77117, 531E8991FF02E1D301C1002FDFAAE4958702C9411C405C8BD9BE659FF09FD79D ] C:\Windows\System32\Ati2evxx.exe
20:06:37.0578 0x1094  C:\Windows\System32\Ati2evxx.exe - ok
20:06:37.0586 0x1094  [ D58A65112AE355CADFABEEFC8D329A8F, 8A78FC9A46201CF264F27A4B66D9880D468501E4937E1E660EF75AAF09098D32 ] C:\Windows\System32\oleacc.dll
20:06:37.0586 0x1094  C:\Windows\System32\oleacc.dll - ok
20:06:37.0594 0x1094  [ 0C063350E73B443666B17F225BB9FEC7, 7C948305B2D62FAD01124E558C64168C88E9B663D0B9E967318DC21F1E62F2A3 ] C:\Windows\System32\cfgmgr32.dll
20:06:37.0594 0x1094  C:\Windows\System32\cfgmgr32.dll - ok
20:06:37.0602 0x1094  [ F59CF3BFE865EB795C5DE5850F48B321, 3027C787DA153F79745A0BB00574EBE549F5F15274CB0642EBB19920ACA851D4 ] C:\Windows\System32\rasplap.dll
20:06:37.0602 0x1094  C:\Windows\System32\rasplap.dll - ok
20:06:37.0611 0x1094  [ A4F3F34A7146D8633FA8D346535A9CAA, 2D01094210C0C8F611CCF1D3A6D136107C6E73ABF7CC801F404B352BEDBB3205 ] C:\Windows\System32\rasapi32.dll
20:06:37.0611 0x1094  C:\Windows\System32\rasapi32.dll - ok
20:06:37.0619 0x1094  [ 801F3E903818B49BA55D925211FB9584, FDFEFED29EF2B909AE998B1D2BD6DEBED9A035C8BDA78A4B8F4BFB8C0EEAAB68 ] C:\Program Files\Microsoft Security Client\MpCommu.dll
20:06:37.0619 0x1094  C:\Program Files\Microsoft Security Client\MpCommu.dll - ok
20:06:37.0627 0x1094  [ C30BD20F185A47DCD4FD05F5AE1BC077, CAE1C60B826AC7A07E09D2A94E815F2938069D22EA08808C7F11CA22E0837039 ] C:\Windows\System32\rasman.dll
20:06:37.0628 0x1094  C:\Windows\System32\rasman.dll - ok
20:06:37.0635 0x1094  [ F0884FA3E83C79775BF89C74DD28B616, 773BFB326428B9733083F8DE978067FBAA7EF2906BD5DF60EC3550473E2759D1 ] C:\Windows\System32\tapi32.dll
20:06:37.0636 0x1094  C:\Windows\System32\tapi32.dll - ok
20:06:37.0640 0x1094  [ 303C4EB5C2FB40F194E2B24CAD7148EF, 72DFD0B7C7611859EA80D466E9EA735CE63BD4AF2F2570766D16211E7A65C579 ] C:\Windows\System32\MMDevAPI.dll
20:06:37.0640 0x1094  C:\Windows\System32\MMDevAPI.dll - ok
20:06:37.0650 0x1094  [ F1D25FB6A8BF8FBAE49717B684670393, 56991FE3ED90311630FD60772876ADACCEB7DC9E761D4BFEC6A96E18C6C4F54B ] C:\Windows\System32\rtutils.dll
20:06:37.0650 0x1094  C:\Windows\System32\rtutils.dll - ok
20:06:37.0663 0x1094  [ DE4BCD4F7BEA7E654812049B86B87837, 972CD913A072943AAFD20C81B05220854F4B2868ABFA927D3D903F0329737433 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
20:06:37.0663 0x1094  C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
20:06:37.0668 0x1094  [ 4809DCE75464A833A5F37FB9AF5FB824, 62FFD5A897F3E39F3E2584B895D13EF99667CC77C848833B3F03862EE8A7B026 ] C:\Windows\System32\fltLib.dll
20:06:37.0668 0x1094  C:\Windows\System32\fltLib.dll - ok
20:06:37.0676 0x1094  [ 7500278FEF4A66B0D76D8438F0295F4E, AF7F6BE7D670187541F97636AD96782F38D8DCF472351098BAF2939B04A6CAFF ] C:\Windows\System32\winmm.dll
20:06:37.0676 0x1094  C:\Windows\System32\winmm.dll - ok
20:06:37.0685 0x1094  [ 8CBEA4AABFA48C69832B299E23607029, D8ACD3DE8E86D79A9DDF4BF3492C8F8D85B7F141C77516BBB3BE4BC035F4FCA4 ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
20:06:37.0685 0x1094  C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
20:06:37.0694 0x1094  [ 514A07C903607458B6B5A430B09BF794, 9A79E172E28A0B2A34121E74FEE29401A5AF9AA4E238F3E3F2DD8F94FEC4F2AE ] C:\Windows\System32\avrt.dll
20:06:37.0694 0x1094  C:\Windows\System32\avrt.dll - ok
20:06:37.0702 0x1094  [ B1D4BB8DFD7128A90982562268920724, 741CBBF101DDAADEF496F54A382BE04AE7923E63A26FE62356CF821B0E0390D5 ] C:\Windows\System32\WinSCard.dll
20:06:37.0702 0x1094  C:\Windows\System32\WinSCard.dll - ok
20:06:37.0711 0x1094  [ 9EB89625A82AC961F25E7C865947BF9A, 91DB9530CDE883DC60BE621AC4210ACD069631D9466E37411D9D6AEE587098D9 ] C:\Windows\System32\drivers\MpFilter.sys
20:06:37.0711 0x1094  C:\Windows\System32\drivers\MpFilter.sys - ok
20:06:37.0719 0x1094  [ 159116B914ADA81E2C071E00C9183DED, CCFEEC40FB6602BB9256C8CAB051589BD298CC8CD8100CD052E75D156DBB96C5 ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll
20:06:37.0719 0x1094  C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok
20:06:37.0728 0x1094  [ 73F18E253DF8E0A9CE5FC45E62FB1945, 45254099C3CB5166953423814A98E4B39AD02655BC937D78D2616F2BDC83E6B4 ] C:\Windows\System32\cabinet.dll
20:06:37.0728 0x1094  C:\Windows\System32\cabinet.dll - ok
20:06:37.0736 0x1094  [ 00C7DAFAD08FAD59E51EB9A1F90925DE, 39FEBD2CD67CEB6E348135AF46B6AEF8E89811DAD2D830478D4312BF27A61E25 ] C:\Windows\System32\shgina.dll
20:06:37.0736 0x1094  C:\Windows\System32\shgina.dll - ok
20:06:37.0744 0x1094  [ 99AA51A6AE40DED4A74776E6E1C066C1, 7D6DC515863A36E37C0984651560E061747D06D7CC5F8CE7B2B485A91A1CE5C1 ] C:\Windows\System32\adtschema.dll
20:06:37.0744 0x1094  C:\Windows\System32\adtschema.dll - ok
20:06:37.0752 0x1094  [ FE13271EF661F8BE83A1A0D3366164D0, 084D858A21EC8A22C0880D4C70D042ACAB3982E998054CFE3525D2725D7454E2 ] C:\Windows\System32\propsys.dll
20:06:37.0752 0x1094  C:\Windows\System32\propsys.dll - ok
20:06:37.0761 0x1094  [ 4CEA4255CAE84BF21FCA9A2827E16CBB, 2B46053E200FCB4A11E010E1F5C8C49253768009F81068BB800298F7A5DAF3DA ] C:\Windows\System32\shacct.dll
20:06:37.0761 0x1094  C:\Windows\System32\shacct.dll - ok
20:06:37.0768 0x1094  [ 05411EF3E66659C63803563BB06C2E17, BB7B12B142A5685A518970CE129D93B563CD7C683C3155322AF690EA661173FD ] C:\Windows\System32\dimsjob.dll
20:06:37.0769 0x1094  C:\Windows\System32\dimsjob.dll - ok
20:06:37.0777 0x1094  [ E3041BC26D6930D61F42AEDB79C91720, 3556C033BB78445EC8B2F98A82455914764AFC70CBFF634DDBD3539885A1E457 ] C:\Windows\System32\drivers\fltMgr.sys
20:06:37.0777 0x1094  C:\Windows\System32\drivers\fltMgr.sys - ok
20:06:37.0786 0x1094  [ 6F391A20728B092E0E6D09F0AA05DA7D, 72A3167E947675849FECAC6FEABE23DCA1B482F8EE5117C3CC916921A99EBB41 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpengine.dll
20:06:37.0786 0x1094  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpengine.dll - ok
20:06:37.0794 0x1094  [ 9E693C6146932B5369DFFA584E805EF6, 4B3647ACA543884168C8F3A32DE95E5FF6F05C866A89F51D413C341334E237E4 ] C:\Windows\System32\PSHED.DLL
20:06:37.0795 0x1094  C:\Windows\System32\PSHED.DLL - ok
20:06:37.0802 0x1094  [ 7F633AC83782EB0E8ADE513B8A1A9BC8, 33589B748E5255B154BC9D94C6196E9C661197746A025981589285D088278D77 ] C:\Windows\System32\audiodg.exe
20:06:37.0802 0x1094  C:\Windows\System32\audiodg.exe - ok
20:06:37.0811 0x1094  [ 35FBB6F5993C9EE70CDB72CC8AAB5D38, 9891D0B550E5A42B41B0587E9F71344A6DBD085494BCB4CD1CBA0CDB6A1CAE09 ] C:\Windows\System32\wdmaud.drv
20:06:37.0811 0x1094  C:\Windows\System32\wdmaud.drv - ok
20:06:37.0819 0x1094  [ A0E1B575BA8F504968CD40C0FAEB2384, F64A24A5A93F4E757882E97C65DA612F07A87F4DDD2E10C1AB0250AFA03BCEF1 ] C:\Windows\System32\gpsvc.dll
20:06:37.0819 0x1094  C:\Windows\System32\gpsvc.dll - ok
20:06:37.0827 0x1094  [ C5EDECA7546B009484B23FAD0E9724C1, 8F71B8B5F644C38BD4E5FD41AE27C898FCD94FCC4DEE068D32592BF8099FBE89 ] C:\Windows\System32\nlaapi.dll
20:06:37.0827 0x1094  C:\Windows\System32\nlaapi.dll - ok
20:06:37.0835 0x1094  [ 7FC9AFDD2A2ACFCB52FB05D57FE8C2F4, 9DB8D42BBFB0222DB270EC249FCAD8AE02840AE5AF939EC01BC7F58F3BD68DA6 ] C:\Windows\System32\atl.dll
20:06:37.0835 0x1094  C:\Windows\System32\atl.dll - ok
20:06:37.0844 0x1094  [ 17BF3BF5296936B153FDDDA189B60E07, AF13EAE258E3705F8613246DE1ABCEAD5267492210B15449B16482EDD1A57D16 ] C:\Windows\System32\ksuser.dll
20:06:37.0844 0x1094  C:\Windows\System32\ksuser.dll - ok
20:06:37.0852 0x1094  [ EEFDA2A090E8000740D46B09DCDBEAFF, 936148CF121DADB6E0A6F109DF9BCE4227608E0AC491BCF59FD4CD60BC3C6802 ] C:\Windows\System32\AudioSes.dll
20:06:37.0852 0x1094  C:\Windows\System32\AudioSes.dll - ok
20:06:37.0861 0x1094  [ A1A408E9F8C2DB9C3B3BA21C25CCF9C3, D67E425A918792E1A9017A687A8F42C46788511F5BE83F0FA54321865D182321 ] C:\Windows\System32\AudioEng.dll
20:06:37.0861 0x1094  C:\Windows\System32\AudioEng.dll - ok
20:06:37.0868 0x1094  [ 75C881C65CEF2C7B911EB0A351957368, 136C50B7B9A56F7EE3C68A34CDAB76CD118ADD12C2CAF2F78F7DB1BE1F99B82D ] C:\Windows\System32\drivers\spsys.sys
20:06:37.0868 0x1094  C:\Windows\System32\drivers\spsys.sys - ok
20:06:37.0876 0x1094  [ E12F22B73F153DECE721CD45EC05B4AF, 41887EEF4BB024329B4079AD50FC5FB705F0EB8BAF6C93A8242DC2A73D3AFD86 ] C:\Windows\System32\es.dll
20:06:37.0876 0x1094  C:\Windows\System32\es.dll - ok
20:06:37.0884 0x1094  [ 48FEF0CD6C0D4CA428DE7024F297E1CD, 489026352868DD70F843B637FAD0F7E2D9A71429C8ECBD96A9FA54FFA32C8F7C ] C:\Windows\System32\WindowsCodecs.dll
20:06:37.0884 0x1094  C:\Windows\System32\WindowsCodecs.dll - ok
20:06:37.0893 0x1094  [ 215DFBEF790637C2B9C02BB23C9887EB, EE6207FA2D5CA28C7296653EB74DCC10EA0A4DFC3AAAF1B0C4B07FAEC87864B6 ] C:\Windows\System32\msacm32.dll
20:06:37.0893 0x1094  C:\Windows\System32\msacm32.dll - ok
20:06:37.0898 0x1094  [ 9A328CC4E4490E929E30332AC902CAC1, 658CEF505A83DA082B19599C2B497488DFC96911969E6B5B2F6C2318B35660EB ] C:\Windows\System32\msacm32.drv
20:06:37.0898 0x1094  C:\Windows\System32\msacm32.drv - ok
20:06:37.0907 0x1094  [ 62BDB059ED8AE0C63E33BBF990941E0F, 53C15597E7A0EB62BDABC6F790873E4D9073A845CFD3DB039472002ADC1195FA ] C:\Windows\System32\midimap.dll
20:06:37.0907 0x1094  C:\Windows\System32\midimap.dll - ok
20:06:37.0916 0x1094  [ E08935E54CEE225BEB3CC220CBCC734A, 2AAFC40B6747C108CF6DD516E118B0DE92A6AC2018670338E06B2F02D3DBE6E5 ] C:\Windows\System32\AUDIOKSE.dll
20:06:37.0916 0x1094  C:\Windows\System32\AUDIOKSE.dll - ok
20:06:37.0928 0x1094  [ 56697D33950E5E83A4049F477BE7C320, 9272DEFD5B3D0FF201EFB4ADDA1F5C0119B181D70B29AC95A42B581E28D81DD5 ] C:\Windows\System32\hid.dll
20:06:37.0928 0x1094  C:\Windows\System32\hid.dll - ok
20:06:37.0934 0x1094  [ 5374BCDA48AF8B6096ACE12E1762523B, 98A73A96D22418AE040DA74C400668E8F4760A12C744A72854A9FF42D02C9E29 ] C:\Windows\System32\CnxtAp64.dll
20:06:37.0934 0x1094  C:\Windows\System32\CnxtAp64.dll - ok
20:06:37.0942 0x1094  [ A021CC1D5F73CDB0D022D43AADBAB933, 1B220C905677D4DEE6FDF9860BAC367784684C685D75243B246E854ACEDBBB4D ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpasbase.vdm
20:06:37.0942 0x1094  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpasbase.vdm - ok
20:06:37.0951 0x1094  [ D76E231E4850BB3F88A3D9A78DF191E3, 98CAD31C41AD155EA853DF850D94FA29543C3A7D26262D1B6881281D033CEBAF ] C:\Windows\System32\uxsms.dll
20:06:37.0951 0x1094  C:\Windows\System32\uxsms.dll - ok
20:06:37.0959 0x1094  [ B2C55E65B4CF95E154E31B1470A90C69, 931359FBCDFAFBB676C25D30DD2803CA56F6806420622E2B5BC23D9BA4CC0F73 ] C:\Windows\System32\WMALFXGFXDSP.dll
20:06:37.0959 0x1094  C:\Windows\System32\WMALFXGFXDSP.dll - ok
20:06:37.0968 0x1094  [ B1DF2D87DC8BF6072699AC8301B37796, D5A6FD1EDB627324DFA1A0555F1777A3313EF29DDE29982C3CE59DAF1ED0D105 ] C:\Windows\System32\WUDFPlatform.dll
20:06:37.0968 0x1094  C:\Windows\System32\WUDFPlatform.dll - ok
20:06:37.0976 0x1094  [ 96ECE2659B6654C10A0C310AE3A6D02C, 3322E87B9F64C3ACBCB634F2390AAB212FA7695383BF01F0092A803871BF19B2 ] C:\Windows\System32\drivers\lltdio.sys
20:06:37.0976 0x1094  C:\Windows\System32\drivers\lltdio.sys - ok
20:06:37.0984 0x1094  [ C32929420A1EA895FCB79FAA947CE223, E3C3D09E5548D640E7F0CD54BE089A0C075D397CCCF740EF7374D2416917C1B0 ] C:\Windows\System32\atiedu64.dll
20:06:37.0984 0x1094  C:\Windows\System32\atiedu64.dll - ok
20:06:37.0992 0x1094  [ 177202AFC8DC3DA9C298C9A027C49C09, B33BAC8CEC305BBF91CAEBCDBE9A0467F9EBD49B92A1794DE53D9E8BCC859F9F ] C:\Windows\System32\atipdl64.dll
20:06:37.0992 0x1094  C:\Windows\System32\atipdl64.dll - ok
20:06:38.0001 0x1094  [ 2007B826C4ACD94AE32232B41F0842B9, 6267D165C3C8C5F83194890A6DBF71226D4B891AECD1D06F7AEB5D738C3DC9CA ] C:\Windows\System32\drivers\nwifi.sys
20:06:38.0001 0x1094  C:\Windows\System32\drivers\nwifi.sys - ok
20:06:38.0009 0x1094  [ 8BAA43196D7B5BB972C9A6B2BBF61A19, 8AFFB26F6E8CF67F562818BBFE12FB448E4FCDF9B68858B625681565DE30DDC1 ] C:\Windows\System32\drivers\ndisuio.sys
20:06:38.0009 0x1094  C:\Windows\System32\drivers\ndisuio.sys - ok
20:06:38.0018 0x1094  [ 836C0B5CF54DAE238595A12FA9AA3F31, 90E5A8FA01CCA8F92BF44D9C7B39185CEA9EAD52A8917C4C6B320AA8FEC65A1D ] C:\Windows\System32\Ati2evxx.dll
20:06:38.0018 0x1094  C:\Windows\System32\Ati2evxx.dll - ok
20:06:38.0026 0x1094  [ 22A9CB08B1A6707C1550C6BF099AAE73, 46A9D40A03DC0B6C93274C0C1CDB132B2339E76E77CAB0F12AEDAD4C31822B91 ] C:\Windows\System32\drivers\rspndr.sys
20:06:38.0026 0x1094  C:\Windows\System32\drivers\rspndr.sys - ok
20:06:38.0034 0x1094  [ B7BD00787568A178CDE26A83B5C847BE, D711846FA3C5AF870C6099AF1D8607DF0243AB7F7EDEF8693E424784C9C4DF00 ] C:\Windows\System32\mfplat.dll
20:06:38.0034 0x1094  C:\Windows\System32\mfplat.dll - ok
20:06:38.0045 0x1094  [ 06230F1B721494A6DF8D47FD395BB1B0, F6CA8270740E01D9CE2FE8E34BC067C7EDC15BA610F461860E1D17D135C8A379 ] C:\Windows\System32\dnsrslvr.dll
20:06:38.0045 0x1094  C:\Windows\System32\dnsrslvr.dll - ok
20:06:38.0054 0x1094  [ E0159CE395B31F746AA26D0A6996DB29, 037B6A753ADC314353E5BEEFD8175FD4CC92E609EB4110684831916089CA65A6 ] C:\Windows\System32\eapphost.dll
20:06:38.0054 0x1094  C:\Windows\System32\eapphost.dll - ok
20:06:38.0062 0x1094  [ 0160AD4F8F4F817428CA74358612EC48, A284314AF80D8E9AE69459037C9809CB119B08EA30C17D41F3B4129CD524B02F ] C:\Windows\System32\rastls.dll
20:06:38.0063 0x1094  C:\Windows\System32\rastls.dll - ok
20:06:38.0070 0x1094  [ BFDF69526CB6476992540D4C477CC27A, 67514AED7622A426D51C6BAD359CA4ADE89D2BF0D293DC8526C7BC60ED67B5D9 ] C:\Windows\System32\raschap.dll
20:06:38.0070 0x1094  C:\Windows\System32\raschap.dll - ok
20:06:38.0078 0x1094  [ 57D1DE90D43E25C9E645D81FFC4FB678, 877B62932CD2F38568DCEBC44506750FDAD955B51735A056F748FD2E89FA823A ] C:\Windows\System32\umb.dll
20:06:38.0079 0x1094  C:\Windows\System32\umb.dll - ok
20:06:38.0087 0x1094  [ F64C1360D0590DF16AF01C8DA66973CB, 144B8D260125BA32674E637C009E114EAAF93D0668F5D338EACA60AE182E3BBD ] C:\Windows\System32\wlanmsm.dll
20:06:38.0087 0x1094  C:\Windows\System32\wlanmsm.dll - ok
20:06:38.0095 0x1094  [ 0C9F2E6597D8DD00C0900C2DF85606BE, 3E2911B702644FF0A2A2A98E79431B48CC9584E8FCC50D2274EE9F1128A847C2 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpasdlta.vdm
20:06:38.0096 0x1094  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpasdlta.vdm - ok
20:06:38.0104 0x1094  [ 00000000000000000000000000000000, 0000000000000000000000000000000000000000000000000000000000000000 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpavbase.vdm
20:06:38.0104 0x1094  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpavbase.vdm - ok
20:06:38.0113 0x1094  [ CE11C00CCC066FB06CC0E671CA0D7660, 63478A89345DA8EF65A985CAEE0CEA3FE8BADB5ABB7BDDBD6D48130A5703FCBB ] C:\Windows\System32\wlansec.dll
20:06:38.0113 0x1094  C:\Windows\System32\wlansec.dll - ok
20:06:38.0121 0x1094  [ DED15764B578A26BE9E45E7692820549, 9F5448CF3721305D9173251AC5184C6D813FFEA7D5E7BB6AFA145F9980A4176A ] C:\Windows\System32\onex.dll
20:06:38.0121 0x1094  C:\Windows\System32\onex.dll - ok
20:06:38.0130 0x1094  [ 64CA44962AEF8F656CC41A66DFFD0758, D61F33FF8A8050103790620A5E8BB05646495C233C46E8178C63C8D05E6F737A ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpavdlta.vdm
20:06:38.0130 0x1094  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpavdlta.vdm - ok
20:06:38.0138 0x1094  [ B50D0BF177657752B826697259341858, 26F7EA437E9D94D01E839E2DD71222D101862EB27C901F5405D3566420A90A3E ] C:\Windows\System32\eappprxy.dll
20:06:38.0138 0x1094  C:\Windows\System32\eappprxy.dll - ok
20:06:38.0146 0x1094  [ 03FDED7449428CE493432EE35FE5A2FB, 97645AE40FACC5F5D75DA582E19CE5278977C798809E7E87F594DECBEED5AE11 ] C:\Windows\System32\eappcfg.dll
20:06:38.0146 0x1094  C:\Windows\System32\eappcfg.dll - ok
20:06:38.0151 0x1094  [ 9689076012A34CE4631D0CBFE148D092, 8B65E9701B3C9EDEA03230100B5A66181F8CFCEDB367B648EDCC6D65AF8E96C4 ] C:\Windows\System32\wlgpclnt.dll
20:06:38.0152 0x1094  C:\Windows\System32\wlgpclnt.dll - ok
20:06:38.0160 0x1094  [ A73C52B285405E1FD79388AF2C7B2EB6, BA7B2DF8381C17018789BCF3EF63391506769456A06CA64852FD3B297653910D ] C:\Windows\System32\l2gpstore.dll
20:06:38.0160 0x1094  C:\Windows\System32\l2gpstore.dll - ok
20:06:38.0168 0x1094  [ 4DD86EDDA09715DC235E41C1F698F041, 63B839F5AA9278C428C4402EE142F71A3F2DAE97FCF8EB199B01E4BA2AA7D3C4 ] C:\Windows\System32\wlanutil.dll
20:06:38.0168 0x1094  C:\Windows\System32\wlanutil.dll - ok
20:06:38.0176 0x1094  [ 7A792AD1DB78FF218BB3A2C33404C5CE, 71655D78422EC6CF13AA1E1CE8ECEAA51714DFC23623F870BAF52524163F3F57 ] C:\Windows\System32\mshtml.dll
20:06:38.0176 0x1094  C:\Windows\System32\mshtml.dll - ok
20:06:38.0184 0x1094  [ FEE042C44E3A138F870D33C7FDDD977B, 1AC43DA7F521821406E6E6B21AE7A46944DE5C5C938D2E858618D55125BB6E4F ] C:\Windows\System32\msxml6.dll
20:06:38.0185 0x1094  C:\Windows\System32\msxml6.dll - ok
20:06:38.0192 0x1094  [ 39777F8ECD0B10B51CB79AC4F562C088, 570FF139CC701B5590490F334ABEFA7E63C65D04EBD0E1144A92C8304428C44B ] C:\Windows\System32\wlanext.exe
20:06:38.0192 0x1094  C:\Windows\System32\wlanext.exe - ok
20:06:38.0201 0x1094  [ 6B6D0747C1D56D5742F5171B57E8CB6F, 9805CE5545D8DC3293177B7BFEBA910DBE8A24CD26A0954ABFEC6168716261FD ] C:\Windows\System32\ktmw32.dll
20:06:38.0201 0x1094  C:\Windows\System32\ktmw32.dll - ok
20:06:38.0210 0x1094  [ 04BE188624096B6D2F8C760940B2D100, B0C79F7F53639AB228D6B1A8AAC3A40E969A1A9FBBA897C1D2EEC8C970C1945B ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18879_none_414ad6405542c1e6\comctl32.dll
20:06:38.0210 0x1094  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18879_none_414ad6405542c1e6\comctl32.dll - ok
20:06:38.0218 0x1094  [ 7A7EA5CB9EA5B984F95538ACDE7B54C2, 42E255F5480C1FAB4BA71D09E8AAD5FAC48EBDC6D181773D48A3FC6458212006 ] C:\Windows\System32\athihvs.dll
20:06:38.0219 0x1094  C:\Windows\System32\athihvs.dll - ok
20:06:38.0226 0x1094  [ 483E6FE556B3146D5A634B8552FDD15C, B06668814BD0137E3C731C6AA9E8C46ED93DF3CD616E81887F09A687722D083D ] C:\Windows\System32\wlanapi.dll
20:06:38.0226 0x1094  C:\Windows\System32\wlanapi.dll - ok
20:06:38.0235 0x1094  [ 3ADB1950539C78F82EFD392BE98BE80D, B154C4125A5686F86865D2AD3D64E3F3A28D4BD2EE1B56977C2CD4DBE46633CF ] C:\Windows\System32\taskcomp.dll
20:06:38.0235 0x1094  C:\Windows\System32\taskcomp.dll - ok
20:06:38.0243 0x1094  [ 098F1E4E5C9CB5B0063A959063631610, 36B02A738413E4745978E3E90D9CE8ABC08376BEE411008A4312A752CB4A2E13 ] C:\Windows\System32\drivers\http.sys
20:06:38.0243 0x1094  C:\Windows\System32\drivers\http.sys - ok
20:06:38.0252 0x1094  [ 808A26DA7028B02A081A5A1BCBF69A2A, 9154E807BFBDE5F4FA3B0F7FE8F13E95F21577064C7A8DDB59112D2B5D281A7E ] C:\Windows\System32\wiarpc.dll
20:06:38.0252 0x1094  C:\Windows\System32\wiarpc.dll - ok
20:06:38.0260 0x1094  [ C1AE82B8F60ADB630C00DCE48E571CDD, 04AAB1435DACCFBFF2D24B41B46BA9158FAC0DD2E43C8D9058CC3BE082B06656 ] C:\Windows\System32\netcfgx.dll
20:06:38.0260 0x1094  C:\Windows\System32\netcfgx.dll - ok
20:06:38.0268 0x1094  [ D48445B07F61CAFE2FE8972AAB4E31B8, 255EC421AB60A6DA2B103B0D0331CC45CCB74452EAB9EB7BBAE29A2E7079C889 ] C:\Windows\System32\spoolss.dll
20:06:38.0268 0x1094  C:\Windows\System32\spoolss.dll - ok
20:06:38.0276 0x1094  [ 4BED62F4FA4D8300973F1151F4C4D8A7, 1835895B3E837F8862F7F669DFBDF5EAB627E5656377624474C17E92CF440D2A ] C:\Windows\System32\drivers\srvnet.sys
20:06:38.0276 0x1094  C:\Windows\System32\drivers\srvnet.sys - ok
20:06:38.0285 0x1094  [ F947921ABCF504A7CA03F28709324F9D, C68D262F340F4DADE4F003CA8376D588C9B59584C8A824EA0EDDCE1BA44C1E7E ] C:\Windows\System32\FWPUCLNT.DLL
20:06:38.0285 0x1094  C:\Windows\System32\FWPUCLNT.DLL - ok
20:06:38.0293 0x1094  [ 2348447A80920B2493A9B582A23E81E1, 50F9242B7104607E633ABAF4E0A213C1C1226BF81F7FB4E216A9E878247B868C ] C:\Windows\System32\drivers\bowser.sys
20:06:38.0293 0x1094  C:\Windows\System32\drivers\bowser.sys - ok
20:06:38.0301 0x1094  [ C92B9ABDB65A5991E00C28F13491DBA2, D1233381A9E4262F0AB396BBDB7DE402D4370805E11EB8A118C846F6E9474098 ] C:\Windows\System32\drivers\mpsdrv.sys
20:06:38.0302 0x1094  C:\Windows\System32\drivers\mpsdrv.sys - ok
20:06:38.0310 0x1094  [ 897E3BAF68BA406A61682AE39C83900C, 13F61D5C22BED061BE7C2669CCCAA2BAD4A0CE83800DF57A50306DE0A476FC27 ] C:\Windows\System32\MPSSVC.dll
20:06:38.0310 0x1094  C:\Windows\System32\MPSSVC.dll - ok
20:06:38.0318 0x1094  [ 7C1DE4AA96DC0C071611F9E7DE02A68D, 8B248A82324FB23C64D41FA91BCC22093DE44C48D688E5995C484A7072A6EC08 ] C:\Windows\System32\drivers\mrxdav.sys
20:06:38.0318 0x1094  C:\Windows\System32\drivers\mrxdav.sys - ok
20:06:38.0326 0x1094  [ 1485811B320FF8C7EDAD1CAEBB1C6C2B, 9F157AAA1A793EF7E52817E4126B774C17FFA0036DADCF10A024FDC068F94F67 ] C:\Windows\System32\drivers\mrxsmb.sys
20:06:38.0326 0x1094  C:\Windows\System32\drivers\mrxsmb.sys - ok
20:06:38.0335 0x1094  [ 3B929A60C833FC615FD97FBA82BC7632, 40EEBEB43F42A1A37FAA529E0C21984426F90C1EEFE1EF9BB2F696164595F91D ] C:\Windows\System32\drivers\mrxsmb10.sys
20:06:38.0335 0x1094  C:\Windows\System32\drivers\mrxsmb10.sys - ok
20:06:38.0343 0x1094  [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3, 197F70E24D2BBDEC35C2D5BC442267ACC4C5AE3FD5BB30A0928976BE9758C942 ] C:\Windows\System32\drivers\mrxsmb20.sys
20:06:38.0343 0x1094  C:\Windows\System32\drivers\mrxsmb20.sys - ok
20:06:38.0353 0x1094  [ A1AD14A6D7A37891FFFECA35EBBB0730, AE00950D330EE4C05F5AA9BC7E63E974766D8E93B607CB3E683C727E8A65049D ] C:\Windows\System32\drivers\srv2.sys
20:06:38.0353 0x1094  C:\Windows\System32\drivers\srv2.sys - ok
20:06:38.0361 0x1094  [ 880A57FCCB571EBD063D4DD50E93E46D, D46BA584D1C33F17C4156127742FA470AA044C4BCE9E6A209E5B1F3A44C73350 ] C:\Windows\System32\drivers\srv.sys
20:06:38.0361 0x1094  C:\Windows\System32\drivers\srv.sys - ok
20:06:38.0370 0x1094  [ DE3C091D7E05093B7ABA93DA5952F0FD, 2E658F47EC9496072395AF7C792B840BD82198C294E1CEAA13DD018D5D558EA8 ] C:\Windows\System32\netmsg.dll
20:06:38.0370 0x1094  C:\Windows\System32\netmsg.dll - ok
20:06:38.0378 0x1094  [ D1E792408F710173E4E4FB6BFB248DB3, AF52BE3ADF14B55CE1D8D77FB31216EDFF904B1099086353C9C9B69A1E480290 ] C:\Windows\System32\wfapigp.dll
20:06:38.0378 0x1094  C:\Windows\System32\wfapigp.dll - ok
20:06:38.0386 0x1094  [ 476616A17AE5F69CE583D8E1E2A7B134, 367D1140FF9AA96621BD919E377FE6877B50BA235CF66969C5255F1F4EAFF05E ] C:\Windows\System32\sscore.dll
20:06:38.0386 0x1094  C:\Windows\System32\sscore.dll - ok
20:06:38.0394 0x1094  [ 2BFD160AB9531CD20EDC9639EB0CD711, EAACA34841F002EE493A2410026844A5F871971E73080D85CF2C43AF09678F45 ] C:\Windows\System32\clusapi.dll
20:06:38.0394 0x1094  C:\Windows\System32\clusapi.dll - ok
20:06:38.0399 0x1094  [ 87B1E9B5DBFADA04D9FFDC52D16CB000, B80983383868E935A97CA391FE22BDA61894A4BB76C39D9E2D06778870BD5792 ] C:\Windows\System32\mscms.dll
20:06:38.0399 0x1094  C:\Windows\System32\mscms.dll - ok
20:06:38.0407 0x1094  [ 45C5EAB112D3481A25485B0CF7E3597D, CD02C769E42FA6773D3FC61AF8E402851ED6C76DD654693B7F5CF094376AB435 ] C:\Windows\System32\activeds.dll
20:06:38.0407 0x1094  C:\Windows\System32\activeds.dll - ok
20:06:38.0417 0x1094  [ 80B8B7FF3AADD2156EE969C048644CAF, 4EC1DBE4F21C91DF2BAFDF6E2CFA03348B4A2988202616BECB999C3FE1C5CF3E ] C:\Windows\System32\adsldpc.dll
20:06:38.0417 0x1094  C:\Windows\System32\adsldpc.dll - ok
20:06:38.0425 0x1094  [ 4004299B7AF4CBFF6540F1798899A11F, 5DD3AE149B7228A769F2FE95355795AC98ACD8CDFB78954A423A357F717203C3 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
20:06:38.0425 0x1094  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
20:06:38.0434 0x1094  [ 77C276A0E431203EE56E52600A2575EA, 48FCD3B4A3F3DDB034C9B9C968CF7BC31E9C8FA2B0D91275E00215A0144BD613 ] C:\Windows\System32\credui.dll
20:06:38.0434 0x1094  C:\Windows\System32\credui.dll - ok
20:06:38.0441 0x1094  [ 129F59470F770A2675A39C245BC5AB3F, 8CCA59A9663C7BF7F6B322703BB9A430F598C31A5C7BBE6BD853B5730F28665D ] C:\Windows\System32\WsmRes.dll
20:06:38.0441 0x1094  C:\Windows\System32\WsmRes.dll - ok
20:06:38.0450 0x1094  [ 1E68A512FB6010B600CBC3577147AC50, 2A897C54FA3106D77260BCAAE832273142C78B29B379245C94AE0D1E5A719BA7 ] C:\Windows\System32\plasrv.exe
20:06:38.0450 0x1094  C:\Windows\System32\plasrv.exe - ok
20:06:38.0458 0x1094  [ D55A487295CC38D9E533C5AD87C1EB69, A40D892C5F25F43733B815A38E3776ADCBBD3A9AC80C7446C217D16147154A9D ] C:\Windows\System32\resutils.dll
20:06:38.0458 0x1094  C:\Windows\System32\resutils.dll - ok
20:06:38.0466 0x1094  [ 5AC8A997E8D9C131B5F90B4F3CCFAE34, D2FFC4F12299D9500390345A707F3FE844CBBE13163D004665FCD82B6C3B6FC6 ] C:\Program Files (x86)\Toshiba\ConfigFree\CFProcSRVC.exe
20:06:38.0466 0x1094  C:\Program Files (x86)\Toshiba\ConfigFree\CFProcSRVC.exe - ok
20:06:38.0474 0x1094  [ EF9DAF0E43C0CBBE75228E6FCDF74D21, DB9B71CF6C9A3BBEE9C8933B9A0C33FD7EA91D93D15B6BC3FDF6E71AC0D7F1D4 ] C:\Windows\SysWOW64\ntdll.dll
20:06:38.0475 0x1094  C:\Windows\SysWOW64\ntdll.dll - ok
20:06:38.0483 0x1094  [ 9A55A910B56F416B1F9F17D554D49275, 2997D6FCB2242E7B49EF3A9AD8865359457619C3399EEAC71A076FC845309B9F ] C:\Windows\System32\wow64.dll
20:06:38.0483 0x1094  C:\Windows\System32\wow64.dll - ok
20:06:38.0491 0x1094  [ 8FE910915F14C9C6A9561D8032B603D3, 4A340DC5E51D892AA34A2111612344604ACB757FE40EDE3DBB4D45E162B04A2E ] C:\Windows\System32\wow64win.dll
20:06:38.0491 0x1094  C:\Windows\System32\wow64win.dll - ok
20:06:38.0501 0x1094  [ CA9EECC6092B9C2CE86D95C04B51BA20, 577388F163A3A899CD372B226F4837DF516E2C338EF497280D58184031BC26C6 ] C:\Windows\System32\wow64cpu.dll
20:06:38.0501 0x1094  C:\Windows\System32\wow64cpu.dll - ok
20:06:38.0508 0x1094  [ F55CB10F43802526018AD72604420878, 784C451F030FC3813F0398F68E77BD0AA637F4BC54DC65496D44A36E0EB365DA ] C:\Windows\SysWOW64\kernel32.dll
20:06:38.0508 0x1094  C:\Windows\SysWOW64\kernel32.dll - ok
20:06:38.0516 0x1094  [ 7E3479C704F208C85954D9E7442533C4, 40D309105581E4BC6B6641E7022E8B7D8655E73D929490FD5F40124D442E39BD ] C:\Program Files (x86)\Toshiba\ConfigFree\CFWRP_CS.dll
20:06:38.0517 0x1094  C:\Program Files (x86)\Toshiba\ConfigFree\CFWRP_CS.dll - ok
20:06:38.0525 0x1094  [ 128DD9AF8640DBCC711940903C8B554F, 46E9715F3CD09F32FBEAA5379991E9E7DACCBD2407C2D061FDA3A04F05108133 ] C:\Windows\SysWOW64\mscoree.dll
20:06:38.0525 0x1094  C:\Windows\SysWOW64\mscoree.dll - ok
20:06:38.0534 0x1094  [ C9564CF4976E7E96B4052737AA2492B4, C3AC989C8489A23BB96400B1856F5325FFC67E844F04651EA5D61BC20A991C6D ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
20:06:38.0534 0x1094  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
20:06:38.0542 0x1094  [ 17AF64D727545F2804F6E6D998327E3F, CAD50C5321BF522CA6CA74662D032A98705ADD04A8BE38576B8EF0B8CE6DBA8A ] C:\Windows\SysWOW64\msvcrt.dll
20:06:38.0542 0x1094  C:\Windows\SysWOW64\msvcrt.dll - ok
20:06:38.0550 0x1094  [ D29FDB5DEDBDC1BD882164DC6DC4DD53, F77F7E553ABBAC128AF63802994FC473CC355EEB417C9DD5CE5D14F5678F2F69 ] C:\Windows\SysWOW64\user32.dll
20:06:38.0550 0x1094  C:\Windows\SysWOW64\user32.dll - ok
20:06:38.0558 0x1094  [ 25B9C743CA4C90F4D9BE42C1F31038EB, 5885A7553E100C775588EFCE7170EF9A5359748414C3A57C11FE3D2C14A222FF ] C:\Windows\SysWOW64\gdi32.dll
20:06:38.0558 0x1094  C:\Windows\SysWOW64\gdi32.dll - ok
20:06:38.0567 0x1094  [ 50CAA7072C171B9887215C83D52069E4, AA1961787F24A6AFF9DD5D0A6110686EA654595D2EB941F5DA702498A662880D ] C:\Windows\SysWOW64\advapi32.dll
20:06:38.0567 0x1094  C:\Windows\SysWOW64\advapi32.dll - ok
20:06:38.0575 0x1094  [ DD477C478902C2E0E7F55F565BD44A44, 06F27D7A20D5402E00AA4AEC6957AC41873F9E8EFB28F9ED25F1F3DD9CE718CC ] C:\Windows\SysWOW64\rpcrt4.dll
20:06:38.0575 0x1094  C:\Windows\SysWOW64\rpcrt4.dll - ok
20:06:38.0583 0x1094  [ 3D4DD2D3D59ABE3BA902778C57D2E004, 8263058DD8064C3DFB8176FE31E0459A6240051A2EB3E513E2D80A64F9ECFAEF ] C:\Windows\SysWOW64\secur32.dll
20:06:38.0583 0x1094  C:\Windows\SysWOW64\secur32.dll - ok
20:06:38.0591 0x1094  [ 1F5AFD468EB5E09E9ED75A087529EAB5, 8204DBCC054C1E54B6065BACB78C55716681AD91759E25111B4E4797E51D0AA3 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
20:06:38.0591 0x1094  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll - ok
20:06:38.0600 0x1094  [ 420B075CD71AB9E58D15DD258958FBA3, EDD96EDD4D3F1C05E34C769F9C4A1D966DA9B51A3B01CF25E9C5E30281E01AE2 ] C:\Windows\SysWOW64\shlwapi.dll
20:06:38.0600 0x1094  C:\Windows\SysWOW64\shlwapi.dll - ok
20:06:38.0609 0x1094  [ 0172F917A624D08620A8AE94F5950A30, 2D6C80C8B2FD98E1735ED93F228C19D7B307E6B8038491012A0BFEB3F27E517A ] C:\Program Files (x86)\Toshiba\ConfigFree\NDSParts.dll
20:06:38.0609 0x1094  C:\Program Files (x86)\Toshiba\ConfigFree\NDSParts.dll - ok
20:06:38.0617 0x1094  [ 2CAB7B034B867AAB48D298F93D04BD3E, 7F7EA5537B64B79F2605A98DF551B4D86B90EAAB422D4153A1BD36A96F89DA44 ] C:\Windows\System32\wscapi.dll
20:06:38.0617 0x1094  C:\Windows\System32\wscapi.dll - ok
20:06:38.0625 0x1094  [ 14CA4D25AB708AC0183459270A6A9C42, D188B0AE14113A904FA6A10FD591DF03A8D682170819ECAD0F5696EF140FBBEE ] C:\Windows\System32\msxml3.dll
20:06:38.0625 0x1094  C:\Windows\System32\msxml3.dll - ok
20:06:38.0633 0x1094  [ 14FF750EFE13B0C21E5A06507C3A97B1, 6962EE642FB635442D3E75CE022BAFE78FA453DD6E8E3DAC8B484C699454AF0F ] C:\Windows\SysWOW64\winmm.dll
20:06:38.0633 0x1094  C:\Windows\SysWOW64\winmm.dll - ok
20:06:38.0641 0x1094  [ 9586E7CB2255A8B097A7E4538202585E, 7A65B6268940279D77CE08D695306150A8F8DD9A6878D2A322799AC576960C6B ] C:\Windows\SysWOW64\ole32.dll
20:06:38.0641 0x1094  C:\Windows\SysWOW64\ole32.dll - ok
20:06:38.0650 0x1094  [ B218342214D9BBA0F54EA12BA2E9278C, 0B68D881F3B60068C250A97492B81DB8463FFB4FDADC26CD14E2255472A6A2A0 ] C:\Windows\SysWOW64\oleaut32.dll
20:06:38.0650 0x1094  C:\Windows\SysWOW64\oleaut32.dll - ok
20:06:38.0655 0x1094  [ DC15AB7168C0309D8F04FD95B6240422, C94550429403C710A2BD26EA67AEF698522CF4826C0A4C4A7D2CBC3145AB40A6 ] C:\Windows\SysWOW64\oleacc.dll
20:06:38.0655 0x1094  C:\Windows\SysWOW64\oleacc.dll - ok
20:06:38.0663 0x1094  [ 69827805A221C21450BA22F4326A2EE3, 2580CEB58BE4AEF7DEB134F3AD251188CAED05BC992B4FA977CCD11BD583BE5E ] C:\Windows\SysWOW64\version.dll
20:06:38.0663 0x1094  C:\Windows\SysWOW64\version.dll - ok
20:06:38.0672 0x1094  [ E114083008A623323C8D9DF5550F82D2, 92E6166447A267C2082A77FDD6E200B7D93656D080EE6611AB74117CF64B59DF ] C:\Program Files (x86)\Toshiba\ConfigFree\NDSAPI.dll
20:06:38.0672 0x1094  C:\Program Files (x86)\Toshiba\ConfigFree\NDSAPI.dll - ok
20:06:38.0680 0x1094  [ E0D99E3ACEF09BD225912F977290A0D1, 833F04FA5D4D494498005DF527D3865AFA87C86F32637935B585BC96ABF71335 ] C:\Program Files (x86)\Toshiba\ConfigFree\CFWlApi.dll
20:06:38.0680 0x1094  C:\Program Files (x86)\Toshiba\ConfigFree\CFWlApi.dll - ok
20:06:38.0688 0x1094  [ B64AC7967D6B9FB2D6152AC768A1CB88, D4F46C3DCAE8A7578102961285BB90BFE1BDE31028CC56E2CEFE0DE8FF32FB85 ] C:\Windows\SysWOW64\onex.dll
20:06:38.0688 0x1094  C:\Windows\SysWOW64\onex.dll - ok
20:06:38.0696 0x1094  [ 17C0E094BEE5BC03CF491972F71AA6EF, 801E500A8B3C6DC7881E1C26AD3AFF4D105D5F2C8F58AFED84EF1A101F3AC10A ] C:\Windows\SysWOW64\wlanapi.dll
20:06:38.0696 0x1094  C:\Windows\SysWOW64\wlanapi.dll - ok
20:06:38.0704 0x1094  [ 0317420D419E1885894B3ED9D375D245, 17F4C64CA4FE560F09DA4C1D13D62B525B5C7B6FDD44B846C6953D595D83CF3D ] C:\Windows\SysWOW64\crypt32.dll
20:06:38.0705 0x1094  C:\Windows\SysWOW64\crypt32.dll - ok
20:06:38.0713 0x1094  [ F42483814FC39170B3982A184EC5AAA2, DD8A1E7C6714DF07742EFDF6CA5AB93CDC547F56EB8C1066C56A68E83A818DD2 ] C:\Windows\SysWOW64\wtsapi32.dll
20:06:38.0713 0x1094  C:\Windows\SysWOW64\wtsapi32.dll - ok
20:06:38.0721 0x1094  [ EE2FF9A3FC4404234BE3B7C6AA383AF8, 51BF3C48BE9BF81A800EF5B247E03C78980B3FFFF37688C42C0F253351EEF4C1 ] C:\Windows\SysWOW64\msasn1.dll
20:06:38.0721 0x1094  C:\Windows\SysWOW64\msasn1.dll - ok
20:06:38.0734 0x1094  [ 665417528489096BBCB8AEA46D3DA924, BB0D895B481EFA6ED024C979238F5F482DF0A53912575A47EB4E9C643919112A ] C:\Windows\SysWOW64\userenv.dll
20:06:38.0734 0x1094  C:\Windows\SysWOW64\userenv.dll - ok
20:06:38.0745 0x1094  [ 5D0FE613570CABE3992F7DBCD68E61D1, 68A6D6DA722E9A5120DE240194F9682ACBB485CEBDD8A6A099AE0E76359302B9 ] C:\Windows\SysWOW64\eappcfg.dll
20:06:38.0745 0x1094  C:\Windows\SysWOW64\eappcfg.dll - ok
20:06:38.0753 0x1094  [ 9D9FFC923FADBB575E0452EA0BBB15BD, 700A292EFEC71EDF2EF7F20D147F6E23E0FAA5BAF1D930CB96C40FC70D206D35 ] C:\Windows\SysWOW64\eappprxy.dll
20:06:38.0753 0x1094  C:\Windows\SysWOW64\eappprxy.dll - ok
20:06:38.0762 0x1094  [ 33F571D9F4B0B4107E60323075F64980, A5C8FE2BDED4C10D0CB4F0AF26F644C95C613EF49AAA44CF1A0047532652C92A ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.19096_none_9e59a14eca0fa8de\GdiPlus.dll
20:06:38.0762 0x1094  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.19096_none_9e59a14eca0fa8de\GdiPlus.dll - ok
20:06:38.0771 0x1094  [ 75EB73E64F5B4655D9797D20F26DE320, 4AA94D039AC5BD7D39766C4E2A4F7DFCDD46782D3B2483677D722949A7B790FC ] C:\Windows\SysWOW64\duser.dll
20:06:38.0771 0x1094  C:\Windows\SysWOW64\duser.dll - ok
20:06:38.0779 0x1094  [ 88B630F6AEB5A11F6AD064930B38C2C0, 176B0A652D36D4C144838013D402DF9CFCF1F8FE9F378651BF52B58DA33DBF15 ] C:\Windows\SysWOW64\uxtheme.dll
20:06:38.0779 0x1094  C:\Windows\SysWOW64\uxtheme.dll - ok
20:06:38.0788 0x1094  [ 4ACF748A8E576761E4C610ACAB67B1BC, FC30C20E3F23FBC8ACAB2E8A7DB3775078118FEA29E64341E5D5277F98560C8B ] C:\Windows\SysWOW64\bcrypt.dll
20:06:38.0788 0x1094  C:\Windows\SysWOW64\bcrypt.dll - ok
20:06:38.0795 0x1094  [ EB2170D0DDF3B2A92506AE16BC524B0B, 95E296024DC16657BA36DB72E7AB774C68A6F8029B2ACB18460FC50E44AE5DA9 ] C:\Windows\SysWOW64\wlanutil.dll
20:06:38.0795 0x1094  C:\Windows\SysWOW64\wlanutil.dll - ok
20:06:38.0804 0x1094  [ F3E8E67DC455012AAAD4364CBC3BCA0B, 06B2F3CA6385E6BB0BF956BC4724565FD1C194E64C2E80757615820956D8DA7D ] C:\Program Files (x86)\Toshiba\ConfigFree\IpAdrSet.dll
20:06:38.0804 0x1094  C:\Program Files (x86)\Toshiba\ConfigFree\IpAdrSet.dll - ok
20:06:38.0812 0x1094  [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] C:\Windows\SysWOW64\dhcpcsvc.dll
20:06:38.0812 0x1094  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
20:06:38.0821 0x1094  [ 4FE8425F21B3F0F8C4B4726351D43EAA, F45C1429BD60EEAB7BE8C2114B9C819CED7583249CEE1AB234A8A05A484528A9 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
20:06:38.0822 0x1094  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
20:06:38.0829 0x1094  [ 85E861D0B88DB2B54ACB0839654C09F7, 751E4F1F282C3798712AFF551D1525D5D65B5E8229689862AAB0BBDCC35A5925 ] C:\Windows\SysWOW64\dnsapi.dll
20:06:38.0829 0x1094  C:\Windows\SysWOW64\dnsapi.dll - ok
20:06:38.0838 0x1094  [ B304D47D5744BA20FCB99FB8B2C07B0B, 16AAD9264CAB5B5489E2CF8F118132EA46FE9066B4C4320C0259BE88EBD111C8 ] C:\Windows\SysWOW64\ws2_32.dll
20:06:38.0838 0x1094  C:\Windows\SysWOW64\ws2_32.dll - ok
20:06:38.0849 0x1094  [ A64AEBC6C78B4CFD7F41A7277879DF8F, 2283E1D5D5ACF66B6C71A7755577F0A03DB5FC213E5D7DB067C9B7B6E805C202 ] C:\Windows\SysWOW64\nsi.dll
20:06:38.0849 0x1094  C:\Windows\SysWOW64\nsi.dll - ok
20:06:38.0857 0x1094  [ 6B09105742C75DF80CEF21700F20F55A, D781C5F22BEBB5C51B7792EBB4421C170F2CC5FE28E9245E9D6B9D22E33423AB ] C:\Windows\SysWOW64\winnsi.dll
20:06:38.0858 0x1094  C:\Windows\SysWOW64\winnsi.dll - ok
20:06:38.0865 0x1094  [ DFB6B71CDABA9DFB49C9D2B318B97A1A, F380B9A28D56DEC902154A0251B58BD3576355EDE2CD13CF47D7F4DBE3D61C97 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
20:06:38.0865 0x1094  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
20:06:38.0874 0x1094  [ 3CB863B78642405371CB3A71C07E2382, 571D43BBB0D0D54A7D508E9D0E70CDF5F1F3B147B4F6B15EB3D893401BB6F40F ] C:\Windows\SysWOW64\rasapi32.dll
20:06:38.0874 0x1094  C:\Windows\SysWOW64\rasapi32.dll - ok
20:06:38.0882 0x1094  [ 3A1DDA77F331D107BA40DB06E4D666E9, 544A63148756AD0E993DD79F0656E73E23386BF0DA54394000044FD0972C838D ] C:\Windows\SysWOW64\rasman.dll
20:06:38.0882 0x1094  C:\Windows\SysWOW64\rasman.dll - ok
20:06:38.0892 0x1094  [ 98B656EAF128CD06F625B09C84D959E1, 3E6502E629F15E697A813FC56A9B1F13F5A6F3D0C20550AB3459B2507F868156 ] C:\Windows\SysWOW64\netapi32.dll
20:06:38.0892 0x1094  C:\Windows\SysWOW64\netapi32.dll - ok
20:06:38.0904 0x1094  [ 93A1732F7F997E36A5C3893539E2FF02, 40B6F7A67F90E5D9948385418BD22BBD29DE86A151B35D1001081A61CA5FC612 ] C:\Windows\SysWOW64\psapi.dll
20:06:38.0904 0x1094  C:\Windows\SysWOW64\psapi.dll - ok
20:06:38.0911 0x1094  [ 70F08ECE7A30A639D3F0C8C433685C7D, E7B852E949D0DB9C3D63C4F49DECF9C93781142EAC6F6D66C9FC8E0027E904F4 ] C:\Windows\SysWOW64\tapi32.dll
20:06:38.0911 0x1094  C:\Windows\SysWOW64\tapi32.dll - ok
20:06:38.0919 0x1094  [ 3D418A22A56471295AEB1CEB9027C3DA, C1D5E63B7400E6436E348AE1D9E2B3701174856DDAACE39C00134DC89497AACF ] C:\Windows\SysWOW64\rtutils.dll
20:06:38.0919 0x1094  C:\Windows\SysWOW64\rtutils.dll - ok
20:06:38.0927 0x1094  [ 8C4836F71F2DB629A99CF5A774594C66, 4045FB24E7F90EEA07D011AF73B2A309A908795362AE85114276650F78AA607C ] C:\Windows\SysWOW64\shell32.dll
20:06:38.0927 0x1094  C:\Windows\SysWOW64\shell32.dll - ok
20:06:38.0935 0x1094  [ 2DD6AF8E97F59C9D39329BBC2A81F13F, 53D9DD827F010DFC555C330296B552276E2F0DB2ECFFB9578FA92F4D4DD77945 ] C:\Windows\SysWOW64\rasdlg.dll
20:06:38.0935 0x1094  C:\Windows\SysWOW64\rasdlg.dll - ok
20:06:38.0943 0x1094  [ 56E315ACFB08A177B4D01E42B9044DB5, 230B5AC4EB6654C854046CD210A80929345AA5D049EFA7C329048723A3A32345 ] C:\Windows\SysWOW64\mprapi.dll
20:06:38.0943 0x1094  C:\Windows\SysWOW64\mprapi.dll - ok
20:06:38.0951 0x1094  [ 6468C3FF6D0C7874FA8C619AF3E23B22, 2A8A01D5164453544A9DD1B850C24B82EFE6ACAABED56084B8A0388AC383802B ] C:\Windows\SysWOW64\activeds.dll
20:06:38.0951 0x1094  C:\Windows\SysWOW64\activeds.dll - ok
20:06:38.0963 0x1094  [ E9B9C1B98C8D6D48407E1C1203EAC659, A7B836B37935475E7D7277F9A7828E347B2EBD14958836499E5610AC5A922265 ] C:\Windows\SysWOW64\adsldpc.dll
20:06:38.0963 0x1094  C:\Windows\SysWOW64\adsldpc.dll - ok
20:06:38.0976 0x1094  [ B8A609FB5EFB4E44FC1355B1C01C64BC, BB84036F8F16C6E2069FD8B18078A7E6CC98B513285FB1A8DC727B395C9E3A12 ] C:\Windows\SysWOW64\Wldap32.dll
20:06:38.0976 0x1094  C:\Windows\SysWOW64\Wldap32.dll - ok
20:06:38.0987 0x1094  [ 93E317D7AD783D8EAEE2E3500BFE889D, 12D3ACCBF470E025EEBD77CF3407964950DADCF6991959A97B5319A9FAE219C1 ] C:\Windows\SysWOW64\credui.dll
20:06:38.0987 0x1094  C:\Windows\SysWOW64\credui.dll - ok
20:06:39.0000 0x1094  [ 409F36C8BD06FCE184631EB4142B009A, 5DEEA3B8937B9C3DD716060819E78A1C12AD00A7D0EC8CB47823B7EE856CCFE1 ] C:\Windows\SysWOW64\atl.dll
20:06:39.0000 0x1094  C:\Windows\SysWOW64\atl.dll - ok
20:06:39.0014 0x1094  [ 453DE2958C885527E20C79A3FEFE6AF7, AC40DC0D1224A2F6FAA1A3396345371CAE7312C6D7EF0923602B2E89ED22BA2B ] C:\Windows\SysWOW64\samlib.dll
20:06:39.0014 0x1094  C:\Windows\SysWOW64\samlib.dll - ok
20:06:39.0023 0x1094  [ 551F51B66E5EA87A38D8197EB3BDB57A, 2006D0418848EAA2361C26D18246D0BAA646B6F25F2C0035BDC82967E9BD73F1 ] C:\Windows\SysWOW64\setupapi.dll
20:06:39.0023 0x1094  C:\Windows\SysWOW64\setupapi.dll - ok
20:06:39.0031 0x1094  [ C6DF7A87063D006ECF1FD8156CB6DE3F, 921AB6B88444B364F05D8EDF0EDDFA0892353A862CD3580F7EDA311E4FDC26B6 ] C:\Windows\SysWOW64\SLC.dll
20:06:39.0032 0x1094  C:\Windows\SysWOW64\SLC.dll - ok
20:06:39.0040 0x1094  [ 5EC8FB83F31AA2D6F421F02C3F4F4475, CC325D32700AED6CEA6FA1190C04FEDA9A52DABB3E47D3923BA9BBE06A5EB556 ] C:\Windows\SysWOW64\winspool.drv
20:06:39.0040 0x1094  C:\Windows\SysWOW64\winspool.drv - ok
20:06:39.0048 0x1094  [ 526014FFF6F612D9D0E86C874E7B0C36, 0E704D56E95F2AA4FF99D21064EAECC407D40B23E77330F3A7AA81236066697E ] C:\Windows\SysWOW64\wininet.dll
20:06:39.0048 0x1094  C:\Windows\SysWOW64\wininet.dll - ok
20:06:39.0057 0x1094  [ 1CBF77E333C1251DD3AF76FD9F67C5D1, 16FB6520E40E2B79F74E55D81E6121CF777282F4C61AD2B69BEC2ECC2F3433CA ] C:\Windows\SysWOW64\iertutil.dll
20:06:39.0057 0x1094  C:\Windows\SysWOW64\iertutil.dll - ok
20:06:39.0065 0x1094  [ 7F60324132E77497DB2CBEA7DAE47B11, 4CAC27606435912C115BFACB0CB2645816D37E31CDC979C32EBD9188737044A0 ] C:\Windows\SysWOW64\urlmon.dll
20:06:39.0065 0x1094  C:\Windows\SysWOW64\urlmon.dll - ok
20:06:39.0073 0x1094  [ AB62A8F77C0E2EC8BFDAC6BB379B3ECB, 8AC91657D7A502EA72FB9C1553BC5E1A4BE794CE7CA213BA3DDE0CADE963CC30 ] C:\Program Files (x86)\Toshiba\ConfigFree\NDSNLS.dll
20:06:39.0074 0x1094  C:\Program Files (x86)\Toshiba\ConfigFree\NDSNLS.dll - ok
20:06:39.0081 0x1094  [ 4AA2A0E26CEF1A803741253DCF9A1503, 8718BF6DC8678BDC5AF627F82D14E2D857D94A760529FF00F1D7B066F46CA832 ] C:\Windows\SysWOW64\comdlg32.dll
20:06:39.0082 0x1094  C:\Windows\SysWOW64\comdlg32.dll - ok
20:06:39.0093 0x1094  [ 9474AD3584430D24DA87517F9DB0CBB2, 62AF2AD461E255B2B646F7462A7F2592BC7CE2FCAC980F09B5E8AC54F3C912D0 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18879_none_88f80d1769beeaec\comctl32.dll
20:06:39.0093 0x1094  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18879_none_88f80d1769beeaec\comctl32.dll - ok
20:06:39.0102 0x1094  [ 1D109ED0D660654EA7FF1574558031C4, 7DCB3C45938D31854E46B5E5B0E16D538E29230D1BC81086D40C8DB3BDF510BC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcm80.dll
20:06:39.0102 0x1094  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcm80.dll - ok
20:06:39.0117 0x1094  [ 386206F09D969F809B76B8E10355F703, 8409128747E037D3A78F56B28965A02B6DF3F52850E9A08F9DDC55739E255D1F ] C:\Program Files (x86)\Toshiba\ConfigFree\CFWRPAR_CS.dll
20:06:39.0117 0x1094  C:\Program Files (x86)\Toshiba\ConfigFree\CFWRPAR_CS.dll - ok
20:06:39.0127 0x1094  [ 1A09CB187440993FA5E24DE1EEB7B916, DE0ABF6A3D7AD303A10E2E114EAA0E8F064EF5298270FC9548028010DBE4FFAC ] C:\Windows\SysWOW64\cfgmgr32.dll
20:06:39.0127 0x1094  C:\Windows\SysWOW64\cfgmgr32.dll - ok
20:06:39.0136 0x1094  [ E2C48CD0132D4D1DC7D0DF9A6BEF686A, 52D1A8AA992AF2F727DA4B16522D604648D700997B1620CCB67D05838C127674 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
20:06:39.0136 0x1094  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
20:06:39.0144 0x1094  [ B8FBE5F40B09F5D20E1E5CCFEF893D62, 9C635152172C491CE16C0AB7ED423F5483A9B642F4996FDB51657F30AEEA1B97 ] C:\Windows\SysWOW64\imm32.dll
20:06:39.0144 0x1094  C:\Windows\SysWOW64\imm32.dll - ok
20:06:39.0154 0x1094  [ E3C3BD69701CE6B7B17101E4F7740534, 9D6A308A961A1942D7BF8ABEABE6CA87EB13F7710D40F2F767CE4545C18864C6 ] C:\Windows\SysWOW64\msctf.dll
20:06:39.0154 0x1094  C:\Windows\SysWOW64\msctf.dll - ok
20:06:39.0160 0x1094  [ DF37346EA13082E3E1B423B54014E641, 33970BEED71465A3C672A237F836C764C2B78063B315004ABA3BF13A664927F1 ] C:\Windows\SysWOW64\lpk.dll
20:06:39.0160 0x1094  C:\Windows\SysWOW64\lpk.dll - ok
20:06:39.0172 0x1094  [ FB3E5FD7F74BFC301AD3FB7DE670EDCB, 286EB6EA24FC2A29FE8ABBE84DDEDB1B1061ACA2C6CE2D3975CD55C477CD6944 ] C:\Windows\SysWOW64\usp10.dll
20:06:39.0172 0x1094  C:\Windows\SysWOW64\usp10.dll - ok
20:06:39.0180 0x1094  [ BE3C082837866C4C291ADAF163C10EA6, 9C65ABFE6E11B05C9309B86A87ADDD3557C043D4582E1A29530EBC36D470B13D ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
20:06:39.0180 0x1094  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll - ok
20:06:39.0189 0x1094  [ 28A09777D2D952122567A8A82F1A2C7B, 772260DF36AE85A0619C51402DE416E0C329976B724C8E9C4F8C013CBB7C7289 ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
20:06:39.0190 0x1094  C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
20:06:39.0198 0x1094  [ 5E3C0E5FFDA48C5DA35BBFB8EFFF8066, E2BBCC111DB1CE6072CB796F21677E4529029CE66DDC471EC793278F81F1FCF6 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
20:06:39.0198 0x1094  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
20:06:39.0207 0x1094  [ D10D01B2DFCD8D2F32A32ED29E8DA1C2, D5F89AFF51D690494A70F0E17CB5609DB81F7C9BACD2952D411C7959E90BEEE3 ] C:\Program Files (x86)\Toshiba\ConfigFree\CFSvcs.exe
20:06:39.0207 0x1094  C:\Program Files (x86)\Toshiba\ConfigFree\CFSvcs.exe - ok
20:06:39.0225 0x1094  [ 2E10EB73ED1E094E9A113D0798058B88, D0AB6B3A42868462054D979072E90E4DDC79E227B052FC1394CE723DC969F1AA ] C:\Windows\System32\vssapi.dll
20:06:39.0225 0x1094  C:\Windows\System32\vssapi.dll - ok
20:06:39.0233 0x1094  [ C3E0696C3B42F694C5822776AA6FFFDF, 80C3DEC2C48500F96C9E677450EFC1ADA9FE9FBB70F4CC2D7D9244B1A515418B ] C:\Windows\System32\drivers\NisDrvWFP.sys
20:06:39.0234 0x1094  C:\Windows\System32\drivers\NisDrvWFP.sys - ok
20:06:39.0242 0x1094  [ 290A15C136531024982698A124F299FB, A61D1DFAF1C99DFCF457EFF6CD6E9802B65E46B0DB4A70F0D16DE44181BAEA56 ] C:\Windows\System32\taskschd.dll
20:06:39.0243 0x1094  C:\Windows\System32\taskschd.dll - ok
20:06:39.0251 0x1094  [ A6BCDC241B6578C7DB57B5973B99FE7E, 1399FAC8D9885C4CA764447BFC34644B591F3ED963720C3BE865711C17FE45F5 ] C:\Windows\System32\wdscore.dll
20:06:39.0251 0x1094  C:\Windows\System32\wdscore.dll - ok
20:06:39.0260 0x1094  [ 6542A767BD7A90F5383605E6849FDF48, 512839C4A8616D24BA9A15C702E901F90B8B8D8EBA387126C9802050B12ED88C ] C:\Windows\System32\WSDApi.dll
20:06:39.0260 0x1094  C:\Windows\System32\WSDApi.dll - ok
20:06:39.0268 0x1094  [ 65247F45AADA547397134AF688EFE471, 0829BFEC77E9292B69A3BC6DFA43CB0AE8EA52C01864A96A69BD610C0207E8E3 ] C:\Windows\System32\httpapi.dll
20:06:39.0268 0x1094  C:\Windows\System32\httpapi.dll - ok
20:06:39.0276 0x1094  [ 7F80E2C493079E9D42CCECC715790E10, 7FF59FA88AC1BB7D80348758DE8E3052A7DFBC0443171B6C062DD1B2FC8E7977 ] C:\Windows\System32\fundisc.dll
20:06:39.0277 0x1094  C:\Windows\System32\fundisc.dll - ok
20:06:39.0286 0x1094  [ 7371D6B52B85190971CB3F35FA0CED05, 85C39664D66234DA1774D763F4E7D70CAE0578D7B7E87C1A6C82C7FAF4E06491 ] C:\Windows\System32\diagperf.dll
20:06:39.0286 0x1094  C:\Windows\System32\diagperf.dll - ok
20:06:39.0294 0x1094  [ E8AECB69B2057EB308BE15A77AF2489E, 970E3C5B03B6179FB503228A932ABAEC542A34A87A4CE0F5ADA82EB5FA436E4E ] C:\Windows\System32\vsstrace.dll
20:06:39.0294 0x1094  C:\Windows\System32\vsstrace.dll - ok
20:06:39.0303 0x1094  [ D955D5DE998DB2476BF0892BE3A96C26, 3828FC1D4A4F9CD685E6D938B92370A602B84A3ACE2C9A674B3B59E633B0AE07 ] C:\Program Files (x86)\O2Micro Flash Memory Card Driver\o2flash.exe
20:06:39.0303 0x1094  C:\Program Files (x86)\O2Micro Flash Memory Card Driver\o2flash.exe - ok
20:06:39.0313 0x1094  [ 25754CBC9CAAF51184C9E70F3A0A349E, F42954F59842B4D12608D16114DD130C5C5CD2244252EDF0DC29C6B736B65822 ] C:\Windows\System32\cryptnet.dll
20:06:39.0313 0x1094  C:\Windows\System32\cryptnet.dll - ok
20:06:39.0321 0x1094  [ 0842A765D31D6E4AE50D6DF7DED61748, E64BE7D909220442D9479EFF28CE0086461EC718CA662F728B3549B3681DEED2 ] C:\Windows\System32\SensApi.dll
20:06:39.0322 0x1094  C:\Windows\System32\SensApi.dll - ok
20:06:39.0330 0x1094  [ 5E1D96076745F73C56B1307FEE6BEDFE, E1C69F35AEC9C11F570BFFB89934165A8FEAFB62B62080C9E38A965DEBBBB87A ] C:\Windows\System32\ncsi.dll
20:06:39.0330 0x1094  C:\Windows\System32\ncsi.dll - ok
20:06:39.0339 0x1094  [ 467FBA22AD764B6AB85BE58C25EEF15D, B762EA05317FD849DB51662CA48579004328905F2A5B9F33E7603F80C15F3AE7 ] C:\Windows\System32\ssdpapi.dll
20:06:39.0339 0x1094  C:\Windows\System32\ssdpapi.dll - ok
20:06:39.0347 0x1094  [ CCF523B951AFAA0147F22E2A7AAE4976, 91314768DA140999E682D2A290D48B78BB25A35525EA12C1B1F9634D14602B2C ] C:\Program Files (x86)\NXP\FM Radio\OpenLibSysX64.sys
20:06:39.0347 0x1094  C:\Program Files (x86)\NXP\FM Radio\OpenLibSysX64.sys - ok
20:06:39.0362 0x1094  [ 58865916F53592A61549B04941BFD80D, 3511AF2EFD06636E144C36ECA8C7AA1A33C269EDB10A6D879AA25D9E11359AA9 ] C:\Windows\System32\drivers\PEAuth.sys
20:06:39.0362 0x1094  C:\Windows\System32\drivers\PEAuth.sys - ok
20:06:39.0378 0x1094  [ D883BD7C5BA86AE7D442C3A24F13A46D, 4B98A5E1C43CCA21209A27AC8A2ABA455215C9F64710FD2FF8A7355FC6A21990 ] C:\Windows\System32\p2pcollab.dll
20:06:39.0379 0x1094  C:\Windows\System32\p2pcollab.dll - ok
20:06:39.0387 0x1094  [ 6DBF2AC2BDAFF355995AB25ECCC4CFE1, F2DD39F6B1489276A913FD62D6C068D79EABADC417D404143E3D2FF8C20CDE01 ] C:\TOSHIBA\IVP\ISM\pinger.exe
20:06:39.0387 0x1094  C:\TOSHIBA\IVP\ISM\pinger.exe - ok
20:06:39.0395 0x1094  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\drivers\secdrv.sys
20:06:39.0396 0x1094  C:\Windows\System32\drivers\secdrv.sys - ok
20:06:39.0404 0x1094  [ 89A5560671C2D8B4A4B51F3E1AA069D8, 07DEE5D73DDE09F954E2E13BB5603F0033829B6199C81A7C1709D94AB92B351E ] C:\Windows\System32\IPSECSVC.DLL
20:06:39.0404 0x1094  C:\Windows\System32\IPSECSVC.DLL - ok
20:06:39.0413 0x1094  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] C:\Program Files (x86)\Skype\Updater\Updater.exe
20:06:39.0413 0x1094  C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
20:06:39.0422 0x1094  [ D16A740186870C32941C0E61DF4F1298, 070E994DC851F9E397CCABCB2227D3E4E096463E89BF34E3C09896BF9A08C91E ] C:\Windows\SysWOW64\wintrust.dll
20:06:39.0422 0x1094  C:\Windows\SysWOW64\wintrust.dll - ok
20:06:39.0430 0x1094  [ 09EA40F4DAD2EDB3587E5E0BAA9C3E15, 45EDA279BD838BD65702762E4EFEDA8F4178F9478E21678B8C75D1AA4015906E ] C:\Windows\SysWOW64\imagehlp.dll
20:06:39.0430 0x1094  C:\Windows\SysWOW64\imagehlp.dll - ok
20:06:39.0439 0x1094  [ 1DACD1530C6E58AEAE9F6DE7DA851935, 923C936B935BDCCBE7DD0D6F2921CFA5980FC15F950E29B72E649AC0B9867EB2 ] C:\Windows\SysWOW64\shimeng.dll
20:06:39.0439 0x1094  C:\Windows\SysWOW64\shimeng.dll - ok
20:06:39.0447 0x1094  [ 14DC30962660BA05F1F54EB11AA5A2B4, 23DD3D9E1D7F7CCB1A9AD2106CF39F072B689623854C36BDF27C0050DD28AA8E ] C:\Windows\System32\FwRemoteSvr.dll
20:06:39.0447 0x1094  C:\Windows\System32\FwRemoteSvr.dll - ok
20:06:39.0456 0x1094  [ 1107BD574A84367735FEC38B9BD64E6B, 682D5372B533817C810F1DCB1C7AE42C44A786ED114601E56DF85FE1C41D5989 ] C:\Windows\SysWOW64\apphelp.dll
20:06:39.0456 0x1094  C:\Windows\SysWOW64\apphelp.dll - ok
20:06:39.0466 0x1094  [ C394079EB162E812D682C73FA96AF6E4, 639F482DBC82E1E8E7254A5F6FF0F60661EA4BE44D86CA13238913DABFA522F8 ] C:\Windows\SysWOW64\clbcatq.dll
20:06:39.0466 0x1094  C:\Windows\SysWOW64\clbcatq.dll - ok
20:06:39.0481 0x1094  [ 3E5EF481EAA9695181B6C02A2B88983E, 7A52CFEFC276D655E6DB4240885E5C868927663C4B7C6D285E2AB1C4A2BA64CF ] C:\Windows\System32\wiatrace.dll
20:06:39.0481 0x1094  C:\Windows\System32\wiatrace.dll - ok
20:06:39.0489 0x1094  [ E14170AEA125119B98FA2BDE3FF4F462, 939758ADA9D1A7E3B6BA1DB6D9E41D3FA27A7013C156F0B63010A0FB62DD64F8 ] C:\Windows\SysWOW64\rsaenh.dll
20:06:39.0490 0x1094  C:\Windows\SysWOW64\rsaenh.dll - ok
20:06:39.0498 0x1094  [ 8E10B36901325C1ABE28E71FB8E437D9, 6478778DCA5AAC88BF3ACD507463E7EFBFB10696B71C847B383FF56B868C8304 ] C:\Windows\System32\wsdchngr.dll
20:06:39.0498 0x1094  C:\Windows\System32\wsdchngr.dll - ok
20:06:39.0510 0x1094  [ E1292C1ED4DEB17B8A9B586D22CB2061, 03303CD71BC6614D22374B5804967EBBD8B2C66B0C15CECBD022601CED81D72F ] C:\TOSHIBA\IVP\swupdate\swupdtmr.exe
20:06:39.0511 0x1094  C:\TOSHIBA\IVP\swupdate\swupdtmr.exe - ok
20:06:39.0527 0x1094  [ A7FF25D9B9DA36797BD1EA48DB292DCE, D89C946633E77765923BD698F2665DC03C5CF1676EB2BAF4450A856B2E856997 ] C:\Windows\System32\drivers\tcpipreg.sys
20:06:39.0527 0x1094  C:\Windows\System32\drivers\tcpipreg.sys - ok
20:06:39.0546 0x1094  [ B146492A882A25A2DF1DB4668FCED6C8, B8C46B4536A7DE5A39EB7EE6F4BB6A7962FFA25563AF8ED8615B439123027E92 ] C:\Program Files (x86)\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
20:06:39.0546 0x1094  C:\Program Files (x86)\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe - ok
20:06:39.0556 0x1094  [ 6A487018E49C9C238243162A3B5F5945, 498E4CF6539ACE120AC61AC822823E9E86F3B8D00CF033C2F26A6384D0012FD4 ] C:\Windows\System32\icaapi.dll
20:06:39.0556 0x1094  C:\Windows\System32\icaapi.dll - ok
20:06:39.0564 0x1094  [ 19AF3434564E973BC232BBD629EC2BF6, 1791B3221F83E7E77A773F9635F1D304E06DCAAD5366292A227A2A453A9B196B ] C:\Windows\System32\TODDSrv.exe
20:06:39.0565 0x1094  C:\Windows\System32\TODDSrv.exe - ok
20:06:39.0573 0x1094  [ E17A81E6AD0E89630A3B0F2ED5CBBDF5, BD5B4C1133E0A7ED1A11249ABAB43F42C840F9A4B2168ED1A1B227275E2585D8 ] C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
20:06:39.0574 0x1094  C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe - ok
20:06:39.0582 0x1094  [ 9BFE6E50393215620068DC38AC48A656, CC5979F084E381463BD36D5532B909C131701CD59EC4FB02AE85E8CED553567B ] C:\Program Files\TOSHIBA\Power Saver\TPwrReg.dll
20:06:39.0582 0x1094  C:\Program Files\TOSHIBA\Power Saver\TPwrReg.dll - ok
20:06:39.0591 0x1094  [ 2357A0FA2BAFD049FD852AD11AF36F75, 77ED2247EE482A945100A9E9BCE712B367574E7670A067D03E3C0F745B0C278A ] C:\Program Files\TOSHIBA\Power Saver\TPwrFunc.dll
20:06:39.0591 0x1094  C:\Program Files\TOSHIBA\Power Saver\TPwrFunc.dll - ok
20:06:39.0615 0x1094  [ 4E5A8546709591D31BA086CA2A69CECD, 228A3058DC833301322CA08CCA7562792F5B03B4B98583D319C70125152F06D6 ] C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
20:06:39.0615 0x1094  C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe - ok
20:06:39.0636 0x1094  [ 19D979B9F6373A7CB17EBB7594FEB819, BCA98AE2AFA37E9FCEB5AFAABB565E4C8F6D4F0D621B43EE0E07D37C57817DB9 ] C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
20:06:39.0636 0x1094  C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe - ok
20:06:39.0646 0x1094  [ 332D341D92B933600D41953B08360DFB, 213A5C84ABB0D627C05B355084A26A5081645D4EC398FF19EF6BBCB690B10055 ] C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
20:06:39.0646 0x1094  C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe - ok
20:06:39.0655 0x1094  [ 6FF25F418D373097C199E3ACCFA06E78, 7A062D707392E370EB051A3BE3F27F47F1EC97127BFB10D9A5C59537D3055BE1 ] C:\Windows\System32\tquery.dll
20:06:39.0655 0x1094  C:\Windows\System32\tquery.dll - ok
20:06:39.0677 0x1094  [ E9DBC876EC1C78A74A55D8D121016344, 73E36BE2687BC9A88B5D839EF64DBA8CA82DC19C35BBF5F6DE80B87CC5ABEBB8 ] C:\Windows\System32\wbemcomn.dll
20:06:39.0678 0x1094  C:\Windows\System32\wbemcomn.dll - ok
20:06:39.0702 0x1094  [ 8449D81B9FB1CCADEC3E64F30E1076C7, B63EBD8A1718393A89AFB912CAD552B552ED2F230D3524F106DA4D04905B6B8C ] C:\Windows\System32\winrnr.dll
20:06:39.0702 0x1094  C:\Windows\System32\winrnr.dll - ok
20:06:39.0711 0x1094  [ 898804F8043BA721AC2E9F45AA55558B, A1DF291473BD8880C3D2E436CD7764C3264D314B05C75005BE5A468E30FE22F1 ] C:\Windows\System32\PortableDeviceApi.dll
20:06:39.0711 0x1094  C:\Windows\System32\PortableDeviceApi.dll - ok
20:06:39.0719 0x1094  [ 70071E1657823DA231713D74A9CC8ECA, C1CCCDA359ADA38F2D3FD8C2A00002DC11000F2145047D67E30B0977DE6EF646 ] C:\Windows\System32\rasadhlp.dll
20:06:39.0720 0x1094  C:\Windows\System32\rasadhlp.dll - ok
20:06:39.0728 0x1094  [ B25321F9C037BA9AE1DD68B36913ACAC, 444B6F261CE49C1D46A55E0AC32DC659EA2525C0355A43C0568EA56E3ABDA781 ] C:\Windows\System32\wbem\WinMgmtR.dll
20:06:39.0728 0x1094  C:\Windows\System32\wbem\WinMgmtR.dll - ok
20:06:39.0737 0x1094  [ 41F84775AE00035887A98EE774914939, 4993542F1C5EAB56DB88E4D1042D13EE601C84FCF7E0EE105397AD75A28EFC70 ] C:\Windows\System32\PortableDeviceConnectApi.dll
20:06:39.0737 0x1094  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
20:06:39.0745 0x1094  [ A0B762992A52FA8A657A97C34BEEA807, 6DAE0BBDDFB419AD3C86BA2DA07DA87375A7F0D0577D93FDEC3007CA989C0B34 ] C:\Windows\System32\mssrch.dll
20:06:39.0745 0x1094  C:\Windows\System32\mssrch.dll - ok
20:06:39.0753 0x1094  [ 900B9B25C345AAA4F90913BA9AECABF4, 70F3A495D208AF464360F1C63E6B5E7F790FF356249101F8E202ED9ECE5C6EFF ] C:\Windows\System32\dbghelp.dll
20:06:39.0753 0x1094  C:\Windows\System32\dbghelp.dll - ok
20:06:39.0762 0x1094  [ EA85B96A8BFB435749C9004BC7340347, B34E237BF8FD5F9427735FFB9FA6DC2CF940BCAA63C4832E4D5378D6ABCD535C ] C:\Windows\System32\taskeng.exe
20:06:39.0762 0x1094  C:\Windows\System32\taskeng.exe - ok
20:06:39.0770 0x1094  [ BA019C21DAC7CAC193C93E86B9F2F3CB, CAF051703E29D1F0BF89D1E474B91E0697303FD1259C08B0783F941A8034419E ] C:\Windows\System32\wsock32.dll
20:06:39.0770 0x1094  C:\Windows\System32\wsock32.dll - ok
20:06:39.0778 0x1094  [ 54BEFBE0B681A7254FD74E1E5288F7F6, 03D507E73713AEC868F6120CD152036A584EE858B3FFC7F10B257AFA4DC80A4D ] C:\Windows\System32\msidle.dll
20:06:39.0778 0x1094  C:\Windows\System32\msidle.dll - ok
20:06:39.0787 0x1094  [ 7846D0136CC2B264926A73047BA7688A, 6F56CC1B17095C378D98B58A92F9EDA2D009529DDB6F60E815D85C7606C8EDC0 ] C:\Windows\System32\netprofm.dll
20:06:39.0787 0x1094  C:\Windows\System32\netprofm.dll - ok
20:06:39.0795 0x1094  [ 1894F161AF417784AAECFAFE77DE940E, D24319614FF0E46EF0510C5E591B7E0B409C164DA9AF3A63D454D43D4122AD56 ] C:\Windows\System32\sqmapi.dll
20:06:39.0795 0x1094  C:\Windows\System32\sqmapi.dll - ok
20:06:39.0803 0x1094  [ A5D8AD128FBB763F147F29F3D6A1C084, 12ADA49BDE8E83D74CB476E4874D96D3B8F28E8C4741A40C5285E6B21A18B6D2 ] C:\Windows\System32\npmproxy.dll
20:06:39.0804 0x1094  C:\Windows\System32\npmproxy.dll - ok
20:06:39.0812 0x1094  [ D23E5184266747DDCE9D0C6581D916B3, 10A7CDD43E27C61D08FC81855821620E3CA1CFF5C7632E60EDDADC3D09C9A901 ] C:\Windows\System32\hnetcfg.dll
20:06:39.0812 0x1094  C:\Windows\System32\hnetcfg.dll - ok
20:06:39.0821 0x1094  [ 79ED2D6DEC26E0FEFB93EA21F09E6A51, 484E083E1D39AE8D54080E77EB199A447EE983EBDEC021EAAF4D478BD651AFE5 ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatchSrv.exe
20:06:39.0821 0x1094  C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatchSrv.exe - ok
20:06:39.0829 0x1094  [ 18ADF933B54C8953FCC3EEAB4EAF4A63, C338B345AB6020F1058FA33C71132E11CA8FD2C40B1FD3E160195235E4F0B6FC ] C:\Windows\System32\TSChannel.dll
20:06:39.0830 0x1094  C:\Windows\System32\TSChannel.dll - ok
20:06:39.0838 0x1094  [ 27F479DFA5E1BD942E056888DCF5C270, BC6F375C9AF17E6320D1D4708BE3B6D19395EB218F842A32ADDC459D9DD52CF7 ] C:\Windows\System32\Query.dll
20:06:39.0838 0x1094  C:\Windows\System32\Query.dll - ok
20:06:39.0846 0x1094  [ 21F36392598072A73C7576CD8AFD6E70, 9A678206ADAD4F96FD5C0F3DDA51A39B3FAF7908B519586FD03353C36C3E5E50 ] C:\Windows\System32\wbem\wbemprox.dll
20:06:39.0846 0x1094  C:\Windows\System32\wbem\wbemprox.dll - ok
20:06:39.0855 0x1094  [ D642A49B5E19B3F5B0B4647FAE27817E, C2351C39BDD2E17723505E4CE214B9FFF83833E5E67741972A9420A84EB7BBEC ] C:\Windows\System32\wbem\wbemcore.dll
20:06:39.0855 0x1094  C:\Windows\System32\wbem\wbemcore.dll - ok
20:06:39.0863 0x1094  [ 10446646D128E580C46615338E74E672, D684A4857D1AB3D9208ABCD59707429CCB10399446CB0B87003CD6C8AEA0CC17 ] C:\Windows\System32\rundll32.exe
20:06:39.0863 0x1094  C:\Windows\System32\rundll32.exe - ok
20:06:39.0871 0x1094  [ 185A819D9AC5A1D7F387C45F476CFE32, 06C98B4C415E08CACF721470D07BA61D13F4A83BBE23CD705C22468F70AB61DF ] C:\Windows\System32\pdh.dll
20:06:39.0871 0x1094  C:\Windows\System32\pdh.dll - ok
20:06:39.0879 0x1094  [ 37B697901FE364144D634128369098FF, D16F5387D219C6580D61FC407527DF37882C595B72F9C293363D0B9E413223EC ] C:\Windows\System32\wbem\esscli.dll
20:06:39.0879 0x1094  C:\Windows\System32\wbem\esscli.dll - ok
20:06:39.0888 0x1094  [ CDBAE31A2B6C8819DDBC5CF8432E3B3E, B34269C0A606C2F0FFB1E08AA4D8606C283B09B33CBF3DF54E7BA906D92AE41F ] C:\Windows\System32\en-US\tquery.dll.mui
20:06:39.0888 0x1094  C:\Windows\System32\en-US\tquery.dll.mui - ok
20:06:39.0896 0x1094  [ 11F705A35F4CB2B4D6FA51606A9B8C54, C7F95DEADD310229836A26307C36EBAD51C18B939D0AF2138ABD9F1737BD3E25 ] C:\Windows\System32\wbem\fastprox.dll
20:06:39.0896 0x1094  C:\Windows\System32\wbem\fastprox.dll - ok
20:06:39.0904 0x1094  [ E21FFFE678FF09BAA6BF5F76BD8805C6, 2C712CE19EB3BD51CDB3097C04FE38E6B5683277437EE39289806089F5A67481 ] C:\Windows\System32\esent.dll
20:06:39.0904 0x1094  C:\Windows\System32\esent.dll - ok
20:06:39.0914 0x1094  [ 8F8380E73A04BCB85340B1A3653FB8A5, 0A70536DDF372AA85AD85E106A69AF1AB2BD7D8D72B648C2B817E0C04FFB9CCC ] C:\Windows\System32\wbem\wbemsvc.dll
20:06:39.0914 0x1094  C:\Windows\System32\wbem\wbemsvc.dll - ok
20:06:39.0921 0x1094  [ 1AE49D81622BE6364194F70045F07194, EE85363E15E3C882AB6998EF581AAB6D6F82B012EDDCE0D9071B785B25D639CB ] C:\Windows\System32\wbem\wmiutils.dll
20:06:39.0921 0x1094  C:\Windows\System32\wbem\wmiutils.dll - ok
20:06:39.0929 0x1094  [ 5103B1E343F2D5FBDFA8D0318ABC59C4, 0D4ED9E7D91A0D3F25E593F2499509E663D12E9AF2D24245F7A35F47F4AF6031 ] C:\Windows\System32\wbem\repdrvfs.dll
20:06:39.0929 0x1094  C:\Windows\System32\wbem\repdrvfs.dll - ok
20:06:39.0937 0x1094  [ A44E61A183FD6D65C655E31A330ECA7E, 4A1C2DB22F191654EB66CB6898FDDD04842AA1C078947165EB7B25F958E0A2E2 ] C:\Windows\System32\msscb.dll
20:06:39.0938 0x1094  C:\Windows\System32\msscb.dll - ok
20:06:39.0946 0x1094  [ 14CC925085F2B884B7D9004CC6B7FCD8, 70B57DAF6D3100E296BE65F1EA34E8B22129A388E08C77DF383F44A6D97A5AA2 ] C:\Windows\System32\SmartFaceVHelper.dll
20:06:39.0946 0x1094  C:\Windows\System32\SmartFaceVHelper.dll - ok
20:06:39.0956 0x1094  [ 1AF234ADAE2D8F5B4135C79DA4C2990E, 7AC0C36FBA1BB3983B6F19DFD7042037580503DFECC79B36C9519718EEFDCC3E ] C:\Windows\System32\SmartFaceVCtrl.dll
20:06:39.0956 0x1094  C:\Windows\System32\SmartFaceVCtrl.dll - ok
20:06:39.0964 0x1094  [ E946553F786521C073AABC7CD0714807, 27D87DB89DF24E1C340A1466C9DA18CEF0552D5668C14387AA80E84AA96D2463 ] C:\Windows\System32\wbem\WmiPrvSD.dll
20:06:39.0964 0x1094  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
20:06:39.0972 0x1094  [ DF39C94925D9B0474E76317B8247B4A6, 863D60E8157D4C2800BDFBB7D7339BB17804A80E7BCB3B27E15A38A44F8B3C17 ] C:\Windows\System32\FaceHI.dll
20:06:39.0972 0x1094  C:\Windows\System32\FaceHI.dll - ok
20:06:39.0980 0x1094  [ 8D94313E7A7786997B4C362B7CCB5D29, D2EA4847717BAE0D409DF1A08FEE5C44232BCDA6FD21D6062E2A5CA0718C27B5 ] C:\Windows\System32\wbem\wbemess.dll
20:06:39.0980 0x1094  C:\Windows\System32\wbem\wbemess.dll - ok
20:06:39.0989 0x1094  [ CE010ACB489CAA0253A3F692E0892631, 75930A4F7225BFCA1B802963A8941CA09D5CA8D3E45AD3036FFC836151A427C1 ] C:\Windows\System32\tdh.dll
20:06:39.0989 0x1094  C:\Windows\System32\tdh.dll - ok
20:06:39.0997 0x1094  [ A8704A10FFDE468F4AB18EBF82A9A86F, 40F6502679CEE0B657B0005278FBE7213BDDA6DEAACF868058E17737C182E1B4 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll
20:06:39.0997 0x1094  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll - ok
20:06:40.0006 0x1094  [ FDB46E4576B845FEEFC91DC475B9D93C, 26872A25FD273218C29ABAE8B0D2C3156768185B9F3118473E8A8C6DBBE01E35 ] C:\Windows\System32\FaceRec.dll
20:06:40.0006 0x1094  C:\Windows\System32\FaceRec.dll - ok
20:06:40.0014 0x1094  [ B95F748C4F100DD0F6E8115CC0968670, 9A306E9C79DF259187839EC74B7A9F2FCEBFA5EE54184BB46C48E605B4120C36 ] C:\Windows\winsxs\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8a1dd9552ed7f8d8\ATL80.dll
20:06:40.0014 0x1094  C:\Windows\winsxs\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8a1dd9552ed7f8d8\ATL80.dll - ok
20:06:40.0023 0x1094  [ DCEE3592299B2229A0DB98CB415059A2, 709AAA095DF44DDCB6159CE1635AB05EC666D845445790E569F56B297DC64AC3 ] C:\Program Files\Microsoft Security Client\NisSrv.exe
20:06:40.0023 0x1094  C:\Program Files\Microsoft Security Client\NisSrv.exe - ok
20:06:40.0032 0x1094  [ B7762D1AEAAE5C4AAA5F1677EC3B1512, DC075848BC8F74B583354320BFC87E231CB39F6470A2FC3307ECCDFB13751BF9 ] C:\Program Files\Microsoft Security Client\NisLog.dll
20:06:40.0032 0x1094  C:\Program Files\Microsoft Security Client\NisLog.dll - ok
20:06:40.0040 0x1094  [ 0E4C472AE141D6F042BF758A298C3C81, D8653A26B4DC57F524263A991BD4A9A4F03F0D8D3C9CAC6E3BC8A8F4EDE41766 ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVLogOn.dll
20:06:40.0040 0x1094  C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVLogOn.dll - ok
20:06:40.0048 0x1094  [ 1B7A24F2BFA1BB09CC67D4688B411039, 49B0663E18642E4838FE87FA160453153CE17F0C44E3821577001A66372AA3F9 ] C:\Windows\System32\pcadm.dll
20:06:40.0048 0x1094  C:\Windows\System32\pcadm.dll - ok
20:06:40.0057 0x1094  [ 595BAC1B188813CEAE88A599738E60F8, 5B534DD0240139188880C8C0B4A9471235D771D2805294BB47CC9BB643B9F11F ] C:\Windows\System32\mssprxy.dll
20:06:40.0057 0x1094  C:\Windows\System32\mssprxy.dll - ok
20:06:40.0065 0x1094  [ 0FD5754319A388FBD2E13C21E806AC42, E6324B447ECE1903BC102FDF941A7B286566D4176857D51092A9589FEB8567E9 ] C:\Windows\System32\pnpts.dll
20:06:40.0065 0x1094  C:\Windows\System32\pnpts.dll - ok
20:06:40.0073 0x1094  [ B1DDE7212AAD17473FCF648AEC8795CD, F6D7D56717CEE18D2B8B3556766C34D8AD011099AF81A58AA94AE914FFA71683 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76BA735D-754A-4B08-B42D-7680144B23EC}\gapaengine.dll
20:06:40.0073 0x1094  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76BA735D-754A-4B08-B42D-7680144B23EC}\gapaengine.dll - ok
20:06:40.0082 0x1094  [ 68F9E433002902D0D8215937C1B501F5, 9F4A66909A57DC155A072D55C21DF5453D7B8BC6F8D86EB5B949F6755B0543E7 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76BA735D-754A-4B08-B42D-7680144B23EC}\nisfull.vdm
20:06:40.0082 0x1094  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76BA735D-754A-4B08-B42D-7680144B23EC}\nisfull.vdm - ok
20:06:40.0090 0x1094  [ 75C34D22D3E7D1D0238B62C55F604BFC, FE2CC757B1BDF057835E4E950D683FD47325EA9AD7B880E1A4746D08212CE768 ] C:\Windows\System32\cscapi.dll
20:06:40.0090 0x1094  C:\Windows\System32\cscapi.dll - ok
20:06:40.0098 0x1094  [ BED93F434CD291DEC110901F7343E000, E47365043F44B0FB62C9552C24C18725AE60797D1A80230D26D52EEDC7E5E42E ] C:\Windows\System32\dllhost.exe
20:06:40.0099 0x1094  C:\Windows\System32\dllhost.exe - ok
20:06:40.0107 0x1094  [ ED4EC7C21A3607A4CB7D36E9C5B90AB2, 13580D9FFB388427105408D5F1883CF85A3BE7EBC7F6519327EB4F9193A17C6C ] C:\Windows\System32\AtBroker.exe
20:06:40.0107 0x1094  C:\Windows\System32\AtBroker.exe - ok
20:06:40.0115 0x1094  [ A0AB2BB9A92293D9CE66E252719AB5FE, A1323F79124F3D9A214BAF82AE085F4299075F0EC308736B9E8F14351FAAE1E4 ] C:\Windows\System32\userinit.exe
20:06:40.0115 0x1094  C:\Windows\System32\userinit.exe - ok
20:06:40.0123 0x1094  [ 1AD703C14E705F69D4ADF79154054173, DD6E692CC06E05244E6595C4C908D96C4F64957B6788B271C3A4F423B8945FFE ] C:\Windows\System32\dwmapi.dll
20:06:40.0123 0x1094  C:\Windows\System32\dwmapi.dll - ok
20:06:40.0131 0x1094  [ A78E7E16E8696172FF3F4147E6050DC3, 5AEF9E3E649A74A739C462193B4808B40B790D605CB00A45438C30907D581736 ] C:\Windows\System32\dwmredir.dll
20:06:40.0131 0x1094  C:\Windows\System32\dwmredir.dll - ok
20:06:40.0139 0x1094  [ B77AD1818DBD476245B1281016E075E4, 0871BF0ACC2E99F4B28C04687BFA8F1D1EC5756AC01B581A9E436FFB883D53C2 ] C:\Windows\System32\milcore.dll
20:06:40.0139 0x1094  C:\Windows\System32\milcore.dll - ok
20:06:40.0148 0x1094  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:06:40.0148 0x1094  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
20:06:40.0156 0x1094  [ 38573C7D9D91B316E6EE76E0C94F749E, 809AE69DBB75ABB9902428F0EF2D109412258114959833D91480D9E1B94B54D6 ] C:\Windows\System32\localspl.dll
20:06:40.0156 0x1094  C:\Windows\System32\localspl.dll - ok
20:06:40.0164 0x1094  [ 5F0501B0C731E7F2DDE196E3A32E3500, FABEABAD258862788BE351D5B9519C68352CEE95ECA52562AB4EB9B37C35DC3A ] C:\Windows\System32\PlaySndSrv.dll
20:06:40.0164 0x1094  C:\Windows\System32\PlaySndSrv.dll - ok
20:06:40.0169 0x1094  [ AD8DDBB13B341B931CC9229BBC9D0625, E71CBC88091479147E33657727CEF893DE5E8D69DF90F3526EF9643E0C719F27 ] C:\Windows\System32\HotStartUserAgent.dll
20:06:40.0169 0x1094  C:\Windows\System32\HotStartUserAgent.dll - ok
20:06:40.0177 0x1094  [ D4175BE7CA634C7BB9205F7EE4F3F7E4, 62DBF61AEE79AE606B81AEBCA315C5A980A646B1FA9B36D7636CFFF833D0127B ] C:\Windows\System32\d3d9.dll
20:06:40.0177 0x1094  C:\Windows\System32\d3d9.dll - ok
20:06:40.0185 0x1094  [ 48DC4268BAA33F8770F498F96100E301, 7B0C7BCAC38641F3FCBBA8E3970122EACFC759B2A65DC49BCEB3ADD977135496 ] C:\Windows\System32\pautoenr.dll
20:06:40.0185 0x1094  C:\Windows\System32\pautoenr.dll - ok
20:06:40.0194 0x1094  [ 2CCA759379C220D29F0066CA49E9259F, 132298CC7F90175237ECA7E6BD45124465DC72EC1EC2054A54B4EFC7423F4ECA ] C:\Windows\System32\sfc.dll
20:06:40.0194 0x1094  C:\Windows\System32\sfc.dll - ok
20:06:40.0204 0x1094  [ C88208718545410FA0F11E06F6E7F01B, FB433177A2DEFB2AC348CAB82C794A98F8A3A21675232C6E53E6A834D19775F2 ] C:\Windows\System32\certcli.dll
20:06:40.0206 0x1094  C:\Windows\System32\certcli.dll - ok
20:06:40.0212 0x1094  [ 077A43C53E9084FEB102EAB37234BF4F, DBD8BBE2F77FBAF71CB6DBFE3CAB8DE809702E849CAA340B23B9E5F328CA3AD8 ] C:\Windows\System32\hpinksts5C12LM.dll
20:06:40.0212 0x1094  C:\Windows\System32\hpinksts5C12LM.dll - ok
20:06:40.0223 0x1094  [ 77E585EDD4C7EB7AB2ACC36BC1DC32A5, 57BF4D683CA66AAC2A4B7FEDF9F7FB254860BE77E1F4A6DD2C40410783B5C113 ] C:\Program Files (x86)\Google\Update\1.3.24.15\goopdate.dll
20:06:40.0223 0x1094  C:\Program Files (x86)\Google\Update\1.3.24.15\goopdate.dll - ok
20:06:40.0236 0x1094  [ 6B08E54A451B3F95E4109DBA7E594270, 0419E4100C3B4AD1831FBF9249173CF32C8209C71B7101674B239A0A47C30E42 ] C:\Windows\explorer.exe
20:06:40.0236 0x1094  C:\Windows\explorer.exe - ok
20:06:40.0248 0x1094  [ ACFD0B03F25EF6C7666A7F634CD86C14, 0E4C75E347EEFA8274BA1A59C8455F06AD54E03BA32AB17B20FA32B3446BD6E4 ] C:\Windows\System32\HPDiscoPM5C12.dll
20:06:40.0248 0x1094  C:\Windows\System32\HPDiscoPM5C12.dll - ok
20:06:40.0256 0x1094  [ 11CFE871D27B4C3485E84BE9E48FFF5E, E6B87FA200AB571056B961794D8EF280C357C740AFC733511EFFF3EECA9E2C78 ] C:\Windows\SysWOW64\msi.dll
20:06:40.0256 0x1094  C:\Windows\SysWOW64\msi.dll - ok
20:06:40.0264 0x1094  [ 5AF34B08C676F16A070A7D7EF2AB4C3E, 84D5877F247A5D248DB0880BDD80C9D59A1CE996C0BF39FBEB6BDD0276C3D5D7 ] C:\Windows\System32\CertEnroll.dll
20:06:40.0264 0x1094  C:\Windows\System32\CertEnroll.dll - ok
20:06:40.0272 0x1094  [ E6409B960CCAA48F292A4808E00167C8, 59C9B4440A8F334819158FECC01D957CCD3108D8AE285DC6BD451A0B2171A8A4 ] C:\Windows\System32\d3d8thk.dll
20:06:40.0272 0x1094  C:\Windows\System32\d3d8thk.dll - ok
20:06:40.0281 0x1094  [ D3C2F70987BC0D759F21DB84BB134476, 4EA7C098DB63513A33BB6C818A3D3F34E523F91C05DDA1604A90540E73771DBA ] C:\Windows\System32\atiumd64.dll
20:06:40.0281 0x1094  C:\Windows\System32\atiumd64.dll - ok
20:06:40.0294 0x1094  [ 57120423BC6342F0EAE16E3720184D5A, 49FE2014C08021CE65B71593F72EFE4D6000BD69307E475F1939F30CD6B85FC1 ] C:\Windows\System32\wsnmp32.dll
20:06:40.0295 0x1094  C:\Windows\System32\wsnmp32.dll - ok
20:06:40.0302 0x1094  [ 9DCAA0F7D8EC0C07BBBE724041DB7AC5, F129900011B92AB7F74B11CBE4A214E5C21F7A3B3D05D5E1E1CB5C0FAE89A81C ] C:\Windows\System32\shdocvw.dll
20:06:40.0302 0x1094  C:\Windows\System32\shdocvw.dll - ok
20:06:40.0311 0x1094  [ 2EC53B5A351C4D443896DBAD117F7E82, E158AD22F1905B41D7975E3725D7A870FB192D7258C4330DF06CD4AC02A7CFE4 ] C:\Windows\SysWOW64\msimg32.dll
20:06:40.0311 0x1094  C:\Windows\SysWOW64\msimg32.dll - ok
20:06:40.0319 0x1094  [ D922592AB65C5D9B88B30B4510A3464E, E6226CFD77C6DDAE5737C4CC6F8B347DF474CF8DFD93E32ABE6AE63D9AB0A586 ] C:\Windows\SysWOW64\cscapi.dll
20:06:40.0319 0x1094  C:\Windows\SysWOW64\cscapi.dll - ok
20:06:40.0328 0x1094  [ CD08EEC61C591AF59A39F4363C567D30, 6A8413BE885A07235F59846FAD986B7A65CF009EAD78DD378114B6362DDDB371 ] C:\Windows\SysWOW64\ntmarta.dll
20:06:40.0328 0x1094  C:\Windows\SysWOW64\ntmarta.dll - ok
20:06:40.0341 0x1094  [ B420EB9D254C2C16CCFBB09BCC6AB113, C53D870F179416EA7F9CAE34A503E62AE8DE9249D6EC0A64AA786EF403404005 ] C:\Windows\System32\MsCtfMonitor.dll
20:06:40.0341 0x1094  C:\Windows\System32\MsCtfMonitor.dll - ok
20:06:40.0351 0x1094  [ AD27B41DA928C0338E6F364BE928D3F7, B6CFB153ED3F63B98713F361A25511F89C8310DACADAD8B04895D2412CC43B68 ] C:\Windows\System32\msutb.dll
20:06:40.0351 0x1094  C:\Windows\System32\msutb.dll - ok
20:06:40.0359 0x1094  [ 74D59F72104C9FF8D154D1AB372A5A57, 52247C9FF1C1D9DEA7164A3E12137BBAEB4D7AFD135E0351FFE25B026C02FFEC ] C:\Windows\System32\tcpmon.dll
20:06:40.0359 0x1094  C:\Windows\System32\tcpmon.dll - ok
20:06:40.0367 0x1094  [ 4934241CD20AC87D78121352E3BA8318, DACD7A7E0A41B011AD306972876568F27CDCF064EDFF71024BC0D4B595B666A7 ] C:\Windows\SysWOW64\dbghelp.dll
20:06:40.0367 0x1094  C:\Windows\SysWOW64\dbghelp.dll - ok
20:06:40.0377 0x1094  [ EE9040473EB1339E75E79A75FA47A825, E2ABCC82EC1699EC841C64AA11AB610C12AACC9272F5E73F7207E594DF4E581B ] C:\Windows\System32\browseui.dll
20:06:40.0377 0x1094  C:\Windows\System32\browseui.dll - ok
20:06:40.0390 0x1094  [ 943F05B78BC03F3463FCE26D4B5B81A9, F2E9F0FEBE8CB2E31B1D37BE41722A853F5A80E51AA3FC56FCE5DECBDD87021D ] C:\Windows\System32\snmpapi.dll
20:06:40.0390 0x1094  C:\Windows\System32\snmpapi.dll - ok
20:06:40.0404 0x1094  [ 397D14958D6C9C2B365469A857B2AC4E, 1465D7DC50A27A2C75FFC477E8A453B0884D1E298F804233483B63A47634B7EA ] C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
20:06:40.0404 0x1094  C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe - ok
20:06:40.0415 0x1094  [ 7BCB22C93FF0E90683F3513531E2990B, 55E43B66312A467748A3DE78C4A49F7CC1456EC3B2960A84B8069ABE44245B99 ] C:\Windows\System32\tcpmib.dll
20:06:40.0415 0x1094  C:\Windows\System32\tcpmib.dll - ok
20:06:40.0420 0x1094  [ 4B7BB89AFC32632F775D8A3E62FCA979, 5FEF114A111731F6B425E8943AD019DD8C6629B5121735F000098EA8AA5D6725 ] C:\Windows\System32\mgmtapi.dll
20:06:40.0420 0x1094  C:\Windows\System32\mgmtapi.dll - ok
20:06:40.0428 0x1094  [ 3B1534B2F98C3B93DDB2F3BEA770E3E7, 1F54258168EC61D6A8F617521BEAAE571C4955DECC8A13457A2275A2900B79C8 ] C:\Windows\System32\atiumd6a.dll
20:06:40.0428 0x1094  C:\Windows\System32\atiumd6a.dll - ok
20:06:40.0437 0x1094  [ AA0E4F73727BFC8BA404884B1C1DB719, 0DEB88BBBC3DD37824B484FA38487280CB6A049D235519584DA562C3C91F18A7 ] C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
20:06:40.0437 0x1094  C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe - ok
20:06:40.0445 0x1094  [ 73FD66B14D3C4252F7A524B8836A4359, 04656A6290E9DFE79FCCD427FC4BBCF65E5C6B9525953D780FF42966C93468CF ] C:\Windows\SysWOW64\mstask.dll
20:06:40.0445 0x1094  C:\Windows\SysWOW64\mstask.dll - ok
20:06:40.0453 0x1094  [ FBE966DB5FFE8D52F9AA28CD6A7483F2, E59E8EAE9B2038ADA9188420EBC6A79375056C66DD21C7F7EEDD3AEA54C6DD76 ] C:\Windows\System32\TBTMon.dll
20:06:40.0453 0x1094  C:\Windows\System32\TBTMon.dll - ok
20:06:40.0463 0x1094  [ 7F0F1D4B0D847696F8E309423D227DCE, 4460A2E8B27EB74E951DF328DABFC6C905DD1538D2F2BEE59B2FDA05482CE9F7 ] C:\Windows\SysWOW64\ntdsapi.dll
20:06:40.0464 0x1094  C:\Windows\SysWOW64\ntdsapi.dll - ok
20:06:40.0476 0x1094  [ 3E20E4E8B601A82B3A849415EB7248E2, 1AC49346B4C3F4E7B2CFA38034BB4F41957560D8BC5875E4CB6DBB23E06CF745 ] C:\Windows\System32\TosBtHcrpAPI.dll
20:06:40.0476 0x1094  C:\Windows\System32\TosBtHcrpAPI.dll - ok
20:06:40.0486 0x1094  [ B2E32F41E1D6500F62CAEF5EF2B17196, AFE3EF10D2CA41AF9DF3F9EE1A96DC03793425A08EDD79B12920DB9F9CF6E804 ] C:\Windows\System32\EhStorShell.dll
20:06:40.0486 0x1094  C:\Windows\System32\EhStorShell.dll - ok
20:06:40.0497 0x1094  [ EDC41901878A99EA11765F5536CCAE67, A9DD9415620B5381E22A540D5942492689A2EB38405C6EDD4BB0260490C5E4D1 ] C:\Windows\System32\imageres.dll
20:06:40.0497 0x1094  C:\Windows\System32\imageres.dll - ok
20:06:40.0505 0x1094  [ 2EDBDB75D2F41386804B2CB53C572E75, 9630954A97CF3D057587BBB01FBE10C18F93D1F8685F3776232DBF03872C4B05 ] C:\Windows\System32\TMM.dll
20:06:40.0505 0x1094  C:\Windows\System32\TMM.dll - ok
20:06:40.0515 0x1094  [ DE50800C0029B576F8E84830A06307EB, 88A9B6ECCCADBCAC92833CDFCD4F88BE257A0A7B35675257A167AA3A6EEAE447 ] C:\Windows\System32\TosBtAPI.dll
20:06:40.0515 0x1094  C:\Windows\System32\TosBtAPI.dll - ok
20:06:40.0523 0x1094  [ 7B005E3F9825A98312E089CBA0F83DAA, 2535C5875F151A1115A51F8BCEE91AED9D3FD07768ACF370DC08424F6EF2DBA9 ] C:\Windows\System32\uDWM.dll
20:06:40.0523 0x1094  C:\Windows\System32\uDWM.dll - ok
20:06:40.0534 0x1094  [ 491F1B54A84D60264611EDCCD99F60C0, 43DD5904B4385C8DE6D720EF55D7CEC8E9B20054D14839DB6F0C82F76A861AE4 ] C:\Windows\System32\atitmm64.dll
20:06:40.0534 0x1094  C:\Windows\System32\atitmm64.dll - ok
20:06:40.0545 0x1094  [ 0A0C3C03E33B734F1005CB122991713E, EEFBD6929CAF11CA3CF14840D9593EE34B087A5ACAC32131A51F8140F80C02FA ] C:\Windows\System32\TosBdAPI.dll
20:06:40.0545 0x1094  C:\Windows\System32\TosBdAPI.dll - ok
20:06:40.0559 0x1094  [ 530866A101934C0961A467B58D14F798, 2C603AB5F1A8F8D2881428EFDDE8C2DEA8C592572872BAEF845E1D6EB246BBFE ] C:\Windows\System32\tbtmon98Language.dll
20:06:40.0559 0x1094  C:\Windows\System32\tbtmon98Language.dll - ok
20:06:40.0567 0x1094  [ 5948F2B4FECE4F3301D290771F5183CF, F4112CFCA29420E8DC4D6C9758B8CAA4B3EA24BD9C672EF17ECBEA31F1DC605E ] C:\Windows\System32\usbmon.dll
20:06:40.0567 0x1094  C:\Windows\System32\usbmon.dll - ok
20:06:40.0575 0x1094  [ DE0EED5106BD03CE11CDBF690285FE6C, EB53C608B0AAA452BBC352926FFEED7F4429AAB78FA9375179BFA1665D34A067 ] C:\Windows\System32\WSDMon.dll
20:06:40.0575 0x1094  C:\Windows\System32\WSDMon.dll - ok
20:06:40.0585 0x1094  [ 76937D85DBA50B75A49F9AB24A73044E, 995EE8F43A94C8490D786A51237C125239AADA761422A8B4C06B2120B0B3EEFB ] C:\Windows\System32\win32spl.dll
20:06:40.0585 0x1094  C:\Windows\System32\win32spl.dll - ok
20:06:40.0593 0x1094  [ 961F7B0A130E1FA3976ED1E9573D4D36, DAE6AFC354A87496C44CFC9029141046A8F7B89FBC460C935443656E6C325AC7 ] C:\Windows\System32\netrap.dll
20:06:40.0593 0x1094  C:\Windows\System32\netrap.dll - ok
20:06:40.0601 0x1094  [ 19CB8D7776D3656006496C4D890F5312, 5751ED6291B9CAB382A2D8E685681733BABBB18DF97F30272CF6E721358B3551 ] C:\Windows\System32\printcom.dll
20:06:40.0601 0x1094  C:\Windows\System32\printcom.dll - ok
20:06:40.0609 0x1094  [ A5A54257E6FD4AF082CCB0470AD4FC98, 8766C000ECD136F7A5EF0B12EF43565D65123DD3527AED508C8F9F6B0FDDA349 ] C:\Windows\System32\inetpp.dll
20:06:40.0609 0x1094  C:\Windows\System32\inetpp.dll - ok
20:06:40.0617 0x1094  [ A45D8543AE13502984366767D7A4B4CD, 69B2A7653EB8234D2F50B01B4E51C7E6106907875E18CFCA092B1E30DC6D2AA7 ] C:\Windows\System32\IconCodecService.dll
20:06:40.0617 0x1094  C:\Windows\System32\IconCodecService.dll - ok
20:06:40.0625 0x1094  [ 5398BD3BA9735ECF658487A2826C0885, 7D7098552FBE7EC8767CD28AF2EF2B135584068DF302168DE730DDFD69F0FB09 ] C:\Windows\System32\runonce.exe
20:06:40.0625 0x1094  C:\Windows\System32\runonce.exe - ok
20:06:40.0634 0x1094  [ 9A6A653ADF28D9D69670B48F535E6B90, 72351645184693A879CFF7FD171A182F24B7F72EA313E8D42F2744D0421FE188 ] C:\Windows\SysWOW64\runonce.exe
20:06:40.0634 0x1094  C:\Windows\SysWOW64\runonce.exe - ok
20:06:40.0647 0x1094  [ 74F26FC01B180D4A99A168ED69C30A53, D2FD623D70340F650BFAC8C31102E1B9168FE1750C141A23ACCC1A21F9F93A94 ] C:\Windows\SysWOW64\cmd.exe
20:06:40.0647 0x1094  C:\Windows\SysWOW64\cmd.exe - ok
20:06:40.0660 0x1094  [ 72A73B43C20902760022FBC91B3EC948, 4624359D20A235C004FDD0EEB36A14FE35291A1EE8D198149995F64327A7A361 ] C:\Windows\System32\cmd.exe
20:06:40.0660 0x1094  C:\Windows\System32\cmd.exe - ok
20:06:40.0668 0x1094  [ 7DACD94118E2D8B6D72F47ADEB0367BF, 6467DE36C7DB6502AF17210148194F16BE76A9BA793105FAC763536CC14CE693 ] C:\Windows\SysWOW64\propsys.dll
20:06:40.0668 0x1094  C:\Windows\SysWOW64\propsys.dll - ok
20:06:40.0673 0x1094  [ A77267CDDE66443FB779CEE39CEE2141, 8AF7CB2343156A185F07AF1D08C3407B4366E62CEA1352EA29FF35F46EF2F10D ] C:\Windows\System32\QAGENT.DLL
20:06:40.0673 0x1094  C:\Windows\System32\QAGENT.DLL - ok
20:06:40.0686 0x1094  [ ED99B5F4B9DFE4BECA711F3B0340F931, 7C748861B87C866FBD571A0DF486DAA8C5FCF6F7ABC178332D5F8AF74D208910 ] C:\Windows\System32\QUTIL.DLL
20:06:40.0686 0x1094  C:\Windows\System32\QUTIL.DLL - ok
20:06:40.0694 0x1094  [ C6B790771A2BBB4B964329936B22D8D4, 816279777FBA4A329D5BBE1F7123511E97CBEE8D938B1EAE371D749AC0410DB7 ] C:\Windows\SysWOW64\ieframe.dll
20:06:40.0694 0x1094  C:\Windows\SysWOW64\ieframe.dll - ok


20:06:40.0702 0x1094  [ 167AC31450C0C53A01FA1491E94D7678, 951744503EF72C6D6DC49720C4E6E65DC1DBB9C8252C89FEE18B396E2ED67EA5 ] C:\Windows\SysWOW64\shdocvw.dll
20:06:40.0702 0x1094  C:\Windows\SysWOW64\shdocvw.dll - ok
20:06:40.0710 0x1094  [ D40E7B5FBB8E0EAA7C5C294389AF95AB, 8EFD521DF1F335AF416DEC15D5C0C6538903803AA1A8ED93AA704B384A29876B ] C:\Users\Mitch\AppData\Local\Temp\{E79D8B7C-2418-4F10-8CD7-BB1877E88DAC}.exe
20:06:40.0711 0x1094  C:\Users\Mitch\AppData\Local\Temp\{E79D8B7C-2418-4F10-8CD7-BB1877E88DAC}.exe - ok
20:06:40.0721 0x1094  [ 13CC59C1B04E9F20A87987C68CD4BE3F, E65363E112CF58007CA650782997413EAFFFDAC25B66976BC7B3A2CBD5ED3933 ] C:\Windows\SysWOW64\ncrypt.dll
20:06:40.0722 0x1094  C:\Windows\SysWOW64\ncrypt.dll - ok
20:06:40.0734 0x1094  [ 0F420E81062757EA8363CBACD4D40D6D, 9FC3A7C512B065F18B520FE93B821717BB8B4C36BD976E8D014F71116073CF50 ] C:\Windows\SysWOW64\gpapi.dll
20:06:40.0734 0x1094  C:\Windows\SysWOW64\gpapi.dll - ok
20:06:40.0742 0x1094  [ 71B479749F0F52C4FEC726C6FFA2CE1C, ED0F1D94620696941E9633F55AC4130EFBDA3B883CA356BB34D268F4FC7F94F1 ] C:\Windows\SysWOW64\cryptnet.dll
20:06:40.0742 0x1094  C:\Windows\SysWOW64\cryptnet.dll - ok
20:06:40.0750 0x1094  [ EC760B0B76A4353DE49D66520EB2141F, ADBF30D100D3837C35695B1ABE3E7EB03FD6B9200B9C1C337325D9E0A3A3ACE4 ] C:\Windows\SysWOW64\SensApi.dll
20:06:40.0750 0x1094  C:\Windows\SysWOW64\SensApi.dll - ok
20:06:40.0758 0x1094  [ DBD02E3E6F061EBBBF9B99A9D7CBA30B, 2C65C129BD1D4279B78E7EDF83F6FB398B705A56A99942F4CA61C9E52D21D25A ] C:\Windows\SysWOW64\winhttp.dll
20:06:40.0758 0x1094  C:\Windows\SysWOW64\winhttp.dll - ok
20:06:40.0767 0x1094  [ 8617350C9B590B63E620881092751BCB, 4D16A2197F9ED9062CFD93061294FB8E1068071D03E72B6CF3C7256F1B454A9B ] C:\Windows\SysWOW64\mswsock.dll
20:06:40.0767 0x1094  C:\Windows\SysWOW64\mswsock.dll - ok
20:06:40.0774 0x1094  [ 22CFAEB9172F5F198048401485CD0571, 94E0B8590268BD21B035297F5B0C01A4E8958A1DB39A5AA654EA1805BD30CEC2 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
20:06:40.0775 0x1094  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
20:06:40.0784 0x1094  [ 9E80FF0752E365F97FD2D1D68C2AFDA1, 07924F0966A05A992130D29BBF634214D0DFE4081851ED18B1E334437DD008D0 ] C:\Windows\SysWOW64\wship6.dll
20:06:40.0784 0x1094  C:\Windows\SysWOW64\wship6.dll - ok
20:06:40.0792 0x1094  [ D1A84F7D4CAFCFE2A32149FF418056E5, 1BF29E5E1C541F36DEDCD0DDCCCA0F35D19E94D2655055EE2477439940BAAFF1 ] C:\Windows\SysWOW64\nlaapi.dll
20:06:40.0792 0x1094  C:\Windows\SysWOW64\nlaapi.dll - ok
20:06:40.0800 0x1094  [ FC62A635063B762E1C3C60EA77279378, 9C7ADE37C9F2F9CC5A79D75260736C3791C7A73FB84BE6B7E575CA31A4B99667 ] C:\Windows\SysWOW64\NapiNSP.dll
20:06:40.0800 0x1094  C:\Windows\SysWOW64\NapiNSP.dll - ok
20:06:40.0808 0x1094  [ 690D41DF1D555F96D4898A0F54EBA065, 3A8C9304D49657765DF0FCCEAE2A529982025D8677CCA5930824921F77B8F404 ] C:\Windows\SysWOW64\pnrpnsp.dll
20:06:40.0808 0x1094  C:\Windows\SysWOW64\pnrpnsp.dll - ok
20:06:40.0817 0x1094  [ C411C80F90D6732380352B98B37BBD53, FC5A45F208072249CAA1CA9A602FEBAD24A87166628275AC15FE37B7EEF00A40 ] C:\Windows\SysWOW64\winrnr.dll
20:06:40.0817 0x1094  C:\Windows\SysWOW64\winrnr.dll - ok
20:06:40.0825 0x1094  [ A7D525E5C0D91C8C1D84C6BCD25AD77D, BD3D51E302587E33901E5995367B6227743D2385F1420E12C712A62063150318 ] C:\Windows\SysWOW64\rasadhlp.dll
20:06:40.0825 0x1094  C:\Windows\SysWOW64\rasadhlp.dll - ok
20:06:40.0834 0x1094  [ A99871BA522CB2539AE275AC18CACC8F, CBE1F5B357AAE3EA03E8E0AE2E1A1DE4EDF8F35AD056DCF1DC4E413284C86FC3 ] C:\Windows\SysWOW64\cabinet.dll
20:06:40.0834 0x1094  C:\Windows\SysWOW64\cabinet.dll - ok
20:06:40.0847 0x1094  [ 6836D001FC733F205ACB80A7986CB6C9, C56ACEBA2597649BE1C5D00407C57FC8A9D5F9715491884E5DB0D58940CFEB34 ] C:\Windows\SysWOW64\WindowsCodecs.dll
20:06:40.0847 0x1094  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
20:06:40.0855 0x1094  [ 14E4470BF8ACA69A85D741BA99F75F96, B9DA437B42D56FAF29EF8227A22D842A852F80D5611E114E27FC8A3864E6DEA5 ] C:\Windows\SysWOW64\EhStorShell.dll
20:06:40.0855 0x1094  C:\Windows\SysWOW64\EhStorShell.dll - ok
20:06:40.0863 0x1094  [ 111C47816F39A91EAAA18DA0A54E8E63, 6910253AA5DFD7E2656C65B7227E7D546648D6C55600552D79FA275D0331AA00 ] C:\Windows\SysWOW64\imageres.dll
20:06:40.0863 0x1094  C:\Windows\SysWOW64\imageres.dll - ok
20:06:40.0871 0x1094  [ C47F35CC6FA4F1BDBEF8F87AC1A46537, 82EC7041317666D5370690BD2176CF00F5957036C29429319F45045BFFAE9EC2 ] C:\Windows\System32\wuapi.dll
20:06:40.0871 0x1094  C:\Windows\System32\wuapi.dll - ok
20:06:40.0879 0x1094  [ E746ED90132C6B6313CE9179F56BD31D, CCE0367148E54AA1413C52CCE752CC75EA9E3A8232ECFC263C62A634B8CAEF5F ] C:\Windows\System32\wups.dll
20:06:40.0879 0x1094  C:\Windows\System32\wups.dll - ok
20:06:40.0890 0x1094  [ 5537EBC1209B3AA1332A03896B1184C3, 74ACC5929F0E3A0B735DC3CD42E1EBE46F243DD50C3D4791149ECD2E1C562CA3 ] C:\Windows\System32\PresentationSettings.exe
20:06:40.0890 0x1094  C:\Windows\System32\PresentationSettings.exe - ok
20:06:40.0901 0x1094  [ F4E1AA5D59C849A4AB47E895DC76B9C8, 0C93E63372D619393D9DDD3EFCA2317A6652276A9FDE0530CD2A06135EE6B46D ] C:\Windows\SysWOW64\sfc.dll
20:06:40.0901 0x1094  C:\Windows\SysWOW64\sfc.dll - ok
20:06:40.0909 0x1094  [ 12BCF4DAD8E5A1B3D5FA7AB4A79DA105, 613F0D184E08CBE1FFEEB8F845ADCA79577FB3CF59EA1FEE6B2346D9930763AB ] C:\Windows\SysWOW64\sfc_os.dll
20:06:40.0909 0x1094  C:\Windows\SysWOW64\sfc_os.dll - ok
20:06:40.0917 0x1094  [ 1F94EA31C9543B855F53BDAC7792DA4E, 3697D031632C47FC5AAB4208C05A7C4098DF390103CFDE99A512F685AD057F40 ] C:\Windows\SysWOW64\mpr.dll
20:06:40.0917 0x1094  C:\Windows\SysWOW64\mpr.dll - ok
20:06:40.0928 0x1094  [ B519848DFA30AE2B306576B51321D102, CFD8BCB7645F2200819224BEB9F10BB226D30FE27B3BB31A35A2889FA301EFF2 ] C:\Windows\System32\ie4uinit.exe
20:06:40.0928 0x1094  C:\Windows\System32\ie4uinit.exe - ok
20:06:40.0935 0x1094  [ C3E98C42EDF7EF237A4BAB91FEAC7426, FD3E92D629828F8DDD830E1474D86CC71A9C2ED5074EB8D155B578D404A485BE ] C:\Windows\System32\iedkcs32.dll
20:06:40.0935 0x1094  C:\Windows\System32\iedkcs32.dll - ok
20:06:40.0948 0x1094  [ DBBB05E1AD745B842BA790A3835637C8, D3EE396F81155506881BDABCD18D07F1159FBF246A4083BDC8D75511822ED2E0 ] C:\Windows\System32\timedate.cpl
20:06:40.0948 0x1094  C:\Windows\System32\timedate.cpl - ok
20:06:40.0956 0x1094  [ 27CEEAA8E6149FC6F2F9EE5E0BDAC5A5, F916E63D253F9D5EAEAD603382CEF8322C923DBA72AE8FF52736178BA6A95E08 ] C:\Windows\System32\actxprxy.dll
20:06:40.0956 0x1094  C:\Windows\System32\actxprxy.dll - ok
20:06:40.0965 0x1094  [ 5C45623C1A5EC70BCCB3090DB21BF075, 9869D412B1E788B9A5E1326582575CC3B651645E0A47C1C90166577A581564EF ] C:\Windows\System32\msshsq.dll
20:06:40.0965 0x1094  C:\Windows\System32\msshsq.dll - ok
20:06:40.0978 0x1094  [ 1E642FBD902FB74778F57A76F8D620F5, FB03AC38A844AB5354BBFF211D880D2DCF6D26F3534347A5BADD2CCF29ADD5C9 ] C:\Windows\System32\NaturalLanguage6.dll
20:06:40.0978 0x1094  C:\Windows\System32\NaturalLanguage6.dll - ok
20:06:40.0986 0x1094  [ 90FABA79E004399E5FC69BBBD016CAF9, 7ABF85A942954912BEB62179664CD5D0554AD90538BAC4DC50D4194F6F6B7782 ] C:\Windows\System32\NlsData0009.dll
20:06:40.0986 0x1094  C:\Windows\System32\NlsData0009.dll - ok
20:06:40.0994 0x1094  [ C8E7E069468BC0DEAFE69375421FE839, A3746F7CB8E4E2FE754433F3A1514E432159EB53CC41377FC356A424D1B07C2B ] C:\Windows\System32\NlsLexicons0009.dll
20:06:40.0994 0x1094  C:\Windows\System32\NlsLexicons0009.dll - ok
20:06:41.0004 0x1094  [ 8BDE3074EE7BB92030448419E33635C7, F76FC025E299FBD5A39079D730DA382C3B2D210CFAD46E3FD5C19F8BCE825C9B ] C:\Windows\System32\linkinfo.dll
20:06:41.0004 0x1094  C:\Windows\System32\linkinfo.dll - ok
20:06:41.0015 0x1094  [ E572915DB4DAD7F062D99334D9F10BFF, A20FB2F353A75A902CD9C3A06B40D18EA61C4A7AF3BF75D5827773089539C935 ] C:\Windows\System32\networkexplorer.dll
20:06:41.0015 0x1094  C:\Windows\System32\networkexplorer.dll - ok
20:06:41.0023 0x1094  [ 5704BC41D5DCF51E1C96CDDF68786529, 52610F65734C2102D7CFD9BA5CFA348E4FB5CA027FFD443129E8B311C5791F6E ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
20:06:41.0023 0x1094  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
20:06:41.0033 0x1094  [ C7A3A633EB888C2BE8892C5C295C4035, BABBBFFE4963FADD2342B245E3137F03732B31474991CCA57480A51D18F7EE23 ] C:\Windows\System32\ieframe.dll
20:06:41.0033 0x1094  C:\Windows\System32\ieframe.dll - ok
20:06:41.0042 0x1094  [ 43148AC21420A5D802C2F92E66346217, 05E2D720DD83F1EC97822558E2E006EB0B333C695E959ACCA2CC593D1804D408 ] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
20:06:41.0042 0x1094  C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe - ok
20:06:41.0050 0x1094  [ 82955BAF6EE545110F7CE768AECA4144, 55535CA714D73512CA4230AF8A059340D15A3D745249439B18334168C8D9F946 ] C:\Windows\System32\thumbcache.dll
20:06:41.0050 0x1094  C:\Windows\System32\thumbcache.dll - ok
20:06:41.0058 0x1094  [ 079C4723655133D5F74A93E232A2E8A8, 2049AEE2D2102087739EAEFC2076355710426AD6A5A360F85DB2460615253504 ] C:\Windows\System32\ntshrui.dll
20:06:41.0058 0x1094  C:\Windows\System32\ntshrui.dll - ok
20:06:41.0069 0x1094  [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{8CE0B9E1-12F2-4040-9224-10084F8294E5}.tmp
20:06:41.0069 0x1094  C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{8CE0B9E1-12F2-4040-9224-10084F8294E5}.tmp - ok
20:06:41.0083 0x1094  [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{EEDA24B3-CDD4-4C48-A0E8-5B6C2E2DE7AC}.tmp
20:06:41.0083 0x1094  C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{EEDA24B3-CDD4-4C48-A0E8-5B6C2E2DE7AC}.tmp - ok
20:06:41.0094 0x1094  [ 61C090AFC693640742904A4FA2409BBC, C89DF4C3C6C1F4D3B71E03AF5A8AC0C2CEFAB0676D5FF358E687DAE2319C0305 ] C:\Windows\System32\ExplorerFrame.dll
20:06:41.0095 0x1094  C:\Windows\System32\ExplorerFrame.dll - ok
20:06:41.0102 0x1094  [ 073D5D5558FA05B20431F34E1C24A041, 358CE1EA27AB569CD0F8224FD4A83667A7B767C6A303132F2765E384A09521B6 ] C:\Program Files\TOSHIBA\TBS\HSON.exe
20:06:41.0103 0x1094  C:\Program Files\TOSHIBA\TBS\HSON.exe - ok
20:06:41.0111 0x1094  [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{D4523C5C-CE5E-40F4-A5AE-38101FB57E65}.tmp
20:06:41.0111 0x1094  C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{D4523C5C-CE5E-40F4-A5AE-38101FB57E65}.tmp - ok
20:06:41.0120 0x1094  [ F276F97F862FECA02984C6DAC0F9F534, 2C75E8046A66206909D431C2808B5474CEC2201B19189579AFBF0D89FC470515 ] C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
20:06:41.0120 0x1094  C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe - ok
20:06:41.0129 0x1094  [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{2826B483-C0EB-48DF-B328-6CD003040A7F}.tmp
20:06:41.0129 0x1094  C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{2826B483-C0EB-48DF-B328-6CD003040A7F}.tmp - ok
20:06:41.0138 0x1094  [ FCD439BC51419B5D3257326E2693B227, BC72EB43B8578F77CC83B86ACFF4D8737EB0FB2E2C256440E955AA9185FAF58A ] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
20:06:41.0138 0x1094  C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe - ok
20:06:41.0147 0x1094  [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{2237B2DC-4B71-4177-94C6-B0FC835CB5AE}.tmp
20:06:41.0147 0x1094  C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{2237B2DC-4B71-4177-94C6-B0FC835CB5AE}.tmp - ok
20:06:41.0156 0x1094  [ 48DD40677817CE1053C2315F5A87E0D3, 27E6D67E0C62543A5B0BB14814A17240481CEED227A4A58E3E3BEF122039024F ] C:\Program Files\Windows Defender\MSASCui.exe
20:06:41.0156 0x1094  C:\Program Files\Windows Defender\MSASCui.exe - ok
20:06:41.0165 0x1094  [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{2F3CDF82-DB99-4E32-A4EC-5DC82DE7F23A}.tmp
20:06:41.0166 0x1094  C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{2F3CDF82-DB99-4E32-A4EC-5DC82DE7F23A}.tmp - ok
20:06:41.0174 0x1094  [ E55DE59CD89138BD973602F9F202E84D, 716F147B37F994F13463D02F9AB1CD2A7682FCFACC765678B91A5D61480F9866 ] C:\Windows\System32\SyncCenter.dll
20:06:41.0174 0x1094  C:\Windows\System32\SyncCenter.dll - ok
20:06:41.0179 0x1094  [ 814B65E22070E087479A275AAE1931AC, 5406DBEC5A4083E2C9E061DA585E4CCD6C945BBBBC174882E9B6B12B7BCB2347 ] C:\Windows\System32\control.exe
20:06:41.0179 0x1094  C:\Windows\System32\control.exe - ok
20:06:41.0188 0x1094  [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{5B7A0CEF-9487-4E0E-9412-C1CDED53861D}.tmp
20:06:41.0188 0x1094  C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{5B7A0CEF-9487-4E0E-9412-C1CDED53861D}.tmp - ok
20:06:41.0197 0x1094  [ 569AC1376B12D4083FC66CC7A304F234, DD209F09573F10A77D710E30EF3D0461D2E8F4E5F18106B18EFB587C88393460 ] C:\Program Files\Microsoft Security Client\msseces.exe
20:06:41.0197 0x1094  C:\Program Files\Microsoft Security Client\msseces.exe - ok
20:06:41.0205 0x1094  [ 11D415DB881C617288D3CB81BB1FE51D, A39662615A7322EACBE22ADE7332287846DDD220D9A551B902D5078222D8FEAE ] C:\Windows\System32\wbem\NCProv.dll
20:06:41.0205 0x1094  C:\Windows\System32\wbem\NCProv.dll - ok
20:06:41.0214 0x1094  [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{D68F9E06-CEC8-46B9-B07B-69BCC5EF8CCC}.tmp
20:06:41.0214 0x1094  C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{D68F9E06-CEC8-46B9-B07B-69BCC5EF8CCC}.tmp - ok
20:06:41.0222 0x1094  [ 0058E2924F2B6483591FAA7C2A6595A7, 02B56386E7C384E9AE4576C4440038E367D3F636E7B7F00F2CF73E33F7BC1719 ] C:\Windows\System32\msiltcfg.dll
20:06:41.0222 0x1094  C:\Windows\System32\msiltcfg.dll - ok
20:06:41.0232 0x1094  [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{E4F3CFFD-8B83-4759-8AC4-43708B4570CD}.tmp
20:06:41.0232 0x1094  C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{E4F3CFFD-8B83-4759-8AC4-43708B4570CD}.tmp - ok
20:06:41.0244 0x1094  [ 06FDEA0167BAD4CDE26210F92F33FDBA, 700E491D8A0EF666A3D9753A5A4271484E91BB5C776211E44521811A79646541 ] C:\Windows\System32\wbem\wbemcons.dll
20:06:41.0244 0x1094  C:\Windows\System32\wbem\wbemcons.dll - ok
20:06:41.0251 0x1094  [ 0638E6106FC4E6CC0F93894B7B75DCB2, BA18C33F2BA270ADE73937A4F67537A547481DC125C66D780DF468C1DEDF1E4F ] C:\Windows\System32\msi.dll
20:06:41.0251 0x1094  C:\Windows\System32\msi.dll - ok
20:06:41.0261 0x1094  [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{C9C13C34-E01C-4087-A05E-1C454C8D0F18}.tmp
20:06:41.0261 0x1094  C:\Users\Mitch\AppData\Local\Temp\{6D9615AD-EBDD-4662-BE9E-AEAE7AFEA2E1}\{C9C13C34-E01C-4087-A05E-1C454C8D0F18}.tmp - ok
20:06:41.0269 0x1094  [ 1DEAF8D21FCCB72FFCF374E0FE6C1DB5, E3E81216BE8D5019C4717C5E038A23BE63E79EC6370880BEC76B86E9121F5B48 ] C:\Windows\System32\SearchProtocolHost.exe
20:06:41.0269 0x1094  C:\Windows\System32\SearchProtocolHost.exe - ok
20:06:41.0277 0x1094  [ 32BFF048169F9A57B9BBAF2DC90EAC1B, BD7913A2CDE1AAFD8F1594E742C5C6FEA8C7E3DC62804B0CCAEC507E8CE13608 ] C:\Windows\System32\stobject.dll
20:06:41.0278 0x1094  C:\Windows\System32\stobject.dll - ok
20:06:41.0286 0x1094  [ 93E888DA525F3DA1D8A94C174DDCC7C0, 03D5B3B5F019EF23AE0BAB7589ED470F68AD554D399ADA727EBEA18953E23ACC ] C:\Windows\System32\batmeter.dll
20:06:41.0286 0x1094  C:\Windows\System32\batmeter.dll - ok
20:06:41.0294 0x1094  [ 0CFCDE5D9D074D96B78D1F1CBF1AAB1D, 15A579FDE0288BC732DF0C092A8269159D4D7B8AAC13E78B1D444899EE1CE478 ] C:\Windows\SysWOW64\riched20.dll
20:06:41.0294 0x1094  C:\Windows\SysWOW64\riched20.dll - ok
20:06:41.0302 0x1094  [ 5C8C51B679B947F3DF948533C0926240, 4F9A986A589AD82F72C6EF7D3AC086D8B4F740EBCE181BA6E86C0C79BDC5EB7E ] C:\Windows\System32\SndVolSSO.dll
20:06:41.0302 0x1094  C:\Windows\System32\SndVolSSO.dll - ok
20:06:41.0311 0x1094  [ FF253B202C460492B9A35C457066CCC0, 1EA884F4DEBE561520A6B8CFCF660864B72A79352FD646EC63E1C842525718A9 ] C:\Windows\ehome\ehSSO.dll
20:06:41.0311 0x1094  C:\Windows\ehome\ehSSO.dll - ok
20:06:41.0321 0x1094  [ EBCEDFD064A4F210037AD21EC8AFC220, 3FBEC557F89D9406E4C0AB0475F0861D0DA504D86F3F2127CC7DEF319D7A8100 ] C:\Windows\System32\msshooks.dll
20:06:41.0321 0x1094  C:\Windows\System32\msshooks.dll - ok
20:06:41.0333 0x1094  [ D9F0D37D97862C15D1417903B8FCBF5C, FDB0E9536DDA01328E0256E04222DA6A1B12197B08A8B750E74922AEB4E41DCA ] C:\Windows\System32\mssvp.dll
20:06:41.0333 0x1094  C:\Windows\System32\mssvp.dll - ok
20:06:41.0341 0x1094  [ AA6FAA30D3D0D4424DBA3D74D1CA1E14, 757F0D5A8C6C28AA5D52AE34E294259D96CD9FB58DA569527A495DAB9CC52DB0 ] C:\Windows\System32\netshell.dll
20:06:41.0341 0x1094  C:\Windows\System32\netshell.dll - ok
20:06:41.0351 0x1094  [ D5EA86C4F2533F5515C614138A120F22, 5D0A7CF6FD456EC4AD73E331D2F3F500B4752BFDE826472DF5991E0C483ED273 ] C:\Windows\System32\mapi32.dll
20:06:41.0351 0x1094  C:\Windows\System32\mapi32.dll - ok
20:06:41.0365 0x1094  [ 93655E5D1E940E5A0F73F5A1719A0DA0, DF9A63D29D8334E34949B09EBBD357A5DE7D9F0230A40E2A3BA3B7110852D76E ] C:\Windows\System32\mssph.dll
20:06:41.0365 0x1094  C:\Windows\System32\mssph.dll - ok
20:06:41.0378 0x1094  [ 83F9B45455B8FBD518D1E87C24A55B23, CAB0E0D9CE6F57874BF554BC67FBDA18AC4A3AB52D5D806EDA81EFA88FB0129D ] C:\Windows\System32\msfeeds.dll
20:06:41.0378 0x1094  C:\Windows\System32\msfeeds.dll - ok
20:06:41.0387 0x1094  [ E953EB7C4E1A369EE98E3B25006891CA, 60A5D9DE4CADC1FA289CFFFE78924489AE83621EC28E5B6BFA13ED54E5463FEC ] C:\Program Files\Microsoft Office\Office12\ONFILTER.DLL
20:06:41.0387 0x1094  C:\Program Files\Microsoft Office\Office12\ONFILTER.DLL - ok
20:06:41.0396 0x1094  [ BBDE232916FC116C8CB46011683AD854, 66DCDBF7E10F15193DACB104C17370B93D9C21F05098766E38C040DB870108A6 ] C:\Windows\System32\SearchFilterHost.exe
20:06:41.0396 0x1094  C:\Windows\System32\SearchFilterHost.exe - ok
20:06:41.0405 0x1094  [ FE46A75556E66B8CC472FA75EFF0C347, 8AC30522F5E1F05BFEF15A16D6B7EE1846B8FC69F247B3E5C10590A31A1C032F ] C:\PROGRA~1\MICROS~2\Office12\MSOHEVI.DLL
20:06:41.0405 0x1094  C:\PROGRA~1\MICROS~2\Office12\MSOHEVI.DLL - ok
20:06:41.0417 0x1094  [ A2BD20AAC8D10C9D21EBAB5D5A8F73C6, E0492DCD12C810294335F3B4B78A42D9BC4A8AF48442D19BF790E93BC1F4BADB ] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
20:06:41.0417 0x1094  C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe - ok
20:06:41.0425 0x1094  [ DE95622B09554A70DB4F035D197330BF, F24F87402989B3F3A3328EAB6AD76A38161EC98AFD4EE8E7D5C7B7F0EEE8D3DD ] C:\Windows\System32\pnidui.dll
20:06:41.0425 0x1094  C:\Windows\System32\pnidui.dll - ok
20:06:41.0430 0x1094  [ 39872A309B2DB96738AF44402F7BD43C, 28313207C1D9C17CA447B58DCA2CF89A4F7120A03DEB253DD00301732FF7A7B6 ] C:\Windows\System32\rasdlg.dll
20:06:41.0430 0x1094  C:\Windows\System32\rasdlg.dll - ok
20:06:41.0441 0x1094  [ F77B49A32331FA80F11C86877A6700DB, 1303F3EBE9FC149074E2ADB26C48882C8CC127838ABF9A921C38EE5EE9CE4D15 ] C:\Windows\System32\mprapi.dll
20:06:41.0441 0x1094  C:\Windows\System32\mprapi.dll - ok
20:06:41.0455 0x1094  [ 9E3244FE8BA484E98461B8619C86F0D5, 610670629C67940705978189AE16C155B67F175073EE82EFC1032A74A5CBCD35 ] C:\Program Files\Windows Calendar\WinCal.exe
20:06:41.0455 0x1094  C:\Program Files\Windows Calendar\WinCal.exe - ok
20:06:41.0465 0x1094  [ FDAC777249FC4A5ED75FF3F563817FA1, BEC8A33AB3D3605CB712D57F9883497ED651C3C914731BD7320852769CA12D51 ] C:\Windows\System32\AltTab.dll
20:06:41.0465 0x1094  C:\Windows\System32\AltTab.dll - ok
20:06:41.0475 0x1094  [ 6B28D35E4C2C9D9ABA083EE4F9FD51CC, 85E9359335209F0B06F23DCB367A44EF4C52AF839989A6FD8BD9FE041F597C52 ] C:\Windows\System32\WPDShServiceObj.dll
20:06:41.0475 0x1094  C:\Windows\System32\WPDShServiceObj.dll - ok
20:06:41.0489 0x1094  [ A0A92B5F2926C52A3FF415E928BC9301, BAB574578F74AF0D0EA3ADD36E0051DDEA8C5916D30E74EE919D552313D34857 ] C:\Windows\System32\PortableDeviceTypes.dll
20:06:41.0489 0x1094  C:\Windows\System32\PortableDeviceTypes.dll - ok
20:06:41.0503 0x1094  [ E0DD774689998F43167C4799F9B69FC3, 1353CA6DF088D232F3FE1C93F08A6AC9BCEEBB1CF22A39A3EAB6AD30BB4E0588 ] C:\Users\Mitch\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
20:06:41.0503 0x1094  C:\Users\Mitch\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe - ok
20:06:41.0516 0x1094  [ 8C55E616AE2732760310190EAD161267, 884D757AF038909429CCF86F5D7B4B64AE93B5544917A1ADEF0C89260742ED04 ] C:\Windows\System32\regsvr32.exe
20:06:41.0516 0x1094  C:\Windows\System32\regsvr32.exe - ok
20:06:41.0524 0x1094  [ 62DA8E676784098D2BA3D2DC1C9E444D, 992E75D23D93F549EC7863E4799A560F658BF578CB813F5E555CD1AC093DC89D ] C:\Program Files\TOSHIBA\Power Saver\TtosFunc.dll
20:06:41.0524 0x1094  C:\Program Files\TOSHIBA\Power Saver\TtosFunc.dll - ok
20:06:41.0532 0x1094  [ 13E47C975E14031E7DC611191B70FD35, E44F4CE3848222084EA889C8D0F7CA1D4BAD86F54DF8F58A7CEBF0814035CA1A ] C:\Program Files\Movie Maker\DVDMaker.exe
20:06:41.0532 0x1094  C:\Program Files\Movie Maker\DVDMaker.exe - ok
20:06:41.0540 0x1094  [ B6D5917CF9FDA3B434AD908559EBD2B3, 2F45154B36A4ACEFFC59E6188715FB8ECBEE638F897E0BA8E797E6FD069535B8 ] C:\Windows\System32\srchadmin.dll
20:06:41.0540 0x1094  C:\Windows\System32\srchadmin.dll - ok
20:06:41.0549 0x1094  [ D7CEAEDD5F75D2C8A2E80887D7C114CE, 44D7D7BBF8643D4168A3B0369AB88C83A156943FB6295FAF8E131C55F080ED19 ] C:\Windows\System32\webcheck.dll
20:06:41.0549 0x1094  C:\Windows\System32\webcheck.dll - ok
20:06:41.0557 0x1094  [ F50B03EB7C150E44DF2843F2138D4F70, 9644E42FE83219D31E63D08EAC3DC0A2A2106DA81391ABEDFE69066B9895A516 ] C:\Windows\System32\mlang.dll
20:06:41.0557 0x1094  C:\Windows\System32\mlang.dll - ok
20:06:41.0565 0x1094  [ 70DD82E202BD8022452DC8D2B73231AA, C15338FA59489E1B38C0B5FCEEF8308100A1D765877254CFD5F30B2D150D2916 ] C:\Windows\System32\wscntfy.dll
20:06:41.0565 0x1094  C:\Windows\System32\wscntfy.dll - ok
20:06:41.0574 0x1094  [ 6E3FEFB74326A230237613F2B035C71F, 31E7EEAE4487662CC35E269E5FB3B36F2EA258AD02FFAC34B2600EF147139957 ] C:\Program Files (x86)\Toshiba\ConfigFree\NDSTray.exe
20:06:41.0574 0x1094  C:\Program Files (x86)\Toshiba\ConfigFree\NDSTray.exe - ok
20:06:41.0582 0x1094  [ BF2DD8B1253FB01CADB9C7C152984C89, 9CECDE12AA3668963AEEB226B064B586FD0D67909D2893E0479433A2DC7975CB ] C:\Windows\ehome\ehshell.exe
20:06:41.0582 0x1094  C:\Windows\ehome\ehshell.exe - ok
20:06:41.0590 0x1094  [ B4D787DB8D30793A4D4DF9FEED18F136, 2A956F7DCFE61E556F30BDA6D45592A05533541D6ED321C251C1C05F6CEA6DDC ] C:\Windows\System32\drivers\cdfs.sys
20:06:41.0590 0x1094  C:\Windows\System32\drivers\cdfs.sys - ok
20:06:41.0598 0x1094  [ DBC0B012A13C7738871D569005DEB5D1, 0A8EAC95732D1F966DC869B977B8D730F3271AB3D4A24BE628CBB5C4A83E63D4 ] C:\Windows\System32\bthprops.cpl
20:06:41.0598 0x1094  C:\Windows\System32\bthprops.cpl - ok
20:06:41.0606 0x1094  [ 8F50FB284B7C97C241F6F53E4C88453B, C40DD2358DDCC10CD85EDC4700C596742BC016139CA3B7FB07E2D2B91119B660 ] C:\Program Files\Windows Collaboration\WinCollab.exe
20:06:41.0606 0x1094  C:\Program Files\Windows Collaboration\WinCollab.exe - ok
20:06:41.0615 0x1094  [ 40A79FD8516B0331C703840561ADC723, 7A7A21558B6E12ABF8AA8904C812827718280676B8533BEDBDD96B93B0411BC7 ] C:\Program Files (x86)\Toshiba\ConfigFree\cfFncEnabler.exe
20:06:41.0615 0x1094  C:\Program Files (x86)\Toshiba\ConfigFree\cfFncEnabler.exe - ok
20:06:41.0624 0x1094  [ ED10D55B28FCD8A6DEA09AE3FE20EC3A, B23D98E52367EADB455CACCB4F0776A4F9F73485FA0E7DC0BE90CA54482BA697 ] C:\Windows\System32\imapi2.dll
20:06:41.0624 0x1094  C:\Windows\System32\imapi2.dll - ok
20:06:41.0632 0x1094  [ 5DD36EC36334E0ED4275AA3A55F5D22C, AB532C41032B72C04075B5BC7999763AF1125F543D4A5E16AC5C543B3B18201C ] C:\Program Files\Movie Maker\MOVIEMK.exe
20:06:41.0632 0x1094  C:\Program Files\Movie Maker\MOVIEMK.exe - ok
20:06:41.0641 0x1094  [ AE82D962BD3D3EF45EF166DC97BA2FAD, ED4D5C71B63FC7472BB4609F04157A2E71D76A0D88E931898EAB664BEF36B632 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\772c1aff45c1103a0ef19daa3e8fef4b\System.Drawing.ni.dll
20:06:41.0641 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\772c1aff45c1103a0ef19daa3e8fef4b\System.Drawing.ni.dll - ok
20:06:41.0650 0x1094  [ 7FB82497FBBF96ACC9E143E7F183BFA7, 18FEA868351AE6CA67E9FF650437F9412CC0DC1AC239C9F921392FD53735D4DB ] C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe
20:06:41.0650 0x1094  C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe - ok
20:06:41.0658 0x1094  [ FF0729002E081668620A681182D63FE6, F98D5B48CABB8F112BFEA4F7F7652E246B811F78B7AEE4014F8C4354AC5E2203 ] C:\Windows\System32\wuapp.exe
20:06:41.0658 0x1094  C:\Windows\System32\wuapp.exe - ok
20:06:41.0666 0x1094  [ 53835C26153DF03322B6378ADDF070B4, A63B5844D567749E8FFF06BFDE2E6B59F60BD1CE79141221F3E3205C2926C89B ] C:\Program Files (x86)\Toshiba\ConfigFree\CFUPNP.dll
20:06:41.0666 0x1094  C:\Program Files (x86)\Toshiba\ConfigFree\CFUPNP.dll - ok
20:06:41.0675 0x1094  [ E6F96E5D4F389DE561F95BA4DDCD0E9C, BC6E56D03B04ADBA5385A4C559611BD3CC89D40D79D9206E37138D2A6ED5F59F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e49a96627b593554a0898c49a4dcafb7\System.Windows.Forms.ni.dll
20:06:41.0675 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e49a96627b593554a0898c49a4dcafb7\System.Windows.Forms.ni.dll - ok
20:06:41.0681 0x1094  [ 7DF1E7B35C39D656850CFE237503F3F7, 1208584D71A968A40B4777F4923478676711FEEF2513042A2E5D85AF86492C0C ] C:\Program Files (x86)\Toshiba\ConfigFree\CFP2API.dll
20:06:41.0681 0x1094  C:\Program Files (x86)\Toshiba\ConfigFree\CFP2API.dll - ok
20:06:41.0690 0x1094  [ 7A3E47A6F167E6B9835A6DC2CA20C9D8, D86406C9D33AC9F00F8A5E856479F2EF06489CCAFB07A8C073F98BD274F23CD6 ] C:\Program Files (x86)\Toshiba\ConfigFree\OpenProp.dll
20:06:41.0690 0x1094  C:\Program Files (x86)\Toshiba\ConfigFree\OpenProp.dll - ok
20:06:41.0699 0x1094  [ AB530FDD34C67B497A20171D1234CFE9, B9948F733E892B1742804C715EAA72F248944F9EE1EEE35DF8A63725BC847C1F ] C:\Windows\SysWOW64\riched32.dll
20:06:41.0699 0x1094  C:\Windows\SysWOW64\riched32.dll - ok
20:06:41.0707 0x1094  [ 30F0DC266B46118E9FBCF5B2A30EB1DB, 72C59BBD1590EAD91D92C07B3434BE308639CE773E8A2E72751E5396B4B10BA5 ] C:\Windows\SysWOW64\wbem\wbemprox.dll
20:06:41.0707 0x1094  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
20:06:41.0716 0x1094  [ 74B8C2EA72D43727142D12397D5A49F9, 37E8858211D7BF9DE90CBD22863B18A939C43BA64CAD06229E994A417BD46B0D ] C:\Windows\SysWOW64\wbemcomn.dll
20:06:41.0716 0x1094  C:\Windows\SysWOW64\wbemcomn.dll - ok
20:06:41.0724 0x1094  [ DB0F37DBA4C245C61E5936DDBDE62438, 2DB2979BAF792DA74584E380055F233B9CEF51BCBF992CA84A79AD81A23C1663 ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
20:06:41.0724 0x1094  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
20:06:41.0732 0x1094  [ BC5A34B6A14C93BF04E3F4E8EA57090A, 55F71740FBA3A079B81A045C81088C39176D44358ED28F568C198F338400E017 ] C:\Windows\SysWOW64\wbem\fastprox.dll
20:06:41.0732 0x1094  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
20:06:41.0742 0x1094  [ E97B6931B5629D7E9F6EE29A68FD6123, B629CE14E3C762C92A94E600819EBB626C244006EFFD4B926E006911F9601D8D ] C:\Windows\System32\wbem\WmiPrvSE.exe
20:06:41.0742 0x1094  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
20:06:41.0750 0x1094  [ 6411DE8554529DD84ABCEC58907A26AD, CA64272065CCE3865BB1B00A0D5F7EC2EB73CC2F786079F1C3BD3269710D4830 ] C:\Windows\System32\SynCOM.dll
20:06:41.0750 0x1094  C:\Windows\System32\SynCOM.dll - ok
20:06:41.0758 0x1094  [ 376FAD0BD6E157205C8144D23A66493D, F2F3D6780AAE65B788D12AC04ECB2355D45ED249F30CBF813EB078D9EF2A9249 ] C:\Windows\System32\wbem\cimwin32.dll
20:06:41.0758 0x1094  C:\Windows\System32\wbem\cimwin32.dll - ok
20:06:41.0767 0x1094  [ BFEFE6082328C37E7A441143E5ADCA31, C76CCC566B989A998A362E50B72A6EB6FAEE2C6E8B931C7E3230DC960A069D32 ] C:\Windows\System32\framedynos.dll
20:06:41.0767 0x1094  C:\Windows\System32\framedynos.dll - ok
20:06:41.0774 0x1094  [ 98C42F36A13C25E099F1E081EB4EC59D, E25CCC5088763896A740E812554E20B60A1DB47B315C1CB7E66DE151E27FA5A4 ] C:\Windows\System32\wmi.dll
20:06:41.0775 0x1094  C:\Windows\System32\wmi.dll - ok
20:06:41.0783 0x1094  [ D0D44370770D491E6BA472C855883422, 53DF6D40663F5FDF0C20D5561C64CC6C25876593C74F34B6275FA215BFA7CE44 ] C:\Windows\SysWOW64\msxml3.dll
20:06:41.0783 0x1094  C:\Windows\SysWOW64\msxml3.dll - ok
20:06:41.0791 0x1094  [ 9A815510679C7ECD04ED194A9C9C25E5, 70948AC76A09C1565D062497F0C1696DBD10980EB01C34650A8BDC6EAB9F95A4 ] C:\Program Files (x86)\Toshiba\ConfigFree\CFSwMgr.exe
20:06:41.0791 0x1094  C:\Program Files (x86)\Toshiba\ConfigFree\CFSwMgr.exe - ok
20:06:41.0799 0x1094  [ 95F1EB99B81CFD6F581C85F0A0AA9B2B, 65EE7016E6235880C4443119BF32CF12D4A9A9CA3810B974B575AD31D380A7FB ] C:\Windows\SysWOW64\FirewallAPI.dll
20:06:41.0799 0x1094  C:\Windows\SysWOW64\FirewallAPI.dll - ok
20:06:41.0808 0x1094  [ D9BCE2CA8488531BBA89B5ABC52E2AE9, BD65CE8F38638B1BDBAD54A804E090470FF9A7355181EF4F8C3F810A774A6E90 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\a4378e0fbc6805b0105c98860061efa7\System.Management.ni.dll
20:06:41.0808 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\a4378e0fbc6805b0105c98860061efa7\System.Management.ni.dll - ok
20:06:41.0817 0x1094  [ 9B271EAD0AE5907EABC3A7BE072C323E, 3F3E36A78E694B81ECF6C5A8CA37D5832AFB6E84627A5D8952D26FCC2B9216B4 ] C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\PCMAgent.exe
20:06:41.0817 0x1094  C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\PCMAgent.exe - ok
20:06:41.0825 0x1094  [ C385D4D4EC16E637AA4D2D18A06E80C9, 4578F190BB35FD5E473A96EFA31FCA489D4EAAA607455AB6675BAA7130791D6B ] C:\Windows\SysWOW64\TosBtAPI.dll
20:06:41.0825 0x1094  C:\Windows\SysWOW64\TosBtAPI.dll - ok
20:06:41.0835 0x1094  [ 2CDEF39641BC63A337B6EA13E61B32C6, 6495B5D6F06BE3DE6FD150854CA7556BDBBF8CF5FDCA4DF0E4267FFDDD56DB98 ] C:\Windows\SysWOW64\TosBdAPI.dll
20:06:41.0835 0x1094  C:\Windows\SysWOW64\TosBdAPI.dll - ok
20:06:41.0842 0x1094  [ 224EF073B449059DF648FC514B5A0074, C72E254F74AD43E502965E8D0F2B45EEBAB9C27A1E05741A7B48EC9B59100D08 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
20:06:41.0842 0x1094  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
20:06:41.0851 0x1094  [ 9BBD858EEC0AA9894B8063218CF1D19D, 1BA81D1CB668D151A42A836FFF9D7DA1B1BCF8DF21A52E983AAEEC015ECFEB87 ] C:\Windows\System32\upnp.dll
20:06:41.0851 0x1094  C:\Windows\System32\upnp.dll - ok
20:06:41.0859 0x1094  [ E02903F81A692683E4254E9D7C6A5D2A, F9CA6B24E5F710D7AB573A1A348EAD2825BFBDF99B8A99E867A00717FCD6AA1C ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\b4b477600d28a9e2ee66eb0ec4bfbaa7\System.Configuration.ni.dll
20:06:41.0859 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\b4b477600d28a9e2ee66eb0ec4bfbaa7\System.Configuration.ni.dll - ok
20:06:41.0868 0x1094  [ FA2A3AFADC4FB47DBC234A4E57F92CDB, D8394B8BD8919D3CACA73ECB23B156B460D18E463FCF7436E4856208F17434AF ] C:\Windows\SysWOW64\ddraw.dll
20:06:41.0868 0x1094  C:\Windows\SysWOW64\ddraw.dll - ok
20:06:41.0876 0x1094  [ EF764E33878B3A4A9E5A2FB5D0D031D0, 02D5A718AE02F07B304377B4A1FF7BC4456489F020CFE797B6E98A0344EA63DE ] C:\Windows\SysWOW64\dciman32.dll
20:06:41.0876 0x1094  C:\Windows\SysWOW64\dciman32.dll - ok
20:06:41.0885 0x1094  [ 8AAEEE8E59A70F37579993D118A34EE0, 9DC8618557B0D852EEA1163CF312EB68F8DF42486E4E76A74926CF99DB06AC92 ] C:\Windows\SysWOW64\d3d9.dll
20:06:41.0885 0x1094  C:\Windows\SysWOW64\d3d9.dll - ok
20:06:41.0893 0x1094  [ 9B96F6952186336CC6E3D4E08BE2E0AF, B7DFB14DB60D84062B7E2A2293A4F3F5EF986108EF3C9C1E1CDC284F61981731 ] C:\Windows\SysWOW64\dwmapi.dll
20:06:41.0893 0x1094  C:\Windows\SysWOW64\dwmapi.dll - ok
20:06:41.0901 0x1094  [ CD6DA5770CAE9D5E6E86722E17B442E0, 9F0EE70460FFA43E869C3821F0AF6646D97E0F463A87B50B167ECAD44DF2E523 ] C:\Windows\SysWOW64\d3d8thk.dll
20:06:41.0901 0x1094  C:\Windows\SysWOW64\d3d8thk.dll - ok
20:06:41.0909 0x1094  [ F35A584E947A5B401FEB0FE01DB4A0D7, 4DA5EFDC46D126B45DAEEE8BC69C0BA2AA243589046B7DFD12A7E21B9BEE6A32 ] C:\Windows\SysWOW64\MFC71.dll
20:06:41.0909 0x1094  C:\Windows\SysWOW64\MFC71.dll - ok
20:06:41.0918 0x1094  [ 2CC3858FD130C5A9A0A3AB0FF2E56EC5, 0D3577A40A48FBACE220260259E418A6F06608A43C1A7932C6614AD59187C10E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\a45f351f3273770c967e643c75d79bd7\System.Xml.ni.dll
20:06:41.0918 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\a45f351f3273770c967e643c75d79bd7\System.Xml.ni.dll - ok
20:06:41.0927 0x1094  [ 86F1895AE8C5E8B17D99ECE768A70732, 8094AF5EE310714CAEBCCAEEE7769FFB08048503BA478B879EDFEF5F1A24FEFE ] C:\Windows\SysWOW64\msvcr71.dll
20:06:41.0927 0x1094  C:\Windows\SysWOW64\msvcr71.dll - ok
20:06:41.0933 0x1094  [ 561FA2ABB31DFA8FAB762145F81667C2, DF96156F6A548FD6FE5672918DE5AE4509D3C810A57BFFD2A91DE45A3ED5B23B ] C:\Windows\SysWOW64\msvcp71.dll
20:06:41.0933 0x1094  C:\Windows\SysWOW64\msvcp71.dll - ok
20:06:41.0941 0x1094  [ 6C5E3F6EF8E1BFCC53FD35668D1F4829, C32243FB8E4CC6731B91BF54F8D44BD1A6B5DF9B61B2D27F6DEE2B7052CE2C48 ] C:\Windows\SysWOW64\atiumdag.dll
20:06:41.0941 0x1094  C:\Windows\SysWOW64\atiumdag.dll - ok
20:06:41.0950 0x1094  [ 3606CE1AC3D6A9A9CB7DB35D7F5C54EC, 220911A88EF333BAC01062CC9E83566DBC12B1564D5B58C3A8A039DFDFDB7C6C ] C:\Windows\SysWOW64\shfolder.dll
20:06:41.0950 0x1094  C:\Windows\SysWOW64\shfolder.dll - ok
20:06:41.0958 0x1094  [ 166D74046CE5D2B0696A335B8A8633E1, 271EE83A34E158A34960E081E7458D76D9107F41DB0F4126FCDB04C0206DB37C ] C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe
20:06:41.0958 0x1094  C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe - ok
20:06:41.0967 0x1094  [ 3F4ECB1DE53786E83EE3713D6FBE1B01, 5986C5D5CDCD089466B5BBF20FDD02F62C9204C426E86EDB715F876E711E36AB ] C:\Windows\SysWOW64\atiumdva.dll
20:06:41.0967 0x1094  C:\Windows\SysWOW64\atiumdva.dll - ok
20:06:41.0976 0x1094  [ 8B9145D229D4E89D15ACB820D4A3A90F, F3831D9AE752B6AFBD3380E0BC849E4B051D6E06A88C1F61293A6DE4F66794E1 ] C:\Program Files (x86)\Adobe\Reader 8.0\Reader\reader_sl.exe
20:06:41.0976 0x1094  C:\Program Files (x86)\Adobe\Reader 8.0\Reader\reader_sl.exe - ok
20:06:41.0985 0x1094  [ E1E71D80D078C576801B6FE2A29FCF85, 7A8911FF626E5EEC01D7C1922F8AD6901EFC75952ADB3FAF606506C7DB4BC54A ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
20:06:41.0985 0x1094  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
20:06:41.0995 0x1094  [ B1DB5EDB658F3FF4F13AC069CE622893, D4AC66DD9CF9EE4770AA34936EE28844D2BE39968727E8A9CAAB9E9A09387CC6 ] C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
20:06:41.0995 0x1094  C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe - ok
20:06:42.0004 0x1094  [ F7DD2D785280DB73DC9060F80361BEFB, 7AF1114FFA46290DC77CC5D562034287A0E617BD4747F58E65CDF70244C402CB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
20:06:42.0004 0x1094  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
20:06:42.0013 0x1094  [ AF43C4F7F3C8BC95DAD95024F96CDC4A, 6348F6D8F301C5F7290B963D6923E389414ADFBCF6AED562A32245BCADC05580 ] C:\Program Files (x86)\QuickTime\QTTask.exe
20:06:42.0013 0x1094  C:\Program Files (x86)\QuickTime\QTTask.exe - ok
20:06:42.0021 0x1094  [ 2EBE05FD8ECBA5F230FC26E534E91A11, B8E85D51BD4E6C0D4D447DFA327EAA0AE4A33F04F42063A58122153933C1770E ] C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
20:06:42.0022 0x1094  C:\Program Files (x86)\Citrix\ICA Client\concentr.exe - ok
20:06:42.0031 0x1094  [ 17D9622BFE68386E8C647C4C7F8FEA3E, 50F943F2E47512DCE61A9EBB188361CB71CACC74D9397FA1367AB7112F2C7A09 ] C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
20:06:42.0031 0x1094  C:\Program Files (x86)\Citrix\ICA Client\redirector.exe - ok
20:06:42.0039 0x1094  [ 615DC3A0F69A101BCBE63DF30960A2B4, 28529B98658DC5210C5BEFC71D4F7B3D71575991D5568351F6DF3E6AA2662DAE ] C:\Windows\SysWOW64\atipdlxx.dll
20:06:42.0039 0x1094  C:\Windows\SysWOW64\atipdlxx.dll - ok
20:06:42.0048 0x1094  [ 3A2EEE8444A8E5C1A454C57B2198F5FC, 6B21A65BBCF9E86193BD8ABC3FAE897B4EB55758E52BE4B9F24BE1C98C73A333 ] C:\Windows\SysWOW64\ntlanman.dll
20:06:42.0048 0x1094  C:\Windows\SysWOW64\ntlanman.dll - ok
20:06:42.0056 0x1094  [ 582EFE56FC0858E58A6CEBA2A64B02C7, 569F05DC50651165FD734C19767C10E7C9DFF03157B8222C59544A35A38E1C75 ] C:\Windows\SysWOW64\drprov.dll
20:06:42.0056 0x1094  C:\Windows\SysWOW64\drprov.dll - ok
20:06:42.0065 0x1094  [ CFBD2E1FE18B50748A76703A2DC6D4E3, 5D553B3CBCC404555DEE7F58102B62A02A968EEDB99E1029624327F0A914D08E ] C:\Windows\SysWOW64\davclnt.dll
20:06:42.0065 0x1094  C:\Windows\SysWOW64\davclnt.dll - ok
20:06:42.0073 0x1094  [ B1CDA377B2C8DCD8FA3DB8501647031D, 46E36E318F73E957713D6215DC4F66AAB6D9056DD558634C2007CFEF82E05231 ] C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\Common\CLRCEngine3.dll
20:06:42.0073 0x1094  C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\Common\CLRCEngine3.dll - ok
20:06:42.0082 0x1094  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC, 372AF797353F9335915CD06D4076BAB8410775DCAF2DAC0593197D7C41BBFFB2 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
20:06:42.0082 0x1094  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
20:06:42.0091 0x1094  [ E681281D9BFC9D45D3B72532717E5880, 8A610E0EEF81BE797EE58E94C3EBD7C05ACB97B2A9F02BEC6A5D678D1013449B ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
20:06:42.0091 0x1094  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
20:06:42.0100 0x1094  [ DECD05BB90A3AB3F3A31B86971DCAEFA, C686D195E527001EDEB8BD7E3F1CCDEFDA57EAE2DED653D5CA5829F256C6F8C7 ] C:\Program Files (x86)\Citrix\ICA Client\ctxmui.dll
20:06:42.0100 0x1094  C:\Program Files (x86)\Citrix\ICA Client\ctxmui.dll - ok
20:06:42.0108 0x1094  [ 92DA9EDE07390B4352B29DD82079E398, 8140FF0CD2BB08CA92C0303B2439F4FCEFD59C7F4A772F1277B29FE0B77F5A67 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
20:06:42.0108 0x1094  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
20:06:42.0118 0x1094  [ 8B22CF51B907E3A221267CF1E502993A, CC5F9F8DC4F1BCC53EDEA3602D5E1635D627007C6EEA51491A67C84E66D7374A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
20:06:42.0118 0x1094  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
20:06:42.0132 0x1094  [ 6631DE2FA7ADE0B2C5451FDEF79D4323, 98A2D30363620A4CAC8AEBB31889F08B08C0EC07390E0D0D766CE2CD36D6BFC0 ] C:\Program Files (x86)\Citrix\ICA Client\CCMSDK.dll
20:06:42.0132 0x1094  C:\Program Files (x86)\Citrix\ICA Client\CCMSDK.dll - ok
20:06:42.0141 0x1094  [ 99AB67AA6F392E4F7BF443F2CD63CAF5, 63C0A551EE366ACCCFF4A17EB5D5D5DD05925068F18E5C2A43272DDB8B79C136 ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\ctxmuiUI.dll
20:06:42.0141 0x1094  C:\Program Files (x86)\Citrix\ICA Client\resource\en\ctxmuiUI.dll - ok
20:06:42.0151 0x1094  [ 054B87C872292A960B9B8A834B34DFA7, 081792BEF2BBB71B5A4F6EF23711B8E375ED326010CF1F537BBFFEB979970DED ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
20:06:42.0151 0x1094  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
20:06:42.0159 0x1094  [ 0A8A607ADDD40D71B79574E71C1A5E27, A752C27CF7C341E0D5744DD5A03DF4060D4F16F8356CF7EEE9B07748EB32DA7A ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\concenUI.dll
20:06:42.0159 0x1094  C:\Program Files (x86)\Citrix\ICA Client\resource\en\concenUI.dll - ok
20:06:42.0168 0x1094  [ BC687BE08AF06AB5FE481BFAFFC55C6D, DE08D9968542A797393E3FB8EBCCB8ED7F063A4CD05464B494F61064F33F6859 ] C:\Windows\System32\dot3api.dll
20:06:42.0168 0x1094  C:\Windows\System32\dot3api.dll - ok
20:06:42.0181 0x1094  [ D86A2D30934F2192E477D4159632AD63, 87C5796E7ABBB843B502508436EDB2D76D2577B9BACA4776F724B46109127E1A ] C:\Windows\System32\wlanhlp.dll
20:06:42.0181 0x1094  C:\Windows\System32\wlanhlp.dll - ok
20:06:42.0190 0x1094  [ 8755DF630F5477EE1A3CCB00D0A3D0CD, D618AF5736146D18664C37A99E5607532F042072CA1455EDBF9970AD1DD4B063 ] C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMediaLibrary.dll
20:06:42.0190 0x1094  C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMediaLibrary.dll - ok
20:06:42.0205 0x1094  [ E7E49ED14A52D839DAD6A7EF0251C16F, FEA57C6134A6EFE84ED3F0479E6F49F49E635914F7795D64A03B4D62AC6C76AB ] C:\Program Files\Camera Assistant Software for Toshiba\hookdll.dll
20:06:42.0205 0x1094  C:\Program Files\Camera Assistant Software for Toshiba\hookdll.dll - ok
20:06:42.0213 0x1094  [ 2424231BBD703A677D115C29983B4293, B33022D9BEE7B8B472A73C242578089D02CD683EBDD41CB519AEDC6C18E5D485 ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
20:06:42.0213 0x1094  C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
20:06:42.0226 0x1094  [ 638C7596B493F5F77DB9EF6BAD8FE46C, 98077E0E65D89D5DEBC02F12BA00D00B355D4EEA5FEC36E69D39312019E3DD1E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
20:06:42.0226 0x1094  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
20:06:42.0235 0x1094  [ E582816A4855914DEFFC212E12B3B744, B59C692FE8D19A2D9615D12C6026854C3467B25B3630183D766A32A9584C3115 ] C:\Windows\SysWOW64\wsock32.dll
20:06:42.0235 0x1094  C:\Windows\SysWOW64\wsock32.dll - ok
20:06:42.0246 0x1094  [ 794950DB77AA590C2964ECA0A5874A09, DB686B0F7EC16ED6C4827FB5E85B9C87E6B806A18A95E37633DE22D4972F8F25 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
20:06:42.0246 0x1094  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
20:06:42.0255 0x1094  [ B6A7E7F43234BFA6A8E6CC4110CB9448, A06503F1C1A8DF36EA20DD9A0DE34F96BE896E07E283EA5AFD0DD7FB1085BA53 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
20:06:42.0255 0x1094  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
20:06:42.0266 0x1094  [ 250BF888DDBE88D61EB19A9D4957C794, E0B07BCFB007B2192D1092612506FE48E5D0A18345ABFC7D188D4F11889C843E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
20:06:42.0267 0x1094  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
20:06:42.0276 0x1094  [ 28B9DBA6201AEDDC65C15FA48939804A, CE81EBAE1AFB060AADF52F5885ABC8582EBE3A5E4985E7FB6F3523CE18628D03 ] C:\Windows\SysWOW64\wmp.dll
20:06:42.0276 0x1094  C:\Windows\SysWOW64\wmp.dll - ok
20:06:42.0287 0x1094  [ 9DD626CC4FB7CAAC19B2F4C33CD6A2A3, 356A67C149434864734BC369376C1B9282FAA812CA69B56C0675775297079363 ] C:\Windows\System32\fdProxy.dll
20:06:42.0287 0x1094  C:\Windows\System32\fdProxy.dll - ok
20:06:42.0301 0x1094  [ 5A963C340DE1A01BA6E24945CE05D16A, 0CC79B72D03621D6FA4E7A8F3B10125A531C1D19098189671FBE3687E3E70E33 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
20:06:42.0301 0x1094  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
20:06:42.0313 0x1094  [ F4BC62990E7E5C29799A895B80FC3177, 57772AB986BA00B3C2730184D94A76E932CA94000119D0E63407F3DF9867238A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
20:06:42.0313 0x1094  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
20:06:42.0325 0x1094  [ 31519A9B25D4A8998EEC9C81E69269D9, 84958ACA09DBE8CF0053F0E995659889D84032F980F8EDDA08DA35DB2A881F6D ] C:\Windows\System32\fdWSD.dll
20:06:42.0325 0x1094  C:\Windows\System32\fdWSD.dll - ok
20:06:42.0339 0x1094  [ 149D74E1128A86DC9CFB2851FBEA11EB, 95E2FF3379DEE729089CF85140C4D4C202B7FEFE239024D48DFFD5CB1E7415BC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
20:06:42.0339 0x1094  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
20:06:42.0349 0x1094  [ 697D6CAF74F39C7F0017088C6F6B5C33, AD723F45631E4E31D8CC7A9A6766C017A6CDB7385ECAEABE956764C6B57CA3A3 ] C:\Program Files\Windows Media Player\wmpnssci.dll
20:06:42.0349 0x1094  C:\Program Files\Windows Media Player\wmpnssci.dll - ok
20:06:42.0362 0x1094  [ DDCDE414B6DB14707DBD504EB23EF13E, A7BFBB5475609869E47E583F9A45707D1270505CF3155BF502515E8F11CB3A2A ] C:\Windows\System32\fdSSDP.dll
20:06:42.0362 0x1094  C:\Windows\System32\fdSSDP.dll - ok
20:06:42.0373 0x1094  [ C9244BCAC83B259B920BBEE18A97BFE1, 9EA58407433F86BAAC3B4A6C334FB3BC59032FF4EB50EFA7CD639AA56D96E908 ] C:\Windows\SysWOW64\avrt.dll
20:06:42.0373 0x1094  C:\Windows\SysWOW64\avrt.dll - ok
20:06:42.0381 0x1094  [ 41CC69FFE916A5B65DDFB1C5CEBEB30D, BCCFD2F95F8102E39545C173B4A28E97E852BEFD86EB1249835B2C8D75E48A66 ] C:\Program Files (x86)\Toshiba\ConfigFree\cfmain.exe
20:06:42.0381 0x1094  C:\Program Files (x86)\Toshiba\ConfigFree\cfmain.exe - ok
20:06:42.0394 0x1094  [ EACACA0F2FF4CC54A909E3C5721FCDE8, DC1D8AC5E8C50E9FBFA1092E7D3D1D3626C77B6826A9A9190534C49E4CA7A35A ] C:\Windows\SysWOW64\msvfw32.dll
20:06:42.0395 0x1094  C:\Windows\SysWOW64\msvfw32.dll - ok
20:06:42.0405 0x1094  [ 9441A231C0AA0712F7CF3B10D9CFCF76, A1136DBCD62DCDEEA012CC97E7B6EFAE712267B94B8EA9B417E23CEC34FBDBA7 ] C:\Windows\SysWOW64\wmploc.DLL
20:06:42.0405 0x1094  C:\Windows\SysWOW64\wmploc.DLL - ok
20:06:42.0414 0x1094  [ 4AAFC7461633848AA87A363B2CBEC522, F2A452B5B71293011EED8CD5ABFA8D0B0761A92D4579CF9D98B1D2DC06D16791 ] C:\Windows\SysWOW64\winsta.dll
20:06:42.0414 0x1094  C:\Windows\SysWOW64\winsta.dll - ok
20:06:42.0424 0x1094  [ 0A7DC8E9EE81EE2B8DAA1C39D749D4D7, 92FCD50CF445DAB31E1C7136FED4FA17FD01346CC6BBDACABC57F086280026F4 ] C:\Users\Mitch\AppData\Local\Citrix\Receiver\WindowsAppRHelper_concentr.exe.dll
20:06:42.0424 0x1094  C:\Users\Mitch\AppData\Local\Citrix\Receiver\WindowsAppRHelper_concentr.exe.dll - ok
20:06:42.0433 0x1094  [ 15B9CD1B1FEE2619BC9AA569FDA5FA2B, 0868DA9DE0939D22A954C3310453C1528BAD9AB642549696B0FAE7DEFBF13197 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\c87950532dcf6d676981e8021ebdc9bc\System.Runtime.Remoting.ni.dll
20:06:42.0433 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\c87950532dcf6d676981e8021ebdc9bc\System.Runtime.Remoting.ni.dll - ok
20:06:42.0443 0x1094  [ D6B5C9DC1DF4A8140BD2FC4BB26A5031, D4D728D5D589FC2C7E7AD85C24E7C410EA08519C13656A85F3F6D178286DBB18 ] C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvcPS.dll
20:06:42.0443 0x1094  C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvcPS.dll - ok
20:06:42.0447 0x1094  [ 2620C17442BAA264DBE18953FFD10889, CA9D305D37C4185D66F8F342110D5EB3876BB4E31CBA19172C2A5DA0E5B69D01 ] C:\Windows\System32\wmpmde.dll
20:06:42.0447 0x1094  C:\Windows\System32\wmpmde.dll - ok
20:06:42.0456 0x1094  [ 37CF2461CB5E40C4CFAB82C8FC79A2BC, C5CFDAC82B1B9AEAABF94DB04324DBA56FA2DB23CE780504D811D3F90F254231 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
20:06:42.0456 0x1094  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
20:06:42.0467 0x1094  [ C56EBA7C1D396FCAF3C8D6867EF1C10E, 8A8FA5E1164DD6E9FAF6107BE4AEEB6C3B0DDB638104EFCEE06C24597C203BAE ] C:\Windows\System32\mf.dll
20:06:42.0467 0x1094  C:\Windows\System32\mf.dll - ok
20:06:42.0480 0x1094  [ AF96CCADA9B7ADB6488DDB6A60374821, 009DFE85DB8A5A6D2E6617555B8ED470E866F27ECC39BEE3C245A29250B2221A ] C:\Windows\System32\evr.dll
20:06:42.0480 0x1094  C:\Windows\System32\evr.dll - ok
20:06:42.0490 0x1094  [ 191B6A8D70404267691F46E23B45ABC2, 28A347D77A6E1AAD349613F3ED0071D61DC49ED34B44AD10A6AF136CD8AE45C7 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
20:06:42.0490 0x1094  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
20:06:42.0498 0x1094  [ A949AA49376F8CB91D19EA8A7ADC94D4, 6D841BACE1B8EE47BBE316A6437F508636AC02EA90B42A56BDEF93F0F63FBCD9 ] C:\Windows\System32\wmdrmsdk.dll
20:06:42.0498 0x1094  C:\Windows\System32\wmdrmsdk.dll - ok
20:06:42.0509 0x1094  [ E33A5DEC4567EFA268DD268BAA4E3FC0, 3A8DB1FB273B20E860F0EBFBD380BEF1A70B965FF208CC1E59241BCBFB3AB46A ] C:\Program Files (x86)\Citrix\Receiver\Receiver.exe
20:06:42.0509 0x1094  C:\Program Files (x86)\Citrix\Receiver\Receiver.exe - ok
20:06:42.0518 0x1094  [ E75963624A3F55C90AC8A7C2E65072FF, AF84561F7A15215DBB573038AF5EE9EAF0760217D7C844917C4172A6D4D6F960 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
20:06:42.0518 0x1094  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
20:06:42.0526 0x1094  [ F041AB49DE23CC8BDB404EE59CD1935D, E3302A7F66B87BD01DBD692760616E0C7BAEF7561B64EB1D971BFFD8470E703F ] C:\Windows\System32\dxva2.dll
20:06:42.0526 0x1094  C:\Windows\System32\dxva2.dll - ok
20:06:42.0534 0x1094  [ DE489A291F364B1473D6858560107113, 58B71D816D7BEEF23998E9FAB4AB57C5B9DE1162DB025B3DB523631E79202F79 ] C:\Windows\System32\wmp.dll
20:06:42.0534 0x1094  C:\Windows\System32\wmp.dll - ok
20:06:42.0543 0x1094  [ FC33CBBB9CADCEC307DA010FE763D04C, 72414A0637D5A3E766CFC3B0B3E8865C1D939B81E4292D5E5D4E17CC7E0B1EE2 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
20:06:42.0543 0x1094  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
20:06:42.0555 0x1094  [ 25CA1677AAA3CDC99CD4FCF940886F3C, 2EA64A924DECC765BE8A3A3B65F2E604B6583C7511AE2231F4EB0863873FECBD ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
20:06:42.0555 0x1094  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
20:06:42.0570 0x1094  [ 8E29B921BC400F51276F781C4CFB87F6, BAEA7F3F0B412DE9F0F3A7E27DF451796728DE55476831C2AC8B5B1993AD5934 ] C:\Windows\System32\oobefldr.dll
20:06:42.0570 0x1094  C:\Windows\System32\oobefldr.dll - ok
20:06:42.0584 0x1094  [ A98C8BA7036258DC73A41FDF326320C8, AF4C1014D4C4A8311531DDB8030C74CAF798BD81A6ACF0D7670A217C5E362EFF ] C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
20:06:42.0585 0x1094  C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe - ok
20:06:42.0601 0x1094  [ 2D5AAFECAEE330D8A57C53D5FCC44F5F, 7C17228A65853EFA6268750E44036B63BB9363EA22AEEC16E7594ACB5BC95367 ] C:\Program Files (x86)\Citrix\Receiver\Xerces-c_3_1.dll
20:06:42.0601 0x1094  C:\Program Files (x86)\Citrix\Receiver\Xerces-c_3_1.dll - ok
20:06:42.0615 0x1094  [ 8BA9851E671E8B5E49E303748FFD530C, A2CBF71C3449BA71739E9E805D2EB9F9242AD9D839AF5B4C4F7ADC00C239FB38 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
20:06:42.0615 0x1094  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
20:06:42.0624 0x1094  [ A40AEDC27B6F8CD070F6E398821C4751, 49723388301E3E953E9C4A99E3C47A359115257E2E05A5E51D9FAF18E0CE1EED ] C:\Windows\System32\SynTPAPI.dll
20:06:42.0624 0x1094  C:\Windows\System32\SynTPAPI.dll - ok
20:06:42.0632 0x1094  [ 95B9E747FB0AA28F97F8EAAD9711F5E5, EC6BE3D9E52913DD7C1A888D4D875F5A1B2D2ADFB016C09E8711A50F5A1A0C01 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
20:06:42.0632 0x1094  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
20:06:42.0641 0x1094  [ 2E14406E05789F91C9282AE7CFCA3A07, BDB403FC7EDDF5B3F24F1E8232C6EEFE888C5D72A819567EEA73D0AF7D511095 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
20:06:42.0641 0x1094  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
20:06:42.0651 0x1094  [ DB1602C61BEEA2CBAE8F0DFEDBE92B04, 466CDEF9A891D2E930913E177D4BD56E012A44BDA0D0771F99F7A33AD66CB6F3 ] C:\Program Files (x86)\Citrix\Receiver\ResourceKeeper.dll
20:06:42.0651 0x1094  C:\Program Files (x86)\Citrix\Receiver\ResourceKeeper.dll - ok
20:06:42.0659 0x1094  [ 73862FF693168369A90F046E7F227B83, 938D71674C8856A0F7FE5A096F92D71977F5ABA62374287F49394F25B67713BA ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
20:06:42.0659 0x1094  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
20:06:42.0668 0x1094  [ 30C83447379D5955E992BD43BE8D115E, F740DA09522983A8C68036CC58295E577790116CC5AAA546EFB32EE8AB56569A ] C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
20:06:42.0668 0x1094  C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll - ok
20:06:42.0677 0x1094  [ 790FE685ECC6210244B120347E54CF62, 757462F4EC5A8EB5A97F428E1B130BAA6187ED1D90DD723C2FBBBC69F66369A5 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7767c4821b2d4d32f63d0df3ea24e6b2\mscorlib.ni.dll
20:06:42.0677 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7767c4821b2d4d32f63d0df3ea24e6b2\mscorlib.ni.dll - ok
20:06:42.0686 0x1094  [ 19C69E1F96A4E4D92822002D6EEE9913, D13EA5E6A381B70133E980B53A9C3F5F51735B8EEA6DF4AA06AE171C9980030C ] C:\Windows\System32\msvfw32.dll
20:06:42.0686 0x1094  C:\Windows\System32\msvfw32.dll - ok
20:06:42.0694 0x1094  [ 16E0D9E35ABCE4E19E10D637162643A1, 0EF95515B6CD7F23B037FA51DDE16FBCE694EF70B787D7FDCEACD802D1FF5E59 ] C:\Program Files (x86)\Citrix\Receiver\NativeMessageBox.dll
20:06:42.0694 0x1094  C:\Program Files (x86)\Citrix\Receiver\NativeMessageBox.dll - ok
20:06:42.0699 0x1094  [ 94D616EBF8A3D2F7F8300F255E377A80, EB49EE2CB0835D0153308ED49947BD48F49B03E0F80C0ACA41024381FD34A270 ] C:\Windows\System32\wmploc.DLL
20:06:42.0699 0x1094  C:\Windows\System32\wmploc.DLL - ok
20:06:42.0708 0x1094  [ 4BF69EA593105DEB6CF270A8290BF12C, 7A83EBEDB6DEC4CD600E1A0ECC8E45F4870F324DC22A1028F7FB51E67D42AC62 ] C:\Program Files (x86)\Citrix\Receiver\NativeSystrayUE.dll
20:06:42.0708 0x1094  C:\Program Files (x86)\Citrix\Receiver\NativeSystrayUE.dll - ok
20:06:42.0717 0x1094  [ 0A7DC8E9EE81EE2B8DAA1C39D749D4D7, 92FCD50CF445DAB31E1C7136FED4FA17FD01346CC6BBDACABC57F086280026F4 ] C:\Program Files (x86)\Citrix\Receiver\WindowsAppRHelper.dll
20:06:42.0717 0x1094  C:\Program Files (x86)\Citrix\Receiver\WindowsAppRHelper.dll - ok
20:06:42.0726 0x1094  [ E0AB5A63684E6121F41EB03919A03EAD, 0ABD895552F90D99E53CF53687E9FEFD10EC975CDAE74B9B00578B382CD6B9D8 ] C:\Program Files (x86)\Citrix\Receiver\ProgressNotification.dll
20:06:42.0726 0x1094  C:\Program Files (x86)\Citrix\Receiver\ProgressNotification.dll - ok
20:06:42.0735 0x1094  [ 6B80D55576B222FDF6F8407D6237EFC6, 45D6D8614DD45D0EB0004F52F1A492BBBDBD11B4F2D455D6AC7AB70537195C60 ] C:\Windows\System32\wmpps.dll
20:06:42.0735 0x1094  C:\Windows\System32\wmpps.dll - ok
20:06:42.0744 0x1094  [ 1BCF5EBCCF81C840F2677706BEFF0123, EE67C729818C890FBCA96829C34293281E93516021D6C2C185A508BA8AB709A3 ] C:\Windows\System32\WinSATAPI.dll
20:06:42.0744 0x1094  C:\Windows\System32\WinSATAPI.dll - ok
20:06:42.0753 0x1094  [ 31CA579BA61D7C6868CBD6DC902938FA, 4FD80133D6AFA5AC092A4453D65BF69D861A1397AEE5589ED2DD5AC8B662A2E6 ] C:\Program Files (x86)\Citrix\Receiver\Toaster.dll
20:06:42.0753 0x1094  C:\Program Files (x86)\Citrix\Receiver\Toaster.dll - ok
20:06:42.0761 0x1094  [ 9E703EC2E91C9071D75E34F1A7327ECA, 0F1FD150BDCCD50FB6E4D49578E43BD9872C41B4514943962FB2B74AA56187E6 ] C:\Windows\System32\wmdrmdev.dll
20:06:42.0761 0x1094  C:\Windows\System32\wmdrmdev.dll - ok
20:06:42.0770 0x1094  [ B79515AFF098E5A56DFBD316152534DE, D796DCC8E363744FBC75426B0B64F083A3C82B984F76216796E2B2D55325DA15 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
20:06:42.0770 0x1094  C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
20:06:42.0778 0x1094  [ 2AD435E35966C65619A272B4831D72BB, 4F1EC49E59D4E040FDECF2BA570FB38A8CC1876CAB665B30BE8A161D89C19FF0 ] C:\Windows\System32\drmv2clt.dll
20:06:42.0778 0x1094  C:\Windows\System32\drmv2clt.dll - ok
20:06:42.0787 0x1094  [ 12370C8DB68F1A9239315B18B3CC1F89, 7CFEA28DB139953DE541C4C0EDD2379A1789B4888784D222BE2886B4D3505008 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\e2be7a2aad6294f583264df0e9f27bb7\System.ni.dll
20:06:42.0787 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_32\System\e2be7a2aad6294f583264df0e9f27bb7\System.ni.dll - ok
20:06:42.0796 0x1094  [ B42228BEFB6EBF62C1CBBC8F2284AC9A, 8BB0F414637A7C1AB0C607707BD1E9B43D597AEE5D86513A3A294F3FEFAD571E ] C:\Program Files\Camera Assistant Software for Toshiba\ceccmdll.dll
20:06:42.0796 0x1094  C:\Program Files\Camera Assistant Software for Toshiba\ceccmdll.dll - ok
20:06:42.0805 0x1094  [ 9EFDF7F0153C066BE619450E3D5D59DD, CD98DB7D043CCA581082E5A358EA9F7DD123BA9B373A9D7C9F2FA255D1E0C7A6 ] C:\Windows\SysWOW64\avifil32.dll
20:06:42.0805 0x1094  C:\Windows\SysWOW64\avifil32.dll - ok
20:06:42.0813 0x1094  [ BDBB449425991154135E5ED1559927E6, C89AE8DD76EC8F669B5FFA9F8CBB4531743D3E1D8975B416EF2CB5AB35DB4EF2 ] C:\Windows\SysWOW64\msacm32.dll
20:06:42.0813 0x1094  C:\Windows\SysWOW64\msacm32.dll - ok
20:06:42.0821 0x1094  [ A944A73CEC5921B871542FE5CC5E03E4, CBFAA80631A6A332697494160A7453645478AC535DCF5F72F75C27D3F325CE88 ] C:\Windows\SysWOW64\olepro32.dll
20:06:42.0821 0x1094  C:\Windows\SysWOW64\olepro32.dll - ok
20:06:42.0829 0x1094  [ 265F44FAB3B659FFF48C365BDFF95B2E, 78B70B1C0EE55A0681BC46DB6CE0663F4971D05F0C8456E645BD862E623B8088 ] C:\Windows\System32\wer.dll
20:06:42.0829 0x1094  C:\Windows\System32\wer.dll - ok
20:06:42.0838 0x1094  [ B286A73AA88A242B04D9295A596EBE9E, E7F83EB8FEF7791DACC685405C01E055BFF229C874C27B33DD3DB59C2DBB2A1F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\cfmain\9fa644c1bc51596b8ce51f171526b143\cfmain.ni.exe
20:06:42.0838 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_32\cfmain\9fa644c1bc51596b8ce51f171526b143\cfmain.ni.exe - ok
20:06:42.0847 0x1094  [ C8611C83358D088D7832944613B9709E, 940B8199788F6973D17ABADBC833181B6A09076E30A87591264D16D6F603DB97 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\af9d85ac14a30c793b4a77c41e2664b3\WindowsBase.ni.dll
20:06:42.0847 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\af9d85ac14a30c793b4a77c41e2664b3\WindowsBase.ni.dll - ok
20:06:42.0855 0x1094  [ 6950BBCEB21F9C3CB3B52E90960109C3, FDBD7877D3817E4D9A58924BFEE9BEDFCB84D3817404E9AF57F7581252846E99 ] C:\Windows\SysWOW64\devenum.dll
20:06:42.0855 0x1094  C:\Windows\SysWOW64\devenum.dll - ok
20:06:42.0864 0x1094  [ 256D4F7AC02E082E60F74975867093EF, DEB7B7114CB76C0FFC1F70FF79A15C4E51014FF95E8BC8A5CCE9E0FFF284DEF9 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\11624b36d38aa9b3a4ab10e01b32bce5\System.Web.ni.dll
20:06:42.0864 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\11624b36d38aa9b3a4ab10e01b32bce5\System.Web.ni.dll - ok
20:06:42.0872 0x1094  [ B8AEFF80ABD57E6ABC6A46EAC7F4515F, E0387BFB1CA6875D697FB7B95868BF70F4353E336F830446E543453BDA2544C0 ] C:\Windows\SysWOW64\msdmo.dll
20:06:42.0872 0x1094  C:\Windows\SysWOW64\msdmo.dll - ok
20:06:42.0880 0x1094  [ 928C90E02E05244D2290C1551DF732C8, 977835927791DAA3BCEFB76569BE2AA61876F1AB386E37F9C5F8A1FA6FEB5137 ] C:\Windows\SysWOW64\avicap32.dll
20:06:42.0880 0x1094  C:\Windows\SysWOW64\avicap32.dll - ok
20:06:42.0889 0x1094  [ 65C092EF598DCCA1D665D52F06829512, EF84EFD4C6EA9A083687FF90F7F91EC54862E146CF76690CEDC9E2F0EACE324E ] C:\Windows\SysWOW64\vfwwdm32.dll
20:06:42.0889 0x1094  C:\Windows\SysWOW64\vfwwdm32.dll - ok
20:06:42.0896 0x1094  [ 861797D3C83A6EBA05FB2C63B1A45E82, 838C814F2E0F545F81164186063E9DEE88C64332E44278E95BB0F984435D82AB ] C:\Windows\SysWOW64\ksproxy.ax
20:06:42.0896 0x1094  C:\Windows\SysWOW64\ksproxy.ax - ok
20:06:42.0905 0x1094  [ 919CC2A0476D5A6A4C935D4B88E29912, E9884E7565BAA72CEF0B805908B1B78C759074E9402CB5CC563A2F73B875DCBA ] C:\Windows\SysWOW64\ksuser.dll
20:06:42.0905 0x1094  C:\Windows\SysWOW64\ksuser.dll - ok
20:06:42.0913 0x1094  [ 012E22681A63D2BF405E6F15EF80BFD3, 7C231FD6B47EE00EEA236B547E356F67CD4AAB6D438180F7830A7610593E478A ] C:\Windows\SysWOW64\vidcap.ax
20:06:42.0913 0x1094  C:\Windows\SysWOW64\vidcap.ax - ok
20:06:42.0921 0x1094  [ FD44B4D9129EDD68BBD0A26683024EF9, E9418B0CD02D5C04B106E1968912F27BB601C570254B614BBC0780CCBCF2D9F5 ] C:\Windows\SysWOW64\Kswdmcap.ax
20:06:42.0921 0x1094  C:\Windows\SysWOW64\Kswdmcap.ax - ok
20:06:42.0929 0x1094  [ EF24642D5FB52A1EEF56DE9E47CBB993, C1B7EF50AC869BFA465C70BEC69F852C69DC51A5F82F183149322A06DF17FED4 ] C:\Windows\SysWOW64\mfc42.dll
20:06:42.0929 0x1094  C:\Windows\SysWOW64\mfc42.dll - ok
20:06:42.0939 0x1094  [ A14EB3D0FA1F1E5EDFD952EFAAAC9396, 15FC63ADF332130ABB75653B3C54CBA7FA845D6D43ED271C0946A226E7260CED ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\d40f15d057d10ce7f34fd08f6773e7a1\PresentationCore.ni.dll
20:06:42.0939 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\d40f15d057d10ce7f34fd08f6773e7a1\PresentationCore.ni.dll - ok
20:06:42.0948 0x1094  [ 862363973DCBCC31DD161EF41A69153C, A2A27BC454A39093B8A68AFDF47C3572A97A6EC6790B7E6306EFDA6E3A03B97B ] C:\Windows\SysWOW64\odbc32.dll
20:06:42.0948 0x1094  C:\Windows\SysWOW64\odbc32.dll - ok
20:06:42.0953 0x1094  [ 0DAAF8032546D1B4543D7B101B53FD6C, B8872D5F3ED3F737C4F055E4E54B2107AD87E39960853835208198C75902CEE8 ] C:\Windows\SysWOW64\odbcint.dll
20:06:42.0953 0x1094  C:\Windows\SysWOW64\odbcint.dll - ok
20:06:42.0961 0x1094  [ 4DF066ECEE5A7B20BF8B39EF4D646600, CA1859155E0187388E3C774B796A27B773C026E4D06C9193EF6B23C6990E4E8E ] C:\Windows\SysWOW64\wdmaud.drv
20:06:42.0961 0x1094  C:\Windows\SysWOW64\wdmaud.drv - ok
20:06:42.0969 0x1094  [ 56B5914070B2C243DFB3D186070DA89D, 657EBC48F8AE297F76898C5417797C3542B086C40F84D32F7D76FA14893B2C08 ] C:\Windows\SysWOW64\MMDevAPI.dll
20:06:42.0969 0x1094  C:\Windows\SysWOW64\MMDevAPI.dll - ok
20:06:42.0978 0x1094  [ 7258434974EA735725FD2D4A65C5E821, 4D4BCEEDAA3B293B599CED5777E3695C8B1A07805FE84223A72A5785CA68E6F4 ] C:\Windows\SysWOW64\AudioSes.dll
20:06:42.0978 0x1094  C:\Windows\SysWOW64\AudioSes.dll - ok
20:06:42.0986 0x1094  [ DA7478BA9E41B60B3D5DA456E253002A, 4E934BC6897F96AE402981F012BFD766B82533A4E1F4323F65E01954F49A2DA9 ] C:\Windows\SysWOW64\AudioEng.dll
20:06:42.0986 0x1094  C:\Windows\SysWOW64\AudioEng.dll - ok
20:06:42.0994 0x1094  [ 166F004D73EA2CF4AC61800CA469458D, 7C1D83DC49505E452D7AFD843312B1B197BBB613D604BFF41FD4235B06F24EF3 ] C:\Windows\SysWOW64\msacm32.drv
20:06:42.0994 0x1094  C:\Windows\SysWOW64\msacm32.drv - ok
20:06:43.0004 0x1094  [ 83199EF88D691E730B80666E29F90D58, A7D3E5CA5AE7308201159A25BE59C0A90C079F88F0D588BEA7CE98BBD2838FB0 ] C:\Windows\SysWOW64\midimap.dll
20:06:43.0004 0x1094  C:\Windows\SysWOW64\midimap.dll - ok
20:06:43.0012 0x1094  [ DC2FE300B941D6330D7475C977C4C5E9, 951E750E392FA7C093FF6A061E18E8C5BED503BFBC85C52FDF2B906DBD73C930 ] C:\Windows\SysWOW64\imaadp32.acm
20:06:43.0012 0x1094  C:\Windows\SysWOW64\imaadp32.acm - ok
20:06:43.0021 0x1094  [ 4177EA05E1215EBE0405C18BFF463473, 14B808CE077BCB80EE87C4F23EC1EC96E3B33917237445404EDC9E851CFDE305 ] C:\Windows\SysWOW64\msg711.acm
20:06:43.0021 0x1094  C:\Windows\SysWOW64\msg711.acm - ok
20:06:43.0029 0x1094  [ 13ACFD3F412CD31ACA8387911C80A9E2, 331C0F1472FFA7B3EE82CBD5B9BEC314DA68C84B3E0254476ED9FE8E62EE2B59 ] C:\Windows\SysWOW64\msgsm32.acm
20:06:43.0029 0x1094  C:\Windows\SysWOW64\msgsm32.acm - ok
20:06:43.0037 0x1094  [ CE761566EADA0509F02E4AFDB09B62E4, A96B931DF89F3FEEB3236C7925A8194A793A4C382A915C98CDE40946334ABF3B ] C:\Windows\SysWOW64\msadp32.acm
20:06:43.0037 0x1094  C:\Windows\SysWOW64\msadp32.acm - ok
20:06:43.0045 0x1094  [ 8A64A3F68F0E24917759852C842DCD74, 08B68B8F4756122F920F9B338F61CAC95528B33AD5F4C9AF6C46D4A0CB368E70 ] C:\Windows\SysWOW64\l3codeca.acm
20:06:43.0045 0x1094  C:\Windows\SysWOW64\l3codeca.acm - ok
20:06:43.0054 0x1094  [ 2395CDB116BD8B5B88419A145C40FCD9, ADB9E172328ABFF6229A4FC2E34B9DD0987F57BAD3EA804A8AFCD7EB7F7BF27C ] C:\Program Files (x86)\Common Files\Ulead Systems\vio\DVACM.acm
20:06:43.0054 0x1094  C:\Program Files (x86)\Common Files\Ulead Systems\vio\DVACM.acm - ok
20:06:43.0063 0x1094  [ AC1BAD79E6F61815643457F8CD079F28, 959D41962842F31A114118A6D66EFB873EB9CCC383165A71BC462DCD56B41013 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\77ca3a4b0f722da3236d48139d160477\PresentationFramework.ni.dll
20:06:43.0063 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\77ca3a4b0f722da3236d48139d160477\PresentationFramework.ni.dll - ok
20:06:43.0072 0x1094  [ C43DECDAC58C0A43E0376A216590F40A, ABA49C9F5CE0E25E915CC8921794F20DBD6BAC8B1FF429D92C5CD4234FB9F2CB ] C:\Windows\SysWOW64\quartz.dll
20:06:43.0072 0x1094  C:\Windows\SysWOW64\quartz.dll - ok
20:06:43.0079 0x1094  [ EFD278F8129EE12F1D4AE0250494B791, DD8DA066EBFE938334BEBCDF70340F79C8FFB5AF328FE5DF2472AE6C7987FE1F ] C:\Windows\SysWOW64\dxva2.dll
20:06:43.0080 0x1094  C:\Windows\SysWOW64\dxva2.dll - ok
20:06:43.0088 0x1094  [ A14F25F62E84C6B4A178A1CFD9B47222, 880769845620CBCE4F1BDA9470F75D03F270D3241636EC2D592B367F11D9A198 ] C:\Windows\SysWOW64\qcap.dll
20:06:43.0088 0x1094  C:\Windows\SysWOW64\qcap.dll - ok
20:06:43.0096 0x1094  [ 49084A75BAE043AE02D5B44D02991BB2, 4CD2692D191035CE9D18F4D21F054FF8C3F9CF2734464EA33EAB480A28AD447F ] C:\Windows\System32\drivers\mspqm.sys
20:06:43.0096 0x1094  C:\Windows\System32\drivers\mspqm.sys - ok
20:06:43.0104 0x1094  [ 7D4E50C9B39CE079A903000140C9B937, 4572589B0277608FE58296033EA8799EA79E637271AB5BB3503FDDC8E5213067 ] C:\Windows\System32\dispci.dll
20:06:43.0104 0x1094  C:\Windows\System32\dispci.dll - ok
20:06:43.0113 0x1094  [ 657DD66775AA2516472AE9F91E8BB58A, 512E81BBC671ED3987FF5E60D71F6A057F1F7B3262EF46404C9128EA08C0371A ] C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
20:06:43.0113 0x1094  C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe - ok
20:06:43.0122 0x1094  [ E0BBB2ADEE4B38040B6C3C795A89996C, C15987DBDEB8144DEF41BD0985E0EA273A359FC7B5446DB9D95685A1104F5972 ] C:\Program Files (x86)\Citrix\ICA Client\ProgressNotificationCommon.dll
20:06:43.0122 0x1094  C:\Program Files (x86)\Citrix\ICA Client\ProgressNotificationCommon.dll - ok
20:06:43.0131 0x1094  [ 8865B976EB4E10F42870BB8C28305075, 04E02B02285F23535ED91B4CEB152088989B1158E2D496C73F6C0208EE61F26E ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
20:06:43.0131 0x1094  C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
20:06:43.0140 0x1094  [ 7DC262AEEA66CCD6ED86DAAB16C4CDFF, 12870A4EF3DA8D632B128C6EB6175E427AB7A4E97BD9470F68BD64665C636CFC ] C:\Windows\System32\ntlanman.dll
20:06:43.0140 0x1094  C:\Windows\System32\ntlanman.dll - ok
20:06:43.0147 0x1094  [ 2790F04DFDDA00B7B6DE6719399A8739, AE5E5BFCD9D18820591FF3CEB57B5ED57196B488B64888A6BA31DD00C2601AD1 ] C:\Windows\System32\drprov.dll
20:06:43.0147 0x1094  C:\Windows\System32\drprov.dll - ok
20:06:43.0156 0x1094  [ AAC4DFF79689736D8B316FC05A3E25EC, 30848CC0E8936F0E5E605DA39E0DBCF00D73F42556B20E6DED7436A457D80872 ] C:\Windows\System32\davclnt.dll
20:06:43.0156 0x1094  C:\Windows\System32\davclnt.dll - ok
20:06:43.0164 0x1094  [ 0B6C72F07DD3A168D42D4E8C354FC658, 5D030DF47457022AC907CFCAA9FF51B2F5FDE462C6DD1066EC369A61DEA8193C ] C:\Program Files (x86)\Citrix\ICA Client\wfcwinn.dll
20:06:43.0164 0x1094  C:\Program Files (x86)\Citrix\ICA Client\wfcwinn.dll - ok
20:06:43.0174 0x1094  [ C1A3DDD46B4A91C1334CE94F95E70884, DB0B0CF56CFDF408DAF36E0760D7FE72B29EAA22D034B2D4495BA373B30B3020 ] C:\Program Files (x86)\Citrix\ICA Client\acrdlg.dll
20:06:43.0174 0x1094  C:\Program Files (x86)\Citrix\ICA Client\acrdlg.dll - ok
20:06:43.0182 0x1094  [ CB9C87514EF3D391CDE3AB8A33A6609C, 6556FEC3E07DBF48E4919BF65132D40ED82204D51957D174C6A476D77D6B17B4 ] C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe
20:06:43.0182 0x1094  C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe - ok
20:06:43.0192 0x1094  [ C166EF14CBC85AC9747DDA3797F30A06, 2A13193F7569ABF35875CCCC7CA94C934E780BDB9F93F9FC9FC16AB0CAAEDBCC ] C:\Windows\SysWOW64\d3dim700.dll
20:06:43.0192 0x1094  C:\Windows\SysWOW64\d3dim700.dll - ok
20:06:43.0200 0x1094  [ 63BD471712132D597431407527A57628, 86B762C64AAADFDCEE0136C4578314A9324115E41BA3AD6F268ED797AEAA00E8 ] C:\Windows\System32\dxgi.dll
20:06:43.0200 0x1094  C:\Windows\System32\dxgi.dll - ok
20:06:43.0207 0x1094  [ DEAB96C18633EB6D3E0569B436566190, 1FC9B1460189F124DE5A820B5C14E61946D1A3F801F1F001C2427A635D450A52 ] C:\Program Files (x86)\Citrix\ICA Client\statuin.dll
20:06:43.0207 0x1094  C:\Program Files (x86)\Citrix\ICA Client\statuin.dll - ok
20:06:43.0216 0x1094  [ 711A71AA9794E64468650C4A80ACB15C, 629C282FBC8D51E26E89B4433CB5842518AE5DC523495ABCC96618123E378AF4 ] C:\Program Files (x86)\Citrix\ICA Client\confmgr.dll
20:06:43.0216 0x1094  C:\Program Files (x86)\Citrix\ICA Client\confmgr.dll - ok
20:06:43.0225 0x1094  [ 8E2242BB3CB7A632A8CF22BDE2A41AE1, FB068D1EED054DB6935A5DE19DEA6AFCCE8C3F0F665973FDFB97431078207D91 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
20:06:43.0225 0x1094  C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok
20:06:43.0233 0x1094  [ EA991D49E99ECBCD907752D8DC8E0B80, 2906F83259893C5E333704D5C1CF225E559A31D3028ADBEFFA91428E44BB6373 ] C:\Program Files (x86)\Citrix\ICA Client\ctxlogging.dll
20:06:43.0233 0x1094  C:\Program Files (x86)\Citrix\ICA Client\ctxlogging.dll - ok
20:06:43.0242 0x1094  [ 45B86D6784473E7BC0B1CC413FEA650D, FBB7ADD2B23C5005D9DE248BB95E58C92F33242C72B25D4A4694D4CE17E676C9 ] C:\Program Files (x86)\Citrix\ICA Client\icafile.dll
20:06:43.0242 0x1094  C:\Program Files (x86)\Citrix\ICA Client\icafile.dll - ok
20:06:43.0251 0x1094  [ 9A1637DB315CA4DEEE9BFCEAC6B6900A, 9A133B75AD430AFDF5759C35DA64CD671F196D3AD8CB47705D5E770778B6FA9B ] C:\Program Files (x86)\Citrix\ICA Client\RSManager.dll
20:06:43.0251 0x1094  C:\Program Files (x86)\Citrix\ICA Client\RSManager.dll - ok
20:06:43.0260 0x1094  [ 23D7728C16103222E90B983A1306481D, E22FEF550CB8C4AE532DD63D73B3CAD2A41061C827094DC8C83D47668122BA30 ] C:\Program Files (x86)\Citrix\ICA Client\RSMHook.dll
20:06:43.0260 0x1094  C:\Program Files (x86)\Citrix\ICA Client\RSMHook.dll - ok
20:06:43.0269 0x1094  [ 46F1F7488DF203FBC99CE68135252A80, 9E7CB78BF20C6F49DCE8471EDA1BA6EE20A14D5EABEE8BFA9C6700E129E7DABF ] C:\Program Files (x86)\Citrix\ICA Client\cst.dll
20:06:43.0269 0x1094  C:\Program Files (x86)\Citrix\ICA Client\cst.dll - ok
20:06:43.0278 0x1094  [ 248A1F31ABB58DDDDC01490EF0BDC777, 5E5CF3FEAB07628BB1EAE37BED9207E231AB3AEE38907C58D909B1BA391D18A8 ] C:\Windows\SysWOW64\cryptui.dll
20:06:43.0278 0x1094  C:\Windows\SysWOW64\cryptui.dll - ok
20:06:43.0286 0x1094  [ 4B6563051BE791B2812A597E20353191, 1BC68DACCCC7184479DD8A5031234AE7853727D82F5AA0C5E161B8DC45690135 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
20:06:43.0287 0x1094  C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
20:06:43.0296 0x1094  [ EA30F97F7737E6E9950E34F77F5B686F, 08554DB7F444E4900FC89CB2CE6E97270A79203C6394A5C35D5A8B8571394B17 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
20:06:43.0296 0x1094  C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
20:06:43.0305 0x1094  [ E72B6C660B9B84AEC723BDF790DCE449, 70A24A5431386A4976CCFA2A1171589E6E664D4FEA709819BF2FC31852064347 ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\ProgressNotificationCommonUI.dll
20:06:43.0305 0x1094  C:\Program Files (x86)\Citrix\ICA Client\resource\en\ProgressNotificationCommonUI.dll - ok
20:06:43.0314 0x1094  [ FD97F97B00FA2CE5879DE855163541B6, 76A58D60C96A47425435DEE04C166A3CA45E97E849FFE2FA2D43A75CD7FEFBC1 ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\statuiUI.dll
20:06:43.0314 0x1094  C:\Program Files (x86)\Citrix\ICA Client\resource\en\statuiUI.dll - ok
20:06:43.0323 0x1094  [ 5F1DEC3824E566457F53F24F493FEF08, 8ED9B269E5195BD11FF7ED6EBBC19FA32027AD068DF357660C9E5084922329B5 ] C:\Windows\SysWOW64\mscms.dll
20:06:43.0323 0x1094  C:\Windows\SysWOW64\mscms.dll - ok
20:06:43.0332 0x1094  [ 7E1BC7AA112F5ED12AB6E08E41CA6726, B8CCD489D074512EBA92F6A2CCE9E0341DEF210ACB66093BE29BCE54449AC2BB ] C:\Windows\SysWOW64\msyuv.dll
20:06:43.0332 0x1094  C:\Windows\SysWOW64\msyuv.dll - ok
20:06:43.0341 0x1094  [ 2D6F2EC6474EC3119BDFE8263580F092, 55A35A6110E85DF5312C4BE1808591BE0B3E3AB1080B52F1DF929E9241DB99AE ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\cstUI.dll
20:06:43.0341 0x1094  C:\Program Files (x86)\Citrix\ICA Client\resource\en\cstUI.dll - ok
20:06:43.0351 0x1094  [ 3B1A895CAF9402E6E84002D078A0A1DB, 886EA7B61BEA3020B6196C9293A9F4181A68CCAA0C46A953B0616D78C3E82445 ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\wfcrunUI.dll
20:06:43.0351 0x1094  C:\Program Files (x86)\Citrix\ICA Client\resource\en\wfcrunUI.dll - ok
20:06:43.0359 0x1094  [ 0DCA5F8AF83975061D9D8340DC471B5C, 71C8549419F46ABB4826B1847BF325374FA5C237CE14DB8B1DD8BB6FDABF6138 ] C:\Windows\SysWOW64\msvcr110_clr0400.dll
20:06:43.0359 0x1094  C:\Windows\SysWOW64\msvcr110_clr0400.dll - ok
20:06:43.0368 0x1094  [ 0A7DC8E9EE81EE2B8DAA1C39D749D4D7, 92FCD50CF445DAB31E1C7136FED4FA17FD01346CC6BBDACABC57F086280026F4 ] C:\Users\Mitch\AppData\Local\Citrix\Receiver\WindowsAppRHelper_wfcrun32.exe.dll
20:06:43.0368 0x1094  C:\Users\Mitch\AppData\Local\Citrix\Receiver\WindowsAppRHelper_wfcrun32.exe.dll - ok
20:06:43.0377 0x1094  [ C3745C13CE8BF1E8B984480B0B4F6507, 3F9F9256BE1758E185C1C88FD8E6635CA04B2FA1A7D4DA0E720265D8515DC388 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\0bd54004bece98d17dd1a257d17f72fa\System.Xml.ni.dll
20:06:43.0378 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\0bd54004bece98d17dd1a257d17f72fa\System.Xml.ni.dll - ok
20:06:43.0386 0x1094  [ 7E5C9496CB0B3284F37B51FDD8362DFF, E3504C7FBB7A5293F49B9233BA852C8DBD66BE465190F4EBBC1BF00377297428 ] C:\Program Files (x86)\Citrix\ICA Client\CCMProxy.dll
20:06:43.0386 0x1094  C:\Program Files (x86)\Citrix\ICA Client\CCMProxy.dll - ok
20:06:43.0395 0x1094  [ 1E06779EDB55D035DD3F4A2B7432A291, 247E0A741C23D2C9CA1784CECF63211EA0D4ED924CDA866DAA6F51256230BB32 ] C:\Windows\SysWOW64\msxml6.dll
20:06:43.0395 0x1094  C:\Windows\SysWOW64\msxml6.dll - ok
20:06:43.0403 0x1094  [ C1F1E53851FAA7E029CFA07DAF9A5E81, 5FED0DC48651735AEBF53D5B7C16D13A9F7205B9EBEFE829022FC9281A940718 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll
20:06:43.0403 0x1094  C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll - ok
20:06:43.0412 0x1094  [ A8DE2A5F139E7707F50BA4F766B92ADA, C9860FDDD6400A1851073464A2DFC653D6B69B3EB516A1494A898A5BCADF1A0A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\90e4612b7886a00abc6eb22d173102b6\System.Configuration.ni.dll
20:06:43.0412 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\90e4612b7886a00abc6eb22d173102b6\System.Configuration.ni.dll - ok
20:06:43.0422 0x1094  [ 012A965F34414458075EF4F0EDC11536, 2666E54A02434990667F69259213D6F4E9315EED0FC1148942371D3006089432 ] C:\Windows\SysWOW64\WindowsCodecsExt.dll
20:06:43.0422 0x1094  C:\Windows\SysWOW64\WindowsCodecsExt.dll - ok
20:06:43.0430 0x1094  [ 2C7B4E944A48B9A07B7BF2AB262F197E, C674A532A82B015E96ADF2AC78702CFE810828F7EAA1F2C40BDC4DD3A8D85557 ] C:\Windows\SysWOW64\icm32.dll
20:06:43.0430 0x1094  C:\Windows\SysWOW64\icm32.dll - ok
20:06:43.0440 0x1094  [ DD329C1CB0A4ACD405FC27966CC5DC6C, 39FBCE4E19F04AD70459BCCC38103EF5269DC07A5F0ABF9C5A88E6B7C0A80DE3 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\597c3cc5acbabed8f2629fbefa56b2ba\PresentationFramework.Aero.ni.dll
20:06:43.0440 0x1094  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\597c3cc5acbabed8f2629fbefa56b2ba\PresentationFramework.Aero.ni.dll - ok
20:06:43.0449 0x1094  [ 3AD3602258590F5A3C45DC7A029D0140, 7428C3747AA6EFB48C596041B5EB76ABB2AF6A28BE105775852D2305C067ADE0 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
20:06:43.0449 0x1094  C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll - ok
20:06:43.0455 0x1094  [ 5098A5D0F433048AF91D556330678B52, D66B4DBD096A0BD2A06631DCEB4515E41EB2B25DAD94FF98A8F28428C767A264 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\ff26cc03e6d57d8abd13b990332e67c6\System.ni.dll
20:06:43.0455 0x1094  C:\Windows\assembly\NativeImages_v4.0.30319_32\System\ff26cc03e6d57d8abd13b990332e67c6\System.ni.dll - ok
20:06:43.0464 0x1094  [ 669BCD1D7A23D5C050A2EECD0668DE7B, 521DAA5C0FCE7593E8BE419DA907AE35AE64F6F64CDF16A054678A8F7A878FC0 ] C:\Program Files\TOSHIBA\Power Saver\TCooling.dll
20:06:43.0464 0x1094  C:\Program Files\TOSHIBA\Power Saver\TCooling.dll - ok
20:06:43.0474 0x1094  [ 441CC7DBC4F8661807A9B1C87CABA81C, FCF2F629ADC292C58CE4F353E8CE2DB9FE791DA05520FB0A4A5B144A239513F7 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\5cd2aee5e7c07227c694d89219688ab3\System.Drawing.ni.dll
20:06:43.0474 0x1094  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\5cd2aee5e7c07227c694d89219688ab3\System.Drawing.ni.dll - ok
20:06:43.0483 0x1094  [ B64F4CC4C2172D401CA63967311D20B6, 071A381154B4CE3B3327481363DEC83DDAB00EFE03A4F150CDAC85F77CFF30FA ] C:\Program Files\Microsoft Security Client\MsMpRes.dll
20:06:43.0483 0x1094  C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok
20:06:43.0492 0x1094  [ DD3DE2DA4D2D40D9EEBE570C44C0FFC6, 66439CCA7BF921B51670660D9C2ED07A04A3D0B689F8C643240DF439F45ED61F ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\f4f6ee0df2aa4189bf36e6335cb92761\System.Windows.Forms.ni.dll
20:06:43.0492 0x1094  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\f4f6ee0df2aa4189bf36e6335cb92761\System.Windows.Forms.ni.dll - ok
20:06:43.0500 0x1094  [ F716657DA33467E72C27D978840E507E, 1C791FE6BEDBA8D0D079BCADC575F8E038400543E8596E7771DA8B6247CC465A ] C:\Program Files (x86)\Citrix\SelfServicePlugin\DazzleConfig.dll
20:06:43.0500 0x1094  C:\Program Files (x86)\Citrix\SelfServicePlugin\DazzleConfig.dll - ok
20:06:43.0510 0x1094  [ F9E065D4F9F4D93BC4B066FCB1D3641F, 9F550D89558A98A5F65812D1EA1804FAC23D5DF2554E9B9A26E6D65F49D4CC90 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\Culture.dll
20:06:43.0510 0x1094  C:\Windows\Microsoft.NET\Framework\v4.0.30319\Culture.dll - ok
20:06:43.0518 0x1094  [ 71ECC01F9928873A5DEB5B475C0F2429, 608B7D5EFB980CBCC519A039C85EF86E4DD12CCFCA6884675615BBE6DAAF6582 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
20:06:43.0519 0x1094  C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll - ok
20:06:43.0528 0x1094  [ C6F33F49EABCD13F52FDC68FBC1E18C3, 8CDC67C4E3C48E0B27F95CC77F924372FB7C8D47B434EE7DAB36D9D64E9EB568 ] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.dll
20:06:43.0528 0x1094  C:\Program Files\TOSHIBA\FlashCards\TCrdMain.dll - ok
20:06:43.0536 0x1094  [ AD72F71E05899CD77E8034A18799C0A1, 69687A69476E07D04D3A704F23FCBE3C591667FA16E36D45EE44DA143EF8823C ] C:\Program Files\TOSHIBA\FlashCards\TCrdEvnt.dll
20:06:43.0536 0x1094  C:\Program Files\TOSHIBA\FlashCards\TCrdEvnt.dll - ok
20:06:43.0545 0x1094  [ 00368CC4078E1C2977B323FA61385AAD, 664CFD56A87560AED28A624A64FF5F4126D2ED76D355B6AC88C7319D226DF584 ] C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll
20:06:43.0545 0x1094  C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll - ok
20:06:43.0553 0x1094  [ 30EFD90C995E57399F3AB10E6685C60B, AB3CAE90EC9B9B8502A98397CBAFCE12B6A86F043AB9A51184A313980E1E56F8 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\bbc48ec4245e502ae19b0601d3799c9e\System.Configuration.ni.dll
20:06:43.0553 0x1094  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\bbc48ec4245e502ae19b0601d3799c9e\System.Configuration.ni.dll - ok
20:06:43.0564 0x1094  [ 7409BEE0D0A70CB4D797B27C5B04DF0E, 3937DDB59878AFB4BC1A250ACB54A42540A3F3C511C7D4093DCD167C456274C6 ] C:\Program Files (x86)\Citrix\SelfServicePlugin\ReceiverShim.dll
20:06:43.0565 0x1094  C:\Program Files (x86)\Citrix\SelfServicePlugin\ReceiverShim.dll - ok
20:06:43.0574 0x1094  [ 6CFD1B146BD8B0023C2D33F5530D6F36, 0CE8745EB52E17C3AB2EDF3AE91B417A0928B570C938840E2A361E67D46860B3 ] C:\Program Files\TOSHIBA\FlashCards\FnSticky.dll
20:06:43.0574 0x1094  C:\Program Files\TOSHIBA\FlashCards\FnSticky.dll - ok
20:06:43.0583 0x1094  [ 51600B46AF2BFF3E3A9D409872839CFB, B65E197926F5DE98BF686960232D59891BC360001D210B0B408DA3DE494D5F85 ] C:\Users\Mitch\AppData\Local\Citrix\Receiver\WindowsAppRHelper_SelfServicePlugin.exe.dll
20:06:43.0583 0x1094  C:\Users\Mitch\AppData\Local\Citrix\Receiver\WindowsAppRHelper_SelfServicePlugin.exe.dll - ok
20:06:43.0592 0x1094  [ 21CA21F0145A793E3E6A282856A753E6, 7702C86D1EF454D628B35EA2D58988EFB1295530F3775993211290D14B2F4007 ] C:\Program Files\TOSHIBA\Power Saver\TFunctab.dll
20:06:43.0592 0x1094  C:\Program Files\TOSHIBA\Power Saver\TFunctab.dll - ok
20:06:43.0601 0x1094  [ 6DE5C66E434A9C1729575763D891C6C2, 4F7ED27B532888CE72B96E52952073EAB2354160D1156924489054B7FA9B0B1A ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.21022.8_none_bcb86ed6ac711f91\msvcp90.dll
20:06:43.0601 0x1094  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.21022.8_none_bcb86ed6ac711f91\msvcp90.dll - ok
20:06:43.0610 0x1094  [ 2E7D051495EFBE01E590D42303967183, 872B52C92A4FB4AF400F51DC96D881D9B2D6AA3C2ED71D8B6879B730BE57313B ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\bada32953bb6b16a53d653eae23d78dc\System.Xml.ni.dll
20:06:43.0610 0x1094  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\bada32953bb6b16a53d653eae23d78dc\System.Xml.ni.dll - ok
20:06:43.0619 0x1094  [ E7D91D008FE76423962B91C43C88E4EB, ED0170D3DE86DA33E02BFA1605EEC8FF6010583481B1C530843867C1939D2185 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.21022.8_none_bcb86ed6ac711f91\msvcr90.dll
20:06:43.0619 0x1094  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.21022.8_none_bcb86ed6ac711f91\msvcr90.dll - ok
20:06:43.0628 0x1094  [ 66EA853AA0AD70DD8DF5BC5F28F5070F, 3818DE1E38006A5472227AE13E973590429EF06E760B5EFBEE1B65D22DCB74C3 ] C:\Program Files (x86)\Citrix\SelfServicePlugin\PreLaunchConfig.dll
20:06:43.0628 0x1094  C:\Program Files (x86)\Citrix\SelfServicePlugin\PreLaunchConfig.dll - ok
20:06:43.0637 0x1094  [ BD71096937CE46A72B50BCEEC77CF794, A53450984C546A0C02BA4384C4377C171C89A5F6B0F3EE1AF17B88D0A96669F5 ] C:\Program Files (x86)\Citrix\SelfServicePlugin\BaseClassLibrary.dll
20:06:43.0637 0x1094  C:\Program Files (x86)\Citrix\SelfServicePlugin\BaseClassLibrary.dll - ok
20:06:43.0646 0x1094  [ 89CA6D83DCB5D41FBF4D23BE5343F8A8, 6A73234CA32CB2C04CC8DE6037A429E74170E7467D19415F19F8E118F76B23DC ] C:\Windows\System32\blackbox.dll
20:06:43.0646 0x1094  C:\Windows\System32\blackbox.dll - ok
20:06:43.0654 0x1094  [ D107DC659AF653020792D62EDACDA072, 678162F5E93CABF73E454481C14E7A51BF4CEEEB722AE51B026DDA82E504F942 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Graphics-Full-Existing\MMLoadDrv.exe
20:06:43.0654 0x1094  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Graphics-Full-Existing\MMLoadDrv.exe - ok
20:06:43.0663 0x1094  [ 2D28DF454FD751EA3B55152B8E27CBEC, 03595ED1D209D726B769057CEA7CE2FD4E26F8D21F70CA134745A9C613151986 ] C:\Program Files\TOSHIBA\TOSCDSPD\CMDPST.dll
20:06:43.0663 0x1094  C:\Program Files\TOSHIBA\TOSCDSPD\CMDPST.dll - ok
20:06:43.0671 0x1094  [ C0B3E7DA46712F5DF115CEF71CCC7D75, 80F95BDD053D3F02BAA1E22BCD1AA7CB017D939F9FB1AFF2B3A75180334B80CE ] C:\Windows\System32\shimeng.dll
20:06:43.0671 0x1094  C:\Windows\System32\shimeng.dll - ok
20:06:43.0680 0x1094  [ 65E30D50489BBA7E5300CD56FA6B91AB, F0A1DD27B97063D9855EB9237036D6F24BBF2D1FF0B2240088D10DC5474C2C19 ] C:\Windows\AppPatch\AppPatch64\AcGenral.dll
20:06:43.0680 0x1094  C:\Windows\AppPatch\AppPatch64\AcGenral.dll - ok
20:06:43.0688 0x1094  [ 3F9E03EEE76A12B63369FDA67DDCEA79, 51BB22C3F5C12C40A8617AB152F3FD6EA626DA68E35D60E8E5DE20CE6C3C2963 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
20:06:43.0688 0x1094  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
20:06:43.0696 0x1094  [ 376D1B585060CD65BEEFE15A8577FCA0, AB3A8358135B1A64F84BA27553ABA6974ED2EF03DFC3984EB334442A4DDCE016 ] C:\Windows\System32\sfc_os.dll
20:06:43.0696 0x1094  C:\Windows\System32\sfc_os.dll - ok
20:06:43.0705 0x1094  [ 991C17B9FA553A2F474142CD68312974, B8D2545F42229A469988227A05F5A9784BD231BAA0A256027EF8CE1D7B4F3AF1 ] C:\Windows\System32\wmdrmnet.dll
20:06:43.0705 0x1094  C:\Windows\System32\wmdrmnet.dll - ok
20:06:43.0710 0x1094  [ D4F19174AE170369E44E4F9AEFE71111, DABBFF279262EFAAA7D520FA9F365A4BFC9EFDE147E0790709D2B7B605AE8F2D ] C:\Windows\System32\WMVCORE.DLL
20:06:43.0710 0x1094  C:\Windows\System32\WMVCORE.DLL - ok
20:06:43.0718 0x1094  [ 8812E3739BB8AB48D7A4867522D50B6B, E795A7CD9F32326A94D7CCD64859F6C726DF8393F1925FED43E8977ED38D1443 ] C:\Windows\System32\WMASF.DLL
20:06:43.0718 0x1094  C:\Windows\System32\WMASF.DLL - ok
20:06:43.0727 0x1094  [ 8D74F7EADB7CA70D28AD4F1E962A8ADF, 57283886886C6B8D1C5CE1D99D9323FFF61CAD1DF2E97ACB21407D3618CA664D ] C:\Windows\System32\udhisapi.dll
20:06:43.0727 0x1094  C:\Windows\System32\udhisapi.dll - ok
20:06:43.0735 0x1094  [ 85155AC913CA65ADE0323DC751AF3391, 90A4617381CC47C7CCDFFC1EC07E8A6CD8DAA732514BB0C4E1F743EA930132FB ] C:\Windows\System32\bitsperf.dll
20:06:43.0735 0x1094  C:\Windows\System32\bitsperf.dll - ok
20:06:43.0744 0x1094  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:06:43.0745 0x1094  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
20:06:43.0753 0x1094  [ B5144616B74F69D850D930A8E78B5DE0, DCD60FA171F837E78A9C35033A23D644DB88E5AFFA7D1516C6AE3BE35FA11DE4 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
20:06:43.0753 0x1094  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
20:06:43.0762 0x1094  [ 980F1A36B970F5AE361C5C2A90C9E972, E312B7F4BE685C95E43486160471B5AA0A1211950D12A82F2850C8EA84D55173 ] C:\Windows\System32\bitsigd.dll
20:06:43.0762 0x1094  C:\Windows\System32\bitsigd.dll - ok
20:06:43.0770 0x1094  [ CA4672B6EE4DE765B3CDBB6673F1AAD6, 62104B712C963C64C7280F73017A3FF0B3ABA7FAFEB4BC3ECA631F61C94FEE4F ] C:\Windows\System32\consent.exe
20:06:43.0770 0x1094  C:\Windows\System32\consent.exe - ok
20:06:43.0779 0x1094  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:06:43.0779 0x1094  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
20:06:43.0787 0x1094  [ 81FB155132AE12BA18119D5B36A85476, B135C87752B20C98CD5D4B9BE47316F785EC41FD5E391D8609F06EDA29B05BBF ] C:\Windows\System32\msvcr110_clr0400.dll
20:06:43.0787 0x1094  C:\Windows\System32\msvcr110_clr0400.dll - ok
20:06:43.0796 0x1094  [ 650BE2F69E0BB10A436232C8146F77C2, 1924AF8EE78616D1F08868249DFE80A5D09F3A367FB6329C3FAD8FF9F8671F72 ] C:\Program Files\TOSHIBA\Power Saver\TOddPwr.dll
20:06:43.0796 0x1094  C:\Program Files\TOSHIBA\Power Saver\TOddPwr.dll - ok
20:06:43.0804 0x1094  [ F40A14E3420063EED2B715491BC17B46, 193D9F3909CD82191F86C8170984A46F9F8BB477A64AE9A4A90CED27DFBCEDE4 ] C:\Program Files\TOSHIBA\Power Saver\TPwrSrv.dll
20:06:43.0804 0x1094  C:\Program Files\TOSHIBA\Power Saver\TPwrSrv.dll - ok
20:06:43.0813 0x1094  [ 554BD984C71129A8BD4450BE8170695C, 26EBCB3537BB1644BD008F40794CAFD72C0590706AD9DEB53F4C050B0614095D ] C:\Windows\System32\msftedit.dll
20:06:43.0813 0x1094  C:\Windows\System32\msftedit.dll - ok
20:06:43.0821 0x1094  [ C583E2A7C0E231DBD1D15BF5DFC8D303, 9F8F63C4FC00FA007DDA9516EDF73F10DC41EF85D4A59842E996308C49328E13 ] C:\Program Files\Windows Defender\MpRtMon.dll
20:06:43.0822 0x1094  C:\Program Files\Windows Defender\MpRtMon.dll - ok
20:06:43.0831 0x1094  [ E306CF3216AE0897E8D7DFFD31032E71, 468441AB1E6DA500711A2372ADF8C8FA315DF938FFCEC4E6DDB9C46F3A62FC91 ] C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll
20:06:43.0831 0x1094  C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll - ok
20:06:43.0840 0x1094  [ F79801AC3A89053A72BFEED4E02AEF35, A8F5AFBCB2DC8B39925BEF3435DB1DEC813F97BB05FF4916EAA900D285F6EA9B ] C:\Program Files\TOSHIBA\Power Saver\T1394Pwr.dll
20:06:43.0841 0x1094  C:\Program Files\TOSHIBA\Power Saver\T1394Pwr.dll - ok
20:06:43.0848 0x1094  [ 93812FDC01AA864195816CD814445F95, E5CB2576DA2905177AFD342DBE63E17CF626F93F430DEBC55155C18C60166BEE ] C:\Program Files\Microsoft Security Client\sqmapi.dll
20:06:43.0848 0x1094  C:\Program Files\Microsoft Security Client\sqmapi.dll - ok
20:06:43.0857 0x1094  [ BD8067B0B1AC192481C58C965F3AC42B, E095E1F6E671EA1CD2A25DFC991BF6F7F5C3AF51C1E7E7472F22A2C882D1CCB2 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnESC.dll
20:06:43.0857 0x1094  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnESC.dll - ok
20:06:43.0865 0x1094  [ 8814221FE5EE23538435EE927DBB1C79, 0C0A8FE3A1D4823455D48CC91A241678D9EE7AAC830E342F105FD050532EAE3E ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF1.dll
20:06:43.0865 0x1094  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF1.dll - ok
20:06:43.0874 0x1094  [ 37B61DEC859FAF1E46DF48F00D7D3895, C0BB5831FC26D01FCD3B59CE240D01E46DBD0D261C10ACDE139C94EFC9DD0B73 ] C:\Program Files\TOSHIBA\Power Saver\TSDPwr.dll
20:06:43.0874 0x1094  C:\Program Files\TOSHIBA\Power Saver\TSDPwr.dll - ok
20:06:43.0883 0x1094  [ 143E977B1118A4CB595CF07BD151063A, EBA69729A53FC5B7343D6A3960405EB905D1B4C9633E5F860130FDF043B9C450 ] C:\Program Files\TOSHIBA\Power Saver\TFunc2.dll
20:06:43.0883 0x1094  C:\Program Files\TOSHIBA\Power Saver\TFunc2.dll - ok
20:06:43.0891 0x1094  [ D8275A5B3D3DF48C1EB629627A25EE91, 5BD813AB38E0C6A265565BA6BF152B7B1584D3EAB4198B69974A8417A171C5A3 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF3.dll
20:06:43.0892 0x1094  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF3.dll - ok
20:06:43.0900 0x1094  [ 8A33307D6F3F1B4753186827566589CF, 2B2D16B2DE2746C3B564E624EA6A9CBB5DA78D1FF8EA373A1C3B0994E40280A3 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF4.dll
20:06:43.0900 0x1094  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF4.dll - ok
20:06:43.0909 0x1094  [ B207F2986191CE267C6234B7AAD8F1F2, 920824F42B129AA1116B1FBD6E0D38199E9F38A1FFB3D2F55E7C897B4AFDD9DF ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF5.dll
20:06:43.0909 0x1094  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF5.dll - ok
20:06:43.0917 0x1094  [ 006A9D0AE707F6368F54EBAF5F132816, C021478D996A4466F25B83DC84E9C779DA81C317A23E01DA8E1DCA4F45A652F9 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF67.dll
20:06:43.0917 0x1094  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF67.dll - ok
20:06:43.0926 0x1094  [ 0D7F29A0B11F91F97D4FB0FEDA2A23FD, 7268731185A48C0488B1E6A6A56C96ECF264AB5EE8F6E0A9D6FB5AD9F60FEFF9 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF8Dll.dll
20:06:43.0926 0x1094  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF8Dll.dll - ok
20:06:43.0934 0x1094  [ 3BF0A52CA442CDBD1C1345BD328A61A9, 8F420F9621498F8CB139CBABF5B615A368274A44D940C271EAC3D5B923F09626 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF9.dll
20:06:43.0934 0x1094  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF9.dll - ok
20:06:43.0943 0x1094  [ C8E5975C1EC98961829CD03D615D2FE4, 8F1E1BDC3C0CB761BD2D5A4B5068C5B86C91D331E34766407681B75829DF641E ] C:\Program Files (x86)\Google\Update\1.3.24.15\goopdateres_en.dll
20:06:43.0944 0x1094  C:\Program Files (x86)\Google\Update\1.3.24.15\goopdateres_en.dll - ok
20:06:43.0952 0x1094  [ 08B39D5E699BEF6FBADEAE348355E278, 92AF340A06860C9033B8DC277B18D22CE470DA840BBF265BFC17934BEA3AA35B ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnSpace.dll
20:06:43.0952 0x1094  C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnSpace.dll - ok
20:06:43.0960 0x1094  [ 0A1925369BEB6F3AEE1EACD7397901ED, 1AC3FAF44F0F08EF6C5D63B73040F5DD02ED3475A4E68998875E0AE14477DAC6 ] C:\Program Files\TOSHIBA\Toshiba Assist\NotifyX.dll
20:06:43.0960 0x1094  C:\Program Files\TOSHIBA\Toshiba Assist\NotifyX.dll - ok
20:06:43.0966 0x1094  [ 5ACF6DDD566ED1078DD7712C6FAACEF1, 84FFB135B9A7DBFE9F4E5D84D90C195691329E47688EBDF5017016F9EFBBDB6B ] C:\Program Files (x86)\Toshiba\PCDiag\NotifyPCD.dll
20:06:43.0966 0x1094  C:\Program Files (x86)\Toshiba\PCDiag\NotifyPCD.dll - ok
20:06:43.0975 0x1094  [ 306F38CC25AA3B16C17CF9A238FD7CAD, B4D78B93A94E12C3ED3EB5F47DF22C9EAAD120D1CC4C52A418A7895C796B244A ] C:\Program Files (x86)\Toshiba\ConfigFree\notify\NotifyCFF64.dll
20:06:43.0975 0x1094  C:\Program Files (x86)\Toshiba\ConfigFree\notify\NotifyCFF64.dll - ok
20:06:43.0984 0x1094  [ 734A129D9DC2A7C47FF4E2A7B3868DF5, 4ED6FA9B59E728EFB19BD5FD2AF686B4E515C20BF8B73152D6141FA09D687F14 ] C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\NotifyBT64.dll
20:06:43.0984 0x1094  C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\NotifyBT64.dll - ok
20:06:43.0993 0x1094  [ A41D6AFF8AFD743507887FD7747B35D3, 8CE0B28E4D71723BA021C950B4AEEB7227B7CD89D6597594CDC826336FD051B2 ] C:\Windows\System32\mobsync.exe
20:06:43.0993 0x1094  C:\Windows\System32\mobsync.exe - ok
20:06:44.0001 0x1094  [ 4773A6F221AD2A84D98135E39253DB8F, F90C99D616C46A522882D12AAEA9155BAF3401DF8743A2F65E3EBA90D8B27ACB ] C:\Program Files\TOSHIBA\SmoothView\NotifyTZU.dll
20:06:44.0001 0x1094  C:\Program Files\TOSHIBA\SmoothView\NotifyTZU.dll - ok
20:06:44.0009 0x1094  [ A269735AA396136565544F5215781E03, 892B86ADA34E9D63F665A56E8165BE64A6D14859DC8B53DFA84C999E48FEE249 ] C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll
20:06:44.0010 0x1094  C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll - ok
20:06:44.0018 0x1094  [ 1D0213B31F21C9FDE972972A673D3FA5, F05BF306D0620419A8CD6DC1A1437A4B79B7B9C2425EFD52B9897E3959546C9D ] C:\Program Files\TOSHIBA\Utilities\NotifyX.dll
20:06:44.0018 0x1094  C:\Program Files\TOSHIBA\Utilities\NotifyX.dll - ok
20:06:44.0026 0x1094  [ AAEB89CE906A9206F05AB08324339513, B89B03C7EA20C5A23D9D26B5E0688FDBF28B0BA92CB6781615B04202D98799DF ] C:\Program Files\TOSHIBA\TBS\NotifyTBS.dll
20:06:44.0027 0x1094  C:\Program Files\TOSHIBA\TBS\NotifyTBS.dll - ok
20:06:44.0035 0x1094  [ 4C6F67152929F0EDB9AA577B6CE6C0CC, E2DBB3DC021E85D614A5EAF0E92CE7EDF1D01543F9D825B22C8E1316B00F9F22 ] C:\Windows\System32\WSDPrPxy.dll
20:06:44.0035 0x1094  C:\Windows\System32\WSDPrPxy.dll - ok
20:06:44.0043 0x1094  [ DE5F5212AB34221DD1618B5FEFE8DB6C, D07CBEE66F7A42EBE68212A01BDCC32EDF1810841F1BD77AE7950B1AD6DAB5DB ] C:\Windows\System32\drivers\WSDPrint.sys
20:06:44.0043 0x1094  C:\Windows\System32\drivers\WSDPrint.sys - ok
20:06:44.0051 0x1094  [ 8D9EC160D6DF71D8AFEBA0298AC3BF3D, E0235D55862F4724CC78B0C9A872D326D26D248E21229EFCE908C12AC059AB04 ] C:\Program Files\Windows Media Player\wmpsyncmgr.dll
20:06:44.0051 0x1094  C:\Program Files\Windows Media Player\wmpsyncmgr.dll - ok
20:06:44.0060 0x1094  [ 1FAF6926F3416D3DA05C5B265491BDAE, 3989E18522691CC3820092033E00ED39D08861DFB369AA0DFFF4B379E48EA1F0 ] C:\Windows\System32\msdtckrm.dll
20:06:44.0060 0x1094  C:\Windows\System32\msdtckrm.dll - ok
20:06:44.0069 0x1094  [ ADE2BCD1FDE5C9669FCE1F4541AB46DD, 1C12491CDC2C91BC24F560CFCA82A1459F6FC96D13C92A68CB9D67213F5AA779 ] C:\Windows\System32\spool\drivers\x64\3\UNIDRV.DLL
20:06:44.0069 0x1094  C:\Windows\System32\spool\drivers\x64\3\UNIDRV.DLL - ok
20:06:44.0078 0x1094  [ 5AC3CB53406CB9AABB25D46B3385528F, D5213E1C8CBD9E82922CE7F0E49611119EC6C2C1A0DC3F5912199AF5F39830C0 ] C:\Windows\System32\spool\drivers\x64\3\UNIDRVUI.DLL
20:06:44.0078 0x1094  C:\Windows\System32\spool\drivers\x64\3\UNIDRVUI.DLL - ok
20:06:44.0086 0x1094  [ CC1959AB3929997F4198AA69C854086F, B60D0CB690E8490152691DFBC5E2321FB1CA4CBCE343F42C141BEEF9D76D531F ] C:\Windows\SysWOW64\regsvr32.exe
20:06:44.0086 0x1094  C:\Windows\SysWOW64\regsvr32.exe - ok
20:06:44.0095 0x1094  [ 443DBE49F503BAB045306E2BBF623826, 16DA43A476070F5A64D90C2C57EC8C3EE339E5CEC9F9C10B01905E087B80B80A ] C:\Windows\System32\spool\drivers\x64\3\hpvplui06.dll
20:06:44.0095 0x1094  C:\Windows\System32\spool\drivers\x64\3\hpvplui06.dll - ok
20:06:44.0103 0x1094  [ FD647CA82ACF232DBE5F20345647B948, 36F447FDE39388588CAF5E533AB39E9685D31F79632BF044AC29877550C70AB6 ] C:\Windows\AppPatch\AcGenral.dll
20:06:44.0103 0x1094  C:\Windows\AppPatch\AcGenral.dll - ok
20:06:44.0111 0x1094  [ A7D0A2B7E8F398853C0057F7C0A5D9A9, D02B9CF64693C1A6793DFD9BB070CB32A31ABED943574AA05089C3D976221F7E ] C:\Users\Mitch\AppData\Local\Upmedia\SpaLicExtReg.dll
20:06:44.0112 0x1094  C:\Users\Mitch\AppData\Local\Upmedia\SpaLicExtReg.dll - ok
20:06:44.0119 0x1094  [ 601FCEB3AB6B81F48CCF1E22FFA5E6D4, 7E42FD36591D91D8FCE0984CE37A4DE8FAA187F62DF649641FE7183AD391DD03 ] C:\Windows\SysWOW64\mshtml.dll
20:06:44.0119 0x1094  C:\Windows\SysWOW64\mshtml.dll - ok
20:06:44.0128 0x1094  [ 468B4C4E57F4F371F13990F0F3B010C4, 0E375BDEA576B6C33C4118F92D9A61910B8D6E9AAEA4E4A8E867E55A08FF26B5 ] C:\Windows\System32\mspatcha.dll
20:06:44.0128 0x1094  C:\Windows\System32\mspatcha.dll - ok
20:06:44.0136 0x1094  [ AB1AA76879BFD6B1A14EAB9DD168C27D, 317AC7266B840A42BB76F1AD5837C0130A5AB8A8E5CACE21685A288ACC6BCBEE ] C:\Program Files\Internet Explorer\iexplore.exe
20:06:44.0136 0x1094  C:\Program Files\Internet Explorer\iexplore.exe - ok
20:06:44.0146 0x1094  [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A, 7F67FE1E0453CCCFA5097BFC9087BA5F4B213CCA8AC17FC05D7ED02A52112E05 ] C:\Windows\System32\wups2.dll
20:06:44.0147 0x1094  C:\Windows\System32\wups2.dll - ok
20:06:44.0159 0x1094  [ EBFA7A306C65010DED108F5A26598642, D6378590AF3B052AA4B89C2D3ACECAD4CA0A36E455F164570754E24C5434E066 ] C:\Windows\System32\wscisvif.dll
20:06:44.0159 0x1094  C:\Windows\System32\wscisvif.dll - ok
20:06:44.0167 0x1094  [ 52A4F6983D85E74275DA0573FCD36094, 7ACC5870396BE1E8FBAB3864C0D39D3B60368A45DC9EDB49A6DA3ABB71089955 ] C:\Windows\System32\wscproxystub.dll
20:06:44.0167 0x1094  C:\Windows\System32\wscproxystub.dll - ok
20:06:44.0171 0x1094  ================ Scan generic autorun ======================
20:06:44.0448 0x1094  [ 5704BC41D5DCF51E1C96CDDF68786529, 52610F65734C2102D7CFD9BA5CFA348E4FB5CA027FFD443129E8B311C5791F6E ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
20:06:44.0533 0x1094  SynTPEnh - ok
20:06:44.0537 0x1094  TPwrMain - ok
20:06:44.0543 0x1094  HSON - ok
20:06:44.0549 0x1094  SmoothView - ok
20:06:44.0553 0x1094  00TCrdMain - ok
20:06:44.0557 0x1094  Windows Defender - ok
20:06:44.0758 0x1094  [ 569AC1376B12D4083FC66CC7A304F234, DD209F09573F10A77D710E30EF3D0461D2E8F4E5F18106B18EFB587C88393460 ] c:\Program Files\Microsoft Security Client\msseces.exe
20:06:44.0884 0x1094  MSC - ok
20:06:44.0902 0x1094  NDSTray.exe - ok
20:06:44.0910 0x1094  cfFncEnabler.exe - ok
20:06:44.0967 0x1094  [ 9B271EAD0AE5907EABC3A7BE072C323E, 3F3E36A78E694B81ECF6C5A8CA37D5832AFB6E84627A5D8952D26FCC2B9216B4 ] C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\PCMAgent.exe
20:06:44.0979 0x1094  PCMAgent - detected UnsignedFile.Multi.Generic ( 1 )
20:06:47.0662 0x1094  Detect skipped due to KSN trusted
20:06:47.0662 0x1094  PCMAgent - ok
20:06:47.0836 0x1094  [ 166D74046CE5D2B0696A335B8A8633E1, 271EE83A34E158A34960E081E7458D76D9107F41DB0F4126FCDB04C0206DB37C ] C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe
20:06:47.0905 0x1094  CLMLServer - detected UnsignedFile.Multi.Generic ( 1 )
20:06:50.0468 0x1094  Detect skipped due to KSN trusted
20:06:50.0468 0x1094  CLMLServer - ok
20:06:50.0599 0x1094  [ 8B9145D229D4E89D15ACB820D4A3A90F, F3831D9AE752B6AFBD3380E0BC849E4B051D6E06A88C1F61293A6DE4F66794E1 ] C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe
20:06:50.0645 0x1094  Adobe Reader Speed Launcher - ok
20:06:50.0860 0x1094  [ E1E71D80D078C576801B6FE2A29FCF85, 7A8911FF626E5EEC01D7C1922F8AD6901EFC75952ADB3FAF606506C7DB4BC54A ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
20:06:50.0892 0x1094  StartCCC - detected UnsignedFile.Multi.Generic ( 1 )
20:06:53.0452 0x1094  Detect skipped due to KSN trusted
20:06:53.0452 0x1094  StartCCC - ok
20:06:53.0594 0x1094  [ B1DB5EDB658F3FF4F13AC069CE622893, D4AC66DD9CF9EE4770AA34936EE28844D2BE39968727E8A9CAAB9E9A09387CC6 ] C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
20:06:53.0687 0x1094  Camera Assistant Software - detected UnsignedFile.Multi.Generic ( 1 )
20:06:58.0053 0x1094  Detect skipped due to KSN trusted
20:06:58.0053 0x1094  Camera Assistant Software - ok
20:06:58.0136 0x1094  [ F7DD2D785280DB73DC9060F80361BEFB, 7AF1114FFA46290DC77CC5D562034287A0E617BD4747F58E65CDF70244C402CB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
20:06:58.0149 0x1094  APSDaemon - ok
20:06:58.0205 0x1094  [ AF43C4F7F3C8BC95DAD95024F96CDC4A, 6348F6D8F301C5F7290B963D6923E389414ADFBCF6AED562A32245BCADC05580 ] C:\Program Files (x86)\QuickTime\QTTask.exe
20:06:58.0257 0x1094  QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
20:07:01.0022 0x1094  Detect skipped due to KSN trusted
20:07:01.0022 0x1094  QuickTime Task - ok
20:07:01.0152 0x1094  [ 2EBE05FD8ECBA5F230FC26E534E91A11, B8E85D51BD4E6C0D4D447DFA327EAA0AE4A33F04F42063A58122153933C1770E ] C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
20:07:01.0257 0x1094  ConnectionCenter - ok
20:07:01.0321 0x1094  [ 17D9622BFE68386E8C647C4C7F8FEA3E, 50F943F2E47512DCE61A9EBB188361CB71CACC74D9397FA1367AB7112F2C7A09 ] C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
20:07:01.0367 0x1094  Redirector - ok
20:07:01.0594 0x1094  [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
20:07:01.0792 0x1094  Sidebar - ok
20:07:01.0802 0x1094  WindowsWelcomeCenter - ok
20:07:01.0888 0x1094  [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
20:07:02.0041 0x1094  Sidebar - ok
20:07:02.0049 0x1094  WindowsWelcomeCenter - ok
20:07:02.0057 0x1094  WindowsWelcomeCenter - ok
20:07:02.0165 0x1094  [ A2BD20AAC8D10C9D21EBAB5D5A8F73C6, E0492DCD12C810294335F3B4B78A42D9BC4A8AF48442D19BF790E93BC1F4BADB ] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
20:07:02.0206 0x1094  TOSCDSPD - detected UnsignedFile.Multi.Generic ( 1 )
20:07:04.0746 0x1094  Detect skipped due to KSN trusted
20:07:04.0746 0x1094  TOSCDSPD - ok
20:07:05.0000 0x1094  [ E0DD774689998F43167C4799F9B69FC3, 1353CA6DF088D232F3FE1C93F08A6AC9BCEEBB1CF22A39A3EAB6AD30BB4E0588 ] C:\Users\Mitch\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
20:07:05.0101 0x1094  Spotify Web Helper - ok
20:07:05.0110 0x1094  Upmedia Update - ok
20:07:05.0126 0x1094  WindowsWelcomeCenter - ok
20:07:05.0208 0x1094  [ A2BD20AAC8D10C9D21EBAB5D5A8F73C6, E0492DCD12C810294335F3B4B78A42D9BC4A8AF48442D19BF790E93BC1F4BADB ] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
20:07:05.0241 0x1094  TOSCDSPD - detected UnsignedFile.Multi.Generic ( 1 )
20:07:05.0241 0x1094  Detect skipped due to KSN trusted
20:07:05.0241 0x1094  TOSCDSPD - ok
20:07:05.0310 0x1094  [ 5D61BE7DB55B026A5D61A3EED09D0EAD, D32CC7B31A6F98C60ABC313ABC7D1143681F72DE2BB2604711A0BA20710CAAAE ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
20:07:05.0338 0x1094  swg - ok
20:07:05.0445 0x1094  FlashPlayerUpdate - ok
20:07:05.0449 0x1094  Waiting for KSN requests completion. In queue: 6
20:07:06.0449 0x1094  Waiting for KSN requests completion. In queue: 6
20:07:07.0449 0x1094  Waiting for KSN requests completion. In queue: 2
20:07:08.0481 0x1094  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.5.216.0 ), 0x61000 ( enabled : updated )
20:07:08.0499 0x1094  Win FW state via NFP2: enabled
20:07:11.0052 0x1094  ============================================================
20:07:11.0053 0x1094  Scan finished
20:07:11.0053 0x1094  ============================================================
20:07:11.0091 0x1110  Detected object count: 1
20:07:11.0091 0x1110  Actual detected object count: 1
20:07:31.0489 0x1110  \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
20:07:31.0489 0x1110  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip



#7 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:46 PM

Posted 05 September 2014 - 05:29 AM

Start TDSSKiller.exe again with administrator privileges.
  • Set the parameters like in the first scan and click on Start scan.
  • This time select for the threat TDSS File System (and only for that) the option Cure (or Delete).
  • Click on Continue and allow the reboot.
  • Copy and paste the log file (C:\TDSSKiller.<version_date_time>_log.txt) of this run in your next reply.


#8 boingo2000

boingo2000
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Location:Phoenix, AZ
  • Local time:03:46 AM

Posted 06 September 2014 - 12:20 AM

22:10:32.0888 0x0cf0  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
22:10:33.0746 0x0cf0  ============================================================
22:10:33.0746 0x0cf0  Current date / time: 2014/09/05 22:10:33.0746
22:10:33.0746 0x0cf0  SystemInfo:
22:10:33.0746 0x0cf0  
22:10:33.0746 0x0cf0  OS Version: 6.0.6002 ServicePack: 2.0
22:10:33.0746 0x0cf0  Product type: Workstation
22:10:33.0746 0x0cf0  ComputerName: MITCH-LAPTOP
22:10:33.0746 0x0cf0  UserName: Mitch
22:10:33.0746 0x0cf0  Windows directory: C:\Windows
22:10:33.0746 0x0cf0  System windows directory: C:\Windows
22:10:33.0746 0x0cf0  Running under WOW64
22:10:33.0746 0x0cf0  Processor architecture: Intel x64
22:10:33.0746 0x0cf0  Number of processors: 2
22:10:33.0746 0x0cf0  Page size: 0x1000
22:10:33.0746 0x0cf0  Boot type: Normal boot
22:10:33.0746 0x0cf0  ============================================================
22:10:33.0746 0x0cf0  BG loaded
22:10:35.0556 0x0cf0  System UUID: {76A6E079-D737-7AC6-9147-16F54915F30C}
22:10:38.0210 0x0cf0  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:10:38.0218 0x0cf0  ============================================================
22:10:38.0218 0x0cf0  \Device\Harddisk0\DR0:
22:10:38.0218 0x0cf0  MBR partitions:
22:10:38.0218 0x0cf0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x25140000
22:10:38.0218 0x0cf0  ============================================================
22:10:38.0290 0x0cf0  C: <-> \Device\Harddisk0\DR0\Partition1
22:10:38.0291 0x0cf0  ============================================================
22:10:38.0291 0x0cf0  Initialize success
22:10:38.0291 0x0cf0  ============================================================
22:11:16.0411 0x0a1c  ============================================================
22:11:16.0411 0x0a1c  Scan started
22:11:16.0411 0x0a1c  Mode: Manual; SigCheck; TDLFS;
22:11:16.0411 0x0a1c  ============================================================
22:11:16.0411 0x0a1c  KSN ping started
22:11:19.0359 0x0a1c  KSN ping finished: true
22:11:31.0022 0x0a1c  ================ Scan system memory ========================
22:11:31.0022 0x0a1c  System memory - ok
22:11:31.0022 0x0a1c  ================ Scan services =============================
22:11:31.0622 0x0a1c  [ 1965AAFFAB07E3FB03C77F81BEBA3547, 351A1EBB1B95C8E03ED125C8F997DEE810B4DF36AD290E7685FC01963B522BFC ] ACPI            C:\Windows\system32\drivers\acpi.sys
22:11:31.0877 0x0a1c  ACPI - ok
22:11:32.0152 0x0a1c  [ 9E5197D65BA34A4DB45B8BEFC3288C23, EBBE6126B6B73616032F8E1731642E35C6CB6B395EF74BCCB781CAE076EE8434 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:11:32.0497 0x0a1c  AdobeFlashPlayerUpdateSvc - ok
22:11:32.0677 0x0a1c  [ F14215E37CF124104575073F782111D2, 7F624F7F0FE9909C07AB2E4C74727686FDA9DF33778A9CBBE35027D6579E4F71 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
22:11:32.0827 0x0a1c  adp94xx - ok
22:11:32.0937 0x0a1c  [ 7D05A75E3066861A6610F7EE04FF085C, 406F2CE539C306BA60C233FBCDB029153588F0499BBE91E66FC915E5C5D7D2A5 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
22:11:32.0972 0x0a1c  adpahci - ok
22:11:33.0012 0x0a1c  [ 820A201FE08A0C345B3BEDBC30E1A77C, 3170B308724CAA0AD50B74D045C837C48BD6A3A11ABA222670BEA82192A861BF ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
22:11:33.0032 0x0a1c  adpu160m - ok
22:11:33.0142 0x0a1c  [ 9B4AB6854559DC168FBB4C24FC52E794, 83CD75DE0A16AE66586837565ECA8B98BA9309519139C4C2032474B8DDF5A1AD ] adpu320         C:\Windows\system32\drivers\adpu320.sys
22:11:33.0167 0x0a1c  adpu320 - ok
22:11:33.0222 0x0a1c  [ 0F421175574BFE0BF2F4D8E910A253BB, CEABE3A4F546EB6ACA079931AB532DC88FF757DEEF6F434991802220328A9CD6 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:11:49.0982 0x0a1c  AeLookupSvc - ok
22:11:50.0222 0x0a1c  [ E58A17E945593544C707423F9772EEA0, FC17AFF979354EB89DCA307BF07C52B84629AF540D4C6A32DD537695CA654205 ] AFD             C:\Windows\system32\drivers\afd.sys
22:11:50.0432 0x0a1c  AFD - ok
22:11:50.0527 0x0a1c  [ F6F6793B7F17B550ECFDBD3B229173F7, 7EB12A9372B7966440E39F1B567A43C21231D67DDFAA9C1DECC7E68627F82346 ] agp440          C:\Windows\system32\drivers\agp440.sys
22:11:50.0567 0x0a1c  agp440 - ok
22:11:50.0627 0x0a1c  [ 222CB641B4B8A1D1126F8033F9FD6A00, 8C7FD4BF87DC00893B99E64344C0E6A3F321DAD9BE60A99763629260E7C6312C ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
22:11:50.0672 0x0a1c  aic78xx - ok
22:11:50.0747 0x0a1c  [ 5922F4F59B7868F3D74BBBBEB7B825A3, 71504BC8B596F540BF059059670BC0C138D8759C1DD9F99F1EC368FD5C53F573 ] ALG             C:\Windows\System32\alg.exe
22:11:52.0197 0x0a1c  ALG - ok
22:11:52.0232 0x0a1c  [ 157D0898D4B73F075CE9FA26B482DF98, 84C3E163D7393FD306842F155C88A50B7D8AE88B59586F9014DB76B749CC33D5 ] aliide          C:\Windows\system32\drivers\aliide.sys
22:11:52.0272 0x0a1c  aliide - ok
22:11:52.0297 0x0a1c  [ 970FA5059E61E30D25307B99903E991E, CFB241803A63EA3469B2596462A42DDCA813B3ACF96E56BB34F5979BB34DDC32 ] amdide          C:\Windows\system32\drivers\amdide.sys
22:11:52.0332 0x0a1c  amdide - ok
22:11:52.0417 0x0a1c  [ CDC3632A3A5EA4DBB83E46076A3165A1, 40BE3451A3F29CD3352360FF72165C54237E44D01006390805D493B0D06F51DB ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
22:11:54.0113 0x0a1c  AmdK8 - ok
22:11:54.0311 0x0a1c  [ 7C8ECAAD76EA1D076A450C8303D9BD98, 90904B2BE380A51BDCEDADA530214CE5321C06456E10F5985B40E3282902BEF6 ] Appinfo         C:\Windows\System32\appinfo.dll
22:11:54.0506 0x0a1c  Appinfo - ok
22:11:54.0588 0x0a1c  [ BA8417D4765F3988FF921F30F630E303, 876A8F34E578020DD9EDD64F7F77A0A3B4592EC568830B500D7EA844D3159C72 ] arc             C:\Windows\system32\drivers\arc.sys
22:11:54.0608 0x0a1c  arc - ok
22:11:54.0639 0x0a1c  [ 9D41C435619733B34CC16A511E644B11, DEFFBBB5ECE33B7DF949DF979188AF3B6674E7580FC069397AB756EA84E24822 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
22:11:54.0658 0x0a1c  arcsas - ok
22:11:55.0115 0x0a1c  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:11:55.0227 0x0a1c  aspnet_state - ok
22:11:55.0285 0x0a1c  [ 22D13FF3DAFEC2A80634752B1EAA2DE6, 503F7E5F1B14D3F7AEAB0982E812B19DABE38FD4104D93922F50F0B2D19BECFB ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:11:55.0493 0x0a1c  AsyncMac - ok
22:11:55.0545 0x0a1c  [ E68D9B3A3905619732F7FE039466A623, 74C0B29E54EF064660B9C756E03D5A7EB78F261EFF768EB6E74D261FBD34340D ] atapi           C:\Windows\system32\drivers\atapi.sys
22:11:55.0561 0x0a1c  atapi - ok
22:11:55.0840 0x0a1c  [ 45511C7E870D3ADDDD60049232EA96B3, 02982BE10E4882E140345BEBE3E60A6FF139B936740F98AA1E72696856F62491 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
22:11:56.0213 0x0a1c  athr - ok
22:11:56.0354 0x0a1c  [ 2F0C8FD04FCB78617D48484523C77117, 531E8991FF02E1D301C1002FDFAAE4958702C9411C405C8BD9BE659FF09FD79D ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
22:11:56.0532 0x0a1c  Ati External Event Utility - ok
22:11:57.0037 0x0a1c  [ F59742A4507960B9013365C74DC25C48, 6D46F7B7DD973BE478631CED7C28DF7FEA494466477DDA9F1A9CE44DB98986D2 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
22:11:59.0531 0x0a1c  atikmdag - ok
22:11:59.0907 0x0a1c  [ 69EEBB256503CDED9BD0E9E43128C626, D4A35FD4CC42058AEDD007B7BEC1A374BCBAAD74B7C759115D116A26B2D918BA ] AtiPcie         C:\Windows\system32\DRIVERS\AtiPcie.sys
22:11:59.0949 0x0a1c  AtiPcie - ok
22:12:00.0236 0x0a1c  [ 79318C744693EC983D20E9337A2F8196, 94226786EF8A101C2E805C6BA3C1CF46628BAF1AFCECBC1FAB7A7E7E5E642608 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:12:00.0352 0x0a1c  AudioEndpointBuilder - ok
22:12:00.0502 0x0a1c  [ 79318C744693EC983D20E9337A2F8196, 94226786EF8A101C2E805C6BA3C1CF46628BAF1AFCECBC1FAB7A7E7E5E642608 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
22:12:01.0581 0x0a1c  AudioSrv - ok
22:12:01.0777 0x0a1c  [ FFB96C2589FFA60473EAD78B39FBDE29, 6A2792753E2CB580672B3107C0DBB9D26B6DAA14B37D5EC314BD0E304197E03E ] BFE             C:\Windows\System32\bfe.dll
22:12:02.0127 0x0a1c  BFE - ok
22:12:02.0341 0x0a1c  [ 6D316F4859634071CC25C4FD4589AD2C, 73F69AC9E505F3B11A3CCFF8571930229A9058E672CD008A4BF26C0189564EAE ] BITS            C:\Windows\System32\qmgr.dll
22:12:02.0555 0x0a1c  BITS - ok
22:12:02.0685 0x0a1c  [ 79FEEB40056683F8F61398D81DDA65D2, 5EA3016194F71A2A2177C2B5129E82738EC621ACAD269809F4C131B72CFEB6C6 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
22:12:02.0742 0x0a1c  blbdrive - ok
22:12:02.0831 0x0a1c  [ 2348447A80920B2493A9B582A23E81E1, 50F9242B7104607E633ABAF4E0A213C1C1226BF81F7FB4E216A9E878247B868C ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:12:02.0925 0x0a1c  bowser - ok
22:12:03.0057 0x0a1c  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
22:12:03.0090 0x0a1c  BrFiltLo - ok
22:12:03.0143 0x0a1c  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
22:12:03.0232 0x0a1c  BrFiltUp - ok
22:12:03.0464 0x0a1c  [ A1B39DE453433B115B4EA69EE0343816, 61441E7E9D5259A5987DBD3FC8D4E3221A57F42C7CC0F94DB48E80EEF96CA5D4 ] Browser         C:\Windows\System32\browser.dll
22:12:03.0819 0x0a1c  Browser - ok
22:12:03.0860 0x0a1c  [ F0F0BA4D815BE446AA6A4583CA3BCA9B, E0A5DB5A0C7D6AF93ED45F34D2597F77982DFF41E4FDAC827FE5D80323ADED60 ] Brserid         C:\Windows\system32\drivers\brserid.sys
22:12:05.0397 0x0a1c  Brserid - ok
22:12:05.0427 0x0a1c  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
22:12:05.0548 0x0a1c  BrSerWdm - ok
22:12:05.0821 0x0a1c  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
22:12:06.0469 0x0a1c  BrUsbMdm - ok
22:12:06.0501 0x0a1c  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
22:12:07.0056 0x0a1c  BrUsbSer - ok
22:12:07.0197 0x0a1c  [ E0777B34E05F8A82A21856EFC900C29F, A7ACE3C65D1773C50ACD98A13B3ADBDD2A6052D7F5D124CB6EE6E7C22151A424 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
22:12:07.0310 0x0a1c  BTHMODEM - ok
22:12:07.0400 0x0a1c  [ B4D787DB8D30793A4D4DF9FEED18F136, 2A956F7DCFE61E556F30BDA6D45592A05533541D6ED321C251C1C05F6CEA6DDC ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:12:07.0458 0x0a1c  cdfs - ok
22:12:07.0536 0x0a1c  [ C025AA69BE3D0D25C7A2E746EF6F94FC, F4754B23CC256ADF92FDD42A9BA80F1ACB74834A58FCBEA2C52650FAFC7F9483 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
22:12:07.0638 0x0a1c  cdrom - ok
22:12:07.0771 0x0a1c  [ 5A268127633C7EE2A7FB87F39D748D56, 45C530A0EE0108543A75B9427F77EBB5E8350AE16C235763B6F32E72CE15C449 ] CertPropSvc     C:\Windows\System32\certprop.dll
22:12:07.0843 0x0a1c  CertPropSvc - ok
22:12:07.0882 0x0a1c  [ 02EA568D498BBDD4BA55BF3FCE34D456, 5A418B156CBB48D14E0F6B6AE6E03B8CD97AABE838F260757014479566C63F17 ] circlass        C:\Windows\system32\drivers\circlass.sys
22:12:08.0027 0x0a1c  circlass - ok
22:12:08.0117 0x0a1c  [ 3DCA9A18B204939CFB24BEA53E31EB48, 73CEDE020A6C8269EE8847A4E43071FD231179DA9430DE2983263B8345AD92B7 ] CLFS            C:\Windows\system32\CLFS.sys
22:12:08.0206 0x0a1c  CLFS - ok
22:12:08.0352 0x0a1c  [ 6B6943A0CA56B47D6FB2EE476890854F, 6DA779879487F4A187DF54B0362642643D7871AA8F7E30992D781F558C50F052 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:12:08.0373 0x0a1c  clr_optimization_v2.0.50727_32 - ok
22:12:08.0539 0x0a1c  [ 753049933D5326D835F4FCACDF4AD5E3, 715BEE09C19BCBCAD2A93E4725DB3A1FDD8E2FEFFF6E0C3D2F98FC607FED5D3A ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:12:08.0576 0x0a1c  clr_optimization_v2.0.50727_64 - ok
22:12:08.0742 0x0a1c  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:12:08.0955 0x0a1c  clr_optimization_v4.0.30319_32 - ok
22:12:09.0021 0x0a1c  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:12:09.0237 0x0a1c  clr_optimization_v4.0.30319_64 - ok
22:12:09.0380 0x0a1c  [ B52D9A14CE4101577900A364BA86F3DF, A8AA928DDF5FE3861973D4EA03A5B700E99138236F1E8FF594293B9705BF470C ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
22:12:09.0592 0x0a1c  CmBatt - ok
22:12:09.0669 0x0a1c  [ E5D5499A1C50A54B5161296B6AFE6192, 20A8A0478918063A9EE81565F21F4ACCAA7B6A8B2E9E084099879D85574BAB3E ] cmdide          C:\Windows\system32\drivers\cmdide.sys
22:12:09.0697 0x0a1c  cmdide - ok
22:12:09.0804 0x0a1c  [ 5A220D86C6E0DD92EA0EA157ED3CA267, E2BE521E361587CE049F188FCAB7D0B29897DD6A8DE2E91AB03DA2FD271092CF ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
22:12:09.0881 0x0a1c  CnxtHdAudService - ok
22:12:09.0944 0x0a1c  [ 7FB8AD01DB0EABE60C8A861531A8F431, E19353C686B07A0DBBA92CFCC88AB9B6BEBAF389416B78F4470BA673E7CD73C3 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
22:12:09.0963 0x0a1c  Compbatt - ok
22:12:09.0974 0x0a1c  COMSysApp - ok
22:12:10.0464 0x0a1c  [ 5AC8A997E8D9C131B5F90B4F3CCFAE34, D2FFC4F12299D9500390345A707F3FE844CBBE13163D004665FCD82B6C3B6FC6 ] ConfigFree Gadget Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe
22:12:10.0659 0x0a1c  ConfigFree Gadget Service - detected UnsignedFile.Multi.Generic ( 1 )
22:12:13.0409 0x0a1c  Detect skipped due to KSN trusted
22:12:13.0409 0x0a1c  ConfigFree Gadget Service - ok
22:12:13.0452 0x0a1c  [ D10D01B2DFCD8D2F32A32ED29E8DA1C2, D5F89AFF51D690494A70F0E17CB5609DB81F7C9BACD2952D411C7959E90BEEE3 ] ConfigFree Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
22:12:13.0482 0x0a1c  ConfigFree Service - detected UnsignedFile.Multi.Generic ( 1 )
22:12:14.0664 0x1250  Object required for P2P: [ 9D41C435619733B34CC16A511E644B11 ] arcsas
22:12:16.0294 0x0a1c  Detect skipped due to KSN trusted
22:12:16.0294 0x0a1c  ConfigFree Service - ok
22:12:16.0390 0x0a1c  [ A8585B6412253803CE8EFCBD6D6DC15C, C3906B080D3BB06CB976FD98C62CBA97DAE74970A5559D51EF5111D773949322 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
22:12:16.0426 0x0a1c  crcdisk - ok
22:12:16.0508 0x0a1c  [ 5AAC48EAF8EACF247DB44FB61B900D89, D20FCD5C71CA18F284D3DFD0CED37F6888A296E76B7B0563F2F4668CF90FE752 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:12:16.0603 0x0a1c  CryptSvc - ok
22:12:16.0703 0x0a1c  [ A193FAE9BF40D981C3094252B17DE601, 585E9F48676DA26DBD30398E4D0E33378D25CB726EFA973E48B69F31C96A6E4E ] ctxusbm         C:\Windows\system32\DRIVERS\ctxusbm.sys
22:12:16.0930 0x0a1c  ctxusbm - ok
22:12:17.0083 0x0a1c  [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF, 3BE4B8EE22FA55D3A17D3718781C8BCA631C78F7928092561F6B79BB60E7D7FE ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:12:17.0223 0x0a1c  DcomLaunch - ok
22:12:17.0306 0x0a1c  [ 8B722BA35205C71E7951CDC4CDBADE19, 39720A60DFD0532F7E1A1976240E9828559BF9E0C6D1CFBF4D911965BFD94158 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:12:17.0424 0x0a1c  DfsC - ok
22:12:17.0598 0x1250  Object send P2P result: true
22:12:17.0792 0x0a1c  [ C647F468F7DE343DF8C143655C5557D4, E2D35FE49C408B952D8FE0C7EF70D42798229D30B89CEF9858BAC9F4F9E98EF2 ] DFSR            C:\Windows\system32\DFSR.exe
22:12:18.0117 0x0a1c  DFSR - ok
22:12:18.0375 0x0a1c  [ 3ED0321127CE70ACDAABBF77E157C2A7, 10973BD0AEF9597A4EA0A4947BDE922F9168F33D6ED97BFFEE6176AADAD78980 ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
22:12:18.0466 0x0a1c  Dhcp - ok
22:12:18.0517 0x0a1c  [ B0107E40ECDB5FA692EBF832F295D905, 76466BB9E4F12436ECCCB9D89EB20762B4785F82F02591B51A735A590E248264 ] disk            C:\Windows\system32\drivers\disk.sys
22:12:18.0537 0x0a1c  disk - ok
22:12:18.0611 0x0a1c  [ 06230F1B721494A6DF8D47FD395BB1B0, F6CA8270740E01D9CE2FE8E34BC067C7EDC15BA610F461860E1D17D135C8A379 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:12:18.0675 0x0a1c  Dnscache - ok
22:12:18.0765 0x0a1c  [ 1A7156DD1E850E9914E5E991E3225B94, 99FF0C7125B01FCB0B92DC44756AE8FAA486F2E7F38DC6204F7EFE5918F8480A ] dot3svc         C:\Windows\System32\dot3svc.dll
22:12:18.0901 0x0a1c  dot3svc - ok
22:12:18.0976 0x0a1c  [ 1583B39790DB3EAEC7EDB0CB0140C708, F94F9AE7054A38602CD25D4E10FE7C7B574BD9ED8440C3FDAA7275A1D1E663E7 ] DPS             C:\Windows\system32\dps.dll
22:12:19.0137 0x0a1c  DPS - ok
22:12:19.0205 0x0a1c  [ F1A78A98CFC2EE02144C6BEC945447E6, D2E2AA13BE6319F967002476A5D3CF09B1B44350576DD8E1C1C531854F53B488 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:12:19.0290 0x0a1c  drmkaud - ok
22:12:19.0452 0x0a1c  [ 362CCEF305F45829316D62D3410F2062, 35033749E9B6B5AFC9C8C305F4AA1597E9776D465E7BBC24A20E836B7BEF0D73 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:12:19.0583 0x0a1c  DXGKrnl - ok
22:12:19.0706 0x0a1c  [ 264CEE7B031A9D6C827F3D0CB031F2FE, 50CAD28A73D29E7E04A45330146CF713BA17101215955009121E36D43CD5C536 ] E1G60           C:\Windows\system32\DRIVERS\E1G6032E.sys
22:12:19.0899 0x0a1c  E1G60 - ok
22:12:19.0949 0x0a1c  [ C2303883FD9BE49DC36A6400643002EA, F062D1D6D503CF5195BDE8C1DC75B541F559CB8175ADABCDB7690E9F1CA3EA4E ] EapHost         C:\Windows\System32\eapsvc.dll
22:12:19.0998 0x0a1c  EapHost - ok
22:12:20.0060 0x0a1c  [ 5F94962BE5A62DB6E447FF6470C4F48A, D00F9B3315DE8610BBE93FFD3CA3E2CF5B10697C518FC25FA4274CC6894D022B ] Ecache          C:\Windows\system32\drivers\ecache.sys
22:12:20.0091 0x0a1c  Ecache - ok
22:12:20.0174 0x0a1c  [ 14CE384D2E27B64C256BDA4DC39C312D, D5FA9C2BB162F1C22E419D33671B8202AAC245A87F6B183B97F83F5BFA165B41 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
22:12:20.0268 0x0a1c  ehRecvr - ok
22:12:20.0367 0x0a1c  [ B93159C1313D66FDFBBE876F5189CD52, 51E39160EA56F6B08449267EDF2A0F604612663768D2348DE23554AB07BDBB62 ] ehSched         C:\Windows\ehome\ehsched.exe
22:12:20.0450 0x0a1c  ehSched - ok
22:12:20.0512 0x0a1c  [ F5EE2527D74449868E3C3227A59BCD28, 11640E97EE9D8F9A5DC3FEA6BA7A737AA796A7235C7F5C7EF1ABFB51C9D730D3 ] ehstart         C:\Windows\ehome\ehstart.dll
22:12:20.0595 0x0a1c  ehstart - ok
22:12:20.0668 0x0a1c  [ C4636D6E10469404AB5308D9FD45ED07, 367D958D19F672395462206F27C1E138386C2F37B0FA77546F4217CF16D05C84 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
22:12:20.0733 0x0a1c  elxstor - ok
22:12:20.0826 0x0a1c  [ A9B18B63A4FD6BAAB83326706D857FAB, 7721CC67C0F8CE3060D0EB35A10E4ADC1E3CB470C0797B17D606060C270F96D7 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
22:12:21.0163 0x0a1c  EMDMgmt - ok
22:12:21.0365 0x0a1c  [ BC3A58E938BB277E46BF4B3003B01ABD, 2BB054E632A96951DAB25B3BE8541AEC1B97A7739FC8D0E34BE8B9295600C8FC ] ErrDev          C:\Windows\system32\drivers\errdev.sys
22:12:21.0710 0x0a1c  ErrDev - ok
22:12:22.0001 0x0a1c  [ E12F22B73F153DECE721CD45EC05B4AF, 41887EEF4BB024329B4079AD50FC5FB705F0EB8BAF6C93A8242DC2A73D3AFD86 ] EventSystem     C:\Windows\system32\es.dll
22:12:22.0196 0x0a1c  EventSystem - ok
22:12:22.0284 0x0a1c  [ 486844F47B6636044A42454614ED4523, 3E24E78584B199C0FAA59613EEB7DF67B3B878B277A0130C7A3FF608C130BA2F ] exfat           C:\Windows\system32\drivers\exfat.sys
22:12:22.0390 0x0a1c  exfat - ok
22:12:22.0471 0x0a1c  [ 1A4BEE34277784619DDAF0422C0C6E23, 3223E1B5DD4866D8E09F1B465FF82C911DDEE5B01B084543086E47B11D2AEA77 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:12:22.0632 0x0a1c  fastfat - ok
22:12:22.0689 0x0a1c  [ 81B79B6DF71FA1D2C6D688D830616E39, 62F8BC0DB918A49B10A5BE1724A2E2F17FA7D8208D5D86822FACB2DCD97B3591 ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
22:12:22.0865 0x0a1c  fdc - ok
22:12:22.0911 0x0a1c  [ BB9267ACACD8B7533DD936C34A0CBA5E, 32DE6E10ABA540D62F0D8AE30DE8769D7BF29E547838BEBE67C04183CC0B32C7 ] fdPHost         C:\Windows\system32\fdPHost.dll
22:12:23.0113 0x0a1c  fdPHost - ok
22:12:23.0139 0x0a1c  [ 300C80931EABBE1DB7591C516EFE8D0F, F031DA96B06B6FA8E0AD56D5E10E5A5882765C3FF258A4DE06A47EC34829FF04 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:12:23.0334 0x0a1c  FDResPub - ok
22:12:23.0359 0x0a1c  [ 457B7D1D533E4BD62A99AED9C7BB4C59, 3933907DE163F8D3A81ED25169B693D723296C437C7C990BFE9DEFD60F7635FD ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:12:23.0407 0x0a1c  FileInfo - ok
22:12:23.0450 0x0a1c  [ D421327FD6EFCCAF884A54C58E1B0D7F, C2F3B72EA36BA8B74A30E128C088307CA768FDBE232BFA216CD78B0F9B7AF18A ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:12:23.0518 0x0a1c  Filetrace - ok
22:12:23.0543 0x0a1c  [ 230923EA2B80F79B0F88D90F87B87EBD, 1F3287970FEC73011F3B675C447BF0CA35416490D4740C6960595B091181059C ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
22:12:23.0660 0x0a1c  flpydisk - ok
22:12:23.0709 0x0a1c  [ E3041BC26D6930D61F42AEDB79C91720, 3556C033BB78445EC8B2F98A82455914764AFC70CBFF634DDBD3539885A1E457 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:12:23.0756 0x0a1c  FltMgr - ok
22:12:23.0913 0x0a1c  [ F937F278E44138C0386FA1DE69B1F72B, 49180522CCCB5377B5B3A7EF8B9697FBE19A1E5D84BC282D24C39B3D52698851 ] FontCache       C:\Windows\system32\FntCache.dll
22:12:24.0050 0x0a1c  FontCache - ok
22:12:24.0129 0x0a1c  [ BC5B0BE5AF3510B0FD8C140EE42C6D3E, B21CA5F14BDB6CFD97A24C28BB2AD0D704C46058F13B01FF4203514FE8B92591 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:12:24.0168 0x0a1c  FontCache3.0.0.0 - ok
22:12:24.0205 0x0a1c  [ 5779B86CD8B32519FBECB136394D946A, 68A395CD2287D22CB5C8CFE5A3006A61AC0C3FDAADF166C93240FF83C0315DCF ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:12:24.0267 0x0a1c  Fs_Rec - ok
22:12:24.0321 0x0a1c  [ C8E416668D3DC2BE3D4FE4C79224997F, 7DBC8E7687179A649638F606C9584F2E8EC2065762997CDF151F9BB99FA8D535 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
22:12:24.0383 0x0a1c  gagp30kx - ok
22:12:24.0483 0x0a1c  [ 3EAFDD637416393722AA98E940DFD0A0, 7252B6F3A4A54755A322842D8E8E20F3E52C3205C41D5E6A4F01108A85A47B70 ] GameConsoleService C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
22:12:24.0549 0x0a1c  GameConsoleService - ok
22:12:24.0641 0x0a1c  [ A0E1B575BA8F504968CD40C0FAEB2384, F64A24A5A93F4E757882E97C65DA612F07A87F4DDD2E10C1AB0250AFA03BCEF1 ] gpsvc           C:\Windows\System32\gpsvc.dll
22:12:24.0750 0x0a1c  gpsvc - ok
22:12:24.0932 0x0a1c  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:12:24.0979 0x0a1c  gupdate - ok
22:12:25.0045 0x0a1c  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:12:25.0107 0x0a1c  gupdatem - ok
22:12:25.0226 0x0a1c  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
22:12:25.0265 0x0a1c  gusvc - ok
22:12:25.0351 0x0a1c  [ DF45F8142DC6DF9D18C39B3EFFBD0409, E0F04525530FF403C5A34B7E9A03CDE70B7BACE12E2E50103554E92AF374BD09 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:12:25.0551 0x0a1c  HdAudAddService - ok
22:12:25.0699 0x0a1c  [ F942C5820205F2FB453243EDFEC82A3D, 17A6A3DCF884FB524C93F2477D97E9F2B8E547709F8F2AEA93BEEA322B62E914 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
22:12:25.0872 0x0a1c  HDAudBus - ok
22:12:25.0936 0x0a1c  [ B4881C84A180E75B8C25DC1D726C375F, C0BEDBF43EFB0DD442A1D7985EA4A7493671648954B7D1840E30FB2FC46589A4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
22:12:26.0086 0x0a1c  HidBth - ok
22:12:26.0136 0x0a1c  [ 4E77A77E2C986E8F88F996BB3E1AD829, 1748676EB038A145405080B829DF4156C2596691BE5C67FD8269BE8D9351B400 ] HidIr           C:\Windows\system32\drivers\hidir.sys
22:12:26.0286 0x0a1c  HidIr - ok
22:12:26.0336 0x0a1c  [ 59361D38A297755D46A540E450202B2A, ED97800A3FF9B90EC58BC5122C42B53F46D9C157EFE488481E8677ED7058E33D ] hidserv         C:\Windows\system32\hidserv.dll
22:12:26.0411 0x0a1c  hidserv - ok
22:12:26.0458 0x0a1c  [ 443BDD2D30BB4F00795C797E2CF99EDF, BCE1A241AE5CCE3E1C65CCF07ECB4305C7106F2EFFD51F2C519EB00026B474C4 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
22:12:26.0494 0x0a1c  HidUsb - ok
22:12:26.0530 0x0a1c  [ B12F367EA39C0795FD57E31242CE1A5A, 498439FE4D1217211EB6C1AC35CDA5D59F3AE8F06AF5E41EE9FDB0DC559FBE27 ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:12:26.0590 0x0a1c  hkmsvc - ok
22:12:26.0642 0x0a1c  [ D7109A1E6BD2DFDBCBA72A6BC626A13B, 6141B6645F4152A326ECA8AD0DD04CB38C9EDA395BDF6FF260AB17CB86FC4C87 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
22:12:26.0661 0x0a1c  HpCISSs - ok
22:12:26.0730 0x0a1c  [ 098F1E4E5C9CB5B0063A959063631610, 36B02A738413E4745978E3E90D9CE8ABC08376BEE411008A4312A752CB4A2E13 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:12:26.0834 0x0a1c  HTTP - ok
22:12:26.0887 0x0a1c  [ DA94C854CEA5FAC549D4E1F6E88349E8, 10BEB47DB90F55BD1792C2041E49ED13E4E52BCC11BE6599F6DA8D91B79CC8D1 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
22:12:26.0908 0x0a1c  i2omp - ok
22:12:26.0945 0x0a1c  [ CBB597659A2713CE0C9CC20C88C7591F, A2BAC75F7247D871842A32EAA7594D338E728D1BFEAEA3C1FCDBF65F007BC06A ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
22:12:27.0234 0x0a1c  i8042prt - ok
22:12:27.0430 0x0a1c  [ 3E3BF3627D886736D0B4E90054F929F6, 95A138B65DC9133E92F53A529C7AD897D8823EFAED343756549FDF6C8C749CD0 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
22:12:27.0527 0x0a1c  iaStorV - ok
22:12:27.0628 0x0a1c  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
22:12:27.0659 0x0a1c  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
22:12:30.0440 0x0a1c  Detect skipped due to KSN trusted
22:12:30.0440 0x0a1c  IDriverT - ok
22:12:30.0626 0x0a1c  [ A9AA69F749AC1D318151E77372CC83DB, 2A50A4D6ED22F5F6CB5DC56A639D904AD71E511DC744A6F6C3D1D4D39756AF31 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:12:30.0744 0x0a1c  idsvc - ok
22:12:30.0791 0x0a1c  [ 8C3951AD2FE886EF76C7B5027C3125D3, 85CF7231756E02BD9E5F4378F3FC794394A072B8028F27827F83ACE9EE554499 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
22:12:30.0808 0x0a1c  iirsp - ok
22:12:30.0858 0x0a1c  [ 0401A380C88754B2399F8043AC9B2BF9, BFF3B53FAFAE6622AA9F74BAA4A3D522C06E2D732B88916766603B9FE8D0D77F ] IKEEXT          C:\Windows\System32\ikeext.dll
22:12:30.0930 0x0a1c  IKEEXT - ok
22:12:30.0981 0x0a1c  [ DF797A12176F11B2D301C5B234BB200E, 384343636B21CA7EDF28EFD1B6728EAB1508CA49CE48FF3DC0D91DB843C0C73E ] intelide        C:\Windows\system32\drivers\intelide.sys
22:12:30.0998 0x0a1c  intelide - ok
22:12:31.0023 0x0a1c  [ BFD84AF32FA1BAD6231C4585CB469630, 33E0842F2D0879B02C115301174FCB19ED3AAF7B1B8E6284839CE16DE56476EA ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
22:12:31.0097 0x0a1c  intelppm - ok
22:12:31.0148 0x0a1c  [ 5624BC1BC5EEB49C0AB76A8114F05EA3, BD5AA534D8A923AF4D205EEC6DA55A3DC5F915E5F3223BF23F24C09824FA90B6 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:12:31.0208 0x0a1c  IPBusEnum - ok
22:12:31.0247 0x0a1c  [ D8AABC341311E4780D6FCE8C73C0AD81, 141E8032A934777567E6DAC35FB1C77C40D9B6EE477F17F872F35833A8F57F72 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:12:31.0284 0x0a1c  IpFilterDriver - ok
22:12:31.0327 0x0a1c  [ BF0DBFA9792C5C14FA00F61C75116C1B, 24C14DCAF57013F1C238E3C123279737420A714EB29CB69239C9838C9A269A59 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
22:12:31.0391 0x0a1c  iphlpsvc - ok
22:12:31.0406 0x0a1c  IpInIp - ok
22:12:31.0458 0x0a1c  [ 9C2EE2E6E5A7203BFAE15C299475EC67, E51628ECAB9CCCBCE02801C5E71406487A280765FEE318D14B0C227141B87658 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
22:12:31.0542 0x0a1c  IPMIDRV - ok
22:12:31.0573 0x0a1c  [ B7E6212F581EA5F6AB0C3A6CEEEB89BE, C29D7F392116BB09F7047A90702331F200DACFB3C94E7F912932971E0B7F0413 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
22:12:31.0645 0x0a1c  IPNAT - ok
22:12:31.0674 0x0a1c  [ 8C42CA155343A2F11D29FECA67FAA88D, 699F06D25C5F270CE1194F4D350CB0BE22C6AB609EECF35D066C034AC380BEE3 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:12:31.0718 0x0a1c  IRENUM - ok
22:12:31.0747 0x0a1c  [ 0672BFCEDC6FC468A2B0500D81437F4F, A0322B569C309F258684AFECCD52924A33F363186261730469245B7FA357C645 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
22:12:31.0779 0x0a1c  isapnp - ok
22:12:31.0828 0x0a1c  [ E4FDF99599F27EC25D2CF6D754243520, 9139E708EE30F10652C9A458BD58B0343A3C05E84CD3E71FA0B0E4123503CF7B ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
22:12:31.0851 0x0a1c  iScsiPrt - ok
22:12:31.0885 0x0a1c  [ 63C766CDC609FF8206CB447A65ABBA4A, D9CA006FA852C95E90E8A0837E296FCBFD76246DA8AFDE563863D5F95BDFEC52 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
22:12:31.0908 0x0a1c  iteatapi - ok
22:12:31.0940 0x0a1c  [ 1281FE73B17664631D12F643CBEA3F59, B27571A0348CDF81DC102A61712CBA9A4AF7AC0015A7702B0DE73AD4E4646853 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
22:12:31.0966 0x0a1c  iteraid - ok
22:12:32.0075 0x0a1c  [ 957135960E7533EA5C7EA0BFB34F8EFD, 036B11D7639C49F02A6C15022BC9629BAE023B7FE1F86451F12B0D5C92D5B57E ] jswpsapi        C:\Program Files (x86)\Jumpstart\jswpsapi.exe
22:12:32.0420 0x0a1c  jswpsapi - detected UnsignedFile.Multi.Generic ( 1 )
22:12:35.0194 0x0a1c  Detect skipped due to KSN trusted
22:12:35.0194 0x0a1c  jswpsapi - ok
22:12:35.0261 0x0a1c  [ 9D86C5091209CA4BD3762BED6F654501, 7396D4D9B25097DB22BD067FA8E58260AD31D4225A30DAA0F2CCFC43796741C3 ] JSWPSLWF        C:\Windows\system32\DRIVERS\jswpslwfx.sys
22:12:35.0390 0x0a1c  JSWPSLWF - ok
22:12:35.0433 0x0a1c  [ 423696F3BA6472DD17699209B933BC26, 00C2EAA1A8E9D422D178B7678598743234930C1858D76C632F079EF789BB56C3 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
22:12:35.0491 0x0a1c  kbdclass - ok
22:12:35.0532 0x0a1c  [ DBDF75D51464FBC47D0104EC3D572C05, E392EE961E734620245874C7700D56621A1A990C45DF5CE0B7D270BA708F255E ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
22:12:35.0652 0x0a1c  kbdhid - ok
22:12:35.0696 0x0a1c  [ 260BF9C43EE12C6898A9F5AAB0FB0E5D, 6585A87CE55EE5C51B18DF86E8EDFC6A909D96C87522FF4183F8BA9355E8DD44 ] KeyIso          C:\Windows\system32\lsass.exe
22:12:35.0790 0x0a1c  KeyIso - ok
22:12:35.0863 0x0a1c  [ 7C999F96B239E214154DB3C808E6736A, A043262E6971E67510C8D4CA95F04DF82DFE6409160F39C924104D85F76C52D7 ] KR10I64         C:\Windows\system32\drivers\kr10i64.sys
22:12:35.0955 0x0a1c  KR10I64 - ok
22:12:36.0003 0x0a1c  [ 8CB9A9164D4E789424F943FA718FA3F2, 7B102ED8D39D981D6D61591272EA24DBE8E85E543E3290272485B59F9FA5CE60 ] KR10N64         C:\Windows\system32\drivers\kr10n64.sys
22:12:36.0066 0x0a1c  KR10N64 - ok
22:12:36.0168 0x0a1c  [ 88956AD9FA510848AD176777A6C6C1F5, 8F2FBF7E70F836C2C11EE5ABCAFE3E51DC26E953DDFBEE3C1B4AA8E58EBDCF5E ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:12:36.0231 0x0a1c  KSecDD - ok
22:12:36.0273 0x0a1c  [ 1D419CF43DB29396ECD7113D129D94EB, 21ECCE9D17F055C7B5066110864E10C99291CE50B389C545371333904CE2DBB5 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
22:12:36.0367 0x0a1c  ksthunk - ok
22:12:36.0432 0x0a1c  [ 1FAF6926F3416D3DA05C5B265491BDAE, 3989E18522691CC3820092033E00ED39D08861DFB369AA0DFFF4B379E48EA1F0 ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:12:36.0552 0x0a1c  KtmRm - ok
22:12:36.0594 0x0a1c  [ 50C7A3CB427E9BB5ED0708A669956AB5, 3DAD1C01AE58FE2C6134283B19118E2F3C884DDFFBAE4A46B7B5E4FB1A2567A1 ] LanmanServer    C:\Windows\system32\srvsvc.dll
22:12:36.0690 0x0a1c  LanmanServer - ok
22:12:36.0741 0x0a1c  [ CAF86FC1388BE1E470F1A7B43E348ADB, 9E9AE0B617D1031E8462524802A2D997AE7C944A7D00D403FF903145A7FEB761 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:12:36.0802 0x0a1c  LanmanWorkstation - ok
22:12:36.0835 0x0a1c  [ 96ECE2659B6654C10A0C310AE3A6D02C, 3322E87B9F64C3ACBCB634F2390AAB212FA7695383BF01F0092A803871BF19B2 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:12:36.0944 0x0a1c  lltdio - ok
22:12:37.0046 0x0a1c  [ 961CCBD0B1CCB5675D64976FAE37D092, 258378BE76A13E4368C9587E6A22727721E4B267B0D26D3D3E333B3B2A5A0611 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:12:37.0192 0x0a1c  lltdsvc - ok
22:12:37.0221 0x0a1c  [ A47F8080CACC23C91FE823AD19AA5612, 161575406D158D6D5C9220F1E82C0CC19108C74ADC35C509BAF9B0C414EFD8EE ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:12:37.0324 0x0a1c  lmhosts - ok
22:12:37.0393 0x0a1c  [ ACBE1AF32D3123E330A07BFBC5EC4A9B, 0E17E4DD30B5AF8F269EF8EA003836C9E16273262A050B9BE3ED802DD3AC9319 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
22:12:37.0433 0x0a1c  LSI_FC - ok
22:12:37.0466 0x0a1c  [ 799FFB2FC4729FA46D2157C0065B3525, AB462A34D061C113DA12641C45159A58D0AEA1C440233D061A20DF99586CFA93 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
22:12:37.0489 0x0a1c  LSI_SAS - ok
22:12:37.0527 0x0a1c  [ F445FF1DAAD8A226366BFAF42551226B, 92B63E15363F1EAE8A54D4E74ED21669D0A9FE99C654671556C58456228278B1 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
22:12:37.0555 0x0a1c  LSI_SCSI - ok
22:12:37.0578 0x0a1c  [ 52F87B9CC8932C2A7375C3B2A9BE5E3E, 2EB22DD418D4934BDD22C5DB49D5D06178EC0419AB5CC28DD544CA91823987B0 ] luafv           C:\Windows\system32\drivers\luafv.sys
22:12:37.0647 0x0a1c  luafv - ok
22:12:37.0768 0x0a1c  [ 76A58DF02BD4EA29F189B82D0BEF17F8, B3A96AABE050BB332ECD9AF7C35D08B468AC459D30FF4D49B609BA3F95ECEEDA ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
22:12:38.0005 0x0a1c  Mcx2Svc - ok
22:12:38.0061 0x0a1c  [ 5C5CD6AACED32FB26C3FB34B3DCF972F, 34A66C21FA79800D3CDE933CFA71343218F94D67AAE763EA0B53AC49060CB6D0 ] megasas         C:\Windows\system32\drivers\megasas.sys
22:12:38.0098 0x0a1c  megasas - ok
22:12:38.0167 0x0a1c  [ 859BC2436B076C77C159ED694ACFE8F8, 4AEA57A8B9EACEC1B8DED3ECC95621C56E6D65CFE2DA9F07DAF7C7BAD132B624 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
22:12:38.0221 0x0a1c  MegaSR - ok
22:12:38.0263 0x0a1c  [ 3CBE4995E80E13CCFBC42E5DCF3AC81A, 18B0E3E83E41C80809E8140F4C90AB051566C84DD891EA411746EA74E6EAF053 ] MMCSS           C:\Windows\system32\mmcss.dll
22:12:38.0318 0x0a1c  MMCSS - ok
22:12:38.0346 0x0a1c  [ 59848D5CC74606F0EE7557983BB73C2E, EA6ACF0619DE1E4272AEDC69F2E66E29DA499E8E8094243C9EF735FD8369229D ] Modem           C:\Windows\system32\drivers\modem.sys
22:12:38.0392 0x0a1c  Modem - ok
22:12:38.0431 0x0a1c  [ C247CC2A57E0A0C8C6DCCF7807B3E9E5, 357811D1B8F70828F6432879F59DAB916FBB55673B3473D879382DE33CFB3FAF ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:12:38.0490 0x0a1c  monitor - ok
22:12:38.0516 0x0a1c  [ 9367304E5E412B120CF5F4EA14E4E4F1, F87EBACEE27A50E6610FDCB4BD3001C35A99FEE6D63D643FF2CBF0D484CD082C ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
22:12:38.0533 0x0a1c  mouclass - ok
22:12:38.0558 0x0a1c  [ C2C2BD5C5CE5AAF786DDD74B75D2AC69, B77E4A7511923E7BD35A177A40B4E461AC9CB050D6F0575D4799DEF85DA6DA38 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
22:12:38.0617 0x0a1c  mouhid - ok
22:12:38.0648 0x0a1c  [ 11BC9B1E8801B01F7F6ADB9EAD30019B, 1BAF820C0AB1B70A114E767B2155A58BF86CD0D9CF582813C1635A86BE3A7A05 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
22:12:38.0667 0x0a1c  MountMgr - ok
22:12:38.0727 0x0a1c  [ 26EA1DAD601EE3ACAC301D66F07BA219, C9594BB15D53D4AC2156CCCD2DB65B2C20620F1F60DA85F48D1586FC10028096 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:12:38.0749 0x0a1c  MozillaMaintenance - ok
22:12:38.0801 0x0a1c  [ 9EB89625A82AC961F25E7C865947BF9A, 91DB9530CDE883DC60BE621AC4210ACD069631D9466E37411D9D6AEE587098D9 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
22:12:38.0830 0x0a1c  MpFilter - ok
22:12:38.0884 0x0a1c  [ F8276EB8698142884498A528DFEA8478, C0FF504F721F1D00F42CFE783D4F32C6728518F64646F5C5C11BA3A4824815BB ] mpio            C:\Windows\system32\drivers\mpio.sys
22:12:38.0905 0x0a1c  mpio - ok
22:12:38.0941 0x0a1c  [ C92B9ABDB65A5991E00C28F13491DBA2, D1233381A9E4262F0AB396BBDB7DE402D4370805E11EB8A118C846F6E9474098 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:12:38.0986 0x0a1c  mpsdrv - ok
22:12:39.0042 0x0a1c  [ 897E3BAF68BA406A61682AE39C83900C, 13F61D5C22BED061BE7C2669CCCAA2BAD4A0CE83800DF57A50306DE0A476FC27 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:12:39.0136 0x0a1c  MpsSvc - ok
22:12:39.0178 0x0a1c  [ 3C200630A89EF2C0864D515B7A75802E, AA4A312E7A28FCE7A944747BADB809CAAD3D67899EBBE663D473621DB25B140A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
22:12:39.0203 0x0a1c  Mraid35x - ok
22:12:39.0242 0x0a1c  [ 7C1DE4AA96DC0C071611F9E7DE02A68D, 8B248A82324FB23C64D41FA91BCC22093DE44C48D688E5995C484A7072A6EC08 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:12:39.0265 0x0a1c  MRxDAV - ok
22:12:39.0317 0x0a1c  [ 1485811B320FF8C7EDAD1CAEBB1C6C2B, 9F157AAA1A793EF7E52817E4126B774C17FFA0036DADCF10A024FDC068F94F67 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:12:39.0387 0x0a1c  mrxsmb - ok
22:12:39.0429 0x0a1c  [ 3B929A60C833FC615FD97FBA82BC7632, 40EEBEB43F42A1A37FAA529E0C21984426F90C1EEFE1EF9BB2F696164595F91D ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:12:39.0473 0x0a1c  mrxsmb10 - ok
22:12:39.0513 0x0a1c  [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3, 197F70E24D2BBDEC35C2D5BC442267ACC4C5AE3FD5BB30A0928976BE9758C942 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:12:39.0550 0x0a1c  mrxsmb20 - ok
22:12:39.0588 0x0a1c  [ AA459F2AB3AB603C357FF117CAE3D818, C633178227A0C446920908967E6F2F4979BE77209C7377B9A41B90F5F31B41B3 ] msahci          C:\Windows\system32\drivers\msahci.sys
22:12:39.0606 0x0a1c  msahci - ok
22:12:39.0643 0x0a1c  [ 264BBB4AAF312A485F0E44B65A6B7202, 1DF36540C77D5D885B6C2EE91F0446864D8E6D6CFED87A9ED0765E76FE05E102 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
22:12:39.0684 0x0a1c  msdsm - ok
22:12:39.0711 0x0a1c  [ 7EC02CE772F068ED0BEAFA3DA341A9BC, 3B5B4EA0BF1D1E57F4DF74A569304A5EE41821F5E2F352760B8C9CA82C6D8292 ] MSDTC           C:\Windows\System32\msdtc.exe
22:12:39.0780 0x0a1c  MSDTC - ok
22:12:39.0819 0x0a1c  [ 704F59BFC4512D2BB0146AEC31B10A7C, F7712944DDC192C47953D577BE31B79B4D11217305B1C3D0DCA31B1518CB8DCB ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:12:39.0874 0x0a1c  Msfs - ok
22:12:39.0917 0x0a1c  [ 00EBC952961664780D43DCA157E79B27, 4F8F5718D8574A128E0F6CD54C9BE59A93A7638A5689A8FF68D0C81D3E67808F ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
22:12:39.0933 0x0a1c  msisadrv - ok
22:12:39.0972 0x0a1c  [ 366B0C1F4478B519C181E37D43DCDA32, A98E2BC397FAD7D90653F55AC283CACAE7465D7F10A198D715046B1D896AF246 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:12:40.0054 0x0a1c  MSiSCSI - ok
22:12:40.0064 0x0a1c  msiserver - ok
22:12:40.0120 0x0a1c  [ 0EA73E498F53B96D83DBFCA074AD4CF8, E3DDE34FCFF272E06CD8DA836F8D79E2515885715D4A7CD7BF8D97D7A4E0E781 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:12:40.0216 0x0a1c  MSKSSRV - ok
22:12:40.0303 0x0a1c  [ 89F2AEDC2788696702141AB82C3E7866, E166CBD8D3C708737C37172221945D8E56C25C2CC750889C3CE14AA2DE750F33 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
22:12:40.0338 0x0a1c  MsMpSvc - ok
22:12:40.0368 0x0a1c  [ 52E59B7E992A58E740AA63F57EDBAE8B, A89F607B330BA1F42CA9FF01EF289BBD088350CF376568E58CB9865F1DA6CD72 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:12:40.0465 0x0a1c  MSPCLOCK - ok
22:12:40.0500 0x0a1c  [ 49084A75BAE043AE02D5B44D02991BB2, 4CD2692D191035CE9D18F4D21F054FF8C3F9CF2734464EA33EAB480A28AD447F ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:12:40.0603 0x0a1c  MSPQM - ok
22:12:40.0670 0x0a1c  [ DC6CCF440CDEDE4293DB41C37A5060A5, 768D08A67508E1CE69B67642A5E5A639C0DD1E93C956C56ECC5A56B0E502C953 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:12:40.0723 0x0a1c  MsRPC - ok
22:12:40.0779 0x0a1c  [ 855796E59DF77EA93AF46F20155BF55B, 75DFCEE16A9D94EDF74295B9686D92552817E8A00958917CB0E17089EDCF6A97 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
22:12:40.0811 0x0a1c  mssmbios - ok
22:12:40.0845 0x0a1c  [ 86D632D75D05D5B7C7C043FA3564AE86, 96911FBC106B91E76598EE110B5147D4C55E42C9194E857F866B6B395E78D2CB ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:12:40.0918 0x0a1c  MSTEE - ok
22:12:40.0952 0x0a1c  [ 0CC49F78D8ACA0877D885F149084E543, 984DDCB52F0DFC1B26C6504FE500E8D9C2CA7F79ED34608AE9866A0915B8BA67 ] Mup             C:\Windows\system32\Drivers\mup.sys
22:12:40.0997 0x0a1c  Mup - ok
22:12:41.0065 0x0a1c  [ A5B10C845E7538C60C0F5D87A57CB3F5, 2B4E16702591C59BC2CA2B99DBB504BAB4F4EF0835B0D9C7453D340CBF0BDF16 ] napagent        C:\Windows\system32\qagentRT.dll
22:12:41.0159 0x0a1c  napagent - ok
22:12:41.0198 0x0a1c  [ 2007B826C4ACD94AE32232B41F0842B9, 6267D165C3C8C5F83194890A6DBF71226D4B891AECD1D06F7AEB5D738C3DC9CA ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:12:41.0238 0x0a1c  NativeWifiP - ok
22:12:41.0348 0x0a1c  [ 65950E07329FCEE8E6516B17C8D0ABB6, 4429D9FF9B6E376D28D8FA4906B7554DF566EC23E455E3166C496B579622F204 ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:12:41.0412 0x0a1c  NDIS - ok
22:12:41.0470 0x0a1c  [ 64DF698A425478E321981431AC171334, C43177CB60F5D58E1FF7A31E9BE5DA7D92C4B25235867DD65BADC069EDF023F3 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:12:41.0516 0x0a1c  NdisTapi - ok
22:12:41.0539 0x0a1c  [ 8BAA43196D7B5BB972C9A6B2BBF61A19, 8AFFB26F6E8CF67F562818BBFE12FB448E4FCDF9B68858B625681565DE30DDC1 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:12:41.0610 0x0a1c  Ndisuio - ok
22:12:41.0646 0x0a1c  [ F8158771905260982CE724076419EF19, B86FFA790A30ED614A11C87F4D738C913EFC0924DC14750D544001D4E9556071 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:12:41.0709 0x0a1c  NdisWan - ok
22:12:41.0744 0x0a1c  [ 9CB77ED7CB72850253E973A2D6AFDF49, C3C15B317A7F7AE68B7BC62343962C47F075240F252727811DB4BEE443F9103F ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:12:41.0794 0x0a1c  NDProxy - ok
22:12:41.0827 0x0a1c  [ A499294F5029A7862ADC115BDA7371CE, 6BE0AAFE4EB59E056A929D6C1A009D8DFD547025481108CEFB12E5D6F86DBE14 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:12:41.0967 0x0a1c  NetBIOS - ok
22:12:42.0023 0x0a1c  [ FC2C792EBDDC8E28DF939D6A92C83D61, 9EDF8B56E2B47C31457074DA371B604E5F7EB2B3B5CD4688CBEEDD5B266D119B ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
22:12:42.0100 0x0a1c  netbt - ok
22:12:42.0129 0x0a1c  [ 260BF9C43EE12C6898A9F5AAB0FB0E5D, 6585A87CE55EE5C51B18DF86E8EDFC6A909D96C87522FF4183F8BA9355E8DD44 ] Netlogon        C:\Windows\system32\lsass.exe
22:12:42.0168 0x0a1c  Netlogon - ok
22:12:42.0217 0x0a1c  [ 9B63B29DEFC0F3115A559D2597BF5D75, 297319D3F2E97CB34464EA59D8FD96AC2B8B1A4F2AEE666937F16A041128021F ] Netman          C:\Windows\System32\netman.dll
22:12:42.0317 0x0a1c  Netman - ok
22:12:42.0377 0x0a1c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:12:42.0408 0x0a1c  NetMsmqActivator - ok
22:12:42.0431 0x0a1c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:12:42.0454 0x0a1c  NetPipeActivator - ok
22:12:42.0498 0x0a1c  [ 7846D0136CC2B264926A73047BA7688A, 6F56CC1B17095C378D98B58A92F9EDA2D009529DDB6F60E815D85C7606C8EDC0 ] netprofm        C:\Windows\System32\netprofm.dll
22:12:42.0566 0x0a1c  netprofm - ok
22:12:42.0582 0x0a1c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:12:42.0605 0x0a1c  NetTcpActivator - ok
22:12:42.0626 0x0a1c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:12:42.0659 0x0a1c  NetTcpPortSharing - ok
22:12:42.0694 0x0a1c  [ 4AC08BD6AF2DF42E0C3196D826C8AEA7, 8D7DE921E14BAF09D7E2704CFB2FB1C8A78A46DAF86CDF7A347C5D113A8C110B ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
22:12:42.0713 0x0a1c  nfrd960 - ok
22:12:42.0769 0x0a1c  [ C3E0696C3B42F694C5822776AA6FFFDF, 80C3DEC2C48500F96C9E677450EFC1ADA9FE9FBB70F4CC2D7D9244B1A515418B ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
22:12:42.0810 0x0a1c  NisDrv - ok
22:12:42.0863 0x0a1c  [ DCEE3592299B2229A0DB98CB415059A2, 709AAA095DF44DDCB6159CE1635AB05EC666D845445790E569F56B297DC64AC3 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
22:12:42.0898 0x0a1c  NisSrv - ok
22:12:42.0945 0x0a1c  [ F145BF4C4668E7E312069F81EF847CFC, C4926EFB41FE2813E90D83456C6CB8F3157D835391B443C7E26168F4E1D67DC7 ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:12:43.0031 0x0a1c  NlaSvc - ok
22:12:43.0161 0x0a1c  [ B298874F8E0EA93F06EC40AA8D146478, 275D769E5EFD3153985DAF84C5B22B9D65428E09AB41099901ABDD03B3A2625D ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:12:43.0208 0x0a1c  Npfs - ok
22:12:43.0241 0x0a1c  [ ACB62BAA1C319B17752553DF3026EEEB, 5A309DF390A097245250BB64AD5F8575BECA601E0A122DDCB494C67D3D9EA089 ] nsi             C:\Windows\system32\nsisvc.dll
22:12:43.0338 0x0a1c  nsi - ok
22:12:43.0390 0x0a1c  [ 1523AF19EE8B030BA682F7A53537EAEB, B000630CE4B562D39B5EE4148409B2E01D8924D33D27607B24ADC901357E7AA5 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:12:43.0540 0x0a1c  nsiproxy - ok
22:12:43.0700 0x0a1c  [ 2ACCAA3C3C55370A32F17B3595E1A217, 8539A293A5E1EBA2CC0FA9E999099D3B6B035D41069398AE17D737BBE4D9FEA8 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:12:43.0807 0x0a1c  Ntfs - ok
22:12:43.0872 0x0a1c  [ DD5D684975352B85B52E3FD5347C20CB, BB03C50D5178643550C024130E20FD9A023AE110B3C85A2D6E18FB8DBB3A12E4 ] Null            C:\Windows\system32\drivers\Null.sys
22:12:43.0957 0x0a1c  Null - ok
22:12:44.0002 0x0a1c  [ 2C040B7ADA5B06F6FACADAC8514AA034, EF32F7C411090230ED1D95B2D01E8464DCC89D72EFD94BBC8DF6856D00B1A783 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:12:44.0033 0x0a1c  nvraid - ok
22:12:44.0068 0x0a1c  [ F7EA0FE82842D05EDA3EFDD376DBFDBA, 0ED0543A5331C0D8BBFD1BE3174482ED1B3EE70CA41CE8CE5C81977C37B3D129 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:12:44.0096 0x0a1c  nvstor - ok
22:12:44.0124 0x0a1c  [ 19067CA93075EF4823E3938A686F532F, 81339372E90CE9E2594461146A82B62452CF9DB3FF53381D30F6922059EDCF99 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
22:12:44.0160 0x0a1c  nv_agp - ok
22:12:44.0169 0x0a1c  NwlnkFlt - ok
22:12:44.0187 0x0a1c  NwlnkFwd - ok
22:12:44.0250 0x0a1c  [ D955D5DE998DB2476BF0892BE3A96C26, 3828FC1D4A4F9CD685E6D938B92370A602B84A3ACE2C9A674B3B59E633B0AE07 ] o2flash         C:\Program Files (x86)\O2Micro Flash Memory Card Driver\o2flash.exe
22:12:44.0262 0x0a1c  o2flash - detected UnsignedFile.Multi.Generic ( 1 )
22:12:46.0846 0x0a1c  Detect skipped due to KSN trusted
22:12:46.0846 0x0a1c  o2flash - ok
22:12:46.0882 0x0a1c  [ 6531DCED1F12F8863F5C335C4A89A02E, CC4DFCA4BCDC7E6F611C1630306CBC9FE146578B9C98E038587D694863889966 ] O2MDRDR         C:\Windows\system32\DRIVERS\o2mdx64.sys
22:12:46.0921 0x0a1c  O2MDRDR - ok
22:12:46.0954 0x0a1c  [ E91B345D7E8FFAF29164B81311623941, B4A90FACD0138B05D9ADDE303EAFC55A0A64B1DECCE66AC4774C53766EBEB4A6 ] O2SDRDR         C:\Windows\system32\DRIVERS\o2sdx64.sys
22:12:46.0980 0x0a1c  O2SDRDR - ok
22:12:47.0096 0x0a1c  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:12:47.0133 0x0a1c  odserv - ok
22:12:47.0176 0x0a1c  [ B5B1CE65AC15BBD11C0619E3EF7CFC28, E9AA27724A7576D1869FF861A498DB8AF79A7B297F10272F1D63E6CB88CD455B ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
22:12:47.0230 0x0a1c  ohci1394 - ok
22:12:47.0299 0x0a1c  [ CCF523B951AFAA0147F22E2A7AAE4976, 91314768DA140999E682D2A290D48B78BB25A35525EA12C1B1F9634D14602B2C ] OpenLibSys      C:\Program Files (x86)\NXP\FM Radio\OpenLibSysX64.sys
22:12:47.0350 0x0a1c  OpenLibSys - ok
22:12:47.0399 0x0a1c  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:12:47.0436 0x0a1c  ose - ok
22:12:47.0515 0x0a1c  [ 9AE31D2E1D15C10D91318E0EC149CEAC, CEA8A4AD1D6BB9C1ECBDE7A1946DD655104E20224436B96AD69A76F8E2B25680 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
22:12:47.0641 0x0a1c  p2pimsvc - ok
22:12:47.0698 0x0a1c  [ 9AE31D2E1D15C10D91318E0EC149CEAC, CEA8A4AD1D6BB9C1ECBDE7A1946DD655104E20224436B96AD69A76F8E2B25680 ] p2psvc          C:\Windows\system32\p2psvc.dll
22:12:47.0753 0x0a1c  p2psvc - ok
22:12:47.0805 0x0a1c  [ AECD57F94C887F58919F307C35498EA0, CD8E8B54A445EF0DC485D5F221588875C98328596F64EE03B2D8BD0B860504FB ] Parport         C:\Windows\system32\drivers\parport.sys
22:12:47.0903 0x0a1c  Parport - ok
22:12:47.0937 0x0a1c  [ B43751085E2ABE389DA466BC62A4B987, 167CB6B18B6B7B74A229A976833E1FBE6D51C9C0EB8A23C92FC2465B692DF383 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:12:47.0955 0x0a1c  partmgr - ok
22:12:48.0000 0x0a1c  [ 9AB157B374192FF276C1628FBDBA2B0E, E63E2EE1ABEEC5234F4F1318757EDB4A7567057B1DF1A2414C8698D47062B6AC ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:12:48.0048 0x0a1c  PcaSvc - ok
22:12:48.0085 0x0a1c  [ 47AB1E0FC9D0E12BB53BA246E3A0906D, 82B452D614B535FAD3AFEEA06DFBBF8F7C5031563A2558CFA04F9B94C76E45DF ] pci             C:\Windows\system32\drivers\pci.sys
22:12:48.0109 0x0a1c  pci - ok
22:12:48.0134 0x0a1c  [ 2657F6C0B78C36D95034BE109336E382, C85CFDA57A64B7CC1BB09225C2F81629CEF21C5F25735B098F214397D6DE0D2C ] pciide          C:\Windows\system32\drivers\pciide.sys
22:12:48.0153 0x0a1c  pciide - ok
22:12:48.0347 0x0a1c  [ 037661F3D7C507C9993B7010CEEE6288, A7B415675B14FD755D0167BBA458A902AA9ABFC4343A1B887289D31DE8A55285 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
22:12:48.0666 0x0a1c  pcmcia - ok
22:12:48.0747 0x0a1c  [ 58865916F53592A61549B04941BFD80D, 3511AF2EFD06636E144C36ECA8C7AA1A33C269EDB10A6D879AA25D9E11359AA9 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:12:48.0928 0x0a1c  PEAUTH - ok
22:12:49.0040 0x0a1c  [ 0ED8727EA0172860F47258456C06CAEA, 3CDAA1044E412EC4303CEABD36A8C7BADA2D6C6692E09B8FE440709E3F4F0166 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
22:12:49.0155 0x0a1c  PerfHost - ok
22:12:49.0247 0x0a1c  [ 6DBF2AC2BDAFF355995AB25ECCC4CFE1, F2DD39F6B1489276A913FD62D6C068D79EABADC417D404143E3D2FF8C20CDE01 ] pinger          C:\TOSHIBA\IVP\ISM\pinger.exe
22:12:49.0264 0x0a1c  pinger - ok
22:12:49.0362 0x0a1c  [ E9E68C1A0F25CF4A7AC966EEA74EE89E, 6C6903A856C29AD690FDA1B74ADB2222C3453FBE2B364245FA61D53C77C586C0 ] pla             C:\Windows\system32\pla.dll
22:12:49.0595 0x0a1c  pla - ok
22:12:49.0663 0x0a1c  [ FE6B0F59215C9FD9F9D26539C58C8B82, 52CF8BE31A28430226D117EB80974AEAE5EA07F39DE881164232D44BF67FF752 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:12:49.0717 0x0a1c  PlugPlay - ok
22:12:49.0782 0x0a1c  [ 9AE31D2E1D15C10D91318E0EC149CEAC, CEA8A4AD1D6BB9C1ECBDE7A1946DD655104E20224436B96AD69A76F8E2B25680 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
22:12:49.0858 0x0a1c  PNRPAutoReg - ok
22:12:49.0911 0x0a1c  [ 9AE31D2E1D15C10D91318E0EC149CEAC, CEA8A4AD1D6BB9C1ECBDE7A1946DD655104E20224436B96AD69A76F8E2B25680 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
22:12:49.0966 0x0a1c  PNRPsvc - ok
22:12:50.0048 0x0a1c  [ 89A5560671C2D8B4A4B51F3E1AA069D8, 07DEE5D73DDE09F954E2E13BB5603F0033829B6199C81A7C1709D94AB92B351E ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:12:50.0104 0x0a1c  PolicyAgent - ok
22:12:50.0174 0x0a1c  [ 23386E9952025F5F21C368971E2E7301, F7241C1799A8AA0E9106B101B841670304DC695FD8D290C690CE0ED5C13BC514 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:12:50.0236 0x0a1c  PptpMiniport - ok
22:12:50.0274 0x0a1c  [ 5080E59ECEE0BC923F14018803AA7A01, 2E201511821AECCF056962399AFA3533ED765A3E7FD30E7B38A6D13837367E69 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
22:12:50.0339 0x0a1c  Processor - ok
22:12:50.0394 0x0a1c  [ E058CE4FC2449D8BFA14739C83B7FF2A, 6ACA086D5E0EF3C3EAEBD78010E50739BBA7CA05E937FFF3A4F2AD22FD57B54A ] ProfSvc         C:\Windows\system32\profsvc.dll
22:12:50.0434 0x0a1c  ProfSvc - ok
22:12:50.0463 0x0a1c  [ 260BF9C43EE12C6898A9F5AAB0FB0E5D, 6585A87CE55EE5C51B18DF86E8EDFC6A909D96C87522FF4183F8BA9355E8DD44 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:12:50.0481 0x0a1c  ProtectedStorage - ok
22:12:50.0535 0x0a1c  [ C5AB7F0809392D0DA027F4A2A81BFA31, B5BC9712AD93661A77AF4D67DB5F05C58A93CF7CDD6F7BA20568C0A9F4630321 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
22:12:50.0577 0x0a1c  PSched - ok
22:12:50.0607 0x0a1c  [ 030176BD0B4AAEA01A651B51EFE295BB, 96CB24C32E3288594BD916F6AEA254F7F55101A52446DBF420CC7DDC50599C2E ] QIOMem          C:\Windows\system32\DRIVERS\QIOMem.sys
22:12:50.0660 0x0a1c  QIOMem - ok
22:12:50.0807 0x0a1c  [ 0B83F4E681062F3839BE2EC1D98FD94A, 47E1B8014C59981693F5544872AF00383528AAEF0C6FE9AE8C45A6359EFB067D ] ql2300          C:\Windows\system32\drivers\ql2300.sys
22:12:50.0955 0x0a1c  ql2300 - ok
22:12:51.0007 0x0a1c  [ E1C80F8D4D1E39EF9595809C1369BF2A, 5C18F8366049C690FC8AA4A992AA0765A6607F72E0EF889A5F3757E59FB1C143 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
22:12:51.0042 0x0a1c  ql40xx - ok
22:12:51.0102 0x0a1c  [ 90574842C3DA781E279061A3EFF91F07, F87DE7355DAA4FACF2126A0427C08BAAD9E647E0B02EE5447746BE969B28DA8D ] QWAVE           C:\Windows\system32\qwave.dll
22:12:51.0189 0x0a1c  QWAVE - ok
22:12:51.0220 0x0a1c  [ E8D76EDAB77EC9C634C27B8EAC33ADC5, 171A3C5D5C3C5845C3BF9A4BCD88E744B025C910AC2F528D0E7D66F173FF0BED ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:12:51.0275 0x0a1c  QWAVEdrv - ok
22:12:51.0309 0x0a1c  [ 1013B3B663A56D3DDD784F581C1BD005, 36B83F234C2D6A6112BC8B5EF0AB5075EE98AC0BED702C37E4C1C3D17EB49956 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:12:51.0390 0x0a1c  RasAcd - ok
22:12:51.0421 0x0a1c  [ B2AE18F847D07F0044404DDF7CB04497, 24B1D5E1D0621160640264656E3D447C611DEE1B0EE308971EF85F0AC3D9F7DD ] RasAuto         C:\Windows\System32\rasauto.dll
22:12:51.0516 0x0a1c  RasAuto - ok
22:12:51.0556 0x0a1c  [ AC7BC4D42A7E558718DFDEC599BBFC2C, E059EB9472FDDB73AF09FFEBA58D8284AFCDAB1516E0C5759980E60C892F8126 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:12:51.0615 0x0a1c  Rasl2tp - ok
22:12:51.0660 0x0a1c  [ 3AD83E4046C43BE510DE681588ACB8AF, C5445A23F35395B3EA3974C0D5E314E23D900C694D31F7B7A83FE9027D95A91C ] RasMan          C:\Windows\System32\rasmans.dll
22:12:51.0728 0x0a1c  RasMan - ok
22:12:51.0764 0x0a1c  [ 4517FBF8B42524AFE4EDE1DE102AAE3E, F01C8A773A637B66192BD16DDE467CAECC6E62853DBDB507FF3FC67B4B388988 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:12:51.0810 0x0a1c  RasPppoe - ok
22:12:51.0849 0x0a1c  [ C6A593B51F34C33E5474539544072527, 8182C1D15CDC164363D3DD355197160167A00BA9FA833AA444317D06344EF7CE ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
22:12:51.0894 0x0a1c  RasSstp - ok
22:12:51.0957 0x0a1c  [ 322DB5C6B55E8D8EE8D6F358B2AAABB1, 07B89F701594F680F50A885B923521763A6131104CEE63D422E1C359C23AE2F6 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:12:52.0024 0x0a1c  rdbss - ok
22:12:52.0073 0x0a1c  [ 603900CC05F6BE65CCBF373800AF3716, 83B010D51D1087673CF15FD0A992FD91CC910A073FEA9A8F20F6124B6E5489F2 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:12:52.0126 0x0a1c  RDPCDD - ok
22:12:52.0170 0x0a1c  [ C045D1FB111C28DF0D1BE8D4BDA22C06, 572986C93B982387EE94797A1EDE1C6C444B0F1078AC8201099452BFA021458F ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
22:12:52.0259 0x0a1c  rdpdr - ok
22:12:52.0279 0x0a1c  [ CAB9421DAF3D97B33D0D055858E2C3AB, 66C353CD310A91FAB0D0871ACCE71110595B63536560D0331DA70B1E33AC45BE ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:12:52.0391 0x0a1c  RDPENCDD - ok
22:12:52.0452 0x0a1c  [ AE4BD9E1C33D351D8E607FC81F15160C, AD785CA72B7C6EB9F94B2E797C758C0F804DB26EE056DDC6D4F85BB562A02EA4 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:12:52.0534 0x0a1c  RDPWD - ok
22:12:52.0580 0x0a1c  [ C612B9557DA73F70D41F8A6FBC8E5344, D7D11F202066F848FBD3F26D9FF915C7F3D68F30631393B2049F3AC5A40FD108 ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:12:52.0688 0x0a1c  RemoteAccess - ok
22:12:52.0743 0x0a1c  [ 44B9D8EC2F3EF3A0EFB00857AF70D861, A45D8024A242456A73337C91663A3E1633BF163234CDFD5DF86840F31FFFE84D ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:12:52.0801 0x0a1c  RemoteRegistry - ok
22:12:52.0837 0x0a1c  [ F46C457840D4B7A4DAAFEE739CE04102, 94E946036240B3BAFF17C4A49745E29E492ABBC7BE5110741B212DF4D7F45B84 ] RpcLocator      C:\Windows\system32\locator.exe
22:12:52.0891 0x0a1c  RpcLocator - ok
22:12:52.0951 0x0a1c  [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF, 3BE4B8EE22FA55D3A17D3718781C8BCA631C78F7928092561F6B79BB60E7D7FE ] RpcSs           C:\Windows\system32\rpcss.dll
22:12:53.0017 0x0a1c  RpcSs - ok
22:12:53.0049 0x0a1c  [ 22A9CB08B1A6707C1550C6BF099AAE73, 46A9D40A03DC0B6C93274C0C1CDB132B2339E76E77CAB0F12AEDAD4C31822B91 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:12:53.0104 0x0a1c  rspndr - ok
22:12:53.0130 0x0a1c  [ 260BF9C43EE12C6898A9F5AAB0FB0E5D, 6585A87CE55EE5C51B18DF86E8EDFC6A909D96C87522FF4183F8BA9355E8DD44 ] SamSs           C:\Windows\system32\lsass.exe
22:12:53.0147 0x0a1c  SamSs - ok
22:12:53.0180 0x0a1c  [ CD9C693589C60AD59BBBCFB0E524E01B, F9EBD4FF4C712A563B1120D123012E41105D31402BE45D6F8C8DA71155D64ECB ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
22:12:53.0208 0x0a1c  sbp2port - ok
22:12:53.0238 0x0a1c  [ FD1CDCF108D5EF3366F00D18B70FB89B, 5BCE3A9D5DC0B6937A734264C5B8DE0E6B8F77A869A118F94D57E662AAB28FE2 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:12:53.0301 0x0a1c  SCardSvr - ok
22:12:53.0362 0x0a1c  [ 0F838C811AD295D2A4489B9993096C63, 3DF2F973359249735810CB5AD52E05126A93A1C7D9F6274ACB018A0A125846BD ] Schedule        C:\Windows\system32\schedsvc.dll
22:12:53.0454 0x0a1c  Schedule - ok
22:12:53.0488 0x0a1c  [ 5A268127633C7EE2A7FB87F39D748D56, 45C530A0EE0108543A75B9427F77EBB5E8350AE16C235763B6F32E72CE15C449 ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:12:53.0520 0x0a1c  SCPolicySvc - ok
22:12:53.0568 0x0a1c  [ B42EE50F7D24F837F925332EB349ECA5, 5DA793DADA7E244A48FFE3249A0271974BA31839A70173F2F14BE80673C86014 ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
22:12:53.0654 0x0a1c  sdbus - ok
22:12:53.0775 0x0a1c  [ 4FF71B076A7760FE75EA5AE2D0EE0018, DDDBC9530120F8C1AB449076F6F06F74354149B4C458E6682F957628EE795DE8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:12:53.0888 0x0a1c  SDRSVC - ok
22:12:53.0922 0x0a1c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:12:54.0217 0x0a1c  secdrv - ok
22:12:54.0264 0x0a1c  [ 5ACDCBC67FCF894A1815B9F96D704490, FE0247A8BEDB860EBD46A9D49C641D0B9AA24EE34132CDDADC9F5A605238FDA7 ] seclogon        C:\Windows\system32\seclogon.dll
22:12:54.0367 0x0a1c  seclogon - ok
22:12:54.0402 0x0a1c  [ 90973A64B96CD647FF81C79443618EED, 1D3CB7F724B7EADA6443DF07B258EE7FB7FEC92C2A7A9D3C57F6A220EF0DDDC4 ] SENS            C:\Windows\System32\sens.dll
22:12:54.0515 0x0a1c  SENS - ok
22:12:54.0556 0x0a1c  [ F71BFE7AC6C52273B7C82CBF1BB2A222, 8C7F0E426B266DBBFE4BBE3333A33C338209BD8BE0E434A98D0D2CFD78D3F758 ] Serenum         C:\Windows\system32\drivers\serenum.sys
22:12:54.0667 0x0a1c  Serenum - ok
22:12:54.0699 0x0a1c  [ E62FAC91EE288DB29A9696A9D279929C, 9B6A420556532F7F8D55FB6580A592A43BEA579A068B970C741A23DB079ECAD1 ] Serial          C:\Windows\system32\drivers\serial.sys
22:12:54.0805 0x0a1c  Serial - ok
22:12:54.0837 0x0a1c  [ A842F04833684BCEEA7336211BE478DF, 9D964AEA237C44898098AC9C2D043F00C66EDA7D73C381D616737C01A9D0FF45 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
22:12:54.0895 0x0a1c  sermouse - ok
22:12:54.0949 0x0a1c  [ A8E4A4407A09F35DCCC3771AF590B0C4, F56ECE42CE81098FCCBCDFBBF006C3FB9EDD29C62F03C4EAE012EE690669481B ] SessionEnv      C:\Windows\system32\sessenv.dll
22:12:54.0999 0x0a1c  SessionEnv - ok
22:12:55.0017 0x0a1c  [ 14D4B4465193A87C127933978E8C4106, A5C3F2F09E9A0715529B05AC1020EF0F432121E129447795257087E0D6A812FC ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
22:12:55.0120 0x0a1c  sffdisk - ok
22:12:55.0145 0x0a1c  [ 7073AEE3F82F3D598E3825962AA98AB2, 82A959A0970CBA8CC16D44736ED12158E59E138484F3F53EBDD3A4C02DA3700D ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
22:12:55.0196 0x0a1c  sffp_mmc - ok
22:12:55.0222 0x0a1c  [ 35E59EBE4A01A0532ED67975161C7B82, 4F4296B8903FCD06439CC8BF93C703852E523834F09CF9121FDA729A988AF11B ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
22:12:55.0289 0x0a1c  sffp_sd - ok
22:12:55.0310 0x0a1c  [ 6B7838C94135768BD455CBDC23E39E5F, 868E054ED546479DEAD7C2834C7AB080820522C16F5B4BEF0F3B279A33ABA9C8 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
22:12:55.0414 0x0a1c  sfloppy - ok
22:12:55.0489 0x0a1c  [ 4C5AEE179DA7E1EE9A9CCB9DA289AF34, 9659C7B5046DE2C0416A74FDE6F798C3E78D38327CB71BAE49D57A8347A9097D ] SharedAccess    C:\Windows\System32\ipnathlp.dll
22:12:55.0594 0x0a1c  SharedAccess - ok
22:12:55.0651 0x0a1c  [ 56793271ECDEDD350C5ADD305603E963, 7A29407C1C550FF3A6A3544811ABD971E9C760B984A7E64D5A1440C69D6AF483 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:12:55.0743 0x0a1c  ShellHWDetection - ok
22:12:55.0786 0x0a1c  [ 7A5DE502AEB719D4594C6471060A78B3, E8E16DF8AFFC230FBB1A5938925D464A1BA776184B8C020B37669EE2105DB9F2 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
22:12:55.0818 0x0a1c  SiSRaid2 - ok
22:12:55.0845 0x0a1c  [ 3A2F769FAB9582BC720E11EA1DFB184D, 83EEBCE37E8709FCE15FB44F546C727C56064ED49B73A471EA33480573558419 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
22:12:55.0880 0x0a1c  SiSRaid4 - ok
22:12:55.0945 0x0a1c  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
22:12:55.0980 0x0a1c  SkypeUpdate - ok
22:12:56.0170 0x0a1c  [ A9A27A8E257B45A604FDAD4F26FE7241, C5A1056522EE2BA7B70D34E391477A0E9351569CEF28B875172F4B363F6D4177 ] slsvc           C:\Windows\system32\SLsvc.exe
22:12:56.0426 0x0a1c  slsvc - ok
22:12:56.0485 0x0a1c  [ FD74B4B7C2088E390A30C85A896FC3AF, 897F1F89A4DDB356CF6E59EFBC32A2081C0CADE283793DB6879D263F7B2E313F ] SLUINotify      C:\Windows\system32\SLUINotify.dll
22:12:56.0538 0x0a1c  SLUINotify - ok
22:12:56.0631 0x0a1c  [ 79ED2D6DEC26E0FEFB93EA21F09E6A51, 484E083E1D39AE8D54080E77EB199A447EE983EBDEC021EAAF4D478BD651AFE5 ] SmartFaceVWatchSrv C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatchSrv.exe
22:12:56.0654 0x0a1c  SmartFaceVWatchSrv - detected UnsignedFile.Multi.Generic ( 1 )
22:12:59.0433 0x0a1c  Detect skipped due to KSN trusted
22:12:59.0433 0x0a1c  SmartFaceVWatchSrv - ok
22:12:59.0511 0x0a1c  [ 290B6F6A0EC4FCDFC90F5CB6D7020473, 971888FE760641FF86165B9876E6FC12DBC309C0FED2734C60B9E0EBC078AAE0 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:12:59.0636 0x0a1c  Smb - ok
22:12:59.0697 0x0a1c  [ F8F47F38909823B1AF28D60B96340CFF, EFD948EE09F22F9F373A98BA6D9BC519FD9244986E4BE7B2BACD92D3C145AD1D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:12:59.0744 0x0a1c  SNMPTRAP - ok
22:12:59.0791 0x0a1c  [ 386C3C63F00A7040C7EC5E384217E89D, DD8766BCBD77EC6F67979A8B37B943A3A0E5478CE3FB129BF8FCA29B66529721 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:12:59.0816 0x0a1c  spldr - ok
22:13:00.0010 0x0a1c  [ F66FF751E7EFC816D266977939EF5DC3, 689BDD0B442830E162F2F9A8EFBD0E137F518C7F0CD92EDF4A43EFBA188B69F4 ] Spooler         C:\Windows\System32\spoolsv.exe
22:13:00.0145 0x0a1c  Spooler - ok
22:13:00.0412 0x0a1c  [ 880A57FCCB571EBD063D4DD50E93E46D, D46BA584D1C33F17C4156127742FA470AA044C4BCE9E6A209E5B1F3A44C73350 ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:13:00.0565 0x0a1c  srv - ok
22:13:00.0632 0x0a1c  [ A1AD14A6D7A37891FFFECA35EBBB0730, AE00950D330EE4C05F5AA9BC7E63E974766D8E93B607CB3E683C727E8A65049D ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:13:00.0701 0x0a1c  srv2 - ok
22:13:00.0737 0x0a1c  [ 4BED62F4FA4D8300973F1151F4C4D8A7, 1835895B3E837F8862F7F669DFBDF5EAB627E5656377624474C17E92CF440D2A ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:13:00.0794 0x0a1c  srvnet - ok
22:13:00.0842 0x0a1c  [ 192C74646EC5725AEF3F80D19FF75F6A, 8F24FF139A46B1F837356B9D682526107D7BADCFA510842FEACB6F06C02D93D9 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:13:00.0894 0x0a1c  SSDPSRV - ok
22:13:00.0947 0x0a1c  [ 2EE3FA0308E6185BA64A9A7F2E74332B, EC6A15281685E6CDEADABDFD08C4AF980AD3B404C945EB121D7F90AFCA3D6849 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
22:13:00.0982 0x0a1c  SstpSvc - ok
22:13:01.0126 0x0a1c  [ 15825C1FBFB8779992CB65087F316AF5, E9431C016D209A7322C0586F11EEF0AB461AB5822960287BB1D0FBC30183614D ] stisvc          C:\Windows\System32\wiaservc.dll
22:13:01.0217 0x0a1c  stisvc - ok
22:13:01.0271 0x0a1c  [ 8A851CA908B8B974F89C50D2E18D4F0C, 27EA13E50B5B72ABF6C5B7B7D34A7154A12BB27B1C1B2EEFCAA36A96010DB4DC ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
22:13:01.0286 0x0a1c  swenum - ok
22:13:01.0373 0x0a1c  [ 6DE37F4DE19D4EFD9C48C43ADDBC949A, 9C3714238571704CEE2AD4F1E15029243E00B494345C41F74EFDF3F0328CC9EA ] swprv           C:\Windows\System32\swprv.dll
22:13:01.0487 0x0a1c  swprv - ok
22:13:01.0665 0x0a1c  [ E1292C1ED4DEB17B8A9B586D22CB2061, 03303CD71BC6614D22374B5804967EBBD8B2C66B0C15CECBD022601CED81D72F ] Swupdtmr        c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
22:13:01.0830 0x0a1c  Swupdtmr - ok
22:13:01.0959 0x0a1c  [ 2F26A2C6FC96B29BEFF5D8ED74E6625B, 0227EAF144BC35AA4FF2535E8C9974C0609B7634EE45F4166B9F88F79B17BBF1 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
22:13:02.0018 0x0a1c  Symc8xx - ok
22:13:02.0129 0x0a1c  [ A909667976D3BCCD1DF813FED517D837, 0874DD4C1CA7AE2E519EBB45433BC9F11A574408F5D2F9E23A340CA76512F5CE ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
22:13:02.0185 0x0a1c  Sym_hi - ok
22:13:02.0385 0x0a1c  [ 36887B56EC2D98B9C362F6AE4DE5B7B0, 7349FABACB633A9EEE3D4E241A5F443C28D23CC87F21EAAB3F1711644AA21D7C ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
22:13:02.0443 0x0a1c  Sym_u3 - ok
22:13:02.0808 0x0a1c  [ 8DE55385370E47F0E851C9BD6C310E9D, 168B93C325959755405471DF408BF943DB0B28F39BFD65933A401710BECB57CC ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
22:13:02.0897 0x0a1c  SynTP - ok
22:13:03.0297 0x0a1c  [ 92D7A8B0F87B036F17D25885937897A6, 6759BAB11E5FBB143BE13DF1611AE5D41D379DF423D881E92E910DF6A37CBA85 ] SysMain         C:\Windows\system32\sysmain.dll
22:13:03.0554 0x0a1c  SysMain - ok
22:13:03.0701 0x0a1c  [ 005CE42567F9113A3BCCB3B20073B029, B1831D71410AD6E7DEB59D26BF6D2D07D2F6112936D6A6FDA57E9296ADA4076D ] TabletInputService C:\Windows\System32\TabSvc.dll
22:13:03.0805 0x0a1c  TabletInputService - ok
22:13:04.0015 0x0a1c  [ CC2562B4D55E0B6A4758C65407F63B79, C6AD05B345C699A715EC13830D8EA6EE9822F4B713D15B1F29AC044674A0F498 ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:13:04.0216 0x0a1c  TapiSrv - ok
22:13:04.0362 0x0a1c  [ CDBE8D7C1E201B911CDC346D06617FB5, 16D5965E32A109DA38D77F4B6281081569D78371B2F522DE51100967F8776C7A ] TBS             C:\Windows\System32\tbssvc.dll
22:13:04.0569 0x0a1c  TBS - ok
22:13:05.0171 0x0a1c  [ 89399663A2F0393AFFC79E8397ECA844, BA7D4DF5A2F5EB5328522D6136BB71F56263305B9396A437A8AFEF5A8C5C496C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:13:05.0802 0x0a1c  Tcpip - ok
22:13:06.0635 0x0a1c  [ 89399663A2F0393AFFC79E8397ECA844, BA7D4DF5A2F5EB5328522D6136BB71F56263305B9396A437A8AFEF5A8C5C496C ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
22:13:06.0874 0x0a1c  Tcpip6 - ok
22:13:06.0986 0x0a1c  [ A7FF25D9B9DA36797BD1EA48DB292DCE, D89C946633E77765923BD698F2665DC03C5CF1676EB2BAF4450A856B2E856997 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:13:07.0174 0x0a1c  tcpipreg - ok
22:13:07.0357 0x0a1c  [ D45586A9FACB2C9708B10E491EF748A6, 04F6A9D8B89DC8C2FAA77D415ACB12C51AA7FF65A2C9F209088232E447878B9C ] tdcmdpst        C:\Windows\system32\DRIVERS\tdcmdpst.sys
22:13:07.0407 0x0a1c  tdcmdpst - ok
22:13:07.0607 0x0a1c  [ 1D8BF4AAA5FB7A2761475781DC1195BC, A28E972E9331BAD685D4C786FDE221565E0AD3E222B24B9182B7FA916BFCD9C8 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:13:07.0939 0x0a1c  TDPIPE - ok
22:13:07.0998 0x0a1c  [ 7F7E00CDF609DF657F4CDA02DD1C9BB1, 42A408E82D4017D27D3B0BBBA02BF4B21DEC060C89849785ED65962D18029B65 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:13:08.0271 0x0a1c  TDTCP - ok
22:13:08.0337 0x0a1c  [ 458919C8C42E398DC4802178D5FFEE27, E38828411DCE0AE2E2BF0D270FD80E47B46EDE4B44DAFD1DF11F54D427EACEB5 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:13:08.0548 0x0a1c  tdx - ok
22:13:08.0642 0x0a1c  [ 8C19678D22649EC002EF2282EAE92F98, 551E7EBA54C2345F2B7FD7AAA7ADA4C852C94F1B35E6E4BBEF883BAFA34F6262 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
22:13:08.0708 0x0a1c  TermDD - ok
22:13:09.0010 0x0a1c  [ 5CDD30BC217082DAC71A9878D9BFD566, 260D40973F9EEAE9A1890B813D8DCC01A9434D17DCE5DA1D16B72A57DCF59194 ] TermService     C:\Windows\System32\termsrv.dll
22:13:09.0208 0x0a1c  TermService - ok
22:13:09.0333 0x0a1c  [ 56793271ECDEDD350C5ADD305603E963, 7A29407C1C550FF3A6A3544811ABD971E9C760B984A7E64D5A1440C69D6AF483 ] Themes          C:\Windows\system32\shsvcs.dll
22:13:09.0398 0x0a1c  Themes - ok
22:13:09.0478 0x0a1c  [ 3CBE4995E80E13CCFBC42E5DCF3AC81A, 18B0E3E83E41C80809E8140F4C90AB051566C84DD891EA411746EA74E6EAF053 ] THREADORDER     C:\Windows\system32\mmcss.dll
22:13:09.0536 0x0a1c  THREADORDER - ok
22:13:09.0872 0x0a1c  [ B146492A882A25A2DF1DB4668FCED6C8, B8C46B4536A7DE5A39EB7EE6F4BB6A7962FFA25563AF8ED8615B439123027E92 ] TNaviSrv        C:\Program Files (x86)\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
22:13:09.0928 0x0a1c  TNaviSrv - ok
22:13:10.0089 0x0a1c  [ 19AF3434564E973BC232BBD629EC2BF6, 1791B3221F83E7E77A773F9635F1D304E06DCAAD5366292A227A2A453A9B196B ] TODDSrv         C:\Windows\system32\TODDSrv.exe
22:13:10.0134 0x0a1c  TODDSrv - detected UnsignedFile.Multi.Generic ( 1 )
22:13:12.0894 0x0a1c  Detect skipped due to KSN trusted
22:13:12.0894 0x0a1c  TODDSrv - ok
22:13:12.0955 0x0a1c  [ E17A81E6AD0E89630A3B0F2ED5CBBDF5, BD5B4C1133E0A7ED1A11249ABAB43F42C840F9A4B2168ED1A1B227275E2585D8 ] TosCoSrv        C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
22:13:13.0003 0x0a1c  TosCoSrv - ok
22:13:13.0157 0x0a1c  [ 4E5A8546709591D31BA086CA2A69CECD, 228A3058DC833301322CA08CCA7562792F5B03B4B98583D319C70125152F06D6 ] TOSHIBA Bluetooth Service C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
22:13:13.0205 0x0a1c  TOSHIBA Bluetooth Service - ok
22:13:13.0255 0x0a1c  [ 19D979B9F6373A7CB17EBB7594FEB819, BCA98AE2AFA37E9FCEB5AFAABB565E4C8F6D4F0D621B43EE0E07D37C57817DB9 ] TOSHIBA SMART Log Service C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
22:13:13.0300 0x0a1c  TOSHIBA SMART Log Service - detected UnsignedFile.Multi.Generic ( 1 )
22:13:16.0133 0x0a1c  Detect skipped due to KSN trusted
22:13:16.0134 0x0a1c  TOSHIBA SMART Log Service - ok
22:13:16.0157 0x0a1c  Tosrfcom - ok
22:13:16.0335 0x0a1c  [ 9FB4AA68D4E833C795994513BC9E3ACA, 30435285E183FF8C5A333B927EFC80999889107E902CB1F8FE2516A2D85BDB17 ] tosrfec         C:\Windows\system32\DRIVERS\tosrfec.sys
22:13:16.0435 0x0a1c  tosrfec - ok
22:13:16.0604 0x0a1c  [ 711EE5EA958C345A50B69ABBBD74D646, 6244A2632B2A7E4190C677638590FCFECFB9CDDB378921820A42AD61568CC740 ] tos_sps64       C:\Windows\system32\DRIVERS\tos_sps64.sys
22:13:16.0795 0x0a1c  tos_sps64 - ok
22:13:16.0879 0x0a1c  [ F4689F05AF472A651A7B1B7B02D200E7, 3D34B8879DBC69013D1A87A3F47B8A622A60B57F2E962E9F5925C5A01F44640F ] TrkWks          C:\Windows\System32\trkwks.dll
22:13:17.0027 0x0a1c  TrkWks - ok
22:13:17.0127 0x0a1c  [ 66328B08EF5A9305D8EDE36B93930369, FD8136BF15AB8D2DB15D011C4F813737D68EED1178462DB8CE40606C16185A30 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:13:17.0211 0x0a1c  TrustedInstaller - ok
22:13:17.0386 0x0a1c  [ B2388462329ACD17AF50D8701E0C1B18, 959D7B7CCB526367645BAA11C56C88C9AD741EE338BAD6513C54FC7ED43F3AC0 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:13:17.0518 0x0a1c  tssecsrv - ok
22:13:17.0650 0x0a1c  [ 89EC74A9E602D16A75A4170511029B3C, AACD82A6F5FE31FF1315F5CA69E5EB6BD172DD86610F0641177CCC131B542034 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
22:13:17.0708 0x0a1c  tunmp - ok
22:13:17.0873 0x0a1c  [ 30A9B3F45AD081BFFC3BCAA9C812B609, 57204F1F72FEFA086FF1D8A14487D56F4DEDD3C50FBB6903E0C4AC749EA720DE ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:13:17.0984 0x0a1c  tunnel - ok
22:13:18.0051 0x0a1c  [ 9A744CC3D804EC38A6C2C65BC3C6FCD8, 28CDF1A8614444F4A7249FB7189B423579CA91D1373138CD3E6C048CE6D2799F ] TVALZ           C:\Windows\system32\DRIVERS\TVALZ_O.SYS
22:13:18.0106 0x0a1c  TVALZ - ok
22:13:18.0181 0x0a1c  [ FEC266EF401966311744BD0F359F7F56, 6EE0223AEFA7A81BEB155FC0CD4421C2BEBCDCBC9663C23064B0445101114BF8 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
22:13:18.0241 0x0a1c  uagp35 - ok
22:13:18.0425 0x0a1c  [ FAF2640A2A76ED03D449E443194C4C34, CC2517DCFE6962EB2EDEB93E44CB53B113974C9C69A050E3F36385C8D78E810B ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:13:18.0659 0x0a1c  udfs - ok
22:13:18.0790 0x0a1c  [ 060507C4113391394478F6953A79EEDC, 5D0AE5F1184165289DC8E8CD493607FCB68512CF90F748E3BFD2250655D784D4 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:13:18.0906 0x0a1c  UI0Detect - ok
22:13:19.0058 0x0a1c  [ 332D341D92B933600D41953B08360DFB, 213A5C84ABB0D627C05B355084A26A5081645D4EC398FF19EF6BBCB690B10055 ] UleadBurningHelper C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
22:13:19.0117 0x0a1c  UleadBurningHelper - detected UnsignedFile.Multi.Generic ( 1 )
22:13:21.0913 0x0a1c  Detect skipped due to KSN trusted
22:13:21.0913 0x0a1c  UleadBurningHelper - ok
22:13:22.0015 0x0a1c  [ 4EC9447AC3AB462647F60E547208CA00, F304125321B1ECA915EDDBDB6A71EAEF3123DCB5604C9497D72F12E0C1BD5315 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
22:13:22.0085 0x0a1c  uliagpkx - ok
22:13:22.0153 0x0a1c  [ 697F0446134CDC8F99E69306184FBBB4, A741882B8FE403E3A5DECED5D4A2254B14AF40ACECD4DAA3D00D71C2205C2C5F ] uliahci         C:\Windows\system32\drivers\uliahci.sys
22:13:22.0239 0x0a1c  uliahci - ok
22:13:22.0294 0x0a1c  [ 31707F09846056651EA2C37858F5DDB0, A619AC4B32EA77AC29458894614870086C4DDB81525ADBCFF1AB8970FC5C257A ] UlSata          C:\Windows\system32\drivers\ulsata.sys
22:13:22.0342 0x0a1c  UlSata - ok
22:13:22.0419 0x0a1c  [ 85E5E43ED5B48C8376281BAB519271B7, DBDA4216553F7C5EA0C579346D0A638E62766D5B8FCB1BFF3149BB37BBF978D3 ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
22:13:22.0482 0x0a1c  ulsata2 - ok
22:13:22.0539 0x0a1c  [ 46E9A994C4FED537DD951F60B86AD3F4, 256F93ED3BD43B50F0D4489164D959F95AB070CC25A80A46355D2B387D336224 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
22:13:22.0606 0x0a1c  umbus - ok
22:13:22.0697 0x0a1c  [ 7093799FF80E9DECA0680D2E3535BE60, 1CBFCCA84CB9212176BF5A1D32334BD54E58A2668A4746252738800468AD4AD4 ] upnphost        C:\Windows\System32\upnphost.dll
22:13:22.0820 0x0a1c  upnphost - ok
22:13:22.0935 0x0a1c  [ A565B509000BD3E42A9B93B9FFD40D3D, A22734F2DDAAD743D479D40EA91024F1A16A18D9D6C9FC4F90F3930AD040BFA3 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
22:13:23.0049 0x0a1c  usbaudio - ok
22:13:23.0174 0x0a1c  [ 858CC93477F9A9383E07861892600FF9, C72B25E7F6AF46AC22F8D2A1FA0345B290AAE642442C8A388EA75944334BB289 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
22:13:23.0296 0x0a1c  usbccgp - ok
22:13:23.0439 0x0a1c  [ 9247F7E0B65852C1F6631480984D6ED2, E3360A0EE891B8BADEF5FF53F796C79D6AD218961087F866E451F3B6F278672A ] usbcir          C:\Windows\system32\drivers\usbcir.sys
22:13:23.0615 0x0a1c  usbcir - ok
22:13:23.0696 0x0a1c  [ 82C3790E4E6F35087EF00994C7A72988, 95FA022BDAC65DCD2DA52C8FCC1F2C186B321F4599F40CB90262E24FD10AE16C ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
22:13:23.0806 0x0a1c  usbehci - ok
22:13:23.0995 0x0a1c  [ BE2EB33AF6EE2E5DA07EB987E0A321F5, 0FCFABA080C553451AE4FAFB54DFE57639251D97DA204C07EC66F469826F3B46 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
22:13:24.0079 0x0a1c  usbhub - ok
22:13:24.0135 0x0a1c  [ 396041C6EA61202991221AA6A3B16190, 42B2372CF3496F53710C1DEBE49E18B1DAD38F7474A72B0F744DD98EBD3E21E5 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
22:13:24.0204 0x0a1c  usbohci - ok
22:13:24.0287 0x0a1c  [ ACFEE697AF477021BB3EC78C5431FED2, DE529549074E7CA1601D889D62CFF45F00741EB584F9F2091D61527944334C2A ] usbprint        C:\Windows\system32\drivers\usbprint.sys
22:13:24.0554 0x0a1c  usbprint - ok
22:13:24.0658 0x0a1c  [ B854C1558FCA0C269A38663E8B59B581, 08CC36B33FA2281FC88671BE051863AA8CA911446D24596049DB77FB4CB09EA6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:13:24.0769 0x0a1c  USBSTOR - ok
22:13:24.0890 0x0a1c  [ B2872CBF9F47316ABD0E0C74A1ABA507, E9FB3EEA1D834A035675E22A3224E4E278C4D304F6511822D83250409D62BD3A ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
22:13:24.0954 0x0a1c  usbuhci - ok
22:13:25.0160 0x0a1c  [ BF7A051DCCBA57C95541135B29CE0FB4, F3570ED5B57CB64A8222164038D53D1C2009013C50CFDE2E6105E8D4F642FEA6 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
22:13:25.0277 0x0a1c  usbvideo - ok
22:13:25.0340 0x0a1c  [ 060B7863943625E0193A3575C0C59E52, BF1DD3FEA873D7FCFC1A1E2FC342D4BAA1A244F47FCC8F6A00F11FF164086A51 ] UVCFTR          C:\Windows\system32\Drivers\UVCFTR_S.SYS
22:13:25.0392 0x0a1c  UVCFTR - ok
22:13:25.0533 0x0a1c  [ D76E231E4850BB3F88A3D9A78DF191E3, 98CAD31C41AD155EA853DF850D94FA29543C3A7D26262D1B6881281D033CEBAF ] UxSms           C:\Windows\System32\uxsms.dll
22:13:25.0636 0x0a1c  UxSms - ok
22:13:25.0728 0x0a1c  [ 294945381DFA7CE58CECF0A9896AF327, 67414C6D79D2826BC86BB37349C9D74DB4B667310CBC1ABFD103E26332AE4A00 ] vds             C:\Windows\System32\vds.exe
22:13:25.0844 0x0a1c  vds - ok
22:13:25.0949 0x0a1c  [ 916B94BCF1E09873FFF2D5FB11767BBC, 072007FED4EF30C4D7AF8628CBEB2AC99EEAD99D7AB533E90E3748E3D4F11C28 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:13:26.0085 0x0a1c  vga - ok
22:13:26.0142 0x0a1c  [ B83AB16B51FEDA65DD81B8C59D114D63, 97D39AA763037752D87216B83896AFD2AD6DFEBB3BCDCED7A9ABFE5706B804C5 ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:13:26.0205 0x0a1c  VgaSave - ok
22:13:26.0252 0x0a1c  [ 8294B6C3FDB6C33F24E150DE647ECDAA, FEBD9536EF61F700DFD5D9CB815808C8415D5B23590B3CE17B12D84F4670EA4D ] viaide          C:\Windows\system32\drivers\viaide.sys
22:13:26.0279 0x0a1c  viaide - ok
22:13:26.0342 0x0a1c  [ 2B7E885ED951519A12C450D24535DFCA, 249009EBC1D306D51FDFA4A89588462AA2D8B6DF0A20BE250B60DD73200CB7F3 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
22:13:26.0377 0x0a1c  volmgr - ok
22:13:26.0498 0x0a1c  [ CEC5AC15277D75D9E5DEC2E1C6EAF877, EA989E257C4409F9AF3B35C4D7ED9134D930FE3733B077C4F3AA5497796F2CB0 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:13:26.0579 0x0a1c  volmgrx - ok
22:13:26.0674 0x0a1c  [ 582F710097B46140F5A89A19A6573D4B, 6F695B17BF476D027D3012352F3D4DFD0E0815823DA51A136767ECEF6D64A1CA ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:13:26.0725 0x0a1c  volsnap - ok
22:13:26.0996 0x0a1c  [ A68F455ED2673835209318DD61BFBB0E, 8B2B255E8E2F8B415F7AC0F7F4C423F639DD47737F7CEE0F7C816D9A6893C5F7 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
22:13:27.0375 0x0a1c  vsmraid - ok
22:13:27.0844 0x0a1c  [ B75232DAD33BFD95BF6F0A3E6BFF51E1, A8120040F144AD42A39347A615F31BF752634994D4D134E2FAD23FEA9C1D71DF ] VSS             C:\Windows\system32\vssvc.exe
22:13:28.0178 0x0a1c  VSS - ok
22:13:28.0355 0x0a1c  [ F14A7DE2EA41883E250892E1E5230A9A, EBCB74BE26437F6FE84A3B41AD034F451D4BD12CA77D4C7A433DB912E7D31593 ] W32Time         C:\Windows\system32\w32time.dll
22:13:28.0521 0x0a1c  W32Time - ok
22:13:28.0587 0x0a1c  [ FEF8FE5923FEAD2CEE4DFABFCE3393A7, D682FBF78CF987609AF35A019E7C90CBE02800D7DFC272FFDD71D82AA362FA7A ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
22:13:28.0799 0x0a1c  WacomPen - ok
22:13:28.0903 0x0a1c  [ B8E7049622300D20BA6D8BE0C47C0CFD, 57CF218D1F7D505E354A15C552D94E3C5A68C2B07D7A76EBB0C87A0BFF5772D9 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
22:13:29.0056 0x0a1c  Wanarp - ok
22:13:29.0085 0x0a1c  [ B8E7049622300D20BA6D8BE0C47C0CFD, 57CF218D1F7D505E354A15C552D94E3C5A68C2B07D7A76EBB0C87A0BFF5772D9 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:13:29.0152 0x0a1c  Wanarpv6 - ok
22:13:29.0299 0x0a1c  [ B4E4C37D0AA6100090A53213EE2BF1C1, 67107F542F3C937FA5D9B28BA2EBFE994FFE287F16C0BFCF79AD20B95C13F78B ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:13:29.0394 0x0a1c  wcncsvc - ok
22:13:29.0461 0x0a1c  [ EA4B369560E986F19D93F45A881484AC, B61411D64901C9CB8C80402CD1E8808F5A0FACA38206C8D584C7C1019F5ADF5A ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:13:29.0555 0x0a1c  WcsPlugInService - ok
22:13:29.0630 0x0a1c  [ 0C17A0816F65B89E362E682AD5E7266E, 6233213D07B234056A1EC6FE1166A65371645269132B428FF3A29DDC0000301A ] Wd              C:\Windows\system32\drivers\wd.sys
22:13:29.0662 0x0a1c  Wd - ok
22:13:29.0985 0x0a1c  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:13:30.0090 0x0a1c  Wdf01000 - ok
22:13:30.0174 0x0a1c  [ C5EFDA73EBFCA8B02A094898DE0A9276, DE54E06CBE20EB27D88B29C3AE19CDFA0AE4933D6DCD640912C74A1065C9391C ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:13:30.0289 0x0a1c  WdiServiceHost - ok
22:13:30.0309 0x0a1c  [ C5EFDA73EBFCA8B02A094898DE0A9276, DE54E06CBE20EB27D88B29C3AE19CDFA0AE4933D6DCD640912C74A1065C9391C ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:13:30.0373 0x0a1c  WdiSystemHost - ok
22:13:30.0477 0x0a1c  [ 3E6D05381CF35F75EBB055544A8ED9AC, BEC43932BD6C34406B8850E28178B937BFD9512E49FD9F8C54DA7EE272B478A9 ] WebClient       C:\Windows\System32\webclnt.dll
22:13:30.0548 0x0a1c  WebClient - ok
22:13:30.0623 0x0a1c  [ 8D40BC587993F876658BF9FB0F7D3462, 23748E11F5CCE3D4978D748780283FA5A1154F53FF70D924CB2128FF8A4705F7 ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:13:30.0687 0x0a1c  Wecsvc - ok
22:13:30.0741 0x0a1c  [ 9C980351D7E96288EA0C23AE232BD065, BA627B04C4259716B451F421F5310A69D8DE9407DE496AA0489139125E9DC16A ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:13:30.0811 0x0a1c  wercplsupport - ok
22:13:30.0863 0x0a1c  [ 66B9ECEBC46683F47EDC06333C075FEF, 35C33596D97DB65DE0A687644E9AD924AD5FCBAFD83FE4D23E7E58EF4BC4CC87 ] WerSvc          C:\Windows\System32\WerSvc.dll
22:13:30.0984 0x0a1c  WerSvc - ok
22:13:31.0024 0x0a1c  WinDefend - ok
22:13:31.0063 0x0a1c  WinHttpAutoProxySvc - ok
22:13:31.0424 0x0a1c  [ D2E7296ED1BD26D8DB2799770C077A02, B494719C2DEB7B9D2505866868143C4E4F59B88461920AA49BD9F1251B6571B8 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:13:31.0619 0x0a1c  Winmgmt - ok
22:13:32.0162 0x0a1c  [ 6CBB0C68F13B9C2EC1B16F5FA5E7C869, 22D53818F4A4ACE441E121151CFD7CB1EDF5E8303DF9E113C9BB304B418A96EF ] WinRM           C:\Windows\system32\WsmSvc.dll
22:13:32.0538 0x0a1c  WinRM - ok
22:13:32.0637 0x0a1c  [ EC339C8115E91BAED835957E9A677F16, 3BBE6D4F1731198E8F0CFEE67C4CCA5C31E6968F8E02EF9E029C1847A26F513B ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:13:32.0717 0x0a1c  Wlansvc - ok
22:13:32.0774 0x0a1c  [ E18AEBAAA5A773FE11AA2C70F65320F5, 9E2F6FC0F46D0EEEBF4BC1E3D8800B3D268079ABF8EDDD70CD21B789883D7390 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
22:13:32.0887 0x0a1c  WmiAcpi - ok
22:13:33.0001 0x0a1c  [ 21FA389E65A852698B6A1341F36EE02D, 2D60911EAAE26C4CE3DEF4FAD1EDE093F912209AA90741AAA8B93F06B37DF605 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:13:33.0132 0x0a1c  wmiApSrv - ok
22:13:33.0192 0x0a1c  WMPNetworkSvc - ok
22:13:33.0276 0x0a1c  [ CBC156C913F099E6680D1DF9307DB7A8, FD8B227F445679E31048CA41442A978A98F267FED96E22C235F63C72AEEE2AB0 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:13:33.0414 0x0a1c  WPCSvc - ok
22:13:33.0507 0x0a1c  [ 490A18B4E4D53DC10879DEAA8E8B70D9, D069D8C22CF78A0970E85C0B9879E08FF19458FAA75AE447BCF9236731F64252 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:13:33.0678 0x0a1c  WPDBusEnum - ok
22:13:33.0793 0x0a1c  [ 5E2401B3FC1089C90E081291357371A9, 224D378EEBFB721CBC24896CAE01B31DC54B6ED82C19C5B954E96D5E98B83C59 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
22:13:33.0881 0x0a1c  WpdUsb - ok
22:13:34.0474 0x0a1c  [ A2BFEDF5D926CBED9C5F7BC46169A99C, 4F336C0D1DFBCDF9583F528331300FD377AE6565E0C70D58CD9E6ACE95B7273F ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:13:34.0682 0x0a1c  WPFFontCache_v0400 - ok
22:13:34.0765 0x0a1c  [ 8A900348370E359B6BFF6A550E4649E1, 3EAD0B951EAF8E940ED6A79FAAAB7D22ACCF3985795F80206A3A07161D319B39 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:13:34.0895 0x0a1c  ws2ifsl - ok
22:13:34.0955 0x0a1c  [ 9EA3E6D0EF7A5C2B9181961052A4B01A, F39BAF1FC7DD1600C0052C2A6AA3BCBC8CA3DA96D1AC7B42B0F2810D051EE1B0 ] wscsvc          C:\Windows\System32\wscsvc.dll
22:13:34.0997 0x0a1c  wscsvc - ok
22:13:35.0085 0x0a1c  [ DE5F5212AB34221DD1618B5FEFE8DB6C, D07CBEE66F7A42EBE68212A01BDCC32EDF1810841F1BD77AE7950B1AD6DAB5DB ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
22:13:35.0196 0x0a1c  WSDPrintDevice - ok
22:13:35.0213 0x0a1c  WSearch - ok
22:13:35.0937 0x0a1c  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
22:13:36.0173 0x0a1c  wuauserv - ok
22:13:36.0234 0x0a1c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
22:13:36.0312 0x0a1c  WudfPf - ok
22:13:36.0423 0x0a1c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
22:13:36.0554 0x0a1c  WUDFRd - ok
22:13:36.0709 0x0a1c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:13:36.0816 0x0a1c  wudfsvc - ok
22:13:37.0000 0x0a1c  [ 3373A1402397BD13455608E5852E1505, D78A4A6A7538974B588119A6B3A691F6F9B7EAC6373E3D94C73A65D07EBF0789 ] yukonx64        C:\Windows\system32\DRIVERS\yk60x64.sys
22:13:37.0154 0x0a1c  yukonx64 - ok
22:13:37.0180 0x0a1c  ================ Scan global ===============================
22:13:37.0259 0x0a1c  [ 060DC3A7A9A2626031EB23D90151428D, 4AADA06E83603E9D4894D6CFC8DADB018307B384F438C809D4BC8E22BD937C3B ] C:\Windows\system32\basesrv.dll
22:13:37.0447 0x0a1c  [ D665D594B7E11133D29D726BDDC7A5B0, 8EE45E719ACB23F388F2BE7E4311588E90DE7CF50988927CF0FED36DE380FACB ] C:\Windows\system32\winsrv.dll
22:13:37.0902 0x0a1c  [ D665D594B7E11133D29D726BDDC7A5B0, 8EE45E719ACB23F388F2BE7E4311588E90DE7CF50988927CF0FED36DE380FACB ] C:\Windows\system32\winsrv.dll
22:13:38.0089 0x0a1c  [ 934E0B7D77FF78C18D9F8891221B6DE3, BB1ACD3CD6482D8B7C5931E8733B8094D2CE59C4FBC4012BD0799C8DC367FB74 ] C:\Windows\system32\services.exe
22:13:38.0138 0x0a1c  [ Global ] - ok
22:13:38.0146 0x0a1c  ================ Scan MBR ==================================
22:13:38.0182 0x0a1c  [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
22:13:39.0560 0x0a1c  \Device\Harddisk0\DR0 - detected TDSS File System ( 1 )
22:13:39.0560 0x0a1c  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
22:13:42.0194 0x0a1c  ================ Scan VBR ==================================
22:13:42.0380 0x0a1c  [ A36DF6E6D5A575A4BE3DEB9D196C27D9 ] \Device\Harddisk0\DR0\Partition1
22:13:42.0472 0x0a1c  \Device\Harddisk0\DR0\Partition1 - ok
22:13:42.0474 0x0a1c  ================ Scan active images ========================
22:13:42.0487 0x0a1c  [ 4F4E1093ADFBAE48544DA6E7CCF09FE4, DBD6D1B1EA8603D16CB26F6C5AB30899BEE642DA8FEC4FE1509ADFD355339353 ] C:\Windows\System32\drivers\crashdmp.sys
22:13:42.0488 0x0a1c  C:\Windows\System32\drivers\crashdmp.sys - ok
22:13:42.0506 0x0a1c  [ 7E7270D67964C9EDDE6BFDAAC07B7999, B35D239C57290CC1428C59DBAD20767DC06C3E37D8A73D3FAD5CC7F462EAF8F6 ] C:\Windows\System32\drivers\Dumpata.sys
22:13:42.0506 0x0a1c  C:\Windows\System32\drivers\Dumpata.sys - ok
22:13:42.0532 0x0a1c  [ AA459F2AB3AB603C357FF117CAE3D818, C633178227A0C446920908967E6F2F4979BE77209C7377B9A41B90F5F31B41B3 ] C:\Windows\System32\drivers\msahci.sys
22:13:42.0532 0x0a1c  C:\Windows\System32\drivers\msahci.sys - ok
22:13:42.0561 0x0a1c  [ 30A9B3F45AD081BFFC3BCAA9C812B609, 57204F1F72FEFA086FF1D8A14487D56F4DEDD3C50FBB6903E0C4AC749EA720DE ] C:\Windows\System32\drivers\tunnel.sys
22:13:42.0561 0x0a1c  C:\Windows\System32\drivers\tunnel.sys - ok
22:13:42.0586 0x0a1c  [ 89EC74A9E602D16A75A4170511029B3C, AACD82A6F5FE31FF1315F5CA69E5EB6BD172DD86610F0641177CCC131B542034 ] C:\Windows\System32\drivers\TUNMP.SYS
22:13:42.0586 0x0a1c  C:\Windows\System32\drivers\TUNMP.SYS - ok
22:13:42.0612 0x0a1c  [ 5080E59ECEE0BC923F14018803AA7A01, 2E201511821AECCF056962399AFA3533ED765A3E7FD30E7B38A6D13837367E69 ] C:\Windows\System32\drivers\processr.sys
22:13:42.0612 0x0a1c  C:\Windows\System32\drivers\processr.sys - ok
22:13:42.0626 0x0a1c  [ E18AEBAAA5A773FE11AA2C70F65320F5, 9E2F6FC0F46D0EEEBF4BC1E3D8800B3D268079ABF8EDDD70CD21B789883D7390 ] C:\Windows\System32\drivers\wmiacpi.sys
22:13:42.0626 0x0a1c  C:\Windows\System32\drivers\wmiacpi.sys - ok
22:13:42.0640 0x0a1c  [ F59742A4507960B9013365C74DC25C48, 6D46F7B7DD973BE478631CED7C28DF7FEA494466477DDA9F1A9CE44DB98986D2 ] C:\Windows\System32\drivers\atikmdag.sys
22:13:42.0640 0x0a1c  C:\Windows\System32\drivers\atikmdag.sys - ok
22:13:42.0654 0x0a1c  [ 2F956EA22FCCE4C9F15C64175C891A1E, 02D5B295220897CBE7A44DEE75CB01556DE827CBEA632E82104EFFBD0AF1793E ] C:\Windows\System32\drivers\watchdog.sys
22:13:42.0654 0x0a1c  C:\Windows\System32\drivers\watchdog.sys - ok
22:13:42.0669 0x0a1c  [ 362CCEF305F45829316D62D3410F2062, 35033749E9B6B5AFC9C8C305F4AA1597E9776D465E7BBC24A20E836B7BEF0D73 ] C:\Windows\System32\drivers\dxgkrnl.sys
22:13:42.0669 0x0a1c  C:\Windows\System32\drivers\dxgkrnl.sys - ok
22:13:42.0683 0x0a1c  [ 3373A1402397BD13455608E5852E1505, D78A4A6A7538974B588119A6B3A691F6F9B7EAC6373E3D94C73A65D07EBF0789 ] C:\Windows\System32\drivers\yk60x64.sys
22:13:42.0683 0x0a1c  C:\Windows\System32\drivers\yk60x64.sys - ok
22:13:42.0697 0x0a1c  [ 45511C7E870D3ADDDD60049232EA96B3, 02982BE10E4882E140345BEBE3E60A6FF139B936740F98AA1E72696856F62491 ] C:\Windows\System32\drivers\athrx.sys
22:13:42.0697 0x0a1c  C:\Windows\System32\drivers\athrx.sys - ok
22:13:42.0711 0x0a1c  [ 6ABF41B83C9691DB492BD209C6967116, 353BD8DB29DCD1B62B1CFFEB4B0A9D4278764AFC0C7F66F919572070DE7455EF ] C:\Windows\System32\drivers\usbport.sys
22:13:42.0711 0x0a1c  C:\Windows\System32\drivers\usbport.sys - ok
22:13:42.0727 0x0a1c  [ 396041C6EA61202991221AA6A3B16190, 42B2372CF3496F53710C1DEBE49E18B1DAD38F7474A72B0F744DD98EBD3E21E5 ] C:\Windows\System32\drivers\usbohci.sys
22:13:42.0727 0x0a1c  C:\Windows\System32\drivers\usbohci.sys - ok
22:13:42.0743 0x0a1c  [ 82C3790E4E6F35087EF00994C7A72988, 95FA022BDAC65DCD2DA52C8FCC1F2C186B321F4599F40CB90262E24FD10AE16C ] C:\Windows\System32\drivers\usbehci.sys
22:13:42.0743 0x0a1c  C:\Windows\System32\drivers\usbehci.sys - ok
22:13:42.0757 0x0a1c  [ D45586A9FACB2C9708B10E491EF748A6, 04F6A9D8B89DC8C2FAA77D415ACB12C51AA7FF65A2C9F209088232E447878B9C ] C:\Windows\System32\drivers\tdcmdpst.sys
22:13:42.0757 0x0a1c  C:\Windows\System32\drivers\tdcmdpst.sys - ok
22:13:42.0766 0x0a1c  [ C025AA69BE3D0D25C7A2E746EF6F94FC, F4754B23CC256ADF92FDD42A9BA80F1ACB74834A58FCBEA2C52650FAFC7F9483 ] C:\Windows\System32\drivers\cdrom.sys
22:13:42.0767 0x0a1c  C:\Windows\System32\drivers\cdrom.sys - ok
22:13:42.0779 0x0a1c  [ F942C5820205F2FB453243EDFEC82A3D, 17A6A3DCF884FB524C93F2477D97E9F2B8E547709F8F2AEA93BEEA322B62E914 ] C:\Windows\System32\drivers\hdaudbus.sys
22:13:42.0779 0x0a1c  C:\Windows\System32\drivers\hdaudbus.sys - ok
22:13:42.0793 0x0a1c  [ CBB597659A2713CE0C9CC20C88C7591F, A2BAC75F7247D871842A32EAA7594D338E728D1BFEAEA3C1FCDBF65F007BC06A ] C:\Windows\System32\drivers\i8042prt.sys
22:13:42.0793 0x0a1c  C:\Windows\System32\drivers\i8042prt.sys - ok
22:13:42.0808 0x0a1c  [ 423696F3BA6472DD17699209B933BC26, 00C2EAA1A8E9D422D178B7678598743234930C1858D76C632F079EF789BB56C3 ] C:\Windows\System32\drivers\kbdclass.sys
22:13:42.0808 0x0a1c  C:\Windows\System32\drivers\kbdclass.sys - ok
22:13:42.0820 0x0a1c  [ 9367304E5E412B120CF5F4EA14E4E4F1, F87EBACEE27A50E6610FDCB4BD3001C35A99FEE6D63D643FF2CBF0D484CD082C ] C:\Windows\System32\drivers\mouclass.sys
22:13:42.0821 0x0a1c  C:\Windows\System32\drivers\mouclass.sys - ok
22:13:42.0835 0x0a1c  [ 8DE55385370E47F0E851C9BD6C310E9D, 168B93C325959755405471DF408BF943DB0B28F39BFD65933A401710BECB57CC ] C:\Windows\System32\drivers\SynTP.sys
22:13:42.0835 0x0a1c  C:\Windows\System32\drivers\SynTP.sys - ok
22:13:42.0850 0x0a1c  [ 7BCE39EE2B61BC3A17E80BC0583F6797, 4FC84BA8C4BA655A9D12E7C09A05C3A77E5519EE8C83A6B53C1C761A3FD23819 ] C:\Windows\System32\drivers\usbd.sys
22:13:42.0850 0x0a1c  C:\Windows\System32\drivers\usbd.sys - ok
22:13:42.0860 0x0a1c  [ 4BA7814D6067E313A8713CAEB7239594, 3F9BDBAF318F794DD413E210FFD0406D9CE2EDBAD9ACCFE382624F0E051657ED ] C:\Windows\System32\drivers\1394bus.sys
22:13:42.0860 0x0a1c  C:\Windows\System32\drivers\1394bus.sys - ok
22:13:42.0874 0x0a1c  [ B5B1CE65AC15BBD11C0619E3EF7CFC28, E9AA27724A7576D1869FF861A498DB8AF79A7B297F10272F1D63E6CB88CD455B ] C:\Windows\System32\drivers\ohci1394.sys
22:13:42.0874 0x0a1c  C:\Windows\System32\drivers\ohci1394.sys - ok
22:13:42.0884 0x0a1c  [ 6531DCED1F12F8863F5C335C4A89A02E, CC4DFCA4BCDC7E6F611C1630306CBC9FE146578B9C98E038587D694863889966 ] C:\Windows\System32\drivers\o2mdx64.sys
22:13:42.0884 0x0a1c  C:\Windows\System32\drivers\o2mdx64.sys - ok
22:13:42.0891 0x0a1c  [ E91B345D7E8FFAF29164B81311623941, B4A90FACD0138B05D9ADDE303EAFC55A0A64B1DECCE66AC4774C53766EBEB4A6 ] C:\Windows\System32\drivers\o2sdx64.sys
22:13:42.0891 0x0a1c  C:\Windows\System32\drivers\o2sdx64.sys - ok
22:13:42.0901 0x0a1c  [ D6CE4C176CA6657E058DA609A4789B88, FC97F1395434A0D4EDA118A6250A28B381B0B5A21E9BCB751EFAB49EC60A11DE ] C:\Windows\System32\drivers\scsiport.sys
22:13:42.0901 0x0a1c  C:\Windows\System32\drivers\scsiport.sys - ok
22:13:42.0908 0x0a1c  [ B52D9A14CE4101577900A364BA86F3DF, A8AA928DDF5FE3861973D4EA03A5B700E99138236F1E8FF594293B9705BF470C ] C:\Windows\System32\drivers\CmBatt.sys
22:13:42.0908 0x0a1c  C:\Windows\System32\drivers\CmBatt.sys - ok
22:13:42.0919 0x0a1c  [ F78A39ED87D918058A14F36159DE5BDA, 7E00A54F8C7F3284F52C79D1F53B96F46B17E0773DE654B039A9AAC3F86C1744 ] C:\Windows\System32\drivers\Storport.sys
22:13:42.0919 0x0a1c  C:\Windows\System32\drivers\Storport.sys - ok
22:13:42.0927 0x0a1c  [ E4FDF99599F27EC25D2CF6D754243520, 9139E708EE30F10652C9A458BD58B0343A3C05E84CD3E71FA0B0E4123503CF7B ] C:\Windows\System32\drivers\msiscsi.sys
22:13:42.0927 0x0a1c  C:\Windows\System32\drivers\msiscsi.sys - ok
22:13:42.0935 0x0a1c  [ C39A90534C5B1E28B8BC8B38A3900AFF, C820F2E80C833827FF38B3A31F62CA775A8DAB0B45AF176D065C22BF3150570A ] C:\Windows\System32\drivers\tdi.sys
22:13:42.0936 0x0a1c  C:\Windows\System32\drivers\tdi.sys - ok
22:13:42.0944 0x0a1c  [ AC7BC4D42A7E558718DFDEC599BBFC2C, E059EB9472FDDB73AF09FFEBA58D8284AFCDAB1516E0C5759980E60C892F8126 ] C:\Windows\System32\drivers\rasl2tp.sys
22:13:42.0944 0x0a1c  C:\Windows\System32\drivers\rasl2tp.sys - ok
22:13:42.0953 0x0a1c  [ 64DF698A425478E321981431AC171334, C43177CB60F5D58E1FF7A31E9BE5DA7D92C4B25235867DD65BADC069EDF023F3 ] C:\Windows\System32\drivers\ndistapi.sys
22:13:42.0953 0x0a1c  C:\Windows\System32\drivers\ndistapi.sys - ok
22:13:42.0961 0x0a1c  [ F8158771905260982CE724076419EF19, B86FFA790A30ED614A11C87F4D738C913EFC0924DC14750D544001D4E9556071 ] C:\Windows\System32\drivers\ndiswan.sys
22:13:42.0961 0x0a1c  C:\Windows\System32\drivers\ndiswan.sys - ok
22:13:42.0969 0x0a1c  [ 4517FBF8B42524AFE4EDE1DE102AAE3E, F01C8A773A637B66192BD16DDE467CAECC6E62853DBDB507FF3FC67B4B388988 ] C:\Windows\System32\drivers\raspppoe.sys
22:13:42.0969 0x0a1c  C:\Windows\System32\drivers\raspppoe.sys - ok
22:13:42.0980 0x0a1c  [ 23386E9952025F5F21C368971E2E7301, F7241C1799A8AA0E9106B101B841670304DC695FD8D290C690CE0ED5C13BC514 ] C:\Windows\System32\drivers\raspptp.sys
22:13:42.0980 0x0a1c  C:\Windows\System32\drivers\raspptp.sys - ok
22:13:42.0989 0x0a1c  [ C6A593B51F34C33E5474539544072527, 8182C1D15CDC164363D3DD355197160167A00BA9FA833AA444317D06344EF7CE ] C:\Windows\System32\drivers\rassstp.sys
22:13:42.0989 0x0a1c  C:\Windows\System32\drivers\rassstp.sys - ok
22:13:42.0998 0x0a1c  [ 8C19678D22649EC002EF2282EAE92F98, 551E7EBA54C2345F2B7FD7AAA7ADA4C852C94F1B35E6E4BBEF883BAFA34F6262 ] C:\Windows\System32\drivers\termdd.sys
22:13:42.0998 0x0a1c  C:\Windows\System32\drivers\termdd.sys - ok
22:13:43.0006 0x0a1c  [ 6DF6A6E5642D97B07214B1FBED4A15B3, 97DE476F5A9ED3C31B01918FDFF7275895B4F7F8AB0B28DE59E9E9DA2F262747 ] C:\Windows\System32\drivers\ks.sys
22:13:43.0006 0x0a1c  C:\Windows\System32\drivers\ks.sys - ok
22:13:43.0012 0x0a1c  [ 030176BD0B4AAEA01A651B51EFE295BB, 96CB24C32E3288594BD916F6AEA254F7F55101A52446DBF420CC7DDC50599C2E ] C:\Windows\System32\drivers\QIOMem.sys
22:13:43.0012 0x0a1c  C:\Windows\System32\drivers\QIOMem.sys - ok
22:13:43.0026 0x0a1c  [ 8A851CA908B8B974F89C50D2E18D4F0C, 27EA13E50B5B72ABF6C5B7B7D34A7154A12BB27B1C1B2EEFCAA36A96010DB4DC ] C:\Windows\System32\drivers\swenum.sys
22:13:43.0026 0x0a1c  C:\Windows\System32\drivers\swenum.sys - ok
22:13:43.0039 0x0a1c  [ 855796E59DF77EA93AF46F20155BF55B, 75DFCEE16A9D94EDF74295B9686D92552817E8A00958917CB0E17089EDCF6A97 ] C:\Windows\System32\drivers\mssmbios.sys
22:13:43.0039 0x0a1c  C:\Windows\System32\drivers\mssmbios.sys - ok
22:13:43.0052 0x0a1c  [ 46E9A994C4FED537DD951F60B86AD3F4, 256F93ED3BD43B50F0D4489164D959F95AB070CC25A80A46355D2B387D336224 ] C:\Windows\System32\drivers\umbus.sys
22:13:43.0053 0x0a1c  C:\Windows\System32\drivers\umbus.sys - ok
22:13:43.0061 0x0a1c  [ BE2EB33AF6EE2E5DA07EB987E0A321F5, 0FCFABA080C553451AE4FAFB54DFE57639251D97DA204C07EC66F469826F3B46 ] C:\Windows\System32\drivers\usbhub.sys
22:13:43.0061 0x0a1c  C:\Windows\System32\drivers\usbhub.sys - ok
22:13:43.0071 0x0a1c  [ 9CB77ED7CB72850253E973A2D6AFDF49, C3C15B317A7F7AE68B7BC62343962C47F075240F252727811DB4BEE443F9103F ] C:\Windows\System32\drivers\ndproxy.sys
22:13:43.0071 0x0a1c  C:\Windows\System32\drivers\ndproxy.sys - ok
22:13:43.0081 0x0a1c  [ 68F3B2DE6A3EE2F8D374A41CD0012771, 2EC3D6F1FC20D8A81908C98EE2AF4053024BC990A2555191198AD23E02337A38 ] C:\Windows\System32\drivers\drmk.sys
22:13:43.0081 0x0a1c  C:\Windows\System32\drivers\drmk.sys - ok
22:13:43.0089 0x0a1c  [ 2E5041179CEC0443DC471169D28D1AD4, D30E0C4064D62B6E1762265175814CEF206BC0540BE9ABA4D779CF0CB1A3A060 ] C:\Windows\System32\drivers\portcls.sys
22:13:43.0089 0x0a1c  C:\Windows\System32\drivers\portcls.sys - ok
22:13:43.0097 0x0a1c  [ 5A220D86C6E0DD92EA0EA157ED3CA267, E2BE521E361587CE049F188FCAB7D0B29897DD6A8DE2E91AB03DA2FD271092CF ] C:\Windows\System32\drivers\CHDRT64.sys
22:13:43.0097 0x0a1c  C:\Windows\System32\drivers\CHDRT64.sys - ok
22:13:43.0106 0x0a1c  [ 1D419CF43DB29396ECD7113D129D94EB, 21ECCE9D17F055C7B5066110864E10C99291CE50B389C545371333904CE2DBB5 ] C:\Windows\System32\drivers\ksthunk.sys
22:13:43.0106 0x0a1c  C:\Windows\System32\drivers\ksthunk.sys - ok
22:13:43.0114 0x0a1c  [ 5779B86CD8B32519FBECB136394D946A, 68A395CD2287D22CB5C8CFE5A3006A61AC0C3FDAADF166C93240FF83C0315DCF ] C:\Windows\System32\drivers\fs_rec.sys
22:13:43.0114 0x0a1c  C:\Windows\System32\drivers\fs_rec.sys - ok
22:13:43.0123 0x0a1c  [ DD5D684975352B85B52E3FD5347C20CB, BB03C50D5178643550C024130E20FD9A023AE110B3C85A2D6E18FB8DBB3A12E4 ] C:\Windows\System32\drivers\null.sys
22:13:43.0123 0x0a1c  C:\Windows\System32\drivers\null.sys - ok
22:13:43.0131 0x0a1c  [ A193FAE9BF40D981C3094252B17DE601, 585E9F48676DA26DBD30398E4D0E33378D25CB726EFA973E48B69F31C96A6E4E ] C:\Windows\System32\drivers\ctxusbm.sys
22:13:43.0131 0x0a1c  C:\Windows\System32\drivers\ctxusbm.sys - ok
22:13:43.0140 0x0a1c  [ 858CC93477F9A9383E07861892600FF9, C72B25E7F6AF46AC22F8D2A1FA0345B290AAE642442C8A388EA75944334BB289 ] C:\Windows\System32\drivers\usbccgp.sys
22:13:43.0149 0x0a1c  C:\Windows\System32\drivers\usbccgp.sys - ok
22:13:43.0156 0x0a1c  [ 603F4C5E89B67331DDACECAA6C231CB1, F618931995D4118C323E547F8838B15B05F4D13E6F6365CB5E2B18AB3BE72533 ] C:\Windows\System32\drivers\hidparse.sys
22:13:43.0156 0x0a1c  C:\Windows\System32\drivers\hidparse.sys - ok
22:13:43.0164 0x0a1c  [ DBDF75D51464FBC47D0104EC3D572C05, E392EE961E734620245874C7700D56621A1A990C45DF5CE0B7D270BA708F255E ] C:\Windows\System32\drivers\kbdhid.sys
22:13:43.0164 0x0a1c  C:\Windows\System32\drivers\kbdhid.sys - ok
22:13:43.0173 0x0a1c  [ 060B7863943625E0193A3575C0C59E52, BF1DD3FEA873D7FCFC1A1E2FC342D4BAA1A244F47FCC8F6A00F11FF164086A51 ] C:\Windows\System32\drivers\UVCFTR_S.SYS
22:13:43.0173 0x0a1c  C:\Windows\System32\drivers\UVCFTR_S.SYS - ok
22:13:43.0183 0x0a1c  [ B83AB16B51FEDA65DD81B8C59D114D63, 97D39AA763037752D87216B83896AFD2AD6DFEBB3BCDCED7A9ABFE5706B804C5 ] C:\Windows\System32\drivers\vga.sys
22:13:43.0184 0x0a1c  C:\Windows\System32\drivers\vga.sys - ok
22:13:43.0193 0x0a1c  [ 84F9479F8BD5EF517E98CBBD8D3300F7, 57C726A81BEB3B114850B16B0D6645D8A800E1DA4263C7310F6646AE0889F321 ] C:\Windows\System32\drivers\videoprt.sys
22:13:43.0193 0x0a1c  C:\Windows\System32\drivers\videoprt.sys - ok
22:13:43.0202 0x0a1c  [ BF7A051DCCBA57C95541135B29CE0FB4, F3570ED5B57CB64A8222164038D53D1C2009013C50CFDE2E6105E8D4F642FEA6 ] C:\Windows\System32\drivers\usbvideo.sys
22:13:43.0202 0x0a1c  C:\Windows\System32\drivers\usbvideo.sys - ok
22:13:43.0211 0x0a1c  [ 603900CC05F6BE65CCBF373800AF3716, 83B010D51D1087673CF15FD0A992FD91CC910A073FEA9A8F20F6124B6E5489F2 ] C:\Windows\System32\drivers\RDPCDD.sys
22:13:43.0211 0x0a1c  C:\Windows\System32\drivers\RDPCDD.sys - ok
22:13:43.0219 0x0a1c  [ CAB9421DAF3D97B33D0D055858E2C3AB, 66C353CD310A91FAB0D0871ACCE71110595B63536560D0331DA70B1E33AC45BE ] C:\Windows\System32\drivers\RDPENCDD.sys
22:13:43.0219 0x0a1c  C:\Windows\System32\drivers\RDPENCDD.sys - ok
22:13:43.0228 0x0a1c  [ 704F59BFC4512D2BB0146AEC31B10A7C, F7712944DDC192C47953D577BE31B79B4D11217305B1C3D0DCA31B1518CB8DCB ] C:\Windows\System32\drivers\msfs.sys
22:13:43.0228 0x0a1c  C:\Windows\System32\drivers\msfs.sys - ok
22:13:43.0239 0x0a1c  [ B298874F8E0EA93F06EC40AA8D146478, 275D769E5EFD3153985DAF84C5B22B9D65428E09AB41099901ABDD03B3A2625D ] C:\Windows\System32\drivers\npfs.sys
22:13:43.0239 0x0a1c  C:\Windows\System32\drivers\npfs.sys - ok
22:13:43.0248 0x0a1c  [ 1013B3B663A56D3DDD784F581C1BD005, 36B83F234C2D6A6112BC8B5EF0AB5075EE98AC0BED702C37E4C1C3D17EB49956 ] C:\Windows\System32\drivers\rasacd.sys
22:13:43.0248 0x0a1c  C:\Windows\System32\drivers\rasacd.sys - ok
22:13:43.0256 0x0a1c  [ 458919C8C42E398DC4802178D5FFEE27, E38828411DCE0AE2E2BF0D270FD80E47B46EDE4B44DAFD1DF11F54D427EACEB5 ] C:\Windows\System32\drivers\tdx.sys
22:13:43.0257 0x0a1c  C:\Windows\System32\drivers\tdx.sys - ok
22:13:43.0265 0x0a1c  [ 290B6F6A0EC4FCDFC90F5CB6D7020473, 971888FE760641FF86165B9876E6FC12DBC309C0FED2734C60B9E0EBC078AAE0 ] C:\Windows\System32\drivers\smb.sys
22:13:43.0265 0x0a1c  C:\Windows\System32\drivers\smb.sys - ok
22:13:43.0271 0x0a1c  [ E58A17E945593544C707423F9772EEA0, FC17AFF979354EB89DCA307BF07C52B84629AF540D4C6A32DD537695CA654205 ] C:\Windows\System32\drivers\afd.sys
22:13:43.0272 0x0a1c  C:\Windows\System32\drivers\afd.sys - ok
22:13:43.0282 0x0a1c  [ FC2C792EBDDC8E28DF939D6A92C83D61, 9EDF8B56E2B47C31457074DA371B604E5F7EB2B3B5CD4688CBEEDD5B266D119B ] C:\Windows\System32\drivers\netbt.sys
22:13:43.0282 0x0a1c  C:\Windows\System32\drivers\netbt.sys - ok
22:13:43.0293 0x0a1c  [ C5AB7F0809392D0DA027F4A2A81BFA31, B5BC9712AD93661A77AF4D67DB5F05C58A93CF7CDD6F7BA20568C0A9F4630321 ] C:\Windows\System32\drivers\pacer.sys
22:13:43.0293 0x0a1c  C:\Windows\System32\drivers\pacer.sys - ok
22:13:43.0302 0x0a1c  [ 9D86C5091209CA4BD3762BED6F654501, 7396D4D9B25097DB22BD067FA8E58260AD31D4225A30DAA0F2CCFC43796741C3 ] C:\Windows\System32\drivers\jswpslwfx.sys
22:13:43.0302 0x0a1c  C:\Windows\System32\drivers\jswpslwfx.sys - ok
22:13:43.0311 0x0a1c  [ A499294F5029A7862ADC115BDA7371CE, 6BE0AAFE4EB59E056A929D6C1A009D8DFD547025481108CEFB12E5D6F86DBE14 ] C:\Windows\System32\drivers\netbios.sys
22:13:43.0311 0x0a1c  C:\Windows\System32\drivers\netbios.sys - ok
22:13:43.0319 0x0a1c  [ B8E7049622300D20BA6D8BE0C47C0CFD, 57CF218D1F7D505E354A15C552D94E3C5A68C2B07D7A76EBB0C87A0BFF5772D9 ] C:\Windows\System32\drivers\wanarp.sys
22:13:43.0319 0x0a1c  C:\Windows\System32\drivers\wanarp.sys - ok
22:13:43.0328 0x0a1c  [ 322DB5C6B55E8D8EE8D6F358B2AAABB1, 07B89F701594F680F50A885B923521763A6131104CEE63D422E1C359C23AE2F6 ] C:\Windows\System32\drivers\rdbss.sys
22:13:43.0328 0x0a1c  C:\Windows\System32\drivers\rdbss.sys - ok
22:13:43.0338 0x0a1c  [ 1523AF19EE8B030BA682F7A53537EAEB, B000630CE4B562D39B5EE4148409B2E01D8924D33D27607B24ADC901357E7AA5 ] C:\Windows\System32\drivers\nsiproxy.sys
22:13:43.0338 0x0a1c  C:\Windows\System32\drivers\nsiproxy.sys - ok
22:13:43.0352 0x0a1c  [ 8B722BA35205C71E7951CDC4CDBADE19, 39720A60DFD0532F7E1A1976240E9828559BF9E0C6D1CFBF4D911965BFD94158 ] C:\Windows\System32\drivers\dfsc.sys
22:13:43.0352 0x0a1c  C:\Windows\System32\drivers\dfsc.sys - ok
22:13:43.0361 0x0a1c  [ F792A2D43A2C35FBA756093BE73B5130, 328CF7304A65A099D995C49B0809CDB8BCC57CBF6B8C9B81D56878F1FC86FB66 ] C:\Windows\System32\ntdll.dll
22:13:43.0361 0x0a1c  C:\Windows\System32\ntdll.dll - ok
22:13:43.0369 0x0a1c  [ 34B7B826716B166778ED454B7628EF5E, 80F3CF626334E185BA17912EC902BB4986E8B28CC95247ABC4CFD738EEED9EB8 ] C:\Windows\System32\smss.exe
22:13:43.0369 0x0a1c  C:\Windows\System32\smss.exe - ok
22:13:43.0387 0x0a1c  [ E24D4475713CB382A720D003BDDA9628, EF94B0B2359F6A62EE1C631920F9A087BDF3256D76FC91272C6472F9CF55F3DD ] C:\Windows\System32\autochk.exe
22:13:43.0387 0x0a1c  C:\Windows\System32\autochk.exe - ok
22:13:43.0396 0x0a1c  [ 578D38BD26B6B226E9F9A941B21515F1, 2F505D2B2FB57800BC3E01371C0D46A5E5E1EC83A91E393B752023F8FE54478D ] C:\Windows\System32\shell32.dll
22:13:43.0396 0x0a1c  C:\Windows\System32\shell32.dll - ok
22:13:43.0406 0x0a1c  [ 533B3BA63E5DB49FC59A842A1DE3121F, 302F7C8C42EB503C874EADA45E7F87A26FA895DDEFA8A98EA9090F74E93DD161 ] C:\Windows\System32\normaliz.dll
22:13:43.0406 0x0a1c  C:\Windows\System32\normaliz.dll - ok
22:13:43.0414 0x0a1c  [ BAB10B35E2D5EE0DC3DE05A177C52C50, EB33A519C124973F00979F44A8BC717C291F8F57B029F3E2EAF7879F5D23344C ] C:\Windows\System32\ws2_32.dll
22:13:43.0414 0x0a1c  C:\Windows\System32\ws2_32.dll - ok
22:13:43.0424 0x0a1c  [ 2364DF9C2CAB1E44A3CF6C6B6E363BF1, 238450AE0C90BFF4530A6764106BB3B7253768DF3AE640B2198E941BEADC5350 ] C:\Windows\System32\rpcrt4.dll
22:13:43.0424 0x0a1c  C:\Windows\System32\rpcrt4.dll - ok
22:13:43.0436 0x0a1c  [ 229631F3DCB4B4664641AF676E5ABDD3, E4427D93092FC85BA97C8A2C99B9094444538570B5E2FFBF21CF9D62D6151161 ] C:\Windows\System32\imagehlp.dll
22:13:43.0436 0x0a1c  C:\Windows\System32\imagehlp.dll - ok
22:13:43.0445 0x0a1c  [ BE2E23B3DD533B33338D9B3D826574DA, 6A48A5F2DD56252D9EB31697F976BD8D2A33A61021D71676545077B13BA7726A ] C:\Windows\System32\setupapi.dll
22:13:43.0445 0x0a1c  C:\Windows\System32\setupapi.dll - ok
22:13:43.0460 0x0a1c  [ DB310BF331A32FD208CADA64ABA2903A, 23A9634F34A8DEA444A217225E0DAAAD5D9C351850182A860802921FBCA7AAB3 ] C:\Windows\System32\clbcatq.dll
22:13:43.0460 0x0a1c  C:\Windows\System32\clbcatq.dll - ok
22:13:43.0468 0x0a1c  [ 604384D4459F4A68FF88E7C212C43F61, 8A28BCC7633543EAEF7E9926EF55B2922EE611DD33D8F58C955FABFAD2C46764 ] C:\Windows\System32\shlwapi.dll
22:13:43.0468 0x0a1c  C:\Windows\System32\shlwapi.dll - ok
22:13:43.0476 0x0a1c  [ 7CAF51D586DFE475147DFB158BEBB3F8, 337FC1EA2D0867D21F97904BCD9C9882E3BA1B6216202C06C85996202E1BE4B1 ] C:\Windows\System32\nsi.dll
22:13:43.0476 0x0a1c  C:\Windows\System32\nsi.dll - ok
22:13:43.0485 0x0a1c  [ 3B2671CBC989F1B2084290D787DE8499, 6A4D06C9FF8F5022BDF9080945432C1E976379FB38902CD662AECD8F9B47A23F ] C:\Windows\System32\oleaut32.dll
22:13:43.0485 0x0a1c  C:\Windows\System32\oleaut32.dll - ok
22:13:43.0496 0x0a1c  [ 393E484490CE47C7623BB158B0E2F7A9, 2C7C91D0D05A578520BB4692088517556F2191492DF0F709438902318A65FC9D ] C:\Windows\System32\urlmon.dll
22:13:43.0496 0x0a1c  C:\Windows\System32\urlmon.dll - ok
22:13:43.0509 0x0a1c  [ ADC1964755BB12485A15070A4D4F2697, 35D93675BA2623BFEC98F52F0926B2853399CBBA3A28AA28070C9D51137B0586 ] C:\Windows\System32\Wldap32.dll
22:13:43.0509 0x0a1c  C:\Windows\System32\Wldap32.dll - ok
22:13:43.0517 0x0a1c  [ AA09B70F619CBF499EFC22E7A63E3CE6, 07821B699ED97C03863F2E5CC101D960E7C108097A8F128C10968F246EAEDBAB ] C:\Windows\System32\comdlg32.dll
22:13:43.0517 0x0a1c  C:\Windows\System32\comdlg32.dll - ok
22:13:43.0523 0x0a1c  [ 2C74308C8A20F3F3A2226DFE36914CBF, 40C3D44F4C288C676A29026492A6FE556E8A14E7CA527D19AD98B447EB6EB527 ] C:\Windows\System32\msvcrt.dll
22:13:43.0523 0x0a1c  C:\Windows\System32\msvcrt.dll - ok
22:13:43.0530 0x0a1c  [ 0CB93E3F36C4F4122E7CBBAA731F67D1, 2DDF6AB37553EC8CEB4C69AC25A0A2574512B397CAC8F3EB1B4A7344181946C0 ] C:\Windows\System32\ole32.dll
22:13:43.0530 0x0a1c  C:\Windows\System32\ole32.dll - ok
22:13:43.0540 0x0a1c  [ BB8C4784AA400BDC3D51B6ACAA077E96, 86A597C2D9D28BE2032C9A622B28B4D44CC7C3B34FD3B32D19541108803A68EB ] C:\Windows\System32\advapi32.dll
22:13:43.0540 0x0a1c  C:\Windows\System32\advapi32.dll - ok
22:13:43.0548 0x0a1c  [ F3F5549E69AE8509342E67E4F972CA1C, 31E7D1EEA26FDD9AD66E4A2D2D52A78743F367C5C43CC9CA9F61C2300A87F8BC ] C:\Windows\System32\user32.dll
22:13:43.0548 0x0a1c  C:\Windows\System32\user32.dll - ok
22:13:43.0558 0x0a1c  [ 891E1D0DCDE747C8F1EE71E61EA193F5, 0C993EB29E0F3AE0C789A86D9EC3BEDAFF75A34AE22D72046E20F6D1345BFA19 ] C:\Windows\System32\lpk.dll
22:13:43.0558 0x0a1c  C:\Windows\System32\lpk.dll - ok
22:13:43.0566 0x0a1c  [ 87CB61DF57FEC0948A26F9E671ADD81A, 1CFA117F2813202435AFCD989F46D6C81E6CA3E88FA6E216BB39C99F39E7B9BE ] C:\Windows\System32\msctf.dll
22:13:43.0566 0x0a1c  C:\Windows\System32\msctf.dll - ok
22:13:43.0574 0x0a1c  [ 868C7FF4F7E19AD9C67EB1302EABB38F, 9405E967AA1DF8BC177048B35E8BC0606C858BEA6A0378A23D2AD36D09A316AD ] C:\Windows\System32\wininet.dll
22:13:43.0575 0x0a1c  C:\Windows\System32\wininet.dll - ok
22:13:43.0583 0x0a1c  [ 679B740F3194F1C8FC245B8362538733, 546DADB66EE23C75C59A518BDA0BE648AEB62809CAF6551AF9868CCE34224EF5 ] C:\Windows\System32\iertutil.dll
22:13:43.0583 0x0a1c  C:\Windows\System32\iertutil.dll - ok
22:13:43.0591 0x0a1c  [ 00150B5D58D552CC0A9D8C7C5BFE0129, A9AB103D291162FA4788286D550E124759C4BB7CEE30C47ACD8F112C7DCD8B9E ] C:\Windows\System32\usp10.dll
22:13:43.0591 0x0a1c  C:\Windows\System32\usp10.dll - ok
22:13:43.0599 0x0a1c  [ 62C15795629FA290656C6A7E5CD25F52, AB2D0DDC145DD8380DC1EF66A18C936FB5F5BECC852EC348952D465DC19B432D ] C:\Windows\System32\imm32.dll
22:13:43.0599 0x0a1c  C:\Windows\System32\imm32.dll - ok

 



#9 boingo2000

boingo2000
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Location:Phoenix, AZ
  • Local time:03:46 AM

Posted 06 September 2014 - 12:22 AM

22:13:43.0607 0x0a1c  [ 474DAC0FB53BA3742ABB4CB9DC7B4BC2, AFC19151A95A693E1CA9C0FFD474535C66660AFC67B5951D1067060D745655C5 ] C:\Windows\System32\gdi32.dll
22:13:43.0607 0x0a1c  C:\Windows\System32\gdi32.dll - ok
22:13:43.0616 0x0a1c  [ 3D2BC46317D0FB5854F5C86686D593DB, 6D594DDD1E7AD5D643E29B421E39CE4D407D9921847A990C6076655087856EC9 ] C:\Windows\System32\kernel32.dll
22:13:43.0616 0x0a1c  C:\Windows\System32\kernel32.dll - ok
22:13:43.0624 0x0a1c  [ 2E2B796F36C4DA7BDDA70DF95E3D217A, 0D34D2D0D0D9C2C397094F3D0124241AA1ABC692F3293886D81EBCA79DB4AE12 ] C:\Windows\System32\comctl32.dll
22:13:43.0624 0x0a1c  C:\Windows\System32\comctl32.dll - ok
22:13:43.0632 0x0a1c  [ AEF2D8B0B518A5623FC5F9832F622677, F615DD650B3ADE5B9CBAB06466F723267A963EBFA58D5E2E4EE13F1C03673B2B ] C:\Windows\System32\psapi.dll
22:13:43.0632 0x0a1c  C:\Windows\System32\psapi.dll - ok
22:13:43.0641 0x0a1c  [ 6F29236AB5926100972924BD29D9D225, E8B517FC36F25C4AE07021473B0BCDCDDD4B6E3FE004E6B0AD449C030267674C ] C:\Windows\SysWOW64\normaliz.dll
22:13:43.0641 0x0a1c  C:\Windows\SysWOW64\normaliz.dll - ok
22:13:43.0649 0x0a1c  [ 4C2DC63036D452FDB636D58D8EA7BC90, 41A2653433A76DCEC8F483EF1B8D62261425F1F20E9200490EF3A524743326C4 ] C:\Windows\System32\drivers\dxapi.sys
22:13:43.0649 0x0a1c  C:\Windows\System32\drivers\dxapi.sys - ok
22:13:43.0657 0x0a1c  [ 548BA5779A6FBBB4216BFFD43EBD8B37, 765494F0E3CC273F3EC92AED7987C97B2239266AD2A1F7AD8650F578E1864F2E ] C:\Windows\System32\win32k.sys
22:13:43.0657 0x0a1c  C:\Windows\System32\win32k.sys - ok
22:13:43.0667 0x0a1c  [ 38CE04857A9A2AE83A4673C691E68D10, 5131F1194B2CC194B8CFC7A55FB323CA9F221489DB34D8481B5469A5C530FA77 ] C:\Windows\System32\csrsrv.dll
22:13:43.0667 0x0a1c  C:\Windows\System32\csrsrv.dll - ok
22:13:43.0676 0x0a1c  [ B4ABE68596B173FF2AB2076BC7C35EB4, 9F16B5BEE0800AC3EF1343E1C4333AC444E3A927375682DEDEEAB29D1F975255 ] C:\Windows\System32\csrss.exe
22:13:43.0676 0x0a1c  C:\Windows\System32\csrss.exe - ok
22:13:43.0684 0x0a1c  [ 060DC3A7A9A2626031EB23D90151428D, 4AADA06E83603E9D4894D6CFC8DADB018307B384F438C809D4BC8E22BD937C3B ] C:\Windows\System32\basesrv.dll
22:13:43.0684 0x0a1c  C:\Windows\System32\basesrv.dll - ok
22:13:43.0692 0x0a1c  [ D665D594B7E11133D29D726BDDC7A5B0, 8EE45E719ACB23F388F2BE7E4311588E90DE7CF50988927CF0FED36DE380FACB ] C:\Windows\System32\winsrv.dll
22:13:43.0692 0x0a1c  C:\Windows\System32\winsrv.dll - ok
22:13:43.0700 0x0a1c  [ C247CC2A57E0A0C8C6DCCF7807B3E9E5, 357811D1B8F70828F6432879F59DAB916FBB55673B3473D879382DE33CFB3FAF ] C:\Windows\System32\drivers\monitor.sys
22:13:43.0700 0x0a1c  C:\Windows\System32\drivers\monitor.sys - ok
22:13:43.0709 0x0a1c  [ 86173B7125321C93E355DF3837039244, 114416C20C888D5FBDF3DD7D3E19DE6BC70D1FE915C58451BA45639AF056A0AB ] C:\Windows\System32\tsddd.dll
22:13:43.0709 0x0a1c  C:\Windows\System32\tsddd.dll - ok
22:13:43.0717 0x0a1c  [ 117EA87DF785CA1B9D821F6F213DCE07, B9C1B9DA26015B8D5A356DA81E263CD6EEDE172FDE09F46064F91F943CB1561A ] C:\Windows\System32\wininit.exe
22:13:43.0717 0x0a1c  C:\Windows\System32\wininit.exe - ok
22:13:43.0726 0x0a1c  [ 95E848589698D6CF716ECF1403925DFC, 02F0232265A92310635BBA01046C53BB1844A796265EE6189C5CDE8C8457198B ] C:\Windows\System32\userenv.dll
22:13:43.0726 0x0a1c  C:\Windows\System32\userenv.dll - ok
22:13:43.0734 0x0a1c  [ FEA83138B1C1D6EB55046C4612905888, 38C7922589D0052FAC3E453D74FC84FC00C861D5C8051CF974EF062A820F87A9 ] C:\Windows\System32\secur32.dll
22:13:43.0734 0x0a1c  C:\Windows\System32\secur32.dll - ok
22:13:43.0744 0x0a1c  [ 89A722B06A83706797E283016181BEAB, 19BB0F76A28F9EC4327B779C0031EF1A6C1D94C8473C6C85A6C50398211A538D ] C:\Windows\System32\KBDUS.DLL
22:13:43.0744 0x0a1c  C:\Windows\System32\KBDUS.DLL - ok
22:13:43.0752 0x0a1c  [ D1BDCF6DE24D16E16FC57AEE4A1BE9AE, BDA58E227E62F99E486F75A23BE75BBCA302CCE55E14992B7080A82842BDE9C4 ] C:\Windows\System32\WlS0WndH.dll
22:13:43.0752 0x0a1c  C:\Windows\System32\WlS0WndH.dll - ok
22:13:43.0761 0x0a1c  [ F33E804A031F160D128AB78990DE7C91, 243B01A3FC09D0BE0FDEC26E5D83F31A54384CA58BC768AF235C271ED4067FE1 ] C:\Windows\System32\apphelp.dll
22:13:43.0762 0x0a1c  C:\Windows\System32\apphelp.dll - ok
22:13:43.0771 0x0a1c  [ 934E0B7D77FF78C18D9F8891221B6DE3, BB1ACD3CD6482D8B7C5931E8733B8094D2CE59C4FBC4012BD0799C8DC367FB74 ] C:\Windows\System32\services.exe
22:13:43.0771 0x0a1c  C:\Windows\System32\services.exe - ok
22:13:43.0778 0x0a1c  [ 16687F0351E513BF2019073ABF02B585, 5679C60484898DD1C9B771DF6AE0D053E3074E06F90A1952C081CF18455C1CC8 ] C:\Windows\System32\sxs.dll
22:13:43.0779 0x0a1c  C:\Windows\System32\sxs.dll - ok
22:13:43.0787 0x0a1c  [ 6C400000A97F923209FCD5E94F49B30F, 23815FC796D1AB1BE92E4E2D27A58AB38AA31E612E1E26B5D5924351CD3F675B ] C:\Windows\System32\cdd.dll
22:13:43.0787 0x0a1c  C:\Windows\System32\cdd.dll - ok
22:13:43.0795 0x0a1c  [ 260BF9C43EE12C6898A9F5AAB0FB0E5D, 6585A87CE55EE5C51B18DF86E8EDFC6A909D96C87522FF4183F8BA9355E8DD44 ] C:\Windows\System32\lsass.exe
22:13:43.0795 0x0a1c  C:\Windows\System32\lsass.exe - ok
22:13:43.0802 0x0a1c  [ 54D814DC2FA54AA847D240D4EA0E6586, 620707BDD0D14FFE8424575B3E5CB4ADC4B4CCCF220AA0FCF39B7A83CBD7F716 ] C:\Windows\System32\lsm.exe
22:13:43.0802 0x0a1c  C:\Windows\System32\lsm.exe - ok
22:13:43.0811 0x0a1c  [ 902F14A1FDF1B4A543326A35CB21EB1F, 3CA770F26D06F37DC7D097BEBCC6DB9BDE60C2B4712AD34D7430E7660236A137 ] C:\Windows\System32\lsasrv.dll
22:13:43.0811 0x0a1c  C:\Windows\System32\lsasrv.dll - ok
22:13:43.0821 0x0a1c  [ 495EB57ACF30983AA441B70A8DE2B7ED, A136EBA780EB958572900EA5EC2641855B9D478C6CCCDC59116BC0A18A5E4F0F ] C:\Windows\System32\scesrv.dll
22:13:43.0821 0x0a1c  C:\Windows\System32\scesrv.dll - ok
22:13:43.0828 0x0a1c  [ 5EF9205E045643A5A75A82B116395B25, 63E0A153BDA7E688FA44EFC585723BF857ED96D978052F02D47E2D408FC94AAC ] C:\Windows\System32\authz.dll
22:13:43.0828 0x0a1c  C:\Windows\System32\authz.dll - ok
22:13:43.0836 0x0a1c  [ F3E5C76AA1175D29F6459BDB7DF345EC, 5E63D5E21B0B8756395239BB895D57E4C14748CDC6DBC24B4602F1D718E5465E ] C:\Windows\System32\netapi32.dll
22:13:43.0836 0x0a1c  C:\Windows\System32\netapi32.dll - ok
22:13:43.0844 0x0a1c  [ FA19D9DE54B122316274703D50F34130, FF0CD940AF1CC1EF96AE0EBC69CE63214EDF8B683CAAC538573E1CB942B13C9B ] C:\Windows\System32\ncobjapi.dll
22:13:43.0844 0x0a1c  C:\Windows\System32\ncobjapi.dll - ok
22:13:43.0852 0x0a1c  [ 60EEC5440C2D05E5FDA04900E45FF717, CE2ED2BB71564D3059C79A437997C01712B3F732E54952C4E15C86BF5B35AF04 ] C:\Windows\System32\samsrv.dll
22:13:43.0853 0x0a1c  C:\Windows\System32\samsrv.dll - ok
22:13:43.0861 0x0a1c  [ 009456399B31D69C67654F6C3618D9A8, F0F672666A3BC64ED618E7879A32C85A18756C9316FBD1048ED7970F806F05AC ] C:\Windows\System32\sysntfy.dll
22:13:43.0861 0x0a1c  C:\Windows\System32\sysntfy.dll - ok
22:13:43.0869 0x0a1c  [ 0C2E0A8562FE4B33D00E175A97E05793, 79291DE9BAEAF69B6260CD58CFD75F1FC67D9FE3BFD0C2D1EB83249A5E16BAA0 ] C:\Windows\System32\wmsgapi.dll
22:13:43.0869 0x0a1c  C:\Windows\System32\wmsgapi.dll - ok
22:13:43.0877 0x0a1c  [ 0F421175574BFE0BF2F4D8E910A253BB, CEABE3A4F546EB6ACA079931AB532DC88FF757DEEF6F434991802220328A9CD6 ] C:\Windows\System32\aelupsvc.dll
22:13:43.0877 0x0a1c  C:\Windows\System32\aelupsvc.dll - ok
22:13:43.0885 0x0a1c  [ 5922F4F59B7868F3D74BBBBEB7B825A3, 71504BC8B596F540BF059059670BC0C138D8759C1DD9F99F1EC368FD5C53F573 ] C:\Windows\System32\alg.exe
22:13:43.0885 0x0a1c  C:\Windows\System32\alg.exe - ok
22:13:43.0894 0x0a1c  [ 7C8ECAAD76EA1D076A450C8303D9BD98, 90904B2BE380A51BDCEDADA530214CE5321C06456E10F5985B40E3282902BEF6 ] C:\Windows\System32\appinfo.dll
22:13:43.0894 0x0a1c  C:\Windows\System32\appinfo.dll - ok
22:13:43.0902 0x0a1c  [ 15C815573011719585EB836614ED1DF1, 1EA80157DD32056089491B84B920A0A749534F8DFE1479DB0735C6FFC61FCBC6 ] C:\Windows\System32\rascfg.dll
22:13:43.0902 0x0a1c  C:\Windows\System32\rascfg.dll - ok
22:13:43.0910 0x0a1c  [ 419CE835359938213BD32A7AA327F2B9, 9ECD233A2B76F6C2F9B1E895EB0FA00D819B2ADE91A5D4CDCF839955D80FD242 ] C:\Windows\System32\cryptdll.dll
22:13:43.0910 0x0a1c  C:\Windows\System32\cryptdll.dll - ok
22:13:43.0919 0x0a1c  [ E4C283A98F118CEC9E087EAC4E9EFB6A, 24460926E840D497080CEC50F02795A3E0DD94F701AAD051430C39AFD5A3FFC0 ] C:\Windows\System32\dnsapi.dll
22:13:43.0919 0x0a1c  C:\Windows\System32\dnsapi.dll - ok
22:13:43.0928 0x0a1c  [ 79318C744693EC983D20E9337A2F8196, 94226786EF8A101C2E805C6BA3C1CF46628BAF1AFCECBC1FAB7A7E7E5E642608 ] C:\Windows\System32\audiosrv.dll
22:13:43.0928 0x0a1c  C:\Windows\System32\audiosrv.dll - ok
22:13:43.0939 0x0a1c  [ 5279672A8BDAF3CFB0A4C6E0591987AC, CC24FD9BAAD0834161BBE4CE723C1DF168185D03E82B5068CBFE22F44FA4A10A ] C:\Windows\System32\samlib.dll
22:13:43.0939 0x0a1c  C:\Windows\System32\samlib.dll - ok
22:13:43.0947 0x0a1c  [ 301D19A870E40C12540BE46034BD6B20, FA3033A9E95BDF6B5C6A61B6882F0CEB4CA4757EBFBC47410D7FD543BC4DD5CF ] C:\Windows\System32\msasn1.dll
22:13:43.0947 0x0a1c  C:\Windows\System32\msasn1.dll - ok
22:13:43.0955 0x0a1c  [ FFB96C2589FFA60473EAD78B39FBDE29, 6A2792753E2CB580672B3107C0DBB9D26B6DAA14B37D5EC314BD0E304197E03E ] C:\Windows\System32\BFE.DLL
22:13:43.0955 0x0a1c  C:\Windows\System32\BFE.DLL - ok
22:13:43.0964 0x0a1c  [ 33741BA808457C9AF07055C0FBEFE973, 87384E0D7D842310F3E6BA1CDC1BD73E5CEC71B3985895CCFAFFBE7410D8F809 ] C:\Windows\System32\ntdsapi.dll
22:13:43.0965 0x0a1c  C:\Windows\System32\ntdsapi.dll - ok
22:13:43.0973 0x0a1c  [ 6D316F4859634071CC25C4FD4589AD2C, 73F69AC9E505F3B11A3CCFF8571930229A9058E672CD008A4BF26C0189564EAE ] C:\Windows\System32\qmgr.dll
22:13:43.0973 0x0a1c  C:\Windows\System32\qmgr.dll - ok
22:13:43.0981 0x0a1c  [ D7924B0F3AB5574BF59CA2892BE8961A, 79EDF0649C66A1A8D588CCBCCBC5D7FE6ED7B40AAF426FDE8AD0D6C1490C0ACE ] C:\Windows\System32\feclient.dll
22:13:43.0981 0x0a1c  C:\Windows\System32\feclient.dll - ok
22:13:43.0990 0x0a1c  [ B3EBBD687BDFCBBBBCB6115B682D1845, 8AD3B72CF5414F96E9F610FF0436A2A8DC67C3C8CB1A3A400DFED33AE2B060D7 ] C:\Windows\System32\mpr.dll
22:13:43.0990 0x0a1c  C:\Windows\System32\mpr.dll - ok
22:13:43.0998 0x0a1c  [ 3B748E0A5FAA10E4DD2165A6E859C59C, 3323C624E7DFDC129CF95C60B36A45A00DBEF6D6E0BCEAD825EB6097A088C4D9 ] C:\Windows\System32\crypt32.dll
22:13:43.0998 0x0a1c  C:\Windows\System32\crypt32.dll - ok
22:13:44.0006 0x0a1c  [ A1B39DE453433B115B4EA69EE0343816, 61441E7E9D5259A5987DBD3FC8D4E3221A57F42C7CC0F94DB48E80EEF96CA5D4 ] C:\Windows\System32\browser.dll
22:13:44.0006 0x0a1c  C:\Windows\System32\browser.dll - ok
22:13:44.0014 0x0a1c  [ 5A268127633C7EE2A7FB87F39D748D56, 45C530A0EE0108543A75B9427F77EBB5E8350AE16C235763B6F32E72CE15C449 ] C:\Windows\System32\certprop.dll
22:13:44.0014 0x0a1c  C:\Windows\System32\certprop.dll - ok
22:13:44.0022 0x0a1c  [ DDEE5FE5C3C3141CE02DE6B7B2BF686B, 346FD885E1A5448D966829B2BF6B265E3FEAF16FFD6A9FCA757827E29A1AF802 ] C:\Windows\System32\comres.dll
22:13:44.0023 0x0a1c  C:\Windows\System32\comres.dll - ok
22:13:44.0028 0x0a1c  [ EE11F2630840479C4AA784AF3770F8E2, FEEF4075489AA9213A580ADB89A76F51D0F00EE6D171E2EE19490C55365ED490 ] C:\Windows\System32\SLC.dll
22:13:44.0028 0x0a1c  C:\Windows\System32\SLC.dll - ok
22:13:44.0035 0x0a1c  [ 45B4004F43B48E4A3F12B85891F81221, 2161B0DFAA21DA66E4287CB3CF73B10113D5A21907D5FAD5D7B8962554B20053 ] C:\Windows\System32\wevtapi.dll
22:13:44.0036 0x0a1c  C:\Windows\System32\wevtapi.dll - ok
22:13:44.0044 0x0a1c  [ 3ED0321127CE70ACDAABBF77E157C2A7, 10973BD0AEF9597A4EA0A4947BDE922F9168F33D6ED97BFFEE6176AADAD78980 ] C:\Windows\System32\dhcpcsvc.dll
22:13:44.0044 0x0a1c  C:\Windows\System32\dhcpcsvc.dll - ok
22:13:44.0052 0x0a1c  [ A9D70295BA8F31D5EA118B0A6B74183E, 63A57D864664DE940A22A499B9851FD170CFAE20DC90D98BF343FA88E51B4245 ] C:\Windows\System32\IPHLPAPI.DLL
22:13:44.0052 0x0a1c  C:\Windows\System32\IPHLPAPI.DLL - ok
22:13:44.0061 0x0a1c  [ 58AAAEA100F45F4F44297D6DE9ACF8ED, B283F5FAD055DEB70D15D3960C14FBC6628CD14DACB77F1443703481EA729DBD ] C:\Windows\System32\winnsi.dll
22:13:44.0061 0x0a1c  C:\Windows\System32\winnsi.dll - ok
22:13:44.0069 0x0a1c  [ 956148910C7EB6A8C095D9B4E6F94E62, F1A146E17FDE20C2A669A7C56FE3E2CC0914C84EDAD3A00471E00E4C8B4DCDDD ] C:\Windows\System32\dhcpcsvc6.dll
22:13:44.0069 0x0a1c  C:\Windows\System32\dhcpcsvc6.dll - ok
22:13:44.0079 0x0a1c  [ 21322B1A2AD337C579F4A65EA0D25193, 4225422FF8D7B3DA1389B6B666BD16879F82844447D9E2D24D1572F2148EC343 ] C:\Windows\System32\cngaudit.dll
22:13:44.0079 0x0a1c  C:\Windows\System32\cngaudit.dll - ok
22:13:44.0087 0x0a1c  [ FD51DED28EEC823940432D05BACE2490, F371B031E43909FE3A6977A1982B421DBDA6E71FEE4D93026616FF51955D4141 ] C:\Windows\System32\ncrypt.dll
22:13:44.0087 0x0a1c  C:\Windows\System32\ncrypt.dll - ok
22:13:44.0096 0x0a1c  [ 02EE316487BCC8F4F6017CAD538365CC, 872F48D84C5DCCA8802B8ECDE9DA30390548E6FB856B0E674A5BA4942E3BE0F8 ] C:\Windows\System32\bcrypt.dll
22:13:44.0096 0x0a1c  C:\Windows\System32\bcrypt.dll - ok
22:13:44.0104 0x0a1c  [ 5AAC48EAF8EACF247DB44FB61B900D89, D20FCD5C71CA18F284D3DFD0CED37F6888A296E76B7B0563F2F4668CF90FE752 ] C:\Windows\System32\cryptsvc.dll
22:13:44.0104 0x0a1c  C:\Windows\System32\cryptsvc.dll - ok
22:13:44.0112 0x0a1c  [ 2E4733239CB09A2212C44FCD1C1B4CC9, 8D89AF4615F9685B613C0FE20154A4EBCD44408063D45F31ABDC61355D0727CD ] C:\Windows\System32\dfsrres.dll
22:13:44.0112 0x0a1c  C:\Windows\System32\dfsrres.dll - ok
22:13:44.0120 0x0a1c  [ CE7183F26642FAFE46C8374AE70A66DB, A0F419A55C423ED0F0021964FC02C549A7EC6F60BBC8716B3BA230C59FB248C9 ] C:\Windows\System32\oleres.dll
22:13:44.0120 0x0a1c  C:\Windows\System32\oleres.dll - ok
22:13:44.0128 0x0a1c  [ 1A7156DD1E850E9914E5E991E3225B94, 99FF0C7125B01FCB0B92DC44756AE8FAA486F2E7F38DC6204F7EFE5918F8480A ] C:\Windows\System32\dot3svc.dll
22:13:44.0128 0x0a1c  C:\Windows\System32\dot3svc.dll - ok
22:13:44.0138 0x0a1c  [ B7CCDC4B877DC3CC665DE8F322F2BD9E, ABB7210D40B69E4757D5279A45345B12873BD0BB3792E70CCD8AFDC892D7B1DE ] C:\Windows\System32\credssp.dll
22:13:44.0138 0x0a1c  C:\Windows\System32\credssp.dll - ok
22:13:44.0147 0x0a1c  [ F7097878AE102618656A04F03951C339, 1917EB58C4CF0419D34DE165A834208DF73052C0C4763B46B38E11F098B955FE ] C:\Windows\System32\msprivs.dll
22:13:44.0147 0x0a1c  C:\Windows\System32\msprivs.dll - ok
22:13:44.0156 0x0a1c  [ 1583B39790DB3EAEC7EDB0CB0140C708, F94F9AE7054A38602CD25D4E10FE7C7B574BD9ED8440C3FDAA7275A1D1E663E7 ] C:\Windows\System32\dps.dll
22:13:44.0156 0x0a1c  C:\Windows\System32\dps.dll - ok
22:13:44.0163 0x0a1c  [ 14CE384D2E27B64C256BDA4DC39C312D, D5FA9C2BB162F1C22E419D33671B8202AAC245A87F6B183B97F83F5BFA165B41 ] C:\Windows\ehome\ehrecvr.exe
22:13:44.0163 0x0a1c  C:\Windows\ehome\ehrecvr.exe - ok
22:13:44.0171 0x0a1c  [ C2303883FD9BE49DC36A6400643002EA, F062D1D6D503CF5195BDE8C1DC75B541F559CB8175ADABCDB7690E9F1CA3EA4E ] C:\Windows\System32\eapsvc.dll
22:13:44.0171 0x0a1c  C:\Windows\System32\eapsvc.dll - ok
22:13:44.0180 0x0a1c  [ B93159C1313D66FDFBBE876F5189CD52, 51E39160EA56F6B08449267EDF2A0F604612663768D2348DE23554AB07BDBB62 ] C:\Windows\ehome\ehsched.exe
22:13:44.0180 0x0a1c  C:\Windows\ehome\ehsched.exe - ok
22:13:44.0188 0x0a1c  [ CD6D49EA9DBBD3EA9E449FD84C51C731, 265F2D675F3DC895BFF6D7D3E1AD61770368A2D0A74A07FDD19B3ADA48970468 ] C:\Windows\System32\kerberos.dll
22:13:44.0188 0x0a1c  C:\Windows\System32\kerberos.dll - ok
22:13:44.0197 0x0a1c  [ F5EE2527D74449868E3C3227A59BCD28, 11640E97EE9D8F9A5DC3FEA6BA7A737AA796A7235C7F5C7EF1ABFB51C9D730D3 ] C:\Windows\ehome\ehstart.dll
22:13:44.0197 0x0a1c  C:\Windows\ehome\ehstart.dll - ok
22:13:44.0205 0x0a1c  [ A9B18B63A4FD6BAAB83326706D857FAB, 7721CC67C0F8CE3060D0EB35A10E4ADC1E3CB470C0797B17D606060C270F96D7 ] C:\Windows\System32\emdmgmt.dll
22:13:44.0205 0x0a1c  C:\Windows\System32\emdmgmt.dll - ok
22:13:44.0214 0x0a1c  [ 6D0773A3A65D28B663F334C90441D01A, 9FD92A56AB1610460D14E4730A75E82302119D617C05384AB1A7213959948C59 ] C:\Windows\System32\winlogon.exe
22:13:44.0214 0x0a1c  C:\Windows\System32\winlogon.exe - ok
22:13:44.0222 0x0a1c  [ 2C305F6445662EFF9A08B1BA41784CC0, CD42DE681A29CDA799B5ED5DB9DC8DF22DE1889D0AA91EA538DF41F74A79C3A8 ] C:\Windows\System32\wship6.dll
22:13:44.0222 0x0a1c  C:\Windows\System32\wship6.dll - ok
22:13:44.0231 0x0a1c  [ 253607D6C54A1604436F08E67CCED044, 6EBEFB7D6E43F51C2146F7C76C702D18E145BD7A08503BCCDC3FF62854DB0390 ] C:\Windows\System32\WSHTCPIP.DLL
22:13:44.0231 0x0a1c  C:\Windows\System32\WSHTCPIP.DLL - ok
22:13:44.0240 0x0a1c  [ 599DA6EB260D9601D2D67AE177F95568, 5C9D3EE34AF000194C52146200F6CA5A275B7BF1F6ABB5B5C8EA4713581D2692 ] C:\Windows\System32\wshqos.dll
22:13:44.0240 0x0a1c  C:\Windows\System32\wshqos.dll - ok
22:13:44.0247 0x0a1c  [ F145BF4C4668E7E312069F81EF847CFC, C4926EFB41FE2813E90D83456C6CB8F3157D835391B443C7E26168F4E1D67DC7 ] C:\Windows\System32\nlasvc.dll
22:13:44.0247 0x0a1c  C:\Windows\System32\nlasvc.dll - ok
22:13:44.0256 0x0a1c  [ 1671EF15434501ABBE9E7BE905EF998B, 9B52DFBDC4D21C476C0B39024CD7E09D3ACAFFD86605D15D3F7E1DD74D24AEF7 ] C:\Windows\System32\winsta.dll
22:13:44.0256 0x0a1c  C:\Windows\System32\winsta.dll - ok
22:13:44.0263 0x0a1c  [ 062972C53BDC6819CE0BAAAA5382F758, 43DB3028B1F35131F6AE21598B1D1E1150613B249F8AD2A9C21FE9346C258CEB ] C:\Windows\System32\NapiNSP.dll
22:13:44.0264 0x0a1c  C:\Windows\System32\NapiNSP.dll - ok
22:13:44.0272 0x0a1c  [ E1BAEEE7949ED5019259E69393367400, B8449D9EBE699C16A36D0D355BA179E3528EF4539AE4AE80D6B7DABD3F95B74F ] C:\Windows\System32\pnrpnsp.dll
22:13:44.0272 0x0a1c  C:\Windows\System32\pnrpnsp.dll - ok
22:13:44.0277 0x0a1c  [ B3564B747D0B059D99E888F8369E56BC, A63D86E0D13F928F200F0D5E38F9F26AF817A520221B2278294DEBF4EC5C6E5A ] C:\Windows\System32\wevtsvc.dll
22:13:44.0277 0x0a1c  C:\Windows\System32\wevtsvc.dll - ok
22:13:44.0285 0x0a1c  [ BB08D93011B82883EC33C7707A9627BE, E4EFF4D73437A20336ABDCDC94874D8E5C80DC9AFDB04D6354F0D9DF576B273F ] C:\Windows\System32\mswsock.dll
22:13:44.0285 0x0a1c  C:\Windows\System32\mswsock.dll - ok
22:13:44.0294 0x0a1c  [ 434B2B82B237FC2F4F8F6844A8FF1909, FE76BECF179DCADB89A92D9CD93DB275200E2135750B10BEA97298711D4A9ACD ] C:\Windows\System32\msv1_0.dll
22:13:44.0294 0x0a1c  C:\Windows\System32\msv1_0.dll - ok
22:13:44.0302 0x0a1c  [ BB9267ACACD8B7533DD936C34A0CBA5E, 32DE6E10ABA540D62F0D8AE30DE8769D7BF29E547838BEBE67C04183CC0B32C7 ] C:\Windows\System32\fdPHost.dll
22:13:44.0302 0x0a1c  C:\Windows\System32\fdPHost.dll - ok
22:13:44.0310 0x0a1c  [ 300C80931EABBE1DB7591C516EFE8D0F, F031DA96B06B6FA8E0AD56D5E10E5A5882765C3FF258A4DE06A47EC34829FF04 ] C:\Windows\System32\FDResPub.dll
22:13:44.0310 0x0a1c  C:\Windows\System32\FDResPub.dll - ok
22:13:44.0319 0x0a1c  [ F937F278E44138C0386FA1DE69B1F72B, 49180522CCCB5377B5B3A7EF8B9697FBE19A1E5D84BC282D24C39B3D52698851 ] C:\Windows\System32\FntCache.dll
22:13:44.0319 0x0a1c  C:\Windows\System32\FntCache.dll - ok
22:13:44.0327 0x0a1c  [ A3F1B171702CA04744EE514243B45BFB, 738A9901FBF23A5AC12D7047C32358D6EA72F835C2CDF54304CAD9D53B5C75C0 ] C:\Windows\System32\netlogon.dll
22:13:44.0328 0x0a1c  C:\Windows\System32\netlogon.dll - ok
22:13:44.0336 0x0a1c  [ CA307C0BD127FA7ADE5E6FEE8750F046, 91618DBEDABC7137C5AEEF6BC2DC03A8E56858A0102612D08667990802AE4E15 ] C:\Windows\System32\winbrand.dll
22:13:44.0336 0x0a1c  C:\Windows\System32\winbrand.dll - ok
22:13:44.0345 0x0a1c  [ E60BB0CDC5EA153F6D24C51AAD4A73FD, 4B728AE968AD216EC3CD23B04D9518C7E1DEEB0F5054D6A33787D771AF5C4070 ] C:\Windows\System32\PresentationHost.exe
22:13:44.0345 0x0a1c  C:\Windows\System32\PresentationHost.exe - ok
22:13:44.0354 0x0a1c  [ 899F834C330A96A80EC36DAEDA2FF018, CF15BAE99F68045B2D19328ED28C492B42B6CA99421DA1BA4B54A996921518C6 ] C:\Windows\System32\gpapi.dll
22:13:44.0354 0x0a1c  C:\Windows\System32\gpapi.dll - ok
22:13:44.0365 0x0a1c  [ 59361D38A297755D46A540E450202B2A, ED97800A3FF9B90EC58BC5122C42B53F46D9C157EFE488481E8677ED7058E33D ] C:\Windows\System32\hidserv.dll
22:13:44.0365 0x0a1c  C:\Windows\System32\hidserv.dll - ok
22:13:44.0374 0x0a1c  [ B12F367EA39C0795FD57E31242CE1A5A, 498439FE4D1217211EB6C1AC35CDA5D59F3AE8F06AF5E41EE9FDB0DC559FBE27 ] C:\Windows\System32\KMSVC.DLL
22:13:44.0374 0x0a1c  C:\Windows\System32\KMSVC.DLL - ok
22:13:44.0381 0x0a1c  [ 0B48386CB405DB71A50B4ACBADAA225E, B0F0092B68BE5B01451BADD9CC307D179728A68FAD48D5B485D9927DDD2518A5 ] C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll
22:13:44.0381 0x0a1c  C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll - ok
22:13:44.0391 0x0a1c  [ 4C7F1DA7E2BF41EB19208540DD5574C8, 94D24073C0EB31650BBB159448A2498B478409A3231C7176271796CFFC45E9EE ] C:\Windows\System32\schannel.dll
22:13:44.0391 0x0a1c  C:\Windows\System32\schannel.dll - ok
22:13:44.0398 0x0a1c  [ 0401A380C88754B2399F8043AC9B2BF9, BFF3B53FAFAE6622AA9F74BAA4A3D522C06E2D732B88916766603B9FE8D0D77F ] C:\Windows\System32\IKEEXT.DLL
22:13:44.0398 0x0a1c  C:\Windows\System32\IKEEXT.DLL - ok
22:13:44.0406 0x0a1c  [ B4A04D5AA66E8F77DE19E0EB89C52D2B, 331D79C0760809B23C452DD136CEAA171FBB3C8D1E3659A8C9847349323732AA ] C:\Windows\System32\wdigest.dll
22:13:44.0406 0x0a1c  C:\Windows\System32\wdigest.dll - ok
22:13:44.0416 0x0a1c  [ 5624BC1BC5EEB49C0AB76A8114F05EA3, BD5AA534D8A923AF4D205EEC6DA55A3DC5F915E5F3223BF23F24C09824FA90B6 ] C:\Windows\System32\IPBusEnum.dll
22:13:44.0416 0x0a1c  C:\Windows\System32\IPBusEnum.dll - ok
22:13:44.0424 0x0a1c  [ 4D27759CC69F69E4B3228A970FF55F88, 3296E5063B321AFACE96A50E81ECDEADF222B0A93798FA57212FEB8DDFB958E3 ] C:\Windows\System32\rsaenh.dll
22:13:44.0424 0x0a1c  C:\Windows\System32\rsaenh.dll - ok
22:13:44.0433 0x0a1c  [ BF0DBFA9792C5C14FA00F61C75116C1B, 24C14DCAF57013F1C238E3C123279737420A714EB29CB69239C9838C9A269A59 ] C:\Windows\System32\iphlpsvc.dll
22:13:44.0433 0x0a1c  C:\Windows\System32\iphlpsvc.dll - ok
22:13:44.0442 0x0a1c  [ BC69DA355B62C898DFEA93851335EAF0, 2E9C6F7E6B7BB05C08110DFD8F3E65C02756F97216447CC0FAE333B5A4F4F2C6 ] C:\Windows\System32\TSpkg.dll
22:13:44.0442 0x0a1c  C:\Windows\System32\TSpkg.dll - ok
22:13:44.0451 0x0a1c  [ C6336D1625515CC5F70E5630CFF14182, 48473D7367CC6CE91CD2B36ECF150D7C2FB173758455AD7224B1A7B217C0FE7B ] C:\Windows\System32\keyiso.dll
22:13:44.0451 0x0a1c  C:\Windows\System32\keyiso.dll - ok
22:13:44.0460 0x0a1c  [ 50C7A3CB427E9BB5ED0708A669956AB5, 3DAD1C01AE58FE2C6134283B19118E2F3C884DDFFBAE4A46B7B5E4FB1A2567A1 ] C:\Windows\System32\srvsvc.dll
22:13:44.0461 0x0a1c  C:\Windows\System32\srvsvc.dll - ok
22:13:44.0469 0x0a1c  [ CAF86FC1388BE1E470F1A7B43E348ADB, 9E9AE0B617D1031E8462524802A2D997AE7C944A7D00D403FF903145A7FEB761 ] C:\Windows\System32\wkssvc.dll
22:13:44.0469 0x0a1c  C:\Windows\System32\wkssvc.dll - ok
22:13:44.0478 0x0a1c  [ 4698036AE905F88E02C3F69BA77981FB, CED5E67D20F38E4220D33B98E4B60055C0CEAD55D785FFF9133D78F1ADEDA5EF ] C:\Windows\ehome\ehres.dll
22:13:44.0478 0x0a1c  C:\Windows\ehome\ehres.dll - ok
22:13:44.0486 0x0a1c  [ 4B8C95B49C58D7A41BF3FE38AA64DC6C, 5A10094111ED30E25A72D2D9B32CB36494352902994E0B6F47A5DEA3D761FE61 ] C:\Windows\System32\lltdres.dll
22:13:44.0486 0x0a1c  C:\Windows\System32\lltdres.dll - ok
22:13:44.0496 0x0a1c  [ A47F8080CACC23C91FE823AD19AA5612, 161575406D158D6D5C9220F1E82C0CC19108C74ADC35C509BAF9B0C414EFD8EE ] C:\Windows\System32\lmhsvc.dll
22:13:44.0496 0x0a1c  C:\Windows\System32\lmhsvc.dll - ok
22:13:44.0504 0x0a1c  [ FFA2B274A5CC6C9A03CBDCF5B8F0239A, 32EAFC03DC37512F64EB298A58B2D8F725E5E0596E32AEC7FD5D5973BD5BAA50 ] C:\Windows\System32\FirewallAPI.dll
22:13:44.0504 0x0a1c  C:\Windows\System32\FirewallAPI.dll - ok
22:13:44.0513 0x0a1c  [ 3CBE4995E80E13CCFBC42E5DCF3AC81A, 18B0E3E83E41C80809E8140F4C90AB051566C84DD891EA411746EA74E6EAF053 ] C:\Windows\System32\mmcss.dll
22:13:44.0513 0x0a1c  C:\Windows\System32\mmcss.dll - ok
22:13:44.0522 0x0a1c  [ 1371FA9D8B1E567AE852E0F74D41D040, B968E2D8CE1E894C319F91FFEDF919A5E6BA5D2CE66B3254EDD32A37BA84F110 ] C:\Windows\System32\iscsidsc.dll
22:13:44.0522 0x0a1c  C:\Windows\System32\iscsidsc.dll - ok
22:13:44.0527 0x0a1c  [ FCD84867883C365A24C61E50AF8A6DB9, 30AEF1BA5FE73BABA00B6DE9C9C71F89D32EED369555D02911B9AED8FEC1DFAF ] C:\Windows\System32\msimsg.dll
22:13:44.0527 0x0a1c  C:\Windows\System32\msimsg.dll - ok
22:13:44.0537 0x0a1c  [ A5B10C845E7538C60C0F5D87A57CB3F5, 2B4E16702591C59BC2CA2B99DBB504BAB4F4EF0835B0D9C7453D340CBF0BDF16 ] C:\Windows\System32\QAGENTRT.DLL
22:13:44.0537 0x0a1c  C:\Windows\System32\QAGENTRT.DLL - ok
22:13:44.0545 0x0a1c  [ 9B63B29DEFC0F3115A559D2597BF5D75, 297319D3F2E97CB34464EA59D8FD96AC2B8B1A4F2AEE666937F16A041128021F ] C:\Windows\System32\netman.dll
22:13:44.0545 0x0a1c  C:\Windows\System32\netman.dll - ok
22:13:44.0554 0x0a1c  [ 82C136E9E2FA0B1CFBA49BC7A18F72FD, 6A02C31F74C212C14E11B053B1B8A8F464AC3BAA8C0CDDA3A242879E296035EF ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll
22:13:44.0554 0x0a1c  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll - ok
22:13:44.0562 0x0a1c  [ 0341CB05512AA87BB64A834DE6264C34, 07A7A12F274D96E7E14581C888F33C03ACEE54A52B56C5B4AAC5582F24807C4A ] C:\Windows\System32\netprof.dll
22:13:44.0562 0x0a1c  C:\Windows\System32\netprof.dll - ok
22:13:44.0570 0x0a1c  [ 6CCB62D4A9764C6410D34DFCF082ADD6, 13C57E4BE590619F02085C9305F8F87246A0AB9B722116E36E93E13E2A55FAB7 ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
22:13:44.0570 0x0a1c  C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
22:13:44.0580 0x0a1c  [ ACB62BAA1C319B17752553DF3026EEEB, 5A309DF390A097245250BB64AD5F8575BECA601E0A122DDCB494C67D3D9EA089 ] C:\Windows\System32\nsisvc.dll
22:13:44.0580 0x0a1c  C:\Windows\System32\nsisvc.dll - ok
22:13:44.0588 0x0a1c  [ 9AE31D2E1D15C10D91318E0EC149CEAC, CEA8A4AD1D6BB9C1ECBDE7A1946DD655104E20224436B96AD69A76F8E2B25680 ] C:\Windows\System32\p2psvc.dll
22:13:44.0588 0x0a1c  C:\Windows\System32\p2psvc.dll - ok
22:13:44.0597 0x0a1c  [ 9AB157B374192FF276C1628FBDBA2B0E, E63E2EE1ABEEC5234F4F1318757EDB4A7567057B1DF1A2414C8698D47062B6AC ] C:\Windows\System32\pcasvc.dll
22:13:44.0597 0x0a1c  C:\Windows\System32\pcasvc.dll - ok
22:13:44.0604 0x0a1c  [ E9E68C1A0F25CF4A7AC966EEA74EE89E, 6C6903A856C29AD690FDA1B74ADB2222C3453FBE2B364245FA61D53C77C586C0 ] C:\Windows\System32\pla.dll
22:13:44.0604 0x0a1c  C:\Windows\System32\pla.dll - ok
22:13:44.0614 0x0a1c  [ FE6B0F59215C9FD9F9D26539C58C8B82, 52CF8BE31A28430226D117EB80974AEAE5EA07F39DE881164232D44BF67FF752 ] C:\Windows\System32\umpnpmgr.dll
22:13:44.0614 0x0a1c  C:\Windows\System32\umpnpmgr.dll - ok
22:13:44.0622 0x0a1c  [ F7BEA2085635CA9B2B991D8EDC426D3A, AE313241C31757F4A048B39E29889DED9AADEC49B50EE933D06057510B2790E8 ] C:\Windows\System32\polstore.dll
22:13:44.0622 0x0a1c  C:\Windows\System32\polstore.dll - ok
22:13:44.0630 0x0a1c  [ E058CE4FC2449D8BFA14739C83B7FF2A, 6ACA086D5E0EF3C3EAEBD78010E50739BBA7CA05E937FFF3A4F2AD22FD57B54A ] C:\Windows\System32\profsvc.dll
22:13:44.0630 0x0a1c  C:\Windows\System32\profsvc.dll - ok
22:13:44.0638 0x0a1c  [ 43A4F5B4EAC81FA11DAC3143ADC77CBA, 323530989F5B5DCE5E99DF7E711497E7018C333BE2A15BAA75E8DBA0262CA9D1 ] C:\Windows\System32\psbase.dll
22:13:44.0638 0x0a1c  C:\Windows\System32\psbase.dll - ok
22:13:44.0648 0x0a1c  [ 90574842C3DA781E279061A3EFF91F07, F87DE7355DAA4FACF2126A0427C08BAAD9E647E0B02EE5447746BE969B28DA8D ] C:\Windows\System32\qwave.dll
22:13:44.0648 0x0a1c  C:\Windows\System32\qwave.dll - ok
22:13:44.0655 0x0a1c  [ E8D76EDAB77EC9C634C27B8EAC33ADC5, 171A3C5D5C3C5845C3BF9A4BCD88E744B025C910AC2F528D0E7D66F173FF0BED ] C:\Windows\System32\drivers\qwavedrv.sys
22:13:44.0655 0x0a1c  C:\Windows\System32\drivers\qwavedrv.sys - ok
22:13:44.0665 0x0a1c  [ B2AE18F847D07F0044404DDF7CB04497, 24B1D5E1D0621160640264656E3D447C611DEE1B0EE308971EF85F0AC3D9F7DD ] C:\Windows\System32\rasauto.dll
22:13:44.0665 0x0a1c  C:\Windows\System32\rasauto.dll - ok
22:13:44.0673 0x0a1c  [ 3AD83E4046C43BE510DE681588ACB8AF, C5445A23F35395B3EA3974C0D5E314E23D900C694D31F7B7A83FE9027D95A91C ] C:\Windows\System32\rasmans.dll
22:13:44.0673 0x0a1c  C:\Windows\System32\rasmans.dll - ok
22:13:44.0682 0x0a1c  [ 2EE3FA0308E6185BA64A9A7F2E74332B, EC6A15281685E6CDEADABDFD08C4AF980AD3B404C945EB121D7F90AFCA3D6849 ] C:\Windows\System32\sstpsvc.dll
22:13:44.0682 0x0a1c  C:\Windows\System32\sstpsvc.dll - ok
22:13:44.0690 0x0a1c  [ C612B9557DA73F70D41F8A6FBC8E5344, D7D11F202066F848FBD3F26D9FF915C7F3D68F30631393B2049F3AC5A40FD108 ] C:\Windows\System32\mprdim.dll
22:13:44.0690 0x0a1c  C:\Windows\System32\mprdim.dll - ok
22:13:44.0699 0x0a1c  [ 44B9D8EC2F3EF3A0EFB00857AF70D861, A45D8024A242456A73337C91663A3E1633BF163234CDFD5DF86840F31FFFE84D ] C:\Windows\System32\regsvc.dll
22:13:44.0699 0x0a1c  C:\Windows\System32\regsvc.dll - ok
22:13:44.0708 0x0a1c  [ F46C457840D4B7A4DAAFEE739CE04102, 94E946036240B3BAFF17C4A49745E29E492ABBC7BE5110741B212DF4D7F45B84 ] C:\Windows\System32\Locator.exe
22:13:44.0708 0x0a1c  C:\Windows\System32\Locator.exe - ok
22:13:44.0717 0x0a1c  [ FD1CDCF108D5EF3366F00D18B70FB89B, 5BCE3A9D5DC0B6937A734264C5B8DE0E6B8F77A869A118F94D57E662AAB28FE2 ] C:\Windows\System32\SCardSvr.dll
22:13:44.0717 0x0a1c  C:\Windows\System32\SCardSvr.dll - ok
22:13:44.0726 0x0a1c  [ 0F838C811AD295D2A4489B9993096C63, 3DF2F973359249735810CB5AD52E05126A93A1C7D9F6274ACB018A0A125846BD ] C:\Windows\System32\schedsvc.dll
22:13:44.0726 0x0a1c  C:\Windows\System32\schedsvc.dll - ok
22:13:44.0734 0x0a1c  [ 4FF71B076A7760FE75EA5AE2D0EE0018, DDDBC9530120F8C1AB449076F6F06F74354149B4C458E6682F957628EE795DE8 ] C:\Windows\System32\sdrsvc.dll
22:13:44.0734 0x0a1c  C:\Windows\System32\sdrsvc.dll - ok
22:13:44.0743 0x0a1c  [ 5ACDCBC67FCF894A1815B9F96D704490, FE0247A8BEDB860EBD46A9D49C641D0B9AA24EE34132CDDADC9F5A605238FDA7 ] C:\Windows\System32\seclogon.dll
22:13:44.0743 0x0a1c  C:\Windows\System32\seclogon.dll - ok
22:13:44.0754 0x0a1c  [ 90973A64B96CD647FF81C79443618EED, 1D3CB7F724B7EADA6443DF07B258EE7FB7FEC92C2A7A9D3C57F6A220EF0DDDC4 ] C:\Windows\System32\Sens.dll
22:13:44.0754 0x0a1c  C:\Windows\System32\Sens.dll - ok
22:13:44.0762 0x0a1c  [ A8E4A4407A09F35DCCC3771AF590B0C4, F56ECE42CE81098FCCBCDFBBF006C3FB9EDD29C62F03C4EAE012EE690669481B ] C:\Windows\System32\SessEnv.dll
22:13:44.0762 0x0a1c  C:\Windows\System32\SessEnv.dll - ok
22:13:44.0770 0x0a1c  [ 4C5AEE179DA7E1EE9A9CCB9DA289AF34, 9659C7B5046DE2C0416A74FDE6F798C3E78D38327CB71BAE49D57A8347A9097D ] C:\Windows\System32\ipnathlp.dll
22:13:44.0770 0x0a1c  C:\Windows\System32\ipnathlp.dll - ok
22:13:44.0778 0x0a1c  [ 56793271ECDEDD350C5ADD305603E963, 7A29407C1C550FF3A6A3544811ABD971E9C760B984A7E64D5A1440C69D6AF483 ] C:\Windows\System32\shsvcs.dll
22:13:44.0778 0x0a1c  C:\Windows\System32\shsvcs.dll - ok
22:13:44.0783 0x0a1c  [ A9A27A8E257B45A604FDAD4F26FE7241, C5A1056522EE2BA7B70D34E391477A0E9351569CEF28B875172F4B363F6D4177 ] C:\Windows\System32\SLsvc.exe
22:13:44.0783 0x0a1c  C:\Windows\System32\SLsvc.exe - ok
22:13:44.0791 0x0a1c  [ FD74B4B7C2088E390A30C85A896FC3AF, 897F1F89A4DDB356CF6E59EFBC32A2081C0CADE283793DB6879D263F7B2E313F ] C:\Windows\System32\SLUINotify.dll
22:13:44.0791 0x0a1c  C:\Windows\System32\SLUINotify.dll - ok
22:13:44.0799 0x0a1c  [ F8F08779E7D997913607B0146710CC04, 25E60795D1831502460BA037F3FC9C6045A68E370DBCC19637443D5C0FDDF0BA ] C:\Windows\System32\tcpipcfg.dll
22:13:44.0800 0x0a1c  C:\Windows\System32\tcpipcfg.dll - ok
22:13:44.0809 0x0a1c  [ F8F47F38909823B1AF28D60B96340CFF, EFD948EE09F22F9F373A98BA6D9BC519FD9244986E4BE7B2BACD92D3C145AD1D ] C:\Windows\System32\snmptrap.exe
22:13:44.0809 0x0a1c  C:\Windows\System32\snmptrap.exe - ok
22:13:44.0816 0x0a1c  [ F66FF751E7EFC816D266977939EF5DC3, 689BDD0B442830E162F2F9A8EFBD0E137F518C7F0CD92EDF4A43EFBA188B69F4 ] C:\Windows\System32\spoolsv.exe
22:13:44.0817 0x0a1c  C:\Windows\System32\spoolsv.exe - ok
22:13:44.0826 0x0a1c  [ 192C74646EC5725AEF3F80D19FF75F6A, 8F24FF139A46B1F837356B9D682526107D7BADCFA510842FEACB6F06C02D93D9 ] C:\Windows\System32\ssdpsrv.dll
22:13:44.0826 0x0a1c  C:\Windows\System32\ssdpsrv.dll - ok
22:13:44.0834 0x0a1c  [ 15825C1FBFB8779992CB65087F316AF5, E9431C016D209A7322C0586F11EEF0AB461AB5822960287BB1D0FBC30183614D ] C:\Windows\System32\wiaservc.dll
22:13:44.0834 0x0a1c  C:\Windows\System32\wiaservc.dll - ok
22:13:44.0843 0x0a1c  [ 6DE37F4DE19D4EFD9C48C43ADDBC949A, 9C3714238571704CEE2AD4F1E15029243E00B494345C41F74EFDF3F0328CC9EA ] C:\Windows\System32\swprv.dll
22:13:44.0843 0x0a1c  C:\Windows\System32\swprv.dll - ok
22:13:44.0850 0x0a1c  [ 92D7A8B0F87B036F17D25885937897A6, 6759BAB11E5FBB143BE13DF1611AE5D41D379DF423D881E92E910DF6A37CBA85 ] C:\Windows\System32\sysmain.dll
22:13:44.0850 0x0a1c  C:\Windows\System32\sysmain.dll - ok
22:13:44.0858 0x0a1c  [ 005CE42567F9113A3BCCB3B20073B029, B1831D71410AD6E7DEB59D26BF6D2D07D2F6112936D6A6FDA57E9296ADA4076D ] C:\Windows\System32\TabSvc.dll
22:13:44.0858 0x0a1c  C:\Windows\System32\TabSvc.dll - ok
22:13:44.0867 0x0a1c  [ CC2562B4D55E0B6A4758C65407F63B79, C6AD05B345C699A715EC13830D8EA6EE9822F4B713D15B1F29AC044674A0F498 ] C:\Windows\System32\tapisrv.dll
22:13:44.0867 0x0a1c  C:\Windows\System32\tapisrv.dll - ok
22:13:44.0879 0x0a1c  [ CDBE8D7C1E201B911CDC346D06617FB5, 16D5965E32A109DA38D77F4B6281081569D78371B2F522DE51100967F8776C7A ] C:\Windows\System32\tbssvc.dll
22:13:44.0879 0x0a1c  C:\Windows\System32\tbssvc.dll - ok
22:13:44.0887 0x0a1c  [ 5CDD30BC217082DAC71A9878D9BFD566, 260D40973F9EEAE9A1890B813D8DCC01A9434D17DCE5DA1D16B72A57DCF59194 ] C:\Windows\System32\termsrv.dll
22:13:44.0887 0x0a1c  C:\Windows\System32\termsrv.dll - ok
22:13:44.0895 0x0a1c  [ F4689F05AF472A651A7B1B7B02D200E7, 3D34B8879DBC69013D1A87A3F47B8A622A60B57F2E962E9F5925C5A01F44640F ] C:\Windows\System32\trkwks.dll
22:13:44.0895 0x0a1c  C:\Windows\System32\trkwks.dll - ok
22:13:44.0904 0x0a1c  [ 66328B08EF5A9305D8EDE36B93930369, FD8136BF15AB8D2DB15D011C4F813737D68EED1178462DB8CE40606C16185A30 ] C:\Windows\servicing\TrustedInstaller.exe
22:13:44.0904 0x0a1c  C:\Windows\servicing\TrustedInstaller.exe - ok
22:13:44.0915 0x0a1c  [ 060507C4113391394478F6953A79EEDC, 5D0AE5F1184165289DC8E8CD493607FCB68512CF90F748E3BFD2250655D784D4 ] C:\Windows\System32\UI0Detect.exe
22:13:44.0915 0x0a1c  C:\Windows\System32\UI0Detect.exe - ok
22:13:44.0922 0x0a1c  [ 7093799FF80E9DECA0680D2E3535BE60, 1CBFCCA84CB9212176BF5A1D32334BD54E58A2668A4746252738800468AD4AD4 ] C:\Windows\System32\upnphost.dll
22:13:44.0922 0x0a1c  C:\Windows\System32\upnphost.dll - ok
22:13:44.0931 0x0a1c  [ 449F5AB17863698F12F0BC8E99079AA6, C60901949B91D3B129FF8550F934970CB0F6758C135AB41F81A8524CBC1299AB ] C:\Windows\System32\dwm.exe
22:13:44.0931 0x0a1c  C:\Windows\System32\dwm.exe - ok
22:13:44.0939 0x0a1c  [ 294945381DFA7CE58CECF0A9896AF327, 67414C6D79D2826BC86BB37349C9D74DB4B667310CBC1ABFD103E26332AE4A00 ] C:\Windows\System32\vds.exe
22:13:44.0939 0x0a1c  C:\Windows\System32\vds.exe - ok
22:13:44.0947 0x0a1c  [ B75232DAD33BFD95BF6F0A3E6BFF51E1, A8120040F144AD42A39347A615F31BF752634994D4D134E2FAD23FEA9C1D71DF ] C:\Windows\System32\VSSVC.exe
22:13:44.0947 0x0a1c  C:\Windows\System32\VSSVC.exe - ok
22:13:44.0955 0x0a1c  [ F14A7DE2EA41883E250892E1E5230A9A, EBCB74BE26437F6FE84A3B41AD034F451D4BD12CA77D4C7A433DB912E7D31593 ] C:\Windows\System32\w32time.dll
22:13:44.0955 0x0a1c  C:\Windows\System32\w32time.dll - ok
22:13:44.0963 0x0a1c  [ B4E4C37D0AA6100090A53213EE2BF1C1, 67107F542F3C937FA5D9B28BA2EBFE994FFE287F16C0BFCF79AD20B95C13F78B ] C:\Windows\System32\wcncsvc.dll
22:13:44.0963 0x0a1c  C:\Windows\System32\wcncsvc.dll - ok
22:13:44.0971 0x0a1c  [ EA4B369560E986F19D93F45A881484AC, B61411D64901C9CB8C80402CD1E8808F5A0FACA38206C8D584C7C1019F5ADF5A ] C:\Windows\System32\WcsPlugInService.dll
22:13:44.0971 0x0a1c  C:\Windows\System32\WcsPlugInService.dll - ok
22:13:44.0982 0x0a1c  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] C:\Windows\System32\drivers\Wdf01000.sys
22:13:44.0982 0x0a1c  C:\Windows\System32\drivers\Wdf01000.sys - ok
22:13:44.0990 0x0a1c  [ C5EFDA73EBFCA8B02A094898DE0A9276, DE54E06CBE20EB27D88B29C3AE19CDFA0AE4933D6DCD640912C74A1065C9391C ] C:\Windows\System32\wdi.dll
22:13:44.0990 0x0a1c  C:\Windows\System32\wdi.dll - ok
22:13:44.0999 0x0a1c  [ 3E6D05381CF35F75EBB055544A8ED9AC, BEC43932BD6C34406B8850E28178B937BFD9512E49FD9F8C54DA7EE272B478A9 ] C:\Windows\System32\WebClnt.dll
22:13:44.0999 0x0a1c  C:\Windows\System32\WebClnt.dll - ok
22:13:45.0007 0x0a1c  [ 8D40BC587993F876658BF9FB0F7D3462, 23748E11F5CCE3D4978D748780283FA5A1154F53FF70D924CB2128FF8A4705F7 ] C:\Windows\System32\wecsvc.dll
22:13:45.0007 0x0a1c  C:\Windows\System32\wecsvc.dll - ok
22:13:45.0016 0x0a1c  [ 9C980351D7E96288EA0C23AE232BD065, BA627B04C4259716B451F421F5310A69D8DE9407DE496AA0489139125E9DC16A ] C:\Windows\System32\wercplsupport.dll
22:13:45.0016 0x0a1c  C:\Windows\System32\wercplsupport.dll - ok
22:13:45.0024 0x0a1c  [ ECFA1AC9D63D42B9B40AF8B5798513E8, 1FA58B5A68C8FE3F07BEDB9CF075B2F8BCE4B8A72DA18198C3B3384417EC7019 ] C:\Program Files\Windows Defender\MsMpRes.dll
22:13:45.0024 0x0a1c  C:\Program Files\Windows Defender\MsMpRes.dll - ok
22:13:45.0029 0x0a1c  [ 66B9ECEBC46683F47EDC06333C075FEF, 35C33596D97DB65DE0A687644E9AD924AD5FCBAFD83FE4D23E7E58EF4BC4CC87 ] C:\Windows\System32\wersvc.dll
22:13:45.0029 0x0a1c  C:\Windows\System32\wersvc.dll - ok
22:13:45.0038 0x0a1c  [ A2D043408A2DC9CDE48CFF88FCD74662, FDA016669FC2F9E64BA691E41FD304F43CE7C5FFA9BAADCE6A8CD65A23340EF9 ] C:\Windows\System32\winhttp.dll
22:13:45.0038 0x0a1c  C:\Windows\System32\winhttp.dll - ok
22:13:45.0048 0x0a1c  [ D2E7296ED1BD26D8DB2799770C077A02, B494719C2DEB7B9D2505866868143C4E4F59B88461920AA49BD9F1251B6571B8 ] C:\Windows\System32\wbem\WMIsvc.dll
22:13:45.0048 0x0a1c  C:\Windows\System32\wbem\WMIsvc.dll - ok
22:13:45.0056 0x0a1c  [ 6CBB0C68F13B9C2EC1B16F5FA5E7C869, 22D53818F4A4ACE441E121151CFD7CB1EDF5E8303DF9E113C9BB304B418A96EF ] C:\Windows\System32\WsmSvc.dll
22:13:45.0057 0x0a1c  C:\Windows\System32\WsmSvc.dll - ok
22:13:45.0065 0x0a1c  [ EC339C8115E91BAED835957E9A677F16, 3BBE6D4F1731198E8F0CFEE67C4CCA5C31E6968F8E02EF9E029C1847A26F513B ] C:\Windows\System32\wlansvc.dll
22:13:45.0065 0x0a1c  C:\Windows\System32\wlansvc.dll - ok
22:13:45.0073 0x0a1c  [ 21FA389E65A852698B6A1341F36EE02D, 2D60911EAAE26C4CE3DEF4FAD1EDE093F912209AA90741AAA8B93F06B37DF605 ] C:\Windows\System32\wbem\WmiApSrv.exe
22:13:45.0073 0x0a1c  C:\Windows\System32\wbem\WmiApSrv.exe - ok
22:13:45.0081 0x0a1c  [ 56382A5EB85A25446745E3BD6D50A3A5, 94ABCA1238150B74271CC47F0BDE5CCE2CB2D734AEE8E4B04074ECE396482624 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
22:13:45.0081 0x0a1c  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
22:13:45.0089 0x0a1c  [ CBC156C913F099E6680D1DF9307DB7A8, FD8B227F445679E31048CA41442A978A98F267FED96E22C235F63C72AEEE2AB0 ] C:\Windows\System32\wpcsvc.dll
22:13:45.0089 0x0a1c  C:\Windows\System32\wpcsvc.dll - ok
22:13:45.0098 0x0a1c  [ 490A18B4E4D53DC10879DEAA8E8B70D9, D069D8C22CF78A0970E85C0B9879E08FF19458FAA75AE447BCF9236731F64252 ] C:\Windows\System32\wpdbusenum.dll
22:13:45.0098 0x0a1c  C:\Windows\System32\wpdbusenum.dll - ok
22:13:45.0106 0x0a1c  [ A2BFEDF5D926CBED9C5F7BC46169A99C, 4F336C0D1DFBCDF9583F528331300FD377AE6565E0C70D58CD9E6ACE95B7273F ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:13:45.0107 0x0a1c  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe - ok
22:13:45.0117 0x0a1c  [ 9EA3E6D0EF7A5C2B9181961052A4B01A, F39BAF1FC7DD1600C0052C2A6AA3BCBC8CA3DA96D1AC7B42B0F2810D051EE1B0 ] C:\Windows\System32\wscsvc.dll
22:13:45.0117 0x0a1c  C:\Windows\System32\wscsvc.dll - ok
22:13:45.0125 0x0a1c  [ A2AC37A1EEF83BD9E912B0EFCBEA06BD, F51F38E789DE23A53AEC58B505C7AD9ABB3988F08F54A73DADE52E5A5F7F613E ] C:\Windows\System32\SearchIndexer.exe
22:13:45.0125 0x0a1c  C:\Windows\System32\SearchIndexer.exe - ok
22:13:45.0133 0x0a1c  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] C:\Windows\System32\wuaueng.dll
22:13:45.0133 0x0a1c  C:\Windows\System32\wuaueng.dll - ok
22:13:45.0144 0x0a1c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] C:\Windows\System32\drivers\WUDFPf.sys
22:13:45.0144 0x0a1c  C:\Windows\System32\drivers\WUDFPf.sys - ok
22:13:45.0154 0x0a1c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] C:\Windows\System32\WUDFSvc.dll
22:13:45.0154 0x0a1c  C:\Windows\System32\WUDFSvc.dll - ok
22:13:45.0162 0x0a1c  [ 9922ADB6DCA8F0F5EA038BEFF339C08B, DA74D1019544519AB1D138FDEE9D4BCB25F71DCA155751D1F931067273B32BE7 ] C:\Windows\System32\scecli.dll
22:13:45.0162 0x0a1c  C:\Windows\System32\scecli.dll - ok
22:13:45.0170 0x0a1c  [ EE3718BCF5CEF1C457C10A745E410959, F79AA33B471991575E7A7B5BB33588792E4B321DF8706B58E284625FC3BCF110 ] C:\Windows\System32\ntmarta.dll
22:13:45.0170 0x0a1c  C:\Windows\System32\ntmarta.dll - ok
22:13:45.0178 0x0a1c  [ CDA9F1373805AF88F6FA4F2064BBA24D, B26AAFFF9A4721A168FEC6DBEFF785121FDD3010BE46BC89815E2C8C4C40B303 ] C:\Windows\System32\svchost.exe
22:13:45.0178 0x0a1c  C:\Windows\System32\svchost.exe - ok
22:13:45.0187 0x0a1c  [ 7823A58BF0FE3CAAA555C12B5CF91290, 873435FBE8FAB30A6A50E0924C0D9AB24F0F03938E1F1959D68CB00192559766 ] C:\Windows\System32\powrprof.dll
22:13:45.0187 0x0a1c  C:\Windows\System32\powrprof.dll - ok
22:13:45.0195 0x0a1c  [ 52F87B9CC8932C2A7375C3B2A9BE5E3E, 2EB22DD418D4934BDD22C5DB49D5D06178EC0419AB5CC28DD544CA91823987B0 ] C:\Windows\System32\drivers\luafv.sys
22:13:45.0195 0x0a1c  C:\Windows\System32\drivers\luafv.sys - ok
22:13:45.0204 0x0a1c  [ BC5B0BE5AF3510B0FD8C140EE42C6D3E, B21CA5F14BDB6CFD97A24C28BB2AD0D704C46058F13B01FF4203514FE8B92591 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
22:13:45.0204 0x0a1c  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe - ok
22:13:45.0212 0x0a1c  [ 72AB6633E9B39EC7FEBEDF083A9061E5, 758E5BA89665C574456A2A826EF5A7DC2487C8379893010EB57BC40127AC918F ] C:\Windows\System32\mscoree.dll
22:13:45.0212 0x0a1c  C:\Windows\System32\mscoree.dll - ok
22:13:45.0234 0x0a1c  [ D44067027714CC58B8AB0AC38FDA1A0B, 56E96A58B5A53A68485F8D2F7BA286F2B174AB910BD45145258D48251F489F02 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
22:13:45.0234 0x0a1c  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
22:13:45.0253 0x0a1c  [ 46662CD685A6341AB4AED86D134D80E9, 7AAEFBFAA824F24A1F9FC7009FBE6355789E0AC80F0C26EE1030A01A0922C90B ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd\comctl32.dll
22:13:45.0253 0x0a1c  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd\comctl32.dll - ok
22:13:45.0271 0x0a1c  [ CC8ADF7935AD443F59C5BA2BAEAFCA63, DF8D4F51ED529E9DC3591A611693A01C69DCCD532C7E9718A8A61359B9907C98 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
22:13:45.0271 0x0a1c  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
22:13:45.0281 0x0a1c  [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7, 690F12C490BEE2BF17AB7B6804E6E9B96F51C304350CCDE80FE5C7EEFA89720E ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
22:13:45.0281 0x0a1c  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
22:13:45.0299 0x0a1c  [ C78F5C6473A6D1B1FE8EC4279AD3EBF7, AAA7A561A48A5A43E58728772642CE18FF67C7AE3559463F5B51B9A76D0E9F33 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\d029a18482e452ebc878f96f8dcbaf8d\mscorlib.ni.dll
22:13:45.0299 0x0a1c  C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\d029a18482e452ebc878f96f8dcbaf8d\mscorlib.ni.dll - ok
22:13:45.0316 0x0a1c  [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF, 3BE4B8EE22FA55D3A17D3718781C8BCA631C78F7928092561F6B79BB60E7D7FE ] C:\Windows\System32\rpcss.dll
22:13:45.0316 0x0a1c  C:\Windows\System32\rpcss.dll - ok
22:13:45.0324 0x0a1c  [ 4D0252C977B1F00615BF6F9686404717, 16C95F579C43A61C49979D8425B619813D18271BA4FE039F2D39C4977F479BE8 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\87639f286c9d47b2e92742c1656f329d\System.ni.dll
22:13:45.0324 0x0a1c  C:\Windows\assembly\NativeImages_v2.0.50727_64\System\87639f286c9d47b2e92742c1656f329d\System.ni.dll - ok
22:13:45.0333 0x0a1c  [ FDA037747EAC3FEF223A267282889D3E, 478B99310A54FF039BF632DAACD7CBA630E567841EC1168A18FA9DB658C3F982 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\66b0c65b37a407655524453d726560da\System.ServiceProcess.ni.dll
22:13:45.0333 0x0a1c  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\66b0c65b37a407655524453d726560da\System.ServiceProcess.ni.dll - ok
22:13:45.0343 0x0a1c  [ DB998334D21928780883FC24B3B50988, C21137476B441A550A962FDCC2EAE0CE0D62AE20BBA406643575A812D3B9A267 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
22:13:45.0343 0x0a1c  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
22:13:45.0357 0x0a1c  [ 7BCDF81E2E6BE2D374C3F916FA1E9361, 7F8175B14D42AD4736E5F97EB6CCD855EF22837458FC4CB93612EE30B6456068 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\83c3de0bab7889cf47def991cc065295\WindowsBase.ni.dll
22:13:45.0357 0x0a1c  C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\83c3de0bab7889cf47def991cc065295\WindowsBase.ni.dll - ok
22:13:45.0370 0x0a1c  [ 8A18A7D0DB72BEDE9B4B7C2FDCE9D13F, 2AD79D1689E242391E8F65965A832F4D1F74CFE6B36CC7F0871FC50AE3982084 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\9a5ad9c3c02a32cf28955cd71dfd5e91\PresentationCore.ni.dll
22:13:45.0370 0x0a1c  C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\9a5ad9c3c02a32cf28955cd71dfd5e91\PresentationCore.ni.dll - ok
22:13:45.0383 0x0a1c  [ FB4C144F69C381001347DC56E4971C18, E160454536898EBE85CF3B812285E5C9B07AE326AE28173DF78DAE9A9BEFD05F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
22:13:45.0383 0x0a1c  C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
22:13:45.0395 0x0a1c  [ 54A374CD6B0A5E3E418B028BBB787C08, 8DAED00AFC0E84DFF962EA1185FDA693B24F59AC6946BB03E30DB3C123982228 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
22:13:45.0395 0x0a1c  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
22:13:45.0405 0x0a1c  [ 7E451C585AD79B895D03A3301EC5A675, EB5D1397C257C7044FAAB1C295BB08F8D5DEC8038E0BE64518B5E199BAAD0004 ] C:\Windows\System32\shfolder.dll
22:13:45.0405 0x0a1c  C:\Windows\System32\shfolder.dll - ok
22:13:45.0413 0x0a1c  [ EA3D2B63BA304EB6EDABBAFA21599B47, 01F6951D53721C62C94B4A3F6A0F6A2429B8805E1FCF61C2DA4B5C8368A0AD3A ] C:\Windows\System32\version.dll
22:13:45.0413 0x0a1c  C:\Windows\System32\version.dll - ok
22:13:45.0424 0x0a1c  [ 89F2AEDC2788696702141AB82C3E7866, E166CBD8D3C708737C37172221945D8E56C25C2CC750889C3CE14AA2DE750F33 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
22:13:45.0424 0x0a1c  C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
22:13:45.0436 0x0a1c  [ 92A0FCE28889EE68552C0D9132096639, 796C1224CA13AD21BD317C6B001125D9759BE6776CBB00D9DB1D6D3D2997EF73 ] C:\Program Files\Microsoft Security Client\MpSvc.dll
22:13:45.0436 0x0a1c  C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
22:13:45.0448 0x0a1c  [ BAD79FECE1387CDD8388A3314645757F, A0E5DAE8BD6B29F7F22F28C644E3CCD7C08E9DBBBC2A54CC3C0E542B6F20EFA3 ] C:\Windows\System32\LogonUI.exe
22:13:45.0449 0x0a1c  C:\Windows\System32\LogonUI.exe - ok
22:13:45.0457 0x0a1c  [ D2B5BFBA352139FA5CD92DD07C9E0D17, B629DDB5755CA03DAE3502E7883C7A92DF66E7FA01979D1DF66276FE9CF1D984 ] C:\Windows\System32\authui.dll
22:13:45.0457 0x0a1c  C:\Windows\System32\authui.dll - ok
22:13:45.0467 0x0a1c  [ 6C2D2558DECB89C83873F80160D19F2C, 88366ABDA198978773150F35FA558C73F19BC261A65D73B66B2C43B89BE25831 ] C:\Windows\System32\wtsapi32.dll
22:13:45.0467 0x0a1c  C:\Windows\System32\wtsapi32.dll - ok
22:13:45.0480 0x0a1c  [ F50B9765F2F4B4506F5EF86B888B4350, DBD78B89C51B10DD4F330CBB083FBB9CA63F23E8B5FC7EFD68945645969B58E2 ] C:\Program Files\Microsoft Security Client\MpClient.dll
22:13:45.0480 0x0a1c  C:\Program Files\Microsoft Security Client\MpClient.dll - ok
22:13:45.0492 0x0a1c  [ 887337641E72861178B1DA84867298ED, ACC245A9440A2ED882DDD1A03638E27F2DC6AC12D5BA4217D5741C76FFAEC976 ] C:\Windows\System32\wintrust.dll
22:13:45.0492 0x0a1c  C:\Windows\System32\wintrust.dll - ok
22:13:45.0506 0x0a1c  [ 6B58266234B36ABCDD43C797B0D1932E, 37A9BB603DEE09FD7BE8C25F489F434EC999791FFCA69E7CC1B46A53F7CA68EA ] C:\Windows\System32\msimg32.dll
22:13:45.0506 0x0a1c  C:\Windows\System32\msimg32.dll - ok
22:13:45.0516 0x0a1c  [ 7D2A43E8FDF725A1133F6C6056A72CDC, D5F7CF0DAB54B380F96777BC918E64987072A1F84666587070724FD8A850186C ] C:\Program Files\Windows Defender\MpSvc.dll
22:13:45.0516 0x0a1c  C:\Program Files\Windows Defender\MpSvc.dll - ok
22:13:45.0524 0x0a1c  [ 88DBC757681093478BC80211C21695E5, BB3401574E83135DB8B855795040F57D1309C9FE2F4DD38CFF9F100A45FC3B2E ] C:\Windows\System32\uxtheme.dll
22:13:45.0524 0x0a1c  C:\Windows\System32\uxtheme.dll - ok
22:13:45.0536 0x0a1c  [ 78AC0946A2843C60994958E70FF19E6F, 09109D28C1F7852DD24C062B8458EDFBA7A32A8364CDB6790182D162224B677E ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.19096_none_56ac6a77b5937fd8\GdiPlus.dll
22:13:45.0536 0x0a1c  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.19096_none_56ac6a77b5937fd8\GdiPlus.dll - ok
22:13:45.0541 0x0a1c  [ D07D4DA02FA8C7092FD402634419797D, 8ACC5CE418358DA1AD912A83E8F9C4157C27B273B6EEC238E602BB8E614AADB3 ] C:\Program Files\Windows Defender\MpClient.dll
22:13:45.0541 0x0a1c  C:\Program Files\Windows Defender\MpClient.dll - ok
22:13:45.0553 0x0a1c  [ 16881B42E07390FAA8C7331E9B8316A7, CF68AD56E7880DD899AB5E7C36B92ABAAEC4D521F17DC42022554FD3C98571E5 ] C:\Windows\System32\duser.dll
22:13:45.0553 0x0a1c  C:\Windows\System32\duser.dll - ok
22:13:45.0561 0x0a1c  [ 656CF740A2FDB99664A91C439D05C0ED, C6F3D698AE412E3918844EA2AA14EE241F981506C74F14E3783A67FE1E6A24A1 ] C:\Windows\System32\xmllite.dll
22:13:45.0561 0x0a1c  C:\Windows\System32\xmllite.dll - ok
22:13:45.0569 0x0a1c  [ C501852F1CA40FFC55363ACC0D2DF5BA, 00B0E33941DA5409DFBA95984F167CE8188C89C9090DCD8CD3C2D4CC5C8F6E35 ] C:\Windows\System32\SmartcardCredentialProvider.dll
22:13:45.0569 0x0a1c  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
22:13:45.0578 0x0a1c  [ A8DDF2DA87A306E880D319F44B533045, 97403384A7F3A91AE840C5D8E0BD8E623206BD6BCDD8996BFF11FE7DAD8BF9C9 ] C:\Windows\System32\SmartFaceVCP.dll
22:13:45.0578 0x0a1c  C:\Windows\System32\SmartFaceVCP.dll - ok
22:13:45.0587 0x0a1c  [ 84B9BEE43277716291F9079E1CB03FF1, 44C3FC4F37BE0578DF62CA97C04C5A7E48A24628C02AFFE02FB956AFC1F4AB43 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
22:13:45.0587 0x0a1c  C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
22:13:45.0597 0x0a1c  [ 2F0C8FD04FCB78617D48484523C77117, 531E8991FF02E1D301C1002FDFAAE4958702C9411C405C8BD9BE659FF09FD79D ] C:\Windows\System32\Ati2evxx.exe
22:13:45.0597 0x0a1c  C:\Windows\System32\Ati2evxx.exe - ok
22:13:45.0604 0x0a1c  [ 0C063350E73B443666B17F225BB9FEC7, 7C948305B2D62FAD01124E558C64168C88E9B663D0B9E967318DC21F1E62F2A3 ] C:\Windows\System32\cfgmgr32.dll
22:13:45.0604 0x0a1c  C:\Windows\System32\cfgmgr32.dll - ok
22:13:45.0612 0x0a1c  [ FEB771AF00A645DCA8A7D07CC33F7E8E, 654DE167200DC09F5ED79E3966165FA7BE2E9A50BAE20DAC4346E6955CC18E5C ] C:\Windows\System32\winspool.drv
22:13:45.0613 0x0a1c  C:\Windows\System32\winspool.drv - ok
22:13:45.0621 0x0a1c  [ 801F3E903818B49BA55D925211FB9584, FDFEFED29EF2B909AE998B1D2BD6DEBED9A035C8BDA78A4B8F4BFB8C0EEAAB68 ] C:\Program Files\Microsoft Security Client\MpCommu.dll
22:13:45.0621 0x0a1c  C:\Program Files\Microsoft Security Client\MpCommu.dll - ok
22:13:45.0630 0x0a1c  [ D58A65112AE355CADFABEEFC8D329A8F, 8A78FC9A46201CF264F27A4B66D9880D468501E4937E1E660EF75AAF09098D32 ] C:\Windows\System32\oleacc.dll
22:13:45.0630 0x0a1c  C:\Windows\System32\oleacc.dll - ok
22:13:45.0638 0x0a1c  [ DE4BCD4F7BEA7E654812049B86B87837, 972CD913A072943AAFD20C81B05220854F4B2868ABFA927D3D903F0329737433 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
22:13:45.0638 0x0a1c  C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
22:13:45.0646 0x0a1c  [ F59CF3BFE865EB795C5DE5850F48B321, 3027C787DA153F79745A0BB00574EBE549F5F15274CB0642EBB19920ACA851D4 ] C:\Windows\System32\rasplap.dll
22:13:45.0647 0x0a1c  C:\Windows\System32\rasplap.dll - ok
22:13:45.0655 0x0a1c  [ 4809DCE75464A833A5F37FB9AF5FB824, 62FFD5A897F3E39F3E2584B895D13EF99667CC77C848833B3F03862EE8A7B026 ] C:\Windows\System32\fltLib.dll
22:13:45.0655 0x0a1c  C:\Windows\System32\fltLib.dll - ok
22:13:45.0664 0x0a1c  [ 303C4EB5C2FB40F194E2B24CAD7148EF, 72DFD0B7C7611859EA80D466E9EA735CE63BD4AF2F2570766D16211E7A65C579 ] C:\Windows\System32\MMDevAPI.dll
22:13:45.0665 0x0a1c  C:\Windows\System32\MMDevAPI.dll - ok
22:13:45.0673 0x0a1c  [ A4F3F34A7146D8633FA8D346535A9CAA, 2D01094210C0C8F611CCF1D3A6D136107C6E73ABF7CC801F404B352BEDBB3205 ] C:\Windows\System32\rasapi32.dll
22:13:45.0673 0x0a1c  C:\Windows\System32\rasapi32.dll - ok
22:13:45.0682 0x0a1c  [ 8CBEA4AABFA48C69832B299E23607029, D8ACD3DE8E86D79A9DDF4BF3492C8F8D85B7F141C77516BBB3BE4BC035F4FCA4 ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
22:13:45.0683 0x0a1c  C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
22:13:45.0691 0x0a1c  [ 99AA51A6AE40DED4A74776E6E1C066C1, 7D6DC515863A36E37C0984651560E061747D06D7CC5F8CE7B2B485A91A1CE5C1 ] C:\Windows\System32\adtschema.dll
22:13:45.0691 0x0a1c  C:\Windows\System32\adtschema.dll - ok
22:13:45.0700 0x0a1c  [ 514A07C903607458B6B5A430B09BF794, 9A79E172E28A0B2A34121E74FEE29401A5AF9AA4E238F3E3F2DD8F94FEC4F2AE ] C:\Windows\System32\avrt.dll
22:13:45.0700 0x0a1c  C:\Windows\System32\avrt.dll - ok
22:13:45.0708 0x0a1c  [ 9EB89625A82AC961F25E7C865947BF9A, 91DB9530CDE883DC60BE621AC4210ACD069631D9466E37411D9D6AEE587098D9 ] C:\Windows\System32\drivers\MpFilter.sys
22:13:45.0708 0x0a1c  C:\Windows\System32\drivers\MpFilter.sys - ok
22:13:45.0719 0x0a1c  [ 73F18E253DF8E0A9CE5FC45E62FB1945, 45254099C3CB5166953423814A98E4B39AD02655BC937D78D2616F2BDC83E6B4 ] C:\Windows\System32\cabinet.dll
22:13:45.0719 0x0a1c  C:\Windows\System32\cabinet.dll - ok
22:13:45.0727 0x0a1c  [ 159116B914ADA81E2C071E00C9183DED, CCFEEC40FB6602BB9256C8CAB051589BD298CC8CD8100CD052E75D156DBB96C5 ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll
22:13:45.0727 0x0a1c  C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok
22:13:45.0736 0x0a1c  [ C30BD20F185A47DCD4FD05F5AE1BC077, CAE1C60B826AC7A07E09D2A94E815F2938069D22EA08808C7F11CA22E0837039 ] C:\Windows\System32\rasman.dll
22:13:45.0736 0x0a1c  C:\Windows\System32\rasman.dll - ok
22:13:45.0744 0x0a1c  [ F0884FA3E83C79775BF89C74DD28B616, 773BFB326428B9733083F8DE978067FBAA7EF2906BD5DF60EC3550473E2759D1 ] C:\Windows\System32\tapi32.dll
22:13:45.0744 0x0a1c  C:\Windows\System32\tapi32.dll - ok
22:13:45.0755 0x0a1c  [ F1D25FB6A8BF8FBAE49717B684670393, 56991FE3ED90311630FD60772876ADACCEB7DC9E761D4BFEC6A96E18C6C4F54B ] C:\Windows\System32\rtutils.dll
22:13:45.0755 0x0a1c  C:\Windows\System32\rtutils.dll - ok
22:13:45.0764 0x0a1c  [ 7500278FEF4A66B0D76D8438F0295F4E, AF7F6BE7D670187541F97636AD96782F38D8DCF472351098BAF2939B04A6CAFF ] C:\Windows\System32\winmm.dll
22:13:45.0764 0x0a1c  C:\Windows\System32\winmm.dll - ok
22:13:45.0773 0x0a1c  [ 7F633AC83782EB0E8ADE513B8A1A9BC8, 33589B748E5255B154BC9D94C6196E9C661197746A025981589285D088278D77 ] C:\Windows\System32\audiodg.exe
22:13:45.0773 0x0a1c  C:\Windows\System32\audiodg.exe - ok
22:13:45.0781 0x0a1c  [ B1D4BB8DFD7128A90982562268920724, 741CBBF101DDAADEF496F54A382BE04AE7923E63A26FE62356CF821B0E0390D5 ] C:\Windows\System32\WinSCard.dll
22:13:45.0781 0x0a1c  C:\Windows\System32\WinSCard.dll - ok
22:13:45.0790 0x0a1c  [ E3041BC26D6930D61F42AEDB79C91720, 3556C033BB78445EC8B2F98A82455914764AFC70CBFF634DDBD3539885A1E457 ] C:\Windows\System32\drivers\fltMgr.sys
22:13:45.0790 0x0a1c  C:\Windows\System32\drivers\fltMgr.sys - ok
22:13:45.0796 0x0a1c  [ 00C7DAFAD08FAD59E51EB9A1F90925DE, 39FEBD2CD67CEB6E348135AF46B6AEF8E89811DAD2D830478D4312BF27A61E25 ] C:\Windows\System32\shgina.dll
22:13:45.0796 0x0a1c  C:\Windows\System32\shgina.dll - ok
22:13:45.0805 0x0a1c  [ FE13271EF661F8BE83A1A0D3366164D0, 084D858A21EC8A22C0880D4C70D042ACAB3982E998054CFE3525D2725D7454E2 ] C:\Windows\System32\propsys.dll
22:13:45.0805 0x0a1c  C:\Windows\System32\propsys.dll - ok
22:13:45.0813 0x0a1c  [ 4CEA4255CAE84BF21FCA9A2827E16CBB, 2B46053E200FCB4A11E010E1F5C8C49253768009F81068BB800298F7A5DAF3DA ] C:\Windows\System32\shacct.dll
22:13:45.0813 0x0a1c  C:\Windows\System32\shacct.dll - ok
22:13:45.0822 0x0a1c  [ 6F391A20728B092E0E6D09F0AA05DA7D, 72A3167E947675849FECAC6FEABE23DCA1B482F8EE5117C3CC916921A99EBB41 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpengine.dll
22:13:45.0822 0x0a1c  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpengine.dll - ok
22:13:45.0830 0x0a1c  [ 9E693C6146932B5369DFFA584E805EF6, 4B3647ACA543884168C8F3A32DE95E5FF6F05C866A89F51D413C341334E237E4 ] C:\Windows\System32\PSHED.DLL
22:13:45.0830 0x0a1c  C:\Windows\System32\PSHED.DLL - ok
22:13:45.0839 0x0a1c  [ 35FBB6F5993C9EE70CDB72CC8AAB5D38, 9891D0B550E5A42B41B0587E9F71344A6DBD085494BCB4CD1CBA0CDB6A1CAE09 ] C:\Windows\System32\wdmaud.drv
22:13:45.0839 0x0a1c  C:\Windows\System32\wdmaud.drv - ok
22:13:45.0848 0x0a1c  [ 7FC9AFDD2A2ACFCB52FB05D57FE8C2F4, 9DB8D42BBFB0222DB270EC249FCAD8AE02840AE5AF939EC01BC7F58F3BD68DA6 ] C:\Windows\System32\atl.dll
22:13:45.0848 0x0a1c  C:\Windows\System32\atl.dll - ok
22:13:45.0855 0x0a1c  [ A0E1B575BA8F504968CD40C0FAEB2384, F64A24A5A93F4E757882E97C65DA612F07A87F4DDD2E10C1AB0250AFA03BCEF1 ] C:\Windows\System32\gpsvc.dll
22:13:45.0855 0x0a1c  C:\Windows\System32\gpsvc.dll - ok
22:13:45.0862 0x0a1c  [ C5EDECA7546B009484B23FAD0E9724C1, 8F71B8B5F644C38BD4E5FD41AE27C898FCD94FCC4DEE068D32592BF8099FBE89 ] C:\Windows\System32\nlaapi.dll
22:13:45.0862 0x0a1c  C:\Windows\System32\nlaapi.dll - ok
22:13:45.0871 0x0a1c  [ E12F22B73F153DECE721CD45EC05B4AF, 41887EEF4BB024329B4079AD50FC5FB705F0EB8BAF6C93A8242DC2A73D3AFD86 ] C:\Windows\System32\es.dll
22:13:45.0871 0x0a1c  C:\Windows\System32\es.dll - ok
22:13:45.0879 0x0a1c  [ 17BF3BF5296936B153FDDDA189B60E07, AF13EAE258E3705F8613246DE1ABCEAD5267492210B15449B16482EDD1A57D16 ] C:\Windows\System32\ksuser.dll
22:13:45.0879 0x0a1c  C:\Windows\System32\ksuser.dll - ok
22:13:45.0888 0x0a1c  [ EEFDA2A090E8000740D46B09DCDBEAFF, 936148CF121DADB6E0A6F109DF9BCE4227608E0AC491BCF59FD4CD60BC3C6802 ] C:\Windows\System32\AudioSes.dll
22:13:45.0889 0x0a1c  C:\Windows\System32\AudioSes.dll - ok
22:13:45.0898 0x0a1c  [ D76E231E4850BB3F88A3D9A78DF191E3, 98CAD31C41AD155EA853DF850D94FA29543C3A7D26262D1B6881281D033CEBAF ] C:\Windows\System32\uxsms.dll
22:13:45.0898 0x0a1c  C:\Windows\System32\uxsms.dll - ok
22:13:45.0905 0x0a1c  [ 56697D33950E5E83A4049F477BE7C320, 9272DEFD5B3D0FF201EFB4ADDA1F5C0119B181D70B29AC95A42B581E28D81DD5 ] C:\Windows\System32\hid.dll
22:13:45.0905 0x0a1c  C:\Windows\System32\hid.dll - ok
22:13:45.0915 0x0a1c  [ B1DF2D87DC8BF6072699AC8301B37796, D5A6FD1EDB627324DFA1A0555F1777A3313EF29DDE29982C3CE59DAF1ED0D105 ] C:\Windows\System32\WUDFPlatform.dll
22:13:45.0915 0x0a1c  C:\Windows\System32\WUDFPlatform.dll - ok
22:13:45.0924 0x0a1c  [ A1A408E9F8C2DB9C3B3BA21C25CCF9C3, D67E425A918792E1A9017A687A8F42C46788511F5BE83F0FA54321865D182321 ] C:\Windows\System32\AudioEng.dll
22:13:45.0924 0x0a1c  C:\Windows\System32\AudioEng.dll - ok
22:13:45.0932 0x0a1c  [ 75C881C65CEF2C7B911EB0A351957368, 136C50B7B9A56F7EE3C68A34CDAB76CD118ADD12C2CAF2F78F7DB1BE1F99B82D ] C:\Windows\System32\drivers\spsys.sys
22:13:45.0933 0x0a1c  C:\Windows\System32\drivers\spsys.sys - ok
22:13:45.0941 0x0a1c  [ 48FEF0CD6C0D4CA428DE7024F297E1CD, 489026352868DD70F843B637FAD0F7E2D9A71429C8ECBD96A9FA54FFA32C8F7C ] C:\Windows\System32\WindowsCodecs.dll
22:13:45.0941 0x0a1c  C:\Windows\System32\WindowsCodecs.dll - ok
22:13:45.0950 0x0a1c  [ 96ECE2659B6654C10A0C310AE3A6D02C, 3322E87B9F64C3ACBCB634F2390AAB212FA7695383BF01F0092A803871BF19B2 ] C:\Windows\System32\drivers\lltdio.sys
22:13:45.0950 0x0a1c  C:\Windows\System32\drivers\lltdio.sys - ok
22:13:45.0960 0x0a1c  [ 2007B826C4ACD94AE32232B41F0842B9, 6267D165C3C8C5F83194890A6DBF71226D4B891AECD1D06F7AEB5D738C3DC9CA ] C:\Windows\System32\drivers\nwifi.sys
22:13:45.0960 0x0a1c  C:\Windows\System32\drivers\nwifi.sys - ok
22:13:45.0968 0x0a1c  [ 215DFBEF790637C2B9C02BB23C9887EB, EE6207FA2D5CA28C7296653EB74DCC10EA0A4DFC3AAAF1B0C4B07FAEC87864B6 ] C:\Windows\System32\msacm32.dll
22:13:45.0968 0x0a1c  C:\Windows\System32\msacm32.dll - ok
22:13:45.0977 0x0a1c  [ 9A328CC4E4490E929E30332AC902CAC1, 658CEF505A83DA082B19599C2B497488DFC96911969E6B5B2F6C2318B35660EB ] C:\Windows\System32\msacm32.drv
22:13:45.0977 0x0a1c  C:\Windows\System32\msacm32.drv - ok
22:13:45.0986 0x0a1c  [ 62BDB059ED8AE0C63E33BBF990941E0F, 53C15597E7A0EB62BDABC6F790873E4D9073A845CFD3DB039472002ADC1195FA ] C:\Windows\System32\midimap.dll
22:13:45.0986 0x0a1c  C:\Windows\System32\midimap.dll - ok
22:13:45.0994 0x0a1c  [ 8BAA43196D7B5BB972C9A6B2BBF61A19, 8AFFB26F6E8CF67F562818BBFE12FB448E4FCDF9B68858B625681565DE30DDC1 ] C:\Windows\System32\drivers\ndisuio.sys
22:13:45.0994 0x0a1c  C:\Windows\System32\drivers\ndisuio.sys - ok
22:13:46.0003 0x0a1c  [ 22A9CB08B1A6707C1550C6BF099AAE73, 46A9D40A03DC0B6C93274C0C1CDB132B2339E76E77CAB0F12AEDAD4C31822B91 ] C:\Windows\System32\drivers\rspndr.sys
22:13:46.0003 0x0a1c  C:\Windows\System32\drivers\rspndr.sys - ok
22:13:46.0011 0x0a1c  [ E08935E54CEE225BEB3CC220CBCC734A, 2AAFC40B6747C108CF6DD516E118B0DE92A6AC2018670338E06B2F02D3DBE6E5 ] C:\Windows\System32\AUDIOKSE.dll
22:13:46.0011 0x0a1c  C:\Windows\System32\AUDIOKSE.dll - ok
22:13:46.0022 0x0a1c  [ 5374BCDA48AF8B6096ACE12E1762523B, 98A73A96D22418AE040DA74C400668E8F4760A12C744A72854A9FF42D02C9E29 ] C:\Windows\System32\CnxtAp64.dll
22:13:46.0022 0x0a1c  C:\Windows\System32\CnxtAp64.dll - ok
22:13:46.0030 0x0a1c  [ C32929420A1EA895FCB79FAA947CE223, E3C3D09E5548D640E7F0CD54BE089A0C075D397CCCF740EF7374D2416917C1B0 ] C:\Windows\System32\atiedu64.dll
22:13:46.0030 0x0a1c  C:\Windows\System32\atiedu64.dll - ok
22:13:46.0039 0x0a1c  [ 177202AFC8DC3DA9C298C9A027C49C09, B33BAC8CEC305BBF91CAEBCDBE9A0467F9EBD49B92A1794DE53D9E8BCC859F9F ] C:\Windows\System32\atipdl64.dll
22:13:46.0039 0x0a1c  C:\Windows\System32\atipdl64.dll - ok
22:13:46.0044 0x0a1c  [ 836C0B5CF54DAE238595A12FA9AA3F31, 90E5A8FA01CCA8F92BF44D9C7B39185CEA9EAD52A8917C4C6B320AA8FEC65A1D ] C:\Windows\System32\Ati2evxx.dll
22:13:46.0044 0x0a1c  C:\Windows\System32\Ati2evxx.dll - ok
22:13:46.0052 0x0a1c  [ B2C55E65B4CF95E154E31B1470A90C69, 931359FBCDFAFBB676C25D30DD2803CA56F6806420622E2B5BC23D9BA4CC0F73 ] C:\Windows\System32\WMALFXGFXDSP.dll
22:13:46.0053 0x0a1c  C:\Windows\System32\WMALFXGFXDSP.dll - ok
22:13:46.0061 0x0a1c  [ B7BD00787568A178CDE26A83B5C847BE, D711846FA3C5AF870C6099AF1D8607DF0243AB7F7EDEF8693E424784C9C4DF00 ] C:\Windows\System32\mfplat.dll
22:13:46.0061 0x0a1c  C:\Windows\System32\mfplat.dll - ok
22:13:46.0070 0x0a1c  [ A021CC1D5F73CDB0D022D43AADBAB933, 1B220C905677D4DEE6FDF9860BAC367784684C685D75243B246E854ACEDBBB4D ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpasbase.vdm
22:13:46.0070 0x0a1c  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpasbase.vdm - ok
22:13:46.0079 0x0a1c  [ 06230F1B721494A6DF8D47FD395BB1B0, F6CA8270740E01D9CE2FE8E34BC067C7EDC15BA610F461860E1D17D135C8A379 ] C:\Windows\System32\dnsrslvr.dll
22:13:46.0079 0x0a1c  C:\Windows\System32\dnsrslvr.dll - ok
22:13:46.0089 0x0a1c  [ E0159CE395B31F746AA26D0A6996DB29, 037B6A753ADC314353E5BEEFD8175FD4CC92E609EB4110684831916089CA65A6 ] C:\Windows\System32\eapphost.dll
22:13:46.0089 0x0a1c  C:\Windows\System32\eapphost.dll - ok
22:13:46.0097 0x0a1c  [ 0160AD4F8F4F817428CA74358612EC48, A284314AF80D8E9AE69459037C9809CB119B08EA30C17D41F3B4129CD524B02F ] C:\Windows\System32\rastls.dll
22:13:46.0097 0x0a1c  C:\Windows\System32\rastls.dll - ok
22:13:46.0105 0x0a1c  [ BFDF69526CB6476992540D4C477CC27A, 67514AED7622A426D51C6BAD359CA4ADE89D2BF0D293DC8526C7BC60ED67B5D9 ] C:\Windows\System32\raschap.dll
22:13:46.0106 0x0a1c  C:\Windows\System32\raschap.dll - ok
22:13:46.0113 0x0a1c  [ 57D1DE90D43E25C9E645D81FFC4FB678, 877B62932CD2F38568DCEBC44506750FDAD955B51735A056F748FD2E89FA823A ] C:\Windows\System32\umb.dll
22:13:46.0113 0x0a1c  C:\Windows\System32\umb.dll - ok
22:13:46.0122 0x0a1c  [ F64C1360D0590DF16AF01C8DA66973CB, 144B8D260125BA32674E637C009E114EAAF93D0668F5D338EACA60AE182E3BBD ] C:\Windows\System32\wlanmsm.dll
22:13:46.0122 0x0a1c  C:\Windows\System32\wlanmsm.dll - ok
22:13:46.0130 0x0a1c  [ CE11C00CCC066FB06CC0E671CA0D7660, 63478A89345DA8EF65A985CAEE0CEA3FE8BADB5ABB7BDDBD6D48130A5703FCBB ] C:\Windows\System32\wlansec.dll
22:13:46.0130 0x0a1c  C:\Windows\System32\wlansec.dll - ok
22:13:46.0140 0x0a1c  [ DED15764B578A26BE9E45E7692820549, 9F5448CF3721305D9173251AC5184C6D813FFEA7D5E7BB6AFA145F9980A4176A ] C:\Windows\System32\onex.dll
22:13:46.0140 0x0a1c  C:\Windows\System32\onex.dll - ok
22:13:46.0148 0x0a1c  [ B50D0BF177657752B826697259341858, 26F7EA437E9D94D01E839E2DD71222D101862EB27C901F5405D3566420A90A3E ] C:\Windows\System32\eappprxy.dll
22:13:46.0148 0x0a1c  C:\Windows\System32\eappprxy.dll - ok
22:13:46.0157 0x0a1c  [ 03FDED7449428CE493432EE35FE5A2FB, 97645AE40FACC5F5D75DA582E19CE5278977C798809E7E87F594DECBEED5AE11 ] C:\Windows\System32\eappcfg.dll
22:13:46.0157 0x0a1c  C:\Windows\System32\eappcfg.dll - ok
22:13:46.0166 0x0a1c  [ 9689076012A34CE4631D0CBFE148D092, 8B65E9701B3C9EDEA03230100B5A66181F8CFCEDB367B648EDCC6D65AF8E96C4 ] C:\Windows\System32\wlgpclnt.dll
22:13:46.0166 0x0a1c  C:\Windows\System32\wlgpclnt.dll - ok
22:13:46.0175 0x0a1c  [ A73C52B285405E1FD79388AF2C7B2EB6, BA7B2DF8381C17018789BCF3EF63391506769456A06CA64852FD3B297653910D ] C:\Windows\System32\l2gpstore.dll
22:13:46.0175 0x0a1c  C:\Windows\System32\l2gpstore.dll - ok
22:13:46.0183 0x0a1c  [ 4DD86EDDA09715DC235E41C1F698F041, 63B839F5AA9278C428C4402EE142F71A3F2DAE97FCF8EB199B01E4BA2AA7D3C4 ] C:\Windows\System32\wlanutil.dll
22:13:46.0183 0x0a1c  C:\Windows\System32\wlanutil.dll - ok
22:13:46.0192 0x0a1c  [ FEE042C44E3A138F870D33C7FDDD977B, 1AC43DA7F521821406E6E6B21AE7A46944DE5C5C938D2E858618D55125BB6E4F ] C:\Windows\System32\msxml6.dll
22:13:46.0192 0x0a1c  C:\Windows\System32\msxml6.dll - ok
22:13:46.0200 0x0a1c  [ 04BE188624096B6D2F8C760940B2D100, B0C79F7F53639AB228D6B1A8AAC3A40E969A1A9FBBA897C1D2EEC8C970C1945B ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18879_none_414ad6405542c1e6\comctl32.dll
22:13:46.0200 0x0a1c  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18879_none_414ad6405542c1e6\comctl32.dll - ok
22:13:46.0212 0x0a1c  [ 39777F8ECD0B10B51CB79AC4F562C088, 570FF139CC701B5590490F334ABEFA7E63C65D04EBD0E1144A92C8304428C44B ] C:\Windows\System32\wlanext.exe
22:13:46.0212 0x0a1c  C:\Windows\System32\wlanext.exe - ok
22:13:46.0221 0x0a1c  [ 6B6D0747C1D56D5742F5171B57E8CB6F, 9805CE5545D8DC3293177B7BFEBA910DBE8A24CD26A0954ABFEC6168716261FD ] C:\Windows\System32\ktmw32.dll
22:13:46.0221 0x0a1c  C:\Windows\System32\ktmw32.dll - ok
22:13:46.0229 0x0a1c  [ 0C9F2E6597D8DD00C0900C2DF85606BE, 3E2911B702644FF0A2A2A98E79431B48CC9584E8FCC50D2274EE9F1128A847C2 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpasdlta.vdm
22:13:46.0229 0x0a1c  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpasdlta.vdm - ok
22:13:46.0238 0x0a1c  [ 7A7EA5CB9EA5B984F95538ACDE7B54C2, 42E255F5480C1FAB4BA71D09E8AAD5FAC48EBDC6D181773D48A3FC6458212006 ] C:\Windows\System32\athihvs.dll
22:13:46.0238 0x0a1c  C:\Windows\System32\athihvs.dll - ok
22:13:46.0247 0x0a1c  [ 483E6FE556B3146D5A634B8552FDD15C, B06668814BD0137E3C731C6AA9E8C46ED93DF3CD616E81887F09A687722D083D ] C:\Windows\System32\wlanapi.dll
22:13:46.0247 0x0a1c  C:\Windows\System32\wlanapi.dll - ok
22:13:46.0255 0x0a1c  [ 00000000000000000000000000000000, 0000000000000000000000000000000000000000000000000000000000000000 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpavbase.vdm
22:13:46.0256 0x0a1c  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpavbase.vdm - ok
22:13:46.0264 0x0a1c  [ 64CA44962AEF8F656CC41A66DFFD0758, D61F33FF8A8050103790620A5E8BB05646495C233C46E8178C63C8D05E6F737A ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpavdlta.vdm
22:13:46.0264 0x0a1c  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{37E91DE2-D1BF-46AD-9630-F2D6C3EAAA3A}\mpavdlta.vdm - ok
22:13:46.0273 0x0a1c  [ 3ADB1950539C78F82EFD392BE98BE80D, B154C4125A5686F86865D2AD3D64E3F3A28D4BD2EE1B56977C2CD4DBE46633CF ] C:\Windows\System32\taskcomp.dll
22:13:46.0273 0x0a1c  C:\Windows\System32\taskcomp.dll - ok
22:13:46.0281 0x0a1c  [ 098F1E4E5C9CB5B0063A959063631610, 36B02A738413E4745978E3E90D9CE8ABC08376BEE411008A4312A752CB4A2E13 ] C:\Windows\System32\drivers\http.sys
22:13:46.0281 0x0a1c  C:\Windows\System32\drivers\http.sys - ok
22:13:46.0290 0x0a1c  [ C1AE82B8F60ADB630C00DCE48E571CDD, 04AAB1435DACCFBFF2D24B41B46BA9158FAC0DD2E43C8D9058CC3BE082B06656 ] C:\Windows\System32\netcfgx.dll
22:13:46.0290 0x0a1c  C:\Windows\System32\netcfgx.dll - ok
22:13:46.0294 0x0a1c  [ 7A792AD1DB78FF218BB3A2C33404C5CE, 71655D78422EC6CF13AA1E1CE8ECEAA51714DFC23623F870BAF52524163F3F57 ] C:\Windows\System32\mshtml.dll
22:13:46.0295 0x0a1c  C:\Windows\System32\mshtml.dll - ok
22:13:46.0303 0x0a1c  [ D48445B07F61CAFE2FE8972AAB4E31B8, 255EC421AB60A6DA2B103B0D0331CC45CCB74452EAB9EB7BBAE29A2E7079C889 ] C:\Windows\System32\spoolss.dll
22:13:46.0303 0x0a1c  C:\Windows\System32\spoolss.dll - ok
22:13:46.0311 0x0a1c  [ 4BED62F4FA4D8300973F1151F4C4D8A7, 1835895B3E837F8862F7F669DFBDF5EAB627E5656377624474C17E92CF440D2A ] C:\Windows\System32\drivers\srvnet.sys
22:13:46.0311 0x0a1c  C:\Windows\System32\drivers\srvnet.sys - ok
22:13:46.0320 0x0a1c  [ 808A26DA7028B02A081A5A1BCBF69A2A, 9154E807BFBDE5F4FA3B0F7FE8F13E95F21577064C7A8DDB59112D2B5D281A7E ] C:\Windows\System32\wiarpc.dll
22:13:46.0320 0x0a1c  C:\Windows\System32\wiarpc.dll - ok
22:13:46.0329 0x0a1c  [ F947921ABCF504A7CA03F28709324F9D, C68D262F340F4DADE4F003CA8376D588C9B59584C8A824EA0EDDCE1BA44C1E7E ] C:\Windows\System32\FWPUCLNT.DLL
22:13:46.0329 0x0a1c  C:\Windows\System32\FWPUCLNT.DLL - ok
22:13:46.0338 0x0a1c  [ 2348447A80920B2493A9B582A23E81E1, 50F9242B7104607E633ABAF4E0A213C1C1226BF81F7FB4E216A9E878247B868C ] C:\Windows\System32\drivers\bowser.sys
22:13:46.0338 0x0a1c  C:\Windows\System32\drivers\bowser.sys - ok
22:13:46.0347 0x0a1c  [ C92B9ABDB65A5991E00C28F13491DBA2, D1233381A9E4262F0AB396BBDB7DE402D4370805E11EB8A118C846F6E9474098 ] C:\Windows\System32\drivers\mpsdrv.sys
22:13:46.0347 0x0a1c  C:\Windows\System32\drivers\mpsdrv.sys - ok
22:13:46.0355 0x0a1c  [ 897E3BAF68BA406A61682AE39C83900C, 13F61D5C22BED061BE7C2669CCCAA2BAD4A0CE83800DF57A50306DE0A476FC27 ] C:\Windows\System32\MPSSVC.dll
22:13:46.0355 0x0a1c  C:\Windows\System32\MPSSVC.dll - ok
22:13:46.0363 0x0a1c  [ 7C1DE4AA96DC0C071611F9E7DE02A68D, 8B248A82324FB23C64D41FA91BCC22093DE44C48D688E5995C484A7072A6EC08 ] C:\Windows\System32\drivers\mrxdav.sys
22:13:46.0363 0x0a1c  C:\Windows\System32\drivers\mrxdav.sys - ok
22:13:46.0372 0x0a1c  [ 1485811B320FF8C7EDAD1CAEBB1C6C2B, 9F157AAA1A793EF7E52817E4126B774C17FFA0036DADCF10A024FDC068F94F67 ] C:\Windows\System32\drivers\mrxsmb.sys
22:13:46.0372 0x0a1c  C:\Windows\System32\drivers\mrxsmb.sys - ok
22:13:46.0380 0x0a1c  [ 3B929A60C833FC615FD97FBA82BC7632, 40EEBEB43F42A1A37FAA529E0C21984426F90C1EEFE1EF9BB2F696164595F91D ] C:\Windows\System32\drivers\mrxsmb10.sys
22:13:46.0380 0x0a1c  C:\Windows\System32\drivers\mrxsmb10.sys - ok
22:13:46.0389 0x0a1c  [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3, 197F70E24D2BBDEC35C2D5BC442267ACC4C5AE3FD5BB30A0928976BE9758C942 ] C:\Windows\System32\drivers\mrxsmb20.sys
22:13:46.0389 0x0a1c  C:\Windows\System32\drivers\mrxsmb20.sys - ok
22:13:46.0398 0x0a1c  [ A1AD14A6D7A37891FFFECA35EBBB0730, AE00950D330EE4C05F5AA9BC7E63E974766D8E93B607CB3E683C727E8A65049D ] C:\Windows\System32\drivers\srv2.sys
22:13:46.0398 0x0a1c  C:\Windows\System32\drivers\srv2.sys - ok
22:13:46.0406 0x0a1c  [ 880A57FCCB571EBD063D4DD50E93E46D, D46BA584D1C33F17C4156127742FA470AA044C4BCE9E6A209E5B1F3A44C73350 ] C:\Windows\System32\drivers\srv.sys
22:13:46.0406 0x0a1c  C:\Windows\System32\drivers\srv.sys - ok
22:13:46.0414 0x0a1c  [ DE3C091D7E05093B7ABA93DA5952F0FD, 2E658F47EC9496072395AF7C792B840BD82198C294E1CEAA13DD018D5D558EA8 ] C:\Windows\System32\netmsg.dll
22:13:46.0414 0x0a1c  C:\Windows\System32\netmsg.dll - ok
22:13:46.0423 0x0a1c  [ 476616A17AE5F69CE583D8E1E2A7B134, 367D1140FF9AA96621BD919E377FE6877B50BA235CF66969C5255F1F4EAFF05E ] C:\Windows\System32\sscore.dll
22:13:46.0423 0x0a1c  C:\Windows\System32\sscore.dll - ok
22:13:46.0431 0x0a1c  [ 2BFD160AB9531CD20EDC9639EB0CD711, EAACA34841F002EE493A2410026844A5F871971E73080D85CF2C43AF09678F45 ] C:\Windows\System32\clusapi.dll
22:13:46.0431 0x0a1c  C:\Windows\System32\clusapi.dll - ok
22:13:46.0439 0x0a1c  [ 45C5EAB112D3481A25485B0CF7E3597D, CD02C769E42FA6773D3FC61AF8E402851ED6C76DD654693B7F5CF094376AB435 ] C:\Windows\System32\activeds.dll
22:13:46.0439 0x0a1c  C:\Windows\System32\activeds.dll - ok
22:13:46.0447 0x0a1c  [ 80B8B7FF3AADD2156EE969C048644CAF, 4EC1DBE4F21C91DF2BAFDF6E2CFA03348B4A2988202616BECB999C3FE1C5CF3E ] C:\Windows\System32\adsldpc.dll
22:13:46.0447 0x0a1c  C:\Windows\System32\adsldpc.dll - ok
22:13:46.0458 0x0a1c  [ 77C276A0E431203EE56E52600A2575EA, 48FCD3B4A3F3DDB034C9B9C968CF7BC31E9C8FA2B0D91275E00215A0144BD613 ] C:\Windows\System32\credui.dll
22:13:46.0458 0x0a1c  C:\Windows\System32\credui.dll - ok
22:13:46.0466 0x0a1c  [ D55A487295CC38D9E533C5AD87C1EB69, A40D892C5F25F43733B815A38E3776ADCBBD3A9AC80C7446C217D16147154A9D ] C:\Windows\System32\resutils.dll
22:13:46.0466 0x0a1c  C:\Windows\System32\resutils.dll - ok
22:13:46.0475 0x0a1c  [ D1E792408F710173E4E4FB6BFB248DB3, AF52BE3ADF14B55CE1D8D77FB31216EDFF904B1099086353C9C9B69A1E480290 ] C:\Windows\System32\wfapigp.dll
22:13:46.0475 0x0a1c  C:\Windows\System32\wfapigp.dll - ok
22:13:46.0483 0x0a1c  [ 87B1E9B5DBFADA04D9FFDC52D16CB000, B80983383868E935A97CA391FE22BDA61894A4BB76C39D9E2D06778870BD5792 ] C:\Windows\System32\mscms.dll
22:13:46.0483 0x0a1c  C:\Windows\System32\mscms.dll - ok
22:13:46.0492 0x0a1c  [ 5AC8A997E8D9C131B5F90B4F3CCFAE34, D2FFC4F12299D9500390345A707F3FE844CBBE13163D004665FCD82B6C3B6FC6 ] C:\Program Files (x86)\Toshiba\ConfigFree\CFProcSRVC.exe
22:13:46.0492 0x0a1c  C:\Program Files (x86)\Toshiba\ConfigFree\CFProcSRVC.exe - ok
22:13:46.0501 0x0a1c  [ EF9DAF0E43C0CBBE75228E6FCDF74D21, DB9B71CF6C9A3BBEE9C8933B9A0C33FD7EA91D93D15B6BC3FDF6E71AC0D7F1D4 ] C:\Windows\SysWOW64\ntdll.dll
22:13:46.0501 0x0a1c  C:\Windows\SysWOW64\ntdll.dll - ok
22:13:46.0510 0x0a1c  [ 4004299B7AF4CBFF6540F1798899A11F, 5DD3AE149B7228A769F2FE95355795AC98ACD8CDFB78954A423A357F717203C3 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
22:13:46.0510 0x0a1c  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
22:13:46.0519 0x0a1c  [ 129F59470F770A2675A39C245BC5AB3F, 8CCA59A9663C7BF7F6B322703BB9A430F598C31A5C7BBE6BD853B5730F28665D ] C:\Windows\System32\WsmRes.dll
22:13:46.0519 0x0a1c  C:\Windows\System32\WsmRes.dll - ok
22:13:46.0527 0x0a1c  [ 9A55A910B56F416B1F9F17D554D49275, 2997D6FCB2242E7B49EF3A9AD8865359457619C3399EEAC71A076FC845309B9F ] C:\Windows\System32\wow64.dll
22:13:46.0527 0x0a1c  C:\Windows\System32\wow64.dll - ok
22:13:46.0536 0x0a1c  [ 8FE910915F14C9C6A9561D8032B603D3, 4A340DC5E51D892AA34A2111612344604ACB757FE40EDE3DBB4D45E162B04A2E ] C:\Windows\System32\wow64win.dll
22:13:46.0536 0x0a1c  C:\Windows\System32\wow64win.dll - ok
22:13:46.0555 0x0a1c  [ 1E68A512FB6010B600CBC3577147AC50, 2A897C54FA3106D77260BCAAE832273142C78B29B379245C94AE0D1E5A719BA7 ] C:\Windows\System32\plasrv.exe
22:13:46.0555 0x0a1c  C:\Windows\System32\plasrv.exe - ok
22:13:46.0560 0x0a1c  [ CA9EECC6092B9C2CE86D95C04B51BA20, 577388F163A3A899CD372B226F4837DF516E2C338EF497280D58184031BC26C6 ] C:\Windows\System32\wow64cpu.dll
22:13:46.0560 0x0a1c  C:\Windows\System32\wow64cpu.dll - ok
22:13:46.0569 0x0a1c  [ F55CB10F43802526018AD72604420878, 784C451F030FC3813F0398F68E77BD0AA637F4BC54DC65496D44A36E0EB365DA ] C:\Windows\SysWOW64\kernel32.dll
22:13:46.0569 0x0a1c  C:\Windows\SysWOW64\kernel32.dll - ok
22:13:46.0580 0x0a1c  [ 7E3479C704F208C85954D9E7442533C4, 40D309105581E4BC6B6641E7022E8B7D8655E73D929490FD5F40124D442E39BD ] C:\Program Files (x86)\Toshiba\ConfigFree\CFWRP_CS.dll
22:13:46.0580 0x0a1c  C:\Program Files (x86)\Toshiba\ConfigFree\CFWRP_CS.dll - ok
22:13:46.0588 0x0a1c  [ 128DD9AF8640DBCC711940903C8B554F, 46E9715F3CD09F32FBEAA5379991E9E7DACCBD2407C2D061FDA3A04F05108133 ] C:\Windows\SysWOW64\mscoree.dll
22:13:46.0588 0x0a1c  C:\Windows\SysWOW64\mscoree.dll - ok
22:13:46.0597 0x0a1c  [ C9564CF4976E7E96B4052737AA2492B4, C3AC989C8489A23BB96400B1856F5325FFC67E844F04651EA5D61BC20A991C6D ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
22:13:46.0597 0x0a1c  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
22:13:46.0605 0x0a1c  [ 17AF64D727545F2804F6E6D998327E3F, CAD50C5321BF522CA6CA74662D032A98705ADD04A8BE38576B8EF0B8CE6DBA8A ] C:\Windows\SysWOW64\msvcrt.dll
22:13:46.0606 0x0a1c  C:\Windows\SysWOW64\msvcrt.dll - ok
22:13:46.0613 0x0a1c  [ D29FDB5DEDBDC1BD882164DC6DC4DD53, F77F7E553ABBAC128AF63802994FC473CC355EEB417C9DD5CE5D14F5678F2F69 ] C:\Windows\SysWOW64\user32.dll
22:13:46.0613 0x0a1c  C:\Windows\SysWOW64\user32.dll - ok
22:13:46.0622 0x0a1c  [ 25B9C743CA4C90F4D9BE42C1F31038EB, 5885A7553E100C775588EFCE7170EF9A5359748414C3A57C11FE3D2C14A222FF ] C:\Windows\SysWOW64\gdi32.dll
22:13:46.0622 0x0a1c  C:\Windows\SysWOW64\gdi32.dll - ok
22:13:46.0630 0x0a1c  [ 50CAA7072C171B9887215C83D52069E4, AA1961787F24A6AFF9DD5D0A6110686EA654595D2EB941F5DA702498A662880D ] C:\Windows\SysWOW64\advapi32.dll
22:13:46.0630 0x0a1c  C:\Windows\SysWOW64\advapi32.dll - ok
22:13:46.0638 0x0a1c  [ DD477C478902C2E0E7F55F565BD44A44, 06F27D7A20D5402E00AA4AEC6957AC41873F9E8EFB28F9ED25F1F3DD9CE718CC ] C:\Windows\SysWOW64\rpcrt4.dll
22:13:46.0638 0x0a1c  C:\Windows\SysWOW64\rpcrt4.dll - ok
22:13:46.0646 0x0a1c  [ 3D4DD2D3D59ABE3BA902778C57D2E004, 8263058DD8064C3DFB8176FE31E0459A6240051A2EB3E513E2D80A64F9ECFAEF ] C:\Windows\SysWOW64\secur32.dll
22:13:46.0646 0x0a1c  C:\Windows\SysWOW64\secur32.dll - ok
22:13:46.0655 0x0a1c  [ 1F5AFD468EB5E09E9ED75A087529EAB5, 8204DBCC054C1E54B6065BACB78C55716681AD91759E25111B4E4797E51D0AA3 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
22:13:46.0655 0x0a1c  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll - ok
22:13:46.0663 0x0a1c  [ 420B075CD71AB9E58D15DD258958FBA3, EDD96EDD4D3F1C05E34C769F9C4A1D966DA9B51A3B01CF25E9C5E30281E01AE2 ] C:\Windows\SysWOW64\shlwapi.dll
22:13:46.0663 0x0a1c  C:\Windows\SysWOW64\shlwapi.dll - ok
22:13:46.0673 0x0a1c  [ 0172F917A624D08620A8AE94F5950A30, 2D6C80C8B2FD98E1735ED93F228C19D7B307E6B8038491012A0BFEB3F27E517A ] C:\Program Files (x86)\Toshiba\ConfigFree\NDSParts.dll
22:13:46.0673 0x0a1c  C:\Program Files (x86)\Toshiba\ConfigFree\NDSParts.dll - ok
22:13:46.0681 0x0a1c  [ 14FF750EFE13B0C21E5A06507C3A97B1, 6962EE642FB635442D3E75CE022BAFE78FA453DD6E8E3DAC8B484C699454AF0F ] C:\Windows\SysWOW64\winmm.dll
22:13:46.0681 0x0a1c  C:\Windows\SysWOW64\winmm.dll - ok
22:13:46.0690 0x0a1c  [ 9586E7CB2255A8B097A7E4538202585E, 7A65B6268940279D77CE08D695306150A8F8DD9A6878D2A322799AC576960C6B ] C:\Windows\SysWOW64\ole32.dll
22:13:46.0691 0x0a1c  C:\Windows\SysWOW64\ole32.dll - ok
22:13:46.0698 0x0a1c  [ B218342214D9BBA0F54EA12BA2E9278C, 0B68D881F3B60068C250A97492B81DB8463FFB4FDADC26CD14E2255472A6A2A0 ] C:\Windows\SysWOW64\oleaut32.dll
22:13:46.0698 0x0a1c  C:\Windows\SysWOW64\oleaut32.dll - ok
22:13:46.0707 0x0a1c  [ DC15AB7168C0309D8F04FD95B6240422, C94550429403C710A2BD26EA67AEF698522CF4826C0A4C4A7D2CBC3145AB40A6 ] C:\Windows\SysWOW64\oleacc.dll
22:13:46.0707 0x0a1c  C:\Windows\SysWOW64\oleacc.dll - ok
22:13:46.0715 0x0a1c  [ E114083008A623323C8D9DF5550F82D2, 92E6166447A267C2082A77FDD6E200B7D93656D080EE6611AB74117CF64B59DF ] C:\Program Files (x86)\Toshiba\ConfigFree\NDSAPI.dll
22:13:46.0715 0x0a1c  C:\Program Files (x86)\Toshiba\ConfigFree\NDSAPI.dll - ok
22:13:46.0723 0x0a1c  [ 69827805A221C21450BA22F4326A2EE3, 2580CEB58BE4AEF7DEB134F3AD251188CAED05BC992B4FA977CCD11BD583BE5E ] C:\Windows\SysWOW64\version.dll
22:13:46.0724 0x0a1c  C:\Windows\SysWOW64\version.dll - ok
22:13:46.0732 0x0a1c  [ E0D99E3ACEF09BD225912F977290A0D1, 833F04FA5D4D494498005DF527D3865AFA87C86F32637935B585BC96ABF71335 ] C:\Program Files (x86)\Toshiba\ConfigFree\CFWlApi.dll
22:13:46.0732 0x0a1c  C:\Program Files (x86)\Toshiba\ConfigFree\CFWlApi.dll - ok
22:13:46.0742 0x0a1c  [ B64AC7967D6B9FB2D6152AC768A1CB88, D4F46C3DCAE8A7578102961285BB90BFE1BDE31028CC56E2CEFE0DE8FF32FB85 ] C:\Windows\SysWOW64\onex.dll
22:13:46.0742 0x0a1c  C:\Windows\SysWOW64\onex.dll - ok
22:13:46.0750 0x0a1c  [ 17C0E094BEE5BC03CF491972F71AA6EF, 801E500A8B3C6DC7881E1C26AD3AFF4D105D5F2C8F58AFED84EF1A101F3AC10A ] C:\Windows\SysWOW64\wlanapi.dll
22:13:46.0750 0x0a1c  C:\Windows\SysWOW64\wlanapi.dll - ok
22:13:46.0758 0x0a1c  [ 0317420D419E1885894B3ED9D375D245, 17F4C64CA4FE560F09DA4C1D13D62B525B5C7B6FDD44B846C6953D595D83CF3D ] C:\Windows\SysWOW64\crypt32.dll
22:13:46.0758 0x0a1c  C:\Windows\SysWOW64\crypt32.dll - ok
22:13:46.0767 0x0a1c  [ F42483814FC39170B3982A184EC5AAA2, DD8A1E7C6714DF07742EFDF6CA5AB93CDC547F56EB8C1066C56A68E83A818DD2 ] C:\Windows\SysWOW64\wtsapi32.dll
22:13:46.0767 0x0a1c  C:\Windows\SysWOW64\wtsapi32.dll - ok
22:13:46.0776 0x0a1c  [ 14CA4D25AB708AC0183459270A6A9C42, D188B0AE14113A904FA6A10FD591DF03A8D682170819ECAD0F5696EF140FBBEE ] C:\Windows\System32\msxml3.dll
22:13:46.0776 0x0a1c  C:\Windows\System32\msxml3.dll - ok
22:13:46.0783 0x0a1c  [ EE2FF9A3FC4404234BE3B7C6AA383AF8, 51BF3C48BE9BF81A800EF5B247E03C78980B3FFFF37688C42C0F253351EEF4C1 ] C:\Windows\SysWOW64\msasn1.dll
22:13:46.0784 0x0a1c  C:\Windows\SysWOW64\msasn1.dll - ok
22:13:46.0792 0x0a1c  [ 5D0FE613570CABE3992F7DBCD68E61D1, 68A6D6DA722E9A5120DE240194F9682ACBB485CEBDD8A6A099AE0E76359302B9 ] C:\Windows\SysWOW64\eappcfg.dll
22:13:46.0792 0x0a1c  C:\Windows\SysWOW64\eappcfg.dll - ok
22:13:46.0800 0x0a1c  [ 9D9FFC923FADBB575E0452EA0BBB15BD, 700A292EFEC71EDF2EF7F20D147F6E23E0FAA5BAF1D930CB96C40FC70D206D35 ] C:\Windows\SysWOW64\eappprxy.dll
22:13:46.0800 0x0a1c  C:\Windows\SysWOW64\eappprxy.dll - ok
22:13:46.0806 0x0a1c  [ 665417528489096BBCB8AEA46D3DA924, BB0D895B481EFA6ED024C979238F5F482DF0A53912575A47EB4E9C643919112A ] C:\Windows\SysWOW64\userenv.dll
22:13:46.0806 0x0a1c  C:\Windows\SysWOW64\userenv.dll - ok
22:13:46.0814 0x0a1c  [ 33F571D9F4B0B4107E60323075F64980, A5C8FE2BDED4C10D0CB4F0AF26F644C95C613EF49AAA44CF1A0047532652C92A ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.19096_none_9e59a14eca0fa8de\GdiPlus.dll
22:13:46.0814 0x0a1c  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.19096_none_9e59a14eca0fa8de\GdiPlus.dll - ok
22:13:46.0823 0x0a1c  [ 75EB73E64F5B4655D9797D20F26DE320, 4AA94D039AC5BD7D39766C4E2A4F7DFCDD46782D3B2483677D722949A7B790FC ] C:\Windows\SysWOW64\duser.dll
22:13:46.0823 0x0a1c  C:\Windows\SysWOW64\duser.dll - ok
22:13:46.0831 0x0a1c  [ 88B630F6AEB5A11F6AD064930B38C2C0, 176B0A652D36D4C144838013D402DF9CFCF1F8FE9F378651BF52B58DA33DBF15 ] C:\Windows\SysWOW64\uxtheme.dll
22:13:46.0831 0x0a1c  C:\Windows\SysWOW64\uxtheme.dll - ok
22:13:46.0840 0x0a1c  [ 4ACF748A8E576761E4C610ACAB67B1BC, FC30C20E3F23FBC8ACAB2E8A7DB3775078118FEA29E64341E5D5277F98560C8B ] C:\Windows\SysWOW64\bcrypt.dll
22:13:46.0840 0x0a1c  C:\Windows\SysWOW64\bcrypt.dll - ok
22:13:46.0848 0x0a1c  [ F3E8E67DC455012AAAD4364CBC3BCA0B, 06B2F3CA6385E6BB0BF956BC4724565FD1C194E64C2E80757615820956D8DA7D ] C:\Program Files (x86)\Toshiba\ConfigFree\IpAdrSet.dll
22:13:46.0848 0x0a1c  C:\Program Files (x86)\Toshiba\ConfigFree\IpAdrSet.dll - ok
22:13:46.0857 0x0a1c  [ EB2170D0DDF3B2A92506AE16BC524B0B, 95E296024DC16657BA36DB72E7AB774C68A6F8029B2ACB18460FC50E44AE5DA9 ] C:\Windows\SysWOW64\wlanutil.dll
22:13:46.0857 0x0a1c  C:\Windows\SysWOW64\wlanutil.dll - ok
22:13:46.0865 0x0a1c  [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] C:\Windows\SysWOW64\dhcpcsvc.dll
22:13:46.0865 0x0a1c  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
22:13:46.0873 0x0a1c  [ 4FE8425F21B3F0F8C4B4726351D43EAA, F45C1429BD60EEAB7BE8C2114B9C819CED7583249CEE1AB234A8A05A484528A9 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
22:13:46.0873 0x0a1c  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
22:13:46.0881 0x0a1c  [ 85E861D0B88DB2B54ACB0839654C09F7, 751E4F1F282C3798712AFF551D1525D5D65B5E8229689862AAB0BBDCC35A5925 ] C:\Windows\SysWOW64\dnsapi.dll
22:13:46.0881 0x0a1c  C:\Windows\SysWOW64\dnsapi.dll - ok
22:13:46.0890 0x0a1c  [ B304D47D5744BA20FCB99FB8B2C07B0B, 16AAD9264CAB5B5489E2CF8F118132EA46FE9066B4C4320C0259BE88EBD111C8 ] C:\Windows\SysWOW64\ws2_32.dll
22:13:46.0890 0x0a1c  C:\Windows\SysWOW64\ws2_32.dll - ok
22:13:46.0898 0x0a1c  [ DFB6B71CDABA9DFB49C9D2B318B97A1A, F380B9A28D56DEC902154A0251B58BD3576355EDE2CD13CF47D7F4DBE3D61C97 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
22:13:46.0898 0x0a1c  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
22:13:46.0906 0x0a1c  [ A64AEBC6C78B4CFD7F41A7277879DF8F, 2283E1D5D5ACF66B6C71A7755577F0A03DB5FC213E5D7DB067C9B7B6E805C202 ] C:\Windows\SysWOW64\nsi.dll
22:13:46.0906 0x0a1c  C:\Windows\SysWOW64\nsi.dll - ok
22:13:46.0915 0x0a1c  [ 6B09105742C75DF80CEF21700F20F55A, D781C5F22BEBB5C51B7792EBB4421C170F2CC5FE28E9245E9D6B9D22E33423AB ] C:\Windows\SysWOW64\winnsi.dll
22:13:46.0915 0x0a1c  C:\Windows\SysWOW64\winnsi.dll - ok
22:13:46.0923 0x0a1c  [ 3CB863B78642405371CB3A71C07E2382, 571D43BBB0D0D54A7D508E9D0E70CDF5F1F3B147B4F6B15EB3D893401BB6F40F ] C:\Windows\SysWOW64\rasapi32.dll
22:13:46.0923 0x0a1c  C:\Windows\SysWOW64\rasapi32.dll - ok
22:13:46.0931 0x0a1c  [ 3A1DDA77F331D107BA40DB06E4D666E9, 544A63148756AD0E993DD79F0656E73E23386BF0DA54394000044FD0972C838D ] C:\Windows\SysWOW64\rasman.dll
22:13:46.0931 0x0a1c  C:\Windows\SysWOW64\rasman.dll - ok
22:13:46.0939 0x0a1c  [ 98B656EAF128CD06F625B09C84D959E1, 3E6502E629F15E697A813FC56A9B1F13F5A6F3D0C20550AB3459B2507F868156 ] C:\Windows\SysWOW64\netapi32.dll
22:13:46.0939 0x0a1c  C:\Windows\SysWOW64\netapi32.dll - ok
22:13:46.0947 0x0a1c  [ 93A1732F7F997E36A5C3893539E2FF02, 40B6F7A67F90E5D9948385418BD22BBD29DE86A151B35D1001081A61CA5FC612 ] C:\Windows\SysWOW64\psapi.dll
22:13:46.0947 0x0a1c  C:\Windows\SysWOW64\psapi.dll - ok
22:13:46.0957 0x0a1c  [ 70F08ECE7A30A639D3F0C8C433685C7D, E7B852E949D0DB9C3D63C4F49DECF9C93781142EAC6F6D66C9FC8E0027E904F4 ] C:\Windows\SysWOW64\tapi32.dll
22:13:46.0957 0x0a1c  C:\Windows\SysWOW64\tapi32.dll - ok
22:13:46.0966 0x0a1c  [ 3D418A22A56471295AEB1CEB9027C3DA, C1D5E63B7400E6436E348AE1D9E2B3701174856DDAACE39C00134DC89497AACF ] C:\Windows\SysWOW64\rtutils.dll
22:13:46.0966 0x0a1c  C:\Windows\SysWOW64\rtutils.dll - ok
22:13:46.0974 0x0a1c  [ 8C4836F71F2DB629A99CF5A774594C66, 4045FB24E7F90EEA07D011AF73B2A309A908795362AE85114276650F78AA607C ] C:\Windows\SysWOW64\shell32.dll
22:13:46.0974 0x0a1c  C:\Windows\SysWOW64\shell32.dll - ok
22:13:46.0982 0x0a1c  [ 2DD6AF8E97F59C9D39329BBC2A81F13F, 53D9DD827F010DFC555C330296B552276E2F0DB2ECFFB9578FA92F4D4DD77945 ] C:\Windows\SysWOW64\rasdlg.dll
22:13:46.0982 0x0a1c  C:\Windows\SysWOW64\rasdlg.dll - ok
22:13:46.0991 0x0a1c  [ 2CAB7B034B867AAB48D298F93D04BD3E, 7F7EA5537B64B79F2605A98DF551B4D86B90EAAB422D4153A1BD36A96F89DA44 ] C:\Windows\System32\wscapi.dll
22:13:46.0991 0x0a1c  C:\Windows\System32\wscapi.dll - ok
22:13:47.0000 0x0a1c  [ 56E315ACFB08A177B4D01E42B9044DB5, 230B5AC4EB6654C854046CD210A80929345AA5D049EFA7C329048723A3A32345 ] C:\Windows\SysWOW64\mprapi.dll
22:13:47.0000 0x0a1c  C:\Windows\SysWOW64\mprapi.dll - ok
22:13:47.0010 0x0a1c  [ 6468C3FF6D0C7874FA8C619AF3E23B22, 2A8A01D5164453544A9DD1B850C24B82EFE6ACAABED56084B8A0388AC383802B ] C:\Windows\SysWOW64\activeds.dll
22:13:47.0010 0x0a1c  C:\Windows\SysWOW64\activeds.dll - ok
22:13:47.0018 0x0a1c  [ E9B9C1B98C8D6D48407E1C1203EAC659, A7B836B37935475E7D7277F9A7828E347B2EBD14958836499E5610AC5A922265 ] C:\Windows\SysWOW64\adsldpc.dll
22:13:47.0018 0x0a1c  C:\Windows\SysWOW64\adsldpc.dll - ok
22:13:47.0026 0x0a1c  [ B8A609FB5EFB4E44FC1355B1C01C64BC, BB84036F8F16C6E2069FD8B18078A7E6CC98B513285FB1A8DC727B395C9E3A12 ] C:\Windows\SysWOW64\Wldap32.dll
22:13:47.0026 0x0a1c  C:\Windows\SysWOW64\Wldap32.dll - ok
22:13:47.0034 0x0a1c  [ 93E317D7AD783D8EAEE2E3500BFE889D, 12D3ACCBF470E025EEBD77CF3407964950DADCF6991959A97B5319A9FAE219C1 ] C:\Windows\SysWOW64\credui.dll
22:13:47.0034 0x0a1c  C:\Windows\SysWOW64\credui.dll - ok
22:13:47.0043 0x0a1c  [ 409F36C8BD06FCE184631EB4142B009A, 5DEEA3B8937B9C3DD716060819E78A1C12AD00A7D0EC8CB47823B7EE856CCFE1 ] C:\Windows\SysWOW64\atl.dll
22:13:47.0043 0x0a1c  C:\Windows\SysWOW64\atl.dll - ok
22:13:47.0050 0x0a1c  [ 453DE2958C885527E20C79A3FEFE6AF7, AC40DC0D1224A2F6FAA1A3396345371CAE7312C6D7EF0923602B2E89ED22BA2B ] C:\Windows\SysWOW64\samlib.dll
22:13:47.0051 0x0a1c  C:\Windows\SysWOW64\samlib.dll - ok
22:13:47.0059 0x0a1c  [ 551F51B66E5EA87A38D8197EB3BDB57A, 2006D0418848EAA2361C26D18246D0BAA646B6F25F2C0035BDC82967E9BD73F1 ] C:\Windows\SysWOW64\setupapi.dll
22:13:47.0059 0x0a1c  C:\Windows\SysWOW64\setupapi.dll - ok
22:13:47.0064 0x0a1c  [ C6DF7A87063D006ECF1FD8156CB6DE3F, 921AB6B88444B364F05D8EDF0EDDFA0892353A862CD3580F7EDA311E4FDC26B6 ] C:\Windows\SysWOW64\SLC.dll
22:13:47.0064 0x0a1c  C:\Windows\SysWOW64\SLC.dll - ok
22:13:47.0073 0x0a1c  [ 5EC8FB83F31AA2D6F421F02C3F4F4475, CC325D32700AED6CEA6FA1190C04FEDA9A52DABB3E47D3923BA9BBE06A5EB556 ] C:\Windows\SysWOW64\winspool.drv
22:13:47.0073 0x0a1c  C:\Windows\SysWOW64\winspool.drv - ok
22:13:47.0081 0x0a1c  [ 526014FFF6F612D9D0E86C874E7B0C36, 0E704D56E95F2AA4FF99D21064EAECC407D40B23E77330F3A7AA81236066697E ] C:\Windows\SysWOW64\wininet.dll
22:13:47.0081 0x0a1c  C:\Windows\SysWOW64\wininet.dll - ok
22:13:47.0089 0x0a1c  [ 1CBF77E333C1251DD3AF76FD9F67C5D1, 16FB6520E40E2B79F74E55D81E6121CF777282F4C61AD2B69BEC2ECC2F3433CA ] C:\Windows\SysWOW64\iertutil.dll
22:13:47.0089 0x0a1c  C:\Windows\SysWOW64\iertutil.dll - ok
22:13:47.0098 0x0a1c  [ 7F60324132E77497DB2CBEA7DAE47B11, 4CAC27606435912C115BFACB0CB2645816D37E31CDC979C32EBD9188737044A0 ] C:\Windows\SysWOW64\urlmon.dll
22:13:47.0098 0x0a1c  C:\Windows\SysWOW64\urlmon.dll - ok
22:13:47.0107 0x0a1c  [ AB62A8F77C0E2EC8BFDAC6BB379B3ECB, 8AC91657D7A502EA72FB9C1553BC5E1A4BE794CE7CA213BA3DDE0CADE963CC30 ] C:\Program Files (x86)\Toshiba\ConfigFree\NDSNLS.dll
22:13:47.0107 0x0a1c  C:\Program Files (x86)\Toshiba\ConfigFree\NDSNLS.dll - ok
22:13:47.0116 0x0a1c  [ 4AA2A0E26CEF1A803741253DCF9A1503, 8718BF6DC8678BDC5AF627F82D14E2D857D94A760529FF00F1D7B066F46CA832 ] C:\Windows\SysWOW64\comdlg32.dll
22:13:47.0116 0x0a1c  C:\Windows\SysWOW64\comdlg32.dll - ok
22:13:47.0124 0x0a1c  [ 9474AD3584430D24DA87517F9DB0CBB2, 62AF2AD461E255B2B646F7462A7F2592BC7CE2FCAC980F09B5E8AC54F3C912D0 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18879_none_88f80d1769beeaec\comctl32.dll
22:13:47.0125 0x0a1c  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18879_none_88f80d1769beeaec\comctl32.dll - ok
22:13:47.0133 0x0a1c  [ 1D109ED0D660654EA7FF1574558031C4, 7DCB3C45938D31854E46B5E5B0E16D538E29230D1BC81086D40C8DB3BDF510BC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcm80.dll
22:13:47.0133 0x0a1c  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcm80.dll - ok
22:13:47.0143 0x0a1c  [ 386206F09D969F809B76B8E10355F703, 8409128747E037D3A78F56B28965A02B6DF3F52850E9A08F9DDC55739E255D1F ] C:\Program Files (x86)\Toshiba\ConfigFree\CFWRPAR_CS.dll
22:13:47.0143 0x0a1c  C:\Program Files (x86)\Toshiba\ConfigFree\CFWRPAR_CS.dll - ok
22:13:47.0151 0x0a1c  [ 1A09CB187440993FA5E24DE1EEB7B916, DE0ABF6A3D7AD303A10E2E114EAA0E8F064EF5298270FC9548028010DBE4FFAC ] C:\Windows\SysWOW64\cfgmgr32.dll
22:13:47.0151 0x0a1c  C:\Windows\SysWOW64\cfgmgr32.dll - ok
22:13:47.0160 0x0a1c  [ E2C48CD0132D4D1DC7D0DF9A6BEF686A, 52D1A8AA992AF2F727DA4B16522D604648D700997B1620CCB67D05838C127674 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
22:13:47.0160 0x0a1c  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
22:13:47.0169 0x0a1c  [ B8FBE5F40B09F5D20E1E5CCFEF893D62, 9C635152172C491CE16C0AB7ED423F5483A9B642F4996FDB51657F30AEEA1B97 ] C:\Windows\SysWOW64\imm32.dll
22:13:47.0169 0x0a1c  C:\Windows\SysWOW64\imm32.dll - ok
22:13:47.0177 0x0a1c  [ E3C3BD69701CE6B7B17101E4F7740534, 9D6A308A961A1942D7BF8ABEABE6CA87EB13F7710D40F2F767CE4545C18864C6 ] C:\Windows\SysWOW64\msctf.dll
22:13:47.0178 0x0a1c  C:\Windows\SysWOW64\msctf.dll - ok
22:13:47.0185 0x0a1c  [ DF37346EA13082E3E1B423B54014E641, 33970BEED71465A3C672A237F836C764C2B78063B315004ABA3BF13A664927F1 ] C:\Windows\SysWOW64\lpk.dll
22:13:47.0185 0x0a1c  C:\Windows\SysWOW64\lpk.dll - ok
22:13:47.0193 0x0a1c  [ FB3E5FD7F74BFC301AD3FB7DE670EDCB, 286EB6EA24FC2A29FE8ABBE84DDEDB1B1061ACA2C6CE2D3975CD55C477CD6944 ] C:\Windows\SysWOW64\usp10.dll
22:13:47.0193 0x0a1c  C:\Windows\SysWOW64\usp10.dll - ok
22:13:47.0202 0x0a1c  [ BE3C082837866C4C291ADAF163C10EA6, 9C65ABFE6E11B05C9309B86A87ADDD3557C043D4582E1A29530EBC36D470B13D ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
22:13:47.0202 0x0a1c  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll - ok
22:13:47.0211 0x0a1c  [ 28A09777D2D952122567A8A82F1A2C7B, 772260DF36AE85A0619C51402DE416E0C329976B724C8E9C4F8C013CBB7C7289 ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
22:13:47.0211 0x0a1c  C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
22:13:47.0219 0x0a1c  [ 5E3C0E5FFDA48C5DA35BBFB8EFFF8066, E2BBCC111DB1CE6072CB796F21677E4529029CE66DDC471EC793278F81F1FCF6 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
22:13:47.0219 0x0a1c  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
22:13:47.0230 0x0a1c  [ D10D01B2DFCD8D2F32A32ED29E8DA1C2, D5F89AFF51D690494A70F0E17CB5609DB81F7C9BACD2952D411C7959E90BEEE3 ] C:\Program Files (x86)\Toshiba\ConfigFree\CFSvcs.exe
22:13:47.0230 0x0a1c  C:\Program Files (x86)\Toshiba\ConfigFree\CFSvcs.exe - ok
22:13:47.0239 0x0a1c  [ 2E10EB73ED1E094E9A113D0798058B88, D0AB6B3A42868462054D979072E90E4DDC79E227B052FC1394CE723DC969F1AA ] C:\Windows\System32\vssapi.dll
22:13:47.0239 0x0a1c  C:\Windows\System32\vssapi.dll - ok
22:13:47.0246 0x0a1c  [ 6542A767BD7A90F5383605E6849FDF48, 512839C4A8616D24BA9A15C702E901F90B8B8D8EBA387126C9802050B12ED88C ] C:\Windows\System32\WSDApi.dll
22:13:47.0246 0x0a1c  C:\Windows\System32\WSDApi.dll - ok
22:13:47.0255 0x0a1c  [ 290A15C136531024982698A124F299FB, A61D1DFAF1C99DFCF457EFF6CD6E9802B65E46B0DB4A70F0D16DE44181BAEA56 ] C:\Windows\System32\taskschd.dll
22:13:47.0255 0x0a1c  C:\Windows\System32\taskschd.dll - ok
22:13:47.0263 0x0a1c  [ A6BCDC241B6578C7DB57B5973B99FE7E, 1399FAC8D9885C4CA764447BFC34644B591F3ED963720C3BE865711C17FE45F5 ] C:\Windows\System32\wdscore.dll
22:13:47.0263 0x0a1c  C:\Windows\System32\wdscore.dll - ok
22:13:47.0274 0x0a1c  [ C3E0696C3B42F694C5822776AA6FFFDF, 80C3DEC2C48500F96C9E677450EFC1ADA9FE9FBB70F4CC2D7D9244B1A515418B ] C:\Windows\System32\drivers\NisDrvWFP.sys
22:13:47.0275 0x0a1c  C:\Windows\System32\drivers\NisDrvWFP.sys - ok
22:13:47.0290 0x0a1c  [ 65247F45AADA547397134AF688EFE471, 0829BFEC77E9292B69A3BC6DFA43CB0AE8EA52C01864A96A69BD610C0207E8E3 ] C:\Windows\System32\httpapi.dll
22:13:47.0290 0x0a1c  C:\Windows\System32\httpapi.dll - ok
22:13:47.0301 0x0a1c  [ 7F80E2C493079E9D42CCECC715790E10, 7FF59FA88AC1BB7D80348758DE8E3052A7DFBC0443171B6C062DD1B2FC8E7977 ] C:\Windows\System32\fundisc.dll
22:13:47.0301 0x0a1c  C:\Windows\System32\fundisc.dll - ok
22:13:47.0310 0x0a1c  [ D955D5DE998DB2476BF0892BE3A96C26, 3828FC1D4A4F9CD685E6D938B92370A602B84A3ACE2C9A674B3B59E633B0AE07 ] C:\Program Files (x86)\O2Micro Flash Memory Card Driver\o2flash.exe
22:13:47.0310 0x0a1c  C:\Program Files (x86)\O2Micro Flash Memory Card Driver\o2flash.exe - ok
22:13:47.0315 0x0a1c  [ E8AECB69B2057EB308BE15A77AF2489E, 970E3C5B03B6179FB503228A932ABAEC542A34A87A4CE0F5ADA82EB5FA436E4E ] C:\Windows\System32\vsstrace.dll
22:13:47.0315 0x0a1c  C:\Windows\System32\vsstrace.dll - ok
22:13:47.0324 0x0a1c  [ 25754CBC9CAAF51184C9E70F3A0A349E, F42954F59842B4D12608D16114DD130C5C5CD2244252EDF0DC29C6B736B65822 ] C:\Windows\System32\cryptnet.dll
22:13:47.0324 0x0a1c  C:\Windows\System32\cryptnet.dll - ok
22:13:47.0336 0x0a1c  [ 0842A765D31D6E4AE50D6DF7DED61748, E64BE7D909220442D9479EFF28CE0086461EC718CA662F728B3549B3681DEED2 ] C:\Windows\System32\SensApi.dll
22:13:47.0336 0x0a1c  C:\Windows\System32\SensApi.dll - ok
22:13:47.0347 0x0a1c  [ 5E1D96076745F73C56B1307FEE6BEDFE, E1C69F35AEC9C11F570BFFB89934165A8FEAFB62B62080C9E38A965DEBBBB87A ] C:\Windows\System32\ncsi.dll
22:13:47.0347 0x0a1c  C:\Windows\System32\ncsi.dll - ok
22:13:47.0356 0x0a1c  [ 467FBA22AD764B6AB85BE58C25EEF15D, B762EA05317FD849DB51662CA48579004328905F2A5B9F33E7603F80C15F3AE7 ] C:\Windows\System32\ssdpapi.dll
22:13:47.0356 0x0a1c  C:\Windows\System32\ssdpapi.dll - ok
22:13:47.0369 0x0a1c  [ CCF523B951AFAA0147F22E2A7AAE4976, 91314768DA140999E682D2A290D48B78BB25A35525EA12C1B1F9634D14602B2C ] C:\Program Files (x86)\NXP\FM Radio\OpenLibSysX64.sys
22:13:47.0369 0x0a1c  C:\Program Files (x86)\NXP\FM Radio\OpenLibSysX64.sys - ok
22:13:47.0383 0x0a1c  [ 58865916F53592A61549B04941BFD80D, 3511AF2EFD06636E144C36ECA8C7AA1A33C269EDB10A6D879AA25D9E11359AA9 ] C:\Windows\System32\drivers\PEAuth.sys
22:13:47.0383 0x0a1c  C:\Windows\System32\drivers\PEAuth.sys - ok
22:13:47.0397 0x0a1c  [ D883BD7C5BA86AE7D442C3A24F13A46D, 4B98A5E1C43CCA21209A27AC8A2ABA455215C9F64710FD2FF8A7355FC6A21990 ] C:\Windows\System32\p2pcollab.dll
22:13:47.0397 0x0a1c  C:\Windows\System32\p2pcollab.dll - ok
22:13:47.0411 0x0a1c  [ 6DBF2AC2BDAFF355995AB25ECCC4CFE1, F2DD39F6B1489276A913FD62D6C068D79EABADC417D404143E3D2FF8C20CDE01 ] C:\TOSHIBA\IVP\ISM\pinger.exe
22:13:47.0411 0x0a1c  C:\TOSHIBA\IVP\ISM\pinger.exe - ok
22:13:47.0419 0x0a1c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\drivers\secdrv.sys
22:13:47.0419 0x0a1c  C:\Windows\System32\drivers\secdrv.sys - ok
22:13:47.0430 0x0a1c  [ 89A5560671C2D8B4A4B51F3E1AA069D8, 07DEE5D73DDE09F954E2E13BB5603F0033829B6199C81A7C1709D94AB92B351E ] C:\Windows\System32\IPSECSVC.DLL
22:13:47.0430 0x0a1c  C:\Windows\System32\IPSECSVC.DLL - ok
22:13:47.0439 0x0a1c  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] C:\Program Files (x86)\Skype\Updater\Updater.exe
22:13:47.0439 0x0a1c  C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
22:13:47.0447 0x0a1c  [ 14DC30962660BA05F1F54EB11AA5A2B4, 23DD3D9E1D7F7CCB1A9AD2106CF39F072B689623854C36BDF27C0050DD28AA8E ] C:\Windows\System32\FwRemoteSvr.dll
22:13:47.0447 0x0a1c  C:\Windows\System32\FwRemoteSvr.dll - ok
22:13:47.0456 0x0a1c  [ D16A740186870C32941C0E61DF4F1298, 070E994DC851F9E397CCABCB2227D3E4E096463E89BF34E3C09896BF9A08C91E ] C:\Windows\SysWOW64\wintrust.dll
22:13:47.0456 0x0a1c  C:\Windows\SysWOW64\wintrust.dll - ok
22:13:47.0463 0x0a1c  [ 09EA40F4DAD2EDB3587E5E0BAA9C3E15, 45EDA279BD838BD65702762E4EFEDA8F4178F9478E21678B8C75D1AA4015906E ] C:\Windows\SysWOW64\imagehlp.dll
22:13:47.0463 0x0a1c  C:\Windows\SysWOW64\imagehlp.dll - ok
22:13:47.0471 0x0a1c  [ 1DACD1530C6E58AEAE9F6DE7DA851935, 923C936B935BDCCBE7DD0D6F2921CFA5980FC15F950E29B72E649AC0B9867EB2 ] C:\Windows\SysWOW64\shimeng.dll
22:13:47.0471 0x0a1c  C:\Windows\SysWOW64\shimeng.dll - ok
22:13:47.0479 0x0a1c  [ 1107BD574A84367735FEC38B9BD64E6B, 682D5372B533817C810F1DCB1C7AE42C44A786ED114601E56DF85FE1C41D5989 ] C:\Windows\SysWOW64\apphelp.dll
22:13:47.0479 0x0a1c  C:\Windows\SysWOW64\apphelp.dll - ok
22:13:47.0487 0x0a1c  [ C394079EB162E812D682C73FA96AF6E4, 639F482DBC82E1E8E7254A5F6FF0F60661EA4BE44D86CA13238913DABFA522F8 ] C:\Windows\SysWOW64\clbcatq.dll
22:13:47.0487 0x0a1c  C:\Windows\SysWOW64\clbcatq.dll - ok
22:13:47.0495 0x0a1c  [ E14170AEA125119B98FA2BDE3FF4F462, 939758ADA9D1A7E3B6BA1DB6D9E41D3FA27A7013C156F0B63010A0FB62DD64F8 ] C:\Windows\SysWOW64\rsaenh.dll
22:13:47.0496 0x0a1c  C:\Windows\SysWOW64\rsaenh.dll - ok
22:13:47.0503 0x0a1c  [ 3E5EF481EAA9695181B6C02A2B88983E, 7A52CFEFC276D655E6DB4240885E5C868927663C4B7C6D285E2AB1C4A2BA64CF ] C:\Windows\System32\wiatrace.dll
22:13:47.0503 0x0a1c  C:\Windows\System32\wiatrace.dll - ok
22:13:47.0513 0x0a1c  [ E1292C1ED4DEB17B8A9B586D22CB2061, 03303CD71BC6614D22374B5804967EBBD8B2C66B0C15CECBD022601CED81D72F ] C:\TOSHIBA\IVP\swupdate\swupdtmr.exe
22:13:47.0513 0x0a1c  C:\TOSHIBA\IVP\swupdate\swupdtmr.exe - ok
22:13:47.0521 0x0a1c  [ 8E10B36901325C1ABE28E71FB8E437D9, 6478778DCA5AAC88BF3ACD507463E7EFBFB10696B71C847B383FF56B868C8304 ] C:\Windows\System32\wsdchngr.dll
22:13:47.0521 0x0a1c  C:\Windows\System32\wsdchngr.dll - ok
22:13:47.0529 0x0a1c  [ A7FF25D9B9DA36797BD1EA48DB292DCE, D89C946633E77765923BD698F2665DC03C5CF1676EB2BAF4450A856B2E856997 ] C:\Windows\System32\drivers\tcpipreg.sys
22:13:47.0529 0x0a1c  C:\Windows\System32\drivers\tcpipreg.sys - ok
22:13:47.0538 0x0a1c  [ B146492A882A25A2DF1DB4668FCED6C8, B8C46B4536A7DE5A39EB7EE6F4BB6A7962FFA25563AF8ED8615B439123027E92 ] C:\Program Files (x86)\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
22:13:47.0538 0x0a1c  C:\Program Files (x86)\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe - ok
22:13:47.0547 0x0a1c  [ 6A487018E49C9C238243162A3B5F5945, 498E4CF6539ACE120AC61AC822823E9E86F3B8D00CF033C2F26A6384D0012FD4 ] C:\Windows\System32\icaapi.dll
22:13:47.0547 0x0a1c  C:\Windows\System32\icaapi.dll - ok
22:13:47.0556 0x0a1c  [ 19AF3434564E973BC232BBD629EC2BF6, 1791B3221F83E7E77A773F9635F1D304E06DCAAD5366292A227A2A453A9B196B ] C:\Windows\System32\TODDSrv.exe
22:13:47.0556 0x0a1c  C:\Windows\System32\TODDSrv.exe - ok
22:13:47.0564 0x0a1c  [ E17A81E6AD0E89630A3B0F2ED5CBBDF5, BD5B4C1133E0A7ED1A11249ABAB43F42C840F9A4B2168ED1A1B227275E2585D8 ] C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
22:13:47.0564 0x0a1c  C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe - ok
22:13:47.0569 0x0a1c  [ 9BFE6E50393215620068DC38AC48A656, CC5979F084E381463BD36D5532B909C131701CD59EC4FB02AE85E8CED553567B ] C:\Program Files\TOSHIBA\Power Saver\TPwrReg.dll
22:13:47.0569 0x0a1c  C:\Program Files\TOSHIBA\Power Saver\TPwrReg.dll - ok
22:13:47.0578 0x0a1c  [ 2357A0FA2BAFD049FD852AD11AF36F75, 77ED2247EE482A945100A9E9BCE712B367574E7670A067D03E3C0F745B0C278A ] C:\Program Files\TOSHIBA\Power Saver\TPwrFunc.dll
22:13:47.0578 0x0a1c  C:\Program Files\TOSHIBA\Power Saver\TPwrFunc.dll - ok
22:13:47.0587 0x0a1c  [ 4E5A8546709591D31BA086CA2A69CECD, 228A3058DC833301322CA08CCA7562792F5B03B4B98583D319C70125152F06D6 ] C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
22:13:47.0587 0x0a1c  C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe - ok
22:13:47.0596 0x0a1c  [ 19D979B9F6373A7CB17EBB7594FEB819, BCA98AE2AFA37E9FCEB5AFAABB565E4C8F6D4F0D621B43EE0E07D37C57817DB9 ] C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
22:13:47.0596 0x0a1c  C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe - ok
22:13:47.0604 0x0a1c  [ 332D341D92B933600D41953B08360DFB, 213A5C84ABB0D627C05B355084A26A5081645D4EC398FF19EF6BBCB690B10055 ] C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
22:13:47.0604 0x0a1c  C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe - ok
22:13:47.0614 0x0a1c  [ 6FF25F418D373097C199E3ACCFA06E78, 7A062D707392E370EB051A3BE3F27F47F1EC97127BFB10D9A5C59537D3055BE1 ] C:\Windows\System32\tquery.dll
22:13:47.0614 0x0a1c  C:\Windows\System32\tquery.dll - ok
22:13:47.0622 0x0a1c  [ 898804F8043BA721AC2E9F45AA55558B, A1DF291473BD8880C3D2E436CD7764C3264D314B05C75005BE5A468E30FE22F1 ] C:\Windows\System32\PortableDeviceApi.dll
22:13:47.0622 0x0a1c  C:\Windows\System32\PortableDeviceApi.dll - ok
22:13:47.0631 0x0a1c  [ E9DBC876EC1C78A74A55D8D121016344, 73E36BE2687BC9A88B5D839EF64DBA8CA82DC19C35BBF5F6DE80B87CC5ABEBB8 ] C:\Windows\System32\wbemcomn.dll
22:13:47.0631 0x0a1c  C:\Windows\System32\wbemcomn.dll - ok
22:13:47.0640 0x0a1c  [ B25321F9C037BA9AE1DD68B36913ACAC, 444B6F261CE49C1D46A55E0AC32DC659EA2525C0355A43C0568EA56E3ABDA781 ] C:\Windows\System32\wbem\WinMgmtR.dll
22:13:47.0640 0x0a1c  C:\Windows\System32\wbem\WinMgmtR.dll - ok
22:13:47.0647 0x0a1c  [ 41F84775AE00035887A98EE774914939, 4993542F1C5EAB56DB88E4D1042D13EE601C84FCF7E0EE105397AD75A28EFC70 ] C:\Windows\System32\PortableDeviceConnectApi.dll
22:13:47.0648 0x0a1c  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
22:13:47.0656 0x0a1c  [ A0B762992A52FA8A657A97C34BEEA807, 6DAE0BBDDFB419AD3C86BA2DA07DA87375A7F0D0577D93FDEC3007CA989C0B34 ] C:\Windows\System32\mssrch.dll
22:13:47.0656 0x0a1c  C:\Windows\System32\mssrch.dll - ok
22:13:47.0665 0x0a1c  [ 900B9B25C345AAA4F90913BA9AECABF4, 70F3A495D208AF464360F1C63E6B5E7F790FF356249101F8E202ED9ECE5C6EFF ] C:\Windows\System32\dbghelp.dll
22:13:47.0665 0x0a1c  C:\Windows\System32\dbghelp.dll - ok
22:13:47.0673 0x0a1c  [ BA019C21DAC7CAC193C93E86B9F2F3CB, CAF051703E29D1F0BF89D1E474B91E0697303FD1259C08B0783F941A8034419E ] C:\Windows\System32\wsock32.dll
22:13:47.0673 0x0a1c  C:\Windows\System32\wsock32.dll - ok
22:13:47.0681 0x0a1c  [ 54BEFBE0B681A7254FD74E1E5288F7F6, 03D507E73713AEC868F6120CD152036A584EE858B3FFC7F10B257AFA4DC80A4D ] C:\Windows\System32\msidle.dll
22:13:47.0681 0x0a1c  C:\Windows\System32\msidle.dll - ok
22:13:47.0690 0x0a1c  [ 7846D0136CC2B264926A73047BA7688A, 6F56CC1B17095C378D98B58A92F9EDA2D009529DDB6F60E815D85C7606C8EDC0 ] C:\Windows\System32\netprofm.dll
22:13:47.0690 0x0a1c  C:\Windows\System32\netprofm.dll - ok
22:13:47.0698 0x0a1c  [ 1894F161AF417784AAECFAFE77DE940E, D24319614FF0E46EF0510C5E591B7E0B409C164DA9AF3A63D454D43D4122AD56 ] C:\Windows\System32\sqmapi.dll
22:13:47.0698 0x0a1c  C:\Windows\System32\sqmapi.dll - ok
22:13:47.0707 0x0a1c  [ 27F479DFA5E1BD942E056888DCF5C270, BC6F375C9AF17E6320D1D4708BE3B6D19395EB218F842A32ADDC459D9DD52CF7 ] C:\Windows\System32\Query.dll
22:13:47.0707 0x0a1c  C:\Windows\System32\Query.dll - ok
22:13:47.0714 0x0a1c  [ A5D8AD128FBB763F147F29F3D6A1C084, 12ADA49BDE8E83D74CB476E4874D96D3B8F28E8C4741A40C5285E6B21A18B6D2 ] C:\Windows\System32\npmproxy.dll
22:13:47.0714 0x0a1c  C:\Windows\System32\npmproxy.dll - ok
22:13:47.0722 0x0a1c  [ 79ED2D6DEC26E0FEFB93EA21F09E6A51, 484E083E1D39AE8D54080E77EB199A447EE983EBDEC021EAAF4D478BD651AFE5 ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatchSrv.exe
22:13:47.0722 0x0a1c  C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatchSrv.exe - ok
22:13:47.0731 0x0a1c  [ D23E5184266747DDCE9D0C6581D916B3, 10A7CDD43E27C61D08FC81855821620E3CA1CFF5C7632E60EDDADC3D09C9A901 ] C:\Windows\System32\hnetcfg.dll
22:13:47.0731 0x0a1c  C:\Windows\System32\hnetcfg.dll - ok
22:13:47.0740 0x0a1c  [ 21F36392598072A73C7576CD8AFD6E70, 9A678206ADAD4F96FD5C0F3DDA51A39B3FAF7908B519586FD03353C36C3E5E50 ] C:\Windows\System32\wbem\wbemprox.dll
22:13:47.0741 0x0a1c  C:\Windows\System32\wbem\wbemprox.dll - ok
22:13:47.0748 0x0a1c  [ D642A49B5E19B3F5B0B4647FAE27817E, C2351C39BDD2E17723505E4CE214B9FFF83833E5E67741972A9420A84EB7BBEC ] C:\Windows\System32\wbem\wbemcore.dll
22:13:47.0748 0x0a1c  C:\Windows\System32\wbem\wbemcore.dll - ok
22:13:47.0757 0x0a1c  [ 37B697901FE364144D634128369098FF, D16F5387D219C6580D61FC407527DF37882C595B72F9C293363D0B9E413223EC ] C:\Windows\System32\wbem\esscli.dll
22:13:47.0757 0x0a1c  C:\Windows\System32\wbem\esscli.dll - ok
22:13:47.0764 0x0a1c  [ 14CC925085F2B884B7D9004CC6B7FCD8, 70B57DAF6D3100E296BE65F1EA34E8B22129A388E08C77DF383F44A6D97A5AA2 ] C:\Windows\System32\SmartFaceVHelper.dll
22:13:47.0764 0x0a1c  C:\Windows\System32\SmartFaceVHelper.dll - ok
22:13:47.0772 0x0a1c  [ 11F705A35F4CB2B4D6FA51606A9B8C54, C7F95DEADD310229836A26307C36EBAD51C18B939D0AF2138ABD9F1737BD3E25 ] C:\Windows\System32\wbem\fastprox.dll
22:13:47.0772 0x0a1c  C:\Windows\System32\wbem\fastprox.dll - ok
22:13:47.0781 0x0a1c  [ 1AF234ADAE2D8F5B4135C79DA4C2990E, 7AC0C36FBA1BB3983B6F19DFD7042037580503DFECC79B36C9519718EEFDCC3E ] C:\Windows\System32\SmartFaceVCtrl.dll
22:13:47.0781 0x0a1c  C:\Windows\System32\SmartFaceVCtrl.dll - ok
22:13:47.0789 0x0a1c  [ CDBAE31A2B6C8819DDBC5CF8432E3B3E, B34269C0A606C2F0FFB1E08AA4D8606C283B09B33CBF3DF54E7BA906D92AE41F ] C:\Windows\System32\en-US\tquery.dll.mui
22:13:47.0789 0x0a1c  C:\Windows\System32\en-US\tquery.dll.mui - ok
22:13:47.0797 0x0a1c  [ DF39C94925D9B0474E76317B8247B4A6, 863D60E8157D4C2800BDFBB7D7339BB17804A80E7BCB3B27E15A38A44F8B3C17 ] C:\Windows\System32\FaceHI.dll
22:13:47.0797 0x0a1c  C:\Windows\System32\FaceHI.dll - ok
22:13:47.0805 0x0a1c  [ E21FFFE678FF09BAA6BF5F76BD8805C6, 2C712CE19EB3BD51CDB3097C04FE38E6B5683277437EE39289806089F5A67481 ] C:\Windows\System32\esent.dll
22:13:47.0805 0x0a1c  C:\Windows\System32\esent.dll - ok
22:13:47.0814 0x0a1c  [ 8F8380E73A04BCB85340B1A3653FB8A5, 0A70536DDF372AA85AD85E106A69AF1AB2BD7D8D72B648C2B817E0C04FFB9CCC ] C:\Windows\System32\wbem\wbemsvc.dll
22:13:47.0814 0x0a1c  C:\Windows\System32\wbem\wbemsvc.dll - ok
22:13:47.0819 0x0a1c  [ 1AE49D81622BE6364194F70045F07194, EE85363E15E3C882AB6998EF581AAB6D6F82B012EDDCE0D9071B785B25D639CB ] C:\Windows\System32\wbem\wmiutils.dll
22:13:47.0819 0x0a1c  C:\Windows\System32\wbem\wmiutils.dll - ok
22:13:47.0827 0x0a1c  [ 5103B1E343F2D5FBDFA8D0318ABC59C4, 0D4ED9E7D91A0D3F25E593F2499509E663D12E9AF2D24245F7A35F47F4AF6031 ] C:\Windows\System32\wbem\repdrvfs.dll
22:13:47.0827 0x0a1c  C:\Windows\System32\wbem\repdrvfs.dll - ok
22:13:47.0835 0x0a1c  [ A44E61A183FD6D65C655E31A330ECA7E, 4A1C2DB22F191654EB66CB6898FDDD04842AA1C078947165EB7B25F958E0A2E2 ] C:\Windows\System32\msscb.dll
22:13:47.0835 0x0a1c  C:\Windows\System32\msscb.dll - ok
22:13:47.0844 0x0a1c  [ E946553F786521C073AABC7CD0714807, 27D87DB89DF24E1C340A1466C9DA18CEF0552D5668C14387AA80E84AA96D2463 ] C:\Windows\System32\wbem\WmiPrvSD.dll
22:13:47.0844 0x0a1c  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
22:13:47.0852 0x0a1c  [ EA85B96A8BFB435749C9004BC7340347, B34E237BF8FD5F9427735FFB9FA6DC2CF940BCAA63C4832E4D5378D6ABCD535C ] C:\Windows\System32\taskeng.exe
22:13:47.0852 0x0a1c  C:\Windows\System32\taskeng.exe - ok
22:13:47.0860 0x0a1c  [ 8D94313E7A7786997B4C362B7CCB5D29, D2EA4847717BAE0D409DF1A08FEE5C44232BCDA6FD21D6062E2A5CA0718C27B5 ] C:\Windows\System32\wbem\wbemess.dll
22:13:47.0860 0x0a1c  C:\Windows\System32\wbem\wbemess.dll - ok
22:13:47.0869 0x0a1c  [ 8449D81B9FB1CCADEC3E64F30E1076C7, B63EBD8A1718393A89AFB912CAD552B552ED2F230D3524F106DA4D04905B6B8C ] C:\Windows\System32\winrnr.dll
22:13:47.0869 0x0a1c  C:\Windows\System32\winrnr.dll - ok
22:13:47.0877 0x0a1c  [ 18ADF933B54C8953FCC3EEAB4EAF4A63, C338B345AB6020F1058FA33C71132E11CA8FD2C40B1FD3E160195235E4F0B6FC ] C:\Windows\System32\TSChannel.dll
22:13:47.0877 0x0a1c  C:\Windows\System32\TSChannel.dll - ok
22:13:47.0885 0x0a1c  [ 10446646D128E580C46615338E74E672, D684A4857D1AB3D9208ABCD59707429CCB10399446CB0B87003CD6C8AEA0CC17 ] C:\Windows\System32\rundll32.exe
22:13:47.0885 0x0a1c  C:\Windows\System32\rundll32.exe - ok
22:13:47.0893 0x0a1c  [ 185A819D9AC5A1D7F387C45F476CFE32, 06C98B4C415E08CACF721470D07BA61D13F4A83BBE23CD705C22468F70AB61DF ] C:\Windows\System32\pdh.dll
22:13:47.0894 0x0a1c  C:\Windows\System32\pdh.dll - ok
22:13:47.0901 0x0a1c  [ CE010ACB489CAA0253A3F692E0892631, 75930A4F7225BFCA1B802963A8941CA09D5CA8D3E45AD3036FFC836151A427C1 ] C:\Windows\System32\tdh.dll
22:13:47.0901 0x0a1c  C:\Windows\System32\tdh.dll - ok
22:13:47.0910 0x0a1c  [ A8704A10FFDE468F4AB18EBF82A9A86F, 40F6502679CEE0B657B0005278FBE7213BDDA6DEAACF868058E17737C182E1B4 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll
22:13:47.0910 0x0a1c  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll - ok
22:13:47.0918 0x0a1c  [ FDB46E4576B845FEEFC91DC475B9D93C, 26872A25FD273218C29ABAE8B0D2C3156768185B9F3118473E8A8C6DBBE01E35 ] C:\Windows\System32\FaceRec.dll
22:13:47.0918 0x0a1c  C:\Windows\System32\FaceRec.dll - ok
22:13:47.0927 0x0a1c  [ B95F748C4F100DD0F6E8115CC0968670, 9A306E9C79DF259187839EC74B7A9F2FCEBFA5EE54184BB46C48E605B4120C36 ] C:\Windows\winsxs\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8a1dd9552ed7f8d8\ATL80.dll
22:13:47.0927 0x0a1c  C:\Windows\winsxs\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8a1dd9552ed7f8d8\ATL80.dll - ok
22:13:47.0936 0x0a1c  [ DCEE3592299B2229A0DB98CB415059A2, 709AAA095DF44DDCB6159CE1635AB05EC666D845445790E569F56B297DC64AC3 ] C:\Program Files\Microsoft Security Client\NisSrv.exe
22:13:47.0936 0x0a1c  C:\Program Files\Microsoft Security Client\NisSrv.exe - ok
22:13:47.0945 0x0a1c  [ B7762D1AEAAE5C4AAA5F1677EC3B1512, DC075848BC8F74B583354320BFC87E231CB39F6470A2FC3307ECCDFB13751BF9 ] C:\Program Files\Microsoft Security Client\NisLog.dll
22:13:47.0945 0x0a1c  C:\Program Files\Microsoft Security Client\NisLog.dll - ok
22:13:47.0954 0x0a1c  [ 0E4C472AE141D6F042BF758A298C3C81, D8653A26B4DC57F524263A991BD4A9A4F03F0D8D3C9CAC6E3BC8A8F4EDE41766 ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVLogOn.dll
22:13:47.0955 0x0a1c  C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVLogOn.dll - ok
22:13:47.0965 0x0a1c  [ 7371D6B52B85190971CB3F35FA0CED05, 85C39664D66234DA1774D763F4E7D70CAE0578D7B7E87C1A6C82C7FAF4E06491 ] C:\Windows\System32\diagperf.dll
22:13:47.0965 0x0a1c  C:\Windows\System32\diagperf.dll - ok
22:13:47.0974 0x0a1c  [ 595BAC1B188813CEAE88A599738E60F8, 5B534DD0240139188880C8C0B4A9471235D771D2805294BB47CC9BB643B9F11F ] C:\Windows\System32\mssprxy.dll
22:13:47.0974 0x0a1c  C:\Windows\System32\mssprxy.dll - ok
22:13:47.0983 0x0a1c  [ 1B7A24F2BFA1BB09CC67D4688B411039, 49B0663E18642E4838FE87FA160453153CE17F0C44E3821577001A66372AA3F9 ] C:\Windows\System32\pcadm.dll
22:13:47.0983 0x0a1c  C:\Windows\System32\pcadm.dll - ok
22:13:47.0992 0x0a1c  [ 0FD5754319A388FBD2E13C21E806AC42, E6324B447ECE1903BC102FDF941A7B286566D4176857D51092A9589FEB8567E9 ] C:\Windows\System32\pnpts.dll
22:13:47.0992 0x0a1c  C:\Windows\System32\pnpts.dll - ok
22:13:48.0002 0x0a1c  [ B1DDE7212AAD17473FCF648AEC8795CD, F6D7D56717CEE18D2B8B3556766C34D8AD011099AF81A58AA94AE914FFA71683 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76BA735D-754A-4B08-B42D-7680144B23EC}\gapaengine.dll
22:13:48.0002 0x0a1c  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76BA735D-754A-4B08-B42D-7680144B23EC}\gapaengine.dll - ok
22:13:48.0012 0x0a1c  [ 68F9E433002902D0D8215937C1B501F5, 9F4A66909A57DC155A072D55C21DF5453D7B8BC6F8D86EB5B949F6755B0543E7 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76BA735D-754A-4B08-B42D-7680144B23EC}\nisfull.vdm
22:13:48.0012 0x0a1c  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76BA735D-754A-4B08-B42D-7680144B23EC}\nisfull.vdm - ok
22:13:48.0020 0x0a1c  [ 70071E1657823DA231713D74A9CC8ECA, C1CCCDA359ADA38F2D3FD8C2A00002DC11000F2145047D67E30B0977DE6EF646 ] C:\Windows\System32\rasadhlp.dll
22:13:48.0020 0x0a1c  C:\Windows\System32\rasadhlp.dll - ok
22:13:48.0030 0x0a1c  [ 75C34D22D3E7D1D0238B62C55F604BFC, FE2CC757B1BDF057835E4E950D683FD47325EA9AD7B880E1A4746D08212CE768 ] C:\Windows\System32\cscapi.dll
22:13:48.0030 0x0a1c  C:\Windows\System32\cscapi.dll - ok
22:13:48.0038 0x0a1c  [ BED93F434CD291DEC110901F7343E000, E47365043F44B0FB62C9552C24C18725AE60797D1A80230D26D52EEDC7E5E42E ] C:\Windows\System32\dllhost.exe
22:13:48.0038 0x0a1c  C:\Windows\System32\dllhost.exe - ok
22:13:48.0047 0x0a1c  [ ED4EC7C21A3607A4CB7D36E9C5B90AB2, 13580D9FFB388427105408D5F1883CF85A3BE7EBC7F6519327EB4F9193A17C6C ] C:\Windows\System32\AtBroker.exe
22:13:48.0047 0x0a1c  C:\Windows\System32\AtBroker.exe - ok
22:13:48.0055 0x0a1c  [ A0AB2BB9A92293D9CE66E252719AB5FE, A1323F79124F3D9A214BAF82AE085F4299075F0EC308736B9E8F14351FAAE1E4 ] C:\Windows\System32\userinit.exe
22:13:48.0055 0x0a1c  C:\Windows\System32\userinit.exe - ok
22:13:48.0063 0x0a1c  [ 1AD703C14E705F69D4ADF79154054173, DD6E692CC06E05244E6595C4C908D96C4F64957B6788B271C3A4F423B8945FFE ] C:\Windows\System32\dwmapi.dll
22:13:48.0064 0x0a1c  C:\Windows\System32\dwmapi.dll - ok
22:13:48.0073 0x0a1c  [ A78E7E16E8696172FF3F4147E6050DC3, 5AEF9E3E649A74A739C462193B4808B40B790D605CB00A45438C30907D581736 ] C:\Windows\System32\dwmredir.dll
22:13:48.0073 0x0a1c  C:\Windows\System32\dwmredir.dll - ok
22:13:48.0082 0x0a1c  [ B77AD1818DBD476245B1281016E075E4, 0871BF0ACC2E99F4B28C04687BFA8F1D1EC5756AC01B581A9E436FFB883D53C2 ] C:\Windows\System32\milcore.dll
22:13:48.0082 0x0a1c  C:\Windows\System32\milcore.dll - ok
22:13:48.0090 0x0a1c  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:13:48.0090 0x0a1c  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
22:13:48.0098 0x0a1c  [ D4175BE7CA634C7BB9205F7EE4F3F7E4, 62DBF61AEE79AE606B81AEBCA315C5A980A646B1FA9B36D7636CFFF833D0127B ] C:\Windows\System32\d3d9.dll
22:13:48.0098 0x0a1c  C:\Windows\System32\d3d9.dll - ok
22:13:48.0107 0x0a1c  [ 77E585EDD4C7EB7AB2ACC36BC1DC32A5, 57BF4D683CA66AAC2A4B7FEDF9F7FB254860BE77E1F4A6DD2C40410783B5C113 ] C:\Program Files (x86)\Google\Update\1.3.24.15\goopdate.dll
22:13:48.0107 0x0a1c  C:\Program Files (x86)\Google\Update\1.3.24.15\goopdate.dll - ok
22:13:48.0116 0x0a1c  [ 38573C7D9D91B316E6EE76E0C94F749E, 809AE69DBB75ABB9902428F0EF2D109412258114959833D91480D9E1B94B54D6 ] C:\Windows\System32\localspl.dll
22:13:48.0116 0x0a1c  C:\Windows\System32\localspl.dll - ok
22:13:48.0123 0x0a1c  [ 05411EF3E66659C63803563BB06C2E17, BB7B12B142A5685A518970CE129D93B563CD7C683C3155322AF690EA661173FD ] C:\Windows\System32\dimsjob.dll
22:13:48.0124 0x0a1c  C:\Windows\System32\dimsjob.dll - ok
22:13:48.0132 0x0a1c  [ 5F0501B0C731E7F2DDE196E3A32E3500, FABEABAD258862788BE351D5B9519C68352CEE95ECA52562AB4EB9B37C35DC3A ] C:\Windows\System32\PlaySndSrv.dll
22:13:48.0132 0x0a1c  C:\Windows\System32\PlaySndSrv.dll - ok
22:13:48.0142 0x0a1c  [ E6409B960CCAA48F292A4808E00167C8, 59C9B4440A8F334819158FECC01D957CCD3108D8AE285DC6BD451A0B2171A8A4 ] C:\Windows\System32\d3d8thk.dll
22:13:48.0142 0x0a1c  C:\Windows\System32\d3d8thk.dll - ok
22:13:48.0150 0x0a1c  [ AD8DDBB13B341B931CC9229BBC9D0625, E71CBC88091479147E33657727CEF893DE5E8D69DF90F3526EF9643E0C719F27 ] C:\Windows\System32\HotStartUserAgent.dll
22:13:48.0150 0x0a1c  C:\Windows\System32\HotStartUserAgent.dll - ok
22:13:48.0158 0x0a1c  [ 48DC4268BAA33F8770F498F96100E301, 7B0C7BCAC38641F3FCBBA8E3970122EACFC759B2A65DC49BCEB3ADD977135496 ] C:\Windows\System32\pautoenr.dll
22:13:48.0158 0x0a1c  C:\Windows\System32\pautoenr.dll - ok
22:13:48.0167 0x0a1c  [ 6B08E54A451B3F95E4109DBA7E594270, 0419E4100C3B4AD1831FBF9249173CF32C8209C71B7101674B239A0A47C30E42 ] C:\Windows\explorer.exe
22:13:48.0167 0x0a1c  C:\Windows\explorer.exe - ok
22:13:48.0176 0x0a1c  [ C88208718545410FA0F11E06F6E7F01B, FB433177A2DEFB2AC348CAB82C794A98F8A3A21675232C6E53E6A834D19775F2 ] C:\Windows\System32\certcli.dll
22:13:48.0176 0x0a1c  C:\Windows\System32\certcli.dll - ok
22:13:48.0182 0x0a1c  [ 2CCA759379C220D29F0066CA49E9259F, 132298CC7F90175237ECA7E6BD45124465DC72EC1EC2054A54B4EFC7423F4ECA ] C:\Windows\System32\sfc.dll
22:13:48.0183 0x0a1c  C:\Windows\System32\sfc.dll - ok
22:13:48.0190 0x0a1c  [ D3C2F70987BC0D759F21DB84BB134476, 4EA7C098DB63513A33BB6C818A3D3F34E523F91C05DDA1604A90540E73771DBA ] C:\Windows\System32\atiumd64.dll
22:13:48.0191 0x0a1c  C:\Windows\System32\atiumd64.dll - ok
22:13:48.0199 0x0a1c  [ 077A43C53E9084FEB102EAB37234BF4F, DBD8BBE2F77FBAF71CB6DBFE3CAB8DE809702E849CAA340B23B9E5F328CA3AD8 ] C:\Windows\System32\hpinksts5C12LM.dll
22:13:48.0199 0x0a1c  C:\Windows\System32\hpinksts5C12LM.dll - ok
22:13:48.0207 0x0a1c  [ 5AF34B08C676F16A070A7D7EF2AB4C3E, 84D5877F247A5D248DB0880BDD80C9D59A1CE996C0BF39FBEB6BDD0276C3D5D7 ] C:\Windows\System32\CertEnroll.dll
22:13:48.0207 0x0a1c  C:\Windows\System32\CertEnroll.dll - ok
22:13:48.0216 0x0a1c  [ ACFD0B03F25EF6C7666A7F634CD86C14, 0E4C75E347EEFA8274BA1A59C8455F06AD54E03BA32AB17B20FA32B3446BD6E4 ] C:\Windows\System32\HPDiscoPM5C12.dll
22:13:48.0216 0x0a1c  C:\Windows\System32\HPDiscoPM5C12.dll - ok
22:13:48.0224 0x0a1c  [ 57120423BC6342F0EAE16E3720184D5A, 49FE2014C08021CE65B71593F72EFE4D6000BD69307E475F1939F30CD6B85FC1 ] C:\Windows\System32\wsnmp32.dll
22:13:48.0224 0x0a1c  C:\Windows\System32\wsnmp32.dll - ok
22:13:48.0232 0x0a1c  [ 11CFE871D27B4C3485E84BE9E48FFF5E, E6B87FA200AB571056B961794D8EF280C357C740AFC733511EFFF3EECA9E2C78 ] C:\Windows\SysWOW64\msi.dll
22:13:48.0233 0x0a1c  C:\Windows\SysWOW64\msi.dll - ok
22:13:48.0245 0x0a1c  [ B420EB9D254C2C16CCFBB09BCC6AB113, C53D870F179416EA7F9CAE34A503E62AE8DE9249D6EC0A64AA786EF403404005 ] C:\Windows\System32\MsCtfMonitor.dll
22:13:48.0245 0x0a1c  C:\Windows\System32\MsCtfMonitor.dll - ok
22:13:48.0253 0x0a1c  [ AD27B41DA928C0338E6F364BE928D3F7, B6CFB153ED3F63B98713F361A25511F89C8310DACADAD8B04895D2412CC43B68 ] C:\Windows\System32\msutb.dll
22:13:48.0253 0x0a1c  C:\Windows\System32\msutb.dll - ok
22:13:48.0261 0x0a1c  [ 9DCAA0F7D8EC0C07BBBE724041DB7AC5, F129900011B92AB7F74B11CBE4A214E5C21F7A3B3D05D5E1E1CB5C0FAE89A81C ] C:\Windows\System32\shdocvw.dll
22:13:48.0261 0x0a1c  C:\Windows\System32\shdocvw.dll - ok
22:13:48.0269 0x0a1c  [ 2EC53B5A351C4D443896DBAD117F7E82, E158AD22F1905B41D7975E3725D7A870FB192D7258C4330DF06CD4AC02A7CFE4 ] C:\Windows\SysWOW64\msimg32.dll
22:13:48.0269 0x0a1c  C:\Windows\SysWOW64\msimg32.dll - ok
22:13:48.0278 0x0a1c  [ 3B1534B2F98C3B93DDB2F3BEA770E3E7, 1F54258168EC61D6A8F617521BEAAE571C4955DECC8A13457A2275A2900B79C8 ] C:\Windows\System32\atiumd6a.dll
22:13:48.0278 0x0a1c  C:\Windows\System32\atiumd6a.dll - ok
22:13:48.0286 0x0a1c  [ 74D59F72104C9FF8D154D1AB372A5A57, 52247C9FF1C1D9DEA7164A3E12137BBAEB4D7AFD135E0351FFE25B026C02FFEC ] C:\Windows\System32\tcpmon.dll
22:13:48.0286 0x0a1c  C:\Windows\System32\tcpmon.dll - ok
22:13:48.0294 0x0a1c  [ D922592AB65C5D9B88B30B4510A3464E, E6226CFD77C6DDAE5737C4CC6F8B347DF474CF8DFD93E32ABE6AE63D9AB0A586 ] C:\Windows\SysWOW64\cscapi.dll
22:13:48.0294 0x0a1c  C:\Windows\SysWOW64\cscapi.dll - ok
22:13:48.0303 0x0a1c  [ 943F05B78BC03F3463FCE26D4B5B81A9, F2E9F0FEBE8CB2E31B1D37BE41722A853F5A80E51AA3FC56FCE5DECBDD87021D ] C:\Windows\System32\snmpapi.dll
22:13:48.0303 0x0a1c  C:\Windows\System32\snmpapi.dll - ok
22:13:48.0311 0x0a1c  [ CD08EEC61C591AF59A39F4363C567D30, 6A8413BE885A07235F59846FAD986B7A65CF009EAD78DD378114B6362DDDB371 ] C:\Windows\SysWOW64\ntmarta.dll
22:13:48.0311 0x0a1c  C:\Windows\SysWOW64\ntmarta.dll - ok
22:13:48.0319 0x0a1c  [ EE9040473EB1339E75E79A75FA47A825, E2ABCC82EC1699EC841C64AA11AB610C12AACC9272F5E73F7207E594DF4E581B ] C:\Windows\System32\browseui.dll
22:13:48.0319 0x0a1c  C:\Windows\System32\browseui.dll - ok
22:13:48.0324 0x0a1c  [ 4934241CD20AC87D78121352E3BA8318, DACD7A7E0A41B011AD306972876568F27CDCF064EDFF71024BC0D4B595B666A7 ] C:\Windows\SysWOW64\dbghelp.dll
22:13:48.0325 0x0a1c  C:\Windows\SysWOW64\dbghelp.dll - ok
22:13:48.0333 0x0a1c  [ 4B7BB89AFC32632F775D8A3E62FCA979, 5FEF114A111731F6B425E8943AD019DD8C6629B5121735F000098EA8AA5D6725 ] C:\Windows\System32\mgmtapi.dll
22:13:48.0333 0x0a1c  C:\Windows\System32\mgmtapi.dll - ok
22:13:48.0341 0x0a1c  [ 7BCB22C93FF0E90683F3513531E2990B, 55E43B66312A467748A3DE78C4A49F7CC1456EC3B2960A84B8069ABE44245B99 ] C:\Windows\System32\tcpmib.dll
22:13:48.0341 0x0a1c  C:\Windows\System32\tcpmib.dll - ok
22:13:48.0349 0x0a1c  [ FBE966DB5FFE8D52F9AA28CD6A7483F2, E59E8EAE9B2038ADA9188420EBC6A79375056C66DD21C7F7EEDD3AEA54C6DD76 ] C:\Windows\System32\TBTMon.dll
22:13:48.0349 0x0a1c  C:\Windows\System32\TBTMon.dll - ok
22:13:48.0357 0x0a1c  [ B2E32F41E1D6500F62CAEF5EF2B17196, AFE3EF10D2CA41AF9DF3F9EE1A96DC03793425A08EDD79B12920DB9F9CF6E804 ] C:\Windows\System32\EhStorShell.dll
22:13:48.0357 0x0a1c  C:\Windows\System32\EhStorShell.dll - ok
22:13:48.0366 0x0a1c  [ 2EDBDB75D2F41386804B2CB53C572E75, 9630954A97CF3D057587BBB01FBE10C18F93D1F8685F3776232DBF03872C4B05 ] C:\Windows\System32\TMM.dll
22:13:48.0366 0x0a1c  C:\Windows\System32\TMM.dll - ok
22:13:48.0374 0x0a1c  [ EDC41901878A99EA11765F5536CCAE67, A9DD9415620B5381E22A540D5942492689A2EB38405C6EDD4BB0260490C5E4D1 ] C:\Windows\System32\imageres.dll
22:13:48.0374 0x0a1c  C:\Windows\System32\imageres.dll - ok
22:13:48.0382 0x0a1c  [ 7B005E3F9825A98312E089CBA0F83DAA, 2535C5875F151A1115A51F8BCEE91AED9D3FD07768ACF370DC08424F6EF2DBA9 ] C:\Windows\System32\uDWM.dll
22:13:48.0382 0x0a1c  C:\Windows\System32\uDWM.dll - ok
22:13:48.0390 0x0a1c  [ 3E20E4E8B601A82B3A849415EB7248E2, 1AC49346B4C3F4E7B2CFA38034BB4F41957560D8BC5875E4CB6DBB23E06CF745 ] C:\Windows\System32\TosBtHcrpAPI.dll
22:13:48.0390 0x0a1c  C:\Windows\System32\TosBtHcrpAPI.dll - ok
22:13:48.0399 0x0a1c  [ 491F1B54A84D60264611EDCCD99F60C0, 43DD5904B4385C8DE6D720EF55D7CEC8E9B20054D14839DB6F0C82F76A861AE4 ] C:\Windows\System32\atitmm64.dll
22:13:48.0399 0x0a1c  C:\Windows\System32\atitmm64.dll - ok
22:13:48.0407 0x0a1c  [ DE50800C0029B576F8E84830A06307EB, 88A9B6ECCCADBCAC92833CDFCD4F88BE257A0A7B35675257A167AA3A6EEAE447 ] C:\Windows\System32\TosBtAPI.dll
22:13:48.0407 0x0a1c  C:\Windows\System32\TosBtAPI.dll - ok
22:13:48.0415 0x0a1c  [ 0A0C3C03E33B734F1005CB122991713E, EEFBD6929CAF11CA3CF14840D9593EE34B087A5ACAC32131A51F8140F80C02FA ] C:\Windows\System32\TosBdAPI.dll
22:13:48.0415 0x0a1c  C:\Windows\System32\TosBdAPI.dll - ok
22:13:48.0424 0x0a1c  [ 397D14958D6C9C2B365469A857B2AC4E, 1465D7DC50A27A2C75FFC477E8A453B0884D1E298F804233483B63A47634B7EA ] C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
22:13:48.0424 0x0a1c  C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe - ok
22:13:48.0433 0x0a1c  [ 530866A101934C0961A467B58D14F798, 2C603AB5F1A8F8D2881428EFDDE8C2DEA8C592572872BAEF845E1D6EB246BBFE ] C:\Windows\System32\tbtmon98Language.dll
22:13:48.0433 0x0a1c  C:\Windows\System32\tbtmon98Language.dll - ok
22:13:48.0441 0x0a1c  [ 5948F2B4FECE4F3301D290771F5183CF, F4112CFCA29420E8DC4D6C9758B8CAA4B3EA24BD9C672EF17ECBEA31F1DC605E ] C:\Windows\System32\usbmon.dll
22:13:48.0441 0x0a1c  C:\Windows\System32\usbmon.dll - ok
22:13:48.0450 0x0a1c  [ DE0EED5106BD03CE11CDBF690285FE6C, EB53C608B0AAA452BBC352926FFEED7F4429AAB78FA9375179BFA1665D34A067 ] C:\Windows\System32\WSDMon.dll
22:13:48.0450 0x0a1c  C:\Windows\System32\WSDMon.dll - ok
22:13:48.0458 0x0a1c  [ A45D8543AE13502984366767D7A4B4CD, 69B2A7653EB8234D2F50B01B4E51C7E6106907875E18CFCA092B1E30DC6D2AA7 ] C:\Windows\System32\IconCodecService.dll
22:13:48.0458 0x0a1c  C:\Windows\System32\IconCodecService.dll - ok
22:13:48.0467 0x0a1c  [ AA0E4F73727BFC8BA404884B1C1DB719, 0DEB88BBBC3DD37824B484FA38487280CB6A049D235519584DA562C3C91F18A7 ] C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
22:13:48.0467 0x0a1c  C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe - ok
22:13:48.0476 0x0a1c  [ 76937D85DBA50B75A49F9AB24A73044E, 995EE8F43A94C8490D786A51237C125239AADA761422A8B4C06B2120B0B3EEFB ] C:\Windows\System32\win32spl.dll
22:13:48.0476 0x0a1c  C:\Windows\System32\win32spl.dll - ok
22:13:48.0484 0x0a1c  [ 961F7B0A130E1FA3976ED1E9573D4D36, DAE6AFC354A87496C44CFC9029141046A8F7B89FBC460C935443656E6C325AC7 ] C:\Windows\System32\netrap.dll
22:13:48.0484 0x0a1c  C:\Windows\System32\netrap.dll - ok
22:13:48.0492 0x0a1c  [ A5A54257E6FD4AF082CCB0470AD4FC98, 8766C000ECD136F7A5EF0B12EF43565D65123DD3527AED508C8F9F6B0FDDA349 ] C:\Windows\System32\inetpp.dll
22:13:48.0492 0x0a1c  C:\Windows\System32\inetpp.dll - ok
 



#10 boingo2000

boingo2000
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Location:Phoenix, AZ
  • Local time:03:46 AM

Posted 06 September 2014 - 12:23 AM

22:13:48.0501 0x0a1c  [ 19CB8D7776D3656006496C4D890F5312, 5751ED6291B9CAB382A2D8E685681733BABBB18DF97F30272CF6E721358B3551 ] C:\Windows\System32\printcom.dll
22:13:48.0501 0x0a1c  C:\Windows\System32\printcom.dll - ok
22:13:48.0510 0x0a1c  [ 73FD66B14D3C4252F7A524B8836A4359, 04656A6290E9DFE79FCCD427FC4BBCF65E5C6B9525953D780FF42966C93468CF ] C:\Windows\SysWOW64\mstask.dll
22:13:48.0510 0x0a1c  C:\Windows\SysWOW64\mstask.dll - ok
22:13:48.0519 0x0a1c  [ 7F0F1D4B0D847696F8E309423D227DCE, 4460A2E8B27EB74E951DF328DABFC6C905DD1538D2F2BEE59B2FDA05482CE9F7 ] C:\Windows\SysWOW64\ntdsapi.dll
22:13:48.0519 0x0a1c  C:\Windows\SysWOW64\ntdsapi.dll - ok
22:13:48.0528 0x0a1c  [ 5398BD3BA9735ECF658487A2826C0885, 7D7098552FBE7EC8767CD28AF2EF2B135584068DF302168DE730DDFD69F0FB09 ] C:\Windows\System32\runonce.exe
22:13:48.0528 0x0a1c  C:\Windows\System32\runonce.exe - ok
22:13:48.0535 0x0a1c  [ 9A6A653ADF28D9D69670B48F535E6B90, 72351645184693A879CFF7FD171A182F24B7F72EA313E8D42F2744D0421FE188 ] C:\Windows\SysWOW64\runonce.exe
22:13:48.0535 0x0a1c  C:\Windows\SysWOW64\runonce.exe - ok
22:13:48.0544 0x0a1c  [ 74F26FC01B180D4A99A168ED69C30A53, D2FD623D70340F650BFAC8C31102E1B9168FE1750C141A23ACCC1A21F9F93A94 ] C:\Windows\SysWOW64\cmd.exe
22:13:48.0544 0x0a1c  C:\Windows\SysWOW64\cmd.exe - ok
22:13:48.0551 0x0a1c  [ 72A73B43C20902760022FBC91B3EC948, 4624359D20A235C004FDD0EEB36A14FE35291A1EE8D198149995F64327A7A361 ] C:\Windows\System32\cmd.exe
22:13:48.0551 0x0a1c  C:\Windows\System32\cmd.exe - ok
22:13:48.0559 0x0a1c  [ 7DACD94118E2D8B6D72F47ADEB0367BF, 6467DE36C7DB6502AF17210148194F16BE76A9BA793105FAC763536CC14CE693 ] C:\Windows\SysWOW64\propsys.dll
22:13:48.0559 0x0a1c  C:\Windows\SysWOW64\propsys.dll - ok
22:13:48.0567 0x0a1c  [ C6B790771A2BBB4B964329936B22D8D4, 816279777FBA4A329D5BBE1F7123511E97CBEE8D938B1EAE371D749AC0410DB7 ] C:\Windows\SysWOW64\ieframe.dll
22:13:48.0568 0x0a1c  C:\Windows\SysWOW64\ieframe.dll - ok
22:13:48.0574 0x0a1c  [ A77267CDDE66443FB779CEE39CEE2141, 8AF7CB2343156A185F07AF1D08C3407B4366E62CEA1352EA29FF35F46EF2F10D ] C:\Windows\System32\QAGENT.DLL
22:13:48.0574 0x0a1c  C:\Windows\System32\QAGENT.DLL - ok
22:13:48.0583 0x0a1c  [ ED99B5F4B9DFE4BECA711F3B0340F931, 7C748861B87C866FBD571A0DF486DAA8C5FCF6F7ABC178332D5F8AF74D208910 ] C:\Windows\System32\QUTIL.DLL
22:13:48.0583 0x0a1c  C:\Windows\System32\QUTIL.DLL - ok
22:13:48.0591 0x0a1c  [ 167AC31450C0C53A01FA1491E94D7678, 951744503EF72C6D6DC49720C4E6E65DC1DBB9C8252C89FEE18B396E2ED67EA5 ] C:\Windows\SysWOW64\shdocvw.dll
22:13:48.0591 0x0a1c  C:\Windows\SysWOW64\shdocvw.dll - ok
22:13:48.0600 0x0a1c  [ D40E7B5FBB8E0EAA7C5C294389AF95AB, 8EFD521DF1F335AF416DEC15D5C0C6538903803AA1A8ED93AA704B384A29876B ] C:\Users\Mitch\AppData\Local\Temp\{71AE14BA-7764-4E8F-B1FF-AE62D1ABE753}.exe
22:13:48.0600 0x0a1c  C:\Users\Mitch\AppData\Local\Temp\{71AE14BA-7764-4E8F-B1FF-AE62D1ABE753}.exe - ok
22:13:48.0609 0x0a1c  [ 13CC59C1B04E9F20A87987C68CD4BE3F, E65363E112CF58007CA650782997413EAFFFDAC25B66976BC7B3A2CBD5ED3933 ] C:\Windows\SysWOW64\ncrypt.dll
22:13:48.0609 0x0a1c  C:\Windows\SysWOW64\ncrypt.dll - ok
22:13:48.0617 0x0a1c  [ 0F420E81062757EA8363CBACD4D40D6D, 9FC3A7C512B065F18B520FE93B821717BB8B4C36BD976E8D014F71116073CF50 ] C:\Windows\SysWOW64\gpapi.dll
22:13:48.0617 0x0a1c  C:\Windows\SysWOW64\gpapi.dll - ok
22:13:48.0625 0x0a1c  [ 71B479749F0F52C4FEC726C6FFA2CE1C, ED0F1D94620696941E9633F55AC4130EFBDA3B883CA356BB34D268F4FC7F94F1 ] C:\Windows\SysWOW64\cryptnet.dll
22:13:48.0625 0x0a1c  C:\Windows\SysWOW64\cryptnet.dll - ok
22:13:48.0634 0x0a1c  [ EC760B0B76A4353DE49D66520EB2141F, ADBF30D100D3837C35695B1ABE3E7EB03FD6B9200B9C1C337325D9E0A3A3ACE4 ] C:\Windows\SysWOW64\SensApi.dll
22:13:48.0634 0x0a1c  C:\Windows\SysWOW64\SensApi.dll - ok
22:13:48.0642 0x0a1c  [ 6836D001FC733F205ACB80A7986CB6C9, C56ACEBA2597649BE1C5D00407C57FC8A9D5F9715491884E5DB0D58940CFEB34 ] C:\Windows\SysWOW64\WindowsCodecs.dll
22:13:48.0642 0x0a1c  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
22:13:48.0651 0x0a1c  [ 14E4470BF8ACA69A85D741BA99F75F96, B9DA437B42D56FAF29EF8227A22D842A852F80D5611E114E27FC8A3864E6DEA5 ] C:\Windows\SysWOW64\EhStorShell.dll
22:13:48.0651 0x0a1c  C:\Windows\SysWOW64\EhStorShell.dll - ok
22:13:48.0659 0x0a1c  [ 111C47816F39A91EAAA18DA0A54E8E63, 6910253AA5DFD7E2656C65B7227E7D546648D6C55600552D79FA275D0331AA00 ] C:\Windows\SysWOW64\imageres.dll
22:13:48.0659 0x0a1c  C:\Windows\SysWOW64\imageres.dll - ok
22:13:48.0667 0x0a1c  [ 5537EBC1209B3AA1332A03896B1184C3, 74ACC5929F0E3A0B735DC3CD42E1EBE46F243DD50C3D4791149ECD2E1C562CA3 ] C:\Windows\System32\PresentationSettings.exe
22:13:48.0667 0x0a1c  C:\Windows\System32\PresentationSettings.exe - ok
22:13:48.0675 0x0a1c  [ F4E1AA5D59C849A4AB47E895DC76B9C8, 0C93E63372D619393D9DDD3EFCA2317A6652276A9FDE0530CD2A06135EE6B46D ] C:\Windows\SysWOW64\sfc.dll
22:13:48.0675 0x0a1c  C:\Windows\SysWOW64\sfc.dll - ok
22:13:48.0684 0x0a1c  [ 12BCF4DAD8E5A1B3D5FA7AB4A79DA105, 613F0D184E08CBE1FFEEB8F845ADCA79577FB3CF59EA1FEE6B2346D9930763AB ] C:\Windows\SysWOW64\sfc_os.dll
22:13:48.0684 0x0a1c  C:\Windows\SysWOW64\sfc_os.dll - ok
22:13:48.0692 0x0a1c  [ A99871BA522CB2539AE275AC18CACC8F, CBE1F5B357AAE3EA03E8E0AE2E1A1DE4EDF8F35AD056DCF1DC4E413284C86FC3 ] C:\Windows\SysWOW64\cabinet.dll
22:13:48.0692 0x0a1c  C:\Windows\SysWOW64\cabinet.dll - ok
22:13:48.0700 0x0a1c  [ 1F94EA31C9543B855F53BDAC7792DA4E, 3697D031632C47FC5AAB4208C05A7C4098DF390103CFDE99A512F685AD057F40 ] C:\Windows\SysWOW64\mpr.dll
22:13:48.0700 0x0a1c  C:\Windows\SysWOW64\mpr.dll - ok
22:13:48.0709 0x0a1c  [ DBD02E3E6F061EBBBF9B99A9D7CBA30B, 2C65C129BD1D4279B78E7EDF83F6FB398B705A56A99942F4CA61C9E52D21D25A ] C:\Windows\SysWOW64\winhttp.dll
22:13:48.0709 0x0a1c  C:\Windows\SysWOW64\winhttp.dll - ok
22:13:48.0717 0x0a1c  [ B519848DFA30AE2B306576B51321D102, CFD8BCB7645F2200819224BEB9F10BB226D30FE27B3BB31A35A2889FA301EFF2 ] C:\Windows\System32\ie4uinit.exe
22:13:48.0717 0x0a1c  C:\Windows\System32\ie4uinit.exe - ok
22:13:48.0726 0x0a1c  [ C3E98C42EDF7EF237A4BAB91FEAC7426, FD3E92D629828F8DDD830E1474D86CC71A9C2ED5074EB8D155B578D404A485BE ] C:\Windows\System32\iedkcs32.dll
22:13:48.0726 0x0a1c  C:\Windows\System32\iedkcs32.dll - ok
22:13:48.0735 0x0a1c  [ DBBB05E1AD745B842BA790A3835637C8, D3EE396F81155506881BDABCD18D07F1159FBF246A4083BDC8D75511822ED2E0 ] C:\Windows\System32\timedate.cpl
22:13:48.0735 0x0a1c  C:\Windows\System32\timedate.cpl - ok
22:13:48.0744 0x0a1c  [ 27CEEAA8E6149FC6F2F9EE5E0BDAC5A5, F916E63D253F9D5EAEAD603382CEF8322C923DBA72AE8FF52736178BA6A95E08 ] C:\Windows\System32\actxprxy.dll
22:13:48.0744 0x0a1c  C:\Windows\System32\actxprxy.dll - ok
22:13:48.0752 0x0a1c  [ 5C45623C1A5EC70BCCB3090DB21BF075, 9869D412B1E788B9A5E1326582575CC3B651645E0A47C1C90166577A581564EF ] C:\Windows\System32\msshsq.dll
22:13:48.0752 0x0a1c  C:\Windows\System32\msshsq.dll - ok
22:13:48.0760 0x0a1c  [ 1E642FBD902FB74778F57A76F8D620F5, FB03AC38A844AB5354BBFF211D880D2DCF6D26F3534347A5BADD2CCF29ADD5C9 ] C:\Windows\System32\NaturalLanguage6.dll
22:13:48.0760 0x0a1c  C:\Windows\System32\NaturalLanguage6.dll - ok
22:13:48.0770 0x0a1c  [ 90FABA79E004399E5FC69BBBD016CAF9, 7ABF85A942954912BEB62179664CD5D0554AD90538BAC4DC50D4194F6F6B7782 ] C:\Windows\System32\NlsData0009.dll
22:13:48.0770 0x0a1c  C:\Windows\System32\NlsData0009.dll - ok
22:13:48.0778 0x0a1c  [ C8E7E069468BC0DEAFE69375421FE839, A3746F7CB8E4E2FE754433F3A1514E432159EB53CC41377FC356A424D1B07C2B ] C:\Windows\System32\NlsLexicons0009.dll
22:13:48.0778 0x0a1c  C:\Windows\System32\NlsLexicons0009.dll - ok
22:13:48.0787 0x0a1c  [ 8617350C9B590B63E620881092751BCB, 4D16A2197F9ED9062CFD93061294FB8E1068071D03E72B6CF3C7256F1B454A9B ] C:\Windows\SysWOW64\mswsock.dll
22:13:48.0787 0x0a1c  C:\Windows\SysWOW64\mswsock.dll - ok
22:13:48.0797 0x0a1c  [ 22CFAEB9172F5F198048401485CD0571, 94E0B8590268BD21B035297F5B0C01A4E8958A1DB39A5AA654EA1805BD30CEC2 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
22:13:48.0797 0x0a1c  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
22:13:48.0805 0x0a1c  [ FC62A635063B762E1C3C60EA77279378, 9C7ADE37C9F2F9CC5A79D75260736C3791C7A73FB84BE6B7E575CA31A4B99667 ] C:\Windows\SysWOW64\NapiNSP.dll
22:13:48.0805 0x0a1c  C:\Windows\SysWOW64\NapiNSP.dll - ok
22:13:48.0815 0x0a1c  [ D1A84F7D4CAFCFE2A32149FF418056E5, 1BF29E5E1C541F36DEDCD0DDCCCA0F35D19E94D2655055EE2477439940BAAFF1 ] C:\Windows\SysWOW64\nlaapi.dll
22:13:48.0815 0x0a1c  C:\Windows\SysWOW64\nlaapi.dll - ok
22:13:48.0823 0x0a1c  [ 9E80FF0752E365F97FD2D1D68C2AFDA1, 07924F0966A05A992130D29BBF634214D0DFE4081851ED18B1E334437DD008D0 ] C:\Windows\SysWOW64\wship6.dll
22:13:48.0823 0x0a1c  C:\Windows\SysWOW64\wship6.dll - ok
22:13:48.0828 0x0a1c  [ 690D41DF1D555F96D4898A0F54EBA065, 3A8C9304D49657765DF0FCCEAE2A529982025D8677CCA5930824921F77B8F404 ] C:\Windows\SysWOW64\pnrpnsp.dll
22:13:48.0828 0x0a1c  C:\Windows\SysWOW64\pnrpnsp.dll - ok
22:13:48.0837 0x0a1c  [ C411C80F90D6732380352B98B37BBD53, FC5A45F208072249CAA1CA9A602FEBAD24A87166628275AC15FE37B7EEF00A40 ] C:\Windows\SysWOW64\winrnr.dll
22:13:48.0837 0x0a1c  C:\Windows\SysWOW64\winrnr.dll - ok
22:13:48.0846 0x0a1c  [ A7D525E5C0D91C8C1D84C6BCD25AD77D, BD3D51E302587E33901E5995367B6227743D2385F1420E12C712A62063150318 ] C:\Windows\SysWOW64\rasadhlp.dll
22:13:48.0846 0x0a1c  C:\Windows\SysWOW64\rasadhlp.dll - ok
22:13:48.0854 0x0a1c  [ E572915DB4DAD7F062D99334D9F10BFF, A20FB2F353A75A902CD9C3A06B40D18EA61C4A7AF3BF75D5827773089539C935 ] C:\Windows\System32\networkexplorer.dll
22:13:48.0854 0x0a1c  C:\Windows\System32\networkexplorer.dll - ok
22:13:48.0862 0x0a1c  [ C47F35CC6FA4F1BDBEF8F87AC1A46537, 82EC7041317666D5370690BD2176CF00F5957036C29429319F45045BFFAE9EC2 ] C:\Windows\System32\wuapi.dll
22:13:48.0863 0x0a1c  C:\Windows\System32\wuapi.dll - ok
22:13:48.0870 0x0a1c  [ 8BDE3074EE7BB92030448419E33635C7, F76FC025E299FBD5A39079D730DA382C3B2D210CFAD46E3FD5C19F8BCE825C9B ] C:\Windows\System32\linkinfo.dll
22:13:48.0870 0x0a1c  C:\Windows\System32\linkinfo.dll - ok
22:13:48.0879 0x0a1c  [ E746ED90132C6B6313CE9179F56BD31D, CCE0367148E54AA1413C52CCE752CC75EA9E3A8232ECFC263C62A634B8CAEF5F ] C:\Windows\System32\wups.dll
22:13:48.0879 0x0a1c  C:\Windows\System32\wups.dll - ok
22:13:48.0886 0x0a1c  [ C7A3A633EB888C2BE8892C5C295C4035, BABBBFFE4963FADD2342B245E3137F03732B31474991CCA57480A51D18F7EE23 ] C:\Windows\System32\ieframe.dll
22:13:48.0886 0x0a1c  C:\Windows\System32\ieframe.dll - ok
22:13:48.0895 0x0a1c  [ 0058E2924F2B6483591FAA7C2A6595A7, 02B56386E7C384E9AE4576C4440038E367D3F636E7B7F00F2CF73E33F7BC1719 ] C:\Windows\System32\msiltcfg.dll
22:13:48.0895 0x0a1c  C:\Windows\System32\msiltcfg.dll - ok
22:13:48.0903 0x0a1c  [ 0638E6106FC4E6CC0F93894B7B75DCB2, BA18C33F2BA270ADE73937A4F67537A547481DC125C66D780DF468C1DEDF1E4F ] C:\Windows\System32\msi.dll
22:13:48.0903 0x0a1c  C:\Windows\System32\msi.dll - ok
22:13:48.0912 0x0a1c  [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{F8A3E626-AB0D-4C5E-B68F-9B12BE8E164C}.tmp
22:13:48.0912 0x0a1c  C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{F8A3E626-AB0D-4C5E-B68F-9B12BE8E164C}.tmp - ok
22:13:48.0921 0x0a1c  [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{22269873-0E58-49F1-B0D4-AEC3285BF008}.tmp
22:13:48.0921 0x0a1c  C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{22269873-0E58-49F1-B0D4-AEC3285BF008}.tmp - ok
22:13:48.0930 0x0a1c  [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{04870F9E-51B1-4FF8-B186-A6064A6F3376}.tmp
22:13:48.0931 0x0a1c  C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{04870F9E-51B1-4FF8-B186-A6064A6F3376}.tmp - ok
22:13:48.0941 0x0a1c  [ 079C4723655133D5F74A93E232A2E8A8, 2049AEE2D2102087739EAEFC2076355710426AD6A5A360F85DB2460615253504 ] C:\Windows\System32\ntshrui.dll
22:13:48.0941 0x0a1c  C:\Windows\System32\ntshrui.dll - ok
22:13:48.0951 0x0a1c  [ 82955BAF6EE545110F7CE768AECA4144, 55535CA714D73512CA4230AF8A059340D15A3D745249439B18334168C8D9F946 ] C:\Windows\System32\thumbcache.dll
22:13:48.0951 0x0a1c  C:\Windows\System32\thumbcache.dll - ok
22:13:48.0960 0x0a1c  [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{0A9FF226-60DC-47AC-B4C0-F783C2981B38}.tmp
22:13:48.0960 0x0a1c  C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{0A9FF226-60DC-47AC-B4C0-F783C2981B38}.tmp - ok
22:13:48.0970 0x0a1c  [ 61C090AFC693640742904A4FA2409BBC, C89DF4C3C6C1F4D3B71E03AF5A8AC0C2CEFAB0676D5FF358E687DAE2319C0305 ] C:\Windows\System32\ExplorerFrame.dll
22:13:48.0970 0x0a1c  C:\Windows\System32\ExplorerFrame.dll - ok
22:13:48.0978 0x0a1c  [ 5704BC41D5DCF51E1C96CDDF68786529, 52610F65734C2102D7CFD9BA5CFA348E4FB5CA027FFD443129E8B311C5791F6E ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
22:13:48.0978 0x0a1c  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
22:13:48.0987 0x0a1c  [ FE46A75556E66B8CC472FA75EFF0C347, 8AC30522F5E1F05BFEF15A16D6B7EE1846B8FC69F247B3E5C10590A31A1C032F ] C:\PROGRA~1\MICROS~2\Office12\MSOHEVI.DLL
22:13:48.0987 0x0a1c  C:\PROGRA~1\MICROS~2\Office12\MSOHEVI.DLL - ok
22:13:48.0996 0x0a1c  [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{DDC598A3-8E90-4D8D-A597-E23017C1B3FE}.tmp
22:13:48.0996 0x0a1c  C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{DDC598A3-8E90-4D8D-A597-E23017C1B3FE}.tmp - ok
22:13:49.0005 0x0a1c  [ 43148AC21420A5D802C2F92E66346217, 05E2D720DD83F1EC97822558E2E006EB0B333C695E959ACCA2CC593D1804D408 ] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
22:13:49.0005 0x0a1c  C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe - ok
22:13:49.0014 0x0a1c  [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{E4AA014D-4D52-4493-B4E4-B75052F19242}.tmp
22:13:49.0014 0x0a1c  C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{E4AA014D-4D52-4493-B4E4-B75052F19242}.tmp - ok
22:13:49.0023 0x0a1c  [ 073D5D5558FA05B20431F34E1C24A041, 358CE1EA27AB569CD0F8224FD4A83667A7B767C6A303132F2765E384A09521B6 ] C:\Program Files\TOSHIBA\TBS\HSON.exe
22:13:49.0023 0x0a1c  C:\Program Files\TOSHIBA\TBS\HSON.exe - ok
22:13:49.0031 0x0a1c  [ F276F97F862FECA02984C6DAC0F9F534, 2C75E8046A66206909D431C2808B5474CEC2201B19189579AFBF0D89FC470515 ] C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
22:13:49.0031 0x0a1c  C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe - ok
22:13:49.0040 0x0a1c  [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{1141A17C-01A1-481B-AEA1-30FC7727139B}.tmp
22:13:49.0040 0x0a1c  C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{1141A17C-01A1-481B-AEA1-30FC7727139B}.tmp - ok
22:13:49.0049 0x0a1c  [ FCD439BC51419B5D3257326E2693B227, BC72EB43B8578F77CC83B86ACFF4D8737EB0FB2E2C256440E955AA9185FAF58A ] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
22:13:49.0049 0x0a1c  C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe - ok
22:13:49.0057 0x0a1c  [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{C0AE552F-D2D4-49C9-B350-DF30C9E1D989}.tmp
22:13:49.0058 0x0a1c  C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{C0AE552F-D2D4-49C9-B350-DF30C9E1D989}.tmp - ok
22:13:49.0067 0x0a1c  [ 48DD40677817CE1053C2315F5A87E0D3, 27E6D67E0C62543A5B0BB14814A17240481CEED227A4A58E3E3BEF122039024F ] C:\Program Files\Windows Defender\MSASCui.exe
22:13:49.0067 0x0a1c  C:\Program Files\Windows Defender\MSASCui.exe - ok
22:13:49.0076 0x0a1c  [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{6EB18E8D-4027-49D3-86F5-6925A910295C}.tmp
22:13:49.0076 0x0a1c  C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{6EB18E8D-4027-49D3-86F5-6925A910295C}.tmp - ok
22:13:49.0081 0x0a1c  [ A2BD20AAC8D10C9D21EBAB5D5A8F73C6, E0492DCD12C810294335F3B4B78A42D9BC4A8AF48442D19BF790E93BC1F4BADB ] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
22:13:49.0081 0x0a1c  C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe - ok
22:13:49.0090 0x0a1c  [ 569AC1376B12D4083FC66CC7A304F234, DD209F09573F10A77D710E30EF3D0461D2E8F4E5F18106B18EFB587C88393460 ] C:\Program Files\Microsoft Security Client\msseces.exe
22:13:49.0090 0x0a1c  C:\Program Files\Microsoft Security Client\msseces.exe - ok
22:13:49.0099 0x0a1c  [ E0DD774689998F43167C4799F9B69FC3, 1353CA6DF088D232F3FE1C93F08A6AC9BCEEBB1CF22A39A3EAB6AD30BB4E0588 ] C:\Users\Mitch\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
22:13:49.0100 0x0a1c  C:\Users\Mitch\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe - ok
22:13:49.0108 0x0a1c  [ 8C55E616AE2732760310190EAD161267, 884D757AF038909429CCF86F5D7B4B64AE93B5544917A1ADEF0C89260742ED04 ] C:\Windows\System32\regsvr32.exe
22:13:49.0108 0x0a1c  C:\Windows\System32\regsvr32.exe - ok
22:13:49.0116 0x0a1c  [ 814B65E22070E087479A275AAE1931AC, 5406DBEC5A4083E2C9E061DA585E4CCD6C945BBBBC174882E9B6B12B7BCB2347 ] C:\Windows\System32\control.exe
22:13:49.0116 0x0a1c  C:\Windows\System32\control.exe - ok
22:13:49.0125 0x0a1c  [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{E4ADBB3D-DA2D-43BF-87D6-072925556481}.tmp
22:13:49.0125 0x0a1c  C:\Users\Mitch\AppData\Local\Temp\{E7348F7F-3E8C-4448-AD60-5597C6832AFD}\{E4ADBB3D-DA2D-43BF-87D6-072925556481}.tmp - ok
22:13:49.0134 0x0a1c  [ 9E3244FE8BA484E98461B8619C86F0D5, 610670629C67940705978189AE16C155B67F175073EE82EFC1032A74A5CBCD35 ] C:\Program Files\Windows Calendar\WinCal.exe
22:13:49.0134 0x0a1c  C:\Program Files\Windows Calendar\WinCal.exe - ok
22:13:49.0144 0x0a1c  [ 13E47C975E14031E7DC611191B70FD35, E44F4CE3848222084EA889C8D0F7CA1D4BAD86F54DF8F58A7CEBF0814035CA1A ] C:\Program Files\Movie Maker\DVDMaker.exe
22:13:49.0144 0x0a1c  C:\Program Files\Movie Maker\DVDMaker.exe - ok
22:13:49.0152 0x0a1c  [ 6E3FEFB74326A230237613F2B035C71F, 31E7EEAE4487662CC35E269E5FB3B36F2EA258AD02FFAC34B2600EF147139957 ] C:\Program Files (x86)\Toshiba\ConfigFree\NDSTray.exe
22:13:49.0153 0x0a1c  C:\Program Files (x86)\Toshiba\ConfigFree\NDSTray.exe - ok
22:13:49.0161 0x0a1c  [ BF2DD8B1253FB01CADB9C7C152984C89, 9CECDE12AA3668963AEEB226B064B586FD0D67909D2893E0479433A2DC7975CB ] C:\Windows\ehome\ehshell.exe
22:13:49.0161 0x0a1c  C:\Windows\ehome\ehshell.exe - ok
22:13:49.0169 0x0a1c  [ 40A79FD8516B0331C703840561ADC723, 7A7A21558B6E12ABF8AA8904C812827718280676B8533BEDBDD96B93B0411BC7 ] C:\Program Files (x86)\Toshiba\ConfigFree\cfFncEnabler.exe
22:13:49.0169 0x0a1c  C:\Program Files (x86)\Toshiba\ConfigFree\cfFncEnabler.exe - ok
22:13:49.0178 0x0a1c  [ 8F50FB284B7C97C241F6F53E4C88453B, C40DD2358DDCC10CD85EDC4700C596742BC016139CA3B7FB07E2D2B91119B660 ] C:\Program Files\Windows Collaboration\WinCollab.exe
22:13:49.0178 0x0a1c  C:\Program Files\Windows Collaboration\WinCollab.exe - ok
22:13:49.0186 0x0a1c  [ 5DD36EC36334E0ED4275AA3A55F5D22C, AB532C41032B72C04075B5BC7999763AF1125F543D4A5E16AC5C543B3B18201C ] C:\Program Files\Movie Maker\MOVIEMK.exe
22:13:49.0187 0x0a1c  C:\Program Files\Movie Maker\MOVIEMK.exe - ok
22:13:49.0195 0x0a1c  [ E55DE59CD89138BD973602F9F202E84D, 716F147B37F994F13463D02F9AB1CD2A7682FCFACC765678B91A5D61480F9866 ] C:\Windows\System32\SyncCenter.dll
22:13:49.0195 0x0a1c  C:\Windows\System32\SyncCenter.dll - ok
22:13:49.0204 0x0a1c  [ AE82D962BD3D3EF45EF166DC97BA2FAD, ED4D5C71B63FC7472BB4609F04157A2E71D76A0D88E931898EAB664BEF36B632 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\772c1aff45c1103a0ef19daa3e8fef4b\System.Drawing.ni.dll
22:13:49.0204 0x0a1c  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\772c1aff45c1103a0ef19daa3e8fef4b\System.Drawing.ni.dll - ok
22:13:49.0213 0x0a1c  [ 32BFF048169F9A57B9BBAF2DC90EAC1B, BD7913A2CDE1AAFD8F1594E742C5C6FEA8C7E3DC62804B0CCAEC507E8CE13608 ] C:\Windows\System32\stobject.dll
22:13:49.0214 0x0a1c  C:\Windows\System32\stobject.dll - ok
22:13:49.0221 0x0a1c  [ 53835C26153DF03322B6378ADDF070B4, A63B5844D567749E8FFF06BFDE2E6B59F60BD1CE79141221F3E3205C2926C89B ] C:\Program Files (x86)\Toshiba\ConfigFree\CFUPNP.dll
22:13:49.0221 0x0a1c  C:\Program Files (x86)\Toshiba\ConfigFree\CFUPNP.dll - ok
22:13:49.0231 0x0a1c  [ 7DF1E7B35C39D656850CFE237503F3F7, 1208584D71A968A40B4777F4923478676711FEEF2513042A2E5D85AF86492C0C ] C:\Program Files (x86)\Toshiba\ConfigFree\CFP2API.dll
22:13:49.0231 0x0a1c  C:\Program Files (x86)\Toshiba\ConfigFree\CFP2API.dll - ok
22:13:49.0238 0x0a1c  [ 93E888DA525F3DA1D8A94C174DDCC7C0, 03D5B3B5F019EF23AE0BAB7589ED470F68AD554D399ADA727EBEA18953E23ACC ] C:\Windows\System32\batmeter.dll
22:13:49.0238 0x0a1c  C:\Windows\System32\batmeter.dll - ok
22:13:49.0247 0x0a1c  [ 7A3E47A6F167E6B9835A6DC2CA20C9D8, D86406C9D33AC9F00F8A5E856479F2EF06489CCAFB07A8C073F98BD274F23CD6 ] C:\Program Files (x86)\Toshiba\ConfigFree\OpenProp.dll
22:13:49.0248 0x0a1c  C:\Program Files (x86)\Toshiba\ConfigFree\OpenProp.dll - ok
22:13:49.0257 0x0a1c  [ E6F96E5D4F389DE561F95BA4DDCD0E9C, BC6E56D03B04ADBA5385A4C559611BD3CC89D40D79D9206E37138D2A6ED5F59F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e49a96627b593554a0898c49a4dcafb7\System.Windows.Forms.ni.dll
22:13:49.0257 0x0a1c  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e49a96627b593554a0898c49a4dcafb7\System.Windows.Forms.ni.dll - ok
22:13:49.0265 0x0a1c  [ 7FB82497FBBF96ACC9E143E7F183BFA7, 18FEA868351AE6CA67E9FF650437F9412CC0DC1AC239C9F921392FD53735D4DB ] C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe
22:13:49.0266 0x0a1c  C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe - ok
22:13:49.0274 0x0a1c  [ 5C8C51B679B947F3DF948533C0926240, 4F9A986A589AD82F72C6EF7D3AC086D8B4F740EBCE181BA6E86C0C79BDC5EB7E ] C:\Windows\System32\SndVolSSO.dll
22:13:49.0274 0x0a1c  C:\Windows\System32\SndVolSSO.dll - ok
22:13:49.0283 0x0a1c  [ FF0729002E081668620A681182D63FE6, F98D5B48CABB8F112BFEA4F7F7652E246B811F78B7AEE4014F8C4354AC5E2203 ] C:\Windows\System32\wuapp.exe
22:13:49.0283 0x0a1c  C:\Windows\System32\wuapp.exe - ok
22:13:49.0291 0x0a1c  [ AB530FDD34C67B497A20171D1234CFE9, B9948F733E892B1742804C715EAA72F248944F9EE1EEE35DF8A63725BC847C1F ] C:\Windows\SysWOW64\riched32.dll
22:13:49.0291 0x0a1c  C:\Windows\SysWOW64\riched32.dll - ok
22:13:49.0299 0x0a1c  [ 0CFCDE5D9D074D96B78D1F1CBF1AAB1D, 15A579FDE0288BC732DF0C092A8269159D4D7B8AAC13E78B1D444899EE1CE478 ] C:\Windows\SysWOW64\riched20.dll
22:13:49.0299 0x0a1c  C:\Windows\SysWOW64\riched20.dll - ok
22:13:49.0307 0x0a1c  [ FF253B202C460492B9A35C457066CCC0, 1EA884F4DEBE561520A6B8CFCF660864B72A79352FD646EC63E1C842525718A9 ] C:\Windows\ehome\ehSSO.dll
22:13:49.0307 0x0a1c  C:\Windows\ehome\ehSSO.dll - ok
22:13:49.0316 0x0a1c  [ 30F0DC266B46118E9FBCF5B2A30EB1DB, 72C59BBD1590EAD91D92C07B3434BE308639CE773E8A2E72751E5396B4B10BA5 ] C:\Windows\SysWOW64\wbem\wbemprox.dll
22:13:49.0316 0x0a1c  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
22:13:49.0325 0x0a1c  [ 74B8C2EA72D43727142D12397D5A49F9, 37E8858211D7BF9DE90CBD22863B18A939C43BA64CAD06229E994A417BD46B0D ] C:\Windows\SysWOW64\wbemcomn.dll
22:13:49.0325 0x0a1c  C:\Windows\SysWOW64\wbemcomn.dll - ok
22:13:49.0333 0x0a1c  [ AA6FAA30D3D0D4424DBA3D74D1CA1E14, 757F0D5A8C6C28AA5D52AE34E294259D96CD9FB58DA569527A495DAB9CC52DB0 ] C:\Windows\System32\netshell.dll
22:13:49.0334 0x0a1c  C:\Windows\System32\netshell.dll - ok
22:13:49.0343 0x0a1c  [ DB0F37DBA4C245C61E5936DDBDE62438, 2DB2979BAF792DA74584E380055F233B9CEF51BCBF992CA84A79AD81A23C1663 ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
22:13:49.0343 0x0a1c  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
22:13:49.0358 0x0a1c  [ BC5A34B6A14C93BF04E3F4E8EA57090A, 55F71740FBA3A079B81A045C81088C39176D44358ED28F568C198F338400E017 ] C:\Windows\SysWOW64\wbem\fastprox.dll
22:13:49.0358 0x0a1c  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
22:13:49.0372 0x0a1c  [ DE95622B09554A70DB4F035D197330BF, F24F87402989B3F3A3328EAB6AD76A38161EC98AFD4EE8E7D5C7B7F0EEE8D3DD ] C:\Windows\System32\pnidui.dll
22:13:49.0372 0x0a1c  C:\Windows\System32\pnidui.dll - ok
22:13:49.0382 0x0a1c  [ E97B6931B5629D7E9F6EE29A68FD6123, B629CE14E3C762C92A94E600819EBB626C244006EFFD4B926E006911F9601D8D ] C:\Windows\System32\wbem\WmiPrvSE.exe
22:13:49.0382 0x0a1c  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
22:13:49.0390 0x0a1c  [ 9DD626CC4FB7CAAC19B2F4C33CD6A2A3, 356A67C149434864734BC369376C1B9282FAA812CA69B56C0675775297079363 ] C:\Windows\System32\fdProxy.dll
22:13:49.0390 0x0a1c  C:\Windows\System32\fdProxy.dll - ok
22:13:49.0400 0x0a1c  [ 31519A9B25D4A8998EEC9C81E69269D9, 84958ACA09DBE8CF0053F0E995659889D84032F980F8EDDA08DA35DB2A881F6D ] C:\Windows\System32\fdWSD.dll
22:13:49.0400 0x0a1c  C:\Windows\System32\fdWSD.dll - ok
22:13:49.0408 0x0a1c  [ F50B03EB7C150E44DF2843F2138D4F70, 9644E42FE83219D31E63D08EAC3DC0A2A2106DA81391ABEDFE69066B9895A516 ] C:\Windows\System32\mlang.dll
22:13:49.0408 0x0a1c  C:\Windows\System32\mlang.dll - ok
22:13:49.0416 0x0a1c  [ 39872A309B2DB96738AF44402F7BD43C, 28313207C1D9C17CA447B58DCA2CF89A4F7120A03DEB253DD00301732FF7A7B6 ] C:\Windows\System32\rasdlg.dll
22:13:49.0416 0x0a1c  C:\Windows\System32\rasdlg.dll - ok
22:13:49.0424 0x0a1c  [ DDCDE414B6DB14707DBD504EB23EF13E, A7BFBB5475609869E47E583F9A45707D1270505CF3155BF502515E8F11CB3A2A ] C:\Windows\System32\fdSSDP.dll
22:13:49.0425 0x0a1c  C:\Windows\System32\fdSSDP.dll - ok
22:13:49.0434 0x0a1c  [ F77B49A32331FA80F11C86877A6700DB, 1303F3EBE9FC149074E2ADB26C48882C8CC127838ABF9A921C38EE5EE9CE4D15 ] C:\Windows\System32\mprapi.dll
22:13:49.0434 0x0a1c  C:\Windows\System32\mprapi.dll - ok
22:13:49.0441 0x0a1c  [ 376FAD0BD6E157205C8144D23A66493D, F2F3D6780AAE65B788D12AC04ECB2355D45ED249F30CBF813EB078D9EF2A9249 ] C:\Windows\System32\wbem\cimwin32.dll
22:13:49.0441 0x0a1c  C:\Windows\System32\wbem\cimwin32.dll - ok
22:13:49.0449 0x0a1c  [ FDAC777249FC4A5ED75FF3F563817FA1, BEC8A33AB3D3605CB712D57F9883497ED651C3C914731BD7320852769CA12D51 ] C:\Windows\System32\AltTab.dll
22:13:49.0449 0x0a1c  C:\Windows\System32\AltTab.dll - ok
22:13:49.0458 0x0a1c  [ 6B28D35E4C2C9D9ABA083EE4F9FD51CC, 85E9359335209F0B06F23DCB367A44EF4C52AF839989A6FD8BD9FE041F597C52 ] C:\Windows\System32\WPDShServiceObj.dll
22:13:49.0458 0x0a1c  C:\Windows\System32\WPDShServiceObj.dll - ok
22:13:49.0466 0x0a1c  [ A0A92B5F2926C52A3FF415E928BC9301, BAB574578F74AF0D0EA3ADD36E0051DDEA8C5916D30E74EE919D552313D34857 ] C:\Windows\System32\PortableDeviceTypes.dll
22:13:49.0466 0x0a1c  C:\Windows\System32\PortableDeviceTypes.dll - ok
22:13:49.0474 0x0a1c  [ BFEFE6082328C37E7A441143E5ADCA31, C76CCC566B989A998A362E50B72A6EB6FAEE2C6E8B931C7E3230DC960A069D32 ] C:\Windows\System32\framedynos.dll
22:13:49.0475 0x0a1c  C:\Windows\System32\framedynos.dll - ok
22:13:49.0483 0x0a1c  [ 98C42F36A13C25E099F1E081EB4EC59D, E25CCC5088763896A740E812554E20B60A1DB47B315C1CB7E66DE151E27FA5A4 ] C:\Windows\System32\wmi.dll
22:13:49.0483 0x0a1c  C:\Windows\System32\wmi.dll - ok
22:13:49.0491 0x0a1c  [ 9B271EAD0AE5907EABC3A7BE072C323E, 3F3E36A78E694B81ECF6C5A8CA37D5832AFB6E84627A5D8952D26FCC2B9216B4 ] C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\PCMAgent.exe
22:13:49.0491 0x0a1c  C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\PCMAgent.exe - ok
22:13:49.0500 0x0a1c  [ D0D44370770D491E6BA472C855883422, 53DF6D40663F5FDF0C20D5561C64CC6C25876593C74F34B6275FA215BFA7CE44 ] C:\Windows\SysWOW64\msxml3.dll
22:13:49.0500 0x0a1c  C:\Windows\SysWOW64\msxml3.dll - ok
22:13:49.0509 0x0a1c  [ B6D5917CF9FDA3B434AD908559EBD2B3, 2F45154B36A4ACEFFC59E6188715FB8ECBEE638F897E0BA8E797E6FD069535B8 ] C:\Windows\System32\srchadmin.dll
22:13:49.0509 0x0a1c  C:\Windows\System32\srchadmin.dll - ok
22:13:49.0518 0x0a1c  [ 9A815510679C7ECD04ED194A9C9C25E5, 70948AC76A09C1565D062497F0C1696DBD10980EB01C34650A8BDC6EAB9F95A4 ] C:\Program Files (x86)\Toshiba\ConfigFree\CFSwMgr.exe
22:13:49.0518 0x0a1c  C:\Program Files (x86)\Toshiba\ConfigFree\CFSwMgr.exe - ok
22:13:49.0527 0x0a1c  [ D7CEAEDD5F75D2C8A2E80887D7C114CE, 44D7D7BBF8643D4168A3B0369AB88C83A156943FB6295FAF8E131C55F080ED19 ] C:\Windows\System32\webcheck.dll
22:13:49.0527 0x0a1c  C:\Windows\System32\webcheck.dll - ok
22:13:49.0537 0x0a1c  [ 166D74046CE5D2B0696A335B8A8633E1, 271EE83A34E158A34960E081E7458D76D9107F41DB0F4126FCDB04C0206DB37C ] C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe
22:13:49.0537 0x0a1c  C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe - ok
22:13:49.0546 0x0a1c  [ 8B9145D229D4E89D15ACB820D4A3A90F, F3831D9AE752B6AFBD3380E0BC849E4B051D6E06A88C1F61293A6DE4F66794E1 ] C:\Program Files (x86)\Adobe\Reader 8.0\Reader\reader_sl.exe
22:13:49.0546 0x0a1c  C:\Program Files (x86)\Adobe\Reader 8.0\Reader\reader_sl.exe - ok
22:13:49.0557 0x0a1c  [ E1E71D80D078C576801B6FE2A29FCF85, 7A8911FF626E5EEC01D7C1922F8AD6901EFC75952ADB3FAF606506C7DB4BC54A ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
22:13:49.0557 0x0a1c  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
22:13:49.0566 0x0a1c  [ 70DD82E202BD8022452DC8D2B73231AA, C15338FA59489E1B38C0B5FCEEF8308100A1D765877254CFD5F30B2D150D2916 ] C:\Windows\System32\wscntfy.dll
22:13:49.0566 0x0a1c  C:\Windows\System32\wscntfy.dll - ok
22:13:49.0574 0x0a1c  [ FA2A3AFADC4FB47DBC234A4E57F92CDB, D8394B8BD8919D3CACA73ECB23B156B460D18E463FCF7436E4856208F17434AF ] C:\Windows\SysWOW64\ddraw.dll
22:13:49.0574 0x0a1c  C:\Windows\SysWOW64\ddraw.dll - ok
22:13:49.0583 0x0a1c  [ EF764E33878B3A4A9E5A2FB5D0D031D0, 02D5A718AE02F07B304377B4A1FF7BC4456489F020CFE797B6E98A0344EA63DE ] C:\Windows\SysWOW64\dciman32.dll
22:13:49.0583 0x0a1c  C:\Windows\SysWOW64\dciman32.dll - ok
22:13:49.0588 0x0a1c  [ 9B96F6952186336CC6E3D4E08BE2E0AF, B7DFB14DB60D84062B7E2A2293A4F3F5EF986108EF3C9C1E1CDC284F61981731 ] C:\Windows\SysWOW64\dwmapi.dll
22:13:49.0589 0x0a1c  C:\Windows\SysWOW64\dwmapi.dll - ok
22:13:49.0598 0x0a1c  [ B1DB5EDB658F3FF4F13AC069CE622893, D4AC66DD9CF9EE4770AA34936EE28844D2BE39968727E8A9CAAB9E9A09387CC6 ] C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
22:13:49.0598 0x0a1c  C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe - ok
22:13:49.0608 0x0a1c  [ 8AAEEE8E59A70F37579993D118A34EE0, 9DC8618557B0D852EEA1163CF312EB68F8DF42486E4E76A74926CF99DB06AC92 ] C:\Windows\SysWOW64\d3d9.dll
22:13:49.0608 0x0a1c  C:\Windows\SysWOW64\d3d9.dll - ok
22:13:49.0617 0x0a1c  [ F7DD2D785280DB73DC9060F80361BEFB, 7AF1114FFA46290DC77CC5D562034287A0E617BD4747F58E65CDF70244C402CB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
22:13:49.0617 0x0a1c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
22:13:49.0627 0x0a1c  [ DBC0B012A13C7738871D569005DEB5D1, 0A8EAC95732D1F966DC869B977B8D730F3271AB3D4A24BE628CBB5C4A83E63D4 ] C:\Windows\System32\bthprops.cpl
22:13:49.0627 0x0a1c  C:\Windows\System32\bthprops.cpl - ok
22:13:49.0638 0x0a1c  [ AF43C4F7F3C8BC95DAD95024F96CDC4A, 6348F6D8F301C5F7290B963D6923E389414ADFBCF6AED562A32245BCADC05580 ] C:\Program Files (x86)\QuickTime\QTTask.exe
22:13:49.0638 0x0a1c  C:\Program Files (x86)\QuickTime\QTTask.exe - ok
22:13:49.0646 0x0a1c  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC, 372AF797353F9335915CD06D4076BAB8410775DCAF2DAC0593197D7C41BBFFB2 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
22:13:49.0647 0x0a1c  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
22:13:49.0657 0x0a1c  [ E681281D9BFC9D45D3B72532717E5880, 8A610E0EEF81BE797EE58E94C3EBD7C05ACB97B2A9F02BEC6A5D678D1013449B ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
22:13:49.0657 0x0a1c  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
22:13:49.0665 0x0a1c  [ B4D787DB8D30793A4D4DF9FEED18F136, 2A956F7DCFE61E556F30BDA6D45592A05533541D6ED321C251C1C05F6CEA6DDC ] C:\Windows\System32\drivers\cdfs.sys
22:13:49.0665 0x0a1c  C:\Windows\System32\drivers\cdfs.sys - ok
22:13:49.0677 0x0a1c  [ 2EBE05FD8ECBA5F230FC26E534E91A11, B8E85D51BD4E6C0D4D447DFA327EAA0AE4A33F04F42063A58122153933C1770E ] C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
22:13:49.0677 0x0a1c  C:\Program Files (x86)\Citrix\ICA Client\concentr.exe - ok
22:13:49.0688 0x0a1c  [ 92DA9EDE07390B4352B29DD82079E398, 8140FF0CD2BB08CA92C0303B2439F4FCEFD59C7F4A772F1277B29FE0B77F5A67 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
22:13:49.0688 0x0a1c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
22:13:49.0698 0x0a1c  [ 17D9622BFE68386E8C647C4C7F8FEA3E, 50F943F2E47512DCE61A9EBB188361CB71CACC74D9397FA1367AB7112F2C7A09 ] C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
22:13:49.0698 0x0a1c  C:\Program Files (x86)\Citrix\ICA Client\redirector.exe - ok
22:13:49.0707 0x0a1c  [ D9BCE2CA8488531BBA89B5ABC52E2AE9, BD65CE8F38638B1BDBAD54A804E090470FF9A7355181EF4F8C3F810A774A6E90 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\a4378e0fbc6805b0105c98860061efa7\System.Management.ni.dll
22:13:49.0707 0x0a1c  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\a4378e0fbc6805b0105c98860061efa7\System.Management.ni.dll - ok
22:13:49.0715 0x0a1c  [ CD6DA5770CAE9D5E6E86722E17B442E0, 9F0EE70460FFA43E869C3821F0AF6646D97E0F463A87B50B167ECAD44DF2E523 ] C:\Windows\SysWOW64\d3d8thk.dll
22:13:49.0715 0x0a1c  C:\Windows\SysWOW64\d3d8thk.dll - ok
22:13:49.0724 0x0a1c  [ 8B22CF51B907E3A221267CF1E502993A, CC5F9F8DC4F1BCC53EDEA3602D5E1635D627007C6EEA51491A67C84E66D7374A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
22:13:49.0725 0x0a1c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
22:13:49.0733 0x0a1c  [ 8E29B921BC400F51276F781C4CFB87F6, BAEA7F3F0B412DE9F0F3A7E27DF451796728DE55476831C2AC8B5B1993AD5934 ] C:\Windows\System32\oobefldr.dll
22:13:49.0733 0x0a1c  C:\Windows\System32\oobefldr.dll - ok
22:13:49.0742 0x0a1c  [ ED10D55B28FCD8A6DEA09AE3FE20EC3A, B23D98E52367EADB455CACCB4F0776A4F9F73485FA0E7DC0BE90CA54482BA697 ] C:\Windows\System32\imapi2.dll
22:13:49.0742 0x0a1c  C:\Windows\System32\imapi2.dll - ok
22:13:49.0751 0x0a1c  [ F35A584E947A5B401FEB0FE01DB4A0D7, 4DA5EFDC46D126B45DAEEE8BC69C0BA2AA243589046B7DFD12A7E21B9BEE6A32 ] C:\Windows\SysWOW64\MFC71.dll
22:13:49.0752 0x0a1c  C:\Windows\SysWOW64\MFC71.dll - ok
22:13:49.0760 0x0a1c  [ 054B87C872292A960B9B8A834B34DFA7, 081792BEF2BBB71B5A4F6EF23711B8E375ED326010CF1F537BBFFEB979970DED ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
22:13:49.0761 0x0a1c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
22:13:49.0770 0x0a1c  [ DECD05BB90A3AB3F3A31B86971DCAEFA, C686D195E527001EDEB8BD7E3F1CCDEFDA57EAE2DED653D5CA5829F256C6F8C7 ] C:\Program Files (x86)\Citrix\ICA Client\ctxmui.dll
22:13:49.0770 0x0a1c  C:\Program Files (x86)\Citrix\ICA Client\ctxmui.dll - ok
22:13:49.0778 0x0a1c  [ 6631DE2FA7ADE0B2C5451FDEF79D4323, 98A2D30363620A4CAC8AEBB31889F08B08C0EC07390E0D0D766CE2CD36D6BFC0 ] C:\Program Files (x86)\Citrix\ICA Client\CCMSDK.dll
22:13:49.0778 0x0a1c  C:\Program Files (x86)\Citrix\ICA Client\CCMSDK.dll - ok
22:13:49.0787 0x0a1c  [ 86F1895AE8C5E8B17D99ECE768A70732, 8094AF5EE310714CAEBCCAEEE7769FFB08048503BA478B879EDFEF5F1A24FEFE ] C:\Windows\SysWOW64\msvcr71.dll
22:13:49.0787 0x0a1c  C:\Windows\SysWOW64\msvcr71.dll - ok
22:13:49.0795 0x0a1c  [ 561FA2ABB31DFA8FAB762145F81667C2, DF96156F6A548FD6FE5672918DE5AE4509D3C810A57BFFD2A91DE45A3ED5B23B ] C:\Windows\SysWOW64\msvcp71.dll
22:13:49.0795 0x0a1c  C:\Windows\SysWOW64\msvcp71.dll - ok
22:13:49.0803 0x0a1c  [ 638C7596B493F5F77DB9EF6BAD8FE46C, 98077E0E65D89D5DEBC02F12BA00D00B355D4EEA5FEC36E69D39312019E3DD1E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
22:13:49.0803 0x0a1c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
22:13:49.0812 0x0a1c  [ 3606CE1AC3D6A9A9CB7DB35D7F5C54EC, 220911A88EF333BAC01062CC9E83566DBC12B1564D5B58C3A8A039DFDFDB7C6C ] C:\Windows\SysWOW64\shfolder.dll
22:13:49.0812 0x0a1c  C:\Windows\SysWOW64\shfolder.dll - ok
22:13:49.0820 0x0a1c  [ E582816A4855914DEFFC212E12B3B744, B59C692FE8D19A2D9615D12C6026854C3467B25B3630183D766A32A9584C3115 ] C:\Windows\SysWOW64\wsock32.dll
22:13:49.0820 0x0a1c  C:\Windows\SysWOW64\wsock32.dll - ok
22:13:49.0828 0x0a1c  [ 6C5E3F6EF8E1BFCC53FD35668D1F4829, C32243FB8E4CC6731B91BF54F8D44BD1A6B5DF9B61B2D27F6DEE2B7052CE2C48 ] C:\Windows\SysWOW64\atiumdag.dll
22:13:49.0828 0x0a1c  C:\Windows\SysWOW64\atiumdag.dll - ok
22:13:49.0837 0x0a1c  [ E7E49ED14A52D839DAD6A7EF0251C16F, FEA57C6134A6EFE84ED3F0479E6F49F49E635914F7795D64A03B4D62AC6C76AB ] C:\Program Files\Camera Assistant Software for Toshiba\hookdll.dll
22:13:49.0837 0x0a1c  C:\Program Files\Camera Assistant Software for Toshiba\hookdll.dll - ok
22:13:49.0843 0x0a1c  [ 99AB67AA6F392E4F7BF443F2CD63CAF5, 63C0A551EE366ACCCFF4A17EB5D5D5DD05925068F18E5C2A43272DDB8B79C136 ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\ctxmuiUI.dll
22:13:49.0843 0x0a1c  C:\Program Files (x86)\Citrix\ICA Client\resource\en\ctxmuiUI.dll - ok
22:13:49.0853 0x0a1c  [ 794950DB77AA590C2964ECA0A5874A09, DB686B0F7EC16ED6C4827FB5E85B9C87E6B806A18A95E37633DE22D4972F8F25 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
22:13:49.0853 0x0a1c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
22:13:49.0862 0x0a1c  [ 250BF888DDBE88D61EB19A9D4957C794, E0B07BCFB007B2192D1092612506FE48E5D0A18345ABFC7D188D4F11889C843E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
22:13:49.0862 0x0a1c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
22:13:49.0871 0x0a1c  [ 5A963C340DE1A01BA6E24945CE05D16A, 0CC79B72D03621D6FA4E7A8F3B10125A531C1D19098189671FBE3687E3E70E33 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
22:13:49.0872 0x0a1c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
22:13:49.0880 0x0a1c  [ 95F1EB99B81CFD6F581C85F0A0AA9B2B, 65EE7016E6235880C4443119BF32CF12D4A9A9CA3810B974B575AD31D380A7FB ] C:\Windows\SysWOW64\FirewallAPI.dll
22:13:49.0880 0x0a1c  C:\Windows\SysWOW64\FirewallAPI.dll - ok
22:13:49.0889 0x0a1c  [ 8755DF630F5477EE1A3CCB00D0A3D0CD, D618AF5736146D18664C37A99E5607532F042072CA1455EDBF9970AD1DD4B063 ] C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMediaLibrary.dll
22:13:49.0889 0x0a1c  C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMediaLibrary.dll - ok
22:13:49.0897 0x0a1c  [ 3F4ECB1DE53786E83EE3713D6FBE1B01, 5986C5D5CDCD089466B5BBF20FDD02F62C9204C426E86EDB715F876E711E36AB ] C:\Windows\SysWOW64\atiumdva.dll
22:13:49.0898 0x0a1c  C:\Windows\SysWOW64\atiumdva.dll - ok
22:13:49.0907 0x0a1c  [ F4BC62990E7E5C29799A895B80FC3177, 57772AB986BA00B3C2730184D94A76E932CA94000119D0E63407F3DF9867238A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
22:13:49.0907 0x0a1c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
22:13:49.0916 0x0a1c  [ 149D74E1128A86DC9CFB2851FBEA11EB, 95E2FF3379DEE729089CF85140C4D4C202B7FEFE239024D48DFFD5CB1E7415BC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
22:13:49.0916 0x0a1c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
22:13:49.0925 0x0a1c  [ 0A8A607ADDD40D71B79574E71C1A5E27, A752C27CF7C341E0D5744DD5A03DF4060D4F16F8356CF7EEE9B07748EB32DA7A ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\concenUI.dll
22:13:49.0925 0x0a1c  C:\Program Files (x86)\Citrix\ICA Client\resource\en\concenUI.dll - ok
22:13:49.0934 0x0a1c  [ 2424231BBD703A677D115C29983B4293, B33022D9BEE7B8B472A73C242578089D02CD683EBDD41CB519AEDC6C18E5D485 ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
22:13:49.0935 0x0a1c  C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
22:13:49.0942 0x0a1c  [ 4AAFC7461633848AA87A363B2CBEC522, F2A452B5B71293011EED8CD5ABFA8D0B0761A92D4579CF9D98B1D2DC06D16791 ] C:\Windows\SysWOW64\winsta.dll
22:13:49.0942 0x0a1c  C:\Windows\SysWOW64\winsta.dll - ok
22:13:49.0950 0x0a1c  [ 95B9E747FB0AA28F97F8EAAD9711F5E5, EC6BE3D9E52913DD7C1A888D4D875F5A1B2D2ADFB016C09E8711A50F5A1A0C01 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
22:13:49.0950 0x0a1c  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
22:13:49.0959 0x0a1c  [ 11D415DB881C617288D3CB81BB1FE51D, A39662615A7322EACBE22ADE7332287846DDD220D9A551B902D5078222D8FEAE ] C:\Windows\System32\wbem\NCProv.dll
22:13:49.0959 0x0a1c  C:\Windows\System32\wbem\NCProv.dll - ok
22:13:49.0968 0x0a1c  [ 615DC3A0F69A101BCBE63DF30960A2B4, 28529B98658DC5210C5BEFC71D4F7B3D71575991D5568351F6DF3E6AA2662DAE ] C:\Windows\SysWOW64\atipdlxx.dll
22:13:49.0968 0x0a1c  C:\Windows\SysWOW64\atipdlxx.dll - ok
22:13:49.0976 0x0a1c  [ C385D4D4EC16E637AA4D2D18A06E80C9, 4578F190BB35FD5E473A96EFA31FCA489D4EAAA607455AB6675BAA7130791D6B ] C:\Windows\SysWOW64\TosBtAPI.dll
22:13:49.0976 0x0a1c  C:\Windows\SysWOW64\TosBtAPI.dll - ok
22:13:49.0985 0x0a1c  [ 06FDEA0167BAD4CDE26210F92F33FDBA, 700E491D8A0EF666A3D9753A5A4271484E91BB5C776211E44521811A79646541 ] C:\Windows\System32\wbem\wbemcons.dll
22:13:49.0985 0x0a1c  C:\Windows\System32\wbem\wbemcons.dll - ok
22:13:49.0993 0x0a1c  [ 224EF073B449059DF648FC514B5A0074, C72E254F74AD43E502965E8D0F2B45EEBAB9C27A1E05741A7B48EC9B59100D08 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
22:13:49.0993 0x0a1c  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
22:13:50.0002 0x0a1c  [ 2CDEF39641BC63A337B6EA13E61B32C6, 6495B5D6F06BE3DE6FD150854CA7556BDBBF8CF5FDCA4DF0E4267FFDDD56DB98 ] C:\Windows\SysWOW64\TosBdAPI.dll
22:13:50.0002 0x0a1c  C:\Windows\SysWOW64\TosBdAPI.dll - ok
22:13:50.0010 0x0a1c  [ 30C83447379D5955E992BD43BE8D115E, F740DA09522983A8C68036CC58295E577790116CC5AAA546EFB32EE8AB56569A ] C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
22:13:50.0010 0x0a1c  C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll - ok
22:13:50.0018 0x0a1c  [ 3A2EEE8444A8E5C1A454C57B2198F5FC, 6B21A65BBCF9E86193BD8ABC3FAE897B4EB55758E52BE4B9F24BE1C98C73A333 ] C:\Windows\SysWOW64\ntlanman.dll
22:13:50.0018 0x0a1c  C:\Windows\SysWOW64\ntlanman.dll - ok
22:13:50.0027 0x0a1c  [ 9BBD858EEC0AA9894B8063218CF1D19D, 1BA81D1CB668D151A42A836FFF9D7DA1B1BCF8DF21A52E983AAEEC015ECFEB87 ] C:\Windows\System32\upnp.dll
22:13:50.0027 0x0a1c  C:\Windows\System32\upnp.dll - ok
22:13:50.0035 0x0a1c  [ 582EFE56FC0858E58A6CEBA2A64B02C7, 569F05DC50651165FD734C19767C10E7C9DFF03157B8222C59544A35A38E1C75 ] C:\Windows\SysWOW64\drprov.dll
22:13:50.0036 0x0a1c  C:\Windows\SysWOW64\drprov.dll - ok
22:13:50.0043 0x0a1c  [ CFBD2E1FE18B50748A76703A2DC6D4E3, 5D553B3CBCC404555DEE7F58102B62A02A968EEDB99E1029624327F0A914D08E ] C:\Windows\SysWOW64\davclnt.dll
22:13:50.0043 0x0a1c  C:\Windows\SysWOW64\davclnt.dll - ok
22:13:50.0054 0x0a1c  [ B1CDA377B2C8DCD8FA3DB8501647031D, 46E36E318F73E957713D6215DC4F66AAB6D9056DD558634C2007CFEF82E05231 ] C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\Common\CLRCEngine3.dll
22:13:50.0054 0x0a1c  C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\Common\CLRCEngine3.dll - ok
22:13:50.0061 0x0a1c  [ 37CF2461CB5E40C4CFAB82C8FC79A2BC, C5CFDAC82B1B9AEAABF94DB04324DBA56FA2DB23CE780504D811D3F90F254231 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
22:13:50.0062 0x0a1c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
22:13:50.0071 0x0a1c  [ 28B9DBA6201AEDDC65C15FA48939804A, CE81EBAE1AFB060AADF52F5885ABC8582EBE3A5E4985E7FB6F3523CE18628D03 ] C:\Windows\SysWOW64\wmp.dll
22:13:50.0071 0x0a1c  C:\Windows\SysWOW64\wmp.dll - ok
22:13:50.0080 0x0a1c  [ 1BCF5EBCCF81C840F2677706BEFF0123, EE67C729818C890FBCA96829C34293281E93516021D6C2C185A508BA8AB709A3 ] C:\Windows\System32\WinSATAPI.dll
22:13:50.0080 0x0a1c  C:\Windows\System32\WinSATAPI.dll - ok
22:13:50.0090 0x0a1c  [ E02903F81A692683E4254E9D7C6A5D2A, F9CA6B24E5F710D7AB573A1A348EAD2825BFBDF99B8A99E867A00717FCD6AA1C ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\b4b477600d28a9e2ee66eb0ec4bfbaa7\System.Configuration.ni.dll
22:13:50.0090 0x0a1c  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\b4b477600d28a9e2ee66eb0ec4bfbaa7\System.Configuration.ni.dll - ok
22:13:50.0095 0x0a1c  [ 0A7DC8E9EE81EE2B8DAA1C39D749D4D7, 92FCD50CF445DAB31E1C7136FED4FA17FD01346CC6BBDACABC57F086280026F4 ] C:\Users\Mitch\AppData\Local\Citrix\Receiver\WindowsAppRHelper_concentr.exe.dll
22:13:50.0095 0x0a1c  C:\Users\Mitch\AppData\Local\Citrix\Receiver\WindowsAppRHelper_concentr.exe.dll - ok
22:13:50.0105 0x0a1c  [ E75963624A3F55C90AC8A7C2E65072FF, AF84561F7A15215DBB573038AF5EE9EAF0760217D7C844917C4172A6D4D6F960 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
22:13:50.0105 0x0a1c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
22:13:50.0113 0x0a1c  [ FC33CBBB9CADCEC307DA010FE763D04C, 72414A0637D5A3E766CFC3B0B3E8865C1D939B81E4292D5E5D4E17CC7E0B1EE2 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
22:13:50.0113 0x0a1c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
22:13:50.0122 0x0a1c  [ BC687BE08AF06AB5FE481BFAFFC55C6D, DE08D9968542A797393E3FB8EBCCB8ED7F063A4CD05464B494F61064F33F6859 ] C:\Windows\System32\dot3api.dll
22:13:50.0122 0x0a1c  C:\Windows\System32\dot3api.dll - ok
22:13:50.0130 0x0a1c  [ B79515AFF098E5A56DFBD316152534DE, D796DCC8E363744FBC75426B0B64F083A3C82B984F76216796E2B2D55325DA15 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
22:13:50.0131 0x0a1c  C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
22:13:50.0140 0x0a1c  [ D86A2D30934F2192E477D4159632AD63, 87C5796E7ABBB843B502508436EDB2D76D2577B9BACA4776F724B46109127E1A ] C:\Windows\System32\wlanhlp.dll
22:13:50.0140 0x0a1c  C:\Windows\System32\wlanhlp.dll - ok
22:13:50.0149 0x0a1c  [ A98C8BA7036258DC73A41FDF326320C8, AF4C1014D4C4A8311531DDB8030C74CAF798BD81A6ACF0D7670A217C5E362EFF ] C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
22:13:50.0149 0x0a1c  C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe - ok
22:13:50.0158 0x0a1c  [ 62DA8E676784098D2BA3D2DC1C9E444D, 992E75D23D93F549EC7863E4799A560F658BF578CB813F5E555CD1AC093DC89D ] C:\Program Files\TOSHIBA\Power Saver\TtosFunc.dll
22:13:50.0158 0x0a1c  C:\Program Files\TOSHIBA\Power Saver\TtosFunc.dll - ok
22:13:50.0166 0x0a1c  [ 2CC3858FD130C5A9A0A3AB0FF2E56EC5, 0D3577A40A48FBACE220260259E418A6F06608A43C1A7932C6614AD59187C10E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\a45f351f3273770c967e643c75d79bd7\System.Xml.ni.dll
22:13:50.0166 0x0a1c  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\a45f351f3273770c967e643c75d79bd7\System.Xml.ni.dll - ok
22:13:50.0176 0x0a1c  [ 15B9CD1B1FEE2619BC9AA569FDA5FA2B, 0868DA9DE0939D22A954C3310453C1528BAD9AB642549696B0FAE7DEFBF13197 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\c87950532dcf6d676981e8021ebdc9bc\System.Runtime.Remoting.ni.dll
22:13:50.0176 0x0a1c  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\c87950532dcf6d676981e8021ebdc9bc\System.Runtime.Remoting.ni.dll - ok
22:13:50.0186 0x0a1c  [ 8BA9851E671E8B5E49E303748FFD530C, A2CBF71C3449BA71739E9E805D2EB9F9242AD9D839AF5B4C4F7ADC00C239FB38 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
22:13:50.0186 0x0a1c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
22:13:50.0193 0x0a1c  [ C9244BCAC83B259B920BBEE18A97BFE1, 9EA58407433F86BAAC3B4A6C334FB3BC59032FF4EB50EFA7CD639AA56D96E908 ] C:\Windows\SysWOW64\avrt.dll
22:13:50.0193 0x0a1c  C:\Windows\SysWOW64\avrt.dll - ok
22:13:50.0202 0x0a1c  [ E33A5DEC4567EFA268DD268BAA4E3FC0, 3A8DB1FB273B20E860F0EBFBD380BEF1A70B965FF208CC1E59241BCBFB3AB46A ] C:\Program Files (x86)\Citrix\Receiver\Receiver.exe
22:13:50.0202 0x0a1c  C:\Program Files (x86)\Citrix\Receiver\Receiver.exe - ok
22:13:50.0211 0x0a1c  [ 2E14406E05789F91C9282AE7CFCA3A07, BDB403FC7EDDF5B3F24F1E8232C6EEFE888C5D72A819567EEA73D0AF7D511095 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
22:13:50.0212 0x0a1c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
22:13:50.0220 0x0a1c  [ EACACA0F2FF4CC54A909E3C5721FCDE8, DC1D8AC5E8C50E9FBFA1092E7D3D1D3626C77B6826A9A9190534C49E4CA7A35A ] C:\Windows\SysWOW64\msvfw32.dll
22:13:50.0220 0x0a1c  C:\Windows\SysWOW64\msvfw32.dll - ok
22:13:50.0229 0x0a1c  [ 25CA1677AAA3CDC99CD4FCF940886F3C, 2EA64A924DECC765BE8A3A3B65F2E604B6583C7511AE2231F4EB0863873FECBD ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
22:13:50.0229 0x0a1c  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
22:13:50.0237 0x0a1c  [ 9441A231C0AA0712F7CF3B10D9CFCF76, A1136DBCD62DCDEEA012CC97E7B6EFAE712267B94B8EA9B417E23CEC34FBDBA7 ] C:\Windows\SysWOW64\wmploc.DLL
22:13:50.0237 0x0a1c  C:\Windows\SysWOW64\wmploc.DLL - ok
22:13:50.0246 0x0a1c  [ 73862FF693168369A90F046E7F227B83, 938D71674C8856A0F7FE5A096F92D71977F5ABA62374287F49394F25B67713BA ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
22:13:50.0246 0x0a1c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
22:13:50.0254 0x0a1c  [ 6411DE8554529DD84ABCEC58907A26AD, CA64272065CCE3865BB1B00A0D5F7EC2EB73CC2F786079F1C3BD3269710D4830 ] C:\Windows\System32\SynCOM.dll
22:13:50.0254 0x0a1c  C:\Windows\System32\SynCOM.dll - ok
22:13:50.0263 0x0a1c  [ 41CC69FFE916A5B65DDFB1C5CEBEB30D, BCCFD2F95F8102E39545C173B4A28E97E852BEFD86EB1249835B2C8D75E48A66 ] C:\Program Files (x86)\Toshiba\ConfigFree\cfmain.exe
22:13:50.0263 0x0a1c  C:\Program Files (x86)\Toshiba\ConfigFree\cfmain.exe - ok
22:13:50.0272 0x0a1c  [ D6B5C9DC1DF4A8140BD2FC4BB26A5031, D4D728D5D589FC2C7E7AD85C24E7C410EA08519C13656A85F3F6D178286DBB18 ] C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvcPS.dll
22:13:50.0272 0x0a1c  C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvcPS.dll - ok
22:13:50.0280 0x0a1c  [ 7D4E50C9B39CE079A903000140C9B937, 4572589B0277608FE58296033EA8799EA79E637271AB5BB3503FDDC8E5213067 ] C:\Windows\System32\dispci.dll
22:13:50.0280 0x0a1c  C:\Windows\System32\dispci.dll - ok
22:13:50.0289 0x0a1c  [ 63BD471712132D597431407527A57628, 86B762C64AAADFDCEE0136C4578314A9324115E41BA3AD6F268ED797AEAA00E8 ] C:\Windows\System32\dxgi.dll
22:13:50.0289 0x0a1c  C:\Windows\System32\dxgi.dll - ok
22:13:50.0298 0x0a1c  [ 256D4F7AC02E082E60F74975867093EF, DEB7B7114CB76C0FFC1F70FF79A15C4E51014FF95E8BC8A5CCE9E0FFF284DEF9 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\11624b36d38aa9b3a4ab10e01b32bce5\System.Web.ni.dll
22:13:50.0298 0x0a1c  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\11624b36d38aa9b3a4ab10e01b32bce5\System.Web.ni.dll - ok
22:13:50.0307 0x0a1c  [ B6A7E7F43234BFA6A8E6CC4110CB9448, A06503F1C1A8DF36EA20DD9A0DE34F96BE896E07E283EA5AFD0DD7FB1085BA53 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
22:13:50.0307 0x0a1c  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
22:13:50.0315 0x0a1c  [ 697D6CAF74F39C7F0017088C6F6B5C33, AD723F45631E4E31D8CC7A9A6766C017A6CDB7385ECAEABE956764C6B57CA3A3 ] C:\Program Files\Windows Media Player\wmpnssci.dll
22:13:50.0315 0x0a1c  C:\Program Files\Windows Media Player\wmpnssci.dll - ok
22:13:50.0329 0x0a1c  [ 2D5AAFECAEE330D8A57C53D5FCC44F5F, 7C17228A65853EFA6268750E44036B63BB9363EA22AEEC16E7594ACB5BC95367 ] C:\Program Files (x86)\Citrix\Receiver\Xerces-c_3_1.dll
22:13:50.0329 0x0a1c  C:\Program Files (x86)\Citrix\Receiver\Xerces-c_3_1.dll - ok
22:13:50.0341 0x0a1c  [ 2620C17442BAA264DBE18953FFD10889, CA9D305D37C4185D66F8F342110D5EB3876BB4E31CBA19172C2A5DA0E5B69D01 ] C:\Windows\System32\wmpmde.dll
22:13:50.0341 0x0a1c  C:\Windows\System32\wmpmde.dll - ok
22:13:50.0348 0x0a1c  [ DB1602C61BEEA2CBAE8F0DFEDBE92B04, 466CDEF9A891D2E930913E177D4BD56E012A44BDA0D0771F99F7A33AD66CB6F3 ] C:\Program Files (x86)\Citrix\Receiver\ResourceKeeper.dll
22:13:50.0348 0x0a1c  C:\Program Files (x86)\Citrix\Receiver\ResourceKeeper.dll - ok
22:13:50.0362 0x0a1c  [ 16E0D9E35ABCE4E19E10D637162643A1, 0EF95515B6CD7F23B037FA51DDE16FBCE694EF70B787D7FDCEACD802D1FF5E59 ] C:\Program Files (x86)\Citrix\Receiver\NativeMessageBox.dll
22:13:50.0362 0x0a1c  C:\Program Files (x86)\Citrix\Receiver\NativeMessageBox.dll - ok
22:13:50.0371 0x0a1c  [ 4BF69EA593105DEB6CF270A8290BF12C, 7A83EBEDB6DEC4CD600E1A0ECC8E45F4870F324DC22A1028F7FB51E67D42AC62 ] C:\Program Files (x86)\Citrix\Receiver\NativeSystrayUE.dll
22:13:50.0371 0x0a1c  C:\Program Files (x86)\Citrix\Receiver\NativeSystrayUE.dll - ok
22:13:50.0381 0x0a1c  [ 0A7DC8E9EE81EE2B8DAA1C39D749D4D7, 92FCD50CF445DAB31E1C7136FED4FA17FD01346CC6BBDACABC57F086280026F4 ] C:\Program Files (x86)\Citrix\Receiver\WindowsAppRHelper.dll
22:13:50.0381 0x0a1c  C:\Program Files (x86)\Citrix\Receiver\WindowsAppRHelper.dll - ok
22:13:50.0390 0x0a1c  [ C56EBA7C1D396FCAF3C8D6867EF1C10E, 8A8FA5E1164DD6E9FAF6107BE4AEEB6C3B0DDB638104EFCEE06C24597C203BAE ] C:\Windows\System32\mf.dll
22:13:50.0390 0x0a1c  C:\Windows\System32\mf.dll - ok
22:13:50.0401 0x0a1c  [ E0AB5A63684E6121F41EB03919A03EAD, 0ABD895552F90D99E53CF53687E9FEFD10EC975CDAE74B9B00578B382CD6B9D8 ] C:\Program Files (x86)\Citrix\Receiver\ProgressNotification.dll
22:13:50.0402 0x0a1c  C:\Program Files (x86)\Citrix\Receiver\ProgressNotification.dll - ok
22:13:50.0412 0x0a1c  [ AF96CCADA9B7ADB6488DDB6A60374821, 009DFE85DB8A5A6D2E6617555B8ED470E866F27ECC39BEE3C245A29250B2221A ] C:\Windows\System32\evr.dll
22:13:50.0412 0x0a1c  C:\Windows\System32\evr.dll - ok
22:13:50.0420 0x0a1c  [ A949AA49376F8CB91D19EA8A7ADC94D4, 6D841BACE1B8EE47BBE316A6437F508636AC02EA90B42A56BDEF93F0F63FBCD9 ] C:\Windows\System32\wmdrmsdk.dll
22:13:50.0420 0x0a1c  C:\Windows\System32\wmdrmsdk.dll - ok
22:13:50.0429 0x0a1c  [ 31CA579BA61D7C6868CBD6DC902938FA, 4FD80133D6AFA5AC092A4453D65BF69D861A1397AEE5589ED2DD5AC8B662A2E6 ] C:\Program Files (x86)\Citrix\Receiver\Toaster.dll
22:13:50.0429 0x0a1c  C:\Program Files (x86)\Citrix\Receiver\Toaster.dll - ok
22:13:50.0439 0x0a1c  [ F041AB49DE23CC8BDB404EE59CD1935D, E3302A7F66B87BD01DBD692760616E0C7BAEF7561B64EB1D971BFFD8470E703F ] C:\Windows\System32\dxva2.dll
22:13:50.0439 0x0a1c  C:\Windows\System32\dxva2.dll - ok
22:13:50.0447 0x0a1c  [ C6F33F49EABCD13F52FDC68FBC1E18C3, 8CDC67C4E3C48E0B27F95CC77F924372FB7C8D47B434EE7DAB36D9D64E9EB568 ] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.dll
22:13:50.0447 0x0a1c  C:\Program Files\TOSHIBA\FlashCards\TCrdMain.dll - ok
22:13:50.0451 0x0a1c  ================ Scan generic autorun ======================
22:13:50.0991 0x0a1c  [ 5704BC41D5DCF51E1C96CDDF68786529, 52610F65734C2102D7CFD9BA5CFA348E4FB5CA027FFD443129E8B311C5791F6E ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
22:13:51.0082 0x0a1c  SynTPEnh - ok
22:13:51.0088 0x0a1c  TPwrMain - ok
22:13:51.0092 0x0a1c  HSON - ok
22:13:51.0098 0x0a1c  SmoothView - ok
22:13:51.0105 0x0a1c  00TCrdMain - ok
22:13:51.0111 0x0a1c  Windows Defender - ok
22:13:51.0654 0x0a1c  [ 569AC1376B12D4083FC66CC7A304F234, DD209F09573F10A77D710E30EF3D0461D2E8F4E5F18106B18EFB587C88393460 ] c:\Program Files\Microsoft Security Client\msseces.exe
22:13:51.0850 0x0a1c  MSC - ok
22:13:51.0860 0x0a1c  NDSTray.exe - ok
22:13:51.0867 0x0a1c  cfFncEnabler.exe - ok
22:13:51.0958 0x0a1c  [ 9B271EAD0AE5907EABC3A7BE072C323E, 3F3E36A78E694B81ECF6C5A8CA37D5832AFB6E84627A5D8952D26FCC2B9216B4 ] C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\PCMAgent.exe
22:13:51.0978 0x0a1c  PCMAgent - detected UnsignedFile.Multi.Generic ( 1 )
22:13:57.0886 0x0a1c  Detect skipped due to KSN trusted
22:13:57.0886 0x0a1c  PCMAgent - ok
22:13:58.0025 0x0a1c  [ 166D74046CE5D2B0696A335B8A8633E1, 271EE83A34E158A34960E081E7458D76D9107F41DB0F4126FCDB04C0206DB37C ] C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe
22:13:58.0081 0x0a1c  CLMLServer - detected UnsignedFile.Multi.Generic ( 1 )
22:14:01.0045 0x0a1c  Detect skipped due to KSN trusted
22:14:01.0045 0x0a1c  CLMLServer - ok
22:14:01.0186 0x0a1c  [ 8B9145D229D4E89D15ACB820D4A3A90F, F3831D9AE752B6AFBD3380E0BC849E4B051D6E06A88C1F61293A6DE4F66794E1 ] C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe
22:14:01.0233 0x0a1c  Adobe Reader Speed Launcher - ok
22:14:01.0526 0x0a1c  [ E1E71D80D078C576801B6FE2A29FCF85, 7A8911FF626E5EEC01D7C1922F8AD6901EFC75952ADB3FAF606506C7DB4BC54A ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
22:14:01.0575 0x0a1c  StartCCC - detected UnsignedFile.Multi.Generic ( 1 )
22:14:04.0316 0x0a1c  Detect skipped due to KSN trusted
22:14:04.0316 0x0a1c  StartCCC - ok
22:14:04.0637 0x0a1c  [ B1DB5EDB658F3FF4F13AC069CE622893, D4AC66DD9CF9EE4770AA34936EE28844D2BE39968727E8A9CAAB9E9A09387CC6 ] C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
22:14:04.0864 0x0a1c  Camera Assistant Software - detected UnsignedFile.Multi.Generic ( 1 )
22:14:07.0622 0x0a1c  Detect skipped due to KSN trusted
22:14:07.0622 0x0a1c  Camera Assistant Software - ok
22:14:07.0747 0x0a1c  [ F7DD2D785280DB73DC9060F80361BEFB, 7AF1114FFA46290DC77CC5D562034287A0E617BD4747F58E65CDF70244C402CB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
22:14:07.0772 0x0a1c  APSDaemon - ok
22:14:07.0869 0x0a1c  [ AF43C4F7F3C8BC95DAD95024F96CDC4A, 6348F6D8F301C5F7290B963D6923E389414ADFBCF6AED562A32245BCADC05580 ] C:\Program Files (x86)\QuickTime\QTTask.exe
22:14:07.0967 0x0a1c  QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
22:14:10.0803 0x0a1c  Detect skipped due to KSN trusted
22:14:10.0803 0x0a1c  QuickTime Task - ok
22:14:10.0930 0x0a1c  [ 2EBE05FD8ECBA5F230FC26E534E91A11, B8E85D51BD4E6C0D4D447DFA327EAA0AE4A33F04F42063A58122153933C1770E ] C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
22:14:10.0994 0x0a1c  ConnectionCenter - ok
22:14:11.0078 0x0a1c  [ 17D9622BFE68386E8C647C4C7F8FEA3E, 50F943F2E47512DCE61A9EBB188361CB71CACC74D9397FA1367AB7112F2C7A09 ] C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
22:14:11.0138 0x0a1c  Redirector - ok
22:14:11.0399 0x0a1c  [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
22:14:11.0537 0x0a1c  Sidebar - ok
22:14:11.0549 0x0a1c  WindowsWelcomeCenter - ok
22:14:11.0625 0x0a1c  [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
22:14:11.0720 0x0a1c  Sidebar - ok
22:14:11.0733 0x0a1c  WindowsWelcomeCenter - ok
22:14:11.0740 0x0a1c  WindowsWelcomeCenter - ok
22:14:11.0863 0x0a1c  [ A2BD20AAC8D10C9D21EBAB5D5A8F73C6, E0492DCD12C810294335F3B4B78A42D9BC4A8AF48442D19BF790E93BC1F4BADB ] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
22:14:11.0948 0x0a1c  TOSCDSPD - detected UnsignedFile.Multi.Generic ( 1 )
22:14:14.0510 0x0a1c  Detect skipped due to KSN trusted
22:14:14.0510 0x0a1c  TOSCDSPD - ok
22:14:14.0991 0x0a1c  [ E0DD774689998F43167C4799F9B69FC3, 1353CA6DF088D232F3FE1C93F08A6AC9BCEEBB1CF22A39A3EAB6AD30BB4E0588 ] C:\Users\Mitch\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
22:14:15.0111 0x0a1c  Spotify Web Helper - ok
22:14:15.0116 0x0a1c  Upmedia Update - ok
22:14:15.0121 0x0a1c  WindowsWelcomeCenter - ok
22:14:15.0163 0x0a1c  [ A2BD20AAC8D10C9D21EBAB5D5A8F73C6, E0492DCD12C810294335F3B4B78A42D9BC4A8AF48442D19BF790E93BC1F4BADB ] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
22:14:15.0284 0x0a1c  TOSCDSPD - detected UnsignedFile.Multi.Generic ( 1 )
22:14:15.0285 0x0a1c  Detect skipped due to KSN trusted
22:14:15.0285 0x0a1c  TOSCDSPD - ok
22:14:15.0350 0x0a1c  [ 5D61BE7DB55B026A5D61A3EED09D0EAD, D32CC7B31A6F98C60ABC313ABC7D1143681F72DE2BB2604711A0BA20710CAAAE ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
22:14:15.0432 0x0a1c  swg - ok
22:14:15.0506 0x0a1c  FlashPlayerUpdate - ok
22:14:15.0582 0x0a1c  Waiting for KSN requests completion. In queue: 7
22:14:16.0582 0x0a1c  Waiting for KSN requests completion. In queue: 7
22:14:17.0582 0x0a1c  Waiting for KSN requests completion. In queue: 7
22:14:18.0582 0x0a1c  Waiting for KSN requests completion. In queue: 7
22:14:19.0636 0x0a1c  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.5.216.0 ), 0x61000 ( enabled : updated )
22:14:19.0649 0x0a1c  Win FW state via NFP2: enabled
22:14:22.0167 0x0a1c  ============================================================
22:14:22.0167 0x0a1c  Scan finished
22:14:22.0167 0x0a1c  ============================================================
22:14:22.0181 0x0ac8  Detected object count: 1
22:14:22.0181 0x0ac8  Actual detected object count: 1
22:14:52.0607 0x0ac8  \Device\Harddisk0\DR0\TDLFS\cfg.ini - copied to quarantine
22:14:52.0685 0x0ac8  \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine
22:14:52.0834 0x0ac8  \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
22:14:52.0912 0x0ac8  \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
22:14:53.0926 0x0ac8  \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
22:14:54.0327 0x0ac8  \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
22:15:31.0043 0x0ac8  \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
22:15:31.0855 0x0ac8  \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
22:15:32.0220 0x0ac8  \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
22:15:32.0807 0x0ac8  \Device\Harddisk0\DR0\TDLFS\bckfg.tmp - copied to quarantine
22:15:32.0821 0x0ac8  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Quarantine
 



#11 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:46 PM

Posted 06 September 2014 - 05:50 AM

Ok.


Step 1

Please download this attached Attached File  fixlist.txt   327bytes   3 downloads and save it in the same directory as FRST.
  • Start FRST with Administrator privileges.
  • Press the Fix button.
  • When finished, a log file (Fixlog.txt) pops up and is saved to the same location the tool was run from.
    Please copy and paste its contents in your next reply.


Step 2

Start FRST with administator privileges.
  • Press the Scan button.
  • When finished, FRST will produce a log (FRST.txt) in the same directory the tool was run from.
    Please copy and paste this log in your next reply.


#12 boingo2000

boingo2000
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Location:Phoenix, AZ
  • Local time:03:46 AM

Posted 06 September 2014 - 10:38 AM

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 03-09-2014 02
Ran by Mitch at 2014-09-06 08:30:37 Run:1
Running from C:\Users\Mitch\Downloads
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
CMD: taskkill /f /t /im regsvr32.exe
CMD: taskkill /f /t /im iexplore.exe
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\Run: [Upmedia Update] => regsvr32.exe C:\Users\Mitch\AppData\Local\Upmedia\SpaLicExtReg.dll
2014-08-16 08:33 - 2014-05-31 09:04 - 00000000 ____D () C:\Users\Mitch\AppData\Local\Upmedia
EmptyTemp:
*****************


=========  taskkill /f /t /im regsvr32.exe =========

SUCCESS: The process with PID 4856 (child process of PID 3544) has been terminated.
SUCCESS: The process with PID 3544 (child process of PID 3252) has been terminated.

========= End of CMD: =========


=========  taskkill /f /t /im iexplore.exe =========

ERROR: The process "iexplore.exe" not found.

========= End of CMD: =========

HKU\S-1-5-21-3070057452-1906166010-386791523-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Upmedia Update => value deleted successfully.
C:\Users\Mitch\AppData\Local\Upmedia => Moved successfully.
EmptyTemp: => Removed 2.2 GB temporary data.


The system needed a reboot.

==== End of Fixlog ====



#13 boingo2000

boingo2000
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Location:Phoenix, AZ
  • Local time:03:46 AM

Posted 06 September 2014 - 10:41 AM

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-09-2014 02
Ran by Mitch (administrator) on MITCH-LAPTOP on 06-09-2014 08:39:27
Running from C:\Users\Mitch\Downloads
Platform: Windows Vista ™ Home Premium Service Pack 2 (X64) OS Language: English (United States)
Internet Explorer Version 9
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(TOSHIBA Corporation.) C:\Program Files (x86)\Toshiba\ConfigFree\CFProcSRVC.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\ConfigFree\CFSvcs.exe
(O2Micro International) C:\Program Files (x86)\O2Micro Flash Memory Card Driver\o2flash.exe
() C:\TOSHIBA\IVP\ISM\pinger.exe
() C:\TOSHIBA\IVP\swupdate\swupdtmr.exe
(TOSHIBA Corporation) C:\Program Files (x86)\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
(Ulead Systems, Inc.) C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
(Toshiba) C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatchSrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(TOSHIBA) C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
() C:\Users\Mitch\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\ConfigFree\NDSTray.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\PCMAgent.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 8.0\Reader\reader_sl.exe
(Chicony) C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\ConfigFree\CFSwMgr.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\Receiver\Receiver.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
() C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1216808 2007-11-29] (Synaptics, Inc.)
HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [431968 2008-02-06] (TOSHIBA Corporation)
HKLM\...\Run: [HSON] => C:\Program Files\TOSHIBA\TBS\HSON.exe [52560 2007-12-06] (TOSHIBA Corporation)
HKLM\...\Run: [SmoothView] => C:\Program Files\Toshiba\SmoothView\SmoothView.exe [519544 2007-12-11] (TOSHIBA Corporation)
HKLM\...\Run: [00TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [865280 2008-03-19] (TOSHIBA Corporation)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1584184 2008-01-20] (Microsoft Corporation)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM-x32\...\Run: [NDSTray.exe] => NDSTray.exe
HKLM-x32\...\Run: [cfFncEnabler.exe] => cfFncEnabler.exe
HKLM-x32\...\Run: [PCMAgent] => C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\PCMAgent.exe [143360 2007-12-13] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe [184320 2008-02-14] (CyberLink)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe [39792 2008-01-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2008-01-21] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Camera Assistant Software] => C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe [417792 2008-04-29] (Chicony)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-09-27] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2011-10-24] (Apple Inc.)
HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [395656 2013-10-01] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [Redirector] => C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [153992 2013-10-01] (Citrix Systems, Inc.)
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\Run: [TOSCDSPD] => C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [432640 2008-04-24] (TOSHIBA)
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\Run: [Spotify Web Helper] => C:\Users\Mitch\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [932528 2012-05-20] ()
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x00000000
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\MountPoints2: {19107d0d-a56f-11e2-a4ad-001e68966005} - G:\setup.exe -a
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\MountPoints2: {6c654de9-a9fb-11e2-aeb2-001e68966005} - E:\LaunchU3.exe -a
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\MountPoints2: {c706140c-fba7-11e1-972e-001e68966005} - E:\TL-Bootstrap.exe
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\MountPoints2: {c706146c-fba7-11e1-972e-001e68966005} - E:\TL-Bootstrap.exe
HKU\S-1-5-21-3070057452-1906166010-386791523-1000\...\MountPoints2: {dee14f70-30a8-11e1-9ea2-001e68966005} - G:\TL-Bootstrap.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://my.yahoo.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.toshibadirect.com/dpdstart
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.toshibadirect.com/dpdstart
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.toshibadirect.com/dpdstart
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {52923216-CDA6-4FC9-8F96-F2EFB4AC1C21} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage};
SearchScopes: HKLM - {52923216-CDA6-4FC9-8F96-F2EFB4AC1C21} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage};
SearchScopes: HKLM-x32 - DefaultScope {7CC94BCA-8E5E-4FAD-ACE5-798C208642BC} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKLM-x32 - {7CC94BCA-8E5E-4FAD-ACE5-798C208642BC} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKCU - DefaultScope {7CC94BCA-8E5E-4FAD-ACE5-798C208642BC} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}&rlz=
SearchScopes: HKCU - {7CC94BCA-8E5E-4FAD-ACE5-798C208642BC} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}&rlz=
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO-x32: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.6.0_06\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: HKLM {AA570693-00E2-4907-B6F1-60A1199B030C} https://juniper.net/dana-cached/sc/JuniperSetupClient64.cab
DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://juniper.net/dana-cached/sc/JuniperSetupClient.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Mitch\AppData\Roaming\Mozilla\Firefox\Profiles\yry7mjwy.default
FF Homepage: hxxp://www.google.com/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @Citrix.com/npican -> C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll (Citrix Systems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Extension: OpenDownload² - C:\Users\Mitch\AppData\Roaming\Mozilla\Firefox\Profiles\yry7mjwy.default\Extensions\{210249CE-F888-11DD-B868-4CB456D89593} [2014-09-01]
FF Extension: MMDeviceEnumerator class - C:\Users\Mitch\AppData\Roaming\Mozilla\Firefox\Profiles\yry7mjwy.default\Extensions\{BCDAAA89-3B45-E6E8-2EC7-45A4DD41C498} [2014-05-31]
FF Extension: Adblock Plus - C:\Users\Mitch\AppData\Roaming\Mozilla\Firefox\Profiles\yry7mjwy.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2011-12-27]
FF Extension: BetterPrivacy - C:\Users\Mitch\AppData\Roaming\Mozilla\Firefox\Profiles\yry7mjwy.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2012-02-03]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2011-12-26]

Chrome:
=======
CHR Profile: C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (MMDeviceEnumerator class) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajpgkpeckebdhofmmjfgcjjiiejpodla [2014-05-31]
CHR Extension: (Google Docs) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-16]
CHR Extension: (Google Drive) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-16]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-06-04]
CHR Extension: (YouTube) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-16]
CHR Extension: (Google Cast) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2014-02-16]
CHR Extension: (Google Search) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-16]
CHR Extension: (Google Wallet) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-16]
CHR Extension: (Gmail) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-16]
CHR Profile: C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Docs) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-08]
CHR Extension: (Google Drive) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-08]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-06-08]
CHR Extension: (YouTube) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-08]
CHR Extension: (Google Search) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-08]
CHR Extension: (Google Wallet) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-08]
CHR Extension: (Gmail) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-08]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ConfigFree Gadget Service; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe [36864 2008-04-03] (TOSHIBA Corporation.) [File not signed]
R2 ConfigFree Service; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [40960 2008-04-17] (TOSHIBA CORPORATION) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S3 jswpsapi; C:\Program Files (x86)\Jumpstart\jswpsapi.exe [954368 2008-04-16] (Atheros Communications, Inc.) [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
R2 o2flash; C:\Program Files (x86)\O2Micro Flash Memory Card Driver\o2flash.exe [65536 2007-02-12] (O2Micro International) [File not signed]
R2 pinger; C:\TOSHIBA\IVP\ISM\pinger.exe [136816 2007-01-25] ()
R3 SmartFaceVWatchSrv; C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatchSrv.exe [84992 2008-04-24] (Toshiba) [File not signed]
R2 Swupdtmr; c:\TOSHIBA\IVP\swupdate\swupdtmr.exe [66928 2007-10-23] ()
R2 TNaviSrv; C:\Program Files (x86)\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe [83312 2008-04-11] (TOSHIBA Corporation)
R2 TODDSrv; C:\Windows\system32\TODDSrv.exe [135168 2007-11-21] (TOSHIBA Corporation) [File not signed]
R2 TOSHIBA SMART Log Service; C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe [175104 2007-12-03] (TOSHIBA Corporation) [File not signed]
R2 UleadBurningHelper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2006-08-23] (Ulead Systems, Inc.) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
R3 O2MDRDR; C:\Windows\System32\DRIVERS\o2mdx64.sys [62040 2008-04-15] (O2Micro )
R2 OpenLibSys; C:\Program Files (x86)\NXP\FM Radio\OpenLibSysX64.sys [14544 2007-10-19] (OpenLibSys.org)
S3 Tosrfcom; No ImagePath
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-04 20:17 - 2014-09-04 20:19 - 00035475 _____ () C:\Users\Mitch\Downloads\Addition.txt
2014-09-04 20:16 - 2014-09-06 08:39 - 00023298 _____ () C:\Users\Mitch\Downloads\FRST.txt
2014-09-04 20:15 - 2014-09-06 08:39 - 00000000 ____D () C:\FRST
2014-09-04 20:14 - 2014-09-04 20:15 - 02104832 _____ (Farbar) C:\Users\Mitch\Downloads\FRST64.exe
2014-09-04 20:10 - 2014-09-04 20:10 - 00350405 _____ () C:\Users\Mitch\Documents\tdss_rpt.txt
2014-09-03 20:33 - 2014-09-03 20:33 - 00021073 _____ () C:\Users\Mitch\Documents\DDS.txt
2014-09-03 20:29 - 2014-09-03 20:29 - 00009016 _____ () C:\Users\Mitch\Documents\attach.txt
2014-09-03 20:28 - 2014-09-03 20:28 - 00009016 _____ () C:\Users\Mitch\Documents\dds output.txt
2014-09-03 20:23 - 2014-09-03 20:23 - 00009016 _____ () C:\Users\Mitch\Desktop\attach.txt
2014-09-03 20:23 - 2014-09-03 20:21 - 00021073 _____ () C:\Users\Mitch\Desktop\dds.txt
2014-09-03 20:18 - 2014-09-03 20:18 - 00688992 ____R (Swearware) C:\Users\Mitch\Downloads\dds.com
2014-09-01 22:05 - 2014-09-01 22:05 - 00047295 _____ () C:\Users\Mitch\Documents\2014 depth chart.xlsx
2014-09-01 18:45 - 2014-09-01 18:47 - 00002286 _____ () C:\Users\Mitch\Desktop\Rkill.txt
2014-09-01 18:43 - 2014-09-01 18:43 - 01944824 _____ (Bleeping Computer, LLC) C:\Users\Mitch\Downloads\rkill.exe
2014-09-01 16:14 - 2014-09-01 16:14 - 00039090 _____ () C:\Users\Mitch\Downloads\2014 ffl.xlsx
2014-09-01 15:30 - 2014-09-05 22:14 - 00000000 ____D () C:\TDSSKiller_Quarantine
2014-09-01 15:19 - 2014-09-01 15:19 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Mitch\Downloads\tdsskiller.exe
2014-08-28 23:03 - 2014-08-28 23:03 - 00000000 ____D () C:\Users\Mitch\AppData\Local\Adobe
2014-08-28 20:23 - 2014-08-22 18:05 - 00304128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-28 20:23 - 2014-08-22 17:42 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 20:23 - 2014-08-22 16:38 - 02782208 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-28 20:01 - 2014-09-01 21:52 - 00034938 _____ () C:\Users\Mitch\Documents\2014 ffl.xlsx
2014-08-16 09:41 - 2014-06-26 15:17 - 01389200 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-16 09:41 - 2014-06-26 15:17 - 00619664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-16 09:41 - 2014-06-26 15:17 - 00171152 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-16 09:41 - 2014-06-26 15:17 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-16 09:41 - 2014-06-26 15:17 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-16 09:41 - 2014-06-26 15:17 - 00008848 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-16 09:41 - 2014-06-05 21:29 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-16 09:41 - 2014-06-05 21:28 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-16 09:38 - 2014-07-24 12:28 - 17861120 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-16 09:38 - 2014-07-24 12:12 - 02339328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-16 09:38 - 2014-07-24 12:10 - 10920960 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-16 09:38 - 2014-07-24 12:07 - 01384960 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-16 09:38 - 2014-07-24 12:06 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-16 09:38 - 2014-07-24 12:05 - 01494016 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-16 09:38 - 2014-07-24 12:05 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-08-16 09:38 - 2014-07-24 12:05 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-16 09:38 - 2014-07-24 12:04 - 02155520 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-16 09:38 - 2014-07-24 12:04 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-16 09:38 - 2014-07-24 12:04 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-16 09:38 - 2014-07-24 12:04 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-16 09:38 - 2014-07-24 12:04 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-16 09:38 - 2014-07-24 12:04 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-16 09:38 - 2014-07-24 12:03 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-16 09:38 - 2014-07-24 12:03 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-16 09:38 - 2014-07-24 12:03 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-16 09:38 - 2014-07-24 12:03 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-08-16 09:38 - 2014-07-24 12:03 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-08-16 09:38 - 2014-07-24 12:03 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-08-16 09:38 - 2014-07-24 12:02 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-16 09:38 - 2014-07-24 11:07 - 12356608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-16 09:38 - 2014-07-24 10:58 - 01810432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-16 09:38 - 2014-07-24 10:57 - 09739264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-16 09:38 - 2014-07-24 10:52 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-16 09:38 - 2014-07-24 10:51 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-16 09:38 - 2014-07-24 10:51 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-16 09:38 - 2014-07-24 10:50 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-08-16 09:38 - 2014-07-24 10:50 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-16 09:38 - 2014-07-24 10:49 - 01802240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-16 09:38 - 2014-07-24 10:49 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-08-16 09:38 - 2014-07-24 10:49 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-16 09:38 - 2014-07-24 10:49 - 00421376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-16 09:38 - 2014-07-24 10:49 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-16 09:38 - 2014-07-24 10:48 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-16 09:38 - 2014-07-24 10:48 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-16 09:38 - 2014-07-24 10:48 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-16 09:38 - 2014-07-24 10:48 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-16 09:38 - 2014-07-24 10:48 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-08-16 09:38 - 2014-07-24 10:48 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-08-16 09:38 - 2014-07-24 10:48 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-08-16 09:38 - 2014-07-24 10:47 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-16 09:38 - 2014-07-07 18:12 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-16 09:38 - 2014-07-07 17:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-16 09:38 - 2014-06-13 17:56 - 00901568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-16 09:38 - 2014-06-13 17:51 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-16 09:35 - 2014-06-02 14:30 - 03137536 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-16 09:35 - 2014-06-02 14:30 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-16 09:35 - 2014-06-02 14:29 - 02280448 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-16 09:35 - 2014-06-02 14:29 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-08-16 09:35 - 2014-06-02 13:29 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-16 09:35 - 2014-06-02 03:31 - 02263552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-16 09:35 - 2014-06-02 03:31 - 00332800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-16 09:35 - 2014-06-02 03:30 - 01993728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-06 08:40 - 2014-09-04 20:16 - 00023298 _____ () C:\Users\Mitch\Downloads\FRST.txt
2014-09-06 08:40 - 2013-01-24 20:26 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-06 08:39 - 2014-09-04 20:15 - 00000000 ____D () C:\FRST
2014-09-06 08:34 - 2012-01-02 19:28 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-06 08:34 - 2006-11-02 08:42 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-06 08:34 - 2006-11-02 08:22 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-06 08:34 - 2006-11-02 08:22 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-06 08:33 - 2008-01-20 20:26 - 00163682 _____ () C:\Windows\PFRO.log
2014-09-06 08:32 - 2011-12-24 16:05 - 01303033 _____ () C:\Windows\WindowsUpdate.log
2014-09-06 08:32 - 2006-11-02 08:42 - 00032650 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-09-05 22:14 - 2014-09-01 15:30 - 00000000 ____D () C:\TDSSKiller_Quarantine
2014-09-04 20:47 - 2012-01-02 19:28 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-04 20:19 - 2014-09-04 20:17 - 00035475 _____ () C:\Users\Mitch\Downloads\Addition.txt
2014-09-04 20:15 - 2014-09-04 20:14 - 02104832 _____ (Farbar) C:\Users\Mitch\Downloads\FRST64.exe
2014-09-04 20:10 - 2014-09-04 20:10 - 00350405 _____ () C:\Users\Mitch\Documents\tdss_rpt.txt
2014-09-03 20:33 - 2014-09-03 20:33 - 00021073 _____ () C:\Users\Mitch\Documents\DDS.txt
2014-09-03 20:29 - 2014-09-03 20:29 - 00009016 _____ () C:\Users\Mitch\Documents\attach.txt
2014-09-03 20:28 - 2014-09-03 20:28 - 00009016 _____ () C:\Users\Mitch\Documents\dds output.txt
2014-09-03 20:23 - 2014-09-03 20:23 - 00009016 _____ () C:\Users\Mitch\Desktop\attach.txt
2014-09-03 20:21 - 2014-09-03 20:23 - 00021073 _____ () C:\Users\Mitch\Desktop\dds.txt
2014-09-03 20:18 - 2014-09-03 20:18 - 00688992 ____R (Swearware) C:\Users\Mitch\Downloads\dds.com
2014-09-03 18:00 - 2014-02-16 13:28 - 00002036 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-03 17:54 - 2014-06-08 21:14 - 00002136 _____ () C:\Users\Mitch\Desktop\Mitch - Chrome.lnk
2014-09-01 22:05 - 2014-09-01 22:05 - 00047295 _____ () C:\Users\Mitch\Documents\2014 depth chart.xlsx
2014-09-01 21:52 - 2014-08-28 20:01 - 00034938 _____ () C:\Users\Mitch\Documents\2014 ffl.xlsx
2014-09-01 18:47 - 2014-09-01 18:45 - 00002286 _____ () C:\Users\Mitch\Desktop\Rkill.txt
2014-09-01 18:43 - 2014-09-01 18:43 - 01944824 _____ (Bleeping Computer, LLC) C:\Users\Mitch\Downloads\rkill.exe
2014-09-01 16:14 - 2014-09-01 16:14 - 00039090 _____ () C:\Users\Mitch\Downloads\2014 ffl.xlsx
2014-09-01 15:42 - 2014-06-29 09:56 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-01 15:19 - 2014-09-01 15:19 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Mitch\Downloads\tdsskiller.exe
2014-08-29 11:36 - 2006-11-02 06:33 - 00000000 ____D () C:\Windows\Globalization
2014-08-28 23:03 - 2014-08-28 23:03 - 00000000 ____D () C:\Users\Mitch\AppData\Local\Adobe
2014-08-28 20:58 - 2013-01-24 20:26 - 00003682 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-08-28 20:58 - 2012-05-11 23:02 - 00699568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-08-28 20:58 - 2011-12-28 08:24 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-08-28 20:45 - 2006-11-02 08:21 - 00328888 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-22 18:05 - 2014-08-28 20:23 - 00304128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-22 17:42 - 2014-08-28 20:23 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-22 16:38 - 2014-08-28 20:23 - 02782208 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-16 11:02 - 2006-11-02 06:33 - 00000000 ____D () C:\Windows\rescache
2014-08-16 10:50 - 2006-11-02 05:46 - 00764564 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-16 10:44 - 2006-11-02 08:27 - 00048042 _____ () C:\Windows\setupact.log
2014-08-16 10:02 - 2011-12-24 16:16 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-16 10:01 - 2013-08-19 16:36 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-16 09:55 - 2006-11-02 05:35 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-08-16 08:26 - 2011-12-27 11:14 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight

Files to move or delete:
====================
C:\Users\Mitch\gotomypc_635.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-06 08:40

==================== End Of Log ============================



#14 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:46 PM

Posted 06 September 2014 - 11:45 AM

How is your computer running now? What symptoms or problems still persist (if any)?
Let's de a final check up:


Please download the ESET Online Scanner and save it to your Desktop.
  • Disable the realtime-protection of your antivirus and anti-malware programs because they might interfere with the scan.
  • Start esetsmartinstaller_enu.exe with administartor privileges.
  • Select the option Yes, I accept the Terms of Use and click on Start.
  • Make sure that the option Remove found threats is NOT checked, and the option Scan archives is checked.
  • Now click on Advanced Settings and select the following:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Click on Start. The virus signature database will begin to download. This may take some time.
  • When completed the Online Scan will begin automatically.
    Note: This scan might take a long time! Please be patient.
  • When completed select Uninstall application on close if you so wish, but make sure you copy the logfile first!
  • Now click on Finish
  • A log file is created at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
    Copy and paste the content of this log file in your next reply.
Note: Do not forget to re-enable your antivirus application after running the above scan!

#15 boingo2000

boingo2000
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Location:Phoenix, AZ
  • Local time:03:46 AM

Posted 06 September 2014 - 07:04 PM

For the moment things seem better.  The system is running faster and I'm not seeing the multiple iexplore.exe processes popping up.  I'll do the final check you suggested and post the results.  Thanks for your help to this point.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users