Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Cannot remove Win32.Downloader.gen


  • Please log in to reply
10 replies to this topic

#1 SwinnyA

SwinnyA

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:52 PM

Posted 02 August 2013 - 04:31 AM

Spybot is pulling up Malware: Win32.Downloader.gen: [SBI $82F4FAFD]  Data (File, nothing done) C:\END.  It refuses to let me remove it (Cannot create file "C:\Windows\wininit.ini". Access is denied.)  
The computer will not reboot to safe mode to try it in there - when safe mode is selected it reboots back to normal windows.

Avast, Comodo and Malware Bytes do not report it.

Any help would be gratefully recieved!

Andy

 

-------------------------

SpyBot Log:


--- Search result list ---
Win32.Downloader.gen: [SBI $82F4FAFD]  Data (File, nothing done)
  C:\END
  Properties.size=9
  Properties.md5=A103FDF7348130EF3F3FEF56B1700A27
  Properties.filedate=1352652757
  Properties.filedatetext=2012-11-11 17:52:37


--- Spybot - Search & Destroy version: 1.6.2  (build: 20090126) ---

2009-01-26 blindman.exe (1.0.0.8)
2009-01-26 SDFiles.exe (1.6.1.7)
2009-01-26 SDMain.exe (1.0.0.6)
2009-01-26 SDShred.exe (1.0.2.5)
2009-01-26 SDUpdate.exe (1.6.0.12)
2009-01-26 SDWinSec.exe (1.0.0.12)
2009-01-26 SpybotSD.exe (1.6.2.46)
2009-03-05 TeaTimer.exe (1.6.6.32)
2010-03-29 unins000.exe (51.49.0.0)
2009-01-26 Update.exe (1.6.0.7)
2009-11-04 advcheck.dll (1.6.5.20)
2007-04-02 aports.dll (2.1.0.0)
2008-06-14 DelZip179.dll (1.79.11.1)
2009-01-26 SDHelper.dll (1.6.2.14)
2008-06-19 sqlite3.dll
2009-01-26 Tools.dll (2.1.6.10)
2009-01-16 UninsSrv.dll (1.0.0.0)
2013-04-11 Includes\Adware.sbi (*)
2013-07-30 Includes\AdwareC.sbi (*)
2010-08-13 Includes\Cookies.sbi (*)
2012-11-14 Includes\Dialer.sbi (*)
2013-04-11 Includes\DialerC.sbi (*)
2013-04-11 Includes\HeavyDuty.sbi (*)
2012-11-14 Includes\Hijackers.sbi (*)
2013-04-11 Includes\HijackersC.sbi (*)
2012-11-14 Includes\iPhone.sbi (*)
2013-06-25 Includes\Keyloggers.sbi (*)
2013-04-11 Includes\KeyloggersC.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2013-05-29 Includes\Malware.sbi (*)
2013-07-31 Includes\MalwareC.sbi (*)
2012-11-14 Includes\PUPS.sbi (*)
2013-07-30 Includes\PUPSC.sbi (*)
2010-01-25 Includes\Revision.sbi (*)
2012-11-14 Includes\Security.sbi (*)
2013-04-11 Includes\SecurityC.sbi (*)
2008-06-03 Includes\Spybots.sbi (*)
2008-06-03 Includes\SpybotsC.sbi (*)
2013-05-22 Includes\Spyware.sbi (*)
2013-06-19 Includes\SpywareC.sbi (*)
2012-11-19 Includes\Tracks.uti
2013-01-16 Includes\Trojans.sbi (*)
2013-07-11 Includes\TrojansC-02.sbi (*)
2013-07-31 Includes\TrojansC-03.sbi (*)
2013-06-27 Includes\TrojansC-04.sbi (*)
2013-06-13 Includes\TrojansC-05.sbi (*)
2013-04-19 Includes\TrojansC.sbi (*)
2008-03-04 Plugins\Chai.dll
2008-03-05 Plugins\Fennel.dll
2008-02-26 Plugins\Mate.dll
2007-12-24 Plugins\TCPIPAddress.dll


Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.08.01.07

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 10.0.9200.16635
Andy :: ANDY-PC [administrator]

01/08/2013 19:31:01
mbam-log-2013-08-01 (19-31-01).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 208250
Time elapsed: 19 minute(s), 3 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 

 



BC AdBot (Login to Remove)

 


#2 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:52 AM

Posted 02 August 2013 - 04:48 AM

:welcome:

 

:step1:  Running TDSSKiller to obtain log

 

Note: Don't cure or delete a threat, but choose skip for all instead.

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters

tds2.jpg

  • In the Additional options: Check Detect TDLFS file system
  • Click Start Scan and allow the scan process to run

tds4-1.jpg

  • Choose for all threats to Skip for all of them.
  • Click Continue
  • Please post the TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)

===================================================

 

:step2:  ESET Online Scanner

==================

Note: If your AV is blocking Eset online scanner, please temporarily disable your AV.

 

I'd like us to scan your machine with ESET OnlineScan This process may may take several hours, that is normal.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and » UNCHECK "Remove found threats" <== Important
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply. (If no malware was found you will not be presented with a log).
  • Click the Back button.
  • Click the Finish button.

===================================================


Edited by GodfatherKing, 02 August 2013 - 04:48 AM.

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#3 SwinnyA

SwinnyA
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:52 PM

Posted 02 August 2013 - 02:01 PM

TDSS Killer:

 

19:58:26.0527 6448  TDSS rootkit removing tool 2.8.18.0 Jun 10 2013 21:44:19
19:58:27.0946 6448  ============================================================
19:58:27.0946 6448  Current date / time: 2013/08/02 19:58:27.0946
19:58:27.0946 6448  SystemInfo:
19:58:27.0946 6448  
19:58:27.0946 6448  OS Version: 6.1.7601 ServicePack: 1.0
19:58:27.0946 6448  Product type: Workstation
19:58:27.0946 6448  ComputerName: ANDY-PC
19:58:27.0946 6448  UserName: Andy
19:58:27.0946 6448  Windows directory: C:\Windows
19:58:27.0946 6448  System windows directory: C:\Windows
19:58:27.0946 6448  Processor architecture: Intel x86
19:58:27.0946 6448  Number of processors: 2
19:58:27.0946 6448  Page size: 0x1000
19:58:27.0946 6448  Boot type: Normal boot
19:58:27.0946 6448  ============================================================
19:58:29.0600 6448  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:58:29.0616 6448  ============================================================
19:58:29.0616 6448  \Device\Harddisk0\DR0:
19:58:29.0616 6448  MBR partitions:
19:58:29.0616 6448  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1388800, BlocksNum 0x240A5800
19:58:29.0616 6448  ============================================================
19:58:29.0678 6448  C: <-> \Device\Harddisk0\DR0\Partition1
19:58:29.0709 6448  ============================================================
19:58:29.0709 6448  Initialize success
19:58:29.0709 6448  ============================================================
19:58:56.0947 9828  ============================================================
19:58:56.0947 9828  Scan started
19:58:56.0947 9828  Mode: Manual; TDLFS;
19:58:56.0947 9828  ============================================================
19:58:57.0430 9828  ================ Scan system memory ========================
19:58:57.0430 9828  System memory - ok
19:58:57.0446 9828  ================ Scan services =============================
19:58:58.0179 9828  [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
19:58:58.0413 9828  1394ohci - ok
19:58:58.0538 9828  [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
19:58:58.0866 9828  ACPI - ok
19:58:58.0944 9828  [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
19:58:59.0162 9828  AcpiPmi - ok
19:58:59.0380 9828  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
19:58:59.0396 9828  AdobeARMservice - ok
19:58:59.0490 9828  [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:58:59.0490 9828  AdobeFlashPlayerUpdateSvc - ok
19:58:59.0552 9828  [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
19:58:59.0583 9828  adp94xx - ok
19:58:59.0739 9828  [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
19:58:59.0786 9828  adpahci - ok
19:58:59.0864 9828  [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
19:58:59.0880 9828  adpu320 - ok
19:58:59.0958 9828  [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
19:58:59.0958 9828  AeLookupSvc - ok
19:59:00.0004 9828  [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD             C:\Windows\system32\drivers\afd.sys
19:59:00.0504 9828  AFD - ok
19:59:00.0613 9828  [ 6416F9B6B220F0A890525C38235AFAD7 ] AgereModemAudio C:\Program Files\LSI SoftModem\agrsmsvc.exe
19:59:00.0987 9828  AgereModemAudio - ok
19:59:01.0050 9828  [ FAA5A0B80E011464C7654851CE3D7FE7 ] AgereSoftModem  C:\Windows\system32\DRIVERS\AGRSM.sys
19:59:01.0096 9828  AgereSoftModem - ok
19:59:01.0159 9828  [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440          C:\Windows\system32\drivers\agp440.sys
19:59:01.0174 9828  agp440 - ok
19:59:01.0237 9828  [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx         C:\Windows\system32\DRIVERS\djsvs.sys
19:59:01.0252 9828  aic78xx - ok
19:59:01.0346 9828  [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG             C:\Windows\System32\alg.exe
19:59:01.0362 9828  ALG - ok
19:59:01.0408 9828  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide          C:\Windows\system32\drivers\aliide.sys
19:59:01.0408 9828  aliide - ok
19:59:01.0502 9828  [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
19:59:01.0518 9828  amdagp - ok
19:59:01.0549 9828  [ CD5914170297126B6266860198D1D4F0 ] amdide          C:\Windows\system32\drivers\amdide.sys
19:59:01.0564 9828  amdide - ok
19:59:01.0642 9828  [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
19:59:01.0642 9828  AmdK8 - ok
19:59:01.0674 9828  [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
19:59:01.0720 9828  AmdPPM - ok
19:59:01.0767 9828  [ D320BF87125326F996D4904FE24300FC ] amdsata         C:\Windows\system32\drivers\amdsata.sys
19:59:02.0048 9828  amdsata - ok
19:59:02.0126 9828  [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
19:59:02.0188 9828  amdsbs - ok
19:59:02.0251 9828  [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
19:59:02.0485 9828  amdxata - ok
19:59:02.0578 9828  [ AEA177F783E20150ACE5383EE368DA19 ] AppID           C:\Windows\system32\drivers\appid.sys
19:59:02.0859 9828  AppID - ok
19:59:02.0984 9828  [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
19:59:02.0984 9828  AppIDSvc - ok
19:59:03.0078 9828  [ EACFDF31921F51C097629F1F3C9129B4 ] Appinfo         C:\Windows\System32\appinfo.dll
19:59:03.0561 9828  Appinfo - ok
19:59:03.0624 9828  [ 2932004F49677BD84DBC72EDB754FFB3 ] arc             C:\Windows\system32\DRIVERS\arc.sys
19:59:03.0639 9828  arc - ok
19:59:03.0686 9828  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
19:59:03.0686 9828  arcsas - ok
19:59:03.0795 9828  [ 4AF5F360BA1E8794D32B366E45A64A0A ] aswFsBlk        C:\Windows\system32\drivers\aswFsBlk.sys
19:59:03.0982 9828  aswFsBlk - ok
19:59:04.0092 9828  [ 1F7094D4268D46F718C51286DC189791 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
19:59:04.0388 9828  aswMonFlt - ok
19:59:04.0482 9828  [ FFE9A993B3EC2908FECB1DF2C39148BB ] aswRdr          C:\Windows\System32\Drivers\aswrdr2.sys
19:59:04.0684 9828  aswRdr - ok
19:59:04.0762 9828  [ B680134BA1813B78B47FDD1DFF223CA5 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
19:59:04.0934 9828  aswRvrt - ok
19:59:05.0168 9828  [ CCD565A8A72AF7D45F9A242013870926 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
19:59:05.0449 9828  aswSnx - ok
19:59:05.0542 9828  [ 937300BC7C4CDF7576BCCE44E19BBB9D ] aswSP           C:\Windows\system32\drivers\aswSP.sys
19:59:05.0776 9828  aswSP - ok
19:59:05.0854 9828  [ 1F71F170D90E42EFDE9633D81D5E12DC ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
19:59:06.0057 9828  aswTdi - ok
19:59:06.0244 9828  [ 8CFAA2B965773A653F48F1207A9CB9C4 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
19:59:06.0432 9828  aswVmm - ok
19:59:06.0510 9828  [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
19:59:06.0510 9828  AsyncMac - ok
19:59:06.0650 9828  [ 338C86357871C167A96AB976519BF59E ] atapi           C:\Windows\system32\drivers\atapi.sys
19:59:06.0666 9828  atapi - ok
19:59:06.0868 9828  [ 8B412DDC62A0510767C5D48192EE1324 ] athr            C:\Windows\system32\DRIVERS\athr.sys
19:59:07.0352 9828  athr - ok
19:59:07.0508 9828  [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:59:08.0257 9828  AudioEndpointBuilder - ok
19:59:08.0350 9828  [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
19:59:08.0366 9828  Audiosrv - ok
19:59:08.0491 9828  [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
19:59:08.0491 9828  avast! Antivirus - ok
19:59:08.0600 9828  [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
19:59:08.0850 9828  AxInstSV - ok
19:59:08.0959 9828  [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbdx.sys
19:59:08.0990 9828  b06bdrv - ok
19:59:09.0099 9828  [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
19:59:09.0099 9828  b57nd60x - ok
19:59:09.0255 9828  [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC          C:\Windows\System32\bdesvc.dll
19:59:09.0255 9828  BDESVC - ok
19:59:09.0349 9828  [ 505506526A9D467307B3C393DEDAF858 ] Beep            C:\Windows\system32\drivers\Beep.sys
19:59:09.0380 9828  Beep - ok
19:59:09.0474 9828  [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE             C:\Windows\System32\bfe.dll
19:59:09.0895 9828  BFE - ok
19:59:09.0942 9828  [ E585445D5021971FAE10393F0F1C3961 ] BITS            C:\Windows\System32\qmgr.dll
19:59:10.0332 9828  BITS - ok
19:59:10.0347 9828  [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
19:59:10.0363 9828  blbdrive - ok
19:59:10.0410 9828  [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
19:59:10.0675 9828  bowser - ok
19:59:10.0722 9828  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:59:10.0722 9828  BrFiltLo - ok
19:59:10.0753 9828  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:59:10.0753 9828  BrFiltUp - ok
19:59:10.0831 9828  [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser         C:\Windows\System32\browser.dll
19:59:11.0065 9828  Browser - ok
19:59:11.0127 9828  [ 845B8CE732E67F3B4133164868C666EA ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
19:59:11.0158 9828  Brserid - ok
19:59:11.0174 9828  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
19:59:11.0174 9828  BrSerWdm - ok
19:59:11.0205 9828  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
19:59:11.0205 9828  BrUsbMdm - ok
19:59:11.0283 9828  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
19:59:11.0283 9828  BrUsbSer - ok
19:59:11.0330 9828  [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
19:59:11.0330 9828  BTHMODEM - ok
19:59:11.0424 9828  [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv         C:\Windows\system32\bthserv.dll
19:59:11.0424 9828  bthserv - ok
19:59:11.0455 9828  [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
19:59:11.0486 9828  cdfs - ok
19:59:11.0611 9828  [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom           C:\Windows\system32\drivers\cdrom.sys
19:59:11.0829 9828  cdrom - ok
19:59:11.0954 9828  [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc     C:\Windows\System32\certprop.dll
19:59:12.0172 9828  CertPropSvc - ok
19:59:12.0235 9828  [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
19:59:12.0235 9828  circlass - ok
19:59:12.0282 9828  [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS            C:\Windows\system32\CLFS.sys
19:59:12.0297 9828  CLFS - ok
19:59:12.0531 9828  [ 2B272D0A6E5071829B516FFDC7F841CA ] CLHNService     C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
19:59:12.0859 9828  CLHNService - ok
19:59:13.0046 9828  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:59:13.0124 9828  clr_optimization_v2.0.50727_32 - ok
19:59:13.0280 9828  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:59:13.0327 9828  clr_optimization_v4.0.30319_32 - ok
19:59:13.0452 9828  [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
19:59:13.0452 9828  CmBatt - ok
19:59:13.0608 9828  [ 2A2D72271844C52F004901A60312B96A ] cmdAgent        C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
19:59:13.0701 9828  cmdAgent - ok
19:59:13.0764 9828  [ A1A240C4BC6ABAAB75E0D25F51B09591 ] cmderd          C:\Windows\system32\DRIVERS\cmderd.sys
19:59:13.0764 9828  cmderd - ok
19:59:13.0857 9828  [ A1865742BBCF4C5F38FEE1258F8048FD ] cmdGuard        C:\Windows\system32\DRIVERS\cmdguard.sys
19:59:13.0857 9828  cmdGuard - ok
19:59:13.0873 9828  [ 221D000474F01B1606FFC3FF362D9333 ] cmdHlp          C:\Windows\system32\DRIVERS\cmdhlp.sys
19:59:13.0888 9828  cmdHlp - ok
19:59:13.0935 9828  [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
19:59:13.0935 9828  cmdide - ok
19:59:14.0044 9828  [ 42F158036BD4C2FF3122BF142E60E6FD ] CNG             C:\Windows\system32\Drivers\cng.sys
19:59:14.0372 9828  CNG - ok
19:59:14.0466 9828  [ A6023D3823C37043986713F118A89BEE ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
19:59:14.0481 9828  Compbatt - ok
19:59:14.0528 9828  [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
19:59:14.0809 9828  CompositeBus - ok
19:59:14.0871 9828  COMSysApp - ok
19:59:14.0934 9828  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
19:59:14.0934 9828  crcdisk - ok
19:59:15.0058 9828  [ 3897DFF247D9ED0006190349DE264E14 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
19:59:15.0339 9828  CryptSvc - ok
19:59:15.0417 9828  [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch      C:\Windows\system32\rpcss.dll
19:59:15.0511 9828  DcomLaunch - ok
19:59:15.0620 9828  [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc       C:\Windows\System32\defragsvc.dll
19:59:15.0620 9828  defragsvc - ok
19:59:15.0682 9828  [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
19:59:15.0901 9828  DfsC - ok
19:59:16.0041 9828  [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp            C:\Windows\system32\dhcpcore.dll
19:59:16.0306 9828  Dhcp - ok
19:59:16.0384 9828  [ 1A050B0274BFB3890703D490F330C0DA ] discache        C:\Windows\system32\drivers\discache.sys
19:59:16.0384 9828  discache - ok
19:59:16.0431 9828  [ 565003F326F99802E68CA78F2A68E9FF ] Disk            C:\Windows\system32\DRIVERS\disk.sys
19:59:16.0462 9828  Disk - ok
19:59:16.0618 9828  [ C701324C9E0C25DD9D60311BD87FBC84 ] DKbFltr         C:\Windows\system32\DRIVERS\DKbFltr.sys
19:59:16.0618 9828  DKbFltr - ok
19:59:16.0743 9828  [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
19:59:16.0759 9828  Dnscache - ok
19:59:16.0899 9828  [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc         C:\Windows\System32\dot3svc.dll
19:59:17.0149 9828  dot3svc - ok
19:59:17.0180 9828  [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS             C:\Windows\system32\dps.dll
19:59:17.0196 9828  DPS - ok
19:59:17.0305 9828  [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
19:59:17.0305 9828  drmkaud - ok
19:59:17.0430 9828  [ 16498EBC04AE9DD07049A8884B205C05 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
19:59:17.0804 9828  DXGKrnl - ok
19:59:17.0976 9828  [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost         C:\Windows\System32\eapsvc.dll
19:59:17.0991 9828  EapHost - ok
19:59:18.0740 9828  [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv           C:\Windows\system32\DRIVERS\evbdx.sys
19:59:19.0114 9828  ebdrv - ok
19:59:19.0161 9828  [ 81951F51E318AECC2D68559E47485CC4 ] EFS             C:\Windows\System32\lsass.exe
19:59:19.0177 9828  EFS - ok
19:59:19.0395 9828  [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
19:59:19.0738 9828  ehRecvr - ok
19:59:19.0785 9828  [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched         C:\Windows\ehome\ehsched.exe
19:59:19.0785 9828  ehSched - ok
19:59:19.0848 9828  [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
19:59:19.0863 9828  elxstor - ok
19:59:20.0082 9828  [ 9BF5D9A187A5CA392C0DDA4197092A8F ] ePowerSvc       C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
19:59:20.0378 9828  ePowerSvc - ok
19:59:20.0472 9828  [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
19:59:20.0472 9828  ErrDev - ok
19:59:20.0596 9828  [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem     C:\Windows\system32\es.dll
19:59:20.0612 9828  EventSystem - ok
19:59:20.0643 9828  [ 2DC9108D74081149CC8B651D3A26207F ] exfat           C:\Windows\system32\drivers\exfat.sys
19:59:20.0643 9828  exfat - ok
19:59:20.0674 9828  [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
19:59:20.0690 9828  fastfat - ok
19:59:20.0784 9828  [ 967EA5B213E9984CBE270205DF37755B ] Fax             C:\Windows\system32\fxssvc.exe
19:59:21.0033 9828  Fax - ok
19:59:21.0080 9828  [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
19:59:21.0080 9828  fdc - ok
19:59:21.0174 9828  [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost         C:\Windows\system32\fdPHost.dll
19:59:21.0174 9828  fdPHost - ok
19:59:21.0283 9828  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub        C:\Windows\system32\fdrespub.dll
19:59:21.0283 9828  FDResPub - ok
19:59:21.0345 9828  [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
19:59:21.0345 9828  FileInfo - ok
19:59:21.0408 9828  [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
19:59:21.0408 9828  Filetrace - ok
19:59:21.0439 9828  [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
19:59:21.0439 9828  flpydisk - ok
19:59:21.0470 9828  [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
19:59:21.0486 9828  FltMgr - ok
19:59:21.0767 9828  [ E12C4928B32ACE04610259647F072635 ] FontCache       C:\Windows\system32\FntCache.dll
19:59:22.0305 9828  FontCache - ok
19:59:22.0555 9828  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:59:22.0595 9828  FontCache3.0.0.0 - ok
19:59:22.0635 9828  [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
19:59:22.0649 9828  FsDepends - ok
19:59:22.0747 9828  [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
19:59:23.0009 9828  Fs_Rec - ok
19:59:23.0059 9828  [ E306A24D9694C724FA2491278BF50FDB ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
19:59:23.0389 9828  fvevol - ok
19:59:23.0719 9828  [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
19:59:23.0719 9828  gagp30kx - ok
19:59:23.0809 9828  [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc           C:\Windows\System32\gpsvc.dll
19:59:24.0161 9828  gpsvc - ok
19:59:24.0323 9828  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
19:59:24.0333 9828  gupdate - ok
19:59:24.0373 9828  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
19:59:24.0383 9828  gupdatem - ok
19:59:24.0475 9828  [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
19:59:24.0485 9828  hcw85cir - ok
19:59:24.0597 9828  [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
19:59:24.0871 9828  HDAudBus - ok
19:59:24.0943 9828  [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
19:59:24.0943 9828  HidBatt - ok
19:59:25.0063 9828  [ 89448F40E6DF260C206A193A4683BA78 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
19:59:25.0063 9828  HidBth - ok
19:59:25.0093 9828  [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
19:59:25.0093 9828  HidIr - ok
19:59:25.0323 9828  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv         C:\Windows\system32\hidserv.dll
19:59:25.0333 9828  hidserv - ok
19:59:25.0423 9828  [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
19:59:25.0423 9828  HidUsb - ok
19:59:25.0533 9828  [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc          C:\Windows\system32\kmsvc.dll
19:59:25.0815 9828  hkmsvc - ok
19:59:25.0865 9828  [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:59:26.0095 9828  HomeGroupListener - ok
19:59:26.0165 9828  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:59:26.0569 9828  HomeGroupProvider - ok
19:59:26.0619 9828  [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
19:59:26.0629 9828  HpSAMD - ok
19:59:26.0749 9828  [ 871917B07A141BFF43D76D8844D48106 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
19:59:27.0463 9828  HTTP - ok
19:59:27.0515 9828  [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
19:59:27.0711 9828  hwpolicy - ok
19:59:27.0867 9828  [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
19:59:27.0867 9828  i8042prt - ok
19:59:27.0997 9828  [ D483687EACE0C065EE772481A96E05F5 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
19:59:27.0997 9828  iaStor - ok
19:59:28.0047 9828  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
19:59:28.0267 9828  iaStorV - ok
19:59:28.0367 9828  [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:59:28.0807 9828  idsvc - ok
19:59:29.0237 9828  [ DCE0B53570703CCE580D066F89EF58CD ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
19:59:30.0147 9828  igfx - ok
19:59:30.0287 9828  [ 4173FF5708F3236CF25195FECD742915 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
19:59:30.0287 9828  iirsp - ok
19:59:30.0537 9828  [ F95622F161474511B8D80D6B093AA610 ] IKEEXT          C:\Windows\System32\ikeext.dll
19:59:30.0817 9828  IKEEXT - ok
19:59:30.0907 9828  [ 3B6BE2DA5993B1E38613976FAF4AC83E ] inspect         C:\Windows\system32\DRIVERS\inspect.sys
19:59:30.0907 9828  inspect - ok
19:59:31.0027 9828  [ F2BAA4FF548F7F0317F7638951C1CD9C ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
19:59:31.0187 9828  IntcAzAudAddService - ok
19:59:31.0317 9828  [ E63CD0D9AA8D406CABDE5AA718936F40 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
19:59:31.0517 9828  IntcHdmiAddService - ok
19:59:31.0617 9828  [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide        C:\Windows\system32\drivers\intelide.sys
19:59:31.0627 9828  intelide - ok
19:59:31.0727 9828  [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
19:59:31.0727 9828  intelppm - ok
19:59:31.0787 9828  [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
19:59:31.0797 9828  IPBusEnum - ok
19:59:31.0817 9828  [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:59:31.0827 9828  IpFilterDriver - ok
19:59:31.0897 9828  [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
19:59:31.0937 9828  iphlpsvc - ok
19:59:32.0037 9828  [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
19:59:32.0227 9828  IPMIDRV - ok
19:59:32.0247 9828  [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
19:59:32.0257 9828  IPNAT - ok
19:59:32.0327 9828  [ 42996CFF20A3084A56017B7902307E9F ] IRENUM          C:\Windows\system32\drivers\irenum.sys
19:59:32.0337 9828  IRENUM - ok
19:59:32.0377 9828  [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
19:59:32.0387 9828  isapnp - ok
19:59:32.0537 9828  [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
19:59:32.0885 9828  iScsiPrt - ok
19:59:33.0109 9828  [ EAC21E8014C7E6EE341AFFFB7E2BBD54 ] k57nd60x        C:\Windows\system32\DRIVERS\k57nd60x.sys
19:59:33.0119 9828  k57nd60x - ok
19:59:33.0149 9828  [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
19:59:33.0159 9828  kbdclass - ok
19:59:33.0239 9828  [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
19:59:33.0609 9828  kbdhid - ok
19:59:33.0629 9828  [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso          C:\Windows\system32\lsass.exe
19:59:33.0639 9828  KeyIso - ok
19:59:33.0749 9828  [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
19:59:33.0829 9828  KSecDD - ok
19:59:33.0919 9828  [ 5FE1ABF1AF591A3458C9CF24ED9A4D35 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
19:59:34.0109 9828  KSecPkg - ok
19:59:34.0161 9828  [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm           C:\Windows\system32\msdtckrm.dll
19:59:34.0191 9828  KtmRm - ok
19:59:34.0281 9828  [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer    C:\Windows\system32\srvsvc.dll
19:59:34.0633 9828  LanmanServer - ok
19:59:34.0703 9828  [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:59:34.0995 9828  LanmanWorkstation - ok
19:59:35.0105 9828  Lavasoft Kernexplorer - ok
19:59:35.0155 9828  Lbd - ok
19:59:35.0335 9828  [ 7F9C7B28CF1C859E1C42619EEA946DC8 ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
19:59:35.0335 9828  LHidFilt - ok
19:59:35.0495 9828  [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
19:59:35.0505 9828  lltdio - ok
19:59:35.0605 9828  [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
19:59:35.0645 9828  lltdsvc - ok
19:59:35.0665 9828  [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts         C:\Windows\System32\lmhsvc.dll
19:59:35.0675 9828  lmhosts - ok
19:59:35.0785 9828  [ AB33792A87285344F43B5CE23421BAB0 ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
19:59:35.0785 9828  LMouFilt - ok
19:59:35.0905 9828  [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
19:59:35.0915 9828  LSI_FC - ok
19:59:35.0985 9828  [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
19:59:35.0985 9828  LSI_SAS - ok
19:59:36.0155 9828  [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:59:36.0165 9828  LSI_SAS2 - ok
19:59:36.0215 9828  [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:59:36.0215 9828  LSI_SCSI - ok
19:59:36.0265 9828  [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv           C:\Windows\system32\drivers\luafv.sys
19:59:36.0265 9828  luafv - ok
19:59:36.0425 9828  [ 77030525CD86A93F1AF34FA9B96D33CE ] LUsbFilt        C:\Windows\system32\Drivers\LUsbFilt.Sys
19:59:36.0435 9828  LUsbFilt - ok
19:59:36.0557 9828  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
19:59:36.0758 9828  Mcx2Svc - ok
19:59:36.0819 9828  [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
19:59:36.0829 9828  megasas - ok
19:59:36.0879 9828  [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
19:59:36.0889 9828  MegaSR - ok
19:59:37.0009 9828  [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS           C:\Windows\system32\mmcss.dll
19:59:37.0019 9828  MMCSS - ok
19:59:37.0069 9828  [ F001861E5700EE84E2D4E52C712F4964 ] Modem           C:\Windows\system32\drivers\modem.sys
19:59:37.0069 9828  Modem - ok
19:59:37.0179 9828  [ 79D10964DE86B292320E9DFE02282A23 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
19:59:37.0179 9828  monitor - ok
19:59:37.0279 9828  [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
19:59:37.0289 9828  mouclass - ok
19:59:37.0549 9828  [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
19:59:37.0559 9828  mouhid - ok
19:59:37.0609 9828  [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
19:59:38.0001 9828  mountmgr - ok
19:59:38.0081 9828  [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
19:59:38.0091 9828  MozillaMaintenance - ok
19:59:38.0151 9828  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio            C:\Windows\system32\drivers\mpio.sys
19:59:38.0335 9828  mpio - ok
19:59:38.0385 9828  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
19:59:38.0385 9828  mpsdrv - ok
19:59:38.0485 9828  [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc          C:\Windows\system32\mpssvc.dll
19:59:38.0535 9828  MpsSvc - ok
19:59:38.0617 9828  [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
19:59:38.0901 9828  MRxDAV - ok
19:59:38.0951 9828  [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
19:59:39.0141 9828  mrxsmb - ok
19:59:39.0191 9828  [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:59:39.0411 9828  mrxsmb10 - ok
19:59:39.0441 9828  [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:59:39.0591 9828  mrxsmb20 - ok
19:59:39.0691 9828  [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci          C:\Windows\system32\drivers\msahci.sys
19:59:39.0855 9828  msahci - ok
19:59:39.0875 9828  [ 55055F8AD8BE27A64C831322A780A228 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
19:59:40.0067 9828  msdsm - ok
19:59:40.0187 9828  [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC           C:\Windows\System32\msdtc.exe
19:59:40.0197 9828  MSDTC - ok
19:59:40.0279 9828  [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs            C:\Windows\system32\drivers\Msfs.sys
19:59:40.0283 9828  Msfs - ok
19:59:40.0309 9828  [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
19:59:40.0309 9828  mshidkmdf - ok
19:59:40.0349 9828  [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
19:59:40.0359 9828  msisadrv - ok
19:59:40.0409 9828  [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
19:59:40.0429 9828  MSiSCSI - ok
19:59:40.0479 9828  msiserver - ok
19:59:40.0579 9828  [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
19:59:40.0589 9828  MSKSSRV - ok
19:59:40.0659 9828  [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
19:59:40.0669 9828  MSPCLOCK - ok
19:59:40.0689 9828  [ F456E973590D663B1073E9C463B40932 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
19:59:40.0689 9828  MSPQM - ok
19:59:40.0729 9828  [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
19:59:40.0739 9828  MsRPC - ok
19:59:40.0789 9828  [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
19:59:40.0794 9828  mssmbios - ok
19:59:40.0901 9828  [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
19:59:40.0901 9828  MSTEE - ok
19:59:40.0931 9828  [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
19:59:40.0931 9828  MTConfig - ok
19:59:40.0961 9828  [ 159FAD02F64E6381758C990F753BCC80 ] Mup             C:\Windows\system32\Drivers\mup.sys
19:59:40.0971 9828  Mup - ok
19:59:41.0061 9828  [ 2DE94E435C3EFDE58C7B1856D4F20724 ] mwlPSDFilter    C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
19:59:41.0323 9828  mwlPSDFilter - ok
19:59:41.0383 9828  [ 61920A7146EED3D903DBBB8EC295AF76 ] mwlPSDNServ     C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
19:59:41.0677 9828  mwlPSDNServ - ok
19:59:41.0697 9828  [ E0F49721E68EBD2983E84C44FADA6665 ] mwlPSDVDisk     C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
19:59:41.0977 9828  mwlPSDVDisk - ok
19:59:42.0227 9828  [ 77F8AD024059A9A8E17E654B887D1EF0 ] MWLService      C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe
19:59:42.0237 9828  MWLService - ok
19:59:42.0307 9828  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent        C:\Windows\system32\qagentRT.dll
19:59:42.0327 9828  napagent - ok
19:59:42.0497 9828  [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
19:59:42.0507 9828  NativeWifiP - ok
19:59:42.0597 9828  [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS            C:\Windows\system32\drivers\ndis.sys
19:59:42.0627 9828  NDIS - ok
19:59:42.0767 9828  [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
19:59:42.0767 9828  NdisCap - ok
19:59:42.0857 9828  [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
19:59:42.0857 9828  NdisTapi - ok
19:59:42.0967 9828  [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
19:59:43.0197 9828  Ndisuio - ok
19:59:43.0297 9828  [ 38FBE267E7E6983311179230FACB1017 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
19:59:43.0693 9828  NdisWan - ok
19:59:43.0779 9828  [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
19:59:43.0969 9828  NDProxy - ok
19:59:44.0051 9828  [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
19:59:44.0067 9828  NetBIOS - ok
19:59:44.0133 9828  [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
19:59:44.0413 9828  NetBT - ok
19:59:44.0465 9828  [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon        C:\Windows\system32\lsass.exe
19:59:44.0465 9828  Netlogon - ok
19:59:44.0687 9828  [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman          C:\Windows\System32\netman.dll
19:59:44.0707 9828  Netman - ok
19:59:44.0757 9828  [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm        C:\Windows\System32\netprofm.dll
19:59:44.0777 9828  netprofm - ok
19:59:44.0867 9828  [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:59:45.0071 9828  NetTcpPortSharing - ok
19:59:45.0159 9828  [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
19:59:45.0159 9828  nfrd960 - ok
19:59:45.0229 9828  [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc          C:\Windows\System32\nlasvc.dll
19:59:45.0430 9828  NlaSvc - ok
19:59:45.0482 9828  [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
19:59:45.0482 9828  Npfs - ok
19:59:45.0622 9828  [ BA387E955E890C8A88306D9B8D06BF17 ] nsi             C:\Windows\system32\nsisvc.dll
19:59:45.0682 9828  nsi - ok
19:59:45.0692 9828  [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
19:59:45.0692 9828  nsiproxy - ok
19:59:45.0784 9828  [ 5E43D2B0EE64123D4880DFA6626DEFDE ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
19:59:46.0077 9828  Ntfs - ok
19:59:46.0267 9828  [ 944E3911888B9FFFD843B91C8ABBD3F6 ] NTI IScheduleSvc C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
19:59:46.0428 9828  NTI IScheduleSvc - ok
19:59:46.0608 9828  [ 973DCB15731339FCA176E534055CF115 ] NTIBackupSvc    C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
19:59:47.0052 9828  NTIBackupSvc - ok
19:59:47.0134 9828  [ 6DCAA65F49EF3B97A5CFFC0CB5DE1C2F ] NTIDrvr         C:\Windows\system32\Drivers\NTIDrvr.sys
19:59:47.0448 9828  NTIDrvr - ok
19:59:47.0484 9828  [ 58751F9248D50BCE1053976C9E2F0859 ] NTISchedulerSvc C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
19:59:47.0806 9828  NTISchedulerSvc - ok
19:59:47.0957 9828  [ F9756A98D69098DCA8945D62858A812C ] Null            C:\Windows\system32\drivers\Null.sys
19:59:47.0977 9828  Null - ok
19:59:48.0068 9828  [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
19:59:48.0294 9828  nvraid - ok
19:59:48.0352 9828  [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
19:59:48.0731 9828  nvstor - ok
19:59:49.0486 9828  [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
19:59:49.0486 9828  nv_agp - ok
19:59:49.0606 9828  [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
19:59:49.0606 9828  ohci1394 - ok
19:59:49.0751 9828  [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
19:59:49.0788 9828  p2pimsvc - ok
19:59:50.0012 9828  [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc          C:\Windows\system32\p2psvc.dll
19:59:50.0143 9828  p2psvc - ok
19:59:50.0216 9828  [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
19:59:50.0262 9828  Parport - ok
19:59:50.0338 9828  [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr         C:\Windows\system32\drivers\partmgr.sys
19:59:50.0338 9828  partmgr - ok
19:59:50.0398 9828  [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
19:59:50.0408 9828  Parvdm - ok
19:59:50.0438 9828  [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc          C:\Windows\System32\pcasvc.dll
19:59:50.0469 9828  PcaSvc - ok
19:59:50.0649 9828  [ 673E55C3498EB970088E812EA820AA8F ] pci             C:\Windows\system32\drivers\pci.sys
19:59:50.0867 9828  pci - ok
19:59:50.0892 9828  [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide          C:\Windows\system32\drivers\pciide.sys
19:59:50.0895 9828  pciide - ok
19:59:50.0960 9828  [ F396431B31693E71E8A80687EF523506 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
19:59:50.0960 9828  pcmcia - ok
19:59:51.0010 9828  [ 250F6B43D2B613172035C6747AEEB19F ] pcw             C:\Windows\system32\drivers\pcw.sys
19:59:51.0010 9828  pcw - ok
19:59:51.0102 9828  [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
19:59:51.0122 9828  PEAUTH - ok
19:59:51.0264 9828  [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla             C:\Windows\system32\pla.dll
19:59:51.0578 9828  pla - ok
19:59:51.0680 9828  [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
19:59:52.0138 9828  PlugPlay - ok
19:59:52.0185 9828  [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
19:59:52.0196 9828  PNRPAutoReg - ok
19:59:52.0226 9828  [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
19:59:52.0236 9828  PNRPsvc - ok
19:59:52.0326 9828  [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
19:59:52.0568 9828  PolicyAgent - ok
19:59:52.0658 9828  [ F87D30E72E03D579A5199CCB3831D6EA ] Power           C:\Windows\system32\umpo.dll
19:59:53.0115 9828  Power - ok
19:59:53.0362 9828  [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
19:59:53.0366 9828  PptpMiniport - ok
19:59:53.0442 9828  [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
19:59:53.0442 9828  Processor - ok
19:59:53.0492 9828  [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc         C:\Windows\system32\profsvc.dll
19:59:53.0951 9828  ProfSvc - ok
19:59:54.0006 9828  [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:59:54.0011 9828  ProtectedStorage - ok
19:59:54.0134 9828  [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
19:59:54.0134 9828  Psched - ok
19:59:54.0194 9828  [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
19:59:54.0234 9828  ql2300 - ok
19:59:54.0330 9828  [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
19:59:54.0342 9828  ql40xx - ok
19:59:54.0407 9828  [ 31AC809E7707EB580B2BDB760390765A ] QWAVE           C:\Windows\system32\qwave.dll
19:59:54.0441 9828  QWAVE - ok
19:59:54.0458 9828  [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
19:59:54.0466 9828  QWAVEdrv - ok
19:59:54.0752 9828  [ 8EF46DA83462E865F9070B03EDF740D4 ] RapportIaso     C:\ProgramData\Trusteer\Rapport\store\exts\RapportMS\24413\RapportIaso.sys
19:59:54.0907 9828  RapportIaso - ok
19:59:54.0955 9828  [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
19:59:54.0979 9828  RasAcd - ok
19:59:55.0124 9828  [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
19:59:55.0140 9828  RasAgileVpn - ok
19:59:55.0215 9828  [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto         C:\Windows\System32\rasauto.dll
19:59:55.0216 9828  RasAuto - ok
19:59:55.0266 9828  [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
19:59:55.0276 9828  Rasl2tp - ok
19:59:55.0546 9828  [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan          C:\Windows\System32\rasmans.dll
19:59:56.0000 9828  RasMan - ok
19:59:56.0050 9828  [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
19:59:56.0060 9828  RasPppoe - ok
19:59:56.0080 9828  [ 44101F495A83EA6401D886E7FD70096B ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
19:59:56.0090 9828  RasSstp - ok
19:59:56.0170 9828  [ D528BC58A489409BA40334EBF96A311B ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
19:59:56.0480 9828  rdbss - ok
19:59:56.0530 9828  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
19:59:56.0530 9828  rdpbus - ok
19:59:56.0590 9828  [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
19:59:56.0810 9828  RDPCDD - ok
19:59:56.0942 9828  [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
19:59:56.0952 9828  RDPENCDD - ok
19:59:57.0009 9828  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
19:59:57.0013 9828  RDPREFMP - ok
19:59:57.0144 9828  [ 65375DF758CA1872AB7EBBBA457FD5E6 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:59:57.0414 9828  RdpVideoMiniport - ok
19:59:57.0524 9828  [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
19:59:57.0822 9828  RDPWD - ok
19:59:57.0946 9828  [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
19:59:58.0188 9828  rdyboost - ok
19:59:58.0258 9828  [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess    C:\Windows\System32\mprdim.dll
19:59:58.0268 9828  RemoteAccess - ok
19:59:58.0328 9828  [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
19:59:58.0348 9828  RemoteRegistry - ok
19:59:58.0408 9828  [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
19:59:58.0448 9828  RpcEptMapper - ok
19:59:58.0518 9828  [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator      C:\Windows\system32\locator.exe
19:59:58.0528 9828  RpcLocator - ok
19:59:58.0588 9828  [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs           C:\Windows\system32\rpcss.dll
19:59:58.0608 9828  RpcSs - ok
19:59:58.0738 9828  [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
19:59:58.0748 9828  rspndr - ok
19:59:58.0848 9828  [ 9B09F336DE36A7A6CA871DE8A7847B65 ] RTSTOR          C:\Windows\system32\drivers\RTSTOR.SYS
19:59:59.0088 9828  RTSTOR - ok
19:59:59.0141 9828  [ 81951F51E318AECC2D68559E47485CC4 ] SamSs           C:\Windows\system32\lsass.exe
19:59:59.0148 9828  SamSs - ok
19:59:59.0230 9828  [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
19:59:59.0432 9828  sbp2port - ok
19:59:59.0622 9828  [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService  C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
20:00:00.0312 9828  SBSDWSCService - ok
20:00:00.0352 9828  [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
20:00:00.0412 9828  SCardSvr - ok
20:00:00.0482 9828  [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
20:00:00.0712 9828  scfilter - ok
20:00:00.0814 9828  [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule        C:\Windows\system32\schedsvc.dll
20:00:00.0884 9828  Schedule - ok
20:00:00.0964 9828  [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc     C:\Windows\System32\certprop.dll
20:00:00.0964 9828  SCPolicySvc - ok
20:00:01.0024 9828  [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
20:00:01.0320 9828  SDRSVC - ok
20:00:01.0410 9828  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
20:00:01.0420 9828  secdrv - ok
20:00:01.0510 9828  [ A59B3A4442C52060CC7A85293AA3546F ] seclogon        C:\Windows\system32\seclogon.dll
20:00:01.0520 9828  seclogon - ok
20:00:01.0630 9828  [ DCB7FCDCC97F87360F75D77425B81737 ] SENS            C:\Windows\System32\sens.dll
20:00:01.0640 9828  SENS - ok
20:00:01.0730 9828  [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc        C:\Windows\system32\sensrsvc.dll
20:00:01.0740 9828  SensrSvc - ok
20:00:01.0850 9828  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
20:00:01.0860 9828  Serenum - ok
20:00:01.0920 9828  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
20:00:01.0920 9828  Serial - ok
20:00:01.0940 9828  [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
20:00:01.0950 9828  sermouse - ok
20:00:02.0060 9828  [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv      C:\Windows\system32\sessenv.dll
20:00:02.0240 9828  SessionEnv - ok
20:00:02.0280 9828  [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
20:00:02.0290 9828  sffdisk - ok
20:00:02.0348 9828  [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
20:00:02.0354 9828  sffp_mmc - ok
20:00:02.0392 9828  [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
20:00:02.0686 9828  sffp_sd - ok
20:00:02.0776 9828  [ DB96666CC8312EBC45032F30B007A547 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
20:00:02.0776 9828  sfloppy - ok
20:00:02.0906 9828  [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
20:00:02.0936 9828  SharedAccess - ok
20:00:02.0976 9828  [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:00:03.0326 9828  ShellHWDetection - ok
20:00:03.0376 9828  [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp          C:\Windows\system32\drivers\sisagp.sys
20:00:03.0386 9828  sisagp - ok
20:00:03.0426 9828  [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:00:03.0436 9828  SiSRaid2 - ok
20:00:03.0466 9828  [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
20:00:03.0466 9828  SiSRaid4 - ok
20:00:03.0616 9828  [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
20:00:04.0212 9828  SkypeUpdate - ok
20:00:04.0332 9828  [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb             C:\Windows\system32\DRIVERS\smb.sys
20:00:04.0342 9828  Smb - ok
20:00:04.0512 9828  [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
20:00:04.0522 9828  SNMPTRAP - ok
20:00:04.0592 9828  [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr           C:\Windows\system32\drivers\spldr.sys
20:00:04.0592 9828  spldr - ok
20:00:04.0692 9828  [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler         C:\Windows\System32\spoolsv.exe
20:00:04.0742 9828  Spooler - ok
20:00:04.0874 9828  [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc          C:\Windows\system32\sppsvc.exe
20:00:05.0692 9828  sppsvc - ok
20:00:05.0750 9828  [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
20:00:05.0892 9828  sppuinotify - ok
20:00:05.0961 9828  [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv             C:\Windows\system32\DRIVERS\srv.sys
20:00:06.0198 9828  srv - ok
20:00:06.0258 9828  [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
20:00:06.0418 9828  srv2 - ok
20:00:06.0478 9828  [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
20:00:06.0630 9828  srvnet - ok
20:00:06.0702 9828  [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
20:00:06.0772 9828  SSDPSRV - ok
20:00:06.0832 9828  [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
20:00:06.0842 9828  SstpSvc - ok
20:00:06.0902 9828  [ DB32D325C192B801DF274BFD12A7E72B ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
20:00:06.0912 9828  stexstor - ok
20:00:07.0062 9828  [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc          C:\Windows\System32\wiaservc.dll
20:00:07.0252 9828  StiSvc - ok
20:00:07.0322 9828  [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum          C:\Windows\system32\drivers\swenum.sys
20:00:07.0322 9828  swenum - ok
20:00:07.0392 9828  [ A28BD92DF340E57B024BA433165D34D7 ] swprv           C:\Windows\System32\swprv.dll
20:00:07.0412 9828  swprv - ok
20:00:07.0502 9828  [ AEE6E411A915F50101895BA8DC5C15D4 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
20:00:08.0026 9828  SynTP - ok
20:00:08.0146 9828  [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain         C:\Windows\system32\sysmain.dll
20:00:08.0715 9828  SysMain - ok
20:00:08.0770 9828  [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:00:08.0960 9828  TabletInputService - ok
20:00:09.0020 9828  [ 613BF4820361543956909043A265C6AC ] TapiSrv         C:\Windows\System32\tapisrv.dll
20:00:09.0270 9828  TapiSrv - ok
20:00:09.0320 9828  [ B799D9FDB26111737F58288D8DC172D9 ] TBS             C:\Windows\System32\tbssvc.dll
20:00:09.0330 9828  TBS - ok
20:00:09.0490 9828  [ D32FDAC73FCD76B85389C39BC1087F2A ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
20:00:09.0810 9828  Tcpip - ok
20:00:09.0940 9828  [ D32FDAC73FCD76B85389C39BC1087F2A ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
20:00:09.0960 9828  TCPIP6 - ok
20:00:10.0040 9828  [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
20:00:10.0270 9828  tcpipreg - ok
20:00:10.0350 9828  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
20:00:10.0530 9828  TDPIPE - ok
20:00:10.0570 9828  [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
20:00:10.0570 9828  TDTCP - ok
20:00:10.0650 9828  [ B459575348C20E8121D6039DA063C704 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
20:00:10.0890 9828  tdx - ok
20:00:10.0930 9828  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD          C:\Windows\system32\drivers\termdd.sys
20:00:11.0180 9828  TermDD - ok
20:00:11.0250 9828  [ 382C804C92811BE57829D8E550A900E2 ] TermService     C:\Windows\System32\termsrv.dll
20:00:11.0590 9828  TermService - ok
20:00:11.0710 9828  [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes          C:\Windows\system32\themeservice.dll
20:00:11.0720 9828  Themes - ok
20:00:11.0750 9828  [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER     C:\Windows\system32\mmcss.dll
20:00:11.0760 9828  THREADORDER - ok
20:00:11.0790 9828  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks          C:\Windows\System32\trkwks.dll
20:00:11.0810 9828  TrkWks - ok
20:00:12.0010 9828  [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:00:12.0430 9828  TrustedInstaller - ok
20:00:12.0590 9828  [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
20:00:12.0770 9828  tssecsrv - ok
20:00:12.0900 9828  [ 9CE253214ACAA5A7D323327D2055EFAA ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
20:00:13.0120 9828  TsUsbFlt - ok
20:00:13.0260 9828  [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
20:00:13.0532 9828  tunnel - ok
20:00:13.0662 9828  [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
20:00:13.0672 9828  uagp35 - ok
20:00:13.0722 9828  [ F763E070843EE2803DE1395002B42938 ] UBHelper        C:\Windows\system32\drivers\UBHelper.sys
20:00:14.0034 9828  UBHelper - ok
20:00:14.0094 9828  [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
20:00:14.0364 9828  udfs - ok
20:00:14.0454 9828  [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
20:00:14.0464 9828  UI0Detect - ok
20:00:14.0574 9828  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
20:00:14.0584 9828  uliagpkx - ok
20:00:14.0684 9828  [ D295BED4B898F0FD999FCFA9B32B071B ] umbus           C:\Windows\system32\drivers\umbus.sys
20:00:14.0874 9828  umbus - ok
20:00:14.0954 9828  [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
20:00:14.0964 9828  UmPass - ok
20:00:15.0014 9828  [ 833FBB672460EFCE8011D262175FAD33 ] upnphost        C:\Windows\System32\upnphost.dll
20:00:15.0054 9828  upnphost - ok
20:00:15.0164 9828  [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
20:00:15.0394 9828  usbccgp - ok
20:00:15.0544 9828  [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
20:00:15.0544 9828  usbcir - ok
20:00:15.0574 9828  [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
20:00:15.0574 9828  usbehci - ok
20:00:15.0654 9828  [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
20:00:15.0664 9828  usbhub - ok
20:00:15.0744 9828  [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
20:00:15.0940 9828  usbohci - ok
20:00:16.0056 9828  [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
20:00:16.0066 9828  usbprint - ok
20:00:16.0246 9828  [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
20:00:16.0256 9828  usbscan - ok
20:00:16.0315 9828  [ F991AB9CC6B908DB552166768176896A ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:00:16.0320 9828  USBSTOR - ok
20:00:16.0358 9828  [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
20:00:16.0590 9828  usbuhci - ok
20:00:16.0740 9828  [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
20:00:17.0082 9828  usbvideo - ok
20:00:17.0172 9828  [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms           C:\Windows\System32\uxsms.dll
20:00:17.0182 9828  UxSms - ok
20:00:17.0252 9828  [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc        C:\Windows\system32\lsass.exe
20:00:17.0252 9828  VaultSvc - ok
20:00:17.0322 9828  [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
20:00:17.0332 9828  vdrvroot - ok
20:00:17.0392 9828  [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds             C:\Windows\System32\vds.exe
20:00:17.0712 9828  vds - ok
20:00:17.0852 9828  [ 17C408214EA61696CEC9C66E388B14F3 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
20:00:17.0872 9828  vga - ok
20:00:17.0902 9828  [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave         C:\Windows\System32\drivers\vga.sys
20:00:17.0912 9828  VgaSave - ok
20:00:17.0992 9828  [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
20:00:18.0264 9828  vhdmp - ok
20:00:18.0354 9828  [ C829317A37B4BEA8F39735D4B076E923 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
20:00:18.0354 9828  viaagp - ok
20:00:18.0434 9828  [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7           C:\Windows\system32\DRIVERS\viac7.sys
20:00:18.0434 9828  ViaC7 - ok
20:00:18.0474 9828  [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide          C:\Windows\system32\drivers\viaide.sys
20:00:18.0484 9828  viaide - ok
20:00:18.0534 9828  [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
20:00:18.0786 9828  volmgr - ok
20:00:18.0838 9828  [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
20:00:18.0878 9828  volmgrx - ok
20:00:18.0918 9828  [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
20:00:19.0160 9828  volsnap - ok
20:00:19.0262 9828  [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
20:00:19.0272 9828  vsmraid - ok
20:00:19.0332 9828  [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS             C:\Windows\system32\vssvc.exe
20:00:19.0942 9828  VSS - ok
20:00:19.0992 9828  [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
20:00:19.0992 9828  vwifibus - ok
20:00:20.0072 9828  [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time         C:\Windows\system32\w32time.dll
20:00:20.0132 9828  W32Time - ok
20:00:20.0214 9828  [ DE3721E89C653AA281428C8A69745D90 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
20:00:20.0297 9828  WacomPen - ok
20:00:20.0396 9828  [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
20:00:20.0626 9828  WANARP - ok
20:00:20.0688 9828  [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
20:00:20.0698 9828  Wanarpv6 - ok
20:00:21.0018 9828  [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
20:00:21.0624 9828  WatAdminSvc - ok
20:00:21.0763 9828  [ 691E3285E53DCA558E1A84667F13E15A ] wbengine        C:\Windows\system32\wbengine.exe
20:00:22.0340 9828  wbengine - ok
20:00:22.0450 9828  [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
20:00:22.0540 9828  WbioSrvc - ok
20:00:22.0610 9828  [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc         C:\Windows\System32\wcncsvc.dll
20:00:22.0852 9828  wcncsvc - ok
20:00:22.0932 9828  [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:00:22.0952 9828  WcsPlugInService - ok
20:00:23.0052 9828  [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd              C:\Windows\system32\DRIVERS\wd.sys
20:00:23.0062 9828  Wd - ok
20:00:23.0142 9828  [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
20:00:23.0544 9828  Wdf01000 - ok
20:00:23.0604 9828  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
20:00:23.0624 9828  WdiServiceHost - ok
20:00:23.0634 9828  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
20:00:23.0644 9828  WdiSystemHost - ok
20:00:23.0694 9828  [ A9D880F97530D5B8FEE278923349929D ] WebClient       C:\Windows\System32\webclnt.dll
20:00:24.0004 9828  WebClient - ok
20:00:24.0094 9828  [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc          C:\Windows\system32\wecsvc.dll
20:00:24.0204 9828  Wecsvc - ok
20:00:24.0234 9828  [ AC804569BB2364FB6017370258A4091B ] wercplsupport   C:\Windows\System32\wercplsupport.dll
20:00:24.0244 9828  wercplsupport - ok
20:00:24.0334 9828  [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc          C:\Windows\System32\WerSvc.dll
20:00:24.0354 9828  WerSvc - ok
20:00:24.0484 9828  [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
20:00:24.0494 9828  WfpLwf - ok
20:00:24.0564 9828  [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
20:00:24.0564 9828  WIMMount - ok
20:00:24.0774 9828  [ 082CF481F659FAE0DE51AD060881EB47 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
20:00:25.0096 9828  WinDefend - ok
20:00:25.0208 9828  WinHttpAutoProxySvc - ok
20:00:25.0290 9828  [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
20:00:25.0300 9828  Winmgmt - ok
20:00:25.0422 9828  [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM           C:\Windows\system32\WsmSvc.dll
20:00:25.0892 9828  WinRM - ok
20:00:26.0022 9828  [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
20:00:26.0224 9828  WinUsb - ok
20:00:26.0314 9828  [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc         C:\Windows\System32\wlansvc.dll
20:00:26.0416 9828  Wlansvc - ok
20:00:26.0608 9828  [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:00:26.0758 9828  wlidsvc - ok
20:00:26.0840 9828  [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
20:00:26.0850 9828  WmiAcpi - ok
20:00:26.0982 9828  [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
20:00:27.0032 9828  wmiApSrv - ok
20:00:27.0162 9828  [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
20:00:27.0586 9828  WMPNetworkSvc - ok
20:00:27.0686 9828  [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc          C:\Windows\System32\wpcsvc.dll
20:00:27.0706 9828  WPCSvc - ok
20:00:27.0756 9828  [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
20:00:27.0766 9828  WPDBusEnum - ok
20:00:27.0836 9828  [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
20:00:27.0836 9828  ws2ifsl - ok
20:00:27.0896 9828  [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc          C:\Windows\System32\wscsvc.dll
20:00:27.0946 9828  wscsvc - ok
20:00:27.0956 9828  WSearch - ok
20:00:28.0066 9828  [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv        C:\Windows\system32\wuaueng.dll
20:00:28.0146 9828  wuauserv - ok
20:00:28.0196 9828  [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
20:00:28.0396 9828  WudfPf - ok
20:00:28.0466 9828  [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
20:00:28.0476 9828  WUDFRd - ok
20:00:28.0566 9828  [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
20:00:28.0736 9828  wudfsvc - ok
20:00:28.0816 9828  [ 3C5E51C05BE9B56EAFF4E388C3AB25E4 ] WwanSvc         C:\Windows\System32\wwansvc.dll
20:00:29.0196 9828  WwanSvc - ok
20:00:29.0258 9828  ================ Scan global ===============================
20:00:29.0288 9828  [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
20:00:29.0518 9828  [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll
20:00:29.0788 9828  [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll
20:00:29.0858 9828  [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
20:00:29.0918 9828  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
20:00:29.0968 9828  [Global] - ok
20:00:29.0968 9828  ================ Scan MBR ==================================
20:00:29.0998 9828  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:00:30.0388 9828  \Device\Harddisk0\DR0 - ok
20:00:30.0388 9828  ================ Scan VBR ==================================
20:00:30.0388 9828  [ D45F10F3DFAC36653664484667DC266D ] \Device\Harddisk0\DR0\Partition1
20:00:30.0398 9828  \Device\Harddisk0\DR0\Partition1 - ok
20:00:30.0398 9828  ============================================================
20:00:30.0398 9828  Scan finished
20:00:30.0398 9828  ============================================================
20:00:30.0442 11740  Detected object count: 0
20:00:30.0442 11740  Actual detected object count: 0
20:00:42.0692 14032  Deinitialize success
 



#4 SwinnyA

SwinnyA
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:52 PM

Posted 02 August 2013 - 04:28 PM

ESET RESULTS:

 

C:\Users\Andy\AppData\Local\Microsoft\Windows Live Mail\Virgin (and 553\Deleted Items\37BC2080-00000501.eml    HTML/Phishing.Gen trojan
C:\Users\Andy\AppData\Local\Microsoft\Windows Live Mail\Virgin (and 553\Deleted Items\79FC0E25-00000503.eml    HTML/Phishing.Gen trojan
C:\Users\Andy\Downloads\avc-free.exe    Win32/OpenCandy application
C:\Users\Andy\Downloads\cnet_NetMeterSetup_exe.exe    a variant of Win32/InstallCore.D application

 

 

Cheers!  Andy



#5 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:52 AM

Posted 04 August 2013 - 02:49 AM

:step1: Two of your mails are infected. Remove them.

 

:step2: Remove also these:

C:\Users\Andy\Downloads\avc-free.exe    Win32/OpenCandy application
C:\Users\Andy\Downloads\cnet_NetMeterSetup_exe.exe    a variant of Win32/InstallCore.D application

 

 

============

 

:step1: My advice is to keep your computer up to date with Windows Updates, Java and Adobe Reader and Flash Player.

 

:step2: Use WOT to inspect sites if they are safe or not :http://www.mywot.com/

 

:step3: A good working AntiVirus is also important. I personally advice Avast free or Avira. MSE it's detection is not so great.

 

:step4: Let's check how good your security is:

 

Download Security Check from here or here and save it to your Desktop.

  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2 SecurityCheck may produce some false warning(s), so leave the results reading to me.


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#6 SwinnyA

SwinnyA
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:52 PM

Posted 04 August 2013 - 01:18 PM

Done!  Cheers.

 

 Results of screen317's Security Check version 0.99.71 
 Windows 7 Service Pack 1 x86 (UAC is enabled) 
 Internet Explorer 10 
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled! 
avast! Antivirus  
COMODO Antivirus  
 Antivirus up to date!  (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
 SpywareBlaster 5.0   
 Spybot - Search & Destroy
 Malwarebytes Anti-Malware version 1.75.0.1300 
 Adobe Flash Player  11.8.800.94 
 Adobe Reader 10.1.7 Adobe Reader out of Date! 
 Mozilla Firefox (22.0)
````````Process Check: objlist.exe by Laurent```````` 
 Spybot Teatimer.exe is disabled!
 Comodo Firewall cmdagent.exe
 Comodo Firewall cfp.exe
 Alwil Software Avast5 AvastSvc.exe 
 Alwil Software Avast5 AvastUI.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````
 



#7 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:52 AM

Posted 04 August 2013 - 01:35 PM

:step1: Install new version of Adobe Reader: http://get.adobe.com/reader/

 

:step2: The log indicates Avast 5  <== Is this your version? Because now it's Avast 8.X


Edited by GodfatherKing, 04 August 2013 - 01:36 PM.

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#8 SwinnyA

SwinnyA
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:52 PM

Posted 04 August 2013 - 02:24 PM

Yes on 8.0.1499

 

Done my adobe update!



#9 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:52 AM

Posted 04 August 2013 - 03:08 PM

:warrior: Happy and safe browsing again.


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#10 SwinnyA

SwinnyA
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:52 PM

Posted 05 August 2013 - 02:00 AM

Thanks a lot - much appreciated.  SpyBot is still pulling up the Win32.Downloader.gen; shall I just ignore as a false reading?



#11 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:52 AM

Posted 05 August 2013 - 09:43 AM

Spybot isn't recommend anymore, to do with it's low detection ratio. I would remove it and just use MBAM instead. 


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users