Jump to content


Photo
- - - - -

computer infected: Trojan.Dropper.BCMiner,Rootkit.0Access,Rootkit.0Access.64

trojan.dropperBCminer rootkit.0Access

  • This topic is locked This topic is locked
19 replies to this topic

#1 ken08

ken08

    New Member

  • Members
  • Pip
  • 12 posts

Posted 08 October 2012 - 02:31 PM

hello, i need help my computer has a virus and i need to fix it.The virus names were Trojan.Dropper.BCMiner,Rootkit.0Access,Rootkit.0Access.64. The help will be greatly appreciated so much.I ran malware and this is the results


Malwarebytes Anti-Malware 1.65.0.1400
www.malwarebytes.org

Database version: v2012.10.08.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Ky :: ANOTHAWORLD [administrator]

10/8/2012 3:27:02 PM
mbam-log-2012-10-08 (15-27-02).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 307897
Time elapsed: 2 minute(s), 58 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 3
C:\Windows\Installer\{fb9a415d-8a39-a495-eecb-70163c6883ff}\U\00000008.@ (Trojan.Dropper.BCMiner) -> Quarantined and deleted successfully.
C:\Windows\Installer\{fb9a415d-8a39-a495-eecb-70163c6883ff}\U\000000cb.@ (Rootkit.0Access) -> Quarantined and deleted successfully.
C:\Windows\Installer\{fb9a415d-8a39-a495-eecb-70163c6883ff}\U\80000000.@ (Rootkit.0Access.64) -> Quarantined and deleted successfully.

(end)


everytime i scan the virus still pops up

#2 ken08

ken08

    New Member

  • Members
  • Pip
  • 12 posts

Posted 08 October 2012 - 02:37 PM

here is my dss log:



.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421
Run by Ky at 15:34:06 on 2012-10-08
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.4044.2312 [GMT -4:00]
.
AV: Norton Internet Security *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton Internet Security *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
.
============== Running Processes ===============
.
C:\windows\system32\wininit.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
C:\windows\System32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\ccSvcHst.exe
C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe
C:\windows\SysWOW64\rpcnet.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
C:\Windows\system32\TODDSrv.exe
C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\TOSHIBA\TECO\TecoService.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\windows\system32\taskhost.exe
C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Toshiba\Power Saver\TPwrMain.exe
C:\Program Files\Toshiba\FlashCards\TCrdMain.exe
C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Toshiba\TECO\Teco.exe
C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe
C:\Program Files\Toshiba\ReelTime\TosReelTimeMonitor.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
C:\Program Files (x86)\Ask.com\Updater\Updater.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\windows\system32\wbem\wmiprvse.exe
"C:\windows\SysWOW64\svchost.exe" -k LocalServiceDns
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\SearchFilterHost.exe
C:\windows\system32\DllHost.exe
C:\windows\system32\DllHost.exe
C:\windows\SysWOW64\cmd.exe
C:\windows\system32\conhost.exe
C:\windows\SysWOW64\cscript.exe
C:\windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://start.toshiba.com/?cid=C001B2Y
uDefault_Page_URL = hxxp://start.toshiba.com/?cid=C001B2Y
uInternet Settings,ProxyOverride = <local>
mWinlogon: Userinit=userinit.exe,
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Norton Identity Protection: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\coIEPlg.dll
BHO: Norton Vulnerability Protection: {6d53ec84-6aae-4787-aeee-f4628f01010c} - C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\IPS\IPSBHO.DLL
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
BHO: WeCareReminder Class: {d824f0de-3d60-4f57-9eb1-66033ecd8abb} - C:\ProgramData\WeCareReminder\IEHelperv2.5.0.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: TOSHIBA Media Controller Plug-in: {f3c88694-effa-4d78-b409-54b7b2535b14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
BHO: Yontoo Layers (Drop Down Deals): {fd72061e-9fde-484d-a58a-0bab4151cad8} - C:\Program Files (x86)\Yontoo Layers Runtime (Drop Down Deals)\YontooIEClient.dll
TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\coIEPlg.dll
TB: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
mRun: [TSleepSrv] %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
mRun: [ToshibaServiceStation] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
mRun: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Toshiba\Toshiba Online Backup\Activation\TOBuActivation.exe" UNATTENDED
mRun: [ToshibaAppPlace] "C:\Program Files (x86)\Toshiba\Toshiba App Place\ToshibaAppPlace.exe"
mRun: [<NO NAME>]
mRun: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
mRunOnce: [Malwarebytes Anti-Malware (cleanup)] rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
LSP: mswsock.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab
TCP: DhcpNameServer = 209.18.47.61 209.18.47.62
TCP: Interfaces\{47BC61DB-A748-4E38-9715-B87607FE94EA} : DhcpNameServer = 50.40.0.51
TCP: Interfaces\{98EDA8E7-CDF8-4638-8879-2EC8F9F27509} : DhcpNameServer = 209.18.47.61 209.18.47.62
TCP: Interfaces\{98EDA8E7-CDF8-4638-8879-2EC8F9F27509}\2627967676370277962756C6563737 : DhcpNameServer = 192.168.254.254 192.168.254.254
TCP: Interfaces\{98EDA8E7-CDF8-4638-8879-2EC8F9F27509}\C4162776560596E656D27657563747 : DhcpNameServer = 209.18.47.61 209.18.47.62 192.168.33.1
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\coIEPlg.dll
BHO-X64: Norton Identity Protection - No File
BHO-X64: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\IPS\IPSBHO.DLL
BHO-X64: Norton Vulnerability Protection - No File
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO-X64: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
BHO-X64: Ask Toolbar BHO - No File
BHO-X64: WeCareReminder Class: {D824F0DE-3D60-4F57-9EB1-66033ECD8ABB} - C:\ProgramData\WeCareReminder\IEHelperv2.5.0.dll
BHO-X64: WeCareReminder - No File
BHO-X64: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO-X64: TOSHIBA Media Controller Plug-in: {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
BHO-X64: Yontoo Layers (Drop Down Deals): {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo Layers Runtime (Drop Down Deals)\YontooIEClient.dll
BHO-X64: Yontoo Layer (Drop Down Deals)s - No File
TB-X64: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\coIEPlg.dll
TB-X64: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
TB-X64: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
mRun-x64: [TSleepSrv] %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
mRun-x64: [ToshibaServiceStation] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
mRun-x64: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Toshiba\Toshiba Online Backup\Activation\TOBuActivation.exe" UNATTENDED
mRun-x64: [ToshibaAppPlace] "C:\Program Files (x86)\Toshiba\Toshiba App Place\ToshibaAppPlace.exe"
mRun-x64: [(Default)]
mRun-x64: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
mRunOnce-x64: [Malwarebytes Anti-Malware (cleanup)] rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript
.
============= SERVICES / DRIVERS ===============
.
R0 SymDS;Symantec Data Store;C:\windows\system32\drivers\NISx64\1302000.00A\SYMDS64.SYS --> C:\windows\system32\drivers\NISx64\1302000.00A\SYMDS64.SYS [?]
R0 SymEFA;Symantec Extended File Attributes;C:\windows\system32\drivers\NISx64\1302000.00A\SYMEFA64.SYS --> C:\windows\system32\drivers\NISx64\1302000.00A\SYMEFA64.SYS [?]
R0 tos_sps64;TOSHIBA tos_sps64 Service;C:\windows\system32\DRIVERS\tos_sps64.sys --> C:\windows\system32\DRIVERS\tos_sps64.sys [?]
R1 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\IPSDefs\20111214.001\IDSviA64.sys [2011-12-14 488568]
R1 SymNetS;Symantec Network Security WFP Driver;C:\windows\system32\Drivers\NISx64\1302000.00A\SYMNETS.SYS --> C:\windows\system32\Drivers\NISx64\1302000.00A\SYMNETS.SYS [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\windows\system32\DRIVERS\vwififlt.sys --> C:\windows\system32\DRIVERS\vwififlt.sys [?]
R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2012-1-4 822624]
R2 NIS;Norton Internet Security;C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\ccsvchst.exe [2011-11-18 138760]
R2 PCCUJobMgr;Common Client Job Manager Service;C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe [2011-9-8 126392]
R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-1 508776]
R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;C:\Program Files\Toshiba\TECO\TecoService.exe [2011-5-24 294848]
R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;C:\windows\system32\DRIVERS\TVALZFL.sys --> C:\windows\system32\DRIVERS\TVALZFL.sys [?]
R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-9-8 2656280]
R3 IntcDAud;Intel® Display Audio;C:\windows\system32\DRIVERS\IntcDAud.sys --> C:\windows\system32\DRIVERS\IntcDAud.sys [?]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\windows\system32\DRIVERS\L1C62x64.sys --> C:\windows\system32\DRIVERS\L1C62x64.sys [?]
R3 MEIx64;Intel® Management Engine Interface;C:\windows\system32\DRIVERS\HECIx64.sys --> C:\windows\system32\DRIVERS\HECIx64.sys [?]
R3 PGEffect;Pangu effect driver;C:\windows\system32\DRIVERS\pgeffect.sys --> C:\windows\system32\DRIVERS\pgeffect.sys [?]
R3 QIOMem;Generic IO & Memory Access;C:\windows\system32\DRIVERS\QIOMem.sys --> C:\windows\system32\DRIVERS\QIOMem.sys [?]
R3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;C:\windows\system32\DRIVERS\rtl8192Ce.sys --> C:\windows\system32\DRIVERS\rtl8192Ce.sys [?]
R3 Sftfs;Sftfs;C:\windows\system32\DRIVERS\Sftfslh.sys --> C:\windows\system32\DRIVERS\Sftfslh.sys [?]
R3 Sftplay;Sftplay;C:\windows\system32\DRIVERS\Sftplaylh.sys --> C:\windows\system32\DRIVERS\Sftplaylh.sys [?]
R3 Sftredir;Sftredir;C:\windows\system32\DRIVERS\Sftredirlh.sys --> C:\windows\system32\DRIVERS\Sftredirlh.sys [?]
R3 Sftvol;Sftvol;C:\windows\system32\DRIVERS\Sftvollh.sys --> C:\windows\system32\DRIVERS\Sftvollh.sys [?]
R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-1 219496]
R3 TMachInfo;TMachInfo;C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2011-9-8 57216]
R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;C:\Program Files\Toshiba\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2011-6-10 138152]
R3 TPCHSrv;TPCH Service;C:\Program Files\Toshiba\TPHM\TPCHSrv.exe [2011-7-1 828856]
S1 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\BASHDefs\20111210.003\BHDrvx64.sys [2011-12-14 1156216]
S1 ccSet_NIS;Norton Internet Security Settings Manager;C:\windows\system32\drivers\NISx64\1302000.00A\ccSetx64.sys --> C:\windows\system32\drivers\NISx64\1302000.00A\ccSetx64.sys [?]
S1 SymIRON;Symantec Iron Driver;C:\windows\system32\drivers\NISx64\1302000.00A\Ironx64.SYS --> C:\windows\system32\drivers\NISx64\1302000.00A\Ironx64.SYS [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-9-8 136176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-7-9 250288]
S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-9-8 136176]
S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\windows\system32\Drivers\RtsUStor.sys --> C:\windows\system32\Drivers\RtsUStor.sys [?]
S3 RSUSBVSTOR;RTSUVSTOR.Sys Realtek USB Card Reader;C:\windows\system32\Drivers\RTSUVSTOR.sys --> C:\windows\system32\Drivers\RTSUVSTOR.sys [?]
S3 SrvHsfHDA;SrvHsfHDA;C:\windows\system32\DRIVERS\VSTAZL6.SYS --> C:\windows\system32\DRIVERS\VSTAZL6.SYS [?]
S3 SrvHsfV92;SrvHsfV92;C:\windows\system32\DRIVERS\VSTDPV6.SYS --> C:\windows\system32\DRIVERS\VSTDPV6.SYS [?]
S3 SrvHsfWinac;SrvHsfWinac;C:\windows\system32\DRIVERS\VSTCNXT6.SYS --> C:\windows\system32\DRIVERS\VSTCNXT6.SYS [?]
S3 TsUsbFlt;TsUsbFlt;C:\windows\system32\drivers\tsusbflt.sys --> C:\windows\system32\drivers\tsusbflt.sys [?]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\windows\system32\drivers\TsUsbGD.sys --> C:\windows\system32\drivers\TsUsbGD.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\system32\Wat\WatAdminSvc.exe --> C:\windows\system32\Wat\WatAdminSvc.exe [?]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2012-10-08 18:28:54 -------- d-----w- C:\TDSSKiller_Quarantine
2012-10-05 22:39:45 -------- d-----w- C:\Users\Ky.AnothaWorld\AppData\Roaming\Malwarebytes
2012-10-05 17:31:15 -------- d-sh--w- C:\windows\SysWow64\%APPDATA%
2012-10-01 21:10:09 38912 ----a-w- C:\windows\SysWow64\identprv.dll
2012-09-25 18:38:05 245760 ----a-w- C:\windows\System32\OxpsConverter.exe
2012-09-23 00:44:01 58288 ----a-w- C:\windows\SysWow64\rpcnet.dll
2012-09-23 00:44:00 58288 ------w- C:\windows\SysWow64\rpcnet.exe
2012-09-23 00:43:35 13160 ----a-w- C:\windows\SysWow64\Upgrd.exe
2012-09-23 00:40:49 17920 ----a-w- C:\windows\SysWow64\rpcnetp.dll
2012-09-23 00:40:35 17920 ----a-w- C:\windows\SysWow64\rpcnetp.exe
2012-09-23 00:40:35 17920 ----a-w- C:\windows\System32\rpcnetp.exe
2012-09-22 12:02:01 2382848 ----a-w- C:\windows\System32\mshtml.tlb
2012-09-22 12:02:00 2382848 ----a-w- C:\windows\SysWow64\mshtml.tlb
2012-09-22 12:02:00 140936 ----a-w- C:\Program Files (x86)\Internet Explorer\sqmapi.dll
2012-09-12 17:31:42 950128 ----a-w- C:\windows\System32\drivers\ndis.sys
2012-09-12 17:31:42 41472 ----a-w- C:\windows\System32\drivers\RNDISMP.sys
2012-09-12 17:31:41 574464 ----a-w- C:\windows\System32\d3d10level9.dll
2012-09-12 17:31:41 490496 ----a-w- C:\windows\SysWow64\d3d10level9.dll
2012-09-12 17:31:41 1913200 ----a-w- C:\windows\System32\drivers\tcpip.sys
2012-09-12 17:31:40 376688 ----a-w- C:\windows\System32\drivers\netio.sys
2012-09-12 17:31:40 288624 ----a-w- C:\windows\System32\drivers\FWPKCLNT.SYS
.
==================== Find3M ====================
.
2012-10-05 17:35:57 73136 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-10-05 17:35:57 696240 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2012-09-07 21:04:46 25928 ----a-w- C:\windows\System32\drivers\mbam.sys
2012-08-27 22:44:36 27608 ----a-w- C:\windows\SysWow64\instm64.exe
2012-08-27 22:43:23 19968 ----a-w- C:\windows\SysWow64\instgf64.exe
2012-08-24 10:31:32 2312704 ----a-w- C:\windows\System32\jscript9.dll
2012-08-24 10:21:18 1392128 ----a-w- C:\windows\System32\wininet.dll
2012-08-24 10:20:11 1494528 ----a-w- C:\windows\System32\inetcpl.cpl
2012-08-24 10:14:45 173056 ----a-w- C:\windows\System32\ieUnatt.exe
2012-08-24 10:13:29 599040 ----a-w- C:\windows\System32\vbscript.dll
2012-08-24 06:59:17 1800704 ----a-w- C:\windows\SysWow64\jscript9.dll
2012-08-24 06:51:27 1129472 ----a-w- C:\windows\SysWow64\wininet.dll
2012-08-24 06:51:02 1427968 ----a-w- C:\windows\SysWow64\inetcpl.cpl
2012-08-24 06:47:26 142848 ----a-w- C:\windows\SysWow64\ieUnatt.exe
2012-08-24 06:47:12 420864 ----a-w- C:\windows\SysWow64\vbscript.dll
2012-07-18 18:15:06 3148800 ----a-w- C:\windows\System32\win32k.sys
.
============= FINISH: 15:34:50.55 ===============

#3 MrCharlie

MrCharlie

    Forum Deity

  • Experts
  • PipPipPipPipPipPip
  • 28,192 posts
  • Gender:Male
  • Location:So. Plainfield, New Jersey, USA

Posted 08 October 2012 - 02:53 PM

Welcome to the forum.

Please read the following information first.

You're infected with Rootkit.ZeroAccess, a BackDoor Trojan.

BACKDOOR WARNING

------------------------------

One or more of the identified infections is known to use a backdoor.

This allows hackers to remotely control your computer, steal critical system information and download and execute files.

I would advice you to disconnect this PC from the Internet immediately. If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.

Though the infection has been identified and because of it's backdoor functionality, your PC is very likely compromised and there is no way to be sure your computer can ever again be trusted. Many experts in the security community believe that once infected with this type of trojan, the best course of action would be a reformat and reinstall of the OS. Please read these for more information:

How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?
http://www.dslreports.com/faq/10451

When Should I Format, How Should I Reinstall
http://www.dslreports.com/faq/10063

I will try my best to clean this machine but I can't guarantee that it will be 100% secure afterwards.

Let me know what you decide to do. If you decide to go through with the cleanup, please proceed with the following steps.


-----------------------------------------

Please remove any usb or external drives from the computer before you run this scan!

Please download and run RogueKiller to your desktop.

Quit all running programs.

For Windows XP, double-click to start.
For Vista or Windows 7, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.


Click Scan to scan the system.
When the scan completes > Close out the program > Don't Fix anything!

Don't run any other options, they're not all bad!!!!!!!

Post back the report which should be located on your desktop.

MrC

------->Your topic will be closed if you haven't replied within 3 days!<--------

Malware Removal Expert


Posted Image


I volunteer my free time to help you, if you would like to donate to show your appreciation, it will be much appreciated.

Posted Image Thanks MrC & crew

#4 ken08

ken08

    New Member

  • Members
  • Pip
  • 12 posts

Posted 08 October 2012 - 07:38 PM

thanks so much for your help.this is the report:


RogueKiller V8.1.1 [10/03/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo...13-roguekiller/
Website: http://tigzy.geeksto...roguekiller.php
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Ky [Admin rights]
Mode : Scan -- Date : 10/08/2012 20:31:19

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤
[ZeroAccess][FILE] @ : C:\windows\Installer\{fb9a415d-8a39-a495-eecb-70163c6883ff}\@ --> FOUND
[ZeroAccess][FOLDER] U : C:\windows\Installer\{fb9a415d-8a39-a495-eecb-70163c6883ff}\U --> FOUND
[ZeroAccess][FOLDER] L : C:\windows\Installer\{fb9a415d-8a39-a495-eecb-70163c6883ff}\L --> FOUND
[ZeroAccess][FILE] Desktop.ini : C:\windows\Assembly\GAC_32\Desktop.ini --> FOUND
[ZeroAccess][FILE] Desktop.ini : C:\windows\Assembly\GAC_64\Desktop.ini --> FOUND
[Susp.ASLR][FILE] services.exe : C:\windows\system32\services.exe --> FOUND

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ Infection : ZeroAccess ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\windows\system32\drivers\etc\hosts



¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: TOSHIBA MK5075GSX +++++
--- User ---
[MBR] 7b85f7a495ff369c2a090ac6f4a0369b
[BSP] a8936ce11f18d4f178bb4c27e2c2e297 : Windows Vista MBR Code
Partition table:
0 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 1500 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 3074048 | Size: 460564 Mo
2 - [XXXXXX] NTFS (0x17) [HIDDEN!] Offset (sectors): 946309120 | Size: 14875 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[1].txt >>
RKreport[1].txt

#5 MrCharlie

MrCharlie

    Forum Deity

  • Experts
  • PipPipPipPipPipPip
  • 28,192 posts
  • Gender:Male
  • Location:So. Plainfield, New Jersey, USA

Posted 08 October 2012 - 07:43 PM

Please download Listparts64

Run the tool, click Scan and post the log (Result.txt) it makes

-------------------------------

Next......

Run RogueKiller again and click Scan
When the scan completes > click on the Registry tab
Put a check next to all of these and uncheck the rest: (if found)

[ZeroAccess][FILE] @ : C:\windows\Installer\{fb9a415d-8a39-a495-eecb-70163c6883ff}\@ --> FOUND
[ZeroAccess][FOLDER] U : C:\windows\Installer\{fb9a415d-8a39-a495-eecb-70163c6883ff}\U --> FOUND
[ZeroAccess][FOLDER] L : C:\windows\Installer\{fb9a415d-8a39-a495-eecb-70163c6883ff}\L --> FOUND
[ZeroAccess][FILE] Desktop.ini : C:\windows\Assembly\GAC_32\Desktop.ini --> FOUND
[ZeroAccess][FILE] Desktop.ini : C:\windows\Assembly\GAC_64\Desktop.ini --> FOUND
[Susp.ASLR][FILE] services.exe : C:\windows\system32\services.exe --> FOUND


Now click Delete on the right hand column under Options

Please post the log it creates

-------------------------------------------------------

Last........

Please read the directions carefully so you don't end up deleting something that is good!!

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.

    Posted Image
  • Put a checkmark beside loaded modules.

    Posted Image
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.

    Posted Image
  • Click the Start Scan button.

    Posted Image
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.

    Posted Image

    Any entries like this: \Device\Harddisk0\DR0 ( TDSS File System ) - please choose Skip.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.

    Posted Image

    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here. There may be 3 logs > so post or attach all of them.
  • Sometimes these logs can be very large, in that case please attach it or zip it up and attach it.

Here's a summary of what to do if you would like to print it out:


If a suspicious object is detected, the default action will be Skip, click on Continue
If you get the warning about a file UnsignedFile.Multi.Generic or LockedFile.Multi.Generic please choose
Skip and click on Continue

Any entries like this: \Device\Harddisk0\DR0 ( TDSS File System ) - please choose Skip.

If malicious objects are found, they will show in the Scan results and offer three (3) options.

Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.

MrC

Malware Removal Expert


Posted Image


I volunteer my free time to help you, if you would like to donate to show your appreciation, it will be much appreciated.

Posted Image Thanks MrC & crew

#6 ken08

ken08

    New Member

  • Members
  • Pip
  • 12 posts

Posted 08 October 2012 - 09:11 PM

listpart log:


ListParts by Farbar Version: 02-10-2012
Ran by Ky (administrator) on 08-10-2012 at 21:55:32
Windows 7 (X64)
Running From: C:\Users\Ky.AnothaWorld\Downloads
Language: 0409
************************************************************

========================= Memory info ======================

Percentage of memory in use: 35%
Total physical RAM: 4043.86 MB
Available physical RAM: 2593.87 MB
Total Pagefile: 8085.91 MB
Available Pagefile: 6535.89 MB
Total Virtual: 8192 MB
Available Virtual: 8191.9 MB

======================= Partitions =========================

1 Drive c: (TI106234W0C) (Fixed) (Total:449.77 GB) (Free:403.87 GB) NTFS ==>[System with boot components (obtained from reading drive)]

Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 465 GB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Recovery 1500 MB 1024 KB
Partition 2 Primary 449 GB 1501 MB
Partition 3 Primary 14 GB 451 GB

======================================================================================================

Disk: 0
Partition 1
Type : 27
Hidden: Yes
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 System NTFS Partition 1500 MB Healthy Hidden

======================================================================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 C TI106234W0C NTFS Partition 449 GB Healthy Boot

======================================================================================================

Disk: 0
Partition 3
Type : 17 (Suspicious Type)
Hidden: Yes
Active: No

There is no volume associated with this partition.

======================================================================================================

****** End Of Log ******

rougekiller log:



RogueKiller V8.1.1 [10/03/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo...13-roguekiller/
Website: http://tigzy.geeksto...roguekiller.php
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Ky [Admin rights]
Mode : Scan -- Date : 10/08/2012 22:10:01

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤
[ZeroAccess][FOLDER] U : C:\windows\Installer\{fb9a415d-8a39-a495-eecb-70163c6883ff}\U --> FOUND

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ Infection : ZeroAccess ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\windows\system32\drivers\etc\hosts



¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: TOSHIBA MK5075GSX +++++
--- User ---
[MBR] 7b85f7a495ff369c2a090ac6f4a0369b
[BSP] a8936ce11f18d4f178bb4c27e2c2e297 : Windows Vista MBR Code
Partition table:
0 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 1500 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 3074048 | Size: 460564 Mo
2 - [XXXXXX] NTFS (0x17) [HIDDEN!] Offset (sectors): 946309120 | Size: 14875 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[4].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt

#7 MrCharlie

MrCharlie

    Forum Deity

  • Experts
  • PipPipPipPipPipPip
  • 28,192 posts
  • Gender:Male
  • Location:So. Plainfield, New Jersey, USA

Posted 09 October 2012 - 07:26 AM

Can you post the logs from TDSSKiller, MrC

Malware Removal Expert


Posted Image


I volunteer my free time to help you, if you would like to donate to show your appreciation, it will be much appreciated.

Posted Image Thanks MrC & crew

#8 ken08

ken08

    New Member

  • Members
  • Pip
  • 12 posts

Posted 09 October 2012 - 01:30 PM

14:22:53.0851 2660 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
14:22:55.0161 2660 ============================================================
14:22:55.0161 2660 Current date / time: 2012/10/09 14:22:55.0161
14:22:55.0161 2660 SystemInfo:
14:22:55.0161 2660
14:22:55.0161 2660 OS Version: 6.1.7601 ServicePack: 1.0
14:22:55.0161 2660 Product type: Workstation
14:22:55.0161 2660 ComputerName: ANOTHAWORLD
14:22:55.0161 2660 UserName: Ky
14:22:55.0161 2660 Windows directory: C:\windows
14:22:55.0161 2660 System windows directory: C:\windows
14:22:55.0161 2660 Running under WOW64
14:22:55.0161 2660 Processor architecture: Intel x64
14:22:55.0161 2660 Number of processors: 4
14:22:55.0161 2660 Page size: 0x1000
14:22:55.0161 2660 Boot type: Normal boot
14:22:55.0161 2660 ============================================================
14:22:58.0877 2660 BG loaded
14:23:00.0561 2660 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:23:00.0561 2660 ============================================================
14:23:00.0561 2660 \Device\Harddisk0\DR0:
14:23:00.0561 2660 MBR partitions:
14:23:00.0561 2660 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x3838A000
14:23:00.0561 2660 ============================================================
14:23:00.0764 2660 C: <-> \Device\Harddisk0\DR0\Partition1
14:23:00.0764 2660 ============================================================
14:23:00.0764 2660 Initialize success
14:23:00.0764 2660 ============================================================
14:23:15.0569 3792 ============================================================
14:23:15.0569 3792 Scan started
14:23:15.0569 3792 Mode: Manual; SigCheck; TDLFS;
14:23:15.0569 3792 ============================================================
14:23:15.0881 3792 ================ Scan system memory ========================
14:23:15.0896 3792 System memory - ok
14:23:15.0896 3792 ================ Scan services =============================
14:23:16.0317 3792 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
14:23:16.0489 3792 1394ohci - ok
14:23:16.0583 3792 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
14:23:16.0614 3792 ACPI - ok
14:23:16.0707 3792 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
14:23:16.0832 3792 AcpiPmi - ok
14:23:17.0035 3792 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:23:17.0066 3792 AdobeFlashPlayerUpdateSvc - ok
14:23:17.0456 3792 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
14:23:17.0503 3792 adp94xx - ok
14:23:17.0550 3792 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
14:23:17.0581 3792 adpahci - ok
14:23:17.0628 3792 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
14:23:17.0659 3792 adpu320 - ok
14:23:17.0721 3792 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
14:23:17.0924 3792 AeLookupSvc - ok
14:23:17.0971 3792 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
14:23:18.0049 3792 AFD - ok
14:23:18.0096 3792 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
14:23:18.0127 3792 agp440 - ok
14:23:18.0158 3792 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
14:23:18.0236 3792 ALG - ok
14:23:18.0299 3792 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
14:23:18.0314 3792 aliide - ok
14:23:18.0345 3792 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
14:23:18.0377 3792 amdide - ok
14:23:18.0423 3792 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
14:23:18.0486 3792 AmdK8 - ok
14:23:18.0501 3792 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
14:23:18.0564 3792 AmdPPM - ok
14:23:18.0611 3792 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
14:23:18.0642 3792 amdsata - ok
14:23:18.0673 3792 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
14:23:18.0704 3792 amdsbs - ok
14:23:18.0720 3792 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
14:23:18.0751 3792 amdxata - ok
14:23:18.0782 3792 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
14:23:18.0969 3792 AppID - ok
14:23:19.0001 3792 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
14:23:19.0110 3792 AppIDSvc - ok
14:23:19.0172 3792 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
14:23:19.0250 3792 Appinfo - ok
14:23:19.0281 3792 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
14:23:19.0297 3792 arc - ok
14:23:19.0313 3792 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
14:23:19.0328 3792 arcsas - ok
14:23:19.0359 3792 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
14:23:19.0422 3792 AsyncMac - ok
14:23:19.0453 3792 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
14:23:19.0469 3792 atapi - ok
14:23:19.0500 3792 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
14:23:19.0562 3792 AudioEndpointBuilder - ok
14:23:19.0578 3792 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
14:23:19.0609 3792 AudioSrv - ok
14:23:19.0625 3792 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
14:23:19.0734 3792 AxInstSV - ok
14:23:19.0796 3792 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
14:23:19.0843 3792 b06bdrv - ok
14:23:19.0874 3792 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
14:23:19.0937 3792 b57nd60a - ok
14:23:19.0983 3792 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
14:23:20.0046 3792 BDESVC - ok
14:23:20.0077 3792 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
14:23:20.0171 3792 Beep - ok
14:23:20.0233 3792 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
14:23:20.0342 3792 BFE - ok
14:23:20.0545 3792 [ 82C695630676079F7AD68C85A5E662E5 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\BASHDefs\20111210.003\BHDrvx64.sys
14:23:20.0592 3792 BHDrvx64 - ok
14:23:20.0623 3792 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
14:23:20.0639 3792 blbdrive - ok
14:23:20.0670 3792 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
14:23:20.0717 3792 bowser - ok
14:23:20.0732 3792 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
14:23:20.0779 3792 BrFiltLo - ok
14:23:20.0919 3792 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
14:23:20.0982 3792 BrFiltUp - ok
14:23:21.0029 3792 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
14:23:21.0075 3792 Browser - ok
14:23:21.0091 3792 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
14:23:21.0185 3792 Brserid - ok
14:23:21.0216 3792 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
14:23:21.0263 3792 BrSerWdm - ok
14:23:21.0294 3792 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
14:23:21.0341 3792 BrUsbMdm - ok
14:23:21.0356 3792 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
14:23:21.0387 3792 BrUsbSer - ok
14:23:21.0419 3792 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
14:23:21.0465 3792 BTHMODEM - ok
14:23:21.0512 3792 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
14:23:21.0621 3792 bthserv - ok
14:23:21.0746 3792 [ A8AD33C9DD88C810CAC00ACC7F4329FB ] ccSet_NIS C:\windows\system32\drivers\NISx64\1302000.00A\ccSetx64.sys
14:23:21.0762 3792 ccSet_NIS - ok
14:23:21.0840 3792 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
14:23:21.0918 3792 cdfs - ok
14:23:21.0965 3792 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
14:23:21.0996 3792 cdrom - ok
14:23:22.0043 3792 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
14:23:22.0136 3792 CertPropSvc - ok
14:23:22.0167 3792 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
14:23:22.0214 3792 circlass - ok
14:23:22.0261 3792 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
14:23:22.0308 3792 CLFS - ok
14:23:22.0511 3792 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:23:22.0542 3792 clr_optimization_v2.0.50727_32 - ok
14:23:22.0604 3792 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:23:22.0635 3792 clr_optimization_v2.0.50727_64 - ok
14:23:22.0698 3792 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:23:22.0776 3792 clr_optimization_v4.0.30319_32 - ok
14:23:22.0823 3792 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:23:22.0854 3792 clr_optimization_v4.0.30319_64 - ok
14:23:22.0885 3792 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
14:23:22.0932 3792 CmBatt - ok
14:23:22.0963 3792 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
14:23:22.0979 3792 cmdide - ok
14:23:23.0041 3792 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
14:23:23.0103 3792 CNG - ok
14:23:23.0228 3792 [ 20506F12AFAD3DB588D007EA9325FBBC ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys
14:23:23.0291 3792 CnxtHdAudService - ok
14:23:23.0337 3792 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
14:23:23.0337 3792 Compbatt - ok
14:23:23.0384 3792 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
14:23:23.0415 3792 CompositeBus - ok
14:23:23.0447 3792 COMSysApp - ok
14:23:23.0462 3792 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
14:23:23.0478 3792 crcdisk - ok
14:23:23.0540 3792 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\windows\system32\cryptsvc.dll
14:23:23.0603 3792 CryptSvc - ok
14:23:23.0868 3792 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
14:23:23.0915 3792 cvhsvc - ok
14:23:23.0993 3792 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
14:23:24.0071 3792 DcomLaunch - ok
14:23:24.0102 3792 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
14:23:24.0195 3792 defragsvc - ok
14:23:24.0227 3792 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
14:23:24.0305 3792 DfsC - ok
14:23:24.0351 3792 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
14:23:24.0461 3792 Dhcp - ok
14:23:24.0492 3792 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
14:23:24.0554 3792 discache - ok
14:23:24.0585 3792 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
14:23:24.0601 3792 Disk - ok
14:23:24.0632 3792 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
14:23:24.0710 3792 Dnscache - ok
14:23:24.0757 3792 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
14:23:24.0851 3792 dot3svc - ok
14:23:24.0897 3792 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
14:23:25.0022 3792 DPS - ok
14:23:25.0053 3792 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
14:23:25.0100 3792 drmkaud - ok
14:23:25.0194 3792 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
14:23:25.0241 3792 DXGKrnl - ok
14:23:25.0272 3792 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
14:23:25.0365 3792 EapHost - ok
14:23:25.0755 3792 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
14:23:25.0865 3792 ebdrv - ok
14:23:25.0927 3792 [ 5CCF1BE80930AEB1CDEBF561666325E8 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
14:23:25.0958 3792 eeCtrl - ok
14:23:25.0989 3792 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
14:23:26.0067 3792 EFS - ok
14:23:26.0161 3792 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
14:23:26.0239 3792 ehRecvr - ok
14:23:26.0286 3792 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
14:23:26.0317 3792 ehSched - ok
14:23:26.0364 3792 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
14:23:26.0411 3792 elxstor - ok
14:23:26.0426 3792 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
14:23:26.0473 3792 ErrDev - ok
14:23:26.0520 3792 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
14:23:26.0598 3792 EventSystem - ok
14:23:26.0613 3792 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
14:23:26.0660 3792 exfat - ok
14:23:26.0707 3792 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
14:23:26.0769 3792 fastfat - ok
14:23:26.0816 3792 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
14:23:26.0894 3792 Fax - ok
14:23:26.0910 3792 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
14:23:26.0957 3792 fdc - ok
14:23:27.0003 3792 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
14:23:27.0081 3792 fdPHost - ok
14:23:27.0097 3792 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
14:23:27.0159 3792 FDResPub - ok
14:23:27.0206 3792 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
14:23:27.0222 3792 FileInfo - ok
14:23:27.0237 3792 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
14:23:27.0315 3792 Filetrace - ok
14:23:27.0347 3792 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
14:23:27.0362 3792 flpydisk - ok
14:23:27.0409 3792 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
14:23:27.0440 3792 FltMgr - ok
14:23:27.0690 3792 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
14:23:27.0815 3792 FontCache - ok
14:23:27.0861 3792 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:23:27.0893 3792 FontCache3.0.0.0 - ok
14:23:27.0908 3792 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
14:23:27.0924 3792 FsDepends - ok
14:23:27.0955 3792 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
14:23:27.0986 3792 Fs_Rec - ok
14:23:28.0017 3792 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
14:23:28.0064 3792 fvevol - ok
14:23:28.0095 3792 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
14:23:28.0111 3792 gagp30kx - ok
14:23:28.0173 3792 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
14:23:28.0267 3792 gpsvc - ok
14:23:28.0345 3792 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:23:28.0376 3792 gupdate - ok
14:23:28.0407 3792 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:23:28.0423 3792 gupdatem - ok
14:23:28.0470 3792 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
14:23:28.0501 3792 gusvc - ok
14:23:28.0532 3792 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
14:23:28.0595 3792 hcw85cir - ok
14:23:28.0673 3792 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
14:23:28.0719 3792 HdAudAddService - ok
14:23:28.0751 3792 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
14:23:28.0813 3792 HDAudBus - ok
14:23:28.0829 3792 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
14:23:28.0860 3792 HidBatt - ok
14:23:28.0922 3792 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
14:23:29.0000 3792 HidBth - ok
14:23:29.0031 3792 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
14:23:29.0063 3792 HidIr - ok
14:23:29.0125 3792 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
14:23:29.0219 3792 hidserv - ok
14:23:29.0265 3792 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\drivers\hidusb.sys
14:23:29.0281 3792 HidUsb - ok
14:23:29.0328 3792 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
14:23:29.0421 3792 hkmsvc - ok
14:23:29.0484 3792 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
14:23:29.0546 3792 HomeGroupListener - ok
14:23:29.0577 3792 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
14:23:29.0624 3792 HomeGroupProvider - ok
14:23:29.0671 3792 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
14:23:29.0687 3792 HpSAMD - ok
14:23:29.0749 3792 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
14:23:29.0827 3792 HTTP - ok
14:23:29.0843 3792 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
14:23:29.0858 3792 hwpolicy - ok
14:23:29.0889 3792 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
14:23:29.0905 3792 i8042prt - ok
14:23:29.0967 3792 [ D469B77687E12FE43E344806740B624D ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
14:23:29.0983 3792 iaStor - ok
14:23:30.0030 3792 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
14:23:30.0045 3792 iaStorV - ok
14:23:30.0123 3792 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
14:23:30.0139 3792 IDriverT ( UnsignedFile.Multi.Generic ) - warning
14:23:30.0139 3792 IDriverT - detected UnsignedFile.Multi.Generic (1)
14:23:30.0248 3792 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:23:30.0295 3792 idsvc - ok
14:23:30.0357 3792 [ 0B97F1A640AD3D159A7B5D2164C42E50 ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\IPSDefs\20111214.001\IDSvia64.sys
14:23:30.0389 3792 IDSVia64 - ok
14:23:31.0496 3792 [ 370C2A8629B30F910F740387795DDC6F ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
14:23:31.0668 3792 igfx - ok
14:23:31.0699 3792 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
14:23:31.0699 3792 iirsp - ok
14:23:31.0746 3792 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
14:23:31.0793 3792 IKEEXT - ok
14:23:31.0839 3792 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
14:23:31.0855 3792 IntcDAud - ok
14:23:31.0902 3792 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
14:23:31.0902 3792 intelide - ok
14:23:31.0933 3792 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
14:23:31.0964 3792 intelppm - ok
14:23:31.0995 3792 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
14:23:32.0042 3792 IPBusEnum - ok
14:23:32.0073 3792 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
14:23:32.0105 3792 IpFilterDriver - ok
14:23:32.0120 3792 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
14:23:32.0136 3792 IPMIDRV - ok
14:23:32.0167 3792 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
14:23:32.0214 3792 IPNAT - ok
14:23:32.0245 3792 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
14:23:32.0245 3792 IRENUM - ok
14:23:32.0276 3792 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
14:23:32.0292 3792 isapnp - ok
14:23:32.0307 3792 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
14:23:32.0307 3792 iScsiPrt - ok
14:23:32.0339 3792 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
14:23:32.0354 3792 kbdclass - ok
14:23:32.0401 3792 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
14:23:32.0417 3792 kbdhid - ok
14:23:32.0432 3792 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
14:23:32.0432 3792 KeyIso - ok
14:23:32.0463 3792 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
14:23:32.0463 3792 KSecDD - ok
14:23:32.0495 3792 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
14:23:32.0510 3792 KSecPkg - ok
14:23:32.0541 3792 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
14:23:32.0573 3792 ksthunk - ok
14:23:32.0619 3792 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
14:23:32.0666 3792 KtmRm - ok
14:23:32.0697 3792 [ EBED8B3FF4A823C1A6EEBEED7B29353F ] L1C C:\windows\system32\DRIVERS\L1C62x64.sys
14:23:32.0713 3792 L1C - ok
14:23:32.0744 3792 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
14:23:32.0791 3792 LanmanServer - ok
14:23:32.0822 3792 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
14:23:32.0869 3792 LanmanWorkstation - ok
14:23:32.0900 3792 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
14:23:32.0963 3792 lltdio - ok
14:23:32.0994 3792 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
14:23:33.0025 3792 lltdsvc - ok
14:23:33.0072 3792 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
14:23:33.0103 3792 lmhosts - ok
14:23:33.0181 3792 [ 2ED1786B7542CDA261029F6B526EDF44 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
14:23:33.0181 3792 LMS - ok
14:23:33.0212 3792 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
14:23:33.0228 3792 LSI_FC - ok
14:23:33.0259 3792 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
14:23:33.0259 3792 LSI_SAS - ok
14:23:33.0275 3792 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
14:23:33.0290 3792 LSI_SAS2 - ok
14:23:33.0306 3792 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
14:23:33.0322 3792 LSI_SCSI - ok
14:23:33.0337 3792 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
14:23:33.0384 3792 luafv - ok
14:23:33.0431 3792 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
14:23:33.0446 3792 Mcx2Svc - ok
14:23:33.0478 3792 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
14:23:33.0493 3792 megasas - ok
14:23:33.0509 3792 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
14:23:33.0524 3792 MegaSR - ok
14:23:33.0556 3792 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
14:23:33.0571 3792 MEIx64 - ok
14:23:33.0602 3792 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
14:23:33.0649 3792 MMCSS - ok
14:23:33.0680 3792 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
14:23:33.0727 3792 Modem - ok
14:23:33.0743 3792 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
14:23:33.0774 3792 monitor - ok
14:23:33.0821 3792 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
14:23:33.0836 3792 mouclass - ok
14:23:33.0852 3792 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\drivers\mouhid.sys
14:23:33.0868 3792 mouhid - ok
14:23:33.0930 3792 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
14:23:33.0930 3792 mountmgr - ok
14:23:33.0961 3792 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
14:23:33.0977 3792 mpio - ok
14:23:33.0992 3792 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
14:23:34.0024 3792 mpsdrv - ok
14:23:34.0039 3792 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
14:23:34.0070 3792 MRxDAV - ok
14:23:34.0086 3792 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
14:23:34.0133 3792 mrxsmb - ok
14:23:34.0164 3792 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
14:23:34.0180 3792 mrxsmb10 - ok
14:23:34.0195 3792 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
14:23:34.0211 3792 mrxsmb20 - ok
14:23:34.0226 3792 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\DRIVERS\msahci.sys
14:23:34.0242 3792 msahci - ok
14:23:34.0258 3792 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
14:23:34.0273 3792 msdsm - ok
14:23:34.0289 3792 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
14:23:34.0320 3792 MSDTC - ok
14:23:34.0351 3792 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
14:23:34.0398 3792 Msfs - ok
14:23:34.0398 3792 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
14:23:34.0460 3792 mshidkmdf - ok
14:23:34.0460 3792 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
14:23:34.0476 3792 msisadrv - ok
14:23:34.0507 3792 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
14:23:34.0570 3792 MSiSCSI - ok
14:23:34.0570 3792 msiserver - ok
14:23:34.0616 3792 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
14:23:34.0679 3792 MSKSSRV - ok
14:23:34.0726 3792 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
14:23:34.0772 3792 MSPCLOCK - ok
14:23:34.0804 3792 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
14:23:34.0850 3792 MSPQM - ok
14:23:34.0882 3792 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
14:23:34.0897 3792 MsRPC - ok
14:23:34.0913 3792 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
14:23:34.0928 3792 mssmbios - ok
14:23:34.0944 3792 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
14:23:34.0975 3792 MSTEE - ok
14:23:35.0006 3792 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
14:23:35.0038 3792 MTConfig - ok
14:23:35.0053 3792 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
14:23:35.0084 3792 Mup - ok
14:23:35.0131 3792 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
14:23:35.0225 3792 napagent - ok
14:23:35.0287 3792 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
14:23:35.0350 3792 NativeWifiP - ok
14:23:35.0412 3792 [ 2DBE90210DE76BE6E1653BB20EC70EC2 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20111214.001\ENG64.SYS
14:23:35.0428 3792 NAVENG - ok
14:23:35.0490 3792 [ 346DA70E203B8E2C850277713DE8F71B ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20111214.001\EX64.SYS
14:23:35.0568 3792 NAVEX15 - ok
14:23:35.0615 3792 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
14:23:35.0662 3792 NDIS - ok
14:23:35.0708 3792 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
14:23:35.0786 3792 NdisCap - ok
14:23:35.0802 3792 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
14:23:35.0849 3792 NdisTapi - ok
14:23:35.0880 3792 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
14:23:35.0958 3792 Ndisuio - ok
14:23:35.0974 3792 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
14:23:36.0020 3792 NdisWan - ok
14:23:36.0067 3792 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
14:23:36.0098 3792 NDProxy - ok
14:23:36.0130 3792 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
14:23:36.0208 3792 NetBIOS - ok
14:23:36.0223 3792 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
14:23:36.0270 3792 NetBT - ok
14:23:36.0270 3792 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
14:23:36.0286 3792 Netlogon - ok
14:23:36.0332 3792 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
14:23:36.0379 3792 Netman - ok
14:23:36.0395 3792 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
14:23:36.0473 3792 netprofm - ok
14:23:36.0504 3792 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:23:36.0535 3792 NetTcpPortSharing - ok
14:23:36.0582 3792 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
14:23:36.0598 3792 nfrd960 - ok
14:23:36.0676 3792 [ E127420B7FEB65C7F279EAAC183BBC0E ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\ccSvcHst.exe
14:23:36.0707 3792 NIS - ok
14:23:36.0754 3792 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\windows\System32\nlasvc.dll
14:23:36.0847 3792 NlaSvc - ok
14:23:36.0863 3792 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
14:23:36.0910 3792 Npfs - ok
14:23:36.0941 3792 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
14:23:37.0019 3792 nsi - ok
14:23:37.0034 3792 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
14:23:37.0128 3792 nsiproxy - ok
14:23:37.0175 3792 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
14:23:37.0222 3792 Ntfs - ok
14:23:37.0237 3792 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
14:23:37.0268 3792 Null - ok
14:23:37.0300 3792 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
14:23:37.0331 3792 nvraid - ok
14:23:37.0346 3792 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
14:23:37.0378 3792 nvstor - ok
14:23:37.0409 3792 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
14:23:37.0424 3792 nv_agp - ok
14:23:37.0471 3792 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
14:23:37.0502 3792 ohci1394 - ok
14:23:37.0549 3792 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:23:37.0580 3792 ose - ok
14:23:37.0830 3792 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:23:38.0080 3792 osppsvc - ok
14:23:38.0126 3792 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
14:23:38.0173 3792 p2pimsvc - ok
14:23:38.0236 3792 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
14:23:38.0267 3792 p2psvc - ok
14:23:38.0314 3792 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
14:23:38.0329 3792 Parport - ok
14:23:38.0376 3792 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
14:23:38.0392 3792 partmgr - ok
14:23:38.0438 3792 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
14:23:38.0470 3792 PcaSvc - ok
14:23:38.0563 3792 [ 2F86BE1818C2D7AC90478E3323EE7FCB ] PCCUJobMgr C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe
14:23:38.0579 3792 PCCUJobMgr - ok
14:23:38.0610 3792 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
14:23:38.0641 3792 pci - ok
14:23:38.0657 3792 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\DRIVERS\pciide.sys
14:23:38.0688 3792 pciide - ok
14:23:38.0719 3792 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
14:23:38.0735 3792 pcmcia - ok
14:23:38.0750 3792 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
14:23:38.0782 3792 pcw - ok
14:23:38.0813 3792 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
14:23:38.0906 3792 PEAUTH - ok
14:23:39.0016 3792 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
14:23:39.0062 3792 PerfHost - ok
14:23:39.0187 3792 [ 91111CEBBDE8015E822C46120ED9537C ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys
14:23:39.0218 3792 PGEffect - ok
14:23:39.0281 3792 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
14:23:39.0390 3792 pla - ok
14:23:39.0452 3792 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
14:23:39.0515 3792 PlugPlay - ok
14:23:39.0546 3792 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
14:23:39.0593 3792 PNRPAutoReg - ok
14:23:39.0608 3792 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
14:23:39.0640 3792 PNRPsvc - ok
14:23:39.0686 3792 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
14:23:39.0780 3792 PolicyAgent - ok
14:23:39.0811 3792 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
14:23:39.0889 3792 Power - ok
14:23:39.0936 3792 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
14:23:40.0030 3792 PptpMiniport - ok
14:23:40.0045 3792 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
14:23:40.0061 3792 Processor - ok
14:23:40.0092 3792 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
14:23:40.0139 3792 ProfSvc - ok
14:23:40.0170 3792 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
14:23:40.0186 3792 ProtectedStorage - ok
14:23:40.0217 3792 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
14:23:40.0295 3792 Psched - ok
14:23:40.0342 3792 [ C8FCB4899F8B70CC34E0D9876A80963C ] QIOMem C:\windows\system32\DRIVERS\QIOMem.sys
14:23:40.0404 3792 QIOMem - ok
14:23:40.0466 3792 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
14:23:40.0529 3792 ql2300 - ok
14:23:40.0544 3792 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
14:23:40.0560 3792 ql40xx - ok
14:23:40.0591 3792 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
14:23:40.0607 3792 QWAVE - ok
14:23:40.0622 3792 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
14:23:40.0654 3792 QWAVEdrv - ok
14:23:40.0669 3792 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
14:23:40.0763 3792 RasAcd - ok
14:23:40.0794 3792 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
14:23:40.0841 3792 RasAgileVpn - ok
14:23:40.0856 3792 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
14:23:40.0934 3792 RasAuto - ok
14:23:40.0950 3792 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
14:23:41.0012 3792 Rasl2tp - ok
14:23:41.0044 3792 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
14:23:41.0090 3792 RasMan - ok
14:23:41.0106 3792 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
14:23:41.0184 3792 RasPppoe - ok
14:23:41.0215 3792 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
14:23:41.0293 3792 RasSstp - ok
14:23:41.0309 3792 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
14:23:41.0371 3792 rdbss - ok
14:23:41.0387 3792 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
14:23:41.0418 3792 rdpbus - ok
14:23:41.0434 3792 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
14:23:41.0512 3792 RDPCDD - ok
14:23:41.0527 3792 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
14:23:41.0590 3792 RDPENCDD - ok
14:23:41.0605 3792 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
14:23:41.0636 3792 RDPREFMP - ok
14:23:41.0652 3792 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
14:23:41.0668 3792 RDPWD - ok
14:23:41.0714 3792 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
14:23:41.0746 3792 rdyboost - ok
14:23:41.0777 3792 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
14:23:41.0870 3792 RemoteAccess - ok
14:23:41.0902 3792 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
14:23:41.0964 3792 RemoteRegistry - ok
14:23:41.0980 3792 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
14:23:42.0058 3792 RpcEptMapper - ok
14:23:42.0073 3792 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
14:23:42.0089 3792 RpcLocator - ok
14:23:42.0214 3792 [ 6684437F3628EF237C354F77D33426D1 ] rpcnet C:\windows\SysWOW64\rpcnet.exe
14:23:42.0229 3792 rpcnet - ok
14:23:42.0338 3792 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
14:23:42.0416 3792 RpcSs - ok
14:23:42.0448 3792 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
14:23:42.0541 3792 rspndr - ok
14:23:42.0588 3792 [ 135A64530D7699AD48F29D73A658DD11 ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
14:23:42.0604 3792 RSUSBSTOR - ok
14:23:42.0635 3792 [ E5DC911D0FEB72CAFF2BBDD6E7C3672F ] RSUSBVSTOR C:\windows\system32\Drivers\RTSUVSTOR.sys
14:23:42.0650 3792 RSUSBVSTOR - ok
14:23:42.0713 3792 [ 64FDF4FE366CA42DA2B7D9D424B6E39B ] RTL8192Ce C:\windows\system32\DRIVERS\rtl8192Ce.sys
14:23:42.0760 3792 RTL8192Ce - ok
14:23:42.0775 3792 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
14:23:42.0791 3792 SamSs - ok
14:23:42.0822 3792 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
14:23:42.0838 3792 sbp2port - ok
14:23:42.0869 3792 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
14:23:42.0931 3792 SCardSvr - ok
14:23:42.0947 3792 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
14:23:42.0994 3792 scfilter - ok
14:23:43.0056 3792 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
14:23:43.0150 3792 Schedule - ok
14:23:43.0181 3792 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
14:23:43.0212 3792 SCPolicySvc - ok
14:23:43.0228 3792 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
14:23:43.0290 3792 SDRSVC - ok
14:23:43.0321 3792 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
14:23:43.0399 3792 secdrv - ok
14:23:43.0430 3792 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
14:23:43.0477 3792 seclogon - ok
14:23:43.0493 3792 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
14:23:43.0540 3792 SENS - ok
14:23:43.0555 3792 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
14:23:43.0618 3792 SensrSvc - ok
14:23:43.0633 3792 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
14:23:43.0664 3792 Serenum - ok
14:23:43.0696 3792 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
14:23:43.0742 3792 Serial - ok
14:23:43.0758 3792 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
14:23:43.0789 3792 sermouse - ok
14:23:43.0836 3792 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
14:23:43.0930 3792 SessionEnv - ok
14:23:43.0945 3792 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
14:23:43.0945 3792 sffdisk - ok
14:23:43.0976 3792 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
14:23:44.0023 3792 sffp_mmc - ok
14:23:44.0023 3792 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
14:23:44.0086 3792 sffp_sd - ok
14:23:44.0101 3792 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
14:23:44.0148 3792 sfloppy - ok
14:23:44.0195 3792 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys
14:23:44.0242 3792 Sftfs - ok
14:23:44.0320 3792 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
14:23:44.0366 3792 sftlist - ok
14:23:44.0382 3792 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys
14:23:44.0413 3792 Sftplay - ok
14:23:44.0429 3792 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys
14:23:44.0444 3792 Sftredir - ok
14:23:44.0491 3792 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys
14:23:44.0507 3792 Sftvol - ok
14:23:44.0522 3792 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
14:23:44.0538 3792 sftvsa - ok
14:23:44.0585 3792 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
14:23:44.0678 3792 ShellHWDetection - ok
14:23:44.0710 3792 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
14:23:44.0725 3792 SiSRaid2 - ok
14:23:44.0756 3792 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
14:23:44.0788 3792 SiSRaid4 - ok
14:23:44.0819 3792 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
14:23:44.0912 3792 Smb - ok
14:23:44.0959 3792 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
14:23:45.0006 3792 SNMPTRAP - ok
14:23:45.0037 3792 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
14:23:45.0053 3792 spldr - ok
14:23:45.0084 3792 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
14:23:45.0115 3792 Spooler - ok
14:23:45.0240 3792 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
14:23:45.0396 3792 sppsvc - ok
14:23:45.0427 3792 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
14:23:45.0490 3792 sppuinotify - ok
14:23:45.0552 3792 [ 1321A6C3C92BBD3F3BBE1292CFF8E91A ] SRTSP C:\windows\System32\Drivers\NISx64\1302000.00A\SRTSP64.SYS
14:23:45.0599 3792 SRTSP - ok
14:23:45.0630 3792 [ BD129C22C3B8C2E584227269DFA77B09 ] SRTSPX C:\windows\system32\drivers\NISx64\1302000.00A\SRTSPX64.SYS
14:23:45.0646 3792 SRTSPX - ok
14:23:45.0692 3792 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
14:23:45.0755 3792 srv - ok
14:23:45.0786 3792 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
14:23:45.0817 3792 srv2 - ok
14:23:45.0864 3792 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\windows\system32\DRIVERS\VSTAZL6.SYS
14:23:45.0911 3792 SrvHsfHDA - ok
14:23:45.0958 3792 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\windows\system32\DRIVERS\VSTDPV6.SYS
14:23:46.0036 3792 SrvHsfV92 - ok
14:23:46.0082 3792 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\windows\system32\DRIVERS\VSTCNXT6.SYS
14:23:46.0129 3792 SrvHsfWinac - ok
14:23:46.0145 3792 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
14:23:46.0176 3792 srvnet - ok
14:23:46.0223 3792 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
14:23:46.0316 3792 SSDPSRV - ok
14:23:46.0348 3792 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
14:23:46.0410 3792 SstpSvc - ok
14:23:46.0457 3792 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
14:23:46.0472 3792 stexstor - ok
14:23:46.0519 3792 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
14:23:46.0582 3792 stisvc - ok
14:23:46.0582 3792 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
14:23:46.0597 3792 swenum - ok
14:23:46.0628 3792 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
14:23:46.0706 3792 swprv - ok
14:23:46.0738 3792 [ 8B2430762099598DA40686F754632EFD ] SymDS C:\windows\system32\drivers\NISx64\1302000.00A\SYMDS64.SYS
14:23:46.0753 3792 SymDS - ok
14:23:46.0800 3792 [ D89A88AD71E12F963B1F436A0E91DCBF ] SymEFA C:\windows\system32\drivers\NISx64\1302000.00A\SYMEFA64.SYS
14:23:46.0831 3792 SymEFA - ok
14:23:46.0847 3792 [ 36B77F5C9E21F88A8C8EC67AD5415819 ] SymEvent C:\windows\system32\Drivers\SYMEVENT64x86.SYS
14:23:46.0847 3792 SymEvent - ok
14:23:46.0862 3792 [ DD70DA422460FDED831D211DF151D560 ] SymIRON C:\windows\system32\drivers\NISx64\1302000.00A\Ironx64.SYS
14:23:46.0878 3792 SymIRON - ok
14:23:46.0894 3792 [ BCE4EB2EEF05E388959B46FD21388C2D ] SymNetS C:\windows\System32\Drivers\NISx64\1302000.00A\SYMNETS.SYS
14:23:46.0909 3792 SymNetS - ok
14:23:46.0987 3792 [ F5B46DF59FEAA48A442AED7EEB754D4B ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
14:23:47.0050 3792 SynTP - ok
14:23:47.0112 3792 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
14:23:47.0190 3792 SysMain - ok
14:23:47.0206 3792 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
14:23:47.0252 3792 TabletInputService - ok
14:23:47.0268 3792 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
14:23:47.0330 3792 TapiSrv - ok
14:23:47.0346 3792 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
14:23:47.0377 3792 TBS - ok
14:23:47.0455 3792 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\windows\system32\drivers\tcpip.sys
14:23:47.0533 3792 Tcpip - ok
14:23:47.0564 3792 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
14:23:47.0596 3792 TCPIP6 - ok
14:23:47.0627 3792 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
14:23:47.0658 3792 tcpipreg - ok
14:23:47.0705 3792 [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys
14:23:47.0705 3792 tdcmdpst - ok
14:23:47.0720 3792 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
14:23:47.0767 3792 TDPIPE - ok
14:23:47.0798 3792 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
14:23:47.0830 3792 TDTCP - ok
14:23:47.0876 3792 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
14:23:47.0923 3792 tdx - ok
14:23:47.0939 3792 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
14:23:47.0939 3792 TermDD - ok
14:23:47.0986 3792 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
14:23:48.0095 3792 TermService - ok
14:23:48.0126 3792 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
14:23:48.0142 3792 Themes - ok
14:23:48.0173 3792 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
14:23:48.0220 3792 THREADORDER - ok
14:23:48.0282 3792 [ 71C321649B28638EE80A2EEB164C1DC8 ] TMachInfo C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
14:23:48.0313 3792 TMachInfo - ok
14:23:48.0344 3792 [ 8E2C799D3476EAC32C3BA0DF7CE6AF19 ] TODDSrv C:\Windows\system32\TODDSrv.exe
14:23:48.0376 3792 TODDSrv - ok
14:23:48.0500 3792 [ 1C73689B900428C7D054A41C4687F55C ] TosCoSrv C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
14:23:48.0532 3792 TosCoSrv - ok
14:23:48.0578 3792 [ 63AAFCF3EA5DBB17123E0BAE9AFE4D58 ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
14:23:48.0594 3792 TOSHIBA eco Utility Service - ok
14:23:48.0672 3792 [ 29D0886CF250FCEF1BF9E65AB8D2C0C8 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
14:23:48.0688 3792 TOSHIBA HDD SSD Alert Service - ok
14:23:48.0734 3792 [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64 C:\windows\system32\DRIVERS\tos_sps64.sys
14:23:48.0766 3792 tos_sps64 - ok
14:23:48.0844 3792 [ 098B8A408C17E125A3D9A8E1166780C8 ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
14:23:48.0890 3792 TPCHSrv - ok
14:23:48.0922 3792 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
14:23:49.0000 3792 TrkWks - ok
14:23:49.0078 3792 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
14:23:49.0171 3792 TrustedInstaller - ok
14:23:49.0202 3792 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
14:23:49.0296 3792 tssecsrv - ok
14:23:49.0327 3792 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
14:23:49.0358 3792 TsUsbFlt - ok
14:23:49.0390 3792 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
14:23:49.0421 3792 TsUsbGD - ok
14:23:49.0468 3792 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
14:23:49.0546 3792 tunnel - ok
14:23:49.0592 3792 [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS
14:23:49.0608 3792 TVALZ - ok
14:23:49.0639 3792 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys
14:23:49.0655 3792 TVALZFL - ok
14:23:49.0686 3792 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
14:23:49.0702 3792 uagp35 - ok
14:23:49.0764 3792 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
14:23:49.0873 3792 udfs - ok
14:23:49.0904 3792 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
14:23:49.0920 3792 UI0Detect - ok
14:23:49.0936 3792 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
14:23:49.0951 3792 uliagpkx - ok
14:23:49.0998 3792 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
14:23:50.0029 3792 umbus - ok
14:23:50.0045 3792 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
14:23:50.0092 3792 UmPass - ok
14:23:50.0279 3792 [ 7E5E1603D0FF2D240AE70295C5C3FEFC ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
14:23:50.0435 3792 UNS - ok
14:23:50.0466 3792 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
14:23:50.0560 3792 upnphost - ok
14:23:50.0591 3792 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
14:23:50.0606 3792 usbccgp - ok
14:23:50.0638 3792 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
14:23:50.0653 3792 usbcir - ok
14:23:50.0684 3792 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
14:23:50.0716 3792 usbehci - ok
14:23:50.0747 3792 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
14:23:50.0794 3792 usbhub - ok
14:23:50.0840 3792 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
14:23:50.0887 3792 usbohci - ok
14:23:50.0918 3792 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\drivers\usbprint.sys
14:23:50.0950 3792 usbprint - ok
14:23:51.0012 3792 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
14:23:51.0106 3792 USBSTOR - ok
14:23:51.0121 3792 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
14:23:51.0152 3792 usbuhci - ok
14:23:51.0184 3792 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
14:23:51.0215 3792 usbvideo - ok
14:23:51.0230 3792 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
14:23:51.0308 3792 UxSms - ok
14:23:51.0340 3792 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
14:23:51.0371 3792 VaultSvc - ok
14:23:51.0402 3792 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
14:23:51.0433 3792 vdrvroot - ok
14:23:51.0464 3792 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
14:23:51.0574 3792 vds - ok
14:23:51.0605 3792 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
14:23:51.0636 3792 vga - ok
14:23:51.0652 3792 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
14:23:51.0730 3792 VgaSave - ok
14:23:51.0745 3792 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
14:23:51.0761 3792 vhdmp - ok
14:23:51.0776 3792 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
14:23:51.0792 3792 viaide - ok
14:23:51.0808 3792 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
14:23:51.0808 3792 volmgr - ok
14:23:51.0839 3792 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
14:23:51.0870 3792 volmgrx - ok
14:23:51.0901 3792 [ DF8126BD41180351A093A3AD2FC8903B ] volsnap C:\windows\system32\drivers\volsnap.sys
14:23:51.0917 3792 volsnap - ok
14:23:51.0948 3792 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
14:23:51.0964 3792 vsmraid - ok
14:23:52.0042 3792 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
14:23:52.0151 3792 VSS - ok
14:23:52.0198 3792 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
14:23:52.0244 3792 vwifibus - ok
14:23:52.0260 3792 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
14:23:52.0307 3792 vwififlt - ok
14:23:52.0354 3792 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
14:23:52.0447 3792 W32Time - ok
14:23:52.0463 3792 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
14:23:52.0510 3792 WacomPen - ok
14:23:52.0541 3792 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
14:23:52.0619 3792 WANARP - ok
14:23:52.0634 3792 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
14:23:52.0666 3792 Wanarpv6 - ok
14:23:52.0744 3792 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
14:23:52.0806 3792 WatAdminSvc - ok
14:23:53.0087 3792 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
14:23:53.0243 3792 wbengine - ok
14:23:53.0305 3792 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
14:23:53.0352 3792 WbioSrvc - ok
14:23:53.0461 3792 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
14:23:53.0524 3792 wcncsvc - ok
14:23:53.0570 3792 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
14:23:53.0633 3792 WcsPlugInService - ok
14:23:53.0664 3792 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
14:23:53.0664 3792 Wd - ok
14:23:53.0695 3792 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
14:23:53.0711 3792 Wdf01000 - ok
14:23:53.0758 3792 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
14:23:53.0820 3792 WdiServiceHost - ok
14:23:53.0836 3792 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
14:23:53.0851 3792 WdiSystemHost - ok
14:23:53.0882 3792 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
14:23:53.0914 3792 WebClient - ok
14:23:53.0914 3792 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
14:23:53.0960 3792 Wecsvc - ok
14:23:53.0976 3792 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
14:23:54.0007 3792 wercplsupport - ok
14:23:54.0023 3792 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
14:23:54.0054 3792 WerSvc - ok
14:23:54.0070 3792 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
14:23:54.0101 3792 WfpLwf - ok
14:23:54.0116 3792 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
14:23:54.0132 3792 WIMMount - ok
14:23:54.0132 3792 WinHttpAutoProxySvc - ok
14:23:54.0179 3792 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
14:23:54.0226 3792 Winmgmt - ok
14:23:54.0319 3792 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
14:23:54.0428 3792 WinRM - ok
14:23:54.0491 3792 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
14:23:54.0538 3792 WinUsb - ok
14:23:54.0584 3792 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
14:23:54.0647 3792 Wlansvc - ok
14:23:54.0694 3792 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
14:23:54.0709 3792 wlcrasvc - ok
14:23:54.0834 3792 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:23:54.0896 3792 wlidsvc - ok
14:23:54.0928 3792 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
14:23:54.0959 3792 WmiAcpi - ok
14:23:54.0990 3792 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
14:23:55.0052 3792 wmiApSrv - ok
14:23:55.0084 3792 WMPNetworkSvc - ok
14:23:55.0130 3792 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
14:23:55.0162 3792 WPCSvc - ok
14:23:55.0177 3792 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
14:23:55.0208 3792 WPDBusEnum - ok
14:23:55.0240 3792 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
14:23:55.0318 3792 ws2ifsl - ok
14:23:55.0318 3792 WSearch - ok
14:23:55.0349 3792 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\windows\system32\drivers\WudfPf.sys
14:23:55.0380 3792 WudfPf - ok
14:23:55.0411 3792 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
14:23:55.0489 3792 WUDFRd - ok
14:23:55.0520 3792 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\windows\System32\WUDFSvc.dll
14:23:55.0552 3792 wudfsvc - ok
14:23:55.0583 3792 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
14:23:55.0630 3792 WwanSvc - ok
14:23:55.0645 3792 ================ Scan global ===============================
14:23:55.0676 3792 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
14:23:55.0708 3792 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\windows\system32\winsrv.dll
14:23:55.0723 3792 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\windows\system32\winsrv.dll
14:23:55.0754 3792 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
14:23:55.0786 3792 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
14:23:55.0786 3792 [Global] - ok
14:23:55.0786 3792 ================ Scan MBR ==================================
14:23:55.0817 3792 [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
14:23:56.0066 3792 \Device\Harddisk0\DR0 - ok
14:23:56.0066 3792 ================ Scan VBR ==================================
14:23:56.0098 3792 [ 8AC23BED265B9837B514C7AD0AE3474B ] \Device\Harddisk0\DR0\Partition1
14:23:56.0098 3792 \Device\Harddisk0\DR0\Partition1 - ok
14:23:56.0098 3792 ================ Scan active images ========================
14:23:56.0098 3792 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
14:23:56.0098 3792 C:\Windows\System32\drivers\crashdmp.sys - ok
14:23:56.0113 3792 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
14:23:56.0113 3792 C:\Windows\System32\drivers\dumpfve.sys - ok
14:23:56.0129 3792 [ D469B77687E12FE43E344806740B624D ] C:\Windows\System32\drivers\iaStor.sys
14:23:56.0129 3792 C:\Windows\System32\drivers\iaStor.sys - ok
14:23:56.0129 3792 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
14:23:56.0129 3792 C:\Windows\System32\drivers\cdrom.sys - ok
14:23:56.0144 3792 [ A8AD33C9DD88C810CAC00ACC7F4329FB ] C:\Windows\System32\drivers\NISx64\1302000.00A\ccsetx64.sys
14:23:56.0144 3792 C:\Windows\System32\drivers\NISx64\1302000.00A\ccsetx64.sys - ok
14:23:56.0144 3792 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
14:23:56.0144 3792 C:\Windows\System32\drivers\beep.sys - ok
14:23:56.0160 3792 [ DD70DA422460FDED831D211DF151D560 ] C:\Windows\System32\drivers\NISx64\1302000.00A\ironx64.sys
14:23:56.0160 3792 C:\Windows\System32\drivers\NISx64\1302000.00A\ironx64.sys - ok
14:23:56.0160 3792 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
14:23:56.0160 3792 C:\Windows\System32\drivers\null.sys - ok
14:23:56.0176 3792 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
14:23:56.0176 3792 C:\Windows\System32\drivers\RDPCDD.sys - ok
14:23:56.0176 3792 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
14:23:56.0176 3792 C:\Windows\System32\drivers\RDPENCDD.sys - ok
14:23:56.0191 3792 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
14:23:56.0191 3792 C:\Windows\System32\drivers\RDPREFMP.sys - ok
14:23:56.0207 3792 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
14:23:56.0207 3792 C:\Windows\System32\drivers\vga.sys - ok
14:23:56.0207 3792 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
14:23:56.0207 3792 C:\Windows\System32\drivers\videoprt.sys - ok
14:23:56.0222 3792 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
14:23:56.0222 3792 C:\Windows\System32\drivers\watchdog.sys - ok
14:23:56.0222 3792 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
14:23:56.0222 3792 C:\Windows\System32\drivers\msfs.sys - ok
14:23:56.0238 3792 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
14:23:56.0238 3792 C:\Windows\System32\drivers\npfs.sys - ok
14:23:56.0238 3792 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
14:23:56.0238 3792 C:\Windows\System32\drivers\tdi.sys - ok
14:23:56.0254 3792 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
14:23:56.0254 3792 C:\Windows\System32\drivers\tdx.sys - ok
14:23:56.0269 3792 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
14:23:56.0269 3792 C:\Windows\System32\drivers\afd.sys - ok
14:23:56.0269 3792 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
14:23:56.0269 3792 C:\Windows\System32\drivers\netbt.sys - ok
14:23:56.0285 3792 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
14:23:56.0285 3792 C:\Windows\System32\drivers\pacer.sys - ok
14:23:56.0285 3792 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
14:23:56.0285 3792 C:\Windows\System32\drivers\wfplwf.sys - ok
14:23:56.0300 3792 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
14:23:56.0300 3792 C:\Windows\System32\drivers\netbios.sys - ok
14:23:56.0316 3792 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
14:23:56.0316 3792 C:\Windows\System32\drivers\termdd.sys - ok
14:23:56.0316 3792 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
14:23:56.0316 3792 C:\Windows\System32\drivers\vwififlt.sys - ok
14:23:56.0332 3792 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
14:23:56.0332 3792 C:\Windows\System32\drivers\wanarp.sys - ok
14:23:56.0332 3792 [ BCE4EB2EEF05E388959B46FD21388C2D ] C:\Windows\System32\drivers\NISx64\1302000.00A\symnets.sys
14:23:56.0332 3792 C:\Windows\System32\drivers\NISx64\1302000.00A\symnets.sys - ok
14:23:56.0347 3792 [ 36B77F5C9E21F88A8C8EC67AD5415819 ] C:\Windows\System32\drivers\SYMEVENT64x86.SYS
14:23:56.0347 3792 C:\Windows\System32\drivers\SYMEVENT64x86.SYS - ok
14:23:56.0347 3792 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
14:23:56.0363 3792 C:\Windows\System32\drivers\mssmbios.sys - ok
14:23:56.0363 3792 [ BD129C22C3B8C2E584227269DFA77B09 ] C:\Windows\System32\drivers\NISx64\1302000.00A\srtspx64.sys
14:23:56.0363 3792 C:\Windows\System32\drivers\NISx64\1302000.00A\srtspx64.sys - ok
14:23:56.0378 3792 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
14:23:56.0378 3792 C:\Windows\System32\drivers\nsiproxy.sys - ok
14:23:56.0378 3792 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
14:23:56.0378 3792 C:\Windows\System32\drivers\rdbss.sys - ok
14:23:56.0394 3792 [ 0B97F1A640AD3D159A7B5D2164C42E50 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\IPSDefs\20111214.001\IDSviA64.sys
14:23:56.0394 3792 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\IPSDefs\20111214.001\IDSviA64.sys - ok
14:23:56.0394 3792 [ 5CCF1BE80930AEB1CDEBF561666325E8 ] C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
14:23:56.0394 3792 C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys - ok
14:23:56.0410 3792 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
14:23:56.0410 3792 C:\Windows\System32\drivers\dfsc.sys - ok
14:23:56.0410 3792 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
14:23:56.0410 3792 C:\Windows\System32\drivers\discache.sys - ok
14:23:56.0410 3792 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
14:23:56.0410 3792 C:\Windows\System32\drivers\blbdrive.sys - ok
14:23:56.0425 3792 [ 82C695630676079F7AD68C85A5E662E5 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\BASHDefs\20111210.003\BHDrvx64.sys
14:23:56.0425 3792 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\BASHDefs\20111210.003\BHDrvx64.sys - ok
14:23:56.0425 3792 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
14:23:56.0425 3792 C:\Windows\System32\drivers\tunnel.sys - ok
14:23:56.0441 3792 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
14:23:56.0441 3792 C:\Windows\System32\ntdll.dll - ok
14:23:56.0441 3792 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
14:23:56.0441 3792 C:\Windows\System32\smss.exe - ok
14:23:56.0441 3792 [ 3385EBC77A6C842A0C677A77DC2555D9 ] C:\Windows\System32\autochk.exe
14:23:56.0441 3792 C:\Windows\System32\autochk.exe - ok
14:23:56.0456 3792 [ 370C2A8629B30F910F740387795DDC6F ] C:\Windows\System32\drivers\igdkmd64.sys
14:23:56.0456 3792 C:\Windows\System32\drivers\igdkmd64.sys - ok
14:23:56.0456 3792 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
14:23:56.0456 3792 C:\Windows\System32\drivers\dxgkrnl.sys - ok
14:23:56.0456 3792 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
14:23:56.0456 3792 C:\Windows\System32\drivers\dxgmms1.sys - ok
14:23:56.0472 3792 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] C:\Windows\System32\drivers\HECIx64.sys
14:23:56.0472 3792 C:\Windows\System32\drivers\HECIx64.sys - ok
14:23:56.0472 3792 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
14:23:56.0472 3792 C:\Windows\System32\drivers\usbehci.sys - ok
14:23:56.0472 3792 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
14:23:56.0472 3792 C:\Windows\System32\drivers\usbport.sys - ok
14:23:56.0488 3792 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
14:23:56.0488 3792 C:\Windows\System32\drivers\hdaudbus.sys - ok
14:23:56.0488 3792 [ 64FDF4FE366CA42DA2B7D9D424B6E39B ] C:\Windows\System32\drivers\rtl8192ce.sys
14:23:56.0488 3792 C:\Windows\System32\drivers\rtl8192ce.sys - ok
14:23:56.0488 3792 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
14:23:56.0488 3792 C:\Windows\System32\drivers\vwifibus.sys - ok
14:23:56.0503 3792 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
14:23:56.0503 3792 C:\Windows\System32\drivers\i8042prt.sys - ok
14:23:56.0503 3792 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
14:23:56.0503 3792 C:\Windows\System32\drivers\kbdclass.sys - ok
14:23:56.0519 3792 [ EBED8B3FF4A823C1A6EEBEED7B29353F ] C:\Windows\System32\drivers\L1C62x64.sys
14:23:56.0519 3792 C:\Windows\System32\drivers\L1C62x64.sys - ok
14:23:56.0519 3792 [ F5B46DF59FEAA48A442AED7EEB754D4B ] C:\Windows\System32\drivers\SynTP.sys
14:23:56.0519 3792 C:\Windows\System32\drivers\SynTP.sys - ok
14:23:56.0519 3792 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
14:23:56.0519 3792 C:\Windows\System32\drivers\usbd.sys - ok
14:23:56.0534 3792 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
14:23:56.0534 3792 C:\Windows\System32\drivers\mouclass.sys - ok
14:23:56.0534 3792 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
14:23:56.0534 3792 C:\Windows\System32\drivers\intelppm.sys - ok
14:23:56.0534 3792 [ FD542B661BD22FA69CA789AD0AC58C29 ] C:\Windows\System32\drivers\tdcmdpst.sys
14:23:56.0534 3792 C:\Windows\System32\drivers\tdcmdpst.sys - ok
14:23:56.0550 3792 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
14:23:56.0550 3792 C:\Windows\System32\drivers\CmBatt.sys - ok
14:23:56.0550 3792 [ C8FCB4899F8B70CC34E0D9876A80963C ] C:\Windows\System32\drivers\QIOMem.sys
14:23:56.0550 3792 C:\Windows\System32\drivers\QIOMem.sys - ok
14:23:56.0550 3792 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] C:\Windows\System32\drivers\TVALZFL.sys
14:23:56.0550 3792 C:\Windows\System32\drivers\TVALZFL.sys - ok
14:23:56.0566 3792 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
14:23:56.0566 3792 C:\Windows\System32\drivers\wmiacpi.sys - ok
14:23:56.0566 3792 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
14:23:56.0566 3792 C:\Windows\System32\drivers\CompositeBus.sys - ok
14:23:56.0581 3792 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
14:23:56.0581 3792 C:\Windows\System32\drivers\agilevpn.sys - ok
14:23:56.0581 3792 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
14:23:56.0581 3792 C:\Windows\System32\drivers\ndistapi.sys - ok
14:23:56.0581 3792 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
14:23:56.0581 3792 C:\Windows\System32\drivers\rasl2tp.sys - ok
14:23:56.0597 3792 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
14:23:56.0597 3792 C:\Windows\System32\drivers\ndiswan.sys - ok
14:23:56.0597 3792 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
14:23:56.0597 3792 C:\Windows\System32\drivers\raspppoe.sys - ok
14:23:56.0597 3792 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
14:23:56.0597 3792 C:\Windows\System32\drivers\raspptp.sys - ok
14:23:56.0612 3792 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
14:23:56.0612 3792 C:\Windows\System32\drivers\rassstp.sys - ok
14:23:56.0612 3792 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
14:23:56.0612 3792 C:\Windows\System32\drivers\ks.sys - ok
14:23:56.0612 3792 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
14:23:56.0612 3792 C:\Windows\System32\drivers\swenum.sys - ok
14:23:56.0628 3792 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
14:23:56.0628 3792 C:\Windows\System32\drivers\umbus.sys - ok
14:23:56.0628 3792 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
14:23:56.0628 3792 C:\Windows\System32\drivers\usbhub.sys - ok
14:23:56.0628 3792 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
14:23:56.0628 3792 C:\Windows\System32\drivers\ndproxy.sys - ok
14:23:56.0644 3792 [ 20506F12AFAD3DB588D007EA9325FBBC ] C:\Windows\System32\drivers\CHDRT64.sys
14:23:56.0644 3792 C:\Windows\System32\drivers\CHDRT64.sys - ok
14:23:56.0644 3792 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
14:23:56.0644 3792 C:\Windows\System32\drivers\drmk.sys - ok
14:23:56.0644 3792 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
14:23:56.0644 3792 C:\Windows\System32\drivers\portcls.sys - ok
14:23:56.0659 3792 [ FC727061C0F47C8059E88E05D5C8E381 ] C:\Windows\System32\drivers\IntcDAud.sys
14:23:56.0659 3792 C:\Windows\System32\drivers\IntcDAud.sys - ok
14:23:56.0659 3792 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
14:23:56.0659 3792 C:\Windows\System32\drivers\ksthunk.sys - ok
14:23:56.0675 3792 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
14:23:56.0675 3792 C:\Windows\System32\drivers\usbccgp.sys - ok
14:23:56.0675 3792 [ 91111CEBBDE8015E822C46120ED9537C ] C:\Windows\System32\drivers\PGEffect.sys

#9 ken08

ken08

    New Member

  • Members
  • Pip
  • 12 posts

Posted 09 October 2012 - 01:31 PM

14:23:56.0675 3792 C:\Windows\System32\drivers\PGEffect.sys - ok
14:23:56.0675 3792 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
14:23:56.0675 3792 C:\Windows\System32\drivers\usbvideo.sys - ok
14:23:56.0690 3792 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
14:23:56.0690 3792 C:\Windows\System32\comdlg32.dll - ok
14:23:56.0690 3792 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
14:23:56.0690 3792 C:\Windows\System32\msvcrt.dll - ok
14:23:56.0690 3792 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
14:23:56.0690 3792 C:\Windows\System32\rpcrt4.dll - ok
14:23:56.0706 3792 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
14:23:56.0706 3792 C:\Windows\System32\oleaut32.dll - ok
14:23:56.0706 3792 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
14:23:56.0706 3792 C:\Windows\System32\shlwapi.dll - ok
14:23:56.0706 3792 [ D841F7629505EE542E26E5F0A4D20101 ] C:\Windows\System32\iertutil.dll
14:23:56.0706 3792 C:\Windows\System32\iertutil.dll - ok
14:23:56.0722 3792 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
14:23:56.0722 3792 C:\Windows\System32\difxapi.dll - ok
14:23:56.0722 3792 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
14:23:56.0722 3792 C:\Windows\System32\advapi32.dll - ok
14:23:56.0722 3792 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
14:23:56.0722 3792 C:\Windows\System32\lpk.dll - ok
14:23:56.0737 3792 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
14:23:56.0737 3792 C:\Windows\System32\nsi.dll - ok
14:23:56.0737 3792 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
14:23:56.0737 3792 C:\Windows\System32\ws2_32.dll - ok
14:23:56.0737 3792 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
14:23:56.0737 3792 C:\Windows\System32\ole32.dll - ok
14:23:56.0753 3792 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
14:23:56.0753 3792 C:\Windows\System32\user32.dll - ok
14:23:56.0753 3792 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
14:23:56.0753 3792 C:\Windows\System32\imm32.dll - ok
14:23:56.0753 3792 [ 3D165C53E40236A68B7102D1A622D4E0 ] C:\Windows\System32\wininet.dll
14:23:56.0753 3792 C:\Windows\System32\wininet.dll - ok
14:23:56.0768 3792 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
14:23:56.0768 3792 C:\Windows\System32\gdi32.dll - ok
14:23:56.0768 3792 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
14:23:56.0768 3792 C:\Windows\System32\imagehlp.dll - ok
14:23:56.0768 3792 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
14:23:56.0768 3792 C:\Windows\System32\msctf.dll - ok
14:23:56.0784 3792 [ 2885A3C3148F725CDA0B4C593BA8F7CE ] C:\Windows\System32\urlmon.dll
14:23:56.0784 3792 C:\Windows\System32\urlmon.dll - ok
14:23:56.0784 3792 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
14:23:56.0784 3792 C:\Windows\System32\psapi.dll - ok
14:23:56.0784 3792 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
14:23:56.0800 3792 C:\Windows\System32\Wldap32.dll - ok
14:23:56.0800 3792 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
14:23:56.0800 3792 C:\Windows\System32\clbcatq.dll - ok
14:23:56.0800 3792 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
14:23:56.0800 3792 C:\Windows\System32\normaliz.dll - ok
14:23:56.0815 3792 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
14:23:56.0815 3792 C:\Windows\System32\sechost.dll - ok
14:23:56.0815 3792 [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll
14:23:56.0815 3792 C:\Windows\System32\usp10.dll - ok
14:23:56.0815 3792 [ B9B42A302325537D7B9DC52D47F33A73 ] C:\Windows\System32\kernel32.dll
14:23:56.0815 3792 C:\Windows\System32\kernel32.dll - ok
14:23:56.0831 3792 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
14:23:56.0831 3792 C:\Windows\System32\setupapi.dll - ok
14:23:56.0831 3792 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
14:23:56.0831 3792 C:\Windows\System32\cfgmgr32.dll - ok
14:23:56.0831 3792 [ 6B5174702343BD955E174FDFEFA2A1A3 ] C:\Windows\System32\KernelBase.dll
14:23:56.0831 3792 C:\Windows\System32\KernelBase.dll - ok
14:23:56.0831 3792 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
14:23:56.0831 3792 C:\Windows\System32\comctl32.dll - ok
14:23:56.0846 3792 [ FAF1BA660F84789CCCE747CE6F9D055A ] C:\Windows\System32\crypt32.dll
14:23:56.0846 3792 C:\Windows\System32\crypt32.dll - ok
14:23:56.0846 3792 [ 53238D99636BBA85F491C3E8FD22AB00 ] C:\Windows\System32\wintrust.dll
14:23:56.0846 3792 C:\Windows\System32\wintrust.dll - ok
14:23:56.0846 3792 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
14:23:56.0846 3792 C:\Windows\System32\devobj.dll - ok
14:23:56.0846 3792 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
14:23:56.0846 3792 C:\Windows\System32\msasn1.dll - ok
14:23:56.0862 3792 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
14:23:56.0862 3792 C:\Windows\SysWOW64\normaliz.dll - ok
14:23:56.0862 3792 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
14:23:56.0862 3792 C:\Windows\System32\drivers\dxapi.sys - ok
14:23:56.0862 3792 [ F0D6864A7D52CE137E0A9D24795C3F0E ] C:\Windows\System32\win32k.sys
14:23:56.0862 3792 C:\Windows\System32\win32k.sys - ok
14:23:56.0862 3792 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
14:23:56.0862 3792 C:\Windows\System32\csrsrv.dll - ok
14:23:56.0862 3792 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
14:23:56.0862 3792 C:\Windows\System32\csrss.exe - ok
14:23:56.0878 3792 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
14:23:56.0878 3792 C:\Windows\System32\basesrv.dll - ok
14:23:56.0878 3792 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\System32\winsrv.dll
14:23:56.0878 3792 C:\Windows\System32\winsrv.dll - ok
14:23:56.0878 3792 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
14:23:56.0878 3792 C:\Windows\System32\drivers\monitor.sys - ok
14:23:56.0878 3792 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
14:23:56.0878 3792 C:\Windows\System32\tsddd.dll - ok
14:23:56.0893 3792 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
14:23:56.0893 3792 C:\Windows\System32\sxssrv.dll - ok
14:23:56.0893 3792 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
14:23:56.0893 3792 C:\Windows\System32\wininit.exe - ok
14:23:56.0893 3792 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
14:23:56.0893 3792 C:\Windows\System32\cdd.dll - ok
14:23:56.0893 3792 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
14:23:56.0893 3792 C:\Windows\System32\KBDUS.DLL - ok
14:23:56.0909 3792 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
14:23:56.0909 3792 C:\Windows\System32\profapi.dll - ok
14:23:56.0909 3792 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
14:23:56.0909 3792 C:\Windows\System32\RpcRtRemote.dll - ok
14:23:56.0909 3792 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
14:23:56.0909 3792 C:\Windows\System32\sxs.dll - ok
14:23:56.0909 3792 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
14:23:56.0909 3792 C:\Windows\System32\WlS0WndH.dll - ok
14:23:56.0909 3792 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
14:23:56.0909 3792 C:\Windows\System32\cryptbase.dll - ok
14:23:56.0924 3792 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
14:23:56.0924 3792 C:\Windows\System32\apphelp.dll - ok
14:23:56.0924 3792 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
14:23:56.0924 3792 C:\Windows\System32\lsass.exe - ok
14:23:56.0924 3792 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
14:23:56.0924 3792 C:\Windows\System32\lsm.exe - ok
14:23:56.0924 3792 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
14:23:56.0924 3792 C:\Windows\System32\services.exe - ok
14:23:56.0940 3792 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
14:23:56.0940 3792 C:\Windows\System32\lsasrv.dll - ok
14:23:56.0940 3792 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
14:23:56.0940 3792 C:\Windows\System32\sspicli.dll - ok
14:23:56.0940 3792 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
14:23:56.0940 3792 C:\Windows\System32\sspisrv.dll - ok
14:23:56.0940 3792 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
14:23:56.0940 3792 C:\Windows\System32\scesrv.dll - ok
14:23:56.0940 3792 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
14:23:56.0940 3792 C:\Windows\System32\scext.dll - ok
14:23:56.0956 3792 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
14:23:56.0956 3792 C:\Windows\System32\secur32.dll - ok
14:23:56.0956 3792 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
14:23:56.0956 3792 C:\Windows\System32\sysntfy.dll - ok
14:23:56.0956 3792 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
14:23:56.0956 3792 C:\Windows\System32\wmsgapi.dll - ok
14:23:56.0956 3792 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
14:23:56.0956 3792 C:\Windows\System32\samsrv.dll - ok
14:23:56.0971 3792 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
14:23:56.0971 3792 C:\Windows\System32\srvcli.dll - ok
14:23:56.0971 3792 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
14:23:56.0971 3792 C:\Windows\System32\cryptdll.dll - ok
14:23:56.0971 3792 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
14:23:56.0971 3792 C:\Windows\System32\wevtapi.dll - ok
14:23:56.0971 3792 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
14:23:56.0971 3792 C:\Windows\System32\authz.dll - ok
14:23:56.0987 3792 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
14:23:56.0987 3792 C:\Windows\System32\cngaudit.dll - ok
14:23:56.0987 3792 [ 400645085A91BF3EB0271329B95AE0BE ] C:\Windows\System32\ncrypt.dll
14:23:56.0987 3792 C:\Windows\System32\ncrypt.dll - ok
14:23:56.0987 3792 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
14:23:56.0987 3792 C:\Windows\System32\winlogon.exe - ok
14:23:56.0987 3792 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
14:23:56.0987 3792 C:\Windows\System32\bcrypt.dll - ok
14:23:57.0002 3792 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
14:23:57.0002 3792 C:\Windows\System32\msprivs.dll - ok
14:23:57.0002 3792 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
14:23:57.0002 3792 C:\Windows\System32\netjoin.dll - ok
14:23:57.0002 3792 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
14:23:57.0002 3792 C:\Windows\System32\winsta.dll - ok
14:23:57.0002 3792 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
14:23:57.0002 3792 C:\Windows\System32\negoexts.dll - ok
14:23:57.0002 3792 [ 16ECE8BD6734CC170B9AE74176E89A9B ] C:\Windows\System32\kerberos.dll
14:23:57.0002 3792 C:\Windows\System32\kerberos.dll - ok
14:23:57.0018 3792 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
14:23:57.0018 3792 C:\Windows\System32\cryptsp.dll - ok
14:23:57.0018 3792 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
14:23:57.0018 3792 C:\Windows\System32\mswsock.dll - ok
14:23:57.0018 3792 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
14:23:57.0018 3792 C:\Windows\System32\version.dll - ok
14:23:57.0018 3792 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
14:23:57.0018 3792 C:\Windows\System32\wship6.dll - ok
14:23:57.0034 3792 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
14:23:57.0034 3792 C:\Windows\System32\msv1_0.dll - ok
14:23:57.0034 3792 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
14:23:57.0034 3792 C:\Windows\System32\netlogon.dll - ok
14:23:57.0034 3792 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
14:23:57.0034 3792 C:\Windows\System32\dnsapi.dll - ok
14:23:57.0034 3792 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
14:23:57.0034 3792 C:\Windows\System32\logoncli.dll - ok
14:23:57.0049 3792 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
14:23:57.0049 3792 C:\Windows\System32\schannel.dll - ok
14:23:57.0049 3792 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
14:23:57.0049 3792 C:\Windows\System32\wdigest.dll - ok
14:23:57.0049 3792 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
14:23:57.0049 3792 C:\Windows\System32\rsaenh.dll - ok
14:23:57.0049 3792 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
14:23:57.0049 3792 C:\Windows\System32\TSpkg.dll - ok
14:23:57.0049 3792 [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL
14:23:57.0049 3792 C:\Windows\System32\LIVESSP.DLL - ok
14:23:57.0065 3792 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
14:23:57.0065 3792 C:\Windows\System32\pku2u.dll - ok
14:23:57.0065 3792 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
14:23:57.0065 3792 C:\Windows\System32\bcryptprimitives.dll - ok
14:23:57.0065 3792 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
14:23:57.0065 3792 C:\Windows\System32\efslsaext.dll - ok
14:23:57.0065 3792 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
14:23:57.0065 3792 C:\Windows\System32\credssp.dll - ok
14:23:57.0080 3792 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
14:23:57.0080 3792 C:\Windows\System32\scecli.dll - ok
14:23:57.0080 3792 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
14:23:57.0080 3792 C:\Windows\System32\ubpm.dll - ok
14:23:57.0080 3792 [ 6F68F63794097E54F36474ED4384B759 ] C:\Windows\System32\svchost.exe
14:23:57.0080 3792 C:\Windows\System32\svchost.exe - ok
14:23:57.0080 3792 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
14:23:57.0080 3792 C:\Windows\System32\umpnpmgr.dll - ok
14:23:57.0080 3792 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
14:23:57.0080 3792 C:\Windows\System32\SPInf.dll - ok
14:23:57.0096 3792 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
14:23:57.0096 3792 C:\Windows\System32\devrtl.dll - ok
14:23:57.0096 3792 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
14:23:57.0096 3792 C:\Windows\System32\userenv.dll - ok
14:23:57.0096 3792 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
14:23:57.0096 3792 C:\Windows\System32\gpapi.dll - ok
14:23:57.0096 3792 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
14:23:57.0096 3792 C:\Windows\System32\umpo.dll - ok
14:23:57.0112 3792 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
14:23:57.0112 3792 C:\Windows\System32\pcwum.dll - ok
14:23:57.0112 3792 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
14:23:57.0112 3792 C:\Windows\System32\powrprof.dll - ok
14:23:57.0112 3792 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
14:23:57.0112 3792 C:\Windows\System32\drivers\luafv.sys - ok
14:23:57.0112 3792 [ 8F571F016FA1976F445147E9E6C8AE9B ] C:\Windows\System32\drivers\Sftvollh.sys
14:23:57.0112 3792 C:\Windows\System32\drivers\Sftvollh.sys - ok
14:23:57.0112 3792 [ D3381DC54C34D79B22CEE0D65BA91B7C ] C:\Windows\System32\drivers\WUDFPf.sys
14:23:57.0112 3792 C:\Windows\System32\drivers\WUDFPf.sys - ok
14:23:57.0127 3792 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
14:23:57.0127 3792 C:\Windows\System32\RpcEpMap.dll - ok
14:23:57.0127 3792 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
14:23:57.0127 3792 C:\Windows\System32\rpcss.dll - ok
14:23:57.0127 3792 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
14:23:57.0127 3792 C:\Windows\System32\wshqos.dll - ok
14:23:57.0127 3792 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
14:23:57.0127 3792 C:\Windows\System32\WSHTCPIP.DLL - ok
14:23:57.0143 3792 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
14:23:57.0143 3792 C:\Windows\System32\FirewallAPI.dll - ok
14:23:57.0143 3792 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
14:23:57.0143 3792 C:\Windows\System32\authui.dll - ok
14:23:57.0143 3792 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
14:23:57.0143 3792 C:\Windows\System32\LogonUI.exe - ok
14:23:57.0143 3792 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
14:23:57.0143 3792 C:\Windows\System32\wevtsvc.dll - ok
14:23:57.0143 3792 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
14:23:57.0143 3792 C:\Windows\System32\cryptui.dll - ok
14:23:57.0158 3792 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
14:23:57.0158 3792 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
14:23:57.0158 3792 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
14:23:57.0158 3792 C:\Windows\System32\adtschema.dll - ok
14:23:57.0158 3792 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
14:23:57.0158 3792 C:\Windows\System32\audiosrv.dll - ok
14:23:57.0158 3792 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
14:23:57.0158 3792 C:\Windows\System32\avrt.dll - ok
14:23:57.0158 3792 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
14:23:57.0158 3792 C:\Windows\System32\mmcss.dll - ok
14:23:57.0174 3792 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
14:23:57.0174 3792 C:\Windows\System32\MMDevAPI.dll - ok
14:23:57.0174 3792 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
14:23:57.0174 3792 C:\Windows\System32\profsvc.dll - ok
14:23:57.0174 3792 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
14:23:57.0174 3792 C:\Windows\System32\samlib.dll - ok
14:23:57.0174 3792 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
14:23:57.0174 3792 C:\Windows\System32\shacct.dll - ok
14:23:57.0190 3792 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
14:23:57.0190 3792 C:\Windows\System32\propsys.dll - ok
14:23:57.0190 3792 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
14:23:57.0190 3792 C:\Windows\System32\wlansvc.dll - ok
14:23:57.0190 3792 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
14:23:57.0190 3792 C:\Windows\System32\uxtheme.dll - ok
14:23:57.0190 3792 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
14:23:57.0190 3792 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
14:23:57.0190 3792 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
14:23:57.0190 3792 C:\Windows\System32\audiodg.exe - ok
14:23:57.0205 3792 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
14:23:57.0205 3792 C:\Windows\System32\dui70.dll - ok
14:23:57.0205 3792 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
14:23:57.0205 3792 C:\Windows\System32\duser.dll - ok
14:23:57.0205 3792 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
14:23:57.0205 3792 C:\Windows\System32\ntmarta.dll - ok
14:23:57.0205 3792 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
14:23:57.0205 3792 C:\Windows\System32\gpsvc.dll - ok
14:23:57.0205 3792 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
14:23:57.0205 3792 C:\Windows\System32\SndVolSSO.dll - ok
14:23:57.0221 3792 [ 2DF36F15B2BC1571A6A542A3C2107920 ] C:\Windows\System32\nlaapi.dll
14:23:57.0221 3792 C:\Windows\System32\nlaapi.dll - ok
14:23:57.0221 3792 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
14:23:57.0221 3792 C:\Windows\System32\themeservice.dll - ok
14:23:57.0221 3792 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
14:23:57.0221 3792 C:\Windows\System32\atl.dll - ok
14:23:57.0221 3792 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
14:23:57.0221 3792 C:\Windows\System32\dsrole.dll - ok
14:23:57.0236 3792 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
14:23:57.0236 3792 C:\Windows\System32\slc.dll - ok
14:23:57.0236 3792 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
14:23:57.0236 3792 C:\Windows\System32\es.dll - ok
14:23:57.0236 3792 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
14:23:57.0236 3792 C:\Windows\System32\hid.dll - ok
14:23:57.0236 3792 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
14:23:57.0236 3792 C:\Windows\System32\winmm.dll - ok
14:23:57.0236 3792 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
14:23:57.0236 3792 C:\Windows\System32\wdmaud.drv - ok
14:23:57.0252 3792 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
14:23:57.0252 3792 C:\Windows\System32\dwmapi.dll - ok
14:23:57.0252 3792 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
14:23:57.0252 3792 C:\Windows\System32\ksuser.dll - ok
14:23:57.0252 3792 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
14:23:57.0252 3792 C:\Windows\System32\Sens.dll - ok
14:23:57.0252 3792 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
14:23:57.0252 3792 C:\Windows\System32\uxsms.dll - ok
14:23:57.0252 3792 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
14:23:57.0252 3792 C:\Windows\System32\wtsapi32.dll - ok
14:23:57.0268 3792 [ 80E69670BDA10F32A941BA7358E33012 ] C:\Windows\System32\WUDFPlatform.dll
14:23:57.0268 3792 C:\Windows\System32\WUDFPlatform.dll - ok
14:23:57.0268 3792 [ 7A95C95B6C4CF292D689106BCAE49543 ] C:\Windows\System32\WUDFSvc.dll
14:23:57.0268 3792 C:\Windows\System32\WUDFSvc.dll - ok
14:23:57.0268 3792 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
14:23:57.0268 3792 C:\Windows\System32\xmllite.dll - ok
14:23:57.0268 3792 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
14:23:57.0268 3792 C:\Windows\System32\AudioSes.dll - ok
14:23:57.0283 3792 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
14:23:57.0283 3792 C:\Windows\System32\drivers\lltdio.sys - ok
14:23:57.0283 3792 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
14:23:57.0283 3792 C:\Windows\System32\drivers\nwifi.sys - ok
14:23:57.0283 3792 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
14:23:57.0283 3792 C:\Windows\System32\msacm32.dll - ok
14:23:57.0283 3792 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
14:23:57.0283 3792 C:\Windows\System32\msacm32.drv - ok
14:23:57.0283 3792 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
14:23:57.0283 3792 C:\Windows\System32\drivers\ndisuio.sys - ok
14:23:57.0299 3792 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
14:23:57.0299 3792 C:\Windows\System32\drivers\rspndr.sys - ok
14:23:57.0299 3792 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
14:23:57.0299 3792 C:\Windows\System32\IPHLPAPI.DLL - ok
14:23:57.0299 3792 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
14:23:57.0299 3792 C:\Windows\System32\lmhsvc.dll - ok
14:23:57.0299 3792 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
14:23:57.0299 3792 C:\Windows\System32\midimap.dll - ok
14:23:57.0299 3792 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
14:23:57.0299 3792 C:\Windows\System32\nsisvc.dll - ok
14:23:57.0314 3792 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
14:23:57.0314 3792 C:\Windows\System32\dhcpcore.dll - ok
14:23:57.0314 3792 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
14:23:57.0314 3792 C:\Windows\System32\nrpsrv.dll - ok
14:23:57.0314 3792 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
14:23:57.0314 3792 C:\Windows\System32\WindowsCodecs.dll - ok
14:23:57.0314 3792 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
14:23:57.0314 3792 C:\Windows\System32\winnsi.dll - ok
14:23:57.0330 3792 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
14:23:57.0330 3792 C:\Windows\System32\dnsrslvr.dll - ok
14:23:57.0330 3792 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
14:23:57.0330 3792 C:\Windows\System32\eapphost.dll - ok
14:23:57.0330 3792 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
14:23:57.0330 3792 C:\Windows\System32\eapsvc.dll - ok
14:23:57.0330 3792 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
14:23:57.0330 3792 C:\Windows\System32\keyiso.dll - ok
14:23:57.0330 3792 [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
14:23:57.0330 3792 C:\Windows\System32\dhcpcore6.dll - ok
14:23:57.0346 3792 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
14:23:57.0346 3792 C:\Windows\System32\FWPUCLNT.DLL - ok
14:23:57.0346 3792 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
14:23:57.0346 3792 C:\Windows\System32\AudioEng.dll - ok
14:23:57.0346 3792 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
14:23:57.0346 3792 C:\Windows\System32\umb.dll - ok
14:23:57.0346 3792 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
14:23:57.0346 3792 C:\Windows\System32\dnsext.dll - ok
14:23:57.0346 3792 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
14:23:57.0346 3792 C:\Windows\System32\AUDIOKSE.dll - ok
14:23:57.0361 3792 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
14:23:57.0361 3792 C:\Windows\System32\dhcpcsvc.dll - ok
14:23:57.0361 3792 [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
14:23:57.0361 3792 C:\Windows\System32\dhcpcsvc6.dll - ok
14:23:57.0361 3792 [ AA0B1A7B4750F655936F2F82B5E84428 ] C:\Windows\System32\CX64AP40.dll
14:23:57.0361 3792 C:\Windows\System32\CX64AP40.dll - ok
14:23:57.0361 3792 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
14:23:57.0361 3792 C:\Windows\System32\VaultCredProvider.dll - ok
14:23:57.0377 3792 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
14:23:57.0377 3792 C:\Windows\System32\winbrand.dll - ok
14:23:57.0377 3792 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
14:23:57.0377 3792 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
14:23:57.0377 3792 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
14:23:57.0377 3792 C:\Windows\System32\BioCredProv.dll - ok
14:23:57.0377 3792 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
14:23:57.0377 3792 C:\Windows\System32\credui.dll - ok
14:23:57.0377 3792 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
14:23:57.0377 3792 C:\Windows\System32\winbio.dll - ok
14:23:57.0392 3792 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
14:23:57.0392 3792 C:\Windows\System32\WMALFXGFXDSP.dll - ok
14:23:57.0392 3792 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
14:23:57.0392 3792 C:\Windows\System32\vaultcli.dll - ok
14:23:57.0392 3792 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
14:23:57.0392 3792 C:\Windows\System32\netapi32.dll - ok
14:23:57.0392 3792 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
14:23:57.0392 3792 C:\Windows\System32\netutils.dll - ok
14:23:57.0408 3792 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
14:23:57.0408 3792 C:\Windows\System32\wkscli.dll - ok
14:23:57.0408 3792 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
14:23:57.0408 3792 C:\Windows\System32\samcli.dll - ok
14:23:57.0408 3792 [ F79C9E3947B904FA3200A2204F9C52BB ] C:\Windows\System32\tosWirelessLANIndicatorCP.dll
14:23:57.0408 3792 C:\Windows\System32\tosWirelessLANIndicatorCP.dll - ok
14:23:57.0408 3792 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
14:23:57.0408 3792 C:\Windows\System32\mfplat.dll - ok
14:23:57.0408 3792 [ 03E0955A7D8E5E74E7F6986A56A66196 ] C:\Windows\System32\MaxxAudioAPO30.dll
14:23:57.0408 3792 C:\Windows\System32\MaxxAudioAPO30.dll - ok
14:23:57.0424 3792 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
14:23:57.0424 3792 C:\Windows\System32\shell32.dll - ok
14:23:57.0424 3792 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
14:23:57.0424 3792 C:\Windows\System32\comres.dll - ok
14:23:57.0424 3792 [ AED6D63CFA5A3EF7021AF9C457FEE994 ] C:\Windows\System32\msvcr100.dll
14:23:57.0424 3792 C:\Windows\System32\msvcr100.dll - ok
14:23:57.0424 3792 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
14:23:57.0424 3792 C:\Windows\System32\wlanmsm.dll - ok
14:23:57.0439 3792 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
14:23:57.0439 3792 C:\Windows\System32\wlansec.dll - ok
14:23:57.0439 3792 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
14:23:57.0439 3792 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
14:23:57.0439 3792 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
14:23:57.0439 3792 C:\Windows\System32\drivers\fltMgr.sys - ok
14:23:57.0439 3792 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
14:23:57.0439 3792 C:\Windows\System32\onex.dll - ok
14:23:57.0439 3792 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
14:23:57.0439 3792 C:\Windows\System32\eappcfg.dll - ok
14:23:57.0455 3792 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
14:23:57.0455 3792 C:\Windows\System32\eappprxy.dll - ok
14:23:57.0455 3792 [ 08D8C5E32648D6E7976F0458545EA600 ] C:\Program Files\Toshiba\SmartFaceV\SmartFaceVCP.dll
14:23:57.0455 3792 C:\Program Files\Toshiba\SmartFaceV\SmartFaceVCP.dll - ok
14:23:57.0455 3792 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
14:23:57.0455 3792 C:\Windows\System32\wlgpclnt.dll - ok
14:23:57.0455 3792 [ D037BEA6039248D4DE0C5F361F19970D ] C:\Program Files\Toshiba\SmartFaceV\SmartFaceVHelper.dll
14:23:57.0455 3792 C:\Program Files\Toshiba\SmartFaceV\SmartFaceVHelper.dll - ok
14:23:57.0470 3792 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
14:23:57.0470 3792 C:\Windows\System32\l2gpstore.dll - ok
14:23:57.0470 3792 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
14:23:57.0470 3792 C:\Windows\System32\WinSCard.dll - ok
14:23:57.0470 3792 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
14:23:57.0470 3792 C:\Windows\System32\wlanutil.dll - ok
14:23:57.0470 3792 [ 7AE92C896AF9ABFBDB18C1D055B6EBA7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcp80.dll
14:23:57.0470 3792 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcp80.dll - ok
14:23:57.0470 3792 [ 4FFDE68C4B7C9993FA551E7E36DDB34D ] C:\Windows\System32\msxml6.dll
14:23:57.0470 3792 C:\Windows\System32\msxml6.dll - ok
14:23:57.0486 3792 [ 06A754FE28A06F780A099703CFCAAA22 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll
14:23:57.0486 3792 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll - ok
14:23:57.0486 3792 [ 9AE75388EE2C110216B8319584E8AC34 ] C:\Program Files\Toshiba\SmartFaceV\SmartFaceVCtrl.dll
14:23:57.0486 3792 C:\Program Files\Toshiba\SmartFaceV\SmartFaceVCtrl.dll - ok
14:23:57.0486 3792 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
14:23:57.0486 3792 C:\Windows\System32\shsvcs.dll - ok
14:23:57.0486 3792 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
14:23:57.0486 3792 C:\Windows\System32\schedsvc.dll - ok
14:23:57.0486 3792 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
14:23:57.0486 3792 C:\Windows\System32\ktmw32.dll - ok
14:23:57.0502 3792 [ 2A9238A326763122424E07EF320D5D3A ] C:\Program Files\Toshiba\SmartFaceV\FaceRec.dll
14:23:57.0502 3792 C:\Program Files\Toshiba\SmartFaceV\FaceRec.dll - ok
14:23:57.0502 3792 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
14:23:57.0502 3792 C:\Windows\System32\fveapi.dll - ok
14:23:57.0502 3792 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
14:23:57.0502 3792 C:\Windows\System32\tbs.dll - ok
14:23:57.0502 3792 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
14:23:57.0502 3792 C:\Windows\System32\fvecerts.dll - ok
14:23:57.0517 3792 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
14:23:57.0517 3792 C:\Windows\System32\wiarpc.dll - ok
14:23:57.0517 3792 [ 91175B7E997CFAC64F271A15B4217BC7 ] C:\Program Files\Toshiba\SmartFaceV\FaceHI.dll
14:23:57.0517 3792 C:\Program Files\Toshiba\SmartFaceV\FaceHI.dll - ok
14:23:57.0517 3792 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
14:23:57.0517 3792 C:\Windows\System32\taskcomp.dll - ok
14:23:57.0517 3792 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
14:23:57.0517 3792 C:\Windows\System32\drivers\http.sys - ok
14:23:57.0517 3792 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
14:23:57.0517 3792 C:\Windows\System32\spoolsv.exe - ok
14:23:57.0533 3792 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
14:23:57.0533 3792 C:\Windows\System32\drivers\bowser.sys - ok
14:23:57.0533 3792 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
14:23:57.0533 3792 C:\Windows\System32\drivers\mrxsmb.sys - ok
14:23:57.0533 3792 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
14:23:57.0533 3792 C:\Windows\System32\drivers\srvnet.sys - ok
14:23:57.0533 3792 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
14:23:57.0533 3792 C:\Windows\System32\drivers\mrxsmb10.sys - ok
14:23:57.0548 3792 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
14:23:57.0548 3792 C:\Windows\System32\drivers\mrxsmb20.sys - ok
14:23:57.0548 3792 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
14:23:57.0548 3792 C:\Windows\System32\netcfgx.dll - ok
14:23:57.0548 3792 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
14:23:57.0548 3792 C:\Windows\System32\drivers\srv.sys - ok
14:23:57.0548 3792 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
14:23:57.0548 3792 C:\Windows\System32\drivers\srv2.sys - ok
14:23:57.0548 3792 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
14:23:57.0548 3792 C:\Windows\System32\wkssvc.dll - ok
14:23:57.0564 3792 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
14:23:57.0564 3792 C:\Windows\System32\srvsvc.dll - ok
14:23:57.0564 3792 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
14:23:57.0564 3792 C:\Windows\System32\browser.dll - ok
14:23:57.0564 3792 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
14:23:57.0564 3792 C:\Windows\System32\netmsg.dll - ok
14:23:57.0564 3792 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
14:23:57.0564 3792 C:\Windows\System32\sscore.dll - ok
14:23:57.0564 3792 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
14:23:57.0580 3792 C:\Windows\System32\clusapi.dll - ok
14:23:57.0580 3792 [ 9C5BF3E0541B8A2F85DF1D642E495EE4 ] C:\Program Files\Toshiba\SmartFaceV\SmartFaceVLogOn.dll
14:23:57.0580 3792 C:\Program Files\Toshiba\SmartFaceV\SmartFaceVLogOn.dll - ok
14:23:57.0580 3792 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
14:23:57.0580 3792 C:\Windows\System32\resutils.dll - ok
14:23:57.0580 3792 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
14:23:57.0580 3792 C:\Windows\System32\certCredProvider.dll - ok
14:23:57.0580 3792 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
14:23:57.0580 3792 C:\Windows\System32\UXInit.dll - ok
14:23:57.0595 3792 [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
14:23:57.0595 3792 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
14:23:57.0595 3792 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
14:23:57.0595 3792 C:\Windows\System32\rasplap.dll - ok
14:23:57.0595 3792 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
14:23:57.0595 3792 C:\Windows\System32\rasapi32.dll - ok
14:23:57.0595 3792 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
14:23:57.0595 3792 C:\Windows\System32\rasman.dll - ok
14:23:57.0595 3792 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
14:23:57.0595 3792 C:\Windows\System32\rtutils.dll - ok
14:23:57.0611 3792 [ DC52DB637B27E2004237B4FAC7CAEF69 ] C:\Program Files (x86)\TOSHIBA\Wireless LAN Indicator\tosIndicator.exe
14:23:57.0611 3792 C:\Program Files (x86)\TOSHIBA\Wireless LAN Indicator\tosIndicator.exe - ok
14:23:57.0611 3792 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
14:23:57.0611 3792 C:\Windows\System32\imageres.dll - ok
14:23:57.0611 3792 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
14:23:57.0611 3792 C:\Windows\SysWOW64\ntdll.dll - ok
14:23:57.0611 3792 [ B1E3772FFA96AC5AEE89BF202AF8E348 ] C:\Windows\System32\wow64.dll
14:23:57.0611 3792 C:\Windows\System32\wow64.dll - ok
14:23:57.0626 3792 [ FC5A43FA257F546F8F2B96B5529857E1 ] C:\Windows\System32\wow64win.dll
14:23:57.0626 3792 C:\Windows\System32\wow64win.dll - ok
14:23:57.0626 3792 [ AA0D2571A4348838B8DD49FD0043826A ] C:\Windows\System32\wow64cpu.dll
14:23:57.0626 3792 C:\Windows\System32\wow64cpu.dll - ok
14:23:57.0626 3792 [ 99C3F8E9CC59D95666EB8D8A8B4C2BEB ] C:\Windows\SysWOW64\kernel32.dll
14:23:57.0626 3792 C:\Windows\SysWOW64\kernel32.dll - ok
14:23:57.0626 3792 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
14:23:57.0626 3792 C:\Windows\SysWOW64\mscoree.dll - ok
14:23:57.0626 3792 [ 5C2D21C9B6B6175B89BC5D7E3CB979E1 ] C:\Windows\SysWOW64\KernelBase.dll
14:23:57.0626 3792 C:\Windows\SysWOW64\KernelBase.dll - ok
14:23:57.0642 3792 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
14:23:57.0642 3792 C:\Windows\SysWOW64\advapi32.dll - ok
14:23:57.0642 3792 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
14:23:57.0642 3792 C:\Windows\SysWOW64\msvcrt.dll - ok
14:23:57.0642 3792 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
14:23:57.0642 3792 C:\Windows\SysWOW64\rpcrt4.dll - ok
14:23:57.0642 3792 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
14:23:57.0642 3792 C:\Windows\SysWOW64\sechost.dll - ok
14:23:57.0658 3792 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
14:23:57.0658 3792 C:\Windows\SysWOW64\cryptbase.dll - ok
14:23:57.0658 3792 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
14:23:57.0658 3792 C:\Windows\SysWOW64\sspicli.dll - ok
14:23:57.0658 3792 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
14:23:57.0658 3792 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
14:23:57.0658 3792 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
14:23:57.0658 3792 C:\Windows\SysWOW64\shlwapi.dll - ok
14:23:57.0658 3792 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
14:23:57.0658 3792 C:\Windows\SysWOW64\gdi32.dll - ok
14:23:57.0673 3792 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
14:23:57.0673 3792 C:\Windows\SysWOW64\user32.dll - ok
14:23:57.0673 3792 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
14:23:57.0673 3792 C:\Windows\SysWOW64\lpk.dll - ok
14:23:57.0673 3792 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll
14:23:57.0673 3792 C:\Windows\SysWOW64\usp10.dll - ok
14:23:57.0673 3792 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
14:23:57.0673 3792 C:\Windows\SysWOW64\imm32.dll - ok
14:23:57.0673 3792 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
14:23:57.0673 3792 C:\Windows\SysWOW64\msctf.dll - ok
14:23:57.0689 3792 [ 4552F8F61A7975C2359D19673483604D ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
14:23:57.0689 3792 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
14:23:57.0689 3792 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
14:23:57.0689 3792 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
14:23:57.0689 3792 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
14:23:57.0689 3792 C:\Windows\System32\netprofm.dll - ok
14:23:57.0689 3792 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
14:23:57.0689 3792 C:\Windows\System32\PSHED.DLL - ok
14:23:57.0704 3792 [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
14:23:57.0704 3792 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
14:23:57.0704 3792 [ 4F5414602E2544A4554D95517948B705 ] C:\Windows\System32\cryptsvc.dll
14:23:57.0704 3792 C:\Windows\System32\cryptsvc.dll - ok
14:23:57.0704 3792 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
14:23:57.0704 3792 C:\Windows\System32\rasadhlp.dll - ok
14:23:57.0704 3792 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
14:23:57.0704 3792 C:\Windows\System32\dps.dll - ok
14:23:57.0704 3792 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
14:23:57.0704 3792 C:\Windows\System32\FDResPub.dll - ok
14:23:57.0720 3792 [ E127420B7FEB65C7F279EAAC183BBC0E ] C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\ccsvchst.exe
14:23:57.0720 3792 C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\ccsvchst.exe - ok
14:23:57.0720 3792 [ 1D817D77C8EB600AB311AAC8E68B5A1A ] C:\Windows\System32\cryptnet.dll
14:23:57.0720 3792 C:\Windows\System32\cryptnet.dll - ok
14:23:57.0720 3792 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
14:23:57.0720 3792 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
14:23:57.0720 3792 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
14:23:57.0720 3792 C:\Windows\System32\taskschd.dll - ok
14:23:57.0736 3792 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
14:23:57.0736 3792 C:\Windows\System32\WSDApi.dll - ok
14:23:57.0736 3792 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
14:23:57.0736 3792 C:\Windows\System32\vssapi.dll - ok
14:23:57.0736 3792 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
14:23:57.0736 3792 C:\Windows\SysWOW64\ole32.dll - ok
14:23:57.0736 3792 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
14:23:57.0736 3792 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
14:23:57.0736 3792 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
14:23:57.0736 3792 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
14:23:57.0751 3792 [ F6914429533842B964C98062B657FB1B ] C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\ccl110u.dll
14:23:57.0751 3792 C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\ccl110u.dll - ok
14:23:57.0751 3792 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
14:23:57.0751 3792 C:\Windows\SysWOW64\oleaut32.dll - ok
14:23:57.0751 3792 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
14:23:57.0751 3792 C:\Windows\SysWOW64\ws2_32.dll - ok
14:23:57.0751 3792 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
14:23:57.0751 3792 C:\Windows\SysWOW64\nsi.dll - ok
14:23:57.0767 3792 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
14:23:57.0767 3792 C:\Windows\SysWOW64\dbghelp.dll - ok
14:23:57.0767 3792 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
14:23:57.0767 3792 C:\Windows\SysWOW64\version.dll - ok
14:23:57.0767 3792 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
14:23:57.0767 3792 C:\Windows\System32\vsstrace.dll - ok
14:23:57.0767 3792 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
14:23:57.0767 3792 C:\Windows\System32\webservices.dll - ok
14:23:57.0767 3792 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
14:23:57.0767 3792 C:\Windows\System32\fundisc.dll - ok
14:23:57.0782 3792 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
14:23:57.0782 3792 C:\Windows\SysWOW64\shell32.dll - ok
14:23:57.0782 3792 [ C2335D714EFAFFFB4C7A3C164F2024B1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll
14:23:57.0782 3792 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll - ok
14:23:57.0782 3792 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
14:23:57.0782 3792 C:\Windows\SysWOW64\profapi.dll - ok
14:23:57.0782 3792 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
14:23:57.0782 3792 C:\Windows\System32\aepic.dll - ok
14:23:57.0798 3792 [ 4A435F95B940E93A88FEC144BD409789 ] C:\Windows\System32\ncsi.dll
14:23:57.0798 3792 C:\Windows\System32\ncsi.dll - ok
14:23:57.0798 3792 [ 1EE99A89CC788ADA662441D1E9830529 ] C:\Windows\System32\nlasvc.dll
14:23:57.0798 3792 C:\Windows\System32\nlasvc.dll - ok
14:23:57.0798 3792 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
14:23:57.0798 3792 C:\Windows\System32\pcasvc.dll - ok
14:23:57.0798 3792 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
14:23:57.0798 3792 C:\Windows\System32\winhttp.dll - ok
14:23:57.0814 3792 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
14:23:57.0814 3792 C:\Windows\SysWOW64\cfgmgr32.dll - ok
14:23:57.0814 3792 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
14:23:57.0814 3792 C:\Windows\SysWOW64\psapi.dll - ok
14:23:57.0814 3792 [ 47A2726C35EA4FF56EF1B5D89981992C ] C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\ccvrtrst.dll
14:23:57.0814 3792 C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\ccvrtrst.dll - ok
14:23:57.0814 3792 [ 88104CCBC329D185A881031A11259229 ] C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccL90U.dll
14:23:57.0814 3792 C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccL90U.dll - ok
14:23:57.0814 3792 [ 2F86BE1818C2D7AC90478E3323EE7FCB ] C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe
14:23:57.0814 3792 C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe - ok
14:23:57.0829 3792 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
14:23:57.0829 3792 C:\Windows\System32\sfc.dll - ok
14:23:57.0829 3792 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
14:23:57.0829 3792 C:\Windows\System32\sfc_os.dll - ok
14:23:57.0829 3792 [ 54F221E0E18440E254FFE6E528904838 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\efacli.dll
14:23:57.0829 3792 C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\efacli.dll - ok
14:23:57.0829 3792 [ 0EAD8118270D275149CA1422978BD642 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\ccsvc.dll
14:23:57.0829 3792 C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\ccsvc.dll - ok
14:23:57.0845 3792 [ CE31A8785554D2B546113031606A99E7 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\srtsp32.dll
14:23:57.0845 3792 C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\srtsp32.dll - ok
14:23:57.0845 3792 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
14:23:57.0845 3792 C:\Windows\System32\webio.dll - ok
14:23:57.0845 3792 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
14:23:57.0845 3792 C:\Windows\System32\ssdpapi.dll - ok
14:23:57.0845 3792 [ 58C8D469EDCA6C4396FC941107065AFA ] C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\ccipc.dll
14:23:57.0845 3792 C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\ccipc.dll - ok
14:23:57.0860 3792 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
14:23:57.0860 3792 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
14:23:57.0860 3792 [ E8414D8A52FED02985BF588CB062E0BB ] C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\dimaster.dll
14:23:57.0860 3792 C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\dimaster.dll - ok
14:23:57.0860 3792 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
14:23:57.0860 3792 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
14:23:57.0860 3792 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
14:23:57.0860 3792 C:\Windows\SysWOW64\secur32.dll - ok
14:23:57.0860 3792 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
14:23:57.0860 3792 C:\Windows\SysWOW64\winnsi.dll - ok
14:23:57.0876 3792 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
14:23:57.0876 3792 C:\Windows\SysWOW64\winsta.dll - ok
14:23:57.0876 3792 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
14:23:57.0876 3792 C:\Windows\SysWOW64\wtsapi32.dll - ok
14:23:57.0876 3792 [ BAC6EEDE73F2D61583982A07E6382015 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\ccset.dll
14:23:57.0876 3792 C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\ccset.dll - ok
14:23:57.0876 3792 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
14:23:57.0876 3792 C:\Windows\SysWOW64\clbcatq.dll - ok
14:23:57.0892 3792 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
14:23:57.0892 3792 C:\Windows\SysWOW64\wbemcomn.dll - ok
14:23:57.0892 3792 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
14:23:57.0892 3792 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
14:23:57.0892 3792 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
14:23:57.0892 3792 C:\Windows\SysWOW64\cryptsp.dll - ok
14:23:57.0892 3792 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
14:23:57.0892 3792 C:\Windows\SysWOW64\rsaenh.dll - ok
14:23:57.0892 3792 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
14:23:57.0892 3792 C:\Windows\System32\aeevts.dll - ok
14:23:57.0907 3792 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
14:23:57.0907 3792 C:\Windows\System32\drivers\PEAuth.sys - ok
14:23:57.0907 3792 [ 0921ED273D89BA9778437ECD26B6A78A ] C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccVrTrst.dll
14:23:57.0907 3792 C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccVrTrst.dll - ok
14:23:57.0907 3792 [ 6684437F3628EF237C354F77D33426D1 ] C:\Windows\SysWOW64\rpcnet.exe
14:23:57.0907 3792 C:\Windows\SysWOW64\rpcnet.exe - ok
14:23:57.0907 3792 [ BA32509D9B340162327B341013DE6522 ] C:\Windows\SysWOW64\tapi32.dll
14:23:57.0907 3792 C:\Windows\SysWOW64\tapi32.dll - ok
14:23:57.0923 3792 [ 1295338CFE6F249823EF9BC8D4368A84 ] C:\Windows\SysWOW64\crypt32.dll
14:23:57.0923 3792 C:\Windows\SysWOW64\crypt32.dll - ok
14:23:57.0923 3792 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
14:23:57.0923 3792 C:\Windows\SysWOW64\msasn1.dll - ok
14:23:57.0923 3792 [ A7D79E9F660340AB20CD73F12910985F ] C:\Windows\SysWOW64\wintrust.dll
14:23:57.0923 3792 C:\Windows\SysWOW64\wintrust.dll - ok
14:23:57.0923 3792 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
14:23:57.0923 3792 C:\Windows\SysWOW64\apphelp.dll - ok
14:23:57.0923 3792 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
14:23:57.0923 3792 C:\Windows\SysWOW64\netapi32.dll - ok
14:23:57.0938 3792 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
14:23:57.0938 3792 C:\Windows\SysWOW64\netutils.dll - ok
14:23:57.0938 3792 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
14:23:57.0938 3792 C:\Windows\SysWOW64\srvcli.dll - ok
14:23:57.0938 3792 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
14:23:57.0938 3792 C:\Windows\SysWOW64\userenv.dll - ok
14:23:57.0938 3792 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
14:23:57.0938 3792 C:\Windows\SysWOW64\wkscli.dll - ok
14:23:57.0954 3792 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
14:23:57.0954 3792 C:\Windows\SysWOW64\wsock32.dll - ok
14:23:57.0954 3792 [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
14:23:57.0954 3792 C:\Windows\AppPatch\AcGenral.dll - ok
14:23:57.0954 3792 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
14:23:57.0954 3792 C:\Windows\SysWOW64\imagehlp.dll - ok
14:23:57.0954 3792 [ 591FE0A6CEB19BF886CEB1331F591940 ] C:\Windows\SysWOW64\ncrypt.dll
14:23:57.0954 3792 C:\Windows\SysWOW64\ncrypt.dll - ok
14:23:57.0954 3792 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
14:23:57.0954 3792 C:\Windows\SysWOW64\bcrypt.dll - ok
14:23:57.0970 3792 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
14:23:57.0970 3792 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
14:23:57.0970 3792 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
14:23:57.0970 3792 C:\Windows\SysWOW64\gpapi.dll - ok
14:23:57.0970 3792 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll

#10 ken08

ken08

    New Member

  • Members
  • Pip
  • 12 posts

Posted 09 October 2012 - 01:31 PM

14:23:57.0970 3792 C:\Windows\SysWOW64\uxtheme.dll - ok
14:23:57.0970 3792 [ 4050600091370422C9B20AC34DC1ACAC ] C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvc.dll
14:23:57.0970 3792 C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvc.dll - ok
14:23:57.0985 3792 [ 09A06ECC3CE3048B17F25F75ACC63D14 ] C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccIPC.dll
14:23:57.0985 3792 C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccIPC.dll - ok
14:23:57.0985 3792 [ 6316957BB3431DFB06BFFA98C0F1926E ] C:\Windows\SysWOW64\cryptnet.dll
14:23:57.0985 3792 C:\Windows\SysWOW64\cryptnet.dll - ok
14:23:57.0985 3792 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
14:23:57.0985 3792 C:\Windows\SysWOW64\samcli.dll - ok
14:23:57.0985 3792 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
14:23:57.0985 3792 C:\Windows\SysWOW64\winmm.dll - ok
14:23:57.0985 3792 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
14:23:57.0985 3792 C:\Windows\SysWOW64\Wldap32.dll - ok
14:23:58.0001 3792 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
14:23:58.0001 3792 C:\Windows\SysWOW64\dwmapi.dll - ok
14:23:58.0001 3792 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
14:23:58.0001 3792 C:\Windows\SysWOW64\msacm32.dll - ok
14:23:58.0001 3792 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
14:23:58.0001 3792 C:\Windows\SysWOW64\setupapi.dll - ok
14:23:58.0001 3792 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
14:23:58.0001 3792 C:\Windows\SysWOW64\sfc.dll - ok
14:23:58.0001 3792 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
14:23:58.0001 3792 C:\Windows\SysWOW64\sfc_os.dll - ok
14:23:58.0016 3792 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
14:23:58.0016 3792 C:\Windows\SysWOW64\SensApi.dll - ok
14:23:58.0016 3792 [ 725E8022808C6B92D99EF36F2E9FCE02 ] C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\diMaster.dll
14:23:58.0016 3792 C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\diMaster.dll - ok
14:23:58.0016 3792 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
14:23:58.0016 3792 C:\Windows\SysWOW64\devobj.dll - ok
14:23:58.0016 3792 [ 9FAC0F6D5F3D922DB294E30CD3F62369 ] C:\Windows\SysWOW64\urlmon.dll
14:23:58.0016 3792 C:\Windows\SysWOW64\urlmon.dll - ok
14:23:58.0016 3792 [ 2B61F6766CAE1125C00DD9DDD268D876 ] C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSet.dll
14:23:58.0016 3792 C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSet.dll - ok
14:23:58.0032 3792 [ 5B465C535EA4F73C4B14A1320B8CA5F8 ] C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccJobMgr.dll
14:23:58.0032 3792 C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccJobMgr.dll - ok
14:23:58.0032 3792 [ EB8A00E8E9931A7EC04F920B09D880D8 ] C:\Windows\SysWOW64\iertutil.dll
14:23:58.0032 3792 C:\Windows\SysWOW64\iertutil.dll - ok
14:23:58.0032 3792 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
14:23:58.0032 3792 C:\Windows\SysWOW64\powrprof.dll - ok
14:23:58.0032 3792 [ 5553611E2F9EA6F613079177F1233068 ] C:\Windows\SysWOW64\wininet.dll
14:23:58.0032 3792 C:\Windows\SysWOW64\wininet.dll - ok
14:23:58.0048 3792 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
14:23:58.0048 3792 C:\Windows\SysWOW64\mpr.dll - ok
14:23:58.0048 3792 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
14:23:58.0048 3792 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
14:23:58.0048 3792 [ 11D2208DC9F65F704751862ED048AC04 ] C:\Windows\SysWOW64\rpcnet.dll
14:23:58.0048 3792 C:\Windows\SysWOW64\rpcnet.dll - ok
14:23:58.0048 3792 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
14:23:58.0048 3792 C:\Windows\System32\drivers\secdrv.sys - ok
14:23:58.0048 3792 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
14:23:58.0048 3792 C:\Windows\SysWOW64\ntmarta.dll - ok
14:23:58.0063 3792 [ C6CC9297BD53E5229653303E556AA539 ] C:\Windows\System32\drivers\Sftfslh.sys
14:23:58.0063 3792 C:\Windows\System32\drivers\Sftfslh.sys - ok
14:23:58.0063 3792 [ 390AA7BC52CEE43F6790CDEA1E776703 ] C:\Windows\System32\drivers\Sftplaylh.sys
14:23:58.0063 3792 C:\Windows\System32\drivers\Sftplaylh.sys - ok
14:23:58.0063 3792 [ C3CDDD18F43D44AB713CF8C4916F7696 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
14:23:58.0063 3792 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe - ok
14:23:58.0063 3792 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
14:23:58.0063 3792 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
14:23:58.0079 3792 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
14:23:58.0079 3792 C:\Windows\SysWOW64\credssp.dll - ok
14:23:58.0079 3792 [ DF687E3D8836BFB04FCC0615BF15A519 ] C:\Windows\System32\drivers\tcpipreg.sys
14:23:58.0079 3792 C:\Windows\System32\drivers\tcpipreg.sys - ok
14:23:58.0079 3792 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
14:23:58.0079 3792 C:\Windows\System32\sysmain.dll - ok
14:23:58.0079 3792 [ 8E2C799D3476EAC32C3BA0DF7CE6AF19 ] C:\Windows\System32\TODDSrv.exe
14:23:58.0079 3792 C:\Windows\System32\TODDSrv.exe - ok
14:23:58.0094 3792 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
14:23:58.0094 3792 C:\Windows\System32\wiaservc.dll - ok
14:23:58.0094 3792 [ 1C73689B900428C7D054A41C4687F55C ] C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
14:23:58.0094 3792 C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe - ok
14:23:58.0094 3792 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
14:23:58.0094 3792 C:\Windows\System32\wiatrace.dll - ok
14:23:58.0094 3792 [ 3EAE925DCD7D2704982BBCA4DC7EAE7E ] C:\Program Files\Toshiba\Power Saver\TPwrReg.dll
14:23:58.0094 3792 C:\Program Files\Toshiba\Power Saver\TPwrReg.dll - ok
14:23:58.0094 3792 [ D1103CFC8D7EA09ED22536EC301603F9 ] C:\Program Files\Toshiba\Power Saver\TPwrFunc.dll
14:23:58.0094 3792 C:\Program Files\Toshiba\Power Saver\TPwrFunc.dll - ok
14:23:58.0110 3792 [ DF5246F51E8557E20D40B3641CAE57B7 ] C:\Program Files\Toshiba\Power Saver\TtosFunc.dll
14:23:58.0110 3792 C:\Program Files\Toshiba\Power Saver\TtosFunc.dll - ok
14:23:58.0110 3792 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
14:23:58.0110 3792 C:\Windows\System32\winspool.drv - ok
14:23:58.0110 3792 [ 26A68554F95A344B62E5771AF598E0E8 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll
14:23:58.0110 3792 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll - ok
14:23:58.0110 3792 [ B99AE052439A204F3C0377FEEFF76573 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\tosIndicator\2b1b71df5141ab83ead4e95c8c23d56b\tosIndicator.ni.exe
14:23:58.0110 3792 C:\Windows\assembly\NativeImages_v2.0.50727_32\tosIndicator\2b1b71df5141ab83ead4e95c8c23d56b\tosIndicator.ni.exe - ok
14:23:58.0126 3792 [ 01D585C95A0E752EFFB11EA899B0E387 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll
14:23:58.0126 3792 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll - ok
14:23:58.0126 3792 [ 777F34146CD4126A2B8D6F2342F57536 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\14a87218ea49639f38097e278b98a3da\PresentationCore.ni.dll
14:23:58.0126 3792 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\14a87218ea49639f38097e278b98a3da\PresentationCore.ni.dll - ok
14:23:58.0126 3792 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
14:23:58.0126 3792 C:\Windows\System32\dllhost.exe - ok
14:23:58.0126 3792 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
14:23:58.0126 3792 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
14:23:58.0141 3792 [ 2BACD71123F42CEA603F4E205E1AE337 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:23:58.0141 3792 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
14:23:58.0141 3792 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
14:23:58.0141 3792 C:\Windows\System32\trkwks.dll - ok
14:23:58.0141 3792 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
14:23:58.0141 3792 C:\Windows\System32\wbem\WMIsvc.dll - ok
14:23:58.0141 3792 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
14:23:58.0141 3792 C:\Windows\System32\wbemcomn.dll - ok
14:23:58.0141 3792 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
14:23:58.0141 3792 C:\Windows\System32\wbem\WinMgmtR.dll - ok
14:23:58.0157 3792 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
14:23:58.0157 3792 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
14:23:58.0157 3792 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
14:23:58.0157 3792 C:\Windows\System32\wbem\fastprox.dll - ok
14:23:58.0157 3792 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
14:23:58.0157 3792 C:\Windows\System32\wbem\wbemcore.dll - ok
14:23:58.0157 3792 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
14:23:58.0157 3792 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
14:23:58.0172 3792 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
14:23:58.0172 3792 C:\Windows\System32\SensApi.dll - ok
14:23:58.0172 3792 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
14:23:58.0172 3792 C:\Windows\System32\wbem\esscli.dll - ok
14:23:58.0172 3792 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
14:23:58.0172 3792 C:\Windows\System32\wer.dll - ok
14:23:58.0172 3792 [ 13693B6354DD6E72DC5131DA7D764B90 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
14:23:58.0172 3792 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe - ok
14:23:58.0172 3792 [ 6177E1A8F215576A56D437B48A00848B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll
14:23:58.0172 3792 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll - ok
14:23:58.0188 3792 [ 295E1F2BC1AFDAFD98FF426BCE524BA9 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll
14:23:58.0188 3792 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll - ok
14:23:58.0188 3792 [ A733CC986EB51F8FBF598B981DC19FBA ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll
14:23:58.0188 3792 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll - ok
14:23:58.0188 3792 [ 32BFCF1CA719F2A3A31C721BD5F90303 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll
14:23:58.0188 3792 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll - ok
14:23:58.0188 3792 [ 40EE4E67311F4019CCA2120D88C60576 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll
14:23:58.0188 3792 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll - ok
14:23:58.0204 3792 [ 09AB81CEE443569D9A3CC151DDF70444 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll
14:23:58.0204 3792 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll - ok
14:23:58.0204 3792 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
14:23:58.0204 3792 C:\Windows\SysWOW64\winhttp.dll - ok
14:23:58.0204 3792 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
14:23:58.0204 3792 C:\Windows\SysWOW64\webio.dll - ok
14:23:58.0204 3792 [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\SysWOW64\logoncli.dll
14:23:58.0204 3792 C:\Windows\SysWOW64\logoncli.dll - ok
14:23:58.0219 3792 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
14:23:58.0219 3792 C:\Windows\SysWOW64\msi.dll - ok
14:23:58.0219 3792 [ 63AAFCF3EA5DBB17123E0BAE9AFE4D58 ] C:\Program Files\Toshiba\TECO\TecoService.exe
14:23:58.0219 3792 C:\Program Files\Toshiba\TECO\TecoService.exe - ok
14:23:58.0219 3792 [ F9C8015C85E7A8CC5513A3AD1CA0ABDC ] C:\Program Files\Toshiba\TECO\TecoHci.dll
14:23:58.0219 3792 C:\Program Files\Toshiba\TECO\TecoHci.dll - ok
14:23:58.0219 3792 [ 617E29A0B0A2807466560D4C4E338D3E ] C:\Windows\System32\drivers\Sftredirlh.sys
14:23:58.0219 3792 C:\Windows\System32\drivers\Sftredirlh.sys - ok
14:23:58.0219 3792 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
14:23:58.0219 3792 C:\Windows\SysWOW64\fltLib.dll - ok
14:23:58.0235 3792 [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\SysWOW64\schannel.dll
14:23:58.0235 3792 C:\Windows\SysWOW64\schannel.dll - ok
14:23:58.0235 3792 [ C92C6145D2C44C4259C22228B24411F2 ] C:\Program Files\Toshiba\TECO\TecoPower.dll
14:23:58.0235 3792 C:\Program Files\Toshiba\TECO\TecoPower.dll - ok
14:23:58.0235 3792 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
14:23:58.0235 3792 C:\Windows\System32\dssenh.dll - ok
14:23:58.0235 3792 [ D9A9702E43A5859896F34898D5FD3FEC ] C:\Windows\SysWOW64\msxml6.dll
14:23:58.0235 3792 C:\Windows\SysWOW64\msxml6.dll - ok
14:23:58.0250 3792 [ 72794D112CBAFF3BC0C29BF7350D4741 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
14:23:58.0250 3792 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE - ok
14:23:58.0250 3792 [ C797D1677BA81306AFBB9FA8A9A8F483 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL
14:23:58.0250 3792 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL - ok
14:23:58.0250 3792 [ 108C2CFA5527458C096A699929ECBD80 ] C:\Windows\SysWOW64\credui.dll
14:23:58.0250 3792 C:\Windows\SysWOW64\credui.dll - ok
14:23:58.0250 3792 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
14:23:58.0250 3792 C:\Windows\SysWOW64\oleacc.dll - ok
14:23:58.0266 3792 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
14:23:58.0266 3792 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
14:23:58.0266 3792 [ 565A30B70BE8A9B171839003F2D69683 ] C:\Windows\SysWOW64\hlink.dll
14:23:58.0266 3792 C:\Windows\SysWOW64\hlink.dll - ok
14:23:58.0266 3792 [ 74AF1FFCAFD60DA88A386AE161F56438 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll
14:23:58.0266 3792 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll - ok
14:23:58.0266 3792 [ B08E3476F0874DBAD672D0AC4FB2580B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll
14:23:58.0266 3792 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll - ok
14:23:58.0266 3792 [ 4C1E16B9A53102C8D6FBA587CBCB95DE ] C:\Windows\SysWOW64\msv1_0.dll
14:23:58.0266 3792 C:\Windows\SysWOW64\msv1_0.dll - ok
14:23:58.0282 3792 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\SysWOW64\cryptdll.dll
14:23:58.0282 3792 C:\Windows\SysWOW64\cryptdll.dll - ok
14:23:58.0282 3792 [ 1CDEA9188899E76D4FFD54C9D512CCDB ] C:\Windows\SysWOW64\msxml3.dll
14:23:58.0282 3792 C:\Windows\SysWOW64\msxml3.dll - ok
14:23:58.0282 3792 [ 02E185944CFA58DAD47D409E5655FB28 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e717a230496832656b05b515eb9f3bc5\PresentationFramework.ni.dll
14:23:58.0282 3792 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e717a230496832656b05b515eb9f3bc5\PresentationFramework.ni.dll - ok
14:23:58.0282 3792 [ AEDDFD540E3E6BECDB14C30D1F12B78A ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
14:23:58.0282 3792 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
14:23:58.0297 3792 [ DDFBFD8959F32AC0CF3947F36BAC3081 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
14:23:58.0297 3792 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
14:23:58.0297 3792 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
14:23:58.0297 3792 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
14:23:58.0297 3792 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
14:23:58.0297 3792 C:\Windows\System32\ntdsapi.dll - ok
14:23:58.0297 3792 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
14:23:58.0297 3792 C:\Windows\System32\wbem\wbemprox.dll - ok
14:23:58.0297 3792 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
14:23:58.0297 3792 C:\Windows\System32\wbem\wbemsvc.dll - ok
14:23:58.0313 3792 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
14:23:58.0313 3792 C:\Windows\System32\wbem\wmiutils.dll - ok
14:23:58.0313 3792 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
14:23:58.0313 3792 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
14:23:58.0313 3792 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
14:23:58.0313 3792 C:\Windows\SysWOW64\wlanapi.dll - ok
14:23:58.0313 3792 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
14:23:58.0313 3792 C:\Windows\SysWOW64\wlanutil.dll - ok
14:23:58.0328 3792 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
14:23:58.0328 3792 C:\Windows\System32\wdi.dll - ok
14:23:58.0328 3792 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
14:23:58.0328 3792 C:\Windows\System32\wpdbusenum.dll - ok
14:23:58.0328 3792 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
14:23:58.0328 3792 C:\Windows\SysWOW64\d3d9.dll - ok
14:23:58.0328 3792 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
14:23:58.0328 3792 C:\Windows\System32\IDStore.dll - ok
14:23:58.0328 3792 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
14:23:58.0328 3792 C:\Windows\System32\wbem\repdrvfs.dll - ok
14:23:58.0344 3792 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
14:23:58.0344 3792 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
14:23:58.0344 3792 [ 08F0BE836428436724EE15964AE8A2E1 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
14:23:58.0344 3792 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
14:23:58.0344 3792 [ 0B2D65FDDE31069299AA6330F359FF9C ] C:\Windows\System32\msxml3.dll
14:23:58.0344 3792 C:\Windows\System32\msxml3.dll - ok
14:23:58.0344 3792 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
14:23:58.0344 3792 C:\Windows\SysWOW64\ntdsapi.dll - ok
14:23:58.0360 3792 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
14:23:58.0360 3792 C:\Windows\System32\diagperf.dll - ok
14:23:58.0360 3792 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
14:23:58.0360 3792 C:\Windows\System32\perftrack.dll - ok
14:23:58.0360 3792 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
14:23:58.0360 3792 C:\Windows\System32\PortableDeviceApi.dll - ok
14:23:58.0360 3792 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
14:23:58.0360 3792 C:\Windows\System32\mpr.dll - ok
14:23:58.0360 3792 [ 517110BD83835338C037269E603DB55D ] C:\Windows\System32\taskhost.exe
14:23:58.0360 3792 C:\Windows\System32\taskhost.exe - ok
14:23:58.0375 3792 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
14:23:58.0375 3792 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
14:23:58.0375 3792 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
14:23:58.0375 3792 C:\Windows\System32\PlaySndSrv.dll - ok
14:23:58.0375 3792 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
14:23:58.0375 3792 C:\Windows\System32\MsCtfMonitor.dll - ok
14:23:58.0375 3792 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
14:23:58.0375 3792 C:\Windows\System32\msutb.dll - ok
14:23:58.0375 3792 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
14:23:58.0375 3792 C:\Windows\System32\Apphlpdm.dll - ok
14:23:58.0391 3792 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
14:23:58.0391 3792 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
14:23:58.0391 3792 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
14:23:58.0391 3792 C:\Windows\System32\ncobjapi.dll - ok
14:23:58.0391 3792 [ 2A46FFE841EC43001D5A293A54DB34DE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
14:23:58.0391 3792 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
14:23:58.0391 3792 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
14:23:58.0391 3792 C:\Windows\System32\HotStartUserAgent.dll - ok
14:23:58.0406 3792 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
14:23:58.0406 3792 C:\Windows\System32\pnpts.dll - ok
14:23:58.0406 3792 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
14:23:58.0406 3792 C:\Windows\System32\wdiasqmmodule.dll - ok
14:23:58.0406 3792 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
14:23:58.0406 3792 C:\Windows\System32\p2pcollab.dll - ok
14:23:58.0406 3792 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
14:23:58.0406 3792 C:\Windows\System32\userinit.exe - ok
14:23:58.0406 3792 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
14:23:58.0406 3792 C:\Windows\System32\wbem\wbemess.dll - ok
14:23:58.0422 3792 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
14:23:58.0422 3792 C:\Windows\System32\dwm.exe - ok
14:23:58.0422 3792 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
14:23:58.0422 3792 C:\Windows\System32\dwmredir.dll - ok
14:23:58.0422 3792 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
14:23:58.0422 3792 C:\Windows\System32\dwmcore.dll - ok
14:23:58.0422 3792 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
14:23:58.0422 3792 C:\Windows\System32\taskeng.exe - ok
14:23:58.0438 3792 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
14:23:58.0438 3792 C:\Windows\System32\QAGENTRT.DLL - ok
14:23:58.0438 3792 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
14:23:58.0438 3792 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
14:23:58.0438 3792 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
14:23:58.0438 3792 C:\Windows\System32\localspl.dll - ok
14:23:58.0438 3792 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
14:23:58.0438 3792 C:\Windows\System32\NapiNSP.dll - ok
14:23:58.0438 3792 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
14:23:58.0438 3792 C:\Windows\System32\pnrpnsp.dll - ok
14:23:58.0453 3792 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
14:23:58.0453 3792 C:\Windows\System32\winrnr.dll - ok
14:23:58.0453 3792 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
14:23:58.0453 3792 C:\Windows\System32\fveui.dll - ok
14:23:58.0453 3792 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:23:58.0453 3792 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
14:23:58.0453 3792 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
14:23:58.0453 3792 C:\Windows\System32\TSChannel.dll - ok
14:23:58.0469 3792 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
14:23:58.0469 3792 C:\Windows\System32\d3d10_1.dll - ok
14:23:58.0469 3792 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
14:23:58.0469 3792 C:\Windows\System32\wbem\cimwin32.dll - ok
14:23:58.0469 3792 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
14:23:58.0469 3792 C:\Windows\System32\wbem\wmiprov.dll - ok
14:23:58.0469 3792 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
14:23:58.0469 3792 C:\Windows\explorer.exe - ok
14:23:58.0469 3792 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
14:23:58.0469 3792 C:\Windows\System32\d3d10_1core.dll - ok
14:23:58.0484 3792 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
14:23:58.0484 3792 C:\Windows\System32\dxgi.dll - ok
14:23:58.0484 3792 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
14:23:58.0484 3792 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
14:23:58.0484 3792 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
14:23:58.0484 3792 C:\Windows\System32\spoolss.dll - ok
14:23:58.0484 3792 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
14:23:58.0484 3792 C:\Windows\System32\FXSMON.dll - ok
14:23:58.0484 3792 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
14:23:58.0500 3792 C:\Windows\System32\PrintIsolationProxy.dll - ok
14:23:58.0500 3792 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
14:23:58.0500 3792 C:\Windows\System32\radardt.dll - ok
14:23:58.0500 3792 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
14:23:58.0500 3792 C:\Windows\System32\tcpmon.dll - ok
14:23:58.0500 3792 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
14:23:58.0500 3792 C:\Windows\SysWOW64\cscapi.dll - ok
14:23:58.0500 3792 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
14:23:58.0500 3792 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
14:23:58.0516 3792 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
14:23:58.0516 3792 C:\Windows\System32\snmpapi.dll - ok
14:23:58.0516 3792 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
14:23:58.0516 3792 C:\Windows\System32\wsnmp32.dll - ok
14:23:58.0516 3792 [ F5138EEC090C296CF6FB6C6C19BE1D9E ] C:\Windows\System32\igd10umd64.dll
14:23:58.0516 3792 C:\Windows\System32\igd10umd64.dll - ok
14:23:58.0516 3792 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
14:23:58.0516 3792 C:\Windows\System32\usbmon.dll - ok
14:23:58.0516 3792 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
14:23:58.0516 3792 C:\Windows\System32\WSDMon.dll - ok
14:23:58.0531 3792 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
14:23:58.0531 3792 C:\Windows\System32\fdPnp.dll - ok
14:23:58.0531 3792 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
14:23:58.0531 3792 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
14:23:58.0531 3792 [ 548CB980D7876E207CC9F8B60C1587A3 ] C:\Windows\System32\win32spl.dll
14:23:58.0531 3792 C:\Windows\System32\win32spl.dll - ok
14:23:58.0531 3792 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
14:23:58.0531 3792 C:\Windows\System32\ExplorerFrame.dll - ok
14:23:58.0547 3792 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
14:23:58.0547 3792 C:\Windows\System32\inetpp.dll - ok
14:23:58.0547 3792 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
14:23:58.0547 3792 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
14:23:58.0547 3792 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
14:23:58.0547 3792 C:\Windows\SysWOW64\mstask.dll - ok
14:23:58.0547 3792 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
14:23:58.0547 3792 C:\Windows\System32\cscapi.dll - ok
14:23:58.0547 3792 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
14:23:58.0547 3792 C:\Windows\System32\dbghelp.dll - ok
14:23:58.0562 3792 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
14:23:58.0562 3792 C:\Windows\System32\framedynos.dll - ok
14:23:58.0562 3792 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
14:23:58.0562 3792 C:\Windows\System32\EhStorShell.dll - ok
14:23:58.0562 3792 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
14:23:58.0562 3792 C:\Windows\System32\ntshrui.dll - ok
14:23:58.0562 3792 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
14:23:58.0562 3792 C:\Windows\System32\IconCodecService.dll - ok
14:23:58.0562 3792 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
14:23:58.0562 3792 C:\Windows\System32\appinfo.dll - ok
14:23:58.0578 3792 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
14:23:58.0578 3792 C:\Windows\System32\dimsjob.dll - ok
14:23:58.0578 3792 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
14:23:58.0578 3792 C:\Windows\System32\uDWM.dll - ok
14:23:58.0578 3792 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
14:23:58.0578 3792 C:\Windows\System32\tdh.dll - ok
14:23:58.0578 3792 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
14:23:58.0578 3792 C:\Windows\System32\runonce.exe - ok
14:23:58.0594 3792 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
14:23:58.0594 3792 C:\Windows\SysWOW64\runonce.exe - ok
14:23:58.0594 3792 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
14:23:58.0594 3792 C:\Windows\System32\npmproxy.dll - ok
14:23:58.0594 3792 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
14:23:58.0594 3792 C:\Windows\System32\pnidui.dll - ok
14:23:58.0594 3792 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
14:23:58.0594 3792 C:\Windows\SysWOW64\propsys.dll - ok
14:23:58.0594 3792 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
14:23:58.0594 3792 C:\Windows\SysWOW64\cmd.exe - ok
14:23:58.0609 3792 [ 448BF22538F1DFCB3412AE2B1CF123A9 ] C:\Windows\System32\conhost.exe
14:23:58.0609 3792 C:\Windows\System32\conhost.exe - ok
14:23:58.0609 3792 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
14:23:58.0609 3792 C:\Windows\SysWOW64\winbrand.dll - ok
14:23:58.0609 3792 [ 0BA3F31E2B4D8D99DF8DD19E81155374 ] C:\Windows\SysWOW64\ieframe.dll
14:23:58.0609 3792 C:\Windows\SysWOW64\ieframe.dll - ok
14:23:58.0609 3792 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
14:23:58.0609 3792 C:\Windows\SysWOW64\shdocvw.dll - ok
14:23:58.0625 3792 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
14:23:58.0625 3792 C:\Windows\System32\aelupsvc.dll - ok
14:23:58.0625 3792 [ 9ED9F21D73F9D71E30EAB71835E656EB ] C:\Users\Ky.AnothaWorld\AppData\Local\Temp\E35B3B89-BC3B-45AF-B747-2A74A8172242.exe
14:23:58.0625 3792 C:\Users\Ky.AnothaWorld\AppData\Local\Temp\E35B3B89-BC3B-45AF-B747-2A74A8172242.exe - ok
14:23:58.0625 3792 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
14:23:58.0625 3792 C:\Windows\System32\wmp.dll - ok
14:23:58.0625 3792 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
14:23:58.0625 3792 C:\Windows\SysWOW64\d3d8thk.dll - ok
14:23:58.0625 3792 [ 2B7DB3E2C6DC1BC4D3682838BDB1304C ] C:\Windows\SysWOW64\igdumdx32.dll
14:23:58.0625 3792 C:\Windows\SysWOW64\igdumdx32.dll - ok
14:23:58.0640 3792 [ 933421733C2C4BE8CB161D18E9652E69 ] C:\Windows\SysWOW64\igdumd32.dll
14:23:58.0640 3792 C:\Windows\SysWOW64\igdumd32.dll - ok
14:23:58.0640 3792 [ 40E60C0C6E4B9F4D9B8AF2EDE7A6A2E3 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\8e56489276063ededde74e597a121df3\PresentationFramework.Aero.ni.dll
14:23:58.0640 3792 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\8e56489276063ededde74e597a121df3\PresentationFramework.Aero.ni.dll - ok
14:23:58.0640 3792 [ 45FB05F743E626D9E239E52602CEA041 ] C:\Windows\SysWOW64\msctfui.dll
14:23:58.0640 3792 C:\Windows\SysWOW64\msctfui.dll - ok
14:23:58.0640 3792 [ F3B650D3566E96E765AEA2AB05D4830C ] C:\Program Files (x86)\TOSHIBA\Wireless LAN Indicator\tosmui.dll
14:23:58.0640 3792 C:\Program Files (x86)\TOSHIBA\Wireless LAN Indicator\tosmui.dll - ok
14:23:58.0656 3792 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
14:23:58.0656 3792 C:\Windows\SysWOW64\comdlg32.dll - ok
14:23:58.0656 3792 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
14:23:58.0656 3792 C:\Windows\SysWOW64\msimg32.dll - ok
14:23:58.0656 3792 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
14:23:58.0656 3792 C:\Windows\SysWOW64\winspool.drv - ok
14:23:58.0656 3792 [ EAB975DB4C2805927FE5BD047D05C9AA ] C:\Windows\SysWOW64\netshell.dll
14:23:58.0656 3792 C:\Windows\SysWOW64\netshell.dll - ok
14:23:58.0656 3792 [ 104A1070E90F1C530328E69B49718841 ] C:\Windows\SysWOW64\nlaapi.dll
14:23:58.0656 3792 C:\Windows\SysWOW64\nlaapi.dll - ok
14:23:58.0672 3792 [ 370349F79315D4DB86CD992CACEFEE61 ] C:\Windows\SysWOW64\VAN.dll
14:23:58.0672 3792 C:\Windows\SysWOW64\VAN.dll - ok
14:23:58.0672 3792 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
14:23:58.0672 3792 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
14:23:58.0672 3792 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
14:23:58.0672 3792 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe - ok
14:23:58.0672 3792 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
14:23:58.0672 3792 C:\Windows\System32\mscoree.dll - ok
14:23:58.0687 3792 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
14:23:58.0687 3792 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
14:23:58.0687 3792 [ A05C0003E8D7CEA359A439690554F8BB ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
14:23:58.0687 3792 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
14:23:58.0687 3792 [ 76CDA84DCB30EBDEF0D86051A72E0C0F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\f73f0a9c9a83dcd3ff428be509a7992f\mscorlib.ni.dll
14:23:58.0687 3792 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\f73f0a9c9a83dcd3ff428be509a7992f\mscorlib.ni.dll - ok
14:23:58.0687 3792 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
14:23:58.0687 3792 C:\Windows\SysWOW64\EhStorShell.dll - ok
14:23:58.0687 3792 [ BA48FCD5653B8A62F39AAF2663EC5D10 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\c40ec0f4cd203c880298f94c0427dd54\System.ni.dll
14:23:58.0687 3792 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\c40ec0f4cd203c880298f94c0427dd54\System.ni.dll - ok
14:23:58.0703 3792 [ 87204B04A63E684D3FD02A7BC10741CD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\f71d2f65d0f149c75ac7a569dbcc8500\System.ServiceProcess.ni.dll
14:23:58.0703 3792 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\f71d2f65d0f149c75ac7a569dbcc8500\System.ServiceProcess.ni.dll - ok
14:23:58.0703 3792 [ 3ABB7ADB9CCBCD24D6C55201A3842A94 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
14:23:58.0703 3792 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
14:23:58.0703 3792 [ 92CBA4EBF1EAC5329662A967C079F660 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\4bcc5a6e9e9d25e068fc304bd7eda6af\WindowsBase.ni.dll
14:23:58.0703 3792 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\4bcc5a6e9e9d25e068fc304bd7eda6af\WindowsBase.ni.dll - ok
14:23:58.0703 3792 [ 383661D710295D2DA3FDFBA0C3ED4BCF ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\3a9d13514a8c4c710fa5ce8e9b5393fe\PresentationCore.ni.dll
14:23:58.0703 3792 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\3a9d13514a8c4c710fa5ce8e9b5393fe\PresentationCore.ni.dll - ok
14:23:58.0718 3792 [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
14:23:58.0718 3792 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
14:23:58.0718 3792 [ C8541AECCCA9260DE93C85F214110FA8 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
14:23:58.0718 3792 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
14:23:58.0718 3792 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
14:23:58.0718 3792 C:\Windows\System32\shfolder.dll - ok
14:23:58.0718 3792 [ 80739D6157FDF84E444C659AC3B0E41E ] C:\Windows\SysWOW64\PresentationNative_v0300.dll
14:23:58.0718 3792 C:\Windows\SysWOW64\PresentationNative_v0300.dll - ok
14:23:58.0734 3792 [ 4B8441782918424827F2937CFB669136 ] C:\Windows\SysWOW64\WlanMM.dll
14:23:58.0734 3792 C:\Windows\SysWOW64\WlanMM.dll - ok
14:23:58.0734 3792 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
14:23:58.0734 3792 C:\Windows\SysWOW64\dui70.dll - ok
14:23:58.0734 3792 [ FFF878CD63105194FCCE75DA89A08B4C ] C:\Program Files (x86)\TOSHIBA\Wireless LAN Indicator\FnF8Dll.dll
14:23:58.0734 3792 C:\Program Files (x86)\TOSHIBA\Wireless LAN Indicator\FnF8Dll.dll - ok
14:23:58.0734 3792 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
14:23:58.0734 3792 C:\Windows\SysWOW64\atl.dll - ok
14:23:58.0750 3792 [ F748F53FE09D21D8ECBB6421E6792024 ] C:\Windows\SysWOW64\onex.dll
14:23:58.0750 3792 C:\Windows\SysWOW64\onex.dll - ok
14:23:58.0750 3792 [ 8063046AA70B97CA9985672B8848FB2E ] C:\Windows\SysWOW64\wlanhlp.dll
14:23:58.0750 3792 C:\Windows\SysWOW64\wlanhlp.dll - ok
14:23:58.0750 3792 [ 5A5FEDDF02588B8F9FE4A95E5E7EAE97 ] C:\Windows\SysWOW64\eappcfg.dll
14:23:58.0750 3792 C:\Windows\SysWOW64\eappcfg.dll - ok
14:23:58.0750 3792 [ 666E57B6B51824D1D235F80A3DD70A13 ] C:\Windows\SysWOW64\eappprxy.dll
14:23:58.0750 3792 C:\Windows\SysWOW64\eappprxy.dll - ok
14:23:58.0750 3792 [ 75BCC4043512E41D83C8F224B168039C ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
14:23:58.0750 3792 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
14:23:58.0765 3792 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
14:23:58.0765 3792 C:\Windows\SysWOW64\ntshrui.dll - ok
14:23:58.0765 3792 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
14:23:58.0765 3792 C:\Windows\SysWOW64\slc.dll - ok
14:23:58.0765 3792 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
14:23:58.0765 3792 C:\Windows\SysWOW64\imageres.dll - ok
14:23:58.0765 3792 [ 8BDC8ECF5EC879F5F8686B86510BADA0 ] C:\Program Files (x86)\TOSHIBA\Wireless LAN Indicator\tosKillIndicator.exe
14:23:58.0765 3792 C:\Program Files (x86)\TOSHIBA\Wireless LAN Indicator\tosKillIndicator.exe - ok
14:23:58.0781 3792 [ AD8D1187F527B828BA43173D22C618D0 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\tosKillIndicator\39d738530f43252de81a64dd0a386823\tosKillIndicator.ni.exe
14:23:58.0781 3792 C:\Windows\assembly\NativeImages_v2.0.50727_32\tosKillIndicator\39d738530f43252de81a64dd0a386823\tosKillIndicator.ni.exe - ok
14:23:58.0781 3792 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
14:23:58.0781 3792 C:\Windows\SysWOW64\devrtl.dll - ok
14:23:58.0781 3792 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
14:23:58.0781 3792 C:\Windows\System32\ie4uinit.exe - ok
14:23:58.0781 3792 [ 2C647ABE9A424E55B5F3DAE4629B4277 ] C:\Windows\System32\themeui.dll
14:23:58.0781 3792 C:\Windows\System32\themeui.dll - ok
14:23:58.0781 3792 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
14:23:58.0781 3792 C:\Windows\System32\timedate.cpl - ok
14:23:58.0796 3792 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
14:23:58.0796 3792 C:\Windows\System32\actxprxy.dll - ok
14:23:58.0796 3792 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
14:23:58.0796 3792 C:\Windows\System32\shdocvw.dll - ok
14:23:58.0796 3792 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
14:23:58.0796 3792 C:\Windows\System32\linkinfo.dll - ok
14:23:58.0796 3792 [ 661CEEDE98A2E0E5CDD7DE239EB38353 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
14:23:58.0796 3792 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
14:23:58.0796 3792 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
14:23:58.0796 3792 C:\Windows\System32\msftedit.dll - ok
14:23:58.0812 3792 [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll
14:23:58.0812 3792 C:\Windows\System32\gameux.dll - ok
14:23:58.0812 3792 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
14:23:58.0812 3792 C:\Windows\SysWOW64\mswsock.dll - ok
14:23:58.0812 3792 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
14:23:58.0812 3792 C:\Windows\SysWOW64\dnsapi.dll - ok
14:23:58.0812 3792 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
14:23:58.0812 3792 C:\Windows\SysWOW64\wship6.dll - ok
14:23:58.0828 3792 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
14:23:58.0828 3792 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
14:23:58.0828 3792 [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
14:23:58.0828 3792 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
14:23:58.0828 3792 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
14:23:58.0828 3792 C:\Windows\System32\msls31.dll - ok
14:23:58.0828 3792 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
14:23:58.0828 3792 C:\Windows\SysWOW64\rasadhlp.dll - ok
14:23:58.0828 3792 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
14:23:58.0828 3792 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
14:23:58.0843 3792 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
14:23:58.0843 3792 C:\Windows\System32\msi.dll - ok
14:23:58.0843 3792 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
14:23:58.0843 3792 C:\Windows\System32\msiltcfg.dll - ok
14:23:58.0843 3792 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
14:23:58.0843 3792 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
14:23:58.0843 3792 [ 64E498DF53A9481C0F65923B8E1AF8FF ] C:\Windows\System32\igfxtray.exe
14:23:58.0843 3792 C:\Windows\System32\igfxtray.exe - ok
14:23:58.0859 3792 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
14:23:58.0859 3792 C:\Windows\System32\DeviceCenter.dll - ok
14:23:58.0859 3792 [ D2AF25E2921BACC9B87E1AB7054F22D2 ] C:\Windows\System32\hkcmd.exe
14:23:58.0859 3792 C:\Windows\System32\hkcmd.exe - ok
14:23:58.0859 3792 [ 92D65E5A207C81F15DC546C0365A1753 ] C:\Windows\System32\hccutils.dll
14:23:58.0859 3792 C:\Windows\System32\hccutils.dll - ok
14:23:58.0859 3792 [ E58E1B907C67DE1FD65BE37EB3C5E79D ] C:\Windows\System32\igfxpers.exe
14:23:58.0859 3792 C:\Windows\System32\igfxpers.exe - ok
14:23:58.0859 3792 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
14:23:58.0859 3792 C:\Windows\System32\thumbcache.dll - ok
14:23:58.0874 3792 [ C5BCAB2B9BD316DDFD53D4CB5E1C438D ] C:\Program Files\Toshiba\Power Saver\TPwrMain.exe
14:23:58.0874 3792 C:\Program Files\Toshiba\Power Saver\TPwrMain.exe - ok
14:23:58.0874 3792 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
14:23:58.0874 3792 C:\Windows\System32\networkexplorer.dll - ok
14:23:58.0874 3792 [ F20C4731C0B5B50FEDE5CAAEF77D15E2 ] C:\Windows\System32\igfxsrvc.exe
14:23:58.0874 3792 C:\Windows\System32\igfxsrvc.exe - ok
14:23:58.0874 3792 [ DFD8F75F0E27D522AB8424AD71719C8B ] C:\Program Files\Toshiba\TBS\HSON.exe
14:23:58.0874 3792 C:\Program Files\Toshiba\TBS\HSON.exe - ok
14:23:58.0890 3792 [ A6C039BAAC52F266AB393D0D62236583 ] C:\Program Files\Toshiba\FlashCards\TCrdMain.exe
14:23:58.0890 3792 C:\Program Files\Toshiba\FlashCards\TCrdMain.exe - ok
14:23:58.0890 3792 [ 6B640D9B1C114DDB8A534A9101DCEF29 ] C:\Program Files\CONEXANT\SAII\SAIICpl.exe
14:23:58.0890 3792 C:\Program Files\CONEXANT\SAII\SAIICpl.exe - ok
14:23:58.0890 3792 [ 8D8839FDB43DE6F35D4A26294B8B9549 ] C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe
14:23:58.0890 3792 C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe - ok
14:23:58.0890 3792 [ A61BA3762126CC714E78207847F36BF2 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
14:23:58.0890 3792 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
14:23:58.0890 3792 [ D70D6B42933C1174FE961F0BCA3573A3 ] C:\Program Files\Toshiba\FlashCards\TCrdEvnt.dll
14:23:58.0890 3792 C:\Program Files\Toshiba\FlashCards\TCrdEvnt.dll - ok
14:23:58.0906 3792 [ EF9C5CD482AC0C29C5EC885CBB94469A ] C:\Program Files\Toshiba\TECO\Teco.exe
14:23:58.0906 3792 C:\Program Files\Toshiba\TECO\Teco.exe - ok
14:23:58.0906 3792 [ 38B24645FA9F9BDCCC35AF4B9AE7F37E ] C:\Program Files\Toshiba\TPHM\TosWaitSrv.exe
14:23:58.0906 3792 C:\Program Files\Toshiba\TPHM\TosWaitSrv.exe - ok
14:23:58.0906 3792 [ C90DF97E0434BDB9BA1B53DAA0613E88 ] C:\Windows\System32\igfxsrvc.dll
14:23:58.0906 3792 C:\Windows\System32\igfxsrvc.dll - ok
14:23:58.0906 3792 [ F82483A80D49ACCA81193A294FB233CD ] C:\Program Files\Toshiba\TosVolRegulator\TosVolRegulator.exe
14:23:58.0906 3792 C:\Program Files\Toshiba\TosVolRegulator\TosVolRegulator.exe - ok
14:23:58.0921 3792 [ 76849AB697E63D85CC35DD2F8AEA1C6B ] C:\Program Files\Toshiba\FlashCards\TCrdMain.dll
14:23:58.0921 3792 C:\Program Files\Toshiba\FlashCards\TCrdMain.dll - ok
14:23:58.0921 3792 [ 426350B428CD70D037A3326EB9E5EDFD ] C:\Program Files\Toshiba\TOSHIBA HDD SSD Alert\TosWaitSrv.exe
14:23:58.0921 3792 C:\Program Files\Toshiba\TOSHIBA HDD SSD Alert\TosWaitSrv.exe - ok
14:23:58.0921 3792 [ 381AAB4EEDDB57D77D2619874649B709 ] C:\Windows\System32\igfxdev.dll
14:23:58.0921 3792 C:\Windows\System32\igfxdev.dll - ok
14:23:58.0921 3792 [ A709D7F4DCC91CF0945F784F7D233B89 ] C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe
14:23:58.0921 3792 C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe - ok
14:23:58.0937 3792 [ 0F042176F243D71C552E9D07D2FCB141 ] C:\Program Files\Toshiba\FlashCards\BlackPng.dll
14:23:58.0937 3792 C:\Program Files\Toshiba\FlashCards\BlackPng.dll - ok
14:23:58.0937 3792 [ EF49D309C27814AB86D9AB567DD9DC86 ] C:\Program Files\Toshiba\ReelTime\TosReelTimeMonitor.exe
14:23:58.0937 3792 C:\Program Files\Toshiba\ReelTime\TosReelTimeMonitor.exe - ok
14:23:58.0937 3792 [ 5D61BE7DB55B026A5D61A3EED09D0EAD ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
14:23:58.0937 3792 C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe - ok
14:23:58.0937 3792 [ D7E8EBDE5DB201216B755418E2F0A7CE ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7725.1624\gtn.dll
14:23:58.0937 3792 C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7725.1624\gtn.dll - ok
14:23:58.0937 3792 [ 105CFE016CCB20175BEACEC146F175AB ] C:\Windows\System32\IccLibDll_x64.dll
14:23:58.0937 3792 C:\Windows\System32\IccLibDll_x64.dll - ok
14:23:58.0952 3792 [ E1A4E83428A43374BE5CE1130AE502E2 ] C:\Windows\System32\igfxrenu.lrc
14:23:58.0952 3792 C:\Windows\System32\igfxrenu.lrc - ok
14:23:58.0952 3792 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
14:23:58.0952 3792 C:\Windows\SysWOW64\rasapi32.dll - ok
14:23:58.0952 3792 [ BB752714D14CB1F13969D721F1A3A60F ] C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
14:23:58.0952 3792 C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe - ok
14:23:58.0952 3792 [ 1705B6E6E1D883965F32C7D3B8E78CE6 ] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
14:23:58.0952 3792 C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe - ok
14:23:58.0968 3792 [ 02F4246866BF35BF2244E5CF72E25895 ] C:\Program Files (x86)\TOSHIBA\Toshiba Online Backup\Activation\TobuActivation.exe
14:23:58.0968 3792 C:\Program Files (x86)\TOSHIBA\Toshiba Online Backup\Activation\TobuActivation.exe - ok
14:23:58.0968 3792 [ 2D7816ACDA1CC85C873CBC19A4121D58 ] C:\Program Files (x86)\TOSHIBA\Toshiba App Place\ToshibaAppPlace.exe
14:23:58.0968 3792 C:\Program Files (x86)\TOSHIBA\Toshiba App Place\ToshibaAppPlace.exe - ok
14:23:58.0968 3792 [ 31B522014FC560C122CDFA72D47CA940 ] C:\Program Files (x86)\Ask.com\Updater\Updater.exe
14:23:58.0968 3792 C:\Program Files (x86)\Ask.com\Updater\Updater.exe - ok
14:23:58.0968 3792 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
14:23:58.0968 3792 C:\Windows\SysWOW64\rasman.dll - ok
14:23:58.0984 3792 [ 0287C9E40BC751BF94A90FEA39B4CAE6 ] C:\Program Files\Toshiba\BulletinBoard\TosNcUi.dll
14:23:58.0984 3792 C:\Program Files\Toshiba\BulletinBoard\TosNcUi.dll - ok
14:23:58.0984 3792 [ 7E14F1832783225866AAD6477F8FA573 ] C:\Windows\System32\igfxress.dll
14:23:58.0984 3792 C:\Windows\System32\igfxress.dll - ok
14:23:58.0984 3792 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
14:23:58.0984 3792 C:\Windows\SysWOW64\rtutils.dll - ok
14:23:58.0984 3792 [ F514F8AA46D633CA6AE4912FFE09E2F5 ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7725.1624\swg.dll
14:23:58.0984 3792 C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7725.1624\swg.dll - ok
14:23:58.0984 3792 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
14:23:58.0984 3792 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
14:23:58.0999 3792 [ 099B3847531EAF7BA63B5BB504CE8461 ] C:\Program Files\Toshiba\TECO\MUIHelp.dll
14:23:58.0999 3792 C:\Program Files\Toshiba\TECO\MUIHelp.dll - ok
14:23:58.0999 3792 [ EFE8A50B9AE0205D399E94E89E244E65 ] C:\Program Files\Toshiba\Power Saver\TCooling.dll
14:23:58.0999 3792 C:\Program Files\Toshiba\Power Saver\TCooling.dll - ok
14:23:58.0999 3792 [ E542A10321E884C2C50290AC67E82DAE ] C:\Program Files\Toshiba\Power Saver\TOddPwr.dll
14:23:58.0999 3792 C:\Program Files\Toshiba\Power Saver\TOddPwr.dll - ok
14:23:58.0999 3792 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
14:23:58.0999 3792 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
14:23:59.0015 3792 [ 22CC6CDBA678790046693654C3B212E4 ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
14:23:59.0015 3792 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
14:23:59.0015 3792 [ 60FB378B6D1C80DC69DD80F8E05D4346 ] C:\Program Files\Toshiba\Power Saver\TPwrSrv.dll
14:23:59.0015 3792 C:\Program Files\Toshiba\Power Saver\TPwrSrv.dll - ok
14:23:59.0015 3792 [ B3F4982BD2542AB40AFA6D6E695E5E06 ] C:\Program Files\Toshiba\Power Saver\TPwrBrightness.dll
14:23:59.0015 3792 C:\Program Files\Toshiba\Power Saver\TPwrBrightness.dll - ok
14:23:59.0015 3792 [ F164E175B6092D3BA0DC7056487717BC ] C:\Program Files\Toshiba\Power Saver\T1394Pwr.dll
14:23:59.0015 3792 C:\Program Files\Toshiba\Power Saver\T1394Pwr.dll - ok
14:23:59.0030 3792 [ E436C2E89416F31699F2A3CA79DDC095 ] C:\Program Files\Toshiba\Power Saver\TKBLEDPwr.dll
14:23:59.0030 3792 C:\Program Files\Toshiba\Power Saver\TKBLEDPwr.dll - ok
14:23:59.0030 3792 [ C4CA3DBBCEC3136D37DA20B50291E63A ] C:\Program Files\Toshiba\Power Saver\TSDPwr.dll
14:23:59.0030 3792 C:\Program Files\Toshiba\Power Saver\TSDPwr.dll - ok
14:23:59.0030 3792 [ 040CAD6E6600BCEF7A91AE9885C4158F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\222eb8aa336953a6b0216db2b0c4770d\System.Drawing.ni.dll
14:23:59.0030 3792 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\222eb8aa336953a6b0216db2b0c4770d\System.Drawing.ni.dll - ok
14:23:59.0030 3792 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
14:23:59.0030 3792 C:\Windows\SysWOW64\sxs.dll - ok
14:23:59.0030 3792 [ DF987E7AA36D53411B1087B246739326 ] C:\Program Files\Toshiba\Power Saver\TPCIePwr.dll
14:23:59.0030 3792 C:\Program Files\Toshiba\Power Saver\TPCIePwr.dll - ok
14:23:59.0046 3792 [ 76F123E491B26DAAD5DFBC20FC5996DB ] C:\Program Files\Toshiba\Power Saver\TScreen.dll
14:23:59.0046 3792 C:\Program Files\Toshiba\Power Saver\TScreen.dll - ok
14:23:59.0046 3792 [ 10E4A1D2132CCB5C6759F038CDB6F3C9 ] C:\Windows\System32\calc.exe
14:23:59.0046 3792 C:\Windows\System32\calc.exe - ok
14:23:59.0046 3792 [ 91E9762DE0BFF5F38466A1B23D2A69D3 ] C:\Windows\System32\SynCOM.dll
14:23:59.0046 3792 C:\Windows\System32\SynCOM.dll - ok
14:23:59.0046 3792 [ 1E8D1091011E1C51B44A94DE5EE89A6A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\dc5bb74eefdbf954cdfb70dd534d5564\System.Windows.Forms.ni.dll
14:23:59.0046 3792 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\dc5bb74eefdbf954cdfb70dd534d5564\System.Windows.Forms.ni.dll - ok
14:23:59.0062 3792 [ E9041DF716F40D9D3FF5D7C3D3967D11 ] C:\Windows\System32\SynTPAPI.dll
14:23:59.0062 3792 C:\Windows\System32\SynTPAPI.dll - ok
14:23:59.0062 3792 [ E2B41D6676B915FBC39517BD3C969CB9 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
14:23:59.0062 3792 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
14:23:59.0062 3792 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
14:23:59.0062 3792 C:\Windows\System32\consent.exe - ok
14:23:59.0062 3792 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
14:23:59.0062 3792 C:\Windows\System32\oledlg.dll - ok
14:23:59.0062 3792 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\25289569.sys
14:23:59.0062 3792 C:\Windows\System32\drivers\25289569.sys - ok
14:23:59.0077 3792 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
14:23:59.0077 3792 C:\Windows\System32\stobject.dll - ok
14:23:59.0077 3792 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
14:23:59.0077 3792 C:\Windows\System32\msimg32.dll - ok
14:23:59.0077 3792 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
14:23:59.0077 3792 C:\Windows\System32\batmeter.dll - ok
14:23:59.0077 3792 [ 9C96B167C21F6DCCF68E96853B0A8F93 ] C:\Program Files\Toshiba\FlashCards\FnPRTSC.dll
14:23:59.0077 3792 C:\Program Files\Toshiba\FlashCards\FnPRTSC.dll - ok
14:23:59.0077 3792 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
14:23:59.0077 3792 C:\Windows\System32\prnfldr.dll - ok
14:23:59.0093 3792 [ E126445756DFE53F9788911BBD7BFF16 ] C:\Program Files\Toshiba\FlashCards\FnSticky.dll
14:23:59.0093 3792 C:\Program Files\Toshiba\FlashCards\FnSticky.dll - ok
14:23:59.0093 3792 [ 47AFBB582DC348AF02B2EDDAF7243A6E ] C:\Program Files\Toshiba\Power Saver\TFunctab.dll
14:23:59.0093 3792 C:\Program Files\Toshiba\Power Saver\TFunctab.dll - ok
14:23:59.0093 3792 [ 1C937AA6A3E2E5F5F650686437AE2854 ] C:\Program Files\Toshiba\FlashCards\SmoothView.dll
14:23:59.0093 3792 C:\Program Files\Toshiba\FlashCards\SmoothView.dll - ok
14:23:59.0093 3792 [ 11615D80DC10ABB83D2A9002B70A4E36 ] C:\Program Files\Toshiba\FlashCards\TWarnMsg\TWarnMsg.dll
14:23:59.0093 3792 C:\Program Files\Toshiba\FlashCards\TWarnMsg\TWarnMsg.dll - ok
14:23:59.0108 3792 [ 1AC9B56AC7E043AC2874D61CBCED5F49 ] C:\Program Files\Toshiba\FlashCards\Hotkey\Mute.dll
14:23:59.0108 3792 C:\Program Files\Toshiba\FlashCards\Hotkey\Mute.dll - ok
14:23:59.0108 3792 [ 1DCD0B1345720349220CE79316A56751 ] C:\Program Files\Toshiba\FlashCards\Hotkey\FnZ.dll
14:23:59.0108 3792 C:\Program Files\Toshiba\FlashCards\Hotkey\FnZ.dll - ok
14:23:59.0108 3792 [ C54BFDEC7B8B3F6FB7FF4A39AD596471 ] C:\Program Files\Toshiba\TBS\TBSMain.dll
14:23:59.0108 3792 C:\Program Files\Toshiba\TBS\TBSMain.dll - ok
14:23:59.0108 3792 [ 233B45DDF77BD45E53872881CFF1839B ] C:\Windows\System32\Magnify.exe
14:23:59.0108 3792 C:\Windows\System32\Magnify.exe - ok
14:23:59.0124 3792 [ 06DEF9378C701E638B707B33B1E8151C ] C:\Program Files\Toshiba\FlashCards\Hotkey\TCrdKBB.exe
14:23:59.0124 3792 C:\Program Files\Toshiba\FlashCards\Hotkey\TCrdKBB.exe - ok
14:23:59.0124 3792 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
14:23:59.0124 3792 C:\Windows\System32\DXP.dll - ok
14:23:59.0124 3792 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
14:23:59.0124 3792 C:\Windows\System32\AltTab.dll - ok
14:23:59.0124 3792 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
14:23:59.0124 3792 C:\Windows\System32\Syncreg.dll - ok
14:23:59.0124 3792 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
14:23:59.0124 3792 C:\Windows\ehome\ehSSO.dll - ok
14:23:59.0140 3792 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
14:23:59.0140 3792 C:\Windows\System32\netshell.dll - ok
14:23:59.0140 3792 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
14:23:59.0140 3792 C:\Windows\SysWOW64\riched20.dll - ok
14:23:59.0140 3792 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
14:23:59.0140 3792 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
14:23:59.0140 3792 [ BD4C1D83353BFB80F6BA019F6D0BA95B ] C:\Windows\ehome\ehshell.exe
14:23:59.0140 3792 C:\Windows\ehome\ehshell.exe - ok
14:23:59.0140 3792 [ 88B0BCC23660D466879099F26CCB8CA5 ] C:\Program Files\Toshiba\FlashCards\Hotkey\FnF1.dll
14:23:59.0140 3792 C:\Program Files\Toshiba\FlashCards\Hotkey\FnF1.dll - ok
14:23:59.0155 3792 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
14:23:59.0155 3792 C:\Windows\System32\QUTIL.DLL - ok
14:23:59.0155 3792 [ 6E6DBEB083B26E55A87BCDCF1354F45E ] C:\Program Files\Toshiba\Power Saver\TFunc2.dll
14:23:59.0155 3792 C:\Program Files\Toshiba\Power Saver\TFunc2.dll - ok
14:23:59.0155 3792 [ E6BC081DDE7391AD0A044C0796A86D08 ] C:\Program Files\Toshiba\FlashCards\Hotkey\FnF3.dll
14:23:59.0155 3792 C:\Program Files\Toshiba\FlashCards\Hotkey\FnF3.dll - ok
14:23:59.0155 3792 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
14:23:59.0155 3792 C:\Windows\System32\WPDShServiceObj.dll - ok
14:23:59.0171 3792 [ EDE3D67AE2951D330AA6A4EB7FEF7739 ] C:\Program Files\Toshiba\FlashCards\Hotkey\FnF4.dll
14:23:59.0171 3792 C:\Program Files\Toshiba\FlashCards\Hotkey\FnF4.dll - ok
14:23:59.0171 3792 [ D908CF40BEFA099EA92129BB485CFBA9 ] C:\Program Files\Toshiba\FlashCards\Hotkey\FnF5.dll
14:23:59.0171 3792 C:\Program Files\Toshiba\FlashCards\Hotkey\FnF5.dll - ok
14:23:59.0171 3792 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
14:23:59.0171 3792 C:\Windows\System32\PortableDeviceTypes.dll - ok
14:23:59.0171 3792 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
14:23:59.0171 3792 C:\Windows\System32\bthprops.cpl - ok
14:23:59.0171 3792 [ 2A50F11A365A2BF58871F79727B2C91B ] C:\Windows\System32\igfxext.exe
14:23:59.0171 3792 C:\Windows\System32\igfxext.exe - ok
14:23:59.0186 3792 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
14:23:59.0186 3792 C:\Windows\SysWOW64\duser.dll - ok
14:23:59.0186 3792 [ 4ECE12D296ED94CA2C7DD6C383A5AB66 ] C:\Windows\System32\ieframe.dll
14:23:59.0186 3792 C:\Windows\System32\ieframe.dll - ok
14:23:59.0186 3792 [ 26D9B632130EDDB2B16DDCDFDD0723D5 ] C:\Windows\System32\igfxexps.dll
14:23:59.0186 3792 C:\Windows\System32\igfxexps.dll - ok
14:23:59.0186 3792 [ CACB1FB9B211A8BEF470A78FC573AEBA ] C:\Program Files\Toshiba\FlashCards\Hotkey\Brightness.dll
14:23:59.0186 3792 C:\Program Files\Toshiba\FlashCards\Hotkey\Brightness.dll - ok
14:23:59.0202 3792 [ 43AA2EFD14590DE58A545BF3B28ED09F ] C:\Program Files\Toshiba\FlashCards\Hotkey\FnF8Dll.dll
14:23:59.0202 3792 C:\Program Files\Toshiba\FlashCards\Hotkey\FnF8Dll.dll - ok
14:23:59.0202 3792 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
14:23:59.0202 3792 C:\Windows\System32\wlanapi.dll - ok
14:23:59.0202 3792 [ E625ABBE3ED37D3160151DFD33AE6B91 ] C:\Program Files\Toshiba\FlashCards\Hotkey\TouchPad.dll
14:23:59.0202 3792 C:\Program Files\Toshiba\FlashCards\Hotkey\TouchPad.dll - ok
14:23:59.0202 3792 [ 66935625C1758EFEFFAF8CF0E020A6F9 ] C:\Program Files\Toshiba\FlashCards\Hotkey\FnF10.dll
14:23:59.0202 3792 C:\Program Files\Toshiba\FlashCards\Hotkey\FnF10.dll - ok
14:23:59.0202 3792 [ 4C671C688884F18152441DC16AA629F6 ] C:\Program Files\Toshiba\FlashCards\Hotkey\FnF11.dll
14:23:59.0202 3792 C:\Program Files\Toshiba\FlashCards\Hotkey\FnF11.dll - ok
14:23:59.0218 3792 [ 0510403E7774E7C1FA4197E514120375 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\766ce7ee1a2e4f2a85fd90e7572f5d53\System.Core.ni.dll
14:23:59.0218 3792 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\766ce7ee1a2e4f2a85fd90e7572f5d53\System.Core.ni.dll - ok
14:23:59.0218 3792 [ 13BC9BF69A7A03ED92BFDF36E9B4C508 ] C:\Program Files\Toshiba\FlashCards\Hotkey\FnSpace.dll
14:23:59.0218 3792 C:\Program Files\Toshiba\FlashCards\Hotkey\FnSpace.dll - ok
14:23:59.0218 3792 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
14:23:59.0218 3792 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
14:23:59.0218 3792 [ 857F78A80A36BF9BE8B10D85E49CE2C4 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\193d03ca60573c92f92d9b07fa5bc243\System.Configuration.ni.dll
14:23:59.0218 3792 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\193d03ca60573c92f92d9b07fa5bc243\System.Configuration.ni.dll - ok
14:23:59.0233 3792 [ 59D5398F85127D0035542D6218F50A2C ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\265531568722647aab229a2cec195b3d\System.Runtime.Serialization.ni.dll
14:23:59.0233 3792 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\265531568722647aab229a2cec195b3d\System.Runtime.Serialization.ni.dll - ok
14:23:59.0233 3792 [ 458F4590F80563EB2A0A72709BFC2BD9 ] C:\Windows\System32\mspaint.exe
14:23:59.0233 3792 C:\Windows\System32\mspaint.exe - ok
14:23:59.0233 3792 [ 37C813CF6B4E892E2CDA6FEF3B871AFC ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\24d1b7ccbedaa3602bae6a6acea9929e\System.Xml.ni.dll
14:23:59.0233 3792 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\24d1b7ccbedaa3602bae6a6acea9929e\System.Xml.ni.dll - ok
14:23:59.0233 3792 [ E2107F227E1C174C20BEB7A51404BBAC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe
14:23:59.0233 3792 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe - ok
14:23:59.0249 3792 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
14:23:59.0249 3792 C:\Windows\System32\oleacc.dll - ok
14:23:59.0249 3792 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
14:23:59.0249 3792 C:\Windows\System32\srchadmin.dll - ok
14:23:59.0249 3792 [ 17ED2224666F6F65F8054D84A3839E71 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll
14:23:59.0249 3792 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll - ok
14:23:59.0249 3792 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
14:23:59.0249 3792 C:\Windows\System32\UIAnimation.dll - ok
14:23:59.0264 3792 [ EE338F7673C339D5497C97E86D1011A3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll
14:23:59.0264 3792 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll - ok
14:23:59.0264 3792 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
14:23:59.0264 3792 C:\Windows\System32\SearchIndexer.exe - ok
14:23:59.0264 3792 [ 7633F554EEAFDE7F144B41C2FCAF5F63 ] C:\Windows\System32\SnippingTool.exe
14:23:59.0264 3792 C:\Windows\System32\SnippingTool.exe - ok
14:23:59.0264 3792 [ E3A4D59ED585226D381225521BF2A36D ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll
14:23:59.0264 3792 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll - ok
14:23:59.0264 3792 [ B22CB67919EBAD88B0E8BB9CDA446010 ] C:\Windows\System32\StikyNot.exe
14:23:59.0264 3792 C:\Windows\System32\StikyNot.exe - ok
14:23:59.0280 3792 [ 449F7C92A14B7F50B898FC67202A326C ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
14:23:59.0280 3792 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe - ok
14:23:59.0280 3792 [ 0017163E0D5985168792BEE5CF70D5DF ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll
14:23:59.0280 3792 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll - ok
14:23:59.0280 3792 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
14:23:59.0280 3792 C:\Windows\System32\tquery.dll - ok
14:23:59.0280 3792 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
14:23:59.0280 3792 C:\Windows\System32\FXSST.dll - ok
14:23:59.0296 3792 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
14:23:59.0296 3792 C:\Windows\System32\mssrch.dll - ok
14:23:59.0296 3792 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
14:23:59.0296 3792 C:\Windows\System32\FXSAPI.dll - ok
14:23:59.0296 3792 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
14:23:59.0296 3792 C:\Windows\System32\FXSRESM.dll - ok
14:23:59.0296 3792 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
14:23:59.0296 3792 C:\Windows\System32\esent.dll - ok
14:23:59.0296 3792 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
14:23:59.0296 3792 C:\Windows\System32\FXSSVC.exe - ok
14:23:59.0311 3792 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
14:23:59.0311 3792 C:\Windows\System32\msidle.dll - ok
14:23:59.0311 3792 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
14:23:59.0311 3792 C:\Windows\System32\netman.dll - ok
14:23:59.0311 3792 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
14:23:59.0311 3792 C:\Windows\System32\mssprxy.dll - ok
14:23:59.0311 3792 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
14:23:59.0311 3792 C:\Windows\System32\rasdlg.dll - ok
14:23:59.0311 3792 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
14:23:59.0311 3792 C:\Windows\System32\en-US\tquery.dll.mui - ok
14:23:59.0327 3792 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
14:23:59.0327 3792 C:\Windows\System32\mprapi.dll - ok
14:23:59.0327 3792 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
14:23:59.0327 3792 C:\Windows\System32\dot3api.dll - ok
14:23:59.0327 3792 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
14:23:59.0327 3792 C:\Windows\System32\hnetcfg.dll - ok
14:23:59.0327 3792 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
14:23:59.0327 3792 C:\Windows\System32\wlanhlp.dll - ok
14:23:59.0327 3792 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
14:23:59.0327 3792 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
14:23:59.0342 3792 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
14:23:59.0342 3792 C:\Windows\System32\WWanAPI.dll - ok
14:23:59.0342 3792 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
14:23:59.0342 3792 C:\Windows\System32\wwapi.dll - ok
14:23:59.0342 3792 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
14:23:59.0342 3792 C:\Windows\System32\QAGENT.DLL - ok
14:23:59.0342 3792 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
14:23:59.0342 3792 C:\Windows\System32\webcheck.dll - ok
14:23:59.0358 3792 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
14:23:59.0358 3792 C:\Windows\System32\SearchProtocolHost.exe - ok
14:23:59.0358 3792 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
14:23:59.0358 3792 C:\Windows\System32\mlang.dll - ok
14:23:59.0358 3792 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
14:23:59.0358 3792 C:\Windows\System32\SyncCenter.dll - ok
14:23:59.0358 3792 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
14:23:59.0358 3792 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
14:23:59.0358 3792 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
14:23:59.0358 3792 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
14:23:59.0374 3792 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
14:23:59.0374 3792 C:\Windows\System32\msshooks.dll - ok
14:23:59.0374 3792 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
14:23:59.0374 3792 C:\Windows\System32\SearchFilterHost.exe - ok
14:23:59.0374 3792 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
14:23:59.0374 3792 C:\Windows\System32\imapi2.dll - ok
14:23:59.0374 3792 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
14:23:59.0374 3792 C:\Windows\System32\mssph.dll - ok
14:23:59.0389 3792 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
14:23:59.0389 3792 C:\Windows\System32\mapi32.dll - ok
14:23:59.0389 3792 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
14:23:59.0389 3792 C:\Windows\System32\wsock32.dll - ok
14:23:59.0389 3792 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
14:23:59.0389 3792 C:\Windows\System32\hgcpl.dll - ok
14:23:59.0389 3792 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
14:23:59.0389 3792 C:\Windows\System32\wmdrmdev.dll - ok
14:23:59.0389 3792 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
14:23:59.0389 3792 C:\Windows\System32\drmv2clt.dll - ok
14:23:59.0405 3792 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
14:23:59.0405 3792 C:\Windows\System32\provsvc.dll - ok
14:23:59.0405 3792 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
14:23:59.0405 3792 C:\Windows\System32\fdPHost.dll - ok
14:23:59.0405 3792 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
14:23:59.0405 3792 C:\Windows\System32\fdWSD.dll - ok
14:23:59.0405 3792 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
14:23:59.0405 3792 C:\Windows\System32\fdSSDP.dll - ok
14:23:59.0405 3792 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
14:23:59.0405 3792 C:\Windows\System32\wmploc.DLL - ok
14:23:59.0420 3792 [ 97A891E2BF7FDA830BCFC6269DA3F5E9 ] C:\Windows\System32\blackbox.dll
14:23:59.0420 3792 C:\Windows\System32\blackbox.dll - ok
14:23:59.0420 3792 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
14:23:59.0420 3792 C:\Windows\System32\upnp.dll - ok
14:23:59.0420 3792 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
14:23:59.0420 3792 C:\Windows\System32\ssdpsrv.dll - ok
14:23:59.0420 3792 [ FF2B106909EED48C536DA04742C0324A ] C:\Windows\System32\Query.dll
14:23:59.0420 3792 C:\Windows\System32\Query.dll - ok
14:23:59.0436 3792 [ 5F1F35F2F995FA8615438AB922B0BA7B ] C:\Program Files\Internet Explorer\ieproxy.dll
14:23:59.0436 3792 C:\Program Files\Internet Explorer\ieproxy.dll - ok
14:23:59.0436 3792 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
14:23:59.0436 3792 C:\Windows\System32\wmpps.dll - ok
14:23:59.0436 3792 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
14:23:59.0436 3792 C:\Windows\System32\wmpmde.dll - ok
14:23:59.0436 3792 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
14:23:59.0436 3792 C:\Windows\System32\httpapi.dll - ok
14:23:59.0436 3792 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
14:23:59.0436 3792 C:\Windows\System32\WinSATAPI.dll - ok
14:23:59.0452 3792 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
14:23:59.0452 3792 C:\Windows\System32\MSMPEG2ENC.DLL - ok
14:23:59.0452 3792 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
14:23:59.0452 3792 C:\Windows\System32\devenum.dll - ok
14:23:59.0452 3792 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
14:23:59.0452 3792 C:\Windows\System32\msdmo.dll - ok
14:23:59.0452 3792 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
14:23:59.0452 3792 C:\Windows\System32\upnphost.dll - ok
14:23:59.0452 3792 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
14:23:59.0452 3792 C:\Windows\System32\udhisapi.dll - ok
14:23:59.0467 3792 ============================================================
14:23:59.0467 3792 Scan finished
14:23:59.0467 3792 ============================================================
14:23:59.0467 3784 Detected object count: 1
14:23:59.0467 3784 Actual detected object count: 1
14:24:03.0757 3784 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
14:24:03.0757 3784 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip

#11 ken08

ken08

    New Member

  • Members
  • Pip
  • 12 posts

Posted 09 October 2012 - 01:32 PM

im sorry. i had to break it up so that the post wouldnt be long

#12 MrCharlie

MrCharlie

    Forum Deity

  • Experts
  • PipPipPipPipPipPip
  • 28,192 posts
  • Gender:Male
  • Location:So. Plainfield, New Jersey, USA

Posted 09 October 2012 - 01:33 PM

Can you scan the system again with RogueKiller again and post the new log, MrC

Malware Removal Expert


Posted Image


I volunteer my free time to help you, if you would like to donate to show your appreciation, it will be much appreciated.

Posted Image Thanks MrC & crew

#13 ken08

ken08

    New Member

  • Members
  • Pip
  • 12 posts

Posted 09 October 2012 - 01:39 PM

RogueKiller V8.1.1 [10/03/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo...13-roguekiller/
Website: http://tigzy.geeksto...roguekiller.php
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Ky [Admin rights]
Mode : Scan -- Date : 10/09/2012 14:37:33

¤¤¤ Bad processes : 1 ¤¤¤
[SUSP PATH] E35B3B89-BC3B-45AF-B747-2A74A8172242.exe -- C:\Users\Ky.AnothaWorld\AppData\Local\Temp\E35B3B89-BC3B-45AF-B747-2A74A8172242.exe -> KILLED [TermProc]

¤¤¤ Registry Entries : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤
[ZeroAccess][FOLDER] U : C:\windows\Installer\{fb9a415d-8a39-a495-eecb-70163c6883ff}\U --> FOUND

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ Infection : ZeroAccess ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\windows\system32\drivers\etc\hosts



¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: TOSHIBA MK5075GSX +++++
--- User ---
[MBR] 7b85f7a495ff369c2a090ac6f4a0369b
[BSP] a8936ce11f18d4f178bb4c27e2c2e297 : Windows Vista MBR Code
Partition table:
0 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 1500 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 3074048 | Size: 460564 Mo
2 - [XXXXXX] NTFS (0x17) [HIDDEN!] Offset (sectors): 946309120 | Size: 14875 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[6].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt ; RKreport[5].txt ;
RKreport[6].txt

#14 MrCharlie

MrCharlie

    Forum Deity

  • Experts
  • PipPipPipPipPipPip
  • 28,192 posts
  • Gender:Male
  • Location:So. Plainfield, New Jersey, USA

Posted 09 October 2012 - 01:59 PM

Run RogueKiller again and click Scan
When the scan completes > click on the Files tab
Put a check next to all of these and uncheck the rest: (if found)

[ZeroAccess][FOLDER] U : C:\windows\Installer\{fb9a415d-8a39-a495-eecb-70163c6883ff}\U --> FOUND


Now click Delete on the right hand column under Options

~~~~~~~~~~~~~~~~~~~~~~

Next............

Please Update and run a Quick Scan with MBAM, post the report.

Make sure that everything is checked, and click Remove Selected.

Please let me know how computer is running now, MrC

Malware Removal Expert


Posted Image


I volunteer my free time to help you, if you would like to donate to show your appreciation, it will be much appreciated.

Posted Image Thanks MrC & crew

#15 ken08

ken08

    New Member

  • Members
  • Pip
  • 12 posts

Posted 09 October 2012 - 03:56 PM

the computer is running MUCH BETTER now :)

mbam log:


Malwarebytes Anti-Malware 1.65.0.1400
www.malwarebytes.org

Database version: v2012.10.09.11

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Ky :: ANOTHAWORLD [administrator]

10/9/2012 4:51:24 PM
mbam-log-2012-10-09 (16-51-24).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 308462
Time elapsed: 3 minute(s), 26 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#16 MrCharlie

MrCharlie

    Forum Deity

  • Experts
  • PipPipPipPipPipPip
  • 28,192 posts
  • Gender:Male
  • Location:So. Plainfield, New Jersey, USA

Posted 09 October 2012 - 05:45 PM

Great Posted Image

Lets check your computers security before you go and we have a little cleanup to do also:

Download Security Check by screen317 from HERE or HERE.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

MrC

Malware Removal Expert


Posted Image


I volunteer my free time to help you, if you would like to donate to show your appreciation, it will be much appreciated.

Posted Image Thanks MrC & crew

#17 ken08

ken08

    New Member

  • Members
  • Pip
  • 12 posts

Posted 09 October 2012 - 06:31 PM

Results of screen317's Security Check version 0.99.51
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Security Center service is not running! This report may not be accurate!
Norton Internet Security
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.65.0.1400
Java™ 6 Update 25
Java version out of Date!
Adobe Flash Player 11.4.402.287
Google Chrome 21.0.1180.83
Google Chrome 21.0.1180.89
Google Chrome 22.0.1229.79
````````Process Check: objlist.exe by Laurent````````
Norton ccSvcHst.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 4%
````````````````````End of Log``````````````````````

#18 MrCharlie

MrCharlie

    Forum Deity

  • Experts
  • PipPipPipPipPipPip
  • 28,192 posts
  • Gender:Male
  • Location:So. Plainfield, New Jersey, USA

Posted 09 October 2012 - 06:46 PM

Java™ 6 Update 25 <---uninstall from add/remove programs
Java version out of Date! <----download and install the latest version Here



You have out dated programs on the system which are vulnerable to malware.
Please update or delete them
Info on doing that can be found in my Preventive Maintenance

~~~~~~~~~~~~~~~~~~~~~

A little clean up to do....

Please Uninstall ComboFix: (if you used it)

Press the Windows logo key + R to bring up the "run box"

Copy and paste next command in the field:

ComboFix /uninstall

Make sure there's a space between Combofix and /

Posted Image

Then hit enter.
This will uninstall Combofix, delete its related folders and files, hide file extensions, hide the system/hidden files and clears System Restore cache and create new Restore point

(If that doesn't work.....you can simply rename ComboFix.exe to Uninstall.exe and double click it to complete the uninstall)

---------------------------------

Please download OTL from one of the links below: (you may already have OTL on the system)
http://oldtimer.geekstogo.com/OTL.exe
http://oldtimer.geekstogo.com/OTL.com
http://www.itxassoci...T-Tools/OTL.exe

Save it to your desktop.

Run OTL and hit the CleanUp button. (This will cleanup the tools and logs used including itself)

Any other programs or logs you can manually delete.
IE: RogueKiller.exe, RKreport.txt, RK_Quarantine folder, C:\FRST, etc....

-------------------------------

Any questions...please post back.

If you think I've helped you, please leave a comment > click on my avatar picture > click Profile Feed.

Take a look at My Preventive Maintenance to avoid being infected again.

Good Luck and Thanks for using the forum, MrC

Malware Removal Expert


Posted Image


I volunteer my free time to help you, if you would like to donate to show your appreciation, it will be much appreciated.

Posted Image Thanks MrC & crew

#19 ken08

ken08

    New Member

  • Members
  • Pip
  • 12 posts

Posted 09 October 2012 - 07:18 PM

ok thanks so much for your help.:)

#20 Maurice Naggar

Maurice Naggar

    Staff

  • Moderators
  • PipPipPipPipPipPip
  • 14,550 posts
  • Gender:Male
  • Location:USA
  • Interests:Security, Windows, Windows Update, malware prevention

Posted 11 October 2012 - 08:00 AM

Glad we could help. :)

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!
Maurice Naggar
Product Support

staff.png

Follow us: Twitter, Become a fan: Facebook

I close my threads if there is 5 days without a response.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users