20:46:46.0712 0x1b18 TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04 20:46:51.0953 0x1b18 ============================================================ 20:46:51.0953 0x1b18 Current date / time: 2015/01/23 20:46:51.0953 20:46:51.0953 0x1b18 SystemInfo: 20:46:51.0953 0x1b18 20:46:51.0953 0x1b18 OS Version: 6.1.7601 ServicePack: 1.0 20:46:51.0953 0x1b18 Product type: Workstation 20:46:51.0953 0x1b18 ComputerName: PC 20:46:51.0953 0x1b18 UserName: admin 20:46:51.0953 0x1b18 Windows directory: C:\windows 20:46:51.0953 0x1b18 System windows directory: C:\windows 20:46:51.0953 0x1b18 Running under WOW64 20:46:51.0953 0x1b18 Processor architecture: Intel x64 20:46:51.0953 0x1b18 Number of processors: 4 20:46:51.0953 0x1b18 Page size: 0x1000 20:46:51.0953 0x1b18 Boot type: Normal boot 20:46:51.0953 0x1b18 ============================================================ 20:46:51.0953 0x1b18 BG loaded 20:46:52.0203 0x1b18 System UUID: {1D60D8B5-103D-647B-396C-B8050CBA052A} 20:46:52.0609 0x1b18 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 20:46:52.0609 0x1b18 ============================================================ 20:46:52.0609 0x1b18 \Device\Harddisk0\DR0: 20:46:52.0609 0x1b18 MBR partitions: 20:46:52.0609 0x1b18 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x2349D800 20:46:52.0609 0x1b18 ============================================================ 20:46:52.0624 0x1b18 C: <-> \Device\Harddisk0\DR0\Partition1 20:46:52.0624 0x1b18 ============================================================ 20:46:52.0624 0x1b18 Initialize success 20:46:52.0624 0x1b18 ============================================================ 20:47:40.0438 0x1380 ============================================================ 20:47:40.0438 0x1380 Scan started 20:47:40.0438 0x1380 Mode: Manual; SigCheck; TDLFS; 20:47:40.0438 0x1380 ============================================================ 20:47:40.0438 0x1380 KSN ping started 20:47:42.0997 0x1380 KSN ping finished: true 20:47:43.0667 0x1380 ================ Scan system memory ======================== 20:47:43.0667 0x1380 System memory - ok 20:47:43.0667 0x1380 ================ Scan services ============================= 20:47:44.0057 0x1380 [ EB2290ED2AFEA6D9C9773B818F2C1EA3, 7CC151FD71E0F32C106A6699B54E9C18CC43859A98B5A891646DD7FAEF9FFC54 ] 00824150 C:\windows\system32\drivers\10834366.sys 20:47:44.0120 0x1380 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\windows\system32\drivers\1394ohci.sys 20:47:44.0120 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\1394ohci.sys. md5: A87D604AEA360176311474C87A63BB88, sha256: B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F 20:47:44.0120 0x1380 1394ohci - detected LockedFile.Multi.Generic ( 1 ) 20:47:46.0725 0x1380 Detect skipped due to KSN trusted 20:47:46.0725 0x1380 1394ohci - ok 20:47:46.0787 0x1380 [ 60BF76580C457F0F42108C8BB45A531A, 4BEB9382EF094389CD326E331517A49A5A86AE49C85685AF5C7632C012349DFE ] 1c2a86b7768b5cf3 C:\windows\System32\Drivers\1c2a86b7768b5cf3.sys 20:47:46.0787 0x1380 Suspicious file ( NoAccess ): C:\windows\System32\Drivers\1c2a86b7768b5cf3.sys. md5: 60BF76580C457F0F42108C8BB45A531A, sha256: 4BEB9382EF094389CD326E331517A49A5A86AE49C85685AF5C7632C012349DFE 20:47:46.0787 0x1380 1c2a86b7768b5cf3 - detected LockedFile.Multi.Generic ( 1 ) 20:47:49.0486 0x1380 1c2a86b7768b5cf3 ( LockedFile.Multi.Generic ) - warning 20:47:49.0486 0x1380 Force sending object to P2P due to detect: 1c2a86b7768b5cf3 20:47:52.0247 0x1380 Object send P2P result: true 20:47:54.0915 0x1380 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\windows\system32\drivers\ACPI.sys 20:47:54.0915 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\ACPI.sys. md5: D81D9E70B8A6DD14D42D7B4EFA65D5F2, sha256: FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 20:47:54.0962 0x1380 ACPI - detected LockedFile.Multi.Generic ( 1 ) 20:47:57.0707 0x1380 Detect skipped due to KSN trusted 20:47:57.0707 0x1380 ACPI - ok 20:47:57.0770 0x1380 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys 20:47:57.0770 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\acpipmi.sys. md5: 99F8E788246D495CE3794D7E7821D2CA, sha256: F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 20:47:57.0770 0x1380 AcpiPmi - detected LockedFile.Multi.Generic ( 1 ) 20:48:00.0437 0x1380 Detect skipped due to KSN trusted 20:48:00.0437 0x1380 AcpiPmi - ok 20:48:00.0593 0x1380 [ 4C72FDD915D62EAEF149BD9C73AB9CF4, 8EA45A1B88DFD819F0ADA3AF36D464E1BF52574269592370E0CC8D0490680E1F ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 20:48:00.0671 0x1380 AdobeARMservice - ok 20:48:00.0703 0x1380 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\windows\system32\drivers\adp94xx.sys 20:48:00.0703 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\adp94xx.sys. md5: 2F6B34B83843F0C5118B63AC634F5BF4, sha256: 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 20:48:00.0703 0x1380 adp94xx - detected LockedFile.Multi.Generic ( 1 ) 20:48:03.0355 0x1380 Detect skipped due to KSN trusted 20:48:03.0355 0x1380 adp94xx - ok 20:48:03.0433 0x1380 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\windows\system32\drivers\adpahci.sys 20:48:03.0433 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\adpahci.sys. md5: 597F78224EE9224EA1A13D6350CED962, sha256: DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC 20:48:03.0433 0x1380 adpahci - detected LockedFile.Multi.Generic ( 1 ) 20:48:06.0007 0x1380 Detect skipped due to KSN trusted 20:48:06.0007 0x1380 adpahci - ok 20:48:06.0069 0x1380 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\windows\system32\drivers\adpu320.sys 20:48:06.0069 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\adpu320.sys. md5: E109549C90F62FB570B9540C4B148E54, sha256: E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 20:48:06.0069 0x1380 adpu320 - detected LockedFile.Multi.Generic ( 1 ) 20:48:08.0643 0x1380 Detect skipped due to KSN trusted 20:48:08.0643 0x1380 adpu320 - ok 20:48:08.0690 0x1380 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\windows\System32\aelupsvc.dll 20:48:08.0877 0x1380 AeLookupSvc - ok 20:48:08.0939 0x1380 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\windows\system32\drivers\afd.sys 20:48:08.0939 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\afd.sys. md5: FA886682CFC5D36718D3E436AACF10B9, sha256: F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB 20:48:08.0939 0x1380 AFD - detected LockedFile.Multi.Generic ( 1 ) 20:48:11.0529 0x1380 Detect skipped due to KSN trusted 20:48:11.0529 0x1380 AFD - ok 20:48:11.0576 0x1380 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\windows\system32\drivers\agp440.sys 20:48:11.0576 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\agp440.sys. md5: 608C14DBA7299D8CB6ED035A68A15799, sha256: 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A 20:48:11.0576 0x1380 agp440 - detected LockedFile.Multi.Generic ( 1 ) 20:48:14.0321 0x1380 Detect skipped due to KSN trusted 20:48:14.0321 0x1380 agp440 - ok 20:48:14.0384 0x1380 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\windows\System32\alg.exe 20:48:14.0462 0x1380 ALG - ok 20:48:14.0493 0x1380 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\windows\system32\drivers\aliide.sys 20:48:14.0493 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\aliide.sys. md5: 5812713A477A3AD7363C7438CA2EE038, sha256: A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 20:48:14.0493 0x1380 aliide - detected LockedFile.Multi.Generic ( 1 ) 20:48:17.0176 0x1380 Detect skipped due to KSN trusted 20:48:17.0176 0x1380 aliide - ok 20:48:17.0254 0x1380 [ 99E91E6E6E97AFC2348ECBF161FAA0D2, 29AE6742F51D7F6D6C5924ECA78010536E542C92345DFF6561860E6FC33FD320 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe 20:48:17.0348 0x1380 AMD External Events Utility - ok 20:48:17.0395 0x1380 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\windows\system32\drivers\amdide.sys 20:48:17.0395 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\amdide.sys. md5: 1FF8B4431C353CE385C875F194924C0C, sha256: 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 20:48:17.0395 0x1380 amdide - detected LockedFile.Multi.Generic ( 1 ) 20:48:20.0062 0x1380 Detect skipped due to KSN trusted 20:48:20.0062 0x1380 amdide - ok 20:48:20.0109 0x1380 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\windows\system32\drivers\amdk8.sys 20:48:20.0125 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\amdk8.sys. md5: 7024F087CFF1833A806193EF9D22CDA9, sha256: E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 20:48:20.0125 0x1380 AmdK8 - detected LockedFile.Multi.Generic ( 1 ) 20:48:22.0683 0x1380 Detect skipped due to KSN trusted 20:48:22.0683 0x1380 AmdK8 - ok 20:48:23.0058 0x1380 [ 50DBD80E1DAA40E6088EB3D2FF4395AC, 1610460E0FDE114D579016C8A8EE0AC8A026A8A7B10DAEB341A091DD2F46D7B0 ] amdkmdag C:\windows\system32\DRIVERS\atikmdag.sys 20:48:23.0058 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\atikmdag.sys. md5: 50DBD80E1DAA40E6088EB3D2FF4395AC, sha256: 1610460E0FDE114D579016C8A8EE0AC8A026A8A7B10DAEB341A091DD2F46D7B0 20:48:23.0089 0x1380 amdkmdag - detected LockedFile.Multi.Generic ( 1 ) 20:48:25.0663 0x1380 Detect skipped due to KSN trusted 20:48:25.0663 0x1380 amdkmdag - ok 20:48:25.0725 0x1380 [ 1114ADFA7AA8F804C04E7D4735B22EED, 2B2AC5906FA48162CDEB44ECF96C04B9D563E1D1D4F8ACBD19AA6212D97DC851 ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys 20:48:25.0725 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\atikmpag.sys. md5: 1114ADFA7AA8F804C04E7D4735B22EED, sha256: 2B2AC5906FA48162CDEB44ECF96C04B9D563E1D1D4F8ACBD19AA6212D97DC851 20:48:25.0741 0x1380 amdkmdap - detected LockedFile.Multi.Generic ( 1 ) 20:48:28.0330 0x1380 Detect skipped due to KSN trusted 20:48:28.0330 0x1380 amdkmdap - ok 20:48:28.0362 0x1380 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\windows\system32\drivers\amdppm.sys 20:48:28.0362 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\amdppm.sys. md5: 1E56388B3FE0D031C44144EB8C4D6217, sha256: E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 20:48:28.0362 0x1380 AmdPPM - detected LockedFile.Multi.Generic ( 1 ) 20:48:31.0154 0x1380 Detect skipped due to KSN trusted 20:48:31.0154 0x1380 AmdPPM - ok 20:48:31.0216 0x1380 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\windows\system32\drivers\amdsata.sys 20:48:31.0216 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\amdsata.sys. md5: D4121AE6D0C0E7E13AA221AA57EF2D49, sha256: 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 20:48:31.0216 0x1380 amdsata - detected LockedFile.Multi.Generic ( 1 ) 20:48:33.0946 0x1380 Detect skipped due to KSN trusted 20:48:33.0946 0x1380 amdsata - ok 20:48:33.0993 0x1380 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\windows\system32\drivers\amdsbs.sys 20:48:33.0993 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\amdsbs.sys. md5: F67F933E79241ED32FF46A4F29B5120B, sha256: D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 20:48:33.0993 0x1380 amdsbs - detected LockedFile.Multi.Generic ( 1 ) 20:48:38.0112 0x1380 Detect skipped due to KSN trusted 20:48:38.0112 0x1380 amdsbs - ok 20:48:38.0158 0x1380 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\windows\system32\drivers\amdxata.sys 20:48:38.0158 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\amdxata.sys. md5: 540DAF1CEA6094886D72126FD7C33048, sha256: 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F 20:48:38.0158 0x1380 amdxata - detected LockedFile.Multi.Generic ( 1 ) 20:48:40.0826 0x1380 Detect skipped due to KSN trusted 20:48:40.0826 0x1380 amdxata - ok 20:48:40.0904 0x1380 [ 8397FA2ABA73E696F574655A24B49D91, 8F00D4D1B229401D798EA438F5D5D5A1CEE4BC88D9275609E21C8AA1D91CAD87 ] ApfiltrService C:\windows\system32\DRIVERS\Apfiltr.sys 20:48:40.0904 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\Apfiltr.sys. md5: 8397FA2ABA73E696F574655A24B49D91, sha256: 8F00D4D1B229401D798EA438F5D5D5A1CEE4BC88D9275609E21C8AA1D91CAD87 20:48:40.0904 0x1380 ApfiltrService - detected LockedFile.Multi.Generic ( 1 ) 20:48:43.0462 0x1380 Detect skipped due to KSN trusted 20:48:43.0462 0x1380 ApfiltrService - ok 20:48:43.0509 0x1380 [ 80B9412C4DE09147581FC935FB4C97AB, 0C9661F7B5EF7F9D61981790B7AB64E3375BD117962166619D0CC546A2D014D3 ] AppID C:\windows\system32\drivers\appid.sys 20:48:43.0509 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\appid.sys. md5: 80B9412C4DE09147581FC935FB4C97AB, sha256: 0C9661F7B5EF7F9D61981790B7AB64E3375BD117962166619D0CC546A2D014D3 20:48:43.0509 0x1380 AppID - detected LockedFile.Multi.Generic ( 1 ) 20:48:46.0130 0x1380 Detect skipped due to KSN trusted 20:48:46.0130 0x1380 AppID - ok 20:48:46.0177 0x1380 [ F71CA01C24FC3798A717B5A6F682F9AD, 8CF1C209E7BBBAD02D6D087293C0B681CDA3170AF119CA2916C2708D8801E749 ] AppIDSvc C:\windows\System32\appidsvc.dll 20:48:46.0255 0x1380 AppIDSvc - ok 20:48:46.0302 0x1380 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\windows\System32\appinfo.dll 20:48:46.0380 0x1380 Appinfo - ok 20:48:46.0411 0x1380 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\windows\System32\appmgmts.dll 20:48:46.0489 0x1380 AppMgmt - ok 20:48:46.0520 0x1380 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\windows\system32\drivers\arc.sys 20:48:46.0520 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\arc.sys. md5: C484F8CEB1717C540242531DB7845C4E, sha256: C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 20:48:46.0520 0x1380 arc - detected LockedFile.Multi.Generic ( 1 ) 20:48:49.0094 0x1380 Detect skipped due to KSN trusted 20:48:49.0094 0x1380 arc - ok 20:48:49.0141 0x1380 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\windows\system32\drivers\arcsas.sys 20:48:49.0141 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\arcsas.sys. md5: 019AF6924AEFE7839F61C830227FE79C, sha256: 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A 20:48:49.0141 0x1380 arcsas - detected LockedFile.Multi.Generic ( 1 ) 20:48:51.0746 0x1380 Detect skipped due to KSN trusted 20:48:51.0746 0x1380 arcsas - ok 20:48:51.0871 0x1380 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 20:48:51.0902 0x1380 aspnet_state - ok 20:48:51.0918 0x1380 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys 20:48:51.0918 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\asyncmac.sys. md5: 769765CE2CC62867468CEA93969B2242, sha256: 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 20:48:51.0918 0x1380 AsyncMac - detected LockedFile.Multi.Generic ( 1 ) 20:48:54.0585 0x1380 Detect skipped due to KSN trusted 20:48:54.0585 0x1380 AsyncMac - ok 20:48:54.0601 0x1380 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\windows\system32\drivers\atapi.sys 20:48:54.0601 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\atapi.sys. md5: 02062C0B390B7729EDC9E69C680A6F3C, sha256: 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 20:48:54.0616 0x1380 atapi - detected LockedFile.Multi.Generic ( 1 ) 20:48:57.0331 0x1380 Detect skipped due to KSN trusted 20:48:57.0331 0x1380 atapi - ok 20:48:57.0502 0x1380 [ B2931C83CFB12A3223A47B180473AE1A, D9089E0D4AB82F4F5FCD6A82F446504E7968EA6A09B55190F68EB8A09F6CFE78 ] athr C:\windows\system32\DRIVERS\athrx.sys 20:48:57.0502 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\athrx.sys. md5: B2931C83CFB12A3223A47B180473AE1A, sha256: D9089E0D4AB82F4F5FCD6A82F446504E7968EA6A09B55190F68EB8A09F6CFE78 20:48:57.0502 0x1380 athr - detected LockedFile.Multi.Generic ( 1 ) 20:49:00.0108 0x1380 Detect skipped due to KSN trusted 20:49:00.0108 0x1380 athr - ok 20:49:00.0201 0x1380 [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll 20:49:00.0264 0x1380 AudioEndpointBuilder - ok 20:49:00.0310 0x1380 [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioSrv C:\windows\System32\Audiosrv.dll 20:49:00.0326 0x1380 AudioSrv - ok 20:49:00.0373 0x1380 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\windows\System32\AxInstSV.dll 20:49:00.0466 0x1380 AxInstSV - ok 20:49:00.0529 0x1380 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys 20:49:00.0529 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\bxvbda.sys. md5: 3E5B191307609F7514148C6832BB0842, sha256: DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 20:49:00.0529 0x1380 b06bdrv - detected LockedFile.Multi.Generic ( 1 ) 20:49:03.0103 0x1380 Detect skipped due to KSN trusted 20:49:03.0103 0x1380 b06bdrv - ok 20:49:03.0181 0x1380 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys 20:49:03.0181 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\b57nd60a.sys. md5: B5ACE6968304A3900EEB1EBFD9622DF2, sha256: 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA 20:49:03.0181 0x1380 b57nd60a - detected LockedFile.Multi.Generic ( 1 ) 20:49:05.0755 0x1380 Detect skipped due to KSN trusted 20:49:05.0755 0x1380 b57nd60a - ok 20:49:05.0833 0x1380 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\windows\System32\bdesvc.dll 20:49:05.0911 0x1380 BDESVC - ok 20:49:05.0926 0x1380 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\windows\system32\drivers\Beep.sys 20:49:05.0926 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\Beep.sys. md5: 16A47CE2DECC9B099349A5F840654746, sha256: 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 20:49:05.0926 0x1380 Beep - detected LockedFile.Multi.Generic ( 1 ) 20:49:08.0625 0x1380 Detect skipped due to KSN trusted 20:49:08.0625 0x1380 Beep - ok 20:49:08.0719 0x1380 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\windows\System32\bfe.dll 20:49:08.0844 0x1380 BFE - ok 20:49:08.0922 0x1380 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\windows\System32\qmgr.dll 20:49:09.0109 0x1380 BITS - ok 20:49:09.0156 0x1380 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\windows\system32\drivers\blbdrive.sys 20:49:09.0156 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\blbdrive.sys. md5: 61583EE3C3A17003C4ACD0475646B4D3, sha256: 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 20:49:09.0156 0x1380 blbdrive - detected LockedFile.Multi.Generic ( 1 ) 20:49:11.0823 0x1380 Detect skipped due to KSN trusted 20:49:11.0823 0x1380 blbdrive - ok 20:49:11.0932 0x1380 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 20:49:11.0964 0x1380 Bonjour Service - ok 20:49:11.0979 0x1380 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\windows\system32\DRIVERS\bowser.sys 20:49:11.0979 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\bowser.sys. md5: 6C02A83164F5CC0A262F4199F0871CF5, sha256: AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 20:49:11.0979 0x1380 bowser - detected LockedFile.Multi.Generic ( 1 ) 20:49:14.0678 0x1380 Detect skipped due to KSN trusted 20:49:14.0678 0x1380 bowser - ok 20:49:14.0709 0x1380 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys 20:49:14.0709 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\BrFiltLo.sys. md5: F09EEE9EDC320B5E1501F749FDE686C8, sha256: 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 20:49:14.0709 0x1380 BrFiltLo - detected LockedFile.Multi.Generic ( 1 ) 20:49:17.0330 0x1380 Detect skipped due to KSN trusted 20:49:17.0330 0x1380 BrFiltLo - ok 20:49:17.0392 0x1380 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys 20:49:17.0392 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\BrFiltUp.sys. md5: B114D3098E9BDB8BEA8B053685831BE6, sha256: 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C 20:49:17.0392 0x1380 BrFiltUp - detected LockedFile.Multi.Generic ( 1 ) 20:49:19.0951 0x1380 Detect skipped due to KSN trusted 20:49:19.0951 0x1380 BrFiltUp - ok 20:49:20.0029 0x1380 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\windows\System32\browser.dll 20:49:20.0122 0x1380 Browser - ok 20:49:20.0169 0x1380 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\windows\System32\Drivers\Brserid.sys 20:49:20.0169 0x1380 Suspicious file ( NoAccess ): C:\windows\System32\Drivers\Brserid.sys. md5: 43BEA8D483BF1870F018E2D02E06A5BD, sha256: 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 20:49:20.0169 0x1380 Brserid - detected LockedFile.Multi.Generic ( 1 ) 20:49:22.0728 0x1380 Detect skipped due to KSN trusted 20:49:22.0728 0x1380 Brserid - ok 20:49:22.0759 0x1380 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys 20:49:22.0759 0x1380 Suspicious file ( NoAccess ): C:\windows\System32\Drivers\BrSerWdm.sys. md5: A6ECA2151B08A09CACECA35C07F05B42, sha256: E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C 20:49:22.0759 0x1380 BrSerWdm - detected LockedFile.Multi.Generic ( 1 ) 20:49:25.0520 0x1380 Detect skipped due to KSN trusted 20:49:25.0520 0x1380 BrSerWdm - ok 20:49:25.0567 0x1380 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys 20:49:25.0567 0x1380 Suspicious file ( NoAccess ): C:\windows\System32\Drivers\BrUsbMdm.sys. md5: B79968002C277E869CF38BD22CD61524, sha256: 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 20:49:25.0567 0x1380 BrUsbMdm - detected LockedFile.Multi.Generic ( 1 ) 20:49:28.0250 0x1380 Detect skipped due to KSN trusted 20:49:28.0250 0x1380 BrUsbMdm - ok 20:49:28.0297 0x1380 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys 20:49:28.0297 0x1380 Suspicious file ( NoAccess ): C:\windows\System32\Drivers\BrUsbSer.sys. md5: A87528880231C54E75EA7A44943B38BF, sha256: 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 20:49:28.0297 0x1380 BrUsbSer - detected LockedFile.Multi.Generic ( 1 ) 20:49:30.0996 0x1380 Detect skipped due to KSN trusted 20:49:30.0996 0x1380 BrUsbSer - ok 20:49:31.0042 0x1380 [ 2347ABBD13BADA65826FDAB4CAAFE357, EA11668ECC7F92287C5B570DBF5629A80269E79AC256F5AF0984D8B270010BAE ] BtFilter C:\windows\system32\DRIVERS\btfilter.sys 20:49:31.0042 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\btfilter.sys. md5: 2347ABBD13BADA65826FDAB4CAAFE357, sha256: EA11668ECC7F92287C5B570DBF5629A80269E79AC256F5AF0984D8B270010BAE 20:49:31.0042 0x1380 BtFilter - detected LockedFile.Multi.Generic ( 1 ) 20:49:33.0616 0x1380 Detect skipped due to KSN trusted 20:49:33.0616 0x1380 BtFilter - ok 20:49:33.0663 0x1380 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys 20:49:33.0663 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\bthmodem.sys. md5: 9DA669F11D1F894AB4EB69BF546A42E8, sha256: B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 20:49:33.0663 0x1380 BTHMODEM - detected LockedFile.Multi.Generic ( 1 ) 20:49:36.0955 0x1380 Detect skipped due to KSN trusted 20:49:36.0955 0x1380 BTHMODEM - ok 20:49:37.0017 0x1380 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\windows\system32\bthserv.dll 20:49:37.0126 0x1380 bthserv - ok 20:49:37.0158 0x1380 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\windows\system32\DRIVERS\cdfs.sys 20:49:37.0158 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\cdfs.sys. md5: B8BD2BB284668C84865658C77574381A, sha256: 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 20:49:37.0158 0x1380 cdfs - detected LockedFile.Multi.Generic ( 1 ) 20:49:39.0732 0x1380 Detect skipped due to KSN trusted 20:49:39.0732 0x1380 cdfs - ok 20:49:39.0778 0x1380 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\windows\system32\DRIVERS\cdrom.sys 20:49:39.0778 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\cdrom.sys. md5: F036CE71586E93D94DAB220D7BDF4416, sha256: BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B 20:49:39.0778 0x1380 cdrom - detected LockedFile.Multi.Generic ( 1 ) 20:49:42.0508 0x1380 Detect skipped due to KSN trusted 20:49:42.0508 0x1380 cdrom - ok 20:49:42.0555 0x1380 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\windows\System32\certprop.dll 20:49:42.0649 0x1380 CertPropSvc - ok 20:49:42.0758 0x1380 [ 41E7C4FA6491747402CFCA77CC1C7AAB, 676CD982A0D33B60A646AC7C0158F7421E395C8B4B12E544C55AF5C09E470CC5 ] cfWiMAXService C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe 20:49:42.0789 0x1380 cfWiMAXService - ok 20:49:42.0820 0x1380 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\windows\system32\drivers\circlass.sys 20:49:42.0820 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\circlass.sys. md5: D7CD5C4E1B71FA62050515314CFB52CF, sha256: 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 20:49:42.0820 0x1380 circlass - detected LockedFile.Multi.Generic ( 1 ) 20:49:45.0488 0x1380 Detect skipped due to KSN trusted 20:49:45.0488 0x1380 circlass - ok 20:49:45.0550 0x1380 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\windows\system32\CLFS.sys 20:49:45.0566 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\CLFS.sys. md5: FE1EC06F2253F691FE36217C592A0206, sha256: B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE 20:49:45.0566 0x1380 CLFS - detected LockedFile.Multi.Generic ( 1 ) 20:49:48.0280 0x1380 Detect skipped due to KSN trusted 20:49:48.0280 0x1380 CLFS - ok 20:49:48.0343 0x1380 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 20:49:48.0374 0x1380 clr_optimization_v2.0.50727_32 - ok 20:49:48.0468 0x1380 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 20:49:48.0499 0x1380 clr_optimization_v2.0.50727_64 - ok 20:49:48.0577 0x1380 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 20:49:48.0624 0x1380 clr_optimization_v4.0.30319_32 - ok 20:49:48.0639 0x1380 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 20:49:48.0686 0x1380 clr_optimization_v4.0.30319_64 - ok 20:49:48.0702 0x1380 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\windows\system32\drivers\CmBatt.sys 20:49:48.0702 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\CmBatt.sys. md5: 0840155D0BDDF1190F84A663C284BD33, sha256: 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A 20:49:48.0702 0x1380 CmBatt - detected LockedFile.Multi.Generic ( 1 ) 20:49:51.0260 0x1380 Detect skipped due to KSN trusted 20:49:51.0260 0x1380 CmBatt - ok 20:49:51.0307 0x1380 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\windows\system32\drivers\cmdide.sys 20:49:51.0307 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\cmdide.sys. md5: E19D3F095812725D88F9001985B94EDD, sha256: 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B 20:49:51.0307 0x1380 cmdide - detected LockedFile.Multi.Generic ( 1 ) 20:49:53.0912 0x1380 Detect skipped due to KSN trusted 20:49:53.0912 0x1380 cmdide - ok 20:49:54.0006 0x1380 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\windows\system32\Drivers\cng.sys 20:49:54.0006 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\Drivers\cng.sys. md5: EBF28856F69CF094A902F884CF989706, sha256: AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F 20:49:54.0006 0x1380 CNG - detected LockedFile.Multi.Generic ( 1 ) 20:49:56.0580 0x1380 Detect skipped due to KSN trusted 20:49:56.0580 0x1380 CNG - ok 20:49:56.0626 0x1380 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\windows\system32\drivers\compbatt.sys 20:49:56.0626 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\compbatt.sys. md5: 102DE219C3F61415F964C88E9085AD14, sha256: CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 20:49:56.0626 0x1380 Compbatt - detected LockedFile.Multi.Generic ( 1 ) 20:49:59.0356 0x1380 Detect skipped due to KSN trusted 20:49:59.0356 0x1380 Compbatt - ok 20:49:59.0403 0x1380 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys 20:49:59.0403 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\CompositeBus.sys. md5: 03EDB043586CCEBA243D689BDDA370A8, sha256: 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 20:49:59.0403 0x1380 CompositeBus - detected LockedFile.Multi.Generic ( 1 ) 20:50:02.0102 0x1380 Detect skipped due to KSN trusted 20:50:02.0102 0x1380 CompositeBus - ok 20:50:02.0102 0x1380 COMSysApp - ok 20:50:02.0149 0x1380 [ CAB0EEAF5295FC96DDD3E19DCE27E131, 87BCAC18D920153322D325AA5B93BB0B447577D67261FDCC01C5B60643CEA792 ] ConfigFree Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe 20:50:02.0164 0x1380 ConfigFree Service - ok 20:50:02.0196 0x1380 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\windows\system32\drivers\crcdisk.sys 20:50:02.0196 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\crcdisk.sys. md5: 1C827878A998C18847245FE1F34EE597, sha256: 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 20:50:02.0196 0x1380 crcdisk - detected LockedFile.Multi.Generic ( 1 ) 20:50:04.0894 0x1380 Detect skipped due to KSN trusted 20:50:04.0894 0x1380 crcdisk - ok 20:50:04.0957 0x1380 [ 19D511CC455C19DE1ADF60E6C39C85B6, 2A05DD5EF3D0BEC2C9F4EA186E0E2D0F7BE0BF6A473D51194B09D33773AC7FAA ] CryptSvc C:\windows\system32\cryptsvc.dll 20:50:05.0035 0x1380 CryptSvc - ok 20:50:05.0097 0x1380 [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\windows\system32\drivers\csc.sys 20:50:05.0097 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\csc.sys. md5: 54DA3DFD29ED9F1619B6F53F3CE55E49, sha256: 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E 20:50:05.0128 0x1380 CSC - detected LockedFile.Multi.Generic ( 1 ) 20:50:07.0812 0x1380 Detect skipped due to KSN trusted 20:50:07.0812 0x1380 CSC - ok 20:50:07.0890 0x1380 [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\windows\System32\cscsvc.dll 20:50:07.0936 0x1380 CscService - ok 20:50:07.0999 0x1380 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\windows\system32\rpcss.dll 20:50:08.0077 0x1380 DcomLaunch - ok 20:50:08.0124 0x1380 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\windows\System32\defragsvc.dll 20:50:08.0186 0x1380 defragsvc - ok 20:50:08.0233 0x1380 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\windows\system32\Drivers\dfsc.sys 20:50:08.0233 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\Drivers\dfsc.sys. md5: 9BB2EF44EAA163B29C4A4587887A0FE4, sha256: 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F 20:50:08.0233 0x1380 DfsC - detected LockedFile.Multi.Generic ( 1 ) 20:50:10.0838 0x1380 Detect skipped due to KSN trusted 20:50:10.0838 0x1380 DfsC - ok 20:50:10.0916 0x1380 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\windows\system32\dhcpcore.dll 20:50:11.0010 0x1380 Dhcp - ok 20:50:11.0025 0x1380 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\windows\system32\drivers\discache.sys 20:50:11.0025 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\discache.sys. md5: 13096B05847EC78F0977F2C0F79E9AB3, sha256: 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 20:50:11.0025 0x1380 discache - detected LockedFile.Multi.Generic ( 1 ) 20:50:13.0584 0x1380 Detect skipped due to KSN trusted 20:50:13.0584 0x1380 discache - ok 20:50:13.0631 0x1380 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\windows\system32\drivers\disk.sys 20:50:13.0631 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\disk.sys. md5: 9819EEE8B5EA3784EC4AF3B137A5244C, sha256: 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 20:50:13.0631 0x1380 Disk - detected LockedFile.Multi.Generic ( 1 ) 20:50:16.0220 0x1380 Detect skipped due to KSN trusted 20:50:16.0220 0x1380 Disk - ok 20:50:16.0267 0x1380 [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\windows\system32\drivers\dmvsc.sys 20:50:16.0283 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\dmvsc.sys. md5: 5DB085A8A6600BE6401F2B24EECB5415, sha256: 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 20:50:16.0283 0x1380 dmvsc - detected LockedFile.Multi.Generic ( 1 ) 20:50:18.0935 0x1380 Detect skipped due to KSN trusted 20:50:18.0935 0x1380 dmvsc - ok 20:50:18.0997 0x1380 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\windows\System32\dnsrslvr.dll 20:50:19.0075 0x1380 Dnscache - ok 20:50:19.0137 0x1380 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\windows\System32\dot3svc.dll 20:50:19.0247 0x1380 dot3svc - ok 20:50:19.0278 0x1380 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\windows\system32\dps.dll 20:50:19.0325 0x1380 DPS - ok 20:50:19.0356 0x1380 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\windows\system32\drivers\drmkaud.sys 20:50:19.0356 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\drmkaud.sys. md5: 9B19F34400D24DF84C858A421C205754, sha256: 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 20:50:19.0356 0x1380 drmkaud - detected LockedFile.Multi.Generic ( 1 ) 20:50:22.0023 0x1380 Detect skipped due to KSN trusted 20:50:22.0023 0x1380 drmkaud - ok 20:50:22.0117 0x1380 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys 20:50:22.0117 0x1380 Suspicious file ( NoAccess ): C:\windows\System32\drivers\dxgkrnl.sys. md5: 87CE5C8965E101CCCED1F4675557E868, sha256: 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 20:50:22.0117 0x1380 DXGKrnl - detected LockedFile.Multi.Generic ( 1 ) 20:50:24.0675 0x1380 Detect skipped due to KSN trusted 20:50:24.0675 0x1380 DXGKrnl - ok 20:50:24.0722 0x1380 [ 60633132A929C09FE78FAB16541F9E71, C7B60A4AAD8E0D9519D819A417D8A51383BF1DF571E5EF5A98A693DB0A8E0BE7 ] e1cexpress C:\windows\system32\DRIVERS\e1c62x64.sys 20:50:24.0722 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\e1c62x64.sys. md5: 60633132A929C09FE78FAB16541F9E71, sha256: C7B60A4AAD8E0D9519D819A417D8A51383BF1DF571E5EF5A98A693DB0A8E0BE7 20:50:24.0722 0x1380 e1cexpress - detected LockedFile.Multi.Generic ( 1 ) 20:50:27.0296 0x1380 Detect skipped due to KSN trusted 20:50:27.0296 0x1380 e1cexpress - ok 20:50:27.0359 0x1380 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\windows\System32\eapsvc.dll 20:50:27.0483 0x1380 EapHost - ok 20:50:27.0655 0x1380 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\windows\system32\drivers\evbda.sys 20:50:27.0655 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\evbda.sys. md5: DC5D737F51BE844D8C82C695EB17372F, sha256: 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 20:50:27.0671 0x1380 ebdrv - detected LockedFile.Multi.Generic ( 1 ) 20:50:30.0213 0x1380 Detect skipped due to KSN trusted 20:50:30.0213 0x1380 ebdrv - ok 20:50:30.0260 0x1380 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS C:\windows\System32\lsass.exe 20:50:30.0307 0x1380 EFS - ok 20:50:30.0401 0x1380 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\windows\ehome\ehRecvr.exe 20:50:30.0494 0x1380 ehRecvr - ok 20:50:30.0525 0x1380 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\windows\ehome\ehsched.exe 20:50:30.0557 0x1380 ehSched - ok 20:50:30.0635 0x1380 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\windows\system32\drivers\elxstor.sys 20:50:30.0635 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\elxstor.sys. md5: 0E5DA5369A0FCAEA12456DD852545184, sha256: 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 20:50:30.0635 0x1380 elxstor - detected LockedFile.Multi.Generic ( 1 ) 20:50:33.0365 0x1380 Detect skipped due to KSN trusted 20:50:33.0365 0x1380 elxstor - ok 20:50:33.0396 0x1380 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\windows\system32\drivers\errdev.sys 20:50:33.0396 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\errdev.sys. md5: 34A3C54752046E79A126E15C51DB409B, sha256: 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 20:50:33.0396 0x1380 ErrDev - detected LockedFile.Multi.Generic ( 1 ) 20:50:36.0048 0x1380 Detect skipped due to KSN trusted 20:50:36.0048 0x1380 ErrDev - ok 20:50:36.0126 0x1380 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\windows\system32\es.dll 20:50:36.0219 0x1380 EventSystem - ok 20:50:36.0282 0x1380 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\windows\system32\drivers\exfat.sys 20:50:36.0282 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\exfat.sys. md5: A510C654EC00C1E9BDD91EEB3A59823B, sha256: 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 20:50:36.0282 0x1380 exfat - detected LockedFile.Multi.Generic ( 1 ) 20:50:38.0981 0x1380 Detect skipped due to KSN trusted 20:50:38.0981 0x1380 exfat - ok 20:50:39.0012 0x1380 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\windows\system32\drivers\fastfat.sys 20:50:39.0012 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\fastfat.sys. md5: 0ADC83218B66A6DB380C330836F3E36D, sha256: 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 20:50:39.0012 0x1380 fastfat - detected LockedFile.Multi.Generic ( 1 ) 20:50:41.0586 0x1380 Detect skipped due to KSN trusted 20:50:41.0586 0x1380 fastfat - ok 20:50:41.0664 0x1380 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\windows\system32\fxssvc.exe 20:50:41.0757 0x1380 Fax - ok 20:50:41.0789 0x1380 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\windows\system32\drivers\fdc.sys 20:50:41.0789 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\fdc.sys. md5: D765D19CD8EF61F650C384F62FAC00AB, sha256: 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE 20:50:41.0789 0x1380 fdc - detected LockedFile.Multi.Generic ( 1 ) 20:50:44.0378 0x1380 Detect skipped due to KSN trusted 20:50:44.0378 0x1380 fdc - ok 20:50:44.0409 0x1380 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\windows\system32\fdPHost.dll 20:50:44.0534 0x1380 fdPHost - ok 20:50:44.0550 0x1380 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\windows\system32\fdrespub.dll 20:50:44.0643 0x1380 FDResPub - ok 20:50:44.0659 0x1380 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\windows\system32\drivers\fileinfo.sys 20:50:44.0659 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\fileinfo.sys. md5: 655661BE46B5F5F3FD454E2C3095B930, sha256: 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A 20:50:44.0659 0x1380 FileInfo - detected LockedFile.Multi.Generic ( 1 ) 20:50:47.0873 0x1380 Detect skipped due to KSN trusted 20:50:47.0873 0x1380 FileInfo - ok 20:50:47.0904 0x1380 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\windows\system32\drivers\filetrace.sys 20:50:47.0904 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\filetrace.sys. md5: 5F671AB5BC87EEA04EC38A6CD5962A47, sha256: 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 20:50:47.0904 0x1380 Filetrace - detected LockedFile.Multi.Generic ( 1 ) 20:50:50.0587 0x1380 Detect skipped due to KSN trusted 20:50:50.0587 0x1380 Filetrace - ok 20:50:50.0634 0x1380 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\windows\system32\drivers\flpydisk.sys 20:50:50.0634 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\flpydisk.sys. md5: C172A0F53008EAEB8EA33FE10E177AF5, sha256: 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B 20:50:50.0634 0x1380 flpydisk - detected LockedFile.Multi.Generic ( 1 ) 20:50:53.0317 0x1380 Detect skipped due to KSN trusted 20:50:53.0317 0x1380 flpydisk - ok 20:50:53.0364 0x1380 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\windows\system32\drivers\fltmgr.sys 20:50:53.0364 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\fltmgr.sys. md5: DA6B67270FD9DB3697B20FCE94950741, sha256: F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 20:50:53.0379 0x1380 FltMgr - detected LockedFile.Multi.Generic ( 1 ) 20:50:55.0969 0x1380 Detect skipped due to KSN trusted 20:50:55.0969 0x1380 FltMgr - ok 20:50:56.0094 0x1380 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\windows\system32\FntCache.dll 20:50:56.0234 0x1380 FontCache - ok 20:50:56.0297 0x1380 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 20:50:56.0312 0x1380 FontCache3.0.0.0 - ok 20:50:56.0359 0x1380 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\windows\system32\drivers\FsDepends.sys 20:50:56.0359 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\FsDepends.sys. md5: D43703496149971890703B4B1B723EAC, sha256: F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E 20:50:56.0359 0x1380 FsDepends - detected LockedFile.Multi.Generic ( 1 ) 20:50:58.0933 0x1380 Detect skipped due to KSN trusted 20:50:58.0933 0x1380 FsDepends - ok 20:50:58.0964 0x1380 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys 20:50:58.0964 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\Fs_Rec.sys. md5: 6BD9295CC032DD3077C671FCCF579A7B, sha256: 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 20:50:58.0980 0x1380 Fs_Rec - detected LockedFile.Multi.Generic ( 1 ) 20:51:01.0538 0x1380 Detect skipped due to KSN trusted 20:51:01.0538 0x1380 Fs_Rec - ok 20:51:01.0601 0x1380 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\windows\system32\DRIVERS\fvevol.sys 20:51:01.0601 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\fvevol.sys. md5: 8F6322049018354F45F05A2FD2D4E5E0, sha256: 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 20:51:01.0601 0x1380 fvevol - detected LockedFile.Multi.Generic ( 1 ) 20:51:04.0362 0x1380 Detect skipped due to KSN trusted 20:51:04.0362 0x1380 fvevol - ok 20:51:04.0409 0x1380 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys 20:51:04.0424 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\gagp30kx.sys. md5: 8C778D335C9D272CFD3298AB02ABE3B6, sha256: 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 20:51:04.0440 0x1380 gagp30kx - detected LockedFile.Multi.Generic ( 1 ) 20:51:07.0092 0x1380 Detect skipped due to KSN trusted 20:51:07.0092 0x1380 gagp30kx - ok 20:51:07.0185 0x1380 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\windows\System32\gpsvc.dll 20:51:07.0310 0x1380 gpsvc - ok 20:51:07.0388 0x1380 [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 20:51:07.0419 0x1380 gupdate - ok 20:51:07.0435 0x1380 [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 20:51:07.0451 0x1380 gupdatem - ok 20:51:07.0497 0x1380 [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe 20:51:07.0529 0x1380 gusvc - ok 20:51:07.0560 0x1380 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys 20:51:07.0560 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\hcw85cir.sys. md5: F2523EF6460FC42405B12248338AB2F0, sha256: B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 20:51:07.0560 0x1380 hcw85cir - detected LockedFile.Multi.Generic ( 1 ) 20:51:10.0259 0x1380 Detect skipped due to KSN trusted 20:51:10.0259 0x1380 hcw85cir - ok 20:51:10.0321 0x1380 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys 20:51:10.0321 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\HdAudio.sys. md5: 975761C778E33CD22498059B91E7373A, sha256: 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 20:51:10.0321 0x1380 HdAudAddService - detected LockedFile.Multi.Generic ( 1 ) 20:51:13.0488 0x1380 Detect skipped due to KSN trusted 20:51:13.0488 0x1380 HdAudAddService - ok 20:51:13.0503 0x1380 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys 20:51:13.0503 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\HDAudBus.sys. md5: 97BFED39B6B79EB12CDDBFEED51F56BB, sha256: 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 20:51:13.0503 0x1380 HDAudBus - detected LockedFile.Multi.Generic ( 1 ) 20:51:16.0062 0x1380 Detect skipped due to KSN trusted 20:51:16.0062 0x1380 HDAudBus - ok 20:51:16.0109 0x1380 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\windows\system32\drivers\HidBatt.sys 20:51:16.0109 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\HidBatt.sys. md5: 78E86380454A7B10A5EB255DC44A355F, sha256: 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 20:51:16.0109 0x1380 HidBatt - detected LockedFile.Multi.Generic ( 1 ) 20:51:18.0683 0x1380 Detect skipped due to KSN trusted 20:51:18.0683 0x1380 HidBatt - ok 20:51:18.0714 0x1380 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\windows\system32\drivers\hidbth.sys 20:51:18.0714 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\hidbth.sys. md5: 7FD2A313F7AFE5C4DAB14798C48DD104, sha256: 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 20:51:18.0714 0x1380 HidBth - detected LockedFile.Multi.Generic ( 1 ) 20:51:21.0288 0x1380 Detect skipped due to KSN trusted 20:51:21.0288 0x1380 HidBth - ok 20:51:21.0350 0x1380 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\windows\system32\drivers\hidir.sys 20:51:21.0350 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\hidir.sys. md5: 0A77D29F311B88CFAE3B13F9C1A73825, sha256: 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D 20:51:21.0350 0x1380 HidIr - detected LockedFile.Multi.Generic ( 1 ) 20:51:24.0205 0x1380 Detect skipped due to KSN trusted 20:51:24.0205 0x1380 HidIr - ok 20:51:24.0236 0x1380 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\windows\system32\hidserv.dll 20:51:24.0299 0x1380 hidserv - ok 20:51:24.0330 0x1380 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys 20:51:24.0330 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\hidusb.sys. md5: 9592090A7E2B61CD582B612B6DF70536, sha256: FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F 20:51:24.0330 0x1380 HidUsb - detected LockedFile.Multi.Generic ( 1 ) 20:51:28.0448 0x1380 Detect skipped due to KSN trusted 20:51:28.0448 0x1380 HidUsb - ok 20:51:28.0526 0x1380 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\windows\system32\kmsvc.dll 20:51:28.0589 0x1380 hkmsvc - ok 20:51:28.0604 0x1380 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\windows\system32\ListSvc.dll 20:51:28.0667 0x1380 HomeGroupListener - ok 20:51:28.0698 0x1380 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\windows\system32\provsvc.dll 20:51:28.0745 0x1380 HomeGroupProvider - ok 20:51:28.0791 0x1380 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys 20:51:28.0791 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\HpSAMD.sys. md5: 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, sha256: E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 20:51:28.0807 0x1380 HpSAMD - detected LockedFile.Multi.Generic ( 1 ) 20:51:31.0365 0x1380 Detect skipped due to KSN trusted 20:51:31.0381 0x1380 HpSAMD - ok 20:51:31.0412 0x1380 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\windows\system32\drivers\HTTP.sys 20:51:31.0412 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\HTTP.sys. md5: 0EA7DE1ACB728DD5A369FD742D6EEE28, sha256: 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 20:51:31.0428 0x1380 HTTP - detected LockedFile.Multi.Generic ( 1 ) 20:51:35.0499 0x1380 Detect skipped due to KSN trusted 20:51:35.0499 0x1380 HTTP - ok 20:51:35.0546 0x1380 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys 20:51:35.0546 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\hwpolicy.sys. md5: A5462BD6884960C9DC85ED49D34FF392, sha256: 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 20:51:35.0546 0x1380 hwpolicy - detected LockedFile.Multi.Generic ( 1 ) 20:51:38.0136 0x1380 Detect skipped due to KSN trusted 20:51:38.0136 0x1380 hwpolicy - ok 20:51:38.0198 0x1380 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys 20:51:38.0198 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\i8042prt.sys. md5: FA55C73D4AFFA7EE23AC4BE53B4592D3, sha256: 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD 20:51:38.0198 0x1380 i8042prt - detected LockedFile.Multi.Generic ( 1 ) 20:51:40.0991 0x1380 Detect skipped due to KSN trusted 20:51:40.0991 0x1380 i8042prt - ok 20:51:41.0053 0x1380 [ D469B77687E12FE43E344806740B624D, DFDD486FD040813BF4E5DDB504CF9E0BFBF6D4E540DDDA4829F9B675ACF63E89 ] iaStor C:\windows\system32\DRIVERS\iaStor.sys 20:51:41.0053 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\iaStor.sys. md5: D469B77687E12FE43E344806740B624D, sha256: DFDD486FD040813BF4E5DDB504CF9E0BFBF6D4E540DDDA4829F9B675ACF63E89 20:51:41.0053 0x1380 iaStor - detected LockedFile.Multi.Generic ( 1 ) 20:51:43.0799 0x1380 Detect skipped due to KSN trusted 20:51:43.0799 0x1380 iaStor - ok 20:51:43.0861 0x1380 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\windows\system32\drivers\iaStorV.sys 20:51:43.0861 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\iaStorV.sys. md5: AAAF44DB3BD0B9D1FB6969B23ECC8366, sha256: 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 20:51:43.0861 0x1380 iaStorV - detected LockedFile.Multi.Generic ( 1 ) 20:51:46.0529 0x1380 Detect skipped due to KSN trusted 20:51:46.0529 0x1380 iaStorV - ok 20:51:46.0638 0x1380 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 20:51:46.0669 0x1380 idsvc - ok 20:51:46.0669 0x1380 IEEtwCollectorService - ok 20:51:46.0747 0x1380 [ 32BEB118D11CAC135ED162E7562729AA, 1E7DA4BFC8B6ABA80A9B5EA3CDC80ABDDD8DD5DA51639C0510FF3CFDC32FDF6E ] IHProtect Service C:\Program Files (x86)\XTab\ProtectService.exe 20:51:46.0778 0x1380 IHProtect Service - ok 20:51:46.0794 0x1380 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\windows\system32\drivers\iirsp.sys 20:51:46.0794 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\iirsp.sys. md5: 5C18831C61933628F5BB0EA2675B9D21, sha256: 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 20:51:46.0794 0x1380 iirsp - detected LockedFile.Multi.Generic ( 1 ) 20:51:49.0789 0x1380 Detect skipped due to KSN trusted 20:51:49.0789 0x1380 iirsp - ok 20:51:49.0898 0x1380 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\windows\System32\ikeext.dll 20:51:49.0929 0x1380 IKEEXT - ok 20:51:50.0023 0x1380 [ 51E8DB3618D106A2B2849A00839CC452, 3F70156E600F9ED715F81DB2542D022274CDA40213663A0AB4EEB44FEB9EF8ED ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys 20:51:50.0070 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\RTKVHD64.sys. md5: 51E8DB3618D106A2B2849A00839CC452, sha256: 3F70156E600F9ED715F81DB2542D022274CDA40213663A0AB4EEB44FEB9EF8ED 20:51:50.0070 0x1380 IntcAzAudAddService - detected LockedFile.Multi.Generic ( 1 ) 20:51:52.0659 0x1380 Detect skipped due to KSN trusted 20:51:52.0659 0x1380 IntcAzAudAddService - ok 20:51:52.0691 0x1380 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\windows\system32\drivers\intelide.sys 20:51:52.0691 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\intelide.sys. md5: F00F20E70C6EC3AA366910083A0518AA, sha256: E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 20:51:52.0691 0x1380 intelide - detected LockedFile.Multi.Generic ( 1 ) 20:51:55.0233 0x1380 Detect skipped due to KSN trusted 20:51:55.0233 0x1380 intelide - ok 20:51:55.0280 0x1380 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys 20:51:55.0280 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\intelppm.sys. md5: ADA036632C664CAA754079041CF1F8C1, sha256: F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 20:51:55.0280 0x1380 intelppm - detected LockedFile.Multi.Generic ( 1 ) 20:51:57.0854 0x1380 Detect skipped due to KSN trusted 20:51:57.0854 0x1380 intelppm - ok 20:51:57.0885 0x1380 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\windows\system32\ipbusenum.dll 20:51:57.0948 0x1380 IPBusEnum - ok 20:51:57.0963 0x1380 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys 20:51:57.0963 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\ipfltdrv.sys. md5: C9F0E1BD74365A8771590E9008D22AB6, sha256: 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 20:51:57.0963 0x1380 IpFilterDriver - detected LockedFile.Multi.Generic ( 1 ) 20:52:00.0693 0x1380 Detect skipped due to KSN trusted 20:52:00.0693 0x1380 IpFilterDriver - ok 20:52:00.0756 0x1380 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\windows\System32\iphlpsvc.dll 20:52:00.0787 0x1380 iphlpsvc - ok 20:52:00.0818 0x1380 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys 20:52:00.0818 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\IPMIDrv.sys. md5: 0FC1AEA580957AA8817B8F305D18CA3A, sha256: 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 20:52:00.0818 0x1380 IPMIDRV - detected LockedFile.Multi.Generic ( 1 ) 20:52:03.0470 0x1380 Detect skipped due to KSN trusted 20:52:03.0470 0x1380 IPMIDRV - ok 20:52:03.0517 0x1380 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\windows\system32\drivers\ipnat.sys 20:52:03.0533 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\ipnat.sys. md5: AF9B39A7E7B6CAA203B3862582E9F2D0, sha256: 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E 20:52:03.0533 0x1380 IPNAT - detected LockedFile.Multi.Generic ( 1 ) 20:52:06.0231 0x1380 Detect skipped due to KSN trusted 20:52:06.0231 0x1380 IPNAT - ok 20:52:06.0263 0x1380 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\windows\system32\drivers\irenum.sys 20:52:06.0263 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\irenum.sys. md5: 3ABF5E7213EB28966D55D58B515D5CE9, sha256: A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE 20:52:06.0294 0x1380 IRENUM - detected LockedFile.Multi.Generic ( 1 ) 20:52:08.0868 0x1380 Detect skipped due to KSN trusted 20:52:08.0868 0x1380 IRENUM - ok 20:52:08.0899 0x1380 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\windows\system32\drivers\isapnp.sys 20:52:08.0899 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\isapnp.sys. md5: 2F7B28DC3E1183E5EB418DF55C204F38, sha256: D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 20:52:08.0899 0x1380 isapnp - detected LockedFile.Multi.Generic ( 1 ) 20:52:11.0442 0x1380 Detect skipped due to KSN trusted 20:52:11.0442 0x1380 isapnp - ok 20:52:11.0520 0x1380 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys 20:52:11.0520 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\msiscsi.sys. md5: 96BB922A0981BC7432C8CF52B5410FE6, sha256: 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA 20:52:11.0520 0x1380 iScsiPrt - detected LockedFile.Multi.Generic ( 1 ) 20:52:14.0094 0x1380 Detect skipped due to KSN trusted 20:52:14.0094 0x1380 iScsiPrt - ok 20:52:14.0141 0x1380 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys 20:52:14.0141 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\kbdclass.sys. md5: BC02336F1CBA7DCC7D1213BB588A68A5, sha256: 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 20:52:14.0141 0x1380 kbdclass - detected LockedFile.Multi.Generic ( 1 ) 20:52:16.0902 0x1380 Detect skipped due to KSN trusted 20:52:16.0902 0x1380 kbdclass - ok 20:52:16.0949 0x1380 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys 20:52:16.0949 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\kbdhid.sys. md5: 0705EFF5B42A9DB58548EEC3B26BB484, sha256: 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 20:52:16.0949 0x1380 kbdhid - detected LockedFile.Multi.Generic ( 1 ) 20:52:19.0632 0x1380 Detect skipped due to KSN trusted 20:52:19.0632 0x1380 kbdhid - ok 20:52:19.0679 0x1380 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso C:\windows\system32\lsass.exe 20:52:19.0710 0x1380 KeyIso - ok 20:52:19.0741 0x1380 [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys 20:52:19.0741 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\Drivers\ksecdd.sys. md5: 353009DEDF918B2A51414F330CF72DEC, sha256: BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 20:52:19.0741 0x1380 KSecDD - detected LockedFile.Multi.Generic ( 1 ) 20:52:22.0409 0x1380 Detect skipped due to KSN trusted 20:52:22.0409 0x1380 KSecDD - ok 20:52:22.0456 0x1380 [ 41774FF331F609EF442B7398EE6202B1, AD67DA06A74895C384F4A1F1CF47050DAEE9C6CE8AD12F1A116FC977B6C3A864 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys 20:52:22.0456 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\Drivers\ksecpkg.sys. md5: 41774FF331F609EF442B7398EE6202B1, sha256: AD67DA06A74895C384F4A1F1CF47050DAEE9C6CE8AD12F1A116FC977B6C3A864 20:52:22.0456 0x1380 KSecPkg - detected LockedFile.Multi.Generic ( 1 ) 20:52:25.0170 0x1380 Detect skipped due to KSN trusted 20:52:25.0170 0x1380 KSecPkg - ok 20:52:25.0217 0x1380 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\windows\system32\drivers\ksthunk.sys 20:52:25.0217 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\ksthunk.sys. md5: 6869281E78CB31A43E969F06B57347C4, sha256: 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B 20:52:25.0217 0x1380 ksthunk - detected LockedFile.Multi.Generic ( 1 ) 20:52:27.0791 0x1380 Detect skipped due to KSN trusted 20:52:27.0791 0x1380 ksthunk - ok 20:52:27.0869 0x1380 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\windows\system32\msdtckrm.dll 20:52:27.0931 0x1380 KtmRm - ok 20:52:27.0978 0x1380 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\windows\system32\srvsvc.dll 20:52:28.0040 0x1380 LanmanServer - ok 20:52:28.0072 0x1380 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\windows\System32\wkssvc.dll 20:52:28.0134 0x1380 LanmanWorkstation - ok 20:52:28.0165 0x1380 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\windows\system32\DRIVERS\lltdio.sys 20:52:28.0165 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\lltdio.sys. md5: 1538831CF8AD2979A04C423779465827, sha256: E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C 20:52:28.0165 0x1380 lltdio - detected LockedFile.Multi.Generic ( 1 ) 20:52:30.0708 0x1380 Detect skipped due to KSN trusted 20:52:30.0708 0x1380 lltdio - ok 20:52:30.0786 0x1380 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\windows\System32\lltdsvc.dll 20:52:30.0864 0x1380 lltdsvc - ok 20:52:30.0880 0x1380 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\windows\System32\lmhsvc.dll 20:52:30.0958 0x1380 lmhosts - ok 20:52:30.0989 0x1380 [ 7F32D4C47A50E7223491E8FB9359907D, 6D3F59A8D006BED3234697933D09C8EE8F7A9F4A4196CFA878F8E8A929B24CE5 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe 20:52:31.0004 0x1380 LMS - ok 20:52:31.0036 0x1380 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys 20:52:31.0036 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\lsi_fc.sys. md5: 1A93E54EB0ECE102495A51266DCDB6A6, sha256: DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B 20:52:31.0036 0x1380 LSI_FC - detected LockedFile.Multi.Generic ( 1 ) 20:52:33.0610 0x1380 Detect skipped due to KSN trusted 20:52:33.0610 0x1380 LSI_FC - ok 20:52:33.0656 0x1380 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys 20:52:33.0656 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\lsi_sas.sys. md5: 1047184A9FDC8BDBFF857175875EE810, sha256: F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B 20:52:33.0656 0x1380 LSI_SAS - detected LockedFile.Multi.Generic ( 1 ) 20:52:36.0199 0x1380 Detect skipped due to KSN trusted 20:52:36.0199 0x1380 LSI_SAS - ok 20:52:36.0262 0x1380 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys 20:52:36.0262 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\lsi_sas2.sys. md5: 30F5C0DE1EE8B5BC9306C1F0E4A75F93, sha256: 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 20:52:36.0262 0x1380 LSI_SAS2 - detected LockedFile.Multi.Generic ( 1 ) 20:52:38.0914 0x1380 Detect skipped due to KSN trusted 20:52:38.0914 0x1380 LSI_SAS2 - ok 20:52:38.0960 0x1380 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys 20:52:38.0960 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\lsi_scsi.sys. md5: 0504EACAFF0D3C8AED161C4B0D369D4A, sha256: 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D 20:52:38.0976 0x1380 LSI_SCSI - detected LockedFile.Multi.Generic ( 1 ) 20:52:41.0706 0x1380 Detect skipped due to KSN trusted 20:52:41.0706 0x1380 LSI_SCSI - ok 20:52:41.0753 0x1380 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\windows\system32\drivers\luafv.sys 20:52:41.0753 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\luafv.sys. md5: 43D0F98E1D56CCDDB0D5254CFF7B356E, sha256: 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 20:52:41.0753 0x1380 luafv - detected LockedFile.Multi.Generic ( 1 ) 20:52:44.0420 0x1380 Detect skipped due to KSN trusted 20:52:44.0420 0x1380 luafv - ok 20:52:44.0467 0x1380 [ 22D01516948417C8A224A25694C99ECD, 033FCDA4E423E19B994F54BD4398751B912F7F57DAEB14AF472A59832B029239 ] massfilter_lte C:\windows\system32\drivers\massfilter_lte.sys 20:52:44.0467 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\massfilter_lte.sys. md5: 22D01516948417C8A224A25694C99ECD, sha256: 033FCDA4E423E19B994F54BD4398751B912F7F57DAEB14AF472A59832B029239 20:52:44.0467 0x1380 massfilter_lte - detected LockedFile.Multi.Generic ( 1 ) 20:52:47.0431 0x1380 Detect skipped due to KSN trusted 20:52:47.0431 0x1380 massfilter_lte - ok 20:52:47.0478 0x1380 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll 20:52:47.0540 0x1380 Mcx2Svc - ok 20:52:47.0572 0x1380 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\windows\system32\drivers\megasas.sys 20:52:47.0572 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\megasas.sys. md5: A55805F747C6EDB6A9080D7C633BD0F4, sha256: 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 20:52:47.0572 0x1380 megasas - detected LockedFile.Multi.Generic ( 1 ) 20:52:50.0348 0x1380 Detect skipped due to KSN trusted 20:52:50.0348 0x1380 megasas - ok 20:52:50.0426 0x1380 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\windows\system32\drivers\MegaSR.sys 20:52:50.0426 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\MegaSR.sys. md5: BAF74CE0072480C3B6B7C13B2A94D6B3, sha256: 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 20:52:50.0426 0x1380 MegaSR - detected LockedFile.Multi.Generic ( 1 ) 20:52:53.0000 0x1380 Detect skipped due to KSN trusted 20:52:53.0000 0x1380 MegaSR - ok 20:52:53.0063 0x1380 [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys 20:52:53.0063 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\HECIx64.sys. md5: A6518DCC42F7A6E999BB3BEA8FD87567, sha256: 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC 20:52:53.0063 0x1380 MEIx64 - detected LockedFile.Multi.Generic ( 1 ) 20:52:55.0793 0x1380 Detect skipped due to KSN trusted 20:52:55.0793 0x1380 MEIx64 - ok 20:52:55.0855 0x1380 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\windows\system32\mmcss.dll 20:52:55.0902 0x1380 MMCSS - ok 20:52:55.0918 0x1380 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\windows\system32\drivers\modem.sys 20:52:55.0918 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\modem.sys. md5: 800BA92F7010378B09F9ED9270F07137, sha256: 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 20:52:55.0918 0x1380 Modem - detected LockedFile.Multi.Generic ( 1 ) 20:52:58.0585 0x1380 Detect skipped due to KSN trusted 20:52:58.0585 0x1380 Modem - ok 20:52:58.0616 0x1380 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\windows\system32\DRIVERS\monitor.sys 20:52:58.0616 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\monitor.sys. md5: B03D591DC7DA45ECE20B3B467E6AADAA, sha256: 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 20:52:58.0632 0x1380 monitor - detected LockedFile.Multi.Generic ( 1 ) 20:53:01.0331 0x1380 Detect skipped due to KSN trusted 20:53:01.0331 0x1380 monitor - ok 20:53:01.0362 0x1380 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys 20:53:01.0362 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\mouclass.sys. md5: 7D27EA49F3C1F687D357E77A470AEA99, sha256: 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 20:53:01.0362 0x1380 mouclass - detected LockedFile.Multi.Generic ( 1 ) 20:53:03.0920 0x1380 Detect skipped due to KSN trusted 20:53:03.0920 0x1380 mouclass - ok 20:53:03.0967 0x1380 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys 20:53:03.0967 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\mouhid.sys. md5: D3BF052C40B0C4166D9FD86A4288C1E6, sha256: 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 20:53:03.0967 0x1380 mouhid - detected LockedFile.Multi.Generic ( 1 ) 20:53:06.0526 0x1380 Detect skipped due to KSN trusted 20:53:06.0526 0x1380 mouhid - ok 20:53:06.0572 0x1380 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\windows\system32\drivers\mountmgr.sys 20:53:06.0572 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\mountmgr.sys. md5: 32E7A3D591D671A6DF2DB515A5CBE0FA, sha256: 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 20:53:06.0604 0x1380 mountmgr - detected LockedFile.Multi.Generic ( 1 ) 20:53:09.0146 0x1380 Detect skipped due to KSN trusted 20:53:09.0146 0x1380 mountmgr - ok 20:53:09.0209 0x1380 [ 9E587AFE2AD4873C809F1E0C598AB435, 0B0ECFF265120BCBAC37CF9B53B18462725AB991D00B90DBEE8DD9375121DA4F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 20:53:09.0224 0x1380 MozillaMaintenance - ok 20:53:09.0256 0x1380 [ 6439D1E559D08BD8A1465A8943357053, 0E300508C22D12FBA3BE566B722F574CBE1B4A1A305356B92B8EA8B86267071B ] MpFilter C:\windows\system32\DRIVERS\MpFilter.sys 20:53:09.0287 0x1380 MpFilter - ok 20:53:09.0318 0x1380 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\windows\system32\drivers\mpio.sys 20:53:09.0318 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\mpio.sys. md5: A44B420D30BD56E145D6A2BC8768EC58, sha256: B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 20:53:09.0318 0x1380 mpio - detected LockedFile.Multi.Generic ( 1 ) 20:53:11.0876 0x1380 Detect skipped due to KSN trusted 20:53:11.0876 0x1380 mpio - ok 20:53:11.0892 0x1380 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys 20:53:11.0892 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\mpsdrv.sys. md5: 6C38C9E45AE0EA2FA5E551F2ED5E978F, sha256: 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 20:53:11.0892 0x1380 mpsdrv - detected LockedFile.Multi.Generic ( 1 ) 20:53:14.0638 0x1380 Detect skipped due to KSN trusted 20:53:14.0638 0x1380 mpsdrv - ok 20:53:14.0762 0x1380 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\windows\system32\mpssvc.dll 20:53:14.0872 0x1380 MpsSvc - ok 20:53:14.0903 0x1380 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\windows\system32\drivers\mrxdav.sys 20:53:14.0903 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\mrxdav.sys. md5: 1A4F75E63C9FB84B85DFFC6B63FD5404, sha256: 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F 20:53:14.0903 0x1380 MRxDAV - detected LockedFile.Multi.Generic ( 1 ) 20:53:17.0555 0x1380 Detect skipped due to KSN trusted 20:53:17.0555 0x1380 MRxDAV - ok 20:53:17.0586 0x1380 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys 20:53:17.0586 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\mrxsmb.sys. md5: A5D9106A73DC88564C825D317CAC68AC, sha256: 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 20:53:17.0586 0x1380 mrxsmb - detected LockedFile.Multi.Generic ( 1 ) 20:53:20.0129 0x1380 Detect skipped due to KSN trusted 20:53:20.0129 0x1380 mrxsmb - ok 20:53:20.0207 0x1380 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys 20:53:20.0207 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\mrxsmb10.sys. md5: D711B3C1D5F42C0C2415687BE09FC163, sha256: 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF 20:53:20.0207 0x1380 mrxsmb10 - detected LockedFile.Multi.Generic ( 1 ) 20:53:22.0718 0x1380 Detect skipped due to KSN trusted 20:53:22.0718 0x1380 mrxsmb10 - ok 20:53:22.0812 0x1380 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys 20:53:22.0812 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\mrxsmb20.sys. md5: 9423E9D355C8D303E76B8CFBD8A5C30C, sha256: 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC 20:53:22.0812 0x1380 mrxsmb20 - detected LockedFile.Multi.Generic ( 1 ) 20:53:25.0341 0x1380 Detect skipped due to KSN trusted 20:53:25.0341 0x1380 mrxsmb20 - ok 20:53:25.0368 0x1380 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\windows\system32\drivers\msahci.sys 20:53:25.0368 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\msahci.sys. md5: C25F0BAFA182CBCA2DD3C851C2E75796, sha256: 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 20:53:25.0368 0x1380 msahci - detected LockedFile.Multi.Generic ( 1 ) 20:53:27.0899 0x1380 Detect skipped due to KSN trusted 20:53:27.0899 0x1380 msahci - ok 20:53:27.0947 0x1380 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\windows\system32\drivers\msdsm.sys 20:53:27.0947 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\msdsm.sys. md5: DB801A638D011B9633829EB6F663C900, sha256: B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 20:53:27.0947 0x1380 msdsm - detected LockedFile.Multi.Generic ( 1 ) 20:53:30.0628 0x1380 Detect skipped due to KSN trusted 20:53:30.0628 0x1380 msdsm - ok 20:53:30.0653 0x1380 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\windows\System32\msdtc.exe 20:53:30.0703 0x1380 MSDTC - ok 20:53:30.0733 0x1380 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\windows\system32\drivers\Msfs.sys 20:53:30.0733 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\Msfs.sys. md5: AA3FB40E17CE1388FA1BEDAB50EA8F96, sha256: 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 20:53:30.0733 0x1380 Msfs - detected LockedFile.Multi.Generic ( 1 ) 20:53:33.0343 0x1380 Detect skipped due to KSN trusted 20:53:33.0343 0x1380 Msfs - ok 20:53:33.0366 0x1380 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys 20:53:33.0366 0x1380 Suspicious file ( NoAccess ): C:\windows\System32\drivers\mshidkmdf.sys. md5: F9D215A46A8B9753F61767FA72A20326, sha256: 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 20:53:33.0366 0x1380 mshidkmdf - detected LockedFile.Multi.Generic ( 1 ) 20:53:35.0998 0x1380 Detect skipped due to KSN trusted 20:53:35.0998 0x1380 mshidkmdf - ok 20:53:36.0008 0x1380 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\windows\system32\drivers\msisadrv.sys 20:53:36.0018 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\msisadrv.sys. md5: D916874BBD4F8B07BFB7FA9B3CCAE29D, sha256: B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 20:53:36.0018 0x1380 msisadrv - detected LockedFile.Multi.Generic ( 1 ) 20:53:38.0526 0x1380 Detect skipped due to KSN trusted 20:53:38.0526 0x1380 msisadrv - ok 20:53:38.0586 0x1380 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\windows\system32\iscsiexe.dll 20:53:38.0696 0x1380 MSiSCSI - ok 20:53:38.0716 0x1380 msiserver - ok 20:53:38.0746 0x1380 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys 20:53:38.0746 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\MSKSSRV.sys. md5: 49CCF2C4FEA34FFAD8B1B59D49439366, sha256: E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 20:53:38.0746 0x1380 MSKSSRV - detected LockedFile.Multi.Generic ( 1 ) 20:53:41.0266 0x1380 Detect skipped due to KSN trusted 20:53:41.0266 0x1380 MSKSSRV - ok 20:53:41.0346 0x1380 [ F0D5494D8B177C37E16966262F5D0F68, DD63427DFFD9DD2BEC8336F6AD1BEFE347012331631DC5FEC65E83B1EACDBC67 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe 20:53:41.0366 0x1380 MsMpSvc - ok 20:53:41.0406 0x1380 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys 20:53:41.0406 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\MSPCLOCK.sys. md5: BDD71ACE35A232104DDD349EE70E1AB3, sha256: 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB 20:53:41.0406 0x1380 MSPCLOCK - detected LockedFile.Multi.Generic ( 1 ) 20:53:43.0896 0x1380 Detect skipped due to KSN trusted 20:53:43.0896 0x1380 MSPCLOCK - ok 20:53:43.0926 0x1380 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\windows\system32\drivers\MSPQM.sys 20:53:43.0926 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\MSPQM.sys. md5: 4ED981241DB27C3383D72092B618A1D0, sha256: E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC 20:53:43.0926 0x1380 MSPQM - detected LockedFile.Multi.Generic ( 1 ) 20:53:46.0561 0x1380 Detect skipped due to KSN trusted 20:53:46.0561 0x1380 MSPQM - ok 20:53:46.0621 0x1380 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\windows\system32\drivers\MsRPC.sys 20:53:46.0621 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\MsRPC.sys. md5: 759A9EEB0FA9ED79DA1FB7D4EF78866D, sha256: 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 20:53:46.0621 0x1380 MsRPC - detected LockedFile.Multi.Generic ( 1 ) 20:53:49.0261 0x1380 Detect skipped due to KSN trusted 20:53:49.0261 0x1380 MsRPC - ok 20:53:49.0301 0x1380 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\windows\system32\drivers\mssmbios.sys 20:53:49.0301 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\mssmbios.sys. md5: 0EED230E37515A0EAEE3C2E1BC97B288, sha256: B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 20:53:49.0301 0x1380 mssmbios - detected LockedFile.Multi.Generic ( 1 ) 20:53:51.0911 0x1380 Detect skipped due to KSN trusted 20:53:51.0911 0x1380 mssmbios - ok 20:53:51.0961 0x1380 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\windows\system32\drivers\MSTEE.sys 20:53:51.0961 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\MSTEE.sys. md5: 2E66F9ECB30B4221A318C92AC2250779, sha256: DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD 20:53:51.0961 0x1380 MSTEE - detected LockedFile.Multi.Generic ( 1 ) 20:53:54.0471 0x1380 Detect skipped due to KSN trusted 20:53:54.0471 0x1380 MSTEE - ok 20:53:54.0511 0x1380 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\windows\system32\drivers\MTConfig.sys 20:53:54.0511 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\MTConfig.sys. md5: 7EA404308934E675BFFDE8EDF0757BCD, sha256: 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 20:53:54.0511 0x1380 MTConfig - detected LockedFile.Multi.Generic ( 1 ) 20:53:57.0061 0x1380 Detect skipped due to KSN trusted 20:53:57.0061 0x1380 MTConfig - ok 20:53:57.0121 0x1380 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\windows\system32\Drivers\mup.sys 20:53:57.0121 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\Drivers\mup.sys. md5: F9A18612FD3526FE473C1BDA678D61C8, sha256: 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A 20:53:57.0121 0x1380 Mup - detected LockedFile.Multi.Generic ( 1 ) 20:53:59.0641 0x1380 Detect skipped due to KSN trusted 20:53:59.0641 0x1380 Mup - ok 20:53:59.0711 0x1380 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\windows\system32\qagentRT.dll 20:53:59.0771 0x1380 napagent - ok 20:53:59.0811 0x1380 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys 20:53:59.0811 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\nwifi.sys. md5: 1EA3749C4114DB3E3161156FFFFA6B33, sha256: 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 20:53:59.0811 0x1380 NativeWifiP - detected LockedFile.Multi.Generic ( 1 ) 20:54:02.0321 0x1380 Detect skipped due to KSN trusted 20:54:02.0321 0x1380 NativeWifiP - ok 20:54:02.0441 0x1380 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\windows\system32\drivers\ndis.sys 20:54:02.0441 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\ndis.sys. md5: 760E38053BF56E501D562B70AD796B88, sha256: F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D 20:54:02.0441 0x1380 NDIS - detected LockedFile.Multi.Generic ( 1 ) 20:54:05.0108 0x1380 Detect skipped due to KSN trusted 20:54:05.0108 0x1380 NDIS - ok 20:54:05.0148 0x1380 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys 20:54:05.0148 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\ndiscap.sys. md5: 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, sha256: D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC 20:54:05.0168 0x1380 NdisCap - detected LockedFile.Multi.Generic ( 1 ) 20:54:07.0798 0x1380 Detect skipped due to KSN trusted 20:54:07.0798 0x1380 NdisCap - ok 20:54:07.0838 0x1380 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys 20:54:07.0838 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\ndistapi.sys. md5: 30639C932D9FEF22B31268FE25A1B6E5, sha256: 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 20:54:07.0838 0x1380 NdisTapi - detected LockedFile.Multi.Generic ( 1 ) 20:54:10.0448 0x1380 Detect skipped due to KSN trusted 20:54:10.0448 0x1380 NdisTapi - ok 20:54:10.0488 0x1380 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys 20:54:10.0488 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\ndisuio.sys. md5: 136185F9FB2CC61E573E676AA5402356, sha256: BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 20:54:10.0488 0x1380 Ndisuio - detected LockedFile.Multi.Generic ( 1 ) 20:54:13.0028 0x1380 Detect skipped due to KSN trusted 20:54:13.0028 0x1380 Ndisuio - ok 20:54:13.0088 0x1380 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys 20:54:13.0088 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\ndiswan.sys. md5: 53F7305169863F0A2BDDC49E116C2E11, sha256: 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 20:54:13.0088 0x1380 NdisWan - detected LockedFile.Multi.Generic ( 1 ) 20:54:15.0628 0x1380 Detect skipped due to KSN trusted 20:54:15.0628 0x1380 NdisWan - ok 20:54:15.0668 0x1380 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\windows\system32\drivers\NDProxy.sys 20:54:15.0678 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\NDProxy.sys. md5: 015C0D8E0E0421B4CFD48CFFE2825879, sha256: 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 20:54:15.0678 0x1380 NDProxy - detected LockedFile.Multi.Generic ( 1 ) 20:54:18.0188 0x1380 Detect skipped due to KSN trusted 20:54:18.0188 0x1380 NDProxy - ok 20:54:18.0218 0x1380 [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl C:\windows\system32\DRIVERS\netaapl64.sys 20:54:18.0218 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\netaapl64.sys. md5: EE00C544C025958AF50C7B199F3C8595, sha256: D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 20:54:18.0218 0x1380 Netaapl - detected LockedFile.Multi.Generic ( 1 ) 20:54:20.0748 0x1380 Detect skipped due to KSN trusted 20:54:20.0748 0x1380 Netaapl - ok 20:54:20.0788 0x1380 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys 20:54:20.0788 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\netbios.sys. md5: 86743D9F5D2B1048062B14B1D84501C4, sha256: DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 20:54:20.0798 0x1380 NetBIOS - detected LockedFile.Multi.Generic ( 1 ) 20:54:23.0478 0x1380 Detect skipped due to KSN trusted 20:54:23.0478 0x1380 NetBIOS - ok 20:54:23.0548 0x1380 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\windows\system32\DRIVERS\netbt.sys 20:54:23.0548 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\netbt.sys. md5: 09594D1089C523423B32A4229263F068, sha256: 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 20:54:23.0548 0x1380 NetBT - detected LockedFile.Multi.Generic ( 1 ) 20:54:26.0188 0x1380 Detect skipped due to KSN trusted 20:54:26.0188 0x1380 NetBT - ok 20:54:26.0228 0x1380 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon C:\windows\system32\lsass.exe 20:54:26.0258 0x1380 Netlogon - ok 20:54:26.0298 0x1380 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\windows\System32\netman.dll 20:54:26.0368 0x1380 Netman - ok 20:54:26.0418 0x1380 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 20:54:26.0448 0x1380 NetMsmqActivator - ok 20:54:26.0468 0x1380 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 20:54:26.0488 0x1380 NetPipeActivator - ok 20:54:26.0518 0x1380 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\windows\System32\netprofm.dll 20:54:26.0588 0x1380 netprofm - ok 20:54:26.0588 0x1380 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 20:54:26.0608 0x1380 NetTcpActivator - ok 20:54:26.0608 0x1380 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 20:54:26.0628 0x1380 NetTcpPortSharing - ok 20:54:26.0648 0x1380 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys 20:54:26.0648 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\nfrd960.sys. md5: 77889813BE4D166CDAB78DDBA990DA92, sha256: 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 20:54:26.0648 0x1380 nfrd960 - detected LockedFile.Multi.Generic ( 1 ) 20:54:29.0256 0x1380 Detect skipped due to KSN trusted 20:54:29.0256 0x1380 nfrd960 - ok 20:54:29.0316 0x1380 [ F9EEFFC65C68A45001D1349E652B8B6F, E5F223129416083A12A85D48C65B2C8D1BF1124110399938E144308C89F9241D ] NisDrv C:\windows\system32\DRIVERS\NisDrvWFP.sys 20:54:29.0316 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\NisDrvWFP.sys. md5: F9EEFFC65C68A45001D1349E652B8B6F, sha256: E5F223129416083A12A85D48C65B2C8D1BF1124110399938E144308C89F9241D 20:54:29.0316 0x1380 NisDrv - detected LockedFile.Multi.Generic ( 1 ) 20:54:31.0948 0x1380 Detect skipped due to KSN trusted 20:54:31.0948 0x1380 NisDrv - ok 20:54:32.0018 0x1380 [ 9690F420A99364C1E5C439914B0DE25C, 6C6E0B27C4255001FE5F1EAD911DE1A8BF922C405B0C8031A6BD253CEB1D02A6 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe 20:54:32.0058 0x1380 NisSrv - ok 20:54:32.0098 0x1380 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\windows\System32\nlasvc.dll 20:54:32.0138 0x1380 NlaSvc - ok 20:54:32.0188 0x1380 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\windows\system32\drivers\Npfs.sys 20:54:32.0188 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\Npfs.sys. md5: 1E4C4AB5C9B8DD13179BBDC75A2A01F7, sha256: D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F 20:54:32.0188 0x1380 Npfs - detected LockedFile.Multi.Generic ( 1 ) 20:54:34.0728 0x1380 Detect skipped due to KSN trusted 20:54:34.0728 0x1380 Npfs - ok 20:54:34.0788 0x1380 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\windows\system32\nsisvc.dll 20:54:34.0878 0x1380 nsi - ok 20:54:34.0898 0x1380 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys 20:54:34.0898 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\nsiproxy.sys. md5: E7F5AE18AF4168178A642A9247C63001, sha256: 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 20:54:34.0898 0x1380 nsiproxy - detected LockedFile.Multi.Generic ( 1 ) 20:54:37.0428 0x1380 Detect skipped due to KSN trusted 20:54:37.0428 0x1380 nsiproxy - ok 20:54:37.0548 0x1380 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\windows\system32\drivers\Ntfs.sys 20:54:37.0548 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\Ntfs.sys. md5: 1A29A59A4C5BA6F8C85062A613B7E2B2, sha256: CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 20:54:37.0548 0x1380 Ntfs - detected LockedFile.Multi.Generic ( 1 ) 20:54:40.0098 0x1380 Detect skipped due to KSN trusted 20:54:40.0098 0x1380 Ntfs - ok 20:54:40.0138 0x1380 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\windows\system32\drivers\Null.sys 20:54:40.0138 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\Null.sys. md5: 9899284589F75FA8724FF3D16AED75C1, sha256: 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 20:54:40.0138 0x1380 Null - detected LockedFile.Multi.Generic ( 1 ) 20:54:42.0748 0x1380 Detect skipped due to KSN trusted 20:54:42.0748 0x1380 Null - ok 20:54:42.0798 0x1380 [ 0EBC9D13CD96C15B1B18D8678A609E4B, B10896DE16B0C102DFB3E73A6C11A1982C5B428015DAE1F8776BCEF94A0F75C6 ] nusb3hub C:\windows\system32\DRIVERS\nusb3hub.sys 20:54:42.0798 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\nusb3hub.sys. md5: 0EBC9D13CD96C15B1B18D8678A609E4B, sha256: B10896DE16B0C102DFB3E73A6C11A1982C5B428015DAE1F8776BCEF94A0F75C6 20:54:42.0798 0x1380 nusb3hub - detected LockedFile.Multi.Generic ( 1 ) 20:54:45.0418 0x1380 Detect skipped due to KSN trusted 20:54:45.0418 0x1380 nusb3hub - ok 20:54:45.0478 0x1380 [ 7BDEC000D56D485021D9C1E63C2F81CA, 7F1303FD0371AF8715BFC38433B730C797170AEF10C7DB845B7B547DA8DBB5D5 ] nusb3xhc C:\windows\system32\DRIVERS\nusb3xhc.sys 20:54:45.0478 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\nusb3xhc.sys. md5: 7BDEC000D56D485021D9C1E63C2F81CA, sha256: 7F1303FD0371AF8715BFC38433B730C797170AEF10C7DB845B7B547DA8DBB5D5 20:54:45.0478 0x1380 nusb3xhc - detected LockedFile.Multi.Generic ( 1 ) 20:54:48.0128 0x1380 Detect skipped due to KSN trusted 20:54:48.0128 0x1380 nusb3xhc - ok 20:54:48.0198 0x1380 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\windows\system32\drivers\nvraid.sys 20:54:48.0198 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\nvraid.sys. md5: 0A92CB65770442ED0DC44834632F66AD, sha256: 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 20:54:48.0198 0x1380 nvraid - detected LockedFile.Multi.Generic ( 1 ) 20:54:50.0728 0x1380 Detect skipped due to KSN trusted 20:54:50.0728 0x1380 nvraid - ok 20:54:50.0768 0x1380 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\windows\system32\drivers\nvstor.sys 20:54:50.0768 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\nvstor.sys. md5: DAB0E87525C10052BF65F06152F37E4A, sha256: AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 20:54:50.0768 0x1380 nvstor - detected LockedFile.Multi.Generic ( 1 ) 20:54:53.0298 0x1380 Detect skipped due to KSN trusted 20:54:53.0298 0x1380 nvstor - ok 20:54:53.0338 0x1380 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\windows\system32\drivers\nv_agp.sys 20:54:53.0338 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\nv_agp.sys. md5: 270D7CD42D6E3979F6DD0146650F0E05, sha256: 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F 20:54:53.0338 0x1380 nv_agp - detected LockedFile.Multi.Generic ( 1 ) 20:54:55.0878 0x1380 Detect skipped due to KSN trusted 20:54:55.0878 0x1380 nv_agp - ok 20:54:55.0918 0x1380 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys 20:54:55.0918 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\ohci1394.sys. md5: 3589478E4B22CE21B41FA1BFC0B8B8A0, sha256: AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 20:54:55.0918 0x1380 ohci1394 - detected LockedFile.Multi.Generic ( 1 ) 20:54:58.0948 0x1380 Detect skipped due to KSN trusted 20:54:58.0948 0x1380 ohci1394 - ok 20:54:59.0038 0x1380 [ 4965B005492CBA7719E82B71E3245495, 52AD72C05FACC1E0E416A1FA25F34FDD3CB274FAB973BEAAE911A2FACA42B650 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 20:54:59.0068 0x1380 ose64 - ok 20:54:59.0308 0x1380 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 20:54:59.0438 0x1380 osppsvc - ok 20:54:59.0528 0x1380 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\windows\system32\pnrpsvc.dll 20:54:59.0568 0x1380 p2pimsvc - ok 20:54:59.0598 0x1380 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\windows\system32\p2psvc.dll 20:54:59.0648 0x1380 p2psvc - ok 20:54:59.0668 0x1380 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\windows\system32\drivers\parport.sys 20:54:59.0668 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\parport.sys. md5: 0086431C29C35BE1DBC43F52CC273887, sha256: 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 20:54:59.0668 0x1380 Parport - detected LockedFile.Multi.Generic ( 1 ) 20:55:02.0358 0x1380 Detect skipped due to KSN trusted 20:55:02.0358 0x1380 Parport - ok 20:55:02.0428 0x1380 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\windows\system32\drivers\partmgr.sys 20:55:02.0428 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\partmgr.sys. md5: E9766131EEADE40A27DC27D2D68FBA9C, sha256: 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 20:55:02.0448 0x1380 partmgr - detected LockedFile.Multi.Generic ( 1 ) 20:55:05.0068 0x1380 Detect skipped due to KSN trusted 20:55:05.0068 0x1380 partmgr - ok 20:55:05.0138 0x1380 [ 256390425414F90FCBC12F525A84EB11, A4992020BF6A239AD8A77125426E2C39980C9ABC971C4DBCB24B358F946AD7F9 ] PcaSvc C:\windows\System32\pcasvc.dll 20:55:05.0218 0x1380 PcaSvc - ok 20:55:05.0248 0x1380 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\windows\system32\drivers\pci.sys 20:55:05.0248 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\pci.sys. md5: 94575C0571D1462A0F70BDE6BD6EE6B3, sha256: 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 20:55:05.0248 0x1380 pci - detected LockedFile.Multi.Generic ( 1 ) 20:55:07.0888 0x1380 Detect skipped due to KSN trusted 20:55:07.0888 0x1380 pci - ok 20:55:07.0928 0x1380 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\windows\system32\drivers\pciide.sys 20:55:07.0928 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\pciide.sys. md5: B5B8B5EF2E5CB34DF8DCF8831E3534FA, sha256: F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 20:55:07.0928 0x1380 pciide - detected LockedFile.Multi.Generic ( 1 ) 20:55:10.0448 0x1380 Detect skipped due to KSN trusted 20:55:10.0448 0x1380 pciide - ok 20:55:10.0508 0x1380 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\windows\system32\drivers\pcmcia.sys 20:55:10.0508 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\pcmcia.sys. md5: B2E81D4E87CE48589F98CB8C05B01F2F, sha256: 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 20:55:10.0508 0x1380 pcmcia - detected LockedFile.Multi.Generic ( 1 ) 20:55:13.0008 0x1380 Detect skipped due to KSN trusted 20:55:13.0008 0x1380 pcmcia - ok 20:55:13.0048 0x1380 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\windows\system32\drivers\pcw.sys 20:55:13.0048 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\pcw.sys. md5: D6B9C2E1A11A3A4B26A182FFEF18F603, sha256: BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 20:55:13.0048 0x1380 pcw - detected LockedFile.Multi.Generic ( 1 ) 20:55:15.0568 0x1380 Detect skipped due to KSN trusted 20:55:15.0568 0x1380 pcw - ok 20:55:15.0658 0x1380 [ 946010CDFA91469351B22E2620CEBCD8, F099C92706D42ADC289B72724F7932E5D4F62A427AEC967DDB0A1D728AE59A63 ] PEAUTH C:\windows\system32\drivers\peauth.sys 20:55:15.0668 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\peauth.sys. md5: 946010CDFA91469351B22E2620CEBCD8, sha256: F099C92706D42ADC289B72724F7932E5D4F62A427AEC967DDB0A1D728AE59A63 20:55:15.0668 0x1380 PEAUTH - detected LockedFile.Multi.Generic ( 1 ) 20:55:18.0358 0x1380 Detect skipped due to KSN trusted 20:55:18.0358 0x1380 PEAUTH - ok 20:55:18.0468 0x1380 [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\windows\system32\peerdistsvc.dll 20:55:18.0558 0x1380 PeerDistSvc - ok 20:55:18.0638 0x1380 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\windows\SysWow64\perfhost.exe 20:55:18.0678 0x1380 PerfHost - ok 20:55:18.0718 0x1380 [ 663962900E7FEA522126BA287715BB4A, 95CE12CA11E705C293BE4E18845581037D819A7EC812349BCAF4EABC8E7087B1 ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys 20:55:18.0718 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\pgeffect.sys. md5: 663962900E7FEA522126BA287715BB4A, sha256: 95CE12CA11E705C293BE4E18845581037D819A7EC812349BCAF4EABC8E7087B1 20:55:18.0718 0x1380 PGEffect - detected LockedFile.Multi.Generic ( 1 ) 20:55:21.0348 0x1380 Detect skipped due to KSN trusted 20:55:21.0348 0x1380 PGEffect - ok 20:55:21.0468 0x1380 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\windows\system32\pla.dll 20:55:21.0558 0x1380 pla - ok 20:55:21.0658 0x1380 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\windows\system32\umpnpmgr.dll 20:55:21.0718 0x1380 PlugPlay - ok 20:55:21.0728 0x1380 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll 20:55:21.0748 0x1380 PNRPAutoReg - ok 20:55:21.0768 0x1380 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\windows\system32\pnrpsvc.dll 20:55:21.0788 0x1380 PNRPsvc - ok 20:55:21.0828 0x1380 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\windows\System32\ipsecsvc.dll 20:55:21.0888 0x1380 PolicyAgent - ok 20:55:21.0918 0x1380 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\windows\system32\umpo.dll 20:55:21.0968 0x1380 Power - ok 20:55:22.0008 0x1380 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys 20:55:22.0008 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\raspptp.sys. md5: F92A2C41117A11A00BE01CA01A7FCDE9, sha256: 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 20:55:22.0008 0x1380 PptpMiniport - detected LockedFile.Multi.Generic ( 1 ) 20:55:24.0608 0x1380 Detect skipped due to KSN trusted 20:55:24.0608 0x1380 PptpMiniport - ok 20:55:24.0658 0x1380 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\windows\system32\drivers\processr.sys 20:55:24.0658 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\processr.sys. md5: 0D922E23C041EFB1C3FAC2A6F943C9BF, sha256: 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 20:55:24.0658 0x1380 Processor - detected LockedFile.Multi.Generic ( 1 ) 20:55:27.0298 0x1380 Detect skipped due to KSN trusted 20:55:27.0298 0x1380 Processor - ok 20:55:27.0358 0x1380 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\windows\system32\profsvc.dll 20:55:27.0418 0x1380 ProfSvc - ok 20:55:27.0428 0x1380 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\windows\system32\lsass.exe 20:55:27.0438 0x1380 ProtectedStorage - ok 20:55:27.0468 0x1380 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\windows\system32\DRIVERS\pacer.sys 20:55:27.0468 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\pacer.sys. md5: 0557CF5A2556BD58E26384169D72438D, sha256: F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 20:55:27.0468 0x1380 Psched - detected LockedFile.Multi.Generic ( 1 ) 20:55:30.0013 0x1380 Detect skipped due to KSN trusted 20:55:30.0013 0x1380 Psched - ok 20:55:30.0113 0x1380 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\windows\system32\drivers\ql2300.sys 20:55:30.0113 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\ql2300.sys. md5: A53A15A11EBFD21077463EE2C7AFEEF0, sha256: 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 20:55:30.0123 0x1380 ql2300 - detected LockedFile.Multi.Generic ( 1 ) 20:55:32.0613 0x1380 Detect skipped due to KSN trusted 20:55:32.0613 0x1380 ql2300 - ok 20:55:32.0653 0x1380 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\windows\system32\drivers\ql40xx.sys 20:55:32.0653 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\ql40xx.sys. md5: 4F6D12B51DE1AAEFF7DC58C4D75423C8, sha256: FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE 20:55:32.0653 0x1380 ql40xx - detected LockedFile.Multi.Generic ( 1 ) 20:55:35.0393 0x1380 Detect skipped due to KSN trusted 20:55:35.0393 0x1380 ql40xx - ok 20:55:35.0453 0x1380 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\windows\system32\qwave.dll 20:55:35.0513 0x1380 QWAVE - ok 20:55:35.0523 0x1380 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys 20:55:35.0523 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\qwavedrv.sys. md5: 76707BB36430888D9CE9D705398ADB6C, sha256: 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 20:55:35.0523 0x1380 QWAVEdrv - detected LockedFile.Multi.Generic ( 1 ) 20:55:38.0173 0x1380 Detect skipped due to KSN trusted 20:55:38.0173 0x1380 QWAVEdrv - ok 20:55:38.0213 0x1380 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys 20:55:38.0213 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\rasacd.sys. md5: 5A0DA8AD5762FA2D91678A8A01311704, sha256: 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF 20:55:38.0213 0x1380 RasAcd - detected LockedFile.Multi.Generic ( 1 ) 20:55:40.0833 0x1380 Detect skipped due to KSN trusted 20:55:40.0833 0x1380 RasAcd - ok 20:55:40.0883 0x1380 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys 20:55:40.0883 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\AgileVpn.sys. md5: 7ECFF9B22276B73F43A99A15A6094E90, sha256: 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 20:55:40.0883 0x1380 RasAgileVpn - detected LockedFile.Multi.Generic ( 1 ) 20:55:43.0433 0x1380 Detect skipped due to KSN trusted 20:55:43.0433 0x1380 RasAgileVpn - ok 20:55:43.0483 0x1380 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\windows\System32\rasauto.dll 20:55:43.0543 0x1380 RasAuto - ok 20:55:43.0573 0x1380 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys 20:55:43.0573 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\rasl2tp.sys. md5: 471815800AE33E6F1C32FB1B97C490CA, sha256: 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 20:55:43.0573 0x1380 Rasl2tp - detected LockedFile.Multi.Generic ( 1 ) 20:55:46.0133 0x1380 Detect skipped due to KSN trusted 20:55:46.0133 0x1380 Rasl2tp - ok 20:55:46.0203 0x1380 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\windows\System32\rasmans.dll 20:55:46.0263 0x1380 RasMan - ok 20:55:46.0273 0x1380 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys 20:55:46.0273 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\raspppoe.sys. md5: 855C9B1CD4756C5E9A2AA58A15F58C25, sha256: A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 20:55:46.0273 0x1380 RasPppoe - detected LockedFile.Multi.Generic ( 1 ) 20:55:48.0793 0x1380 Detect skipped due to KSN trusted 20:55:48.0793 0x1380 RasPppoe - ok 20:55:48.0823 0x1380 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys 20:55:48.0823 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\rassstp.sys. md5: E8B1E447B008D07FF47D016C2B0EEECB, sha256: FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C 20:55:48.0823 0x1380 RasSstp - detected LockedFile.Multi.Generic ( 1 ) 20:55:51.0556 0x1380 Detect skipped due to KSN trusted 20:55:51.0556 0x1380 RasSstp - ok 20:55:51.0616 0x1380 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\windows\system32\DRIVERS\rdbss.sys 20:55:51.0616 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\rdbss.sys. md5: 77F665941019A1594D887A74F301FA2F, sha256: 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA 20:55:51.0616 0x1380 rdbss - detected LockedFile.Multi.Generic ( 1 ) 20:55:54.0256 0x1380 Detect skipped due to KSN trusted 20:55:54.0256 0x1380 rdbss - ok 20:55:54.0288 0x1380 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\windows\system32\drivers\rdpbus.sys 20:55:54.0288 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\rdpbus.sys. md5: 302DA2A0539F2CF54D7C6CC30C1F2D8D, sha256: 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 20:55:54.0288 0x1380 rdpbus - detected LockedFile.Multi.Generic ( 1 ) 20:55:56.0926 0x1380 Detect skipped due to KSN trusted 20:55:56.0926 0x1380 rdpbus - ok 20:55:56.0966 0x1380 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys 20:55:56.0966 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\RDPCDD.sys. md5: CEA6CC257FC9B7715F1C2B4849286D24, sha256: A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 20:55:56.0966 0x1380 RDPCDD - detected LockedFile.Multi.Generic ( 1 ) 20:55:59.0526 0x1380 Detect skipped due to KSN trusted 20:55:59.0526 0x1380 RDPCDD - ok 20:55:59.0586 0x1380 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\windows\system32\drivers\rdpdr.sys 20:55:59.0586 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\rdpdr.sys. md5: 1B6163C503398B23FF8B939C67747683, sha256: 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE 20:55:59.0586 0x1380 RDPDR - detected LockedFile.Multi.Generic ( 1 ) 20:56:03.0576 0x1380 Detect skipped due to KSN trusted 20:56:03.0576 0x1380 RDPDR - ok 20:56:03.0606 0x1380 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys 20:56:03.0606 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\rdpencdd.sys. md5: BB5971A4F00659529A5C44831AF22365, sha256: 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F 20:56:03.0616 0x1380 RDPENCDD - detected LockedFile.Multi.Generic ( 1 ) 20:56:06.0126 0x1380 Detect skipped due to KSN trusted 20:56:06.0126 0x1380 RDPENCDD - ok 20:56:06.0136 0x1380 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys 20:56:06.0136 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\rdprefmp.sys. md5: 216F3FA57533D98E1F74DED70113177A, sha256: 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 20:56:06.0136 0x1380 RDPREFMP - detected LockedFile.Multi.Generic ( 1 ) 20:56:08.0666 0x1380 Detect skipped due to KSN trusted 20:56:08.0666 0x1380 RDPREFMP - ok 20:56:08.0736 0x1380 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\windows\system32\drivers\RDPWD.sys 20:56:08.0736 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\RDPWD.sys. md5: FE571E088C2D83619D2D48D4E961BF41, sha256: 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA 20:56:08.0766 0x1380 RDPWD - detected LockedFile.Multi.Generic ( 1 ) 20:56:11.0476 0x1380 Detect skipped due to KSN trusted 20:56:11.0476 0x1380 RDPWD - ok 20:56:11.0546 0x1380 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\windows\system32\drivers\rdyboost.sys 20:56:11.0546 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\rdyboost.sys. md5: 34ED295FA0121C241BFEF24764FC4520, sha256: AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F 20:56:11.0546 0x1380 rdyboost - detected LockedFile.Multi.Generic ( 1 ) 20:56:14.0926 0x1380 Detect skipped due to KSN trusted 20:56:14.0926 0x1380 rdyboost - ok 20:56:14.0996 0x1380 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\windows\System32\mprdim.dll 20:56:15.0066 0x1380 RemoteAccess - ok 20:56:15.0086 0x1380 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\windows\system32\regsvc.dll 20:56:15.0136 0x1380 RemoteRegistry - ok 20:56:15.0166 0x1380 [ 59034470B2564CA61ABC5F745DE1768B, 947D2CBEB501A6C53B89B971975D362013754BE28DABEE761AF72064E3CEA937 ] rimspci C:\windows\system32\DRIVERS\rimspe64.sys 20:56:15.0166 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\rimspe64.sys. md5: 59034470B2564CA61ABC5F745DE1768B, sha256: 947D2CBEB501A6C53B89B971975D362013754BE28DABEE761AF72064E3CEA937 20:56:15.0166 0x1380 rimspci - detected LockedFile.Multi.Generic ( 1 ) 20:56:17.0796 0x1380 Detect skipped due to KSN trusted 20:56:17.0796 0x1380 rimspci - ok 20:56:17.0846 0x1380 [ FBAF25883CAB9B9E00857927CA2B08C6, CF6D7FF54D8C22315A46024227B53EAE0F73A472971AB38EA4883383C0DAC682 ] risdxc C:\windows\system32\DRIVERS\risdxc64.sys 20:56:17.0846 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\risdxc64.sys. md5: FBAF25883CAB9B9E00857927CA2B08C6, sha256: CF6D7FF54D8C22315A46024227B53EAE0F73A472971AB38EA4883383C0DAC682 20:56:17.0846 0x1380 risdxc - detected LockedFile.Multi.Generic ( 1 ) 20:56:20.0486 0x1380 Detect skipped due to KSN trusted 20:56:20.0486 0x1380 risdxc - ok 20:56:20.0536 0x1380 [ 6121E2C97A9BBA75DF3E794E708F3E92, 87854BEC1DFCCE55B48F2ACA2656DD36216C29A441012F18C1F5F77CCA29C8DE ] rixdpcie C:\windows\system32\DRIVERS\rixdpe64.sys 20:56:20.0536 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\rixdpe64.sys. md5: 6121E2C97A9BBA75DF3E794E708F3E92, sha256: 87854BEC1DFCCE55B48F2ACA2656DD36216C29A441012F18C1F5F77CCA29C8DE 20:56:20.0536 0x1380 rixdpcie - detected LockedFile.Multi.Generic ( 1 ) 20:56:23.0056 0x1380 Detect skipped due to KSN trusted 20:56:23.0056 0x1380 rixdpcie - ok 20:56:23.0106 0x1380 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\windows\System32\RpcEpMap.dll 20:56:23.0196 0x1380 RpcEptMapper - ok 20:56:23.0236 0x1380 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\windows\system32\locator.exe 20:56:23.0256 0x1380 RpcLocator - ok 20:56:23.0296 0x1380 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\windows\system32\rpcss.dll 20:56:23.0346 0x1380 RpcSs - ok 20:56:23.0366 0x1380 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\windows\system32\DRIVERS\rspndr.sys 20:56:23.0366 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\rspndr.sys. md5: DDC86E4F8E7456261E637E3552E804FF, sha256: D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD 20:56:23.0366 0x1380 rspndr - detected LockedFile.Multi.Generic ( 1 ) 20:56:25.0886 0x1380 Detect skipped due to KSN trusted 20:56:25.0886 0x1380 rspndr - ok 20:56:25.0946 0x1380 [ 116D03E901246AC7AF006121E1E22842, 4C28AE9BDEF84F7E6C800ACD34EA1297E4A59BAE309E213D4C93CC5A2DA522EC ] RTHDMIAzAudService C:\windows\system32\drivers\RtHDMIVX.sys 20:56:25.0946 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\RtHDMIVX.sys. md5: 116D03E901246AC7AF006121E1E22842, sha256: 4C28AE9BDEF84F7E6C800ACD34EA1297E4A59BAE309E213D4C93CC5A2DA522EC 20:56:25.0946 0x1380 RTHDMIAzAudService - detected LockedFile.Multi.Generic ( 1 ) 20:56:28.0446 0x1380 Detect skipped due to KSN trusted 20:56:28.0446 0x1380 RTHDMIAzAudService - ok 20:56:28.0496 0x1380 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\windows\system32\drivers\vms3cap.sys 20:56:28.0496 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\vms3cap.sys. md5: E60C0A09F997826C7627B244195AB581, sha256: E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D 20:56:28.0496 0x1380 s3cap - detected LockedFile.Multi.Generic ( 1 ) 20:56:31.0091 0x1380 Detect skipped due to KSN trusted 20:56:31.0091 0x1380 s3cap - ok 20:56:31.0131 0x1380 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs C:\windows\system32\lsass.exe 20:56:31.0161 0x1380 SamSs - ok 20:56:31.0191 0x1380 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\windows\system32\drivers\sbp2port.sys 20:56:31.0191 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\sbp2port.sys. md5: AC03AF3329579FFFB455AA2DAABBE22B, sha256: 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 20:56:31.0191 0x1380 sbp2port - detected LockedFile.Multi.Generic ( 1 ) 20:56:33.0791 0x1380 Detect skipped due to KSN trusted 20:56:33.0791 0x1380 sbp2port - ok 20:56:33.0861 0x1380 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\windows\System32\SCardSvr.dll 20:56:33.0941 0x1380 SCardSvr - ok 20:56:33.0961 0x1380 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\windows\system32\DRIVERS\scfilter.sys 20:56:33.0961 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\scfilter.sys. md5: 253F38D0D7074C02FF8DEB9836C97D2B, sha256: CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 20:56:33.0961 0x1380 scfilter - detected LockedFile.Multi.Generic ( 1 ) 20:56:36.0561 0x1380 Detect skipped due to KSN trusted 20:56:36.0561 0x1380 scfilter - ok 20:56:36.0671 0x1380 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\windows\system32\schedsvc.dll 20:56:36.0751 0x1380 Schedule - ok 20:56:36.0781 0x1380 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\windows\System32\certprop.dll 20:56:36.0811 0x1380 SCPolicySvc - ok 20:56:36.0831 0x1380 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\windows\System32\SDRSVC.dll 20:56:36.0891 0x1380 SDRSVC - ok 20:56:36.0921 0x1380 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\windows\system32\drivers\secdrv.sys 20:56:36.0921 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\secdrv.sys. md5: 3EA8A16169C26AFBEB544E0E48421186, sha256: 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D 20:56:36.0921 0x1380 secdrv - detected LockedFile.Multi.Generic ( 1 ) 20:56:39.0421 0x1380 Detect skipped due to KSN trusted 20:56:39.0421 0x1380 secdrv - ok 20:56:39.0481 0x1380 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\windows\system32\seclogon.dll 20:56:39.0531 0x1380 seclogon - ok 20:56:39.0551 0x1380 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\windows\System32\sens.dll 20:56:39.0611 0x1380 SENS - ok 20:56:39.0631 0x1380 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\windows\system32\sensrsvc.dll 20:56:39.0691 0x1380 SensrSvc - ok 20:56:39.0711 0x1380 [ 9F6490423AC3271E84A90A0DD9D30A3B, 7F8559B06A2E8FC35F71A099F320A87BB90FC9783133C19F49046F06ECBC9605 ] Ser2pl C:\windows\system32\drivers\ser2pl64.sys 20:56:39.0711 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\ser2pl64.sys. md5: 9F6490423AC3271E84A90A0DD9D30A3B, sha256: 7F8559B06A2E8FC35F71A099F320A87BB90FC9783133C19F49046F06ECBC9605 20:56:39.0711 0x1380 Ser2pl - detected LockedFile.Multi.Generic ( 1 ) 20:56:42.0231 0x1380 Detect skipped due to KSN trusted 20:56:42.0231 0x1380 Ser2pl - ok 20:56:42.0291 0x1380 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\windows\system32\drivers\serenum.sys 20:56:42.0291 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\serenum.sys. md5: CB624C0035412AF0DEBEC78C41F5CA1B, sha256: A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 20:56:42.0291 0x1380 Serenum - detected LockedFile.Multi.Generic ( 1 ) 20:56:44.0981 0x1380 Detect skipped due to KSN trusted 20:56:44.0981 0x1380 Serenum - ok 20:56:45.0021 0x1380 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\windows\system32\drivers\serial.sys 20:56:45.0021 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\serial.sys. md5: C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, sha256: 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D 20:56:45.0021 0x1380 Serial - detected LockedFile.Multi.Generic ( 1 ) 20:56:47.0651 0x1380 Detect skipped due to KSN trusted 20:56:47.0651 0x1380 Serial - ok 20:56:47.0681 0x1380 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\windows\system32\drivers\sermouse.sys 20:56:47.0681 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\sermouse.sys. md5: 1C545A7D0691CC4A027396535691C3E3, sha256: 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D 20:56:47.0681 0x1380 sermouse - detected LockedFile.Multi.Generic ( 1 ) 20:56:50.0321 0x1380 Detect skipped due to KSN trusted 20:56:50.0321 0x1380 sermouse - ok 20:56:50.0361 0x1380 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\windows\system32\sessenv.dll 20:56:50.0411 0x1380 SessionEnv - ok 20:56:50.0451 0x1380 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\windows\system32\drivers\sffdisk.sys 20:56:50.0451 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\sffdisk.sys. md5: A554811BCD09279536440C964AE35BBF, sha256: DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 20:56:50.0451 0x1380 sffdisk - detected LockedFile.Multi.Generic ( 1 ) 20:56:53.0051 0x1380 Detect skipped due to KSN trusted 20:56:53.0051 0x1380 sffdisk - ok 20:56:53.0081 0x1380 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys 20:56:53.0081 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\sffp_mmc.sys. md5: FF414F0BAEFEBA59BC6C04B3DB0B87BF, sha256: B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 20:56:53.0081 0x1380 sffp_mmc - detected LockedFile.Multi.Generic ( 1 ) 20:56:55.0631 0x1380 Detect skipped due to KSN trusted 20:56:55.0631 0x1380 sffp_mmc - ok 20:56:55.0671 0x1380 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys 20:56:55.0671 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\sffp_sd.sys. md5: DD85B78243A19B59F0637DCF284DA63C, sha256: 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 20:56:55.0671 0x1380 sffp_sd - detected LockedFile.Multi.Generic ( 1 ) 20:56:58.0191 0x1380 Detect skipped due to KSN trusted 20:56:58.0191 0x1380 sffp_sd - ok 20:56:58.0231 0x1380 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\windows\system32\drivers\sfloppy.sys 20:56:58.0231 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\sfloppy.sys. md5: A9D601643A1647211A1EE2EC4E433FF4, sha256: 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 20:56:58.0231 0x1380 sfloppy - detected LockedFile.Multi.Generic ( 1 ) 20:57:00.0781 0x1380 Detect skipped due to KSN trusted 20:57:00.0781 0x1380 sfloppy - ok 20:57:00.0841 0x1380 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\windows\System32\ipnathlp.dll 20:57:00.0911 0x1380 SharedAccess - ok 20:57:00.0951 0x1380 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\windows\System32\shsvcs.dll 20:57:00.0991 0x1380 ShellHWDetection - ok 20:57:01.0011 0x1380 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys 20:57:01.0011 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\SiSRaid2.sys. md5: 843CAF1E5FDE1FFD5FF768F23A51E2E1, sha256: 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 20:57:01.0011 0x1380 SiSRaid2 - detected LockedFile.Multi.Generic ( 1 ) 20:57:03.0711 0x1380 Detect skipped due to KSN trusted 20:57:03.0711 0x1380 SiSRaid2 - ok 20:57:03.0771 0x1380 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys 20:57:03.0771 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\sisraid4.sys. md5: 6A6C106D42E9FFFF8B9FCB4F754F6DA4, sha256: 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E 20:57:03.0781 0x1380 SiSRaid4 - detected LockedFile.Multi.Generic ( 1 ) 20:57:06.0401 0x1380 Detect skipped due to KSN trusted 20:57:06.0401 0x1380 SiSRaid4 - ok 20:57:06.0451 0x1380 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\windows\system32\DRIVERS\smb.sys 20:57:06.0451 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\smb.sys. md5: 548260A7B8654E024DC30BF8A7C5BAA4, sha256: 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 20:57:06.0451 0x1380 Smb - detected LockedFile.Multi.Generic ( 1 ) 20:57:09.0071 0x1380 Detect skipped due to KSN trusted 20:57:09.0071 0x1380 Smb - ok 20:57:09.0121 0x1380 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\windows\System32\snmptrap.exe 20:57:09.0161 0x1380 SNMPTRAP - ok 20:57:09.0181 0x1380 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\windows\system32\drivers\spldr.sys 20:57:09.0181 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\spldr.sys. md5: B9E31E5CACDFE584F34F730A677803F9, sha256: 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 20:57:09.0181 0x1380 spldr - detected LockedFile.Multi.Generic ( 1 ) 20:57:11.0701 0x1380 Detect skipped due to KSN trusted 20:57:11.0701 0x1380 spldr - ok 20:57:11.0781 0x1380 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\windows\System32\spoolsv.exe 20:57:11.0831 0x1380 Spooler - ok 20:57:11.0981 0x1380 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\windows\system32\sppsvc.exe 20:57:12.0101 0x1380 sppsvc - ok 20:57:12.0141 0x1380 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\windows\system32\sppuinotify.dll 20:57:12.0191 0x1380 sppuinotify - ok 20:57:12.0241 0x1380 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\windows\system32\DRIVERS\srv.sys 20:57:12.0241 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\srv.sys. md5: 441FBA48BFF01FDB9D5969EBC1838F0B, sha256: 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 20:57:12.0241 0x1380 srv - detected LockedFile.Multi.Generic ( 1 ) 20:57:14.0751 0x1380 Detect skipped due to KSN trusted 20:57:14.0751 0x1380 srv - ok 20:57:14.0811 0x1380 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\windows\system32\DRIVERS\srv2.sys 20:57:14.0811 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\srv2.sys. md5: B4ADEBBF5E3677CCE9651E0F01F7CC28, sha256: 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 20:57:14.0831 0x1380 srv2 - detected LockedFile.Multi.Generic ( 1 ) 20:57:17.0349 0x1380 Detect skipped due to KSN trusted 20:57:17.0349 0x1380 srv2 - ok 20:57:17.0409 0x1380 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys 20:57:17.0409 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\srvnet.sys. md5: 27E461F0BE5BFF5FC737328F749538C3, sha256: AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 20:57:17.0409 0x1380 srvnet - detected LockedFile.Multi.Generic ( 1 ) 20:57:20.0119 0x1380 Detect skipped due to KSN trusted 20:57:20.0119 0x1380 srvnet - ok 20:57:20.0179 0x1380 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\windows\System32\ssdpsrv.dll 20:57:20.0259 0x1380 SSDPSRV - ok 20:57:20.0289 0x1380 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\windows\system32\sstpsvc.dll 20:57:20.0339 0x1380 SstpSvc - ok 20:57:20.0369 0x1380 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\windows\system32\drivers\stexstor.sys 20:57:20.0369 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\stexstor.sys. md5: F3817967ED533D08327DC73BC4D5542A, sha256: 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 20:57:20.0369 0x1380 stexstor - detected LockedFile.Multi.Generic ( 1 ) 20:57:22.0959 0x1380 Detect skipped due to KSN trusted 20:57:22.0959 0x1380 stexstor - ok 20:57:23.0049 0x1380 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\windows\System32\wiaservc.dll 20:57:23.0089 0x1380 stisvc - ok 20:57:23.0119 0x1380 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\windows\system32\drivers\vmstorfl.sys 20:57:23.0119 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\vmstorfl.sys. md5: 7785DC213270D2FC066538DAF94087E7, sha256: F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B 20:57:23.0119 0x1380 storflt - detected LockedFile.Multi.Generic ( 1 ) 20:57:25.0749 0x1380 Detect skipped due to KSN trusted 20:57:25.0749 0x1380 storflt - ok 20:57:25.0799 0x1380 [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\windows\system32\storsvc.dll 20:57:25.0849 0x1380 StorSvc - ok 20:57:25.0879 0x1380 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\windows\system32\drivers\storvsc.sys 20:57:25.0879 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\storvsc.sys. md5: D34E4943D5AC096C8EDEEBFD80D76E23, sha256: 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE 20:57:25.0879 0x1380 storvsc - detected LockedFile.Multi.Generic ( 1 ) 20:57:28.0499 0x1380 Detect skipped due to KSN trusted 20:57:28.0499 0x1380 storvsc - ok 20:57:28.0549 0x1380 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\windows\system32\drivers\swenum.sys 20:57:28.0549 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\swenum.sys. md5: D01EC09B6711A5F8E7E6564A4D0FBC90, sha256: 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 20:57:28.0549 0x1380 swenum - detected LockedFile.Multi.Generic ( 1 ) 20:57:31.0099 0x1380 Detect skipped due to KSN trusted 20:57:31.0099 0x1380 swenum - ok 20:57:31.0189 0x1380 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\windows\System32\swprv.dll 20:57:31.0249 0x1380 swprv - ok 20:57:31.0349 0x1380 [ 3312302A5A3F1D1E060E74A3430174B5, 37B8F2FC4AC8827C56F5430E050725F07242EE61E6BBB8DF3BEBA0E4FA62CB40 ] syshost32 C:\windows\Installer\{B13EA808-3A8F-8E31-3851-661E1839DC64}\syshost.exe 20:57:31.0349 0x1380 Suspicious file ( NoAccess ): C:\windows\Installer\{B13EA808-3A8F-8E31-3851-661E1839DC64}\syshost.exe. md5: 3312302A5A3F1D1E060E74A3430174B5, sha256: 37B8F2FC4AC8827C56F5430E050725F07242EE61E6BBB8DF3BEBA0E4FA62CB40 20:57:31.0349 0x1380 syshost32 - detected LockedFile.Multi.Generic ( 1 ) 20:57:33.0899 0x1380 Detect turned to UDS exact due to KSN untrusted 20:57:33.0899 0x1380 syshost32 ( UDS:DangerousObject.Multi.Generic ) - infected 20:57:33.0899 0x1380 Force sending object to P2P due to detect: syshost32 20:57:36.0569 0x1380 Object send P2P result: true 20:57:39.0269 0x1380 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\windows\system32\sysmain.dll 20:57:39.0349 0x1380 SysMain - ok 20:57:39.0379 0x1380 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\windows\System32\TabSvc.dll 20:57:39.0399 0x1380 TabletInputService - ok 20:57:39.0429 0x1380 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\windows\System32\tapisrv.dll 20:57:39.0489 0x1380 TapiSrv - ok 20:57:39.0509 0x1380 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\windows\System32\tbssvc.dll 20:57:39.0559 0x1380 TBS - ok 20:57:39.0689 0x1380 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\windows\system32\drivers\tcpip.sys 20:57:39.0689 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\tcpip.sys. md5: 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, sha256: F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 20:57:39.0689 0x1380 Tcpip - detected LockedFile.Multi.Generic ( 1 ) 20:57:42.0379 0x1380 Detect skipped due to KSN trusted 20:57:42.0379 0x1380 Tcpip - ok 20:57:42.0489 0x1380 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys 20:57:42.0489 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\tcpip.sys. md5: 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, sha256: F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 20:57:42.0489 0x1380 TCPIP6 - detected LockedFile.Multi.Generic ( 1 ) 20:57:42.0489 0x1380 Detect skipped due to KSN trusted 20:57:42.0489 0x1380 TCPIP6 - ok 20:57:42.0509 0x1380 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys 20:57:42.0509 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\tcpipreg.sys. md5: 1B16D0BD9841794A6E0CDE0CEF744ABC, sha256: 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C 20:57:42.0509 0x1380 tcpipreg - detected LockedFile.Multi.Generic ( 1 ) 20:57:45.0129 0x1380 Detect skipped due to KSN trusted 20:57:45.0129 0x1380 tcpipreg - ok 20:57:45.0179 0x1380 [ FD542B661BD22FA69CA789AD0AC58C29, 75FFAF1834B1E22DF37608ED451F161052FF1FE3C681B4E20A68DCA92CC7FD8C ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys 20:57:45.0179 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\tdcmdpst.sys. md5: FD542B661BD22FA69CA789AD0AC58C29, sha256: 75FFAF1834B1E22DF37608ED451F161052FF1FE3C681B4E20A68DCA92CC7FD8C 20:57:45.0179 0x1380 tdcmdpst - detected LockedFile.Multi.Generic ( 1 ) 20:57:47.0769 0x1380 Detect skipped due to KSN trusted 20:57:47.0769 0x1380 tdcmdpst - ok 20:57:47.0819 0x1380 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\windows\system32\drivers\tdpipe.sys 20:57:47.0819 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\tdpipe.sys. md5: 3371D21011695B16333A3934340C4E7C, sha256: 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D 20:57:47.0829 0x1380 TDPIPE - detected LockedFile.Multi.Generic ( 1 ) 20:57:50.0359 0x1380 Detect skipped due to KSN trusted 20:57:50.0359 0x1380 TDPIPE - ok 20:57:50.0409 0x1380 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\windows\system32\drivers\tdtcp.sys 20:57:50.0419 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\tdtcp.sys. md5: 51C5ECEB1CDEE2468A1748BE550CFBC8, sha256: 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 20:57:50.0419 0x1380 TDTCP - detected LockedFile.Multi.Generic ( 1 ) 20:57:52.0959 0x1380 Detect skipped due to KSN trusted 20:57:52.0959 0x1380 TDTCP - ok 20:57:53.0019 0x1380 [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\windows\system32\DRIVERS\tdx.sys 20:57:53.0019 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\tdx.sys. md5: 70988118145F5F10EF24720B97F35F65, sha256: F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D 20:57:53.0019 0x1380 tdx - detected LockedFile.Multi.Generic ( 1 ) 20:57:55.0546 0x1380 Detect skipped due to KSN trusted 20:57:55.0546 0x1380 tdx - ok 20:57:55.0686 0x1380 [ 1B709733A04DCC41A63F9CD1F76A4EBE, 3973F7BA3CC5395040F68B60950A836D729B487BF7F732D31915064F7DA4C838 ] TemproMonitoringService C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe 20:57:55.0716 0x1380 TemproMonitoringService - ok 20:57:55.0736 0x1380 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\windows\system32\drivers\termdd.sys 20:57:55.0736 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\termdd.sys. md5: 561E7E1F06895D78DE991E01DD0FB6E5, sha256: 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D 20:57:55.0736 0x1380 TermDD - detected LockedFile.Multi.Generic ( 1 ) 20:57:58.0266 0x1380 Detect skipped due to KSN trusted 20:57:58.0266 0x1380 TermDD - ok 20:57:58.0356 0x1380 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\windows\System32\termsrv.dll 20:57:58.0436 0x1380 TermService - ok 20:57:58.0466 0x1380 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\windows\system32\themeservice.dll 20:57:58.0516 0x1380 Themes - ok 20:57:58.0546 0x1380 [ C013F6ACAA9761F571BD28DADA7C157D, E57246132B36FE38D4B177AAE3367D25AF28449201CD4D02CB7957C32AF02AC6 ] Thpdrv C:\windows\system32\DRIVERS\thpdrv.sys 20:57:58.0546 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\thpdrv.sys. md5: C013F6ACAA9761F571BD28DADA7C157D, sha256: E57246132B36FE38D4B177AAE3367D25AF28449201CD4D02CB7957C32AF02AC6 20:57:58.0546 0x1380 Thpdrv - detected LockedFile.Multi.Generic ( 1 ) 20:58:02.0676 0x1380 Detect skipped due to KSN trusted 20:58:02.0676 0x1380 Thpdrv - ok 20:58:02.0726 0x1380 [ B4E609047434ED948AF7BDEF2FA66E38, 353B7A120E532E9CDF0DE91EC39DF5B9B92A1A99B537FF4FB0D1EA13DBE30D17 ] Thpevm C:\windows\system32\DRIVERS\Thpevm.SYS 20:58:02.0726 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\Thpevm.SYS. md5: B4E609047434ED948AF7BDEF2FA66E38, sha256: 353B7A120E532E9CDF0DE91EC39DF5B9B92A1A99B537FF4FB0D1EA13DBE30D17 20:58:02.0726 0x1380 Thpevm - detected LockedFile.Multi.Generic ( 1 ) 20:58:05.0356 0x1380 Detect skipped due to KSN trusted 20:58:05.0356 0x1380 Thpevm - ok 20:58:05.0436 0x1380 [ 9B032A63A0553A2D872815C64A0288BE, D441884C3922264A465199FD5EE413221C6E69C67FD3034FD05B5E17A14A27E6 ] Thpsrv C:\windows\system32\ThpSrv.exe 20:58:05.0466 0x1380 Thpsrv - detected UnsignedFile.Multi.Generic ( 1 ) 20:58:08.0086 0x1380 Detect skipped due to KSN trusted 20:58:08.0086 0x1380 Thpsrv - ok 20:58:08.0136 0x1380 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\windows\system32\mmcss.dll 20:58:08.0206 0x1380 THREADORDER - ok 20:58:08.0266 0x1380 [ 83E91963C4452BE6899503CF9EBFD3ED, 0121415C3FEDF030A73A43D5A8DCF44C077655B0E758F2ABBBDD4079743EF115 ] TMachInfo C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe 20:58:08.0286 0x1380 TMachInfo - ok 20:58:08.0316 0x1380 [ 8E2C799D3476EAC32C3BA0DF7CE6AF19, CFE8A69E3F2A42C3BA2B38EC9233076D0AD32C441500E6407219F2E866905D9B ] TODDSrv C:\windows\system32\TODDSrv.exe 20:58:08.0336 0x1380 TODDSrv - ok 20:58:08.0416 0x1380 [ CDC97FA5C42B07FB0D4600E17C32F582, 1801964D228E03FF72D01E714ECE76D3040DD89B8FE828821CF999E6CB455F53 ] TosCoSrv C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe 20:58:08.0446 0x1380 TosCoSrv - ok 20:58:08.0486 0x1380 [ 8F099BE5DB17D025E19652851399B9F1, A8EC58DB1700713E9376977675BBC380255D0DDA064120FD70AA2478C5FD1CDF ] TOSHIBA Bluetooth Service C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe 20:58:08.0516 0x1380 TOSHIBA Bluetooth Service - ok 20:58:08.0556 0x1380 [ 2ECC833EA37CECE0052D4D9ADC184177, ADC4E633CFCD4E88139DD984D2DF5781A429B7D3EEBE92C597356D9056024103 ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe 20:58:08.0566 0x1380 TOSHIBA eco Utility Service - ok 20:58:08.0616 0x1380 [ EDB4B432DB13EA3D1EB2356310D33263, C587155A73AE282545A1A646740BD8E56DFD3D2F231B484469D691401354A245 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe 20:58:08.0646 0x1380 TOSHIBA HDD SSD Alert Service - ok 20:58:08.0676 0x1380 [ 8021F63311797085949FA387F7C83583, 7781994B9F06784807D32FD5A93C5406A441908870B1328BBDA9D15C5DD98C1B ] tosporte C:\windows\system32\DRIVERS\tosporte.sys 20:58:08.0676 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\tosporte.sys. md5: 8021F63311797085949FA387F7C83583, sha256: 7781994B9F06784807D32FD5A93C5406A441908870B1328BBDA9D15C5DD98C1B 20:58:08.0696 0x1380 tosporte - detected LockedFile.Multi.Generic ( 1 ) 20:58:11.0226 0x1380 Detect skipped due to KSN trusted 20:58:11.0226 0x1380 tosporte - ok 20:58:11.0276 0x1380 [ 09CF82C0068C7CFF7E2B3797BE7F5CC2, 0CBC9CD203EC6F08A9472B92CCC011D61F4F7DE41AD6BE9AFFBEE991ED4E1020 ] tosrfbd C:\windows\system32\DRIVERS\tosrfbd.sys 20:58:11.0276 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\tosrfbd.sys. md5: 09CF82C0068C7CFF7E2B3797BE7F5CC2, sha256: 0CBC9CD203EC6F08A9472B92CCC011D61F4F7DE41AD6BE9AFFBEE991ED4E1020 20:58:11.0276 0x1380 tosrfbd - detected LockedFile.Multi.Generic ( 1 ) 20:58:13.0796 0x1380 Detect skipped due to KSN trusted 20:58:13.0796 0x1380 tosrfbd - ok 20:58:13.0846 0x1380 [ 90F0B1745ABF13F44C2A6ED79F7CE9FB, B705B0ADD6965CF63D3FCD039DBC80EEB8B3860608367D248C7350BB16D83337 ] tosrfbnp C:\windows\system32\Drivers\tosrfbnp.sys 20:58:13.0846 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\Drivers\tosrfbnp.sys. md5: 90F0B1745ABF13F44C2A6ED79F7CE9FB, sha256: B705B0ADD6965CF63D3FCD039DBC80EEB8B3860608367D248C7350BB16D83337 20:58:13.0846 0x1380 tosrfbnp - detected LockedFile.Multi.Generic ( 1 ) 20:58:16.0436 0x1380 Detect skipped due to KSN trusted 20:58:16.0436 0x1380 tosrfbnp - ok 20:58:16.0476 0x1380 [ 9E4E65EA51E34647340BD6007467AC54, D4FD658250298AE52959009C7DB031A7D82E48088DB5D94E6D3F990058B9D75E ] Tosrfcom C:\windows\system32\Drivers\tosrfcom.sys 20:58:16.0476 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\Drivers\tosrfcom.sys. md5: 9E4E65EA51E34647340BD6007467AC54, sha256: D4FD658250298AE52959009C7DB031A7D82E48088DB5D94E6D3F990058B9D75E 20:58:16.0476 0x1380 Tosrfcom - detected LockedFile.Multi.Generic ( 1 ) 20:58:19.0146 0x1380 Detect skipped due to KSN trusted 20:58:19.0146 0x1380 Tosrfcom - ok 20:58:19.0196 0x1380 [ F5E3AC4CBCD154EE80849B21887FD0B0, 7D68AF88F1B01BCA6456FBAEB91580419A49A77D31EFC0BA6A1C50301899BA03 ] tosrfec C:\windows\system32\DRIVERS\tosrfec.sys 20:58:19.0196 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\tosrfec.sys. md5: F5E3AC4CBCD154EE80849B21887FD0B0, sha256: 7D68AF88F1B01BCA6456FBAEB91580419A49A77D31EFC0BA6A1C50301899BA03 20:58:19.0196 0x1380 tosrfec - detected LockedFile.Multi.Generic ( 1 ) 20:58:21.0846 0x1380 Detect skipped due to KSN trusted 20:58:21.0846 0x1380 tosrfec - ok 20:58:21.0906 0x1380 [ 7D2467D3EB9BAA4B69AE4A28C83DE57A, 38D2C64559EF4598025474643EC0D506F0107822AC6205E8C4D26B76EB28177D ] Tosrfhid C:\windows\system32\DRIVERS\Tosrfhid.sys 20:58:21.0906 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\Tosrfhid.sys. md5: 7D2467D3EB9BAA4B69AE4A28C83DE57A, sha256: 38D2C64559EF4598025474643EC0D506F0107822AC6205E8C4D26B76EB28177D 20:58:21.0906 0x1380 Tosrfhid - detected LockedFile.Multi.Generic ( 1 ) 20:58:24.0546 0x1380 Detect skipped due to KSN trusted 20:58:24.0546 0x1380 Tosrfhid - ok 20:58:24.0596 0x1380 [ B6FDC3C76FFE9C5171EEA9C37EA367C2, 4F8D4E2E37164DB91F396B836BD888CF221010103CF3FBECE00B747155819374 ] tosrfnds C:\windows\system32\DRIVERS\tosrfnds.sys 20:58:24.0596 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\tosrfnds.sys. md5: B6FDC3C76FFE9C5171EEA9C37EA367C2, sha256: 4F8D4E2E37164DB91F396B836BD888CF221010103CF3FBECE00B747155819374 20:58:24.0596 0x1380 tosrfnds - detected LockedFile.Multi.Generic ( 1 ) 20:58:27.0206 0x1380 Detect skipped due to KSN trusted 20:58:27.0206 0x1380 tosrfnds - ok 20:58:27.0256 0x1380 [ 7052B10E54B48AF12BD5606596A8E039, 530862CFF482B279CCF320B6941C7C8BFAA95F04561BE5F0FDB3E0C042FE6BDA ] TosRfSnd C:\windows\system32\drivers\tosrfsnd.sys 20:58:27.0256 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\tosrfsnd.sys. md5: 7052B10E54B48AF12BD5606596A8E039, sha256: 530862CFF482B279CCF320B6941C7C8BFAA95F04561BE5F0FDB3E0C042FE6BDA 20:58:27.0266 0x1380 TosRfSnd - detected LockedFile.Multi.Generic ( 1 ) 20:58:29.0811 0x1380 Detect skipped due to KSN trusted 20:58:29.0811 0x1380 TosRfSnd - ok 20:58:29.0861 0x1380 [ 7A0048693F98460FF537BE31C741B927, 6CD73974D8A9215A5B538C7F32E1C85F6912D38A0B70DB10015621C4E1670980 ] Tosrfusb C:\windows\system32\DRIVERS\tosrfusb.sys 20:58:29.0861 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\tosrfusb.sys. md5: 7A0048693F98460FF537BE31C741B927, sha256: 6CD73974D8A9215A5B538C7F32E1C85F6912D38A0B70DB10015621C4E1670980 20:58:29.0861 0x1380 Tosrfusb - detected LockedFile.Multi.Generic ( 1 ) 20:58:32.0381 0x1380 Detect skipped due to KSN trusted 20:58:32.0391 0x1380 Tosrfusb - ok 20:58:32.0481 0x1380 [ 9F8410CCC72B3470C96DA415BE0CF423, 70BB6273B03EFDF9FBC3CCF7900709CA559B48F610BB814EF32C960A878A32C0 ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe 20:58:32.0511 0x1380 TPCHSrv - ok 20:58:32.0541 0x1380 [ DBCC20C02E8A3E43B03C304A4E40A84F, BF5F3ACCB0342304A6870E94D2576644B08DBF307C853C7DBA4B82B0C7309DA4 ] TPM C:\windows\system32\drivers\tpm.sys 20:58:32.0541 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\tpm.sys. md5: DBCC20C02E8A3E43B03C304A4E40A84F, sha256: BF5F3ACCB0342304A6870E94D2576644B08DBF307C853C7DBA4B82B0C7309DA4 20:58:32.0541 0x1380 TPM - detected LockedFile.Multi.Generic ( 1 ) 20:58:35.0061 0x1380 Detect skipped due to KSN trusted 20:58:35.0061 0x1380 TPM - ok 20:58:35.0111 0x1380 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\windows\System32\trkwks.dll 20:58:35.0171 0x1380 TrkWks - ok 20:58:35.0241 0x1380 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe 20:58:35.0321 0x1380 TrustedInstaller - ok 20:58:35.0361 0x1380 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys 20:58:35.0361 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\tssecsrv.sys. md5: E232A3B43A894BB327FC161529BD9ED1, sha256: F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F 20:58:35.0361 0x1380 tssecsrv - detected LockedFile.Multi.Generic ( 1 ) 20:58:37.0871 0x1380 Detect skipped due to KSN trusted 20:58:37.0871 0x1380 tssecsrv - ok 20:58:37.0881 0x1380 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys 20:58:37.0881 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\tsusbflt.sys. md5: D11C783E3EF9A3C52C0EBE83CC5000E9, sha256: A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB 20:58:37.0891 0x1380 TsUsbFlt - detected LockedFile.Multi.Generic ( 1 ) 20:58:40.0521 0x1380 Detect skipped due to KSN trusted 20:58:40.0521 0x1380 TsUsbFlt - ok 20:58:40.0561 0x1380 [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys 20:58:40.0561 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\TsUsbGD.sys. md5: 9CC2CCAE8A84820EAECB886D477CBCB8, sha256: 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 20:58:40.0561 0x1380 TsUsbGD - detected LockedFile.Multi.Generic ( 1 ) 20:58:43.0201 0x1380 Detect skipped due to KSN trusted 20:58:43.0201 0x1380 TsUsbGD - ok 20:58:43.0241 0x1380 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys 20:58:43.0241 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\tunnel.sys. md5: 3566A8DAAFA27AF944F5D705EAA64894, sha256: AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 20:58:43.0241 0x1380 tunnel - detected LockedFile.Multi.Generic ( 1 ) 20:58:45.0891 0x1380 Detect skipped due to KSN trusted 20:58:45.0891 0x1380 tunnel - ok 20:58:45.0931 0x1380 [ EFFCE6E033EBDD0F3C0F14A413558F65, 576E7C8F1FBE874A0F8F7AA97FC19F472474CFD4A6F663034341E98FF5A28BB5 ] TVALZ C:\windows\system32\DRIVERS\TVALZ.SYS 20:58:45.0941 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\TVALZ.SYS. md5: EFFCE6E033EBDD0F3C0F14A413558F65, sha256: 576E7C8F1FBE874A0F8F7AA97FC19F472474CFD4A6F663034341E98FF5A28BB5 20:58:45.0941 0x1380 TVALZ - detected LockedFile.Multi.Generic ( 1 ) 20:58:48.0471 0x1380 Detect skipped due to KSN trusted 20:58:48.0471 0x1380 TVALZ - ok 20:58:48.0541 0x1380 [ 9C7191F4B2E49BFF47A6C1144B5923FA, DF4E663499946F4E68B7528CA399574D1EB69797FF81F681943B84F3E5E6A40E ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys 20:58:48.0541 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\TVALZFL.sys. md5: 9C7191F4B2E49BFF47A6C1144B5923FA, sha256: DF4E663499946F4E68B7528CA399574D1EB69797FF81F681943B84F3E5E6A40E 20:58:48.0541 0x1380 TVALZFL - detected LockedFile.Multi.Generic ( 1 ) 20:58:51.0071 0x1380 Detect skipped due to KSN trusted 20:58:51.0071 0x1380 TVALZFL - ok 20:58:51.0121 0x1380 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\windows\system32\drivers\uagp35.sys 20:58:51.0121 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\uagp35.sys. md5: B4DD609BD7E282BFC683CEC7EAAAAD67, sha256: EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 20:58:51.0121 0x1380 uagp35 - detected LockedFile.Multi.Generic ( 1 ) 20:58:53.0651 0x1380 Detect skipped due to KSN trusted 20:58:53.0651 0x1380 uagp35 - ok 20:58:53.0701 0x1380 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\windows\system32\DRIVERS\udfs.sys 20:58:53.0701 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\udfs.sys. md5: FF4232A1A64012BAA1FD97C7B67DF593, sha256: D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 20:58:53.0701 0x1380 udfs - detected LockedFile.Multi.Generic ( 1 ) 20:58:56.0231 0x1380 Detect skipped due to KSN trusted 20:58:56.0231 0x1380 udfs - ok 20:58:56.0281 0x1380 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\windows\system32\UI0Detect.exe 20:58:56.0321 0x1380 UI0Detect - ok 20:58:56.0351 0x1380 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys 20:58:56.0351 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\uliagpkx.sys. md5: 4BFE1BC28391222894CBF1E7D0E42320, sha256: 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A 20:58:56.0351 0x1380 uliagpkx - detected LockedFile.Multi.Generic ( 1 ) 20:58:59.0041 0x1380 Detect skipped due to KSN trusted 20:58:59.0041 0x1380 uliagpkx - ok 20:58:59.0071 0x1380 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\windows\system32\DRIVERS\umbus.sys 20:58:59.0071 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\umbus.sys. md5: DC54A574663A895C8763AF0FA1FF7561, sha256: 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE 20:58:59.0081 0x1380 umbus - detected LockedFile.Multi.Generic ( 1 ) 20:59:01.0711 0x1380 Detect skipped due to KSN trusted 20:59:01.0711 0x1380 umbus - ok 20:59:01.0751 0x1380 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\windows\system32\drivers\umpass.sys 20:59:01.0751 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\umpass.sys. md5: B2E8E8CB557B156DA5493BBDDCC1474D, sha256: F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 20:59:01.0751 0x1380 UmPass - detected LockedFile.Multi.Generic ( 1 ) 20:59:04.0391 0x1380 Detect skipped due to KSN trusted 20:59:04.0391 0x1380 UmPass - ok 20:59:04.0441 0x1380 [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\windows\System32\umrdp.dll 20:59:04.0511 0x1380 UmRdpService - ok 20:59:04.0641 0x1380 [ 2C16648A12999AE69A9EBF41974B0BA2, 06008F61B6EC36CD34CB8C4BA983371DB7A9F4BEE15E5329F5E90FEEE300D258 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe 20:59:04.0711 0x1380 UNS - ok 20:59:04.0741 0x1380 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\windows\System32\upnphost.dll 20:59:04.0781 0x1380 upnphost - ok 20:59:04.0821 0x1380 [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64 C:\windows\system32\Drivers\usbaapl64.sys 20:59:04.0821 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\Drivers\usbaapl64.sys. md5: C9E9D59C0099A9FF51697E9306A44240, sha256: 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 20:59:04.0821 0x1380 USBAAPL64 - detected LockedFile.Multi.Generic ( 1 ) 20:59:07.0361 0x1380 Detect skipped due to KSN trusted 20:59:07.0361 0x1380 USBAAPL64 - ok 20:59:07.0411 0x1380 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys 20:59:07.0411 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\usbccgp.sys. md5: DCA68B0943D6FA415F0C56C92158A83A, sha256: BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 20:59:07.0411 0x1380 usbccgp - detected LockedFile.Multi.Generic ( 1 ) 20:59:09.0911 0x1380 Detect skipped due to KSN trusted 20:59:09.0911 0x1380 usbccgp - ok 20:59:09.0961 0x1380 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\windows\system32\drivers\usbcir.sys 20:59:09.0961 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\usbcir.sys. md5: 80B0F7D5CCF86CEB5D402EAAF61FEC31, sha256: 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD 20:59:09.0961 0x1380 usbcir - detected LockedFile.Multi.Generic ( 1 ) 20:59:12.0496 0x1380 Detect skipped due to KSN trusted 20:59:12.0496 0x1380 usbcir - ok 20:59:12.0549 0x1380 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\windows\system32\drivers\usbehci.sys 20:59:12.0549 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\usbehci.sys. md5: 18A85013A3E0F7E1755365D287443965, sha256: 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 20:59:12.0549 0x1380 usbehci - detected LockedFile.Multi.Generic ( 1 ) 20:59:15.0266 0x1380 Detect skipped due to KSN trusted 20:59:15.0266 0x1380 usbehci - ok 20:59:15.0326 0x1380 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys 20:59:15.0326 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\usbhub.sys. md5: 8D1196CFBB223621F2C67D45710F25BA, sha256: B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 20:59:15.0336 0x1380 usbhub - detected LockedFile.Multi.Generic ( 1 ) 20:59:17.0934 0x1380 Detect skipped due to KSN trusted 20:59:17.0934 0x1380 usbhub - ok 20:59:17.0984 0x1380 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\windows\system32\drivers\usbohci.sys 20:59:17.0984 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\usbohci.sys. md5: 765A92D428A8DB88B960DA5A8D6089DC, sha256: 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C 20:59:17.0984 0x1380 usbohci - detected LockedFile.Multi.Generic ( 1 ) 20:59:20.0644 0x1380 Detect skipped due to KSN trusted 20:59:20.0644 0x1380 usbohci - ok 20:59:20.0684 0x1380 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\windows\system32\DRIVERS\usbprint.sys 20:59:20.0684 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\usbprint.sys. md5: 73188F58FB384E75C4063D29413CEE3D, sha256: B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C 20:59:20.0684 0x1380 usbprint - detected LockedFile.Multi.Generic ( 1 ) 20:59:23.0214 0x1380 Detect skipped due to KSN trusted 20:59:23.0214 0x1380 usbprint - ok 20:59:23.0264 0x1380 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys 20:59:23.0264 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\usbscan.sys. md5: 9661DA76B4531B2DA272ECCE25A8AF24, sha256: FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 20:59:23.0264 0x1380 usbscan - detected LockedFile.Multi.Generic ( 1 ) 20:59:25.0774 0x1380 Detect skipped due to KSN trusted 20:59:25.0774 0x1380 usbscan - ok 20:59:25.0834 0x1380 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS 20:59:25.0834 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\USBSTOR.SYS. md5: FED648B01349A3C8395A5169DB5FB7D6, sha256: DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 20:59:25.0834 0x1380 USBSTOR - detected LockedFile.Multi.Generic ( 1 ) 20:59:28.0366 0x1380 Detect skipped due to KSN trusted 20:59:28.0366 0x1380 USBSTOR - ok 20:59:28.0386 0x1380 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\windows\system32\drivers\usbuhci.sys 20:59:28.0386 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\usbuhci.sys. md5: DD253AFC3BC6CBA412342DE60C3647F3, sha256: 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 20:59:28.0386 0x1380 usbuhci - detected LockedFile.Multi.Generic ( 1 ) 20:59:30.0911 0x1380 Detect skipped due to KSN trusted 20:59:30.0911 0x1380 usbuhci - ok 20:59:30.0971 0x1380 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys 20:59:30.0971 0x1380 Suspicious file ( NoAccess ): C:\windows\System32\Drivers\usbvideo.sys. md5: 1F775DA4CF1A3A1834207E975A72E9D7, sha256: 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 20:59:30.0971 0x1380 usbvideo - detected LockedFile.Multi.Generic ( 1 ) 20:59:33.0674 0x1380 Detect skipped due to KSN trusted 20:59:33.0674 0x1380 usbvideo - ok 20:59:33.0724 0x1380 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\windows\System32\uxsms.dll 20:59:33.0794 0x1380 UxSms - ok 20:59:33.0814 0x1380 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc C:\windows\system32\lsass.exe 20:59:33.0834 0x1380 VaultSvc - ok 20:59:33.0874 0x1380 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys 20:59:33.0874 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\vdrvroot.sys. md5: C5C876CCFC083FF3B128F933823E87BD, sha256: 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D 20:59:33.0874 0x1380 vdrvroot - detected LockedFile.Multi.Generic ( 1 ) 20:59:36.0534 0x1380 Detect skipped due to KSN trusted 20:59:36.0534 0x1380 vdrvroot - ok 20:59:36.0614 0x1380 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\windows\System32\vds.exe 20:59:36.0694 0x1380 vds - ok 20:59:36.0724 0x1380 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\windows\system32\DRIVERS\vgapnp.sys 20:59:36.0724 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\vgapnp.sys. md5: DA4DA3F5E02943C2DC8C6ED875DE68DD, sha256: EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 20:59:36.0724 0x1380 vga - detected LockedFile.Multi.Generic ( 1 ) 20:59:39.0434 0x1380 Detect skipped due to KSN trusted 20:59:39.0434 0x1380 vga - ok 20:59:39.0454 0x1380 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\windows\System32\drivers\vga.sys 20:59:39.0454 0x1380 Suspicious file ( NoAccess ): C:\windows\System32\drivers\vga.sys. md5: 53E92A310193CB3C03BEA963DE7D9CFC, sha256: 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 20:59:39.0454 0x1380 VgaSave - detected LockedFile.Multi.Generic ( 1 ) 20:59:42.0089 0x1380 Detect skipped due to KSN trusted 20:59:42.0089 0x1380 VgaSave - ok 20:59:42.0149 0x1380 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\windows\system32\drivers\vhdmp.sys 20:59:42.0149 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\vhdmp.sys. md5: 2CE2DF28C83AEAF30084E1B1EB253CBB, sha256: D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF 20:59:42.0149 0x1380 vhdmp - detected LockedFile.Multi.Generic ( 1 ) 20:59:44.0651 0x1380 Detect skipped due to KSN trusted 20:59:44.0651 0x1380 vhdmp - ok 20:59:44.0691 0x1380 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\windows\system32\drivers\viaide.sys 20:59:44.0691 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\viaide.sys. md5: E5689D93FFE4E5D66C0178761240DD54, sha256: 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 20:59:44.0691 0x1380 viaide - detected LockedFile.Multi.Generic ( 1 ) 20:59:47.0201 0x1380 Detect skipped due to KSN trusted 20:59:47.0201 0x1380 viaide - ok 20:59:47.0261 0x1380 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\windows\system32\drivers\vmbus.sys 20:59:47.0261 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\vmbus.sys. md5: 86EA3E79AE350FEA5331A1303054005F, sha256: 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 20:59:47.0261 0x1380 vmbus - detected LockedFile.Multi.Generic ( 1 ) 20:59:49.0951 0x1380 Detect skipped due to KSN trusted 20:59:49.0951 0x1380 vmbus - ok 20:59:49.0991 0x1380 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\windows\system32\drivers\VMBusHID.sys 20:59:49.0991 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\VMBusHID.sys. md5: 7DE90B48F210D29649380545DB45A187, sha256: 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 20:59:49.0991 0x1380 VMBusHID - detected LockedFile.Multi.Generic ( 1 ) 20:59:52.0611 0x1380 Detect skipped due to KSN trusted 20:59:52.0611 0x1380 VMBusHID - ok 20:59:52.0641 0x1380 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\windows\system32\drivers\volmgr.sys 20:59:52.0641 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\volmgr.sys. md5: D2AAFD421940F640B407AEFAAEBD91B0, sha256: 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 20:59:52.0641 0x1380 volmgr - detected LockedFile.Multi.Generic ( 1 ) 20:59:55.0261 0x1380 Detect skipped due to KSN trusted 20:59:55.0261 0x1380 volmgr - ok 20:59:55.0311 0x1380 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\windows\system32\drivers\volmgrx.sys 20:59:55.0311 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\volmgrx.sys. md5: A255814907C89BE58B79EF2F189B843B, sha256: 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F 20:59:55.0311 0x1380 volmgrx - detected LockedFile.Multi.Generic ( 1 ) 20:59:57.0914 0x1380 Detect skipped due to KSN trusted 20:59:57.0914 0x1380 volmgrx - ok 20:59:57.0984 0x1380 [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap C:\windows\system32\drivers\volsnap.sys 20:59:57.0984 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\volsnap.sys. md5: DF8126BD41180351A093A3AD2FC8903B, sha256: AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A 20:59:57.0984 0x1380 volsnap - detected LockedFile.Multi.Generic ( 1 ) 21:00:00.0524 0x1380 Detect skipped due to KSN trusted 21:00:00.0524 0x1380 volsnap - ok 21:00:00.0574 0x1380 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\windows\system32\drivers\vsmraid.sys 21:00:00.0574 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\vsmraid.sys. md5: 5E2016EA6EBACA03C04FEAC5F330D997, sha256: 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC 21:00:00.0574 0x1380 vsmraid - detected LockedFile.Multi.Generic ( 1 ) 21:00:03.0124 0x1380 Detect skipped due to KSN trusted 21:00:03.0124 0x1380 vsmraid - ok 21:00:03.0254 0x1380 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\windows\system32\vssvc.exe 21:00:03.0336 0x1380 VSS - ok 21:00:03.0376 0x1380 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys 21:00:03.0376 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\vwifibus.sys. md5: 36D4720B72B5C5D9CB2B9C29E9DF67A1, sha256: 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 21:00:03.0376 0x1380 vwifibus - detected LockedFile.Multi.Generic ( 1 ) 21:00:05.0899 0x1380 Detect skipped due to KSN trusted 21:00:05.0899 0x1380 vwifibus - ok 21:00:05.0929 0x1380 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys 21:00:05.0939 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\vwififlt.sys. md5: 6A3D66263414FF0D6FA754C646612F3F, sha256: 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB 21:00:05.0939 0x1380 vwififlt - detected LockedFile.Multi.Generic ( 1 ) 21:00:08.0659 0x1380 Detect skipped due to KSN trusted 21:00:08.0659 0x1380 vwififlt - ok 21:00:08.0699 0x1380 [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys 21:00:08.0699 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\vwifimp.sys. md5: 6A638FC4BFDDC4D9B186C28C91BD1A01, sha256: 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 21:00:08.0699 0x1380 vwifimp - detected LockedFile.Multi.Generic ( 1 ) 21:00:11.0379 0x1380 Detect skipped due to KSN trusted 21:00:11.0379 0x1380 vwifimp - ok 21:00:11.0429 0x1380 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\windows\system32\w32time.dll 21:00:11.0509 0x1380 W32Time - ok 21:00:11.0529 0x1380 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\windows\system32\drivers\wacompen.sys 21:00:11.0529 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\wacompen.sys. md5: 4E9440F4F152A7B944CB1663D3935A3E, sha256: 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 21:00:11.0529 0x1380 WacomPen - detected LockedFile.Multi.Generic ( 1 ) 21:00:14.0179 0x1380 Detect skipped due to KSN trusted 21:00:14.0179 0x1380 WacomPen - ok 21:00:14.0229 0x1380 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\windows\system32\DRIVERS\wanarp.sys 21:00:14.0229 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\wanarp.sys. md5: 356AFD78A6ED4457169241AC3965230C, sha256: CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 21:00:14.0229 0x1380 WANARP - detected LockedFile.Multi.Generic ( 1 ) 21:00:16.0749 0x1380 Detect skipped due to KSN trusted 21:00:16.0749 0x1380 WANARP - ok 21:00:16.0789 0x1380 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys 21:00:16.0789 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\wanarp.sys. md5: 356AFD78A6ED4457169241AC3965230C, sha256: CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 21:00:16.0799 0x1380 Wanarpv6 - detected LockedFile.Multi.Generic ( 1 ) 21:00:16.0799 0x1380 Detect skipped due to KSN trusted 21:00:16.0799 0x1380 Wanarpv6 - ok 21:00:16.0899 0x1380 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe 21:00:16.0949 0x1380 WatAdminSvc - ok 21:00:17.0049 0x1380 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\windows\system32\wbengine.exe 21:00:17.0139 0x1380 wbengine - ok 21:00:17.0169 0x1380 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\windows\System32\wbiosrvc.dll 21:00:17.0219 0x1380 WbioSrvc - ok 21:00:17.0249 0x1380 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\windows\System32\wcncsvc.dll 21:00:17.0279 0x1380 wcncsvc - ok 21:00:17.0289 0x1380 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll 21:00:17.0359 0x1380 WcsPlugInService - ok 21:00:17.0389 0x1380 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\windows\system32\drivers\wd.sys 21:00:17.0389 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\wd.sys. md5: 72889E16FF12BA0F235467D6091B17DC, sha256: F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 21:00:17.0389 0x1380 Wd - detected LockedFile.Multi.Generic ( 1 ) 21:00:19.0909 0x1380 Detect skipped due to KSN trusted 21:00:19.0909 0x1380 Wd - ok 21:00:19.0999 0x1380 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys 21:00:19.0999 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\Wdf01000.sys. md5: E2C933EDBC389386EBE6D2BA953F43D8, sha256: AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 21:00:19.0999 0x1380 Wdf01000 - detected LockedFile.Multi.Generic ( 1 ) 21:00:22.0499 0x1380 Detect skipped due to KSN trusted 21:00:22.0499 0x1380 Wdf01000 - ok 21:00:22.0549 0x1380 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\windows\system32\wdi.dll 21:00:22.0659 0x1380 WdiServiceHost - ok 21:00:22.0669 0x1380 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\windows\system32\wdi.dll 21:00:22.0699 0x1380 WdiSystemHost - ok 21:00:22.0759 0x1380 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\windows\System32\webclnt.dll 21:00:22.0829 0x1380 WebClient - ok 21:00:22.0849 0x1380 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\windows\system32\wecsvc.dll 21:00:22.0929 0x1380 Wecsvc - ok 21:00:22.0959 0x1380 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\windows\System32\wercplsupport.dll 21:00:22.0999 0x1380 wercplsupport - ok 21:00:23.0009 0x1380 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\windows\System32\WerSvc.dll 21:00:23.0089 0x1380 WerSvc - ok 21:00:23.0129 0x1380 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys 21:00:23.0129 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\wfplwf.sys. md5: 611B23304BF067451A9FDEE01FBDD725, sha256: 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 21:00:23.0129 0x1380 WfpLwf - detected LockedFile.Multi.Generic ( 1 ) 21:00:25.0789 0x1380 Detect skipped due to KSN trusted 21:00:25.0789 0x1380 WfpLwf - ok 21:00:25.0829 0x1380 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\windows\system32\drivers\wimmount.sys 21:00:25.0829 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\wimmount.sys. md5: 05ECAEC3E4529A7153B3136CEB49F0EC, sha256: 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 21:00:25.0829 0x1380 WIMMount - detected LockedFile.Multi.Generic ( 1 ) 21:00:28.0479 0x1380 Detect skipped due to KSN trusted 21:00:28.0479 0x1380 WIMMount - ok 21:00:28.0519 0x1380 WinDefend - ok 21:00:28.0529 0x1380 WinHttpAutoProxySvc - ok 21:00:28.0599 0x1380 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll 21:00:28.0659 0x1380 Winmgmt - ok 21:00:28.0749 0x1380 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\windows\system32\WsmSvc.dll 21:00:28.0859 0x1380 WinRM - ok 21:00:28.0889 0x1380 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys 21:00:28.0889 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\WinUsb.sys. md5: FE88B288356E7B47B74B13372ADD906D, sha256: A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 21:00:28.0889 0x1380 WinUsb - detected LockedFile.Multi.Generic ( 1 ) 21:00:31.0511 0x1380 Detect skipped due to KSN trusted 21:00:31.0511 0x1380 WinUsb - ok 21:00:31.0601 0x1380 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\windows\System32\wlansvc.dll 21:00:31.0631 0x1380 Wlansvc - ok 21:00:31.0671 0x1380 [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe 21:00:31.0681 0x1380 wlcrasvc - ok 21:00:31.0831 0x1380 [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 21:00:31.0901 0x1380 wlidsvc - ok 21:00:31.0961 0x1380 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys 21:00:31.0961 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\wmiacpi.sys. md5: F6FF8944478594D0E414D3F048F0D778, sha256: 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 21:00:31.0961 0x1380 WmiAcpi - detected LockedFile.Multi.Generic ( 1 ) 21:00:34.0511 0x1380 Detect skipped due to KSN trusted 21:00:34.0511 0x1380 WmiAcpi - ok 21:00:34.0561 0x1380 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe 21:00:34.0611 0x1380 wmiApSrv - ok 21:00:34.0641 0x1380 WMPNetworkSvc - ok 21:00:34.0691 0x1380 [ 83B6CA03C846FCD47F9883D77D1EB27B, 1616DBBC95085B6618B7F884383507E2A54D561A41288E79FA6DC99218C02802 ] WMZuneComm C:\Program Files\Zune\WMZuneComm.exe 21:00:34.0721 0x1380 WMZuneComm - ok 21:00:34.0741 0x1380 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\windows\System32\wpcsvc.dll 21:00:34.0801 0x1380 WPCSvc - ok 21:00:34.0821 0x1380 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\windows\system32\wpdbusenum.dll 21:00:34.0841 0x1380 WPDBusEnum - ok 21:00:34.0861 0x1380 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys 21:00:34.0861 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\ws2ifsl.sys. md5: 6BCC1D7D2FD2453957C5479A32364E52, sha256: E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 21:00:34.0861 0x1380 ws2ifsl - detected LockedFile.Multi.Generic ( 1 ) 21:00:37.0381 0x1380 Detect skipped due to KSN trusted 21:00:37.0381 0x1380 ws2ifsl - ok 21:00:37.0421 0x1380 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\windows\System32\wscsvc.dll 21:00:37.0481 0x1380 wscsvc - ok 21:00:37.0481 0x1380 WSearch - ok 21:00:37.0591 0x1380 [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv C:\windows\system32\wuaueng.dll 21:00:37.0671 0x1380 wuauserv - ok 21:00:37.0711 0x1380 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\windows\system32\drivers\WudfPf.sys 21:00:37.0711 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\WudfPf.sys. md5: AB886378EEB55C6C75B4F2D14B6C869F, sha256: D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 21:00:37.0711 0x1380 WudfPf - detected LockedFile.Multi.Generic ( 1 ) 21:00:40.0231 0x1380 Detect skipped due to KSN trusted 21:00:40.0231 0x1380 WudfPf - ok 21:00:40.0291 0x1380 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys 21:00:40.0291 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\WUDFRd.sys. md5: DDA4CAF29D8C0A297F886BFE561E6659, sha256: 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 21:00:40.0291 0x1380 WUDFRd - detected LockedFile.Multi.Generic ( 1 ) 21:00:42.0916 0x1380 Detect skipped due to KSN trusted 21:00:42.0916 0x1380 WUDFRd - ok 21:00:42.0956 0x1380 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\windows\System32\WUDFSvc.dll 21:00:43.0016 0x1380 wudfsvc - ok 21:00:43.0046 0x1380 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\windows\System32\wwansvc.dll 21:00:43.0096 0x1380 WwanSvc - ok 21:00:43.0126 0x1380 YouTubeAcceleratorService - ok 21:00:43.0166 0x1380 [ 522B95242E5F1A1F9D140EB872B925E5, FE88BB3E08C39F3A368AD2AF71DEF465A4F183596434F3F7F69EC7D0D229F811 ] zgdcat C:\windows\system32\DRIVERS\zgdcat.sys 21:00:43.0166 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\zgdcat.sys. md5: 522B95242E5F1A1F9D140EB872B925E5, sha256: FE88BB3E08C39F3A368AD2AF71DEF465A4F183596434F3F7F69EC7D0D229F811 21:00:43.0166 0x1380 zgdcat - detected LockedFile.Multi.Generic ( 1 ) 21:00:45.0806 0x1380 Detect skipped due to KSN trusted 21:00:45.0806 0x1380 zgdcat - ok 21:00:45.0846 0x1380 [ D7BFABCECF2024A9EF80536A9E61D6C1, FBB9A722E4A329FD59F4EE5FF6F964777AE35749FEDCBE2F18287D7D2E218EBF ] zgdcdiag C:\windows\system32\DRIVERS\zgdcdiag.sys 21:00:45.0846 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\zgdcdiag.sys. md5: D7BFABCECF2024A9EF80536A9E61D6C1, sha256: FBB9A722E4A329FD59F4EE5FF6F964777AE35749FEDCBE2F18287D7D2E218EBF 21:00:45.0846 0x1380 zgdcdiag - detected LockedFile.Multi.Generic ( 1 ) 21:00:48.0454 0x1380 Detect skipped due to KSN trusted 21:00:48.0454 0x1380 zgdcdiag - ok 21:00:48.0514 0x1380 [ CFF966288EBD8FE828921FCFA46833F0, 50A570753F6A711EE9EA93C9045858CFEEADE9AD5B0B9D8204E3C449EBFC2D31 ] zgdcmdm C:\windows\system32\DRIVERS\zgdcmdm.sys 21:00:48.0514 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\zgdcmdm.sys. md5: CFF966288EBD8FE828921FCFA46833F0, sha256: 50A570753F6A711EE9EA93C9045858CFEEADE9AD5B0B9D8204E3C449EBFC2D31 21:00:48.0514 0x1380 zgdcmdm - detected LockedFile.Multi.Generic ( 1 ) 21:00:54.0546 0x1380 Detect skipped due to KSN trusted 21:00:54.0546 0x1380 zgdcmdm - ok 21:00:54.0606 0x1380 [ 5CAEE3B9847AE1C56418C70118BA97CC, F3163CB41BF46D6E536A291841244FF9ED65E4A6C72CBAD675C6C2B28D562812 ] zgdcnet C:\windows\system32\DRIVERS\zgdcnet.sys 21:00:54.0606 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\zgdcnet.sys. md5: 5CAEE3B9847AE1C56418C70118BA97CC, sha256: F3163CB41BF46D6E536A291841244FF9ED65E4A6C72CBAD675C6C2B28D562812 21:00:54.0606 0x1380 zgdcnet - detected LockedFile.Multi.Generic ( 1 ) 21:00:57.0136 0x1380 Detect skipped due to KSN trusted 21:00:57.0136 0x1380 zgdcnet - ok 21:00:57.0196 0x1380 [ 512CB93710002AC699673B5043FAFFD6, 377F0AEA57A9BB8E14D5C2209C81D75C5031CFC38E47FA59C94A84787E5CF3C5 ] zgdcnmea C:\windows\system32\DRIVERS\zgdcnmea.sys 21:00:57.0196 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\DRIVERS\zgdcnmea.sys. md5: 512CB93710002AC699673B5043FAFFD6, sha256: 377F0AEA57A9BB8E14D5C2209C81D75C5031CFC38E47FA59C94A84787E5CF3C5 21:00:57.0196 0x1380 zgdcnmea - detected LockedFile.Multi.Generic ( 1 ) 21:00:59.0706 0x1380 Detect skipped due to KSN trusted 21:00:59.0706 0x1380 zgdcnmea - ok 21:01:00.0036 0x1380 [ 67B787C34FB2888D01B130AE007042D8, E44878E53F265C89F271B08B81C129105E42D1C78C14467B2D96E28A9A428B1A ] ZuneNetworkSvc C:\Program Files\Zune\ZuneNss.exe 21:01:00.0316 0x1380 ZuneNetworkSvc - ok 21:01:00.0386 0x1380 [ 4D89FC1C20CF655739EFAC5DA81A67BC, 788D0A5B9972ED6D80242C0C5E80AB0FAB44A708B896D5F724AC1559A291C8DD ] ZuneWlanCfgSvc C:\Program Files\Zune\ZuneWlanCfgSvc.exe 21:01:00.0406 0x1380 ZuneWlanCfgSvc - ok 21:01:00.0456 0x1380 [ 4918ECED4F73E1FED384E3BF98DC77D3, F34887FCE237AB100322CCE88BFB4502E8B83472DEE22D9C96B240D73208DA35 ] {ebd8d0c0-e022-4b76-a1f2-bc2963e3a147}Gw64 C:\windows\system32\drivers\{ebd8d0c0-e022-4b76-a1f2-bc2963e3a147}Gw64.sys 21:01:00.0456 0x1380 Suspicious file ( NoAccess ): C:\windows\system32\drivers\{ebd8d0c0-e022-4b76-a1f2-bc2963e3a147}Gw64.sys. md5: 4918ECED4F73E1FED384E3BF98DC77D3, sha256: F34887FCE237AB100322CCE88BFB4502E8B83472DEE22D9C96B240D73208DA35 21:01:00.0456 0x1380 {ebd8d0c0-e022-4b76-a1f2-bc2963e3a147}Gw64 - detected LockedFile.Multi.Generic ( 1 ) 21:01:03.0136 0x1380 Detect skipped due to KSN trusted 21:01:03.0146 0x1380 {ebd8d0c0-e022-4b76-a1f2-bc2963e3a147}Gw64 - ok 21:01:03.0146 0x1380 ================ Scan global =============================== 21:01:03.0216 0x1380 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\windows\system32\basesrv.dll 21:01:03.0246 0x1380 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll 21:01:03.0256 0x1380 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll 21:01:03.0286 0x1380 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\windows\system32\sxssrv.dll 21:01:03.0319 0x1380 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\windows\system32\services.exe 21:01:03.0329 0x1380 [ Global ] - ok 21:01:03.0329 0x1380 ================ Scan MBR ================================== 21:01:03.0339 0x1380 [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0 21:01:04.0324 0x1380 \Device\Harddisk0\DR0 - ok 21:01:04.0324 0x1380 ================ Scan VBR ================================== 21:01:04.0364 0x1380 [ AD6FBD2486A11D9B9D66CF6C415BC596 ] \Device\Harddisk0\DR0\Partition1 21:01:04.0374 0x1380 \Device\Harddisk0\DR0\Partition1 - ok 21:01:04.0374 0x1380 ================ Scan active images ======================== 21:01:04.0384 0x1380 [ 3E588B60EC061686BA05D33574A344C6, 19D2D863F95CCC4493A2328B6BEB04248B6A80F957532E58C1D1D868C19FDCCB ] C:\Windows\System32\drivers\crashdmp.sys 21:01:04.0384 0x1380 C:\Windows\System32\drivers\crashdmp.sys - ok 21:01:04.0384 0x1380 [ D469B77687E12FE43E344806740B624D, DFDD486FD040813BF4E5DDB504CF9E0BFBF6D4E540DDDA4829F9B675ACF63E89 ] C:\Windows\System32\drivers\iaStor.sys 21:01:04.0384 0x1380 C:\Windows\System32\drivers\iaStor.sys - ok 21:01:04.0384 0x1380 [ 814DB88F2641691575A455CF25354098, 79C50F0CD72612733217A0316BEFEA0B6D819C3159D9452EAB89AC26A18A0F89 ] C:\Windows\System32\drivers\dumpfve.sys 21:01:04.0384 0x1380 C:\Windows\System32\drivers\dumpfve.sys - ok 21:01:04.0394 0x1380 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] C:\Windows\System32\drivers\cdrom.sys 21:01:04.0394 0x1380 C:\Windows\System32\drivers\cdrom.sys - ok 21:01:04.0394 0x1380 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] C:\Windows\System32\drivers\null.sys 21:01:04.0394 0x1380 C:\Windows\System32\drivers\null.sys - ok 21:01:04.0404 0x1380 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] C:\Windows\System32\drivers\beep.sys 21:01:04.0404 0x1380 C:\Windows\System32\drivers\beep.sys - ok 21:01:04.0404 0x1380 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] C:\Windows\System32\drivers\vga.sys 21:01:04.0404 0x1380 C:\Windows\System32\drivers\vga.sys - ok 21:01:04.0414 0x1380 [ E7353D59C9842BC7299FAEB7E7E09340, C37ED1025E07BAC2F535DCFED6C6C509515D95722EADE5AF94F1FC5D8B1DC783 ] C:\Windows\System32\drivers\videoprt.sys 21:01:04.0414 0x1380 C:\Windows\System32\drivers\videoprt.sys - ok 21:01:04.0414 0x1380 [ FC438D1430B28618E2D0C7C332A710AD, 873957B202E454E2C8F625E5799F278CAC16EC5EEAEE2C33E2FE5D1FF0408CB2 ] C:\Windows\System32\drivers\watchdog.sys 21:01:04.0414 0x1380 C:\Windows\System32\drivers\watchdog.sys - ok 21:01:04.0414 0x1380 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] C:\Windows\System32\drivers\msfs.sys 21:01:04.0414 0x1380 C:\Windows\System32\drivers\msfs.sys - ok 21:01:04.0424 0x1380 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] C:\Windows\System32\drivers\npfs.sys 21:01:04.0424 0x1380 C:\Windows\System32\drivers\npfs.sys - ok 21:01:04.0424 0x1380 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] C:\Windows\System32\drivers\RDPCDD.sys 21:01:04.0424 0x1380 C:\Windows\System32\drivers\RDPCDD.sys - ok 21:01:04.0434 0x1380 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] C:\Windows\System32\drivers\RDPENCDD.sys 21:01:04.0434 0x1380 C:\Windows\System32\drivers\RDPENCDD.sys - ok 21:01:04.0434 0x1380 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] C:\Windows\System32\drivers\RDPREFMP.sys 21:01:04.0434 0x1380 C:\Windows\System32\drivers\RDPREFMP.sys - ok 21:01:04.0434 0x1380 [ 6F020A220388ECA0AB6062DC27BD16B6, 48655230E482DEB7B4B50EF05818EBB29CA61E780AEFCD9D31B02DE4DF9D9540 ] C:\Windows\System32\drivers\tdi.sys 21:01:04.0434 0x1380 C:\Windows\System32\drivers\tdi.sys - ok 21:01:04.0444 0x1380 [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] C:\Windows\System32\drivers\tdx.sys 21:01:04.0444 0x1380 C:\Windows\System32\drivers\tdx.sys - ok 21:01:04.0444 0x1380 [ 4918ECED4F73E1FED384E3BF98DC77D3, F34887FCE237AB100322CCE88BFB4502E8B83472DEE22D9C96B240D73208DA35 ] C:\Windows\System32\drivers\{ebd8d0c0-e022-4b76-a1f2-bc2963e3a147}Gw64.sys 21:01:04.0444 0x1380 C:\Windows\System32\drivers\{ebd8d0c0-e022-4b76-a1f2-bc2963e3a147}Gw64.sys - ok 21:01:04.0454 0x1380 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] C:\Windows\System32\drivers\netbt.sys 21:01:04.0454 0x1380 C:\Windows\System32\drivers\netbt.sys - ok 21:01:04.0454 0x1380 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] C:\Windows\System32\drivers\afd.sys 21:01:04.0454 0x1380 C:\Windows\System32\drivers\afd.sys - ok 21:01:04.0454 0x1380 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] C:\Windows\System32\drivers\wfplwf.sys 21:01:04.0454 0x1380 C:\Windows\System32\drivers\wfplwf.sys - ok 21:01:04.0464 0x1380 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] C:\Windows\System32\drivers\ws2ifsl.sys 21:01:04.0464 0x1380 C:\Windows\System32\drivers\ws2ifsl.sys - ok 21:01:04.0464 0x1380 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] C:\Windows\System32\drivers\netbios.sys 21:01:04.0464 0x1380 C:\Windows\System32\drivers\netbios.sys - ok 21:01:04.0474 0x1380 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] C:\Windows\System32\drivers\pacer.sys 21:01:04.0474 0x1380 C:\Windows\System32\drivers\pacer.sys - ok 21:01:04.0474 0x1380 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] C:\Windows\System32\drivers\vwififlt.sys 21:01:04.0474 0x1380 C:\Windows\System32\drivers\vwififlt.sys - ok 21:01:04.0474 0x1380 [ 9E4E65EA51E34647340BD6007467AC54, D4FD658250298AE52959009C7DB031A7D82E48088DB5D94E6D3F990058B9D75E ] C:\Windows\System32\drivers\tosrfcom.sys 21:01:04.0474 0x1380 C:\Windows\System32\drivers\tosrfcom.sys - ok 21:01:04.0484 0x1380 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] C:\Windows\System32\drivers\wanarp.sys 21:01:04.0484 0x1380 C:\Windows\System32\drivers\wanarp.sys - ok 21:01:04.0484 0x1380 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] C:\Windows\System32\drivers\termdd.sys 21:01:04.0484 0x1380 C:\Windows\System32\drivers\termdd.sys - ok 21:01:04.0494 0x1380 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] C:\Windows\System32\drivers\nsiproxy.sys 21:01:04.0494 0x1380 C:\Windows\System32\drivers\nsiproxy.sys - ok 21:01:04.0494 0x1380 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] C:\Windows\System32\drivers\rdbss.sys 21:01:04.0494 0x1380 C:\Windows\System32\drivers\rdbss.sys - ok 21:01:04.0494 0x1380 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] C:\Windows\System32\drivers\discache.sys 21:01:04.0494 0x1380 C:\Windows\System32\drivers\discache.sys - ok 21:01:04.0504 0x1380 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] C:\Windows\System32\drivers\mssmbios.sys 21:01:04.0504 0x1380 C:\Windows\System32\drivers\mssmbios.sys - ok 21:01:04.0504 0x1380 [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] C:\Windows\System32\drivers\csc.sys 21:01:04.0504 0x1380 C:\Windows\System32\drivers\csc.sys - ok 21:01:04.0504 0x1380 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] C:\Windows\System32\drivers\blbdrive.sys 21:01:04.0514 0x1380 C:\Windows\System32\drivers\blbdrive.sys - ok 21:01:04.0514 0x1380 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] C:\Windows\System32\drivers\dfsc.sys 21:01:04.0514 0x1380 C:\Windows\System32\drivers\dfsc.sys - ok 21:01:04.0514 0x1380 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] C:\Windows\System32\drivers\tunnel.sys 21:01:04.0514 0x1380 C:\Windows\System32\drivers\tunnel.sys - ok 21:01:04.0524 0x1380 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] C:\Windows\System32\drivers\intelppm.sys 21:01:04.0524 0x1380 C:\Windows\System32\drivers\intelppm.sys - ok 21:01:04.0524 0x1380 [ 1114ADFA7AA8F804C04E7D4735B22EED, 2B2AC5906FA48162CDEB44ECF96C04B9D563E1D1D4F8ACBD19AA6212D97DC851 ] C:\Windows\System32\drivers\atikmpag.sys 21:01:04.0524 0x1380 C:\Windows\System32\drivers\atikmpag.sys - ok 21:01:04.0534 0x1380 [ CAAAC014C5C56A69F710B5F1B836DE22, DA98EF2EBF9A7F180344A88CC2C74F69101E17BBAB58B1C46176FD6EE7AA2E6A ] C:\Windows\System32\ntdll.dll 21:01:04.0534 0x1380 C:\Windows\System32\ntdll.dll - ok 21:01:04.0534 0x1380 [ F0970A4BC8395659C22BF53D0FADF16F, 23BE3066D89A5ACBF8130899640D377476E78B6C3D19E2D13C32238464A83E21 ] C:\Windows\System32\smss.exe 21:01:04.0534 0x1380 C:\Windows\System32\smss.exe - ok 21:01:04.0544 0x1380 [ 50DBD80E1DAA40E6088EB3D2FF4395AC, 1610460E0FDE114D579016C8A8EE0AC8A026A8A7B10DAEB341A091DD2F46D7B0 ] C:\Windows\System32\drivers\atikmdag.sys 21:01:04.0544 0x1380 C:\Windows\System32\drivers\atikmdag.sys - ok 21:01:04.0544 0x1380 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93, 7BC847CE6C2D29C334F0D1600BBBDE3933FF45F6BEE5186F442E6270A3F9EC4E ] C:\Windows\System32\autochk.exe 21:01:04.0544 0x1380 C:\Windows\System32\autochk.exe - ok 21:01:04.0554 0x1380 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] C:\Windows\System32\drivers\dxgkrnl.sys 21:01:04.0554 0x1380 C:\Windows\System32\drivers\dxgkrnl.sys - ok 21:01:04.0554 0x1380 [ 1F04CFB79DD5FB7694468CE3FB3DCC31, A40C0BF6D1EC6C4281611A830EA7B22FEF523A3E197E5A8F59332D64E90376B6 ] C:\Windows\System32\drivers\dxgmms1.sys 21:01:04.0554 0x1380 C:\Windows\System32\drivers\dxgmms1.sys - ok 21:01:04.0554 0x1380 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] C:\Windows\System32\drivers\hdaudbus.sys 21:01:04.0554 0x1380 C:\Windows\System32\drivers\hdaudbus.sys - ok 21:01:04.0564 0x1380 [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] C:\Windows\System32\drivers\HECIx64.sys 21:01:04.0564 0x1380 C:\Windows\System32\drivers\HECIx64.sys - ok 21:01:04.0564 0x1380 [ 4E4FFB09D895AA000DD56D1404F69A7E, D999E04BB35780088480EAB322176570591A21E311D204BDCAB010A63B34D24C ] C:\Windows\System32\Wldap32.dll 21:01:04.0564 0x1380 C:\Windows\System32\Wldap32.dll - ok 21:01:04.0564 0x1380 [ 60633132A929C09FE78FAB16541F9E71, C7B60A4AAD8E0D9519D819A417D8A51383BF1DF571E5EF5A98A693DB0A8E0BE7 ] C:\Windows\System32\drivers\e1c62x64.sys 21:01:04.0564 0x1380 C:\Windows\System32\drivers\e1c62x64.sys - ok 21:01:04.0574 0x1380 [ 12FEB33791920678F8433701C822BCFD, 7D1AD944CF0532D5AF951ACCE064EA9288F068964603674854CD7658D2B96039 ] C:\Windows\System32\drivers\usbport.sys 21:01:04.0574 0x1380 C:\Windows\System32\drivers\usbport.sys - ok 21:01:04.0574 0x1380 [ 59034470B2564CA61ABC5F745DE1768B, 947D2CBEB501A6C53B89B971975D362013754BE28DABEE761AF72064E3CEA937 ] C:\Windows\System32\drivers\rimspe64.sys 21:01:04.0574 0x1380 C:\Windows\System32\drivers\rimspe64.sys - ok 21:01:04.0584 0x1380 [ FBAF25883CAB9B9E00857927CA2B08C6, CF6D7FF54D8C22315A46024227B53EAE0F73A472971AB38EA4883383C0DAC682 ] C:\Windows\System32\drivers\risdxc64.sys 21:01:04.0584 0x1380 C:\Windows\System32\drivers\risdxc64.sys - ok 21:01:04.0584 0x1380 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] C:\Windows\System32\drivers\usbehci.sys 21:01:04.0584 0x1380 C:\Windows\System32\drivers\usbehci.sys - ok 21:01:04.0584 0x1380 [ 6121E2C97A9BBA75DF3E794E708F3E92, 87854BEC1DFCCE55B48F2ACA2656DD36216C29A441012F18C1F5F77CCA29C8DE ] C:\Windows\System32\drivers\rixdpe64.sys 21:01:04.0584 0x1380 C:\Windows\System32\drivers\rixdpe64.sys - ok 21:01:04.0594 0x1380 [ B2931C83CFB12A3223A47B180473AE1A, D9089E0D4AB82F4F5FCD6A82F446504E7968EA6A09B55190F68EB8A09F6CFE78 ] C:\Windows\System32\drivers\athrx.sys 21:01:04.0594 0x1380 C:\Windows\System32\drivers\athrx.sys - ok 21:01:04.0594 0x1380 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] C:\Windows\System32\drivers\i8042prt.sys 21:01:04.0594 0x1380 C:\Windows\System32\drivers\i8042prt.sys - ok 21:01:04.0604 0x1380 [ 7BDEC000D56D485021D9C1E63C2F81CA, 7F1303FD0371AF8715BFC38433B730C797170AEF10C7DB845B7B547DA8DBB5D5 ] C:\Windows\System32\drivers\nusb3xhc.sys 21:01:04.0604 0x1380 C:\Windows\System32\drivers\nusb3xhc.sys - ok 21:01:04.0604 0x1380 [ FFA06EF43987ED0DD42AD59B260C0C78, 260518D5E077E55E0F2099037DBEFA93016FD4D4655456DDB3147AF9CBE7BF6B ] C:\Windows\System32\drivers\usbd.sys 21:01:04.0604 0x1380 C:\Windows\System32\drivers\usbd.sys - ok 21:01:04.0604 0x1380 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] C:\Windows\System32\drivers\vwifibus.sys 21:01:04.0604 0x1380 C:\Windows\System32\drivers\vwifibus.sys - ok 21:01:04.0614 0x1380 [ 8397FA2ABA73E696F574655A24B49D91, 8F00D4D1B229401D798EA438F5D5D5A1CEE4BC88D9275609E21C8AA1D91CAD87 ] C:\Windows\System32\drivers\Apfiltr.sys 21:01:04.0614 0x1380 C:\Windows\System32\drivers\Apfiltr.sys - ok 21:01:04.0614 0x1380 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] C:\Windows\System32\drivers\kbdclass.sys 21:01:04.0614 0x1380 C:\Windows\System32\drivers\kbdclass.sys - ok 21:01:04.0614 0x1380 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] C:\Windows\System32\drivers\mouclass.sys 21:01:04.0614 0x1380 C:\Windows\System32\drivers\mouclass.sys - ok 21:01:04.0624 0x1380 [ FD542B661BD22FA69CA789AD0AC58C29, 75FFAF1834B1E22DF37608ED451F161052FF1FE3C681B4E20A68DCA92CC7FD8C ] C:\Windows\System32\drivers\tdcmdpst.sys 21:01:04.0624 0x1380 C:\Windows\System32\drivers\tdcmdpst.sys - ok 21:01:04.0624 0x1380 [ E7A2061ADF0F4D430FECDA1E8D6B7BA6, D2D2D1E80C937DB6C887347E8BF496A8A7D5E2F6A3BF85C993B0F6978F418595 ] C:\Windows\System32\urlmon.dll 21:01:04.0624 0x1380 C:\Windows\System32\urlmon.dll - ok 21:01:04.0634 0x1380 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] C:\Windows\System32\drivers\CmBatt.sys 21:01:04.0634 0x1380 C:\Windows\System32\drivers\CmBatt.sys - ok 21:01:04.0634 0x1380 [ F5E3AC4CBCD154EE80849B21887FD0B0, 7D68AF88F1B01BCA6456FBAEB91580419A49A77D31EFC0BA6A1C50301899BA03 ] C:\Windows\System32\drivers\tosrfec.sys 21:01:04.0634 0x1380 C:\Windows\System32\drivers\tosrfec.sys - ok 21:01:04.0634 0x1380 [ 9C7191F4B2E49BFF47A6C1144B5923FA, DF4E663499946F4E68B7528CA399574D1EB69797FF81F681943B84F3E5E6A40E ] C:\Windows\System32\drivers\TVALZFL.sys 21:01:04.0634 0x1380 C:\Windows\System32\drivers\TVALZFL.sys - ok 21:01:04.0644 0x1380 [ 2347ABBD13BADA65826FDAB4CAAFE357, EA11668ECC7F92287C5B570DBF5629A80269E79AC256F5AF0984D8B270010BAE ] C:\Windows\System32\drivers\btfilter.sys 21:01:04.0644 0x1380 C:\Windows\System32\drivers\btfilter.sys - ok 21:01:04.0644 0x1380 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] C:\Windows\System32\drivers\CompositeBus.sys 21:01:04.0644 0x1380 C:\Windows\System32\drivers\CompositeBus.sys - ok 21:01:04.0654 0x1380 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] C:\Windows\System32\drivers\usbscan.sys 21:01:04.0654 0x1380 C:\Windows\System32\drivers\usbscan.sys - ok 21:01:04.0654 0x1380 [ 24FBF5CC5C04150073C315A7C83521EE, 581BD5F15B5E57B3BAA762E421FFD859FDA46DDB8515C2A7AAFF208D784E906C ] C:\Windows\System32\drivers\ks.sys 21:01:04.0654 0x1380 C:\Windows\System32\drivers\ks.sys - ok 21:01:04.0654 0x1380 [ 663962900E7FEA522126BA287715BB4A, 95CE12CA11E705C293BE4E18845581037D819A7EC812349BCAF4EABC8E7087B1 ] C:\Windows\System32\drivers\PGEffect.sys 21:01:04.0654 0x1380 C:\Windows\System32\drivers\PGEffect.sys - ok 21:01:04.0664 0x1380 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] C:\Windows\System32\drivers\agilevpn.sys 21:01:04.0664 0x1380 C:\Windows\System32\drivers\agilevpn.sys - ok 21:01:04.0664 0x1380 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] C:\Windows\System32\drivers\ksthunk.sys 21:01:04.0664 0x1380 C:\Windows\System32\drivers\ksthunk.sys - ok 21:01:04.0674 0x1380 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] C:\Windows\System32\drivers\rasl2tp.sys 21:01:04.0674 0x1380 C:\Windows\System32\drivers\rasl2tp.sys - ok 21:01:04.0674 0x1380 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] C:\Windows\System32\drivers\ndistapi.sys 21:01:04.0674 0x1380 C:\Windows\System32\drivers\ndistapi.sys - ok 21:01:04.0674 0x1380 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] C:\Windows\System32\drivers\ndiswan.sys 21:01:04.0674 0x1380 C:\Windows\System32\drivers\ndiswan.sys - ok 21:01:04.0684 0x1380 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] C:\Windows\System32\drivers\raspppoe.sys 21:01:04.0684 0x1380 C:\Windows\System32\drivers\raspppoe.sys - ok 21:01:04.0684 0x1380 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] C:\Windows\System32\drivers\raspptp.sys 21:01:04.0684 0x1380 C:\Windows\System32\drivers\raspptp.sys - ok 21:01:04.0694 0x1380 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] C:\Windows\System32\drivers\rassstp.sys 21:01:04.0694 0x1380 C:\Windows\System32\drivers\rassstp.sys - ok 21:01:04.0694 0x1380 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] C:\Windows\System32\drivers\rdpbus.sys 21:01:04.0694 0x1380 C:\Windows\System32\drivers\rdpbus.sys - ok 21:01:04.0694 0x1380 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] C:\Windows\System32\drivers\swenum.sys 21:01:04.0694 0x1380 C:\Windows\System32\drivers\swenum.sys - ok 21:01:04.0704 0x1380 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] C:\Windows\System32\drivers\umbus.sys 21:01:04.0704 0x1380 C:\Windows\System32\drivers\umbus.sys - ok 21:01:04.0704 0x1380 [ 044FE45FFD6AD40E3BBBE60B7F41BABE, A1688A5E6E0F7037C850699462C2655006A7D873C97F9AB406C59D81749B6F09 ] C:\Windows\System32\nsi.dll 21:01:04.0704 0x1380 C:\Windows\System32\nsi.dll - ok 21:01:04.0704 0x1380 [ B938AF16A521C913791C6F7AFF032757, 3D0B64F23C3C932E31936874E513D74BA668401516E482E029D690E78184C498 ] C:\Windows\System32\oleaut32.dll 21:01:04.0704 0x1380 C:\Windows\System32\oleaut32.dll - ok 21:01:04.0714 0x1380 [ C431EAF5CAA1C82CAC2534A2EAB348A3, ADDF850128DC675E67FABA9A3D0D27E684F01F733962CA22927BB94503549E44 ] C:\Windows\System32\msctf.dll 21:01:04.0714 0x1380 C:\Windows\System32\msctf.dll - ok 21:01:04.0714 0x1380 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] C:\Windows\System32\drivers\usbhub.sys 21:01:04.0714 0x1380 C:\Windows\System32\drivers\usbhub.sys - ok 21:01:04.0724 0x1380 [ 0EBC9D13CD96C15B1B18D8678A609E4B, B10896DE16B0C102DFB3E73A6C11A1982C5B428015DAE1F8776BCEF94A0F75C6 ] C:\Windows\System32\drivers\nusb3hub.sys 21:01:04.0724 0x1380 C:\Windows\System32\drivers\nusb3hub.sys - ok 21:01:04.0724 0x1380 [ E0D3CD5841E5C7BE7B94BA946AF1E498, 4EAE1B226255623DA41A047633994D6902F6D4CA5757BF5D85E227378336227F ] C:\Windows\System32\drivers\drmk.sys 21:01:04.0724 0x1380 C:\Windows\System32\drivers\drmk.sys - ok 21:01:04.0724 0x1380 [ 1E0B4CBBA91C6B041A14ECC2186F7E24, 63039A317F906454A0652704DA2D646658A148B9B55BFB5D2F4B27997F357DF9 ] C:\Windows\System32\drivers\portcls.sys 21:01:04.0724 0x1380 C:\Windows\System32\drivers\portcls.sys - ok 21:01:04.0734 0x1380 [ 116D03E901246AC7AF006121E1E22842, 4C28AE9BDEF84F7E6C800ACD34EA1297E4A59BAE309E213D4C93CC5A2DA522EC ] C:\Windows\System32\drivers\RtHDMIVX.sys 21:01:04.0734 0x1380 C:\Windows\System32\drivers\RtHDMIVX.sys - ok 21:01:04.0734 0x1380 [ 51E8DB3618D106A2B2849A00839CC452, 3F70156E600F9ED715F81DB2542D022274CDA40213663A0AB4EEB44FEB9EF8ED ] C:\Windows\System32\drivers\RTKVHD64.sys 21:01:04.0734 0x1380 C:\Windows\System32\drivers\RTKVHD64.sys - ok 21:01:04.0734 0x1380 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] C:\Windows\System32\drivers\ndproxy.sys 21:01:04.0734 0x1380 C:\Windows\System32\drivers\ndproxy.sys - ok 21:01:04.0744 0x1380 [ 8021F63311797085949FA387F7C83583, 7781994B9F06784807D32FD5A93C5406A441908870B1328BBDA9D15C5DD98C1B ] C:\Windows\System32\drivers\tosporte.sys 21:01:04.0744 0x1380 C:\Windows\System32\drivers\tosporte.sys - ok 21:01:04.0744 0x1380 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] C:\Windows\System32\drivers\usbccgp.sys 21:01:04.0744 0x1380 C:\Windows\System32\drivers\usbccgp.sys - ok 21:01:04.0744 0x1380 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] C:\Windows\System32\drivers\usbvideo.sys 21:01:04.0744 0x1380 C:\Windows\System32\drivers\usbvideo.sys - ok 21:01:04.0754 0x1380 [ 597C3699384E53CC59587ED50CCE5CA2, 4F61E9B5BEB3BD1634D733983381E516664BD7E250DF4B0150B168E05EFD652A ] C:\Windows\System32\drivers\hidclass.sys 21:01:04.0754 0x1380 C:\Windows\System32\drivers\hidclass.sys - ok 21:01:04.0754 0x1380 [ 856E76B3641746ABBC2946BED1372098, FD93CC7F72560F72CA49AD5609C079E25B8A3A4802E72B127B63A9E7B4884710 ] C:\Windows\System32\drivers\hidparse.sys 21:01:04.0754 0x1380 C:\Windows\System32\drivers\hidparse.sys - ok 21:01:04.0754 0x1380 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] C:\Windows\System32\drivers\hidusb.sys 21:01:04.0754 0x1380 C:\Windows\System32\drivers\hidusb.sys - ok 21:01:04.0764 0x1380 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] C:\Windows\System32\drivers\mouhid.sys 21:01:04.0764 0x1380 C:\Windows\System32\drivers\mouhid.sys - ok 21:01:04.0764 0x1380 [ 7A0048693F98460FF537BE31C741B927, 6CD73974D8A9215A5B538C7F32E1C85F6912D38A0B70DB10015621C4E1670980 ] C:\Windows\System32\drivers\tosrfusb.sys 21:01:04.0764 0x1380 C:\Windows\System32\drivers\tosrfusb.sys - ok 21:01:04.0774 0x1380 [ 09CF82C0068C7CFF7E2B3797BE7F5CC2, 0CBC9CD203EC6F08A9472B92CCC011D61F4F7DE41AD6BE9AFFBEE991ED4E1020 ] C:\Windows\System32\drivers\tosrfbd.sys 21:01:04.0774 0x1380 C:\Windows\System32\drivers\tosrfbd.sys - ok 21:01:04.0774 0x1380 [ 7D2467D3EB9BAA4B69AE4A28C83DE57A, 38D2C64559EF4598025474643EC0D506F0107822AC6205E8C4D26B76EB28177D ] C:\Windows\System32\drivers\Tosrfhid.sys 21:01:04.0774 0x1380 C:\Windows\System32\drivers\Tosrfhid.sys - ok 21:01:04.0774 0x1380 [ 63A580C88CFAF72A92550940054569EF, A66C89123D1833446ACC31D5CF536B0D0EC24D2F805C022A637596CF98429D9F ] C:\Windows\System32\advapi32.dll 21:01:04.0774 0x1380 C:\Windows\System32\advapi32.dll - ok 21:01:04.0784 0x1380 [ F947D57534E01E3CA597BCF2AD8AE65B, 498A87443CE3344F82B19D4903F128337B5B3DA49D3C208F796394DA6B3A8946 ] C:\Windows\System32\rpcrt4.dll 21:01:04.0784 0x1380 C:\Windows\System32\rpcrt4.dll - ok 21:01:04.0784 0x1380 [ EAF32CB8C1F810E4715B4DFBE785C7FF, DB6AD07FDED42433E669508AB73FAFF6DAFF04575D6F1D016FE3EB6ECEC4DD5D ] C:\Windows\System32\shlwapi.dll 21:01:04.0784 0x1380 C:\Windows\System32\shlwapi.dll - ok 21:01:04.0794 0x1380 [ AA2C08CE85653B1A0D2E4AB407FA176C, 83DFD0C119B20AEDB07114C9D1CF9CE2DFA938D0F1070256B0591A9E2C3997FA ] C:\Windows\System32\imm32.dll 21:01:04.0794 0x1380 C:\Windows\System32\imm32.dll - ok 21:01:04.0794 0x1380 [ F7CE0C81C545364020ED8203CF0A633E, 24B47A7492B7048096AF87E26786E8108455ADBD1A374B6A0466DE008505B8A9 ] C:\Windows\System32\difxapi.dll 21:01:04.0794 0x1380 C:\Windows\System32\difxapi.dll - ok 21:01:04.0794 0x1380 [ 860528C9E50AB84935843B23A80E665E, 1BBC4FC384A2C9B2E30DC8D84C435A6A8E1993F074CDBF0A6A3AC774A3E62AD4 ] C:\Windows\System32\gdi32.dll 21:01:04.0794 0x1380 C:\Windows\System32\gdi32.dll - ok 21:01:04.0804 0x1380 [ B4F29F65AD3114051F01E9403346047F, 7EB58545211C51E95B3F45C47C1F7CCE05B707D168E7C20F46D36E19EE3D8DFC ] C:\Windows\System32\imagehlp.dll 21:01:04.0804 0x1380 C:\Windows\System32\imagehlp.dll - ok 21:01:04.0804 0x1380 [ 28C0B5024F5C5A438E78B188CFC81B7F, AB81FB63F2908CE316B45609077ACBD85F4B2AAD1606B1E9030F06DB82EDDFAD ] C:\Windows\System32\normaliz.dll 21:01:04.0804 0x1380 C:\Windows\System32\normaliz.dll - ok 21:01:04.0804 0x1380 [ D87E1E59C73C1F98D5DED5B3850C40F5, 536419BFF9F877D4314B5D0C045D9A6E729489C389863FADF07E382050BC84FD ] C:\Windows\System32\psapi.dll 21:01:04.0804 0x1380 C:\Windows\System32\psapi.dll - ok 21:01:04.0814 0x1380 [ 088CF6AFCD5CDD44E40C0ACDE3C1A5E0, AC6AFCAE3A58AAABC972B3D6A1ED383A59910C689F38D9D4A059A0A535BA1039 ] C:\Windows\System32\usp10.dll 21:01:04.0814 0x1380 C:\Windows\System32\usp10.dll - ok 21:01:04.0814 0x1380 [ 982B871A25B5078093FAD82D0AB0E3FC, 01AB245B8E72E0A0A213911650737A8EEA284F09FFB8F9AB7EBEB70248D10149 ] C:\Windows\System32\iertutil.dll 21:01:04.0814 0x1380 C:\Windows\System32\iertutil.dll - ok 21:01:04.0814 0x1380 [ 4BBFA57F594F7E8A8EDC8F377184C3F0, 9F3AC5DEA5A6250C3DBB97AF79C81C0A48429486521F807355A1D7D3D861B75F ] C:\Windows\System32\ws2_32.dll 21:01:04.0814 0x1380 C:\Windows\System32\ws2_32.dll - ok 21:01:04.0824 0x1380 [ 25983DE69B57142039AC8D95E71CD9C9, A677DA7EBCBCB6073D27E8A38809F51E971E83ED379BC599AAAD6EF4216348DA ] C:\Windows\System32\clbcatq.dll 21:01:04.0824 0x1380 C:\Windows\System32\clbcatq.dll - ok 21:01:04.0824 0x1380 [ 6C60B5ACA7442EFB794082CDACFC001C, FC1D9124856A70FF232EF3057D66BEE803295847624CE23B4D0217F23AF52C75 ] C:\Windows\System32\ole32.dll 21:01:04.0824 0x1380 C:\Windows\System32\ole32.dll - ok 21:01:04.0834 0x1380 [ C391FC68282A000CDF953F8B6B55D2EF, 1CB0DAB84545D9FDEA5A7865A1E7132CEAC91DECF8B100285B63098D7B09E584 ] C:\Windows\System32\msvcrt.dll 21:01:04.0834 0x1380 C:\Windows\System32\msvcrt.dll - ok 21:01:04.0834 0x1380 [ 83404DCBCE4925B6A5A77C5170F46D86, D669614D0B4461DB244AD99FBE1BA92CEB9B4ED5EC8E987E23764E77D9AC7074 ] C:\Windows\System32\sechost.dll 21:01:04.0834 0x1380 C:\Windows\System32\sechost.dll - ok 21:01:04.0834 0x1380 [ 9835E63E09F824D22B689D2BB789BAB9, 5BCFFAFB894D69FBCDDB91E64D30A356F4BD57098E8B4C51B98AFAF6581BDB63 ] C:\Windows\System32\comdlg32.dll 21:01:04.0834 0x1380 C:\Windows\System32\comdlg32.dll - ok 21:01:04.0844 0x1380 [ D2A513EE880D71BDE7F0257F38B9D019, 7BDBFEA312061C0498E4C09EF5E4B3AAA23309E7448028F67EAA6F8F7188E871 ] C:\Windows\System32\kernel32.dll 21:01:04.0844 0x1380 C:\Windows\System32\kernel32.dll - ok 21:01:04.0844 0x1380 [ FE70103391A64039A921DBFFF9C7AB1B, F7D219D75037BC98F6C69143B00AB6000A31F8B5E211E0AF514F4F4B681522A0 ] C:\Windows\System32\user32.dll 21:01:04.0844 0x1380 C:\Windows\System32\user32.dll - ok 21:01:04.0854 0x1380 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5, 12130837D7F89A2C7E9D25747A8E5B9001E0A38D545178B49B450C23AE62664A ] C:\Windows\System32\setupapi.dll 21:01:04.0854 0x1380 C:\Windows\System32\setupapi.dll - ok 21:01:04.0854 0x1380 [ AE57F6C7AB3ED244B5F14151C4EA0057, 60BAF0909C60B2387E2972EBBC77140E9E982549F0746EE26AF4EFB4E9FD77A4 ] C:\Windows\System32\shell32.dll 21:01:04.0854 0x1380 C:\Windows\System32\shell32.dll - ok 21:01:04.0854 0x1380 [ 4AF089160FE082E5EA5C4AA72782DCA2, E455BD9B35BF034E98D68FF98A68BE5ECE9A96D05152B7CABEFDDE77A35E9BFE ] C:\Windows\System32\wininet.dll 21:01:04.0854 0x1380 C:\Windows\System32\wininet.dll - ok 21:01:04.0864 0x1380 [ 796B47A4B82EF1C39F13435B88834C48, AFC3E89476BAAD8A71663F0DB8D15E00FF9D131F1306A2F69D728E3AD1184602 ] C:\Windows\System32\lpk.dll 21:01:04.0864 0x1380 C:\Windows\System32\lpk.dll - ok 21:01:04.0864 0x1380 [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A, 445C2857398252756FD25BB94DAFCCEFF573DE55F1F8BF9094C191F409FE6437 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll 21:01:04.0864 0x1380 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok 21:01:04.0874 0x1380 [ 7FC292D1527EDFEBA2576B6789DE6AB5, A954CD41F5EA3C169D3183CC6CCF36DD157ED384836FDACC763E82F866C0246F ] C:\Windows\System32\wintrust.dll 21:01:04.0874 0x1380 C:\Windows\System32\wintrust.dll - ok 21:01:04.0874 0x1380 [ 72723D3E4781BADC62C3180C137E7B23, 0BDA5292928578C5DA79C761E15B8A892B9D4A3DA26D3635E714797C653CF492 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll 21:01:04.0874 0x1380 C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok 21:01:04.0874 0x1380 [ 9094039A00485F71C4DE64BF51F64C46, 4ACFEF4C747ADF806A4FDEDDFD9CC48168DFB05075306C77D3F3927749DD7484 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll 21:01:04.0874 0x1380 C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok 21:01:04.0884 0x1380 [ 9028D1621C43DF8DFBD1C76860412A11, A1D48D9B33180BDE50D2FA9BB07E9520B7B7788C39B3AABB4A06AE4B1AACA755 ] C:\Windows\System32\comctl32.dll 21:01:04.0884 0x1380 C:\Windows\System32\comctl32.dll - ok 21:01:04.0884 0x1380 [ 2477A28081BDAEE622CF045ACF8EE124, 00A09CAF9129E84FEEA98FA03CE9012C9F961B64FEE15C4F268822C0F82ACC3C ] C:\Windows\System32\cfgmgr32.dll 21:01:04.0884 0x1380 C:\Windows\System32\cfgmgr32.dll - ok 21:01:04.0884 0x1380 [ 08835F1772B58DE4C3AAF604760276A5, 2D9E296E167203246319C67C433CD5FF2A4857F3A2339593386529CF43AFD573 ] C:\Windows\System32\crypt32.dll 21:01:04.0884 0x1380 C:\Windows\System32\crypt32.dll - ok 21:01:04.0894 0x1380 [ 06FEC9E8117103BB1141A560E98077DA, C5E61B11DDBBBBBA3D9488970524F0975EA5FBDF16E2FA31F579F8BFA48353B1 ] C:\Windows\System32\devobj.dll 21:01:04.0894 0x1380 C:\Windows\System32\devobj.dll - ok 21:01:04.0894 0x1380 [ 851BB346CD59D9B3BC8854384C7DD5C3, 0CA1BCBDA6CB8CAC1186B3BE13C3937EDF46264FDFFCEBDF94C7EB10DE957DC6 ] C:\Windows\System32\KernelBase.dll 21:01:04.0894 0x1380 C:\Windows\System32\KernelBase.dll - ok 21:01:04.0894 0x1380 [ F49E92B50CED5C9F1725D3C0329FD933, 6155FA4D8242F07FC578FF746890C2EE19FC3D6A20ED8AE4C6F021DB2DAC184F ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll 21:01:04.0904 0x1380 C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok 21:01:04.0904 0x1380 [ 0E6FBF19D9DFBB77316C23DF91F8A101, 680F88E1BC55EA3342AACE6F2E3511BF877AC8F03276D028FEE84EEFE8B5611A ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll 21:01:04.0904 0x1380 C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok 21:01:04.0904 0x1380 [ 7A17485DC7D8A7AC81321A42CD034519, 88D8705FA901793FC8C1CFD0175E49A6502BF0FC94A066BA573D2FD13AA5F04A ] C:\Windows\System32\userenv.dll 21:01:04.0904 0x1380 C:\Windows\System32\userenv.dll - ok 21:01:04.0914 0x1380 [ 64A4AB126E24FD3F58EBE64852773DB5, ED425BBC91EB8BEF54C363036A770C551C97EF324F1AE31049CA750D0E2D6776 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll 21:01:04.0914 0x1380 C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok 21:01:04.0914 0x1380 [ 884415BD4269C02EAF8E2613BF85500D, EFE771709EC942694FD206AC8D0A48ED7DCD35036F074268E4AECD68AC982CEA ] C:\Windows\System32\msasn1.dll 21:01:04.0914 0x1380 C:\Windows\System32\msasn1.dll - ok 21:01:04.0924 0x1380 [ 2C942733A5983DD4502219FF37C7EBC7, 34B20B6B0D7274E4B5B783F1D2345BC3DD9888964D5C2C65712F041A00CF5B45 ] C:\Windows\System32\profapi.dll 21:01:04.0924 0x1380 C:\Windows\System32\profapi.dll - ok 21:01:04.0924 0x1380 [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\SysWOW64\normaliz.dll 21:01:04.0924 0x1380 C:\Windows\SysWOW64\normaliz.dll - ok 21:01:04.0924 0x1380 [ BF24D6F2ED97FE830BFD52B246F98E67, 6BBF4C4221A245462EF653798F6B416EEB12594AD1CB4E8BC8908A8CB2F53384 ] C:\Windows\System32\drivers\dxapi.sys 21:01:04.0924 0x1380 C:\Windows\System32\drivers\dxapi.sys - ok 21:01:04.0934 0x1380 [ 93C055B6AAD76360A60CB7E59A491531, 721C33C7D8E3EE58EF2665E9CDDA3B648E8DAF6A0C413EB2F1039CC91600AA7A ] C:\Windows\System32\win32k.sys 21:01:04.0934 0x1380 C:\Windows\System32\win32k.sys - ok 21:01:04.0934 0x1380 [ 216BABD555BC550952320EEA89C25DDF, 1BBB92415280032CD18F361382A69D0D91266AAD56FC88A99C804B0053743D72 ] C:\Windows\System32\csrsrv.dll 21:01:04.0934 0x1380 C:\Windows\System32\csrsrv.dll - ok 21:01:04.0934 0x1380 [ 60C2862B4BF0FD9F582EF344C2B1EC72, CB1C6018FC5C15483AC5BB96E5C2E2E115BB0C0E1314837D77201BAB37E8C03A ] C:\Windows\System32\csrss.exe 21:01:04.0934 0x1380 C:\Windows\System32\csrss.exe - ok 21:01:04.0944 0x1380 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\System32\basesrv.dll 21:01:04.0944 0x1380 C:\Windows\System32\basesrv.dll - ok 21:01:04.0944 0x1380 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\System32\winsrv.dll 21:01:04.0944 0x1380 C:\Windows\System32\winsrv.dll - ok 21:01:04.0944 0x1380 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] C:\Windows\System32\drivers\monitor.sys 21:01:04.0944 0x1380 C:\Windows\System32\drivers\monitor.sys - ok 21:01:04.0954 0x1380 [ F29FE765E1448EF371CFE05BFAC74ADB, F251581222D78543272FD4B14A6A59F4B0E0CC44A5FCBCF56DE4CA5783F78A75 ] C:\Windows\System32\tsddd.dll 21:01:04.0954 0x1380 C:\Windows\System32\tsddd.dll - ok 21:01:04.0954 0x1380 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\System32\sxssrv.dll 21:01:04.0954 0x1380 C:\Windows\System32\sxssrv.dll - ok 21:01:04.0954 0x1380 [ 94355C28C1970635A31B3FE52EB7CEBA, C4E98F07170CEC69CACDD5CEDB8927E48A2A299CB1B8CDA87526E768AF6174F0 ] C:\Windows\System32\wininit.exe 21:01:04.0954 0x1380 C:\Windows\System32\wininit.exe - ok 21:01:04.0964 0x1380 [ 401329D20D284FAF745F47294D6248D1, 3870389012C37A74F857F37F9F0348C369B3BF6D9A29EABC7CDBAEA413006BCF ] C:\Windows\System32\KBDPL1.DLL 21:01:04.0964 0x1380 C:\Windows\System32\KBDPL1.DLL - ok 21:01:04.0964 0x1380 [ C2A8CB1275ECB85D246A9ECC02A728E3, 3603FADCA0060BD201148F9D59E4E2627F024609A6463AB525B5D1AD17BDCD10 ] C:\Windows\System32\RpcRtRemote.dll 21:01:04.0964 0x1380 C:\Windows\System32\RpcRtRemote.dll - ok 21:01:04.0974 0x1380 [ 943F527DF79E6B400104341AA7023C75, 53C7B9426181D3D172E6B1A07E6DF8A0CB8FCA27D3A03CE5F544D3209B5F4651 ] C:\Windows\System32\cdd.dll 21:01:04.0974 0x1380 C:\Windows\System32\cdd.dll - ok 21:01:04.0974 0x1380 [ 2F0C8662DFA99A5958845AC824371BD6, 59163CB8BB8A7CB41B8C151785256375B04A18AEC78A4B136698FFB7E1C86008 ] C:\Windows\System32\KBDPL.DLL 21:01:04.0974 0x1380 C:\Windows\System32\KBDPL.DLL - ok 21:01:04.0984 0x1380 [ 331EFB5B729C3DB265F985D857B6F574, F83A806604B963E0A4F0E36D94C4BF802E0E26410C6C70B2DF97F6DE9C4CB896 ] C:\Windows\System32\KBDUSX.DLL 21:01:04.0984 0x1380 C:\Windows\System32\KBDUSX.DLL - ok 21:01:04.0984 0x1380 [ 9CEAD32E79A62150FE9F8557E58E008B, AFE4C1725EE94D7DE0749AE1495A4E5CC33C369F29B2A589DA66FFE27FF9777E ] C:\Windows\System32\sxs.dll 21:01:04.0984 0x1380 C:\Windows\System32\sxs.dll - ok 21:01:04.0984 0x1380 [ B26B1801356760841C3BC69F9F91537F, 83B9DF333E36C09E81D44E12AE5BE14650126FDA0CF4A0EA853BF40C5780EF81 ] C:\Windows\System32\WlS0WndH.dll 21:01:04.0984 0x1380 C:\Windows\System32\WlS0WndH.dll - ok 21:01:04.0994 0x1380 [ 784FA3DF338E2E8F5F0389D6FAC428AF, 9C8AA0CFDEB9E38AAF8EB08626070E0F0364F4F8A793CFE3532EC6C007980C34 ] C:\Windows\System32\cryptbase.dll 21:01:04.0994 0x1380 C:\Windows\System32\cryptbase.dll - ok 21:01:04.0994 0x1380 [ 90499F3163A9F815CF196A205EA3CD5D, 29B4ED3795CEC1177EB367132914CE21C194CDEC5DB9DC923FD928C85E94D821 ] C:\Windows\System32\apphelp.dll 21:01:04.0994 0x1380 C:\Windows\System32\apphelp.dll - ok 21:01:04.0994 0x1380 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\System32\services.exe 21:01:04.0994 0x1380 C:\Windows\System32\services.exe - ok 21:01:05.0004 0x1380 [ C4C1B73FC2FF151BA08E1EAFDE2A2FAF, 0194263A4C3F9D1674BAF348FF3B3E4FA14BF8B018FBB51C16A2DE8095642565 ] C:\Windows\System32\lsasrv.dll 21:01:05.0004 0x1380 C:\Windows\System32\lsasrv.dll - ok 21:01:05.0004 0x1380 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] C:\Windows\System32\lsass.exe 21:01:05.0004 0x1380 C:\Windows\System32\lsass.exe - ok 21:01:05.0004 0x1380 [ 9662EE182644511439F1C53745DC1C88, D205B2C163E78AB42A5D67D7664EF6B75EA0374FF0924467D624F9DB0611F0AD ] C:\Windows\System32\lsm.exe 21:01:05.0004 0x1380 C:\Windows\System32\lsm.exe - ok 21:01:05.0014 0x1380 [ 8098627D0AA1706D69C5AF3F74332ABB, 9582F6162A8405DC568FFBEA08A9090FE92FE2C9DB640077BD7F23AC4FABF700 ] C:\Windows\System32\sspisrv.dll 21:01:05.0014 0x1380 C:\Windows\System32\sspisrv.dll - ok 21:01:05.0014 0x1380 [ C072064F95579C0D6D86AF5B3DC53192, CF4A088DF97F4D4963BEAB9CBDBF69FEA2D4773159054A0AF8B8DFFDF83E18DA ] C:\Windows\System32\sspicli.dll 21:01:05.0014 0x1380 C:\Windows\System32\sspicli.dll - ok 21:01:05.0024 0x1380 [ BBCDF350817BA86416C0F06B6981BE8D, D064438F97852B9BD6015C8B19377C61C671E0969E09506B8359FE7B1F373A61 ] C:\Windows\System32\scesrv.dll 21:01:05.0024 0x1380 C:\Windows\System32\scesrv.dll - ok 21:01:05.0024 0x1380 [ E914A50A151DFFE63D3935226DB5E2C1, 7DCCE4060344E1C771679F1C20378A0BEB3C1F06DB684072F07B98921A62A299 ] C:\Windows\System32\scext.dll 21:01:05.0024 0x1380 C:\Windows\System32\scext.dll - ok 21:01:05.0024 0x1380 [ 39312B37C5FE5138F99680A49ACD3AEA, B9566B4117FBBECF77A0D3F49E9DF302088B9D483F817720B22E4F9C5754264A ] C:\Windows\System32\secur32.dll 21:01:05.0024 0x1380 C:\Windows\System32\secur32.dll - ok 21:01:05.0034 0x1380 [ A744BA6E04C8AA4592818178DBF89521, 9E7C85D842DF16F9B8FED7B06AF309B5ECCBFD465F5552347D4C3F1FEFDC6F7A ] C:\Windows\System32\samsrv.dll 21:01:05.0034 0x1380 C:\Windows\System32\samsrv.dll - ok 21:01:05.0034 0x1380 [ 3A9C9BAF610B0DD4967086040B3B62A9, E8E9A0F42B1EE7806EDCEED08AA024D037215D06CA317E3678BD5364AD513D23 ] C:\Windows\System32\srvcli.dll 21:01:05.0034 0x1380 C:\Windows\System32\srvcli.dll - ok 21:01:05.0034 0x1380 [ 68083118797CAF30FB2EA3E71494D67E, 5F1BCDFCB00A20CD60CBC70A2FD97405EF0F7173DD0E404BBA7B06D39DB37364 ] C:\Windows\System32\sysntfy.dll 21:01:05.0034 0x1380 C:\Windows\System32\sysntfy.dll - ok 21:01:05.0044 0x1380 [ DEE7267C5D232A3B816866872CE199E6, A1994FD37667C52E7CBF873514C190DA61A3D1349786D187BFAE0006F61799AE ] C:\Windows\System32\wmsgapi.dll 21:01:05.0044 0x1380 C:\Windows\System32\wmsgapi.dll - ok 21:01:05.0044 0x1380 [ 3A061472B38233BAFF9CFEFF2E49C46B, DF29B14C8D22A8A16AA336A09A6152E2C7FCA6CAF4E76F0C5DCB55BEF9D00515 ] C:\Windows\System32\cryptdll.dll 21:01:05.0044 0x1380 C:\Windows\System32\cryptdll.dll - ok 21:01:05.0044 0x1380 [ 3C073B0C596A0AF84933E7406766B040, 4698BBA678F553E15AD4B07AD7FB236281F872DEFEE97BFD637114476C8F97B3 ] C:\Windows\System32\wevtapi.dll 21:01:05.0044 0x1380 C:\Windows\System32\wevtapi.dll - ok 21:01:05.0054 0x1380 [ 7FBEBD2229EA5FD48D41B199EC2D541C, A465975D445A8D50CAF3EF29BD33354B320D11173C127BE30D5EBBFF7008CDCE ] C:\Windows\System32\authz.dll 21:01:05.0054 0x1380 C:\Windows\System32\authz.dll - ok 21:01:05.0054 0x1380 [ 86FE1B1F8FD42CD0DB641AB1CDB13093, 8C4BB4415105CE82FFFE658879EAE9D259A24C0F6DFC7D25507352DC99241BE2 ] C:\Windows\System32\cngaudit.dll 21:01:05.0054 0x1380 C:\Windows\System32\cngaudit.dll - ok 21:01:05.0054 0x1380 [ 109CC0DF72CC07A6CB59D2995255A1DA, 973863F6BAEDD8C0CF50662E9889041EBCEF40C7EAC31A81E6CE2AF2040B6173 ] C:\Windows\System32\ncrypt.dll 21:01:05.0054 0x1380 C:\Windows\System32\ncrypt.dll - ok 21:01:05.0064 0x1380 [ B9A95365E52F421A20E1501935FADDA5, DDB4CB575139233EFAF2C59B7E9B04AF36BBCCC63190181F3B2A7E6BFC86E77E ] C:\Windows\System32\bcrypt.dll 21:01:05.0064 0x1380 C:\Windows\System32\bcrypt.dll - ok 21:01:05.0064 0x1380 [ 02B64609F865A39365FF88580DF11738, 2F676B93898E1B6131AF6227BB7AB731EB9C29477F9BD4C2C60F0FC1E35CD968 ] C:\Windows\System32\msprivs.dll 21:01:05.0064 0x1380 C:\Windows\System32\msprivs.dll - ok 21:01:05.0064 0x1380 [ C6505DE3561537BA1004D638C2F93F2F, 3E4FDF374B1A9E43A8F61FD2D79E0515390ECABFDAF72C4BD44A7B6429039AF6 ] C:\Windows\System32\netjoin.dll 21:01:05.0074 0x1380 C:\Windows\System32\netjoin.dll - ok 21:01:05.0074 0x1380 [ 50532FCD7ECF02DD169CE5C485F02534, 8EE5D9D0EA53DC72BCC300692E521ACADD56AB09BFA3E78149D8B5A90648512C ] C:\Windows\System32\negoexts.dll 21:01:05.0074 0x1380 C:\Windows\System32\negoexts.dll - ok 21:01:05.0074 0x1380 [ 8A8CB073A4B9F9D97CFA8CA9C1C851CE, 85A2C6378F65973F1825A7F4D2B0370C8C7F80675F3B594D49423B20E0805F5D ] C:\Windows\System32\kerberos.dll 21:01:05.0074 0x1380 C:\Windows\System32\kerberos.dll - ok 21:01:05.0084 0x1380 [ D9A61370B40ABAA9F509113504CD8425, 9C310313A3C37B17F9C2A0312A2150C3D787A153A5A1E3BF67DC743AD54576ED ] C:\Windows\System32\cryptsp.dll 21:01:05.0084 0x1380 C:\Windows\System32\cryptsp.dll - ok 21:01:05.0084 0x1380 [ 9A9F9F1A77D6A80EE28B57664F00013E, 0D441638E086EF1342FCDC43E826BF9E9CC6B2E8AE100D89BFC70163F987DE91 ] C:\Windows\System32\mswsock.dll 21:01:05.0084 0x1380 C:\Windows\System32\mswsock.dll - ok 21:01:05.0084 0x1380 [ E1BB958681BE311E7CFF06CFEC5F1F2B, C2FDFC6C7350788A07DCB99A6A54FB9A96A6A578013DF46D0E5094A3CBF6E862 ] C:\Windows\System32\atmfd.dll 21:01:05.0084 0x1380 C:\Windows\System32\atmfd.dll - ok 21:01:05.0094 0x1380 [ 47C48C705F4F1EFC99B50B43AE4301FE, 286625CFD9B6CDE8050F8CDF9F3C1C58CD4B575082C88B8D0630CBA2D58D480D ] C:\Windows\System32\msv1_0.dll 21:01:05.0094 0x1380 C:\Windows\System32\msv1_0.dll - ok 21:01:05.0094 0x1380 [ EC7CBFF96B05ECF3D366355B3C64ADCF, F69ED45EBEDCA9CF000AC03281F0EC2C351F98513FBA90E63394E4E561D6C7A2 ] C:\Windows\System32\wship6.dll 21:01:05.0094 0x1380 C:\Windows\System32\wship6.dll - ok 21:01:05.0094 0x1380 [ AA339DD8BB128EF66660DFBBB59043D3, 76D9F849AFDDA38E04549EB67B4163478776F1B6EF46434168278F84FEB8FC5C ] C:\Windows\System32\netlogon.dll 21:01:05.0094 0x1380 C:\Windows\System32\netlogon.dll - ok 21:01:05.0104 0x1380 [ 492D07D79E7024CA310867B526D9636D, F2FE647AB85C6C3C1AA3DF4BCE6E4D42B9676C9D837E11388C235AE8DB20044F ] C:\Windows\System32\dnsapi.dll 21:01:05.0104 0x1380 C:\Windows\System32\dnsapi.dll - ok 21:01:05.0104 0x1380 [ 8FFE297B8449386E7B6851458B6E474E, E149B37E11091D69D926242517E5655596594A6F01FEF06EB65D6BA5B354E326 ] C:\Windows\System32\logoncli.dll 21:01:05.0104 0x1380 C:\Windows\System32\logoncli.dll - ok 21:01:05.0104 0x1380 [ A71B81AC2C14ABA013CCF1225D9E3E36, A78F6A9D0952999553DC390C3E69B4B1AE41A2874B4B1CC077C248545B64A57D ] C:\Windows\System32\schannel.dll 21:01:05.0104 0x1380 C:\Windows\System32\schannel.dll - ok 21:01:05.0114 0x1380 [ 55F0CF40479A1FC89CFA578909A540F2, 376303A5CE17D52675D408D1F8AF12A18CBE82F0BD3433C29CC90EFA8268A512 ] C:\Windows\System32\wdigest.dll 21:01:05.0114 0x1380 C:\Windows\System32\wdigest.dll - ok 21:01:05.0114 0x1380 [ 5D8874A8C11DDDDE29E12DE0E2013493, 3E9A57137BF622AF83E3E4D58971E2C0200559CCA7545D16CF263AA03EE9C7D2 ] C:\Windows\System32\rsaenh.dll 21:01:05.0114 0x1380 C:\Windows\System32\rsaenh.dll - ok 21:01:05.0114 0x1380 [ DF30FC54FFF79BC744B22A4850A3CF92, 23BCBB950FA77AC5E74D5678DB53BE3CE1211BF77F6BE6D3B772D542EC5EF9CE ] C:\Windows\System32\TSpkg.dll 21:01:05.0114 0x1380 C:\Windows\System32\TSpkg.dll - ok 21:01:05.0124 0x1380 [ 7DBA64AD70C2E2481C68D9E0F7CD7840, 52EE57E9A8D3C28336BB8E7536ECE77A9FB4BAF93B9651F9A897F79F873D66BE ] C:\Windows\System32\LIVESSP.DLL 21:01:05.0124 0x1380 C:\Windows\System32\LIVESSP.DLL - ok 21:01:05.0124 0x1380 [ 1306E6A1BF4D506CD687DF9F947270F2, 3ED566F618D90BCCB3C76BA976911536FFC5631F7A6A91BF322628F8AAE498B4 ] C:\Windows\System32\pku2u.dll 21:01:05.0124 0x1380 C:\Windows\System32\pku2u.dll - ok 21:01:05.0124 0x1380 [ D6C7780A364C6BBACFA796BAB9F1B374, 3B5ED1A030BFD0BB73D4FFCD67A6A0B8501EF70293F223EFAA12F430ADF270F9 ] C:\Windows\System32\bcryptprimitives.dll 21:01:05.0124 0x1380 C:\Windows\System32\bcryptprimitives.dll - ok 21:01:05.0134 0x1380 [ 336BA030AB7B05300CB0B5C6AFB27176, DC5C445D603EA4AD19D9F39656889E2C64726202C8C784EA0202D80B1FC7FB57 ] C:\Windows\System32\credssp.dll 21:01:05.0134 0x1380 C:\Windows\System32\credssp.dll - ok 21:01:05.0134 0x1380 [ 90BDEFC5DF334E5100EAA781D798DE1A, F48B650D811B6D57D2252E326C0C9CC74534BE9D510E7D3403F91D1C5C36281E ] C:\Windows\System32\efslsaext.dll 21:01:05.0134 0x1380 C:\Windows\System32\efslsaext.dll - ok 21:01:05.0134 0x1380 [ ED78427259134C63ED69804D2132B86C, F6F51B8B35881ABCA5580ED111AAC80E466E6474ABAE31EC8BE46C23EDCA77B2 ] C:\Windows\System32\scecli.dll 21:01:05.0134 0x1380 C:\Windows\System32\scecli.dll - ok 21:01:05.0144 0x1380 [ 7CC7DF5B654DA579613F811D8C637E29, 70EAC059C1ED814810C75DBB9F4D188428CB942FFD8869D692158D384EB6BB35 ] C:\Windows\System32\ubpm.dll 21:01:05.0144 0x1380 C:\Windows\System32\ubpm.dll - ok 21:01:05.0144 0x1380 [ C23B6D9D16FD86F446BE607CA18389D9, 331FA37B5A059FE85C5D1368A42293A7BAE2581F3F1F15B48364644136066C14 ] C:\Windows\System32\winsta.dll 21:01:05.0144 0x1380 C:\Windows\System32\winsta.dll - ok 21:01:05.0144 0x1380 [ 8CEBD9D0A0A879CDE9F36F4383B7CAEA, 7AA73B8E7D4D700C164D0410DCF84EA1CCCB0F7DD513E47A2EF0DAE5F16CAE45 ] C:\Windows\System32\winlogon.exe 21:01:05.0144 0x1380 C:\Windows\System32\winlogon.exe - ok 21:01:05.0154 0x1380 [ 6F68F63794097E54F36474ED4384B759, 745E45B1E868C395C033C3178B423D2BE121DA0ABBF859553ADF1A7D383099B7 ] C:\Windows\System32\svchost.exe 21:01:05.0154 0x1380 C:\Windows\System32\svchost.exe - ok 21:01:05.0154 0x1380 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] C:\Windows\System32\umpnpmgr.dll 21:01:05.0154 0x1380 C:\Windows\System32\umpnpmgr.dll - ok 21:01:05.0164 0x1380 [ CD1B5AD07E5F7FEF30E055DCC9E96180, 63C58551F32B0B09377F64A6AE1FA81AF93B8A707A57A8C18722086906AD3046 ] C:\Windows\System32\devrtl.dll 21:01:05.0164 0x1380 C:\Windows\System32\devrtl.dll - ok 21:01:05.0164 0x1380 [ E6EB44ABAAF1F330119F854856C53EBE, 77279972FFBFA984578DD4F17EB615F5D2D93590AF3A9FEFEFDB9128206C9887 ] C:\Windows\System32\SPInf.dll 21:01:05.0164 0x1380 C:\Windows\System32\SPInf.dll - ok 21:01:05.0174 0x1380 [ 9C9307C95671AC962F3D6EB3A4A89BAE, D1433791C9B8BCEEAD8937EC18D33E89E4E2012B5975228A8500FD141BC30078 ] C:\Windows\System32\gpapi.dll 21:01:05.0174 0x1380 C:\Windows\System32\gpapi.dll - ok 21:01:05.0174 0x1380 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] C:\Windows\System32\umpo.dll 21:01:05.0174 0x1380 C:\Windows\System32\umpo.dll - ok 21:01:05.0174 0x1380 [ F6C011B46FAEEF33536B2E80F48B5CBE, BDD149D3D6F9F6C8F6F34C311219BE5618CEEFBC7D35E37473A47F1D5D015067 ] C:\Windows\System32\pcwum.dll 21:01:05.0174 0x1380 C:\Windows\System32\pcwum.dll - ok 21:01:05.0184 0x1380 [ 716175021BDA290504CE434273F666BC, FA18CA2D8A5F4335E051E2933147D3C1E7308F7D446E2AEB6596CDEF6E2AFC88 ] C:\Windows\System32\powrprof.dll 21:01:05.0184 0x1380 C:\Windows\System32\powrprof.dll - ok 21:01:05.0184 0x1380 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] C:\Windows\System32\drivers\luafv.sys 21:01:05.0184 0x1380 C:\Windows\System32\drivers\luafv.sys - ok 21:01:05.0184 0x1380 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] C:\Windows\System32\rpcss.dll 21:01:05.0184 0x1380 C:\Windows\System32\rpcss.dll - ok 21:01:05.0194 0x1380 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] C:\Windows\System32\RpcEpMap.dll 21:01:05.0194 0x1380 C:\Windows\System32\RpcEpMap.dll - ok 21:01:05.0194 0x1380 [ 16E964ABF6D1E0F0CC7822FCA9BA754D, 0E461387ACFD641DA22EE542A3C68AF5F7D3A7F967D974E3B198143D461ABE39 ] C:\Windows\System32\wshqos.dll 21:01:05.0194 0x1380 C:\Windows\System32\wshqos.dll - ok 21:01:05.0194 0x1380 [ 31559F3244C6BC00A52030CAA83B6B91, B2025742B5F0025ACE9821D5722DE3F997EEEAB21D2F381C9E307882DF422579 ] C:\Windows\System32\WSHTCPIP.DLL 21:01:05.0194 0x1380 C:\Windows\System32\WSHTCPIP.DLL - ok 21:01:05.0204 0x1380 [ F0D5494D8B177C37E16966262F5D0F68, DD63427DFFD9DD2BEC8336F6AD1BEFE347012331631DC5FEC65E83B1EACDBC67 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe 21:01:05.0204 0x1380 C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok 21:01:05.0204 0x1380 [ 19A47185AE12414F918A074048CB9EBC, DFEA9E3F74CDF4216E08C3C72A04F8217B0025E6026E9098645F6C2659906015 ] C:\Program Files\Microsoft Security Client\MpSvc.dll 21:01:05.0204 0x1380 C:\Program Files\Microsoft Security Client\MpSvc.dll - ok 21:01:05.0204 0x1380 [ 9AD9E06F8656F296D91FAE8EE5B95A27, 53384747D5864D699BCC4F48E0A5E656430EDAA65DCDAB4B11EA68FC7106459E ] C:\Windows\System32\FirewallAPI.dll 21:01:05.0204 0x1380 C:\Windows\System32\FirewallAPI.dll - ok 21:01:05.0214 0x1380 [ 715F03B4C7223349768013EA95D9E5B7, 09AB0535A54C2E2962F0FD06988D99060F8CECA39B07AC00A63204C773B95893 ] C:\Windows\System32\LogonUI.exe 21:01:05.0214 0x1380 C:\Windows\System32\LogonUI.exe - ok 21:01:05.0214 0x1380 [ 5DFFC12BF7DB53BDB401804A3C3A475E, DEACB4BFF904AD77389A8326BFCF12A490E1A7A10B68049D253552F1FC630FA3 ] C:\Windows\System32\authui.dll 21:01:05.0214 0x1380 C:\Windows\System32\authui.dll - ok 21:01:05.0224 0x1380 [ 94E026870A55AAEAFF7853C1754091E9, B2F5D5629D12BDFA98DBED3898368F37D9009C7531B6909C7285A2C11C9A0F93 ] C:\Windows\System32\version.dll 21:01:05.0224 0x1380 C:\Windows\System32\version.dll - ok 21:01:05.0224 0x1380 [ 685D87C61FEA48ADDAE4C5352B30E27D, 7CDEB3D277EAECBCE436C06BA9813ECE2223ABEFF8B61D53D5272339B57851D4 ] C:\Program Files\Microsoft Security Client\MpClient.dll 21:01:05.0224 0x1380 C:\Program Files\Microsoft Security Client\MpClient.dll - ok 21:01:05.0224 0x1380 [ BD3674BE7FC9D8D3732C83E8499576ED, E6716A5895D629263A4D21959F48840429AB6F4B55A5FA2663EE5E86C9CA2BF1 ] C:\Windows\System32\wtsapi32.dll 21:01:05.0224 0x1380 C:\Windows\System32\wtsapi32.dll - ok 21:01:05.0234 0x1380 [ 81A2008198A6E450E4BC7EF361154C8A, E9976934EBCD36B08BDE4210062227BF491AE29D16ADD98D2C765DFCBCCC7F7F ] C:\Windows\System32\cryptui.dll 21:01:05.0234 0x1380 C:\Windows\System32\cryptui.dll - ok 21:01:05.0234 0x1380 [ 1F4492FE41767CDB8B89D17655847CDD, 184547FAC0C3D7148FAA3F601929A7089DE393BD19929A137DAD743331DD3F77 ] C:\Windows\System32\ntmarta.dll 21:01:05.0234 0x1380 C:\Windows\System32\ntmarta.dll - ok 21:01:05.0234 0x1380 [ 7FA8FDC2C2A27817FD0F624E78D3B50C, 7B63F6AA2CD6D4D07EA3C595B868B1A0749BB11620027A2BD9B935E3055481E4 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll 21:01:05.0234 0x1380 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok 21:01:05.0244 0x1380 [ 5B3EBFC3DA142324B388DDCC4465E1FF, 5D58642305311F9BC9B779C9598BFC4E7433B3EA58404BF1FF9466838A2328C7 ] C:\Windows\System32\samlib.dll 21:01:05.0244 0x1380 C:\Windows\System32\samlib.dll - ok 21:01:05.0244 0x1380 [ 4E9C2DB10F7E6AE91BF761139D4B745B, 8F63F78294F5585D599A114AF449DCC447CCB239D0F0B490BFE6B34A2146E730 ] C:\Windows\System32\shacct.dll 21:01:05.0244 0x1380 C:\Windows\System32\shacct.dll - ok 21:01:05.0244 0x1380 [ F06BB4E336EA57511FDBAFAFCC47DE62, BE43EC62548E9FF89A9495A1722E22DBB76EEC3764F86E64057B636F27D15765 ] C:\Windows\System32\propsys.dll 21:01:05.0244 0x1380 C:\Windows\System32\propsys.dll - ok 21:01:05.0254 0x1380 [ E6737687B7587339D1A6473117159F40, 9F2FAA2A729F98C8633C147ABD333B8EECB5A37A45E5D5ED469140222CB189D6 ] C:\Program Files\Microsoft Security Client\EppManifest.dll 21:01:05.0254 0x1380 C:\Program Files\Microsoft Security Client\EppManifest.dll - ok 21:01:05.0254 0x1380 [ 99E91E6E6E97AFC2348ECBF161FAA0D2, 29AE6742F51D7F6D6C5924ECA78010536E542C92345DFF6561860E6FC33FD320 ] C:\Windows\System32\atiesrxx.exe 21:01:05.0254 0x1380 C:\Windows\System32\atiesrxx.exe - ok 21:01:05.0254 0x1380 [ 79B27F0DB10D1FF517F02F792830E538, 703025147FFBA95B865993F0AA7A1EFD769535FEDEFD305005ADFCCFAFDB61BC ] C:\Program Files\Microsoft Security Client\MpCommu.dll 21:01:05.0254 0x1380 C:\Program Files\Microsoft Security Client\MpCommu.dll - ok 21:01:05.0264 0x1380 [ D29E998E8277666982B4F0303BF4E7AF, 4F19AB5DC173E278EBE45832F6CEAA40E2DF6A2EDDC81B2828122442FE5D376C ] C:\Windows\System32\uxtheme.dll 21:01:05.0264 0x1380 C:\Windows\System32\uxtheme.dll - ok 21:01:05.0264 0x1380 [ 58F4493BF748A3A89689997B7BD00E95, EC5DEEC73E357C7C87B001275C4E635011A9CF39419F2B86E2C2B8D7E388C551 ] C:\Windows\System32\winhttp.dll 21:01:05.0264 0x1380 C:\Windows\System32\winhttp.dll - ok 21:01:05.0264 0x1380 [ A9A87481B1A6589898C1DAB37C03E4AB, 803DB46E9FEE4E45B63A13A8CE3E589D7498532B8A7D8C3424E210E6A9AAC61F ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_2b283fd671e9bf4d\GdiPlus.dll 21:01:05.0264 0x1380 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_2b283fd671e9bf4d\GdiPlus.dll - ok 21:01:05.0274 0x1380 [ 603EBD34E216C5654A2D774EAC98D278, ACE0171BB780DB2C1B1A8BF6FA8CF51C529D7E09141FA504C7199AF764FD9A36 ] C:\Windows\System32\webio.dll 21:01:05.0274 0x1380 C:\Windows\System32\webio.dll - ok 21:01:05.0274 0x1380 [ 6011714C8C5C55CBFFAD24D61E879FBD, 75D615082A1C71C6ED3ABB49EDAF660EE538D112CF79B9C8AF0A583D1CE1BBB0 ] C:\Windows\System32\wevtsvc.dll 21:01:05.0274 0x1380 C:\Windows\System32\wevtsvc.dll - ok 21:01:05.0284 0x1380 [ 1AAA3704C352767FA96FBCB2F44420FA, C492CA0D7CCEE0D0A69CC9632C67EEABD08A77FB1E1522DFA3F7303E09983FE0 ] C:\Program Files\Microsoft Security Client\MpRTP.dll 21:01:05.0284 0x1380 C:\Program Files\Microsoft Security Client\MpRTP.dll - ok 21:01:05.0284 0x1380 [ 6439D1E559D08BD8A1465A8943357053, 0E300508C22D12FBA3BE566B722F574CBE1B4A1A305356B92B8EA8B86267071B ] C:\Windows\System32\drivers\MpFilter.sys 21:01:05.0284 0x1380 C:\Windows\System32\drivers\MpFilter.sys - ok 21:01:05.0284 0x1380 [ F3D202F53A222D5F6944D459B73CF967, E9F1D48EB333D32331BCFD0348FE07BEE7D5352292E6020571DA395F596AFFE7 ] C:\Windows\System32\fltLib.dll 21:01:05.0284 0x1380 C:\Windows\System32\fltLib.dll - ok 21:01:05.0294 0x1380 [ CCE3B423254296E4E1C3C52AB504108F, 045EE134F1A1A6C00628F964DDB882A6E3893017025ECA291B01C2870579EDA9 ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll 21:01:05.0294 0x1380 C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok 21:01:05.0294 0x1380 [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] C:\Windows\System32\audiosrv.dll 21:01:05.0294 0x1380 C:\Windows\System32\audiosrv.dll - ok 21:01:05.0304 0x1380 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] C:\Windows\System32\profsvc.dll 21:01:05.0304 0x1380 C:\Windows\System32\profsvc.dll - ok 21:01:05.0304 0x1380 [ 78A1E65207484B7F8D3217507745F47C, 35F413ADB9D157F3666DD15DD58104D629CD9143198A1AB914B73A4A3C9903DD ] C:\Windows\System32\avrt.dll 21:01:05.0304 0x1380 C:\Windows\System32\avrt.dll - ok 21:01:05.0304 0x1380 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] C:\Windows\System32\FntCache.dll 21:01:05.0304 0x1380 C:\Windows\System32\FntCache.dll - ok 21:01:05.0304 0x1380 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] C:\Windows\System32\mmcss.dll 21:01:05.0304 0x1380 C:\Windows\System32\mmcss.dll - ok 21:01:05.0314 0x1380 [ 58F87BF5659C8EBC61EB439C916F2F9A, FA242E44E7657D07C4D2A2C3808D860AFB53CDF81AFF5B1CE7F88A13BF02CE0A ] C:\Windows\System32\adtschema.dll 21:01:05.0314 0x1380 C:\Windows\System32\adtschema.dll - ok 21:01:05.0314 0x1380 [ 227E2C382A1E02F8D4965E664D3BBE43, 1CFF20A8BF87ACE4FA4935EBEED72BFB1A1FE902A754899E2F50798D67DF5642 ] C:\Windows\System32\MMDevAPI.dll 21:01:05.0314 0x1380 C:\Windows\System32\MMDevAPI.dll - ok 21:01:05.0314 0x1380 [ 3CB6A7286422C72C34DAB54A5DFF1A34, 98D21EFFF511E407336A226420701E82554DA01FA05661303836B6860D63749D ] C:\Windows\System32\dui70.dll 21:01:05.0314 0x1380 C:\Windows\System32\dui70.dll - ok 21:01:05.0324 0x1380 [ 934CFB51F412768B04440A3AF9A043F9, 7FBC94D796B9D574D6D3E24C76556F03EA422B14060332266E9A48E90F8CAE92 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4ED82FD5-EE1A-4F1A-9BF3-F435C74809E1}\mpengine.dll 21:01:05.0324 0x1380 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4ED82FD5-EE1A-4F1A-9BF3-F435C74809E1}\mpengine.dll - ok 21:01:05.0324 0x1380 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] C:\Windows\System32\wlansvc.dll 21:01:05.0324 0x1380 C:\Windows\System32\wlansvc.dll - ok 21:01:05.0334 0x1380 [ 50544D04AD845C43130B70212EC05CCD, B2E6B558DE7D273512226685FF53ED17C9B4BF81B739FBCA5D3FC82DF8D2BCF7 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll 21:01:05.0334 0x1380 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok 21:01:05.0334 0x1380 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] C:\Windows\System32\drivers\fltMgr.sys 21:01:05.0334 0x1380 C:\Windows\System32\drivers\fltMgr.sys - ok 21:01:05.0334 0x1380 [ 8CCDE014A4CDF84564E03ACE064CA753, DD663029B2EB7B12FDB00FCE403D8326141E540E3B9CE84CD5871473D3E2E2CF ] C:\Windows\System32\duser.dll 21:01:05.0334 0x1380 C:\Windows\System32\duser.dll - ok 21:01:05.0344 0x1380 [ D7F1EF374A90709B31591823B002F918, 05FD2837C9B03D14BB2A969C1AD77CAEF047D93DC5D0F6C2ACBF0888E8F7B359 ] C:\Windows\System32\SndVolSSO.dll 21:01:05.0344 0x1380 C:\Windows\System32\SndVolSSO.dll - ok 21:01:05.0344 0x1380 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] C:\Windows\System32\netprofm.dll 21:01:05.0344 0x1380 C:\Windows\System32\netprofm.dll - ok 21:01:05.0344 0x1380 [ D5CCA1453B98A5801E6D5FF0FF89DC6C, 85F2C2480AAC31B6092187B431A562D79D4CFB1324F925C85055ABAB2483264B ] C:\Windows\System32\audiodg.exe 21:01:05.0344 0x1380 C:\Windows\System32\audiodg.exe - ok 21:01:05.0354 0x1380 [ DA1B7075260F3872585BFCDD668C648B, 3E10EF6E1A5C341B478322CB78A0AB7BFC70AD8023779B8B4542A7CB4CA756AB ] C:\Windows\System32\dwmapi.dll 21:01:05.0354 0x1380 C:\Windows\System32\dwmapi.dll - ok 21:01:05.0354 0x1380 [ 896F15A6434D93EDB42519D5E18E6B50, 9263F0CEC58D45EBE3FB9C3061FB9392C55A7933B84B4592E6EE13CFC86D5A50 ] C:\Windows\System32\hid.dll 21:01:05.0354 0x1380 C:\Windows\System32\hid.dll - ok 21:01:05.0354 0x1380 [ A3DB3C17EE6CAE65D53602B4E80BCCBC, D802A7C6161F937DC42A6E45FE1BB2C8272819F92C294C180EBCDF8FF72CBFDC ] C:\Windows\System32\PSHED.DLL 21:01:05.0354 0x1380 C:\Windows\System32\PSHED.DLL - ok 21:01:05.0364 0x1380 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] C:\Windows\System32\MPSSVC.dll 21:01:05.0364 0x1380 C:\Windows\System32\MPSSVC.dll - ok 21:01:05.0364 0x1380 [ 6F8B48F3D343E4B186AB6A9E302B7E16, 54DB52FC56509E61DF68BD251B3286E6CBE1A91D9BC4D950940A61FE2DA04DF8 ] C:\Windows\System32\xmllite.dll 21:01:05.0364 0x1380 C:\Windows\System32\xmllite.dll - ok 21:01:05.0364 0x1380 [ A9A0BFD706B3A24C403EEFEB0790D011, 5936CE9774B36BC3D05578D05EE9A80C27CE11E0D807930B47815126C78F42BB ] C:\Windows\System32\WindowsCodecs.dll 21:01:05.0364 0x1380 C:\Windows\System32\WindowsCodecs.dll - ok 21:01:05.0374 0x1380 [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] C:\Windows\System32\cscsvc.dll 21:01:05.0374 0x1380 C:\Windows\System32\cscsvc.dll - ok 21:01:05.0374 0x1380 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] C:\Windows\System32\gpsvc.dll 21:01:05.0374 0x1380 C:\Windows\System32\gpsvc.dll - ok 21:01:05.0374 0x1380 [ B0945E538CF906BBDDC5A11C8EE868CC, 5F3459F6512918835F7C9400905EC7C1FAEAA7114E0D28C522040C359E3B93F7 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll 21:01:05.0374 0x1380 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok 21:01:05.0384 0x1380 [ 58775492FFD419248B08325E583C527F, DBB013971F5894F25C222C2D4D50A29DB6DF3C413792EE9CCC1A9E6D85469093 ] C:\Windows\System32\atl.dll 21:01:05.0384 0x1380 C:\Windows\System32\atl.dll - ok 21:01:05.0384 0x1380 [ 46BB91A169B9B31FF44EB04C48EC1D41, 8115B533D3A5BE07633FA54FA8847E3DEC00C5BEB193CF2FBE88428D23E2B3D6 ] C:\Windows\System32\nlaapi.dll 21:01:05.0384 0x1380 C:\Windows\System32\nlaapi.dll - ok 21:01:05.0384 0x1380 [ 29910D50542B1AA0F162EF3339C61B6D, 018F0922384A5757390652865BB2DF876E9DA08B0858BC619B41D2CD14533ED4 ] C:\Windows\System32\PeerDist.dll 21:01:05.0384 0x1380 C:\Windows\System32\PeerDist.dll - ok 21:01:05.0394 0x1380 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] C:\Windows\System32\themeservice.dll 21:01:05.0394 0x1380 C:\Windows\System32\themeservice.dll - ok 21:01:05.0394 0x1380 [ A77BE7CB3222B4FB0AC6C71D1C2698D4, 73566223914BF670DF6B5931FA213E546713531B10391ED65B5256BBD7ABDE7F ] C:\Windows\System32\dsrole.dll 21:01:05.0394 0x1380 C:\Windows\System32\dsrole.dll - ok 21:01:05.0394 0x1380 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] C:\Windows\System32\es.dll 21:01:05.0394 0x1380 C:\Windows\System32\es.dll - ok 21:01:05.0404 0x1380 [ BE097F5BB10F9079FCEB2DC4E7E20F02, 90A88986C8C5F30FB153EC803FEDA6572B2C2630A6C9578FCC017800692694D5 ] C:\Windows\System32\slc.dll 21:01:05.0404 0x1380 C:\Windows\System32\slc.dll - ok 21:01:05.0404 0x1380 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB, 018CB95A43CEA2063EA24691C71D51EF60D522C21502ABA8AD93876363D4B857 ] C:\Windows\System32\taskschd.dll 21:01:05.0404 0x1380 C:\Windows\System32\taskschd.dll - ok 21:01:05.0404 0x1380 [ 1A47D52E303B7543E4E6026595B95422, C577CD3837546A7CED5D2E8E97FA2EDACA133B4A8595770EF96CAE519BFE280F ] C:\Windows\System32\comres.dll 21:01:05.0404 0x1380 C:\Windows\System32\comres.dll - ok 21:01:05.0414 0x1380 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] C:\Windows\System32\Sens.dll 21:01:05.0414 0x1380 C:\Windows\System32\Sens.dll - ok 21:01:05.0414 0x1380 [ 862596399AAFD2A21DB2AF9270CD4F70, 24CAA19EE791FB3440CE742C9064FCE0CB755EF0789D3CE62058A2CFEF0FF6D2 ] C:\Windows\System32\mstask.dll 21:01:05.0414 0x1380 C:\Windows\System32\mstask.dll - ok 21:01:05.0424 0x1380 [ C2762A57DF0EE85E63CE4893C5215313, DDE22212D78353633CEDE27D7210469DE674563991105563CF64CCCE2D0743BD ] C:\Windows\System32\VaultCredProvider.dll 21:01:05.0424 0x1380 C:\Windows\System32\VaultCredProvider.dll - ok 21:01:05.0424 0x1380 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D, 19959D18601712901F03B83150D15E34EBCAB355BB4692C9A28511A72F57FC66 ] C:\Windows\System32\winbrand.dll 21:01:05.0424 0x1380 C:\Windows\System32\winbrand.dll - ok 21:01:05.0424 0x1380 [ 8563BA40DF4F1E93A61B70E2C8B60CF8, E5CAA520CBE61FAF3EAA784A51ED30E0CB2FD78EFD8AE1D5C6B0FE43A1009F39 ] C:\Windows\System32\SmartcardCredentialProvider.dll 21:01:05.0424 0x1380 C:\Windows\System32\SmartcardCredentialProvider.dll - ok 21:01:05.0434 0x1380 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] C:\Windows\System32\drivers\lltdio.sys 21:01:05.0434 0x1380 C:\Windows\System32\drivers\lltdio.sys - ok 21:01:05.0434 0x1380 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] C:\Windows\System32\uxsms.dll 21:01:05.0434 0x1380 C:\Windows\System32\uxsms.dll - ok 21:01:05.0434 0x1380 [ BF352E73615F5461AA6884472435A544, 4B059E79325C5F08CD6FBBE6352E17ADB64B9608CC9EDB36A2DF4D148060C309 ] C:\Windows\System32\BioCredProv.dll 21:01:05.0434 0x1380 C:\Windows\System32\BioCredProv.dll - ok 21:01:05.0444 0x1380 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] C:\Windows\System32\drivers\nwifi.sys 21:01:05.0444 0x1380 C:\Windows\System32\drivers\nwifi.sys - ok 21:01:05.0444 0x1380 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] C:\Windows\System32\drivers\ndisuio.sys 21:01:05.0444 0x1380 C:\Windows\System32\drivers\ndisuio.sys - ok 21:01:05.0444 0x1380 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] C:\Windows\System32\drivers\rspndr.sys 21:01:05.0454 0x1380 C:\Windows\System32\drivers\rspndr.sys - ok 21:01:05.0454 0x1380 [ 2B81776DA02017A37FE26C662827470E, A656353C50EE08422145D00DB9CFD9F6D3E664753B3C454B171E2A56A8AA94DC ] C:\Windows\System32\IPHLPAPI.DLL 21:01:05.0454 0x1380 C:\Windows\System32\IPHLPAPI.DLL - ok 21:01:05.0454 0x1380 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] C:\Windows\System32\lmhsvc.dll 21:01:05.0454 0x1380 C:\Windows\System32\lmhsvc.dll - ok 21:01:05.0464 0x1380 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] C:\Windows\System32\nsisvc.dll 21:01:05.0464 0x1380 C:\Windows\System32\nsisvc.dll - ok 21:01:05.0464 0x1380 [ 796B8123A7859AFD3A4AE10514DBAEB5, E76F69FAFEC3D66263ED95F3FA9EE309BDDACB287E30583A147DC97F6EEB8844 ] C:\Windows\System32\winbio.dll 21:01:05.0464 0x1380 C:\Windows\System32\winbio.dll - ok 21:01:05.0464 0x1380 [ 4403D5ECE7D8323CAF1207D1AA38FA01, BD0B34DCF658D3CB91C1B55E9E730C5F7C571AFC2BFA09270C377B72B6830D48 ] C:\Windows\System32\credui.dll 21:01:05.0464 0x1380 C:\Windows\System32\credui.dll - ok 21:01:05.0474 0x1380 [ B73A6E4B319AFFE64582AC5C1801BB3F, 274EEA0743DC659180E691654CBB17136E9E9D83B07E302B47EA5B103EA57710 ] C:\Windows\System32\nrpsrv.dll 21:01:05.0474 0x1380 C:\Windows\System32\nrpsrv.dll - ok 21:01:05.0474 0x1380 [ 4C9210E8F4E052F6A4EB87716DA0C24C, 460F7990BDADB7D58D6DC95B094D30A2EFDC4CEED444B18A2F36E8D9076FB8B9 ] C:\Windows\System32\winnsi.dll 21:01:05.0474 0x1380 C:\Windows\System32\winnsi.dll - ok 21:01:05.0474 0x1380 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] C:\Windows\System32\dhcpcore.dll 21:01:05.0474 0x1380 C:\Windows\System32\dhcpcore.dll - ok 21:01:05.0484 0x1380 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] C:\Windows\System32\dnsrslvr.dll 21:01:05.0484 0x1380 C:\Windows\System32\dnsrslvr.dll - ok 21:01:05.0484 0x1380 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] C:\Windows\System32\eapsvc.dll 21:01:05.0484 0x1380 C:\Windows\System32\eapsvc.dll - ok 21:01:05.0484 0x1380 [ F9EC845C5EECF20E9A67F9F805F2EF1F, C3DBA8CF93DBF50954B1BF6D7EF3F6F5DD1A56DC62B7EB2749C54D9B65D9BB43 ] C:\Windows\System32\keyiso.dll 21:01:05.0484 0x1380 C:\Windows\System32\keyiso.dll - ok 21:01:05.0494 0x1380 [ EEEA40F0EDB0A6E5359E539E15D0BC77, BFCBF777239C29C6AC4BC5B59591308571647B7C7FDB5571903F7403DD241E8E ] C:\Windows\System32\netapi32.dll 21:01:05.0494 0x1380 C:\Windows\System32\netapi32.dll - ok 21:01:05.0494 0x1380 [ 44B9C66177651F3F53C87B665D58D17A, 3FC426115FF87570889DB28D71970B82B525D2A4B9A00EDD273BF083B77A05CE ] C:\Windows\System32\vaultcli.dll 21:01:05.0494 0x1380 C:\Windows\System32\vaultcli.dll - ok 21:01:05.0494 0x1380 [ 3CC16A849E6092E43909F48EF0E60306, 610B576654A69415E4F2FEDB6BA384C77715944E4F89BD2821B311968CA8D810 ] C:\Windows\System32\dhcpcore6.dll 21:01:05.0494 0x1380 C:\Windows\System32\dhcpcore6.dll - ok 21:01:05.0504 0x1380 [ 87356377F31DA5F20A833811CD59499C, 4FEC1FD3AC4E4E34DCBC0109B248952604F438C84B1604EB9E2359FA721E23C4 ] C:\Windows\System32\eapphost.dll 21:01:05.0504 0x1380 C:\Windows\System32\eapphost.dll - ok 21:01:05.0504 0x1380 [ 6CECA4C6A489C9B2E6073AFDAAE3F607, 127506D1DB38275614CBEB047C133718EF9D03266BA9C98BE55EC7847CFC9C3D ] C:\Windows\System32\netutils.dll 21:01:05.0504 0x1380 C:\Windows\System32\netutils.dll - ok 21:01:05.0504 0x1380 [ 3C91392D448F6E5D525A85B7550D8BA9, 6FD0DC73DBE7519E2C643554C2A7F8FBE4F9A678C4241BB54B3C6E65D2ABCF3A ] C:\Windows\System32\wkscli.dll 21:01:05.0504 0x1380 C:\Windows\System32\wkscli.dll - ok 21:01:05.0514 0x1380 [ D07EB640618F96490DB88C3CE58DB608, 0C553971259632031E6856A94EEB937D571627FC7CF061CCFC040F4BF0CFF259 ] C:\Windows\System32\FWPUCLNT.DLL 21:01:05.0514 0x1380 C:\Windows\System32\FWPUCLNT.DLL - ok 21:01:05.0514 0x1380 [ FC51229C7D4AFA0D6F186133728B95AB, 37E58C8E1C8437D1981725A5DCDACA7316CEFBB570370CEFC8D122F523B96AC0 ] C:\Windows\System32\samcli.dll 21:01:05.0514 0x1380 C:\Windows\System32\samcli.dll - ok 21:01:05.0514 0x1380 [ F79C9E3947B904FA3200A2204F9C52BB, 5D7274BF4AB25CB4E52D5FC6B5DF129BFBAEF028457ACF07624F6D00F67E1237 ] C:\Windows\System32\tosWirelessLANIndicatorCP.dll 21:01:05.0514 0x1380 C:\Windows\System32\tosWirelessLANIndicatorCP.dll - ok 21:01:05.0524 0x1380 [ 885D0942E0F28DB90919BE3129ECF279, 5A10D90EE656ECE3DCA174D6F924641509819FC20CB6EF46B5E1723E52DE85BE ] C:\Windows\System32\dnsext.dll 21:01:05.0524 0x1380 C:\Windows\System32\dnsext.dll - ok 21:01:05.0524 0x1380 [ DF3CA8D16BDED6A54977B30E66864D33, 1D1A1AE540BA132F998D60D3622F0297B6E86AE399332C3B47462D7C0F560A36 ] C:\Windows\System32\msvcr100.dll 21:01:05.0524 0x1380 C:\Windows\System32\msvcr100.dll - ok 21:01:05.0524 0x1380 [ 9FCA3A84338ADEF2AFF67CDA46EF8539, 087DF72096852AE98C56990EE6E68835BE95E7E49ECDDE8B54DAC11C9E07FE94 ] C:\Windows\System32\umb.dll 21:01:05.0524 0x1380 C:\Windows\System32\umb.dll - ok 21:01:05.0534 0x1380 [ A648C4A06DE367065B24056D067B4460, 2412487D65A833DDD9AB17D039515CC08DA22D006259EC4B03E42475FAFFD2AD ] C:\Windows\System32\wlanmsm.dll 21:01:05.0534 0x1380 C:\Windows\System32\wlanmsm.dll - ok 21:01:05.0534 0x1380 [ F568F7C08458D69E4FCD8675BBB107E4, A5FA25ECF248999A68CCECFBB508BFA1ADD18A23E20A9A9081A87C41CAAA36C0 ] C:\Windows\System32\dhcpcsvc.dll 21:01:05.0534 0x1380 C:\Windows\System32\dhcpcsvc.dll - ok 21:01:05.0544 0x1380 [ 3C06D5A929B798D0B13F6481242A0FD2, CE6127A31AB09E21A912CA16E4BDF663E9D05C254CCF9090A8B5A9A2E055EFF3 ] C:\Windows\System32\dhcpcsvc6.dll 21:01:05.0544 0x1380 C:\Windows\System32\dhcpcsvc6.dll - ok 21:01:05.0544 0x1380 [ 06A1386B6E3A0CBC368665C1840906F4, C10BCA5092A0B3F9435CE4D65C7449528C89F5C5243B410878D2EBF516DA2FB2 ] C:\Windows\System32\wlansec.dll 21:01:05.0544 0x1380 C:\Windows\System32\wlansec.dll - ok 21:01:05.0544 0x1380 [ 73FCB7919DEE80EE556F2E498594EBAE, D0F7A0AD3BC33263E9C2CF9787DD326436F9E0C9F5031D769F8A43C64C08A762 ] C:\Windows\System32\onex.dll 21:01:05.0544 0x1380 C:\Windows\System32\onex.dll - ok 21:01:05.0554 0x1380 [ 0D753307D274F3688BD21C377B616700, 5DD08E77A11F2561FB96BA212FDDFE21D4394C69C34C3EB88F7F5CD068EE55BF ] C:\Windows\System32\eappcfg.dll 21:01:05.0554 0x1380 C:\Windows\System32\eappcfg.dll - ok 21:01:05.0554 0x1380 [ 65522E77A1360DBC8D199DA3BF5EFFE4, E9D748070FA478A3D37F15049F998D340885C0DC5FCE03BFCE5D521C9EBA7350 ] C:\Windows\System32\eappprxy.dll 21:01:05.0554 0x1380 C:\Windows\System32\eappprxy.dll - ok 21:01:05.0554 0x1380 [ 698EB872F1B16C2E874281BCEE55F396, DAD4FB1F48A674EB8087A98A217D3BE307A30EDDF24103F3AEC359EA982155B1 ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVCP.dll 21:01:05.0554 0x1380 C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVCP.dll - ok 21:01:05.0564 0x1380 [ 97E43F324BE1503CB2FFB058534688DA, 50C781DF38D0D38C9A5420AB1FFF8672DC13FD1ED8E9F5432B4BA3077A7435D5 ] C:\Windows\System32\l2gpstore.dll 21:01:05.0564 0x1380 C:\Windows\System32\l2gpstore.dll - ok 21:01:05.0564 0x1380 [ 7F1B4C6FF3B85F9ADF74055187B8A22C, CC95DA5662638AACBE9643DCB236464C2C2095A8D5CDC8A747045870BE9D0E7D ] C:\Windows\System32\wlanutil.dll 21:01:05.0564 0x1380 C:\Windows\System32\wlanutil.dll - ok 21:01:05.0564 0x1380 [ 730BF204A595D5B6D7DC57A247CC741C, 264C6901F4A49B738BBD04BCA1783DEE892885BADE9085B0AEA40BAE7CC0A218 ] C:\Windows\System32\wlgpclnt.dll 21:01:05.0564 0x1380 C:\Windows\System32\wlgpclnt.dll - ok 21:01:05.0574 0x1380 [ AAFE92235773EDED003A84CD0FFA8326, 847F3E90C2E58095A0BB067D007D9FEB6E2CBC62199A5461CB8ACD423D948B3E ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVHelper.dll 21:01:05.0574 0x1380 C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVHelper.dll - ok 21:01:05.0574 0x1380 [ 0E3A7EC2B9590EA7767BBB1823630DEA, 6858B7050465DB8505CF9E932868B123B925376C05363EA5A9198B2AE15CF728 ] C:\Windows\System32\msxml6.dll 21:01:05.0574 0x1380 C:\Windows\System32\msxml6.dll - ok 21:01:05.0574 0x1380 [ 7D5645EE0EA77D539828433D9B95F5EB, EEF81E9B2205FC456DB6095AD0AEAB38BB131D3BCD090EA6CD91D5568ACAFB7F ] C:\Windows\System32\WinSCard.dll 21:01:05.0574 0x1380 C:\Windows\System32\WinSCard.dll - ok 21:01:05.0584 0x1380 [ A8704A10FFDE468F4AB18EBF82A9A86F, 40F6502679CEE0B657B0005278FBE7213BDDA6DEAACF868058E17737C182E1B4 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll 21:01:05.0584 0x1380 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll - ok 21:01:05.0584 0x1380 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7, 690F12C490BEE2BF17AB7B6804E6E9B96F51C304350CCDE80FE5C7EEFA89720E ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll 21:01:05.0584 0x1380 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok 21:01:05.0594 0x1380 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] C:\Windows\System32\shsvcs.dll 21:01:05.0594 0x1380 C:\Windows\System32\shsvcs.dll - ok 21:01:05.0594 0x1380 [ 43FAB56AE5F639AD59D7209693F4C4C2, C64155944DA774A80D443A0E6DCC40A3405D9C69CA3EBC95CA46BFD65C7A4908 ] C:\Windows\System32\wlanext.exe 21:01:05.0594 0x1380 C:\Windows\System32\wlanext.exe - ok 21:01:05.0594 0x1380 [ BF95EA5809E3BBF55370F7CB309FEBD0, 62ADBA6E1A7DDDEFA971580161F30896DFFC27EB4EB82E3CC72062D57DA66500 ] C:\Windows\System32\conhost.exe 21:01:05.0594 0x1380 C:\Windows\System32\conhost.exe - ok 21:01:05.0604 0x1380 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] C:\Windows\System32\schedsvc.dll 21:01:05.0604 0x1380 C:\Windows\System32\schedsvc.dll - ok 21:01:05.0604 0x1380 [ 51D49EE09ACB59BB82FCDCAAD72FC123, DA5FA9C207F8EF43C62B555C756460B0C86830FE57339B17E02B8AEBF7A6DD95 ] C:\Windows\System32\athihvs.dll 21:01:05.0604 0x1380 C:\Windows\System32\athihvs.dll - ok 21:01:05.0614 0x1380 [ 9AE75388EE2C110216B8319584E8AC34, 6F5E79903FF4B6A17E42949E4D09CE25DB944062317CAA5346FC9F39CBAE575F ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVCtrl.dll 21:01:05.0614 0x1380 C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVCtrl.dll - ok 21:01:05.0614 0x1380 [ BC414631876B2F28B8DAB08E849C12C5, 5973654AA3E90E6B699B0A43F645B893D95BAA803129B6967D746C8239AB26E3 ] C:\Windows\System32\ktmw32.dll 21:01:05.0614 0x1380 C:\Windows\System32\ktmw32.dll - ok 21:01:05.0614 0x1380 [ 357BE883C5236BFC7341CB9E82308908, 4DDB697FD9B7C516CF99D73C8799EA35BB97E2431216CD7C1045F17B06109FBF ] C:\Windows\System32\wlanapi.dll 21:01:05.0614 0x1380 C:\Windows\System32\wlanapi.dll - ok 21:01:05.0624 0x1380 [ 945E54F23C72D37B8CD1987AF0DB63BF, C2B217C94DBCA0A31ED834B9D492B53B25B235DDD02B1D1200E76609D32772EA ] C:\Windows\System32\fveapi.dll 21:01:05.0624 0x1380 C:\Windows\System32\fveapi.dll - ok 21:01:05.0624 0x1380 [ 891ECFD08E2C538B7948CBC45106D697, 628D0D618FF3A70E9FBE3B2C7206C9365ED2297784A5F10FFA05BD2C56657013 ] C:\Windows\System32\fvecerts.dll 21:01:05.0624 0x1380 C:\Windows\System32\fvecerts.dll - ok 21:01:05.0634 0x1380 [ 694865362F0965779F92BCFE97712323, 825EB75E37AFE9B738869FB5D95020D4F44AD419C2F6C5A658F82A5242FDEF6C ] C:\Windows\System32\tbs.dll 21:01:05.0634 0x1380 C:\Windows\System32\tbs.dll - ok 21:01:05.0634 0x1380 [ EF2AE43BCD46ABB13FC3E5B2B1935C73, 81FC06F306F620845D7DD8D06E706309E70BC89B589C81F3478302A3F5F73431 ] C:\Windows\System32\winmm.dll 21:01:05.0634 0x1380 C:\Windows\System32\winmm.dll - ok 21:01:05.0634 0x1380 [ 8269210DAF3B12BC8300631B28A2A442, EABEB792C2EA8D4A1A7B13281CF557C194D5667AE0BA2A2D5664908D8269113D ] C:\Windows\System32\wiarpc.dll 21:01:05.0634 0x1380 C:\Windows\System32\wiarpc.dll - ok 21:01:05.0634 0x1380 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7, 4BC5A1279885EEFBEB27333AF719622A5FCDD9606697692C1978E434CE264D80 ] C:\Windows\System32\taskcomp.dll 21:01:05.0634 0x1380 C:\Windows\System32\taskcomp.dll - ok 21:01:05.0644 0x1380 [ 2A9238A326763122424E07EF320D5D3A, 8654CABFC1DCEA16C57BFD93C776E7EA33072F288B79CEE8FACECF69173EA4FE ] C:\Program Files\TOSHIBA\SmartFaceV\FaceRec.dll 21:01:05.0644 0x1380 C:\Program Files\TOSHIBA\SmartFaceV\FaceRec.dll - ok 21:01:05.0644 0x1380 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] C:\Windows\System32\drivers\http.sys 21:01:05.0644 0x1380 C:\Windows\System32\drivers\http.sys - ok 21:01:05.0654 0x1380 [ 65EA57712340C09B1B0C427B4848AE05, 5FDCF73191BFF9DBB03886755FFCF0BC15849F0E216884A5A8B9BB375FA7C1A5 ] C:\Windows\System32\taskeng.exe 21:01:05.0654 0x1380 C:\Windows\System32\taskeng.exe - ok 21:01:05.0654 0x1380 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] C:\Windows\System32\spoolsv.exe 21:01:05.0654 0x1380 C:\Windows\System32\spoolsv.exe - ok 21:01:05.0664 0x1380 [ 91175B7E997CFAC64F271A15B4217BC7, 64F01CFD0FB239407D8D59AAA529E8AC4CAC59472A6D924C0F7DF41DED53A5B1 ] C:\Program Files\TOSHIBA\SmartFaceV\FaceHI.dll 21:01:05.0664 0x1380 C:\Program Files\TOSHIBA\SmartFaceV\FaceHI.dll - ok 21:01:05.0664 0x1380 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] C:\Windows\System32\SCardSvr.dll 21:01:05.0664 0x1380 C:\Windows\System32\SCardSvr.dll - ok 21:01:05.0664 0x1380 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] C:\Windows\System32\BFE.DLL 21:01:05.0664 0x1380 C:\Windows\System32\BFE.DLL - ok 21:01:05.0674 0x1380 [ 805A52C5AE26C28E88FDD9BCCFE6F312, 4FF28D3658C31722B7DD036DED9D544B14841C0E0B94D31A8EC5AB92128DA020 ] C:\Windows\System32\TSChannel.dll 21:01:05.0674 0x1380 C:\Windows\System32\TSChannel.dll - ok 21:01:05.0674 0x1380 [ 50D28F3F8B7C17056520C80A29EFE17C, 71613EA48467D1A0B00F8BCAED270B7527FC5771F540A8EB0515B3A5FDC8604F ] C:\Windows\System32\lpksetup.exe 21:01:05.0674 0x1380 C:\Windows\System32\lpksetup.exe - ok 21:01:05.0674 0x1380 [ 6369F960C28A16F4502C480EEDE3652C, 43712222F1DEF7277EC6A99BEA6FB9C7E0E1FCAB2AD35C0208747D70301D0E47 ] C:\Windows\System32\dpx.dll 21:01:05.0674 0x1380 C:\Windows\System32\dpx.dll - ok 21:01:05.0684 0x1380 [ F1C09EE3A594B19DD1F4B4AEA9E353C9, 4F83F366F50CE1C8143CA7855EE8BDEAEF29EBAF76CF1C67B244D03AE4F8D438 ] C:\Windows\System32\comsvcs.dll 21:01:05.0684 0x1380 C:\Windows\System32\comsvcs.dll - ok 21:01:05.0684 0x1380 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] C:\Windows\System32\drivers\bowser.sys 21:01:05.0684 0x1380 C:\Windows\System32\drivers\bowser.sys - ok 21:01:05.0684 0x1380 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] C:\Windows\System32\drivers\mpsdrv.sys 21:01:05.0684 0x1380 C:\Windows\System32\drivers\mpsdrv.sys - ok 21:01:05.0694 0x1380 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] C:\Windows\System32\drivers\mrxsmb.sys 21:01:05.0694 0x1380 C:\Windows\System32\drivers\mrxsmb.sys - ok 21:01:05.0694 0x1380 [ 03706015DB44368375AEBE6339490E66, 02EB28B5156E320C1EBABC03D37E94EB770A721B99E1DD276F8DC2A50D76C381 ] C:\Windows\System32\netcfgx.dll 21:01:05.0694 0x1380 C:\Windows\System32\netcfgx.dll - ok 21:01:05.0694 0x1380 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] C:\Windows\System32\drivers\mrxsmb10.sys 21:01:05.0694 0x1380 C:\Windows\System32\drivers\mrxsmb10.sys - ok 21:01:05.0704 0x1380 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] C:\Windows\System32\drivers\mrxsmb20.sys 21:01:05.0704 0x1380 C:\Windows\System32\drivers\mrxsmb20.sys - ok 21:01:05.0704 0x1380 [ C67F8A962B2534224D5908D16D2AD3CE, CAC1821F5E867285638AEE7AE33CE574BCCF16277AC5AD805650B48F7759B4B4 ] C:\Windows\System32\wfapigp.dll 21:01:05.0704 0x1380 C:\Windows\System32\wfapigp.dll - ok 21:01:05.0704 0x1380 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] C:\Windows\System32\wkssvc.dll 21:01:05.0714 0x1380 C:\Windows\System32\wkssvc.dll - ok 21:01:05.0714 0x1380 [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] C:\Windows\System32\drivers\vwifimp.sys 21:01:05.0714 0x1380 C:\Windows\System32\drivers\vwifimp.sys - ok 21:01:05.0714 0x1380 [ 4C72FDD915D62EAEF149BD9C73AB9CF4, 8EA45A1B88DFD819F0ADA3AF36D464E1BF52574269592370E0CC8D0490680E1F ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 21:01:05.0714 0x1380 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok 21:01:05.0724 0x1380 [ 1834B31C749B86DAC233BBBA1C03BC48, 27FCA9196842C0BB53CCAD895870A0EB10D2F8ED67E5486A4437067BD4BC4448 ] C:\Windows\System32\mscms.dll 21:01:05.0724 0x1380 C:\Windows\System32\mscms.dll - ok 21:01:05.0724 0x1380 [ A2B0924D50F4435FD389499047CE553A, 8D16D5CAAD71AAAAA1479F8477D2928B66581C79932A49A21EDF93DB2803AB9C ] C:\Windows\SysWOW64\ntdll.dll 21:01:05.0724 0x1380 C:\Windows\SysWOW64\ntdll.dll - ok 21:01:05.0724 0x1380 [ 256390425414F90FCBC12F525A84EB11, A4992020BF6A239AD8A77125426E2C39980C9ABC971C4DBCB24B358F946AD7F9 ] C:\Windows\System32\pcasvc.dll 21:01:05.0724 0x1380 C:\Windows\System32\pcasvc.dll - ok 21:01:05.0734 0x1380 [ 2A107B611C91CD256466C58C0D776E9D, 58EA4F6E0FE7EFB8D3024AE71EE16848C2A00BA5224C8054C80134F99D9A72AB ] C:\Windows\System32\wow64.dll 21:01:05.0734 0x1380 C:\Windows\System32\wow64.dll - ok 21:01:05.0734 0x1380 [ 7434E01FBCA3CB86539C39412A31D5E1, E40D5AEBB3A5D8F53C76E3FBF0C07B9C0227914C869F57622EA44A212383EE6D ] C:\Windows\System32\wow64win.dll 21:01:05.0734 0x1380 C:\Windows\System32\wow64win.dll - ok 21:01:05.0744 0x1380 [ 0F090A77E664CB0F70AB8D3B230B760C, A08EA0409B3BF88AB12792F721FA3A692BBE640DF2A06641E142843A7044EC5E ] C:\Windows\System32\wow64cpu.dll 21:01:05.0744 0x1380 C:\Windows\System32\wow64cpu.dll - ok 21:01:05.0744 0x1380 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] C:\Windows\System32\snmptrap.exe 21:01:05.0744 0x1380 C:\Windows\System32\snmptrap.exe - ok 21:01:05.0744 0x1380 [ 10EAB90C1AE8271B5FE5A8930987EE5C, 53E72964AA75526B161F859A509CB046809AE47C65DC998F0E49AC8AED9066EA ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll 21:01:05.0744 0x1380 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok 21:01:05.0754 0x1380 [ 76161B9D78A275F8F28DD67436013110, E4AE9648BDED9035D39DF20C3A6F453F67D49D7899038B21D88FFD4EFFCC4C08 ] C:\Windows\SysWOW64\kernel32.dll 21:01:05.0754 0x1380 C:\Windows\SysWOW64\kernel32.dll - ok 21:01:05.0754 0x1380 [ 2DEDC3CCFB72C054292CD94BA427A237, 560076A1D1BCF34467312738EE90C57CEED3FA9F7CB3CF36A49BCDCC0D0A6CA5 ] C:\Program Files\Zune\ZuneResources.dll 21:01:05.0754 0x1380 C:\Program Files\Zune\ZuneResources.dll - ok 21:01:05.0754 0x1380 [ 4004299B7AF4CBFF6540F1798899A11F, 5DD3AE149B7228A769F2FE95355795AC98ACD8CDFB78954A423A357F717203C3 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll 21:01:05.0754 0x1380 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok 21:01:05.0764 0x1380 [ 461B713DE7F353C6447B744F1A049930, 3551C57128DAFA009C9DB3EE0D798D94B269D1605F74897566D7E79E5FDD437B ] C:\Windows\SysWOW64\KernelBase.dll 21:01:05.0764 0x1380 C:\Windows\SysWOW64\KernelBase.dll - ok 21:01:05.0764 0x1380 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3, 01EB95FA3943CF3C6B1A21E473A5C3CB9FCBCE46913B15C96CAC14E4F04075B4 ] C:\Windows\SysWOW64\user32.dll 21:01:05.0764 0x1380 C:\Windows\SysWOW64\user32.dll - ok 21:01:05.0764 0x1380 [ 980305AC3AF53C1964A11190451ABB32, D0FE0845F9FB51B1F556E3A1D327F30603033A1FAFC17DFA3D5047B93C7D4D82 ] C:\Windows\SysWOW64\gdi32.dll 21:01:05.0764 0x1380 C:\Windows\SysWOW64\gdi32.dll - ok 21:01:05.0774 0x1380 [ CC23295DA8F7B5C53F93804D2F5D30EB, B290D96C40FBA934DE6CFF82D9BBA6780922CC5012C61599BD5006DAEDC82DDB ] C:\Windows\SysWOW64\lpk.dll 21:01:05.0774 0x1380 C:\Windows\SysWOW64\lpk.dll - ok 21:01:05.0774 0x1380 [ A5F833506BF6A1B5D693E1499DEE2444, 045874B7D37F49216E37D551076FF440E29DB5196564E714207DF753DF7FDDEE ] C:\Windows\SysWOW64\usp10.dll 21:01:05.0774 0x1380 C:\Windows\SysWOW64\usp10.dll - ok 21:01:05.0774 0x1380 [ 15BE2309C00B0EBBE0D420BD42C3E0F1, 8D780AE5C4F7E7DAE5B58ABFE437C7A19BF648C4C6062726A575059FFEBF1F5C ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVLogOn.dll 21:01:05.0774 0x1380 C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVLogOn.dll - ok 21:01:05.0784 0x1380 [ AA67F0B502D10A84723D2E60AA1DA17F, F8F7DE69508A970BE1BCA2F9CE3E0F4EDF77290CF04AFA80D40D013686653D1B ] C:\Windows\System32\atieclxx.exe 21:01:05.0784 0x1380 C:\Windows\System32\atieclxx.exe - ok 21:01:05.0784 0x1380 [ 972C3301DB3DA91AE06A95F6B4160B1B, 678B533A06C306295FE97DC26CE9BAFFC8EAF1FB7405ACB040719099717744D5 ] C:\Windows\System32\certCredProvider.dll 21:01:05.0784 0x1380 C:\Windows\System32\certCredProvider.dll - ok 21:01:05.0794 0x1380 [ 9BC8610C32C96A2983A65DC21CAFA921, 2A4195F663C9D55939E3D8FEAA208090FDB0B8801A60164A7325B53104797CBC ] C:\Windows\System32\UXInit.dll 21:01:05.0794 0x1380 C:\Windows\System32\UXInit.dll - ok 21:01:05.0794 0x1380 [ 032229246107C5C7211E6D1498B52D3D, 8B492A0621BA88EBF3ABFC072C9023B2162C59AA6E9C61DA6D4762DB6C6C7B4A ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL 21:01:05.0794 0x1380 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok 21:01:05.0794 0x1380 [ 9442170CB608A3234994EC424A923A86, D6F4FD0FD7DBBB69940E6EB4567CE9368B0A52FF6EA9A615FF3209DBA5903A03 ] C:\Windows\System32\atiadlxx.dll 21:01:05.0794 0x1380 C:\Windows\System32\atiadlxx.dll - ok 21:01:05.0804 0x1380 [ 87FA0C48C3B2E9FEE518818FE26B15B5, DA4042DE9897397AEDCEFF9F69746726237305DDE64464309B6DCC45E05E42F4 ] C:\Windows\System32\rasplap.dll 21:01:05.0804 0x1380 C:\Windows\System32\rasplap.dll - ok 21:01:05.0804 0x1380 [ 9DC80A8AAAAAC397BDAB3C67165A824E, 051636BFDFF7AB0E4191354E846BD0DACCA1A01FCC13C1AFED91D8DBFE17127A ] C:\Windows\SysWOW64\msvcrt.dll 21:01:05.0804 0x1380 C:\Windows\SysWOW64\msvcrt.dll - ok 21:01:05.0804 0x1380 [ 019CD868461B646E09BDF04474C19341, 01837EFACB02E52BC6E90C90C4CB01B11D56E449A37EA4FC2695507FF85EA9FE ] C:\Windows\System32\rasapi32.dll 21:01:05.0804 0x1380 C:\Windows\System32\rasapi32.dll - ok 21:01:05.0814 0x1380 [ 8D07286938C7C672ABC7131D9DD36A4C, B6C426AA35C3F0897B3E3F7AC3524CD24797133539BDDF48EEECB78F8AFF262B ] C:\Windows\System32\atimuixx.dll 21:01:05.0814 0x1380 C:\Windows\System32\atimuixx.dll - ok 21:01:05.0814 0x1380 [ D67472125471784DE7147946EDA25FEB, F41960118F412B6CA5E80AE5E8DB9AECDD043A7DB34388FF57C6F9C5A0056F91 ] C:\Windows\SysWOW64\advapi32.dll 21:01:05.0814 0x1380 C:\Windows\SysWOW64\advapi32.dll - ok 21:01:05.0814 0x1380 [ 91A8E32B00BF7899EDAB6783287DDDA6, 49451722317AB42B3DE407EFCB9CC560C1455217AC3E2F11F74D08C1708473C5 ] C:\Windows\System32\PeerDistSh.dll 21:01:05.0824 0x1380 C:\Windows\System32\PeerDistSh.dll - ok 21:01:05.0824 0x1380 [ B28DEEC597C8DEB70C744C7CF9210E3E, E777F192D822990CA6301B3FEA2AEA213FA7901438EB3328914ADF02B6C39DB9 ] C:\Windows\System32\rasman.dll 21:01:05.0824 0x1380 C:\Windows\System32\rasman.dll - ok 21:01:05.0824 0x1380 [ D8BED6BA298DBAAF6F3D746739FCD333, 83A40845EC448943F4737B730F95860983919677D84922E44EED4BECDFA71A31 ] C:\Windows\SysWOW64\rpcrt4.dll 21:01:05.0824 0x1380 C:\Windows\SysWOW64\rpcrt4.dll - ok 21:01:05.0824 0x1380 [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\SysWOW64\sechost.dll 21:01:05.0824 0x1380 C:\Windows\SysWOW64\sechost.dll - ok 21:01:05.0834 0x1380 [ B53C4B69B695EDA1B7E41D35CA4244E2, 3D98E9B263CADA576E4057E059AFC867F6E3F1001F3B73C8BCF9066763A45D9D ] C:\Windows\System32\rtutils.dll 21:01:05.0834 0x1380 C:\Windows\System32\rtutils.dll - ok 21:01:05.0834 0x1380 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] C:\Windows\System32\sstpsvc.dll 21:01:05.0834 0x1380 C:\Windows\System32\sstpsvc.dll - ok 21:01:05.0834 0x1380 [ F5CEF064C7E6D95DA86B9D064A56A969, F118CD4364690F37A07AE458E043E8CFBA98F332DC9E7228C83409CF26F6EF6D ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll 21:01:05.0834 0x1380 C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok 21:01:05.0844 0x1380 [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\SysWOW64\cryptbase.dll 21:01:05.0844 0x1380 C:\Windows\SysWOW64\cryptbase.dll - ok 21:01:05.0844 0x1380 [ 13E5B1CD503A4B21E9F0A2D55A00198B, F90F428A21CE553EBD7DBDEE695E8A68C5556D96B7CFC9020C6B057FE436772C ] C:\Windows\SysWOW64\sspicli.dll 21:01:05.0844 0x1380 C:\Windows\SysWOW64\sspicli.dll - ok 21:01:05.0854 0x1380 [ CF636C92B762B26F0B39B38E92380A09, F7B8B0EA4536CE3BA33EE1BD0783F6AAD8C0EF69714E874D4A30B720A04C7A18 ] C:\Windows\System32\oleacc.dll 21:01:05.0854 0x1380 C:\Windows\System32\oleacc.dll - ok 21:01:05.0854 0x1380 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] C:\Windows\System32\provsvc.dll 21:01:05.0854 0x1380 C:\Windows\System32\provsvc.dll - ok 21:01:05.0854 0x1380 [ DC52DB637B27E2004237B4FAC7CAEF69, F17A993A2EE5C33BF6AAEABB51A12CBBC8CD76803FB5C44C277027E094DC5667 ] C:\Program Files (x86)\TOSHIBA\Wireless LAN Indicator\tosIndicator.exe 21:01:05.0854 0x1380 C:\Program Files (x86)\TOSHIBA\Wireless LAN Indicator\tosIndicator.exe - ok 21:01:05.0864 0x1380 [ 019BDD35DE269CB98B22DE8923C2AA3B, 68B216D5331B128CF1BCB3A3F82FD85B119FFDBCB796C907461CDD6248995817 ] C:\Windows\System32\UIAutomationCore.dll 21:01:05.0864 0x1380 C:\Windows\System32\UIAutomationCore.dll - ok 21:01:05.0864 0x1380 [ D83947A58613E9091B4C9CC0F1546A8D, C71DF6E18E2099FC462717B8658D39C607A62C7E7A1E5CD0E258C17434535AD0 ] C:\Windows\SysWOW64\mscoree.dll 21:01:05.0864 0x1380 C:\Windows\SysWOW64\mscoree.dll - ok 21:01:05.0864 0x1380 [ E424B3EF666B184CEE0B6871AAA8C9F6, D182D9B3A813C75F88CA16A9C236AB6167DF5861D155B5DC016B90918C4BD579 ] C:\Windows\System32\msimg32.dll 21:01:05.0864 0x1380 C:\Windows\System32\msimg32.dll - ok 21:01:05.0874 0x1380 [ 5E3C0E5FFDA48C5DA35BBFB8EFFF8066, E2BBCC111DB1CE6072CB796F21677E4529029CE66DDC471EC793278F81F1FCF6 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll 21:01:05.0874 0x1380 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok 21:01:05.0874 0x1380 [ 5AA945234E9D4CCE4F715276B9AA712C, 65165BD131056816F009D987FC78AC86FFE0C3C38A27E73F873586B7FF4D59CF ] C:\Windows\System32\imageres.dll 21:01:05.0874 0x1380 C:\Windows\System32\imageres.dll - ok 21:01:05.0884 0x1380 [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\SysWOW64\shlwapi.dll 21:01:05.0884 0x1380 C:\Windows\SysWOW64\shlwapi.dll - ok 21:01:05.0884 0x1380 [ A6F09E5669D9A19035F6D942CAA15882, 68C8AF0CC1923E3A7245392F2480EE665D265DF300A609D2540BF7C6D9C1A1BE ] C:\Windows\SysWOW64\imm32.dll 21:01:05.0884 0x1380 C:\Windows\SysWOW64\imm32.dll - ok 21:01:05.0884 0x1380 [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\SysWOW64\msctf.dll 21:01:05.0884 0x1380 C:\Windows\SysWOW64\msctf.dll - ok 21:01:05.0894 0x1380 [ FF98EF5A50EA52FA115FE60B0F0A92B1, 0B5266BF0A63C7A495BBF41143F34105AF5F5E7C79BB7B203EE8F78AE6C17231 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll 21:01:05.0894 0x1380 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok 21:01:05.0894 0x1380 [ C9564CF4976E7E96B4052737AA2492B4, C3AC989C8489A23BB96400B1856F5325FFC67E844F04651EA5D61BC20A991C6D ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll 21:01:05.0894 0x1380 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok 21:01:05.0894 0x1380 [ 386BF6FD9FC562B1A5558C49E1C3A6FB, 6ED5A61C911845027D0A67B2473603D87E79DB88F0C0C699CBB2D1639C1DFDA5 ] C:\Windows\SysWOW64\shell32.dll 21:01:05.0894 0x1380 C:\Windows\SysWOW64\shell32.dll - ok 21:01:05.0904 0x1380 [ A8EDB86FC2A4D6D1285E4C70384AC35A, 61B8955CE0A2AA9D0719920B30216717B349B6FBE11C697C31CFA84F859CC1AE ] C:\Windows\System32\dllhost.exe 21:01:05.0904 0x1380 C:\Windows\System32\dllhost.exe - ok 21:01:05.0904 0x1380 [ 9028D1621C43DF8DFBD1C76860412A11, A1D48D9B33180BDE50D2FA9BB07E9520B7B7788C39B3AABB4A06AE4B1AACA755 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll 21:01:05.0904 0x1380 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll - ok 21:01:05.0914 0x1380 [ 928CF7268086631F54C3D8E17238C6DD, F058FAFB04E7EBD5CADE9B48195B7AA7C3508F332A89F5E6E5F3F071E8CADD4A ] C:\Windows\SysWOW64\ole32.dll 21:01:05.0914 0x1380 C:\Windows\SysWOW64\ole32.dll - ok 21:01:05.0914 0x1380 [ B7A50025E0D3521E6AA4D2F047C95F61, 9C37CC43A41BA15B4F4095D06E8AAA1C842DAACD6D698A7F249BFEDCEA0BD60D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\38bf604432e1a30c954b2ee40d6a2d1c\mscorlib.ni.dll 21:01:05.0914 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\38bf604432e1a30c954b2ee40d6a2d1c\mscorlib.ni.dll - ok 21:01:05.0914 0x1380 [ EDA54D2E17C0271D2CDA946ABE344110, 736432F2DB8DF42CAE9284AC279EF240E1F13C6ABED60112DCD7CBB70DB5D715 ] C:\Windows\SysWOW64\oleaut32.dll 21:01:05.0914 0x1380 C:\Windows\SysWOW64\oleaut32.dll - ok 21:01:05.0924 0x1380 [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\SysWOW64\profapi.dll 21:01:05.0924 0x1380 C:\Windows\SysWOW64\profapi.dll - ok 21:01:05.0924 0x1380 [ 454BF1E3B844306E764ADC0EA7B6E64C, 5E46DEBF75EEEF03410CA8B9C52E2577A19313104EBB7A7DE8656519285C2C36 ] C:\Windows\SysWOW64\crypt32.dll 21:01:05.0924 0x1380 C:\Windows\SysWOW64\crypt32.dll - ok 21:01:05.0924 0x1380 [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\SysWOW64\msasn1.dll 21:01:05.0924 0x1380 C:\Windows\SysWOW64\msasn1.dll - ok 21:01:05.0934 0x1380 [ E365C7B3EBB96451D3C9DF6B6B6900C2, 8A3C9B274969EC65BA9B968AA6910216464320A5D0D3A7E4E24B43A746D4728A ] C:\Windows\SysWOW64\wintrust.dll 21:01:05.0934 0x1380 C:\Windows\SysWOW64\wintrust.dll - ok 21:01:05.0934 0x1380 [ CDBE9690CF2B8409FACAD94FAC9479C9, 8E7FE1A1F3550C479FFD86A77BC9D10686D47F8727025BB891D8F4F0259354C8 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll 21:01:05.0934 0x1380 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok 21:01:05.0944 0x1380 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] C:\Program Files\Bonjour\mDNSResponder.exe 21:01:05.0944 0x1380 C:\Program Files\Bonjour\mDNSResponder.exe - ok 21:01:05.0944 0x1380 [ 32BEB118D11CAC135ED162E7562729AA, 1E7DA4BFC8B6ABA80A9B5EA3CDC80ABDDD8DD5DA51639C0510FF3CFDC32FDF6E ] C:\Program Files (x86)\XTab\ProtectService.exe 21:01:05.0944 0x1380 C:\Program Files (x86)\XTab\ProtectService.exe - ok 21:01:05.0954 0x1380 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] C:\Windows\System32\certprop.dll 21:01:05.0954 0x1380 C:\Windows\System32\certprop.dll - ok 21:01:05.0954 0x1380 [ 19D511CC455C19DE1ADF60E6C39C85B6, 2A05DD5EF3D0BEC2C9F4EA186E0E2D0F7BE0BF6A473D51194B09D33773AC7FAA ] C:\Windows\System32\cryptsvc.dll 21:01:05.0954 0x1380 C:\Windows\System32\cryptsvc.dll - ok 21:01:05.0954 0x1380 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] C:\Windows\System32\dps.dll 21:01:05.0954 0x1380 C:\Windows\System32\dps.dll - ok 21:01:05.0964 0x1380 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] C:\Windows\System32\FDResPub.dll 21:01:05.0964 0x1380 C:\Windows\System32\FDResPub.dll - ok 21:01:05.0964 0x1380 [ F1B205F932F62F94506A5F332C895DAF, F02F01F20F655DD919C71AE814E4C3DD43330AAD1425FC5B1497F1613917CCDE ] C:\Windows\System32\WSDApi.dll 21:01:05.0964 0x1380 C:\Windows\System32\WSDApi.dll - ok 21:01:05.0964 0x1380 [ A6B726DCA228F7878E38368A1BDC68BE, 30E8300B09B876E3D4B2A9215C9CC070EADF915E1268F425B6F8E0596A0D3539 ] C:\Windows\System32\cryptnet.dll 21:01:05.0964 0x1380 C:\Windows\System32\cryptnet.dll - ok 21:01:05.0974 0x1380 [ C55516D98DD5D8F0153C2A9B4227DA86, DBC62B776CF06D0873A4C7CFCDF5B6F5C6E6C41917C326C090BCE58DC66EE09C ] C:\Windows\System32\webservices.dll 21:01:05.0974 0x1380 C:\Windows\System32\webservices.dll - ok 21:01:05.0974 0x1380 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567, 426FB40A065FEF61980C803EF72D0D326C623340C3AE99CA8AFFDEFB81E8D49D ] C:\Windows\System32\vssapi.dll 21:01:05.0974 0x1380 C:\Windows\System32\vssapi.dll - ok 21:01:05.0974 0x1380 [ B5055B51BAA0FD0A736A88653DA3C1C0, A3BD057C7E8C926930BA7E9D11427D26FB37267026A0B72AB4021101EE424F74 ] C:\Windows\System32\fundisc.dll 21:01:05.0974 0x1380 C:\Windows\System32\fundisc.dll - ok 21:01:05.0984 0x1380 [ 287923557447D7E4BDD7E65B1F0F5428, 14D85A0F036F28D77AA9723C3D7E8C4DA9BDFF8A1AD9BEA6FE5756DBF5D00F08 ] C:\Windows\System32\vsstrace.dll 21:01:05.0984 0x1380 C:\Windows\System32\vsstrace.dll - ok 21:01:05.0994 0x1380 [ 3E29914113EC4B968BA5EB1F6D194A0A, C8D5572CA8D7624871188F0ACABC3AE60D4C5A4F6782D952B9038DE3BC28B39A ] C:\Program Files (x86)\XTab\msvcp110.dll 21:01:05.0994 0x1380 C:\Program Files (x86)\XTab\msvcp110.dll - ok 21:01:05.0994 0x1380 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF, 868DEFB78767E91694E83F931725257DF3FF79A4BFED3B914D27F3493EB7A8D0 ] C:\Windows\System32\httpapi.dll 21:01:05.0994 0x1380 C:\Windows\System32\httpapi.dll - ok 21:01:05.0994 0x1380 [ 4BA25D2CBE1587A841DCFB8C8C4A6EA6, B30160E759115E24425B9BCDF606EF6EBCE4657487525EDE7F1AC40B90FF7E49 ] C:\Program Files (x86)\XTab\msvcr110.dll 21:01:05.0994 0x1380 C:\Program Files (x86)\XTab\msvcr110.dll - ok 21:01:06.0004 0x1380 [ 5E4E0E43E0A5BF9F089696DFA7A3D677, B9D0F2A484095D12CC64862BCF577CE6A32F12C22D0C7567337FF248ED1B1504 ] C:\Windows\SysWOW64\wininet.dll 21:01:06.0004 0x1380 C:\Windows\SysWOW64\wininet.dll - ok 21:01:06.0014 0x1380 [ FEE3F5EC45435907C0C37DD5A94A8EF5, C71555679611733A1D20BE42543E9AD8764824E0F00F02476E5C7D208DC78434 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4ED82FD5-EE1A-4F1A-9BF3-F435C74809E1}\mpasbase.vdm 21:01:06.0014 0x1380 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4ED82FD5-EE1A-4F1A-9BF3-F435C74809E1}\mpasbase.vdm - ok 21:01:06.0014 0x1380 [ A0A2C1D812C231C9BFE119FDC68E341B, F94446594EE17505956A715DFB28B51D09F00A7A65E56950661B889A57DE8FA8 ] C:\Windows\System32\IDStore.dll 21:01:06.0014 0x1380 C:\Windows\System32\IDStore.dll - ok 21:01:06.0024 0x1380 [ 43964FA89CCF97BA6BE34D69455AC65F, 10E3B89A5470E1BB6F73382135DD2352F5073C1EE8485D7476CFB5122D4AAA2F ] C:\Windows\SysWOW64\uxtheme.dll 21:01:06.0024 0x1380 C:\Windows\SysWOW64\uxtheme.dll - ok 21:01:06.0024 0x1380 [ AA60FC73326973A774036486421F386C, BF798303F256B3020E6E7B4CA57CB00852741BCB7A514E66CB6F2E37FBE40472 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\908ba9e296e92b4e14bdc2437edac603\System.ni.dll 21:01:06.0024 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\908ba9e296e92b4e14bdc2437edac603\System.ni.dll - ok 21:01:06.0034 0x1380 [ 639774C9ACD063F028F6084ABF5593AD, 9DFD80610CBBC9188F6C6BC85C87016B0AE42254FC289C2B578E85282BDD9C23 ] C:\Windows\System32\taskhost.exe 21:01:06.0034 0x1380 C:\Windows\System32\taskhost.exe - ok 21:01:06.0034 0x1380 [ 23566F9723771108D2E6CD768AC27407, FAC0293DD1061B151E779BF4B245E6652C951FEDEBC602A166156DFBD38B5D67 ] C:\Windows\System32\AtBroker.exe 21:01:06.0034 0x1380 C:\Windows\System32\AtBroker.exe - ok 21:01:06.0044 0x1380 [ 9BB99503D6A4DD62569EDE9E5E2672A5, 6F4EA5BC50B1F929735246485263078BEF1B3BEB33F78CB1F483F13AA226C27E ] C:\Windows\System32\HotStartUserAgent.dll 21:01:06.0044 0x1380 C:\Windows\System32\HotStartUserAgent.dll - ok 21:01:06.0044 0x1380 [ 6CEF7856A3EFAC59470F6208F0F585CE, 0F7A80DB821FDE6580E9481B6DA44844F717DDB4983B0E3D562BE43726153951 ] C:\Windows\System32\mpr.dll 21:01:06.0044 0x1380 C:\Windows\System32\mpr.dll - ok 21:01:06.0044 0x1380 [ BAFE84E637BF7388C96EF48D4D3FDD53, 11C194D9ADCE90027272C627D7FBF3BA5025FF0F7B26A8333F764E11E1382CF9 ] C:\Windows\System32\userinit.exe 21:01:06.0044 0x1380 C:\Windows\System32\userinit.exe - ok 21:01:06.0054 0x1380 [ F162D5F5E845B9DC352DD1BAD8CEF1BC, 8A7B7528DB30AB123B060D8E41954D95913C07BB40CDAE32E97F9EDB0BAF79C7 ] C:\Windows\System32\dwm.exe 21:01:06.0054 0x1380 C:\Windows\System32\dwm.exe - ok 21:01:06.0064 0x1380 [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 21:01:06.0064 0x1380 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok 21:01:06.0064 0x1380 [ AFB5B500AD69E24ED1BC15D1161641EF, C8EE01224FA8020DAE6F9BCE2FD88EDC2441164393ED6E68DAA1EA0B8190276F ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL 21:01:06.0064 0x1380 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok 21:01:06.0074 0x1380 [ FCFCD1101C5DA23B4B95F93D02B2C169, 040A086875B6C5475490A2F8B0CF4FF20DDB4FEDFE5FCABBA49692AA05F40527 ] C:\Windows\System32\dwmredir.dll 21:01:06.0074 0x1380 C:\Windows\System32\dwmredir.dll - ok 21:01:06.0074 0x1380 [ 0562DF97934FC271893BD916A0262E6D, D0274F22D919ECAB50281BFAA16AB530B54DDC8EBA3B34350640858623663B8A ] C:\Program Files (x86)\Google\Update\1.3.25.11\goopdate.dll 21:01:06.0074 0x1380 C:\Program Files (x86)\Google\Update\1.3.25.11\goopdate.dll - ok 21:01:06.0074 0x1380 [ 4BA77A5EF71C14C764B0ED4701683E3E, 066A064CDBE09BF8BE1DF5B259F30FF6C124A1C3D637800D3E19E8E25EDB950E ] C:\Windows\System32\dwmcore.dll 21:01:06.0084 0x1380 C:\Windows\System32\dwmcore.dll - ok 21:01:06.0084 0x1380 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA, 8A6ACEFAB95E5275CBFBE6CCB5A6C3A6A471260B279B9063E86B9C7765E18656 ] C:\Windows\System32\MsCtfMonitor.dll 21:01:06.0084 0x1380 C:\Windows\System32\MsCtfMonitor.dll - ok 21:01:06.0084 0x1380 [ F09A9A1AD21FE618C4C8B0A0D830C886, 29831DDAB2AB105358FBC067CDF96428220B6743CD6019F6FE74BAC7AF325E7E ] C:\Windows\System32\msutb.dll 21:01:06.0084 0x1380 C:\Windows\System32\msutb.dll - ok 21:01:06.0094 0x1380 [ F9D908DE6B166DAC9B89BF62FA291CE8, D0A918AD60221623BB0278EA94CD6938744617FDBB2054968AFAFC2940648F02 ] C:\Program Files\Bonjour\mdnsNSP.dll 21:01:06.0094 0x1380 C:\Program Files\Bonjour\mdnsNSP.dll - ok 21:01:06.0094 0x1380 [ 94EEAC26F57811BD1AEFC164412F7FCE, 7390BCD7709D48DE75D7D6E06AA7356D1C58EE63F3CC2E07ABCD2E2FF6CC81CF ] C:\Windows\System32\PlaySndSrv.dll 21:01:06.0094 0x1380 C:\Windows\System32\PlaySndSrv.dll - ok 21:01:06.0104 0x1380 [ 88351B29B622B30962D2FEB6CA8D860B, A16CAD7D94C1C9807083BB36E9B4C3C14E6482C4CA2BDFACBCC86E737DDCE42E ] C:\Windows\System32\rasadhlp.dll 21:01:06.0104 0x1380 C:\Windows\System32\rasadhlp.dll - ok 21:01:06.0104 0x1380 [ 522B0466ED967A0762E9AF5B37D8F40A, B14C62D059BC7CF430E1B0F6E18E31EFD1959EFB3025A2B0EBB11751F38DD6D4 ] C:\Windows\System32\esent.dll 21:01:06.0104 0x1380 C:\Windows\System32\esent.dll - ok 21:01:06.0114 0x1380 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051, 8EFD0A6DE6F4E335D342782190008FB5AC84A6ADE49170B310DEC9AC48E623E8 ] C:\Windows\System32\localspl.dll 21:01:06.0114 0x1380 C:\Windows\System32\localspl.dll - ok 21:01:06.0114 0x1380 [ 4002EB562AE29FFF1EAFCE2E82CC6738, 1CA780378A94C3E00E7AE4B4791434549AB14773A3450A3D992756FE649A91ED ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4ED82FD5-EE1A-4F1A-9BF3-F435C74809E1}\mpasdlta.vdm 21:01:06.0114 0x1380 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4ED82FD5-EE1A-4F1A-9BF3-F435C74809E1}\mpasdlta.vdm - ok 21:01:06.0124 0x1380 [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\SysWOW64\IPHLPAPI.DLL 21:01:06.0124 0x1380 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok 21:01:06.0124 0x1380 [ 2FCA0D2C59A855C54BAFA22AA329DF0F, ED9D26F539065D62FCCEDEEC8E509B30F4D15F8DA586C1F657ACEFE9DABAACD0 ] C:\Windows\SysWOW64\netapi32.dll 21:01:06.0124 0x1380 C:\Windows\SysWOW64\netapi32.dll - ok 21:01:06.0134 0x1380 [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\SysWOW64\netutils.dll 21:01:06.0134 0x1380 C:\Windows\SysWOW64\netutils.dll - ok 21:01:06.0134 0x1380 [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\SysWOW64\nsi.dll 21:01:06.0134 0x1380 C:\Windows\SysWOW64\nsi.dll - ok 21:01:06.0134 0x1380 [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\SysWOW64\srvcli.dll 21:01:06.0134 0x1380 C:\Windows\SysWOW64\srvcli.dll - ok 21:01:06.0144 0x1380 [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\SysWOW64\winnsi.dll 21:01:06.0144 0x1380 C:\Windows\SysWOW64\winnsi.dll - ok 21:01:06.0144 0x1380 [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\SysWOW64\wkscli.dll 21:01:06.0154 0x1380 C:\Windows\SysWOW64\wkscli.dll - ok 21:01:06.0154 0x1380 [ 352B3DC62A0D259A82A052238425C872, 393B24E0D6007C74AEE2FB2EE2C18623D37DF64E279B6767952DCFEE0EACBB10 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll 21:01:06.0154 0x1380 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok 21:01:06.0164 0x1380 [ 332FEAB1435662FC6C672E25BEB37BE3, 6BED1A3A956A859EF4420FEB2466C040800EAF01EF53214EF9DAB53AEFF1CFF0 ] C:\Windows\explorer.exe 21:01:06.0164 0x1380 C:\Windows\explorer.exe - ok 21:01:06.0164 0x1380 [ 9AE80F6A66B30E3ED8CDF858CF28B11B, A93E470DC54E3C74C10979D49CABB9A34893F9E847F88491F935DB44EEC3541A ] C:\Windows\System32\d3d10_1.dll 21:01:06.0164 0x1380 C:\Windows\System32\d3d10_1.dll - ok 21:01:06.0174 0x1380 [ 63F72417CA38D8FC8F53709649B589E3, 39AE8AFFCFB8A9E345FC4C6F11926F25552C464380F88CDECD299FD27AF7866B ] C:\Windows\System32\d3d10_1core.dll 21:01:06.0174 0x1380 C:\Windows\System32\d3d10_1core.dll - ok 21:01:06.0174 0x1380 [ 3285481F5C12305CA104A6C493CA5A0B, ADB39B15D26A954B0F347C7BAFCC76DE5E3CF3CF05736E8987E0832AA7F8563C ] C:\Windows\System32\spoolss.dll 21:01:06.0174 0x1380 C:\Windows\System32\spoolss.dll - ok 21:01:06.0184 0x1380 [ 8DFB5752FCE145A6B295093C0A8BE131, F38029C8B36EFD46B1F6CCA0089FF4EFB0AB246497E38EDFF6A67FAC804D4A97 ] C:\Windows\System32\dxgi.dll 21:01:06.0184 0x1380 C:\Windows\System32\dxgi.dll - ok 21:01:06.0184 0x1380 [ 0015ACFBBDD164A8A730009908868CA7, E1FF243AD2CF959FAB81EFE701592414991C03416FF296ADC93906E76B707C4D ] C:\Windows\System32\winspool.drv 21:01:06.0184 0x1380 C:\Windows\System32\winspool.drv - ok 21:01:06.0184 0x1380 [ 93B9E4D0B7BD601372C5B50FE0381533, 46BB0C9782FD6DF15ACF324958D292899900119F5BD75F73585FCA10966A6972 ] C:\Windows\System32\CNMLMAW.DLL 21:01:06.0184 0x1380 C:\Windows\System32\CNMLMAW.DLL - ok 21:01:06.0194 0x1380 [ C5AC93CF3BA30D367FB49148A2B673B9, 07B556039BBA841BC9F28979C3AD5D238B55391F921C9C805F3AFC9EFB437766 ] C:\Windows\System32\PrintIsolationProxy.dll 21:01:06.0194 0x1380 C:\Windows\System32\PrintIsolationProxy.dll - ok 21:01:06.0194 0x1380 [ 4C92EB7535CAA1681A77D928FBF9771F, 7D02B2357CA02393CA711C3C499AAD86B792EEFFDC67F2CE52F7F7BB8A28DE79 ] C:\Windows\System32\d3d11.dll 21:01:06.0194 0x1380 C:\Windows\System32\d3d11.dll - ok 21:01:06.0194 0x1380 [ 19E41CCCEE697CC9465396B370929792, A9FC4C33C71C3677FE57779380E55FDE2AC0B0C70A9DBCBA0D0B6FA92C709A7F ] C:\Windows\System32\FXSMON.dll 21:01:06.0194 0x1380 C:\Windows\System32\FXSMON.dll - ok 21:01:06.0204 0x1380 [ 32A3C8600AF124CBAAD845F13CFAE3CB, F36FE9E57D5C509FEECE890F9F8717F9CC6F762E32AE0B7DB7E0153370CE0B9D ] C:\Windows\System32\tcpmon.dll 21:01:06.0204 0x1380 C:\Windows\System32\tcpmon.dll - ok 21:01:06.0204 0x1380 [ 93518C6EDE0B61BCBD02BDB02BD05FEE, 3637F5E5F15093AFB501EE910368CF900B422AC22669391FFA4198BBAE6F8FCB ] C:\Windows\System32\snmpapi.dll 21:01:06.0204 0x1380 C:\Windows\System32\snmpapi.dll - ok 21:01:06.0204 0x1380 [ EF73976903AB2674574C37D0ED62741F, 4FFF2D44867E836107BD4EC08907839EE31FE24A486B2D41ACE17EC27E102F92 ] C:\Windows\System32\TBTMon.dll 21:01:06.0204 0x1380 C:\Windows\System32\TBTMon.dll - ok 21:01:06.0214 0x1380 [ FFF9D00CF16397C64317F213484F94BD, 94D0584E14BDB27F61F59A7BCEA529A1594261BE0CE74502C13E8865843BA414 ] C:\Windows\System32\wsnmp32.dll 21:01:06.0214 0x1380 C:\Windows\System32\wsnmp32.dll - ok 21:01:06.0214 0x1380 [ CB55B9AAB060C803BE4AD229AA0FEC28, 58CF3D7BC275E4460766A5FC1B5D871C1F8995071AB81BB04BFB7BF98E0C9866 ] C:\Windows\SysWOW64\msi.dll 21:01:06.0214 0x1380 C:\Windows\SysWOW64\msi.dll - ok 21:01:06.0224 0x1380 [ BC01DF232FD65E50A4FCDF349526AB27, 5A750FBE74BEDDEE668CDB73DB3E24A0A47B5091CF4024BC6549EF43CB9023C9 ] C:\Windows\System32\tbtmon98Language.dll 21:01:06.0224 0x1380 C:\Windows\System32\tbtmon98Language.dll - ok 21:01:06.0224 0x1380 [ 1274AA4D87F32549574DBCEA0DE94ACC, 27F5AC6917DAA097CE2009DE196F481784C3BEFFC870201C330618E54FEE312F ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\x64\TosBtHcrpAPI.dll 21:01:06.0224 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\x64\TosBtHcrpAPI.dll - ok 21:01:06.0224 0x1380 [ 66A62631AE1CEBA4B05209B85758A3C3, 1D662AA8889BE7BAEA1BC4D0A13CE2AA072C58140ACB15DA9B195B23F861FF33 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\x64\TosBtAPI.dll 21:01:06.0224 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\x64\TosBtAPI.dll - ok 21:01:06.0234 0x1380 [ 5227EB7B6737D832C331226F0EB66BA5, 77D9A79E289EFB2FC8A0A807E8EEDECFF54899253922C0F1AC64BC787F746474 ] C:\Windows\System32\aticfx64.dll 21:01:06.0234 0x1380 C:\Windows\System32\aticfx64.dll - ok 21:01:06.0234 0x1380 [ D062A812C2C32214F1FF9109EB8A18ED, 6DD38FCF182165EA3726B80C78A143D85E40A79312C8C98B07E3BC497BBA11B8 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\tosIndicator\02ddce1d600353d95274909822e76c6f\tosIndicator.ni.exe 21:01:06.0234 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_32\tosIndicator\02ddce1d600353d95274909822e76c6f\tosIndicator.ni.exe - ok 21:01:06.0244 0x1380 [ 4230BC6DCDE1AF56C9EEDDEE37C311FB, 8BE65562DDF0DCA3C532B19764C08907607C83108F59C286E6530E2C584E40B2 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\x64\TosBdAPI.dll 21:01:06.0244 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\x64\TosBdAPI.dll - ok 21:01:06.0244 0x1380 [ DF72A9936D0C3F517083119648814B09, 6BA4DCAC2F55A393A266ED0B2AF92B38141654D1666E3E143D85BBAF21663E1E ] C:\Windows\System32\usbmon.dll 21:01:06.0244 0x1380 C:\Windows\System32\usbmon.dll - ok 21:01:06.0244 0x1380 [ 0B136B4CEF5B054C6686A848A00A0880, A00EBBB287CDC18D7EB3FD1D38B9329DE497F9143D3ABE59EF1613715ED94E06 ] C:\Windows\System32\atidxx64.dll 21:01:06.0244 0x1380 C:\Windows\System32\atidxx64.dll - ok 21:01:06.0254 0x1380 [ D356979344CFD7E41A2115A840660164, 3DBC2701592E304813B2531E6861DB55715E63F7F9C822A72428C0E9557B457F ] C:\Windows\System32\atiuxp64.dll 21:01:06.0254 0x1380 C:\Windows\System32\atiuxp64.dll - ok 21:01:06.0254 0x1380 [ EED05D42D91835064703E2318552ED25, E9EE1E2253445B207B76F5D3073C612ED979A982522C1515E0FE8FA9641AE568 ] C:\Windows\System32\ExplorerFrame.dll 21:01:06.0254 0x1380 C:\Windows\System32\ExplorerFrame.dll - ok 21:01:06.0264 0x1380 [ A1D7E3ADCDB07DDB6F423862DCB1A52B, 6191C33D2AE090F6F055D6AE211096CE8F003EC5518A5333EE1E376052176BAB ] C:\Windows\System32\WSDMon.dll 21:01:06.0264 0x1380 C:\Windows\System32\WSDMon.dll - ok 21:01:06.0264 0x1380 [ 07E182AA3ED9DF0166F72B40DCC2CBA1, 7A344551575EEC33AD2BFF40B5AE8FBB55467D14F2620C6C34457941BB2D184B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\d97a5aa0eb7697aca7c6e90ae471af2b\WindowsBase.ni.dll 21:01:06.0264 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\d97a5aa0eb7697aca7c6e90ae471af2b\WindowsBase.ni.dll - ok 21:01:06.0264 0x1380 [ 4581716B4BF76ACFD8E167EB0B26D82A, 39D822527114EEED68044CCE4D542767F53978D9E0A7F72638F1CA9A016DE13B ] C:\Windows\System32\fdPnp.dll 21:01:06.0264 0x1380 C:\Windows\System32\fdPnp.dll - ok 21:01:06.0274 0x1380 [ 474E7750C4ACDC5CBEDF9923A56E977B, 8D19F7619B050B4ACFB87689FEE60B80195C2E2E3BAF4196203E3B34D3120292 ] C:\Windows\System32\spool\prtprocs\x64\CNMPDAW.DLL 21:01:06.0274 0x1380 C:\Windows\System32\spool\prtprocs\x64\CNMPDAW.DLL - ok 21:01:06.0274 0x1380 [ 1D626FE2E13C1CE49CA0136CFF214E93, 4F02DD92045CF244979FFD074B2BDE6925A909227A474C60DCABE4384D916218 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll 21:01:06.0274 0x1380 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok 21:01:06.0284 0x1380 [ 67CF11E00D026A5C0C88EA5F84D501E5, 5081A87466116232CF07F58229967B6C0CD3738B64A56EFC6BB3EBDA62E378F6 ] C:\Windows\System32\win32spl.dll 21:01:06.0284 0x1380 C:\Windows\System32\win32spl.dll - ok 21:01:06.0284 0x1380 [ 18AB2E5A40064ED5F7791AC5946A90F3, B7536CE56702C23B1CEC3E1B6C78866E0A76808B85A92AF3733D9ED9429E004C ] C:\Windows\SysWOW64\msimg32.dll 21:01:06.0284 0x1380 C:\Windows\SysWOW64\msimg32.dll - ok 21:01:06.0284 0x1380 [ 507D5567A0A4EE86C4B0CE2CE1777025, 408770B00CED498BF7782054F17A5CB361CF65429B0C816403D70E416E0EEF23 ] C:\Windows\System32\inetpp.dll 21:01:06.0284 0x1380 C:\Windows\System32\inetpp.dll - ok 21:01:06.0294 0x1380 [ 1BF0CB861A48FEB1638228760750F3CB, 37C781A8C546EAD8B4D28BD7D730B9AC78EB799599AD69DAD9054B6F9F1DD6BD ] C:\Windows\System32\cscapi.dll 21:01:06.0294 0x1380 C:\Windows\System32\cscapi.dll - ok 21:01:06.0294 0x1380 [ 9699DB0085C06D5E1D03089D88CA13B9, A6D30D8B0E7E05EEBD741208DB189FF791ECB9669BC9D36E28555701B3D51A64 ] C:\Windows\System32\spool\drivers\x64\3\PS5UI.DLL 21:01:06.0294 0x1380 C:\Windows\System32\spool\drivers\x64\3\PS5UI.DLL - ok 21:01:06.0294 0x1380 [ EFEC3847B47CC9357D5C33BBAB59B7EB, C093AF387AC9B7C5FA92D90DB1C3EC228A2C64CE4229539A25C8A47AD7E6D133 ] C:\Windows\System32\mgmtapi.dll 21:01:06.0294 0x1380 C:\Windows\System32\mgmtapi.dll - ok 21:01:06.0304 0x1380 [ 22F020C76E339EB2B2187BA73A7E4173, 4605BF0C708441D146D2F902BB340858E314FCA70A4C88EB31CF3544C865C123 ] C:\Windows\System32\PrintIsolationHost.exe 21:01:06.0304 0x1380 C:\Windows\System32\PrintIsolationHost.exe - ok 21:01:06.0304 0x1380 [ E81F5A2F6D52215C0E84F2849503EBA8, D372F90035F38A91703E8C017A26D6BB91FDF9B65B7B6DA24BB9D25485A91942 ] C:\Windows\System32\tcpmib.dll 21:01:06.0304 0x1380 C:\Windows\System32\tcpmib.dll - ok 21:01:06.0304 0x1380 [ 211A1CFF92CF7F70EB61606ABB729615, 9FE3E91A81F8DF0996063BA3BB24C2F915EAB583035F1D219DF3FCBDADAC8D66 ] C:\Windows\System32\spool\drivers\x64\3\PSCRIPT5.DLL 21:01:06.0304 0x1380 C:\Windows\System32\spool\drivers\x64\3\PSCRIPT5.DLL - ok 21:01:06.0314 0x1380 [ 9FA56171C452530E2F51E3238B52140B, 354CC4439429FEB625A7D786E6DBBFAD48D93094516CD2EAC426781692D46E1E ] C:\Windows\System32\bidispl.dll 21:01:06.0314 0x1380 C:\Windows\System32\bidispl.dll - ok 21:01:06.0314 0x1380 [ 788537818D8867308D03C561DAF55BDB, 8F6FDE1C2AB1EB07E7AACA9521AD8A3721E19D832137E8CCB7817E71455F9177 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\3d4f835b8078dacc8d5da623e2c3f0ee\PresentationCore.ni.dll 21:01:06.0314 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\3d4f835b8078dacc8d5da623e2c3f0ee\PresentationCore.ni.dll - ok 21:01:06.0324 0x1380 [ 49E5753D923F1AC63B22D3DCB0B47E00, 14CEC0BF5F625FF839A8D79B4A6B7C4AC0CBB705FD197C6B7FF8617C6C3E34FE ] C:\Windows\System32\uDWM.dll 21:01:06.0324 0x1380 C:\Windows\System32\uDWM.dll - ok 21:01:06.0324 0x1380 [ FDC385A0F7D7DD880C4622D1DF08ABE9, D9596264D98B09A5C44DD63B69B7253377B5FF237B6F2C4F97258E86FFAD055A ] C:\Windows\System32\ntprint.dll 21:01:06.0324 0x1380 C:\Windows\System32\ntprint.dll - ok 21:01:06.0324 0x1380 [ 00000000000000000000000000000000, 0000000000000000000000000000000000000000000000000000000000000000 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4ED82FD5-EE1A-4F1A-9BF3-F435C74809E1}\mpavbase.vdm 21:01:06.0324 0x1380 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4ED82FD5-EE1A-4F1A-9BF3-F435C74809E1}\mpavbase.vdm - ok 21:01:06.0334 0x1380 [ 1382FB55EF6C7CED727E050E82ED8566, 8FF3DE959E02D6B87DC39B13B7F6E130840982D1266DCA53520AA7E2D7013E1B ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4ED82FD5-EE1A-4F1A-9BF3-F435C74809E1}\mpavdlta.vdm 21:01:06.0334 0x1380 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4ED82FD5-EE1A-4F1A-9BF3-F435C74809E1}\mpavdlta.vdm - ok 21:01:06.0334 0x1380 [ 024352FEEC9042260BB4CFB4D79A206B, 60CB39086E10C5B66EBC15E4DF219620B344B4358D2918AB6BB3448A0AC8BE36 ] C:\Windows\System32\EhStorShell.dll 21:01:06.0334 0x1380 C:\Windows\System32\EhStorShell.dll - ok 21:01:06.0334 0x1380 [ 32802C0F6FC7C8F561B9D91F52A46421, EE02CF54FC3626D85849EF14D9B7B57419F12D1DD0735C25ECBD987EE53F634B ] C:\Windows\System32\cscui.dll 21:01:06.0334 0x1380 C:\Windows\System32\cscui.dll - ok 21:01:06.0344 0x1380 [ 7EE5F17A21D9A9101207DF4BC37B085D, C07A56D52449B9F126B617FB4EFDC22EFE043C9B257B01967EA2FCCCA6216763 ] C:\Windows\System32\cscdll.dll 21:01:06.0344 0x1380 C:\Windows\System32\cscdll.dll - ok 21:01:06.0344 0x1380 [ 037A719DAD50603202C978CD802623E4, BD4C222913D32D7CF5FE0201FEBE7BD67FC39DF47A7A672C2D6C228A6E13B5DE ] C:\Windows\System32\ntshrui.dll 21:01:06.0344 0x1380 C:\Windows\System32\ntshrui.dll - ok 21:01:06.0354 0x1380 [ 1D63F4366288B8A7595397E27010FD44, 99EA4DDD88D9C4A4CC9B238F533CB4D2C062D46239173997E8594D8A75811A01 ] C:\Windows\System32\IconCodecService.dll 21:01:06.0354 0x1380 C:\Windows\System32\IconCodecService.dll - ok 21:01:06.0354 0x1380 [ 6951562DC4625EEFC6EACD52AD165866, 44A0B3EA0232D613A5B4115492DF2A7CEF25B35300E6A3E3E50C9544C5D1049E ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll 21:01:06.0354 0x1380 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok 21:01:06.0354 0x1380 [ 589CBC4989F750E1DA35625AB481CF43, B93E1B8C3775F9C995FD5451C685A06DEFD24AE1DF0DD99D19D5E4B9AC0010F9 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll 21:01:06.0354 0x1380 C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok 21:01:06.0364 0x1380 [ 3BE0D923AA45A4DBE091C2D84F0B4FE7, 603EEC55D6F646150FC3F0F2C939CFE434C02FC7A7AB23B1FEC8B5C77E4C8381 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll 21:01:06.0364 0x1380 C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok 21:01:06.0364 0x1380 [ 2E33DFD10F28F86C3FC40EE123CC3904, 57C65671A04EFCA437A69E8E97B2FCA17897EE4608C7DB69F77D44FBD3490B50 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll 21:01:06.0364 0x1380 C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok 21:01:06.0364 0x1380 [ 01777AB557997E98691E322225314E57, D22FC24CEC1516058E99091B6F580DF52A94FA06BC153EE5CF8329AC1B54D6FA ] C:\Windows\SysWOW64\iertutil.dll 21:01:06.0364 0x1380 C:\Windows\SysWOW64\iertutil.dll - ok 21:01:06.0374 0x1380 [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\SysWOW64\version.dll 21:01:06.0374 0x1380 C:\Windows\SysWOW64\version.dll - ok 21:01:06.0374 0x1380 [ 63B98B3DC93C957A4AED4487DD3B6B0C, 6B09EEAD649823105C3C0D563F9DB4CA8A168B65581DC6F39DB39851343A719A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\1f539baa94516139240877cb6afd72c2\PresentationFramework.ni.dll 21:01:06.0374 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\1f539baa94516139240877cb6afd72c2\PresentationFramework.ni.dll - ok 21:01:06.0374 0x1380 [ 5DD8C3863757690D38BA3A487559CA5A, 062AF2721E1847FD000E1D8AD71A1F0EF4B830506E4680D3BF79FFE4BB3C0ACA ] C:\Program Files\Microsoft Security Client\MsMpLics.dll 21:01:06.0374 0x1380 C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok 21:01:06.0384 0x1380 [ D478A4CF07FB8ADF72FB16B88E8030B8, C595E1A3B8D7D1DD4604AA5183805B01AA419FD09A3DD587C6F55150235DF06D ] C:\Windows\System32\mshtml.dll 21:01:06.0384 0x1380 C:\Windows\System32\mshtml.dll - ok 21:01:06.0384 0x1380 [ 8DFB5078508924FA725C203CE179B10C, A26A42B331C75D455074B597B982D4CB734B57F1F527C7B2EDBCD0746C38CD52 ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll 21:01:06.0384 0x1380 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok 21:01:06.0394 0x1380 [ E0E5BB58A4C43F7DBB83352785F32DEF, 03000DF8B9C6D1E13F85730643797413EEE8221653A761FFBECB0AE64457F9E4 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll 21:01:06.0394 0x1380 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok 21:01:06.0394 0x1380 [ 32BFAE767DE0B73DC0B9F2ACC976F068, 65B1AE831FD99F661CBBD53BE737DAB6F77F504C7D6C474D955A6374971500C8 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll 21:01:06.0394 0x1380 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok 21:01:06.0394 0x1380 [ 6B07EE9C7668D2C704563DA838026828, CFC0CA7F9F3ADF14FBA9AF6182F0260CF6B6C088F3A9DF6FD20B51B483385BBB ] C:\Windows\SysWOW64\cryptsp.dll 21:01:06.0394 0x1380 C:\Windows\SysWOW64\cryptsp.dll - ok 21:01:06.0404 0x1380 [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\SysWOW64\dwmapi.dll 21:01:06.0404 0x1380 C:\Windows\SysWOW64\dwmapi.dll - ok 21:01:06.0404 0x1380 [ 5997D769CDB108390DCFAEBF442BF816, 0E25CA984C0EEB629184423FAA9BC6D4356DF9A93F281E06DC83B4AC638AEC4A ] C:\Windows\SysWOW64\RpcRtRemote.dll 21:01:06.0404 0x1380 C:\Windows\SysWOW64\RpcRtRemote.dll - ok 21:01:06.0404 0x1380 [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\SysWOW64\rsaenh.dll 21:01:06.0404 0x1380 C:\Windows\SysWOW64\rsaenh.dll - ok 21:01:06.0414 0x1380 [ B010CF886420EE29C2C276646721D255, CBCD032D679ADE3A9942A1D116648D6A9ECC71F66F8630629E724E5EE23F9F73 ] C:\Windows\SysWOW64\wlanapi.dll 21:01:06.0414 0x1380 C:\Windows\SysWOW64\wlanapi.dll - ok 21:01:06.0414 0x1380 [ 1D6A771D1D702AE07919DB52C889A249, E5F3378AC40AEE6114EEAF3BF11DC1059466891CAE353E80C08622A60485C954 ] C:\Windows\SysWOW64\wlanutil.dll 21:01:06.0414 0x1380 C:\Windows\SysWOW64\wlanutil.dll - ok 21:01:06.0424 0x1380 [ 6EF5F3F18413C367195F06E503AB86A6, 6F8B87FB4D67F9E76A51EF759B58A95D903C4AAC9C789A65A3FA1FC4F253D978 ] C:\Windows\SysWOW64\d3d9.dll 21:01:06.0424 0x1380 C:\Windows\SysWOW64\d3d9.dll - ok 21:01:06.0424 0x1380 [ 77B1471A490B53B24EFE136F09F76550, A650C3A244306F8E605BDA8E74BFE438356BA4403B0CB61E980D3183E3F0A7C7 ] C:\Windows\SysWOW64\d3d8thk.dll 21:01:06.0424 0x1380 C:\Windows\SysWOW64\d3d8thk.dll - ok 21:01:06.0424 0x1380 [ 97CD0F1258A474EDD7EF1644A0498F52, DD3E82AB1B47349545248B2A04BD1B7F663A99A693D926A2DFF42290B7C6DF73 ] C:\Windows\SysWOW64\aticfx32.dll 21:01:06.0424 0x1380 C:\Windows\SysWOW64\aticfx32.dll - ok 21:01:06.0434 0x1380 [ D0F9B8F69581E86CC4D5920BE59BA979, C68362B9517283C727A25F91723204AA5B438170B4B10AB204E106CB6D69D9C1 ] C:\Windows\SysWOW64\atiu9pag.dll 21:01:06.0434 0x1380 C:\Windows\SysWOW64\atiu9pag.dll - ok 21:01:06.0434 0x1380 [ D4E2D19CE3FAEA52F92B27D82AE12AF8, 049C46ED861D36EE54AC91D7B4FEA7D5A855ECC04EA9FA1505375795B2E59704 ] C:\Windows\SysWOW64\atiumdag.dll 21:01:06.0434 0x1380 C:\Windows\SysWOW64\atiumdag.dll - ok 21:01:06.0434 0x1380 [ AC5DD034FE9150472D29E2356A2B38DB, EECBCB86B3CA3854E671DA608F565D39AA82BB0CF90FA491AE53DC888913F095 ] C:\Windows\SysWOW64\atiumdva.dll 21:01:06.0434 0x1380 C:\Windows\SysWOW64\atiumdva.dll - ok 21:01:06.0444 0x1380 [ DE5D2DD02382DB98FCA90DE8169F27DE, 81E9EF6E7093516F8E89B6F19F478A303249829CF376DED5255AD913A4F5CCDC ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\7b22741531a2850c807656d0298a96bd\PresentationFramework.Aero.ni.dll 21:01:06.0444 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\7b22741531a2850c807656d0298a96bd\PresentationFramework.Aero.ni.dll - ok 21:01:06.0444 0x1380 [ 2B9E8446B4A754FA5FFEF0126175644A, 57DA5D4DBFB0B3C676554247135DA2B0ACC1BD08E093609A5062CA444EE210E9 ] C:\Windows\assembly\GAC_MSIL\PresentationFramework.resources\3.0.0.0_pl_31bf3856ad364e35\PresentationFramework.resources.dll 21:01:06.0444 0x1380 C:\Windows\assembly\GAC_MSIL\PresentationFramework.resources\3.0.0.0_pl_31bf3856ad364e35\PresentationFramework.resources.dll - ok 21:01:06.0454 0x1380 [ 98611CC3037E05CD86808ABB89614802, 572CD3FAF1F637FB3860B67B8396DADCDF1BBFE4BC633676C259D7FBB645D514 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E1BB327A-84E9-41EB-B10D-C2465993D00D}\gapaengine.dll 21:01:06.0454 0x1380 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E1BB327A-84E9-41EB-B10D-C2465993D00D}\gapaengine.dll - ok 21:01:06.0454 0x1380 [ 218A400108F280428FA22282D3268BBC, 7712687ABAEF6616E90AE5A321044C102E79EC23F4A1EAFB4278C93724873CB3 ] C:\Windows\System32\wscapi.dll 21:01:06.0454 0x1380 C:\Windows\System32\wscapi.dll - ok 21:01:06.0454 0x1380 [ D5AEFAD57C08349A4393D987DF7C715D, C36A45BC2448DF30CD17BD2F8A17FC196FAFB685612CACCEB22DC7B58515C201 ] C:\Windows\SysWOW64\winmm.dll 21:01:06.0454 0x1380 C:\Windows\SysWOW64\winmm.dll - ok 21:01:06.0464 0x1380 [ 6A13B4F3B3F575F1E24B877B9359AABA, 676AD5F8F709D4A9DCE9938D82DEEE329C9A385A6969C169B3DF37AA75F1E4C7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll 21:01:06.0464 0x1380 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok 21:01:06.0464 0x1380 [ D15618A0FF8DBC2C5BF3726BACC75A0B, ADD81EA1D208907D67802F0E96EC0327BA89021F870BA22B9C7E3A19013A6AE7 ] C:\Windows\SysWOW64\userenv.dll 21:01:06.0464 0x1380 C:\Windows\SysWOW64\userenv.dll - ok 21:01:06.0464 0x1380 [ 7FF15A4F092CD4A96055BA69F903E3E9, 1B594E6D057C632ABB3A8CF838157369024BD6B9F515CA8E774B22FE71A11627 ] C:\Windows\SysWOW64\ws2_32.dll 21:01:06.0464 0x1380 C:\Windows\SysWOW64\ws2_32.dll - ok 21:01:06.0474 0x1380 [ 465BEA35F7ED4A4A57686DEA7EA10F47, 7F1B3CA09AB045F805DA5765BE7DD270F5DDACE3073017F7386FF1E2FA82D6FB ] C:\Windows\SysWOW64\cscapi.dll 21:01:06.0474 0x1380 C:\Windows\SysWOW64\cscapi.dll - ok 21:01:06.0474 0x1380 [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\SysWOW64\ntmarta.dll 21:01:06.0474 0x1380 C:\Windows\SysWOW64\ntmarta.dll - ok 21:01:06.0484 0x1380 [ CA9F7888B524D8100B977C81F44C3234, 57F3353F89724147D8AC8B69B12C1303DF26978309776F5F8CCF074526A915D3 ] C:\Windows\SysWOW64\winhttp.dll 21:01:06.0484 0x1380 C:\Windows\SysWOW64\winhttp.dll - ok 21:01:06.0484 0x1380 [ A8BB45F9ECAD993461E0FEF8E2A99152, ACB756EA54E71F124D928829666B5B439785593877FF7C0C76ADCF954F4E6C94 ] C:\Windows\SysWOW64\Wldap32.dll 21:01:06.0484 0x1380 C:\Windows\SysWOW64\Wldap32.dll - ok 21:01:06.0484 0x1380 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8, B07A12E3ECD5E418A3F99F00C56E7F482F68CADE330E7C079DCCDFFAD2E21299 ] C:\Windows\SysWOW64\dbghelp.dll 21:01:06.0484 0x1380 C:\Windows\SysWOW64\dbghelp.dll - ok 21:01:06.0494 0x1380 [ FB19FC5951A88F3C523E35C2C98D23C0, FF0DB8BF0C68DA0D09272E8181D2B5409C8850BB2F31AEA3AC4CD14C5A420A59 ] C:\Windows\SysWOW64\webio.dll 21:01:06.0494 0x1380 C:\Windows\SysWOW64\webio.dll - ok 21:01:06.0494 0x1380 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] C:\Windows\System32\IKEEXT.DLL 21:01:06.0494 0x1380 C:\Windows\System32\IKEEXT.DLL - ok 21:01:06.0494 0x1380 [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\SysWOW64\psapi.dll 21:01:06.0494 0x1380 C:\Windows\SysWOW64\psapi.dll - ok 21:01:06.0494 0x1380 [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\SysWOW64\SensApi.dll 21:01:06.0504 0x1380 C:\Windows\SysWOW64\SensApi.dll - ok 21:01:06.0504 0x1380 [ F0356290BA3940F31AFF5566501495F7, 4F3C94D38B4648A6C16C1DE07FBA788B88D853E1541CD0642B40117B43F46F76 ] C:\Windows\System32\aepic.dll 21:01:06.0504 0x1380 C:\Windows\System32\aepic.dll - ok 21:01:06.0504 0x1380 [ 946010CDFA91469351B22E2620CEBCD8, F099C92706D42ADC289B72724F7932E5D4F62A427AEC967DDB0A1D728AE59A63 ] C:\Windows\System32\drivers\PEAuth.sys 21:01:06.0504 0x1380 C:\Windows\System32\drivers\PEAuth.sys - ok 21:01:06.0514 0x1380 [ D4FAC263861BAE06971C7F7D0A8EBF15, D494DEF0024288B9CC56EC6B500FF5828144BE9B8E7033340509EC5E68F8DED0 ] C:\Windows\System32\ncsi.dll 21:01:06.0514 0x1380 C:\Windows\System32\ncsi.dll - ok 21:01:06.0514 0x1380 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] C:\Windows\System32\nlasvc.dll 21:01:06.0514 0x1380 C:\Windows\System32\nlasvc.dll - ok 21:01:06.0514 0x1380 [ 863F793D15B4026B1A5FDECA873D4D84, AF7ABD95BB5467551562F129F03C7AC9D52A021F7E547609F40A80E66932C942 ] C:\Windows\SysWOW64\apphelp.dll 21:01:06.0514 0x1380 C:\Windows\SysWOW64\apphelp.dll - ok 21:01:06.0524 0x1380 [ CB8C1CC4F46FBAC78150754D77460C73, 2A8F6A2FFA85E1F068C539BDF100C8B4B02B2D1379FFC2607AA474890D8E7C0A ] C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe 21:01:06.0524 0x1380 C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe - ok 21:01:06.0524 0x1380 [ 3001D4FDBA4D8F48E0318E6C208E8B70, 63B9F54942FAFA77ABC624CA9C49B1093D8C7BF32E8AFD73DE7DE8F71000875D ] C:\Program Files (x86)\XTab\CmdShell.exe 21:01:06.0524 0x1380 C:\Program Files (x86)\XTab\CmdShell.exe - ok 21:01:06.0524 0x1380 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\drivers\secdrv.sys 21:01:06.0524 0x1380 C:\Windows\System32\drivers\secdrv.sys - ok 21:01:06.0534 0x1380 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] C:\Windows\System32\drivers\srvnet.sys 21:01:06.0534 0x1380 C:\Windows\System32\drivers\srvnet.sys - ok 21:01:06.0534 0x1380 [ 895C9AB0A855547445C4181195230757, 89BDA385D8CCB75C3D7B1BDFA567AC441A931F4E499C0835FEE9D010343FABB6 ] C:\Windows\System32\sfc_os.dll 21:01:06.0534 0x1380 C:\Windows\System32\sfc_os.dll - ok 21:01:06.0544 0x1380 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE, 4EFA41765E46E90C6CBDB0DC1E0CD375D7AB3307C477171EBAA6A16AC32E5211 ] C:\Windows\System32\ssdpapi.dll 21:01:06.0544 0x1380 C:\Windows\System32\ssdpapi.dll - ok 21:01:06.0544 0x1380 [ 3312302A5A3F1D1E060E74A3430174B5, 37B8F2FC4AC8827C56F5430E050725F07242EE61E6BBB8DF3BEBA0E4FA62CB40 ] C:\Windows\Installer\{B13EA808-3A8F-8E31-3851-661E1839DC64}\syshost.exe 21:01:06.0544 0x1380 C:\Windows\Installer\{B13EA808-3A8F-8E31-3851-661E1839DC64}\syshost.exe - ok 21:01:06.0544 0x1380 [ C6DCD1D11ED6827F05C00773C3E7053C, EA23BE261C9C04F44215D254D7A80FD0AEE84C6F192D0FEE49A7CF74ED3CB1A6 ] C:\Windows\System32\sfc.dll 21:01:06.0554 0x1380 C:\Windows\System32\sfc.dll - ok 21:01:06.0554 0x1380 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] C:\Windows\System32\wiaservc.dll 21:01:06.0554 0x1380 C:\Windows\System32\wiaservc.dll - ok 21:01:06.0554 0x1380 [ F34F6DC38A21FCDBB50CDD1EE97B1EA3, 1F5CC5AB99B2D548FD110A2B426E0822A0AF8C38E952215B4E76DDC2AB1223E0 ] C:\Windows\SysWOW64\urlmon.dll 21:01:06.0554 0x1380 C:\Windows\SysWOW64\urlmon.dll - ok 21:01:06.0564 0x1380 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8, B1A9B2EF000917214C0198958CBD239D1D91B1720EC40DF041262A34D302AD74 ] C:\Windows\SysWOW64\winspool.drv 21:01:06.0564 0x1380 C:\Windows\SysWOW64\winspool.drv - ok 21:01:06.0574 0x1380 [ 7161E8E31B7FD3B1CE083C2CA5FD5F44, 9DDF242C7B5D373064D1C5284C435E60214E90CE8E3A23F02FD6875C101F7C50 ] C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe 21:01:06.0574 0x1380 C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe - ok 21:01:06.0574 0x1380 [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\SysWOW64\clbcatq.dll 21:01:06.0574 0x1380 C:\Windows\SysWOW64\clbcatq.dll - ok 21:01:06.0584 0x1380 [ D1DE1EAFDE97BE41CF6585027FF3E732, 76F17D4DF440D6734DC8157092D94EB18C2A73A0A49BEEA289E7B3EDE30E86A2 ] C:\Windows\SysWOW64\comdlg32.dll 21:01:06.0584 0x1380 C:\Windows\SysWOW64\comdlg32.dll - ok 21:01:06.0584 0x1380 [ 49ACA548B2423F1C67898E6AC719A9A6, 23D84137EAB9AFDD31CBB6776B6B25AD135A120AF7F7885EB5BBF9E0A2CCC4C1 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll 21:01:06.0584 0x1380 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok 21:01:06.0604 0x1380 [ 1C60E09CA1C3A045BC4D367F67C915B7, DF1ED88CB57DA1AB1A4245AE0D5B42AFA3396EBF67B99411FFFB0DD06DE1AEAF ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll 21:01:06.0604 0x1380 C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok 21:01:06.0604 0x1380 [ 9216ABFD53F5EC1F35C3554AD1A175DE, 1A2CA1228D8A662176FFCA6F9959E2FE26768D4718677BD420D1CD24295A656B ] C:\Windows\SysWOW64\secur32.dll 21:01:06.0604 0x1380 C:\Windows\SysWOW64\secur32.dll - ok 21:01:06.0614 0x1380 [ 77B5035BC6EDF4D1B6265391AECEE4C0, FE69B715F04446BD42AF1B672E6AC54E954CFE0C847BFD2056CB11CF017B1844 ] C:\Windows\System32\vpnikeapi.dll 21:01:06.0614 0x1380 C:\Windows\System32\vpnikeapi.dll - ok 21:01:06.0621 0x1380 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5, BDA403E6CACC249C467671FB1FAF7B77FB019326BC18F9F6CF377104520E2654 ] C:\Windows\System32\wiatrace.dll 21:01:06.0621 0x1380 C:\Windows\System32\wiatrace.dll - ok 21:01:06.0626 0x1380 [ 75F5E1FE8D55CF8E577E0EC5F2290D3F, F4E2C81F0834018052A481AE8D7DF4780302A6844160CCDC09F7D82D3B992BDE ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll 21:01:06.0626 0x1380 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll - ok 21:01:06.0631 0x1380 [ C5A99A4C0DC9F0F5A95BA0C83D30A549, F99CCCE303F0FC07D82D3BBA223E8CCE41FB7FA8FB5C2A9214C161826537C7C9 ] C:\Windows\SysWOW64\mstask.dll 21:01:06.0631 0x1380 C:\Windows\SysWOW64\mstask.dll - ok 21:01:06.0634 0x1380 [ 936F728E04ACCF3F38801CFFCF1E3F40, 59CA86096F4B928E364B6A3C0408615F068BB8BC02DCFC5EAF4873EC6D6E0797 ] C:\Windows\SysWOW64\oledlg.dll 21:01:06.0636 0x1380 C:\Windows\SysWOW64\oledlg.dll - ok 21:01:06.0639 0x1380 [ 255F0417EC31C71585824269522EC8E9, EE25FB9239FF8C696CEC94F5C8036A2977788E47C12E848E320CC8C521BF5F36 ] C:\Windows\SysWOW64\wups.dll 21:01:06.0639 0x1380 C:\Windows\SysWOW64\wups.dll - ok 21:01:06.0644 0x1380 [ B40420876B9288E0A1C8CCA8A84E5DC9, 0D3C73B45BC708D7B1E26DFB6D4F64031A998548FEA0FB5CE198ED716F7DC9A0 ] C:\Windows\SysWOW64\dnsapi.dll 21:01:06.0644 0x1380 C:\Windows\SysWOW64\dnsapi.dll - ok 21:01:06.0646 0x1380 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] C:\Windows\System32\drivers\tcpipreg.sys 21:01:06.0646 0x1380 C:\Windows\System32\drivers\tcpipreg.sys - ok 21:01:06.0651 0x1380 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] C:\Windows\System32\sysmain.dll 21:01:06.0651 0x1380 C:\Windows\System32\sysmain.dll - ok 21:01:06.0656 0x1380 [ 9B032A63A0553A2D872815C64A0288BE, D441884C3922264A465199FD5EE413221C6E69C67FD3034FD05B5E17A14A27E6 ] C:\Windows\System32\ThpSrv.exe 21:01:06.0656 0x1380 C:\Windows\System32\ThpSrv.exe - ok 21:01:06.0659 0x1380 [ 8E2C799D3476EAC32C3BA0DF7CE6AF19, CFE8A69E3F2A42C3BA2B38EC9233076D0AD32C441500E6407219F2E866905D9B ] C:\Windows\System32\TODDSrv.exe 21:01:06.0661 0x1380 C:\Windows\System32\TODDSrv.exe - ok 21:01:06.0666 0x1380 [ CDC97FA5C42B07FB0D4600E17C32F582, 1801964D228E03FF72D01E714ECE76D3040DD89B8FE828821CF999E6CB455F53 ] C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe 21:01:06.0666 0x1380 C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe - ok 21:01:06.0671 0x1380 [ A7A8CA53D9C9FD90C07AB0EB38E5316B, B98722E76601A98F038F40703C4B8BD21B5EC3B65DC1B07B7C367C06448F8A0E ] C:\Windows\System32\dbghelp.dll 21:01:06.0671 0x1380 C:\Windows\System32\dbghelp.dll - ok 21:01:06.0674 0x1380 [ 20FC7C01204EC5AC975F5F793599A17D, B8976769372AC4F13D58AF36259E80DEBB7852248C2E9BA556B46E79B8A3B378 ] C:\Program Files\TOSHIBA\Power Saver\TPwrReg.dll 21:01:06.0674 0x1380 C:\Program Files\TOSHIBA\Power Saver\TPwrReg.dll - ok 21:01:06.0679 0x1380 [ 1E0892351AD2A85D3448978FFFD2CF25, E7C7226F5C8D7010D0D8C0ADD232A4A224550332D3A2AF5FCC9069A7CC5D2BCE ] C:\Program Files\TOSHIBA\Power Saver\TPwrFunc.dll 21:01:06.0679 0x1380 C:\Program Files\TOSHIBA\Power Saver\TPwrFunc.dll - ok 21:01:06.0684 0x1380 [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 21:01:06.0684 0x1380 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok 21:01:06.0689 0x1380 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] C:\Windows\System32\trkwks.dll 21:01:06.0689 0x1380 C:\Windows\System32\trkwks.dll - ok 21:01:06.0694 0x1380 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] C:\Windows\System32\wbem\WMIsvc.dll 21:01:06.0694 0x1380 C:\Windows\System32\wbem\WMIsvc.dll - ok 21:01:06.0696 0x1380 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE, A734A20357026C42950394682A52CBC3AF956D09F1949E1B4E95467E999BC428 ] C:\Windows\System32\wbemcomn.dll 21:01:06.0696 0x1380 C:\Windows\System32\wbemcomn.dll - ok 21:01:06.0701 0x1380 [ 0255C22D99602534F15CBB8D9B6F152F, 43CD89D6CA56E0B633142F7C86DA9E072EE0723B5EBC4CE8CCBCA58C396ECF54 ] C:\Windows\System32\wbem\WinMgmtR.dll 21:01:06.0701 0x1380 C:\Windows\System32\wbem\WinMgmtR.dll - ok 21:01:06.0706 0x1380 [ 0C52762C606BCF6A377D5E4688191A6B, C58C9A73AD07E3B93AB186D0D47C5F1CB7197771DBEE40646C3B801645BB388F ] C:\Windows\System32\wbem\WmiDcPrv.dll 21:01:06.0706 0x1380 C:\Windows\System32\wbem\WmiDcPrv.dll - ok 21:01:06.0711 0x1380 [ A3F5E8EC1316C3E2562B82694A251C9E, F3DC6AA6A9D3B5BBC730668FC52C1D4BB5D515D404578BDDD3D4869A7ED58822 ] C:\Windows\System32\wbem\fastprox.dll 21:01:06.0711 0x1380 C:\Windows\System32\wbem\fastprox.dll - ok 21:01:06.0719 0x1380 [ 93812FDC01AA864195816CD814445F95, E5CB2576DA2905177AFD342DBE63E17CF626F93F430DEBC55155C18C60166BEE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL 21:01:06.0719 0x1380 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok 21:01:06.0724 0x1380 [ B837D1528CE2E3CB79F09496BC08DDC6, ACD54CE61CFE94F23DC283537AD8FFBEB3D6041BD30317B60BA7A10FCB240A27 ] C:\Windows\System32\SensApi.dll 21:01:06.0724 0x1380 C:\Windows\System32\SensApi.dll - ok 21:01:06.0731 0x1380 [ 1075AB2C077B415760C0E948856B5126, D67804B4A038FC06BD84CBF9C047DD4C13073622027F825371DB98867EF4E9B9 ] C:\Windows\System32\wer.dll 21:01:06.0731 0x1380 C:\Windows\System32\wer.dll - ok 21:01:06.0736 0x1380 [ EE26D130808D16C0E417BBBED0451B34, 4886DCE4FAEF146A40BABD492A8000A2022FEA542A6135A9BAFD4CD09297B4E5 ] C:\Windows\System32\ntdsapi.dll 21:01:06.0736 0x1380 C:\Windows\System32\ntdsapi.dll - ok 21:01:06.0739 0x1380 [ 6354FF478451DC33755FFAEA5163EABB, D0D3D42BA0441209CEC0506A29BC600732962892F1EC6FE3B46775F0DBD36B24 ] C:\PROGRA~2\YOUTUB~1\YouTubeAcceleratorService.exe 21:01:06.0739 0x1380 C:\PROGRA~2\YOUTUB~1\YouTubeAcceleratorService.exe - ok 21:01:06.0746 0x1380 [ 666A60F6F5E719856FF6254E0966EFF7, 58C072E7E215991E19C1CA062C476081982F7B9F039714539AE7FEB4981C200F ] C:\Windows\System32\wbem\wbemprox.dll 21:01:06.0746 0x1380 C:\Windows\System32\wbem\wbemprox.dll - ok 21:01:06.0751 0x1380 [ 5EB55F661DEBF156E126160BCD4D89F8, 948D1F627AA55D55FB3B558BA61B8366C5481A6041820631F24408F75EA5D2CC ] C:\Windows\System32\wbem\wbemcore.dll 21:01:06.0751 0x1380 C:\Windows\System32\wbem\wbemcore.dll - ok 21:01:06.0754 0x1380 [ 087D8668C71634A3A3761135ABF16EEE, B7348A63299CFF4FFBF375E645A4850AE0F108D48D13AB25434CFAE7CF3D61FD ] C:\Windows\System32\wbem\esscli.dll 21:01:06.0754 0x1380 C:\Windows\System32\wbem\esscli.dll - ok 21:01:06.0759 0x1380 [ 2ABDEC2F3EDB5A15808713C08A21BF7E, 9C125841824D1376495EC7D1E1D3DF20635B9E8215FDECE25FAB70E874B8D9DB ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 21:01:06.0759 0x1380 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok 21:01:06.0761 0x1380 [ 364ECFF4ABD9D575F4F7CF7EB7928EF3, BA2E0A2AC40AE75A6ED2284B9066AB447C4F328000146B4C72BC1CA922827065 ] C:\Windows\System32\msxml3.dll 21:01:06.0761 0x1380 C:\Windows\System32\msxml3.dll - ok 21:01:06.0764 0x1380 [ 718B6F51AB7F6FE2988A36868F9AD3AB, 76141B4E94C2766E2C34CEF523092948771A7893212EFADBE88D2171B85FF012 ] C:\Windows\System32\wbem\wbemsvc.dll 21:01:06.0764 0x1380 C:\Windows\System32\wbem\wbemsvc.dll - ok 21:01:06.0769 0x1380 [ 0143DB80DACFB7C2B5B7009ED9063353, 252885CF7C1BAB89B86908373546E5F5D674BEF7AACBDDCF321AD877CB9150A9 ] C:\Windows\System32\wbem\wmiutils.dll 21:01:06.0769 0x1380 C:\Windows\System32\wbem\wmiutils.dll - ok 21:01:06.0771 0x1380 [ 0AB34456654C283DAA13B8D2BA21439B, 4B70FC5195DE39564E951C8542020BA3D4257E3D4488F69825F67A6099CB7549 ] C:\Windows\System32\wbem\repdrvfs.dll 21:01:06.0771 0x1380 C:\Windows\System32\wbem\repdrvfs.dll - ok 21:01:06.0776 0x1380 [ 2A46FFE841EC43001D5A293A54DB34DE, 8ED96FA434B48B0C1772195ED477536960C84CAFCE9A9A43543DFFA85483B00D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE 21:01:06.0776 0x1380 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok 21:01:06.0781 0x1380 [ 784A50A6A09C25F011C3143DDD68E729, 661F5D4CE4F0A6CB32669A43CE5DEEC6D5A9E19B2387F22C5012405E92169943 ] C:\Windows\SysWOW64\netsh.exe 21:01:06.0781 0x1380 C:\Windows\SysWOW64\netsh.exe - ok 21:01:06.0786 0x1380 [ F11A57E91FDAECFB41A5CB21EB1EBC8E, 904DA963F2274ADF521660E3131DAC781E59C6FAEB393E57802A3B5638C09283 ] C:\Windows\System32\dssenh.dll 21:01:06.0786 0x1380 C:\Windows\System32\dssenh.dll - ok 21:01:06.0789 0x1380 [ 210FCACAF902B2CD47CF9FD17D846146, 3F77AC721E084864C5966FF5337A90185F62203DC19C685328675500D629CB87 ] C:\Windows\System32\aeevts.dll 21:01:06.0789 0x1380 C:\Windows\System32\aeevts.dll - ok 21:01:06.0794 0x1380 [ 637982A421D0133DCEAA0D1490D1DC9C, CBAA8242C1013E4D9E48BEE146D6AC3ABF8B2370B7390D80A01344771A097B2A ] C:\Windows\System32\netsh.exe 21:01:06.0794 0x1380 C:\Windows\System32\netsh.exe - ok 21:01:06.0796 0x1380 [ E9BB0CD09DA17C71FD1B9954D75AEEF7, FF5E2F04F1FD56FDD19368150B5750275F0A44E9EA9820C8087E84ECBBF45286 ] C:\Windows\SysWOW64\credui.dll 21:01:06.0796 0x1380 C:\Windows\SysWOW64\credui.dll - ok 21:01:06.0801 0x1380 [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\SysWOW64\mpr.dll 21:01:06.0801 0x1380 C:\Windows\SysWOW64\mpr.dll - ok 21:01:06.0801 0x1380 [ 156537B623F9D9569658F96E53F35513, FCC3FEC7FE7C0E5E138D038506EEB321231D948A2D788285D0533C82B7ED4936 ] C:\Windows\SysWOW64\rasmontr.dll 21:01:06.0801 0x1380 C:\Windows\SysWOW64\rasmontr.dll - ok 21:01:06.0801 0x1380 [ D4191EFAB91E00FC09257AA5EBAF503B, 161B572CF4C65984EAFDBA95357373BC712AA414B52DDA23523F84151240E337 ] C:\Windows\SysWOW64\mprapi.dll 21:01:06.0801 0x1380 C:\Windows\SysWOW64\mprapi.dll - ok 21:01:06.0811 0x1380 [ 839F96DBAAFD3353E0B248A5E0BD2A51, 11DA5AD3EA5FF4766C12B99FB520B3CBE08581ECAF1A2FD1DC5AC835CA78FAC2 ] C:\Windows\SysWOW64\rasapi32.dll 21:01:06.0811 0x1380 C:\Windows\SysWOW64\rasapi32.dll - ok 21:01:06.0811 0x1380 [ FFA7172354B9256DBB2CDD75F16F33FE, 85B2F014C67C2E52540F17D561793C6633C9E98F12639CCD3854EB1EC34DD035 ] C:\Windows\SysWOW64\rasman.dll 21:01:06.0811 0x1380 C:\Windows\SysWOW64\rasman.dll - ok 21:01:06.0811 0x1380 [ F0D0E883EBBDC7615DC9EDEA0FFB2817, 58F1395445018CB16ED4D3710443FB5B0E087043F6A69F7B10D72D0455958954 ] C:\Windows\SysWOW64\FWPUCLNT.DLL 21:01:06.0811 0x1380 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok 21:01:06.0821 0x1380 [ 9D251702F2A9B2121C8085CB8F53F2DA, F46EDD3F197A760120AA11E14ABD2E9868A71F79480205A50564CDE642932651 ] C:\Program Files\Internet Explorer\sqmapi.dll 21:01:06.0821 0x1380 C:\Program Files\Internet Explorer\sqmapi.dll - ok 21:01:06.0821 0x1380 [ 45FB05F743E626D9E239E52602CEA041, 947F9DD7B6AD7A5386868E084EF0FDF48B94F445DC7852D1A82EF9B3A237624C ] C:\Windows\SysWOW64\msctfui.dll 21:01:06.0821 0x1380 C:\Windows\SysWOW64\msctfui.dll - ok 21:01:06.0821 0x1380 [ F3B650D3566E96E765AEA2AB05D4830C, 8541961257E38B57A67E27AB3E7AD6065BDDDD75AAFC2F7272E0319D743AD0B0 ] C:\Program Files (x86)\TOSHIBA\Wireless LAN Indicator\tosmui.dll 21:01:06.0821 0x1380 C:\Program Files (x86)\TOSHIBA\Wireless LAN Indicator\tosmui.dll - ok 21:01:06.0831 0x1380 [ EE19C85CA685A275BE346EC41F1870F9, F071D88C38C62E9D88DDE29F451B2B581499758A7E60BDA6DED3376280C5A635 ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_72d576ad8665e853\GdiPlus.dll 21:01:06.0831 0x1380 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_72d576ad8665e853\GdiPlus.dll - ok 21:01:06.0831 0x1380 [ E94C583CDE2348950155F2AF2876F34D, D00C7E0D665E467B712C68A446CC5BE14FDA743A2301878B3CEB72CDD0A8B8E7 ] C:\Windows\SysWOW64\mswsock.dll 21:01:06.0831 0x1380 C:\Windows\SysWOW64\mswsock.dll - ok 21:01:06.0831 0x1380 [ 12B79422A23814429CDA9E734C58F78F, 88D8EBB4815896921ED88BC46E8C37844FB8C62CD05F507BFCF9825EBC9607DE ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL 21:01:06.0831 0x1380 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok 21:01:06.0841 0x1380 [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\SysWOW64\wship6.dll 21:01:06.0841 0x1380 C:\Windows\SysWOW64\wship6.dll - ok 21:01:06.0841 0x1380 [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\SysWOW64\WSHTCPIP.DLL 21:01:06.0841 0x1380 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok 21:01:06.0851 0x1380 [ 40947436A70E0034E41123DF5A0A7702, 5D40FD92DA5CA59C1BADB58AD509DB6A6D613F18660A9A270A53ECA85D34C3A9 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll 21:01:06.0851 0x1380 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok 21:01:06.0851 0x1380 [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\SysWOW64\rasadhlp.dll 21:01:06.0851 0x1380 C:\Windows\SysWOW64\rasadhlp.dll - ok 21:01:06.0851 0x1380 [ C5B0324DB461559ADD070E632A6919FA, AB09CACB5B7DD372B27921A5E01220552A611CECA27EF87961001FA467FDED45 ] C:\Windows\SysWOW64\wbem\wbemprox.dll 21:01:06.0851 0x1380 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok 21:01:06.0861 0x1380 [ 704314FD398C81D5F342CAA5DF7B7F21, CDA660E1E8AAE0789780B6B9604B138E67B2BDD1404A5E4C2354B35879D43085 ] C:\Windows\SysWOW64\wbemcomn.dll 21:01:06.0861 0x1380 C:\Windows\SysWOW64\wbemcomn.dll - ok 21:01:06.0861 0x1380 [ 776AE0564F8B1C282E331FD95A1BDC5F, 601CFCA3922FFEA46A54AD323845A76A12FC6AF9FF64E9B0AE294FBB1AFCF4CB ] C:\Windows\SysWOW64\wbem\wbemsvc.dll 21:01:06.0861 0x1380 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok 21:01:06.0861 0x1380 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A, 61B4D669C692775EF361445293163E84FAD8636AC49C8047BE806DB4E4093291 ] C:\Windows\SysWOW64\wbem\fastprox.dll 21:01:06.0861 0x1380 C:\Windows\SysWOW64\wbem\fastprox.dll - ok 21:01:06.0871 0x1380 [ 8E01332CC4B68BC6B5B7EFFE374442AA, A4AD1D2FD3EC2F26949DBBC388F9FFF3713AD7EB4E9220AF817EBB5223E467C6 ] C:\Windows\SysWOW64\oleacc.dll 21:01:06.0871 0x1380 C:\Windows\SysWOW64\oleacc.dll - ok 21:01:06.0871 0x1380 [ 24CAEDCD73B5B0E22226283B7B2468C7, DB491CC4CB4DB854C5C4EB90DA8323728C342A23CA517FC98FA4E8339531A1B6 ] C:\Windows\SysWOW64\mfc42u.dll 21:01:06.0871 0x1380 C:\Windows\SysWOW64\mfc42u.dll - ok 21:01:06.0871 0x1380 [ 7D34AF98A706230CC2DEDFE0CABF87AB, 93237B839C2BC6E84C2C675BB211CA0FB781B348A033EF648A9AA5BDAC1EFDAE ] C:\Windows\SysWOW64\odbc32.dll 21:01:06.0871 0x1380 C:\Windows\SysWOW64\odbc32.dll - ok 21:01:06.0881 0x1380 [ ABA457BFC7EC0B5E130B2F1E0F549DFF, C944C75C351A276952D0A869F9ED3DF8674E9479797EE7B03D13E8FDCDEB2DC4 ] C:\Windows\SysWOW64\odbcint.dll 21:01:06.0881 0x1380 C:\Windows\SysWOW64\odbcint.dll - ok 21:01:06.0881 0x1380 [ E3E811471DE781900FF21C1FD84E941E, 2A47FF52D1D6480AAD1919382E783EA184BF926311F8C7E466FEBE9F6FB88FD6 ] C:\Windows\SysWOW64\ntdsapi.dll 21:01:06.0881 0x1380 C:\Windows\SysWOW64\ntdsapi.dll - ok 21:01:06.0881 0x1380 [ DDD0357A92FA843EFF8915ED17253D6C, 0C78B1D41F0A7821186ADF653504F2BFF067CB512CB0E932047C301378BBADB6 ] C:\Windows\System32\wbem\WmiPrvSD.dll 21:01:06.0881 0x1380 C:\Windows\System32\wbem\WmiPrvSD.dll - ok 21:01:06.0891 0x1380 [ D41FEBD098234F02485A4EA98D4730A4, 462DC8168C444F35B43BA3B8F7D77734665D84F1C6D25CAD7391C0145961628F ] C:\Windows\System32\ncobjapi.dll 21:01:06.0891 0x1380 C:\Windows\System32\ncobjapi.dll - ok 21:01:06.0891 0x1380 [ 6F40D6FB05E0C1E5402812B426971AF0, E41F138F0F2DB057F8DBB1587237C6FA8A2059B3D64EC894D1DC492A18DBBDED ] C:\Windows\System32\wbem\wbemess.dll 21:01:06.0891 0x1380 C:\Windows\System32\wbem\wbemess.dll - ok 21:01:06.0891 0x1380 [ 619A67C9F617B7E69315BB28ECD5E1DF, F34F231D117CCDFEBB9CB35C8D6FDFA7051DA27FDC1204FCCFF361FC0B13A0FF ] C:\Windows\System32\wbem\WmiPrvSE.exe 21:01:06.0891 0x1380 C:\Windows\System32\wbem\WmiPrvSE.exe - ok 21:01:06.0901 0x1380 [ 6607C2182C6A53ED983813AFE2F85768, FC9E718ABC4E0FBC7B0DD145F9C377A1800A7776AD832AB645796E13B1E15A1F ] C:\Windows\System32\wbem\cimwin32.dll 21:01:06.0901 0x1380 C:\Windows\System32\wbem\cimwin32.dll - ok 21:01:06.0901 0x1380 [ 007863E45F25AA47A4C30D0930BBFD85, 60F2ABA40D520FCA2C57FA2DB72E111C14F21821DA17F662837506B80C269634 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll 21:01:06.0901 0x1380 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok 21:01:06.0901 0x1380 [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] C:\Windows\SysWOW64\netprofm.dll 21:01:06.0901 0x1380 C:\Windows\SysWOW64\netprofm.dll - ok 21:01:06.0911 0x1380 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\SysWOW64\dhcpcsvc.dll 21:01:06.0911 0x1380 C:\Windows\SysWOW64\dhcpcsvc.dll - ok 21:01:06.0911 0x1380 [ 81F6C1AE23B1C493D9E996C3103915D7, E22408B4D2EDE2F89E686A4FDCD4057BE27B86D050E9CB489F0FFB39C72AEC1D ] C:\Windows\SysWOW64\dhcpcsvc6.dll 21:01:06.0911 0x1380 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok 21:01:06.0911 0x1380 [ 0BA65122FFA7E37564EE86422DBF7AE8, 3A37FC503D3228D021473AECA285427382518CC36C197E4C9912745BDF3AB757 ] C:\Windows\SysWOW64\nlaapi.dll 21:01:06.0911 0x1380 C:\Windows\SysWOW64\nlaapi.dll - ok 21:01:06.0921 0x1380 [ 1484B9EBF567346582DE571B0E164AE0, 9862BF22B2E32DABE7A82ACEE5B4EA1F0A93BDC3C71B20A6A4E568CCCD76A7A6 ] C:\Windows\System32\framedynos.dll 21:01:06.0921 0x1380 C:\Windows\System32\framedynos.dll - ok 21:01:06.0921 0x1380 [ 0D893F8D145D3B125B0226727C243A69, B344A18C5D5324A891B6E2121EC375AFB9E83D4C59D64EDD2E63854ABEC5D734 ] C:\Windows\System32\security.dll 21:01:06.0921 0x1380 C:\Windows\System32\security.dll - ok 21:01:06.0921 0x1380 [ 012787CEB35505EB78DF82E0A0072888, FE082EF9F8462589F8C8BEEFB1D10AB06E1E3D6F4494CABF34097328C109C03E ] C:\Windows\System32\browcli.dll 21:01:06.0921 0x1380 C:\Windows\System32\browcli.dll - ok 21:01:06.0931 0x1380 [ C4BFE4B61086416B0529212F92BCE081, A5EE6FB81229885C7A4A4EF0A9C3E9EE9E7F85C1EDE9BEEE236EB0503093D8F3 ] C:\Windows\System32\schedcli.dll 21:01:06.0931 0x1380 C:\Windows\System32\schedcli.dll - ok 21:01:06.0931 0x1380 [ BF7DDBE14FA4B68AAB6A3C78EF5C96B8, BCB4386A1DBD89919689FCC179C2B781B41B2ED5997DD2D0FC1C4653C94785B1 ] C:\Windows\SysWOW64\inetmib1.dll 21:01:06.0931 0x1380 C:\Windows\SysWOW64\inetmib1.dll - ok 21:01:06.0941 0x1380 [ 1220595CABA75AB91A6B3FA3B89483CC, 313DFE385336D00DAFBC8DF30F001859C77DEB214BB3F874CE42F22734FFAE4E ] C:\Windows\SysWOW64\snmpapi.dll 21:01:06.0941 0x1380 C:\Windows\SysWOW64\snmpapi.dll - ok 21:01:06.0941 0x1380 [ EAB975DB4C2805927FE5BD047D05C9AA, 8F5497B1A2652B5EAA5D35BD314B5F90C5140207427DAE6068D665FA44D3FD56 ] C:\Windows\SysWOW64\netshell.dll 21:01:06.0941 0x1380 C:\Windows\SysWOW64\netshell.dll - ok 21:01:06.0941 0x1380 [ CE2A48CD0D2B39FB77FA4797C6434E71, 813F048386BCF5F9F46ABAE61BC1434695186DEB0EC8BB888D431ADA0A278693 ] C:\Windows\SysWOW64\nshwfp.dll 21:01:06.0941 0x1380 C:\Windows\SysWOW64\nshwfp.dll - ok 21:01:06.0951 0x1380 [ 8B74CEC6980D4816B0037AE9A27E538F, 8721EDB4C51BF6020002FA5DDB1987C68590F9F433A2F18D9756B2DAC7542CB6 ] C:\Windows\SysWOW64\slc.dll 21:01:06.0951 0x1380 C:\Windows\SysWOW64\slc.dll - ok 21:01:06.0951 0x1380 [ 81F08948A0F1475894C99D4D19A158A8, 93334DA369BF976E498265E432CAF63D898D378C6B32947DF355366ABE2A0FAC ] C:\Windows\SysWOW64\wshqos.dll 21:01:06.0951 0x1380 C:\Windows\SysWOW64\wshqos.dll - ok 21:01:06.0961 0x1380 [ 8205E55DFB11809E5F2AAD1C48840535, 018AA06F93815D2B97F41FA010457C9A8B1FD5BC0B0691F87EB764BD5EBDB6A9 ] C:\Windows\SysWOW64\credssp.dll 21:01:06.0961 0x1380 C:\Windows\SysWOW64\credssp.dll - ok 21:01:06.0961 0x1380 [ 5EA9A0950F322BFA382AF277801C0307, A2C00A3E22A484A00620FF801E0B6EB475C9593C80AF321564E5A0DD2B1C38B7 ] C:\Windows\System32\wbem\wmipcima.dll 21:01:06.0961 0x1380 C:\Windows\System32\wbem\wmipcima.dll - ok 21:01:06.0961 0x1380 [ E3CA787C4EF41E3D3C212899DD361DAF, 2CA5F4F8AF24D13F267ED0479AC8A1707A4E42109CC27527D7BF776014680F4C ] C:\Program Files (x86)\YouTube Accelerator\ipc.dll 21:01:06.0961 0x1380 C:\Program Files (x86)\YouTube Accelerator\ipc.dll - ok 21:01:06.0971 0x1380 [ 992FEBDAA047EA93B8F0290009935BF2, C7BB09C8F38F9B1CC05D05E99E5AB23F3C0F48B50782813D1940AAB802AE15A1 ] C:\Program Files (x86)\XTab\HPNotify.exe 21:01:06.0971 0x1380 C:\Program Files (x86)\XTab\HPNotify.exe - ok 21:01:06.0971 0x1380 [ 394ADE82B91F6458C060C522D7C3520C, 63778EB9D70913D12C348C2333C4ACE7C96BF7B5AF9BCB322B2636AB5EB61A68 ] C:\Windows\SysWOW64\dhcpcmonitor.dll 21:01:06.0971 0x1380 C:\Windows\SysWOW64\dhcpcmonitor.dll - ok 21:01:06.0971 0x1380 [ 2765B91A9EE086C20B451E80D2709CC9, BFF8DFC9211E6C0114939F94A7080EA385FED93D16CD94602CA9C1B70DBC2634 ] C:\Windows\SysWOW64\DHCPQEC.DLL 21:01:06.0971 0x1380 C:\Windows\SysWOW64\DHCPQEC.DLL - ok 21:01:06.0981 0x1380 [ BD626EF05967D14C772B8096292731A3, FE3838B41DCAFC52089D909E7F411186D993C08AC149E093352D691D57C9BE71 ] C:\Windows\SysWOW64\QUTIL.DLL 21:01:06.0981 0x1380 C:\Windows\SysWOW64\QUTIL.DLL - ok 21:01:06.0981 0x1380 [ 82C089EA2A3EEFADF3588EA71E8BDADA, 2F3BB32EE2C0673058A74DEEB2D405E5E79F833F33C4D289A93EB3C618A86E75 ] C:\Windows\SysWOW64\wevtapi.dll 21:01:06.0981 0x1380 C:\Windows\SysWOW64\wevtapi.dll - ok 21:01:06.0981 0x1380 [ 8CD1DEE212E52B9C22E66DBA44991D32, 7FCD0E7964368616434E3B3B080E783658B86524C26F3DB57503414204713E6D ] C:\Windows\SysWOW64\httpapi.dll 21:01:06.0981 0x1380 C:\Windows\SysWOW64\httpapi.dll - ok 21:01:06.0991 0x1380 [ 7EBC7D72BDD0A0A847E00F43F350EF22, 73577AF20B7130BBA86D5512434C2F4A8C0E11DFB24D5739F1A1EDBC6DA918D7 ] C:\Windows\SysWOW64\nshhttp.dll 21:01:06.0991 0x1380 C:\Windows\SysWOW64\nshhttp.dll - ok 21:01:06.0991 0x1380 [ 808AABDF9337312195CAFF76D1804786, 85EA67E265DD678CE5FE245860DF8FB12E8A36B485451DC7393D4BABDF52F640 ] C:\Windows\SysWOW64\ws2help.dll 21:01:06.0991 0x1380 C:\Windows\SysWOW64\ws2help.dll - ok 21:01:06.0991 0x1380 [ 5B90BB3171504C9DAF3C5CB44B203CA7, D66FE2BC2A08DFBBC4CB227970BE744982925FB06B18F979CF2F89DEEAE66442 ] C:\Windows\SysWOW64\wshelper.dll 21:01:06.0991 0x1380 C:\Windows\SysWOW64\wshelper.dll - ok 21:01:07.0001 0x1380 [ 370349F79315D4DB86CD992CACEFEE61, 436D5622AE0D820D4FAB7E6DD7FFC38F9752AE4822505989D77DB1CFAA4BF416 ] C:\Windows\SysWOW64\VAN.dll 21:01:07.0001 0x1380 C:\Windows\SysWOW64\VAN.dll - ok 21:01:07.0001 0x1380 [ 3F50200237961034FACE602373838980, F97D72CC75D921CF8F8E0544614407358AEFF97A8F48E4A89F82689EE8F2FC86 ] C:\Windows\SysWOW64\FirewallAPI.dll 21:01:07.0001 0x1380 C:\Windows\SysWOW64\FirewallAPI.dll - ok 21:01:07.0001 0x1380 [ E30C5F23B28D8BFD02E0E6AE79AC83A4, 2E074E7A924E1AB455815B20AACCF38CED580632EFB98C6DA809C4A7A64D0955 ] C:\Windows\SysWOW64\fwcfg.dll 21:01:07.0001 0x1380 C:\Windows\SysWOW64\fwcfg.dll - ok 21:01:07.0011 0x1380 [ 7B3A07BB31AD831C4F66B08ECEAD2209, E1C0D1EAAA4BE1BD84EB5ADFA5856D7697E94978583D959D5B147FC202D031EF ] C:\Windows\SysWOW64\authfwcfg.dll 21:01:07.0011 0x1380 C:\Windows\SysWOW64\authfwcfg.dll - ok 21:01:07.0011 0x1380 [ CE71B9119A258EDD0A05B37D7B0F92E3, D9310C5BBFE089B8C81E259C462EC1E6D7A7A87FA59FC1F174ED5C58D409AE7A ] C:\Windows\SysWOW64\bcrypt.dll 21:01:07.0011 0x1380 C:\Windows\SysWOW64\bcrypt.dll - ok 21:01:07.0011 0x1380 [ 1392FC9D1961FBC67F7D0A9B18DF85A4, 44D9335E42885E9306E23F794C0117D73AC784EC21DE1263A65BBC7599CF6585 ] C:\Windows\SysWOW64\winipsec.dll 21:01:07.0011 0x1380 C:\Windows\SysWOW64\winipsec.dll - ok 21:01:07.0021 0x1380 [ 019C500DBD380CBAFE5417DE8CD267F2, A6FB0AC3082DE4122B3EA6202C581A8DFEB9BA5CCAE7495E5ED46D451031910F ] C:\Windows\SysWOW64\ifmon.dll 21:01:07.0021 0x1380 C:\Windows\SysWOW64\ifmon.dll - ok 21:01:07.0021 0x1380 [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\SysWOW64\setupapi.dll 21:01:07.0021 0x1380 C:\Windows\SysWOW64\setupapi.dll - ok 21:01:07.0021 0x1380 [ F436E847FA799ECD75AD8C313673F450, 3C8BF3F0C08C7FA8DE5CD9C60AD9D00B742E84EB1FEBEEBA0F7159844BAAA471 ] C:\Windows\SysWOW64\cfgmgr32.dll 21:01:07.0021 0x1380 C:\Windows\SysWOW64\cfgmgr32.dll - ok 21:01:07.0031 0x1380 [ 2EEFF4502F5E13B1BED4A04CCAD64C08, 209FF1B6D46D1AC99518FCF54F2F726143B2DBF2C5FDA90212FBEF7526F7CBF5 ] C:\Windows\SysWOW64\devobj.dll 21:01:07.0031 0x1380 C:\Windows\SysWOW64\devobj.dll - ok 21:01:07.0031 0x1380 [ 162D247E995EAEBF3EF4289069E1111C, 19E858E9902E2D570FFD24AE2CB4165273F5BAB1FF7B04758B11AB5CD41FD752 ] C:\Windows\SysWOW64\devrtl.dll 21:01:07.0031 0x1380 C:\Windows\SysWOW64\devrtl.dll - ok 21:01:07.0031 0x1380 [ 45D9F6CD2469CDB6A640DD4BD2B01471, 21704ADB83B26DD9C2D4D248FE61F3FEC2003D6748BB6A830334F0FDA9610362 ] C:\Windows\SysWOW64\nci.dll 21:01:07.0031 0x1380 C:\Windows\SysWOW64\nci.dll - ok 21:01:07.0041 0x1380 [ 38CACBEB75E3F85CBF7E65522DFDA1B0, 2DA27DA35D97A048C0EF4F88F447BB3C447FA419CB2846F7E5365E6D1D828E49 ] C:\Windows\SysWOW64\netiohlp.dll 21:01:07.0041 0x1380 C:\Windows\SysWOW64\netiohlp.dll - ok 21:01:07.0041 0x1380 [ 1AB8579D3CBCCCC1612D9B8615C68AB9, C0FA5E60E2094B5AF80A123A217FA5D4A3D2DFFC8B23D78FA1366EC6617A1D48 ] C:\Windows\SysWOW64\hnetmon.dll 21:01:07.0041 0x1380 C:\Windows\SysWOW64\hnetmon.dll - ok 21:01:07.0041 0x1380 [ DAECDFA364992F1D26705887E1A3C93F, 54CBD8C4D53CA919DD31880D9350659AFDC18DE182FC01BEE3D8655367D1EA80 ] C:\Windows\SysWOW64\whhelper.dll 21:01:07.0041 0x1380 C:\Windows\SysWOW64\whhelper.dll - ok 21:01:07.0051 0x1380 [ 04B88428A872390D235BE52D38A9D4EF, F6954D514B67547738EB012456342D65289B0B18A0304BBAD5BDAA3436181C77 ] C:\Windows\SysWOW64\dot3api.dll 21:01:07.0051 0x1380 C:\Windows\SysWOW64\dot3api.dll - ok 21:01:07.0051 0x1380 [ B06B2FEC249F48C4E7F628B689859AC7, DC73BF7C723841FE179FC91C05AFCC8D633C839329C04DA3E9DF5DCDC06A0F77 ] C:\Windows\SysWOW64\dot3cfg.dll 21:01:07.0051 0x1380 C:\Windows\SysWOW64\dot3cfg.dll - ok 21:01:07.0051 0x1380 [ 17F6993D2DD8B1196DB25FDC2ECB87E2, 45506506179EF04D5C8F84E56C12FD7B31CFDB368DFA9D5CC948A867E7607983 ] C:\Windows\SysWOW64\rpcnsh.dll 21:01:07.0051 0x1380 C:\Windows\SysWOW64\rpcnsh.dll - ok 21:01:07.0061 0x1380 [ F10E5311E5093FA3C00FF88C54C32FCA, B557F5B00D77F030850D9AAC0FFEFC4C2A759EC4081C8459C9DEAE51BAAACC65 ] C:\Windows\SysWOW64\atl.dll 21:01:07.0061 0x1380 C:\Windows\SysWOW64\atl.dll - ok 21:01:07.0061 0x1380 [ 5A5FEDDF02588B8F9FE4A95E5E7EAE97, 364A2DC446E9AB091A216D0EED559CEA334AA46EC0BC693CBD6CE1DE0F89317B ] C:\Windows\SysWOW64\eappcfg.dll 21:01:07.0061 0x1380 C:\Windows\SysWOW64\eappcfg.dll - ok 21:01:07.0061 0x1380 [ F748F53FE09D21D8ECBB6421E6792024, 38F737673F8B089B2540CE7015A4DF7081754F7CC83BFF85199B70555AF32ED0 ] C:\Windows\SysWOW64\onex.dll 21:01:07.0061 0x1380 C:\Windows\SysWOW64\onex.dll - ok 21:01:07.0071 0x1380 [ 61B1ED5F429EFAC7E2036769870AB93E, 628CF28434C5DFB81B76B90BEA4CDD9EB1E4B0971BEE24136A09490F9439E00E ] C:\Windows\SysWOW64\certcli.dll 21:01:07.0071 0x1380 C:\Windows\SysWOW64\certcli.dll - ok 21:01:07.0071 0x1380 [ 666E57B6B51824D1D235F80A3DD70A13, B2ACCABDD5D8B23E502FE691C1DEE4A2C0EA20EDCDE5B4000557579D56D411EC ] C:\Windows\SysWOW64\eappprxy.dll 21:01:07.0071 0x1380 C:\Windows\SysWOW64\eappprxy.dll - ok 21:01:07.0071 0x1380 [ B074D5CB2ED9BA71D54B754D89655FA8, B3EB9B5A64C828B42E687125B353AFA8B5A9DBD2B1A48BE30FF36DC3041FA9D4 ] C:\Windows\SysWOW64\NAPMONTR.DLL 21:01:07.0071 0x1380 C:\Windows\SysWOW64\NAPMONTR.DLL - ok 21:01:07.0081 0x1380 [ 404B123E9460395E3A7338B12C681B92, 64ECDFB34131D56FD6B6CF106C8780DF32DD96363CC42BA90E3E41BEEE897009 ] C:\Windows\SysWOW64\nshipsec.dll 21:01:07.0081 0x1380 C:\Windows\SysWOW64\nshipsec.dll - ok 21:01:07.0081 0x1380 [ 8EA53101FF2B15BDFF934B62A8FB326D, E28536A4AC6764C2480EF047AF2312AE2600819899C3E33B486CFE19F25AC464 ] C:\Windows\SysWOW64\logoncli.dll 21:01:07.0081 0x1380 C:\Windows\SysWOW64\logoncli.dll - ok 21:01:07.0081 0x1380 [ 521B748A7F9923302CA18B7E6AA2EEAE, 6243D4F29B28242E308359624B5E68AC8A57D811521193487973794EDCE55787 ] C:\Windows\SysWOW64\activeds.dll 21:01:07.0081 0x1380 C:\Windows\SysWOW64\activeds.dll - ok 21:01:07.0091 0x1380 [ 30A7767CE7EDD677B85DBF308476BE5E, F02D423F285A333B412FAC89FCF5798A9649B7341CF00C1DFAF85D326A5ABD8B ] C:\Program Files (x86)\YouTube Accelerator\engine.dll 21:01:07.0091 0x1380 C:\Program Files (x86)\YouTube Accelerator\engine.dll - ok 21:01:07.0091 0x1380 [ 51F5CC1E7DA3D9C664C2D0D61F315E06, 0A50A35863C9679E8DFC0783D5F1F6411010873738C6B1D90B7E993D2C6CFB06 ] C:\Windows\SysWOW64\adsldpc.dll 21:01:07.0091 0x1380 C:\Windows\SysWOW64\adsldpc.dll - ok 21:01:07.0101 0x1380 [ 0E6DCD164732580CC1E57276252F49CF, 2CDEE941E0BBF36DC745AE6B9102535D0E024CC06C5250DA10ED3243F1536568 ] C:\Windows\SysWOW64\polstore.dll 21:01:07.0101 0x1380 C:\Windows\SysWOW64\polstore.dll - ok 21:01:07.0101 0x1380 [ 08DF1B8C9C0754A7069E80A986373F52, 7397FDE63A8F3644784C4F9181EEDF80A8A0F824524C619B8795B8F97A8101EC ] C:\Windows\SysWOW64\P2P.dll 21:01:07.0101 0x1380 C:\Windows\SysWOW64\P2P.dll - ok 21:01:07.0101 0x1380 [ 0AA8C5587D3487146051CECEF87EB522, CA435B8BCE89F710AAEC497A0C4FE2CF8D944A87F2DA19FB36FF4A037648BEFB ] C:\Windows\SysWOW64\p2pnetsh.dll 21:01:07.0101 0x1380 C:\Windows\SysWOW64\p2pnetsh.dll - ok 21:01:07.0101 0x1380 [ 1B0EC94520CAB89A9CE1B2DA405166AF, 129102C98C8B3D403C85604C9A2AFC0471CDB1212FD2C5487D73FC089FC88F0C ] C:\Windows\SysWOW64\p2pcollab.dll 21:01:07.0101 0x1380 C:\Windows\SysWOW64\p2pcollab.dll - ok 21:01:07.0111 0x1380 [ E1456E7396022EBE4E5434188D1AC8B0, 67BD897F8BD15D621E2464ECDE2205C4366C6380D04CE74549A1A3EF70B1D35A ] C:\Windows\SysWOW64\WindowsCodecs.dll 21:01:07.0111 0x1380 C:\Windows\SysWOW64\WindowsCodecs.dll - ok 21:01:07.0111 0x1380 [ 79DDDDE43595F9D2B65E37C8B3316955, E288930A59C4ABC5F98B2F4646AD2F8F38E63356B116734C96C4F4173C503037 ] C:\Windows\SysWOW64\wlancfg.dll 21:01:07.0111 0x1380 C:\Windows\SysWOW64\wlancfg.dll - ok 21:01:07.0121 0x1380 [ 8063046AA70B97CA9985672B8848FB2E, C7A7F2D216D1F0D7F28A22E4933DB3D821AC52CC2EF7AE8BA08D18104FCF8B81 ] C:\Windows\SysWOW64\wlanhlp.dll 21:01:07.0121 0x1380 C:\Windows\SysWOW64\wlanhlp.dll - ok 21:01:07.0121 0x1380 [ A2F17346CC5C502D4E29EF986BD17D34, 786E1DA5DBE8B56A8708F361425059EC6DB89C43FD4A136090BAB44B084CC204 ] C:\Windows\SysWOW64\PeerDistSh.dll 21:01:07.0121 0x1380 C:\Windows\SysWOW64\PeerDistSh.dll - ok 21:01:07.0121 0x1380 [ 02530B0B7E048DD5AC8D52DAEACAEB2B, 2DEB454F8B71EC54C59185E2F1D679F7EC1C7AEFCD1D59761FDD3D70CABE0254 ] C:\Windows\SysWOW64\QAGENT.DLL 21:01:07.0121 0x1380 C:\Windows\SysWOW64\QAGENT.DLL - ok 21:01:07.0121 0x1380 [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\SysWOW64\gpapi.dll 21:01:07.0121 0x1380 C:\Windows\SysWOW64\gpapi.dll - ok 21:01:07.0131 0x1380 [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\SysWOW64\bcryptprimitives.dll 21:01:07.0131 0x1380 C:\Windows\SysWOW64\bcryptprimitives.dll - ok 21:01:07.0131 0x1380 [ E09FA1C699E985E4CF8CFC6457DBA9F1, C3344055DDFC725081A359F5923B9066E58BF4452D2D69036B8F29D02A384736 ] C:\Program Files (x86)\YouTube Accelerator\xmldb.dll 21:01:07.0131 0x1380 C:\Program Files (x86)\YouTube Accelerator\xmldb.dll - ok 21:01:07.0131 0x1380 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] C:\Windows\System32\drivers\srv2.sys 21:01:07.0131 0x1380 C:\Windows\System32\drivers\srv2.sys - ok 21:01:07.0141 0x1380 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] C:\Windows\System32\iphlpsvc.dll 21:01:07.0141 0x1380 C:\Windows\System32\iphlpsvc.dll - ok 21:01:07.0141 0x1380 [ 2ECC833EA37CECE0052D4D9ADC184177, ADC4E633CFCD4E88139DD984D2DF5781A429B7D3EEBE92C597356D9056024103 ] C:\Program Files\TOSHIBA\TECO\TecoService.exe 21:01:07.0141 0x1380 C:\Program Files\TOSHIBA\TECO\TecoService.exe - ok 21:01:07.0151 0x1380 [ 12C45E3CB6D65F73209549E2D02ECA7A, 9DFD9C58B90257C34D52B7156C1D2566BE32EE7BD4699DDE164A5F190EC4D44A ] C:\Windows\SysWOW64\propsys.dll 21:01:07.0151 0x1380 C:\Windows\SysWOW64\propsys.dll - ok 21:01:07.0151 0x1380 [ 694D34889CF8CC0DAA7534B3F8EFEB04, 0CA0A69B17671F9ECF2AF7D298D1B335FE753BC9D8AD92D91E77592F293F2520 ] C:\Program Files\TOSHIBA\TECO\TecoHci.dll 21:01:07.0151 0x1380 C:\Program Files\TOSHIBA\TECO\TecoHci.dll - ok 21:01:07.0151 0x1380 [ E6D0AB59C898CED84686B967DC1A7E60, C4230597D2FBC18B030E8BD70D7DDF8C0CA6C20B27F07B0DE7904AC00D729F6A ] C:\Program Files\TOSHIBA\TECO\TecoPower.dll 21:01:07.0151 0x1380 C:\Program Files\TOSHIBA\TECO\TecoPower.dll - ok 21:01:07.0161 0x1380 [ 27B9E163740A226B65E4B9E186117911, 17411C6A6C1E699BC4B0C04D782FD9AA09CF577DBA41E743F7588904D489CB9F ] C:\Windows\System32\sqmapi.dll 21:01:07.0161 0x1380 C:\Windows\System32\sqmapi.dll - ok 21:01:07.0161 0x1380 [ 7B38D7916A7CD058C16A0A6CA5077901, 3F6DD990E2DA5D3BD6D65A72CBFB0FE79EB30B118A8AD71B6C9BB5581A622DCE ] C:\Windows\System32\wdscore.dll 21:01:07.0161 0x1380 C:\Windows\System32\wdscore.dll - ok 21:01:07.0161 0x1380 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] C:\Windows\System32\drivers\srv.sys 21:01:07.0161 0x1380 C:\Windows\System32\drivers\srv.sys - ok 21:01:07.0171 0x1380 [ 3B367397320C26DBA890B260F80D1B1B, 50BBE71B4380B5E86E197AF86F5C08266DD6B12344BA4ABDEA604B8C774C4147 ] C:\Windows\System32\hnetcfg.dll 21:01:07.0171 0x1380 C:\Windows\System32\hnetcfg.dll - ok 21:01:07.0171 0x1380 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] C:\Windows\System32\srvsvc.dll 21:01:07.0171 0x1380 C:\Windows\System32\srvsvc.dll - ok 21:01:07.0171 0x1380 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] C:\Windows\System32\browser.dll 21:01:07.0171 0x1380 C:\Windows\System32\browser.dll - ok 21:01:07.0181 0x1380 [ 81749E073AC5857B044A686B406E5244, 3884EE705CA34235B29942FEDA8FEA654A21139B8C2A1D5E009C7D07D6E6ADF1 ] C:\Windows\System32\clusapi.dll 21:01:07.0181 0x1380 C:\Windows\System32\clusapi.dll - ok 21:01:07.0181 0x1380 [ CFEFA40DDE34659BE5211966EAD86437, AC0A3AD8AA47012C40785013E2273FC571F416BC9C9FFDA418FE72B3123C1FB0 ] C:\Windows\System32\netmsg.dll 21:01:07.0181 0x1380 C:\Windows\System32\netmsg.dll - ok 21:01:07.0181 0x1380 [ FF80CAD87555E8E4D2CFD7B9058343F8, 07653773FBEC1996408B8507B08E0E1E812830063F932F897F4B39EE63DDCDC4 ] C:\Windows\System32\sscore.dll 21:01:07.0181 0x1380 C:\Windows\System32\sscore.dll - ok 21:01:07.0191 0x1380 [ 344FCC9850C3A8A3B4D3C65151AF8E4C, C38853454E153B1AB4AEAE1AAFB7CB4B2E6234208CF24C09F3B2AFE25E271C5C ] C:\Windows\System32\resutils.dll 21:01:07.0191 0x1380 C:\Windows\System32\resutils.dll - ok 21:01:07.0191 0x1380 [ B59E370277EDB6643083B62297175628, 5577BC03EFAFD3984F8D3E1BBDA32BC95CA0CC4B4A2A4BA8098E649CFB891396 ] C:\Windows\SysWOW64\ieframe.dll 21:01:07.0191 0x1380 C:\Windows\SysWOW64\ieframe.dll - ok 21:01:07.0191 0x1380 [ 07AD88DF9EF73215458867EFC1BFFE9E, 8C659B6F31111C09448B68889623886658C96467E7E5C95C1714E18AD3924463 ] C:\Windows\System32\wbem\wmiprov.dll 21:01:07.0191 0x1380 C:\Windows\System32\wbem\wmiprov.dll - ok 21:01:07.0201 0x1380 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe 21:01:07.0201 0x1380 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe - ok 21:01:07.0201 0x1380 [ A08C010D859F8EB42BDD7E1D55B8CA27, F86EAFBF7AA41D8425156C07398EDC3BD42F1690BD3E15D27AEF2EDA86549F15 ] C:\Windows\System32\mscoree.dll 21:01:07.0201 0x1380 C:\Windows\System32\mscoree.dll - ok 21:01:07.0201 0x1380 [ D44067027714CC58B8AB0AC38FDA1A0B, 56E96A58B5A53A68485F8D2F7BA286F2B174AB910BD45145258D48251F489F02 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll 21:01:07.0201 0x1380 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok 21:01:07.0211 0x1380 [ 9B8F2F20589230F09C70BA0A9C589C9F, 12CBCE1A7B81146B8D62C25BFBE2D50D53BD78D6008B5A673F3EBBFA83471639 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll 21:01:07.0211 0x1380 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok 21:01:07.0211 0x1380 [ 35B5EEBF76C8AA07164C11B58ADA506D, C7932373676E5CE3F6D4AB498E20508410A614FD92AE97B98949834C05CEA634 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\fe6ac93181b40a571892e14bfb9d65f2\mscorlib.ni.dll 21:01:07.0211 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\fe6ac93181b40a571892e14bfb9d65f2\mscorlib.ni.dll - ok 21:01:07.0221 0x1380 [ 60F4AEFA103D421EA4A40E31409B4756, 037A8605CA504A4FF43E9D4DE9017CEA1E26D3556C975872C747E24D8B0835EF ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll 21:01:07.0221 0x1380 C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok 21:01:07.0221 0x1380 [ 1542A92D5C6F7E1E80613F3466C9CE7F, E78B14513C47C1339D96065237E9D270F33D595D5A92F2B5C8F4F841E2A4AD5C ] C:\Windows\SysWOW64\icacls.exe 21:01:07.0221 0x1380 C:\Windows\SysWOW64\icacls.exe - ok 21:01:07.0221 0x1380 [ BDD83E29B58C1D32407A9032D9F7981B, C2E5DB790D36F9CE955E3A72515B9E0E0653AE99E3CDA259903BAE6380C93DF8 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\c7fb84e825f6604d7f4684ab96cbd148\System.ni.dll 21:01:07.0221 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\c7fb84e825f6604d7f4684ab96cbd148\System.ni.dll - ok 21:01:07.0231 0x1380 [ 635565EB0C4CE6B8999D8FF705444C92, 2F2EC610468443C6C9569419BC7CA3F66A36DE200569130428D0C4951D2CA7CD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\ecf82b2e01946a09fb87fbb5bda604be\System.ServiceProcess.ni.dll 21:01:07.0231 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\ecf82b2e01946a09fb87fbb5bda604be\System.ServiceProcess.ni.dll - ok 21:01:07.0231 0x1380 [ 1B1431D9520C7578AD5633ED2A70625F, 6852FAC1355CA69226B727A1355D6DA8C0865F5EEDA45D7690701CFED7C542A1 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll 21:01:07.0231 0x1380 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok 21:01:07.0231 0x1380 [ B8DDB5295B9CDF0D573FC6DD14D67302, 79562F8A13AE6C7396D1F42927AE2F96D3FB3DDFE7B8D0E591C8134B45386D47 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\a112eb3399caef2b6a4c9b995fe1ea3d\WindowsBase.ni.dll 21:01:07.0231 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\a112eb3399caef2b6a4c9b995fe1ea3d\WindowsBase.ni.dll - ok 21:01:07.0241 0x1380 [ 01D170E001259C276DCD04B6A46A130D, 8E032A42C072122B7C14A3A04514D50E311BD3847C45DF42B03184CDD21A74F6 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\85f72cca29c67444ed2716b0cbcb1eae\PresentationCore.ni.dll 21:01:07.0241 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\85f72cca29c67444ed2716b0cbcb1eae\PresentationCore.ni.dll - ok 21:01:07.0241 0x1380 [ 3F60C99839E22B593223EB083E1AE454, F7ECB170DD00BBFCEB27A8A2A9156048874E92D91FB5BE9F4AB204A7BDB856CA ] C:\Program Files (x86)\YouTube Accelerator\helper.dll 21:01:07.0241 0x1380 C:\Program Files (x86)\YouTube Accelerator\helper.dll - ok 21:01:07.0241 0x1380 [ 7D39AB50F9156AD26284054B6BF7D94B, 140AEC3067D58FF56356D72AB718511AE9D4AAA73F60648DA45B5A5DAFA8F041 ] C:\Windows\System32\icacls.exe 21:01:07.0241 0x1380 C:\Windows\System32\icacls.exe - ok 21:01:07.0251 0x1380 [ F593C94827E130CDB5C3215E0753C781, 2DF3E037D9FBAB04560A42244AA31D53B7452E68FEE1989A06B33AE914D40125 ] C:\PROGRA~2\YOUTUB~1\Res.dll 21:01:07.0251 0x1380 C:\PROGRA~2\YOUTUB~1\Res.dll - ok 21:01:07.0251 0x1380 [ AE098D9D3BD83440C59A0C3386F4F5DD, 13CFA7323349A2746D7FE662A7FCFC678F4E7AA9E12B45C62328022E3272384F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll 21:01:07.0251 0x1380 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok 21:01:07.0261 0x1380 [ 6E656C325A5519A3A9D951709958CF6F, 1DC1D4BDF42F40A381D569297FEFB79B53CBD87088BA61A9EEA5AE4526B6182E ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll 21:01:07.0261 0x1380 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok 21:01:07.0261 0x1380 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] C:\Windows\System32\appinfo.dll 21:01:07.0261 0x1380 C:\Windows\System32\appinfo.dll - ok 21:01:07.0271 0x1380 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] C:\Windows\System32\hidserv.dll 21:01:07.0271 0x1380 C:\Windows\System32\hidserv.dll - ok 21:01:07.0271 0x1380 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8, C0B22B8C402EEEAF68F5380BC265C15418934D2F702F0A43674EC93853E26040 ] C:\Windows\System32\shfolder.dll 21:01:07.0271 0x1380 C:\Windows\System32\shfolder.dll - ok 21:01:07.0281 0x1380 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] C:\Windows\System32\wdi.dll 21:01:07.0281 0x1380 C:\Windows\System32\wdi.dll - ok 21:01:07.0281 0x1380 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] C:\Windows\System32\wpdbusenum.dll 21:01:07.0281 0x1380 C:\Windows\System32\wpdbusenum.dll - ok 21:01:07.0281 0x1380 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] C:\Windows\System32\aelupsvc.dll 21:01:07.0281 0x1380 C:\Windows\System32\aelupsvc.dll - ok 21:01:07.0291 0x1380 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] C:\Windows\System32\IPSECSVC.DLL 21:01:07.0291 0x1380 C:\Windows\System32\IPSECSVC.DLL - ok 21:01:07.0291 0x1380 [ 8CF4B0337B06CCC624C20EE4C934767E, D4663FB98FA595B0220ECC60C1CB84891441586E53AB9C8E2AC8D4C1341C95D3 ] C:\Windows\System32\lpksetupproxyserv.dll 21:01:07.0291 0x1380 C:\Windows\System32\lpksetupproxyserv.dll - ok 21:01:07.0301 0x1380 [ BF4AC709BE5BF64F331F5D67773A0C82, 96E5A2A12D386B8A7976FEC76FD350E6A3EEBDF5763F4BBF4AB18880E9F269E0 ] C:\Windows\System32\perftrack.dll 21:01:07.0301 0x1380 C:\Windows\System32\perftrack.dll - ok 21:01:07.0301 0x1380 [ 4449D23E8F197862F1B16F1E6C89C36C, 93AF52BF8E870C0381F027D3BB8F6829E449242074472F1593EB8172D7EB6559 ] C:\Windows\System32\diagperf.dll 21:01:07.0301 0x1380 C:\Windows\System32\diagperf.dll - ok 21:01:07.0301 0x1380 [ E64D9EC8018C55873B40FDEE9DBEF5B3, 2DB11E7C631A9887CB75AFEAD2C79EC65F82C51F5F073CEFC8CDDF664EFF29C1 ] C:\Windows\System32\PortableDeviceApi.dll 21:01:07.0301 0x1380 C:\Windows\System32\PortableDeviceApi.dll - ok 21:01:07.0311 0x1380 [ 9BC93C9ACFA34DB5A41B89357B31E4ED, C3B9DDCB31970F91F8CAF85D2431903DB1738872775EEFD6712B7646BDE1250C ] C:\Windows\System32\FwRemoteSvr.dll 21:01:07.0311 0x1380 C:\Windows\System32\FwRemoteSvr.dll - ok 21:01:07.0311 0x1380 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] C:\Windows\servicing\TrustedInstaller.exe 21:01:07.0311 0x1380 C:\Windows\servicing\TrustedInstaller.exe - ok 21:01:07.0321 0x1380 [ 288ADDED26C80FDC135CAB4340161686, FEA5CBCD061E6F347670E9ED7261F1FF3433480158A2FF0AEBC8DF53930B7000 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll 21:01:07.0321 0x1380 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll - ok 21:01:07.0321 0x1380 [ 58A0CDABEA255616827B1C22C9994466, 4FE1140AA8D3995579DE8CDF4ECAD1978804D05351EABB4079A63B303EF1B451 ] C:\Windows\System32\NapiNSP.dll 21:01:07.0321 0x1380 C:\Windows\System32\NapiNSP.dll - ok 21:01:07.0321 0x1380 [ AFA79C343F9D1555F7E5D5FA70BB2A14, 440EF3ADC1F5C7A5ED3E872C8D8DFA61B039454C3CA67F8A51CA8BDCFDC4BA4A ] C:\Windows\System32\PortableDeviceConnectApi.dll 21:01:07.0321 0x1380 C:\Windows\System32\PortableDeviceConnectApi.dll - ok 21:01:07.0331 0x1380 [ 613C8CE10A5FDE582BA5FA64C4D56AAA, 30507B6BA79E1A271B07BBA58B4FF463678BE0960266A1D5E88031E932D768B6 ] C:\Windows\System32\pnrpnsp.dll 21:01:07.0331 0x1380 C:\Windows\System32\pnrpnsp.dll - ok 21:01:07.0331 0x1380 [ F7073C962C4FB7C415565DDE109DE49F, 781E7088DCEFBC34A808C3E7DA41A56112B3F23ABE9F54B5EF4D5CD9CD016B1D ] C:\Windows\System32\npmproxy.dll 21:01:07.0331 0x1380 C:\Windows\System32\npmproxy.dll - ok 21:01:07.0341 0x1380 [ 2E2072EB48238FCA8FBB7A9F5FABAC45, AC70B9FC24847EEC2E18008F2894DCDAC19A9C90D5D88729326E493CA524F5C3 ] C:\Windows\System32\winrnr.dll 21:01:07.0341 0x1380 C:\Windows\System32\winrnr.dll - ok 21:01:07.0341 0x1380 [ 15E298B5EC5B89C5994A59863969D9FF, 8D38B2E023462D0804F72E907D11FF72CE84540EA3B8D83F411C602C3F6A1177 ] C:\Windows\SysWOW64\npmproxy.dll 21:01:07.0341 0x1380 C:\Windows\SysWOW64\npmproxy.dll - ok 21:01:07.0351 0x1380 [ 7957A194B8421BC070FABBF1C55DB68B, 782389F39C4CD9E13D5F9847AC33DF82BBFAEF6CF8E6150698D462F1DC270559 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll 21:01:07.0351 0x1380 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll - ok 21:01:07.0351 0x1380 [ 025E7DBDB98866ED3CB2D4DDA70B364D, 78962F23F066E362AF1A4B98FA7D5E30AF30C561307438503031D30C944B6A6E ] C:\Windows\System32\runonce.exe 21:01:07.0351 0x1380 C:\Windows\System32\runonce.exe - ok 21:01:07.0351 0x1380 [ D44741F65A1D71F65814A12CF6E2400A, C6721F830675ADC7E7FDE2B5E822E56F6A063146F5066F1E25EBFE86F0A87136 ] C:\Windows\SysWOW64\runonce.exe 21:01:07.0351 0x1380 C:\Windows\SysWOW64\runonce.exe - ok 21:01:07.0361 0x1380 [ E1B22739C933BE33F53DB58C5393ADD3, 26EE0DD091D2E00DECC774DC1EEDFFDE69AF74B0C769CCBE091AFC32C66E4207 ] C:\Windows\System32\Apphlpdm.dll 21:01:07.0361 0x1380 C:\Windows\System32\Apphlpdm.dll - ok 21:01:07.0361 0x1380 [ 9719E3D834F5C8C43F56A93DFA497023, 4D78D4BD4835C0A237821967156C19DF4B90384A6BCB1F48CEAF35D003A0099A ] C:\Windows\System32\pnpts.dll 21:01:07.0361 0x1380 C:\Windows\System32\pnpts.dll - ok 21:01:07.0361 0x1380 [ 46863C4CC5B68EB09EA2D5EEF0F1193A, 9B5593E1F484AC8F96F89A5995FB1FE9C51CB2F0F545607F6850751191150CFE ] C:\Windows\System32\radardt.dll 21:01:07.0361 0x1380 C:\Windows\System32\radardt.dll - ok 21:01:07.0371 0x1380 [ E811F8510B133E70CF6E509FB809824F, 82541F2B15748250462B67B6C77530D4F7C45A1482237EC49B28F9FA5A414108 ] C:\Windows\System32\wdiasqmmodule.dll 21:01:07.0371 0x1380 C:\Windows\System32\wdiasqmmodule.dll - ok 21:01:07.0371 0x1380 [ AD7B9C14083B52BC532FBA5948342B98, 17F746D82695FA9B35493B41859D39D786D32B23A9D2E00F4011DEC7A02402AE ] C:\Windows\SysWOW64\cmd.exe 21:01:07.0371 0x1380 C:\Windows\SysWOW64\cmd.exe - ok 21:01:07.0371 0x1380 [ E629F1A051C82795DDFFD3E8D4855811, 6E4DFFEAB2795C98EA6DCAF10EA6D97413D0F8CA0C04869CB20B74FF4D6FE679 ] C:\Windows\System32\dimsjob.dll 21:01:07.0371 0x1380 C:\Windows\System32\dimsjob.dll - ok 21:01:07.0381 0x1380 [ 8BDC8ECF5EC879F5F8686B86510BADA0, D5136C002723DC8937ED580383C96A6A7876D7B3EE672C4A00AB67CEEC5CE6B5 ] C:\Program Files (x86)\TOSHIBA\Wireless LAN Indicator\tosKillIndicator.exe 21:01:07.0381 0x1380 C:\Program Files (x86)\TOSHIBA\Wireless LAN Indicator\tosKillIndicator.exe - ok 21:01:07.0381 0x1380 [ 35CB97CBC3EDC463418ED4997AAB29B6, EE60EABE2D87CEDD68FB8985B6C5D70930015FB2B8DB9FDCB4044587BC6ECA4C ] C:\Windows\System32\pautoenr.dll 21:01:07.0381 0x1380 C:\Windows\System32\pautoenr.dll - ok 21:01:07.0381 0x1380 [ ABAC57D3B1C8E5E3C5A86F3D311CAA5F, 74DF953CB69A46B04AA9D77A07C50D346976DB4283FDFEE3637935C482C7DF30 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll 21:01:07.0381 0x1380 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok 21:01:07.0391 0x1380 [ 94DFBB481BF51158B216E23C5C1C9D6E, 0199086A70B9B63E48A7A15C8AE5442E9C6BC0173BD80A104DE1BE6A6C25F202 ] C:\Windows\System32\certcli.dll 21:01:07.0391 0x1380 C:\Windows\System32\certcli.dll - ok 21:01:07.0391 0x1380 [ 263B26106606A010CF877472B535E4BB, 43ECE89E428D2BB34244894BEBA1B946B0767649D15B1C715223E4E471A9E504 ] C:\Windows\System32\CertEnroll.dll 21:01:07.0391 0x1380 C:\Windows\System32\CertEnroll.dll - ok 21:01:07.0401 0x1380 [ DF13A51A5C591887D2EC6AE64CEED0FA, DFD503AEBCAA056B2B0E669ACA52F6D26F4E6892F2DCFCCD902752C23A621653 ] C:\Windows\SysWOW64\wsock32.dll 21:01:07.0401 0x1380 C:\Windows\SysWOW64\wsock32.dll - ok 21:01:07.0401 0x1380 [ 97A1AFD42B8016D132C7BF38C955C6E1, 6E5265F61CAA45003847E6EBCD48DBAFF2FC591ACABF2D1BD3BE9D4B44D7C904 ] C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe 21:01:07.0401 0x1380 C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe - ok 21:01:07.0401 0x1380 [ 8F6C500CF94BC2F9620BB616B0D3F1D4, 8BEFFA04F9B25E752E419C0B91049E23C28E22C6724C832448D7F8CF98CE175D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\tosKillIndicator\50fa8371bbbbbe6cde27660594ea4a09\tosKillIndicator.ni.exe 21:01:07.0401 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_32\tosKillIndicator\50fa8371bbbbbe6cde27660594ea4a09\tosKillIndicator.ni.exe - ok 21:01:07.0411 0x1380 [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\winsxs\x86_microsoft-windows-branding-engine_31bf3856ad364e35_6.1.7600.16385_none_e9402ec0c6b7a25b\winbrand.dll 21:01:07.0411 0x1380 C:\Windows\winsxs\x86_microsoft-windows-branding-engine_31bf3856ad364e35_6.1.7600.16385_none_e9402ec0c6b7a25b\winbrand.dll - ok 21:01:07.0411 0x1380 [ B9ADA43CB3FFAF6669D34F432AA44A0F, A90E9B44D77340FD7CA7A280DF39117660764B577506E04FB63E30374C1E6912 ] C:\Windows\SysWOW64\pstorec.dll 21:01:07.0411 0x1380 C:\Windows\SysWOW64\pstorec.dll - ok 21:01:07.0421 0x1380 [ 68ECCA523ED760AAFC03C5D587569859, CDD734279C8F9F24EA2538BAD8E91EB8C3DD74C33032DB6B2D85C19576B42707 ] C:\Windows\SysWOW64\samcli.dll 21:01:07.0421 0x1380 C:\Windows\SysWOW64\samcli.dll - ok 21:01:07.0421 0x1380 [ 8AA3FD58AFE10DE1710DD72B4A1989A3, D60E980DAE887A591BC0FDAFC41837D093E3C96512ACD78EC4B25B058E569DCC ] C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSParts.dll 21:01:07.0421 0x1380 C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSParts.dll - ok 21:01:07.0431 0x1380 [ 2766769440198C1E63122865850BB631, 4311E21CC1525A1043C7CF7011A4FDF1B1AEBE2954F9088929F0FC47496530AF ] C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSAPI.dll 21:01:07.0431 0x1380 C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSAPI.dll - ok 21:01:07.0431 0x1380 [ DA4950C4239E0C4FF35895FD7AA46B05, B6F40F19F3A1F032FE1DAC44E157BD4A25F4FE3F1C627A8752259DC0680F3B91 ] C:\Program Files (x86)\TOSHIBA\ConfigFree\CFWlApi.dll 21:01:07.0431 0x1380 C:\Program Files (x86)\TOSHIBA\ConfigFree\CFWlApi.dll - ok 21:01:07.0441 0x1380 [ 2C4A87CA8C00E98EFDCFA2E8EC9A3503, DA59CE662E98E56D89E2894D2AC8B9F324C16DA23C860640EDC2C82E0AD06097 ] C:\Windows\SysWOW64\shdocvw.dll 21:01:07.0441 0x1380 C:\Windows\SysWOW64\shdocvw.dll - ok 21:01:07.0441 0x1380 [ 1F5AFD468EB5E09E9ED75A087529EAB5, 8204DBCC054C1E54B6065BACB78C55716681AD91759E25111B4E4797E51D0AA3 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll 21:01:07.0441 0x1380 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll - ok 21:01:07.0441 0x1380 [ 9297F004FCE79FB7B26DAC6968FB5FEB, 797B4501823123FB6530F613CE996E77C3D323CD7B2365836504BD622F4CEFC2 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll 21:01:07.0441 0x1380 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll - ok 21:01:07.0451 0x1380 [ B7AC66C1CCD87D7C49256B5451DED4FA, 2BA412A69605D75CF10B9446725917B850A29369BD3970CA14796CC24C9BFD72 ] C:\Windows\System32\spp.dll 21:01:07.0451 0x1380 C:\Windows\System32\spp.dll - ok 21:01:07.0451 0x1380 [ 310A2A61A5588D932002F83651188C9E, 975D042BDEAC3D7942C0E80795F20E674A8CCAE639271D74DD0ADD7E565121CE ] C:\Windows\System32\srclient.dll 21:01:07.0451 0x1380 C:\Windows\System32\srclient.dll - ok 21:01:07.0461 0x1380 [ 6685DD5CC357D45EEE30FD089E8A111A, FA261701D1E81029ADBE431AD740BBB00185ADD9A2E226374B9C0A0992A157D5 ] C:\Windows\System32\sxsstore.dll 21:01:07.0461 0x1380 C:\Windows\System32\sxsstore.dll - ok 21:01:07.0461 0x1380 [ 943F48CC3A59169E52A054946C2F59B8, 0F98177902498B251F573613EFEAC1052B9BE23115A58EF2740363BC5DE99F61 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll 21:01:07.0461 0x1380 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll - ok 21:01:07.0471 0x1380 [ D485D1BE97777617B186FC8095F58421, 6F4947E651D1D8FA4DA006AE874E91D5D87813BA84EE71C91FF6F92833B921FF ] C:\Windows\servicing\CbsApi.dll 21:01:07.0471 0x1380 C:\Windows\servicing\CbsApi.dll - ok 21:01:07.0471 0x1380 [ DB70FE36AC8F594E9E69479C076BADB8, 839D46AEE1407409194AB7B34AC66F0F6EA299BA89680CD8DA8F7729D8FC9E4E ] C:\Windows\System32\HelpPaneProxy.dll 21:01:07.0471 0x1380 C:\Windows\System32\HelpPaneProxy.dll - ok 21:01:07.0471 0x1380 [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\SysWOW64\NapiNSP.dll 21:01:07.0471 0x1380 C:\Windows\SysWOW64\NapiNSP.dll - ok 21:01:07.0481 0x1380 [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\SysWOW64\pnrpnsp.dll 21:01:07.0481 0x1380 C:\Windows\SysWOW64\pnrpnsp.dll - ok 21:01:07.0481 0x1380 [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\SysWOW64\winrnr.dll 21:01:07.0481 0x1380 C:\Windows\SysWOW64\winrnr.dll - ok 21:01:07.0491 0x1380 [ D39DA70FEA6BD713682F70635587DA9E, FF18C97642F48C711D75F32115B1260FE0BDF6072403E5A9226E9BE780AF1969 ] C:\Windows\SysWOW64\rasdlg.dll 21:01:07.0491 0x1380 C:\Windows\SysWOW64\rasdlg.dll - ok 21:01:07.0491 0x1380 [ D6B4CA6DB025235CF02540098677065C, F9EE12464DE80E1B15B260EE2A4FB80F94F240096803466AE213EA2F8236DF97 ] C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSMUI.dll 21:01:07.0491 0x1380 C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSMUI.dll - ok 21:01:07.0491 0x1380 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159, ACE7F85685EB92FC3AB4215122B0469E32F23B196C49F08CDA7791D3122C45DC ] C:\Windows\SysWOW64\rtutils.dll 21:01:07.0491 0x1380 C:\Windows\SysWOW64\rtutils.dll - ok 21:01:07.0501 0x1380 [ E2C48CD0132D4D1DC7D0DF9A6BEF686A, 52D1A8AA992AF2F727DA4B16522D604648D700997B1620CCB67D05838C127674 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll 21:01:07.0501 0x1380 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok 21:01:07.0501 0x1380 [ 14A4EDA189DB5953B9E1C4391E796619, EB111AF6A5478D6145144647C81E534B256F9C041D3D27D3E791E892F17D9256 ] C:\Program Files (x86)\TOSHIBA\ConfigFree\CFWRPAR_CS.dll 21:01:07.0501 0x1380 C:\Program Files (x86)\TOSHIBA\ConfigFree\CFWRPAR_CS.dll - ok 21:01:07.0511 0x1380 [ 1D109ED0D660654EA7FF1574558031C4, 7DCB3C45938D31854E46B5E5B0E16D538E29230D1BC81086D40C8DB3BDF510BC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcm80.dll 21:01:07.0511 0x1380 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcm80.dll - ok 21:01:07.0511 0x1380 [ C00DB14550E4BD49737F311C644E45FF, 7085C47DADEED82B6F98ED3903197D76B648E9D6CC67D40C789E236264D9A0DC ] C:\Windows\System32\wmi.dll 21:01:07.0511 0x1380 C:\Windows\System32\wmi.dll - ok 21:01:07.0521 0x1380 [ 9C5DAAED3B3C06DBC95228CC407B8B70, E306E5C4A1C0D4B63840E38098B9FF2F4267FA4F519C7841E5A0C25A8DFF96D8 ] C:\Users\admin\AppData\Local\Temp\{830F0974-26D4-40D8-BE73-B3F87E32B5BE}.exe 21:01:07.0521 0x1380 C:\Users\admin\AppData\Local\Temp\{830F0974-26D4-40D8-BE73-B3F87E32B5BE}.exe - ok 21:01:07.0521 0x1380 [ E7B9D5FF20FFDD4AAE2EF1D1B8C27A37, 689D126B1B42140D5049015E3E324268E6542D4BC6CC14E31D8B89A25B94BAA5 ] C:\Windows\SysWOW64\imagehlp.dll 21:01:07.0521 0x1380 C:\Windows\SysWOW64\imagehlp.dll - ok 21:01:07.0531 0x1380 [ 8FE6AB488ECDC60930CE973A7051B0D4, 38A5CD589EB9CD4CF5656673588AED014D6E99731B97719ABE4BA712F3AF94FC ] C:\Windows\SysWOW64\ncrypt.dll 21:01:07.0531 0x1380 C:\Windows\SysWOW64\ncrypt.dll - ok 21:01:07.0531 0x1380 [ 7B851A8018B1EA00A69707A390004884, DAE654713EF1DC66C8C2D27752B659081794063A7D522D1F680AA9A6E7FBA9FD ] C:\Windows\SysWOW64\cryptnet.dll 21:01:07.0531 0x1380 C:\Windows\SysWOW64\cryptnet.dll - ok 21:01:07.0531 0x1380 [ 846D0E4DB261CFAF363902E41498E961, D7E5591B7604FD583AF7FDA19E30928B24A6145318A3944E7D207F0CCEEB30D0 ] C:\Windows\SysWOW64\EhStorShell.dll 21:01:07.0531 0x1380 C:\Windows\SysWOW64\EhStorShell.dll - ok 21:01:07.0541 0x1380 [ 03F3B770DFBED6131653CEDA8CA780F0, 77373919DCA647F09851E7E460AE78FBD89F21516B961F84AC4446304E51E09C ] C:\Windows\SysWOW64\ntshrui.dll 21:01:07.0541 0x1380 C:\Windows\SysWOW64\ntshrui.dll - ok 21:01:07.0541 0x1380 [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\SysWOW64\imageres.dll 21:01:07.0541 0x1380 C:\Windows\SysWOW64\imageres.dll - ok 21:01:07.0551 0x1380 [ 220159496484D34009DE71CA1A68E0D4, 94BD3DEB4E84F95D80BE5775E5A612EFF181ECB212FB668674C67AD19194DE69 ] C:\Windows\System32\wbem\NCProv.dll 21:01:07.0551 0x1380 C:\Windows\System32\wbem\NCProv.dll - ok 21:01:07.0551 0x1380 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\SysWOW64\sfc.dll 21:01:07.0551 0x1380 C:\Windows\SysWOW64\sfc.dll - ok 21:01:07.0551 0x1380 [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\SysWOW64\sfc_os.dll 21:01:07.0551 0x1380 C:\Windows\SysWOW64\sfc_os.dll - ok 21:01:07.0561 0x1380 [ FB10715E4099AF9FA389C71873245226, 6A4CB43880B822A0C4714D6E52EB3EB2CE1E69C3AA9CA65EAAD6B131AE43F274 ] C:\Windows\System32\timedate.cpl 21:01:07.0561 0x1380 C:\Windows\System32\timedate.cpl - ok 21:01:07.0561 0x1380 [ E6F0F82788E8BD0F7A616350EFA0761C, 13091DCB3E3F4F52C3FF210E93AAF1DCE142CFC09F671AEAC5B922393B23E67B ] C:\Windows\System32\actxprxy.dll 21:01:07.0561 0x1380 C:\Windows\System32\actxprxy.dll - ok 21:01:07.0571 0x1380 [ E706C7339FEAE8DDC0DA258C56A1B31F, 274FDAD86A72771D51B3629BFC33F4B58EBDAA064FE655BC3194799AEA1F533B ] C:\Program Files (x86)\XTab\BrowserAction.dll 21:01:07.0571 0x1380 C:\Program Files (x86)\XTab\BrowserAction.dll - ok 21:01:07.0571 0x1380 [ 23B001185B7C3CB1F4BDEB143E6B45B7, AB3A5AB346F6353B43B06FBE20B7785DA988975E2C8B73A6588F107FFAAACC47 ] C:\Windows\System32\shdocvw.dll 21:01:07.0571 0x1380 C:\Windows\System32\shdocvw.dll - ok 21:01:07.0581 0x1380 [ A0A65D306A5490D2EB8E7DE66898ECFD, CE5DA408F4EDD5E81CE0925867F03C9A35172CF1571FE4C4C052E45AB69822BB ] C:\Windows\System32\linkinfo.dll 21:01:07.0581 0x1380 C:\Windows\System32\linkinfo.dll - ok 21:01:07.0581 0x1380 [ 69754747274B76E7FAF287239333D7E6, A0BAEC1E56E4B1A17C0D41B317526AF5BB11E7E488C7016067A6229346A23B16 ] C:\Windows\System32\msiltcfg.dll 21:01:07.0581 0x1380 C:\Windows\System32\msiltcfg.dll - ok 21:01:07.0591 0x1380 [ 2720C94ADCC1727A66365CCB1CE456C4, 7A6978A117406E39CEE7ED051F02DE04E76EC51AA65B3F4774712C1C317F410C ] C:\Windows\System32\msi.dll 21:01:07.0591 0x1380 C:\Windows\System32\msi.dll - ok 21:01:07.0591 0x1380 [ CC67B4BB5B9328D0E150529AF7C0F2A2, 186E401C09BBC7C7BCB17158D4A64AC1323175A92ABBB95C1D6F50AD2F988AE4 ] C:\Program Files (x86)\XTab\IeWatchDog.dll 21:01:07.0591 0x1380 C:\Program Files (x86)\XTab\IeWatchDog.dll - ok 21:01:07.0601 0x1380 [ A9AC6659D2D29344CB4886252EE668E8, B65A9190512E878F114C900CD02BC869D8447344A109961F39AFA505FD578C47 ] C:\Program Files (x86)\XTab\BrowerWatchFF.dll 21:01:07.0601 0x1380 C:\Program Files (x86)\XTab\BrowerWatchFF.dll - ok 21:01:07.0601 0x1380 [ 8EA6B54B332B013C3E81CDB99FE174BD, 5A1A9257874677E11782D56EAE807B3AC469B155E784A8161A763AD9094973A2 ] C:\Program Files (x86)\XTab\BrowerWatchCH.dll 21:01:07.0601 0x1380 C:\Program Files (x86)\XTab\BrowerWatchCH.dll - ok 21:01:07.0601 0x1380 [ 661CEEDE98A2E0E5CDD7DE239EB38353, 3F8A23FD9CC3516A9366235662942B942A64A4264F35BFFD339D1B054AD1080E ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll 21:01:07.0601 0x1380 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok 21:01:07.0611 0x1380 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86, E15ED4FEFC3010C213694331DDFDC03767682325C898D773AB243E2DC8B08461 ] C:\Windows\System32\msftedit.dll 21:01:07.0611 0x1380 C:\Windows\System32\msftedit.dll - ok 21:01:07.0611 0x1380 [ 2BCBA6052374959A30BD7948444DBB79, 46224A2B729026FEEBC3C6A09E69919D477097848DB2CA0C2F5B166CDF379660 ] C:\Windows\System32\gameux.dll 21:01:07.0611 0x1380 C:\Windows\System32\gameux.dll - ok 21:01:07.0621 0x1380 [ 2EBD0C5B090125AECF017C57344C45AB, 4FF8F2460115C60AD164EE0DC2079E1601B8AA21A1BA8033B7B731FAF85411B6 ] C:\Windows\System32\msls31.dll 21:01:07.0621 0x1380 C:\Windows\System32\msls31.dll - ok 21:01:07.0621 0x1380 [ 80041798F2F049259241393A2017DB02, 59B8913A129EC26FB111C2C614C0C7440D521F65BAF32E57CA48E34337C0DDEE ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll 21:01:07.0621 0x1380 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok 21:01:07.0621 0x1380 [ 4C2C4640BF23AAFCF90519E0F34436CE, 8ACCDA77C2DC5BE2DAED05134310122AFECC872A8D118612E55DD229BFE4D844 ] C:\Windows\System32\DeviceCenter.dll 21:01:07.0631 0x1380 C:\Windows\System32\DeviceCenter.dll - ok 21:01:07.0631 0x1380 [ ECAD76D237608E228EE1E93338F2F14A, 7438E0B61F885B9088F922FF619BB1473BC5CA3603ADF5BCB9F87D17FDD2CE02 ] C:\Program Files\TOSHIBA\TOSHIBA Intelligent Display Management\TDLPowerCtrl.exe 21:01:07.0631 0x1380 C:\Program Files\TOSHIBA\TOSHIBA Intelligent Display Management\TDLPowerCtrl.exe - ok 21:01:07.0631 0x1380 [ 537184E7306E06BB22C5B93D2AFA4DF8, 24603B2F70B33B23FC84AA0B98E0B80EA41F64C2A1FEDCEA364D73A46194BA21 ] C:\Windows\SysWOW64\msxml3.dll 21:01:07.0631 0x1380 C:\Windows\SysWOW64\msxml3.dll - ok 21:01:07.0641 0x1380 [ 292D7CCBAF7D875AFBB4F00896863935, 2CFA99A77DF42A4E60EE4F610ACBFADB34BED6BCE4D1C6CE53AAAF87F98F3F92 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll 21:01:07.0641 0x1380 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok 21:01:07.0641 0x1380 [ A042FB145907E867A19D5CAC06A9EFB1, 727A3D429E48D22D7D7BA573E8717D2786422A92FB1F5CCA591AF8AC36761701 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe 21:01:07.0641 0x1380 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok 21:01:07.0641 0x1380 [ 6DEE94C715404B839DDCE782FA8AD350, 0C5D78DD4ABF165657AEA05F2C1BF4856B798DA51482BF1A3640377C546C5E5B ] C:\Program Files\Apoint2K\Apoint.exe 21:01:07.0641 0x1380 C:\Program Files\Apoint2K\Apoint.exe - ok 21:01:07.0651 0x1380 [ 405F4D32D2185F1F1BD753D8EEAFFB3A, CAC42C3E09C43BE96592B670D70821386014DB22D8239A9CFB9E33E54FB5C3D5 ] C:\Windows\System32\networkexplorer.dll 21:01:07.0651 0x1380 C:\Windows\System32\networkexplorer.dll - ok 21:01:07.0651 0x1380 [ 850BD2D2D9CB5894935C3B6333CAD6FD, AB1EE5FD5E2F1CC927C3EA92E71C91ACA566E69622D47AE780DA391B7C30DDD6 ] C:\Windows\System32\riched20.dll 21:01:07.0651 0x1380 C:\Windows\System32\riched20.dll - ok 21:01:07.0651 0x1380 [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{9FB5277D-46D1-4308-95C6-0A29FEB255DC}.tmp 21:01:07.0651 0x1380 C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{9FB5277D-46D1-4308-95C6-0A29FEB255DC}.tmp - ok 21:01:07.0661 0x1380 [ B03F39264477EC8A979C67C789A7B62A, B8E91360CCF1F0DFE83E3126CF8BF42FDCEBB66BF27607306A90D15DD2629D67 ] C:\Program Files\Apoint2K\ApMsgFwd.exe 21:01:07.0661 0x1380 C:\Program Files\Apoint2K\ApMsgFwd.exe - ok 21:01:07.0661 0x1380 [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{D52D006D-892C-40AB-BD72-638AAAB22287}.tmp 21:01:07.0661 0x1380 C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{D52D006D-892C-40AB-BD72-638AAAB22287}.tmp - ok 21:01:07.0661 0x1380 [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{80178C39-9CAF-4F36-A488-E5CE0010030C}.tmp 21:01:07.0661 0x1380 C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{80178C39-9CAF-4F36-A488-E5CE0010030C}.tmp - ok 21:01:07.0671 0x1380 [ B0F8CCA08DBC392442E27377B98DD0CD, D76D5897EFE57BD3897F3ACD44A85003BD412E9C0CAF1C78D18137C32327A399 ] C:\Windows\System32\consent.exe 21:01:07.0671 0x1380 C:\Windows\System32\consent.exe - ok 21:01:07.0671 0x1380 [ 0A6A78EDDD1F51D84164CC3FCA430FAD, 368B8212A3EEDE8BE4B26ADA620FAC713507ADFE2C809F4B294A69ED5788C5AB ] C:\Program Files\TOSHIBA\TOSHIBA Intelligent Display Management\TDLPower.dll 21:01:07.0671 0x1380 C:\Program Files\TOSHIBA\TOSHIBA Intelligent Display Management\TDLPower.dll - ok 21:01:07.0671 0x1380 [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{B20ED20E-E884-47E0-B71B-FF908979A981}.tmp 21:01:07.0681 0x1380 C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{B20ED20E-E884-47E0-B71B-FF908979A981}.tmp - ok 21:01:07.0681 0x1380 [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{3FC0BD9A-8D22-4AB8-AF90-E89FC91F3F31}.tmp 21:01:07.0681 0x1380 C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{3FC0BD9A-8D22-4AB8-AF90-E89FC91F3F31}.tmp - ok 21:01:07.0681 0x1380 [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{81FF7ED3-A3C7-4A50-95FC-ED5DCBC44DEE}.tmp 21:01:07.0681 0x1380 C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{81FF7ED3-A3C7-4A50-95FC-ED5DCBC44DEE}.tmp - ok 21:01:07.0691 0x1380 [ 24F4B480F335A6C724AF352253C5D98B, 011413B236CAD7B78CE0A0EEC3E3085D48C7576A3205D025BA6EBFDF590538E4 ] C:\Windows\System32\thumbcache.dll 21:01:07.0691 0x1380 C:\Windows\System32\thumbcache.dll - ok 21:01:07.0691 0x1380 [ 3A25973E0B5C1C6ED5A64EF0F85386B2, 9BFECC845F055927ABDBC2E0CF3D213850A227D1DB336596B5288B0C08B751C5 ] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe 21:01:07.0691 0x1380 C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe - ok 21:01:07.0701 0x1380 [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{0E35C296-F670-4A97-8F81-6D6BBF111A13}.tmp 21:01:07.0701 0x1380 C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{0E35C296-F670-4A97-8F81-6D6BBF111A13}.tmp - ok 21:01:07.0701 0x1380 [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{1271A2F5-CA36-436D-A7A9-301CC073D446}.tmp 21:01:07.0701 0x1380 C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{1271A2F5-CA36-436D-A7A9-301CC073D446}.tmp - ok 21:01:07.0701 0x1380 [ 5F639198C4137075DA50E61C23963C11, 3D03B3BF62B3469069AD6BE2AAEE152CB6722D36C001B8197FEBC2F3EB9ADBE0 ] C:\Windows\System32\drprov.dll 21:01:07.0701 0x1380 C:\Windows\System32\drprov.dll - ok 21:01:07.0711 0x1380 [ D233C7FEAE3FAA25F93A9E6B46815ADC, 5330682AE9C08E5F2E30C5E256B91028389BBBDDAA8C38950DF76616FCA854FF ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll 21:01:07.0711 0x1380 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok 21:01:07.0711 0x1380 [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{4C81190B-31CF-4589-807D-2D1BA3A8D77D}.tmp 21:01:07.0711 0x1380 C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{4C81190B-31CF-4589-807D-2D1BA3A8D77D}.tmp - ok 21:01:07.0711 0x1380 [ DFD8F75F0E27D522AB8424AD71719C8B, 68C9B90EFA71D7CAC2DA632D2C388E1416E26275CF3FA980E39D4858F8FF77F9 ] C:\Program Files\TOSHIBA\TBS\HSON.exe 21:01:07.0711 0x1380 C:\Program Files\TOSHIBA\TBS\HSON.exe - ok 21:01:07.0721 0x1380 [ BC566D17914B07ABAAB3A5A385CC3300, DCE0A1D26312AA6441FB7122C6EED980AE350D58B2B4B166CB62F983306268E9 ] C:\Windows\System32\ntlanman.dll 21:01:07.0721 0x1380 C:\Windows\System32\ntlanman.dll - ok 21:01:07.0721 0x1380 [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{7B28269E-7370-4FFE-A724-0C6DB4B6305D}.tmp 21:01:07.0721 0x1380 C:\Users\admin\AppData\Local\Temp\{BCA99757-FC25-4133-8EEC-5E039DEF8CB3}\{7B28269E-7370-4FFE-A724-0C6DB4B6305D}.tmp - ok 21:01:07.0721 0x1380 [ B32AB94A432289AC2DF77A3DCAD32EED, B1021C78F940E6FA7A8992B2733B593B89DA57325A0A0D13D2767F193A78D90F ] C:\Windows\System32\davclnt.dll 21:01:07.0721 0x1380 C:\Windows\System32\davclnt.dll - ok 21:01:07.0731 0x1380 [ 45B24A357C801CE62052FE0CDC8BD4D2, 00602E41B78473825253F6B2557A5C43FBDDCCF713D806929AE7C039FF8F185C ] C:\Windows\System32\davhlpr.dll 21:01:07.0731 0x1380 C:\Windows\System32\davhlpr.dll - ok 21:01:07.0731 0x1380 [ E937B2952DF62B980E8B0028D00BB4C2, A1F1D7C7E2F4E1598B60B9A21E29700E98DF0DB2C084DB3E3C55A547218362A7 ] C:\Windows\System32\Vxdif.dll 21:01:07.0731 0x1380 C:\Windows\System32\Vxdif.dll - ok 21:01:07.0731 0x1380 [ DE6768D360564906AB9C320A6994FC8D, AC96950A90490A7ADB99D4CB941E3177974E1794A161BBF94F0B834DE5693653 ] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe 21:01:07.0731 0x1380 C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe - ok 21:01:07.0741 0x1380 [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\SysWOW64\riched20.dll 21:01:07.0741 0x1380 C:\Windows\SysWOW64\riched20.dll - ok 21:01:07.0741 0x1380 [ DB4BC74DC444CC7A5F8F6DF2D38FBD96, 47B4E80F1173532365FCEEDAEEB495BDAEFAC4D362EB62BB92F4FEA589D2C104 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcm90.dll 21:01:07.0741 0x1380 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcm90.dll - ok 21:01:07.0741 0x1380 [ 8A07221789D46B2EA7DFCA2BC807572A, 1921B19ED69857C75326C6A3DF767D80E5B795C9109CF2D12CB544E24EBEE526 ] C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe 21:01:07.0741 0x1380 C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe - ok 21:01:07.0751 0x1380 [ D6F79D14E725C4A93E62B8618CBCF535, E96FEA3222F01505C3953872577740A9DF0DA050EC0F25266BB16C92D133A873 ] C:\Program Files\Apoint2K\ApMain.dll 21:01:07.0751 0x1380 C:\Program Files\Apoint2K\ApMain.dll - ok 21:01:07.0751 0x1380 [ 12F8C04F7C124AF6BD4612E2E0AF449B, 506D7CB79E11EC83D9043D5B9B61E41EDF196DAFC5F77624A882ADC375E8528E ] C:\Program Files\TOSHIBA\TECO\Teco.exe 21:01:07.0751 0x1380 C:\Program Files\TOSHIBA\TECO\Teco.exe - ok 21:01:07.0751 0x1380 [ 89F524B719F2A854714D4B11D32C4661, 1841414C678FBA35C5AEFD195441A56CE0A01707FCF9476F0551D52047C5CEDE ] C:\Program Files\Apoint2K\ApCommon.dll 21:01:07.0751 0x1380 C:\Program Files\Apoint2K\ApCommon.dll - ok 21:01:07.0761 0x1380 [ 241AF87821FDA0F5792037B779F49BE0, B3F4FDA27430ACC6D6BC1C3CBD518B9CAE5BA0F22AB8917578A7F16270F94C8B ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll 21:01:07.0761 0x1380 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok 21:01:07.0761 0x1380 [ 578AD386192D03662C38D5E155144C59, BB5920B2B87288A85CBDFFB8E387D7ADFC390613D1C0968526DA2D69C28AAAB1 ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe 21:01:07.0761 0x1380 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe - ok 21:01:07.0761 0x1380 [ 315B7D31A1EBC55F0204CCE0E7CABBBC, F301EF4347ED7F0D4B12F2E2AE9735BD32D36E96560FCCE396D63B8FA190CD2D ] C:\Program Files\Apoint2K\ApDual.dll 21:01:07.0761 0x1380 C:\Program Files\Apoint2K\ApDual.dll - ok 21:01:07.0771 0x1380 [ 53C186004B244A662EDCD98BF7BD242A, A20BA4E5F49ACFE940E6AB2677ED1A323A058D942313B2DB2AF6A0F37B826CFA ] C:\Program Files\Apoint2K\ApPad.dll 21:01:07.0771 0x1380 C:\Program Files\Apoint2K\ApPad.dll - ok 21:01:07.0771 0x1380 [ E2A17BCC08D92F42E08AF6BA2F93ABA7, 5FC9D47BF4B1094BECC0C0DDCD5CD4318DD3E4495D982F8785331616D5B82599 ] C:\Windows\SysWOW64\ExplorerFrame.dll 21:01:07.0771 0x1380 C:\Windows\SysWOW64\ExplorerFrame.dll - ok 21:01:07.0771 0x1380 [ 2D57DCE4DE8CB1158FFAD914C1B64984, E3B8B0C4DD3EBEE70EE1B15B0BE72D5CD29B767D2B7D8CE264515674CF0D6114 ] C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe 21:01:07.0771 0x1380 C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe - ok 21:01:07.0781 0x1380 [ D70D6B42933C1174FE961F0BCA3573A3, CB00C6D7AB50C5C3B9AA989314344A3B4003F63946BE38E0AA55AE68337FD768 ] C:\Program Files\TOSHIBA\FlashCards\TCrdEvnt.dll 21:01:07.0781 0x1380 C:\Program Files\TOSHIBA\FlashCards\TCrdEvnt.dll - ok 21:01:07.0781 0x1380 [ F82483A80D49ACCA81193A294FB233CD, 7EEA9E7F62A92AD98569B1A4F4809D91D7ED671821A738EB75BC6E469DB44494 ] C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe 21:01:07.0781 0x1380 C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe - ok 21:01:07.0781 0x1380 [ 76849AB697E63D85CC35DD2F8AEA1C6B, 9258E14C5DEB1C79D5CE3027126D7D1E481C8081376A538690214508CED3B423 ] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.dll 21:01:07.0781 0x1380 C:\Program Files\TOSHIBA\FlashCards\TCrdMain.dll - ok 21:01:07.0791 0x1380 [ 0E7DF65078420B6E69A06A7B329EBEFE, 148DDECC60E06140A31EDC9AD369A665642C75DF780FAB64084029F908270656 ] C:\Program Files\TOSHIBA\Power Saver\TtosFunc.dll 21:01:07.0791 0x1380 C:\Program Files\TOSHIBA\Power Saver\TtosFunc.dll - ok 21:01:07.0791 0x1380 [ 6BB1E28B8180EC841A5309FA0F2CAD7A, 039CE9AD0D25B15F630A2AD04C8F533DDE54CF85217C0F07A18A985E05A5F73A ] C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe 21:01:07.0791 0x1380 C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe - ok 21:01:07.0791 0x1380 [ CC74CA2D0AF8B9C053F078C383DDC8E1, DC6F449AB184FE335FD104F956AF0B3CE57DC57892AC5CAF9BFE3B5034C59FF2 ] C:\Program Files\Apoint2K\EzLaunch.dll 21:01:07.0791 0x1380 C:\Program Files\Apoint2K\EzLaunch.dll - ok 21:01:07.0801 0x1380 [ 0F042176F243D71C552E9D07D2FCB141, 89BA83E18F3158D83A0D2B430DBE11A8ACCC0CF9D64E9AF832CD9E080ADD263E ] C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll 21:01:07.0801 0x1380 C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll - ok 21:01:07.0801 0x1380 [ 10A01C0BCF66F91820B7CF8309D7C051, FC27A6708A8646DA7538EAED36BC0B6E12710AF90B873219BCDB4B86FA18A5B8 ] C:\Program Files\TOSHIBA\Power Saver\TCooling.dll 21:01:07.0801 0x1380 C:\Program Files\TOSHIBA\Power Saver\TCooling.dll - ok 21:01:07.0801 0x1380 [ 9B127FAD05A69E8B66FFBEE9C58D64B6, B9FC1C43BE7CBAA2F3F91DA5ED63FF122B46A5371D94328D9B2CCBBFA2A21803 ] C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe 21:01:07.0801 0x1380 C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe - ok 21:01:07.0811 0x1380 [ 528B472164044CFF987A7AAD47BC6676, 0A02789D89E2EFF522B8A5D70CC3D1C59E2284E8C83F7A5313F645BEB0653D26 ] C:\Program Files\Apoint2K\EzCapt.dll 21:01:07.0811 0x1380 C:\Program Files\Apoint2K\EzCapt.dll - ok 21:01:07.0811 0x1380 [ A3F33A34AABB4B608120FA7662871972, 25B74ACDD0EC182FFD6978DB3621F83FA73BC4F1B1C34136C40097EED83094B2 ] C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe 21:01:07.0811 0x1380 C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe - ok 21:01:07.0811 0x1380 [ B5FE6C468A0B71E222BB742CB0DDF8EE, 9059BE372AFA86BBBDE31327D6105A6771F762BF217C68E15A28DB5F95BAB155 ] C:\Program Files\Apoint2K\ApStick.dll 21:01:07.0811 0x1380 C:\Program Files\Apoint2K\ApStick.dll - ok 21:01:07.0821 0x1380 [ 099B3847531EAF7BA63B5BB504CE8461, 70271E4D3174F98A90BE9658F72F38A2FFD906BDC1D26E8AE418B147D4134EC1 ] C:\Program Files\TOSHIBA\TECO\MUIHelp.dll 21:01:07.0821 0x1380 C:\Program Files\TOSHIBA\TECO\MUIHelp.dll - ok 21:01:07.0821 0x1380 [ CD2B5743E36067630B547DF6C34BD9B1, 9667AE919B19B08008A41B52F321DC4E612A4A9632F21CFF1FAAEB27B917D776 ] C:\Program Files\TOSHIBA\Power Saver\TOddPwr.dll 21:01:07.0821 0x1380 C:\Program Files\TOSHIBA\Power Saver\TOddPwr.dll - ok 21:01:07.0821 0x1380 [ 2291B6B771B37424F02673F582571ACA, DD541D831CA779C62D8E96FF233C26A7198CAD19C7043BCF7871AAD3318D35B7 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\20dbd669c42888d4bf4949279ecaec94\System.Drawing.ni.dll 21:01:07.0821 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\20dbd669c42888d4bf4949279ecaec94\System.Drawing.ni.dll - ok 21:01:07.0831 0x1380 [ 0EA3E267BEDD59F0644A4CD25CF6D187, 744E8D95FC735BFB15EBA575AD041E21E5B30FFDCED1FFA11D1E49A790A60FB4 ] C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe 21:01:07.0831 0x1380 C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe - ok 21:01:07.0831 0x1380 [ 3B916D5F3E9CF5E1A88661184832EC42, A17F4F335CD3305525100A8DD56E71390A8DF4C4B5BB265D39D4792A450AF1DE ] C:\Program Files\Apoint2K\ApOthers.dll 21:01:07.0831 0x1380 C:\Program Files\Apoint2K\ApOthers.dll - ok 21:01:07.0841 0x1380 [ B5A28E7CC6EBD3572C0B241BF2C2C2A2, 012A06BFFAE08EE85C19A71075499DEFECA7AE4E3D1614A66F194039B0881F9A ] C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll 21:01:07.0841 0x1380 C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll - ok 21:01:07.0841 0x1380 [ C3761661C17C2248A9379A8FB89E3DE1, CE3477FA2B4058EB80739E0161FE957545F13CF86D313F6422732901D35F75F2 ] C:\Windows\System32\stobject.dll 21:01:07.0841 0x1380 C:\Windows\System32\stobject.dll - ok 21:01:07.0841 0x1380 [ FB71C35BBE885DE34252B36E06BF903B, E0C700C58CD316397341C403ED7DDF539F1B213F6E533D14A213E4DB8CA2116A ] C:\Program Files\Apoint2K\ApMouse.dll 21:01:07.0841 0x1380 C:\Program Files\Apoint2K\ApMouse.dll - ok 21:01:07.0851 0x1380 [ C78679298F9BC17A4E5B54F7E2060491, C1E2C53E2DB59DFF825473D8E779B4F48AFCEF3D686ED6264820311F3B4F8530 ] C:\Program Files\TOSHIBA\Power Saver\TPwrSrv.dll 21:01:07.0851 0x1380 C:\Program Files\TOSHIBA\Power Saver\TPwrSrv.dll - ok 21:01:07.0851 0x1380 [ 67611DEA70471375E1913A4CFC6A6575, A176C6DFCFB69D053FEC446D81AAF67E2BB713C00A5D87BEBE21D3AEE5C7A227 ] C:\Program Files\Apoint2K\EzAuto.dll 21:01:07.0851 0x1380 C:\Program Files\Apoint2K\EzAuto.dll - ok 21:01:07.0851 0x1380 [ F832EEEA97CDDA1AF577E721F652A0D1, EBBB7CA199BA4DF231123922BD310D43DE0104C6185B70FE0281B938D5336F2E ] C:\Windows\System32\batmeter.dll 21:01:07.0851 0x1380 C:\Windows\System32\batmeter.dll - ok 21:01:07.0861 0x1380 [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\SysWOW64\duser.dll 21:01:07.0861 0x1380 C:\Windows\SysWOW64\duser.dll - ok 21:01:07.0861 0x1380 [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\SysWOW64\dui70.dll 21:01:07.0861 0x1380 C:\Windows\SysWOW64\dui70.dll - ok 21:01:07.0861 0x1380 [ 347E00ED970CB9648D4F3FA2CBAF73D3, 44B75E4B278CCC7481CDFD466A38CC2067967D1858E05640B497D69A49B9091A ] C:\Program Files\Apoint2K\ApString.dll 21:01:07.0861 0x1380 C:\Program Files\Apoint2K\ApString.dll - ok 21:01:07.0871 0x1380 [ 0FEBED0093D2FD38DA6C6E5DE1ADA24C, 6C6B186A2FC1DFD800041B160A7D71F5F1B3C70D62C7696B8DA89148A8D87D47 ] C:\Program Files\Zune\ZuneLauncher.exe 21:01:07.0871 0x1380 C:\Program Files\Zune\ZuneLauncher.exe - ok 21:01:07.0871 0x1380 [ 9110FFAD124283F37D38771BB60556AF, BB495FDF86B7C3DD7878C496090A624CE8FE68F61166C91A4C99EF1140F0AD23 ] C:\Windows\System32\dsound.dll 21:01:07.0871 0x1380 C:\Windows\System32\dsound.dll - ok 21:01:07.0871 0x1380 [ 1473768973453DE50DC738C2955FC4DD, 14BC5DA2442CB726ACC1F277DDBECCF5D61E3A0A3E083A55A0BB610191E35220 ] C:\Windows\System32\wdmaud.drv 21:01:07.0871 0x1380 C:\Windows\System32\wdmaud.drv - ok 21:01:07.0871 0x1380 [ B3A029E4F539D2EAAB73C7307FE28147, B99D5812EE267A66F63B45ADC71A3DBC7AB5A2AD30EF130D2666DBCC3BDBA616 ] C:\Program Files\Zune\ZuneCfg.dll 21:01:07.0871 0x1380 C:\Program Files\Zune\ZuneCfg.dll - ok 21:01:07.0881 0x1380 [ A6AAD37CDCAE75CB62D039E3A4D8F5E3, 4FF763B0D129175BA1B1E794BA313E6C63F7A89D377C786BF5E730AF2A1D95D1 ] C:\Program Files\Microsoft Security Client\msseces.exe 21:01:07.0881 0x1380 C:\Program Files\Microsoft Security Client\msseces.exe - ok 21:01:07.0881 0x1380 [ 46E7056A91A5C9AF2F66DBF5828E6289, 85073862F4A4EC76AEDD66F8727FBC8B9EB730FC7E26EEFCF9E12B710F6E02A3 ] C:\Program Files\TOSHIBA\Power Saver\TPwrBrightness.dll 21:01:07.0881 0x1380 C:\Program Files\TOSHIBA\Power Saver\TPwrBrightness.dll - ok 21:01:07.0881 0x1380 [ 8560FFFC8EB3A806DCD4F82252CFC8C6, CC27BC092369A89D6147B16568FEDEB68B584D5738CD686C31F7FAE22ED17B3B ] C:\Windows\System32\ksuser.dll 21:01:07.0881 0x1380 C:\Windows\System32\ksuser.dll - ok 21:01:07.0891 0x1380 [ E366F0C5D6C948B76EEB3BE21762CAF6, E388267B2876572875D8F6DDB5B64B879FB9B6332894F66356D3FA09CBFEDD7E ] C:\Program Files\Zune\ZuneShellExt.dll 21:01:07.0891 0x1380 C:\Program Files\Zune\ZuneShellExt.dll - ok 21:01:07.0891 0x1380 [ FD97807051658AE27799BE3A557D3776, 114E111F1E195BE203BF35B12B2C1442B6708E12D0B68E9577D31A778B116D25 ] C:\Program Files\Apoint2K\ApntEx.exe 21:01:07.0891 0x1380 C:\Program Files\Apoint2K\ApntEx.exe - ok 21:01:07.0891 0x1380 [ FAFCB80D42A65964B6F4945283B8C10F, 78CDA4F8C484D5540732554D5129EE88444510340F4C14DBA86AD9C23BB18E72 ] C:\Windows\System32\AudioSes.dll 21:01:07.0891 0x1380 C:\Windows\System32\AudioSes.dll - ok 21:01:07.0901 0x1380 [ 1B0E5412AB8F30B8ED2AEAC2C530EB90, C3EA2387C1C8BD0FBBB72F825612CCE2B78F1B20216214EF431C37E652CCA404 ] C:\Program Files\Apoint2K\hidfind.exe 21:01:07.0901 0x1380 C:\Program Files\Apoint2K\hidfind.exe - ok 21:01:07.0901 0x1380 [ B531C33C3D7454EA50BA043AAAEED7E0, E8445E3FC17D79102E0A32F06E369A81ACA8D4CDE3E94810A6BC5EACB7981AA4 ] C:\Program Files\TOSHIBA\Power Saver\T1394Pwr.dll 21:01:07.0901 0x1380 C:\Program Files\TOSHIBA\Power Saver\T1394Pwr.dll - ok 21:01:07.0901 0x1380 [ 585FED4CDB8034B8B58AEB8008255817, 13D1055929D79598C04A4AB66EF3DBAADD265F9D1C3F43E84531238D2526A1AE ] C:\Windows\System32\opengl32.dll 21:01:07.0901 0x1380 C:\Windows\System32\opengl32.dll - ok 21:01:07.0911 0x1380 [ 04CB7C8FDC6D9640DD82A527208F72C4, 0F8A327B0234A29EAB1F03D9102A3DF7DB4515BF580163198C5A8C174C98DE4F ] C:\Windows\System32\UIAnimation.dll 21:01:07.0911 0x1380 C:\Windows\System32\UIAnimation.dll - ok 21:01:07.0911 0x1380 [ 2D54BAE6AE1E785896440AE5D1924848, 8BDF962A076C2F8C685543D649F52B1F357D4BB26645E6F35EC5BC1B0214D431 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\zLoader.exe 21:01:07.0911 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\zLoader.exe - ok 21:01:07.0911 0x1380 [ A5108D9783F90DFB9C316BA6818EB3D8, 2E6996FAB8D6027C1A101779C94105B45A08BA7FCE789EB3D924A8DB3808CA52 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\python27.dll 21:01:07.0911 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\python27.dll - ok 21:01:07.0921 0x1380 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A, 72288C0A88916D3C3828DBD948DBDB0928F26106319F8E60102D6C9004514D60 ] C:\Windows\System32\msacm32.dll 21:01:07.0921 0x1380 C:\Windows\System32\msacm32.dll - ok 21:01:07.0921 0x1380 [ 1B7C3A37362C7B2890168C5FC61C8D9B, 03727930E5BB5F9D91BAB901FC9A2E3B795D68E2AEE6A2CC3477F356C45A9C54 ] C:\Windows\System32\msacm32.drv 21:01:07.0921 0x1380 C:\Windows\System32\msacm32.drv - ok 21:01:07.0921 0x1380 [ 4DB8BE65B7567A28833D2F10BC7FD667, 942CEC155E30E5B0EC1D70D0CA57CD1E52F05F92B57BB7D5DBD5C511AA91058C ] C:\Program Files\TOSHIBA\Power Saver\TKBLEDPwr.dll 21:01:07.0921 0x1380 C:\Program Files\TOSHIBA\Power Saver\TKBLEDPwr.dll - ok 21:01:07.0931 0x1380 [ 4EFA9B87B1DEC01DEDA96746BF548E85, D90F65048871C0533E42E259700469C53081625E6B283687A0D9AE390E6ED04D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\19bfbbbe2ebf4db54647f4aed0f3c443\System.Windows.Forms.ni.dll 21:01:07.0931 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\19bfbbbe2ebf4db54647f4aed0f3c443\System.Windows.Forms.ni.dll - ok 21:01:07.0931 0x1380 [ CA2A0750ED830678997695FF61B04C30, E84860CD97AA3C4565ABB2D5D406A5C42B1AD2D8BA1B8CF81FE564D91F15F976 ] C:\Windows\System32\midimap.dll 21:01:07.0931 0x1380 C:\Windows\System32\midimap.dll - ok 21:01:07.0931 0x1380 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122, E7EA375A3BDE8FC764CB09524344370B9EE25F98AD6C83E6F37A569EB8D277D6 ] C:\Windows\System32\prnfldr.dll 21:01:07.0931 0x1380 C:\Windows\System32\prnfldr.dll - ok 21:01:07.0941 0x1380 [ 877B18CC43E9FC14997CB1249DEA11DD, C4F997CECF3ACD84DE105E1FEBD87A7B02F6649413CE04D352D93F223D1FC399 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\CancelAutoPlay.exe 21:01:07.0941 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\CancelAutoPlay.exe - ok 21:01:07.0941 0x1380 [ 891C25B7BE7DF5394207BE2DB07EE208, 7DC7ED48DDAE465668DD223CFE7B3F1493D33096223C9E1B83CE65CD2C6AF303 ] C:\Program Files\TOSHIBA\Power Saver\TSDPwr.dll 21:01:07.0941 0x1380 C:\Program Files\TOSHIBA\Power Saver\TSDPwr.dll - ok 21:01:07.0951 0x1380 [ C5F58174DE74878197722B5A8AA8B45B, 5253CE4419F1424F2ECBD81574F6525C39ED54CE8674BE03BC9A702D736DF85D ] C:\Program Files\TOSHIBA\Power Saver\TPCIePwr.dll 21:01:07.0951 0x1380 C:\Program Files\TOSHIBA\Power Saver\TPCIePwr.dll - ok 21:01:07.0951 0x1380 [ 263E9A047D17CD50BAA9D3C02910D18D, F526648358AD121001D2776E0ACC333EC4AC168CA07B40A3D3C06C5CE6A361C3 ] C:\Windows\System32\oledlg.dll 21:01:07.0951 0x1380 C:\Windows\System32\oledlg.dll - ok 21:01:07.0951 0x1380 [ F2967C0A97C0EA67D79D7F557213950D, 65516C83DCB3F952CD4454636B61CC2F153AF6BEEBC352463791D92F7F500F52 ] C:\Windows\System32\glu32.dll 21:01:07.0951 0x1380 C:\Windows\System32\glu32.dll - ok 21:01:07.0961 0x1380 [ 297F164DF80D84D8B300CB7BB46F6BAE, 6EC9D640F1F5E59BDC702976E19312CD94B3A78D151E0B88447D4BFFFA869639 ] C:\Program Files\Microsoft Security Client\MsMpRes.dll 21:01:07.0961 0x1380 C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok 21:01:07.0961 0x1380 [ A6C09924C6730DE8DEED9890A12AA691, 46EACBC27D15FD43431812D6CA770982178C07246AF3A1C2E0D40D745A1D5758 ] C:\Windows\System32\ddraw.dll 21:01:07.0961 0x1380 C:\Windows\System32\ddraw.dll - ok 21:01:07.0961 0x1380 [ A5ED9421B8D09ED4F57CDA386307713E, EC2EE043E94A53302A9721220AA42D29BE72AF3448B7AA01F7EB911ECF7DC6AE ] C:\Windows\System32\dciman32.dll 21:01:07.0961 0x1380 C:\Windows\System32\dciman32.dll - ok 21:01:07.0981 0x1380 [ 9C96B167C21F6DCCF68E96853B0A8F93, 5BC0C953CFB64B045632678E941CFD706AF18AC19D1A1AA98650A55E4DE95EC7 ] C:\Program Files\TOSHIBA\FlashCards\FnPRTSC.dll 21:01:07.0981 0x1380 C:\Program Files\TOSHIBA\FlashCards\FnPRTSC.dll - ok 21:01:07.0981 0x1380 [ BBD528E137DEF442AED3017606466EDE, 0BCA84D75A6AC68792F287CE460B6C11A8D1225EEBA833848EEC05C9FB0E6489 ] C:\Program Files\TOSHIBA\Power Saver\TFunctab.dll 21:01:07.0981 0x1380 C:\Program Files\TOSHIBA\Power Saver\TFunctab.dll - ok 21:01:07.0981 0x1380 [ A2C9E45F4069A002E985D1563D16813B, 0204BF076483F256F0E041E9A87F50F8795D8B1755978CA64DCBBF2E071C8956 ] C:\Windows\System32\AudioEng.dll 21:01:07.0981 0x1380 C:\Windows\System32\AudioEng.dll - ok 21:01:07.0991 0x1380 [ 0805289E121F3E3C458C970B08314EB2, D9B448A04C09F525F599D0369CF9A197F471AABDA0A97201760C46D2EB8F3CDE ] C:\Windows\System32\RtkCfg64.dll 21:01:07.0991 0x1380 C:\Windows\System32\RtkCfg64.dll - ok 21:01:07.0991 0x1380 [ 446E4DE3F5C4FD2A3956DCEDF82DEEC9, 6D628699551000C785B5BC399021D5A4E27235D4B57A1FBB8DE47E577A0F6B5D ] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe 21:01:07.0991 0x1380 C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe - ok 21:01:07.0991 0x1380 [ 5D61BE7DB55B026A5D61A3EED09D0EAD, D32CC7B31A6F98C60ABC313ABC7D1143681F72DE2BB2604711A0BA20710CAAAE ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe 21:01:07.0991 0x1380 C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe - ok 21:01:08.0001 0x1380 [ 3F84D23C338592CE690E5B186A6BC2C9, 231E8D1FEA2F1CD33CFA53DD6E8B8B925A6C0F92A205A734313787A887064F1B ] C:\Program Files\TOSHIBA\FlashCards\FnSticky.dll 21:01:08.0001 0x1380 C:\Program Files\TOSHIBA\FlashCards\FnSticky.dll - ok 21:01:08.0001 0x1380 [ 42A9CB6906D9A8BEDC83B57163E62924, E18522D3137653140757829EFBFCE624A5BAA5842E2BBA10B9E5AB6C84BE49E1 ] C:\Windows\System32\DXP.dll 21:01:08.0001 0x1380 C:\Windows\System32\DXP.dll - ok 21:01:08.0001 0x1380 [ AEB43D2A8158FB535F48F440CC266953, 3321230FDE9E8517D2FD30BA555F5B22113C2211CE5001A08DCD407E32EC95FD ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.9012.1008\gtn.dll 21:01:08.0001 0x1380 C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.9012.1008\gtn.dll - ok 21:01:08.0011 0x1380 [ CFF2E1516B5C60DEC818F499A21C6FB4, 85882E6A494C29116682F0736DE36EDC85195AE6CEB8B297DDF70AB4C7341E19 ] C:\Windows\System32\RtkHDM64.dll 21:01:08.0011 0x1380 C:\Windows\System32\RtkHDM64.dll - ok 21:01:08.0011 0x1380 [ 1AC9B56AC7E043AC2874D61CBCED5F49, B613057794CD61EC1B037C96124D46E53D91E9B24244FED7D03249524288C201 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\Mute.dll 21:01:08.0011 0x1380 C:\Program Files\TOSHIBA\FlashCards\Hotkey\Mute.dll - ok 21:01:08.0021 0x1380 [ 9383B21A4B77C130940262DDC5F3F49B, 39BD91E0A2F56909B3EEBEA4966D497DF9A1623EC0F15D508638D5539FE1C88D ] C:\Windows\System32\AUDIOKSE.dll 21:01:08.0021 0x1380 C:\Windows\System32\AUDIOKSE.dll - ok 21:01:08.0021 0x1380 [ 1C937AA6A3E2E5F5F650686437AE2854, 3983FD93D85380C0B658B2564CADDC114BA5F6736A61D922C3A4CDCA0EB2B17B ] C:\Program Files\TOSHIBA\FlashCards\SmoothView.dll 21:01:08.0021 0x1380 C:\Program Files\TOSHIBA\FlashCards\SmoothView.dll - ok 21:01:08.0021 0x1380 [ D3088606C810A355EAE9B9056C9B5392, 25B78E8199678E755E4BE737660E201E2C34EF3378AB182AE21314789161778C ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll 21:01:08.0021 0x1380 C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll - ok 21:01:08.0031 0x1380 [ 1DCD0B1345720349220CE79316A56751, 4852E00F297A1D7419EECF2DF8476BE7BAD38558B8A5666343F1C47923B9FD1B ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnZ.dll 21:01:08.0031 0x1380 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnZ.dll - ok 21:01:08.0031 0x1380 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB, CF9082360E32A7C3E13A67AC2C6192F4A76870D43DA9FF2936993A637F712761 ] C:\Windows\System32\AltTab.dll 21:01:08.0031 0x1380 C:\Windows\System32\AltTab.dll - ok 21:01:08.0031 0x1380 [ A7A75716A26364F08ACF900A6BC05D16, F4989E40527D3A88A73982AE800DF41145066432801F832255B8797DF3FADEAB ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._core_.pyd 21:01:08.0031 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._core_.pyd - ok 21:01:08.0041 0x1380 [ 93812FDC01AA864195816CD814445F95, E5CB2576DA2905177AFD342DBE63E17CF626F93F430DEBC55155C18C60166BEE ] C:\Program Files\Microsoft Security Client\SqmApi.dll 21:01:08.0041 0x1380 C:\Program Files\Microsoft Security Client\SqmApi.dll - ok 21:01:08.0041 0x1380 [ 11615D80DC10ABB83D2A9002B70A4E36, 554352B737D78D53C8935D7D603A5FE5343496C63296625193598BC93B46E889 ] C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll 21:01:08.0041 0x1380 C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll - ok 21:01:08.0041 0x1380 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891, 0A82A475301202791A7C10F978F952EAB7DB146A702D4EA67E24E2C98BC19638 ] C:\Windows\System32\Syncreg.dll 21:01:08.0041 0x1380 C:\Windows\System32\Syncreg.dll - ok 21:01:08.0051 0x1380 [ 15B7225BBA691E4CF8A3D06238D46AE6, D9D10F3B6FF960373ECA79EA06383E9CAAEED5986C706967BF0A7B0714DE4FF2 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll 21:01:08.0051 0x1380 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll - ok 21:01:08.0051 0x1380 [ 10F815BE90A66AAFC6C713D1BD626064, 01139FC04BC53594296F6A0E16B8D20B940F64BC8119FE7705C03C4947958F39 ] C:\Windows\System32\pnidui.dll 21:01:08.0051 0x1380 C:\Windows\System32\pnidui.dll - ok 21:01:08.0051 0x1380 [ 06DEF9378C701E638B707B33B1E8151C, AB7DD7E2A44D8DAE488177C22F5E08A7136E1E9E53EC301F2B90A28739F96B2F ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\TCrdKBB.exe 21:01:08.0051 0x1380 C:\Program Files\TOSHIBA\FlashCards\Hotkey\TCrdKBB.exe - ok 21:01:08.0061 0x1380 [ AB7219DEBE7FFAAB3D7B30923DA9C014, C274343BF495B73BCCA12A8BB91C49101D5CAF16CF628E54AC1DE17006796FED ] C:\Windows\System32\RtkAPO64.dll 21:01:08.0061 0x1380 C:\Windows\System32\RtkAPO64.dll - ok 21:01:08.0061 0x1380 [ A24BFBAE8B50A6780B68FF3673FAB52F, 0DD1EB6E664063C943BF36FA524A29CCA6DF575E75A647F96DC6E5AE579DDC64 ] C:\Program Files (x86)\Internet Explorer\iexplore.exe 21:01:08.0061 0x1380 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok 21:01:08.0061 0x1380 [ 81E003C00DE89B9B144309B62D1847E4, A11FB22820E1AB7DDBF78816A81FE112580DFE7567E3155F2AAC32A05EA2A9F2 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wxbase28uh_vc.dll 21:01:08.0061 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wxbase28uh_vc.dll - ok 21:01:08.0071 0x1380 [ 4C39358EBDD2FFCD9132A30E1EC31E16, 06918CF99AD26CD6CF106881C0D5BDB212DC0BAC4549805C9F5906E3D03D152C ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll 21:01:08.0071 0x1380 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok 21:01:08.0071 0x1380 [ B9F0A4020AA98B7A20287BF7FE99A1FD, 21138F161EEEA46198890C7A2D073F2C82829E15676131BDAD9F237EDC7477CD ] C:\Windows\System32\QUTIL.DLL 21:01:08.0071 0x1380 C:\Windows\System32\QUTIL.DLL - ok 21:01:08.0071 0x1380 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe 21:01:08.0071 0x1380 C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe - ok 21:01:08.0081 0x1380 [ 919001D2BB17DF06CA3F8AC16AD039F6, 5169ACFBE9E9D4C4012773ECDD28231C952675EF0C272A40F226E7B5D671B18B ] C:\Windows\SysWOW64\sxs.dll 21:01:08.0081 0x1380 C:\Windows\SysWOW64\sxs.dll - ok 21:01:08.0081 0x1380 [ 85D5125275E44CA04D5514947A9FF874, 55D5A3DCCEC579AE03F5C504E4995EBF78B6B1784DABCBD34C748E53E65F79D3 ] C:\Program Files\TOSHIBA\TBS\TBSMain.dll 21:01:08.0081 0x1380 C:\Program Files\TOSHIBA\TBS\TBSMain.dll - ok 21:01:08.0091 0x1380 [ C836175870E00ACC546066632E15BD10, 4347F3319C26DA1C38F395C74DBD67AF886149C8F29EDE765DD96C8480A3054A ] C:\Windows\ehome\ehSSO.dll 21:01:08.0091 0x1380 C:\Windows\ehome\ehSSO.dll - ok 21:01:08.0091 0x1380 [ 92DBF0A4C9239169010FC6E07859C82E, 00FB2CF4420F0FFEF519AFE732A708CF249640121E2A891CAA164313ABD7F804 ] C:\Windows\System32\ActionCenter.dll 21:01:08.0091 0x1380 C:\Windows\System32\ActionCenter.dll - ok 21:01:08.0091 0x1380 [ 592989A426AE8BD543816906B4E404B6, B7F01FE740EAAE2DF8A5F2FEB90DAA531711B9C78B03BCBFA89CABD445310658 ] C:\Program Files (x86)\YouTube Accelerator\YouTubeAccelerator.exe 21:01:08.0091 0x1380 C:\Program Files (x86)\YouTube Accelerator\YouTubeAccelerator.exe - ok 21:01:08.0101 0x1380 [ 715F619353C83C94EDB43BA0C0F217EA, 6D2CA0EDA1A35C44A106F8CE7D9E23884FD42684FFB55B373375028231B49B00 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wxbase28uh_net_vc.dll 21:01:08.0101 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wxbase28uh_net_vc.dll - ok 21:01:08.0101 0x1380 [ 88B0BCC23660D466879099F26CCB8CA5, 825EBF5C7A723650145C695A4DD89027E928B3611D89BF19AAE47687ABA0E5CA ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF1.dll 21:01:08.0101 0x1380 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF1.dll - ok 21:01:08.0101 0x1380 [ 0562DF97934FC271893BD916A0262E6D, D0274F22D919ECAB50281BFAA16AB530B54DDC8EBA3B34350640858623663B8A ] C:\Users\admin\AppData\Local\Google\Update\1.3.25.11\goopdate.dll 21:01:08.0101 0x1380 C:\Users\admin\AppData\Local\Google\Update\1.3.25.11\goopdate.dll - ok 21:01:08.0111 0x1380 [ 3E155B3194E74F93485E65CCE740AE5E, 5068DCC5BFBD0D9AD30E64F63FCA878CBB8820C9A7A9236F5F53B225899212CC ] C:\Program Files\TOSHIBA\Power Saver\TFunc2.dll 21:01:08.0111 0x1380 C:\Program Files\TOSHIBA\Power Saver\TFunc2.dll - ok 21:01:08.0111 0x1380 [ F16D6007B3E063F4219398DBCBFB57CF, C6AB3F81C8C88688663A78EA41C1C04FB6E0B3740DE055CC06E1423C1DDA85BA ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wxmsw28uh_core_vc.dll 21:01:08.0111 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wxmsw28uh_core_vc.dll - ok 21:01:08.0121 0x1380 [ E6BC081DDE7391AD0A044C0796A86D08, A8273EC82761B975F3F6E8E0EFF6824FCFCCB4E270E9CF8446D0B3FE2307E047 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF3.dll 21:01:08.0121 0x1380 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF3.dll - ok 21:01:08.0121 0x1380 [ EDE3D67AE2951D330AA6A4EB7FEF7739, B58CE8164247DE3393F44E117890B57DDC6BBEC3F311A236CDA1C0D254E9BA74 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF4.dll 21:01:08.0121 0x1380 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF4.dll - ok 21:01:08.0131 0x1380 [ 6F3C559B82F2912354BE5B098744CC8C, EB64E5C02C81588921A65194E1256E80699A1317E7D9A57395CD38C2639C8B08 ] C:\Windows\System32\WMALFXGFXDSP.dll 21:01:08.0131 0x1380 C:\Windows\System32\WMALFXGFXDSP.dll - ok 21:01:08.0131 0x1380 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D, A63836DB3B01835DC1311526A95198D6EBCCB1DC9DDAFBC38EC36C128CDB98B9 ] C:\Windows\System32\netshell.dll 21:01:08.0131 0x1380 C:\Windows\System32\netshell.dll - ok 21:01:08.0131 0x1380 [ DA75C6E883DC1B4C8819F7C97A4E5C75, 6BA8119EEAD058B42496BF033BA9BFBA8B9C6FBCC3C86B81E5F910F2480D4968 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF5_2.dll 21:01:08.0131 0x1380 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF5_2.dll - ok 21:01:08.0141 0x1380 [ CB8C1CC4F46FBAC78150754D77460C73, 2A8F6A2FFA85E1F068C539BDF100C8B4B02B2D1379FFC2607AA474890D8E7C0A ] C:\Users\admin\AppData\Local\Google\Update\1.3.25.11\GoogleCrashHandler.exe 21:01:08.0141 0x1380 C:\Users\admin\AppData\Local\Google\Update\1.3.25.11\GoogleCrashHandler.exe - ok 21:01:08.0141 0x1380 [ CACB1FB9B211A8BEF470A78FC573AEBA, 73E33DB451065BAD16FF30F351D7814193D10F3DD8B806777069ABA510F046F5 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\Brightness.dll 21:01:08.0141 0x1380 C:\Program Files\TOSHIBA\FlashCards\Hotkey\Brightness.dll - ok 21:01:08.0141 0x1380 [ 4BE4D8091FBE4DE496B3EFBA206F29AE, EEC8BFA0EFEF3FBA0CA2FF78B4ACE34269488B7B97FEACC1D20CF7DC9D112E45 ] C:\Windows\System32\mfplat.dll 21:01:08.0141 0x1380 C:\Windows\System32\mfplat.dll - ok 21:01:08.0151 0x1380 [ BD83E040B391C81CA88A7A36CDEC257E, F39D522441A1084E2591500C141FECFB48F3EF52CC40E62CDF390735F020F3D2 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF8Dll.dll 21:01:08.0151 0x1380 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF8Dll.dll - ok 21:01:08.0151 0x1380 [ 7161E8E31B7FD3B1CE083C2CA5FD5F44, 9DDF242C7B5D373064D1C5284C435E60214E90CE8E3A23F02FD6875C101F7C50 ] C:\Users\admin\AppData\Local\Google\Update\1.3.25.11\GoogleCrashHandler64.exe 21:01:08.0151 0x1380 C:\Users\admin\AppData\Local\Google\Update\1.3.25.11\GoogleCrashHandler64.exe - ok 21:01:08.0151 0x1380 [ E625ABBE3ED37D3160151DFD33AE6B91, 94EEE8C8A32182EB02D658403FBE8A9CCE0361D8582E0A574D47899CFBE7C5A2 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\TouchPad.dll 21:01:08.0151 0x1380 C:\Program Files\TOSHIBA\FlashCards\Hotkey\TouchPad.dll - ok 21:01:08.0161 0x1380 [ C746F3BF98E92FB137B5BD2B8B5925BD, 67A8990F3D491D149E65C90042909259793C65E671DC953FDA1F7590FAC23D9E ] C:\Windows\System32\FXSST.dll 21:01:08.0161 0x1380 C:\Windows\System32\FXSST.dll - ok 21:01:08.0161 0x1380 [ 2D98EF297DAEBDA3C5A79F98C3A16462, B50130048B589A68C9BD0947B1D1D498247565686E580879FF8DBF0E63DC2D4F ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wxmsw28uh_adv_vc.dll 21:01:08.0161 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wxmsw28uh_adv_vc.dll - ok 21:01:08.0161 0x1380 [ 66935625C1758EFEFFAF8CF0E020A6F9, BF9F3CCBFD7477E0535737D76BC1E6D6CDBB91D3F7CDE8D3220AC7F388605529 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF10.dll 21:01:08.0161 0x1380 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF10.dll - ok 21:01:08.0171 0x1380 [ 4C671C688884F18152441DC16AA629F6, 19158CE47E09ADB0265A983E9FBC11C1A2532377B22512B15829CFB148FA8441 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF11.dll 21:01:08.0171 0x1380 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF11.dll - ok 21:01:08.0171 0x1380 [ 13BC9BF69A7A03ED92BFDF36E9B4C508, 149CE3DBB6808495246E838C98AA21644CD1B2C13E6AB5C0C534C49946088BB3 ] C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnSpace.dll 21:01:08.0171 0x1380 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnSpace.dll - ok 21:01:08.0171 0x1380 [ 650CAEA856943E29F25A25D31E004B18, DCA63D2AF4C6F14B27EA006F200E58A5C13AC940A51947A40F668908A446CC4E ] C:\Windows\System32\FXSAPI.dll 21:01:08.0171 0x1380 C:\Windows\System32\FXSAPI.dll - ok 21:01:08.0181 0x1380 [ 4EE40B84243A94C18DFE1662E0828C55, C9B4739DED399486C46BA45E9B8A3834F7A6931B0CF0D88D67FE4EC57F5A598C ] C:\Windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualBas#\edb54090ccbdf6dcaaefcfeeb8fd1173\Microsoft.VisualBasic.ni.dll 21:01:08.0181 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualBas#\edb54090ccbdf6dcaaefcfeeb8fd1173\Microsoft.VisualBasic.ni.dll - ok 21:01:08.0181 0x1380 [ C8E8B8239FCF17BEA10E751BE5854631, CB869195E78AB613CEF50AE3B247F0E4E42F233A7AAF5B2BFC5ADEA2C45C5F8D ] C:\Windows\System32\FXSRESM.dll 21:01:08.0181 0x1380 C:\Windows\System32\FXSRESM.dll - ok 21:01:08.0181 0x1380 [ F3D6BDFB8F39A9FEFF6E18E716620B34, 376F9A1F33A1FD4B44E6A00AC9347FD846188F54686FB1C4102DBE7B7125241D ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._gdi_.pyd 21:01:08.0181 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._gdi_.pyd - ok 21:01:08.0191 0x1380 [ F7A256EC899C72B4ECDD2C02CB592EFD, 9C1AA9322E83CABB94AEA4375EAEB0C44700E1F33B8BE98649BA1DF4DDFAD326 ] C:\Windows\System32\bthprops.cpl 21:01:08.0191 0x1380 C:\Windows\System32\bthprops.cpl - ok 21:01:08.0191 0x1380 [ 81FB155132AE12BA18119D5B36A85476, B135C87752B20C98CD5D4B9BE47316F785EC41FD5E391D8609F06EDA29B05BBF ] C:\Windows\System32\msvcr110_clr0400.dll 21:01:08.0191 0x1380 C:\Windows\System32\msvcr110_clr0400.dll - ok 21:01:08.0201 0x1380 [ 6A4000215A75303D80824FAA6CDBD4FD, 0899B16F7D3ECF7168207F6CF774EFECE1C5FE22171E897859D19C25273A2832 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\013d86a99e2d1f9a082431d654905ca7\System.Runtime.Remoting.ni.dll 21:01:08.0201 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\013d86a99e2d1f9a082431d654905ca7\System.Runtime.Remoting.ni.dll - ok 21:01:08.0201 0x1380 [ 2D4CEF2009A949E26FDC3E179B4F9CBA, DE088C60B0F723D1AA5011078F8D6261956DF5AEB6B72C76E9020A67ADF4C50A ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._windows_.pyd 21:01:08.0201 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._windows_.pyd - ok 21:01:08.0201 0x1380 [ D5A0DDE2F6D883F2B41D307AFFDF216E, DC03768CF4310D9356686EC44DD811A975B0C38BAC40F0A6129D8F6A6DCF9560 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\8b936558407ab33fd18006f6774034a8\System.Configuration.ni.dll 21:01:08.0201 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\8b936558407ab33fd18006f6774034a8\System.Configuration.ni.dll - ok 21:01:08.0211 0x1380 [ 556D271F4243B273EDA353512BF3608A, E516F23BADD7F40A6E8D10C7F1411F3E36489B627E2A2690E7B221C6998B2AE0 ] C:\Windows\System32\ieframe.dll 21:01:08.0211 0x1380 C:\Windows\System32\ieframe.dll - ok 21:01:08.0211 0x1380 [ B81737A402CA1BCEC7CDD33261E0D820, 60CDD7E71F3ED2B7933E0544B12EFB06D023895125DBCBF54053DE385F52E473 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\abf62e6545d2802fc60286678a67e6bf\mscorlib.ni.dll 21:01:08.0211 0x1380 C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\abf62e6545d2802fc60286678a67e6bf\mscorlib.ni.dll - ok 21:01:08.0221 0x1380 [ 2CBFF007A9E385440FB0012F14C148A7, 62F4429BE363D9B9C45D4C0A647B4DE50621858CC5F3B61F951DA740CDC62769 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wxmsw28uh_html_vc.dll 21:01:08.0221 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wxmsw28uh_html_vc.dll - ok 21:01:08.0221 0x1380 [ BA89745C0367A21D8E03A0AD007F7A4D, 600BC5F6DADA06E28A377F5775C71884234B0EDEA647F86F3E5A71EEB7C881AF ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._controls_.pyd 21:01:08.0221 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._controls_.pyd - ok 21:01:08.0231 0x1380 [ EAC3306A70B7E02DD6A3AA8FED054575, B7FAAEA395026BE4CAF75BD9F535B92AEDFB2E540FEEC986BFD43E9DDC9CB0DB ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\d09a5530f1283b469957bf146e2f4d65\System.Xml.ni.dll 21:01:08.0231 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\d09a5530f1283b469957bf146e2f4d65\System.Xml.ni.dll - ok 21:01:08.0231 0x1380 [ 9BCC304E567BA1C277AD4D2C52966373, 42F98404D3170E33CFA3A0AE1E64E22C57EE8691ADC59B6B1E103E7DD1962AE4 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._misc_.pyd 21:01:08.0231 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._misc_.pyd - ok 21:01:08.0241 0x1380 [ A7BFEE2D94046DB58F1F3A004701C0CF, 09BF751E81DB004D7F11CBE32339E58D6854F4C54FD6A61C80DD64DEE45441A0 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\zLoggingDaemon.exe 21:01:08.0241 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\zLoggingDaemon.exe - ok 21:01:08.0251 0x1380 [ E81536285263BA0C76772C9CE3AED1F5, BC305DE4BDC6D5BA4909ED629BFD17B9DF3096ADCE37A231C642FF1FC9A9944B ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\Cyfrowy Polsat MF821.exe 21:01:08.0251 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\Cyfrowy Polsat MF821.exe - ok 21:01:08.0251 0x1380 [ 4A3B2AC1BCB6EB4E3E009F7439CBC65A, 65831204C1EE5872E1554935DB1CF8870E6F44D1D09726A95460E9FC94890837 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\_socket.pyd 21:01:08.0251 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\_socket.pyd - ok 21:01:08.0261 0x1380 [ E98A9104EE53322918E22B4D5900F695, E1F095371953942643B1D4D199B7B090529AFEB20AB1BC26C90454716EA96AB2 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\_ssl.pyd 21:01:08.0261 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\_ssl.pyd - ok 21:01:08.0261 0x1380 [ 937D7865A8022C8A9AAE90FEDD10D268, 8C0AD611302D58B1C65633807C51329A3BCB81E6D8CB3EBFF0B217DDC83C7302 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\select.pyd 21:01:08.0261 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\select.pyd - ok 21:01:08.0271 0x1380 [ 25C07B140084F958B07A19ABE4F776A2, 536B6F4DFDD638E12C9D959F2A9B03195E471A0A0C6E81C98292EE1B67900FD9 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._aui.pyd 21:01:08.0271 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._aui.pyd - ok 21:01:08.0271 0x1380 [ 250A946F359D035CC333B3DD6A3AE94E, 99872F3D7507BE9398FBF11E4CAF61A9ABAF86C082092C409019AF815855DF17 ] C:\Program Files (x86)\Mozilla Firefox\nss3.dll 21:01:08.0271 0x1380 C:\Program Files (x86)\Mozilla Firefox\nss3.dll - ok 21:01:08.0281 0x1380 [ 6289966FD5C7D68CC37D526F6A40CDFA, 14D8B93DB3BAC4BABF86FE801EDE4235143398A4905322978ECD4BD281A6AC48 ] C:\Program Files (x86)\YouTube Accelerator\ytalsp.dll 21:01:08.0281 0x1380 C:\Program Files (x86)\YouTube Accelerator\ytalsp.dll - ok 21:01:08.0281 0x1380 [ 81ABEA29948FC70F388899BB342C2469, 8F9070F3FF8DCC804D4D1D1E1C1818AE40E6D60BE90999F5069CDD0FD042BF31 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wxmsw28uh_aui_vc.dll 21:01:08.0281 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wxmsw28uh_aui_vc.dll - ok 21:01:08.0291 0x1380 [ B9E57ED4810E66359F3CAD80AE4F02B8, 001766F58BE5899AAB0C466489B771FE67775758871DBB4241B079A72065D237 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._grid.pyd 21:01:08.0291 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._grid.pyd - ok 21:01:08.0301 0x1380 [ BF38660A9125935658CFA3E53FDC7D65, 60C06E0FA4449314DA3A0A87C1A9D9577DF99226F943637E06F61188E5862EFA ] C:\Windows\SysWOW64\msvcr100.dll 21:01:08.0301 0x1380 C:\Windows\SysWOW64\msvcr100.dll - ok 21:01:08.0301 0x1380 [ 65621CF1486B0C39A95CC1A84D8F121D, F4EAD101FA696812FF6D8FFE170BF5851A89FFCD4590CC05193A2F6368E24470 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._html.pyd 21:01:08.0301 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._html.pyd - ok 21:01:08.0311 0x1380 [ B1EE951B395264A89B3F4849036DE662, D0FA1906B4ABD0E9ECFED4F8188BAD948218C973E3B38C5472AC4162F33EACB8 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._animate.pyd 21:01:08.0311 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._animate.pyd - ok 21:01:08.0311 0x1380 [ B2D7F1865937B106034640F8B0ACB669, D4DC1606102CEB50698D884F7DEFC79A674E5E5F0448780DE4209C6D93A4EEED ] C:\Program Files (x86)\Mozilla Firefox\mozglue.dll 21:01:08.0311 0x1380 C:\Program Files (x86)\Mozilla Firefox\mozglue.dll - ok 21:01:08.0311 0x1380 [ E3C817F7FE44CC870ECDBCBC3EA36132, D769FAFA2B3232DE9FA7153212BA287F68E745257F1C00FAFB511E7A02DE7ADF ] C:\Windows\SysWOW64\msvcp100.dll 21:01:08.0311 0x1380 C:\Windows\SysWOW64\msvcp100.dll - ok 21:01:08.0321 0x1380 [ 9108540E866F75C7AF2B91DD921A8091, 7208C8E05E818781D7F2703B86848FC90651E0D8BE10362863250F2283CEC511 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll 21:01:08.0321 0x1380 C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok 21:01:08.0321 0x1380 [ 8E6AF6CA70EBE4D295E4DCA605F9FA27, DBF69AAF971677543F11BB9C9CED0397876709172FD01AF2C9EF47F35F7A70A3 ] C:\Program Files (x86)\Mozilla Firefox\softokn3.dll 21:01:08.0321 0x1380 C:\Program Files (x86)\Mozilla Firefox\softokn3.dll - ok 21:01:08.0331 0x1380 [ 05B8954ACFCFBC4B129CF29AEA35204B, 19E775992C40F638861975BB6C27AE5889EC5C6C0D8F0A33AC60DB2C7E8C88A6 ] C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll 21:01:08.0331 0x1380 C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll - ok 21:01:08.0341 0x1380 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] C:\Windows\System32\FXSSVC.exe 21:01:08.0341 0x1380 C:\Windows\System32\FXSSVC.exe - ok 21:01:08.0351 0x1380 [ 158383A166E438593D08F49429108760, 06B976E6CB360C2DEFD789F00B47CDC916D0C28E1EE24F6D58FB352C7321FFBB ] C:\Program Files (x86)\Mozilla Firefox\freebl3.dll 21:01:08.0351 0x1380 C:\Program Files (x86)\Mozilla Firefox\freebl3.dll - ok 21:01:08.0351 0x1380 [ C8FDF0FA9E97E2FAAF3F814716AAA881, DD24A1CAB44D943B0E1A795A347AD25D9305FC7F012A2566A6A14BD47221831F ] C:\Windows\System32\WPDShServiceObj.dll 21:01:08.0351 0x1380 C:\Windows\System32\WPDShServiceObj.dll - ok 21:01:08.0361 0x1380 [ 432BE6CF7311062633459EEF6B242FB5, 890C1734ED1EF6B2422A9B21D6205CF91E014ADD8A7F41AA5A294FCF60631A7B ] C:\Windows\SysWOW64\regsvr32.exe 21:01:08.0361 0x1380 C:\Windows\SysWOW64\regsvr32.exe - ok 21:01:08.0361 0x1380 [ 59BCE9F07985F8A4204F4D6554CFF708, CA24AEF558647274D019DFB4D7FD1506D84EC278795C30BA53B81BB36130DC57 ] C:\Windows\System32\regsvr32.exe 21:01:08.0361 0x1380 C:\Windows\System32\regsvr32.exe - ok 21:01:08.0361 0x1380 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] C:\Windows\System32\netman.dll 21:01:08.0361 0x1380 C:\Windows\System32\netman.dll - ok 21:01:08.0371 0x1380 [ 4F3CD1C59EA71401E155C432BCECE180, 6D4118A627CAE509E43D0CC0062EECAA0990C955BB15AE24834460551B2F51A2 ] C:\Windows\System32\PortableDeviceTypes.dll 21:01:08.0374 0x1380 C:\Windows\System32\PortableDeviceTypes.dll - ok 21:01:08.0376 0x1380 [ 8FF9169B0645A35DFF6B718D1071351F, 843A95ED4ACBE756411A387685935808528CE78DEBBAE3883CAECD2655C80296 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._media.pyd 21:01:08.0376 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wx._media.pyd - ok 21:01:08.0381 0x1380 [ A612EEFA2B0FC00748B34E776D8AA453, 1E0C22ADECECB5D8A6E92E53D27BC2BB86B3531CBEDFB7768AC31811373C3D3F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll 21:01:08.0381 0x1380 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll - ok 21:01:08.0386 0x1380 [ C558A6C1B69E2A69CE88A98D54AD537B, 27C534395FD805703D9FE3F4A35F6AFBDD4473E2BFDFC5AF9A799D0A8E66DE3A ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosBtAPI.dll 21:01:08.0386 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosBtAPI.dll - ok 21:01:08.0389 0x1380 [ 404781A5862EF5BFFB63F178FD5380C3, 75251681F9B35A7AEA82BF1EDEF38B5D725B1FA712D3979B55538ECFE92746E3 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosBdAPI.dll 21:01:08.0389 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosBdAPI.dll - ok 21:01:08.0394 0x1380 [ DD502A2E7B85EA7A3814C1034E6C23D3, 551D6C28DA6116DC65111BFA21E23BA8AE77193BEAF3DF505C343E6DC3CD5304 ] C:\Windows\AppPatch\AcGenral.dll 21:01:08.0394 0x1380 C:\Windows\AppPatch\AcGenral.dll - ok 21:01:08.0396 0x1380 [ 80F1EE8939A32F679988AFB2AD03A9F9, 8F4BDBC39D7343E729749B0F66B1DA279EADF00D5176214B963B90D98CF2A9D3 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wxmsw28uh_media_vc.dll 21:01:08.0396 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\wxmsw28uh_media_vc.dll - ok 21:01:08.0401 0x1380 [ 234AFA322624B3203A2E720F08292B03, 0C0ACDD63FD82EDD34442E9E0763872BA6BF6AC73AB89147EA5FDD1E0229CC0A ] C:\Windows\System32\cscobj.dll 21:01:08.0401 0x1380 C:\Windows\System32\cscobj.dll - ok 21:01:08.0404 0x1380 [ 6A6B2EE4565A178035BE2A4FF6F2C968, E2E231F1C2E2CE19583483ACC53318651FA7CA2DE46BCB89B4CBF97CA0525122 ] C:\Windows\SysWOW64\wtsapi32.dll 21:01:08.0404 0x1380 C:\Windows\SysWOW64\wtsapi32.dll - ok 21:01:08.0411 0x1380 [ D2155709E336C3BC15729EB87FEC6064, 682A84C0F2D892E7A6CEE4E5937B4799E352AAE3B71E7037F2A343373467443C ] C:\Windows\System32\rasdlg.dll 21:01:08.0411 0x1380 C:\Windows\System32\rasdlg.dll - ok 21:01:08.0414 0x1380 [ E0B340996A41C9A75DFA3B99BBA9C500, D029AD8ABBD2267B1E44DF5172B93C3F832B4C21F930F5512C24E800F5CE4F8B ] C:\Windows\System32\SearchIndexer.exe 21:01:08.0414 0x1380 C:\Windows\System32\SearchIndexer.exe - ok 21:01:08.0419 0x1380 [ B6A17555D2CB159A47E910670DE6F7AF, DA548471F6FF5CD4FEC8E592C5C94AF7041AE79ED6ACBF07E9E818E24EB383D1 ] C:\Windows\AppPatch\AppPatch64\AcGenral.dll 21:01:08.0419 0x1380 C:\Windows\AppPatch\AppPatch64\AcGenral.dll - ok 21:01:08.0421 0x1380 [ E61BE53C92B4FC2BE5F820C9E6CE1791, AC94F56643558DAAF7B820532075EE73830C9EB62784BC22BB8ED0834ACCC39E ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtMng.exe 21:01:08.0421 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtMng.exe - ok 21:01:08.0426 0x1380 [ 96655EA0176E90CFA9F6A149D6EC3B29, 1E451A45592F0E4D38BEA83965825FF54F2F7C67B47F0179CE080A73CC6C375B ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe 21:01:08.0426 0x1380 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok 21:01:08.0431 0x1380 [ F23FBD118686E7B8112EEF25D2045DC5, 38313DFC694C8358C9C58C1DDE8E963514D8E7525461213867ECE704E18D3680 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\win32api.pyd 21:01:08.0431 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\win32api.pyd - ok 21:01:08.0436 0x1380 [ 3F30DA4C4A2042CD58AA3AC2DA1E122B, 1C7BDB9AD3486E5DAA12000F3B7DE145699D62D521FC1DB2468A81AE9B0487EC ] C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe 21:01:08.0436 0x1380 C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe - ok 21:01:08.0441 0x1380 [ 3E04F1E482357B1FC8B088197C3D9FF8, 85524ADDC27ADC831EBBD24E079B412CFDC69E5F594BD153319087665A28D546 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe 21:01:08.0441 0x1380 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok 21:01:08.0446 0x1380 [ 08DFDBD2FD4EA951DC46B1C7661ED35A, D926530C659DDAF80770663F46F1EFD94FFB4AAB475C4E3367CB531AF4A734E1 ] C:\Windows\SysWOW64\powrprof.dll 21:01:08.0446 0x1380 C:\Windows\SysWOW64\powrprof.dll - ok 21:01:08.0451 0x1380 [ 1761994889C7F3417A932BED013B837A, C046DAFBE7B61679C336662DDFEC5FBBBF6BC881689538D22A650C6F942F2E0C ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe 21:01:08.0451 0x1380 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok 21:01:08.0454 0x1380 [ 8DF0EBF05D7D6A3585BCAB7294ED9B38, 1E5F6729B1D24B5ED96AFD409A2D4EAEBD974EA3DAFB7CB58467D0BB027D1CD6 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\pywintypes27.dll 21:01:08.0456 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\pywintypes27.dll - ok 21:01:08.0459 0x1380 [ 2DF29664ED261F0FC448E58F338F0671, 4EFE79C383D0AF126FC4EE668D822563F8F037B1E61D73747A35FE11AAFDB8CE ] C:\Windows\System32\mprapi.dll 21:01:08.0459 0x1380 C:\Windows\System32\mprapi.dll - ok 21:01:08.0464 0x1380 [ 589DF683A6C81424A6CECE52ABF98A50, 8CE0D07B2FC1F1BF8C07434FAFCDC63FDD3B75007C3B2EED130DB69D2D16E90A ] C:\Windows\System32\tquery.dll 21:01:08.0464 0x1380 C:\Windows\System32\tquery.dll - ok 21:01:08.0466 0x1380 [ D9C89DA9608626352316A4E1855362FE, E5D312C7BFBCF1904B87FD1EF9E27D71D82232C7DA902FE06AF40F2F917CFC09 ] C:\Windows\SysWOW64\atiadlxy.dll 21:01:08.0466 0x1380 C:\Windows\SysWOW64\atiadlxy.dll - ok 21:01:08.0471 0x1380 [ CE7648AF53E26CEB484F54866F195328, 0A9A563A83296A54EE3DD7AD8EB2FC6B50E329439C367B506592147214C0AA0E ] C:\Program Files (x86)\TOSHIBA\PasswordUtility\TOSDCR.exe 21:01:08.0471 0x1380 C:\Program Files (x86)\TOSHIBA\PasswordUtility\TOSDCR.exe - ok 21:01:08.0476 0x1380 [ 8569E35D00F45972E506502EEE622BA4, 01FE851C03DB88C8373099C279F995A559D962B08932E193032FA3EAD522FB01 ] C:\Windows\System32\srchadmin.dll 21:01:08.0476 0x1380 C:\Windows\System32\srchadmin.dll - ok 21:01:08.0479 0x1380 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2, E8ACB693B1A78FAEF292111BE3F9B10BA95C76833C06C931A08EAAAE39A21334 ] C:\Windows\System32\dot3api.dll 21:01:08.0479 0x1380 C:\Windows\System32\dot3api.dll - ok 21:01:08.0479 0x1380 [ 2BAB54632EAF98ED75D55E19C46955E4, C602E908472F11AAFD5EFDBC3DDFA7825566BC10DDA61D9BE5DCB644C6A8AF1C ] C:\Windows\SysWOW64\THCI.dll 21:01:08.0479 0x1380 C:\Windows\SysWOW64\THCI.dll - ok 21:01:08.0489 0x1380 [ C861851A0BBD9903E324487011AA3705, D7A6092F0A2FECC08F19520A801084E821B4FCC4D588818A8D232AE9257E7EC0 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe 21:01:08.0489 0x1380 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok 21:01:08.0489 0x1380 [ C8589FA9062B8F9B1C3EE27FC0134115, 50FDD393F6337A4E755DFE760CFFF7D0CFF56786C875A7A755728882278E92A7 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\_ctypes.pyd 21:01:08.0489 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\_ctypes.pyd - ok 21:01:08.0489 0x1380 [ 2DBD3E7DBC5BA386F1A66A224AD6665F, B2B7365E1880729CD9D68F23CEEA482D2A46EE47AE1997E119A71095D5B052F5 ] C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe 21:01:08.0489 0x1380 C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe - ok 21:01:08.0499 0x1380 [ E4FCA0F99A41E460C84016DEFD31E6EF, 8EB14AF2025EADC7C86280E8417D8F286E8271B4F88B31696E33DFD72B3A0EF2 ] C:\Windows\System32\wlanhlp.dll 21:01:08.0499 0x1380 C:\Windows\System32\wlanhlp.dll - ok 21:01:08.0499 0x1380 [ DC6612A9EE015A36BA2A27BC9CC12537, F4456A3E4028BE3BDE46363290CCC1E8420034A122596D86272CE4B554C78DB5 ] C:\Windows\SysWOW64\mfc42.dll 21:01:08.0499 0x1380 C:\Windows\SysWOW64\mfc42.dll - ok 21:01:08.0499 0x1380 [ B9FBE2C4DE9A72E8997697C8D5CAD009, EF2F8C2D4AE2D45232C97D60734B398E3EC59245702F4B5D3D7E5077DBF83B1D ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe 21:01:08.0499 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe - ok 21:01:08.0509 0x1380 [ 88DF08E9C0328F6ADB6E7AF16D0D103B, 51620EC567813CCE8297A02F316B9A0C5F3849E96E69F5DFCA3DBC350FAF34E8 ] C:\Program Files (x86)\TOSHIBA\TNROTATE\TNROTATE.exe 21:01:08.0509 0x1380 C:\Program Files (x86)\TOSHIBA\TNROTATE\TNROTATE.exe - ok 21:01:08.0509 0x1380 [ 85683DF1F917E4D7F6BE1A04986BF1C8, D68D9F525D31C1843B6EC8FA950166FA1F34DB71222716E7B22DD33981C152B6 ] C:\Windows\SysWOW64\msacm32.dll 21:01:08.0509 0x1380 C:\Windows\SysWOW64\msacm32.dll - ok 21:01:08.0519 0x1380 [ 520B77D14F04D2A37E6A3590E4C2C846, EF46846310DBEDEF13681292168B2320DD0C01E4076C588917DD9CD01C857AE3 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe 21:01:08.0519 0x1380 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok 21:01:08.0519 0x1380 [ 2D63F20B46154C2D20F58A95027EB1F3, DCA24143FA72E7AB77AA9A4289F9DCEF729992202904BCF60485DF01C9D2AEA4 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\pythoncom27.dll 21:01:08.0519 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\pythoncom27.dll - ok 21:01:08.0519 0x1380 [ 167CBC8C0E0620501EB8CCDFDF62B9EB, 4617A29B1FE2EECFD8C52F89B81000B36989E6626C15C4EA52060E9048445018 ] C:\Users\admin\AppData\Local\Eltion\CNHL08A.dll 21:01:08.0519 0x1380 C:\Users\admin\AppData\Local\Eltion\CNHL08A.dll - ok 21:01:08.0529 0x1380 [ 5DA219F57A9076FB6FBD3C9C3713A672, 274FE616625B336D81841FDC752C8053D4CD6926565B899760D298D145CBA1A3 ] C:\Windows\System32\WWanAPI.dll 21:01:08.0529 0x1380 C:\Windows\System32\WWanAPI.dll - ok 21:01:08.0529 0x1380 [ 0B0458AB962F79C73671B01298EFA1A4, A7916BBD3E8AC79ACFF72EDE9CE6ADAF34ADB0D50DEF10A479CE4E4060C69FF5 ] C:\Users\admin\AppData\Local\Ozics\EP0NOE12.DLL 21:01:08.0529 0x1380 C:\Users\admin\AppData\Local\Ozics\EP0NOE12.DLL - ok 21:01:08.0529 0x1380 [ 62C7AACC746C9723468A8F2169ED3E85, 40E901F3EAFE52DF11D6BC4EF0E79F666EBDACE0B3C090CAD2358076E893EA47 ] C:\Windows\System32\wwapi.dll 21:01:08.0529 0x1380 C:\Windows\System32\wwapi.dll - ok 21:01:08.0539 0x1380 [ 6B851E682A36453E1B1EE297FFB6E2AB, A641D3FD9463C4788B45B8B5584EA4489C1F63A71B4B595AE85FF3482CD5EDA6 ] C:\Windows\System32\QAGENT.DLL 21:01:08.0539 0x1380 C:\Windows\System32\QAGENT.DLL - ok 21:01:08.0539 0x1380 [ BB752714D14CB1F13969D721F1A3A60F, 32B95C75704BE37B349E0493AA8D2FCDAE8007275124646125650456D3A1563F ] C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe 21:01:08.0539 0x1380 C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe - ok 21:01:08.0539 0x1380 [ 63DDE9E06A28F75DBB49D947CA73CCED, 43168D2CD01A8792AFC3BB864322AA6433D6099AF387423506BA00AA1F6E85A2 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\win32event.pyd 21:01:08.0539 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\win32event.pyd - ok 21:01:08.0549 0x1380 [ EE5C4CE236A0F6B12062FBABF2F692EA, 058EB65099260A3F539723003373E9979B2A78B190951EB2F38AD0C791B67705 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\win32pipe.pyd 21:01:08.0549 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\win32pipe.pyd - ok 21:01:08.0549 0x1380 [ 087D22939F8731046F013DD46E0D3B8C, 6BDCDF9EC14C417CCF111BA96ABA9F587E12ED601FC07819B6C0155FDDDE80C6 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System\3f4e05b74a222eaf142391c0549efe62\System.ni.dll 21:01:08.0549 0x1380 C:\Windows\assembly\NativeImages_v4.0.30319_64\System\3f4e05b74a222eaf142391c0549efe62\System.ni.dll - ok 21:01:08.0559 0x1380 [ EAD0B94B966402279F8935A2A8417F2E, 86E4B586A71F1A31258B21B399DB90B4F34666FA94F22E18633648C466D29351 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\win32file.pyd 21:01:08.0559 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\win32file.pyd - ok 21:01:08.0559 0x1380 [ D8AD99678FACE844F6975C8E54C4DC1E, DA8C59FB22041CAF7813A64EB111FEF8134FA030C1800B3D9AB6F72A2A031DC1 ] C:\Program Files (x86)\TOSHIBA\Sync Utility\TosSyncScheduler.exe 21:01:08.0559 0x1380 C:\Program Files (x86)\TOSHIBA\Sync Utility\TosSyncScheduler.exe - ok 21:01:08.0559 0x1380 [ 2BA2D765B89FB4B7C1D071E61915AB5A, 85F4253B6E82E7B1A7FC6F076963A00E4A574F7A6C6B40DCF3DDDF0E117238CE ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\fd2485b871dd53f0ee4ef54b7e602d92\PresentationFramework.ni.dll 21:01:08.0559 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\fd2485b871dd53f0ee4ef54b7e602d92\PresentationFramework.ni.dll - ok 21:01:08.0569 0x1380 [ E735F6961922DF27DE5A840DACF63414, 57FEF66CF40294E55DD9B7ECC1245D2ED8EA696C332CCBAACDAD7110ACA145E9 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosHdpAPI.dll 21:01:08.0569 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosHdpAPI.dll - ok 21:01:08.0569 0x1380 [ 7FEF9260ED79F0B09D96CD7F781C44A9, 76DB961D375B586E12B564CF7A58F24D95CFC7FB2847D92F01540C0226695F23 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\_sqlite3.pyd 21:01:08.0569 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\_sqlite3.pyd - ok 21:01:08.0569 0x1380 [ 9B7068949FD591E3F699DF75B386DDA9, B4FD25A881E992019E35393AD5F4560BBB158F06565783BEB1B8FFDEBD7598CE ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\sqlite3.dll 21:01:08.0569 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\sqlite3.dll - ok 21:01:08.0579 0x1380 [ 47D6895A1E3D53B9D2FB86F918EE7372, 71F3C5B47DCD878887E31AB8709A6ED86583CAF91C9C4711E101AF23F3235D0D ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosCpsAPI.dll 21:01:08.0579 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosCpsAPI.dll - ok 21:01:08.0579 0x1380 [ 7568CC720ACE4D03B84AF97817E745EF, 7155144CB0B260B969C398A36BC277C97BEADB5DB137D19A4F7E5AF61C3E24D4 ] C:\Windows\System32\mssrch.dll 21:01:08.0579 0x1380 C:\Windows\System32\mssrch.dll - ok 21:01:08.0579 0x1380 [ 2697C06C62B50E290363E912EED33BD3, 6D9C5B370FF69F0FA5F663F1E6752EE6E5C3C24CA875C47F568D2594D50986B5 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtMngHelp.dll 21:01:08.0579 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtMngHelp.dll - ok 21:01:08.0589 0x1380 [ 3EED16F7B8DCC045BD071ADEE00A20BC, 213069DF65DDFE3449489C2BBA805E841DEE4F4FD5FFAA9E8685F1AA2A9CA7C8 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosAvAPI.dll 21:01:08.0589 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosAvAPI.dll - ok 21:01:08.0589 0x1380 [ F6EDE3B35CC88449345765D6EDD855C5, 1F92BCC1D2A63B61950835D0827D4A2B50D42EB3E9DD346B8B5E363BD068BA6A ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosBtSDDB.dll 21:01:08.0589 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosBtSDDB.dll - ok 21:01:08.0589 0x1380 [ 19D2338238969458981F8C042A40C093, 4F067C550006B34731F30742E95A6371B47A9F190188C06E4F214FC3F45D5B28 ] C:\Program Files (x86)\Smart File Advisor\sfa.exe 21:01:08.0589 0x1380 C:\Program Files (x86)\Smart File Advisor\sfa.exe - ok 21:01:08.0599 0x1380 [ D28C5A1411BB0B47E05E0D6AAF896690, F2164C69C089E5F9A32207E6B36808861692FA923318BFF23447A34B2157CDEA ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe 21:01:08.0599 0x1380 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok 21:01:08.0599 0x1380 [ C94D996F02CA0CC3C3FFA58ED13AA8BB, 76CCC1523DE9114D238C12DE6CDBBB5D2A31AD83EE22517FFA1DC13C882C1B24 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtMngLang.dll 21:01:08.0599 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtMngLang.dll - ok 21:01:08.0609 0x1380 [ 0F416E23DD2EB4DEBE70608020CFD283, 8762F519453F114EC3126698E3DD49F2C5AF79124DDBFC87DF08D1EC2B292235 ] C:\Windows\SysWOW64\WMVCORE.DLL 21:01:08.0609 0x1380 C:\Windows\SysWOW64\WMVCORE.DLL - ok 21:01:08.0609 0x1380 [ 8BF6082922224173BE2DFA9555DE7A3C, 117E6C41D451CDA9F7D3DB1EFA266F9237BACB6666D57680373005A4ACCEE626 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosCommAPI.dll 21:01:08.0609 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosCommAPI.dll - ok 21:01:08.0609 0x1380 [ 94A4D6915D4F572309DF6137E1846528, E46BDF83CAA6683AA655DBA3D2C8DC7AC06251E952466A20CFDA3A16B1840455 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe 21:01:08.0609 0x1380 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok 21:01:08.0619 0x1380 [ ECD579FC16A5996DECDD37C8EC9C833B, 23ADA75593ACA2AADE3C4B33ECC5CB5A6AD890693BC6A160DA9D664CEED13584 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosLaneAPI.dll 21:01:08.0619 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosLaneAPI.dll - ok 21:01:08.0619 0x1380 [ 29158B1DC3F86D4B0D6A127FE586ADFF, 03C17FA518200CE5C53AED55C5AF22D0A2D483110FB1E7EA6F990C56936570E6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll 21:01:08.0619 0x1380 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok 21:01:08.0619 0x1380 [ 18D469393FD25EBBC3B555F6B2050B23, E1AA176DE1DF63D50BBF09A2C36F1BC0867CD3B7F7983217575B143938873416 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\LCWizard.dll 21:01:08.0619 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\LCWizard.dll - ok 21:01:08.0629 0x1380 [ E26E6A97B94304F78B3A2D85C6056CC2, A4D678729145E9A9E561564B4E15AA67DD8103153BCAA2DD38084E43E33D0D00 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll 21:01:08.0629 0x1380 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok 21:01:08.0629 0x1380 [ BB50B21FEE2A6F3E5FC92B330ECCF050, FD8A126C7F19267821C5FFC6C8341BBF2E11ADB241C49371BFB8CA00218A5754 ] C:\Windows\SysWOW64\hhctrl.ocx 21:01:08.0629 0x1380 C:\Windows\SysWOW64\hhctrl.ocx - ok 21:01:08.0629 0x1380 [ 461299398E15909598B7002B3FAABCE8, 1965E672088268C91848A100D77A6CD6E689589185B528DD9E0907ED1AD60771 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll 21:01:08.0629 0x1380 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok 21:01:08.0639 0x1380 [ AEB0600184FC2DC28B598442DE36B5FC, F7B94606CF82A29B0FE700C8D7ECA890287F46C2370930A89E2B8FDEC05AEED3 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\ddc3c337f9c115b46984748c7f8467b1\System.Web.ni.dll 21:01:08.0639 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\ddc3c337f9c115b46984748c7f8467b1\System.Web.ni.dll - ok 21:01:08.0639 0x1380 [ 9FDF9585F2019D25271B0711955BC80D, 56E3C9E70284EBA666930938BC68CDD64B1D106F5B8CB1A0F7AE4840A3F51072 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\BtUsrMod.dll 21:01:08.0639 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\BtUsrMod.dll - ok 21:01:08.0649 0x1380 [ 3121A79D13A61562BE9CC902CD46B542, 00A5833A48338A4A9A5530844924AF4F1FAB618DA46D7EBBC6E2165C32ED376C ] C:\Windows\System32\msidle.dll 21:01:08.0649 0x1380 C:\Windows\System32\msidle.dll - ok 21:01:08.0649 0x1380 [ 44D7199A20E24501DC10541E86834459, 5B6BBC9F37FD5430162FEA4F1A1B3CC6C26B80203BDE74166AEF356A26FA8527 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosHidAPI.dll 21:01:08.0649 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosHidAPI.dll - ok 21:01:08.0649 0x1380 [ ACE1BB07E0377E37A2C514CD2EC119B1, A9AFA4774DFA875496764D6E541A6333A3ACD3C5D2BBEF753C2D80BA83B4AC15 ] C:\Windows\System32\mssprxy.dll 21:01:08.0649 0x1380 C:\Windows\System32\mssprxy.dll - ok 21:01:08.0659 0x1380 [ 9F76E4AAA4D7DC959071269B5D3346F3, F4D62E9C8BEFAA42D32FF0485E01738A1573F4D448B428FE4A62F09C7B829625 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosGnsAPI.dll 21:01:08.0659 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosGnsAPI.dll - ok 21:01:08.0659 0x1380 [ 220505B0B3E96C857DD01729AF0CD369, 169F9F71BA2F51970F4E5AF704408A813E89F840C1F947F4444F0D948E146BE2 ] C:\Windows\SysWOW64\mshtml.dll 21:01:08.0659 0x1380 C:\Windows\SysWOW64\mshtml.dll - ok 21:01:08.0659 0x1380 [ A7DD56261518373F70F23079EB3CD0A2, 4BC8DC1744DA5C062DEA5BE122CBAE948810536116BBA747844556783768F1F6 ] C:\Windows\SysWOW64\WMASF.DLL 21:01:08.0659 0x1380 C:\Windows\SysWOW64\WMASF.DLL - ok 21:01:08.0669 0x1380 [ EA6C35EBF9F3ED65724E1D65F09E6E7F, D39DD2D98277B0136C47E3C762E76EB12D6BDB79151F673E681B7EA49EBC6A6F ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll 21:01:08.0669 0x1380 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok 21:01:08.0669 0x1380 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC, 372AF797353F9335915CD06D4076BAB8410775DCAF2DAC0593197D7C41BBFFB2 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll 21:01:08.0669 0x1380 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok 21:01:08.0669 0x1380 [ 8EAEB0ED23A98DE0F0C812D756E47CE9, D49AB526C0B0356AB1F778E3B6AFC4D148742942F8561C9C4C2183A649661A86 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll 21:01:08.0669 0x1380 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok 21:01:08.0679 0x1380 [ 5760B2B5BAA3449C045B6FA222205F60, AC566245868530F6A8F80BEA9C6AB532DB2280F280CA4889C09BCCA9D057C1D4 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll 21:01:08.0679 0x1380 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok 21:01:08.0679 0x1380 [ 73DBAA64D589F3262615550DD6881FEE, 24025F2734201FE69A679194C6611A1603C4E7592809B6A185334E7D8BCC038A ] C:\Windows\winsxs\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll 21:01:08.0679 0x1380 C:\Windows\winsxs\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll - ok 21:01:08.0679 0x1380 [ BCE7DD8098CE6DD28EE2B0D5D5028B47, C48E1E455A0C6FC351CA2A8938C78D6D278B753FA7A621628B4E843C3A8F02FE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll 21:01:08.0679 0x1380 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok 21:01:08.0689 0x1380 [ 8F099BE5DB17D025E19652851399B9F1, A8EC58DB1700713E9376977675BBC380255D0DDA064120FD70AA2478C5FD1CDF ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtSrv.exe 21:01:08.0689 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtSrv.exe - ok 21:01:08.0689 0x1380 [ 922563953E405AA9762F90778B711F77, 3DD35372DFC79F309BF419E9BF0043D1B1E00EDC47DCFF4D669416BDD5B094C5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll 21:01:08.0689 0x1380 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok 21:01:08.0699 0x1380 [ 54023DF1A9A7D481B4762B09ECCA330F, 271B46804B2E944B7ABF707939CB498AE78B0EE6DDCE318E26BE0C7BA826DFA3 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt49.dll 21:01:08.0699 0x1380 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt49.dll - ok 21:01:08.0699 0x1380 [ 3AAA236CCAFEA59D5CD5CAF73845B840, 77D8353A61BF41E87D9D96CE4E6C9AAB76917D236750D67D53A84EFC962D2780 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\e388e09d57ab6d56558f3b32543a34ba\System.Core.ni.dll 21:01:08.0699 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\e388e09d57ab6d56558f3b32543a34ba\System.Core.ni.dll - ok 21:01:08.0699 0x1380 [ 468303F1DB434A5DF8C64FB72BAF079B, DF7BC3830F0BB7741EAD435D54FCFBE4B4C6EB5ECE577FF8CC423C3E9C421F3A ] C:\Windows\assembly\NativeImages_v4.0.30319_64\WindowsBase\7d6aa58b36b07ad1397d24d37e55f81f\WindowsBase.ni.dll 21:01:08.0699 0x1380 C:\Windows\assembly\NativeImages_v4.0.30319_64\WindowsBase\7d6aa58b36b07ad1397d24d37e55f81f\WindowsBase.ni.dll - ok 21:01:08.0709 0x1380 [ 41E7C4FA6491747402CFCA77CC1C7AAB, 676CD982A0D33B60A646AC7C0158F7421E395C8B4B12E544C55AF5C09E470CC5 ] C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe 21:01:08.0709 0x1380 C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe - ok 21:01:08.0709 0x1380 [ 83C9AC32448866AD5C26F6488BA01067, 370587D22BAD7749262BC57A571DE62DF91646F5419F812BB3F506553443305F ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1000.dll 21:01:08.0709 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1000.dll - ok 21:01:08.0719 0x1380 [ 559C4E4D48C2413357BBD54693FE37B8, 1A3B6FD1F64B38075B9E1144D8DA1B108E59101CB885F04E31671C4936D7B166 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1050.dll 21:01:08.0719 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1050.dll - ok 21:01:08.0719 0x1380 [ 2A5448FA98DA4457B739F4D503501C90, E33884310A01BAD6A8471C1EF2BF53EB47DC60DCB705E45B9A5467E0879B2C6A ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1100.dll 21:01:08.0719 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1100.dll - ok 21:01:08.0719 0x1380 [ B6F7C9B9D777EE4AA15382E4FBBA9D73, BAECC12B33E3B1B1921967A7B28CDC7A2B5833199576BFAB55AE64DDCCB76F8F ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1200.dll 21:01:08.0719 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1200.dll - ok 21:01:08.0729 0x1380 [ C3A8B7FED8CB43B008794456EF6DBFED, A1287770A3C05E3A3EF04534DD59776F8CA550549982F44A02996A1EBE40CD12 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1300.dll 21:01:08.0729 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1300.dll - ok 21:01:08.0729 0x1380 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 21:01:08.0729 0x1380 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok 21:01:08.0729 0x1380 [ 06F249B3E3F16B4F5F69761320B03B2F, 16B6980E01921D134757F827E3AD96B450E7DD8640ABBE19D1B24060D057D48B ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1400.dll 21:01:08.0729 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1400.dll - ok 21:01:08.0739 0x1380 [ E4B6EAA918D63D1C5037FDED87A63CDC, 66B19A6CC9999F73C545C965038BA0E99FAC20F973C9CF5C338F553F9A9451A4 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1500.dll 21:01:08.0739 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1500.dll - ok 21:01:08.0749 0x1380 [ 3E1061B4206EF2D39E292C4915F0A27A, BE67C1A4561832D3A8CAD6285920B03981F0424ED774A26417BF99BE0243ED40 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1600.dll 21:01:08.0749 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1600.dll - ok 21:01:08.0749 0x1380 [ 0DCA5F8AF83975061D9D8340DC471B5C, 71C8549419F46ABB4826B1847BF325374FA5C237CE14DB8B1DD8BB6FDABF6138 ] C:\Windows\SysWOW64\msvcr110_clr0400.dll 21:01:08.0749 0x1380 C:\Windows\SysWOW64\msvcr110_clr0400.dll - ok 21:01:08.0749 0x1380 [ B6937A9D516F411B3E844FBAEA334C29, 9CDE1AF416DD4E72F3914D82C77014B20BCA4B97F933696E84731898A7CBACA0 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1700.dll 21:01:08.0749 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1700.dll - ok 21:01:08.0759 0x1380 [ 2F03E86E8561B32AF8C2645CE80F2B81, DD7180F145E6DDD778B4B20585043783C4F471377B20A9F184626EAF33A2D767 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1800.dll 21:01:08.0759 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm1800.dll - ok 21:01:08.0759 0x1380 [ A3B7E27E37862EE7DF5E62EE9FB06EFF, 409AC0A346EDDA4509ADB3FD5B79D143695D333D657488661240FB9EAACBEC6B ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm2000.dll 21:01:08.0759 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtDcm2000.dll - ok 21:01:08.0769 0x1380 [ 97E7E28577134072D88FA8564DEAC662, 9FDC7B72CB341B384F474D96B82402A4C4B57268AB7ABD338992450875D27EF8 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\OemBtAcpiAPI.dll 21:01:08.0769 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\OemBtAcpiAPI.dll - ok 21:01:08.0769 0x1380 [ 4D1105F9EEE47993DA1F6A4A3AE9E77B, BB0E4FAB5AE5D0D87BFD74CEF4F32F828ABF562CE07AA97C5DC5DAF45F757E4B ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\RunEnv\PlugIn\Plug_SDKInterface\SDK\Windows\BISDK.dll 21:01:08.0769 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\RunEnv\PlugIn\Plug_SDKInterface\SDK\Windows\BISDK.dll - ok 21:01:08.0769 0x1380 [ D68DA341BD86908146512742D304F2E0, BB698D218DAD2C0348FE6708C8349D6726D76819DD0240866E1FC7C25BB16DE0 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosAcpiAPI.dll 21:01:08.0769 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosAcpiAPI.dll - ok 21:01:08.0779 0x1380 [ 3C43CE35357A0109E59DA945809BE42E, AC0E25D6FC6CD4EE831C962D2E6F9D1D93F3BA04B69A94E7A4A206FB0DA64B1A ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosBtFuncLmt.dll 21:01:08.0779 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosBtFuncLmt.dll - ok 21:01:08.0779 0x1380 [ E2A66559FEC8C5D3F017C53E2C63667B, 98E93288A43FA34247CA99B47EEB48551E222289E5B685E52D29F9D7ACBB48B2 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtChk.dll 21:01:08.0779 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtChk.dll - ok 21:01:08.0789 0x1380 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 21:01:08.0789 0x1380 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok 21:01:08.0789 0x1380 [ 27BB17CDB8B8280E37CCF86BB14064C9, 1FE5879B2D64134BFB8F9FB24C84FB33EE487A283300683CC5904A7F80F3A4A2 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\pyexpat.pyd 21:01:08.0789 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\Bin\pyexpat.pyd - ok 21:01:08.0789 0x1380 [ 539C49CEBB3C50957AC8A09D95ECD880, 49E75CDB556FBCE72C44648F8930CF2209C1360F9311C5B4CEB19E13B11E6B75 ] C:\Windows\SysWOW64\shfolder.dll 21:01:08.0789 0x1380 C:\Windows\SysWOW64\shfolder.dll - ok 21:01:08.0799 0x1380 [ 50B9A430075A2D8D9DC55506C73F2608, C499BA605D97A6B058C7502C679C20F39FD0E9337F34EDBB04CFA4E63ABC8BE3 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtLoad.dll 21:01:08.0799 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtLoad.dll - ok 21:01:08.0799 0x1380 [ 934C25B08D102832B0095E0668205EF8, 0D6C15E16A7C4B625B492408E22D8D5DFA1F76AACF61720CCE7A72CA4BD4B460 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosA2dp.exe 21:01:08.0799 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosA2dp.exe - ok 21:01:08.0799 0x1380 [ CAB0EEAF5295FC96DDD3E19DCE27E131, 87BCAC18D920153322D325AA5B93BB0B447577D67261FDCC01C5B60643CEA792 ] C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe 21:01:08.0799 0x1380 C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe - ok 21:01:08.0809 0x1380 [ E1946CF6A39ACDE3A62AB2053FBE3EB7, F9C9A7EB63C8E740A43198E7863D42BA80B9CEF5AC5CFCCC38EDC684864C3F46 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll 21:01:08.0809 0x1380 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok 21:01:08.0809 0x1380 [ 097A8F150090E0935F707C7BF7619C35, E221D7121FB0E44A45310138EB82088512BFEE644ADD40EC34F7481EBE15F1D7 ] C:\Program Files (x86)\Google\Update\1.3.25.11\goopdateres_pl.dll 21:01:08.0809 0x1380 C:\Program Files (x86)\Google\Update\1.3.25.11\goopdateres_pl.dll - ok 21:01:08.0819 0x1380 [ 6CB55C855F4C0894E4EC5D89608093A4, 7A99D63014A582A59C665A29EF8084B1D21D77253E5BC7A08925C69F3B4E8625 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\PresentationCore\147b9d59c55933d29db29b839cf52026\PresentationCore.ni.dll 21:01:08.0819 0x1380 C:\Windows\assembly\NativeImages_v4.0.30319_64\PresentationCore\147b9d59c55933d29db29b839cf52026\PresentationCore.ni.dll - ok 21:01:08.0819 0x1380 [ 34190066B60F2618A83813D8032DDAD5, D49D991CE0B7E21662E354F38DABB1C5631A8541B538D19E39DCA235CDA86BE4 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosBtECCAPI.dll 21:01:08.0819 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosBtECCAPI.dll - ok 21:01:08.0819 0x1380 [ 7F32D4C47A50E7223491E8FB9359907D, 6D3F59A8D006BED3234697933D09C8EE8F7A9F4A4196CFA878F8E8A929B24CE5 ] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe 21:01:08.0819 0x1380 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe - ok 21:01:08.0829 0x1380 [ 1C53B39BAAEFDCC6EE9C73F35F82F9C4, 6AE262FA7393717632D3E95E942572AEC72C4232AB84373D086D8A5025CD83E0 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosAvdtAPI.dll 21:01:08.0829 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosAvdtAPI.dll - ok 21:01:08.0829 0x1380 [ 3FD09CA4B329F90671BEDCBE133417D4, 2F47E4F055A3048A183A7A98ADA3616F1EC8A5EF647E85263C10EA8C58BBB776 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosSndAPI.dll 21:01:08.0829 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosSndAPI.dll - ok 21:01:08.0839 0x1380 [ ED84809FA834E644F20D088FDD34365D, B645005095240F2EB78127035D1156851F197E90F01E5BF2CEDCDC0CF551E68E ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosSndPlug.dll 21:01:08.0839 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosSndPlug.dll - ok 21:01:08.0839 0x1380 [ 6BDF91038CB78269B8063617597A6D4F, 737C43E4208B3C1ACD56951B0A24F2F762158B2344405099779F8F1DF69B2548 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll 21:01:08.0839 0x1380 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok 21:01:08.0839 0x1380 [ AC78FD357CC41AF7AC1F571289572204, A80244619842166EF18D057E1044B76A455048792A17167391141EFE803F7C7C ] C:\Windows\System32\atipdl64.dll 21:01:08.0839 0x1380 C:\Windows\System32\atipdl64.dll - ok 21:01:08.0849 0x1380 [ BA1743DC5FA766BC0501E553147BACCF, 69B8CB314EF849023051FD8A724B33361D738C508453260D4E6C1AFF3BD4789A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\96b76b5a686f9f3ef34dc285e21c14b8\PresentationFramework.Aero.ni.dll 21:01:08.0849 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\96b76b5a686f9f3ef34dc285e21c14b8\PresentationFramework.Aero.ni.dll - ok 21:01:08.0849 0x1380 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] C:\Windows\System32\sppsvc.exe 21:01:08.0849 0x1380 C:\Windows\System32\sppsvc.exe - ok 21:01:08.0849 0x1380 [ 4C3DAEE652B005B483F16B8E9131C99D, 188DFF96F3B18A610C52775C8F95C99ABF27FF2E1D52B50EDF9F80FE337239CD ] C:\Windows\System32\d3d9.dll 21:01:08.0849 0x1380 C:\Windows\System32\d3d9.dll - ok 21:01:08.0859 0x1380 [ 45CAD913848EDF80837B851FA25160F2, 9DBAD84F96195B43C033C810EBCF7D6E569CEDE555A42C018627181C50773B91 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\RunEnv\PlugIn\Plug_SDKInterface\SDK\Windows\BIConfig.dll 21:01:08.0859 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\RunEnv\PlugIn\Plug_SDKInterface\SDK\Windows\BIConfig.dll - ok 21:01:08.0859 0x1380 [ 284974B30725ACF4D60DEDF78348CAA9, D0A4AC8EA3C0EC00F216651BA71151DB4C78543F153CABDE7CCDF02FF5BDB6E1 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\RunEnv\PlugIn\Plug_SDKInterface\SDK\Windows\ZTEAssistService.dll 21:01:08.0859 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\RunEnv\PlugIn\Plug_SDKInterface\SDK\Windows\ZTEAssistService.dll - ok 21:01:08.0869 0x1380 [ 6868CFBF025314D630918A23939B494D, 1B903B593F4FF545953A55499CADBCF7C68F898B2017A730570681522801EEB5 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtHid.exe 21:01:08.0869 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtHid.exe - ok 21:01:08.0869 0x1380 [ 2EC5693E2EE393F3A97BBB6C46D67779, 68CCECB20B55247B0DC2EF720FA8905CD039D91002D7450293BE585DF926462B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll 21:01:08.0869 0x1380 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok 21:01:08.0869 0x1380 [ 2DF4AE39346F8493606E1808AF54CB97, 1EF59E594CE65350E514EB98D4A2A1991F55EA6900E43C71F3E6646E950075C8 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\RunEnv\PlugIn\Plug_SDKInterface\SDK\Windows\BIDataBase.dll 21:01:08.0869 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\RunEnv\PlugIn\Plug_SDKInterface\SDK\Windows\BIDataBase.dll - ok 21:01:08.0879 0x1380 [ 4EDB186C455CDEADA24A708AAB884AE3, 836B3176A4A1B57F89D5B950BDA2F6C6F785899ED54632D8CF35DF55B364DB81 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 21:01:08.0879 0x1380 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok 21:01:08.0879 0x1380 [ 6288F149B218B368B8D93F560AE5FDA4, 90F300E58C41E863CC4BCDDD91843E726DD382900D5B4C23D7AF9587642465E9 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtAvAC.exe 21:01:08.0879 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtAvAC.exe - ok 21:01:08.0879 0x1380 [ FD67683FBA9B2C4BB551780BD8846F64, 4BB7C956EA8D2CE63F5BF80FAE652F98416A7635202AEE04FC8D81000E6363DF ] C:\Windows\SysWOW64\winsta.dll 21:01:08.0879 0x1380 C:\Windows\SysWOW64\winsta.dll - ok 21:01:08.0889 0x1380 [ 29842E7F024AA198E92480F2CEA950CD, 8ABBEC70A885933861759C36A78CB4DE0CCBA42E8A6CD6CCBF57E663E9FF0712 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\ReModem.exe 21:01:08.0889 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\ReModem.exe - ok 21:01:08.0889 0x1380 [ 09932BAE07BA9CA7187FE17468E84872, 92DD0DFE049E936B5A8614C6D0A609D5851A72639218745C5D164C00AB8FD520 ] C:\Program Files (x86)\Cyfrowy Polsat\MF821\RunEnv\PlugIn\Plug_SDKInterface\SDK\Windows\ZTEDCUserService.dll 21:01:08.0889 0x1380 C:\Program Files (x86)\Cyfrowy Polsat\MF821\RunEnv\PlugIn\Plug_SDKInterface\SDK\Windows\ZTEDCUserService.dll - ok 21:01:08.0899 0x1380 [ 58CF54EBA6DA04118983A1440A87D5A0, 41BBEC31B935108F7AE25FF8BD9F969A4D8FA398A1181D5BA69FBC9F21B4B184 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\ECHelper.dll 21:01:08.0899 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\ECHelper.dll - ok 21:01:08.0899 0x1380 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65, D99A8C10CC4E5C778D063E56A131DB549F01CA7F9605F6596406606BB12C0269 ] C:\Windows\System32\d3d8thk.dll 21:01:08.0899 0x1380 C:\Windows\System32\d3d8thk.dll - ok 21:01:08.0899 0x1380 [ 57A6362D71B5003C48EE21F2DBB624B1, E6480D1F219BF3F8E7AC8347A8C50E48632B7BBC9618EEB36DAEA1079AA770B5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll 21:01:08.0899 0x1380 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok 21:01:08.0909 0x1380 [ 658B47E210EEADA68D41477476D56A7E, C02FD5A300D3419E4AAD85A32E672ECE921D37C62D83D14C10E851E8393D90A7 ] C:\Windows\System32\atiu9p64.dll 21:01:08.0909 0x1380 C:\Windows\System32\atiu9p64.dll - ok 21:01:08.0909 0x1380 [ 17511A6EF0AD98D2104B4A344501B848, 9EF01CF32DF0B20EC4FF9D974885CA3113A5C8F98E70BDFF5B2E00BD8A8F3CD8 ] C:\Windows\System32\atiumd64.dll 21:01:08.0909 0x1380 C:\Windows\System32\atiumd64.dll - ok 21:01:08.0919 0x1380 [ A9F3BFC9345F49614D5859EC95B9E994, 306467D280E99D0616E839278A4DB5BED684F002AE284C3678CABB5251459CB3 ] C:\Program Files\Windows Media Player\wmpnetwk.exe 21:01:08.0919 0x1380 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok 21:01:08.0919 0x1380 [ C2546BD4174CAD72C78D79339CB2347A, 856EEF1675C94AFC4C563F8F002A8ABF930AEF041555C623CFEAEEED42FB16DC ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtHSP.exe 21:01:08.0919 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtHSP.exe - ok 21:01:08.0919 0x1380 [ 0DE6A447B278778A065CD12F49A26840, BF6BD74454EEDE48044158CD01932A90D39B20C94C84EF663611AD4512CAB6CC ] C:\Windows\assembly\NativeImages_v4.0.30319_64\Presentatio5ae0f00f#\8c616047f194ff0ec4e8f2ffd68a268b\PresentationFramework.ni.dll 21:01:08.0919 0x1380 C:\Windows\assembly\NativeImages_v4.0.30319_64\Presentatio5ae0f00f#\8c616047f194ff0ec4e8f2ffd68a268b\PresentationFramework.ni.dll - ok 21:01:08.0929 0x1380 [ FFF95479C7AB1550F0750A5D01744211, FF67F892AABCE1C2B695FF4C0816339566F5745C1498D48FAC050E5196C1CE09 ] C:\Windows\System32\drivers\spsys.sys 21:01:08.0929 0x1380 C:\Windows\System32\drivers\spsys.sys - ok 21:01:08.0929 0x1380 [ 7919A5BEE825D64C9AF8301E538B6CB7, 8FCBC5AF1666B01A51DC9015DFD6A94132805A350F1905204440B150680E030D ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\BtAssist.exe 21:01:08.0929 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\BtAssist.exe - ok 21:01:08.0929 0x1380 [ E36112A8A6C7F840169A7E92C12F4203, 52795B2E6ECCE751EEF5074AF52FDE376A382D0A1C43B90DD4F77A397C00FBC5 ] C:\Windows\System32\wsock32.dll 21:01:08.0929 0x1380 C:\Windows\System32\wsock32.dll - ok 21:01:08.0939 0x1380 [ 423982DD851406A52B6399DDB196C606, 5FFBA6D1E9398E7C5D18553EE1C485F59174013622332F7BD8D461F707F1EC93 ] C:\Windows\System32\wmdrmdev.dll 21:01:08.0939 0x1380 C:\Windows\System32\wmdrmdev.dll - ok 21:01:08.0939 0x1380 [ EF86A7118A3950F03B364FAC93A08E96, 239BE3E857DCCB87048D73906198167886169AD1EDD640C85E536A2D3CF30795 ] C:\Windows\System32\drmv2clt.dll 21:01:08.0939 0x1380 C:\Windows\System32\drmv2clt.dll - ok 21:01:08.0939 0x1380 [ 35BA5AA671887FE8A62B88A9A6229FD5, 37C890ABCAC01F610F00E900A59B08CF4F17BFC49459EEBF0058EFE02FD628EE ] C:\Windows\System32\pstorsvc.dll 21:01:08.0939 0x1380 C:\Windows\System32\pstorsvc.dll - ok 21:01:08.0949 0x1380 [ F6F22291024906E43D135A4B1705FEAC, C1B66012799D247033E8AB8386B51BC86A4E2255E6D0B163AC000B215C51B42A ] C:\Windows\System32\sppwinob.dll 21:01:08.0949 0x1380 C:\Windows\System32\sppwinob.dll - ok 21:01:08.0949 0x1380 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] C:\Windows\System32\wscsvc.dll 21:01:08.0949 0x1380 C:\Windows\System32\wscsvc.dll - ok 21:01:08.0949 0x1380 [ AB95FBAE4F9A5A56B177CEC427B2B35E, 59D7C2A5097F83E8D07CAAFCF9C6F9C6849AF24C28047FD4D4D6B5673EE8D089 ] C:\Windows\System32\psbase.dll 21:01:08.0949 0x1380 C:\Windows\System32\psbase.dll - ok 21:01:08.0959 0x1380 [ 4B3E10C32A6DD852773A7CD4DBA56FE3, 7F20E859801C011832FA31F682C7954AF3F0578CCF61BF0C3C95EFE148C39C5C ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBt1st.exe 21:01:08.0959 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBt1st.exe - ok 21:01:08.0959 0x1380 [ E261E71DA2D7884BEB7A0AB29EC49EA1, 583EC2DDF323248E5E07E4DDDCBBC5F6BDB995BC511CCA6772B501219DE29D11 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key 21:01:08.0959 0x1380 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok 21:01:08.0959 0x1380 [ 96DB78C9C50CEED9DA5050EFFEE272A2, 51CF3E1F96555A4E4B5BC0DE2598CE5A0199F495644A91C2105F25A5A4CF10E3 ] C:\Windows\System32\upnp.dll 21:01:08.0959 0x1380 C:\Windows\System32\upnp.dll - ok 21:01:08.0969 0x1380 [ 92E0508D924512F63FFEEFE498CBD11F, 1158011E4A1298DEC79133B40888AA87B06F5B64BA2AB461B58C22F5F9211D0C ] C:\Windows\System32\p2pcollab.dll 21:01:08.0969 0x1380 C:\Windows\System32\p2pcollab.dll - ok 21:01:08.0969 0x1380 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] C:\Windows\System32\ssdpsrv.dll 21:01:08.0969 0x1380 C:\Windows\System32\ssdpsrv.dll - ok 21:01:08.0969 0x1380 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] C:\Windows\System32\QAGENTRT.DLL 21:01:08.0969 0x1380 C:\Windows\System32\QAGENTRT.DLL - ok 21:01:08.0979 0x1380 [ CD8C6E6A51013CAFE13354F0CA62F0C7, 5554DD59CA42B6D9C1C2AF685A8E05C1F56B10189B93860799A1D5388B0E8BB5 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtChkB.dll 21:01:08.0979 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtChkB.dll - ok 21:01:08.0979 0x1380 [ BBE8402D99BAC484F1D71973BBD10B7B, 8934A9DBD2BA2DA1AB332571247D14D27CFAD6031EE48FFAAAE14CB65AC6A331 ] C:\Windows\System32\atiumd6a.dll 21:01:08.0979 0x1380 C:\Windows\System32\atiumd6a.dll - ok 21:01:08.0979 0x1380 [ 3AEB6FEAAAC4647730A20B777488FB52, F9617854101CA82D96CB49E2BA87560F9919B60F504D664944640E648A3B60B6 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtChkI.dll 21:01:08.0979 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtChkI.dll - ok 21:01:08.0989 0x1380 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B, 2DFBD792B68F3EBEF0843183CAE5D52B6FA04163808AFACF6C0D738455898C36 ] C:\Windows\System32\fveui.dll 21:01:08.0989 0x1380 C:\Windows\System32\fveui.dll - ok 21:01:08.0989 0x1380 [ 6F672A3AA198672F06420D0EEA6B0AE1, CEC1A8A432F4671E6A116E2BA679E7B0874A35F980D5A25349218F95323F6CB7 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\BTWLANDP.exe 21:01:08.0989 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\BTWLANDP.exe - ok 21:01:08.0989 0x1380 [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] C:\Windows\System32\wuaueng.dll 21:01:08.0989 0x1380 C:\Windows\System32\wuaueng.dll - ok 21:01:08.0999 0x1380 [ 56CC5D6D4F01033D037890F807215A6E, ACC80807D750E47781DCD3CC9503D530414CBB7528A44C0EB6471850730A6B77 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtAfh.dll 21:01:08.0999 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtAfh.dll - ok 21:01:08.0999 0x1380 [ 73D3B2408952890DE8157EAA014B9A52, 3AFF4130CF129B314E1B274C7145342B10C38BE7CEC850650E65BB1298AE5EE7 ] C:\Windows\System32\wmp.dll 21:01:08.0999 0x1380 C:\Windows\System32\wmp.dll - ok 21:01:08.0999 0x1380 [ 47B4FCDCE4C0A64A54BC9A66B176B0F1, 6F338FDBAFDBFBE1DF8BCCABD5D346EAE80137A1437AFA0A0C79C7F701F67557 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosAVRC.exe 21:01:08.0999 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosAVRC.exe - ok 21:01:09.0009 0x1380 [ 2B373B5F7E36B5ED5DA176D4400EF091, A7E220CC3661429D786693B277A7F39D5D9E24284B1D9E55DB6295AF7D97D104 ] C:\Windows\System32\sppobjs.dll 21:01:09.0009 0x1380 C:\Windows\System32\sppobjs.dll - ok 21:01:09.0009 0x1380 [ FBE50E1DC5881CF6D74F3911F3BE1897, 9F7F69FB7D1CE98D1B596A1B598FE7722DD8E176227A8C4806FAB277236689DC ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosAvctAPI.dll 21:01:09.0009 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosAvctAPI.dll - ok 21:01:09.0009 0x1380 [ 7C4404ED2001CFDB3F5E02E580D0119C, 19FEA1A39A0FD4358818EBD42AFC05B4638FE10CF333F5DEE6D6756E48C8583A ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xaml\1cf956491787a78c07789c9c8ffb7115\System.Xaml.ni.dll 21:01:09.0009 0x1380 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xaml\1cf956491787a78c07789c9c8ffb7115\System.Xaml.ni.dll - ok 21:01:09.0019 0x1380 [ 98A27CEBF7146A6745051D03E8302A0D, E6651EBF11DFFB1EE9FB418A3A46B2100EFB16F56B07526BA9F65DEE01EB6FB5 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\tosOBEX.exe 21:01:09.0019 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\tosOBEX.exe - ok 21:01:09.0019 0x1380 [ 0DB2758CF1BAFE22E0970FDA0785B74C, 325DEABB182FCA8DCB426AD0095B3524C8F77F2A9204E703391F631B2C4A1157 ] C:\Windows\System32\wuapi.dll 21:01:09.0019 0x1380 C:\Windows\System32\wuapi.dll - ok 21:01:09.0019 0x1380 [ 27437668619CE9D976D8ECD21B44B39B, FAD8CCD24015D02B1A2256376281A2ED7D602B0D27AA184A4E95BB6965694E1D ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosNtfs.dll 21:01:09.0019 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosNtfs.dll - ok 21:01:09.0029 0x1380 [ 4EA3D01FB2C3D2406B41878D105DBD8E, 9E59F4990C2BA086AE5F90F1EF3EF55D5A4FEB445F5F845889582E1B2EAB6C9B ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\x64\LCWizard.dll 21:01:09.0029 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\x64\LCWizard.dll - ok 21:01:09.0029 0x1380 [ 19F9B524A525D202194247E96656CB88, 682EDB1A905C3D623AF18D633D5ADCBCE2AFC70AAFABD0508B64CC6FF5D29B82 ] C:\Windows\System32\mfc42u.dll 21:01:09.0029 0x1380 C:\Windows\System32\mfc42u.dll - ok 21:01:09.0029 0x1380 [ FA43D418BC945D27D0625B697B8442B5, 035DE0FEA440D2E3AD255EE84B388DDA538E778877033FDB54B8A61BB0AADE56 ] C:\Windows\System32\cabinet.dll 21:01:09.0029 0x1380 C:\Windows\System32\cabinet.dll - ok 21:01:09.0039 0x1380 [ C27CB9262319A31C787E6FEFBC6C13C9, 3B79BC471B275775F77300DB6152D08ECF6412D1E2CD58B93F94B23E8603047A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web.Services\0fd06767079185f7381c26dbe08cef54\System.Web.Services.ni.dll 21:01:09.0039 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web.Services\0fd06767079185f7381c26dbe08cef54\System.Web.Services.ni.dll - ok 21:01:09.0039 0x1380 [ 7EC6617005F76714C7E16605E7A8AB06, 5940168249A9C1791CBD71C8F22FC618E8932808E1478986D89A386A5DA458AC ] C:\Windows\System32\wups.dll 21:01:09.0039 0x1380 C:\Windows\System32\wups.dll - ok 21:01:09.0039 0x1380 [ 71EF970D853661A6BAFBD45C36714FEC, F9EE7079D10AE7883C33860361B25FC3F3D29258FCF01902136ADE921E236E22 ] C:\Windows\System32\wmploc.DLL 21:01:09.0039 0x1380 C:\Windows\System32\wmploc.DLL - ok 21:01:09.0049 0x1380 [ DD85F00EC31F77315AE992B7B0411D65, 54C7A699252AAC3210BD1B8047292F5BE004FA72B8B5338D9772EF800C7EAED0 ] C:\Windows\System32\DWrite.dll 21:01:09.0049 0x1380 C:\Windows\System32\DWrite.dll - ok 21:01:09.0049 0x1380 [ 7FF8E121AFA05BDAB23B9FEDCDAB7A33, CF92328CDB1BA1E7A3EC3AD4E1CB86B021D4483172DE0F1DB1E83E41F994B8BD ] C:\Windows\System32\odbc32.dll 21:01:09.0049 0x1380 C:\Windows\System32\odbc32.dll - ok 21:01:09.0049 0x1380 [ 3E466073C3B1033FF92ADE9031E3D4A2, 2B26096A6BA2EE8C496D3252248F21D214E8C41ECF79A60A60E52D3BC4135C03 ] C:\Windows\System32\odbcint.dll 21:01:09.0049 0x1380 C:\Windows\System32\odbcint.dll - ok 21:01:09.0059 0x1380 [ 3CF6F418BF0BDB5450058030277D34AE, 8B05989FC6EF8C002DF2DDCCACEAABB85387BFE6743541994D73AC9D10F565CB ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\wpfgfx_v0400.dll 21:01:09.0059 0x1380 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\wpfgfx_v0400.dll - ok 21:01:09.0059 0x1380 [ B84E2D174DC84916A536572BB8F691A8, 94E3D68F102439D3A585D2D796F3F3FC27CB41C640058DDC14AF99A723B2CD99 ] C:\Windows\System32\wscisvif.dll 21:01:09.0059 0x1380 C:\Windows\System32\wscisvif.dll - ok 21:01:09.0059 0x1380 [ 6C1E3C43B35268C17833244C8ED96430, 9C571AA762E71177B6FF486D1DB500E3530E13CAFD87316AD2C64F5A55EB4A93 ] C:\Windows\System32\wscproxystub.dll 21:01:09.0059 0x1380 C:\Windows\System32\wscproxystub.dll - ok 21:01:09.0069 0x1380 [ 3855B7E82DEA7F28C3B620F44487FCC4, 75344F6F0C5CE5A0943077037AC4DC31ED969520093E99E153A1F909B35AD16C ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe 21:01:09.0069 0x1380 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe - ok 21:01:09.0069 0x1380 [ 03D07A681B8E42A1BE4F7B3B3DCCF4D9, F57608AAA15C6997282EE081D03A9E399DA4CEF04AEF103E184DBC5DBB25522C ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll 21:01:09.0069 0x1380 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll - ok 21:01:09.0069 0x1380 [ BDE8ABC23E3C970058B4DC9E260B45F0, 6268CF3FAFCD3EA2074191686C6EAD7412672EF9ADAB683E627FE29AAB448EED ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\PresentationNative_v0400.dll 21:01:09.0069 0x1380 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\PresentationNative_v0400.dll - ok 21:01:09.0079 0x1380 [ 101797BA603D227946B4B5109867EB19, EBF2B48D1A4FE148F455EA32023ABC0D479215D48C7CE76E765F199CD3C80AF8 ] C:\Windows\System32\SyncCenter.dll 21:01:09.0079 0x1380 C:\Windows\System32\SyncCenter.dll - ok 21:01:09.0079 0x1380 [ F79D391100F11E4447E1AB6F7BD09DC8, 7F632B7E9F42F6635A5F4B79D91B0F687BDE9E76421AA45D2C0BA0AF32FF0DEE ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosSkypeApl.exe 21:01:09.0079 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosSkypeApl.exe - ok 21:01:09.0079 0x1380 [ DD1B8826F8B188FB478C968FF0E3B7AC, C2507B11F87D2CD9AC997E45995E38382B00F613B1CB03526E531FCDF8AC9B86 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosBtHSPAPI.dll 21:01:09.0079 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosBtHSPAPI.dll - ok 21:01:09.0089 0x1380 [ CF40CB9FFBBBD2BDCB7D9CEB1A2ED4A8, 6D803339125543B0371826D033A827EED05A6AFE44009F434F9E60F3EC0BF5FB ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosBTHFPAPI.dll 21:01:09.0089 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\TosBTHFPAPI.dll - ok 21:01:09.0089 0x1380 [ 3BDA50E1839E245BD83534F8DEAF9DFD, E9A01754DE05441A40BDD8E4AB3D7FE08FD050059021225205FC969FE2614449 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll 21:01:09.0089 0x1380 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll - ok 21:01:09.0099 0x1380 [ BF8A6B8EDF6AC72DC0BB3DECCDCF26DC, 95F36D0EE95050DABF3AA506679D1FB4DD70ECD1648ABD0773424D57A031B0CB ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\tosBtProc.exe 21:01:09.0099 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\tosBtProc.exe - ok 21:01:09.0099 0x1380 [ 07E0306DC01B29CA1D82E25F689B820F, B988BF6A558CDCD683ECFE991A16DD8E61C00F9296A22895386F360C8292A597 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll 21:01:09.0099 0x1380 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll - ok 21:01:09.0099 0x1380 [ 150F55DD84EDE5925AF1545F79DDDFEC, B81FD454B2267A091B6C3B6AC3BD16257400F5982B9362973F07BBD3B34E15AD ] C:\Program Files\Internet Explorer\ieproxy.dll 21:01:09.0099 0x1380 C:\Program Files\Internet Explorer\ieproxy.dll - ok 21:01:09.0109 0x1380 [ 9A8D9CA3E37C261F1C31BF742640A357, 6443B7E6B65D2319E146416241D0C2A68628063B3F267C551C61A9090294B00E ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\33b0d91fe3a676b18649630b575bfe36\System.Drawing.ni.dll 21:01:09.0109 0x1380 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\33b0d91fe3a676b18649630b575bfe36\System.Drawing.ni.dll - ok 21:01:09.0109 0x1380 [ FB4045578F5180BDB1963AB352B78548, 8E645A63436EE6CDDB78E6064AEB04ECE39208F760A3EF13A3F49FDF41505E21 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll 21:01:09.0109 0x1380 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok 21:01:09.0109 0x1380 [ 355A138ABDFD43FBABCAE3A1B06AB93D, 26015CE72D27E2F7FA7322203CDF236896A079F8325F1B24975CA12C57FD4B7B ] C:\Windows\System32\wmpps.dll 21:01:09.0109 0x1380 C:\Windows\System32\wmpps.dll - ok 21:01:09.0119 0x1380 [ F149E8CAE538DBF7059B00326673F602, 8B576A68AE43B506D0C7E91C63E8EF1DB9E73F0E87E48CF57086BCE51E5F8C36 ] C:\Windows\System32\wmpmde.dll 21:01:09.0119 0x1380 C:\Windows\System32\wmpmde.dll - ok 21:01:09.0119 0x1380 [ DF3A120A05A54FD3FD221ECC2272142D, FE8BD4DA8F797B1AEF4888AE7D0D650EFA8E82F124957D11888A67245C71A642 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\tosOBEX.dll 21:01:09.0119 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\tosOBEX.dll - ok 21:01:09.0119 0x1380 [ CCD0214A064CA26B6663E8AAA14EBF93, 5763090FCE3DFB588CA11400D9F495567366F68BBA16F3BD06654A1C1AF5D703 ] C:\Windows\System32\PresentationNative_v0300.dll 21:01:09.0119 0x1380 C:\Windows\System32\PresentationNative_v0300.dll - ok 21:01:09.0129 0x1380 [ 021287C2050FD5DB4A8B084E2C38139C, EA27C640FE0F1E8BAE70BEF98E663E68A35336BB6D52D56B2367297D22C50648 ] C:\Windows\System32\WinSATAPI.dll 21:01:09.0129 0x1380 C:\Windows\System32\WinSATAPI.dll - ok 21:01:09.0129 0x1380 [ C39035A5C69F4C6D2CB3243AB22918A9, B848484AB36F93BCC0574217D533F1686B4100AE46F69AC8CDDBD26C25EFA767 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Windows.Forms\765e2a5dac4d62213d49240acb13755b\System.Windows.Forms.ni.dll 21:01:09.0129 0x1380 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Windows.Forms\765e2a5dac4d62213d49240acb13755b\System.Windows.Forms.ni.dll - ok 21:01:09.0129 0x1380 [ 66C87DB880052104808507D6FA84D68E, 46BD5C16225B3D0BF786FDA6461CE9A549DAA9FA38C8BDADAA0AF08FA6A24260 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL 21:01:09.0129 0x1380 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok 21:01:09.0139 0x1380 [ 28A7D7C7E2FDD1D55F12F750CD6331EC, 0CC0159D3F5682307439D8F3651A080430C7EAB8EFA25BA246AADF4665297E8D ] C:\Windows\System32\MSMPEG2ENC.DLL 21:01:09.0139 0x1380 C:\Windows\System32\MSMPEG2ENC.DLL - ok 21:01:09.0139 0x1380 [ 2EFE164449F1C62CEA167B10850CD9F1, CFE976992EE0D4270E88F3F3EE14B142E15C894A460B94E902C2ADC734CC1B42 ] C:\Windows\System32\msctfui.dll 21:01:09.0139 0x1380 C:\Windows\System32\msctfui.dll - ok 21:01:09.0139 0x1380 [ E3A4D59ED585226D381225521BF2A36D, F674A23628241D6AB133E081966B5FA7DFA597E966096970C2172783124CF3DC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll 21:01:09.0139 0x1380 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll - ok 21:01:09.0149 0x1380 [ 5E3012DF734F2CCD1BE99AE19D0E90D0, AFA187D7B03CA254341682FD688A2CFCFF799AEBCD4135AF9D3F99FD4D758127 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\0b3734c42f6d76a012ad78867f5e0ba9\WindowsFormsIntegration.ni.dll 21:01:09.0149 0x1380 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\0b3734c42f6d76a012ad78867f5e0ba9\WindowsFormsIntegration.ni.dll - ok 21:01:09.0149 0x1380 [ 46767946E7B559D981C1DC04EC0AB36F, 69137AA9AEF9727FFD1B65AA4D658C6E8AAD3A062717B447260502B4D7DB90C6 ] C:\Windows\System32\devenum.dll 21:01:09.0149 0x1380 C:\Windows\System32\devenum.dll - ok 21:01:09.0149 0x1380 [ 558C42D165DB5799B4072DC0A9C27C0B, 2385E16ACF07252D5567EC091C1B39D39BB8199F60854D5A91EDC948C57B3A3F ] C:\Windows\System32\msdmo.dll 21:01:09.0149 0x1380 C:\Windows\System32\msdmo.dll - ok 21:01:09.0159 0x1380 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] C:\Windows\System32\upnphost.dll 21:01:09.0159 0x1380 C:\Windows\System32\upnphost.dll - ok 21:01:09.0159 0x1380 [ E26F8BDFB6DF8F4A722D2D79A3A14E78, 043746CBE6975DD6FD69F299E3D9B06CF4A45140A56C2161A358DDEEB2D4F623 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe 21:01:09.0159 0x1380 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe - ok 21:01:09.0169 0x1380 [ F00AE7B953ABEF1B53FBBA187DFC8238, 6FFA160FB6821A725A7D81E1BECE1DE89E3E022B33E56A7468E2E0B4C8B2AE31 ] C:\Windows\System32\webcheck.dll 21:01:09.0169 0x1380 C:\Windows\System32\webcheck.dll - ok 21:01:09.0169 0x1380 [ 2C16648A12999AE69A9EBF41974B0BA2, 06008F61B6EC36CD34CB8C4BA983371DB7A9F4BEE15E5329F5E90FEEE300D258 ] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe 21:01:09.0169 0x1380 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe - ok 21:01:09.0169 0x1380 [ 8130391F82D52D36C0441F714136957F, 1FD4FEE7CAF63E450F27729E07EA2A2F09288629FD872DBB6E8710B16D8DBD5D ] C:\Windows\System32\imapi2.dll 21:01:09.0169 0x1380 C:\Windows\System32\imapi2.dll - ok 21:01:09.0179 0x1380 [ 71E68F2443A80BD4DA89181889C457EA, 8665D3DDF92B05EF287FB6EC43782512C23A1437764CF6F4DE0B00547F3C696B ] C:\Windows\System32\udhisapi.dll 21:01:09.0179 0x1380 C:\Windows\System32\udhisapi.dll - ok 21:01:09.0189 0x1380 [ 6A5C1A8AC0B572679361026D0E900420, B5E693B48B462E97738A3D4E58B60846159649EB15F4D11074B4BC107CC88562 ] C:\Windows\System32\hgcpl.dll 21:01:09.0189 0x1380 C:\Windows\System32\hgcpl.dll - ok 21:01:09.0189 0x1380 [ D9E21CBF9E6A87847AFFD39EA3FA28EE, B2AE0BBF907D4108DE3485E6059DF8D10C39707CD508A55A2D9627A66D01AE78 ] C:\Windows\System32\SearchProtocolHost.exe 21:01:09.0199 0x1380 C:\Windows\System32\SearchProtocolHost.exe - ok 21:01:09.0199 0x1380 [ D480C9220BFE667DE65A46CDE80EA7E9, 3BD2C69533749792A8DA8E5602515BCA2E290194838F566334DBB54BB2CE2229 ] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\StatusStrings.dll 21:01:09.0199 0x1380 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\StatusStrings.dll - ok 21:01:09.0209 0x1380 [ 122F89E0905FC656D56F65CD7A2E9B4D, 4D86847587EE5212129E98A814124E490EE29F411DBB9CF7ECEB1E9146B4FCAE ] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\xerces-c_2_7.dll 21:01:09.0209 0x1380 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\xerces-c_2_7.dll - ok 21:01:09.0219 0x1380 [ D2A5B2B09F2AF5ED13BF494508B09788, 3FA04E84EC5A575E7804E44BA3BF1C4143E53C4ACF6C823CD029711529B0BE2C ] C:\Windows\System32\msshooks.dll 21:01:09.0219 0x1380 C:\Windows\System32\msshooks.dll - ok 21:01:09.0219 0x1380 [ 49A3AD5CE578CD77F445F3D244AEAB2D, 1D200547C6277C4A878A9ADD94045F7ACCC583609985C592AAE9B9B9CA7B812A ] C:\Windows\System32\SearchFilterHost.exe 21:01:09.0219 0x1380 C:\Windows\System32\SearchFilterHost.exe - ok 21:01:09.0219 0x1380 [ E503E15C88B4BBDA3F6345E34FED3E92, 40C09CFBC7AAAE12BCAE32B5047E4A54DFB362434EBD5F54D8A5C8F6DBDA719A ] C:\Windows\System32\mssvp.dll 21:01:09.0219 0x1380 C:\Windows\System32\mssvp.dll - ok 21:01:09.0229 0x1380 [ 8F4BB0CFECED925D440ABC2481278360, 0A87E7E1B38300E211F2ECA10BFB9831CF79B128DEB9D7AB0AA6A715197FF2DD ] C:\Windows\System32\mapi32.dll 21:01:09.0229 0x1380 C:\Windows\System32\mapi32.dll - ok 21:01:09.0229 0x1380 [ 01E2855FB06C422E721D890AF201C2D7, 9CAA197D5CE95AABFC8C09EA2137E73C7A0EF37CE0459508C663F7B2D758E57F ] C:\Windows\System32\NaturalLanguage6.dll 21:01:09.0229 0x1380 C:\Windows\System32\NaturalLanguage6.dll - ok 21:01:09.0239 0x1380 [ 11542EC1F1C53EDB3CCF5AADF4C9972F, 3458A80698836B5ECD1F5E61FA1525C4646DDA4CDAF11BE80E6F11425D8C3674 ] C:\Windows\System32\NlsData0000.dll 21:01:09.0239 0x1380 C:\Windows\System32\NlsData0000.dll - ok 21:01:09.0249 0x1380 [ 83CCD9B226E21A19E1B08F2F2E1EEAF8, ED42C28232EAF0F4C7DE5FE74A40AD52E50134E5AA62BE265779BAF7750874F1 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runt73a1fc9d#\73c2c3953086bc395c85088430652ec9\System.Runtime.Remoting.ni.dll 21:01:09.0249 0x1380 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runt73a1fc9d#\73c2c3953086bc395c85088430652ec9\System.Runtime.Remoting.ni.dll - ok 21:01:09.0249 0x1380 [ 22F7DE8F3E33AA52A80855B590464DFA, D11C0D0AB367D1E1EA7369A68A0FD5D1495017CE369548FE76B03D3A2A4ACE08 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll 21:01:09.0249 0x1380 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll - ok 21:01:09.0259 0x1380 [ E65C02A6883DEBDF2CF413A7F3EA24FC, 0C26B2951B8D699F09AB7D42B462CD69B80B041519A26893F1FA22C2E7BD6076 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\6d01dc933044beec0f2fdefa90f67bd0\System.Configuration.ni.dll 21:01:09.0259 0x1380 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\6d01dc933044beec0f2fdefa90f67bd0\System.Configuration.ni.dll - ok 21:01:09.0259 0x1380 [ E76E845929A111E3F61028B10A2C1EFC, 68A8D3CBA3464C99024520A38C308C0EE97EBFF3E5CAFAC231B5A3D471753191 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\25e7c1b5f922b2b44c27857e1b466651\System.Xml.ni.dll 21:01:09.0259 0x1380 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\25e7c1b5f922b2b44c27857e1b466651\System.Xml.ni.dll - ok 21:01:09.0269 0x1380 [ 13ABBED425A406D5AAEE88D69D6DE33F, 3D628C9DB871A56F46A1FDDF07E7A731164F700BE00F7F9284AB7D1D6BA89EB0 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\2e9352fa8533dc500b03b97e5d3193c2\System.Core.ni.dll 21:01:09.0269 0x1380 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\2e9352fa8533dc500b03b97e5d3193c2\System.Core.ni.dll - ok 21:01:09.0269 0x1380 [ 2A53408152061A87E75A8E83486C73D4, 31CB79B8801F2695DEF7C87FE6C42FFDD9B50209859A11B7042E8318B8A9E14E ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsecimpl.dll 21:01:09.0269 0x1380 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsecimpl.dll - ok 21:01:09.0279 0x1380 [ 2F78A1FFE2412801E303340A60D53D37, 88BD865E26768B2F2EDDC8366B9DC730E60F7541ADBE22A00525522799220C55 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.Linq\44d102cfe73ebdc222a441b7d7989d65\System.Xml.Linq.ni.dll 21:01:09.0279 0x1380 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.Linq\44d102cfe73ebdc222a441b7d7989d65\System.Xml.Linq.ni.dll - ok 21:01:09.0279 0x1380 [ C8B7E7B1335A32946779CF0E385BBEC1, A5A0FFCF893B790250DF294687F2A0B4FA4026425F200ED68BF84E2C8FA621BF ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Management\b91a569c092d80c345df1959e6daf880\System.Management.ni.dll 21:01:09.0279 0x1380 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Management\b91a569c092d80c345df1959e6daf880\System.Management.ni.dll - ok 21:01:09.0289 0x1380 [ 672D99D207BB478A292B1A979FBDFE66, 1E4ACB7063DC6F4B1EB1E0711076208681ABDA3C7032B6C3DCBCE5AC71B1A23A ] C:\Program Files\TOSHIBA\ReelTime\ReelTimeRemoteStorage.dll 21:01:09.0289 0x1380 C:\Program Files\TOSHIBA\ReelTime\ReelTimeRemoteStorage.dll - ok 21:01:09.0299 0x1380 [ 68918D324126F39F59D83BA0B5C7917E, 14DE8B1BCEAB2D20FD2F364FE70AD31E582451DF4215DD80D3E1FD85C59D3F2F ] C:\Program Files\TOSHIBA\ReelTime\DataProcess.DLL 21:01:09.0299 0x1380 C:\Program Files\TOSHIBA\ReelTime\DataProcess.DLL - ok 21:01:09.0299 0x1380 [ EDB4B432DB13EA3D1EB2356310D33263, C587155A73AE282545A1A646740BD8E56DFD3D2F231B484469D691401354A245 ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe 21:01:09.0299 0x1380 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe - ok 21:01:09.0309 0x1380 [ 9F59546ED4A073D7DAAB76F48167FEDB, DAC6029846F0823655E6EAB590298D23B39F8BFF53995CDC823363E08DE75DAF ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe 21:01:09.0309 0x1380 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe - ok 21:01:09.0309 0x1380 [ 9F8410CCC72B3470C96DA415BE0CF423, 70BB6273B03EFDF9FBC3CCF7900709CA559B48F610BB814EF32C960A878A32C0 ] C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe 21:01:09.0309 0x1380 C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe - ok 21:01:09.0319 0x1380 [ D4E0D61FB29EF2E2E6EAC84CD0ACD592, 82CCE2B9DF65C1CC5BD4237EF35625A6D64F1BF155F13FC73F65D030E32252CF ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosIPCWraper.dll 21:01:09.0319 0x1380 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosIPCWraper.dll - ok 21:01:09.0319 0x1380 [ A54BA67F6F50AACADC068364B0D22211, 765022081ABA149FA091B6ADEA5A817F5C71CA646C67ECF695113AAC81FBE574 ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TReport.dll 21:01:09.0319 0x1380 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TReport.dll - ok 21:01:09.0329 0x1380 [ B4DB5E9C0EB773AFC170CEE896871220, 82C78287B8B1C0B61C341A8FC634228CDB19BC471148F4C85045FA86C604AA8B ] C:\Program Files\TOSHIBA\TPHM\TPCHCTL.dll 21:01:09.0329 0x1380 C:\Program Files\TOSHIBA\TPHM\TPCHCTL.dll - ok 21:01:09.0339 0x1380 [ B25144380B6C8D7A3B6C663410536352, 4535E1CFBAFA1090F78049BC09AB82C21C009154A5CF9E072C7C957B280FB79A ] C:\Program Files\TOSHIBA\TPHM\TPCHDisk.dll 21:01:09.0339 0x1380 C:\Program Files\TOSHIBA\TPHM\TPCHDisk.dll - ok 21:01:09.0339 0x1380 [ 55A86E5BDE41710C755F21A5DD8084AD, 131BD94140E164AEEB2D69BD0C6AAB88BBD3D8A08C58C067AB4496CED951051A ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosReg.dll 21:01:09.0339 0x1380 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosReg.dll - ok 21:01:09.0349 0x1380 [ 73DC8073B4479A22DC0645168D231384, 5181A75A4BB4A0A3AD9FF2826E99E2AA624BA55146ED115AF222A95CF1943374 ] C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe 21:01:09.0349 0x1380 C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe - ok 21:01:09.0349 0x1380 [ F899B845FA88B6F6AD4F4F85991F6DF3, 06D837FCCF4BC20FB06F30C7800AEE60AC37930D48788068AA94C227CD36B946 ] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmart.dll 21:01:09.0349 0x1380 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmart.dll - ok 21:01:09.0359 0x1380 [ ACC26E162EDD72B1A0270B40C1A09BBF, 9141AF93AC2A9EEC1ECF3A9D69F7BD19422A930541AC7038D333DE78EAB972B3 ] C:\Program Files\TOSHIBA\TPHM\TReport.dll 21:01:09.0359 0x1380 C:\Program Files\TOSHIBA\TPHM\TReport.dll - ok 21:01:09.0359 0x1380 [ C1E50B098851DC57019E8F491D55701C, AA297B4AE154E5253CE51CA82E6373196264B3A81C8FA60C7AF547568192E331 ] C:\Program Files\TOSHIBA\TPHM\TPCHMUI.dll 21:01:09.0359 0x1380 C:\Program Files\TOSHIBA\TPHM\TPCHMUI.dll - ok 21:01:09.0369 0x1380 [ 81252AA3B13743020BCF2089A5A0D911, BFFB1A5917EC1EDAF6B58EAFD888575299365D09C734FACF5A7D1843680DDFD8 ] C:\Windows\System32\wscinterop.dll 21:01:09.0369 0x1380 C:\Windows\System32\wscinterop.dll - ok 21:01:09.0369 0x1380 [ DF50DAE4C547285E4997A0C61063B632, 24F1B66CD2C5188609F936E7F4947E29EB120C59731E7028285CE6791F31B580 ] C:\Windows\System32\wscui.cpl 21:01:09.0369 0x1380 C:\Windows\System32\wscui.cpl - ok 21:01:09.0379 0x1380 [ F9959237F106F2B2609E61A290C0652E, FCCC12E5AAE1773BF87B1C4BCE71D017DB1A5A7AC189559058EA1ECC72075A82 ] C:\Windows\System32\werconcpl.dll 21:01:09.0379 0x1380 C:\Windows\System32\werconcpl.dll - ok 21:01:09.0379 0x1380 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] C:\Windows\System32\wercplsupport.dll 21:01:09.0379 0x1380 C:\Windows\System32\wercplsupport.dll - ok 21:01:09.0379 0x1380 [ 809AE7D4ACE06BBCF621E5C504BF6FC8, 0BAAB89FB57468F27446947D75CBD6DDFC92D9B8F040144A12656803B2F7BF65 ] C:\Windows\System32\hcproviders.dll 21:01:09.0379 0x1380 C:\Windows\System32\hcproviders.dll - ok 21:01:09.0391 0x1380 [ 005247E3057BC5D5C3F8C6F886FFC10C, FCB27F89EC36856A4A225744CE5EE3A30CBC8A447868B165D95E8AB2C17F5671 ] C:\Windows\System32\wbem\WMIADAP.exe 21:01:09.0391 0x1380 C:\Windows\System32\wbem\WMIADAP.exe - ok 21:01:09.0394 0x1380 [ 9FE3ED67345F0FF829A4A53B90E09672, F70CD131DCF101B26CD55A57876DB3765B3E15C9D3A8B508FF041C91226EC504 ] C:\Windows\System32\loadperf.dll 21:01:09.0394 0x1380 C:\Windows\System32\loadperf.dll - ok 21:01:09.0394 0x1380 [ EEF3F22892837F327BD609CDDB0961C4, C644F07766B602F831D0197EF468E579DC68D36654F8111A311FF61AFD5FCA10 ] C:\Program Files (x86)\Opera\launcher.exe 21:01:09.0394 0x1380 C:\Program Files (x86)\Opera\launcher.exe - ok 21:01:09.0394 0x1380 [ 96C70BD48D49B87475F4572DEDC62EB9, DA841CEBDFF2C5821D4D3396BD9299940A4A2927C161554B66AB8F58CBF04467 ] C:\Windows\AppPatch\AcLayers.dll 21:01:09.0394 0x1380 C:\Windows\AppPatch\AcLayers.dll - ok 21:01:09.0404 0x1380 [ E1B395EAC48BA0C3E9483D312A23C72B, A8F370555FF6369110C6031EA4593095E3256D3B4A5A47A6F808634239CAD125 ] C:\Program Files (x86)\Opera\26.0.1656.60\launcher_lib.dll 21:01:09.0404 0x1380 C:\Program Files (x86)\Opera\26.0.1656.60\launcher_lib.dll - ok 21:01:09.0404 0x1380 [ D949F74A64BA9181348D740EA233FE3B, 16DAB3E5CD9956292AF94581327D992A6B6D12180EBA4E20E7D7CD581C1FA3A0 ] C:\Program Files (x86)\Opera\26.0.1656.60\opera_autoupdate.exe 21:01:09.0404 0x1380 C:\Program Files (x86)\Opera\26.0.1656.60\opera_autoupdate.exe - ok 21:01:09.0414 0x1380 [ 8CFAEFCD7F1E004950FCAE870A501B3E, E616C1E9B26D9686C19938601B640DDFA88C7D4D4221C8793E18ADC7B2F1008C ] C:\Windows\SysWOW64\schannel.dll 21:01:09.0414 0x1380 C:\Windows\SysWOW64\schannel.dll - ok 21:01:09.0414 0x1380 [ 4C2CBF16AC43DF603DD18EF5ADB7E7C0, 4FAD9B2E1A6FFC6B398DAA346A50AA22FA98B356798BD1B0FC3C4C6409EE6ECB ] C:\Program Files (x86)\YTAHelper\YTAHelper.exe 21:01:09.0414 0x1380 C:\Program Files (x86)\YTAHelper\YTAHelper.exe - ok 21:01:09.0424 0x1380 [ 0F280884FB3EA901810E3687D520E66B, 56BC833B33154EF6256F39B6AC112B453B27049C039516F7C458975C04E26631 ] C:\ProgramData\YTAHelper\YTAHelper.dll 21:01:09.0424 0x1380 C:\ProgramData\YTAHelper\YTAHelper.dll - ok 21:01:09.0424 0x1380 [ EA7BFD3722F6BDB16942DFDCEBE2A7BD, 1E0772938370842F4D5C1752288BE3F428BA501526849AD616B15E561CC571EE ] C:\ProgramData\YTAHelper\YTAHelper64.dll 21:01:09.0424 0x1380 C:\ProgramData\YTAHelper\YTAHelper64.dll - ok 21:01:09.0424 0x1380 [ C30A3E5DEEEBA22E782AC54C5AF5F352, 80939A7B5354032256706C6CA0C3CCC7E67CD1C1C81EAEA2CBC74997C0863662 ] C:\Windows\SysWOW64\samlib.dll 21:01:09.0424 0x1380 C:\Windows\SysWOW64\samlib.dll - ok 21:01:09.0434 0x1380 [ D7E5EF923E9321664C79A63235B5CAA3, 718FD418BFD6EEF7EDA3AA4A5035DBAC73D0D44B9454AD964DDAC51D541A107F ] C:\Program Files\Microsoft Office\Office14\WINWORD.EXE 21:01:09.0434 0x1380 C:\Program Files\Microsoft Office\Office14\WINWORD.EXE - ok 21:01:09.0434 0x1380 [ 04EDADB3E17F3FEC8012CC79BEBA2BDB, EA1425B8FE74A29C42C4A81B0E5E449DFAB6CEE02CE521816990EB0B2C62E038 ] C:\Program Files\Microsoft Office\Office14\WWLIB.DLL 21:01:09.0434 0x1380 C:\Program Files\Microsoft Office\Office14\WWLIB.DLL - ok 21:01:09.0444 0x1380 [ 8494E126F0B10180F3293AF861CE1F7A, 538B1F30423DB2398E611BC46C80150C090698E633BABF7362F7060DBF0C3064 ] C:\Windows\System32\mlang.dll 21:01:09.0444 0x1380 C:\Windows\System32\mlang.dll - ok 21:01:09.0444 0x1380 [ 5BE218A6586EA5628CDF159A11FBEC26, 85C56F2A67162D8F2E73E5C51FE1CDFEC3F8205A72A508617DBA772DA64B4349 ] C:\Program Files\Microsoft Office\Office14\GFX.DLL 21:01:09.0444 0x1380 C:\Program Files\Microsoft Office\Office14\GFX.DLL - ok 21:01:09.0444 0x1380 [ 4AE9719AFD29CB7352BE3247236A74FB, FCA0658F06E7BF36AE7B0BCE17C1898BC1577238D68A64FE074CA0CD9D2A25D2 ] C:\Program Files\Microsoft Office\Office14\OART.DLL 21:01:09.0444 0x1380 C:\Program Files\Microsoft Office\Office14\OART.DLL - ok 21:01:09.0454 0x1380 [ 7652D6015D67F5B73F7426231FC2900C, D9ACD81D0029F2F89D0ACE8BB055B922955E5EAA8B78BB9979F44BAEF54FAA16 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSO.DLL 21:01:09.0454 0x1380 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSO.DLL - ok 21:01:09.0454 0x1380 [ 4213C13D04AC31B7CE1FB802C3A35A7F, 9BAAF61F2FB59A53AB50B9E8308966384D8F7609D96D9AE73146FA567B616FC0 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 21:01:09.0454 0x1380 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF - ok 21:01:09.0454 0x1380 [ 1387F4103D618FDA34FAA44D235DDF91, E875D5DF011634E3D294D7E575D66D7DB48CD489BC6D6B2FE161B129C95936BD ] C:\Program Files\Microsoft Office\Office14\1045\WWINTL.DLL 21:01:09.0454 0x1380 C:\Program Files\Microsoft Office\Office14\1045\WWINTL.DLL - ok 21:01:09.0464 0x1380 [ BE877D2AA3426286EC39787300349CEA, F396D93BC5181B5924A9B06C863DF8CA69274F61A5ED831E31ED4E8874C0037C ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1045\MSOINTL.DLL 21:01:09.0464 0x1380 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1045\MSOINTL.DLL - ok 21:01:09.0464 0x1380 [ 00000000000000000000000000000000, 0000000000000000000000000000000000000000000000000000000000000000 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSORES.DLL 21:01:09.0464 0x1380 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSORES.DLL - ok 21:01:09.0474 0x1380 [ 7587302F2BC0D52E32DBDDBDCA521297, 367685D65E9A80B4DF79A053BFB082C35D2649CCF1CAA0B0482D0996517521F2 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSPTLS.DLL 21:01:09.0474 0x1380 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSPTLS.DLL - ok 21:01:09.0474 0x1380 [ 9EDED3003B7BC304320FF5AD39EA6CDE, CF00F2EAA3917D52C86AC7E2A7686C59DC32044888555696FC3939C43ACD7043 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\RICHED20.DLL 21:01:09.0474 0x1380 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\RICHED20.DLL - ok 21:01:09.0484 0x1380 [ 8C362BC4687838891922DBD00D622ACD, 383FF92CF608B77A1E5E24D65F2089D8B22C1594B58F0F86994322586FE5CEDE ] C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPC.DLL 21:01:09.0484 0x1380 C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPC.DLL - ok 21:01:09.0484 0x1380 [ 48041BAEB60CE5F34F13CC2A1361E49C, AF82355A4C0D872F1F45261381C23C1510C2C77DD5F040B706FD7A3D63D4BAA4 ] C:\Windows\System32\mssph.dll 21:01:09.0484 0x1380 C:\Windows\System32\mssph.dll - ok 21:01:09.0484 0x1380 [ 51483366746B7B813987EE7F9A33299E, D29491A1DEB8EF78F73C8120963EB9A32B123683DC81BFC08FB8B2BD885B1198 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\USP10.DLL 21:01:09.0484 0x1380 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\USP10.DLL - ok 21:01:09.0494 0x1380 [ 4CDBA05E0054802757CA355437C04EBD, C4ADC81632FC4152A16E60BB273BF8D96D1A4DA549586792F9EBD058D2DF41F8 ] C:\Program Files\Common Files\Microsoft Shared\Filters\offfiltx.dll 21:01:09.0494 0x1380 C:\Program Files\Common Files\Microsoft Shared\Filters\offfiltx.dll - ok 21:01:09.0494 0x1380 [ FF2B106909EED48C536DA04742C0324A, 7FEE709C0E37747412C3420EC2622F23F1CD87473D0A5890F2752E8F0B76D3E0 ] C:\Windows\System32\Query.dll 21:01:09.0494 0x1380 C:\Windows\System32\Query.dll - ok 21:01:09.0504 0x1380 [ 964322E8D146AD6FAEE2F6AA0006BDEC, 95BB5C4633E4ECE61AE284DE25DB58A493CCB6F1D3EED28A55FE9C93E08E66D3 ] C:\MSOCache\All Users\microsoft.watson.watsonrc14.data\WatsonRC.dat 21:01:09.0504 0x1380 C:\MSOCache\All Users\microsoft.watson.watsonrc14.data\WatsonRC.dat - ok 21:01:09.0504 0x1380 [ 1D89B7C00D6CAEA48CF64617D6CEB899, 3B3645B7A1870021CBA71E5DEFD643E02762FAD3294A107F9F2733B320B3C443 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\msoshext.dll 21:01:09.0504 0x1380 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\msoshext.dll - ok 21:01:09.0504 0x1380 [ 23380F5377CF1D42F8CF3F23A6BCC929, ED7D45DF956DF795BDF32EC662782BD4E0075A06277E040F0EDCA2082FC0C31E ] C:\Program Files\Microsoft Office\Office14\msproof7.dll 21:01:09.0504 0x1380 C:\Program Files\Microsoft Office\Office14\msproof7.dll - ok 21:01:09.0514 0x1380 [ A86D8A1A0066BFC2E2ABA0122EDBF597, A4D28765A8A066FBB65822BF35C3B0A3FAD60753E663F3B9C62290734AD27FCC ] C:\Program Files\Microsoft Office\Office14\MSOHEV.DLL 21:01:09.0514 0x1380 C:\Program Files\Microsoft Office\Office14\MSOHEV.DLL - ok 21:01:09.0524 0x1380 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 21:01:09.0524 0x1380 C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE - ok 21:01:09.0524 0x1380 [ F62175F3B0CF55742A2085516F1B9BEC, 2A544298ABD8A9C386E902D85F4827AA03CC9514CAB23E79F8531CF65E368BBF ] C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPOBJS.DLL 21:01:09.0524 0x1380 C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPOBJS.DLL - ok 21:01:09.0524 0x1380 [ 76D86E65FF7D10292886A1F2DB93A911, D83CF27E338FEF4967CE0B1D28FE60CEF986D275781FC013531E54B328C4B9A3 ] C:\Windows\System32\ELSCore.dll 21:01:09.0524 0x1380 C:\Windows\System32\ELSCore.dll - ok 21:01:09.0534 0x1380 [ 12929BDE96189F4E968AD035573424F0, 27FBB49F6ED6722A0C43E270E7678EFE9950BD913760DB33D5C10AFAB99417FC ] C:\Windows\System32\elsTrans.dll 21:01:09.0534 0x1380 C:\Windows\System32\elsTrans.dll - ok 21:01:09.0534 0x1380 [ AEE087CF7423BA44CC2DE03CC565E399, 8C1C59D438C0C28E1B7B078C3EA030F6C4A7CBC3B1306D673B0A2EA0AAB2B953 ] C:\Windows\System32\elslad.dll 21:01:09.0534 0x1380 C:\Windows\System32\elslad.dll - ok 21:01:09.0544 0x1380 [ 164647BBD819458CE5AA8A8C097B83AC, DF3CA7ECE8045B3DEAF963AE9F99170927AB28EC823517DB652AE2CF81B6EA02 ] C:\Windows\System32\NlsData0007.dll 21:01:09.0544 0x1380 C:\Windows\System32\NlsData0007.dll - ok 21:01:09.0544 0x1380 [ 37A2FBCBD0AF846BEF609CBEB61EEA68, FD686224D7B85F8908487FD5D5318F06B1AA6828B3940EE9F8AFB219AAB280E9 ] C:\Windows\System32\NlsLexicons0007.dll 21:01:09.0544 0x1380 C:\Windows\System32\NlsLexicons0007.dll - ok 21:01:09.0544 0x1380 [ 0EF845AF06AE5F34BA8F9B397A98BE3A, 94B1BFEEA829BD99768126E2F6CBBCBE13B46FC67B1EA0B6F01EDD817D779D51 ] C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPCEXT.DLL 21:01:09.0544 0x1380 C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPCEXT.DLL - ok 21:01:09.0554 0x1380 [ 0C8DCAFA0CFF1D6AD26BDE300C040F3D, 30B7F41142AB9B3430D9EC6C3BF35E17BA5178949E30D6F1012A436E8D408FA3 ] C:\Program Files\Microsoft Office\Office14\GKWord.dll 21:01:09.0554 0x1380 C:\Program Files\Microsoft Office\Office14\GKWord.dll - ok 21:01:09.0554 0x1380 [ 08360AF9178A2436B6DD98815031DA56, EFB6D0039864B133AC3C075D8A73ACB1E32A0C481BA7803154AADC98466D7773 ] C:\Program Files\Common Files\System\ado\msadox.dll 21:01:09.0554 0x1380 C:\Program Files\Common Files\System\ado\msadox.dll - ok 21:01:09.0564 0x1380 [ F009748D65912D9A5BFD7F7B2CF3820C, F83B6E559EAA7AB182BA0DC1CC316E1931B262E9476DAA56E0CDD2948E50BC51 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Csi.dll 21:01:09.0564 0x1380 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Csi.dll - ok 21:01:09.0564 0x1380 [ 3D5BEF636F6FC5348956662C24DD174F, D6715472B09E36BD4848DEEFB3B7F793EA88A664C5B3CDC9665A55153CA1A6DD ] C:\Program Files\Microsoft Office\Office14\IEAWSDC.DLL 21:01:09.0564 0x1380 C:\Program Files\Microsoft Office\Office14\IEAWSDC.DLL - ok 21:01:09.0564 0x1380 [ 23D2641A27AE3E0337AB3C0B3F3E317B, 065A0FF977A69675CB1C8EF44D922057E904BB8EC50958F271AD5EDB04D2FE50 ] C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7PL.DLL 21:01:09.0564 0x1380 C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7PL.DLL - ok 21:01:09.0574 0x1380 [ 1A85913CCED82BEA1E2233D17FCA5368, B7D690C16F0F3F177FCBCED6C1021AFDA275F7DEFC92FB2D3396A4FD3C64DAF7 ] C:\Program Files\Common Files\Microsoft Shared\PROOF\MSLID.DLL 21:01:09.0574 0x1380 C:\Program Files\Common Files\Microsoft Shared\PROOF\MSLID.DLL - ok 21:01:09.0574 0x1380 [ 97548D6969BC66D01B89E1F80B35E83E, C35A02C495F0A72FD4ACF776A913788A1B2249187254C9E78164296BB5C2D450 ] C:\Windows\System32\spool\drivers\x64\3\CNMDRAW.DLL 21:01:09.0574 0x1380 C:\Windows\System32\spool\drivers\x64\3\CNMDRAW.DLL - ok 21:01:09.0574 0x1380 [ DEAB2B98FFC24E784D6B81BFD42130F7, 7D6C851A246732D7532651662AED162F758BDF3B6B86190CECB9A5B8C317BFF1 ] C:\Windows\System32\spool\drivers\x64\3\CNMUIAW.DLL 21:01:09.0574 0x1380 C:\Windows\System32\spool\drivers\x64\3\CNMUIAW.DLL - ok 21:01:09.0584 0x1380 [ 59439BB214C52F2C07BC01DECE8F6026, E7FD597228D1F21CE7B6004D8DF1797378C549AB97D5ABE4BF071AF11F2101C2 ] C:\Windows\System32\spool\drivers\x64\3\CNMCPAW.DLL 21:01:09.0584 0x1380 C:\Windows\System32\spool\drivers\x64\3\CNMCPAW.DLL - ok 21:01:09.0584 0x1380 [ 2A9DA9E7462EBA3F6D2036E8D18FF773, 254404FEAD009B1C41016ADAFEBDB6F6F5ABC7E65B3976FFEC85F287B53812BB ] C:\Program Files\Internet Explorer\iexplore.exe 21:01:09.0584 0x1380 C:\Program Files\Internet Explorer\iexplore.exe - ok 21:01:09.0594 0x1380 [ 98904A9D4F328964DE42D5B6356E95AA, F9B864380BE8210CD7D45D80092F1A3774466A6B3C47834D250B3A9FC5986EA9 ] C:\Program Files\Internet Explorer\IEShims.dll 21:01:09.0594 0x1380 C:\Program Files\Internet Explorer\IEShims.dll - ok 21:01:09.0594 0x1380 [ 027675ED9B34EE1B91505C3B8752649F, 78EF98AFB0EE1B680EC8B7BE40ABD87979F09534A49CDA576258BDB4CB4E29C0 ] C:\Windows\System32\Wpc.dll 21:01:09.0594 0x1380 C:\Windows\System32\Wpc.dll - ok 21:01:09.0594 0x1380 [ 8EF01E2EF21D41A23FF70B28179F9ABE, AE9ECF0FBD83DAED18AE339A0B3A0D53103E27876817FD1DD98BE36B2DE31A9B ] C:\Windows\System32\ieui.dll 21:01:09.0594 0x1380 C:\Windows\System32\ieui.dll - ok 21:01:09.0604 0x1380 [ 60615556453AC8A1CA08AD0CF832A92B, F38D6731A7ECBF8233FB059B79746A1057C91EDBC478FF11CE628665A9F48FA5 ] C:\Program Files (x86)\Internet Explorer\IEShims.dll 21:01:09.0604 0x1380 C:\Program Files (x86)\Internet Explorer\IEShims.dll - ok 21:01:09.0604 0x1380 [ 8CF7579967B8F3E55E583B1287DC6CAF, 76DCE06DD743FE6FAED1A517B920CEEDBD1665B1C8570D8305812976096D241B ] C:\Program Files (x86)\Internet Explorer\ieproxy.dll 21:01:09.0604 0x1380 C:\Program Files (x86)\Internet Explorer\ieproxy.dll - ok 21:01:09.0614 0x1380 [ CF9D05678B02B44FBC8D8AD8C9F30D58, 4715B58CC59AB9DFEBC7A6F5531D5768E6A496F0A06A26969591147B821579F1 ] C:\Windows\SysWOW64\ieui.dll 21:01:09.0614 0x1380 C:\Windows\SysWOW64\ieui.dll - ok 21:01:09.0614 0x1380 [ 14800BD31701A5047AC3145BB1E698AE, 05B4E33B14B9623EE065634708D9C4CDC7226146F9614C4F374E6B097BB35A50 ] C:\Windows\SysWOW64\d2d1.dll 21:01:09.0614 0x1380 C:\Windows\SysWOW64\d2d1.dll - ok 21:01:09.0624 0x1380 [ AFAE500700277EACFBEBCBC7DB15CD49, 1C33962DD37BBB3C11D43845A2D14FB28CFE68C722502FB656D02AE9B9EA8681 ] C:\Program Files (x86)\Internet Explorer\sqmapi.dll 21:01:09.0624 0x1380 C:\Program Files (x86)\Internet Explorer\sqmapi.dll - ok 21:01:09.0624 0x1380 [ 1C0E369575F387460E2A5F28269B2CC4, 96F26EF7483F9EB7B79DFCF50BB0261B981322BF8FB9F239D617FEACCEC466C8 ] C:\Windows\SysWOW64\DWrite.dll 21:01:09.0624 0x1380 C:\Windows\SysWOW64\DWrite.dll - ok 21:01:09.0624 0x1380 [ D4F264FE23F8953D840904418220C15E, 72EAF30265A0CC88DEC0FCA7869734D8C93572457C61A2BF1BDFFB20C061DBCD ] C:\Windows\SysWOW64\dxgi.dll 21:01:09.0624 0x1380 C:\Windows\SysWOW64\dxgi.dll - ok 21:01:09.0634 0x1380 [ 6DE66FE7C526637E74CD066461C7C871, 7E8980A3751762180D795EAC38458303BEAF8D1F85AB5F2D10D9CE7013090CBE ] C:\Windows\SysWOW64\d3d11.dll 21:01:09.0634 0x1380 C:\Windows\SysWOW64\d3d11.dll - ok 21:01:09.0634 0x1380 [ B22E4B04C4B65F896DBBA64781864354, 6581FAA3A2BDDBF4FAFAEFDFFFF712894CC1C386A0E3DB33282659F92A169F92 ] C:\Program Files (x86)\XTab\SupTab.dll 21:01:09.0634 0x1380 C:\Program Files (x86)\XTab\SupTab.dll - ok 21:01:09.0634 0x1380 [ 9630D4024D5F258F8D9963C256120664, A58A1D442081C25EB5BCBB43838BF2762C1888F9DECF28629FAD3F9C3757AE24 ] C:\Windows\SysWOW64\atiuxpag.dll 21:01:09.0634 0x1380 C:\Windows\SysWOW64\atiuxpag.dll - ok 21:01:09.0644 0x1380 [ 179DF179AE7DE30E23DD937DAEDB646A, DCF9D15004C0CFD2A3E3A0E00F68ABAC94863F984FDDE6EBB22890A82E4819DF ] C:\Windows\SysWOW64\atidxx32.dll 21:01:09.0644 0x1380 C:\Windows\SysWOW64\atidxx32.dll - ok 21:01:09.0644 0x1380 [ 14BA910E7731FC84EB85328BD0F1EE81, 94EA2B3187ADC343F47343FB7A4D130DE3AF2AB7D8913A3D48CD8E9D1488E578 ] C:\Windows\System32\msfeeds.dll 21:01:09.0644 0x1380 C:\Windows\System32\msfeeds.dll - ok 21:01:09.0654 0x1380 [ CA16936E9D8CD20C1A160C1AE4473745, 6ECFFCFAA5A195528B506EB59F9241BEB7C31F6D40D522BD776C794778C98D46 ] C:\Windows\System32\Macromed\Flash\Flash64_11_9_900_170.ocx 21:01:09.0654 0x1380 C:\Windows\System32\Macromed\Flash\Flash64_11_9_900_170.ocx - ok 21:01:09.0654 0x1380 [ 0E85C11F8850D524B02181C6E02BA9AE, 8703566931067CCF949E9779E4D328DD21210329DD687459300C83DDD06390A8 ] C:\Windows\SysWOW64\dsound.dll 21:01:09.0654 0x1380 C:\Windows\SysWOW64\dsound.dll - ok 21:01:09.0664 0x1380 [ 5005CC3B8A158BEBCADB06940E5292B4, C875AF679C661AFD828CEDC181E1BEF0CC90650D0C6E7F5B1AAB1ADE5FC12EE8 ] C:\Windows\SysWOW64\dmusic.dll 21:01:09.0664 0x1380 C:\Windows\SysWOW64\dmusic.dll - ok 21:01:09.0664 0x1380 [ 9C67F6BBDA3881CFD02095160CF91576, 6CE97C6F0AD8BE183DE935A7AAB7D46821E8DE9E55A4BFF54ACB49D056826A94 ] C:\Windows\SysWOW64\ksuser.dll 21:01:09.0664 0x1380 C:\Windows\SysWOW64\ksuser.dll - ok 21:01:09.0664 0x1380 [ D205C24A9D069049FE2DF2A1B38726A7, B98F420B57A34FDA24F9A655319245EEF86EF4A952014FFA018070A01D5CBC4C ] C:\Windows\SysWOW64\wdmaud.drv 21:01:09.0664 0x1380 C:\Windows\SysWOW64\wdmaud.drv - ok 21:01:09.0674 0x1380 [ 243974EC02F7AE49E4179C54624143AB, 755FA67F7BF10E3C6336788D297FBAA70F28F630852A43A78D3F7D7E3A7ECED0 ] C:\Windows\SysWOW64\MMDevAPI.dll 21:01:09.0674 0x1380 C:\Windows\SysWOW64\MMDevAPI.dll - ok 21:01:09.0674 0x1380 [ 139D3AB6AA920C34C50CBFFB9EB7D222, 5A5D205E16E6AFDCC965E4144FE6E104157DE7541D31727520363F2670513940 ] C:\Windows\SysWOW64\avrt.dll 21:01:09.0674 0x1380 C:\Windows\SysWOW64\avrt.dll - ok 21:01:09.0674 0x1380 [ 8EE6BDE1D572677AA35707C52C585F75, 588A08C0FC3881186CD673F749E46A154F58BE39CA7AE8A2E1F25539B2299752 ] C:\Windows\SysWOW64\mlang.dll 21:01:09.0674 0x1380 C:\Windows\SysWOW64\mlang.dll - ok 21:01:09.0684 0x1380 [ F728E7E9937117E0F32F39840EB6D737, 9D912120D7F428C2A4A454DD21DB16722612EC32C8A97C205A539BF8D0268A8F ] C:\Windows\SysWOW64\jscript9.dll 21:01:09.0684 0x1380 C:\Windows\SysWOW64\jscript9.dll - ok 21:01:09.0684 0x1380 [ 41AFA61E061E98E97272AC02184C8C2C, D54100F014C8451D2AE357E7FC2F751ACDE4751442BFFAE9E792E5279FA31AC9 ] C:\Windows\SysWOW64\ieapfltr.dll 21:01:09.0684 0x1380 C:\Windows\SysWOW64\ieapfltr.dll - ok 21:01:09.0684 0x1380 [ 1D1EAA16D193C6A2D45981ED3914D22A, 587228942AA867FBA0D2A04F52A3431F33453B2C2735E4C45D621A4358BB9BB0 ] C:\Windows\SysWOW64\msimtf.dll 21:01:09.0684 0x1380 C:\Windows\SysWOW64\msimtf.dll - ok 21:01:09.0694 0x1380 [ FD861EFCABFD56CD2181EA60545A9666, 56EFE5A23196BE87658096E74A71480C085EC32FC338A11ED2E2818420443524 ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\x64\TosBtExt.dll 21:01:09.0694 0x1380 C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\sys\x64\TosBtExt.dll - ok 21:01:09.0694 0x1380 [ 4E81439902079C348B61D7FF027FE147, E652C9EC77745504689532B3C394959F9B5BC29E9C008CB9EE09CDA818514FA9 ] C:\Windows\System32\StructuredQuery.dll 21:01:09.0694 0x1380 C:\Windows\System32\StructuredQuery.dll - ok 21:01:09.0704 0x1380 [ 4715F8F8CDBFFF2728BA38B789A1D7C7, 70E6F51636CFF04FCB5AD95968AC4771BEFE2D205DB7E34681F02DBE24C9CF39 ] C:\Windows\System32\wpdshext.dll 21:01:09.0704 0x1380 C:\Windows\System32\wpdshext.dll - ok 21:01:09.0704 0x1380 [ 03AB2A2E426C2AD400AC8315226347F8, 71B2628163471D3D8C5681CA7BBAFC03C6EAA499707513FDBDEC009F0EB32E77 ] C:\Windows\System32\EhStorAPI.dll 21:01:09.0704 0x1380 C:\Windows\System32\EhStorAPI.dll - ok 21:01:09.0704 0x1380 [ 84CD0CE489601C5A46517E1A1A9CBB87, C9996F9379B2EE6098A2C0E31E3D616A3F64E20F183EACE9977C7738F4D94103 ] C:\Users\admin\Downloads\SPTDinst-v186-x64.exe 21:01:09.0704 0x1380 C:\Users\admin\Downloads\SPTDinst-v186-x64.exe - ok 21:01:09.0714 0x1380 [ F3CAF31BA4288EDE917D3CF6C2B1EF72, AF0FE4D1ADA016B542A33418D133C63FFBA54B5820905111C83BABEADBD37745 ] C:\Windows\Installer\{90140000-0012-0000-1000-0000000FF1CE}\wordicon.exe 21:01:09.0714 0x1380 C:\Windows\Installer\{90140000-0012-0000-1000-0000000FF1CE}\wordicon.exe - ok 21:01:09.0714 0x1380 [ DD55080C38BF607930A99950B95B0814, 4197EA9100675E349849D13ED144F9E88E0039DAEBB6D2DB343A3E424CA79CD9 ] C:\Users\admin\Downloads\FRST64.exe 21:01:09.0714 0x1380 C:\Users\admin\Downloads\FRST64.exe - ok 21:01:09.0724 0x1380 [ 0686F152CAD912514A849F46EA665F1C, 17E3ED06644BF4EA2093AB700A516F29E81BEF7129145100282832BB735ADF0A ] C:\Program Files\WinRAR\WinRAR.exe 21:01:09.0724 0x1380 C:\Program Files\WinRAR\WinRAR.exe - ok 21:01:09.0724 0x1380 [ 9C5DAAED3B3C06DBC95228CC407B8B70, E306E5C4A1C0D4B63840E38098B9FF2F4267FA4F519C7841E5A0C25A8DFF96D8 ] C:\Users\admin\Downloads\tdsskiller.exe 21:01:09.0724 0x1380 C:\Users\admin\Downloads\tdsskiller.exe - ok 21:01:09.0734 0x1380 [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{9388E6FB-EA3F-4E54-852A-BE8614BB23E7}.tmp 21:01:09.0734 0x1380 C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{9388E6FB-EA3F-4E54-852A-BE8614BB23E7}.tmp - ok 21:01:09.0734 0x1380 [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{7ECDFB85-D0A0-4638-8FB8-2CE51E84CEAD}.tmp 21:01:09.0734 0x1380 C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{7ECDFB85-D0A0-4638-8FB8-2CE51E84CEAD}.tmp - ok 21:01:09.0734 0x1380 [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{DF5F4EE3-2324-4DE3-9D48-51DA2DFF78D8}.tmp 21:01:09.0734 0x1380 C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{DF5F4EE3-2324-4DE3-9D48-51DA2DFF78D8}.tmp - ok 21:01:09.0744 0x1380 [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{288EFEC2-1AC7-47C3-959A-07677F45450A}.tmp 21:01:09.0744 0x1380 C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{288EFEC2-1AC7-47C3-959A-07677F45450A}.tmp - ok 21:01:09.0744 0x1380 [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{F2F54DE7-DCFE-4CC6-85F7-D466E687159A}.tmp 21:01:09.0744 0x1380 C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{F2F54DE7-DCFE-4CC6-85F7-D466E687159A}.tmp - ok 21:01:09.0754 0x1380 [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{60777E29-1CA6-4EBC-A787-F2E8E4681483}.tmp 21:01:09.0754 0x1380 C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{60777E29-1CA6-4EBC-A787-F2E8E4681483}.tmp - ok 21:01:09.0754 0x1380 [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{B3782827-EBBF-426C-B508-DA199ED9BF6F}.tmp 21:01:09.0754 0x1380 C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{B3782827-EBBF-426C-B508-DA199ED9BF6F}.tmp - ok 21:01:09.0764 0x1380 [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{0A5CC9B5-885B-41C3-B684-46A973C19F9F}.tmp 21:01:09.0764 0x1380 C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{0A5CC9B5-885B-41C3-B684-46A973C19F9F}.tmp - ok 21:01:09.0764 0x1380 [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{D0DE25F2-5BA0-4212-8393-EA249B123E0D}.tmp 21:01:09.0764 0x1380 C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{D0DE25F2-5BA0-4212-8393-EA249B123E0D}.tmp - ok 21:01:09.0764 0x1380 [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{0B3A14D5-575B-44D8-AB2D-4D3207B0B8A3}.tmp 21:01:09.0764 0x1380 C:\Users\admin\AppData\Local\Temp\{66E576D3-9320-40D7-A329-D055E99B6F30}\{0B3A14D5-575B-44D8-AB2D-4D3207B0B8A3}.tmp - ok 21:01:09.0774 0x1380 ================ Scan generic autorun ====================== 21:01:09.0844 0x1380 [ 96655EA0176E90CFA9F6A149D6EC3B29, 1E451A45592F0E4D38BEA83965825FF54F2F7C67B47F0179CE080A73CC6C375B ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe 21:01:09.0874 0x1380 Adobe Reader Speed Launcher - ok 21:01:10.0014 0x1380 [ 3E04F1E482357B1FC8B088197C3D9FF8, 85524ADDC27ADC831EBBD24E079B412CFDC69E5F594BD153319087665A28D546 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe 21:01:10.0044 0x1380 Adobe ARM - ok 21:01:10.0144 0x1380 [ 1761994889C7F3417A932BED013B837A, C046DAFBE7B61679C336662DDFEC5FBBBF6BC881689538D22A650C6F942F2E0C ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe 21:01:10.0214 0x1380 StartCCC - detected UnsignedFile.Multi.Generic ( 1 ) 21:01:12.0841 0x1380 Detect skipped due to KSN trusted 21:01:12.0841 0x1380 StartCCC - ok 21:01:12.0911 0x1380 [ CE7648AF53E26CEB484F54866F195328, 0A9A563A83296A54EE3DD7AD8EB2FC6B50E329439C367B506592147214C0AA0E ] C:\Program Files (x86)\TOSHIBA\PasswordUtility\TOSDCR.exe 21:01:12.0931 0x1380 TOSDCR - ok 21:01:13.0051 0x1380 [ 2DBD3E7DBC5BA386F1A66A224AD6665F, B2B7365E1880729CD9D68F23CEEA482D2A46EE47AE1997E119A71095D5B052F5 ] C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe 21:01:13.0121 0x1380 TWebCamera - ok 21:01:13.0171 0x1380 [ B9FBE2C4DE9A72E8997697C8D5CAD009, EF2F8C2D4AE2D45232C97D60734B398E3EC59245702F4B5D3D7E5077DBF83B1D ] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe 21:01:13.0181 0x1380 ITSecMng - ok 21:01:13.0221 0x1380 [ 88DF08E9C0328F6ADB6E7AF16D0D103B, 51620EC567813CCE8297A02F316B9A0C5F3849E96E69F5DFCA3DBC350FAF34E8 ] C:\Program Files (x86)\TOSHIBA\TNRotate\TNRotate.exe 21:01:13.0241 0x1380 TNRotate - ok 21:01:13.0271 0x1380 [ BB752714D14CB1F13969D721F1A3A60F, 32B95C75704BE37B349E0493AA8D2FCDAE8007275124646125650456D3A1563F ] C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe 21:01:13.0291 0x1380 TSleepSrv - ok 21:01:13.0361 0x1380 [ D8AD99678FACE844F6975C8E54C4DC1E, DA8C59FB22041CAF7813A64EB111FEF8134FA030C1800B3D9AB6F72A2A031DC1 ] C:\Program Files (x86)\TOSHIBA\Sync Utility\TosSyncScheduler.exe 21:01:13.0381 0x1380 TSUScheduler - ok 21:01:13.0431 0x1380 [ 19D2338238969458981F8C042A40C093, 4F067C550006B34731F30742E95A6371B47A9F190188C06E4F214FC3F45D5B28 ] C:\Program Files (x86)\Smart File Advisor\sfa.exe 21:01:13.0441 0x1380 Smart File Advisor - ok 21:01:13.0501 0x1380 [ 94A4D6915D4F572309DF6137E1846528, E46BDF83CAA6683AA655DBA3D2C8DC7AC06251E952466A20CFDA3A16B1840455 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe 21:01:13.0511 0x1380 APSDaemon - ok 21:01:13.0521 0x1380 {8C91FBE1-4D88-492D-96C1-2B4D407097FA} - ok 21:01:13.0591 0x1380 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 21:01:13.0651 0x1380 Sidebar - ok 21:01:13.0721 0x1380 [ 446E4DE3F5C4FD2A3956DCEDF82DEEC9, 6D628699551000C785B5BC399021D5A4E27235D4B57A1FBB8DE47E577A0F6B5D ] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe 21:01:13.0751 0x1380 TOPI.EXE - ok 21:01:13.0771 0x1380 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 21:01:13.0791 0x1380 mctadmin - ok 21:01:13.0821 0x1380 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 21:01:13.0861 0x1380 Sidebar - ok 21:01:13.0891 0x1380 [ 446E4DE3F5C4FD2A3956DCEDF82DEEC9, 6D628699551000C785B5BC399021D5A4E27235D4B57A1FBB8DE47E577A0F6B5D ] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe 21:01:13.0911 0x1380 TOPI.EXE - ok 21:01:13.0921 0x1380 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 21:01:13.0941 0x1380 mctadmin - ok 21:01:13.0961 0x1380 [ 446E4DE3F5C4FD2A3956DCEDF82DEEC9, 6D628699551000C785B5BC399021D5A4E27235D4B57A1FBB8DE47E577A0F6B5D ] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe 21:01:13.0991 0x1380 TOPI.EXE - ok 21:01:14.0041 0x1380 [ 5D61BE7DB55B026A5D61A3EED09D0EAD, D32CC7B31A6F98C60ABC313ABC7D1143681F72DE2BB2604711A0BA20710CAAAE ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe 21:01:14.0061 0x1380 swg - ok 21:01:14.0161 0x1380 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe 21:01:14.0181 0x1380 Google Update - ok 21:01:14.0391 0x1380 [ 592989A426AE8BD543816906B4E404B6, B7F01FE740EAAE2DF8A5F2FEB90DAA531711B9C78B03BCBFA89CABD445310658 ] C:\Program Files (x86)\YouTube Accelerator\YouTubeAccelerator.exe 21:01:14.0451 0x1380 GoobzoYouTubeAccelerator - ok 21:01:14.0521 0x1380 [ 432BE6CF7311062633459EEF6B242FB5, 890C1734ED1EF6B2422A9B21D6205CF91E014ADD8A7F41AA5A294FCF60631A7B ] C:\Windows\SysWOW64\regsvr32.exe 21:01:14.0581 0x1380 YpPack - ok 21:01:14.0581 0x1380 Eltion - ok 21:01:14.0581 0x1380 Waiting for KSN requests completion. In queue: 21 21:01:15.0581 0x1380 Waiting for KSN requests completion. In queue: 21 21:01:16.0581 0x1380 Waiting for KSN requests completion. In queue: 21 21:01:17.0611 0x1380 AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.6.305.0 ), 0x60000 ( disabled : updated ) 21:01:17.0621 0x1380 Win FW state via NFP2: enabled 21:01:20.0171 0x1380 ============================================================ 21:01:20.0171 0x1380 Scan finished 21:01:20.0171 0x1380 ============================================================ 21:01:20.0191 0x139c Detected object count: 2 21:01:20.0191 0x139c Actual detected object count: 2 21:04:14.0752 0x139c C:\windows\System32\Drivers\1c2a86b7768b5cf3.sys - copied to quarantine 21:04:14.0772 0x139c HKLM\SYSTEM\ControlSet001\services\1c2a86b7768b5cf3 - will be deleted on reboot 21:04:14.0802 0x139c HKLM\SYSTEM\ControlSet002\services\1c2a86b7768b5cf3 - will be deleted on reboot 21:04:14.0942 0x139c C:\windows\System32\Drivers\1c2a86b7768b5cf3.sys - will be deleted on reboot 21:04:14.0942 0x139c 1c2a86b7768b5cf3 ( LockedFile.Multi.Generic ) - User select action: Delete 21:04:15.0042 0x139c C:\windows\Installer\{B13EA808-3A8F-8E31-3851-661E1839DC64}\syshost.exe - copied to quarantine 21:04:15.0042 0x139c HKLM\SYSTEM\ControlSet001\services\syshost32 - will be deleted on reboot 21:04:15.0062 0x139c HKLM\SYSTEM\ControlSet002\services\syshost32 - will be deleted on reboot 21:04:15.0082 0x139c C:\windows\Installer\{B13EA808-3A8F-8E31-3851-661E1839DC64}\syshost.exe - will be deleted on reboot 21:04:15.0082 0x139c syshost32 ( UDS:DangerousObject.Multi.Generic ) - User select action: Delete 21:04:15.0132 0x139c KLMD registered as C:\windows\system32\drivers\92502163.sys 21:04:57.0770 0x1b14 Deinitialize success