Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Nasty Problem [Solved]


  • This topic is locked This topic is locked

#16
TerraceHill

TerraceHill

    Member

  • Topic Starter
  • Member
  • PipPip
  • 32 posts
TDSS KILLER REPORT:


------------------------------------------------------------------------------------------------------

20:12:29.0436 7832 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
20:12:29.0951 7832 ============================================================
20:12:29.0951 7832 Current date / time: 2013/09/26 20:12:29.0951
20:12:29.0951 7832 SystemInfo:
20:12:29.0951 7832
20:12:29.0951 7832 OS Version: 6.1.7601 ServicePack: 1.0
20:12:29.0951 7832 Product type: Workstation
20:12:29.0951 7832 ComputerName: OLIVIA-PC
20:12:29.0951 7832 UserName: Olivia
20:12:29.0951 7832 Windows directory: C:\windows
20:12:29.0951 7832 System windows directory: C:\windows
20:12:29.0951 7832 Running under WOW64
20:12:29.0951 7832 Processor architecture: Intel x64
20:12:29.0951 7832 Number of processors: 4
20:12:29.0951 7832 Page size: 0x1000
20:12:29.0951 7832 Boot type: Normal boot
20:12:29.0951 7832 ============================================================
20:12:30.0512 7832 BG loaded
20:12:31.0089 7832 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:12:31.0105 7832 ============================================================
20:12:31.0105 7832 \Device\Harddisk0\DR0:
20:12:31.0105 7832 MBR partitions:
20:12:31.0105 7832 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x5557C000
20:12:31.0105 7832 ============================================================
20:12:31.0245 7832 C: <-> \Device\Harddisk0\DR0\Partition1
20:12:31.0245 7832 ============================================================
20:12:31.0245 7832 Initialize success
20:12:31.0245 7832 ============================================================
20:13:44.0144 6540 ============================================================
20:13:44.0144 6540 Scan started
20:13:44.0144 6540 Mode: Manual; SigCheck; TDLFS;
20:13:44.0144 6540 ============================================================
20:13:44.0565 6540 ================ Scan system memory ========================
20:13:44.0565 6540 System memory - ok
20:13:44.0565 6540 ================ Scan services =============================
20:13:44.0862 6540 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
20:13:45.0002 6540 1394ohci - ok
20:13:45.0049 6540 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
20:13:45.0080 6540 ACPI - ok
20:13:45.0127 6540 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
20:13:45.0205 6540 AcpiPmi - ok
20:13:45.0330 6540 [ 3FD8DC2C9735C2AA70155102CFB93EDA ] AdobeActiveFileMonitor7.0 C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
20:13:45.0361 6540 AdobeActiveFileMonitor7.0 - ok
20:13:45.0408 6540 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:13:45.0423 6540 AdobeARMservice - ok
20:13:45.0564 6540 [ 24A0876D07EF356DCBC1D7A7929354AB ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:13:45.0579 6540 AdobeFlashPlayerUpdateSvc - ok
20:13:45.0626 6540 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
20:13:45.0657 6540 adp94xx - ok
20:13:45.0720 6540 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
20:13:45.0751 6540 adpahci - ok
20:13:45.0751 6540 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
20:13:45.0782 6540 adpu320 - ok
20:13:45.0813 6540 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
20:13:45.0969 6540 AeLookupSvc - ok
20:13:46.0032 6540 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
20:13:46.0094 6540 AFD - ok
20:13:46.0141 6540 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
20:13:46.0172 6540 agp440 - ok
20:13:46.0219 6540 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
20:13:46.0266 6540 ALG - ok
20:13:46.0313 6540 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
20:13:46.0328 6540 aliide - ok
20:13:46.0359 6540 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
20:13:46.0375 6540 amdide - ok
20:13:46.0422 6540 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
20:13:46.0469 6540 AmdK8 - ok
20:13:46.0484 6540 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
20:13:46.0515 6540 AmdPPM - ok
20:13:46.0515 6540 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
20:13:46.0547 6540 amdsata - ok
20:13:46.0562 6540 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
20:13:46.0593 6540 amdsbs - ok
20:13:46.0609 6540 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
20:13:46.0625 6540 amdxata - ok
20:13:46.0671 6540 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
20:13:46.0905 6540 AppID - ok
20:13:46.0921 6540 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
20:13:46.0999 6540 AppIDSvc - ok
20:13:47.0046 6540 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\windows\System32\appinfo.dll
20:13:47.0108 6540 Appinfo - ok
20:13:47.0155 6540 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
20:13:47.0171 6540 arc - ok
20:13:47.0186 6540 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
20:13:47.0217 6540 arcsas - ok
20:13:47.0311 6540 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:13:47.0342 6540 aspnet_state - ok
20:13:47.0389 6540 [ A83C9C15680BB9E270ACF7172068E287 ] aswFsBlk C:\windows\system32\drivers\aswFsBlk.sys
20:13:47.0420 6540 aswFsBlk - ok
20:13:47.0467 6540 [ D07E6D1765AEDD75E67987921BBA43AD ] aswKbd C:\windows\system32\drivers\aswKbd.sys
20:13:47.0498 6540 aswKbd - ok
20:13:47.0514 6540 [ 5C40B8D77EBEE1DE0E7A8CDD0CD75773 ] aswMonFlt C:\windows\system32\drivers\aswMonFlt.sys
20:13:47.0529 6540 aswMonFlt - ok
20:13:47.0576 6540 [ 997F6977294B9ACB7F400431DF8E3A4A ] aswRdr C:\windows\System32\Drivers\aswrdr2.sys
20:13:47.0592 6540 aswRdr - ok
20:13:47.0623 6540 [ 286193DC28CFB4CEB8D378E20A0850A9 ] aswRvrt C:\windows\system32\drivers\aswRvrt.sys
20:13:47.0639 6540 aswRvrt - ok
20:13:47.0685 6540 [ 58B93BA20D4693D0800D2B0A62B8059D ] aswSnx C:\windows\system32\drivers\aswSnx.sys
20:13:47.0732 6540 aswSnx - ok
20:13:47.0748 6540 [ EC7148DB4D126C81426A67602822E62C ] aswSP C:\windows\system32\drivers\aswSP.sys
20:13:47.0779 6540 aswSP - ok
20:13:47.0826 6540 [ 0E422E9CB7CD9C0AA6D4DFEAFA086EAA ] aswTdi C:\windows\system32\drivers\aswTdi.sys
20:13:47.0841 6540 aswTdi - ok
20:13:47.0888 6540 [ 9FE455C916C656144B004E3EB48507CE ] aswVmm C:\windows\system32\drivers\aswVmm.sys
20:13:47.0919 6540 aswVmm - ok
20:13:47.0951 6540 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
20:13:48.0029 6540 AsyncMac - ok
20:13:48.0075 6540 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
20:13:48.0107 6540 atapi - ok
20:13:48.0153 6540 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
20:13:48.0247 6540 AudioEndpointBuilder - ok
20:13:48.0247 6540 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
20:13:48.0325 6540 AudioSrv - ok
20:13:48.0481 6540 [ 9330941C8F6DF417F6DBBE998DB6687E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
20:13:48.0497 6540 avast! Antivirus - ok
20:13:48.0543 6540 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
20:13:48.0637 6540 AxInstSV - ok
20:13:48.0684 6540 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
20:13:48.0731 6540 b06bdrv - ok
20:13:48.0777 6540 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
20:13:48.0824 6540 b57nd60a - ok
20:13:48.0855 6540 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
20:13:48.0902 6540 BDESVC - ok
20:13:48.0918 6540 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
20:13:48.0996 6540 Beep - ok
20:13:49.0058 6540 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
20:13:49.0136 6540 BFE - ok
20:13:49.0167 6540 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\system32\qmgr.dll
20:13:49.0261 6540 BITS - ok
20:13:49.0308 6540 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
20:13:49.0355 6540 blbdrive - ok
20:13:49.0386 6540 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
20:13:49.0433 6540 bowser - ok
20:13:49.0479 6540 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
20:13:49.0526 6540 BrFiltLo - ok
20:13:49.0526 6540 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
20:13:49.0557 6540 BrFiltUp - ok
20:13:49.0557 6540 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
20:13:49.0635 6540 BridgeMP - ok
20:13:49.0667 6540 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
20:13:49.0698 6540 Browser - ok
20:13:49.0729 6540 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
20:13:49.0776 6540 Brserid - ok
20:13:49.0807 6540 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
20:13:49.0854 6540 BrSerWdm - ok
20:13:49.0885 6540 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
20:13:49.0916 6540 BrUsbMdm - ok
20:13:49.0932 6540 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
20:13:49.0963 6540 BrUsbSer - ok
20:13:49.0994 6540 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
20:13:50.0025 6540 BTHMODEM - ok
20:13:50.0072 6540 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
20:13:50.0135 6540 bthserv - ok
20:13:50.0213 6540 catchme - ok
20:13:50.0228 6540 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
20:13:50.0306 6540 cdfs - ok
20:13:50.0353 6540 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
20:13:50.0400 6540 cdrom - ok
20:13:50.0431 6540 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
20:13:50.0509 6540 CertPropSvc - ok
20:13:50.0540 6540 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
20:13:50.0571 6540 circlass - ok
20:13:50.0618 6540 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
20:13:50.0649 6540 CLFS - ok
20:13:50.0696 6540 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:13:50.0727 6540 clr_optimization_v2.0.50727_32 - ok
20:13:50.0759 6540 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:13:50.0774 6540 clr_optimization_v2.0.50727_64 - ok
20:13:50.0837 6540 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:13:50.0930 6540 clr_optimization_v4.0.30319_32 - ok
20:13:50.0961 6540 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:13:51.0008 6540 clr_optimization_v4.0.30319_64 - ok
20:13:51.0055 6540 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
20:13:51.0086 6540 CmBatt - ok
20:13:51.0102 6540 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
20:13:51.0117 6540 cmdide - ok
20:13:51.0180 6540 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
20:13:51.0211 6540 CNG - ok
20:13:51.0258 6540 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
20:13:51.0289 6540 Compbatt - ok
20:13:51.0305 6540 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
20:13:51.0351 6540 CompositeBus - ok
20:13:51.0367 6540 COMSysApp - ok
20:13:51.0414 6540 [ 723E3512D6D1FF75E5398981B38FCEF7 ] cphs C:\windows\SysWow64\IntelCpHeciSvc.exe
20:13:51.0445 6540 cphs - ok
20:13:51.0507 6540 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
20:13:51.0523 6540 crcdisk - ok
20:13:51.0570 6540 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\windows\system32\cryptsvc.dll
20:13:51.0663 6540 CryptSvc - ok
20:13:51.0773 6540 [ FD557A50A65E44041CD2FCEF4BEB04DB ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
20:13:51.0819 6540 cvhsvc - ok
20:13:51.0851 6540 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
20:13:51.0929 6540 DcomLaunch - ok
20:13:51.0960 6540 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
20:13:52.0053 6540 defragsvc - ok
20:13:52.0085 6540 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
20:13:52.0147 6540 DfsC - ok
20:13:52.0194 6540 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
20:13:52.0241 6540 Dhcp - ok
20:13:52.0272 6540 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
20:13:52.0350 6540 discache - ok
20:13:52.0397 6540 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
20:13:52.0412 6540 Disk - ok
20:13:52.0428 6540 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
20:13:52.0490 6540 Dnscache - ok
20:13:52.0521 6540 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
20:13:52.0584 6540 dot3svc - ok
20:13:52.0599 6540 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
20:13:52.0662 6540 DPS - ok
20:13:52.0709 6540 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
20:13:52.0755 6540 drmkaud - ok
20:13:52.0787 6540 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
20:13:52.0833 6540 DXGKrnl - ok
20:13:52.0896 6540 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
20:13:52.0974 6540 EapHost - ok
20:13:53.0067 6540 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
20:13:53.0177 6540 ebdrv - ok
20:13:53.0223 6540 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
20:13:53.0286 6540 EFS - ok
20:13:53.0348 6540 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
20:13:53.0395 6540 ehRecvr - ok
20:13:53.0426 6540 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
20:13:53.0442 6540 ehSched - ok
20:13:53.0489 6540 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
20:13:53.0535 6540 elxstor - ok
20:13:53.0535 6540 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
20:13:53.0582 6540 ErrDev - ok
20:13:53.0629 6540 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
20:13:53.0707 6540 EventSystem - ok
20:13:53.0785 6540 [ 64D25284A4E9D11CA0722AF3F30FD970 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
20:13:53.0816 6540 EvtEng - ok
20:13:53.0863 6540 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
20:13:53.0925 6540 exfat - ok
20:13:53.0941 6540 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
20:13:54.0019 6540 fastfat - ok
20:13:54.0081 6540 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
20:13:54.0113 6540 Fax - ok
20:13:54.0144 6540 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
20:13:54.0175 6540 fdc - ok
20:13:54.0222 6540 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
20:13:54.0284 6540 fdPHost - ok
20:13:54.0315 6540 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
20:13:54.0378 6540 FDResPub - ok
20:13:54.0409 6540 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
20:13:54.0425 6540 FileInfo - ok
20:13:54.0440 6540 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
20:13:54.0518 6540 Filetrace - ok
20:13:54.0549 6540 [ F76D04F7413B07DAA029F6520B64B4E8 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
20:13:54.0596 6540 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - warning
20:13:54.0596 6540 FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic (1)
20:13:54.0627 6540 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
20:13:54.0659 6540 flpydisk - ok
20:13:54.0674 6540 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
20:13:54.0705 6540 FltMgr - ok
20:13:54.0752 6540 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\windows\system32\FntCache.dll
20:13:54.0799 6540 FontCache - ok
20:13:54.0846 6540 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:13:54.0861 6540 FontCache3.0.0.0 - ok
20:13:54.0877 6540 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
20:13:54.0908 6540 FsDepends - ok
20:13:54.0939 6540 [ C2E475625F2C6F7DCDE4E920523A0573 ] fssfltr C:\windows\system32\DRIVERS\fssfltr.sys
20:13:54.0971 6540 fssfltr - ok
20:13:55.0064 6540 [ 812E1BA5C52A78F13EA6AA10DF708B1D ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
20:13:55.0127 6540 fsssvc - ok
20:13:55.0142 6540 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
20:13:55.0173 6540 Fs_Rec - ok
20:13:55.0220 6540 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
20:13:55.0251 6540 fvevol - ok
20:13:55.0298 6540 [ 60ACB128E64C35C2B4E4AAB1B0A5C293 ] FwLnk C:\windows\system32\DRIVERS\FwLnk.sys
20:13:55.0329 6540 FwLnk - ok
20:13:55.0376 6540 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
20:13:55.0392 6540 gagp30kx - ok
20:13:55.0439 6540 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
20:13:55.0501 6540 gpsvc - ok
20:13:55.0563 6540 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:13:55.0595 6540 gupdate - ok
20:13:55.0595 6540 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:13:55.0610 6540 gupdatem - ok
20:13:55.0657 6540 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
20:13:55.0673 6540 gusvc - ok
20:13:55.0704 6540 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
20:13:55.0735 6540 hcw85cir - ok
20:13:55.0751 6540 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
20:13:55.0813 6540 HdAudAddService - ok
20:13:55.0844 6540 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
20:13:55.0875 6540 HDAudBus - ok
20:13:55.0907 6540 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
20:13:55.0953 6540 HidBatt - ok
20:13:55.0953 6540 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
20:13:55.0985 6540 HidBth - ok
20:13:56.0031 6540 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
20:13:56.0063 6540 HidIr - ok
20:13:56.0078 6540 [ 957BD482212B77624E63A54EDDB414F8 ] hidkmdf C:\windows\system32\DRIVERS\hidkmdf.sys
20:13:56.0094 6540 hidkmdf - ok
20:13:56.0125 6540 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\System32\hidserv.dll
20:13:56.0203 6540 hidserv - ok
20:13:56.0250 6540 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\drivers\hidusb.sys
20:13:56.0265 6540 HidUsb - ok
20:13:56.0297 6540 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
20:13:56.0375 6540 hkmsvc - ok
20:13:56.0406 6540 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
20:13:56.0437 6540 HomeGroupListener - ok
20:13:56.0468 6540 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
20:13:56.0515 6540 HomeGroupProvider - ok
20:13:56.0546 6540 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
20:13:56.0577 6540 HpSAMD - ok
20:13:56.0609 6540 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
20:13:56.0687 6540 HTTP - ok
20:13:56.0718 6540 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
20:13:56.0733 6540 hwpolicy - ok
20:13:56.0780 6540 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
20:13:56.0811 6540 i8042prt - ok
20:13:56.0858 6540 [ C224331A54571C8C9162F7714400BBBD ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
20:13:56.0889 6540 iaStor - ok
20:13:56.0921 6540 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
20:13:56.0952 6540 iaStorV - ok
20:13:57.0014 6540 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
20:13:57.0030 6540 IDriverT ( UnsignedFile.Multi.Generic ) - warning
20:13:57.0030 6540 IDriverT - detected UnsignedFile.Multi.Generic (1)
20:13:57.0108 6540 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:13:57.0155 6540 idsvc - ok
20:13:57.0513 6540 [ 9AA61DC7AA32C1D1260C4267FF07E0C1 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
20:13:57.0997 6540 igfx - ok
20:13:58.0044 6540 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
20:13:58.0075 6540 iirsp - ok
20:13:58.0137 6540 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
20:13:58.0231 6540 IKEEXT - ok
20:13:58.0278 6540 [ CADDF0927DAC63EDAE48F5C35A61D87D ] intaud_WaveExtensible C:\windows\system32\drivers\intelaud.sys
20:13:58.0309 6540 intaud_WaveExtensible - ok
20:13:58.0481 6540 [ 8BD7EB761F4341E6F9FD066099F24B01 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
20:13:58.0605 6540 IntcAzAudAddService - ok
20:13:58.0668 6540 [ 6C9FFFECA9FED31347D211C5D1FFBD2D ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
20:13:58.0730 6540 IntcDAud - ok
20:13:58.0824 6540 [ 7C76466F4E0F76CE259C6005D161E9E8 ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
20:13:58.0855 6540 Intel® Capability Licensing Service Interface - ok
20:13:58.0949 6540 [ D7467E57549960468E0CA85C17185B12 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
20:13:58.0964 6540 Intel® ME Service - ok
20:13:58.0995 6540 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
20:13:59.0011 6540 intelide - ok
20:13:59.0058 6540 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
20:13:59.0089 6540 intelppm - ok
20:13:59.0120 6540 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
20:13:59.0198 6540 IPBusEnum - ok
20:13:59.0229 6540 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
20:13:59.0292 6540 IpFilterDriver - ok
20:13:59.0354 6540 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
20:13:59.0401 6540 iphlpsvc - ok
20:13:59.0432 6540 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
20:13:59.0495 6540 IPMIDRV - ok
20:13:59.0495 6540 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
20:13:59.0573 6540 IPNAT - ok
20:13:59.0604 6540 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
20:13:59.0635 6540 IRENUM - ok
20:13:59.0666 6540 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
20:13:59.0682 6540 isapnp - ok
20:13:59.0697 6540 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
20:13:59.0744 6540 iScsiPrt - ok
20:13:59.0775 6540 [ 846354992EBB373F452EB9182D501B08 ] iusb3hcs C:\windows\system32\DRIVERS\iusb3hcs.sys
20:13:59.0791 6540 iusb3hcs - ok
20:13:59.0807 6540 [ 1D88A23853387D34D52CC8F9DDBFC56C ] iusb3hub C:\windows\system32\DRIVERS\iusb3hub.sys
20:13:59.0838 6540 iusb3hub - ok
20:13:59.0885 6540 [ FC5EFD7C797DF19DFB999F0605A7924E ] iusb3xhc C:\windows\system32\DRIVERS\iusb3xhc.sys
20:13:59.0931 6540 iusb3xhc - ok
20:13:59.0947 6540 [ 716F66336F10885D935B08174DC54242 ] iwdbus C:\windows\system32\DRIVERS\iwdbus.sys
20:13:59.0963 6540 iwdbus - ok
20:14:00.0025 6540 [ 604A8615BB3D7064197A0563C799B938 ] jhi_service C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
20:14:00.0041 6540 jhi_service - ok
20:14:00.0087 6540 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
20:14:00.0119 6540 kbdclass - ok
20:14:00.0134 6540 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
20:14:00.0165 6540 kbdhid - ok
20:14:00.0197 6540 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
20:14:00.0228 6540 KeyIso - ok
20:14:00.0243 6540 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
20:14:00.0290 6540 KSecDD - ok
20:14:00.0306 6540 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
20:14:00.0337 6540 KSecPkg - ok
20:14:00.0353 6540 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
20:14:00.0431 6540 ksthunk - ok
20:14:00.0462 6540 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
20:14:00.0555 6540 KtmRm - ok
20:14:00.0602 6540 [ 3CE6A9BEF066BF9488E6BC4D6C62F77E ] L1C C:\windows\system32\DRIVERS\L1C62x64.sys
20:14:00.0618 6540 L1C - ok
20:14:00.0665 6540 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\System32\srvsvc.dll
20:14:00.0852 6540 LanmanServer - ok
20:14:00.0914 6540 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
20:14:01.0008 6540 LanmanWorkstation - ok
20:14:01.0055 6540 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
20:14:01.0117 6540 lltdio - ok
20:14:01.0148 6540 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
20:14:01.0226 6540 lltdsvc - ok
20:14:01.0273 6540 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
20:14:01.0335 6540 lmhosts - ok
20:14:01.0382 6540 [ AB41542FA180CB3317F597ED7E7D5C5D ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
20:14:01.0413 6540 LMS - ok
20:14:01.0460 6540 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
20:14:01.0491 6540 LSI_FC - ok
20:14:01.0507 6540 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
20:14:01.0523 6540 LSI_SAS - ok
20:14:01.0538 6540 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
20:14:01.0554 6540 LSI_SAS2 - ok
20:14:01.0554 6540 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
20:14:01.0585 6540 LSI_SCSI - ok
20:14:01.0601 6540 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
20:14:01.0679 6540 luafv - ok
20:14:01.0725 6540 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
20:14:01.0741 6540 Mcx2Svc - ok
20:14:01.0757 6540 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
20:14:01.0772 6540 megasas - ok
20:14:01.0819 6540 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
20:14:01.0850 6540 MegaSR - ok
20:14:01.0881 6540 [ 6B01B7414A105B9E51652089A03027CF ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
20:14:01.0913 6540 MEIx64 - ok
20:14:01.0959 6540 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
20:14:02.0037 6540 MMCSS - ok
20:14:02.0053 6540 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
20:14:02.0131 6540 Modem - ok
20:14:02.0178 6540 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
20:14:02.0225 6540 monitor - ok
20:14:02.0256 6540 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
20:14:02.0271 6540 mouclass - ok
20:14:02.0318 6540 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
20:14:02.0349 6540 mouhid - ok
20:14:02.0381 6540 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
20:14:02.0412 6540 mountmgr - ok
20:14:02.0427 6540 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
20:14:02.0459 6540 mpio - ok
20:14:02.0474 6540 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
20:14:02.0537 6540 mpsdrv - ok
20:14:02.0583 6540 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
20:14:02.0677 6540 MpsSvc - ok
20:14:02.0724 6540 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
20:14:02.0771 6540 MRxDAV - ok
20:14:02.0802 6540 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
20:14:02.0849 6540 mrxsmb - ok
20:14:02.0880 6540 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
20:14:02.0895 6540 mrxsmb10 - ok
20:14:02.0927 6540 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
20:14:02.0958 6540 mrxsmb20 - ok
20:14:02.0973 6540 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
20:14:03.0005 6540 msahci - ok
20:14:03.0036 6540 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
20:14:03.0051 6540 msdsm - ok
20:14:03.0067 6540 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
20:14:03.0114 6540 MSDTC - ok
20:14:03.0145 6540 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
20:14:03.0207 6540 Msfs - ok
20:14:03.0239 6540 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
20:14:03.0317 6540 mshidkmdf - ok
20:14:03.0332 6540 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
20:14:03.0348 6540 msisadrv - ok
20:14:03.0395 6540 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
20:14:03.0473 6540 MSiSCSI - ok
20:14:03.0473 6540 msiserver - ok
20:14:03.0504 6540 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
20:14:03.0566 6540 MSKSSRV - ok
20:14:03.0597 6540 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
20:14:03.0644 6540 MSPCLOCK - ok
20:14:03.0675 6540 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
20:14:03.0753 6540 MSPQM - ok
20:14:03.0785 6540 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
20:14:03.0816 6540 MsRPC - ok
20:14:03.0831 6540 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
20:14:03.0863 6540 mssmbios - ok
20:14:03.0894 6540 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
20:14:03.0972 6540 MSTEE - ok
20:14:03.0972 6540 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
20:14:04.0003 6540 MTConfig - ok
20:14:04.0019 6540 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
20:14:04.0034 6540 Mup - ok
20:14:04.0097 6540 [ E3B58E3011B207C5289D11173B30E298 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
20:14:04.0128 6540 MyWiFiDHCPDNS - ok
20:14:04.0175 6540 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
20:14:04.0268 6540 napagent - ok
20:14:04.0331 6540 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
20:14:04.0393 6540 NativeWifiP - ok
20:14:04.0440 6540 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
20:14:04.0487 6540 NDIS - ok
20:14:04.0502 6540 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
20:14:04.0580 6540 NdisCap - ok
20:14:04.0627 6540 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
20:14:04.0674 6540 NdisTapi - ok
20:14:04.0705 6540 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
20:14:04.0767 6540 Ndisuio - ok
20:14:04.0814 6540 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
20:14:04.0892 6540 NdisWan - ok
20:14:04.0908 6540 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
20:14:04.0970 6540 NDProxy - ok
20:14:05.0017 6540 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
20:14:05.0079 6540 NetBIOS - ok
20:14:05.0095 6540 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
20:14:05.0173 6540 NetBT - ok
20:14:05.0204 6540 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
20:14:05.0220 6540 Netlogon - ok
20:14:05.0267 6540 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
20:14:05.0345 6540 Netman - ok
20:14:05.0407 6540 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:14:05.0454 6540 NetMsmqActivator - ok
20:14:05.0454 6540 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:14:05.0485 6540 NetPipeActivator - ok
20:14:05.0532 6540 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
20:14:05.0610 6540 netprofm - ok
20:14:05.0641 6540 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:14:05.0672 6540 NetTcpActivator - ok
20:14:05.0672 6540 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:14:05.0688 6540 NetTcpPortSharing - ok
20:14:06.0015 6540 [ 47DC062656EA661FE9175DBACAD00E9D ] NETwNs64 C:\windows\system32\DRIVERS\NETwNs64.sys
20:14:06.0281 6540 NETwNs64 - ok
20:14:06.0327 6540 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
20:14:06.0359 6540 nfrd960 - ok
20:14:06.0405 6540 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
20:14:06.0452 6540 NlaSvc - ok
20:14:06.0483 6540 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
20:14:06.0530 6540 Npfs - ok
20:14:06.0561 6540 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
20:14:06.0639 6540 nsi - ok
20:14:06.0655 6540 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
20:14:06.0733 6540 nsiproxy - ok
20:14:06.0811 6540 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
20:14:06.0873 6540 Ntfs - ok
20:14:06.0905 6540 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
20:14:06.0967 6540 Null - ok
20:14:07.0014 6540 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
20:14:07.0029 6540 nvraid - ok
20:14:07.0045 6540 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
20:14:07.0061 6540 nvstor - ok
20:14:07.0076 6540 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
20:14:07.0092 6540 nv_agp - ok
20:14:07.0092 6540 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
20:14:07.0123 6540 ohci1394 - ok
20:14:07.0154 6540 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:14:07.0170 6540 ose - ok
20:14:07.0295 6540 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:14:07.0513 6540 osppsvc - ok
20:14:07.0544 6540 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
20:14:07.0591 6540 p2pimsvc - ok
20:14:07.0638 6540 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
20:14:07.0685 6540 p2psvc - ok
20:14:07.0716 6540 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
20:14:07.0763 6540 Parport - ok
20:14:07.0778 6540 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
20:14:07.0794 6540 partmgr - ok
20:14:07.0825 6540 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
20:14:07.0887 6540 PcaSvc - ok
20:14:07.0919 6540 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
20:14:07.0950 6540 pci - ok
20:14:07.0981 6540 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
20:14:08.0012 6540 pciide - ok
20:14:08.0028 6540 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
20:14:08.0059 6540 pcmcia - ok
20:14:08.0075 6540 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
20:14:08.0106 6540 pcw - ok
20:14:08.0121 6540 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
20:14:08.0215 6540 PEAUTH - ok
20:14:08.0293 6540 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
20:14:08.0340 6540 PerfHost - ok
20:14:08.0387 6540 [ 91111CEBBDE8015E822C46120ED9537C ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys
20:14:08.0402 6540 PGEffect - ok
20:14:08.0449 6540 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
20:14:08.0543 6540 pla - ok
20:14:08.0589 6540 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
20:14:08.0636 6540 PlugPlay - ok
20:14:08.0652 6540 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
20:14:08.0699 6540 PNRPAutoReg - ok
20:14:08.0714 6540 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
20:14:08.0745 6540 PNRPsvc - ok
20:14:08.0777 6540 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
20:14:08.0855 6540 PolicyAgent - ok
20:14:08.0901 6540 [ A2CCA4FB273E6050F17A0A416CFF2FCD ] Power C:\windows\system32\umpo.dll
20:14:08.0933 6540 Power - ok
20:14:08.0979 6540 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
20:14:09.0057 6540 PptpMiniport - ok
20:14:09.0089 6540 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
20:14:09.0135 6540 Processor - ok
20:14:09.0167 6540 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
20:14:09.0213 6540 ProfSvc - ok
20:14:09.0229 6540 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
20:14:09.0260 6540 ProtectedStorage - ok
20:14:09.0291 6540 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
20:14:09.0354 6540 Psched - ok
20:14:09.0385 6540 [ A6BF0A9B5A30D743623CA0D3BE35DF05 ] PxHlpa64 C:\windows\system32\Drivers\PxHlpa64.sys
20:14:09.0416 6540 PxHlpa64 - ok
20:14:09.0494 6540 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
20:14:09.0572 6540 ql2300 - ok
20:14:09.0619 6540 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
20:14:09.0650 6540 ql40xx - ok
20:14:09.0697 6540 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
20:14:09.0728 6540 QWAVE - ok
20:14:09.0744 6540 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
20:14:09.0822 6540 QWAVEdrv - ok
20:14:09.0837 6540 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
20:14:09.0931 6540 RasAcd - ok
20:14:09.0978 6540 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
20:14:10.0025 6540 RasAgileVpn - ok
20:14:10.0056 6540 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
20:14:10.0134 6540 RasAuto - ok
20:14:10.0181 6540 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
20:14:10.0243 6540 Rasl2tp - ok
20:14:10.0290 6540 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
20:14:10.0368 6540 RasMan - ok
20:14:10.0399 6540 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
20:14:10.0477 6540 RasPppoe - ok
20:14:10.0508 6540 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
20:14:10.0586 6540 RasSstp - ok
20:14:10.0633 6540 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
20:14:10.0727 6540 rdbss - ok
20:14:10.0758 6540 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
20:14:10.0789 6540 rdpbus - ok
20:14:10.0820 6540 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
20:14:10.0898 6540 RDPCDD - ok
20:14:10.0929 6540 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
20:14:11.0007 6540 RDPENCDD - ok
20:14:11.0054 6540 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
20:14:11.0132 6540 RDPREFMP - ok
20:14:11.0179 6540 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
20:14:11.0210 6540 RDPWD - ok
20:14:11.0241 6540 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
20:14:11.0257 6540 rdyboost - ok
20:14:11.0335 6540 [ B2D01290C0E0465ACA54C2088E947823 ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
20:14:11.0366 6540 RealNetworks Downloader Resolver Service - ok
20:14:11.0444 6540 [ F3AF2B43F35DBB3A0EB9FEEEC7D62217 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
20:14:11.0460 6540 RegSrvc - ok
20:14:11.0475 6540 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
20:14:11.0553 6540 RemoteAccess - ok
20:14:11.0585 6540 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
20:14:11.0663 6540 RemoteRegistry - ok
20:14:11.0678 6540 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
20:14:11.0772 6540 RpcEptMapper - ok
20:14:11.0787 6540 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
20:14:11.0819 6540 RpcLocator - ok
20:14:11.0850 6540 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
20:14:11.0943 6540 RpcSs - ok
20:14:11.0990 6540 [ 40447D89F56780C49AC2EC22A05D5727 ] RSP2STOR C:\windows\system32\DRIVERS\RtsP2Stor.sys
20:14:12.0021 6540 RSP2STOR - ok
20:14:12.0068 6540 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
20:14:12.0115 6540 rspndr - ok
20:14:12.0131 6540 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
20:14:12.0146 6540 SamSs - ok
20:14:12.0177 6540 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
20:14:12.0193 6540 sbp2port - ok
20:14:12.0224 6540 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
20:14:12.0318 6540 SCardSvr - ok
20:14:12.0333 6540 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
20:14:12.0411 6540 scfilter - ok
20:14:12.0458 6540 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
20:14:12.0552 6540 Schedule - ok
20:14:12.0583 6540 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
20:14:12.0645 6540 SCPolicySvc - ok
20:14:12.0677 6540 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
20:14:12.0723 6540 SDRSVC - ok
20:14:12.0770 6540 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
20:14:12.0848 6540 secdrv - ok
20:14:12.0864 6540 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
20:14:12.0926 6540 seclogon - ok
20:14:12.0957 6540 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\system32\sens.dll
20:14:13.0051 6540 SENS - ok
20:14:13.0098 6540 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
20:14:13.0129 6540 SensrSvc - ok
20:14:13.0145 6540 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
20:14:13.0191 6540 Serenum - ok
20:14:13.0223 6540 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
20:14:13.0269 6540 Serial - ok
20:14:13.0301 6540 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
20:14:13.0332 6540 sermouse - ok
20:14:13.0363 6540 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
20:14:13.0441 6540 SessionEnv - ok
20:14:13.0472 6540 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
20:14:13.0503 6540 sffdisk - ok
20:14:13.0503 6540 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
20:14:13.0550 6540 sffp_mmc - ok
20:14:13.0550 6540 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
20:14:13.0597 6540 sffp_sd - ok
20:14:13.0613 6540 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
20:14:13.0644 6540 sfloppy - ok
20:14:13.0691 6540 [ 2046AA7491DE7EFA4D70E615D9BC9D09 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys
20:14:13.0722 6540 Sftfs - ok
20:14:13.0800 6540 [ 77C5A741A7452812F278EF2C18478862 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
20:14:13.0831 6540 sftlist - ok
20:14:13.0878 6540 [ 0E0446BC4D51BE4263ACB7E33491191C ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys
20:14:13.0909 6540 Sftplay - ok
20:14:13.0940 6540 [ C5FB982CD266E604ED3142102C26D62C ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys
20:14:13.0956 6540 Sftredir - ok
20:14:14.0003 6540 [ 2575511AF67AA1FA068CCC4918E2C2A3 ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys
20:14:14.0034 6540 Sftvol - ok
20:14:14.0081 6540 [ 39B1D0A636A400304565D4521FAD6D77 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
20:14:14.0096 6540 sftvsa - ok
20:14:14.0159 6540 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
20:14:14.0252 6540 SharedAccess - ok
20:14:14.0299 6540 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
20:14:14.0393 6540 ShellHWDetection - ok
20:14:14.0439 6540 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
20:14:14.0455 6540 SiSRaid2 - ok
20:14:14.0455 6540 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
20:14:14.0486 6540 SiSRaid4 - ok
20:14:14.0783 6540 [ 73E3B5D1F1EB5FDC51A5C3437EEE3348 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
20:14:14.0876 6540 Skype C2C Service - ok
20:14:15.0001 6540 [ 3E587DBBDFF938DDE5D4CE4047BE9041 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:14:15.0017 6540 SkypeUpdate - ok
20:14:15.0063 6540 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
20:14:15.0141 6540 Smb - ok
20:14:15.0188 6540 [ 20C99358D42DB9585A21BF3BC27FC9BC ] SmbDrv C:\windows\system32\DRIVERS\Smb_driver.sys
20:14:15.0204 6540 SmbDrv - ok
20:14:15.0251 6540 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
20:14:15.0297 6540 SNMPTRAP - ok
20:14:15.0329 6540 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
20:14:15.0344 6540 spldr - ok
20:14:15.0391 6540 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
20:14:15.0438 6540 Spooler - ok
20:14:15.0578 6540 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
20:14:15.0719 6540 sppsvc - ok
20:14:15.0750 6540 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
20:14:15.0812 6540 sppuinotify - ok
20:14:15.0859 6540 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
20:14:15.0921 6540 srv - ok
20:14:15.0953 6540 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
20:14:15.0999 6540 srv2 - ok
20:14:16.0015 6540 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
20:14:16.0046 6540 srvnet - ok
20:14:16.0093 6540 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
20:14:16.0171 6540 SSDPSRV - ok
20:14:16.0202 6540 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
20:14:16.0265 6540 SstpSvc - ok
20:14:16.0296 6540 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
20:14:16.0327 6540 stexstor - ok
20:14:16.0374 6540 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
20:14:16.0421 6540 stisvc - ok
20:14:16.0436 6540 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
20:14:16.0452 6540 swenum - ok
20:14:16.0499 6540 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
20:14:16.0592 6540 swprv - ok
20:14:16.0639 6540 [ 7C7E05EEA6407130B3896A7A01390B6F ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
20:14:16.0670 6540 SynTP - ok
20:14:16.0779 6540 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
20:14:16.0857 6540 SysMain - ok
20:14:16.0889 6540 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
20:14:16.0951 6540 TabletInputService - ok
20:14:16.0998 6540 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
20:14:17.0076 6540 TapiSrv - ok
20:14:17.0091 6540 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
20:14:17.0169 6540 TBS - ok
20:14:17.0279 6540 [ DB74544B75566C974815E79A62433F29 ] Tcpip C:\windows\system32\drivers\tcpip.sys
20:14:17.0372 6540 Tcpip - ok
20:14:17.0435 6540 [ DB74544B75566C974815E79A62433F29 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
20:14:17.0497 6540 TCPIP6 - ok
20:14:17.0544 6540 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
20:14:17.0559 6540 tcpipreg - ok
20:14:17.0637 6540 [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys
20:14:17.0653 6540 tdcmdpst - ok
20:14:17.0684 6540 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
20:14:17.0715 6540 TDPIPE - ok
20:14:17.0715 6540 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
20:14:17.0762 6540 TDTCP - ok
20:14:17.0793 6540 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
20:14:17.0840 6540 tdx - ok
20:14:17.0871 6540 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
20:14:17.0903 6540 TermDD - ok
20:14:17.0949 6540 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
20:14:18.0027 6540 TermService - ok
20:14:18.0043 6540 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
20:14:18.0090 6540 Themes - ok
20:14:18.0105 6540 [ 7F35CA8296A52C7161088EB1D952E8ED ] Thpdrv C:\windows\system32\DRIVERS\thpdrv.sys
20:14:18.0137 6540 Thpdrv - ok
20:14:18.0184 6540 [ B4E609047434ED948AF7BDEF2FA66E38 ] Thpevm C:\windows\system32\DRIVERS\Thpevm.SYS
20:14:18.0199 6540 Thpevm - ok
20:14:18.0246 6540 [ 0B4734AE9EC70B843DF02E7B1C056377 ] Thpsrv C:\windows\system32\ThpSrv.exe
20:14:18.0277 6540 Thpsrv ( UnsignedFile.Multi.Generic ) - warning
20:14:18.0277 6540 Thpsrv - detected UnsignedFile.Multi.Generic (1)
20:14:18.0308 6540 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
20:14:18.0371 6540 THREADORDER - ok
20:14:18.0433 6540 [ 521C21E7F6EAB98679F90CA4E135FB95 ] TMachInfo C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
20:14:18.0464 6540 TMachInfo - ok
20:14:18.0480 6540 [ 8E2C799D3476EAC32C3BA0DF7CE6AF19 ] TODDSrv C:\windows\system32\TODDSrv.exe
20:14:18.0511 6540 TODDSrv - ok
20:14:18.0636 6540 [ A7EFE68D424A55FA84CCB6099D1D93C0 ] TosCoSrv C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
20:14:18.0667 6540 TosCoSrv ( UnsignedFile.Multi.Generic ) - warning
20:14:18.0667 6540 TosCoSrv - detected UnsignedFile.Multi.Generic (1)
20:14:18.0714 6540 [ 6E2330FB032ED3EBEFC1349AD7081A98 ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
20:14:18.0745 6540 TOSHIBA eco Utility Service - ok
20:14:18.0792 6540 [ 9338C2DEB14CA2804BCB3276CB7EB4FD ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
20:14:18.0808 6540 TOSHIBA HDD SSD Alert Service - ok
20:14:18.0886 6540 [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64 C:\windows\system32\DRIVERS\tos_sps64.sys
20:14:18.0917 6540 tos_sps64 - ok
20:14:18.0964 6540 [ 36CDD894395BEC46EFB14F49D77D3D82 ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
20:14:18.0995 6540 TPCHSrv - ok
20:14:19.0042 6540 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
20:14:19.0120 6540 TrkWks - ok
20:14:19.0166 6540 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
20:14:19.0229 6540 TrustedInstaller - ok
20:14:19.0276 6540 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
20:14:19.0307 6540 tssecsrv - ok
20:14:19.0322 6540 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
20:14:19.0354 6540 TsUsbFlt - ok
20:14:19.0369 6540 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
20:14:19.0416 6540 TsUsbGD - ok
20:14:19.0463 6540 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
20:14:19.0510 6540 tunnel - ok
20:14:19.0572 6540 [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS
20:14:19.0588 6540 TVALZ - ok
20:14:19.0619 6540 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys
20:14:19.0634 6540 TVALZFL - ok
20:14:19.0666 6540 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
20:14:19.0697 6540 uagp35 - ok
20:14:19.0728 6540 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
20:14:19.0806 6540 udfs - ok
20:14:19.0853 6540 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
20:14:19.0884 6540 UI0Detect - ok
20:14:19.0931 6540 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
20:14:19.0962 6540 uliagpkx - ok
20:14:19.0993 6540 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
20:14:20.0040 6540 umbus - ok
20:14:20.0071 6540 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
20:14:20.0180 6540 UmPass - ok
20:14:20.0305 6540 [ 182BBA1B43898D5DA0938D2E9A526B31 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
20:14:20.0321 6540 UNS - ok
20:14:20.0368 6540 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
20:14:20.0461 6540 upnphost - ok
20:14:20.0524 6540 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
20:14:20.0539 6540 usbccgp - ok
20:14:20.0633 6540 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
20:14:20.0680 6540 usbcir - ok
20:14:20.0742 6540 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
20:14:20.0773 6540 usbehci - ok
20:14:20.0836 6540 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
20:14:20.0867 6540 usbhub - ok
20:14:20.0882 6540 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
20:14:20.0914 6540 usbohci - ok
20:14:20.0945 6540 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\drivers\usbprint.sys
20:14:20.0976 6540 usbprint - ok
20:14:21.0007 6540 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
20:14:21.0054 6540 USBSTOR - ok
20:14:21.0054 6540 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
20:14:21.0070 6540 usbuhci - ok
20:14:21.0101 6540 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
20:14:21.0132 6540 usbvideo - ok
20:14:21.0148 6540 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
20:14:21.0257 6540 UxSms - ok
20:14:21.0288 6540 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
20:14:21.0319 6540 VaultSvc - ok
20:14:21.0366 6540 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
20:14:21.0382 6540 vdrvroot - ok
20:14:21.0444 6540 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
20:14:21.0538 6540 vds - ok
20:14:21.0569 6540 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
20:14:21.0600 6540 vga - ok
20:14:21.0616 6540 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
20:14:21.0678 6540 VgaSave - ok
20:14:21.0694 6540 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
20:14:21.0725 6540 vhdmp - ok
20:14:21.0772 6540 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
20:14:21.0803 6540 viaide - ok
20:14:21.0834 6540 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
20:14:21.0865 6540 volmgr - ok
20:14:21.0881 6540 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
20:14:21.0912 6540 volmgrx - ok
20:14:21.0912 6540 [ DF8126BD41180351A093A3AD2FC8903B ] volsnap C:\windows\system32\drivers\volsnap.sys
20:14:21.0943 6540 volsnap - ok
20:14:21.0974 6540 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
20:14:21.0990 6540 vsmraid - ok
20:14:22.0052 6540 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
20:14:22.0130 6540 VSS - ok
20:14:22.0146 6540 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
20:14:22.0193 6540 vwifibus - ok
20:14:22.0224 6540 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
20:14:22.0255 6540 vwififlt - ok
20:14:22.0302 6540 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
20:14:22.0318 6540 vwifimp - ok
20:14:22.0364 6540 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
20:14:22.0427 6540 W32Time - ok
20:14:22.0474 6540 [ 2F4B66BAB9F4C9D0FF4FCAA6D8888991 ] WacHidRouter C:\windows\system32\DRIVERS\wachidrouter.sys
20:14:22.0489 6540 WacHidRouter - ok
20:14:22.0505 6540 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
20:14:22.0536 6540 WacomPen - ok
20:14:22.0567 6540 [ 366669F53F8CAF96AF9264EF9BC95084 ] wacomrouterfilter C:\windows\system32\DRIVERS\wacomrouterfilter.sys
20:14:22.0583 6540 wacomrouterfilter - ok
20:14:22.0614 6540 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
20:14:22.0676 6540 WANARP - ok
20:14:22.0692 6540 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
20:14:22.0739 6540 Wanarpv6 - ok
20:14:22.0864 6540 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
20:14:22.0957 6540 WatAdminSvc - ok
20:14:23.0004 6540 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
20:14:23.0098 6540 wbengine - ok
20:14:23.0129 6540 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
20:14:23.0160 6540 WbioSrvc - ok
20:14:23.0191 6540 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
20:14:23.0238 6540 wcncsvc - ok
20:14:23.0285 6540 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
20:14:23.0316 6540 WcsPlugInService - ok
20:14:23.0347 6540 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
20:14:23.0363 6540 Wd - ok
20:14:23.0503 6540 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
20:14:23.0534 6540 Wdf01000 - ok
20:14:23.0581 6540 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
20:14:23.0690 6540 WdiServiceHost - ok
20:14:23.0690 6540 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
20:14:23.0737 6540 WdiSystemHost - ok
20:14:23.0784 6540 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
20:14:23.0862 6540 WebClient - ok
20:14:23.0924 6540 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
20:14:24.0034 6540 Wecsvc - ok
20:14:24.0190 6540 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
20:14:24.0252 6540 wercplsupport - ok
20:14:24.0392 6540 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
20:14:24.0455 6540 WerSvc - ok
20:14:24.0548 6540 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
20:14:24.0595 6540 WfpLwf - ok
20:14:24.0626 6540 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
20:14:24.0642 6540 WIMMount - ok
20:14:24.0689 6540 WinDefend - ok
20:14:24.0704 6540 WinHttpAutoProxySvc - ok
20:14:24.0907 6540 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
20:14:24.0970 6540 Winmgmt - ok
20:14:25.0531 6540 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
20:14:25.0625 6540 WinRM - ok
20:14:25.0781 6540 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
20:14:25.0812 6540 WinUsb - ok
20:14:25.0937 6540 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
20:14:25.0984 6540 Wlansvc - ok
20:14:26.0093 6540 [ 357CABBF155AFD1D3926E62539D2A3A7 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:14:26.0155 6540 wlidsvc - ok
20:14:26.0186 6540 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
20:14:26.0233 6540 WmiAcpi - ok
20:14:26.0249 6540 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
20:14:26.0296 6540 wmiApSrv - ok
20:14:26.0327 6540 WMPNetworkSvc - ok
20:14:26.0374 6540 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
20:14:26.0405 6540 WPCSvc - ok
20:14:26.0436 6540 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
20:14:26.0467 6540 WPDBusEnum - ok
20:14:26.0530 6540 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
20:14:26.0592 6540 ws2ifsl - ok
20:14:26.0639 6540 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\system32\wscsvc.dll
20:14:26.0779 6540 wscsvc - ok
20:14:26.0779 6540 WSearch - ok
20:14:27.0169 6540 [ 7048FE94457B524E000834B1120F77CE ] WTabletServiceCon C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
20:14:27.0200 6540 WTabletServiceCon - ok
20:14:27.0856 6540 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
20:14:27.0934 6540 wuauserv - ok
20:14:27.0980 6540 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
20:14:28.0012 6540 WudfPf - ok
20:14:28.0121 6540 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
20:14:28.0183 6540 WUDFRd - ok
20:14:28.0230 6540 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
20:14:28.0292 6540 wudfsvc - ok
20:14:28.0324 6540 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\windows\System32\wwansvc.dll
20:14:28.0370 6540 WwanSvc - ok
20:14:28.0464 6540 [ 74713CB32792F9C7632DAA7DA22CA974 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
20:14:28.0495 6540 ZeroConfigService - ok
20:14:28.0526 6540 ================ Scan global ===============================
20:14:28.0558 6540 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
20:14:28.0589 6540 [ 88EDD0B34EED542745931E581AD21A32 ] C:\windows\system32\winsrv.dll
20:14:28.0604 6540 [ 88EDD0B34EED542745931E581AD21A32 ] C:\windows\system32\winsrv.dll
20:14:28.0682 6540 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
20:14:28.0729 6540 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
20:14:28.0729 6540 [Global] - ok
20:14:28.0729 6540 ================ Scan MBR ==================================
20:14:28.0745 6540 [ 7C073E8BB11E8EE0F384E939542EC0E2 ] \Device\Harddisk0\DR0
20:14:28.0745 6540 Suspicious mbr (Forged): \Device\Harddisk0\DR0
20:14:28.0838 6540 \Device\Harddisk0\DR0 ( Rootkit.Boot.Harbinger.a ) - infected
20:14:28.0838 6540 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Harbinger.a (0)
20:14:29.0306 6540 ================ Scan VBR ==================================
20:14:29.0338 6540 [ D9F314127C023C6A2B12FFEEFCDE4821 ] \Device\Harddisk0\DR0\Partition1
20:14:29.0338 6540 \Device\Harddisk0\DR0\Partition1 - ok
20:14:29.0338 6540 ================ Scan active images ========================
20:14:29.0338 6540 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
20:14:29.0338 6540 C:\Windows\System32\drivers\crashdmp.sys - ok
20:14:29.0353 6540 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
20:14:29.0353 6540 C:\Windows\System32\drivers\dumpfve.sys - ok
20:14:29.0353 6540 [ C224331A54571C8C9162F7714400BBBD ] C:\Windows\System32\drivers\iaStor.sys
20:14:29.0353 6540 C:\Windows\System32\drivers\iaStor.sys - ok
20:14:29.0369 6540 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
20:14:29.0369 6540 C:\Windows\System32\drivers\cdrom.sys - ok
20:14:29.0369 6540 [ 58B93BA20D4693D0800D2B0A62B8059D ] C:\Windows\System32\drivers\aswSnx.sys
20:14:29.0369 6540 C:\Windows\System32\drivers\aswSnx.sys - ok
20:14:29.0384 6540 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
20:14:29.0384 6540 C:\Windows\System32\drivers\beep.sys - ok
20:14:29.0384 6540 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
20:14:29.0384 6540 C:\Windows\System32\drivers\null.sys - ok
20:14:29.0384 6540 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
20:14:29.0384 6540 C:\Windows\System32\drivers\msfs.sys - ok
20:14:29.0400 6540 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
20:14:29.0400 6540 C:\Windows\System32\drivers\npfs.sys - ok
20:14:29.0400 6540 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
20:14:29.0400 6540 C:\Windows\System32\drivers\RDPCDD.sys - ok
20:14:29.0400 6540 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
20:14:29.0400 6540 C:\Windows\System32\drivers\RDPENCDD.sys - ok
20:14:29.0416 6540 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
20:14:29.0416 6540 C:\Windows\System32\drivers\RDPREFMP.sys - ok
20:14:29.0416 6540 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
20:14:29.0416 6540 C:\Windows\System32\drivers\tdi.sys - ok
20:14:29.0416 6540 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
20:14:29.0416 6540 C:\Windows\System32\drivers\tdx.sys - ok
20:14:29.0431 6540 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
20:14:29.0431 6540 C:\Windows\System32\drivers\vga.sys - ok
20:14:29.0431 6540 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
20:14:29.0431 6540 C:\Windows\System32\drivers\videoprt.sys - ok
20:14:29.0447 6540 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
20:14:29.0447 6540 C:\Windows\System32\drivers\watchdog.sys - ok
20:14:29.0447 6540 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
20:14:29.0447 6540 C:\Windows\System32\drivers\afd.sys - ok
20:14:29.0447 6540 [ 0E422E9CB7CD9C0AA6D4DFEAFA086EAA ] C:\Windows\System32\drivers\aswTdi.sys
20:14:29.0447 6540 C:\Windows\System32\drivers\aswTdi.sys - ok
20:14:29.0462 6540 [ 997F6977294B9ACB7F400431DF8E3A4A ] C:\Windows\System32\drivers\aswRdr2.sys
20:14:29.0462 6540 C:\Windows\System32\drivers\aswRdr2.sys - ok
20:14:29.0462 6540 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
20:14:29.0462 6540 C:\Windows\System32\drivers\netbt.sys - ok
20:14:29.0462 6540 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
20:14:29.0462 6540 C:\Windows\System32\drivers\netbios.sys - ok
20:14:29.0478 6540 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
20:14:29.0478 6540 C:\Windows\System32\drivers\pacer.sys - ok
20:14:29.0478 6540 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
20:14:29.0478 6540 C:\Windows\System32\drivers\vwififlt.sys - ok
20:14:29.0494 6540 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
20:14:29.0494 6540 C:\Windows\System32\drivers\wanarp.sys - ok
20:14:29.0494 6540 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
20:14:29.0494 6540 C:\Windows\System32\drivers\wfplwf.sys - ok
20:14:29.0494 6540 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
20:14:29.0494 6540 C:\Windows\System32\drivers\ws2ifsl.sys - ok
20:14:29.0509 6540 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
20:14:29.0509 6540 C:\Windows\System32\drivers\blbdrive.sys - ok
20:14:29.0509 6540 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
20:14:29.0509 6540 C:\Windows\System32\drivers\dfsc.sys - ok
20:14:29.0509 6540 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
20:14:29.0509 6540 C:\Windows\System32\drivers\discache.sys - ok
20:14:29.0525 6540 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
20:14:29.0525 6540 C:\Windows\System32\drivers\mssmbios.sys - ok
20:14:29.0525 6540 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
20:14:29.0525 6540 C:\Windows\System32\drivers\nsiproxy.sys - ok
20:14:29.0540 6540 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
20:14:29.0540 6540 C:\Windows\System32\drivers\rdbss.sys - ok
20:14:29.0540 6540 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
20:14:29.0540 6540 C:\Windows\System32\drivers\termdd.sys - ok
20:14:29.0540 6540 [ EC7148DB4D126C81426A67602822E62C ] C:\Windows\System32\drivers\aswSP.sys
20:14:29.0540 6540 C:\Windows\System32\drivers\aswSP.sys - ok
20:14:29.0556 6540 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
20:14:29.0556 6540 C:\Windows\System32\drivers\tunnel.sys - ok
20:14:29.0556 6540 [ 9AA61DC7AA32C1D1260C4267FF07E0C1 ] C:\Windows\System32\drivers\igdkmd64.sys
20:14:29.0556 6540 C:\Windows\System32\drivers\igdkmd64.sys - ok
20:14:29.0572 6540 [ AF2E16242AA723F68F461B6EAE2EAD3D ] C:\Windows\System32\drivers\dxgkrnl.sys
20:14:29.0572 6540 C:\Windows\System32\drivers\dxgkrnl.sys - ok
20:14:29.0572 6540 [ 1F04CFB79DD5FB7694468CE3FB3DCC31 ] C:\Windows\System32\drivers\dxgmms1.sys
20:14:29.0572 6540 C:\Windows\System32\drivers\dxgmms1.sys - ok
20:14:29.0587 6540 [ 6B01B7414A105B9E51652089A03027CF ] C:\Windows\System32\drivers\HECIx64.sys
20:14:29.0587 6540 C:\Windows\System32\drivers\HECIx64.sys - ok
20:14:29.0587 6540 [ FC5EFD7C797DF19DFB999F0605A7924E ] C:\Windows\System32\drivers\iusb3xhc.sys
20:14:29.0587 6540 C:\Windows\System32\drivers\iusb3xhc.sys - ok
20:14:29.0603 6540 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
20:14:29.0603 6540 C:\Windows\System32\drivers\usbd.sys - ok
20:14:29.0603 6540 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
20:14:29.0603 6540 C:\Windows\System32\drivers\usbport.sys - ok
20:14:29.0618 6540 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
20:14:29.0618 6540 C:\Windows\System32\drivers\hdaudbus.sys - ok
20:14:29.0618 6540 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
20:14:29.0618 6540 C:\Windows\System32\drivers\usbehci.sys - ok
20:14:29.0618 6540 [ 3CE6A9BEF066BF9488E6BC4D6C62F77E ] C:\Windows\System32\drivers\L1C62x64.sys
20:14:29.0618 6540 C:\Windows\System32\drivers\L1C62x64.sys - ok
20:14:29.0634 6540 [ 47DC062656EA661FE9175DBACAD00E9D ] C:\Windows\System32\drivers\NETwNs64.sys
20:14:29.0634 6540 C:\Windows\System32\drivers\NETwNs64.sys - ok
20:14:29.0634 6540 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
20:14:29.0634 6540 C:\Windows\System32\drivers\vwifibus.sys - ok
20:14:29.0634 6540 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
20:14:29.0634 6540 C:\Windows\System32\drivers\i8042prt.sys - ok
20:14:29.0650 6540 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
20:14:29.0650 6540 C:\Windows\System32\drivers\kbdclass.sys - ok
20:14:29.0650 6540 [ 40447D89F56780C49AC2EC22A05D5727 ] C:\Windows\System32\drivers\RtsP2Stor.sys
20:14:29.0650 6540 C:\Windows\System32\drivers\RtsP2Stor.sys - ok
20:14:29.0650 6540 [ 7C7E05EEA6407130B3896A7A01390B6F ] C:\Windows\System32\drivers\SynTP.sys
20:14:29.0650 6540 C:\Windows\System32\drivers\SynTP.sys - ok
20:14:29.0665 6540 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
20:14:29.0665 6540 C:\Windows\System32\drivers\CmBatt.sys - ok
20:14:29.0665 6540 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
20:14:29.0665 6540 C:\Windows\System32\drivers\mouclass.sys - ok
20:14:29.0665 6540 [ FD542B661BD22FA69CA789AD0AC58C29 ] C:\Windows\System32\drivers\tdcmdpst.sys
20:14:29.0665 6540 C:\Windows\System32\drivers\tdcmdpst.sys - ok
20:14:29.0681 6540 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
20:14:29.0681 6540 C:\Windows\System32\drivers\agilevpn.sys - ok
20:14:29.0681 6540 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
20:14:29.0681 6540 C:\Windows\System32\drivers\CompositeBus.sys - ok
20:14:29.0681 6540 [ 60ACB128E64C35C2B4E4AAB1B0A5C293 ] C:\Windows\System32\drivers\FwLnk.sys
20:14:29.0681 6540 C:\Windows\System32\drivers\FwLnk.sys - ok
20:14:29.0696 6540 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
20:14:29.0696 6540 C:\Windows\System32\drivers\intelppm.sys - ok
20:14:29.0696 6540 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
20:14:29.0696 6540 C:\Windows\System32\drivers\ndistapi.sys - ok
20:14:29.0696 6540 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
20:14:29.0696 6540 C:\Windows\System32\drivers\ndiswan.sys - ok
20:14:29.0712 6540 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
20:14:29.0712 6540 C:\Windows\System32\drivers\rasl2tp.sys - ok
20:14:29.0712 6540 [ 20C99358D42DB9585A21BF3BC27FC9BC ] C:\Windows\System32\drivers\Smb_driver.sys
20:14:29.0712 6540 C:\Windows\System32\drivers\Smb_driver.sys - ok
20:14:29.0712 6540 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] C:\Windows\System32\drivers\TVALZFL.sys
20:14:29.0712 6540 C:\Windows\System32\drivers\TVALZFL.sys - ok
20:14:29.0728 6540 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
20:14:29.0728 6540 C:\Windows\System32\drivers\ks.sys - ok
20:14:29.0728 6540 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
20:14:29.0728 6540 C:\Windows\System32\drivers\raspppoe.sys - ok
20:14:29.0728 6540 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
20:14:29.0728 6540 C:\Windows\System32\drivers\raspptp.sys - ok
20:14:29.0743 6540 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
20:14:29.0743 6540 C:\Windows\System32\drivers\rassstp.sys - ok
20:14:29.0743 6540 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
20:14:29.0743 6540 C:\Windows\System32\drivers\swenum.sys - ok
20:14:29.0759 6540 [ 716F66336F10885D935B08174DC54242 ] C:\Windows\System32\drivers\iwdbus.sys
20:14:29.0759 6540 C:\Windows\System32\drivers\iwdbus.sys - ok
20:14:29.0759 6540 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
20:14:29.0759 6540 C:\Windows\System32\drivers\umbus.sys - ok
20:14:29.0759 6540 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
20:14:29.0759 6540 C:\Windows\System32\drivers\usbhub.sys - ok
20:14:29.0774 6540 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
20:14:29.0774 6540 C:\Windows\System32\drivers\ndproxy.sys - ok
20:14:29.0774 6540 [ F0970A4BC8395659C22BF53D0FADF16F ] C:\Windows\System32\smss.exe
20:14:29.0774 6540 C:\Windows\System32\smss.exe - ok
20:14:29.0774 6540 [ 5B79D52A0388D8DEC5BF68411EA05A02 ] C:\Windows\System32\ntdll.dll
20:14:29.0774 6540 C:\Windows\System32\ntdll.dll - ok
20:14:29.0790 6540 [ 1D88A23853387D34D52CC8F9DDBFC56C ] C:\Windows\System32\drivers\iusb3hub.sys
20:14:29.0790 6540 C:\Windows\System32\drivers\iusb3hub.sys - ok
20:14:29.0790 6540 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
20:14:29.0790 6540 C:\Windows\System32\drivers\drmk.sys - ok
20:14:29.0790 6540 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
20:14:29.0790 6540 C:\Windows\System32\drivers\portcls.sys - ok
20:14:29.0806 6540 [ 8BD7EB761F4341E6F9FD066099F24B01 ] C:\Windows\System32\drivers\RTKVHD64.sys
20:14:29.0806 6540 C:\Windows\System32\drivers\RTKVHD64.sys - ok
20:14:29.0806 6540 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
20:14:29.0821 6540 C:\Windows\System32\drivers\ksthunk.sys - ok
20:14:29.0821 6540 [ 6C9FFFECA9FED31347D211C5D1FFBD2D ] C:\Windows\System32\drivers\IntcDAud.sys
20:14:29.0821 6540 C:\Windows\System32\drivers\IntcDAud.sys - ok
20:14:29.0821 6540 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
20:14:29.0821 6540 C:\Windows\System32\autochk.exe - ok
20:14:29.0837 6540 [ 460403D865C633E2FB39C772BA993641 ] C:\Windows\System32\aswBoot.exe
20:14:29.0837 6540 C:\Windows\System32\aswBoot.exe - ok
20:14:29.0837 6540 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
20:14:29.0837 6540 C:\Windows\System32\ole32.dll - ok
20:14:29.0852 6540 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
20:14:29.0852 6540 C:\Windows\System32\oleaut32.dll - ok
20:14:29.0852 6540 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
20:14:29.0852 6540 C:\Windows\System32\nsi.dll - ok
20:14:29.0868 6540 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
20:14:29.0868 6540 C:\Windows\System32\setupapi.dll - ok
20:14:29.0868 6540 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
20:14:29.0868 6540 C:\Windows\System32\normaliz.dll - ok
20:14:29.0868 6540 [ 26036E228D2467DE6975AD819C22C043 ] C:\Windows\System32\rpcrt4.dll
20:14:29.0868 6540 C:\Windows\System32\rpcrt4.dll - ok
20:14:29.0868 6540 [ AAFA952E774DDDB0956D3BDFAE5B5B99 ] C:\Windows\System32\wininet.dll
20:14:29.0868 6540 C:\Windows\System32\wininet.dll - ok
20:14:29.0884 6540 [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
20:14:29.0884 6540 C:\Windows\System32\usp10.dll - ok
20:14:29.0884 6540 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
20:14:29.0884 6540 C:\Windows\System32\imagehlp.dll - ok
20:14:29.0884 6540 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
20:14:29.0884 6540 C:\Windows\System32\msctf.dll - ok
20:14:29.0899 6540 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
20:14:29.0899 6540 C:\Windows\System32\clbcatq.dll - ok
20:14:29.0899 6540 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
20:14:29.0899 6540 C:\Windows\System32\gdi32.dll - ok
20:14:29.0899 6540 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
20:14:29.0899 6540 C:\Windows\System32\imm32.dll - ok
20:14:29.0915 6540 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
20:14:29.0915 6540 C:\Windows\System32\difxapi.dll - ok
20:14:29.0915 6540 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
20:14:29.0915 6540 C:\Windows\System32\Wldap32.dll - ok
20:14:29.0915 6540 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
20:14:29.0915 6540 C:\Windows\System32\msvcrt.dll - ok
20:14:29.0930 6540 [ D8973E71F1B35CD3F3DEA7C12D49D0F0 ] C:\Windows\System32\kernel32.dll
20:14:29.0930 6540 C:\Windows\System32\kernel32.dll - ok
20:14:29.0930 6540 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
20:14:29.0930 6540 C:\Windows\System32\ws2_32.dll - ok
20:14:29.0930 6540 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
20:14:29.0930 6540 C:\Windows\System32\comdlg32.dll - ok
20:14:29.0946 6540 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
20:14:29.0946 6540 C:\Windows\System32\advapi32.dll - ok
20:14:29.0946 6540 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
20:14:29.0946 6540 C:\Windows\System32\shlwapi.dll - ok
20:14:29.0946 6540 [ AD662B34B161198B9D66A564EDDA7D43 ] C:\Windows\System32\shell32.dll
20:14:29.0946 6540 C:\Windows\System32\shell32.dll - ok
20:14:29.0962 6540 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
20:14:29.0962 6540 C:\Windows\System32\lpk.dll - ok
20:14:29.0962 6540 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
20:14:29.0962 6540 C:\Windows\System32\user32.dll - ok
20:14:29.0962 6540 [ 8E9898BF21FF4232EE07BD5D1D1C6281 ] C:\Windows\System32\iertutil.dll
20:14:29.0962 6540 C:\Windows\System32\iertutil.dll - ok
20:14:29.0977 6540 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
20:14:29.0977 6540 C:\Windows\System32\psapi.dll - ok
20:14:29.0977 6540 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
20:14:29.0977 6540 C:\Windows\System32\sechost.dll - ok
20:14:29.0977 6540 [ 35552F806607A86E65B6047BF695D34B ] C:\Windows\System32\urlmon.dll
20:14:29.0977 6540 C:\Windows\System32\urlmon.dll - ok
20:14:29.0993 6540 [ 9094039A00485F71C4DE64BF51F64C46 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
20:14:29.0993 6540 C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
20:14:29.0993 6540 [ 959041D7014C97133D859B45BCA0FC58 ] C:\Windows\System32\wintrust.dll
20:14:29.0993 6540 C:\Windows\System32\wintrust.dll - ok
20:14:30.0008 6540 [ 287998A9BA0140ABB59792CDEB2F8483 ] C:\Windows\System32\crypt32.dll
20:14:30.0008 6540 C:\Windows\System32\crypt32.dll - ok
20:14:30.0008 6540 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
20:14:30.0008 6540 C:\Windows\System32\devobj.dll - ok
20:14:30.0024 6540 [ 64A4AB126E24FD3F58EBE64852773DB5 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
20:14:30.0024 6540 C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
20:14:30.0024 6540 [ 0E6FBF19D9DFBB77316C23DF91F8A101 ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
20:14:30.0024 6540 C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
20:14:30.0040 6540 [ 72723D3E4781BADC62C3180C137E7B23 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
20:14:30.0040 6540 C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
20:14:30.0040 6540 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
20:14:30.0040 6540 C:\Windows\System32\comctl32.dll - ok
20:14:30.0055 6540 [ F49E92B50CED5C9F1725D3C0329FD933 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
20:14:30.0055 6540 C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
20:14:30.0055 6540 [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
20:14:30.0055 6540 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
20:14:30.0055 6540 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
20:14:30.0055 6540 C:\Windows\System32\cfgmgr32.dll - ok
20:14:30.0071 6540 [ B22C00ED0491FD7B8803D7DDE2849F4C ] C:\Windows\System32\KernelBase.dll
20:14:30.0071 6540 C:\Windows\System32\KernelBase.dll - ok
20:14:30.0071 6540 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
20:14:30.0071 6540 C:\Windows\System32\msasn1.dll - ok
20:14:30.0071 6540 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
20:14:30.0071 6540 C:\Windows\SysWOW64\normaliz.dll - ok
20:14:30.0086 6540 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
20:14:30.0086 6540 C:\Windows\System32\drivers\dxapi.sys - ok
20:14:30.0086 6540 [ 42A88ECF903BFE11411D188DCE830E84 ] C:\Windows\System32\win32k.sys
20:14:30.0086 6540 C:\Windows\System32\win32k.sys - ok
20:14:30.0086 6540 [ 216BABD555BC550952320EEA89C25DDF ] C:\Windows\System32\csrsrv.dll
20:14:30.0086 6540 C:\Windows\System32\csrsrv.dll - ok
20:14:30.0086 6540 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
20:14:30.0086 6540 C:\Windows\System32\csrss.exe - ok
20:14:30.0102 6540 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
20:14:30.0102 6540 C:\Windows\System32\basesrv.dll - ok
20:14:30.0102 6540 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\System32\winsrv.dll
20:14:30.0102 6540 C:\Windows\System32\winsrv.dll - ok
20:14:30.0102 6540 [ 2F4B66BAB9F4C9D0FF4FCAA6D8888991 ] C:\Windows\System32\drivers\wachidrouter.sys
20:14:30.0102 6540 C:\Windows\System32\drivers\wachidrouter.sys - ok
20:14:30.0118 6540 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
20:14:30.0118 6540 C:\Windows\System32\drivers\hidclass.sys - ok
20:14:30.0118 6540 [ 957BD482212B77624E63A54EDDB414F8 ] C:\Windows\System32\drivers\hidkmdf.sys
20:14:30.0118 6540 C:\Windows\System32\drivers\hidkmdf.sys - ok
20:14:30.0118 6540 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
20:14:30.0118 6540 C:\Windows\System32\drivers\hidparse.sys - ok
20:14:30.0133 6540 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
20:14:30.0133 6540 C:\Windows\System32\drivers\mouhid.sys - ok
20:14:30.0133 6540 [ 366669F53F8CAF96AF9264EF9BC95084 ] C:\Windows\System32\drivers\wacomrouterfilter.sys
20:14:30.0133 6540 C:\Windows\System32\drivers\wacomrouterfilter.sys - ok
20:14:30.0149 6540 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
20:14:30.0149 6540 C:\Windows\System32\drivers\usbccgp.sys - ok
20:14:30.0149 6540 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
20:14:30.0149 6540 C:\Windows\System32\drivers\usbvideo.sys - ok
20:14:30.0149 6540 [ 91111CEBBDE8015E822C46120ED9537C ] C:\Windows\System32\drivers\PGEffect.sys
20:14:30.0149 6540 C:\Windows\System32\drivers\PGEffect.sys - ok
20:14:30.0164 6540 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
20:14:30.0164 6540 C:\Windows\System32\drivers\monitor.sys - ok
20:14:30.0164 6540 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
20:14:30.0164 6540 C:\Windows\System32\sxssrv.dll - ok
20:14:30.0164 6540 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
20:14:30.0164 6540 C:\Windows\System32\tsddd.dll - ok
20:14:30.0180 6540 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
20:14:30.0180 6540 C:\Windows\System32\wininit.exe - ok
20:14:30.0180 6540 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
20:14:30.0180 6540 C:\Windows\System32\profapi.dll - ok
20:14:30.0196 6540 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
20:14:30.0196 6540 C:\Windows\System32\version.dll - ok
20:14:30.0196 6540 [ 943F527DF79E6B400104341AA7023C75 ] C:\Windows\System32\cdd.dll
20:14:30.0196 6540 C:\Windows\System32\cdd.dll - ok
20:14:30.0196 6540 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
20:14:30.0196 6540 C:\Windows\System32\KBDUS.DLL - ok
20:14:30.0211 6540 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
20:14:30.0211 6540 C:\Windows\System32\RpcRtRemote.dll - ok
20:14:30.0211 6540 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
20:14:30.0211 6540 C:\Windows\System32\WlS0WndH.dll - ok
20:14:30.0211 6540 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
20:14:30.0211 6540 C:\Windows\System32\sxs.dll - ok
20:14:30.0227 6540 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
20:14:30.0227 6540 C:\Windows\System32\cryptbase.dll - ok
20:14:30.0227 6540 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
20:14:30.0227 6540 C:\Windows\System32\apphelp.dll - ok
20:14:30.0242 6540 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
20:14:30.0242 6540 C:\Windows\System32\lsass.exe - ok
20:14:30.0242 6540 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
20:14:30.0242 6540 C:\Windows\System32\lsm.exe - ok
20:14:30.0242 6540 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
20:14:30.0242 6540 C:\Windows\System32\services.exe - ok
20:14:30.0242 6540 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
20:14:30.0242 6540 C:\Windows\System32\winlogon.exe - ok
20:14:30.0258 6540 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
20:14:30.0258 6540 C:\Windows\System32\lsasrv.dll - ok
20:14:30.0258 6540 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
20:14:30.0258 6540 C:\Windows\System32\sspicli.dll - ok
20:14:30.0258 6540 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
20:14:30.0258 6540 C:\Windows\System32\sspisrv.dll - ok
20:14:30.0274 6540 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
20:14:30.0274 6540 C:\Windows\System32\winsta.dll - ok
20:14:30.0274 6540 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
20:14:30.0274 6540 C:\Windows\System32\scext.dll - ok
20:14:30.0274 6540 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
20:14:30.0274 6540 C:\Windows\System32\secur32.dll - ok
20:14:30.0274 6540 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
20:14:30.0274 6540 C:\Windows\System32\scesrv.dll - ok
20:14:30.0289 6540 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
20:14:30.0289 6540 C:\Windows\System32\samsrv.dll - ok
20:14:30.0289 6540 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
20:14:30.0289 6540 C:\Windows\System32\cryptdll.dll - ok
20:14:30.0289 6540 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
20:14:30.0289 6540 C:\Windows\System32\srvcli.dll - ok
20:14:30.0289 6540 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
20:14:30.0289 6540 C:\Windows\System32\wevtapi.dll - ok
20:14:30.0305 6540 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
20:14:30.0305 6540 C:\Windows\System32\aelupsvc.dll - ok
20:14:30.0305 6540 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
20:14:30.0305 6540 C:\Windows\System32\authz.dll - ok
20:14:30.0305 6540 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
20:14:30.0305 6540 C:\Windows\System32\cngaudit.dll - ok
20:14:30.0320 6540 [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
20:14:30.0320 6540 C:\Windows\System32\ncrypt.dll - ok
20:14:30.0320 6540 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
20:14:30.0320 6540 C:\Windows\System32\sysntfy.dll - ok
20:14:30.0320 6540 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
20:14:30.0320 6540 C:\Windows\System32\wmsgapi.dll - ok
20:14:30.0320 6540 [ 3290D6946B5E30E70414990574883DDB ] C:\Windows\System32\alg.exe
20:14:30.0320 6540 C:\Windows\System32\alg.exe - ok
20:14:30.0336 6540 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
20:14:30.0336 6540 C:\Windows\System32\bcrypt.dll - ok
20:14:30.0336 6540 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
20:14:30.0336 6540 C:\Windows\System32\msprivs.dll - ok
20:14:30.0336 6540 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
20:14:30.0336 6540 C:\Windows\System32\netjoin.dll - ok
20:14:30.0352 6540 [ 0BC381A15355A3982216F7172F545DE1 ] C:\Windows\System32\appidsvc.dll
20:14:30.0352 6540 C:\Windows\System32\appidsvc.dll - ok
20:14:30.0352 6540 [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
20:14:30.0352 6540 C:\Windows\System32\atmfd.dll - ok
20:14:30.0352 6540 [ 9D2A2369AB4B08A4905FE72DB104498F ] C:\Windows\System32\appinfo.dll
20:14:30.0352 6540 C:\Windows\System32\appinfo.dll - ok
20:14:30.0352 6540 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
20:14:30.0352 6540 C:\Windows\System32\negoexts.dll - ok
20:14:30.0367 6540 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
20:14:30.0367 6540 C:\Windows\System32\kerberos.dll - ok
20:14:30.0367 6540 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
20:14:30.0367 6540 C:\Windows\System32\rascfg.dll - ok
20:14:30.0383 6540 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
20:14:30.0383 6540 C:\Windows\System32\audiosrv.dll - ok
20:14:30.0383 6540 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
20:14:30.0383 6540 C:\Windows\System32\cryptsp.dll - ok
20:14:30.0383 6540 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
20:14:30.0398 6540 C:\Windows\System32\mswsock.dll - ok
20:14:30.0398 6540 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] C:\Windows\System32\AxInstSv.dll
20:14:30.0398 6540 C:\Windows\System32\AxInstSv.dll - ok
20:14:30.0398 6540 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
20:14:30.0398 6540 C:\Windows\System32\msv1_0.dll - ok
20:14:30.0414 6540 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
20:14:30.0414 6540 C:\Windows\System32\wship6.dll - ok
20:14:30.0414 6540 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
20:14:30.0414 6540 C:\Windows\System32\netlogon.dll - ok
20:14:30.0414 6540 [ FDE360167101B4E45A96F939F388AEB0 ] C:\Windows\System32\bdesvc.dll
20:14:30.0414 6540 C:\Windows\System32\bdesvc.dll - ok
20:14:30.0430 6540 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
20:14:30.0430 6540 C:\Windows\System32\BFE.DLL - ok
20:14:30.0430 6540 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
20:14:30.0430 6540 C:\Windows\System32\dnsapi.dll - ok
20:14:30.0430 6540 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
20:14:30.0430 6540 C:\Windows\System32\logoncli.dll - ok
20:14:30.0430 6540 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
20:14:30.0430 6540 C:\Windows\System32\qmgr.dll - ok
20:14:30.0445 6540 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
20:14:30.0445 6540 C:\Windows\System32\schannel.dll - ok
20:14:30.0445 6540 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
20:14:30.0445 6540 C:\Windows\System32\wdigest.dll - ok
20:14:30.0445 6540 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
20:14:30.0445 6540 C:\Windows\System32\browser.dll - ok
20:14:30.0461 6540 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
20:14:30.0461 6540 C:\Windows\System32\pku2u.dll - ok
20:14:30.0461 6540 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
20:14:30.0461 6540 C:\Windows\System32\rsaenh.dll - ok
20:14:30.0461 6540 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
20:14:30.0461 6540 C:\Windows\System32\TSpkg.dll - ok
20:14:30.0461 6540 [ 94AA2DFFF94DF789AAA0081333A6CADA ] C:\Windows\System32\LIVESSP.DLL
20:14:30.0461 6540 C:\Windows\System32\LIVESSP.DLL - ok
20:14:30.0476 6540 [ 2D066FBE63F7026C43C662C094B98076 ] C:\Windows\System32\bridgeres.dll
20:14:30.0476 6540 C:\Windows\System32\bridgeres.dll - ok
20:14:30.0476 6540 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
20:14:30.0476 6540 C:\Windows\System32\bcryptprimitives.dll - ok
20:14:30.0476 6540 [ 95F9C2976059462CBBF227F7AAB10DE9 ] C:\Windows\System32\bthserv.dll
20:14:30.0476 6540 C:\Windows\System32\bthserv.dll - ok
20:14:30.0492 6540 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
20:14:30.0492 6540 C:\Windows\System32\credssp.dll - ok
20:14:30.0492 6540 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
20:14:30.0492 6540 C:\Windows\System32\efslsaext.dll - ok
20:14:30.0492 6540 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
20:14:30.0492 6540 C:\Windows\System32\scecli.dll - ok
20:14:30.0492 6540 [ F17D1D393BBC69C5322FBFAFACA28C7F ] C:\Windows\System32\certprop.dll
20:14:30.0492 6540 C:\Windows\System32\certprop.dll - ok
20:14:30.0508 6540 [ FE1EC06F2253F691FE36217C592A0206 ] C:\Windows\System32\clfs.sys
20:14:30.0508 6540 C:\Windows\System32\clfs.sys - ok
20:14:30.0508 6540 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
20:14:30.0508 6540 C:\Windows\System32\comres.dll - ok
20:14:30.0508 6540 [ 6B400F211BEE880A37A1ED0368776BF4 ] C:\Windows\System32\cryptsvc.dll
20:14:30.0508 6540 C:\Windows\System32\cryptsvc.dll - ok
20:14:30.0523 6540 [ 732E668096B1A37B7BFD4B9021E69A8E ] C:\Windows\System32\oleres.dll
20:14:30.0523 6540 C:\Windows\System32\oleres.dll - ok
20:14:30.0523 6540 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] C:\Windows\System32\defragsvc.dll
20:14:30.0523 6540 C:\Windows\System32\defragsvc.dll - ok
20:14:30.0523 6540 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
20:14:30.0523 6540 C:\Windows\System32\dhcpcore.dll - ok
20:14:30.0539 6540 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] C:\Windows\System32\dot3svc.dll
20:14:30.0539 6540 C:\Windows\System32\dot3svc.dll - ok
20:14:30.0539 6540 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
20:14:30.0539 6540 C:\Windows\System32\dps.dll - ok
20:14:30.0539 6540 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
20:14:30.0539 6540 C:\Windows\System32\eapsvc.dll - ok
20:14:30.0539 6540 [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
20:14:30.0539 6540 C:\Windows\System32\efssvc.dll - ok
20:14:30.0554 6540 [ C4002B6B41975F057D98C439030CEA07 ] C:\Windows\ehome\ehrecvr.exe
20:14:30.0554 6540 C:\Windows\ehome\ehrecvr.exe - ok
20:14:30.0554 6540 [ 4705E8EF9934482C5BB488CE28AFC681 ] C:\Windows\ehome\ehsched.exe
20:14:30.0554 6540 C:\Windows\ehome\ehsched.exe - ok
20:14:30.0554 6540 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
20:14:30.0554 6540 C:\Windows\System32\wevtsvc.dll - ok
20:14:30.0570 6540 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
20:14:30.0570 6540 C:\Windows\System32\FXSRESM.dll - ok
20:14:30.0570 6540 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
20:14:30.0570 6540 C:\Windows\System32\fdPHost.dll - ok
20:14:30.0570 6540 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
20:14:30.0570 6540 C:\Windows\System32\FDResPub.dll - ok
20:14:30.0586 6540 [ 655661BE46B5F5F3FD454E2C3095B930 ] C:\Windows\System32\drivers\fileinfo.sys
20:14:30.0586 6540 C:\Windows\System32\drivers\fileinfo.sys - ok
20:14:30.0586 6540 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] C:\Windows\System32\drivers\filetrace.sys
20:14:30.0586 6540 C:\Windows\System32\drivers\filetrace.sys - ok
20:14:30.0586 6540 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
20:14:30.0586 6540 C:\Windows\System32\drivers\fltMgr.sys - ok
20:14:30.0586 6540 [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
20:14:30.0586 6540 C:\Windows\System32\FntCache.dll - ok
20:14:30.0601 6540 [ 8A1846C0817513AD18BA48B4427771FC ] C:\Windows\System32\PresentationHost.exe
20:14:30.0601 6540 C:\Windows\System32\PresentationHost.exe - ok
20:14:30.0601 6540 [ D43703496149971890703B4B1B723EAC ] C:\Windows\System32\drivers\fsdepends.sys
20:14:30.0601 6540 C:\Windows\System32\drivers\fsdepends.sys - ok
20:14:30.0617 6540 [ 8F6322049018354F45F05A2FD2D4E5E0 ] C:\Windows\System32\drivers\fvevol.sys
20:14:30.0617 6540 C:\Windows\System32\drivers\fvevol.sys - ok
20:14:30.0617 6540 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
20:14:30.0617 6540 C:\Windows\System32\gpapi.dll - ok
20:14:30.0617 6540 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
20:14:30.0617 6540 C:\Windows\System32\hidserv.dll - ok
20:14:30.0632 6540 [ 387E72E739E15E3D37907A86D9FF98E2 ] C:\Windows\System32\KMSVC.DLL
20:14:30.0632 6540 C:\Windows\System32\KMSVC.DLL - ok
20:14:30.0632 6540 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
20:14:30.0632 6540 C:\Windows\System32\drivers\http.sys - ok
20:14:30.0648 6540 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
20:14:30.0648 6540 C:\Windows\System32\ListSvc.dll - ok
20:14:30.0648 6540 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
20:14:30.0648 6540 C:\Windows\System32\provsvc.dll - ok
20:14:30.0648 6540 [ A5462BD6884960C9DC85ED49D34FF392 ] C:\Windows\System32\drivers\hwpolicy.sys
20:14:30.0648 6540 C:\Windows\System32\drivers\hwpolicy.sys - ok
20:14:30.0664 6540 [ B9E2DAF71E44626011D70B4889171504 ] C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll
20:14:30.0664 6540 C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll - ok
20:14:30.0664 6540 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
20:14:30.0664 6540 C:\Windows\System32\IKEEXT.DLL - ok
20:14:30.0664 6540 [ 098A91C54546A3B878DAD6A7E90A455B ] C:\Windows\System32\IPBusEnum.dll
20:14:30.0664 6540 C:\Windows\System32\IPBusEnum.dll - ok
20:14:30.0679 6540 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
20:14:30.0679 6540 C:\Windows\System32\iphlpsvc.dll - ok
20:14:30.0679 6540 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] C:\Windows\System32\drivers\irenum.sys
20:14:30.0679 6540 C:\Windows\System32\drivers\irenum.sys - ok
20:14:30.0679 6540 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
20:14:30.0679 6540 C:\Windows\System32\keyiso.dll - ok
20:14:30.0679 6540 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
20:14:30.0679 6540 C:\Windows\System32\srvsvc.dll - ok
20:14:30.0695 6540 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
20:14:30.0695 6540 C:\Windows\System32\wkssvc.dll - ok
20:14:30.0695 6540 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
20:14:30.0695 6540 C:\Windows\System32\drivers\luafv.sys - ok
20:14:30.0695 6540 [ 7A757C41C3879CD34BDE15F0563C0CE2 ] C:\Windows\System32\lltdres.dll
20:14:30.0695 6540 C:\Windows\System32\lltdres.dll - ok
20:14:30.0710 6540 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
20:14:30.0710 6540 C:\Windows\System32\lmhsvc.dll - ok
20:14:30.0710 6540 [ E5DE3FFD785B6730291AD98E491D58BA ] C:\Windows\ehome\ehres.dll
20:14:30.0710 6540 C:\Windows\ehome\ehres.dll - ok
20:14:30.0710 6540 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
20:14:30.0710 6540 C:\Windows\System32\mmcss.dll - ok
20:14:30.0710 6540 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] C:\Windows\System32\drivers\mountmgr.sys
20:14:30.0710 6540 C:\Windows\System32\drivers\mountmgr.sys - ok
20:14:30.0726 6540 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
20:14:30.0726 6540 C:\Windows\System32\FirewallAPI.dll - ok
20:14:30.0726 6540 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] C:\Windows\System32\WebClnt.dll
20:14:30.0726 6540 C:\Windows\System32\WebClnt.dll - ok
20:14:30.0726 6540 [ F9D215A46A8B9753F61767FA72A20326 ] C:\Windows\System32\drivers\mshidkmdf.sys
20:14:30.0726 6540 C:\Windows\System32\drivers\mshidkmdf.sys - ok
20:14:30.0742 6540 [ E11E3F3BBEFDC5C0C160BE13B65E25E4 ] C:\Windows\System32\iscsidsc.dll
20:14:30.0742 6540 C:\Windows\System32\iscsidsc.dll - ok
20:14:30.0742 6540 [ 8EE1C893C50D1C02D4675978BAC756BA ] C:\Windows\System32\msimsg.dll
20:14:30.0742 6540 C:\Windows\System32\msimsg.dll - ok
20:14:30.0742 6540 [ F9A18612FD3526FE473C1BDA678D61C8 ] C:\Windows\System32\drivers\mup.sys
20:14:30.0742 6540 C:\Windows\System32\drivers\mup.sys - ok
20:14:30.0742 6540 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
20:14:30.0742 6540 C:\Windows\System32\QAGENTRT.DLL - ok
20:14:30.0757 6540 [ 760E38053BF56E501D562B70AD796B88 ] C:\Windows\System32\drivers\ndis.sys
20:14:30.0757 6540 C:\Windows\System32\drivers\ndis.sys - ok
20:14:30.0757 6540 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
20:14:30.0757 6540 C:\Windows\System32\netman.dll - ok
20:14:30.0757 6540 [ 5DE1EB779116F20869B732CEF1DC689A ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll
20:14:30.0757 6540 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll - ok
20:14:30.0773 6540 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
20:14:30.0773 6540 C:\Windows\System32\netprofm.dll - ok
20:14:30.0773 6540 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
20:14:30.0773 6540 C:\Windows\System32\nlasvc.dll - ok
20:14:30.0773 6540 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
20:14:30.0773 6540 C:\Windows\System32\nsisvc.dll - ok
20:14:30.0788 6540 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
20:14:30.0788 6540 C:\Windows\System32\pnrpsvc.dll - ok
20:14:30.0788 6540 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
20:14:30.0788 6540 C:\Windows\System32\p2psvc.dll - ok
20:14:30.0804 6540 [ E9766131EEADE40A27DC27D2D68FBA9C ] C:\Windows\System32\drivers\partmgr.sys
20:14:30.0804 6540 C:\Windows\System32\drivers\partmgr.sys - ok
20:14:30.0804 6540 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
20:14:30.0804 6540 C:\Windows\System32\pcasvc.dll - ok
20:14:30.0804 6540 [ C7CF6A6E137463219E1259E3F0F0DD6C ] C:\Windows\System32\pla.dll
20:14:30.0804 6540 C:\Windows\System32\pla.dll - ok
20:14:30.0820 6540 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
20:14:30.0820 6540 C:\Windows\System32\umpnpmgr.dll - ok
20:14:30.0820 6540 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] C:\Windows\System32\pnrpauto.dll
20:14:30.0820 6540 C:\Windows\System32\pnrpauto.dll - ok
20:14:30.0820 6540 [ 8DEC9C6DD13C4B3B62CD8D5A0FEF1650 ] C:\Windows\System32\polstore.dll
20:14:30.0820 6540 C:\Windows\System32\polstore.dll - ok
20:14:30.0835 6540 [ A2CCA4FB273E6050F17A0A416CFF2FCD ] C:\Windows\System32\umpo.dll
20:14:30.0835 6540 C:\Windows\System32\umpo.dll - ok
20:14:30.0835 6540 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
20:14:30.0835 6540 C:\Windows\System32\profsvc.dll - ok
20:14:30.0835 6540 [ AB95FBAE4F9A5A56B177CEC427B2B35E ] C:\Windows\System32\psbase.dll
20:14:30.0835 6540 C:\Windows\System32\psbase.dll - ok
20:14:30.0851 6540 [ 906191634E99AEA92C4816150BDA3732 ] C:\Windows\System32\qwave.dll
20:14:30.0851 6540 C:\Windows\System32\qwave.dll - ok
20:14:30.0851 6540 [ 76707BB36430888D9CE9D705398ADB6C ] C:\Windows\System32\drivers\qwavedrv.sys
20:14:30.0851 6540 C:\Windows\System32\drivers\qwavedrv.sys - ok
20:14:30.0851 6540 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] C:\Windows\System32\rasauto.dll
20:14:30.0851 6540 C:\Windows\System32\rasauto.dll - ok
20:14:30.0851 6540 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
20:14:30.0851 6540 C:\Windows\System32\rasmans.dll - ok
20:14:30.0866 6540 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
20:14:30.0866 6540 C:\Windows\System32\sstpsvc.dll - ok
20:14:30.0866 6540 [ 254FB7A22D74E5511C73A3F6D802F192 ] C:\Windows\System32\mprdim.dll
20:14:30.0866 6540 C:\Windows\System32\mprdim.dll - ok
20:14:30.0866 6540 [ E4D94F24081440B5FC5AA556C7C62702 ] C:\Windows\System32\regsvc.dll
20:14:30.0866 6540 C:\Windows\System32\regsvc.dll - ok
20:14:30.0866 6540 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
20:14:30.0866 6540 C:\Windows\System32\RpcEpMap.dll - ok
20:14:30.0882 6540 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] C:\Windows\System32\Locator.exe
20:14:30.0882 6540 C:\Windows\System32\Locator.exe - ok
20:14:30.0882 6540 [ 9B7395789E3791A3B6D000FE6F8B131E ] C:\Windows\System32\SCardSvr.dll
20:14:30.0882 6540 C:\Windows\System32\SCardSvr.dll - ok
20:14:30.0882 6540 [ 253F38D0D7074C02FF8DEB9836C97D2B ] C:\Windows\System32\drivers\scfilter.sys
20:14:30.0882 6540 C:\Windows\System32\drivers\scfilter.sys - ok
20:14:30.0898 6540 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
20:14:30.0898 6540 C:\Windows\System32\schedsvc.dll - ok
20:14:30.0898 6540 [ 6EA4234DC55346E0709560FE7C2C1972 ] C:\Windows\System32\sdrsvc.dll
20:14:30.0898 6540 C:\Windows\System32\sdrsvc.dll - ok
20:14:30.0898 6540 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
20:14:30.0898 6540 C:\Windows\System32\seclogon.dll - ok
20:14:30.0898 6540 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
20:14:30.0898 6540 C:\Windows\System32\Sens.dll - ok
20:14:30.0913 6540 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] C:\Windows\System32\sensrsvc.dll
20:14:30.0913 6540 C:\Windows\System32\sensrsvc.dll - ok
20:14:30.0913 6540 [ 0B6231BF38174A1628C4AC812CC75804 ] C:\Windows\System32\SessEnv.dll
20:14:30.0913 6540 C:\Windows\System32\SessEnv.dll - ok
20:14:30.0913 6540 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
20:14:30.0913 6540 C:\Windows\System32\ipnathlp.dll - ok
20:14:30.0913 6540 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
20:14:30.0913 6540 C:\Windows\System32\shsvcs.dll - ok
20:14:30.0929 6540 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
20:14:30.0929 6540 C:\Windows\System32\tcpipcfg.dll - ok
20:14:30.0929 6540 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
20:14:30.0929 6540 C:\Windows\System32\snmptrap.exe - ok
20:14:30.0929 6540 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
20:14:30.0929 6540 C:\Windows\System32\spoolsv.exe - ok
20:14:30.0944 6540 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
20:14:30.0944 6540 C:\Windows\System32\sppsvc.exe - ok
20:14:30.0944 6540 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] C:\Windows\System32\sppuinotify.dll
20:14:30.0944 6540 C:\Windows\System32\sppuinotify.dll - ok
20:14:30.0944 6540 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
20:14:30.0944 6540 C:\Windows\System32\ssdpsrv.dll - ok
20:14:30.0944 6540 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
20:14:30.0944 6540 C:\Windows\System32\wiaservc.dll - ok
20:14:30.0960 6540 [ E08E46FDD841B7184194011CA1955A0B ] C:\Windows\System32\swprv.dll
20:14:30.0960 6540 C:\Windows\System32\swprv.dll - ok
20:14:30.0960 6540 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
20:14:30.0960 6540 C:\Windows\System32\sysmain.dll - ok
20:14:30.0960 6540 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] C:\Windows\System32\TabSvc.dll
20:14:30.0960 6540 C:\Windows\System32\TabSvc.dll - ok
20:14:30.0976 6540 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
20:14:30.0976 6540 C:\Windows\System32\tapisrv.dll - ok
20:14:30.0976 6540 [ 1BE03AC720F4D302EA01D40F588162F6 ] C:\Windows\System32\tbssvc.dll
20:14:30.0976 6540 C:\Windows\System32\tbssvc.dll - ok
20:14:30.0976 6540 [ 2E648163254233755035B46DD7B89123 ] C:\Windows\System32\termsrv.dll
20:14:30.0976 6540 C:\Windows\System32\termsrv.dll - ok
20:14:30.0991 6540 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
20:14:30.0991 6540 C:\Windows\System32\themeservice.dll - ok
20:14:30.0991 6540 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
20:14:30.0991 6540 C:\Windows\System32\trkwks.dll - ok
20:14:30.0991 6540 [ 773212B2AAA24C1E31F10246B15B276C ] C:\Windows\servicing\TrustedInstaller.exe
20:14:30.0991 6540 C:\Windows\servicing\TrustedInstaller.exe - ok
20:14:31.0007 6540 [ 4CE278FC9671BA81A138D70823FCAA09 ] C:\Windows\System32\drivers\tssecsrv.sys
20:14:31.0007 6540 C:\Windows\System32\drivers\tssecsrv.sys - ok
20:14:31.0007 6540 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] C:\Windows\System32\UI0Detect.exe
20:14:31.0007 6540 C:\Windows\System32\UI0Detect.exe - ok
20:14:31.0022 6540 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
20:14:31.0022 6540 C:\Windows\System32\upnphost.dll - ok
20:14:31.0022 6540 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
20:14:31.0022 6540 C:\Windows\System32\dwm.exe - ok
20:14:31.0022 6540 [ 567BC1309E05FCFA680ADB6E02260736 ] C:\Windows\System32\vaultsvc.dll
20:14:31.0022 6540 C:\Windows\System32\vaultsvc.dll - ok
20:14:31.0038 6540 [ 8D6B481601D01A456E75C3210F1830BE ] C:\Windows\System32\vds.exe
20:14:31.0038 6540 C:\Windows\System32\vds.exe - ok
20:14:31.0038 6540 [ A255814907C89BE58B79EF2F189B843B ] C:\Windows\System32\drivers\volmgrx.sys
20:14:31.0038 6540 C:\Windows\System32\drivers\volmgrx.sys - ok
20:14:31.0038 6540 [ B60BA0BC31B0CB414593E169F6F21CC2 ] C:\Windows\System32\VSSVC.exe
20:14:31.0038 6540 C:\Windows\System32\VSSVC.exe - ok
20:14:31.0038 6540 [ 1C9D80CC3849B3788048078C26486E1A ] C:\Windows\System32\w32time.dll
20:14:31.0038 6540 C:\Windows\System32\w32time.dll - ok
20:14:31.0054 6540 [ 05E9265E2228799B68DC0F58A94E1AB8 ] C:\Windows\System32\Wat\WatUX.exe
20:14:31.0054 6540 C:\Windows\System32\Wat\WatUX.exe - ok
20:14:31.0054 6540 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] C:\Windows\System32\wbengine.exe
20:14:31.0054 6540 C:\Windows\System32\wbengine.exe - ok
20:14:31.0054 6540 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] C:\Windows\System32\wbiosrvc.dll
20:14:31.0054 6540 C:\Windows\System32\wbiosrvc.dll - ok
20:14:31.0054 6540 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] C:\Windows\System32\wcncsvc.dll
20:14:31.0054 6540 C:\Windows\System32\wcncsvc.dll - ok
20:14:31.0069 6540 [ 20F7441334B18CEE52027661DF4A6129 ] C:\Windows\System32\WcsPlugInService.dll
20:14:31.0069 6540 C:\Windows\System32\WcsPlugInService.dll - ok
20:14:31.0069 6540 [ 442783E2CB0DA19873B7A63833FF4CB4 ] C:\Windows\System32\drivers\Wdf01000.sys
20:14:31.0069 6540 C:\Windows\System32\drivers\Wdf01000.sys - ok
20:14:31.0069 6540 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
20:14:31.0069 6540 C:\Windows\System32\wdi.dll - ok
20:14:31.0085 6540 [ C749025A679C5103E575E3B48E092C43 ] C:\Windows\System32\wecsvc.dll
20:14:31.0085 6540 C:\Windows\System32\wecsvc.dll - ok
20:14:31.0085 6540 [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
20:14:31.0085 6540 C:\Windows\System32\wercplsupport.dll - ok
20:14:31.0085 6540 [ 6D137963730144698CBD10F202E9F251 ] C:\Windows\System32\wersvc.dll
20:14:31.0085 6540 C:\Windows\System32\wersvc.dll - ok
20:14:31.0085 6540 [ 2DA738A0A6BEE483A5647A76695AF3B0 ] C:\Program Files\Windows Defender\MsMpRes.dll
20:14:31.0085 6540 C:\Program Files\Windows Defender\MsMpRes.dll - ok
20:14:31.0100 6540 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
20:14:31.0100 6540 C:\Windows\System32\winhttp.dll - ok
20:14:31.0100 6540 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
20:14:31.0100 6540 C:\Windows\System32\wbem\WMIsvc.dll - ok
20:14:31.0100 6540 [ BCB1310604AA415C4508708975B3931E ] C:\Windows\System32\WsmSvc.dll
20:14:31.0100 6540 C:\Windows\System32\WsmSvc.dll - ok
20:14:31.0100 6540 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
20:14:31.0100 6540 C:\Windows\System32\wlansvc.dll - ok
20:14:31.0116 6540 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] C:\Windows\System32\wbem\WmiApSrv.exe
20:14:31.0116 6540 C:\Windows\System32\wbem\WmiApSrv.exe - ok
20:14:31.0116 6540 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
20:14:31.0116 6540 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
20:14:31.0116 6540 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] C:\Windows\System32\wpcsvc.dll
20:14:31.0116 6540 C:\Windows\System32\wpcsvc.dll - ok
20:14:31.0116 6540 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
20:14:31.0116 6540 C:\Windows\System32\wpdbusenum.dll - ok
20:14:31.0132 6540 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
20:14:31.0132 6540 C:\Windows\System32\wscsvc.dll - ok
20:14:31.0132 6540 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
20:14:31.0132 6540 C:\Windows\System32\SearchIndexer.exe - ok
20:14:31.0132 6540 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
20:14:31.0132 6540 C:\Windows\System32\wuaueng.dll - ok
20:14:31.0132 6540 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
20:14:31.0132 6540 C:\Windows\System32\drivers\WUDFPf.sys - ok
20:14:31.0147 6540 [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
20:14:31.0147 6540 C:\Windows\System32\WUDFSvc.dll - ok
20:14:31.0147 6540 [ FE90B750AB808FB9DD8FBB428B5FF83B ] C:\Windows\System32\wwansvc.dll
20:14:31.0147 6540 C:\Windows\System32\wwansvc.dll - ok
20:14:31.0147 6540 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
20:14:31.0147 6540 C:\Windows\System32\ubpm.dll - ok
20:14:31.0163 6540 [ 6F68F63794097E54F36474ED4384B759 ] C:\Windows\System32\svchost.exe
20:14:31.0163 6540 C:\Windows\System32\svchost.exe - ok
20:14:31.0163 6540 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
20:14:31.0163 6540 C:\Windows\System32\SPInf.dll - ok
20:14:31.0163 6540 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
20:14:31.0163 6540 C:\Windows\System32\devrtl.dll - ok
20:14:31.0163 6540 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
20:14:31.0163 6540 C:\Windows\System32\userenv.dll - ok
20:14:31.0178 6540 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
20:14:31.0178 6540 C:\Windows\System32\pcwum.dll - ok
20:14:31.0178 6540 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
20:14:31.0178 6540 C:\Windows\System32\powrprof.dll - ok
20:14:31.0178 6540 [ 5C40B8D77EBEE1DE0E7A8CDD0CD75773 ] C:\Windows\System32\drivers\aswMonFlt.sys
20:14:31.0178 6540 C:\Windows\System32\drivers\aswMonFlt.sys - ok
20:14:31.0194 6540 [ A83C9C15680BB9E270ACF7172068E287 ] C:\Windows\System32\drivers\aswFsBlk.sys
20:14:31.0194 6540 C:\Windows\System32\drivers\aswFsBlk.sys - ok
20:14:31.0194 6540 [ 2575511AF67AA1FA068CCC4918E2C2A3 ] C:\Windows\System32\drivers\Sftvollh.sys
20:14:31.0194 6540 C:\Windows\System32\drivers\Sftvollh.sys - ok
20:14:31.0194 6540 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
20:14:31.0194 6540 C:\Windows\System32\rpcss.dll - ok
20:14:31.0194 6540 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
20:14:31.0194 6540 C:\Windows\System32\wshqos.dll - ok
20:14:31.0210 6540 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
20:14:31.0210 6540 C:\Windows\System32\WSHTCPIP.DLL - ok
20:14:31.0210 6540 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
20:14:31.0210 6540 C:\Windows\System32\LogonUI.exe - ok
20:14:31.0225 6540 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
20:14:31.0225 6540 C:\Windows\System32\adtschema.dll - ok
20:14:31.0225 6540 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
20:14:31.0225 6540 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
20:14:31.0225 6540 [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
20:14:31.0225 6540 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
20:14:31.0241 6540 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
20:14:31.0241 6540 C:\Windows\System32\PSHED.DLL - ok
20:14:31.0241 6540 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
20:14:31.0241 6540 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
20:14:31.0241 6540 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
20:14:31.0241 6540 C:\Windows\System32\MPSSVC.dll - ok
20:14:31.0256 6540 [ 3EF480BFED1B5947A32585E30A58D4ED ] C:\Windows\System32\authui.dll
20:14:31.0256 6540 C:\Windows\System32\authui.dll - ok
20:14:31.0256 6540 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
20:14:31.0256 6540 C:\Windows\System32\cryptui.dll - ok
20:14:31.0256 6540 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
20:14:31.0256 6540 C:\Windows\System32\MMDevAPI.dll - ok
20:14:31.0272 6540 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
20:14:31.0272 6540 C:\Windows\System32\propsys.dll - ok
20:14:31.0272 6540 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
20:14:31.0272 6540 C:\Windows\System32\avrt.dll - ok
20:14:31.0272 6540 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
20:14:31.0272 6540 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
20:14:31.0288 6540 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
20:14:31.0288 6540 C:\Windows\System32\samlib.dll - ok
20:14:31.0288 6540 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
20:14:31.0288 6540 C:\Windows\System32\shacct.dll - ok
20:14:31.0288 6540 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
20:14:31.0288 6540 C:\Windows\System32\uxtheme.dll - ok
20:14:31.0288 6540 [ 18CAAF21CBA3EAEE17BBA5D3807F29B8 ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_2b25b14c71ebf230\GdiPlus.dll
20:14:31.0288 6540 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_2b25b14c71ebf230\GdiPlus.dll - ok
20:14:31.0303 6540 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
20:14:31.0303 6540 C:\Windows\System32\audiodg.exe - ok
20:14:31.0303 6540 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
20:14:31.0303 6540 C:\Windows\System32\dui70.dll - ok
20:14:31.0303 6540 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
20:14:31.0303 6540 C:\Windows\System32\duser.dll - ok
20:14:31.0303 6540 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
20:14:31.0303 6540 C:\Windows\System32\SndVolSSO.dll - ok
20:14:31.0319 6540 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
20:14:31.0319 6540 C:\Windows\System32\dwmapi.dll - ok
20:14:31.0319 6540 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
20:14:31.0319 6540 C:\Windows\System32\hid.dll - ok
20:14:31.0319 6540 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
20:14:31.0319 6540 C:\Windows\System32\xmllite.dll - ok
20:14:31.0319 6540 [ 3D7BB6DD7A87B3E36E44CA94444247A8 ] C:\Windows\System32\WindowsCodecs.dll
20:14:31.0319 6540 C:\Windows\System32\WindowsCodecs.dll - ok
20:14:31.0334 6540 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
20:14:31.0334 6540 C:\Windows\System32\winmm.dll - ok
20:14:31.0334 6540 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
20:14:31.0334 6540 C:\Windows\System32\ntmarta.dll - ok
20:14:31.0334 6540 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
20:14:31.0334 6540 C:\Windows\System32\gpsvc.dll - ok
20:14:31.0334 6540 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
20:14:31.0334 6540 C:\Windows\System32\wdmaud.drv - ok
20:14:31.0350 6540 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
20:14:31.0350 6540 C:\Windows\System32\ksuser.dll - ok
20:14:31.0350 6540 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
20:14:31.0350 6540 C:\Windows\System32\AudioSes.dll - ok
20:14:31.0350 6540 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
20:14:31.0350 6540 C:\Windows\System32\midimap.dll - ok
20:14:31.0350 6540 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
20:14:31.0350 6540 C:\Windows\System32\msacm32.dll - ok
20:14:31.0366 6540 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
20:14:31.0366 6540 C:\Windows\System32\msacm32.drv - ok
20:14:31.0366 6540 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
20:14:31.0366 6540 C:\Windows\System32\AudioEng.dll - ok
20:14:31.0366 6540 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
20:14:31.0366 6540 C:\Windows\System32\dsound.dll - ok
20:14:31.0366 6540 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
20:14:31.0366 6540 C:\Windows\System32\nlaapi.dll - ok
20:14:31.0381 6540 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
20:14:31.0381 6540 C:\Windows\System32\atl.dll - ok
20:14:31.0381 6540 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
20:14:31.0381 6540 C:\Windows\System32\AUDIOKSE.dll - ok
20:14:31.0381 6540 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
20:14:31.0381 6540 C:\Windows\System32\es.dll - ok
20:14:31.0397 6540 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
20:14:31.0397 6540 C:\Windows\System32\VaultCredProvider.dll - ok
20:14:31.0397 6540 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
20:14:31.0397 6540 C:\Windows\System32\winbrand.dll - ok
20:14:31.0397 6540 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
20:14:31.0397 6540 C:\Windows\System32\wtsapi32.dll - ok
20:14:31.0397 6540 [ F5CEF064C7E6D95DA86B9D064A56A969 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
20:14:31.0397 6540 C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
20:14:31.0412 6540 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
20:14:31.0412 6540 C:\Windows\System32\dsrole.dll - ok
20:14:31.0412 6540 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
20:14:31.0412 6540 C:\Windows\System32\slc.dll - ok
20:14:31.0412 6540 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
20:14:31.0412 6540 C:\Windows\System32\webio.dll - ok
20:14:31.0412 6540 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
20:14:31.0412 6540 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
20:14:31.0428 6540 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
20:14:31.0428 6540 C:\Windows\System32\BioCredProv.dll - ok
20:14:31.0428 6540 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
20:14:31.0428 6540 C:\Windows\System32\IPHLPAPI.DLL - ok
20:14:31.0428 6540 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
20:14:31.0428 6540 C:\Windows\System32\winbio.dll - ok
20:14:31.0444 6540 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
20:14:31.0444 6540 C:\Windows\System32\credui.dll - ok
20:14:31.0444 6540 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
20:14:31.0444 6540 C:\Windows\System32\dhcpcsvc.dll - ok
20:14:31.0444 6540 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
20:14:31.0444 6540 C:\Windows\System32\winnsi.dll - ok
20:14:31.0444 6540 [ 90618E03CEE5E264E08D816FE63E3DE0 ] C:\Windows\System32\RtkAPO64.dll
20:14:31.0444 6540 C:\Windows\System32\RtkAPO64.dll - ok
20:14:31.0459 6540 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
20:14:31.0459 6540 C:\Windows\System32\dhcpcsvc6.dll - ok
20:14:31.0459 6540 [ C082B23A77E89D5AA0329777FF34A0DE ] C:\Windows\System32\tepeqapo64.dll
20:14:31.0459 6540 C:\Windows\System32\tepeqapo64.dll - ok
20:14:31.0475 6540 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
20:14:31.0475 6540 C:\Windows\System32\WMALFXGFXDSP.dll - ok
20:14:31.0475 6540 [ AF528B4ECA925F63D437F76E87D8971D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
20:14:31.0475 6540 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
20:14:31.0475 6540 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
20:14:31.0475 6540 C:\Windows\System32\uxsms.dll - ok
20:14:31.0490 6540 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
20:14:31.0490 6540 C:\Windows\System32\netapi32.dll - ok
20:14:31.0490 6540 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
20:14:31.0490 6540 C:\Windows\System32\netutils.dll - ok
20:14:31.0490 6540 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
20:14:31.0490 6540 C:\Windows\System32\rasadhlp.dll - ok
20:14:31.0506 6540 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
20:14:31.0506 6540 C:\Windows\System32\vaultcli.dll - ok
20:14:31.0506 6540 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
20:14:31.0506 6540 C:\Windows\System32\wkscli.dll - ok
20:14:31.0506 6540 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
20:14:31.0506 6540 C:\Windows\System32\samcli.dll - ok
20:14:31.0506 6540 [ 2AC6029D934225F6C91F86FA8A81D6AB ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVCP.dll
20:14:31.0506 6540 C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVCP.dll - ok
20:14:31.0522 6540 [ 7048FE94457B524E000834B1120F77CE ] C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
20:14:31.0522 6540 C:\Program Files\Tablet\Pen\WTabletServiceCon.exe - ok
20:14:31.0522 6540 [ 87C1629EC2743FE752B6089C29ADEE5C ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVHelper.dll
20:14:31.0522 6540 C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVHelper.dll - ok
20:14:31.0522 6540 [ 7AE92C896AF9ABFBDB18C1D055B6EBA7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcp80.dll
20:14:31.0522 6540 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcp80.dll - ok
20:14:31.0537 6540 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
20:14:31.0537 6540 C:\Windows\System32\mfplat.dll - ok
20:14:31.0537 6540 [ 06A754FE28A06F780A099703CFCAAA22 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll
20:14:31.0537 6540 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll - ok
20:14:31.0537 6540 [ 8CDDFE6410C5E1A79C22D8CBA9732A1A ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll
20:14:31.0537 6540 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll - ok
20:14:31.0553 6540 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
20:14:31.0553 6540 C:\Windows\System32\msdmo.dll - ok
20:14:31.0553 6540 [ F6B2CCCC8AB705ECCB8DECCB32AAF755 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcc3d64.dll
20:14:31.0553 6540 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcc3d64.dll - ok
20:14:31.0553 6540 [ 14A20B658146B618F5241B479F8BDBAC ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll
20:14:31.0553 6540 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll - ok
20:14:31.0553 6540 [ 12EA00E820F215D1C0944A72EF2E4F58 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcsii64.dll
20:14:31.0553 6540 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcsii64.dll - ok
20:14:31.0568 6540 [ 41E4DE6158DC06CFF1FD352B364E59A9 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slgeq64.dll
20:14:31.0568 6540 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slgeq64.dll - ok
20:14:31.0568 6540 [ 125AEC09C5E68118252048D629CB8086 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll
20:14:31.0568 6540 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll - ok
20:14:31.0568 6540 [ 96508657EAE1CFDAF95B5E1307E170D8 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slhlim64.dll
20:14:31.0568 6540 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slhlim64.dll - ok
20:14:31.0584 6540 [ CAED4A65CAF1EF80AA81E9B135326658 ] C:\Program Files\Tablet\Pen\msvcp100.dll
20:14:31.0584 6540 C:\Program Files\Tablet\Pen\msvcp100.dll - ok
20:14:31.0584 6540 [ 175E1D0908A99B41BF5F9D3738DB9337 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slInit64.dll
20:14:31.0584 6540 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slInit64.dll - ok
20:14:31.0584 6540 [ 9AE75388EE2C110216B8319584E8AC34 ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVCtrl.dll
20:14:31.0584 6540 C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVCtrl.dll - ok
20:14:31.0584 6540 [ AAB2F38243C12DDC83A71E7A442B5CDD ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slmaxv64.dll
20:14:31.0584 6540 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slmaxv64.dll - ok
20:14:31.0600 6540 [ 2CD51D82FAEAF29BF740BD2D0607D940 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll
20:14:31.0600 6540 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll - ok
20:14:31.0600 6540 [ 5B45F8ED76023C3E3B251D93E5A3D4FB ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll
20:14:31.0600 6540 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll - ok
20:14:31.0600 6540 [ F018E98209E82396C9E70A2C049DBB49 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slviq64.dll
20:14:31.0600 6540 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slviq64.dll - ok
20:14:31.0600 6540 [ AED6D63CFA5A3EF7021AF9C457FEE994 ] C:\Program Files\Tablet\Pen\msvcr100.dll
20:14:31.0600 6540 C:\Program Files\Tablet\Pen\msvcr100.dll - ok
20:14:31.0615 6540 [ 2A9238A326763122424E07EF320D5D3A ] C:\Program Files\TOSHIBA\SmartFaceV\FaceRec.dll
20:14:31.0615 6540 C:\Program Files\TOSHIBA\SmartFaceV\FaceRec.dll - ok
20:14:31.0615 6540 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
20:14:31.0615 6540 C:\Windows\System32\drivers\lltdio.sys - ok
20:14:31.0615 6540 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
20:14:31.0615 6540 C:\Windows\System32\drivers\nwifi.sys - ok
20:14:31.0615 6540 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
20:14:31.0615 6540 C:\Windows\System32\drivers\ndisuio.sys - ok
20:14:31.0631 6540 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
20:14:31.0631 6540 C:\Windows\System32\drivers\rspndr.sys - ok
20:14:31.0631 6540 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
20:14:31.0631 6540 C:\Windows\System32\nrpsrv.dll - ok
20:14:31.0631 6540 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
20:14:31.0631 6540 C:\Windows\System32\dhcpcore6.dll - ok
20:14:31.0631 6540 [ 19E0B5B6202CE85796EA6C0EBB7334DF ] C:\Program Files\Tablet\Pen\WacomHost.exe
20:14:31.0631 6540 C:\Program Files\Tablet\Pen\WacomHost.exe - ok
20:14:31.0646 6540 [ 0184CC60AB10C8124D69AFB332C6AF1C ] C:\Windows\SysWOW64\ntdll.dll
20:14:31.0646 6540 C:\Windows\SysWOW64\ntdll.dll - ok
20:14:31.0646 6540 [ AA913C4E63B6F3F52E20BC9932205BCC ] C:\Windows\System32\wow64.dll
20:14:31.0646 6540 C:\Windows\System32\wow64.dll - ok
20:14:31.0646 6540 [ 9209EA3F29DFC339A87EFD604E035FE4 ] C:\Windows\System32\wow64win.dll
20:14:31.0646 6540 C:\Windows\System32\wow64win.dll - ok
20:14:31.0646 6540 [ 91175B7E997CFAC64F271A15B4217BC7 ] C:\Program Files\TOSHIBA\SmartFaceV\FaceHI.dll
20:14:31.0646 6540 C:\Program Files\TOSHIBA\SmartFaceV\FaceHI.dll - ok
20:14:31.0662 6540 [ 659D71E315FB40FFE9AD46CB0588BEB1 ] C:\Windows\System32\wow64cpu.dll
20:14:31.0662 6540 C:\Windows\System32\wow64cpu.dll - ok
20:14:31.0662 6540 [ 365A5034093AD9E04F433046C4CDF6AB ] C:\Windows\SysWOW64\kernel32.dll
20:14:31.0662 6540 C:\Windows\SysWOW64\kernel32.dll - ok
20:14:31.0662 6540 [ 11338E0557B07BC32CDB980B6EDB35AA ] C:\Windows\System32\ci.dll
20:14:31.0662 6540 C:\Windows\System32\ci.dll - ok
20:14:31.0662 6540 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
20:14:31.0662 6540 C:\Windows\System32\dnsrslvr.dll - ok
20:14:31.0662 6540 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
20:14:31.0662 6540 C:\Windows\System32\eapphost.dll - ok
20:14:31.0678 6540 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
20:14:31.0678 6540 C:\Windows\System32\FWPUCLNT.DLL - ok
20:14:31.0678 6540 [ 138BE04BF17193B27184DEDFE3028548 ] C:\Program Files (x86)\Cisco\Cisco LEAP Module\CiscoEapLeap.dll
20:14:31.0678 6540 C:\Program Files (x86)\Cisco\Cisco LEAP Module\CiscoEapLeap.dll - ok
20:14:31.0693 6540 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
20:14:31.0693 6540 C:\Windows\System32\dnsext.dll - ok
20:14:31.0693 6540 [ A9B830EAF03F07CD92B045E613379117 ] C:\Program Files (x86)\Cisco\Cisco PEAP Module\CiscoEapPeap.dll
20:14:31.0693 6540 C:\Program Files (x86)\Cisco\Cisco PEAP Module\CiscoEapPeap.dll - ok
20:14:31.0693 6540 [ A371EC60804CF07B4D052C295BE9FB9B ] C:\Program Files (x86)\Cisco\Cisco EAP-FAST Module\CiscoEapFast.dll
20:14:31.0693 6540 C:\Program Files (x86)\Cisco\Cisco EAP-FAST Module\CiscoEapFast.dll - ok
20:14:31.0709 6540 [ 1B7343C3765638D4D17CB925F84F8ABE ] C:\Windows\SysWOW64\KernelBase.dll
20:14:31.0709 6540 C:\Windows\SysWOW64\KernelBase.dll - ok
20:14:31.0709 6540 [ E02781D4871844DCD30DF1D69A650F78 ] C:\Windows\SysWOW64\shell32.dll
20:14:31.0709 6540 C:\Windows\SysWOW64\shell32.dll - ok
20:14:31.0709 6540 [ ADD26297F53141BB5F5737719E01D460 ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVLogOn.dll
20:14:31.0709 6540 C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVLogOn.dll - ok
20:14:31.0724 6540 [ 7373DE70D405FF08DC53336B83989138 ] C:\Windows\System32\rastls.dll
20:14:31.0724 6540 C:\Windows\System32\rastls.dll - ok
20:14:31.0724 6540 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
20:14:31.0724 6540 C:\Windows\System32\certCredProvider.dll - ok
20:14:31.0724 6540 [ 1ECB3FFBF22B8A7C958CCF8F96119FC0 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
20:14:31.0724 6540 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
20:14:31.0740 6540 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
20:14:31.0740 6540 C:\Windows\System32\UXInit.dll - ok
20:14:31.0740 6540 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
20:14:31.0740 6540 C:\Windows\System32\rasplap.dll - ok
20:14:31.0740 6540 [ 02E20372D9D6D28E37BA9704EDC90B67 ] C:\Windows\System32\wisptis.exe
20:14:31.0740 6540 C:\Windows\System32\wisptis.exe - ok
20:14:31.0740 6540 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
20:14:31.0740 6540 C:\Windows\System32\raschap.dll - ok
20:14:31.0740 6540 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
20:14:31.0740 6540 C:\Windows\System32\umb.dll - ok
20:14:31.0756 6540 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
20:14:31.0756 6540 C:\Windows\System32\wlanmsm.dll - ok
20:14:31.0756 6540 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
20:14:31.0756 6540 C:\Windows\System32\wlansec.dll - ok
20:14:31.0756 6540 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
20:14:31.0756 6540 C:\Windows\System32\onex.dll - ok
20:14:31.0756 6540 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
20:14:31.0756 6540 C:\Windows\System32\rasapi32.dll - ok
20:14:31.0771 6540 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
20:14:31.0771 6540 C:\Windows\System32\eappprxy.dll - ok
20:14:31.0771 6540 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
20:14:31.0771 6540 C:\Windows\System32\eappcfg.dll - ok
20:14:31.0771 6540 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
20:14:31.0771 6540 C:\Windows\System32\l2gpstore.dll - ok
20:14:31.0771 6540 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
20:14:31.0771 6540 C:\Windows\System32\wlgpclnt.dll - ok
20:14:31.0787 6540 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
20:14:31.0787 6540 C:\Windows\System32\rasman.dll - ok
20:14:31.0787 6540 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
20:14:31.0787 6540 C:\Windows\System32\WinSCard.dll - ok
20:14:31.0787 6540 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
20:14:31.0787 6540 C:\Windows\System32\wlanutil.dll - ok
20:14:31.0787 6540 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
20:14:31.0787 6540 C:\Windows\System32\rtutils.dll - ok
20:14:31.0802 6540 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
20:14:31.0802 6540 C:\Windows\System32\msxml6.dll - ok
20:14:31.0802 6540 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
20:14:31.0802 6540 C:\Windows\System32\imageres.dll - ok
20:14:31.0802 6540 [ 9330941C8F6DF417F6DBBE998DB6687E ] C:\Program Files\AVAST Software\Avast\AvastSvc.exe
20:14:31.0802 6540 C:\Program Files\AVAST Software\Avast\AvastSvc.exe - ok
20:14:31.0802 6540 [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe
20:14:31.0802 6540 C:\Windows\System32\wlanext.exe - ok
20:14:31.0818 6540 [ DF6737304C458AFB28AA214AEB7D7ECD ] C:\Windows\System32\Magnification.dll
20:14:31.0818 6540 C:\Windows\System32\Magnification.dll - ok
20:14:31.0818 6540 [ 4C3DAEE652B005B483F16B8E9131C99D ] C:\Windows\System32\d3d9.dll
20:14:31.0818 6540 C:\Windows\System32\d3d9.dll - ok
20:14:31.0818 6540 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
20:14:31.0818 6540 C:\Windows\SysWOW64\msvcrt.dll - ok
20:14:31.0818 6540 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
20:14:31.0818 6540 C:\Windows\SysWOW64\shlwapi.dll - ok
20:14:31.0834 6540 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
20:14:31.0834 6540 C:\Windows\SysWOW64\gdi32.dll - ok
20:14:31.0834 6540 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
20:14:31.0834 6540 C:\Windows\System32\d3d8thk.dll - ok
20:14:31.0834 6540 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
20:14:31.0834 6540 C:\Windows\System32\oleacc.dll - ok
20:14:31.0834 6540 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
20:14:31.0834 6540 C:\Windows\SysWOW64\user32.dll - ok
20:14:31.0849 6540 [ BF95EA5809E3BBF55370F7CB309FEBD0 ] C:\Windows\System32\conhost.exe
20:14:31.0849 6540 C:\Windows\System32\conhost.exe - ok
20:14:31.0849 6540 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
20:14:31.0849 6540 C:\Windows\SysWOW64\advapi32.dll - ok
20:14:31.0849 6540 [ 4DC999CED9429939D75682EBD7D48901 ] C:\Windows\SysWOW64\rpcrt4.dll
20:14:31.0849 6540 C:\Windows\SysWOW64\rpcrt4.dll - ok
20:14:31.0865 6540 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
20:14:31.0865 6540 C:\Windows\SysWOW64\sechost.dll - ok
20:14:31.0865 6540 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
20:14:31.0865 6540 C:\Windows\SysWOW64\cryptbase.dll - ok
20:14:31.0865 6540 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
20:14:31.0865 6540 C:\Windows\SysWOW64\lpk.dll - ok
20:14:31.0865 6540 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
20:14:31.0865 6540 C:\Windows\SysWOW64\sspicli.dll - ok
20:14:31.0880 6540 [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
20:14:31.0880 6540 C:\Windows\SysWOW64\usp10.dll - ok
20:14:31.0880 6540 [ DAF3E300311D2B78174AE52B231981BD ] C:\Windows\System32\Tabbtn.dll
20:14:31.0880 6540 C:\Windows\System32\Tabbtn.dll - ok
20:14:31.0880 6540 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
20:14:31.0880 6540 C:\Windows\SysWOW64\imm32.dll - ok
20:14:31.0880 6540 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
20:14:31.0880 6540 C:\Windows\SysWOW64\msctf.dll - ok
20:14:31.0896 6540 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
20:14:31.0896 6540 C:\Windows\SysWOW64\ws2_32.dll - ok
20:14:31.0896 6540 [ 5FAD01B108F54DB1C05016C720E90FDE ] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
20:14:31.0896 6540 C:\Program Files\AVAST Software\Avast\aswCmnBS.dll - ok
20:14:31.0896 6540 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
20:14:31.0896 6540 C:\Windows\SysWOW64\nsi.dll - ok
20:14:31.0896 6540 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
20:14:31.0896 6540 C:\Windows\SysWOW64\ole32.dll - ok
20:14:31.0896 6540 [ 4733714C16E139B458469C9CFFE27ED8 ] C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
20:14:31.0896 6540 C:\Program Files\AVAST Software\Avast\aswCmnIS.dll - ok
20:14:31.0912 6540 [ 261D270EF00742DD5E46173B9EC84CB9 ] C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
20:14:31.0912 6540 C:\Program Files\AVAST Software\Avast\aswCmnOS.dll - ok
20:14:31.0912 6540 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
20:14:31.0912 6540 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
20:14:31.0912 6540 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
20:14:31.0912 6540 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
20:14:31.0927 6540 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
20:14:31.0927 6540 C:\Windows\SysWOW64\oleaut32.dll - ok
20:14:31.0927 6540 [ 22121AF21CCCAA6385141F0B06661F59 ] C:\Program Files\AVAST Software\Avast\ashBase.dll
20:14:31.0927 6540 C:\Program Files\AVAST Software\Avast\ashBase.dll - ok
20:14:31.0927 6540 [ E01FF181E37BF93E438137ACF5E4454E ] C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
20:14:31.0927 6540 C:\Program Files\AVAST Software\Avast\aswEngLdr.dll - ok
20:14:31.0927 6540 [ AE8EB083B050E17A7D6EB5E28AECDDD6 ] C:\Windows\SysWOW64\crypt32.dll
20:14:31.0927 6540 C:\Windows\SysWOW64\crypt32.dll - ok
20:14:31.0943 6540 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
20:14:31.0943 6540 C:\Windows\SysWOW64\psapi.dll - ok
20:14:31.0943 6540 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
20:14:31.0943 6540 C:\Windows\SysWOW64\version.dll - ok
20:14:31.0943 6540 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
20:14:31.0943 6540 C:\Windows\SysWOW64\wsock32.dll - ok
20:14:31.0958 6540 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
20:14:31.0958 6540 C:\Windows\SysWOW64\msasn1.dll - ok
20:14:31.0958 6540 [ 535F6263035F2530A62D5D64EF6E73D3 ] C:\Windows\SysWOW64\wininet.dll
20:14:31.0958 6540 C:\Windows\SysWOW64\wininet.dll - ok
20:14:31.0958 6540 [ E5D91D6B81A293AB6854CAD112240A4B ] C:\Windows\SysWOW64\urlmon.dll
20:14:31.0958 6540 C:\Windows\SysWOW64\urlmon.dll - ok
20:14:31.0958 6540 [ 6A13B4F3B3F575F1E24B877B9359AABA ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
20:14:31.0958 6540 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
20:14:31.0974 6540 [ 2E33DFD10F28F86C3FC40EE123CC3904 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
20:14:31.0974 6540 C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
20:14:31.0974 6540 [ 1C60E09CA1C3A045BC4D367F67C915B7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
20:14:31.0974 6540 C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
20:14:31.0974 6540 [ 6951562DC4625EEFC6EACD52AD165866 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
20:14:31.0974 6540 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
20:14:31.0974 6540 [ 589CBC4989F750E1DA35625AB481CF43 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
20:14:31.0974 6540 C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
20:14:31.0990 6540 [ 3BE0D923AA45A4DBE091C2D84F0B4FE7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
20:14:31.0990 6540 C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
20:14:31.0990 6540 [ 281A720B0A984E325599EE1F0342E8FB ] C:\Windows\SysWOW64\iertutil.dll
20:14:31.0990 6540 C:\Windows\SysWOW64\iertutil.dll - ok
20:14:31.0990 6540 [ 388027CF7F4876107708499575FA04DB ] C:\Windows\System32\iwmssvc.dll
20:14:31.0990 6540 C:\Windows\System32\iwmssvc.dll - ok
20:14:31.0990 6540 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
20:14:31.0990 6540 C:\Windows\SysWOW64\apphelp.dll - ok
20:14:32.0005 6540 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
20:14:32.0005 6540 C:\Windows\SysWOW64\propsys.dll - ok
20:14:32.0005 6540 [ C550FE9E5925726933E7DE5116870BA1 ] C:\Program Files\AVAST Software\Avast\avBugReport.exe
20:14:32.0005 6540 C:\Program Files\AVAST Software\Avast\avBugReport.exe - ok
20:14:32.0005 6540 [ 5C5E3AFD499E5146FEF1DA5EF8A23205 ] C:\Program Files\AVAST Software\Avast\dbghelp.dll
20:14:32.0005 6540 C:\Program Files\AVAST Software\Avast\dbghelp.dll - ok
20:14:32.0005 6540 [ DD7DB11302D0B2566F100A50D5F63A0F ] C:\Program Files\AVAST Software\Avast\1033\Base.dll
20:14:32.0005 6540 C:\Program Files\AVAST Software\Avast\1033\Base.dll - ok
20:14:32.0021 6540 [ 7E8C27E4CC138F0B977A7D0D3B9DC910 ] C:\Program Files\AVAST Software\Avast\ashServ.dll
20:14:32.0021 6540 C:\Program Files\AVAST Software\Avast\ashServ.dll - ok
20:14:32.0021 6540 [ F07B8BC018EA37E382A73D9BB6A7D396 ] C:\Program Files\AVAST Software\Avast\ashTask.dll
20:14:32.0021 6540 C:\Program Files\AVAST Software\Avast\ashTask.dll - ok
20:14:32.0021 6540 [ B0199D77A2FB22C5B4A80C04E08695BB ] C:\Program Files\AVAST Software\Avast\aswAux.dll
20:14:32.0021 6540 C:\Program Files\AVAST Software\Avast\aswAux.dll - ok
20:14:32.0021 6540 [ 26108B21B08B0BD1E7FD71ACD09A5228 ] C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
20:14:32.0021 6540 C:\Program Files\AVAST Software\Avast\ashTaskEx.dll - ok
20:14:32.0036 6540 [ F440084752EA601FAE72C751EA122C61 ] C:\Program Files\AVAST Software\Avast\aswLog.dll
20:14:32.0036 6540 C:\Program Files\AVAST Software\Avast\aswLog.dll - ok
20:14:32.0036 6540 [ DACF869B3D8E369BA94424371B908991 ] C:\Program Files\AVAST Software\Avast\aswSqLt.dll
20:14:32.0036 6540 C:\Program Files\AVAST Software\Avast\aswSqLt.dll - ok
20:14:32.0036 6540 [ F111BBA6FFD81EC660AAF31A7C288F4E ] C:\Program Files\AVAST Software\Avast\AavmRpch.dll
20:14:32.0036 6540 C:\Program Files\AVAST Software\Avast\AavmRpch.dll - ok
20:14:32.0036 6540 [ 7E09F8D109B840B141A57BFA5282460C ] C:\Program Files\AVAST Software\Avast\aswProperty.dll
20:14:32.0036 6540 C:\Program Files\AVAST Software\Avast\aswProperty.dll - ok
20:14:32.0052 6540 [ BB3B2116E7535BC560B29076DC104772 ] C:\Program Files\AVAST Software\Avast\Aavm4h.dll
20:14:32.0052 6540 C:\Program Files\AVAST Software\Avast\Aavm4h.dll - ok
20:14:32.0052 6540 [ 3A03EE0D73AAC62BA0C32D063423195F ] C:\Program Files\AVAST Software\Avast\avastIP.dll
20:14:32.0052 6540 C:\Program Files\AVAST Software\Avast\avastIP.dll - ok
20:14:32.0052 6540 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
20:14:32.0052 6540 C:\Windows\System32\fveapi.dll - ok
20:14:32.0068 6540 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
20:14:32.0068 6540 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
20:14:32.0068 6540 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
20:14:32.0068 6540 C:\Windows\SysWOW64\winhttp.dll - ok
20:14:32.0068 6540 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
20:14:32.0068 6540 C:\Windows\SysWOW64\winnsi.dll - ok
20:14:32.0068 6540 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
20:14:32.0068 6540 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
20:14:32.0083 6540 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
20:14:32.0083 6540 C:\Windows\System32\fvecerts.dll - ok
20:14:32.0083 6540 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
20:14:32.0083 6540 C:\Windows\System32\tbs.dll - ok
20:14:32.0083 6540 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
20:14:32.0083 6540 C:\Windows\System32\wiarpc.dll - ok
20:14:32.0083 6540 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
20:14:32.0083 6540 C:\Windows\SysWOW64\webio.dll - ok
20:14:32.0099 6540 [ A00F4D4FC989097983A04D9D101F5C98 ] C:\Program Files\AVAST Software\Avast\aswDld.dll
20:14:32.0099 6540 C:\Program Files\AVAST Software\Avast\aswDld.dll - ok
20:14:32.0099 6540 [ 2DCBA1AB6390542DE6D26DB3BF640568 ] C:\Program Files\AVAST Software\Avast\aswIdle.dll
20:14:32.0099 6540 C:\Program Files\AVAST Software\Avast\aswIdle.dll - ok
20:14:32.0099 6540 [ D2FFE5069A4DEF46B754E18F313B5B24 ] C:\Program Files\AVAST Software\Avast\aswStrm.dll
20:14:32.0099 6540 C:\Program Files\AVAST Software\Avast\aswStrm.dll - ok
20:14:32.0114 6540 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
20:14:32.0114 6540 C:\Windows\SysWOW64\cfgmgr32.dll - ok
20:14:32.0114 6540 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
20:14:32.0114 6540 C:\Windows\System32\ktmw32.dll - ok
20:14:32.0114 6540 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
20:14:32.0114 6540 C:\Windows\System32\taskcomp.dll - ok
20:14:32.0114 6540 [ E76FD59F422F714C3DCA4DF8FDD08298 ] C:\Windows\System32\mfc100.dll
20:14:32.0114 6540 C:\Windows\System32\mfc100.dll - ok
20:14:32.0114 6540 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
20:14:32.0114 6540 C:\Windows\SysWOW64\clbcatq.dll - ok
20:14:32.0130 6540 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
20:14:32.0130 6540 C:\Windows\SysWOW64\profapi.dll - ok
20:14:32.0130 6540 [ 49ACA548B2423F1C67898E6AC719A9A6 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
20:14:32.0130 6540 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
20:14:32.0130 6540 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
20:14:32.0130 6540 C:\Windows\SysWOW64\secur32.dll - ok
20:14:32.0130 6540 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
20:14:32.0130 6540 C:\Windows\SysWOW64\setupapi.dll - ok
20:14:32.0146 6540 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
20:14:32.0146 6540 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
20:14:32.0146 6540 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
20:14:32.0146 6540 C:\Windows\SysWOW64\wscapi.dll - ok
20:14:32.0146 6540 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
20:14:32.0146 6540 C:\Windows\SysWOW64\wscisvif.dll - ok
20:14:32.0146 6540 [ 8C05B84B537E544259689EB8BF0CE0BC ] C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
20:14:32.0146 6540 C:\Program Files\Tablet\Pen\Pen_TouchUser.exe - ok
20:14:32.0161 6540 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
20:14:32.0161 6540 C:\Windows\SysWOW64\devobj.dll - ok
20:14:32.0161 6540 [ B16A86A096E7205F35A29D42646A8CF6 ] C:\Program Files\Tablet\Pen\Pen_Tablet.exe
20:14:32.0161 6540 C:\Program Files\Tablet\Pen\Pen_Tablet.exe - ok
20:14:32.0161 6540 [ EDDF00E114C9B7C36FC64ABA977FE09E ] C:\Program Files\AVAST Software\Avast\defs\13092602\aswEngin.dll
20:14:32.0161 6540 C:\Program Files\AVAST Software\Avast\defs\13092602\aswEngin.dll - ok
20:14:32.0161 6540 [ B88DA7FD10BDBB3754D98AFD39677C29 ] C:\Windows\System32\msvcr100.dll
20:14:32.0161 6540 C:\Windows\System32\msvcr100.dll - ok
20:14:32.0177 6540 [ DB18011365FF055EA364910CE3604A07 ] C:\Program Files\AVAST Software\Avast\defs\13092602\aswCmnIS.dll
20:14:32.0177 6540 C:\Program Files\AVAST Software\Avast\defs\13092602\aswCmnIS.dll - ok
20:14:32.0177 6540 [ AC17D7C168896F2EE187BEBF146DB749 ] C:\Program Files\AVAST Software\Avast\defs\13092602\aswCmnOS.dll
20:14:32.0177 6540 C:\Program Files\AVAST Software\Avast\defs\13092602\aswCmnOS.dll - ok
20:14:32.0177 6540 [ 85D734D8A9B3C333F63DE170A580F182 ] C:\Program Files\AVAST Software\Avast\defs\13092602\aswCmnBS.dll
20:14:32.0177 6540 C:\Program Files\AVAST Software\Avast\defs\13092602\aswCmnBS.dll - ok
20:14:32.0177 6540 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
20:14:32.0177 6540 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
20:14:32.0192 6540 [ E6DA0DD68C037B2EBD58E1F9EBEA6B18 ] C:\Program Files\AVAST Software\Avast\defs\13092602\aswScan.dll
20:14:32.0192 6540 C:\Program Files\AVAST Software\Avast\defs\13092602\aswScan.dll - ok
20:14:32.0192 6540 [ 2880583DF6DE126CC32B8491314A0DA3 ] C:\Program Files\AVAST Software\Avast\defs\13092602\aswRep.dll
20:14:32.0192 6540 C:\Program Files\AVAST Software\Avast\defs\13092602\aswRep.dll - ok
20:14:32.0192 6540 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
20:14:32.0192 6540 C:\Windows\System32\msimg32.dll - ok
20:14:32.0208 6540 [ 37D44BFEA9B50D75764660ADC35C83AC ] C:\Windows\System32\msvcp100.dll
20:14:32.0208 6540 C:\Windows\System32\msvcp100.dll - ok
20:14:32.0208 6540 [ 2399F8068E969D9C25A05B6F779A790A ] C:\Program Files\AVAST Software\Avast\defs\13092602\aswFiDb.dll
20:14:32.0208 6540 C:\Program Files\AVAST Software\Avast\defs\13092602\aswFiDb.dll - ok
20:14:32.0208 6540 [ D56DE559D44C42074B97B2C5624E9FE9 ] C:\Windows\System32\mfc100enu.dll
20:14:32.0208 6540 C:\Windows\System32\mfc100enu.dll - ok
20:14:32.0208 6540 [ 5203BA7F91EE2E113BB5C6AE1816E704 ] C:\Program Files\Common Files\Intel\WirelessCommon\libeay32.dll
20:14:32.0208 6540 C:\Program Files\Common Files\Intel\WirelessCommon\libeay32.dll - ok
20:14:32.0224 6540 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
20:14:32.0224 6540 C:\Windows\System32\wlanapi.dll - ok
20:14:32.0224 6540 [ C3473CA7B6114D6FAA9054C9C12B4DAD ] C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll
20:14:32.0224 6540 C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll - ok
20:14:32.0224 6540 [ 95D3964DA430CF95CEC424C98A90B013 ] C:\Program Files\Common Files\Intel\WirelessCommon\TraceAPI.dll
20:14:32.0224 6540 C:\Program Files\Common Files\Intel\WirelessCommon\TraceAPI.dll - ok
20:14:32.0224 6540 [ 323764C9E02492A382EE9480314850E3 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll
20:14:32.0224 6540 C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll - ok
20:14:32.0239 6540 [ 3FA1CAE9D094AA7718ECBEC2CB9F2EE6 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll
20:14:32.0239 6540 C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll - ok
20:14:32.0239 6540 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
20:14:32.0239 6540 C:\Windows\System32\winspool.drv - ok
20:14:32.0239 6540 [ 930FE4496413D491FF78E61FA3DEAC1E ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\P2PSupplicantPlugin.dll
20:14:32.0239 6540 C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\P2PSupplicantPlugin.dll - ok
20:14:32.0239 6540 [ BF1152024FDD908A1535E69FDB21439E ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll
20:14:32.0239 6540 C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll - ok
20:14:32.0255 6540 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
20:14:32.0255 6540 C:\Windows\SysWOW64\mpr.dll - ok
20:14:32.0255 6540 [ 75E44636E8D4025F7CBF74C2310A201A ] C:\Program Files\AVAST Software\Avast\defs\13092602\algo.dll
20:14:32.0255 6540 C:\Program Files\AVAST Software\Avast\defs\13092602\algo.dll - ok
20:14:32.0255 6540 [ 7814FDAF58FD8D7074B88241D3819F0F ] C:\Program Files\Tablet\Pen\libxml2.dll
20:14:32.0255 6540 C:\Program Files\Tablet\Pen\libxml2.dll - ok
20:14:32.0255 6540 [ 8AB8338474131C1ECFA230A1AEE7BCFB ] C:\Program Files\AVAST Software\Avast\Setup\setiface.dll
20:14:32.0255 6540 C:\Program Files\AVAST Software\Avast\Setup\setiface.dll - ok
20:14:32.0270 6540 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
20:14:32.0270 6540 C:\Windows\System32\mpr.dll - ok
20:14:32.0270 6540 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
20:14:32.0270 6540 C:\Windows\System32\netcfgx.dll - ok
20:14:32.0270 6540 [ FF87EE89FDC29A9123163AE667ADD4C5 ] C:\Windows\System32\Pen_Tablet.dll
20:14:32.0270 6540 C:\Windows\System32\Pen_Tablet.dll - ok
20:14:32.0270 6540 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
20:14:32.0270 6540 C:\Windows\System32\drivers\bowser.sys - ok
20:14:32.0286 6540 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
20:14:32.0286 6540 C:\Windows\System32\drivers\mpsdrv.sys - ok
20:14:32.0286 6540 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
20:14:32.0286 6540 C:\Windows\System32\drivers\mrxsmb.sys - ok
20:14:32.0286 6540 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
20:14:32.0286 6540 C:\Windows\System32\drivers\mrxsmb10.sys - ok
20:14:32.0302 6540 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
20:14:32.0302 6540 C:\Windows\System32\drivers\mrxsmb20.sys - ok
20:14:32.0302 6540 [ 3FD8DC2C9735C2AA70155102CFB93EDA ] C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
20:14:32.0302 6540 C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe - ok
20:14:32.0302 6540 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
20:14:32.0302 6540 C:\Windows\System32\wfapigp.dll - ok
20:14:32.0302 6540 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
20:14:32.0302 6540 C:\Windows\System32\mscms.dll - ok
20:14:32.0317 6540 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
20:14:32.0317 6540 C:\Windows\SysWOW64\credssp.dll - ok
20:14:32.0317 6540 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
20:14:32.0317 6540 C:\Windows\SysWOW64\cryptsp.dll - ok
20:14:32.0317 6540 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
20:14:32.0317 6540 C:\Windows\SysWOW64\mswsock.dll - ok
20:14:32.0317 6540 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
20:14:32.0317 6540 C:\Windows\SysWOW64\wship6.dll - ok
20:14:32.0333 6540 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
20:14:32.0333 6540 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
20:14:32.0333 6540 [ 7C00C608FE4C8EDE9E30940837B9AC8B ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
20:14:32.0333 6540 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
20:14:32.0333 6540 [ C34984319992C4D07296D9CB9F4AF4C3 ] C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\platform.DLL
20:14:32.0333 6540 C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\platform.DLL - ok
20:14:32.0333 6540 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
20:14:32.0333 6540 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
20:14:32.0348 6540 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
20:14:32.0348 6540 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
20:14:32.0348 6540 [ 7D3E562070B0A0D89D3DA07118F32B3C ] C:\Program Files\Intel\WiFi\bin\IntStngs.dll
20:14:32.0348 6540 C:\Program Files\Intel\WiFi\bin\IntStngs.dll - ok
20:14:32.0348 6540 [ D3A8AF8BC003E16DAB96AB1ED20A52B8 ] C:\Program Files\Intel\WiFi\bin\iWMSProv.dll
20:14:32.0348 6540 C:\Program Files\Intel\WiFi\bin\iWMSProv.dll - ok
20:14:32.0348 6540 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
20:14:32.0348 6540 C:\Windows\System32\drivers\vwifimp.sys - ok
20:14:32.0364 6540 [ 3927397AC60D943DAF8808AFFED582B7 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:14:32.0364 6540 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
20:14:32.0364 6540 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
20:14:32.0364 6540 C:\Windows\SysWOW64\ntmarta.dll - ok
20:14:32.0364 6540 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
20:14:32.0364 6540 C:\Windows\SysWOW64\Wldap32.dll - ok
20:14:32.0380 6540 [ 68EAAEDF0365168B804E8728368FA946 ] C:\Windows\SysWOW64\wintrust.dll
20:14:32.0380 6540 C:\Windows\SysWOW64\wintrust.dll - ok
20:14:32.0380 6540 [ 64D25284A4E9D11CA0722AF3F30FD970 ] C:\Program Files\Intel\WiFi\bin\EvtEng.exe
20:14:32.0380 6540 C:\Program Files\Intel\WiFi\bin\EvtEng.exe - ok
20:14:32.0380 6540 [ A6B726DCA228F7878E38368A1BDC68BE ] C:\Windows\System32\cryptnet.dll
20:14:32.0380 6540 C:\Windows\System32\cryptnet.dll - ok
20:14:32.0395 6540 [ 7F8E83B9466A0A002D4AB15C104062A7 ] C:\Windows\System32\efscore.dll
20:14:32.0395 6540 C:\Windows\System32\efscore.dll - ok
20:14:32.0395 6540 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
20:14:32.0395 6540 C:\Windows\System32\taskschd.dll - ok
20:14:32.0395 6540 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
20:14:32.0395 6540 C:\Windows\System32\vssapi.dll - ok
20:14:32.0411 6540 [ 58283053C781AD3A579C95D7765C1FA0 ] C:\Windows\System32\efsutil.dll
20:14:32.0411 6540 C:\Windows\System32\efsutil.dll - ok
20:14:32.0411 6540 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
20:14:32.0411 6540 C:\Windows\System32\vsstrace.dll - ok
20:14:32.0411 6540 [ 3A8EB5DA39026C810BEE7CD397DA68B7 ] C:\Program Files\Intel\WiFi\bin\MurocApi.dll
20:14:32.0411 6540 C:\Program Files\Intel\WiFi\bin\MurocApi.dll - ok
20:14:32.0426 6540 [ 7C76466F4E0F76CE259C6005D161E9E8 ] C:\Program Files\Intel\iCLS Client\HeciServer.exe
20:14:32.0426 6540 C:\Program Files\Intel\iCLS Client\HeciServer.exe - ok
20:14:32.0426 6540 [ 0AC0A2A1C4457249ADC21F28045F2664 ] C:\Program Files\Intel\WiFi\bin\iWrap.exe
20:14:32.0426 6540 C:\Program Files\Intel\WiFi\bin\iWrap.exe - ok
20:14:32.0426 6540 [ D7467E57549960468E0CA85C17185B12 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
20:14:32.0426 6540 C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe - ok
20:14:32.0442 6540 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
20:14:32.0442 6540 C:\Windows\System32\netshell.dll - ok
20:14:32.0442 6540 [ 711726A65821211AC12F21EA8B7CBE83 ] C:\Program Files\Intel\WiFi\bin\P2PSupplicant.dll
20:14:32.0442 6540 C:\Program Files\Intel\WiFi\bin\P2PSupplicant.dll - ok
20:14:32.0442 6540 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
20:14:32.0442 6540 C:\Windows\System32\oledlg.dll - ok
20:14:32.0442 6540 [ FB24438F64BAF5198EE7648B51FD3AB0 ] C:\Windows\System32\cacls.exe
20:14:32.0442 6540 C:\Windows\System32\cacls.exe - ok
20:14:32.0458 6540 [ 77DCD9163C1322AA440AEDD4752F3965 ] C:\Program Files\Intel\WiFi\bin\AmtWsMan.dll
20:14:32.0458 6540 C:\Program Files\Intel\WiFi\bin\AmtWsMan.dll - ok
20:14:32.0458 6540 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
20:14:32.0458 6540 C:\Windows\SysWOW64\fltLib.dll - ok
20:14:32.0458 6540 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
20:14:32.0458 6540 C:\Windows\SysWOW64\wtsapi32.dll - ok
20:14:32.0458 6540 [ 604A8615BB3D7064197A0563C799B938 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
20:14:32.0458 6540 C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe - ok
20:14:32.0473 6540 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
20:14:32.0473 6540 C:\Windows\SysWOW64\netapi32.dll - ok
20:14:32.0473 6540 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
20:14:32.0473 6540 C:\Windows\SysWOW64\netutils.dll - ok
20:14:32.0473 6540 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
20:14:32.0473 6540 C:\Windows\SysWOW64\srvcli.dll - ok
20:14:32.0473 6540 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
20:14:32.0473 6540 C:\Windows\SysWOW64\winsta.dll - ok
20:14:32.0489 6540 [ 5BF5AFF1249DE0F9827619FF11A85B3A ] C:\Program Files\AVAST Software\Avast\AhResBhv.dll
20:14:32.0489 6540 C:\Program Files\AVAST Software\Avast\AhResBhv.dll - ok
20:14:32.0489 6540 [ 6EA039F3089DDD2D167CEBFED8EEC737 ] C:\Program Files\AVAST Software\Avast\AhResJs.dll
20:14:32.0489 6540 C:\Program Files\AVAST Software\Avast\AhResJs.dll - ok
20:14:32.0489 6540 [ EE26905023EAD1C447FDD4AD3806A134 ] C:\Program Files\AVAST Software\Avast\AhResMai.dll
20:14:32.0489 6540 C:\Program Files\AVAST Software\Avast\AhResMai.dll - ok
20:14:32.0489 6540 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
20:14:32.0489 6540 C:\Windows\SysWOW64\wkscli.dll - ok
20:14:32.0504 6540 [ FA1A4A3E5A3CDDB80AA927566BBF134E ] C:\Program Files\AVAST Software\Avast\AhResMes.dll
20:14:32.0504 6540 C:\Program Files\AVAST Software\Avast\AhResMes.dll - ok
20:14:32.0504 6540 [ FBEAA8A73F4931AAB9A56F7502F3E060 ] C:\Program Files\AVAST Software\Avast\AhResNS.dll
20:14:32.0504 6540 C:\Program Files\AVAST Software\Avast\AhResNS.dll - ok
20:14:32.0504 6540 [ 53DC748F87763A92D4D4607C17F3084B ] C:\Program Files\AVAST Software\Avast\AhResP2P.dll
20:14:32.0504 6540 C:\Program Files\AVAST Software\Avast\AhResP2P.dll - ok
20:14:32.0504 6540 [ 9285DDCA0A51993F54E84F1C3B961C34 ] C:\Program Files\AVAST Software\Avast\AhResStd.dll
20:14:32.0504 6540 C:\Program Files\AVAST Software\Avast\AhResStd.dll - ok
20:14:32.0520 6540 [ 9B4C0681BB7C1C5FA9BE7E5061518C0B ] C:\Program Files\AVAST Software\Avast\AhResWS.dll
20:14:32.0520 6540 C:\Program Files\AVAST Software\Avast\AhResWS.dll - ok
20:14:32.0520 6540 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
20:14:32.0520 6540 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
20:14:32.0520 6540 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
20:14:32.0520 6540 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
20:14:32.0520 6540 [ EAB975DB4C2805927FE5BD047D05C9AA ] C:\Windows\SysWOW64\netshell.dll
20:14:32.0520 6540 C:\Windows\SysWOW64\netshell.dll - ok
20:14:32.0536 6540 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
20:14:32.0536 6540 C:\Windows\SysWOW64\wlanapi.dll - ok
20:14:32.0536 6540 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
20:14:32.0536 6540 C:\Windows\SysWOW64\wlanutil.dll - ok
20:14:32.0536 6540 [ 512D4FD86DE088A0DBDE4A5D5F10B3E2 ] C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll
20:14:32.0536 6540 C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll - ok
20:14:32.0536 6540 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
20:14:32.0536 6540 C:\Windows\System32\wbemcomn.dll - ok
20:14:32.0551 6540 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
20:14:32.0551 6540 C:\Windows\System32\wbem\wbemprox.dll - ok
20:14:32.0551 6540 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
20:14:32.0551 6540 C:\Windows\System32\wsock32.dll - ok
20:14:32.0551 6540 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
20:14:32.0551 6540 C:\Windows\SysWOW64\nlaapi.dll - ok
20:14:32.0551 6540 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
20:14:32.0551 6540 C:\Windows\SysWOW64\rsaenh.dll - ok
20:14:32.0567 6540 [ DD963E7DAC38C2684AB69BB23321C020 ] C:\Program Files\AVAST Software\Avast\ashMaiSv.dll
20:14:32.0567 6540 C:\Program Files\AVAST Software\Avast\ashMaiSv.dll - ok
20:14:32.0567 6540 [ 3EBDCDE525EC17C670C574B5D5D221FF ] C:\Program Files\AVAST Software\Avast\defs\13092602\ArPot.dll
20:14:32.0567 6540 C:\Program Files\AVAST Software\Avast\defs\13092602\ArPot.dll - ok
20:14:32.0567 6540 [ 44BD658E0E4D21C42023AD9EBEFFDB90 ] C:\Program Files\AVAST Software\Avast\ssleay32.dll
20:14:32.0567 6540 C:\Program Files\AVAST Software\Avast\ssleay32.dll - ok
20:14:32.0567 6540 [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\SysWOW64\msvcp100.dll
20:14:32.0567 6540 C:\Windows\SysWOW64\msvcp100.dll - ok
20:14:32.0582 6540 [ 8ED6DA45BAB5CFC809229F26D4D4A2CE ] C:\Program Files\AVAST Software\Avast\libeay32.dll
20:14:32.0582 6540 C:\Program Files\AVAST Software\Avast\libeay32.dll - ok
20:14:32.0582 6540 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
20:14:32.0582 6540 C:\Windows\SysWOW64\userenv.dll - ok
20:14:32.0582 6540 [ B6D90C99A72044AEF85A2B7D78FEBEF4 ] C:\Program Files\AVAST Software\Avast\defs\13092602\exts.dll
20:14:32.0582 6540 C:\Program Files\AVAST Software\Avast\defs\13092602\exts.dll - ok
20:14:32.0582 6540 [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\SysWOW64\msvcr100.dll
20:14:32.0582 6540 C:\Windows\SysWOW64\msvcr100.dll - ok
20:14:32.0582 6540 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
20:14:32.0582 6540 C:\Windows\SysWOW64\dnsapi.dll - ok
20:14:32.0598 6540 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
20:14:32.0598 6540 C:\Windows\SysWOW64\NapiNSP.dll - ok
20:14:32.0598 6540 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
20:14:32.0598 6540 C:\Windows\SysWOW64\pnrpnsp.dll - ok
20:14:32.0598 6540 [ 4355CF8BD07B0E48C111FC3D2F36D313 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
20:14:32.0598 6540 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
20:14:32.0598 6540 [ 0652852AC9AF6C292D10F36533D375C8 ] C:\Program Files\AVAST Software\Avast\ashWebSv.dll
20:14:32.0598 6540 C:\Program Files\AVAST Software\Avast\ashWebSv.dll - ok
20:14:32.0614 6540 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
20:14:32.0614 6540 C:\Windows\SysWOW64\winrnr.dll - ok
20:14:32.0614 6540 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
20:14:32.0614 6540 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
20:14:32.0614 6540 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
20:14:32.0614 6540 C:\Windows\System32\drivers\PEAuth.sys - ok
20:14:32.0614 6540 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
20:14:32.0614 6540 C:\Windows\System32\aepic.dll - ok
20:14:32.0629 6540 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
20:14:32.0629 6540 C:\Windows\System32\ncsi.dll - ok
20:14:32.0629 6540 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
20:14:32.0629 6540 C:\Windows\System32\ssdpapi.dll - ok
20:14:32.0629 6540 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
20:14:32.0629 6540 C:\Windows\SysWOW64\imagehlp.dll - ok
20:14:32.0629 6540 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
20:14:32.0629 6540 C:\Windows\SysWOW64\rasadhlp.dll - ok
20:14:32.0629 6540 [ B2D01290C0E0465ACA54C2088E947823 ] C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
20:14:32.0629 6540 C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe - ok
20:14:32.0645 6540 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
20:14:32.0645 6540 C:\Windows\System32\sfc.dll - ok
20:14:32.0645 6540 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
20:14:32.0645 6540 C:\Windows\System32\sfc_os.dll - ok
20:14:32.0645 6540 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
20:14:32.0645 6540 C:\Windows\SysWOW64\ncrypt.dll - ok
20:14:32.0645 6540 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
20:14:32.0645 6540 C:\Windows\SysWOW64\bcrypt.dll - ok
20:14:32.0660 6540 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
20:14:32.0660 6540 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
20:14:32.0660 6540 [ 1D871ADE6939C0BA786E2843084C1100 ] C:\Program Files\AVAST Software\Avast\ashWsFtr.dll
20:14:32.0660 6540 C:\Program Files\AVAST Software\Avast\ashWsFtr.dll - ok
20:14:32.0660 6540 [ 3E1847D24A320D5C5FC2C9BB0E38A989 ] C:\Program Files\AVAST Software\Avast\aswPatchMgt.dll
20:14:32.0660 6540 C:\Program Files\AVAST Software\Avast\aswPatchMgt.dll - ok
20:14:32.0660 6540 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
20:14:32.0660 6540 C:\Windows\SysWOW64\security.dll - ok
20:14:32.0660 6540 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
20:14:32.0660 6540 C:\Windows\SysWOW64\samcli.dll - ok
20:14:32.0676 6540 [ 7B851A8018B1EA00A69707A390004884 ] C:\Windows\SysWOW64\cryptnet.dll
20:14:32.0676 6540 C:\Windows\SysWOW64\cryptnet.dll - ok
20:14:32.0676 6540 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
20:14:32.0676 6540 C:\Windows\SysWOW64\gpapi.dll - ok
20:14:32.0676 6540 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
20:14:32.0676 6540 C:\Windows\System32\dot3api.dll - ok
20:14:32.0676 6540 [ 2AC6EBDE35FB53D5C161D5AFBC391EA0 ] C:\Program Files\AVAST Software\Avast\defs\13092602\swhealthex.dll
20:14:32.0676 6540 C:\Program Files\AVAST Software\Avast\defs\13092602\swhealthex.dll - ok
20:14:32.0676 6540 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
20:14:32.0676 6540 C:\Windows\System32\wlanhlp.dll - ok
20:14:32.0692 6540 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
20:14:32.0692 6540 C:\Windows\System32\hnetcfg.dll - ok
20:14:32.0692 6540 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
20:14:32.0692 6540 C:\Windows\SysWOW64\samlib.dll - ok
20:14:32.0692 6540 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
20:14:32.0692 6540 C:\Windows\SysWOW64\SensApi.dll - ok
20:14:32.0692 6540 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
20:14:32.0692 6540 C:\Windows\System32\aeevts.dll - ok
20:14:32.0707 6540 [ 01941FC68B93357C30017F33E1D2C5F8 ] C:\Program Files\AVAST Software\Avast\snxhk.dll
20:14:32.0707 6540 C:\Program Files\AVAST Software\Avast\snxhk.dll - ok
20:14:32.0707 6540 [ 1B30B37ADC4F747823C513C51A2214A4 ] C:\Program Files\AVAST Software\Avast\Setup\avast.setup
20:14:32.0707 6540 C:\Program Files\AVAST Software\Avast\Setup\avast.setup - ok
20:14:32.0707 6540 [ 25871081042C6C30DA3A0F84E1FA1FA8 ] C:\Program Files\AVAST Software\Avast\defs\13092602\aswAR.dll
20:14:32.0707 6540 C:\Program Files\AVAST Software\Avast\defs\13092602\aswAR.dll - ok
20:14:32.0707 6540 [ D5844C513D2C0E12061818DBC8D09DE9 ] C:\Program Files\AVAST Software\Avast\defs\13092602\aswRawFS.dll
20:14:32.0707 6540 C:\Program Files\AVAST Software\Avast\defs\13092602\aswRawFS.dll - ok
20:14:32.0723 6540 [ 255DBB5C20091F539AA451186453251D ] C:\Program Files\AVAST Software\Avast\snxhk64.dll
20:14:32.0723 6540 C:\Program Files\AVAST Software\Avast\snxhk64.dll - ok
20:14:32.0723 6540 [ F3AF2B43F35DBB3A0EB9FEEEC7D62217 ] C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
20:14:32.0723 6540 C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe - ok
20:14:32.0723 6540 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
20:14:32.0723 6540 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
20:14:32.0723 6540 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
20:14:32.0723 6540 C:\Windows\SysWOW64\oleacc.dll - ok
20:14:32.0738 6540 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
20:14:32.0738 6540 C:\Windows\SysWOW64\powrprof.dll - ok
20:14:32.0738 6540 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
20:14:32.0738 6540 C:\Windows\SysWOW64\winspool.drv - ok
20:14:32.0738 6540 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
20:14:32.0738 6540 C:\Windows\SysWOW64\comdlg32.dll - ok
20:14:32.0738 6540 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
20:14:32.0738 6540 C:\Windows\SysWOW64\msimg32.dll - ok
20:14:32.0738 6540 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
20:14:32.0738 6540 C:\Windows\SysWOW64\oledlg.dll - ok
20:14:32.0754 6540 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
20:14:32.0754 6540 C:\Windows\SysWOW64\winmm.dll - ok
20:14:32.0754 6540 [ DD502A2E7B85EA7A3814C1034E6C23D3 ] C:\Windows\AppPatch\AcGenral.dll
20:14:32.0754 6540 C:\Windows\AppPatch\AcGenral.dll - ok
20:14:32.0754 6540 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
20:14:32.0754 6540 C:\Windows\System32\drivers\secdrv.sys - ok
20:14:32.0754 6540 [ 2046AA7491DE7EFA4D70E615D9BC9D09 ] C:\Windows\System32\drivers\Sftfslh.sys
20:14:32.0754 6540 C:\Windows\System32\drivers\Sftfslh.sys - ok
20:14:32.0770 6540 [ 39B1D0A636A400304565D4521FAD6D77 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
20:14:32.0770 6540 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe - ok
20:14:32.0770 6540 [ 0E0446BC4D51BE4263ACB7E33491191C ] C:\Windows\System32\drivers\Sftplaylh.sys
20:14:32.0770 6540 C:\Windows\System32\drivers\Sftplaylh.sys - ok
20:14:32.0770 6540 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
20:14:32.0770 6540 C:\Windows\SysWOW64\uxtheme.dll - ok
20:14:32.0770 6540 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
20:14:32.0770 6540 C:\Windows\SysWOW64\dwmapi.dll - ok
20:14:32.0785 6540 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
20:14:32.0785 6540 C:\Windows\SysWOW64\msacm32.dll - ok
20:14:32.0785 6540 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
20:14:32.0785 6540 C:\Windows\SysWOW64\sfc.dll - ok
20:14:32.0785 6540 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
20:14:32.0785 6540 C:\Windows\SysWOW64\sfc_os.dll - ok
20:14:32.0801 6540 [ 1E8D06AAE74FED674C1156B3FEA911C2 ] C:\Windows\SysWOW64\Faultrep.dll
20:14:32.0801 6540 C:\Windows\SysWOW64\Faultrep.dll - ok
20:14:32.0801 6540 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
20:14:32.0801 6540 C:\Windows\SysWOW64\netprofm.dll - ok
20:14:32.0801 6540 [ 73E3B5D1F1EB5FDC51A5C3437EEE3348 ] C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
20:14:32.0801 6540 C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe - ok
20:14:32.0816 6540 [ 3E587DBBDFF938DDE5D4CE4047BE9041 ] C:\Program Files (x86)\Skype\Updater\Updater.exe
20:14:32.0816 6540 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
20:14:32.0816 6540 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
20:14:32.0816 6540 C:\Windows\System32\drivers\srvnet.sys - ok
20:14:32.0816 6540 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
20:14:32.0816 6540 C:\Windows\System32\httpapi.dll - ok
20:14:32.0816 6540 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
20:14:32.0816 6540 C:\Windows\System32\drivers\tcpipreg.sys - ok
20:14:32.0832 6540 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
20:14:32.0832 6540 C:\Windows\System32\wiatrace.dll - ok
20:14:32.0832 6540 [ 0B4734AE9EC70B843DF02E7B1C056377 ] C:\Windows\System32\ThpSrv.exe
20:14:32.0832 6540 C:\Windows\System32\ThpSrv.exe - ok
20:14:32.0832 6540 [ 8E2C799D3476EAC32C3BA0DF7CE6AF19 ] C:\Windows\System32\TODDSrv.exe
20:14:32.0832 6540 C:\Windows\System32\TODDSrv.exe - ok
20:14:32.0848 6540 [ A7EFE68D424A55FA84CCB6099D1D93C0 ] C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
20:14:32.0848 6540 C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe - ok
20:14:32.0848 6540 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
20:14:32.0848 6540 C:\Windows\System32\dllhost.exe - ok
20:14:32.0863 6540 [ 6650A8960EC5AAD4903D534105506024 ] C:\Program Files\TOSHIBA\Power Saver\TPwrReg.dll
20:14:32.0863 6540 C:\Program Files\TOSHIBA\Power Saver\TPwrReg.dll - ok
20:14:32.0863 6540 [ 070DDE91567E81BD9F2BE4F9728B2EFD ] C:\Program Files\TOSHIBA\Power Saver\TPwrFunc.dll
20:14:32.0863 6540 C:\Program Files\TOSHIBA\Power Saver\TPwrFunc.dll - ok
20:14:32.0863 6540 [ A6BAA4B79969424743BE72D2044F81A5 ] C:\Program Files\TOSHIBA\Power Saver\TtosFunc.dll
20:14:32.0863 6540 C:\Program Files\TOSHIBA\Power Saver\TtosFunc.dll - ok
20:14:32.0879 6540 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
20:14:32.0879 6540 C:\Windows\System32\IDStore.dll - ok
20:14:32.0879 6540 [ E38D1691B68FCB6224D69B4D4E25EBF3 ] C:\Windows\System32\KBDGR.DLL
20:14:32.0879 6540 C:\Windows\System32\KBDGR.DLL - ok
20:14:32.0879 6540 [ 1A83FACA2135AF076E8EA73A30B3B26C ] C:\Windows\System32\KBDUK.DLL
20:14:32.0879 6540 C:\Windows\System32\KBDUK.DLL - ok
20:14:32.0879 6540 [ 279D89915A17C4DFCDF64E94EF496E7A ] C:\Windows\System32\KBDUKX.DLL
20:14:32.0879 6540 C:\Windows\System32\KBDUKX.DLL - ok
20:14:32.0894 6540 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
20:14:32.0894 6540 C:\Windows\System32\taskhost.exe - ok
20:14:32.0894 6540 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
20:14:32.0894 6540 C:\Windows\System32\taskeng.exe - ok
20:14:32.0894 6540 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
20:14:32.0894 6540 C:\Windows\System32\localspl.dll - ok
20:14:32.0910 6540 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
20:14:32.0910 6540 C:\Windows\System32\userinit.exe - ok
20:14:32.0910 6540 [ 357CABBF155AFD1D3926E62539D2A3A7 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:14:32.0910 6540 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
20:14:32.0910 6540 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
20:14:32.0910 6540 C:\Windows\System32\wbem\fastprox.dll - ok
20:14:32.0910 6540 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
20:14:32.0910 6540 C:\Windows\System32\wbem\WinMgmtR.dll - ok
20:14:32.0910 6540 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
20:14:32.0910 6540 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
20:14:32.0926 6540 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
20:14:32.0926 6540 C:\Windows\System32\wbem\wbemcore.dll - ok
20:14:32.0926 6540 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
20:14:32.0926 6540 C:\Windows\System32\esent.dll - ok
20:14:32.0926 6540 [ 7CBB1D4D13DC62D7F529D87151FD3CD3 ] C:\Program Files\Windows Defender\MpSvc.dll
20:14:32.0926 6540 C:\Program Files\Windows Defender\MpSvc.dll - ok
20:14:32.0926 6540 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
20:14:32.0926 6540 C:\Windows\explorer.exe - ok
20:14:32.0941 6540 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
20:14:32.0941 6540 C:\Windows\System32\TSChannel.dll - ok
20:14:32.0941 6540 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
20:14:32.0941 6540 C:\Windows\System32\dwmredir.dll - ok
20:14:32.0941 6540 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
20:14:32.0941 6540 C:\Windows\System32\spoolss.dll - ok
20:14:32.0941 6540 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
20:14:32.0941 6540 C:\Windows\System32\FXSMON.dll - ok
20:14:32.0957 6540 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
20:14:32.0957 6540 C:\Windows\System32\PrintIsolationProxy.dll - ok
20:14:32.0957 6540 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
20:14:32.0957 6540 C:\Windows\System32\tcpmon.dll - ok
20:14:32.0957 6540 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
20:14:32.0957 6540 C:\Windows\System32\ntdsapi.dll - ok
20:14:32.0957 6540 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
20:14:32.0957 6540 C:\Windows\System32\dwmcore.dll - ok
20:14:32.0957 6540 [ 2ABFB305022FA93E87273E2A21E4B30A ] C:\Windows\System32\TabbtnEx.dll
20:14:32.0957 6540 C:\Windows\System32\TabbtnEx.dll - ok
20:14:32.0972 6540 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
20:14:32.0972 6540 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
20:14:32.0972 6540 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
20:14:32.0972 6540 C:\Windows\System32\SensApi.dll - ok
20:14:32.0972 6540 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
20:14:32.0972 6540 C:\Windows\System32\snmpapi.dll - ok
20:14:32.0972 6540 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
20:14:32.0972 6540 C:\Windows\System32\wsnmp32.dll - ok
20:14:32.0988 6540 [ 8472EB2EC5862F392E9FA335EF323058 ] C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
20:14:32.0988 6540 C:\Program Files\Tablet\Pen\Pen_TabletUser.exe - ok
20:14:32.0988 6540 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
20:14:32.0988 6540 C:\Windows\System32\usbmon.dll - ok
20:14:32.0988 6540 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
20:14:32.0988 6540 C:\Windows\System32\WSDMon.dll - ok
20:14:32.0988 6540 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
20:14:32.0988 6540 C:\Windows\System32\WSDApi.dll - ok
20:14:33.0004 6540 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
20:14:33.0004 6540 C:\Windows\System32\wer.dll - ok
20:14:33.0004 6540 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
20:14:33.0004 6540 C:\Windows\System32\wbem\esscli.dll - ok
20:14:33.0004 6540 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
20:14:33.0004 6540 C:\Windows\System32\MsCtfMonitor.dll - ok
20:14:33.0004 6540 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
20:14:33.0004 6540 C:\Windows\System32\msutb.dll - ok
20:14:33.0004 6540 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
20:14:33.0004 6540 C:\Windows\System32\PlaySndSrv.dll - ok
20:14:33.0019 6540 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
20:14:33.0019 6540 C:\Windows\System32\wbem\wbemsvc.dll - ok
20:14:33.0019 6540 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:14:33.0019 6540 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
20:14:33.0019 6540 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
20:14:33.0019 6540 C:\Windows\System32\wbem\wmiutils.dll - ok
20:14:33.0019 6540 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
20:14:33.0019 6540 C:\Windows\System32\HotStartUserAgent.dll - ok
20:14:33.0035 6540 [ 662BA98309818AF2C17D4E48BF4021C4 ] C:\Program Files\Windows Defender\MpClient.dll
20:14:33.0035 6540 C:\Program Files\Windows Defender\MpClient.dll - ok
20:14:33.0035 6540 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
20:14:33.0035 6540 C:\Windows\System32\wbem\repdrvfs.dll - ok
20:14:33.0035 6540 [ C7AAC31A910E4BBFDF94D3786ED13E71 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe
20:14:33.0035 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe - ok
20:14:33.0035 6540 [ DC1BBA01FFB5745B8862931E7DE7304A ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
20:14:33.0035 6540 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
20:14:33.0035 6540 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
20:14:33.0035 6540 C:\Windows\System32\msxml3.dll - ok
20:14:33.0050 6540 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
20:14:33.0050 6540 C:\Windows\System32\webservices.dll - ok
20:14:33.0050 6540 [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll
20:14:33.0050 6540 C:\Windows\System32\d3d10_1.dll - ok
20:14:33.0050 6540 [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll
20:14:33.0050 6540 C:\Windows\System32\d3d10_1core.dll - ok
20:14:33.0050 6540 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
20:14:33.0050 6540 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
20:14:33.0066 6540 [ 74713CB32792F9C7632DAA7DA22CA974 ] C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
20:14:33.0066 6540 C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe - ok
20:14:33.0066 6540 [ FF60B8C5BBE73B0790B3332783B6FD81 ] C:\Program Files (x86)\Google\Update\1.3.21.153\goopdate.dll
20:14:33.0066 6540 C:\Program Files (x86)\Google\Update\1.3.21.153\goopdate.dll - ok
20:14:33.0066 6540 [ 490D5ADBC56297DB10BC57496C14C357 ] C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe
20:14:33.0066 6540 C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe - ok
20:14:33.0066 6540 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
20:14:33.0066 6540 C:\Windows\SysWOW64\msi.dll - ok
20:14:33.0082 6540 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
20:14:33.0082 6540 C:\Windows\System32\ExplorerFrame.dll - ok
20:14:33.0082 6540 [ E697AF226694FCAA74E94E790E8FA3EE ] C:\Users\Olivia\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.60\agent\rnupgagent.exe
20:14:33.0082 6540 C:\Users\Olivia\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.60\agent\rnupgagent.exe - ok
20:14:33.0082 6540 [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll
20:14:33.0082 6540 C:\Windows\System32\dxgi.dll - ok
20:14:33.0082 6540 [ 4C92EB7535CAA1681A77D928FBF9771F ] C:\Windows\System32\d3d11.dll
20:14:33.0082 6540 C:\Windows\System32\d3d11.dll - ok
20:14:33.0082 6540 [ 8FE3C29793755400E7876D17FA5811CF ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\configurationManager.dll
20:14:33.0082 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\configurationManager.dll - ok
20:14:33.0097 6540 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
20:14:33.0097 6540 C:\Windows\System32\ncobjapi.dll - ok
20:14:33.0097 6540 [ 8A48305D3E81C513DAC27690B5AA7FC0 ] C:\Program Files (x86)\Real\RealPlayer\realplay.exe
20:14:33.0097 6540 C:\Program Files (x86)\Real\RealPlayer\realplay.exe - ok
20:14:33.0097 6540 [ 77C5A741A7452812F278EF2C18478862 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
20:14:33.0097 6540 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe - ok
20:14:33.0097 6540 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
20:14:33.0097 6540 C:\Windows\System32\sqmapi.dll - ok
20:14:33.0113 6540 [ 65BD1467E164396A00B92C8F0E57E557 ] C:\Program Files\Intel\WiFi\bin\Ps7ZCfgS.dll
20:14:33.0113 6540 C:\Program Files\Intel\WiFi\bin\Ps7ZCfgS.dll - ok
20:14:33.0113 6540 [ D790CAFEFF0291D0AF8C76F5A1EE2E4E ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
20:14:33.0113 6540 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
20:14:33.0113 6540 [ 32EE27E6AC39863A2C99D29E73ED63A9 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtCore4.dll
20:14:33.0113 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtCore4.dll - ok
20:14:33.0113 6540 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
20:14:33.0113 6540 C:\Windows\System32\fundisc.dll - ok
20:14:33.0128 6540 [ B5BCC7A382A3CF9C0ECC26C1F3FF2E58 ] C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll
20:14:33.0128 6540 C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll - ok
20:14:33.0128 6540 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
20:14:33.0128 6540 C:\Windows\System32\dssenh.dll - ok
20:14:33.0128 6540 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
20:14:33.0128 6540 C:\Windows\System32\wdscore.dll - ok
20:14:33.0128 6540 [ 2A5D98F0F5232E466F2A2EF5E549DF08 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\uuid.dll
20:14:33.0128 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\uuid.dll - ok
20:14:33.0144 6540 [ 3F1D0820E8F8A3E4F99333A6DCC2B95A ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll
20:14:33.0144 6540 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll - ok
20:14:33.0144 6540 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
20:14:33.0144 6540 C:\Windows\System32\fdPnp.dll - ok
20:14:33.0144 6540 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
20:14:33.0144 6540 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
20:14:33.0144 6540 [ 67CF11E00D026A5C0C88EA5F84D501E5 ] C:\Windows\System32\win32spl.dll
20:14:33.0144 6540 C:\Windows\System32\win32spl.dll - ok
20:14:33.0160 6540 [ E70E7C2EEC214FB2FE50DBFC8E98CB85 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll
20:14:33.0160 6540 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll - ok
20:14:33.0160 6540 [ 85181D316D88082CF39D2F33FD47C6B5 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll
20:14:33.0160 6540 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll - ok
20:14:33.0160 6540 [ 03B824C5A2AFB0C77F34201B4DED5462 ] C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll
20:14:33.0160 6540 C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll - ok
20:14:33.0160 6540 [ 6C518D405318E21AB6F1987EA056638F ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\logger.dll
20:14:33.0160 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\logger.dll - ok
20:14:33.0175 6540 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
20:14:33.0175 6540 C:\Windows\System32\wbem\wbemess.dll - ok
20:14:33.0175 6540 [ F6252071299496777D1E3EC407A90929 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\log4cplus.dll
20:14:33.0175 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\log4cplus.dll - ok
20:14:33.0175 6540 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
20:14:33.0175 6540 C:\Windows\SysWOW64\cscapi.dll - ok
20:14:33.0175 6540 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
20:14:33.0175 6540 C:\Windows\SysWOW64\dbghelp.dll - ok
20:14:33.0175 6540 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
20:14:33.0175 6540 C:\Windows\System32\rastapi.dll - ok
20:14:33.0191 6540 [ 6A35DA5E8324247CA2915D0F40F69A99 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\UpdateServiceProxy.dll
20:14:33.0191 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\UpdateServiceProxy.dll - ok
20:14:33.0191 6540 [ 20D7EDD027DE6DB15517EAE69FB5F9DC ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\serializer.dll
20:14:33.0191 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\serializer.dll - ok
20:14:33.0191 6540 [ 9D79C992E1607D2CD7B13A0F97557858 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll
20:14:33.0191 6540 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll - ok
20:14:33.0206 6540 [ ADBA8A211DEB8EE1B2AC332F05378B1C ] C:\Users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
20:14:33.0206 6540 C:\Users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll - ok
20:14:33.0206 6540 [ 8AA502B025916688E71E55BB59BED6F9 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll
20:14:33.0206 6540 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll - ok
20:14:33.0206 6540 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
20:14:33.0206 6540 C:\Windows\System32\tapi32.dll - ok
20:14:33.0206 6540 [ ED6EA226D8C2C1176D8D9A98A135D5E4 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtXml4.dll
20:14:33.0206 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtXml4.dll - ok
20:14:33.0222 6540 [ 349B1D5D8D1B5A7B10BCD01470BD5F64 ] C:\Users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\msvcp110.dll
20:14:33.0222 6540 C:\Users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\msvcp110.dll - ok
20:14:33.0222 6540 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
20:14:33.0222 6540 C:\Windows\System32\inetpp.dll - ok
20:14:33.0222 6540 [ 275B00B7DC661CCF9146B63659041908 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\payload.dll
20:14:33.0222 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\payload.dll - ok
20:14:33.0222 6540 [ C4BAEC2E8B56B6337E722F8161BAAAAF ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DispatcherProxy.dll
20:14:33.0222 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DispatcherProxy.dll - ok
20:14:33.0238 6540 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
20:14:33.0238 6540 C:\Windows\System32\nci.dll - ok
20:14:33.0238 6540 [ 80561BA4960F20C02710EB85EF05BC23 ] C:\Windows\System32\igd10umd64.dll
20:14:33.0238 6540 C:\Windows\System32\igd10umd64.dll - ok
20:14:33.0238 6540 [ 521202AA6F2B74FCCC6BC7E162109D71 ] C:\Windows\System32\wbem\unsecapp.exe
20:14:33.0238 6540 C:\Windows\System32\wbem\unsecapp.exe - ok
20:14:33.0253 6540 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
20:14:33.0253 6540 C:\Windows\System32\cscapi.dll - ok
20:14:33.0253 6540 [ 862586AD4B1355F7DCDE111EE0AAF350 ] C:\Windows\System32\d3dx10_40.dll
20:14:33.0253 6540 C:\Windows\System32\d3dx10_40.dll - ok
20:14:33.0253 6540 [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
20:14:33.0253 6540 C:\Windows\System32\unimdm.tsp - ok
20:14:33.0253 6540 [ 4F096E6DF6D6AA79E0F1F5A8C09345F8 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libgsoap.dll
20:14:33.0253 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libgsoap.dll - ok
20:14:33.0253 6540 [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\SysWOW64\schannel.dll
20:14:33.0253 6540 C:\Windows\SysWOW64\schannel.dll - ok
20:14:33.0269 6540 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
20:14:33.0269 6540 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
20:14:33.0269 6540 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
20:14:33.0269 6540 C:\Windows\System32\wbem\NCProv.dll - ok
20:14:33.0269 6540 [ 8726802EA4FBFFA3FD54FD2449BF51D4 ] C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
20:14:33.0269 6540 C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe - ok
20:14:33.0269 6540 [ C72ABC6B7B90A61364B6DD889B5435F3 ] C:\Users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\msvcr110.dll
20:14:33.0269 6540 C:\Users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\msvcr110.dll - ok
20:14:33.0284 6540 [ D9A08472D8D0218A0AE2C9D9F63EA531 ] C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
20:14:33.0284 6540 C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe - ok
20:14:33.0284 6540 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
20:14:33.0284 6540 C:\Windows\SysWOW64\mstask.dll - ok
20:14:33.0284 6540 [ F9A5AEDEB954D37BE3C13F2CAC02727B ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libeay32.dll
20:14:33.0284 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libeay32.dll - ok
20:14:33.0284 6540 [ 66E073D8D83833DB525B4174C060E840 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll
20:14:33.0284 6540 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll - ok
20:14:33.0300 6540 [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\SysWOW64\logoncli.dll
20:14:33.0300 6540 C:\Windows\SysWOW64\logoncli.dll - ok
20:14:33.0300 6540 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
20:14:33.0300 6540 C:\Windows\System32\dbghelp.dll - ok
20:14:33.0300 6540 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
20:14:33.0300 6540 C:\Windows\System32\uDWM.dll - ok
20:14:33.0300 6540 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
20:14:33.0300 6540 C:\Windows\System32\uniplat.dll - ok
20:14:33.0300 6540 [ B3FB360040585245DF0A4E63A8987BDF ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ssleay32.dll
20:14:33.0300 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ssleay32.dll - ok
20:14:33.0316 6540 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
20:14:33.0316 6540 C:\Windows\System32\kmddsp.tsp - ok
20:14:33.0316 6540 [ 83564FD69621419EABBE1AE03428976D ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\zlib1.dll
20:14:33.0316 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\zlib1.dll - ok
20:14:33.0316 6540 [ DDB8769E14BDF097879B6345394C5889 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\localMessage.dll
20:14:33.0316 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\localMessage.dll - ok
20:14:33.0331 6540 [ 74B96FB8B4210C60E5DE237D772CAE5B ] C:\Program Files\AVAST Software\Avast\ashShA64.dll
20:14:33.0331 6540 C:\Program Files\AVAST Software\Avast\ashShA64.dll - ok
20:14:33.0331 6540 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
20:14:33.0331 6540 C:\Windows\System32\msi.dll - ok
20:14:33.0331 6540 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
20:14:33.0331 6540 C:\Windows\System32\ndptsp.tsp - ok
20:14:33.0331 6540 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
20:14:33.0331 6540 C:\Windows\System32\drivers\srv2.sys - ok
20:14:33.0331 6540 [ A9539131F6C8EF5068FA16D581285EBB ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ServiceManagerStarter.dll
20:14:33.0331 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ServiceManagerStarter.dll - ok
20:14:33.0347 6540 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
20:14:33.0347 6540 C:\Windows\System32\hidphone.tsp - ok
20:14:33.0347 6540 [ 6E2330FB032ED3EBEFC1349AD7081A98 ] C:\Program Files\TOSHIBA\TECO\TecoService.exe
20:14:33.0347 6540 C:\Program Files\TOSHIBA\TECO\TecoService.exe - ok
20:14:33.0347 6540 [ C5FB982CD266E604ED3142102C26D62C ] C:\Windows\System32\drivers\Sftredirlh.sys
20:14:33.0347 6540 C:\Windows\System32\drivers\Sftredirlh.sys - ok
20:14:33.0362 6540 [ AD18A46DE75479C9B9AEC783FB7F9883 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtNetwork4.dll
20:14:33.0362 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtNetwork4.dll - ok
20:14:33.0362 6540 [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
20:14:33.0362 6540 C:\Windows\System32\rasppp.dll - ok
20:14:33.0362 6540 [ DB3FB9F91EA29B0B4B6D9ADE2630FC63 ] C:\Program Files\Intel\WiFi\bin\PanIHVInt.dll
20:14:33.0362 6540 C:\Program Files\Intel\WiFi\bin\PanIHVInt.dll - ok
20:14:33.0362 6540 [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
20:14:33.0362 6540 C:\Windows\System32\vpnike.dll - ok
20:14:33.0378 6540 [ DFBDAFC424ACC6AB9BA033E7CC51FAD4 ] C:\Program Files\TOSHIBA\TECO\TecoHci.dll
20:14:33.0378 6540 C:\Program Files\TOSHIBA\TECO\TecoHci.dll - ok
20:14:33.0378 6540 [ 4FCC53B82D91607FB9AE24E617108BB2 ] C:\Windows\SysWOW64\ieframe.dll
20:14:33.0378 6540 C:\Windows\SysWOW64\ieframe.dll - ok
20:14:33.0378 6540 [ EFEEC19C9A18A23CD00884D2C5DC9077 ] C:\Program Files\TOSHIBA\TECO\TecoPower.dll
20:14:33.0378 6540 C:\Program Files\TOSHIBA\TECO\TecoPower.dll - ok
20:14:33.0378 6540 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
20:14:33.0378 6540 C:\Windows\System32\drivers\srv.sys - ok
20:14:33.0378 6540 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
20:14:33.0378 6540 C:\Windows\System32\mprapi.dll - ok
20:14:33.0394 6540 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
20:14:33.0394 6540 C:\Windows\System32\wbem\wmiprov.dll - ok
20:14:33.0394 6540 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
20:14:33.0394 6540 C:\Windows\System32\netmsg.dll - ok
20:14:33.0394 6540 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
20:14:33.0394 6540 C:\Windows\System32\sscore.dll - ok
20:14:33.0394 6540 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
20:14:33.0394 6540 C:\Windows\System32\clusapi.dll - ok
20:14:33.0409 6540 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
20:14:33.0409 6540 C:\Windows\System32\resutils.dll - ok
20:14:33.0409 6540 [ 4FDFA3F219692D17011BF1B428857C1E ] C:\Program Files\Windows Defender\MpRTP.dll
20:14:33.0409 6540 C:\Program Files\Windows Defender\MpRTP.dll - ok
20:14:33.0409 6540 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
20:14:33.0409 6540 C:\Windows\System32\tdh.dll - ok
20:14:33.0409 6540 [ 6132603F7D745CED00C6E6525A7FB4E3 ] C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll
20:14:33.0409 6540 C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll - ok
20:14:33.0409 6540 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
20:14:33.0425 6540 C:\Windows\System32\EhStorShell.dll - ok
20:14:33.0425 6540 [ BC8F0F5BAD63335CE131243EEE590AC8 ] C:\Program Files (x86)\Google\Drive\googledrivesync64.dll
20:14:33.0425 6540 C:\Program Files (x86)\Google\Drive\googledrivesync64.dll - ok
20:14:33.0425 6540 [ E155362D3C60232CFC15397EA6617E88 ] C:\Program Files\Intel\WiFi\bin\DbEngine.dll
20:14:33.0425 6540 C:\Program Files\Intel\WiFi\bin\DbEngine.dll - ok
20:14:33.0425 6540 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
20:14:33.0425 6540 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
20:14:33.0425 6540 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
20:14:33.0425 6540 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
20:14:33.0440 6540 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
20:14:33.0440 6540 C:\Windows\System32\ntshrui.dll - ok
20:14:33.0440 6540 [ 169C83471930C8C9945684AF8B9B26BC ] C:\Program Files (x86)\Toshiba\widimon\widimon.exe
20:14:33.0440 6540 C:\Program Files (x86)\Toshiba\widimon\widimon.exe - ok
20:14:33.0440 6540 [ 84174CA0E190BB9D1EFD0F005FE13B35 ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll
20:14:33.0440 6540 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll - ok
20:14:33.0440 6540 [ 60F4AEFA103D421EA4A40E31409B4756 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
20:14:33.0440 6540 C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
20:14:33.0456 6540 [ 007863E45F25AA47A4C30D0930BBFD85 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
20:14:33.0456 6540 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
20:14:33.0456 6540 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
20:14:33.0456 6540 C:\Windows\System32\IconCodecService.dll - ok
20:14:33.0456 6540 [ CD37E8F77BFF71F104BDC941A393F0B5 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exe
20:14:33.0456 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exe - ok
20:14:33.0456 6540 [ 858176715EA25C14303FFEC047B98169 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CorePersistenceAPI.dll
20:14:33.0456 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CorePersistenceAPI.dll - ok
20:14:33.0472 6540 [ 9743899CE8E4C9686DC8D87E3AD2B0D3 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sqlite3.dll
20:14:33.0472 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sqlite3.dll - ok
20:14:33.0472 6540 [ 06A347F37D33D16520768EB3D5EAE9A0 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sealing.dll
20:14:33.0472 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sealing.dll - ok
20:14:33.0472 6540 [ 5B9E01A5C9370CA6A686C090C41A075E ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\orchestrator.dll
20:14:33.0472 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\orchestrator.dll - ok
20:14:33.0472 6540 [ 577F78F9116565D5D634A85BA65D8815 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\dispatcher.dll
20:14:33.0472 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\dispatcher.dll - ok
20:14:33.0487 6540 [ E6A55378B998F55CD67BD44245FF4F1F ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\featureController.dll
20:14:33.0487 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\featureController.dll - ok
20:14:33.0487 6540 [ 181F69BC9C406B7FB5C0ADE8031630AC ] C:\Windows\SysWOW64\wpdshext.dll
20:14:33.0487 6540 C:\Windows\SysWOW64\wpdshext.dll - ok
20:14:33.0487 6540 [ CF84BB035628015A5ED4615C7B260714 ] C:\Windows\System32\igfxext.exe
20:14:33.0487 6540 C:\Windows\System32\igfxext.exe - ok
20:14:33.0487 6540 [ 1652F1AEC5B1DF4EE924F513F2D6F410 ] C:\Windows\System32\igfxsrvc.exe
20:14:33.0487 6540 C:\Windows\System32\igfxsrvc.exe - ok
20:14:33.0487 6540 [ 0BF66C928D50CF043364B9ACFF179E75 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{41EDA008-9409-45C9-93CF-FADC2E8E6499}\mpengine.dll
20:14:33.0487 6540 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{41EDA008-9409-45C9-93CF-FADC2E8E6499}\mpengine.dll - ok
20:14:33.0503 6540 [ 35B8C555F0D8B986C05A02B2A3D698E8 ] C:\Windows\System32\igfxsrvc.dll
20:14:33.0503 6540 C:\Windows\System32\igfxsrvc.dll - ok
20:14:33.0503 6540 [ A7C0572F58B9B0929B2B4311E51DC71E ] C:\Windows\System32\igfxdev.dll
20:14:33.0503 6540 C:\Windows\System32\igfxdev.dll - ok
20:14:33.0503 6540 [ 463E1D4D315101E733937CB2F18FDAA1 ] C:\Windows\System32\igfxexps.dll
20:14:33.0503 6540 C:\Windows\System32\igfxexps.dll - ok
20:14:33.0503 6540 [ 9120445B65C7CA08D840FABCD3EC07D9 ] C:\Windows\SysWOW64\igfxexps32.dll
20:14:33.0503 6540 C:\Windows\SysWOW64\igfxexps32.dll - ok
20:14:33.0518 6540 [ 2C4A87CA8C00E98EFDCFA2E8EC9A3503 ] C:\Windows\SysWOW64\shdocvw.dll
20:14:33.0518 6540 C:\Windows\SysWOW64\shdocvw.dll - ok
20:14:33.0518 6540 [ 73BB253D152C72E8EEA0EA22EFE01D44 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{41EDA008-9409-45C9-93CF-FADC2E8E6499}\mpasbase.vdm
20:14:33.0518 6540 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{41EDA008-9409-45C9-93CF-FADC2E8E6499}\mpasbase.vdm - ok
20:14:33.0518 6540 [ 6B9FF8CBE106F76B8CF4DC8146FBFDC6 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CrashReportSender.exe
20:14:33.0518 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CrashReportSender.exe - ok
20:14:33.0518 6540 [ 52FDF003556C7DC2733F1B0687487B1C ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtGui4.dll
20:14:33.0518 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtGui4.dll - ok
20:14:33.0534 6540 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
20:14:33.0534 6540 C:\Windows\SysWOW64\msxml6.dll - ok
20:14:33.0534 6540 [ B080D032E9EA965766EE74997F491AC7 ] C:\Windows\SysWOW64\Wintab32.dll
20:14:33.0534 6540 C:\Windows\SysWOW64\Wintab32.dll - ok
20:14:33.0534 6540 [ 61930F3CFF07F50B503AFA6397BFB40A ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\BackendService.dll
20:14:33.0534 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\BackendService.dll - ok
20:14:33.0534 6540 [ 064CB6CD2B1B525BF52425A818C1A15E ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\policyManager.dll
20:14:33.0534 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\policyManager.dll - ok
20:14:33.0550 6540 [ AC627A247B23297B50B03856626C19B7 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\network.dll
20:14:33.0550 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\network.dll - ok
20:14:33.0550 6540 [ 2F040CF0613A6D64DCBBA9EE81F5A5AE ] C:\Windows\SysWOW64\dsrole.dll
20:14:33.0550 6540 C:\Windows\SysWOW64\dsrole.dll - ok
20:14:33.0550 6540 [ AB113FF5C7FC4571135A1B7E8BA8BB1D ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DeviceProfileService.dll
20:14:33.0550 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DeviceProfileService.dll - ok
20:14:33.0550 6540 [ 8A28776BC6DA3AA5BE8EA80567ECB2B7 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DeviceProfile.dll
20:14:33.0550 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DeviceProfile.dll - ok
20:14:33.0565 6540 [ FD557A50A65E44041CD2FCEF4BEB04DB ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
20:14:33.0565 6540 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE - ok
20:14:33.0565 6540 [ E1DDFAE44AC4746207B8704F8D647020 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\systemInfo.dll
20:14:33.0565 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\systemInfo.dll - ok
20:14:33.0565 6540 [ 9FC75A6810E0830E575D4D9E75FAE4B9 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{41EDA008-9409-45C9-93CF-FADC2E8E6499}\mpasdlta.vdm
20:14:33.0565 6540 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{41EDA008-9409-45C9-93CF-FADC2E8E6499}\mpasdlta.vdm - ok
20:14:33.0565 6540 [ 0D4E31F533C7773DF732F1189A55A72C ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\dispatcherServer.dll
20:14:33.0565 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\dispatcherServer.dll - ok
20:14:33.0581 6540 [ 9BA4D8AA5EE052D34EFAF4D6358A90A5 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DownloadManager.dll
20:14:33.0581 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DownloadManager.dll - ok
20:14:33.0581 6540 [ 7C883AACA6C9A774CA9D7AEE67113D47 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\PServerPlugin.dll
20:14:33.0581 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\PServerPlugin.dll - ok
20:14:33.0581 6540 [ C29BD7974796BF039B15D2BB74E21A8B ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\SystemMonitor.dll
20:14:33.0581 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\SystemMonitor.dll - ok
20:14:33.0581 6540 [ 6575B3174C3C86515916CDC2FDC5EF32 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\UpdateService.dll
20:14:33.0581 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\UpdateService.dll - ok
20:14:33.0596 6540 [ 8A327BB9D9C77B48474FAB738AC2F2F3 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\eventsSender.dll
20:14:33.0596 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\eventsSender.dll - ok
20:14:33.0596 6540 [ 037D78392A17C46EF00129A827A7684E ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ChannelAdapter.dll
20:14:33.0596 6540 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ChannelAdapter.dll - ok
20:14:33.0596 6540 [ A7E746F7E13542ED4A9BFC2D34043E82 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL
20:14:33.0596 6540 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL - ok
20:14:33.0596 6540 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
20:14:33.0596 6540 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
20:14:33.0612 6540 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
20:14:33.0612 6540 C:\Windows\SysWOW64\wbemcomn.dll - ok
20:14:33.0612 6540 [ 108C2CFA5527458C096A699929ECBD80 ] C:\Windows\SysWOW64\credui.dll
20:14:33.0612 6540 C:\Windows\SysWOW64\credui.dll - ok
20:14:33.0612 6540 [ 565A30B70BE8A9B171839003F2D69683 ] C:\Windows\SysWOW64\hlink.dll
20:14:33.0612 6540 C:\Windows\SysWOW64\hlink.dll - ok
20:14:33.0612 6540 [ 74AF1FFCAFD60DA88A386AE161F56438 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll
20:14:33.0612 6540 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll - ok
20:14:33.0628 6540 [ D835EDB2FC3368F3366C07493DFF2B41 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll
20:14:33.0628 6540 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll - ok
20:14:33.0628 6540 [ 4C1E16B9A53102C8D6FBA587CBCB95DE ] C:\Windows\SysWOW64\msv1_0.dll
20:14:33.0628 6540 C:\Windows\SysWOW64\msv1_0.dll - ok
20:14:33.0628 6540 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\SysWOW64\cryptdll.dll
20:14:33.0628 6540 C:\Windows\SysWOW64\cryptdll.dll - ok
20:14:33.0628 6540 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
20:14:33.0628 6540 C:\Windows\SysWOW64\msxml3.dll - ok
20:14:33.0628 6540 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
20:14:33.0628 6540 C:\Windows\SysWOW64\mlang.dll - ok
20:14:33.0643 6540 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
20:14:33.0643 6540 C:\Windows\System32\perftrack.dll - ok
20:14:33.0643 6540 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
20:14:33.0643 6540 C:\Windows\System32\runonce.exe - ok
20:14:33.0643 6540 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
20:14:33.0643 6540 C:\Windows\System32\npmproxy.dll - ok
20:14:33.0643 6540 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
20:14:33.0643 6540 C:\Windows\SysWOW64\npmproxy.dll - ok
20:14:33.0659 6540 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
20:14:33.0659 6540 C:\Windows\System32\diagperf.dll - ok
20:14:33.0659 6540 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
20:14:33.0659 6540 C:\Windows\System32\bitsperf.dll - ok
20:14:33.0659 6540 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
20:14:33.0659 6540 C:\Windows\System32\PortableDeviceApi.dll - ok
20:14:33.0659 6540 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
20:14:33.0659 6540 C:\Windows\System32\NapiNSP.dll - ok
20:14:33.0674 6540 [ E948D1D42DC68923ABD75EEB5BCCD1D3 ] C:\Windows\System32\consent.exe
20:14:33.0674 6540 C:\Windows\System32\consent.exe - ok
20:14:33.0674 6540 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
20:14:33.0674 6540 C:\Windows\System32\bitsigd.dll - ok
20:14:33.0674 6540 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
20:14:33.0674 6540 C:\Windows\System32\pnrpnsp.dll - ok
20:14:33.0674 6540 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
20:14:33.0674 6540 C:\Windows\System32\dimsjob.dll - ok
20:14:33.0690 6540 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
20:14:33.0690 6540 C:\Windows\System32\upnp.dll - ok
20:14:33.0690 6540 [ 862596399AAFD2A21DB2AF9270CD4F70 ] C:\Windows\System32\mstask.dll
20:14:33.0690 6540 C:\Windows\System32\mstask.dll - ok
20:14:33.0690 6540 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
20:14:33.0690 6540 C:\Windows\System32\winrnr.dll - ok
20:14:33.0690 6540 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
20:14:33.0690 6540 C:\Windows\System32\IPSECSVC.DLL - ok
20:14:33.0706 6540 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
20:14:33.0706 6540 C:\Windows\SysWOW64\runonce.exe - ok
20:14:33.0706 6540 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
20:14:33.0706 6540 C:\Windows\System32\pautoenr.dll - ok
20:14:33.0706 6540 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
20:14:33.0706 6540 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
20:14:33.0706 6540 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
20:14:33.0706 6540 C:\Windows\System32\certcli.dll - ok
20:14:33.0706 6540 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
20:14:33.0706 6540 C:\Windows\System32\FwRemoteSvr.dll - ok
20:14:33.0721 6540 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
20:14:33.0721 6540 C:\Windows\SysWOW64\devrtl.dll - ok
20:14:33.0721 6540 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
20:14:33.0721 6540 C:\Windows\System32\Apphlpdm.dll - ok
20:14:33.0721 6540 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
20:14:33.0721 6540 C:\Windows\System32\pnpts.dll - ok
20:14:33.0721 6540 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
20:14:33.0721 6540 C:\Windows\System32\wdiasqmmodule.dll - ok
20:14:33.0721 6540 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
20:14:33.0721 6540 C:\Windows\System32\radardt.dll - ok
20:14:33.0737 6540 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
20:14:33.0737 6540 C:\Windows\System32\shfolder.dll - ok
20:14:33.0737 6540 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
20:14:33.0737 6540 C:\Windows\System32\CertEnroll.dll - ok
20:14:33.0737 6540 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
20:14:33.0737 6540 C:\Windows\System32\qmgrprxy.dll - ok
20:14:33.0737 6540 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
20:14:33.0737 6540 C:\Windows\SysWOW64\qmgrprxy.dll - ok
20:14:33.0752 6540 [ E7148BB584830E51AFD414CE9AEAE74C ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
20:14:33.0752 6540 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe - ok
20:14:33.0752 6540 [ 37287D98A1BF5D56AA729CEB9B27C6B1 ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
20:14:33.0752 6540 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
20:14:33.0752 6540 [ BD7A9C4B2E4812E57B50B97A94720ACD ] C:\Program Files\AVAST Software\Avast\Setup\emupdate\b2bcca92-103e-44c8-b434-794b0228152d.exe
20:14:33.0752 6540 C:\Program Files\AVAST Software\Avast\Setup\emupdate\b2bcca92-103e-44c8-b434-794b0228152d.exe - ok
20:14:33.0752 6540 [ 064DD281D8F90DE6F71B052C5171ACD0 ] C:\Windows\System32\Wintab32.dll
20:14:33.0752 6540 C:\Windows\System32\Wintab32.dll - ok
20:14:33.0752 6540 [ B96F045D571747F8700CB43E8C458FF0 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
20:14:33.0752 6540 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
20:14:33.0768 6540 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
20:14:33.0768 6540 C:\Windows\SysWOW64\cmd.exe - ok
20:14:33.0768 6540 [ C5669DB68FA367A041C8EA630F1DFF41 ] C:\Windows\System32\Pen_Touch_Tablet.dll
20:14:33.0768 6540 C:\Windows\System32\Pen_Touch_Tablet.dll - ok
20:14:33.0768 6540 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
20:14:33.0768 6540 C:\Windows\SysWOW64\winbrand.dll - ok
20:14:33.0768 6540 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Olivia\AppData\Local\Temp\C475DB44-220B-440C-BD8C-A7285A204A0A.exe
20:14:33.0768 6540 C:\Users\Olivia\AppData\Local\Temp\C475DB44-220B-440C-BD8C-A7285A204A0A.exe - ok
20:14:33.0784 6540 [ B141F8F8B0FF37FFC51F9B71EE7A641B ] C:\Program Files (x86)\Skype\Phone\Skype.exe
20:14:33.0784 6540 C:\Program Files (x86)\Skype\Phone\Skype.exe - ok
20:14:33.0784 6540 [ F2C82BA7E80C6054D5D20F3FBD4CFD34 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\OFFICEVIRT.EXE
20:14:33.0784 6540 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\OFFICEVIRT.EXE - ok
20:14:33.0784 6540 [ 1E4B17CB2C7609239FF3EEF740BE9DC7 ] C:\Windows\SysWOW64\sftldr_wow64.dll
20:14:33.0784 6540 C:\Windows\SysWOW64\sftldr_wow64.dll - ok
20:14:33.0784 6540 [ 5B2E4E90C04FB9AE9F2C5E99FF59B283 ] C:\Windows\SysWOW64\WindowsCodecs.dll
20:14:33.0784 6540 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
20:14:33.0799 6540 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
20:14:33.0799 6540 C:\Windows\SysWOW64\EhStorShell.dll - ok
20:14:33.0799 6540 [ 56DE449CE5F659D4492E81094542392B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sentinel.dll
20:14:33.0799 6540 C:\Program Files (x86)\Microsoft Application Virtualization Client\sentinel.dll - ok
20:14:33.0799 6540 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
20:14:33.0799 6540 C:\Windows\SysWOW64\ntshrui.dll - ok
20:14:33.0799 6540 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
20:14:33.0799 6540 C:\Windows\SysWOW64\slc.dll - ok
20:14:33.0815 6540 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
20:14:33.0815 6540 C:\Windows\SysWOW64\imageres.dll - ok
20:14:33.0815 6540 [ A79121939AD29C76F88D25BC1595ED65 ] C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll
20:14:33.0815 6540 C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll - ok
20:14:33.0815 6540 [ B157E305260FF2A607591F33DE41BFCA ] C:\Program Files (x86)\Java\jre6\bin\java.exe
20:14:33.0815 6540 C:\Program Files (x86)\Java\jre6\bin\java.exe - ok
20:14:33.0815 6540 [ 93BB66044FA76734E882C6F3E8EE1900 ] C:\Program Files\Windows Defender\MsMpLics.dll
20:14:33.0815 6540 C:\Program Files\Windows Defender\MsMpLics.dll - ok
20:14:33.0830 6540 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
20:14:33.0830 6540 C:\Windows\System32\wscapi.dll - ok
20:14:33.0830 6540 [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
20:14:33.0830 6540 C:\Windows\System32\wscisvif.dll - ok
20:14:33.0830 6540 [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
20:14:33.0830 6540 C:\Windows\System32\wscproxystub.dll - ok
20:14:33.0830 6540 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
20:14:33.0830 6540 C:\Windows\System32\wmploc.DLL - ok
20:14:33.0830 6540 [ 2C647ABE9A424E55B5F3DAE4629B4277 ] C:\Windows\System32\themeui.dll
20:14:33.0830 6540 C:\Windows\System32\themeui.dll - ok
20:14:33.0846 6540 [ 3581F49B7B32B4514FFD9481ED8BAE61 ] C:\Windows\System32\ie4uinit.exe
20:14:33.0846 6540 C:\Windows\System32\ie4uinit.exe - ok
20:14:33.0846 6540 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
20:14:33.0846 6540 C:\Windows\System32\timedate.cpl - ok
20:14:33.0846 6540 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
20:14:33.0846 6540 C:\Windows\System32\actxprxy.dll - ok
20:14:33.0862 6540 [ 23B001185B7C3CB1F4BDEB143E6B45B7 ] C:\Windows\System32\shdocvw.dll
20:14:33.0862 6540 C:\Windows\System32\shdocvw.dll - ok
20:14:33.0862 6540 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
20:14:33.0862 6540 C:\Windows\System32\linkinfo.dll - ok
20:14:33.0862 6540 [ 64B328D52DFC8CDA123093E3F6E4C37C ] C:\Windows\System32\unregmp2.exe
20:14:33.0862 6540 C:\Windows\System32\unregmp2.exe - ok
20:14:33.0862 6540 [ FD28E3B46F63337EAF905120F1E00070 ] C:\Windows\System32\accessibilitycpl.dll
20:14:33.0862 6540 C:\Windows\System32\accessibilitycpl.dll - ok
20:14:33.0877 6540 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
20:14:33.0877 6540 C:\Windows\System32\msftedit.dll - ok
20:14:33.0877 6540 [ 112183DF91C9BAECB498E4A86ECDE598 ] C:\Windows\System32\msls31.dll
20:14:33.0877 6540 C:\Windows\System32\msls31.dll - ok
20:14:33.0877 6540 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
20:14:33.0877 6540 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
20:14:33.0877 6540 [ EC84D7DCAE6AE0FE87EE5D4F0D50DC55 ] C:\Windows\System32\sud.dll
20:14:33.0877 6540 C:\Windows\System32\sud.dll - ok
20:14:33.0893 6540 [ 50EBD31C3527366FAFA468BD609F7352 ] C:\Windows\System32\wucltux.dll
20:14:33.0893 6540 C:\Windows\System32\wucltux.dll - ok
20:14:33.0893 6540 [ C14501B474A60DB96A9B9C287732AF65 ] C:\PROGRA~2\WIC4A1~1\PHOTOG~1\MOVIEM~2.DLL
20:14:33.0893 6540 C:\PROGRA~2\WIC4A1~1\PHOTOG~1\MOVIEM~2.DLL - ok
20:14:33.0893 6540 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
20:14:33.0893 6540 C:\Windows\System32\DeviceCenter.dll - ok
20:14:33.0893 6540 [ 89E3317708F167AE4BAE0000842C8CE7 ] C:\Windows\System32\UIHub.dll
20:14:33.0893 6540 C:\Windows\System32\UIHub.dll - ok
20:14:33.0908 6540 [ E92C38180C053FDA4C6AA625A46DAEAE ] C:\PROGRA~2\WIC4A1~1\PHOTOG~1\WL09BB~1.DLL
20:14:33.0908 6540 C:\PROGRA~2\WIC4A1~1\PHOTOG~1\WL09BB~1.DLL - ok
20:14:33.0908 6540 [ E3BF29CED96790CDAAFA981FFDDF53A3 ] C:\Program Files\Windows Sidebar\sidebar.exe
20:14:33.0908 6540 C:\Program Files\Windows Sidebar\sidebar.exe - ok
20:14:33.0908 6540 [ FDA49D1D0C201F6C76BD2593F562BF80 ] C:\Windows\System32\WindowsAnytimeUpgradeui.exe
20:14:33.0908 6540 C:\Windows\System32\WindowsAnytimeUpgradeui.exe - ok
20:14:33.0908 6540 [ CCC2990D218899C9D4EA36CD520DD29A ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
20:14:33.0908 6540 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
20:14:33.0908 6540 [ E83D2495D5867E224FBF42EF40D8856C ] C:\Program Files\DVD Maker\DVDMaker.exe
20:14:33.0908 6540 C:\Program Files\DVD Maker\DVDMaker.exe - ok
20:14:33.0924 6540 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
20:14:33.0924 6540 C:\Windows\System32\networkexplorer.dll - ok
20:14:33.0924 6540 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
20:14:33.0924 6540 C:\Windows\System32\thumbcache.dll - ok
20:14:33.0924 6540 [ D0BA55725FF7CA44DDB468D29AC0E972 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
20:14:33.0924 6540 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
20:14:33.0940 6540 [ D9AED8DBF1350EC58F469CC8C44E6C0B ] C:\PROGRA~2\WIC4A1~1\Mail\maillang.dll
20:14:33.0940 6540 C:\PROGRA~2\WIC4A1~1\Mail\maillang.dll - ok
20:14:33.0940 6540 [ 0805289E121F3E3C458C970B08314EB2 ] C:\Windows\System32\RtkCfg64.dll
20:14:33.0940 6540 C:\Windows\System32\RtkCfg64.dll - ok
20:14:33.0940 6540 [ 694948904C48AB9632BD053762048742 ] C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe
20:14:33.0940 6540 C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe - ok
20:14:33.0955 6540 [ 492CB6A624D5DAD73EE0294B5DB37DD6 ] C:\Windows\System32\xpsrchvw.exe
20:14:33.0955 6540 C:\Windows\System32\xpsrchvw.exe - ok
20:14:33.0955 6540 [ 799DCC8F11BC309F202A47D5999258E3 ] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
20:14:33.0955 6540 C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe - ok
20:14:33.0955 6540 [ B795E6138E29A37508285FC31E92BD78 ] C:\Windows\System32\DisplaySwitch.exe
20:14:33.0955 6540 C:\Windows\System32\DisplaySwitch.exe - ok
20:14:33.0955 6540 [ B827B95305CF4530C769AA5ED0707759 ] C:\Windows\System32\SynCOM.dll
20:14:33.0955 6540 C:\Windows\System32\SynCOM.dll - ok
20:14:33.0971 6540 [ 42F9688361E3AB2453DA818843737D6B ] C:\Windows\System32\SynTPAPI.dll
20:14:33.0971 6540 C:\Windows\System32\SynTPAPI.dll - ok
20:14:33.0971 6540 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
20:14:33.0971 6540 C:\Windows\System32\stobject.dll - ok
20:14:33.0971 6540 [ 4219B7B71D6C15EBE6E4F0CAFAFEF709 ] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
20:14:33.0971 6540 C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe - ok
20:14:33.0971 6540 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
20:14:33.0971 6540 C:\Windows\System32\batmeter.dll - ok
20:14:33.0986 6540 [ 98F1C94E108DF0811CC5EF098ECFB842 ] C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe
20:14:33.0986 6540 C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe - ok
20:14:33.0986 6540 [ 7C7915D80170A3832CC8EB0F16648090 ] C:\Program Files\TOSHIBA\FlashCards\TCrdEvnt.dll
20:14:33.0986 6540 C:\Program Files\TOSHIBA\FlashCards\TCrdEvnt.dll - ok
20:14:33.0986 6540 [ 874DCC6F79DF9E2F2FDFEF3FA0BEFA9E ] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.dll
20:14:33.0986 6540 C:\Program Files\TOSHIBA\FlashCards\TCrdMain.dll - ok
20:14:33.0986 6540 [ 3F5FD6F81FB5DDA2730EF8DF579C648B ] C:\Program Files\TOSHIBA\Power Saver\TCooling.dll
20:14:33.0986 6540 C:\Program Files\TOSHIBA\Power Saver\TCooling.dll - ok
20:14:33.0986 6540 [ FA4C36B574BF387D9582ED2C54A347A8 ] C:\Windows\System32\mblctr.exe
20:14:33.0986 6540 C:\Windows\System32\mblctr.exe - ok
20:14:34.0002 6540 [ F29272ECC549878DF54ACEFFD887AC1E ] C:\Program Files\TOSHIBA\TECO\Teco.exe
20:14:34.0002 6540 C:\Program Files\TOSHIBA\TECO\Teco.exe - ok
20:14:34.0002 6540 [ E3F6A938E96121B0713C5442B07FBEFA ] C:\Program Files\TOSHIBA\Power Saver\TOddPwr.dll
20:14:34.0002 6540 C:\Program Files\TOSHIBA\Power Saver\TOddPwr.dll - ok
20:14:34.0002 6540 [ A2C6C94C5F45893B745EABC6B6A6061B ] C:\Program Files\TOSHIBA\Power Saver\TPwrSrv.dll
20:14:34.0002 6540 C:\Program Files\TOSHIBA\Power Saver\TPwrSrv.dll - ok
20:14:34.0002 6540 [ 79BD79C3EB6A4AD49E2F5ECB045BFCD4 ] C:\Program Files\TOSHIBA\Power Saver\TPwrBrightness.dll
20:14:34.0002 6540 C:\Program Files\TOSHIBA\Power Saver\TPwrBrightness.dll - ok
20:14:34.0002 6540 [ CE7E2C9DA6814ABD75BD3663EB2529E4 ] C:\Program Files\TOSHIBA\Power Saver\T1394Pwr.dll
20:14:34.0002 6540 C:\Program Files\TOSHIBA\Power Saver\T1394Pwr.dll - ok
20:14:34.0018 6540 [ 50F739538EF014B2E7EC59431749D838 ] C:\Windows\System32\mstsc.exe
20:14:34.0018 6540 C:\Windows\System32\mstsc.exe - ok
20:14:34.0018 6540 [ 099B3847531EAF7BA63B5BB504CE8461 ] C:\Program Files\TOSHIBA\TECO\MUIHelp.dll
20:14:34.0018 6540 C:\Program Files\TOSHIBA\TECO\MUIHelp.dll - ok
20:14:34.0018 6540 [ 35D063AE49A538F939CE257C15DE4F8A ] C:\Program Files\TOSHIBA\Power Saver\TKBLEDPwr.dll
20:14:34.0018 6540 C:\Program Files\TOSHIBA\Power Saver\TKBLEDPwr.dll - ok
20:14:34.0018 6540 [ B6475D8FD433D263F6BAF4171082D796 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
20:14:34.0018 6540 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
20:14:34.0018 6540 [ F59DF79CB996287EB7183D0E08502EC6 ] C:\Program Files\TOSHIBA\Power Saver\TSDPwr.dll
20:14:34.0018 6540 C:\Program Files\TOSHIBA\Power Saver\TSDPwr.dll - ok
20:14:34.0033 6540 [ 1AB8813DED097F7B202B4D2A6D08E114 ] C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe
20:14:34.0033 6540 C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe - ok
20:14:34.0033 6540 [ 4FD6E8F52DC28F5C3238314DF61DACEF ] C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll
20:14:34.0033 6540 C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll - ok
20:14:34.0033 6540 [ CB0EA991903412B425BA6F4A8CC51F8E ] C:\Program Files\TOSHIBA\Power Saver\TPCIePwr.dll
20:14:34.0033 6540 C:\Program Files\TOSHIBA\Power Saver\TPCIePwr.dll - ok
20:14:34.0033 6540 [ 9C96B167C21F6DCCF68E96853B0A8F93 ] C:\Program Files\TOSHIBA\FlashCards\FnPRTSC.dll
20:14:34.0033 6540 C:\Program Files\TOSHIBA\FlashCards\FnPRTSC.dll - ok
20:14:34.0033 6540 [ 76F123E491B26DAAD5DFBC20FC5996DB ] C:\Program Files\TOSHIBA\Power Saver\TScreen.dll
20:14:34.0033 6540 C:\Program Files\TOSHIBA\Power Saver\TScreen.dll - ok
20:14:34.0049 6540 [ 5046E55184021406C27E8D48A1B2C9D2 ] C:\Windows\System32\l3codeca.acm
20:14:34.0049 6540 C:\Windows\System32\l3codeca.acm - ok
20:14:34.0049 6540 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
20:14:34.0049 6540 C:\Windows\System32\prnfldr.dll - ok
20:14:34.0049 6540 [ BA1C136123B113195C412E4F2B380C11 ] C:\Program Files\TOSHIBA\FlashCards\FnSticky.dll
20:14:34.0049 6540 C:\Program Files\TOSHIBA\FlashCards\FnSticky.dll - ok
20:14:34.0049 6540 [ F2A7A5D3ABC8F816FE011E5499B20496 ] C:\Program Files\TOSHIBA\FlashCards\ButtonSupport\TBSMain.dll
20:14:34.0049 6540 C:\Program Files\TOSHIBA\FlashCards\ButtonSupport\TBSMain.dll - ok
20:14:34.0049 6540 [ 7633F554EEAFDE7F144B41C2FCAF5F63 ] C:\Windows\System32\SnippingTool.exe
20:14:34.0049 6540 C:\Windows\System32\SnippingTool.exe - ok
20:14:34.0064 6540 [ 1ADB9FE7468B50ECAC9444EE9BA0FBA7 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\Brightness.dll
20:14:34.0064 6540 C:\Program Files\TOSHIBA\FlashCards\Hotkey\Brightness.dll - ok
20:14:34.0064 6540 [ 1C937AA6A3E2E5F5F650686437AE2854 ] C:\Program Files\TOSHIBA\FlashCards\SmoothView.dll
20:14:34.0064 6540 C:\Program Files\TOSHIBA\FlashCards\SmoothView.dll - ok
20:14:34.0064 6540 [ 11615D80DC10ABB83D2A9002B70A4E36 ] C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll
20:14:34.0064 6540 C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll - ok
20:14:34.0064 6540 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
20:14:34.0064 6540 C:\Windows\System32\DXP.dll - ok
20:14:34.0080 6540 [ A6FA5C8FB3F82584C1158F0B8612D684 ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe
20:14:34.0080 6540 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe - ok
20:14:34.0080 6540 [ 8B1DF5DE30BFE3E0A359F6E612591E74 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF5_2.dll
20:14:34.0080 6540 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF5_2.dll - ok
20:14:34.0080 6540 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
20:14:34.0080 6540 C:\Windows\System32\mscoree.dll - ok
20:14:34.0080 6540 [ 47F0F526AD4982806C54B845B3289DE1 ] C:\Windows\System32\SoundRecorder.exe
20:14:34.0080 6540 C:\Windows\System32\SoundRecorder.exe - ok
20:14:34.0080 6540 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
20:14:34.0080 6540 C:\Windows\System32\Syncreg.dll - ok
20:14:34.0096 6540 [ F82483A80D49ACCA81193A294FB233CD ] C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe
20:14:34.0096 6540 C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe - ok
20:14:34.0096 6540 [ DB4BC74DC444CC7A5F8F6DF2D38FBD96 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcm90.dll
20:14:34.0096 6540 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcm90.dll - ok
20:14:34.0096 6540 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
20:14:34.0096 6540 C:\Windows\ehome\ehSSO.dll - ok
20:14:34.0096 6540 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
20:14:34.0096 6540 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
20:14:34.0111 6540 [ 0A8BEC706DBC33BEA9A919BEDA137A2D ] C:\Windows\System32\SNTSearch.dll
20:14:34.0111 6540 C:\Windows\System32\SNTSearch.dll - ok
20:14:34.0111 6540 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
20:14:34.0111 6540 C:\Windows\System32\ActionCenter.dll - ok
20:14:34.0111 6540 [ A709D7F4DCC91CF0945F784F7D233B89 ] C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe
20:14:34.0111 6540 C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe - ok
20:14:34.0111 6540 [ C0FAAE8EC1B4760D3D04844F708DA0F0 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
20:14:34.0111 6540 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
20:14:34.0111 6540 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
20:14:34.0111 6540 C:\Windows\System32\WPDShServiceObj.dll - ok
20:14:34.0127 6540 [ DDEA7F06F8A00E706C4DB75D7C6F2612 ] C:\Program Files\TOSHIBA\HDD Protection\Thp3dv.exe
20:14:34.0127 6540 C:\Program Files\TOSHIBA\HDD Protection\Thp3dv.exe - ok
20:14:34.0127 6540 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
20:14:34.0127 6540 C:\Windows\System32\FXSST.dll - ok
20:14:34.0127 6540 [ EF49D309C27814AB86D9AB567DD9DC86 ] C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
20:14:34.0127 6540 C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe - ok
20:14:34.0127 6540 [ 0287C9E40BC751BF94A90FEA39B4CAE6 ] C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll
20:14:34.0127 6540 C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll - ok
20:14:34.0142 6540 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
20:14:34.0142 6540 C:\Windows\System32\FXSAPI.dll - ok
20:14:34.0142 6540 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
20:14:34.0142 6540 C:\Windows\System32\SyncCenter.dll - ok
20:14:34.0142 6540 [ C4A27732A80E0FCE79A0DCE40604834E ] C:\Windows\System32\igfxtray.exe
20:14:34.0142 6540 C:\Windows\System32\igfxtray.exe - ok
20:14:34.0142 6540 [ 90834FCAF31540BE2E7C928D06CA296B ] C:\Windows\System32\hccutils.dll
20:14:34.0142 6540 C:\Windows\System32\hccutils.dll - ok
20:14:34.0142 6540 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
20:14:34.0142 6540 C:\Windows\System32\PortableDeviceTypes.dll - ok
20:14:34.0158 6540 [ 188C7C26418E736036C6895CA93E3322 ] C:\Windows\System32\igfxrenu.lrc
20:14:34.0158 6540 C:\Windows\System32\igfxrenu.lrc - ok
20:14:34.0158 6540 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
20:14:34.0158 6540 C:\Windows\System32\AltTab.dll - ok
20:14:34.0158 6540 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
20:14:34.0158 6540 C:\Windows\System32\srchadmin.dll - ok
20:14:34.0158 6540 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
20:14:34.0158 6540 C:\Windows\System32\FXSSVC.exe - ok
20:14:34.0158 6540 [ 66E93FB0000CCDFE070F8EF3D6DF84B2 ] C:\Windows\System32\hkcmd.exe
20:14:34.0158 6540 C:\Windows\System32\hkcmd.exe - ok
20:14:34.0158 6540 [ 7686A1929D958BF645645FFE499B06CD ] C:\Windows\System32\igfxress.dll
20:14:34.0158 6540 C:\Windows\System32\igfxress.dll - ok
20:14:34.0174 6540 [ FCF433BFE9F44C8FD2FAF1E8DED23D72 ] C:\Windows\System32\OobeFldr.dll
20:14:34.0174 6540 C:\Windows\System32\OobeFldr.dll - ok
20:14:34.0174 6540 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
20:14:34.0174 6540 C:\Windows\System32\pnidui.dll - ok
20:14:34.0174 6540 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
20:14:34.0174 6540 C:\Windows\System32\QUTIL.DLL - ok
20:14:34.0174 6540 [ 79A5B20DFB3A0C142E08EBD2F02DF983 ] C:\Windows\System32\igfxpers.exe
20:14:34.0174 6540 C:\Windows\System32\igfxpers.exe - ok
20:14:34.0174 6540 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
20:14:34.0174 6540 C:\Windows\System32\bthprops.cpl - ok
20:14:34.0189 6540 [ 5D61BE7DB55B026A5D61A3EED09D0EAD ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
20:14:34.0189 6540 C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe - ok
20:14:34.0189 6540 [ F121FF27B30D62EB148E928C4769328B ] C:\Windows\System32\Speech\SpeechUX\sapi.cpl
20:14:34.0189 6540 C:\Windows\System32\Speech\SpeechUX\sapi.cpl - ok
20:14:34.0189 6540 [ 76E7410B3A308F6960D3CE06DC7874AD ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\gtn.dll
20:14:34.0189 6540 C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\gtn.dll - ok
20:14:34.0189 6540 [ 08F6335D55310C334B13B9616E61D13D ] C:\Windows\System32\ieframe.dll
20:14:34.0189 6540 C:\Windows\System32\ieframe.dll - ok
20:14:34.0205 6540 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
20:14:34.0205 6540 C:\Windows\SysWOW64\rasapi32.dll - ok
20:14:34.0205 6540 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
20:14:34.0205 6540 C:\Windows\SysWOW64\rasman.dll - ok
20:14:34.0205 6540 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
20:14:34.0205 6540 C:\Windows\SysWOW64\rtutils.dll - ok
20:14:34.0205 6540 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
20:14:34.0205 6540 C:\Windows\System32\tquery.dll - ok
20:14:34.0205 6540 [ 917A728A12F25FCF4636858FAC9979FA ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll
20:14:34.0205 6540 C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll - ok
20:14:34.0220 6540 [ 7F9C912B2817076DC0C9C129C90D8914 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\88744044294787b99dd4a8704ab75a79\mscorlib.ni.dll
20:14:34.0220 6540 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\88744044294787b99dd4a8704ab75a79\mscorlib.ni.dll - ok
20:14:34.0220 6540 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
20:14:34.0220 6540 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
20:14:34.0220 6540 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
20:14:34.0220 6540 C:\Windows\SysWOW64\sxs.dll - ok
20:14:34.0220 6540 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
20:14:34.0220 6540 C:\Windows\System32\mssrch.dll - ok
20:14:34.0220 6540 [ 105CFE016CCB20175BEACEC146F175AB ] C:\Windows\System32\IccLibDll_x64.dll
20:14:34.0220 6540 C:\Windows\System32\IccLibDll_x64.dll - ok
20:14:34.0236 6540 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
20:14:34.0236 6540 C:\Windows\System32\msidle.dll - ok
20:14:34.0236 6540 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
20:14:34.0236 6540 C:\Windows\System32\mssprxy.dll - ok
20:14:34.0236 6540 [ D964DA1E8FA2A8C7FAB7C1CF1FD10577 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\TouchPad.dll
20:14:34.0236 6540 C:\Program Files\TOSHIBA\FlashCards\Hotkey\TouchPad.dll - ok
20:14:34.0236 6540 [ 1AC9B56AC7E043AC2874D61CBCED5F49 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\Mute.dll
20:14:34.0236 6540 C:\Program Files\TOSHIBA\FlashCards\Hotkey\Mute.dll - ok
20:14:34.0236 6540 [ 43AA2EFD14590DE58A545BF3B28ED09F ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF8Dll.dll
20:14:34.0236 6540 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF8Dll.dll - ok
20:14:34.0252 6540 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
20:14:34.0252 6540 C:\Windows\System32\en-US\tquery.dll.mui - ok
20:14:34.0252 6540 [ 1DCD0B1345720349220CE79316A56751 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnZ.dll
20:14:34.0252 6540 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnZ.dll - ok
20:14:34.0252 6540 [ FB4045578F5180BDB1963AB352B78548 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
20:14:34.0252 6540 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
20:14:34.0252 6540 [ 9108540E866F75C7AF2B91DD921A8091 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
20:14:34.0252 6540 C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
20:14:34.0252 6540 [ E365B567A4DC4A50B10A84B2B2D09EA7 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\TCrdKBB.exe
20:14:34.0252 6540 C:\Program Files\TOSHIBA\FlashCards\Hotkey\TCrdKBB.exe - ok
20:14:34.0267 6540 [ 534D84434D9DB1D1E1E865F64E52AA8E ] C:\Windows\System32\twext.dll
20:14:34.0267 6540 C:\Windows\System32\twext.dll - ok
20:14:34.0267 6540 [ C7301A1D3DB09DE86528D9D916069859 ] C:\Windows\System32\dfrgui.exe
20:14:34.0267 6540 C:\Windows\System32\dfrgui.exe - ok
20:14:34.0267 6540 [ 47A90CC060DD0CAC01D0B9442FB1AFA4 ] C:\Program Files (x86)\Electronic Arts\EADM\Core.exe
20:14:34.0267 6540 C:\Program Files (x86)\Electronic Arts\EADM\Core.exe - ok
20:14:34.0267 6540 [ 6E26EE228F60D75C732D209688FB546C ] C:\Windows\System32\wdc.dll
20:14:34.0267 6540 C:\Windows\System32\wdc.dll - ok
20:14:34.0267 6540 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
20:14:34.0267 6540 C:\Windows\System32\rasdlg.dll - ok
20:14:34.0283 6540 [ 106344B28D52E925E85F302A1C90F1E6 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnSpace.dll
20:14:34.0283 6540 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnSpace.dll - ok
20:14:34.0283 6540 [ BBAAE027C176402E221CADBFCAEB5407 ] C:\Windows\System32\zipfldr.dll
20:14:34.0283 6540 C:\Windows\System32\zipfldr.dll - ok
20:14:34.0283 6540 [ E77A82B3D25D366BA85671B2F1071996 ] C:\Program Files (x86)\Google\Drive\contextmenu64.dll
20:14:34.0283 6540 C:\Program Files (x86)\Google\Drive\contextmenu64.dll - ok
20:14:34.0283 6540 [ 4D1DA8CE5E364D22B4FF00F163194514 ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
20:14:34.0283 6540 C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe - ok
20:14:34.0298 6540 [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll
20:14:34.0298 6540 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok
20:14:34.0298 6540 [ A3DA49FF1D7288237FF18B31B7FE1087 ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
20:14:34.0298 6540 C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll - ok
20:14:34.0298 6540 [ D291620D4C51C5F5FFA62CCDC52C5C13 ] C:\Windows\System32\msinfo32.exe
20:14:34.0298 6540 C:\Windows\System32\msinfo32.exe - ok
20:14:34.0314 6540 [ FECC5EDFDB1AB0D0182AB6247B3591C4 ] C:\Program Files\TOSHIBA\DelayTSS\DelayTSS.exe
20:14:34.0314 6540 C:\Program Files\TOSHIBA\DelayTSS\DelayTSS.exe - ok
20:14:34.0314 6540 [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
20:14:34.0314 6540 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
20:14:34.0314 6540 [ 3DB5A1EACE7F3049ECC49FA64461E254 ] C:\Windows\System32\rstrui.exe
20:14:34.0314 6540 C:\Windows\System32\rstrui.exe - ok
20:14:34.0330 6540 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
20:14:34.0330 6540 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
20:14:34.0330 6540 [ 225518F190EDBC37CA32197A3E94B498 ] C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
20:14:34.0330 6540 C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe - ok
20:14:34.0330 6540 [ CBC7D8E5416AD30CF16DC2FD4A6AA399 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
20:14:34.0330 6540 C:\Program Files\AVAST Software\Avast\AvastUI.exe - ok
20:14:34.0345 6540 [ 8784236EED5079493DA9FC95B28B89F8 ] C:\Windows\System32\WerFault.exe
20:14:34.0345 6540 C:\Windows\System32\WerFault.exe - ok
20:14:34.0345 6540 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
20:14:34.0345 6540 C:\Windows\System32\WWanAPI.dll - ok
20:14:34.0345 6540 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
20:14:34.0345 6540 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
20:14:34.0361 6540 [ 2BD4FD9A1032685B5A05DB5E413FA671 ] C:\Program Files\AVAST Software\Avast\aswUtil.dll
20:14:34.0361 6540 C:\Program Files\AVAST Software\Avast\aswUtil.dll - ok
20:14:34.0361 6540 [ 28CA821606669BB9215CE010767720FA ] C:\Windows\SysWOW64\cryptui.dll
20:14:34.0361 6540 C:\Windows\SysWOW64\cryptui.dll - ok
20:14:34.0361 6540 [ 414DA952A35BF5D50192E28263B40577 ] C:\Windows\SysWOW64\shsvcs.dll
20:14:34.0361 6540 C:\Windows\SysWOW64\shsvcs.dll - ok
20:14:34.0361 6540 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
20:14:34.0361 6540 C:\Windows\System32\wwapi.dll - ok
20:14:34.0376 6540 [ C6352C29C56077749CEEDD08680D347D ] C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
20:14:34.0376 6540 C:\Program Files (x86)\Bamboo Dock\BambooCore.exe - ok
20:14:34.0376 6540 [ 51D186B582C905E49D84B70322F70B21 ] C:\Windows\System32\miguiresource.dll
20:14:34.0376 6540 C:\Windows\System32\miguiresource.dll - ok
20:14:34.0376 6540 [ A10B048B681C38E26CA90CD1BC123604 ] C:\Windows\System32\syncui.dll
20:14:34.0376 6540 C:\Windows\System32\syncui.dll - ok
20:14:34.0392 6540 [ CA6ADE4F7761BB15B3325356DC3B82BB ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
20:14:34.0392 6540 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll - ok
20:14:34.0392 6540 [ 8699D17DFCFCD327784034DB6BD3A422 ] C:\Windows\System32\synceng.dll
20:14:34.0392 6540 C:\Windows\System32\synceng.dll - ok
20:14:34.0392 6540 [ F152755F131ADFE452D534F4E9383590 ] C:\Windows\System32\Faultrep.dll
20:14:34.0392 6540 C:\Windows\System32\Faultrep.dll - ok
20:14:34.0408 6540 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
20:14:34.0408 6540 C:\Windows\System32\QAGENT.DLL - ok
20:14:34.0408 6540 [ A440A6EFED28AB4A8741E76BBDCF4B78 ] C:\Windows\System32\migwiz\wet.dll
20:14:34.0408 6540 C:\Windows\System32\migwiz\wet.dll - ok
20:14:34.0408 6540 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
20:14:34.0408 6540 C:\Windows\System32\wmdrmdev.dll - ok
20:14:34.0408 6540 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
20:14:34.0408 6540 C:\Windows\System32\drmv2clt.dll - ok
20:14:34.0423 6540 [ 97A891E2BF7FDA830BCFC6269DA3F5E9 ] C:\Windows\System32\blackbox.dll
20:14:34.0423 6540 C:\Windows\System32\blackbox.dll - ok
20:14:34.0423 6540 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
20:14:34.0423 6540 C:\Windows\System32\wmp.dll - ok
20:14:34.0423 6540 [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
20:14:34.0423 6540 C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
20:14:34.0439 6540 [ 81ADBC4E31A721AEF23251A952049BA2 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
20:14:34.0439 6540 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
20:14:34.0439 6540 [ A5B33435E2449B8E0BFD1C87131A3ABC ] C:\Program Files\AVAST Software\Avast\aswAra.dll
20:14:34.0439 6540 C:\Program Files\AVAST Software\Avast\aswAra.dll - ok
20:14:34.0439 6540 [ 8DA025D3A4BF417F6045B9A4212641B8 ] C:\Program Files\AVAST Software\Avast\aswData.dll
20:14:34.0439 6540 C:\Program Files\AVAST Software\Avast\aswData.dll - ok
20:14:34.0454 6540 [ 82C362A81EE4E441CD85260C8E9E708A ] C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
20:14:34.0454 6540 C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe - ok
20:14:34.0454 6540 [ 018736296DA0547B14A563392D11CF9C ] C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll
20:14:34.0454 6540 C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll - ok
20:14:34.0454 6540 [ C74602361D48403F1F2E981964573700 ] C:\Program Files\AVAST Software\Avast\CommonRes.dll
20:14:34.0454 6540 C:\Program Files\AVAST Software\Avast\CommonRes.dll - ok
20:14:34.0454 6540 [ 0819EF7DB96DAB8AC3DACE567ED1B99E ] C:\Windows\System32\werui.dll
20:14:34.0454 6540 C:\Windows\System32\werui.dll - ok
20:14:34.0470 6540 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
20:14:34.0470 6540 C:\Windows\SysWOW64\taskschd.dll - ok
20:14:34.0470 6540 [ 577234234E4AE08D63A8B490D0738D25 ] C:\Program Files\Internet Explorer\sqmapi.dll
20:14:34.0470 6540 C:\Program Files\Internet Explorer\sqmapi.dll - ok
20:14:34.0470 6540 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
20:14:34.0470 6540 C:\Windows\SysWOW64\xmllite.dll - ok
20:14:34.0470 6540 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
20:14:34.0470 6540 C:\Windows\System32\SearchProtocolHost.exe - ok
20:14:34.0470 6540 [ 7B201227AA04212E0D15752105678E3D ] C:\Program Files\Internet Explorer\ieproxy.dll
20:14:34.0470 6540 C:\Program Files\Internet Explorer\ieproxy.dll - ok
20:14:34.0486 6540 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
20:14:34.0486 6540 C:\Windows\System32\msshooks.dll - ok
20:14:34.0486 6540 [ 9D9C0DD19ED1D36E1FAB8805EA5CE1AF ] C:\Program Files\Common Files\Microsoft Shared\ink\ShapeCollector.exe
20:14:34.0486 6540 C:\Program Files\Common Files\Microsoft Shared\ink\ShapeCollector.exe - ok
20:14:34.0486 6540 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
20:14:34.0486 6540 C:\Windows\System32\riched20.dll - ok
20:14:34.0486 6540 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
20:14:34.0486 6540 C:\Windows\System32\SearchFilterHost.exe - ok
20:14:34.0501 6540 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
20:14:34.0501 6540 C:\Windows\System32\wmpps.dll - ok
20:14:34.0501 6540 [ EC4EF025DCBD6B83CF44A10EF0840BDD ] C:\Program Files (x86)\Bamboo Dock\Bamboo Dock\Bamboo Dock.exe
20:14:34.0501 6540 C:\Program Files (x86)\Bamboo Dock\Bamboo Dock\Bamboo Dock.exe - ok
20:14:34.0501 6540 [ BC0D4AFBE94D8E1F81C8926D805C3366 ] C:\Windows\System32\webcheck.dll
20:14:34.0501 6540 C:\Windows\System32\webcheck.dll - ok
20:14:34.0501 6540 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
20:14:34.0501 6540 C:\Windows\System32\mlang.dll - ok
20:14:34.0501 6540 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
20:14:34.0501 6540 C:\Windows\System32\imapi2.dll - ok
20:14:34.0517 6540 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
20:14:34.0517 6540 C:\Windows\SysWOW64\mscms.dll - ok
20:14:34.0517 6540 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
20:14:34.0517 6540 C:\Windows\System32\mssph.dll - ok
20:14:34.0517 6540 [ 1C09858449980D64577E377EB262C9D7 ] C:\Program Files\Windows Journal\Journal.exe
20:14:34.0517 6540 C:\Program Files\Windows Journal\Journal.exe - ok
20:14:34.0517 6540 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
20:14:34.0517 6540 C:\Windows\SysWOW64\dsound.dll - ok
20:14:34.0517 6540 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
20:14:34.0517 6540 C:\Windows\System32\mapi32.dll - ok
20:14:34.0532 6540 [ EC08F157BE40C5ACD5337ABF5B24C9C5 ] C:\Users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
20:14:34.0532 6540 C:\Users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll - ok
20:14:34.0532 6540 [ AB09CE954C647F3C2B4328B57D519996 ] C:\Users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\msvcp110.dll
20:14:34.0532 6540 C:\Users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\msvcp110.dll - ok
20:14:34.0532 6540 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
20:14:34.0532 6540 C:\Windows\System32\hgcpl.dll - ok
20:14:34.0532 6540 [ 80E987DBE08677E2EC09615CD4358607 ] C:\Users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\msvcr110.dll
20:14:34.0532 6540 C:\Users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\msvcr110.dll - ok
20:14:34.0548 6540 [ 3EBA393EC3A8F53D8D08A15E357125C1 ] C:\Users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\Telemetry.dll
20:14:34.0548 6540 C:\Users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\Telemetry.dll - ok
20:14:34.0548 6540 [ 990EA3103E06D68CE0E755A9C3D70107 ] C:\Windows\System32\dbgeng.dll
20:14:34.0548 6540 C:\Windows\System32\dbgeng.dll - ok
20:14:34.0548 6540 [ E0A9DDAC0B57312C8010495193B920E3 ] C:\Users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\logging.dll
20:14:34.0548 6540 C:\Users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\logging.dll - ok
20:14:34.0548 6540 [ 7A6986DD659B96398A11AF5173892715 ] C:\Windows\SysWOW64\cabinet.dll
20:14:34.0548 6540 C:\Windows\SysWOW64\cabinet.dll - ok
20:14:34.0548 6540 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
20:14:34.0548 6540 C:\Windows\SysWOW64\MMDevAPI.dll - ok
20:14:34.0564 6540 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
20:14:34.0564 6540 C:\Windows\SysWOW64\AudioSes.dll - ok
20:14:34.0564 6540 [ 351657C79B62B91E16A95AD23EA3710D ] C:\Program Files\Internet Explorer\iexplore.exe
20:14:34.0564 6540 C:\Program Files\Internet Explorer\iexplore.exe - ok
20:14:34.0564 6540 [ FF2B106909EED48C536DA04742C0324A ] C:\Windows\System32\Query.dll
20:14:34.0564 6540 C:\Windows\System32\Query.dll - ok
20:14:34.0564 6540 [ 01E2855FB06C422E721D890AF201C2D7 ] C:\Windows\System32\NaturalLanguage6.dll
20:14:34.0564 6540 C:\Windows\System32\NaturalLanguage6.dll - ok
20:14:34.0579 6540 [ 701D9F5F3F21580936638D5C5F86B460 ] C:\Windows\System32\NlsData0009.dll
20:14:34.0579 6540 C:\Windows\System32\NlsData0009.dll - ok
20:14:34.0579 6540 [ 852D67A27E454BD389FA7F02A8CBE23F ] C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
20:14:34.0579 6540 C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe - ok
20:14:34.0579 6540 [ D2D7186D08C68C017B31A30BDC41F968 ] C:\Windows\SysWOW64\Pen_Tablet.dll
20:14:34.0579 6540 C:\Windows\SysWOW64\Pen_Tablet.dll - ok
20:14:34.0579 6540 [ 06A6FE79BD96C7FEF7322AFE5B45FFFF ] C:\Windows\System32\mycomput.dll
20:14:34.0579 6540 C:\Windows\System32\mycomput.dll - ok
20:14:34.0595 6540 [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
20:14:34.0595 6540 C:\Windows\System32\odbcint.dll - ok
20:14:34.0595 6540 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:14:34.0595 6540 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
20:14:34.0595 6540 [ B9CE8CF2FF2D5EAFFDBAA340E7B385A5 ] C:\Windows\System32\iscsicpl.dll
20:14:34.0595 6540 C:\Windows\System32\iscsicpl.dll - ok
20:14:34.0595 6540 [ C5038699EA876F9B638DF08D14544EBD ] C:\Program Files (x86)\Bamboo Dock\BambooWinTab.dll
20:14:34.0595 6540 C:\Program Files (x86)\Bamboo Dock\BambooWinTab.dll - ok
20:14:34.0595 6540 [ 3EEC0FB1DDD317AA1E8933B912439736 ] C:\Windows\System32\MdSched.exe
20:14:34.0595 6540 C:\Windows\System32\MdSched.exe - ok
20:14:34.0610 6540 [ DE038C40F3033EDA732655FA42DCBD18 ] C:\Windows\System32\filemgmt.dll
20:14:34.0610 6540 C:\Windows\System32\filemgmt.dll - ok
20:14:34.0610 6540 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
20:14:34.0610 6540 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
20:14:34.0610 6540 [ E19D102BAF266F34592F7C742FBFA886 ] C:\Windows\System32\msconfig.exe
20:14:34.0610 6540 C:\Windows\System32\msconfig.exe - ok
20:14:34.0610 6540 [ 4F39AE2B7685CF1FB785BA484DFF5C41 ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_8_800_175.ocx
20:14:34.0610 6540 C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_8_800_175.ocx - ok
20:14:34.0610 6540 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
20:14:34.0610 6540 C:\Windows\SysWOW64\mssprxy.dll - ok
20:14:34.0626 6540 [ 148A733B93A2AC104280495DA09D3CC2 ] C:\Windows\System32\NlsLexicons0009.dll
20:14:34.0626 6540 C:\Windows\System32\NlsLexicons0009.dll - ok
20:14:34.0626 6540 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
20:14:34.0626 6540 C:\Windows\SysWOW64\mscoree.dll - ok
20:14:34.0626 6540 [ 11F174ED2050121C394C17B4F7B69983 ] C:\Windows\System32\AuthFWGP.dll
20:14:34.0626 6540 C:\Windows\System32\AuthFWGP.dll - ok
20:14:34.0626 6540 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
20:14:34.0626 6540 C:\Windows\System32\gameux.dll - ok
20:14:34.0642 6540 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:14:34.0642 6540 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
20:14:34.0642 6540 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
20:14:34.0642 6540 C:\Windows\System32\msvcr100_clr0400.dll - ok
20:14:34.0642 6540 [ 690AC6BBC42258593E829FB27A80575A ] C:\Program Files (x86)\Google\Update\1.3.21.153\goopdateres_en.dll
20:14:34.0642 6540 C:\Program Files (x86)\Google\Update\1.3.21.153\goopdateres_en.dll - ok
20:14:34.0642 6540 [ 3EFCAE64A274785439CCF235F0D96D16 ] C:\PROGRA~1\Intel\WiFi\bin\MUIRES~1.DLL
20:14:34.0642 6540 C:\PROGRA~1\Intel\WiFi\bin\MUIRES~1.DLL - ok
20:14:34.0642 6540 [ 76D86E65FF7D10292886A1F2DB93A911 ] C:\Windows\System32\ELSCore.dll
20:14:34.0642 6540 C:\Windows\System32\ELSCore.dll - ok
20:14:34.0657 6540 [ AB41542FA180CB3317F597ED7E7D5C5D ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
20:14:34.0657 6540 C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe - ok
20:14:34.0657 6540 [ E7B1B5D5A1D1E4C77AE995D725A1FEE5 ] C:\Windows\System32\sdcpl.dll
20:14:34.0657 6540 C:\Windows\System32\sdcpl.dll - ok
20:14:34.0657 6540 [ 12929BDE96189F4E968AD035573424F0 ] C:\Windows\System32\elsTrans.dll
20:14:34.0657 6540 C:\Windows\System32\elsTrans.dll - ok
20:14:34.0657 6540 [ AEE087CF7423BA44CC2DE03CC565E399 ] C:\Windows\System32\elslad.dll
20:14:34.0657 6540 C:\Windows\System32\elslad.dll - ok
20:14:34.0657 6540 [ F3B306179F1840C0813DC6771B018358 ] C:\Windows\System32\recdisc.exe
20:14:34.0657 6540 C:\Windows\System32\recdisc.exe - ok
20:14:34.0673 6540 [ E79DF53BAD587E24B3CF965A5746C7B6 ] C:\Windows\System32\msra.exe
20:14:34.0673 6540 C:\Windows\System32\msra.exe - ok
20:14:34.0673 6540 [ 51272A935F4F482A70F2A7D1C3A67AEE ] C:\Windows\System32\NlsData000c.dll
20:14:34.0673 6540 C:\Windows\System32\NlsData000c.dll - ok
20:14:34.0673 6540 [ 5E08AC958BE05247FF1539E0D1CE7905 ] C:\Windows\SysWOW64\dinput8.dll
20:14:34.0673 6540 C:\Windows\SysWOW64\dinput8.dll - ok
20:14:34.0673 6540 [ D490E461986E029DD3E49A96A9DCF1D6 ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSSDAlert.exe
20:14:34.0673 6540 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSSDAlert.exe - ok
20:14:34.0673 6540 [ C809A0DD5C78BF1FA7DC8C9E4BB1BFF7 ] C:\Program Files (x86)\Toshiba\TOSHIBA Service Station\ToshibaServiceStation.exe
20:14:34.0673 6540 C:\Program Files (x86)\Toshiba\TOSHIBA Service Station\ToshibaServiceStation.exe - ok
20:14:34.0688 6540 [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\Windows\SysWOW64\wscproxystub.dll
20:14:34.0688 6540 C:\Windows\SysWOW64\wscproxystub.dll - ok
20:14:34.0688 6540 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
20:14:34.0688 6540 C:\Windows\System32\cabinet.dll - ok
20:14:34.0688 6540 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
20:14:34.0688 6540 C:\Windows\System32\mspatcha.dll - ok
20:14:34.0704 6540 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
20:14:34.0704 6540 C:\Windows\System32\p2pcollab.dll - ok
20:14:34.0704 6540 [ 76E86C93B54DC86E9C31AD328591CF7B ] C:\Program Files\TOSHIBA\TPHM\TPCHViewer.exe
20:14:34.0704 6540 C:\Program Files\TOSHIBA\TPHM\TPCHViewer.exe - ok
20:14:34.0704 6540 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
20:14:34.0704 6540 C:\Windows\System32\drivers\spsys.sys - ok
20:14:34.0704 6540 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
20:14:34.0704 6540 C:\Windows\System32\fveui.dll - ok
20:14:34.0704 6540 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
20:14:34.0704 6540 C:\Windows\System32\wuapi.dll - ok
20:14:34.0704 6540 [ C2142407A2BE3462247500849B3FF8C7 ] C:\Windows\System32\NlsLexicons000c.dll
20:14:34.0704 6540 C:\Windows\System32\NlsLexicons000c.dll - ok
20:14:34.0720 6540 [ F51F342E526245F58F7B1F768C6F1597 ] C:\Program Files\TOSHIBA\Power Saver\THyboot.exe
20:14:34.0720 6540 C:\Program Files\TOSHIBA\Power Saver\THyboot.exe - ok
20:14:34.0720 6540 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
20:14:34.0720 6540 C:\Windows\System32\wups.dll - ok
20:14:34.0720 6540 [ 80E7B12D7B804D938F945E2CDB468F9B ] C:\Program Files\TOSHIBA\Power Saver\THybootSet.exe
20:14:34.0720 6540 C:\Program Files\TOSHIBA\Power Saver\THybootSet.exe - ok
20:14:34.0720 6540 [ 8A525B8D583D067C5AAAC1AF5F91B89A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\af0a0b96a02f9925eb84392ee65a5cfa\System.ni.dll
20:14:34.0720 6540 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\af0a0b96a02f9925eb84392ee65a5cfa\System.ni.dll - ok
20:14:34.0720 6540 [ B99950FDFE55E911045300CA0B3FA97A ] C:\PROGRA~2\WIC4A1~1\FAMILY~1\fsui.dll
20:14:34.0720 6540 C:\PROGRA~2\WIC4A1~1\FAMILY~1\fsui.dll - ok
20:14:34.0735 6540 [ 4C0989878EB9DF67C42A7CD42713451E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\868d117286ad259249f31d3fe813d39a\System.Drawing.ni.dll
20:14:34.0735 6540 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\868d117286ad259249f31d3fe813d39a\System.Drawing.ni.dll - ok
20:14:34.0735 6540 [ 376CBEFB55D0B15EE1E31B772E2CA516 ] C:\PROGRA~2\WIC4A1~1\Writer\WI68BE~1.DLL
20:14:34.0735 6540 C:\PROGRA~2\WIC4A1~1\Writer\WI68BE~1.DLL - ok
20:14:34.0735 6540 [ 7C835A04020A1578ECA2088F4288E94B ] C:\Program Files\AVAST Software\Avast\defs\13092602\uiext.dll
20:14:34.0735 6540 C:\Program Files\AVAST Software\Avast\defs\13092602\uiext.dll - ok
20:14:34.0735 6540 [ 521B748A7F9923302CA18B7E6AA2EEAE ] C:\Windows\SysWOW64\activeds.dll
20:14:34.0735 6540 C:\Windows\SysWOW64\activeds.dll - ok
20:14:34.0735 6540 [ 51F5CC1E7DA3D9C664C2D0D61F315E06 ] C:\Windows\SysWOW64\adsldpc.dll
20:14:34.0735 6540 C:\Windows\SysWOW64\adsldpc.dll - ok
20:14:34.0751 6540 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
20:14:34.0751 6540 C:\Windows\SysWOW64\atl.dll - ok
20:14:34.0751 6540 [ 3E709F7BFA217CD3B6FC338780465E20 ] C:\Windows\SysWOW64\adsldp.dll
20:14:34.0751 6540 C:\Windows\SysWOW64\adsldp.dll - ok
20:14:34.0751 6540 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
20:14:34.0751 6540 C:\Windows\System32\sppwinob.dll - ok
20:14:34.0751 6540 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
20:14:34.0751 6540 C:\Windows\System32\ndiscapCfg.dll - ok
20:14:34.0751 6540 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
20:14:34.0751 6540 C:\Windows\System32\mprmsg.dll - ok
20:14:34.0766 6540 [ F49210D92D29DD5B6B34037BE888654A ] C:\Program Files\TOSHIBA\ReelTime\ReelTimeRemoteStorage.dll
20:14:34.0766 6540 C:\Program Files\TOSHIBA\ReelTime\ReelTimeRemoteStorage.dll - ok
20:14:34.0766 6540 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
20:14:34.0766 6540 C:\Windows\System32\msiltcfg.dll - ok
20:14:34.0766 6540 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
20:14:34.0766 6540 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
20:14:34.0766 6540 [ C4A1187263DE737BE8AF1BED11B1C0B7 ] C:\Program Files (x86)\Internet Explorer\ieproxy.dll
20:14:34.0766 6540 C:\Program Files (x86)\Internet Explorer\ieproxy.dll - ok
20:14:34.0766 6540 [ 9DAAD9A3B59061C5B58FD64F524FB879 ] C:\Program Files\TOSHIBA\ReelTime\DataProcess.DLL
20:14:34.0766 6540 C:\Program Files\TOSHIBA\ReelTime\DataProcess.DLL - ok
20:14:34.0782 6540 [ 11542EC1F1C53EDB3CCF5AADF4C9972F ] C:\Windows\System32\NlsData0000.dll
20:14:34.0782 6540 C:\Windows\System32\NlsData0000.dll - ok
20:14:34.0782 6540 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
20:14:34.0782 6540 C:\Windows\System32\sppobjs.dll - ok
20:14:34.0782 6540 [ 04DCA0B26DCF3948D9E84F40912C2DDC ] C:\Program Files\Internet Explorer\IEShims.dll
20:14:34.0782 6540 C:\Program Files\Internet Explorer\IEShims.dll - ok
20:14:34.0782 6540 [ DE7A443BE0279111F1A3F07B1D167AB4 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\95674cb72317e3a5380ea450b913786f\System.Windows.Forms.ni.dll
20:14:34.0782 6540 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\95674cb72317e3a5380ea450b913786f\System.Windows.Forms.ni.dll - ok
20:14:34.0798 6540 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
20:14:34.0798 6540 C:\Windows\System32\wups2.dll - ok
20:14:34.0798 6540 [ C016B4170A836CBA9DF98F02CD055C1B ] C:\Windows\System32\ieui.dll
20:14:34.0798 6540 C:\Windows\System32\ieui.dll - ok
20:14:34.0798 6540 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
20:14:34.0798 6540 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
20:14:34.0798 6540 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
20:14:34.0798 6540 C:\Windows\System32\fdWSD.dll - ok
20:14:34.0798 6540 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
20:14:34.0798 6540 C:\Windows\System32\fdSSDP.dll - ok
20:14:34.0813 6540 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
20:14:34.0813 6540 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
20:14:34.0813 6540 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
20:14:34.0813 6540 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
20:14:34.0813 6540 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
20:14:34.0813 6540 C:\Windows\System32\fdProxy.dll - ok
20:14:34.0813 6540 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
20:14:34.0813 6540 C:\Windows\SysWOW64\ntdsapi.dll - ok
20:14:34.0813 6540 [ C5413BC4F10CEB4C3070BBF04D324117 ] C:\Windows\SysWOW64\msisip.dll
20:14:34.0813 6540 C:\Windows\SysWOW64\msisip.dll - ok
20:14:34.0829 6540 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
20:14:34.0829 6540 C:\Windows\System32\wbem\cimwin32.dll - ok
20:14:34.0829 6540 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
20:14:34.0829 6540 C:\Windows\System32\framedynos.dll - ok
20:14:34.0829 6540 [ 04CB7C8FDC6D9640DD82A527208F72C4 ] C:\Windows\System32\UIAnimation.dll
20:14:34.0829 6540 C:\Windows\System32\UIAnimation.dll - ok
20:14:34.0829 6540 [ AC6E6940C8C98EE153D96FFA2CA7B272 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\3975acf49313ceea1280da91f0383480\System.Xml.ni.dll
20:14:34.0829 6540 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\3975acf49313ceea1280da91f0383480\System.Xml.ni.dll - ok
20:14:34.0844 6540 [ 502099981495ED5A3924A867B6514ECE ] C:\Program Files (x86)\Internet Explorer\IEShims.dll
20:14:34.0844 6540 C:\Program Files (x86)\Internet Explorer\IEShims.dll - ok
20:14:34.0844 6540 [ AB97769B5DFB19DE9D4C93695B82EEEF ] C:\Program Files (x86)\Internet Explorer\sqmapi.dll
20:14:34.0844 6540 C:\Program Files (x86)\Internet Explorer\sqmapi.dll - ok
20:14:34.0844 6540 [ BCA4913CDE903B4BDEEDAD1D6DBF5E2A ] C:\Windows\SysWOW64\ieui.dll
20:14:34.0844 6540 C:\Windows\SysWOW64\ieui.dll - ok
20:14:34.0844 6540 [ 5D2D7E7850CE963C2F401D4DEE7BB32A ] C:\Windows\SysWOW64\mshtml.dll
20:14:34.0844 6540 C:\Windows\SysWOW64\mshtml.dll - ok
20:14:34.0844 6540 [ 2AB64D742E64148F3BBCD9FC18D93ACF ] C:\Windows\System32\igfxpph.dll
20:14:34.0844 6540 C:\Windows\System32\igfxpph.dll - ok
20:14:34.0844 6540 [ 20F79A90C76651A17A9B211BC33743A7 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\bcdc7d59f3f8ed743115a7e706e6232a\System.ServiceProcess.ni.dll
20:14:34.0844 6540 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\bcdc7d59f3f8ed743115a7e706e6232a\System.ServiceProcess.ni.dll - ok
20:14:34.0860 6540 [ 9FF8F684BACF326082E5562F7C104A79 ] C:\Windows\SysWOW64\d2d1.dll
20:14:34.0860 6540 C:\Windows\SysWOW64\d2d1.dll - ok
20:14:34.0860 6540 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
20:14:34.0860 6540 C:\Windows\System32\wlaninst.dll - ok
20:14:34.0860 6540 [ AB11CEFE591909A85E98E27A230807C7 ] C:\Program Files\Windows Sidebar\sbdrop.dll
20:14:34.0860 6540 C:\Program Files\Windows Sidebar\sbdrop.dll - ok
20:14:34.0860 6540 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
20:14:34.0860 6540 C:\Windows\System32\wwaninst.dll - ok
20:14:34.0860 6540 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
20:14:34.0860 6540 C:\Windows\System32\rundll32.exe - ok
20:14:34.0876 6540 [ 521C21E7F6EAB98679F90CA4E135FB95 ] C:\Program Files (x86)\Toshiba\TOSHIBA Service Station\TMachInfo.exe
20:14:34.0876 6540 C:\Program Files (x86)\Toshiba\TOSHIBA Service Station\TMachInfo.exe - ok
20:14:34.0876 6540 [ EBCC2CEFDA0CE9F8DBFD7F4E380AF081 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARMHelper.exe
20:14:34.0876 6540 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARMHelper.exe - ok
20:14:34.0876 6540 [ 47CBB77506CFB47D7F86685335985962 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\1031b311ee568364d4ca1c4db634eaf0\System.Configuration.ni.dll
20:14:34.0876 6540 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\1031b311ee568364d4ca1c4db634eaf0\System.Configuration.ni.dll - ok
20:14:34.0876 6540 [ E2107F227E1C174C20BEB7A51404BBAC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe
20:14:34.0876 6540 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe - ok
20:14:34.0876 6540 [ 1C0E369575F387460E2A5F28269B2CC4 ] C:\Windows\SysWOW64\DWrite.dll
20:14:34.0876 6540 C:\Windows\SysWOW64\DWrite.dll - ok
20:14:34.0891 6540 [ 17ED2224666F6F65F8054D84A3839E71 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll
20:14:34.0891 6540 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll - ok
20:14:34.0891 6540 [ D4F264FE23F8953D840904418220C15E ] C:\Windows\SysWOW64\dxgi.dll
20:14:34.0891 6540 C:\Windows\SysWOW64\dxgi.dll - ok
20:14:34.0891 6540 [ 6DE66FE7C526637E74CD066461C7C871 ] C:\Windows\SysWOW64\d3d11.dll
20:14:34.0891 6540 C:\Windows\SysWOW64\d3d11.dll - ok
20:14:34.0891 6540 [ EE338F7673C339D5497C97E86D1011A3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll
20:14:34.0891 6540 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll - ok
20:14:34.0891 6540 [ 009320627BC660E0DC851A4608C36DBC ] C:\Windows\SysWOW64\igd10umd32.dll
20:14:34.0891 6540 C:\Windows\SysWOW64\igd10umd32.dll - ok
20:14:34.0907 6540 [ 91B4AAD4412BB223B466F3DFB43E86DA ] C:\Windows\SysWOW64\d3dx10_40.dll
20:14:34.0907 6540 C:\Windows\SysWOW64\d3dx10_40.dll - ok
20:14:34.0907 6540 [ 1E7B336E538DC064A549D4F214F82AEA ] C:\Windows\SysWOW64\igdumd32.dll
20:14:34.0907 6540 C:\Windows\SysWOW64\igdumd32.dll - ok
20:14:34.0907 6540 [ E3A4D59ED585226D381225521BF2A36D ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll
20:14:34.0907 6540 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll - ok
20:14:34.0907 6540 [ 449F7C92A14B7F50B898FC67202A326C ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
20:14:34.0907 6540 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe - ok
20:14:34.0907 6540 [ 28943370E3AF1D34D77D22911F891213 ] C:\Windows\System32\NlsData0003.dll
20:14:34.0907 6540 C:\Windows\System32\NlsData0003.dll - ok
20:14:34.0922 6540 [ 36CDD894395BEC46EFB14F49D77D3D82 ] C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
20:14:34.0922 6540 C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe - ok
20:14:34.0922 6540 [ 0834F271A35D0CBD708E21E1DDD1F2EA ] C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
20:14:34.0922 6540 C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll - ok
20:14:34.0922 6540 [ 8DAF186C6B6FD795CD977E9928E9DC49 ] C:\Program Files\TOSHIBA\TPHM\TPCHCTL.dll
20:14:34.0922 6540 C:\Program Files\TOSHIBA\TPHM\TPCHCTL.dll - ok
20:14:34.0922 6540 [ 40986A81053401E5379154818FA8733C ] C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
20:14:34.0922 6540 C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll - ok
20:14:34.0922 6540 [ 3D273A5E3A59C846836D2F537B093A8E ] C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_32_73A164C14CCC546B.dll
20:14:34.0922 6540 C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_32_73A164C14CCC546B.dll - ok
20:14:34.0938 6540 [ 83621A5B90FF7960EDC839089938815A ] C:\Program Files\TOSHIBA\TPHM\TPCHDisk.dll
20:14:34.0938 6540 C:\Program Files\TOSHIBA\TPHM\TPCHDisk.dll - ok
20:14:34.0938 6540 [ 0405BACBBD2006CAF3C54256FE71FB2A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\7e1a0f53a8580321c5902b6867c3f7da\System.Management.ni.dll
20:14:34.0938 6540 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\7e1a0f53a8580321c5902b6867c3f7da\System.Management.ni.dll - ok
20:14:34.0938 6540 [ 45375DF47ED4D0535739465105AAABE3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
20:14:34.0938 6540 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
20:14:34.0938 6540 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
20:14:34.0938 6540 C:\Windows\System32\wmi.dll - ok
20:14:34.0938 6540 [ 4F0429B763D05E721C0DD50693B7EFBE ] C:\Windows\System32\NlsLexicons0003.dll
20:14:34.0938 6540 C:\Windows\System32\NlsLexicons0003.dll - ok
20:14:34.0954 6540 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
20:14:34.0954 6540 C:\Windows\System32\browcli.dll - ok
20:14:34.0954 6540 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
20:14:34.0954 6540 C:\Windows\System32\schedcli.dll - ok
20:14:34.0954 6540 [ 9338C2DEB14CA2804BCB3276CB7EB4FD ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
20:14:34.0954 6540 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe - ok
20:14:34.0954 6540 [ E601860AA04CE2198DBC6AC2AF80AFF7 ] C:\Windows\System32\perfos.dll
20:14:34.0954 6540 C:\Windows\System32\perfos.dll - ok
20:14:34.0954 6540 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
20:14:34.0954 6540 C:\Windows\System32\security.dll - ok
20:14:34.0969 6540 [ 9AB92C5641E692DAF1EAEAD18349B386 ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
20:14:34.0969 6540 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe - ok
20:14:34.0969 6540 [ F66541528CD4DCC6587F966E3AD32021 ] C:\Program Files\TOSHIBA\TPHM\3dvlib.dll
20:14:34.0969 6540 C:\Program Files\TOSHIBA\TPHM\3dvlib.dll - ok
20:14:34.0969 6540 [ 42ADCFE7A4B03099CD41620A04AB4D91 ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosIPCWraper.dll
20:14:34.0969 6540 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosIPCWraper.dll - ok
20:14:34.0969 6540 [ 93D2B71E1AB7222F5E4EE4537C066A51 ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TReport.dll
20:14:34.0969 6540 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TReport.dll - ok
20:14:34.0969 6540 [ EDF4DEC1041EEAF78A0B1E16C1BB4CC4 ] C:\Windows\System32\fthsvc.dll
20:14:34.0969 6540 C:\Windows\System32\fthsvc.dll - ok
20:14:34.0985 6540 [ 63B282FB2550893724647A359BA2323F ] C:\Windows\SysWOW64\Query.dll
20:14:34.0985 6540 C:\Windows\SysWOW64\Query.dll - ok
20:14:34.0985 6540 [ 4F936BFF531D0FE47210D780547F8956 ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosReg.dll
20:14:34.0985 6540 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosReg.dll - ok
20:14:34.0985 6540 [ BBB6C6833C30E323B41860D6DF61972D ] C:\Program Files\TOSHIBA\TPHM\d3dx9_36.dll
20:14:34.0985 6540 C:\Program Files\TOSHIBA\TPHM\d3dx9_36.dll - ok
20:14:34.0985 6540 [ 569A07C4395AB391D0D0E437654D871A ] C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
20:14:34.0985 6540 C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll - ok
20:14:34.0985 6540 [ E527FAC0EC3AA363C09C2E0AD13BC882 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll
20:14:34.0985 6540 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll - ok
20:14:35.0000 6540 [ B0F039287E4340101DA01F1EEDAB4D6A ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmart.dll
20:14:35.0000 6540 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmart.dll - ok
20:14:35.0000 6540 [ 8497A8E3390FAE61745628100BB1FC8D ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\wlidcli.dll
20:14:35.0000 6540 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\wlidcli.dll - ok
20:14:35.0000 6540 [ 9419ABF3163B6F0E3AD3DD2B381C879F ] C:\Windows\SysWOW64\WinSCard.dll
20:14:35.0000 6540 C:\Windows\SysWOW64\WinSCard.dll - ok
20:14:35.0000 6540 [ 10B01048B1DA075CD1EE27E30B4CF342 ] C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
20:14:35.0000 6540 C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe - ok
20:14:35.0000 6540 [ EC48890B04D283371DC2CADAC40AD5B5 ] C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
20:14:35.0000 6540 C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll - ok
20:14:35.0000 6540 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files (x86)\Java\jre6\bin\msvcr71.dll
20:14:35.0000 6540 C:\Program Files (x86)\Java\jre6\bin\msvcr71.dll - ok
20:14:35.0016 6540 [ F1387F5674697F2D8EB6DE2266477860 ] C:\Windows\System32\dskquota.dll
20:14:35.0016 6540 C:\Windows\System32\dskquota.dll - ok
20:14:35.0016 6540 [ C64FF9D6595C3513C2000FAC83D47CD0 ] C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E7110F8B630E4F04.dll
20:14:35.0016 6540 C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E7110F8B630E4F04.dll - ok
20:14:35.0016 6540 [ 9AC798CEB0245A7C9DAE30FD379FB3B7 ] C:\Program Files (x86)\Toshiba\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
20:14:35.0016 6540 C:\Program Files (x86)\Toshiba\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll - ok
20:14:35.0016 6540 [ 0F416E23DD2EB4DEBE70608020CFD283 ] C:\Windows\SysWOW64\WMVCORE.DLL
20:14:35.0016 6540 C:\Windows\SysWOW64\WMVCORE.DLL - ok
20:14:35.0016 6540 [ A39324715118E2535249D9E0AFC336F1 ] C:\Program Files\TOSHIBA\TPHM\Png.dll
20:14:35.0016 6540 C:\Program Files\TOSHIBA\TPHM\Png.dll - ok
20:14:35.0032 6540 [ CC4AE7E2ECAEE7612B3C0D3AB302375C ] C:\Windows\System32\mshtml.dll
20:14:35.0032 6540 C:\Windows\System32\mshtml.dll - ok
20:14:35.0032 6540 [ A7DD56261518373F70F23079EB3CD0A2 ] C:\Windows\SysWOW64\WMASF.DLL
20:14:35.0032 6540 C:\Windows\SysWOW64\WMASF.DLL - ok
20:14:35.0032 6540 [ 487F44B08EFEAF5AD087878357B9403D ] C:\Windows\SysWOW64\pdh.dll
20:14:35.0032 6540 C:\Windows\SysWOW64\pdh.dll - ok
20:14:35.0032 6540 [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\SysWOW64\mfplat.dll
20:14:35.0032 6540 C:\Windows\SysWOW64\mfplat.dll - ok
20:14:35.0032 6540 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
20:14:35.0032 6540 C:\Windows\SysWOW64\avrt.dll - ok
20:14:35.0047 6540 [ FDBA1DEC4F9BE4274A00B9B850C63484 ] C:\Windows\SysWOW64\mf.dll
20:14:35.0047 6540 C:\Windows\SysWOW64\mf.dll - ok
20:14:35.0047 6540 [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll
20:14:35.0047 6540 C:\Windows\System32\spfileq.dll - ok
20:14:35.0047 6540 [ DE40F02142DF6CABE6133792EECC60DF ] C:\Program Files\TOSHIBA\TPHM\StartMenu.exe
20:14:35.0047 6540 C:\Program Files\TOSHIBA\TPHM\StartMenu.exe - ok
20:14:35.0047 6540 [ B04FA948E94F0E33AFAF0B94E4640620 ] C:\Program Files\TOSHIBA\TPHM\TPCHKarteLog.dll
20:14:35.0047 6540 C:\Program Files\TOSHIBA\TPHM\TPCHKarteLog.dll - ok
20:14:35.0047 6540 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
20:14:35.0047 6540 C:\Windows\SysWOW64\ksuser.dll - ok
20:14:35.0047 6540 [ 3A15B6E6894C1733B97A4F6D3738AE17 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDRES.DLL
20:14:35.0047 6540 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDRES.DLL - ok
20:14:35.0063 6540 [ 5F107E61C3126FE208BA99250B5A5411 ] C:\Program Files\TOSHIBA\TPHM\TPCHMUI.dll
20:14:35.0063 6540 C:\Program Files\TOSHIBA\TPHM\TPCHMUI.dll - ok
20:14:35.0063 6540 [ E0FD8EFE7F2E1C1BEE14C74A095DE418 ] C:\Program Files\TOSHIBA\TPHM\TPCHUSB.dll
20:14:35.0063 6540 C:\Program Files\TOSHIBA\TPHM\TPCHUSB.dll - ok
20:14:35.0063 6540 [ D85C21F522EC74196B86C3D67AC4AD2E ] C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
20:14:35.0063 6540 C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe - ok
20:14:35.0063 6540 [ 5BE5FBD34768CB85E5C2E9030005447E ] C:\Program Files\TOSHIBA\TPHM\TReport.dll
20:14:35.0063 6540 C:\Program Files\TOSHIBA\TPHM\TReport.dll - ok
20:14:35.0063 6540 [ 79DC575FE905D5DD5C5A4C5993A7C7F9 ] C:\Windows\SysWOW64\jscript9.dll
20:14:35.0063 6540 C:\Windows\SysWOW64\jscript9.dll - ok
20:14:35.0078 6540 [ D6692338B985D4A0CA52B828314D897D ] C:\Windows\SysWOW64\drprov.dll
20:14:35.0078 6540 C:\Windows\SysWOW64\drprov.dll - ok
20:14:35.0078 6540 [ D7B7159BC8374E87D8C45A30377A3440 ] C:\Windows\SysWOW64\ntlanman.dll
20:14:35.0078 6540 C:\Windows\SysWOW64\ntlanman.dll - ok
20:14:35.0078 6540 [ 284B59D7B56FC76C80E622AB856B1FAB ] C:\Windows\SysWOW64\davclnt.dll
20:14:35.0078 6540 C:\Windows\SysWOW64\davclnt.dll - ok
20:14:35.0078 6540 [ 179BECE8D1A4C488DDB7191FF9BE3FB0 ] C:\Windows\SysWOW64\davhlpr.dll
20:14:35.0078 6540 C:\Windows\SysWOW64\davhlpr.dll - ok
20:14:35.0078 6540 [ E98278865E8DABA21CFE5FE4BE34210A ] C:\Windows\SysWOW64\PortableDeviceApi.dll
20:14:35.0078 6540 C:\Windows\SysWOW64\PortableDeviceApi.dll - ok
20:14:35.0094 6540 [ 4634B0EE4098F0F2B972BDAC19A802E7 ] C:\Windows\SysWOW64\audiodev.dll
20:14:35.0094 6540 C:\Windows\SysWOW64\audiodev.dll - ok
20:14:35.0094 6540 [ 1060D60CCA69A8136A87DBE3C8F4A467 ] C:\Windows\SysWOW64\EhStorAPI.dll
20:14:35.0094 6540 C:\Windows\SysWOW64\EhStorAPI.dll - ok
20:14:35.0094 6540 [ 2CC002D549866607AE624118E3C2EAA2 ] C:\Windows\System32\Macromed\Flash\Flash64_11_8_800_175.ocx
20:14:35.0094 6540 C:\Windows\System32\Macromed\Flash\Flash64_11_8_800_175.ocx - ok
20:14:35.0094 6540 [ 4E899FCBEBD6BEBEB64826A67885CFA2 ] C:\Program Files\AVAST Software\Avast\aswJsFlt.dll
20:14:35.0094 6540 C:\Program Files\AVAST Software\Avast\aswJsFlt.dll - ok
20:14:35.0094 6540 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
20:14:35.0094 6540 C:\Windows\SysWOW64\msimtf.dll - ok
20:14:35.0094 6540 [ B3CE0951E3C1EA3C733573C472EE85F9 ] C:\Windows\System32\msimtf.dll
20:14:35.0094 6540 C:\Windows\System32\msimtf.dll - ok
20:14:35.0110 6540 [ 1B0EC94520CAB89A9CE1B2DA405166AF ] C:\Windows\SysWOW64\p2pcollab.dll
20:14:35.0110 6540 C:\Windows\SysWOW64\p2pcollab.dll - ok
20:14:35.0110 6540 [ FD049C25A168D3DE310D9207B7B6367B ] C:\Windows\SysWOW64\UIAutomationCore.dll
20:14:35.0110 6540 C:\Windows\SysWOW64\UIAutomationCore.dll - ok
20:14:35.0110 6540 [ 7E8A672B7B06A6EB11960C22E0360C59 ] C:\Windows\System32\d2d1.dll
20:14:35.0110 6540 C:\Windows\System32\d2d1.dll - ok
20:14:35.0110 6540 [ 182BBA1B43898D5DA0938D2E9A526B31 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
20:14:35.0110 6540 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe - ok
20:14:35.0110 6540 [ B708C40F9DCB2B201C2440A2C4C68B93 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
20:14:35.0110 6540 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll - ok
20:14:35.0125 6540 [ DD85F00EC31F77315AE992B7B0411D65 ] C:\Windows\System32\DWrite.dll
20:14:35.0125 6540 C:\Windows\System32\DWrite.dll - ok
20:14:35.0125 6540 [ E7F9CE0875DE165475ADCAA253301AFC ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\WsmanClient.dll
20:14:35.0125 6540 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\WsmanClient.dll - ok
20:14:35.0125 6540 [ 1E7FB78A7014473ED75F8D6D489E14E8 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\Common.dll
20:14:35.0125 6540 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\Common.dll - ok
20:14:35.0125 6540 [ 43338584E6E8FF756338FAE46276BFC8 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\GmsCommon.dll
20:14:35.0125 6540 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\GmsCommon.dll - ok
20:14:35.0125 6540 [ 9295C7C31203231DE4419413BF5C62B6 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\Configurator.dll
20:14:35.0125 6540 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\Configurator.dll - ok
20:14:35.0141 6540 [ 6E8C44717AC442C24B92B105F037B1E8 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\EventManager.dll
20:14:35.0141 6540 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\EventManager.dll - ok
20:14:35.0141 6540 [ B4DB24F83F3BBA09C9DE232CCFF1D3A2 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusEventHandler.dll
20:14:35.0141 6540 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusEventHandler.dll - ok
20:14:35.0141 6540 [ 26D652191B51854E66084DDAEE69EC65 ] C:\Windows\System32\verifier.dll
20:14:35.0141 6540 C:\Windows\System32\verifier.dll - ok
20:14:35.0141 6540 [ C498EF41B93986BCBD483597573EB96D ] C:\Windows\System32\d3d10warp.dll
20:14:35.0141 6540 C:\Windows\System32\d3d10warp.dll - ok
20:14:35.0141 6540 [ 41DF7355A5A907E2C1D7804EC028965D ] C:\Windows\System32\wermgr.exe
20:14:35.0141 6540 C:\Windows\System32\wermgr.exe - ok
20:14:35.0156 6540 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
20:14:35.0156 6540 C:\Windows\System32\wbem\wmipcima.dll - ok
20:14:35.0156 6540 [ F76074CE653E49AC6BDFE19289691AA6 ] C:\Windows\System32\NlsData0013.dll
20:14:35.0156 6540 C:\Windows\System32\NlsData0013.dll - ok
20:14:35.0156 6540 [ AE9300B1F0D6095597F64F03E1C38BB4 ] C:\Windows\System32\NlsLexicons0013.dll
20:14:35.0156 6540 C:\Windows\System32\NlsLexicons0013.dll - ok
20:14:35.0156 6540 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv
20:14:35.0156 6540 C:\Windows\SysWOW64\wdmaud.drv - ok
20:14:35.0156 6540 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
20:14:35.0156 6540 C:\Windows\SysWOW64\msacm32.drv - ok
20:14:35.0172 6540 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
20:14:35.0172 6540 C:\Windows\SysWOW64\midimap.dll - ok
20:14:35.0172 6540 [ 1C7F1C3EA5894995E6C563E9AE9F029F ] C:\Windows\SysWOW64\l3codeca.acm
20:14:35.0172 6540 C:\Windows\SysWOW64\l3codeca.acm - ok
20:14:35.0172 6540 [ 6B140B1382F1FE04BA57B196AEB19725 ] C:\Windows\SysWOW64\t2embed.dll
20:14:35.0172 6540 C:\Windows\SysWOW64\t2embed.dll - ok
20:14:35.0172 6540 [ 57A35DC90AC214035AEA79BD51F3CE42 ] C:\Windows\System32\Macromed\Flash\FlashUtil64_11_8_800_175_ActiveX.exe
20:14:35.0172 6540 C:\Windows\System32\Macromed\Flash\FlashUtil64_11_8_800_175_ActiveX.exe - ok
20:14:35.0172 6540 [ C621FB6BF9741AA18E55377FDD2CE96F ] C:\Windows\System32\oleaccrc.dll
20:14:35.0172 6540 C:\Windows\System32\oleaccrc.dll - ok
20:14:35.0172 6540 [ 05824A79DAFACC42668AFC7C4F8EB765 ] C:\Windows\System32\Macromed\Flash\FlashUtil64_11_8_800_175_ActiveX.dll
20:14:35.0172 6540 C:\Windows\System32\Macromed\Flash\FlashUtil64_11_8_800_175_ActiveX.dll - ok
20:14:35.0188 6540 [ 6E42D6759EF29A36BA321823494CCB35 ] C:\Windows\System32\dinput8.dll
20:14:35.0188 6540 C:\Windows\System32\dinput8.dll - ok
20:14:35.0188 6540 [ B21020CE416060781C3E089911716CF1 ] C:\Program Files\AVAST Software\Avast\defs\13092602\aswCleanerDLL.dll
20:14:35.0188 6540 C:\Program Files\AVAST Software\Avast\defs\13092602\aswCleanerDLL.dll - ok
20:14:35.0188 6540 [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll
20:14:35.0188 6540 C:\Windows\System32\wscinterop.dll - ok
20:14:35.0188 6540 [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl
20:14:35.0188 6540 C:\Windows\System32\wscui.cpl - ok
20:14:35.0188 6540 [ F9959237F106F2B2609E61A290C0652E ] C:\Windows\System32\werconcpl.dll
20:14:35.0188 6540 C:\Windows\System32\werconcpl.dll - ok
20:14:35.0203 6540 [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll
20:14:35.0203 6540 C:\Windows\System32\hcproviders.dll - ok
20:14:35.0203 6540 [ 6441D2FFB14B613C1D44D709BC7F8FFA ] C:\Windows\System32\sendmail.dll
20:14:35.0203 6540 C:\Windows\System32\sendmail.dll - ok
20:14:35.0203 6540 [ C8994E2703410F8DFE19DE5BF82994C0 ] C:\Windows\System32\mydocs.dll
20:14:35.0203 6540 C:\Windows\System32\mydocs.dll - ok
20:14:35.0203 6540 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
20:14:35.0203 6540 C:\Windows\System32\drprov.dll - ok
20:14:35.0203 6540 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
20:14:35.0203 6540 C:\Windows\System32\ntlanman.dll - ok
20:14:35.0203 6540 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
20:14:35.0203 6540 C:\Windows\System32\davclnt.dll - ok
20:14:35.0219 6540 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
20:14:35.0219 6540 C:\Windows\System32\davhlpr.dll - ok
20:14:35.0219 6540 [ 4715F8F8CDBFFF2728BA38B789A1D7C7 ] C:\Windows\System32\wpdshext.dll
20:14:35.0219 6540 C:\Windows\System32\wpdshext.dll - ok
20:14:35.0219 6540 [ 03AB2A2E426C2AD400AC8315226347F8 ] C:\Windows\System32\EhStorAPI.dll
20:14:35.0219 6540 C:\Windows\System32\EhStorAPI.dll - ok
20:14:35.0219 6540 [ C1C03EA437EDDA8A7D4D8786E5AE6751 ] C:\Windows\System32\wuauclt.exe
20:14:35.0219 6540 C:\Windows\System32\wuauclt.exe - ok
20:14:35.0219 6540 [ F2C7BB8ACC97F92E987A2D4087D021B1 ] C:\Windows\System32\notepad.exe
20:14:35.0219 6540 C:\Windows\System32\notepad.exe - ok
20:14:35.0234 6540 [ 061A78FEFA0457FD64F62DF791939466 ] C:\Windows\System32\NlsData000a.dll
20:14:35.0234 6540 C:\Windows\System32\NlsData000a.dll - ok
20:14:35.0234 6540 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
20:14:35.0234 6540 C:\Windows\SysWOW64\linkinfo.dll - ok
20:14:35.0234 6540 [ CDDF26D22DF0C095BC3DF44BBCDC426C ] C:\Windows\System32\NlsLexicons000a.dll
20:14:35.0234 6540 C:\Windows\System32\NlsLexicons000a.dll - ok
20:14:35.0234 6540 [ 65B063CA7A90693F524A6274BCF4F29C ] C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleCld_67CA61FFB258B28A.dll
20:14:35.0234 6540 C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleCld_67CA61FFB258B28A.dll - ok
20:14:35.0234 6540 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Olivia\Desktop\tdsskiller.exe
20:14:35.0234 6540 C:\Users\Olivia\Desktop\tdsskiller.exe - ok
20:14:35.0234 6540 [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
20:14:35.0234 6540 C:\Windows\System32\wbem\WMIADAP.exe - ok
20:14:35.0250 6540 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
20:14:35.0250 6540 C:\Windows\System32\loadperf.dll - ok
20:14:35.0250 6540 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\68792591.sys
20:14:35.0250 6540 C:\Windows\System32\drivers\68792591.sys - ok
20:14:35.0250 6540 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
20:14:35.0250 6540 C:\Windows\SysWOW64\riched20.dll - ok
20:14:35.0250 6540 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
20:14:35.0250 6540 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
20:14:35.0266 6540 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
20:14:35.0266 6540 C:\Windows\SysWOW64\duser.dll - ok
20:14:35.0266 6540 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
20:14:35.0266 6540 C:\Windows\SysWOW64\dui70.dll - ok
20:14:35.0266 6540 [ CDEBD55FFBDA3889AA2A8CE52B9DC097 ] C:\Windows\System32\sdclt.exe
20:14:35.0266 6540 C:\Windows\System32\sdclt.exe - ok
20:14:35.0266 6540 [ B24450E38722F69F338533A36ECFFC29 ] C:\Windows\System32\RacEngn.dll
20:14:35.0266 6540 C:\Windows\System32\RacEngn.dll - ok
20:14:35.0266 6540 [ 8CE1C165396F2453012B3E23ADD9DF76 ] C:\Windows\System32\ReAgent.dll
20:14:35.0266 6540 C:\Windows\System32\ReAgent.dll - ok
20:14:35.0266 6540 [ B7AC66C1CCD87D7C49256B5451DED4FA ] C:\Windows\System32\spp.dll
20:14:35.0266 6540 C:\Windows\System32\spp.dll - ok
20:14:35.0281 6540 [ AA61A7047E854A9E914FDD17C2F35675 ] C:\Windows\System32\sqlceoledb30.dll
20:14:35.0281 6540 C:\Windows\System32\sqlceoledb30.dll - ok
20:14:35.0281 6540 [ 9C75CB8B98610F0CD85D99BB5876308B ] C:\Windows\System32\sqlcese30.dll
20:14:35.0281 6540 C:\Windows\System32\sqlcese30.dll - ok
20:14:35.0281 6540 [ E5744D18C88737C6356D0A8D6D49D512 ] C:\Windows\System32\sqlceqp30.dll
20:14:35.0281 6540 C:\Windows\System32\sqlceqp30.dll - ok
20:14:35.0281 6540 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
20:14:35.0281 6540 C:\Windows\System32\WinSATAPI.dll - ok
20:14:35.0281 6540 [ 11C405A2DCF38E098316FD904A4FB662 ] C:\Windows\System32\sdengin2.dll
20:14:35.0281 6540 C:\Windows\System32\sdengin2.dll - ok
20:14:35.0281 6540 ============================================================
20:14:35.0281 6540 Scan finished
20:14:35.0281 6540 ============================================================
20:14:35.0297 6532 Detected object count: 5
20:14:35.0297 6532 Actual detected object count: 5
20:15:41.0473 6532 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
20:15:41.0473 6532 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:15:41.0473 6532 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
20:15:41.0473 6532 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:15:41.0473 6532 Thpsrv ( UnsignedFile.Multi.Generic ) - skipped by user
20:15:41.0473 6532 Thpsrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:15:41.0473 6532 TosCoSrv ( UnsignedFile.Multi.Generic ) - skipped by user
20:15:41.0473 6532 TosCoSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:15:42.0003 6532 \Device\Harddisk0\DR0\# - copied to quarantine
20:15:42.0003 6532 \Device\Harddisk0\DR0 - copied to quarantine
20:15:42.0190 6532 \Device\Harddisk0\DR0 ( Rootkit.Boot.Harbinger.a ) - will be cured on reboot
20:15:42.0253 6532 \Device\Harddisk0\DR0 - ok
20:15:42.0487 6532 \Device\Harddisk0\DR0 ( Rootkit.Boot.Harbinger.a ) - User select action: Cure
20:15:57.0463 1084 Deinitialize success


-------------------------------------------------------------------------------

NEXT REPLY COMING IN A MOMENT! DUE TO SIZE
  • 0

Advertisements


#17
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello TerraceHill

At this time I would like you to run this script for me and it is a good time to check out the computer to see if there is anything else that needs to be addressed.

:Run CFScript:

Please start by opening Notepad and copy/paste the text in the box into the window:

ClearJavaCache::



Save it to your desktop as CFScript.txt

Referring to the picture above, drag CFScript.txt into ComboFix.exe
Posted Image
This will let ComboFix run again.
Restart if you have to.
Save the produced logfile to your desktop.

Note: Do not mouseclick combofix's window whilst it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following

  • report from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now after running the script?

Gringo

  • 0

#18
TerraceHill

TerraceHill

    Member

  • Topic Starter
  • Member
  • PipPip
  • 32 posts
REPORT OF ROGUE KILLER:

----------------------------------------------------------------------------------------------------------------------------

RogueKiller V8.6.12 _x64_ [Sep 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.adlice.com/forum/
Website : http://www.adlice.co...es/roguekiller/
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Olivia [Admin rights]
Mode : Remove -- Date : 09/26/2013 20:30:43
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) (Standard disk drives) - Hitachi HTS547575A9E384 +++++
--- User ---
[MBR] e2cc8381a0ae5ae6f0c20ab4a5b4517c
[BSP] 47d6636b31113a59284743eee8446d28 : Windows Vista MBR Code
Partition table:
0 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 1500 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 3074048 | Size: 699128 Mo
2 - [XXXXXX] NTFS (0x17) [HIDDEN!] Offset (sectors): 1434888192 | Size: 14775 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[0]_D_09262013_203043.txt >>
RKreport[0]_S_09262013_202948.txt


--------------------------------------------------------------------------------------------------------------------


There was not a report titled RKReport(2), they only had 0 instead of 2


REPORT OF COMPUTER PERFORMANCE:

MUCH FASTER. When I make a new tab it lights up blue, but only for a split second like lightning (which is still abnormal, but that's the only problem), it loads so fast now. Faster than when my computer was normal! lol
Also, no popups. Seems fine, as far as performance goes.
  • 0

#19
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello TerraceHill

At this time I would like you to run this script for me and it is a good time to check out the computer to see if there is anything else that needs to be addressed.

:Run CFScript:

Please start by opening Notepad and copy/paste the text in the box into the window:

ClearJavaCache::



Save it to your desktop as CFScript.txt

Referring to the picture above, drag CFScript.txt into ComboFix.exe
Posted Image
This will let ComboFix run again.
Restart if you have to.
Save the produced logfile to your desktop.

Note: Do not mouseclick combofix's window whilst it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following

  • report from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now after running the script?

Gringo

  • 0

#20
TerraceHill

TerraceHill

    Member

  • Topic Starter
  • Member
  • PipPip
  • 32 posts
COMBOFIX REPORT (I THINK I DID IT RIGHT, CF IS KIND OF DIFFICULT TO USE [BECAUSE I DON'T KNOW WHAT I'M DOING]):

-----------------------------------------------------------------------------------

ComboFix 13-09-26.03 - Olivia 09/26/2013 20:53:46.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.6063.3927 [GMT -4:00]
Running from: c:\users\Olivia\Desktop\ComboFix.exe
Command switches used :: c:\users\Olivia\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
FW: avast! Internet Security *Disabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
/wow section - STAGE 6
Access is denied.
.
.
((((((((((((((((((((((((( Files Created from 2013-08-27 to 2013-09-27 )))))))))))))))))))))))))))))))
.
.
2013-09-27 01:11 . 2013-09-27 01:11 -------- d-----w- c:\users\Test\AppData\Local\temp
2013-09-27 01:11 . 2013-09-27 01:11 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-09-27 00:15 . 2013-09-27 00:15 -------- d-----w- C:\TDSSKiller_Quarantine
2013-09-26 00:16 . 2013-09-05 05:32 9694160 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{41EDA008-9409-45C9-93CF-FADC2E8E6499}\mpengine.dll
2013-09-22 02:22 . 2013-09-22 02:22 -------- d-----w- c:\users\Olivia\AppData\Roaming\Ambient Design
2013-09-22 02:18 . 2013-09-22 02:18 -------- d-----w- c:\program files (x86)\Ambient Design
2013-09-22 01:43 . 2013-09-22 01:43 -------- d-----w- c:\users\Olivia\AppData\Roaming\Autodesk
2013-09-22 01:43 . 2013-09-22 01:43 -------- d-----w- c:\programdata\Alias
2013-09-22 01:43 . 2013-09-22 01:43 -------- d-----w- c:\program files (x86)\Autodesk
2013-09-22 00:08 . 2013-09-22 00:08 -------- d-----w- c:\windows\Sun
2013-09-21 13:19 . 2013-09-21 13:19 -------- d-----w- c:\users\Olivia\AppData\Roaming\wacomid-desktop-launcher.DCFD4B89A63EE70BC162777F06D4B93B6397AEC7.1
2013-09-21 13:17 . 2013-09-21 13:17 -------- d-----w- c:\users\Olivia\AppData\Roaming\Wacom
2013-09-21 13:17 . 2013-09-24 05:58 -------- d-----w- c:\programdata\Wacom
2013-09-21 13:17 . 2013-09-21 13:17 -------- d-----w- c:\program files (x86)\Bamboo Dock
2013-09-21 13:17 . 2013-09-21 13:20 -------- d-----w- c:\users\Olivia\AppData\Roaming\WTablet
2013-09-18 01:30 . 2013-09-18 01:30 -------- d-----w- c:\windows\ERUNT
2013-09-17 01:11 . 2013-09-17 01:14 -------- d-----w- C:\AdwCleaner
2013-09-16 03:01 . 2013-09-16 03:45 -------- d-----w- C:\FRST
2013-09-13 18:42 . 2013-08-10 03:59 1767936 ----a-w- c:\windows\SysWow64\wininet.dll
2013-09-13 18:42 . 2013-08-10 05:22 2241024 ----a-w- c:\windows\system32\wininet.dll
2013-09-13 18:42 . 2013-08-10 05:20 15404544 ----a-w- c:\windows\system32\ieframe.dll
2013-09-13 18:42 . 2013-08-10 05:21 19246592 ----a-w- c:\windows\system32\mshtml.dll
2013-09-12 19:58 . 2013-08-05 02:25 155584 ----a-w- c:\windows\system32\drivers\ataport.sys
2013-09-12 19:58 . 2013-08-08 01:20 3155456 ----a-w- c:\windows\system32\win32k.sys
2013-09-08 23:34 . 2013-07-09 05:46 1472512 ----a-w- c:\windows\system32\crypt32.dll
2013-08-30 07:02 . 2013-08-30 07:03 -------- d-----w- C:\06159a860f4fe9145a4d703aacaad2
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-09-21 13:19 . 2012-04-26 01:04 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-09-21 13:19 . 2012-04-26 01:04 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-08-30 07:48 . 2013-07-17 04:22 378944 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-08-30 07:48 . 2013-07-17 04:21 72016 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-08-30 07:48 . 2013-07-17 04:21 64288 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-08-30 07:48 . 2013-07-17 04:21 1030952 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-08-30 07:48 . 2013-07-17 04:21 204880 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-08-30 07:48 . 2013-07-17 04:21 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-08-30 07:48 . 2013-07-17 04:22 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-08-30 07:48 . 2013-07-17 04:21 22600 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2013-08-30 07:48 . 2013-07-17 04:21 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-08-30 07:47 . 2013-07-17 04:20 41664 ----a-w- c:\windows\avastSS.scr
2013-08-30 07:47 . 2012-07-27 07:09 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-08-07 08:22 . 2010-11-21 03:27 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-08-02 01:48 . 2013-09-12 19:57 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-07-25 08:57 . 2013-08-15 03:39 1620992 ----a-w- c:\windows\SysWow64\WMVDECOD.DLL
2013-07-19 01:41 . 2013-08-15 03:39 2048 ----a-w- c:\windows\SysWow64\tzres.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{A9183D22-9F36-4C28-81FE-C295754EEF1D}]
c:\program files (x86)\Creflo Dollar Ministries Toolbar\Toolbar.dll [BU]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2012-12-30 03:23 220632 ----a-w- c:\users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2012-12-30 03:23 220632 ----a-w- c:\users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2012-12-30 03:23 220632 ----a-w- c:\users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-06-06 39408]
"EA Core"="c:\program files (x86)\Electronic Arts\EADM\Core.exe" [2009-03-28 3325952]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="c:\program files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-02-27 291608]
"DelayTSS"="c:\program files\Toshiba\DelayTSS\DelayTSS.exe" [2011-11-21 2153328]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\Update\realsched.exe" [2013-05-18 295512]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-08-30 4858968]
"BambooCore"="c:\program files (x86)\Bamboo Dock\BambooCore.exe" [2012-10-16 646744]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer3"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0aswBoot.exe /A:* /A:C: /A:*STARTUP-SHORT /A:*STARTUP /L:1033 /heur:100 /RA:chest /pup /archives /IA:0 /KBD:2 /wow /dir:C:\Program
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 hidkmdf;KMDF Driver;c:\windows\system32\DRIVERS\hidkmdf.sys;c:\windows\SYSNATIVE\DRIVERS\hidkmdf.sys [x]
R3 intaud_WaveExtensible;Intel WiDi Audio Device;c:\windows\system32\drivers\intelaud.sys;c:\windows\SYSNATIVE\drivers\intelaud.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WacHidRouter;Wacom Hid Router;c:\windows\system32\DRIVERS\wachidrouter.sys;c:\windows\SYSNATIVE\DRIVERS\wachidrouter.sys [x]
R3 wacomrouterfilter;Wacom Router Filter Driver;c:\windows\system32\DRIVERS\wacomrouterfilter.sys;c:\windows\SYSNATIVE\DRIVERS\wacomrouterfilter.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 aswKbd;aswKbd; [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S0 Thpdrv;TOSHIBA HDD Protection Driver;c:\windows\system32\DRIVERS\thpdrv.sys;c:\windows\SYSNATIVE\DRIVERS\thpdrv.sys [x]
S0 Thpevm;TOSHIBA HDD Protection - Shock Sensor Driver;c:\windows\system32\DRIVERS\Thpevm.SYS;c:\windows\SYSNATIVE\DRIVERS\Thpevm.SYS [x]
S0 tos_sps64;TOSHIBA tos_sps64 Service;c:\windows\system32\DRIVERS\tos_sps64.sys;c:\windows\SYSNATIVE\DRIVERS\tos_sps64.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7;c:\program files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe;c:\program files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x]
S2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 Intel® ME Service;Intel® ME Service;c:\program files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [x]
S2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [x]
S2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [x]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x]
S2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;c:\program files\TOSHIBA\TECO\TecoService.exe;c:\program files\TOSHIBA\TECO\TecoService.exe [x]
S2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\DRIVERS\TVALZFL.sys;c:\windows\SYSNATIVE\DRIVERS\TVALZFL.sys [x]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]
S2 WTabletServiceCon;Wacom Consumer Service;c:\program files\Tablet\Pen\WTabletServiceCon.exe;c:\program files\Tablet\Pen\WTabletServiceCon.exe [x]
S2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x]
S3 FwLnk;FwLnk Driver;c:\windows\system32\DRIVERS\FwLnk.sys;c:\windows\SYSNATIVE\DRIVERS\FwLnk.sys [x]
S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 iusb3hub;Intel® USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 iwdbus;IWD Bus Enumerator;c:\windows\system32\DRIVERS\iwdbus.sys;c:\windows\SYSNATIVE\DRIVERS\iwdbus.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]
S3 PGEffect;Pangu effect driver;c:\windows\system32\DRIVERS\pgeffect.sys;c:\windows\SYSNATIVE\DRIVERS\pgeffect.sys [x]
S3 RSP2STOR;Realtek PCIE CardReader Driver - P2;c:\windows\system32\DRIVERS\RtsP2Stor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsP2Stor.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfslh.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaylh.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirlh.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvollh.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x]
S3 SmbDrv;SmbDrv;c:\windows\system32\DRIVERS\Smb_driver.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver.sys [x]
S3 TMachInfo;TMachInfo;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [x]
S3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - 98068173
*Deregistered* - 98068173
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-09-22 00:06 1177552 ----a-w- c:\program files (x86)\Google\Chrome\Application\29.0.1547.76\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-09-27 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-26 13:19]
.
2013-09-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-06-06 16:35]
.
2013-09-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-06-06 16:35]
.
2013-09-27 c:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
- c:\program files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25 20:41]
.
2013-09-27 c:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
- c:\program files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25 20:41]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2012-12-30 03:23 244696 ----a-w- c:\users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2012-12-30 03:23 244696 ----a-w- c:\users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2012-12-30 03:23 244696 ----a-w- c:\users\Olivia\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-08-30 07:47 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2013-06-27 20:11 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-06-27 20:11 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-06-27 20:11 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2013-06-27 20:11 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2013-06-27 20:11 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2013-06-27 20:11 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ThpSrv"="c:\windows\system32\thpsrv" [X]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-02-22 12452456]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"SRS Premium Sound 3D"="c:\program files\SRS Labs\SRS Control Panel\SRSPanel_64.exe" [2012-03-06 2165120]
"TPwrMain"="c:\program files (x86)\TOSHIBA\Power Saver\TPwrMain.EXE" [BU]
"TCrdMain"="c:\program files (x86)\TOSHIBA\FlashCards\TCrdMain.exe" [BU]
"Teco"="c:\program files (x86)\TOSHIBA\TECO\Teco.exe" [BU]
"TosWaitSrv"="c:\program files (x86)\TOSHIBA\TPHM\TosWaitSrv.exe" [BU]
"TosSENotify"="c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe" [2011-11-26 710560]
"TosVolRegulator"="c:\program files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe" [2009-11-11 24376]
"TosNC"="c:\program files (x86)\Toshiba\BulletinBoard\TosNcCore.exe" [BU]
"TosReelTimeMonitor"="c:\program files (x86)\TOSHIBA\ReelTime\TosReelTimeMonitor.exe" [BU]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-05-10 170264]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-05-10 398616]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-05-10 440088]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>
TCP: DhcpNameServer = 75.75.75.75 75.75.76.76
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
SafeBoot-70336739.sys
SafeBoot-98068173.sys
WebBrowser-{BB11DF3C-D64B-4621-AD5F-F9910320D40E} - (no file)
AddRemove-_{53A908D4-99C6-469B-BC13-F4189F260742} - c:\program files (x86)\Corel\Corel Painter Essentials 4\MSILauncher {53A908D4-99C6-469B-BC13-F4189F260742}
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-1147979992-2349924293-2197084131-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-1147979992-2349924293-2197084131-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_175_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_175_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_175_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_175_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_175.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_175.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_175.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_175.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-09-26 21:14:45
ComboFix-quarantined-files.txt 2013-09-27 01:14
ComboFix2.txt 2013-09-23 02:35
.
Pre-Run: 613,342,453,760 bytes free
Post-Run: 613,239,730,176 bytes free
.
- - End Of File - - 7901DF22D5A57817F32CE8B355758088

--------------------------------------------------------------------------------------------------------------

I did not restart, but maybe it would help...?

I still have the address bar problem (in case I didn't make it clear what it was exactly in the last post), but no popups. Still fast. I (probably stupidly) ran the internet while CF was scanning and the webpages "could not be displayed", as if I had no internet. Now it's fine performing.
  • 0

#21
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello TerraceHill

I would like to see a report that combofix makes.

extra combofix report

  • push the "windows key" + "R" (between the "Ctrl" button and "Alt" Button)
  • please copy and past the following into the box
C:\Qoobox\Add-Remove Programs.txt
  • click ok

copy and paste the report into this topic for me to review

Gringo
  • 0

#22
TerraceHill

TerraceHill

    Member

  • Topic Starter
  • Member
  • PipPip
  • 32 posts
REPORT:

-----------------------------------------------------------------------------------------------

Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Photoshop Elements 7.0
Adobe Photoshop.com Inspiration Browser
Adobe Premiere Elements 7.0
Adobe Premiere Elements 7.0 Templates
Adobe Reader X (10.1.6) MUI
ArtRage Studio
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver
Autodesk SketchBook Express 2011 sp2
avast! Free Antivirus
Bamboo Dock
Bamboo Tablets Tutorial
Celtx (2.9.7)
Corel Painter Essentials 4
D3DX10
EA Download Manager
FL Studio 11
FlowStone FL 3.0
Google Chrome
Google Drive
Google Earth
Google Toolbar for Internet Explorer
HyperCam 2
IL Download Manager
IL Shared Libraries
Intel® Manageability Engine Firmware Recovery Agent
Intel® Management Engine Components
Intel® OpenCL CPU Runtime
Intel® Processor Graphics
Intel® Rapid Storage Technology
Intel® USB 3.0 eXtensible Host Controller Driver
Intel® WiDi
Java Auto Updater
Java™ 6 Update 25
join.me
Junk Mail filter update
Last Moon 0.3
Microsoft Office 2010
Microsoft Office Click-to-Run 2010
Microsoft Office Starter 2010 - English
Microsoft SkyDrive
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft WSE 3.0 Runtime
Microsoft Zoo Tycoon
Movie Maker
MSVCRT
MSVCRT_amd64
MSVCRT110
Photo Common
Photo Gallery
PhotoshopdotcomInspirationBrowser
PlayReady PC Runtime x86
RealDownloader
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealNetworks - Microsoft Visual C++ 2010 Runtime
RealPlayer
Realtek High Definition Audio Driver
Realtek PCIE Card Reader
RealUpgrade 1.1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
Skype Click to Call
Skype™ 6.6
SmartSound Quicktracks for Premiere Elements
The Sims™ 3
The Weather Channel App
TOSHIBA Application Installer
TOSHIBA Assist
Toshiba Book Place
TOSHIBA Bulletin Board
TOSHIBA Face Recognition
TOSHIBA Hardware Setup
TOSHIBA Media Controller
TOSHIBA Media Controller Plug-in
TOSHIBA Quality Application
TOSHIBA Recovery Media Creator
TOSHIBA ReelTime
TOSHIBA Resolution+ Plug-in for Windows Media Player
Toshiba Security Dashboard
TOSHIBA Service Station
TOSHIBA Sleep Utility
TOSHIBA Supervisor Password
TOSHIBA User's Guide
TOSHIBA Value Added Package
TOSHIBA Web Camera Application
TOSHIBA Wireless Display Monitor
TOSHIBARegistration
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2836939)
WebTablet FB Plugin 32 bit
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live Installer
Windows Live Mail
Windows Live Messenger
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
YTD Toolbar v7.6
YTD Video Downloader 4.0
Zoo Tycoon 2 Endangered Species Trial
Zoo Tycoon 2 Trial Version
  • 0

#23
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello

These logs are looking allot better. But we still have some work to do.

Please print out these instructions, or copy them to a Notepad file. It will make it easier for you to follow the instructions and complete all of the necessary steps..

uninstall some programs

NOTE** Because of the cleanup process some of the programs I have listed may not be in add/remove anymore this is fine just move to the next item on the list.

You can remove these programs using add/remove or you can use the free uninstaller from Revo (Revo does allot better of a job)

Programs to remove


Adobe Reader X (10.1.6) MUI
Java™ 6 Update 25

[/list]


Please download and install Revo Uninstaller Free

  • Double click Revo Uninstaller to run it.
  • From the list of programs double click on The Program to remove
  • When prompted if you want to uninstall click Yes.
  • Be sure the Moderate option is selected then click Next.
  • The program will run, If prompted again click Yes
  • when the built-in uninstaller is finished click on Next.
  • Once the program has searched for leftovers click Next.
  • Check/tick the bolded items only on the list then click Delete
  • when prompted click on Yes and then on next.
  • put a check on any folders that are found and select delete
  • when prompted select yes then on next
  • Once done click Finish.
.

Update Adobe reader

Recently there have been vulnerabilities detected in older versions of Adobe Reader. It is strongly suggested that you update to the current version.

You can download it from http://www.adobe.com.../readstep2.html
After installing the latest Adobe Reader, uninstall all previous versions.
If you already have Adobe Photoshop® Album Starter Edition installed or do not wish to have it installed UNcheck the box which says Also Download Adobe Photoshop® Album Starter Edition.

If you don't like Adobe Reader (53 MB), you can download Foxit PDF Reader(7 MB) from here. It's a much smaller file to download and uses a lot less resources than Adobe Reader.

Note: When installing FoxitReader, be careful not to install anything to do with AskBar.
[/list]

Install Java:

Please go here to install Java

  • click on the Free Java Download Button
  • click on Agree and start Free download
  • click on Run
  • click on run again
  • click on install
  • when install is complete click on close



Clean Out Temp Files

  • This small application you may want to keep and use once a week to keep the computer clean.

    Download CCleaner from here CCleaner

  • Run the installer to install the application.
  • When it gives you the option to install Yahoo toolbar uncheck the box next to it.
  • Run CCleaner. default settings are fine
  • Click Run Cleaner.
  • Close CCleaner.

Run Malwarebytes

Please download Malwarebytes' Anti-Malware to your desktop.

  • Double-click mbam-setup.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to
    • Update Malwarebytes' Anti-Malware
    • and Launch Malwarebytes' Anti-Malware
  • then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform quick scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is Checked (ticked) except items in the C:\System Volume Information folder and click on Remove Selected.
  • When completed, a log will open in Notepad. please copy and paste the log into your next reply
    • If you accidently close it, the log file is saved here and will be named like this:
    • C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt

Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately. Failure to reboot will prevent MBAM from removing all the malware.



Download HijackThis

  • Go Here to download HijackThis program
  • Save HijackThis to your desktop.
  • Right Click on Hijackthis and select "Run as Admin" (XP users just need to double click to run)
  • Click on "Do A system scan and save a logfile" (if you do not see "Do A system scan and save a logfile" then click on main menu)
  • copy and paste hijackthis report into the topic


"information and logs"

  • In your next post I need the following

  • Log From MBAM
  • report from Hijackthis
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo

  • 0

#24
TerraceHill

TerraceHill

    Member

  • Topic Starter
  • Member
  • PipPip
  • 32 posts
PROCESS:
------------------------
I deleted and uninstalled the two programs that you told me to uninstall, as well as some other programs I didn't need. I used Revo Uninstaller

to do this, and I like the product. I updated Adobe Reader. Installed Java. Installed and ran CCleaner (which I'll be keeping). Installed and ran MalwareBytes. I installed and ran HijackThis.

PERFORMANCE:
------------------------
I did not have any problems doing any of that stuff. The computer is still free of popups and is really fast, and apparently even my volume was affected by something on the computer that has been removed, because it used to be really low even on 100%, now it's great. There's still a little trace of that Address Bar problem, where it's all glitchy... but only for like a fraction of a second. I know it's not normal, but that's been like 90% improvement since we started! That's great, and thank you so much for helping me. I know I've said that a lot, but it means a lot to me. My computer is completely necessary for my job/hobby.

LOGFILE FOR MALWAREBYTES:
------------------------
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.09.28.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16686
Olivia :: OLIVIA-PC [administrator]

9/27/2013 10:03:40 PM
mbam-log-2013-09-27 (22-03-40).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 229804
Time elapsed: 7 minute(s), 55 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

HIJACKTHIS LOGFILE REPORT:
---------------------------
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:16:15 PM, on 9/27/2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16686)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
C:\Program Files (x86)\Bamboo Dock\Bamboo Dock\Bamboo Dock.exe
C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsOrganizer.exe
C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsEditor.exe
C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exe
C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\updateui.exe
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Users\Olivia\Desktop\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft..../?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft..../?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FCTBPos00Pos - {A9183D22-9F36-4C28-81FE-C295754EEF1D} - C:\Program Files (x86)\Creflo Dollar Ministries Toolbar\Toolbar.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [DelayTSS] "C:\Program Files\Toshiba\DelayTSS\DelayTSS.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [BambooCore] C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\RunOnce: [JavaInstallRetry] "C:\Users\Olivia\AppData\LocalLow\Sun\Java\JRERunOnce.exe" RUNONCE=1 SPONSORS=0 SPONSORS=0
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel® ME Service - Unknown owner - C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: TOSHIBA HDD Protection (Thpsrv) - Unknown owner - C:\windows\system32\ThpSrv.exe (file missing)
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wacom Consumer Service (WTabletServiceCon) - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
O23 - Service: Intel® PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 12478 bytes

----------------------------------------------------------------------------------------------------------------------------------------
  • 0

#25
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Greetings

These logs are looking very good, we are almost done!!! Just one more scan to go.

:Remove unneeded start-up entries:

This part of the fix is purely optional
These are programs that start up when you turn on your computer but don't need to be, any of these programs you can click on their icons (or start from the control panel) and start the program when you need it. By stopping these programs you will boot up faster and your computer will work faster.

  • Run HijackThis (rightclick and run as admin)
  • Click on the Scan button
  • Put a check beside all of the items listed below (if present):

    • O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot
      O4 - HKLM\..\Run: [BambooCore] C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
      O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
      O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
      O4 - HKCU\..\RunOnce: [JavaInstallRetry] "C:\Users\Olivia\AppData\LocalLow\Sun\Java\JRERunOnce.exe" RUNONCE=1 SPONSORS=0 SPONSORS=0

  • Close all open windows and browsers/email, etc...
  • Click on the "Fix Checked" button
  • When completed, close the application.

    NOTE**You can research each of those lines >here< and see if you want to keep them or not
    just copy the name between the brackets and paste into the search space
    O4 - HKLM\..\Run: [IntelliPoint]


Eset Online Scanner

**Note** You will need to use Internet explorer for this scan - Vista and win 7 right click on IE shortcut and run as admin

Go Eset web page to run an online scanner from ESET.

  • Turn off the real time scanner of any existing antivirus program while performing the online scan
  • click on the Run ESET Online Scanner button
  • Tick the box next to YES, I accept the Terms of Use.
    • Click Start
  • When asked, allow the add/on to be installed
    • Click Start
  • Make sure that the option Remove found threats is unticked
  • Click on Advanced Settings, ensure the options
    Scan for potentially unwanted applications, Scan for potentially unsafe applications, and Enable Anti-Stealth Technology are ticked.
  • Click Scan
  • wait for the virus definitions to be downloaded
  • Wait for the scan to finish

When the scan is complete

  • If no threats were found
  • put a checkmark in "Uninstall application on close"
  • close program
  • report to me that nothing was found

  • If threats were found
  • click on "list of threats found"
  • click on "export to text file" and save it as ESET SCAN and save to the desktop
  • Click on back
  • put a checkmark in "Uninstall application on close"
  • click on finish
  • close program
  • copy and paste the report here

Gringo
  • 0

Advertisements


#26
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello

48 Hour bump

It has been more than 48 hours since my last post.

  • do you still need help with this?
  • do you need more time?
  • are you having problems following my instructions?
  • if after 48hrs you have not replied to this thread then it will have to be closed!

Gringo
  • 0

#27
TerraceHill

TerraceHill

    Member

  • Topic Starter
  • Member
  • PipPip
  • 32 posts
NOTE:
--------------------------------
I was just having some trouble with the scanner, sorry xD

PROCESS:
--------------------------------
I did the scan for those files you listed, and found all of them, and checked them off and clicked what you told me to click. Installed Eset Scanner, ran it and all that. Found 6 threats..

RESULTS OF ESET SCANNER:
--------------------------------
C:\AdwCleaner\Quarantine\C\Program Files (x86)\YTD Toolbar\IE\7.6\ytdToolbarIE.dll.vir a variant of Win32/Toolbar.Widgi application
C:\Config.Msi\4c3a130e.rbf a variant of Win32/Toolbar.Widgi application
C:\FRST\Quarantine\bundlesweetimsetup.exe probably a variant of Win32/SweetIM.C application
C:\FRST\Quarantine\sclui.dll Win32/TrojanDownloader.Tracur.V trojan
C:\FRST\Quarantine\Spigot\Search Settings\SearchSettings.exe a variant of Win32/Toolbar.Widgi application
C:\FRST\Quarantine\Spigot\Search Settings\SearchSettings64.exe a variant of Win64/Toolbar.Widgi.A application

Edited by TerraceHill, 30 September 2013 - 10:27 PM.

  • 0

#28
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello TerraceHill

There are some minor things in your online scan that should be removed.


delete files

  • Copy all text in the code box (below)...to Notepad.
    @echo off
    rd /s /q "C:\AdwCleaner\"
    rd /s /q "C:\FRST\"
    del %0
  • Save the Notepad file on your desktop...as delfile.bat... save type as "All Files"
    It should look like this: Posted Image<--XPPosted Image<--vista
  • Double click on delfile.bat to execute it.
    A black CMD window will flash, then disappear...this is normal.
  • The files and folders, if found...will have been deleted and the "delfile.bat" file will also be deleted.


The rest of the Online scan is only reporting backups created during the course of this fix C:\Qoobox\Quarantine\, and/or items located in System Restore's cache C:\System Volume Information\, Whatever is in these folders can't harm you unless you choose to perform a manual restore. the following steps will remove these backups.




Very well done!! This is my general post for when your logs show no more signs of malware - Please let me know if you still are having problems with your computer and what these problems are.


:Why we need to remove some of our tools:

Some of the tools we have used to clean your computer were made by fellow malware fighters and are very powerful and if used incorrectly or at the wronge time can make the computer an expensive paper weight.
They are updated all the time and some of them more than once a day so by the time you are ready to use them again they will already be outdated.

The following procedures will implement some cleanup procedures to remove these tools. It will also reset your System Restore by flushing out previous restore points and create a new restore point. It will also remove all the backups our tools may have made.
:DeFogger:

Note** Defogger only needs to be run if it was run when we first started. If you have not already run it then skip this.

  • To re-enable your Emulation drivers, double click DeFogger to run the tool.
  • The application window will appear
  • Click the Re-enable button to re-enable your CD Emulation drivers
  • Click Yes to continue
  • A 'Finished!' message will appear
  • Click OK
  • DeFogger will now ask to reboot the machine - click OK.
Your Emulation drivers are now re-enabled.

:Uninstall ComboFix:

  • turn off all active protection software
  • push the "windows key" + "R" (between the "Ctrl" button and "Alt" Button)
  • please copy and past the following into the box ComboFix /Uninstall and click OK.
  • Note the space between the X and the /Uninstall, it needs to be there.
  • Posted Image

:Remove the rest of our tools:

Please download OTCleanIt and save it to desktop. This tool will remove all the tools we used to clean your pc.
  • Double-click OTCleanIt.exe.
  • Click the CleanUp! button.
  • Select Yes when the "Begin cleanup Process?" prompt appears.
  • If you are prompted to Reboot during the cleanup, select Yes.
  • The tool will delete itself once it finishes, if not delete it by yourself.
  • If asked to restart the computer, please do so
Note: If you receive a warning from your firewall or other security programs regarding OTCleanIt attempting to contact the internet, please allow it to do so.



:The programs you can keep:

Some of the programs that we have used would be a good idea to keep and used often in helping to keep the computer clean. I use these programs on my computer.

Revo Uninstaller Free - this is the uninstaller that I had you download and works allot better than add/remove in windows and has saved me more than once from corrupted installs and uninstalls

CCleaner - This is a good program to clean out temp files, I would use this once a week or before any malware scan to remove unwanted temp files - It has a built in registry cleaner but I would leave that alone and not use any registry cleaner

Malwarebytes' Anti-Malware The Gold standerd today in antimalware scanners

:Security programs:

One of the questions I am asked all the time is "What programs do you use" I have at this time 4 computers in my home and I have this setup on all 4 of them.

  • Microsoft Security Essentials - provides real-time protection for your home PC that guards against viruses, spyware, and other malicious software.
  • WinPatrol As a robust security monitor, WinPatrol will alert you to hijackings, malware attacks and critical changes made to your computer without your permission. WinPatrol takes snapshot of your critical system resources and alerts you to any changes that may occur without your knowledge.
  • Malwarebytes' Anti-Malware Malwarebytes' Anti-Malware is a new and powerful anti-malware tool. It is
    totally free but for real-time protection you will have to pay a small one-time fee. We used this to help clean your computer and recomend keeping it and using often. (I have upgraded to the paid version of MBAM and I am glad I did)


    Note** If you decide to install MSE you will need to uninstall your present Antivirus

:Security awareness:


It is good security practice to change your passwords to all your online accounts on a fairly regular basis, this is especially true after an infection. Refer to this Microsoft article
Strong passwords: How to create and use them
Then consider a password keeper, to keep all your passwords safe. KeePass is a small utility that allows you to manage all your passwords.

As Java seems to get exploited on a daily basis I advise to disable java in your web browsers - How to disable java in your web browsers - Disable Java


The other question I am asked all the time is "How can I prevent this from happening again." and the short answer to that is to be aware of what is out there and how to start spotting dangers.

Here are some articles that are must reads and should be read by everybody in your household that uses the internet

internetsafety

Internet Safety for Kids

Here is some more reading for you from some of my colleges

PC Safety and Security - What Do I Need? from my friends at Tech Support Forum

COMPUTER SECURITY - a short guide to staying safer online from my friends at Malware Removal

quoted from Tech Support Forum

Conclusion

There is no such thing as 'perfect security'. This applies to many things, not just computer systems. Using the above guide you should be able to take all the reasonable steps you can to prevent infection. However, the most important part of all this is you, the user. Surf sensibly and think before you download a file or click on a link. Take a few moments to assess the possible risks and you should be able to enjoy all the internet has to offer.


I'd be grateful if you could reply to this post so that I know you have read it and, if you've no other questions, the thread can then be closed.

I Will Keep This Open For About Three Days, If Anything Comes Up - Just Come Back And Let Me Know, after that time you will have to send me a PM

My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->Posted Image<-- Don't worry every little bit helps.

Gringo
  • 0

#29
TerraceHill

TerraceHill

    Member

  • Topic Starter
  • Member
  • PipPip
  • 32 posts
Oh great!! :3

Thank you so much for all the help you've given me! Thank you so much! <3 <3 This was better service than bringing it, the computer, to the repair shop, I think.

I am having a problem uninstalling ComboFix. When I do what you told me, copy and paste the text and click ok, it says it can't find ComboFix ?
  • 0

#30
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Go ahead and Run OTC and it will remove most of Combofix



gringo
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP