Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Popup add in bottom right corner coupled with redirects


  • Please log in to reply
3 replies to this topic

#1 Layfield50

Layfield50

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:03:18 AM

Posted 30 June 2012 - 08:24 PM

On 18 May 2012 - 05:36 AM, member "Coopers1234" posted the following:

Hey,

I randomly get adds that appear on the bottom right hand corner of my browser window. These adds usually appear in the shape of an iphone, when i close the add it minimises into a "recommended for you" white box. Now whenever these adds appear the next link i click redirects me to an random advertisement site.

I am running Windows 7 64-bit OS with chrome. I have run Ad-Aware, Malware Bytes, Avast and Bit Defender, all of which have come up clean.

Thanks in advance.


Well, I too am having the exact same problem and I too am using Win7 64 bit. All of my browsers give me the same results. The one thing I can add is that I have run rkill in advance of running the likes of Spybot S&D, Malwarebytes and SUPERAntiSpyware. Nothing I've been able to do seems to identify, detain and eradicate this seriously pesky and annoying fiend.

Would someone please walk me through the process of getting rid of this malware and maybe enlighten me on where is came from and how I managed to become infected. Surely this is a problem experience by many others; I'd like to be able to be of assistance should I be asked to help a friend or relative should they end up with the same problem.

As Mr. Coopers1234 said, Thanks in advance.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:18 AM

Posted 30 June 2012 - 09:18 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Layfield50

Layfield50
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:03:18 AM

Posted 01 July 2012 - 06:06 AM

Hello and thanks for your assistance.

TDSSKiller LOG

21:07:17.0377 9676 TDSS rootkit removing tool 2.7.43.0 Jun 29 2012 17:54:22
21:07:18.0191 9676 ============================================================
21:07:18.0191 9676 Current date / time: 2012/06/30 21:07:18.0191
21:07:18.0191 9676 SystemInfo:
21:07:18.0191 9676
21:07:18.0191 9676 OS Version: 6.1.7601 ServicePack: 1.0
21:07:18.0191 9676 Product type: Workstation
21:07:18.0191 9676 ComputerName: CM_STORM
21:07:18.0192 9676 UserName: Mike
21:07:18.0192 9676 Windows directory: C:\Windows
21:07:18.0192 9676 System windows directory: C:\Windows
21:07:18.0192 9676 Running under WOW64
21:07:18.0192 9676 Processor architecture: Intel x64
21:07:18.0192 9676 Number of processors: 4
21:07:18.0192 9676 Page size: 0x1000
21:07:18.0192 9676 Boot type: Normal boot
21:07:18.0192 9676 ============================================================
21:07:19.0680 9676 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:07:19.0680 9676 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:07:19.0694 9676 Drive \Device\Harddisk2\DR2 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:07:19.0697 9676 Drive \Device\Harddisk10\DR10 - Size: 0x1D5800000 (7.34 Gb), SectorSize: 0x200, Cylinders: 0x3BD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:07:19.0737 9676 Drive \Device\Harddisk3\DR3 - Size: 0x1D1BF100000 (1862.99 Gb), SectorSize: 0x200, Cylinders: 0x3B5FD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:07:19.0738 9676 Drive \Device\Harddisk4\DR4 - Size: 0x1E93C000 (0.48 Gb), SectorSize: 0x200, Cylinders: 0x3E, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:07:19.0768 9676 Drive \Device\Harddisk9\DR9 - Size: 0x4A85D55E00 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:07:19.0769 9676 ============================================================
21:07:19.0769 9676 \Device\Harddisk0\DR0:
21:07:19.0769 9676 MBR partitions:
21:07:19.0769 9676 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
21:07:19.0769 9676 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x70C3B800
21:07:19.0769 9676 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x70C6E000, BlocksNum 0x3A97800
21:07:19.0769 9676 \Device\Harddisk1\DR1:
21:07:19.0770 9676 MBR partitions:
21:07:19.0770 9676 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0x74701AC1
21:07:19.0770 9676 \Device\Harddisk2\DR2:
21:07:19.0770 9676 MBR partitions:
21:07:19.0770 9676 \Device\Harddisk2\DR2\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07800
21:07:19.0770 9676 \Device\Harddisk10\DR10:
21:07:19.0770 9676 MBR partitions:
21:07:19.0770 9676 \Device\Harddisk10\DR10\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xEABFC1
21:07:19.0770 9676 \Device\Harddisk3\DR3:
21:07:19.0771 9676 MBR partitions:
21:07:19.0771 9676 \Device\Harddisk3\DR3\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8DF8000
21:07:19.0771 9676 \Device\Harddisk4\DR4:
21:07:19.0771 9676 MBR partitions:
21:07:19.0771 9676 \Device\Harddisk4\DR4\Partition0: MBR, Type 0x6, StartLBA 0x3F, BlocksNum 0xF45B1
21:07:19.0771 9676 \Device\Harddisk9\DR9:
21:07:19.0772 9676 MBR partitions:
21:07:19.0772 9676 \Device\Harddisk9\DR9\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x2542D682
21:07:19.0772 9676 ============================================================
21:07:19.0783 9676 C: <-> \Device\Harddisk0\DR0\Partition1
21:07:19.0801 9676 E: <-> \Device\Harddisk1\DR1\Partition0
21:07:20.0251 9676 J: <-> \Device\Harddisk3\DR3\Partition0
21:07:20.0261 9676 F: <-> \Device\Harddisk2\DR2\Partition0
21:07:20.0265 9676 Q: <-> \Device\Harddisk9\DR9\Partition0
21:07:20.0296 9676 W: <-> \Device\Harddisk0\DR0\Partition2
21:07:20.0296 9676 ============================================================
21:07:20.0296 9676 Initialize success
21:07:20.0296 9676 ============================================================
21:07:52.0811 7580 ============================================================
21:07:52.0811 7580 Scan started
21:07:52.0811 7580 Mode: Manual; TDLFS;
21:07:52.0811 7580 ============================================================
21:07:53.0317 7580 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
21:07:53.0319 7580 !SASCORE - ok
21:07:53.0454 7580 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:07:53.0457 7580 1394ohci - ok
21:07:53.0487 7580 61883 (e0a8525a951addb4655bc2068566407d) C:\Windows\system32\DRIVERS\61883.sys
21:07:53.0495 7580 61883 - ok
21:07:53.0584 7580 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
21:07:53.0609 7580 ACDaemon - ok
21:07:53.0657 7580 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:07:53.0660 7580 ACPI - ok
21:07:53.0676 7580 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:07:53.0681 7580 AcpiPmi - ok
21:07:53.0759 7580 AcrSch2Svc (fbd29cbbd4f3fd3d03e66bbeb22f6a0d) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
21:07:53.0764 7580 AcrSch2Svc - ok
21:07:53.0810 7580 adfs (2f0683fd2df1d92e891caca14b45a8c1) C:\Windows\system32\drivers\adfs.sys
21:07:53.0817 7580 adfs - ok
21:07:53.0896 7580 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:07:53.0897 7580 AdobeARMservice - ok
21:07:53.0961 7580 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:07:54.0054 7580 adp94xx - ok
21:07:54.0089 7580 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:07:54.0154 7580 adpahci - ok
21:07:54.0177 7580 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:07:54.0183 7580 adpu320 - ok
21:07:54.0232 7580 ADVService (7233688fc422ef657e082309e6180142) C:\Program Files (x86)\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe
21:07:54.0233 7580 ADVService - ok
21:07:54.0262 7580 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:07:54.0265 7580 AeLookupSvc - ok
21:07:54.0350 7580 Afc (0d0e5281784c2c526ba43c2ecd374288) C:\Windows\syswow64\drivers\Afc.sys
21:07:54.0358 7580 Afc - ok
21:07:54.0419 7580 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
21:07:54.0424 7580 AFD - ok
21:07:54.0453 7580 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:07:54.0461 7580 agp440 - ok
21:07:54.0494 7580 Akamai - ok
21:07:54.0515 7580 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:07:54.0524 7580 ALG - ok
21:07:54.0538 7580 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:07:54.0546 7580 aliide - ok
21:07:54.0551 7580 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:07:54.0559 7580 amdide - ok
21:07:54.0591 7580 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:07:54.0599 7580 AmdK8 - ok
21:07:54.0618 7580 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:07:54.0627 7580 AmdPPM - ok
21:07:54.0663 7580 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:07:54.0673 7580 amdsata - ok
21:07:54.0696 7580 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:07:54.0708 7580 amdsbs - ok
21:07:54.0725 7580 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:07:54.0733 7580 amdxata - ok
21:07:54.0770 7580 AMP (6fd5fd2f0e6d779db19bca6aadf0ee40) C:\Windows\system32\DRIVERS\amp.sys
21:07:54.0789 7580 AMP - ok
21:07:54.0888 7580 AMPSE (5f8a1f692bc5f68150354c18fd85259e) C:\Windows\system32\DRIVERS\ampse.sys
21:07:54.0916 7580 AMPSE - ok
21:07:55.0048 7580 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:07:55.0058 7580 AppID - ok
21:07:55.0117 7580 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:07:55.0125 7580 AppIDSvc - ok
21:07:55.0160 7580 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
21:07:55.0162 7580 Appinfo - ok
21:07:55.0197 7580 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
21:07:55.0208 7580 AppMgmt - ok
21:07:55.0236 7580 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:07:55.0246 7580 arc - ok
21:07:55.0347 7580 archlp (29e7252fa743b15bce1a2245c5643a02) C:\Windows\syswow64\drivers\archlp.sys
21:07:55.0358 7580 archlp - ok
21:07:55.0382 7580 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:07:55.0391 7580 arcsas - ok
21:07:55.0417 7580 AsIO (a82c01606dc27d05d9d3bfb6bb807e32) C:\Windows\syswow64\drivers\AsIO.sys
21:07:55.0424 7580 AsIO - ok
21:07:55.0473 7580 AsSysCtrlService (798a87b2d7ad73b16b7cd968c5d1f18f) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
21:07:55.0474 7580 AsSysCtrlService - ok
21:07:55.0478 7580 Asushwio - ok
21:07:55.0495 7580 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:07:55.0503 7580 AsyncMac - ok
21:07:55.0535 7580 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:07:55.0536 7580 atapi - ok
21:07:55.0735 7580 athr (a1b725acd44984a7e181455babc20168) C:\Windows\system32\DRIVERS\athrx.sys
21:07:55.0787 7580 athr - ok
21:07:55.0931 7580 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:07:55.0941 7580 AudioEndpointBuilder - ok
21:07:55.0949 7580 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:07:55.0955 7580 AudioSrv - ok
21:07:56.0000 7580 Avc (16fabe84916623d0607e4a975544032c) C:\Windows\system32\DRIVERS\avc.sys
21:07:56.0009 7580 Avc - ok
21:07:56.0040 7580 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
21:07:56.0047 7580 AxInstSV - ok
21:07:56.0105 7580 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:07:56.0117 7580 b06bdrv - ok
21:07:56.0135 7580 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:07:56.0145 7580 b57nd60a - ok
21:07:56.0343 7580 BCM43XX (fb4fda64f2e8552eaeb5986c3f34462c) C:\Windows\system32\DRIVERS\bcmwl664.sys
21:07:56.0385 7580 BCM43XX - ok
21:07:56.0476 7580 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:07:56.0486 7580 BDESVC - ok
21:07:56.0522 7580 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:07:56.0528 7580 Beep - ok
21:07:56.0598 7580 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
21:07:56.0607 7580 BFE - ok
21:07:56.0662 7580 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
21:07:56.0680 7580 BITS - ok
21:07:56.0702 7580 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:07:56.0707 7580 blbdrive - ok
21:07:56.0740 7580 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:07:56.0748 7580 bowser - ok
21:07:56.0764 7580 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:07:56.0772 7580 BrFiltLo - ok
21:07:56.0780 7580 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:07:56.0786 7580 BrFiltUp - ok
21:07:56.0805 7580 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
21:07:56.0808 7580 Browser - ok
21:07:56.0858 7580 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:07:56.0869 7580 Brserid - ok
21:07:56.0883 7580 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:07:56.0890 7580 BrSerWdm - ok
21:07:56.0902 7580 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:07:56.0908 7580 BrUsbMdm - ok
21:07:56.0922 7580 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:07:56.0928 7580 BrUsbSer - ok
21:07:56.0950 7580 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:07:56.0957 7580 BTHMODEM - ok
21:07:56.0992 7580 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:07:56.0999 7580 bthserv - ok
21:07:57.0024 7580 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:07:57.0025 7580 cdfs - ok
21:07:57.0110 7580 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
21:07:57.0121 7580 cdrom - ok
21:07:57.0180 7580 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:07:57.0181 7580 CertPropSvc - ok
21:07:57.0200 7580 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:07:57.0207 7580 circlass - ok
21:07:57.0252 7580 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:07:57.0257 7580 CLFS - ok
21:07:57.0378 7580 CLKMSVC10_9EC60124 (fe1c81a049e5c5d67c4ab7c31c899f6f) C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe
21:07:57.0595 7580 CLKMSVC10_9EC60124 - ok
21:07:57.0636 7580 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:07:57.0650 7580 clr_optimization_v2.0.50727_32 - ok
21:07:57.0693 7580 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:07:57.0699 7580 clr_optimization_v2.0.50727_64 - ok
21:07:57.0766 7580 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:07:57.0791 7580 clr_optimization_v4.0.30319_32 - ok
21:07:57.0816 7580 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:07:57.0823 7580 clr_optimization_v4.0.30319_64 - ok
21:07:57.0904 7580 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:07:57.0909 7580 CmBatt - ok
21:07:57.0934 7580 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:07:57.0939 7580 cmdide - ok
21:07:57.0997 7580 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
21:07:58.0015 7580 CNG - ok
21:07:58.0036 7580 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:07:58.0044 7580 Compbatt - ok
21:07:58.0070 7580 CompFilter64 (403433d758c2d8908937265c1fb34f34) C:\Windows\system32\DRIVERS\lvbflt64.sys
21:07:58.0072 7580 CompFilter64 - ok
21:07:58.0087 7580 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
21:07:58.0095 7580 CompositeBus - ok
21:07:58.0100 7580 COMSysApp - ok
21:07:58.0122 7580 cpuz135 (ccb09eb78e047c931708149992c2e435) C:\Windows\system32\drivers\cpuz135_x64.sys
21:07:58.0130 7580 cpuz135 - ok
21:07:58.0167 7580 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:07:58.0174 7580 crcdisk - ok
21:07:58.0220 7580 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
21:07:58.0224 7580 CryptSvc - ok
21:07:58.0293 7580 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
21:07:58.0309 7580 CSC - ok
21:07:58.0375 7580 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
21:07:58.0382 7580 CscService - ok
21:07:58.0431 7580 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:07:58.0438 7580 DcomLaunch - ok
21:07:58.0475 7580 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:07:58.0479 7580 defragsvc - ok
21:07:58.0527 7580 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:07:58.0538 7580 DfsC - ok
21:07:58.0586 7580 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
21:07:58.0592 7580 Dhcp - ok
21:07:58.0618 7580 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:07:58.0625 7580 discache - ok
21:07:58.0634 7580 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:07:58.0673 7580 Disk - ok
21:07:58.0711 7580 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
21:07:58.0714 7580 Dnscache - ok
21:07:58.0764 7580 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
21:07:58.0778 7580 dot3svc - ok
21:07:58.0814 7580 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
21:07:58.0816 7580 DPS - ok
21:07:58.0840 7580 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:07:58.0845 7580 drmkaud - ok
21:07:58.0921 7580 DvmMDES (e5b95c75557120881076c45cd146d72c) C:\ASUS.SYS\config\DVMExportService.exe
21:07:58.0925 7580 DvmMDES - ok
21:07:59.0011 7580 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:07:59.0029 7580 DXGKrnl - ok
21:07:59.0083 7580 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:07:59.0086 7580 EapHost - ok
21:07:59.0313 7580 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:07:59.0353 7580 ebdrv - ok
21:07:59.0458 7580 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
21:07:59.0461 7580 EFS - ok
21:07:59.0546 7580 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
21:07:59.0564 7580 ehRecvr - ok
21:07:59.0595 7580 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:07:59.0605 7580 ehSched - ok
21:07:59.0641 7580 ElRawDisk (d38a883309e04b9fbffe1aca60ea3bbf) C:\Windows\system32\drivers\ElRawDsk.sys
21:07:59.0648 7580 ElRawDisk - ok
21:07:59.0711 7580 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:07:59.0730 7580 elxstor - ok
21:07:59.0755 7580 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:07:59.0760 7580 ErrDev - ok
21:07:59.0838 7580 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:07:59.0841 7580 EventSystem - ok
21:07:59.0863 7580 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:07:59.0872 7580 exfat - ok
21:07:59.0897 7580 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:07:59.0906 7580 fastfat - ok
21:07:59.0985 7580 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
21:07:59.0992 7580 Fax - ok
21:08:00.0024 7580 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:08:00.0031 7580 fdc - ok
21:08:00.0056 7580 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:08:00.0058 7580 fdPHost - ok
21:08:00.0066 7580 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:08:00.0074 7580 FDResPub - ok
21:08:00.0077 7580 FileDisk - ok
21:08:00.0092 7580 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:08:00.0101 7580 FileInfo - ok
21:08:00.0117 7580 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:08:00.0125 7580 Filetrace - ok
21:08:00.0233 7580 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
21:08:00.0316 7580 FLEXnet Licensing Service - ok
21:08:00.0407 7580 FLEXnet Licensing Service 64 (1c3fb052a0bb72edaed90785c34d6eed) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
21:08:00.0466 7580 FLEXnet Licensing Service 64 - ok
21:08:00.0558 7580 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:08:00.0566 7580 flpydisk - ok
21:08:00.0609 7580 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:08:00.0611 7580 FltMgr - ok
21:08:00.0704 7580 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
21:08:00.0714 7580 FontCache - ok
21:08:00.0772 7580 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:08:00.0785 7580 FontCache3.0.0.0 - ok
21:08:00.0828 7580 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:08:00.0836 7580 FsDepends - ok
21:08:00.0869 7580 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
21:08:00.0877 7580 Fs_Rec - ok
21:08:00.0920 7580 FTDIBUS (fa169871d8fadcc6539c4e8726610286) C:\Windows\system32\drivers\ftdibus.sys
21:08:00.0929 7580 FTDIBUS - ok
21:08:00.0939 7580 FTSER2K (24237091348d1efb5635a1cf9649e311) C:\Windows\system32\drivers\ftser2k.sys
21:08:00.0947 7580 FTSER2K - ok
21:08:00.0991 7580 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:08:01.0002 7580 fvevol - ok
21:08:01.0051 7580 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:08:01.0059 7580 gagp30kx - ok
21:08:01.0139 7580 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
21:08:01.0155 7580 gpsvc - ok
21:08:01.0295 7580 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:08:01.0296 7580 gupdate - ok
21:08:01.0299 7580 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:08:01.0299 7580 gupdatem - ok
21:08:01.0321 7580 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:08:01.0325 7580 hcw85cir - ok
21:08:01.0727 7580 hcwhdpvr (8d7f985ce023640b8d24eac045d7babe) C:\Windows\system32\DRIVERS\hcwhdpvr.sys
21:08:01.0739 7580 hcwhdpvr - ok
21:08:01.0775 7580 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:08:01.0785 7580 HdAudAddService - ok
21:08:01.0816 7580 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
21:08:01.0817 7580 HDAudBus - ok
21:08:01.0847 7580 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:08:01.0851 7580 HidBatt - ok
21:08:01.0866 7580 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:08:01.0872 7580 HidBth - ok
21:08:01.0889 7580 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:08:01.0895 7580 HidIr - ok
21:08:01.0924 7580 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
21:08:01.0926 7580 hidserv - ok
21:08:01.0963 7580 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
21:08:01.0968 7580 HidUsb - ok
21:08:02.0003 7580 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
21:08:02.0010 7580 hkmsvc - ok
21:08:02.0088 7580 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
21:08:02.0095 7580 HomeGroupListener - ok
21:08:02.0822 7580 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
21:08:02.0827 7580 HomeGroupProvider - ok
21:08:02.0866 7580 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:08:02.0875 7580 HpSAMD - ok
21:08:02.0946 7580 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:08:02.0964 7580 HTTP - ok
21:08:02.0994 7580 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:08:02.0995 7580 hwpolicy - ok
21:08:03.0022 7580 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
21:08:03.0031 7580 i8042prt - ok
21:08:03.0118 7580 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:08:03.0136 7580 iaStorV - ok
21:08:03.0186 7580 IDMWFP (2a63036283b36b3b68cdc6f85a7d53ed) C:\Windows\system32\DRIVERS\idmwfp.sys
21:08:03.0196 7580 IDMWFP - ok
21:08:03.0283 7580 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:08:03.0319 7580 IDriverT - ok
21:08:03.0412 7580 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:08:03.0433 7580 idsvc - ok
21:08:03.0463 7580 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:08:03.0468 7580 iirsp - ok
21:08:03.0543 7580 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
21:08:03.0553 7580 IKEEXT - ok
21:08:03.0580 7580 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:08:03.0587 7580 intelide - ok
21:08:03.0611 7580 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:08:03.0612 7580 intelppm - ok
21:08:03.0761 7580 ioloFileInfoList (440a02fa25be8dccd2103d820036eda1) C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
21:08:04.0663 7580 ioloFileInfoList - ok
21:08:04.0669 7580 ioloSystemService (440a02fa25be8dccd2103d820036eda1) C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
21:08:04.0673 7580 ioloSystemService - ok
21:08:04.0793 7580 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:08:04.0803 7580 IPBusEnum - ok
21:08:04.0867 7580 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:08:04.0871 7580 IpFilterDriver - ok
21:08:05.0013 7580 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
21:08:05.0018 7580 iphlpsvc - ok
21:08:05.0095 7580 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:08:05.0100 7580 IPMIDRV - ok
21:08:05.0159 7580 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:08:05.0168 7580 IPNAT - ok
21:08:05.0190 7580 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:08:05.0195 7580 IRENUM - ok
21:08:05.0215 7580 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:08:05.0220 7580 isapnp - ok
21:08:05.0251 7580 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:08:05.0259 7580 iScsiPrt - ok
21:08:05.0396 7580 jswpsapi (cd9f4e53da79ed4cd7562604fe9523a6) C:\Program Files (x86)\D-Link\DWA-552 revA\jswpsapi.exe
21:08:05.0669 7580 jswpsapi - ok
21:08:05.0688 7580 JSWPSLWF (5be640e88814b77a9e84b4549b5dcc2c) C:\Windows\system32\DRIVERS\jswpslwfx.sys
21:08:05.0692 7580 JSWPSLWF - ok
21:08:05.0715 7580 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
21:08:05.0720 7580 kbdclass - ok
21:08:05.0737 7580 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
21:08:05.0742 7580 kbdhid - ok
21:08:05.0774 7580 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:08:05.0775 7580 KeyIso - ok
21:08:05.0789 7580 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
21:08:05.0795 7580 KSecDD - ok
21:08:05.0813 7580 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
21:08:05.0819 7580 KSecPkg - ok
21:08:05.0841 7580 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:08:05.0846 7580 ksthunk - ok
21:08:05.0894 7580 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:08:05.0911 7580 KtmRm - ok
21:08:05.0954 7580 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
21:08:05.0960 7580 LanmanServer - ok
21:08:05.0999 7580 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
21:08:06.0004 7580 LanmanWorkstation - ok
21:08:06.0148 7580 LightScribeService (fcbdcc6f1801e32244235608e1277752) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
21:08:06.0149 7580 LightScribeService - ok
21:08:06.0182 7580 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:08:06.0189 7580 lltdio - ok
21:08:06.0326 7580 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:08:06.0427 7580 lltdsvc - ok
21:08:06.0437 7580 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:08:06.0441 7580 lmhosts - ok
21:08:06.0470 7580 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:08:06.0475 7580 LSI_FC - ok
21:08:06.0495 7580 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:08:06.0501 7580 LSI_SAS - ok
21:08:06.0514 7580 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:08:06.0520 7580 LSI_SAS2 - ok
21:08:06.0538 7580 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:08:06.0544 7580 LSI_SCSI - ok
21:08:06.0572 7580 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:08:06.0577 7580 luafv - ok
21:08:06.0604 7580 LVPr2M64 (b3944d06eb4b64d57bd7e5fe89415f58) C:\Windows\system32\DRIVERS\LVPr2M64.sys
21:08:06.0609 7580 LVPr2M64 - ok
21:08:06.0611 7580 LVPr2Mon (b3944d06eb4b64d57bd7e5fe89415f58) C:\Windows\system32\DRIVERS\LVPr2M64.sys
21:08:06.0612 7580 LVPr2Mon - ok
21:08:06.0663 7580 LVRS64 (ef2be2f45d4f06410a3bd2a3467325b0) C:\Windows\system32\DRIVERS\lvrs64.sys
21:08:06.0678 7580 LVRS64 - ok
21:08:06.0705 7580 lvsels64 (b0c0292b0c70e203cba44333c0e3d106) C:\Windows\system32\DRIVERS\lvsels64.sys
21:08:06.0713 7580 lvsels64 - ok
21:08:07.0022 7580 LVUVC64 (ac22f92c6078640fe8a70d662a2f3ad5) C:\Windows\system32\DRIVERS\lvuvc64.sys
21:08:07.0112 7580 LVUVC64 - ok
21:08:07.0239 7580 MAUSBPRODUCER (b3f713f0ba5d662de1b49293ffb03c06) C:\Windows\system32\DRIVERS\MAudioProducer.sys
21:08:07.0250 7580 MAUSBPRODUCER - ok
21:08:07.0279 7580 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
21:08:07.0288 7580 Mcx2Svc - ok
21:08:07.0320 7580 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:08:07.0328 7580 megasas - ok
21:08:07.0362 7580 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:08:07.0482 7580 MegaSR - ok
21:08:07.0510 7580 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:08:07.0511 7580 MMCSS - ok
21:08:07.0516 7580 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:08:07.0522 7580 Modem - ok
21:08:07.0559 7580 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:08:07.0564 7580 monitor - ok
21:08:07.0590 7580 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:08:07.0595 7580 mouclass - ok
21:08:07.0628 7580 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:08:07.0634 7580 mouhid - ok
21:08:07.0676 7580 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:08:07.0682 7580 mountmgr - ok
21:08:07.0761 7580 MozillaMaintenance (03de7c5fc16862b325b0e22e3c0bb63a) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:08:07.0793 7580 MozillaMaintenance - ok
21:08:07.0864 7580 mozybackup (de05af0201f216ac8c99b2c116ecd80a) C:\Program Files\MozyHome\mozybackup.exe
21:08:07.0865 7580 mozybackup - ok
21:08:07.0908 7580 mozyFilter (63aacae26891eddd23ce697651582c35) C:\Windows\system32\DRIVERS\mozy.sys
21:08:07.0917 7580 mozyFilter - ok
21:08:07.0961 7580 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:08:07.0972 7580 mpio - ok
21:08:08.0010 7580 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:08:08.0020 7580 mpsdrv - ok
21:08:08.0099 7580 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
21:08:08.0112 7580 MpsSvc - ok
21:08:08.0145 7580 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:08:08.0155 7580 MRxDAV - ok
21:08:08.0191 7580 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:08:08.0202 7580 mrxsmb - ok
21:08:08.0251 7580 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:08:08.0265 7580 mrxsmb10 - ok
21:08:08.0286 7580 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:08:08.0296 7580 mrxsmb20 - ok
21:08:08.0327 7580 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:08:08.0334 7580 msahci - ok
21:08:08.0374 7580 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:08:08.0383 7580 msdsm - ok
21:08:08.0423 7580 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:08:08.0433 7580 MSDTC - ok
21:08:08.0453 7580 MSDV (72949a24d37a20a54b3d4d3dadbb55e9) C:\Windows\system32\DRIVERS\msdv.sys
21:08:08.0459 7580 MSDV - ok
21:08:08.0489 7580 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:08:08.0494 7580 Msfs - ok
21:08:08.0505 7580 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:08:08.0510 7580 mshidkmdf - ok
21:08:08.0547 7580 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:08:08.0552 7580 msisadrv - ok
21:08:08.0584 7580 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:08:08.0592 7580 MSiSCSI - ok
21:08:08.0596 7580 msiserver - ok
21:08:08.0617 7580 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:08:08.0623 7580 MSKSSRV - ok
21:08:08.0632 7580 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:08:08.0637 7580 MSPCLOCK - ok
21:08:08.0648 7580 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:08:08.0652 7580 MSPQM - ok
21:08:08.0716 7580 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:08:08.0732 7580 MsRPC - ok
21:08:08.0750 7580 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
21:08:08.0751 7580 mssmbios - ok
21:08:08.0766 7580 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:08:08.0770 7580 MSTEE - ok
21:08:08.0794 7580 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:08:08.0798 7580 MTConfig - ok
21:08:08.0824 7580 MTsensor (19b006b181e3875fd254f7b67acf1e7c) C:\Windows\system32\DRIVERS\ASACPI.sys
21:08:08.0829 7580 MTsensor - ok
21:08:08.0848 7580 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:08:08.0853 7580 Mup - ok
21:08:08.0911 7580 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
21:08:08.0920 7580 napagent - ok
21:08:08.0958 7580 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:08:08.0969 7580 NativeWifiP - ok
21:08:09.0044 7580 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:08:09.0055 7580 NDIS - ok
21:08:09.0087 7580 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:08:09.0094 7580 NdisCap - ok
21:08:09.0110 7580 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:08:09.0117 7580 NdisTapi - ok
21:08:09.0157 7580 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:08:09.0165 7580 Ndisuio - ok
21:08:09.0204 7580 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:08:09.0215 7580 NdisWan - ok
21:08:09.0230 7580 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:08:09.0236 7580 NDProxy - ok
21:08:09.0396 7580 Nero BackItUp Scheduler 3 (78073f606ae3b24f6c1f555759aa8511) C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
21:08:09.0434 7580 Nero BackItUp Scheduler 3 - ok
21:08:09.0452 7580 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:08:09.0456 7580 NetBIOS - ok
21:08:09.0502 7580 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:08:09.0505 7580 NetBT - ok
21:08:09.0541 7580 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:08:09.0543 7580 Netlogon - ok
21:08:09.0598 7580 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:08:09.0604 7580 Netman - ok
21:08:09.0651 7580 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:08:09.0658 7580 netprofm - ok
21:08:09.0721 7580 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:08:09.0737 7580 NetTcpPortSharing - ok
21:08:09.0769 7580 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:08:09.0777 7580 nfrd960 - ok
21:08:09.0832 7580 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
21:08:09.0838 7580 NlaSvc - ok
21:08:09.0950 7580 NMIndexingService (37a39e3271842bae754540fe004d9cb5) C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
21:08:09.0989 7580 NMIndexingService - ok
21:08:10.0009 7580 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:08:10.0014 7580 Npfs - ok
21:08:10.0045 7580 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:08:10.0046 7580 nsi - ok
21:08:10.0061 7580 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:08:10.0068 7580 nsiproxy - ok
21:08:10.0246 7580 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:08:10.0268 7580 Ntfs - ok
21:08:10.0358 7580 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:08:10.0365 7580 Null - ok
21:08:10.0398 7580 nusb3hub (f5bc2345e8c89d4e90fafd23a2239935) C:\Windows\system32\DRIVERS\nusb3hub.sys
21:08:10.0407 7580 nusb3hub - ok
21:08:10.0424 7580 nusb3xhc (5d42578241bc2a9b4a64837077436d5f) C:\Windows\system32\DRIVERS\nusb3xhc.sys
21:08:10.0434 7580 nusb3xhc - ok
21:08:11.0258 7580 nvlddmkm (9c1996dd3c0469bc8933321f15709f5a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:08:11.0448 7580 nvlddmkm - ok
21:08:11.0571 7580 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:08:11.0581 7580 nvraid - ok
21:08:11.0598 7580 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:08:11.0607 7580 nvstor - ok
21:08:11.0692 7580 nvsvc (34e5498528bb3d5a951f889f8756ad26) C:\Windows\system32\nvvsvc.exe
21:08:11.0704 7580 nvsvc - ok
21:08:11.0895 7580 nvUpdatusService (cd0bfaa6872cfe38c908d313ae17c350) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:08:11.0957 7580 nvUpdatusService - ok
21:08:12.0073 7580 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:08:12.0081 7580 nv_agp - ok
21:08:12.0089 7580 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:08:12.0096 7580 ohci1394 - ok
21:08:12.0146 7580 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:08:12.0151 7580 p2pimsvc - ok
21:08:12.0202 7580 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:08:12.0210 7580 p2psvc - ok
21:08:12.0225 7580 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:08:12.0234 7580 Parport - ok
21:08:12.0268 7580 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
21:08:12.0277 7580 partmgr - ok
21:08:12.0312 7580 PcaSp60 (5eacb8a19cad7057806fbbf9550165e1) C:\Windows\system32\DRIVERS\PcaSp60.sys
21:08:12.0320 7580 PcaSp60 - ok
21:08:12.0353 7580 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:08:12.0357 7580 PcaSvc - ok
21:08:12.0403 7580 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:08:12.0414 7580 pci - ok
21:08:12.0427 7580 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:08:12.0433 7580 pciide - ok
21:08:12.0469 7580 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:08:12.0478 7580 pcmcia - ok
21:08:12.0499 7580 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:08:12.0505 7580 pcw - ok
21:08:12.0567 7580 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:08:12.0588 7580 PEAUTH - ok
21:08:12.0693 7580 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
21:08:12.0711 7580 PeerDistSvc - ok
21:08:12.0789 7580 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:08:12.0810 7580 PerfHost - ok
21:08:12.0897 7580 pfc - ok
21:08:13.0013 7580 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
21:08:13.0042 7580 pla - ok
21:08:13.0099 7580 PLFlash DeviceIoControl Service (875e4e0661f3a5994df9e5e3a0a4f96b) C:\Windows\SysWOW64\IoctlSvc.exe
21:08:13.0285 7580 PLFlash DeviceIoControl Service - ok
21:08:13.0369 7580 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
21:08:13.0375 7580 PlugPlay - ok
21:08:13.0514 7580 PMBDeviceInfoProvider (63694c307273062a2167ae4ce80730ef) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
21:08:13.0518 7580 PMBDeviceInfoProvider - ok
21:08:13.0543 7580 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:08:13.0552 7580 PNRPAutoReg - ok
21:08:13.0595 7580 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:08:13.0600 7580 PNRPsvc - ok
21:08:13.0671 7580 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
21:08:13.0689 7580 PolicyAgent - ok
21:08:13.0721 7580 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
21:08:13.0724 7580 Power - ok
21:08:13.0772 7580 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:08:13.0782 7580 PptpMiniport - ok
21:08:13.0819 7580 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:08:13.0828 7580 Processor - ok
21:08:13.0872 7580 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
21:08:13.0877 7580 ProfSvc - ok
21:08:13.0907 7580 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:08:13.0909 7580 ProtectedStorage - ok
21:08:13.0949 7580 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:08:13.0958 7580 Psched - ok
21:08:14.0073 7580 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:08:14.0101 7580 ql2300 - ok
21:08:14.0260 7580 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:08:14.0270 7580 ql40xx - ok
21:08:14.0320 7580 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:08:14.0333 7580 QWAVE - ok
21:08:14.0353 7580 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:08:14.0359 7580 QWAVEdrv - ok
21:08:14.0377 7580 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:08:14.0384 7580 RasAcd - ok
21:08:14.0409 7580 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:08:14.0416 7580 RasAgileVpn - ok
21:08:14.0428 7580 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:08:14.0437 7580 RasAuto - ok
21:08:14.0469 7580 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:08:14.0476 7580 Rasl2tp - ok
21:08:14.0527 7580 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
21:08:14.0540 7580 RasMan - ok
21:08:14.0566 7580 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:08:14.0573 7580 RasPppoe - ok
21:08:14.0595 7580 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:08:14.0602 7580 RasSstp - ok
21:08:14.0656 7580 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:08:14.0668 7580 rdbss - ok
21:08:14.0685 7580 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:08:14.0692 7580 rdpbus - ok
21:08:14.0708 7580 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:08:14.0714 7580 RDPCDD - ok
21:08:14.0759 7580 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
21:08:14.0768 7580 RDPDR - ok
21:08:14.0788 7580 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:08:14.0793 7580 RDPENCDD - ok
21:08:14.0802 7580 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:08:14.0807 7580 RDPREFMP - ok
21:08:14.0849 7580 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
21:08:14.0859 7580 RDPWD - ok
21:08:14.0904 7580 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:08:14.0971 7580 rdyboost - ok
21:08:15.0016 7580 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:08:15.0026 7580 RemoteAccess - ok
21:08:15.0068 7580 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:08:15.0076 7580 RemoteRegistry - ok
21:08:15.0231 7580 RichVideo (f12a68ed55053940cadd59ca5e3468dd) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
21:08:15.0256 7580 RichVideo - ok
21:08:15.0278 7580 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:08:15.0279 7580 RpcEptMapper - ok
21:08:15.0295 7580 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:08:15.0299 7580 RpcLocator - ok
21:08:15.0363 7580 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:08:15.0368 7580 RpcSs - ok
21:08:15.0408 7580 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:08:15.0417 7580 rspndr - ok
21:08:15.0487 7580 RTL8167 (ee082e06a82ff630351d1e0ebbd3d8d0) C:\Windows\system32\DRIVERS\Rt64win7.sys
21:08:15.0504 7580 RTL8167 - ok
21:08:15.0536 7580 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
21:08:15.0542 7580 s3cap - ok
21:08:15.0574 7580 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:08:15.0576 7580 SamSs - ok
21:08:15.0631 7580 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
21:08:15.0635 7580 SASDIFSV - ok
21:08:15.0655 7580 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
21:08:15.0656 7580 SASKUTIL - ok
21:08:15.0680 7580 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:08:15.0685 7580 sbp2port - ok
21:08:15.0713 7580 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:08:15.0722 7580 SCardSvr - ok
21:08:15.0755 7580 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:08:15.0760 7580 scfilter - ok
21:08:15.0878 7580 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
21:08:15.0894 7580 Schedule - ok
21:08:15.0937 7580 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:08:15.0939 7580 SCPolicySvc - ok
21:08:15.0971 7580 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
21:08:15.0983 7580 SDRSVC - ok
21:08:16.0144 7580 SDScannerService (e1f35f902b825c7b18236271f398dda2) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
21:08:16.0189 7580 SDScannerService - ok
21:08:16.0268 7580 SDUpdateService (2db434f4ce96b3fb65d44b3ad5a4de3e) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
21:08:16.0276 7580 SDUpdateService - ok
21:08:16.0298 7580 SDWSCService (59dce6783f9ed27eb72c81466e363bf8) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
21:08:16.0300 7580 SDWSCService - ok
21:08:16.0411 7580 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:08:16.0419 7580 secdrv - ok
21:08:16.0452 7580 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
21:08:16.0461 7580 seclogon - ok
21:08:16.0500 7580 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
21:08:16.0503 7580 SENS - ok
21:08:16.0521 7580 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:08:16.0530 7580 SensrSvc - ok
21:08:16.0548 7580 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:08:16.0555 7580 Serenum - ok
21:08:16.0573 7580 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:08:16.0581 7580 Serial - ok
21:08:16.0613 7580 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:08:16.0620 7580 sermouse - ok
21:08:16.0670 7580 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
21:08:16.0675 7580 SessionEnv - ok
21:08:16.0703 7580 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:08:16.0710 7580 sffdisk - ok
21:08:16.0723 7580 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:08:16.0730 7580 sffp_mmc - ok
21:08:16.0740 7580 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:08:16.0747 7580 sffp_sd - ok
21:08:16.0775 7580 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:08:16.0780 7580 sfloppy - ok
21:08:16.0854 7580 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
21:08:16.0874 7580 SharedAccess - ok
21:08:16.0935 7580 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
21:08:16.0946 7580 ShellHWDetection - ok
21:08:16.0961 7580 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:08:16.0967 7580 SiSRaid2 - ok
21:08:16.0982 7580 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:08:16.0988 7580 SiSRaid4 - ok
21:08:17.0075 7580 SkypeUpdate (c70aebd3608ed9fcea2a1bae83567ffc) C:\Program Files (x86)\Skype\Updater\Updater.exe
21:08:17.0077 7580 SkypeUpdate - ok
21:08:17.0107 7580 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:08:17.0116 7580 Smb - ok
21:08:17.0161 7580 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:08:17.0167 7580 SNMPTRAP - ok
21:08:17.0187 7580 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:08:17.0192 7580 spldr - ok
21:08:17.0260 7580 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
21:08:17.0269 7580 Spooler - ok
21:08:17.0512 7580 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
21:08:17.0552 7580 sppsvc - ok
21:08:17.0648 7580 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:08:17.0658 7580 sppuinotify - ok
21:08:17.0743 7580 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:08:17.0760 7580 srv - ok
21:08:17.0817 7580 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:08:17.0831 7580 srv2 - ok
21:08:17.0853 7580 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:08:17.0861 7580 srvnet - ok
21:08:17.0889 7580 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:08:17.0897 7580 SSDPSRV - ok
21:08:17.0923 7580 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:08:17.0930 7580 SstpSvc - ok
21:08:18.0026 7580 Stereo Service (8544a200c40447e465f06e58687428bb) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:08:18.0030 7580 Stereo Service - ok
21:08:18.0059 7580 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:08:18.0067 7580 stexstor - ok
21:08:18.0139 7580 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
21:08:18.0159 7580 stisvc - ok
21:08:18.0200 7580 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
21:08:18.0208 7580 storflt - ok
21:08:18.0241 7580 StorSvc (c40841817ef57d491f22eb103da587cc) C:\Windows\system32\storsvc.dll
21:08:18.0250 7580 StorSvc - ok
21:08:18.0269 7580 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
21:08:18.0276 7580 storvsc - ok
21:08:18.0297 7580 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
21:08:18.0304 7580 swenum - ok
21:08:18.0373 7580 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:08:18.0390 7580 swprv - ok
21:08:18.0535 7580 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
21:08:18.0556 7580 SysMain - ok
21:08:18.0648 7580 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
21:08:18.0658 7580 TabletInputService - ok
21:08:18.0705 7580 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
21:08:18.0721 7580 TapiSrv - ok
21:08:18.0747 7580 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:08:18.0749 7580 TBS - ok
21:08:18.0905 7580 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
21:08:18.0931 7580 Tcpip - ok
21:08:19.0121 7580 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
21:08:19.0137 7580 TCPIP6 - ok
21:08:19.0209 7580 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:08:19.0217 7580 tcpipreg - ok
21:08:19.0251 7580 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:08:19.0259 7580 TDPIPE - ok
21:08:19.0297 7580 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
21:08:19.0305 7580 TDTCP - ok
21:08:19.0343 7580 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:08:19.0353 7580 tdx - ok
21:08:19.0374 7580 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
21:08:19.0382 7580 TermDD - ok
21:08:19.0444 7580 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
21:08:19.0463 7580 TermService - ok
21:08:19.0494 7580 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:08:19.0496 7580 Themes - ok
21:08:19.0526 7580 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:08:19.0529 7580 THREADORDER - ok
21:08:19.0550 7580 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:08:19.0554 7580 TrkWks - ok
21:08:19.0625 7580 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
21:08:19.0635 7580 TrustedInstaller - ok
21:08:19.0682 7580 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:08:19.0756 7580 tssecsrv - ok
21:08:19.0784 7580 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:08:19.0788 7580 TsUsbFlt - ok
21:08:19.0817 7580 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:08:19.0823 7580 tunnel - ok
21:08:19.0851 7580 TurboB (825e7a1f48fb8bcfba27c178aab4e275) C:\Windows\system32\DRIVERS\TurboB.sys
21:08:19.0855 7580 TurboB - ok
21:08:19.0906 7580 TurboBoost (b206be1174d5964d49a56bb6c4e0524a) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
21:08:19.0912 7580 TurboBoost - ok
21:08:19.0937 7580 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:08:19.0942 7580 uagp35 - ok
21:08:20.0003 7580 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:08:20.0018 7580 udfs - ok
21:08:20.0053 7580 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:08:20.0059 7580 UI0Detect - ok
21:08:20.0093 7580 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:08:20.0098 7580 uliagpkx - ok
21:08:20.0115 7580 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
21:08:20.0123 7580 umbus - ok
21:08:20.0141 7580 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:08:20.0148 7580 UmPass - ok
21:08:20.0192 7580 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
21:08:20.0196 7580 UmRdpService - ok
21:08:20.0349 7580 UMVPFSrv (927754abf077aeb5504be4e0f2c60c1b) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
21:08:20.0568 7580 UMVPFSrv - ok
21:08:20.0617 7580 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:08:20.0625 7580 upnphost - ok
21:08:20.0858 7580 USB28xxBGA (e68adc602cd39b28ae844131a3d3762c) C:\Windows\system32\DRIVERS\emBDA64.sys
21:08:20.0902 7580 USB28xxBGA - ok
21:08:20.0922 7580 USB28xxOEM (859a05f09f7d5cad8b77d4563ce53e51) C:\Windows\system32\DRIVERS\emOEM64.sys
21:08:20.0933 7580 USB28xxOEM - ok
21:08:20.0966 7580 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
21:08:20.0967 7580 usbaudio - ok
21:08:20.0991 7580 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
21:08:20.0997 7580 usbccgp - ok
21:08:21.0032 7580 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:08:21.0049 7580 usbcir - ok
21:08:21.0086 7580 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
21:08:21.0093 7580 usbehci - ok
21:08:21.0142 7580 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:08:21.0159 7580 usbhub - ok
21:08:21.0185 7580 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
21:08:21.0191 7580 usbohci - ok
21:08:21.0237 7580 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:08:21.0242 7580 usbprint - ok
21:08:21.0273 7580 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
21:08:21.0279 7580 usbscan - ok
21:08:21.0289 7580 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:08:21.0295 7580 USBSTOR - ok
21:08:21.0308 7580 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
21:08:21.0314 7580 usbuhci - ok
21:08:21.0333 7580 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:08:21.0338 7580 UxSms - ok
21:08:21.0374 7580 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:08:21.0375 7580 VaultSvc - ok
21:08:21.0400 7580 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:08:21.0406 7580 vdrvroot - ok
21:08:21.0480 7580 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
21:08:21.0487 7580 vds - ok
21:08:21.0519 7580 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:08:21.0527 7580 vga - ok
21:08:21.0544 7580 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:08:21.0552 7580 VgaSave - ok
21:08:21.0599 7580 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:08:21.0608 7580 vhdmp - ok
21:08:21.0620 7580 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:08:21.0626 7580 viaide - ok
21:08:21.0653 7580 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
21:08:21.0661 7580 vmbus - ok
21:08:21.0674 7580 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
21:08:21.0679 7580 VMBusHID - ok
21:08:21.0699 7580 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:08:21.0706 7580 volmgr - ok
21:08:21.0759 7580 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:08:21.0761 7580 volmgrx - ok
21:08:21.0816 7580 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:08:21.0819 7580 volsnap - ok
21:08:21.0856 7580 vpcbus (b4a73ca4ef9a02b9738cea9ad5fe5917) C:\Windows\system32\DRIVERS\vpchbus.sys
21:08:21.0864 7580 vpcbus - ok
21:08:21.0884 7580 vpcnfltr (e675fb2b48c54f09895482e2253b289c) C:\Windows\system32\DRIVERS\vpcnfltr.sys
21:08:21.0891 7580 vpcnfltr - ok
21:08:21.0903 7580 vpcusb (5fb42082b0d19a0268705f1dd343df20) C:\Windows\system32\DRIVERS\vpcusb.sys
21:08:21.0910 7580 vpcusb - ok
21:08:21.0929 7580 vpcuxd (63f4e10873beb4124028c6d1a66b0968) C:\Windows\system32\drivers\vpcuxd.sys
21:08:21.0935 7580 vpcuxd - ok
21:08:21.0993 7580 vpcvmm (207b6539799cc1c112661a9b620dd233) C:\Windows\system32\drivers\vpcvmm.sys
21:08:22.0002 7580 vpcvmm - ok
21:08:22.0078 7580 vseamps (d358bf81f109b08708e7d1038c54db83) C:\Program Files\Common Files\Authentium\AntiVirus5\vseamps.exe
21:08:22.0088 7580 vseamps - ok
21:08:22.0134 7580 vsedsps (33f3f69f0290e74eb3a5d948670174c7) C:\Program Files\Common Files\Authentium\AntiVirus5\vsedsps.exe
21:08:22.0144 7580 vsedsps - ok
21:08:22.0169 7580 vseqrts (c643ebf274ffa93f38b294c61ad489e2) C:\Program Files\Common Files\Authentium\AntiVirus5\vseqrts.exe
21:08:22.0181 7580 vseqrts - ok
21:08:22.0216 7580 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:08:22.0227 7580 vsmraid - ok
21:08:22.0366 7580 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
21:08:22.0381 7580 VSS - ok
21:08:22.0477 7580 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:08:22.0484 7580 vwifibus - ok
21:08:22.0500 7580 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:08:22.0507 7580 vwififlt - ok
21:08:22.0528 7580 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
21:08:22.0533 7580 vwifimp - ok
21:08:22.0587 7580 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:08:22.0593 7580 W32Time - ok
21:08:22.0627 7580 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:08:22.0632 7580 WacomPen - ok
21:08:22.0667 7580 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:08:22.0677 7580 WANARP - ok
21:08:22.0684 7580 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:08:22.0686 7580 Wanarpv6 - ok
21:08:22.0795 7580 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
21:08:22.0820 7580 WatAdminSvc - ok
21:08:22.0947 7580 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
21:08:22.0979 7580 wbengine - ok
21:08:23.0121 7580 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:08:23.0136 7580 WbioSrvc - ok
21:08:23.0191 7580 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
21:08:23.0209 7580 wcncsvc - ok
21:08:23.0238 7580 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:08:23.0247 7580 WcsPlugInService - ok
21:08:23.0286 7580 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:08:23.0294 7580 Wd - ok
21:08:23.0327 7580 WDC_SAM (a3d04ebf5227886029b4532f20d026f7) C:\Windows\system32\DRIVERS\wdcsam64.sys
21:08:23.0334 7580 WDC_SAM - ok
21:08:23.0442 7580 WDDMService (20442a908fe6d3bc687a5b5df4d5868c) C:\Program Files\Western Digital\WD SmartWare\WDDMService.exe
21:08:23.0446 7580 WDDMService - ok
21:08:23.0516 7580 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:08:23.0537 7580 Wdf01000 - ok
21:08:23.0658 7580 WDFMEService (bb9d012a82f66e08d2e235a53b0eba40) C:\Program Files\Western Digital\WD SmartWare\WDFME.exe
21:08:23.0680 7580 WDFMEService - ok
21:08:23.0782 7580 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:08:23.0785 7580 WdiServiceHost - ok
21:08:23.0793 7580 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:08:23.0796 7580 WdiSystemHost - ok
21:08:23.0964 7580 WDRulesService (d878c31511169de535852fc6d15570e8) C:\Program Files\Western Digital\WD SmartWare\WDRulesEngine.exe
21:08:23.0976 7580 WDRulesService - ok
21:08:24.0085 7580 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
21:08:24.0099 7580 WebClient - ok
21:08:24.0142 7580 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:08:24.0157 7580 Wecsvc - ok
21:08:24.0176 7580 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:08:24.0178 7580 wercplsupport - ok
21:08:24.0197 7580 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:08:24.0199 7580 WerSvc - ok
21:08:24.0236 7580 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:08:24.0241 7580 WfpLwf - ok
21:08:24.0256 7580 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:08:24.0262 7580 WIMMount - ok
21:08:24.0288 7580 WinDefend - ok
21:08:24.0297 7580 WinHttpAutoProxySvc - ok
21:08:24.0360 7580 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:08:24.0362 7580 Winmgmt - ok
21:08:24.0517 7580 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
21:08:24.0552 7580 WinRM - ok
21:08:24.0680 7580 WinUSB (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUSB.sys
21:08:24.0688 7580 WinUSB - ok
21:08:24.0775 7580 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:08:24.0786 7580 Wlansvc - ok
21:08:25.0026 7580 wlidsvc (98f138897ef4246381d197cb81846d62) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:08:25.0040 7580 wlidsvc - ok
21:08:25.0231 7580 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:08:25.0232 7580 WmiAcpi - ok
21:08:25.0305 7580 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:08:25.0308 7580 wmiApSrv - ok
21:08:25.0420 7580 WMZuneComm (58540037a4a3eeeefa47c84100e1694f) C:\Program Files\Zune\WMZuneComm.exe
21:08:25.0432 7580 WMZuneComm - ok
21:08:25.0467 7580 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:08:25.0475 7580 WPCSvc - ok
21:08:25.0513 7580 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
21:08:25.0525 7580 WPDBusEnum - ok
21:08:25.0552 7580 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:08:25.0560 7580 ws2ifsl - ok
21:08:25.0615 7580 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
21:08:25.0617 7580 wscsvc - ok
21:08:25.0621 7580 WSearch - ok
21:08:25.0800 7580 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
21:08:25.0816 7580 wuauserv - ok
21:08:25.0951 7580 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:08:25.0961 7580 WudfPf - ok
21:08:25.0995 7580 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:08:26.0004 7580 WUDFRd - ok
21:08:26.0044 7580 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
21:08:26.0053 7580 wudfsvc - ok
21:08:26.0094 7580 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
21:08:26.0105 7580 WwanSvc - ok
21:08:26.0663 7580 ZuneNetworkSvc (d6ef205269c2a584af6b56b9f95010f8) C:\Program Files\Zune\ZuneNss.exe
21:08:26.0760 7580 ZuneNetworkSvc - ok
21:08:26.0825 7580 ZuneWlanCfgSvc (7a565afe58f3822a9e622868e5cc0e5c) C:\Program Files\Zune\ZuneWlanCfgSvc.exe
21:08:26.0841 7580 ZuneWlanCfgSvc - ok
21:08:26.0877 7580 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:08:27.0204 7580 \Device\Harddisk0\DR0 - ok
21:08:27.0208 7580 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR1
21:08:27.0310 7580 \Device\Harddisk1\DR1 - ok
21:08:27.0317 7580 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk2\DR2
21:08:27.0423 7580 \Device\Harddisk2\DR2 - ok
21:08:27.0431 7580 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk10\DR10
21:08:27.0587 7580 \Device\Harddisk10\DR10 - ok
21:08:27.0590 7580 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk3\DR3
21:08:28.0073 7580 \Device\Harddisk3\DR3 - ok
21:08:28.0083 7580 MBR (0x1B8) (4c174fe99672b3a91fda305d2eb1efed) \Device\Harddisk4\DR4
21:08:42.0848 7580 \Device\Harddisk4\DR4 - ok
21:08:43.0171 7580 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk9\DR9
21:08:43.0405 7580 \Device\Harddisk9\DR9 - ok
21:08:43.0425 7580 Boot (0x1200) (13a0bb2c295512826337dacb0949c936) \Device\Harddisk0\DR0\Partition0
21:08:43.0427 7580 \Device\Harddisk0\DR0\Partition0 - ok
21:08:43.0437 7580 Boot (0x1200) (336648371d32e82b962a35cde9245977) \Device\Harddisk0\DR0\Partition1
21:08:43.0440 7580 \Device\Harddisk0\DR0\Partition1 - ok
21:08:43.0459 7580 Boot (0x1200) (94960866410a2a5847af9762f803e208) \Device\Harddisk0\DR0\Partition2
21:08:43.0461 7580 \Device\Harddisk0\DR0\Partition2 - ok
21:08:43.0465 7580 Boot (0x1200) (f3348d0114be5bcc56c6baf45ba75067) \Device\Harddisk1\DR1\Partition0
21:08:43.0487 7580 \Device\Harddisk1\DR1\Partition0 - ok
21:08:43.0490 7580 Boot (0x1200) (9320ba79fb38fb265ce862d5e3201e7c) \Device\Harddisk2\DR2\Partition0
21:08:43.0492 7580 \Device\Harddisk2\DR2\Partition0 - ok
21:08:43.0497 7580 Boot (0x1200) (77add72af2c0670eef670f2760a70839) \Device\Harddisk10\DR10\Partition0
21:08:43.0500 7580 \Device\Harddisk10\DR10\Partition0 - ok
21:08:43.0504 7580 Boot (0x1200) (97793c6ebe782489632be676e2c9be30) \Device\Harddisk3\DR3\Partition0
21:08:43.0505 7580 \Device\Harddisk3\DR3\Partition0 - ok
21:08:43.0510 7580 Boot (0x1200) (47f62169cf7074b22b7e13cd14046c21) \Device\Harddisk4\DR4\Partition0
21:08:43.0512 7580 \Device\Harddisk4\DR4\Partition0 - ok
21:08:43.0514 7580 Boot (0x1200) (43e56a767777cb1146ff2886abe54a41) \Device\Harddisk9\DR9\Partition0
21:08:43.0517 7580 \Device\Harddisk9\DR9\Partition0 - ok
21:08:43.0518 7580 ============================================================
21:08:43.0518 7580 Scan finished
21:08:43.0518 7580 ============================================================
21:08:43.0526 5484 Detected object count: 0
21:08:43.0526 5484 Actual detected object count: 0






aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-30 21:11:07
-----------------------------
21:11:07.330 OS Version: Windows x64 6.1.7601 Service Pack 1
21:11:07.330 Number of processors: 4 586 0x1E05
21:11:07.331 ComputerName: CM_STORM UserName: Mike
21:11:10.273 Initialize success
21:14:40.466 AVAST engine defs: 12063001
21:15:18.624 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP4T0L0-4
21:15:18.630 Disk 0 Vendor: Hitachi_HDS721010CLA332 JP4OA39C Size: 953869MB BusType: 3
21:15:18.634 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP6T0L0-8
21:15:18.639 Disk 1 Vendor: SAMSUNG_HD103UJ 1AA01114 Size: 953869MB BusType: 3
21:15:18.643 Disk 2 \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP7T0L0-a
21:15:18.646 Disk 2 Vendor: Hitachi_HDS722020ALA330 JKAOA28A Size: 1907729MB BusType: 3
21:15:18.652 Disk 0 MBR read successfully
21:15:18.656 Disk 0 MBR scan
21:15:18.664 Disk 0 Windows 7 default MBR code
21:15:18.668 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
21:15:18.679 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 923767 MB offset 206848
21:15:18.709 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 29999 MB offset 1892081664
21:15:18.744 Disk 0 scanning C:\Windows\system32\drivers
21:15:30.566 Service scanning
21:16:09.007 Modules scanning
21:16:09.019 Disk 0 trace - called modules:
21:16:09.041 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
21:16:09.048 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007eb3060]
21:16:09.052 3 CLASSPNP.SYS[fffff8800160143f] -> nt!IofCallDriver -> [0xfffffa8007bff580]
21:16:09.057 5 ACPI.sys[fffff88000f627a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP4T0L0-4[0xfffffa8007c01060]
21:16:10.782 AVAST engine scan C:\Windows
21:16:16.307 AVAST engine scan C:\Windows\system32
21:16:27.527 File: C:\Windows\system32\consrv.dll **INFECTED** Win64:Sirefef-C [Drp]
21:18:24.564 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-FQ [Drp]
21:18:28.052 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win64:Sirefef-C [Drp]
21:20:19.123 AVAST engine scan C:\Windows\system32\drivers
21:20:47.331 AVAST engine scan C:\Users\Mike
21:28:30.272 Disk 0 MBR has been saved successfully to "C:\temp\Getting RID of POP UP malware lower RH corner\MBR.dat"
21:28:30.280 The log file has been saved successfully to "C:\temp\Getting RID of POP UP malware lower RH corner\aswMBR LOG file.txt"






ESET online scanner LOG


C:\ProgramData\iolo\System Shield\Quarantined\MILF-PIC-S[1].HTM.INFECTED JS/TrojanClicker.Agent.NAZ trojan cleaned by deleting - quarantined
C:\Users\Mike\Documents\Downloads\Programs\MomsBangTeens_-_Allie_James_And_Tanya_Tate_{Teaching_teens}_--_May_21,_2012_--.exe Win32/Adware.1ClickDownload.B application cleaned by deleting - quarantined
C:\Users\Mike\Documents\Downloads\Programs\Opera.exe MSIL/Solimba application cleaned by deleting - quarantined
C:\Windows\system64\consrv.dll Win64/Sirefef.E trojan cleaned by deleting - quarantined



Thanks again,

Regards

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:18 AM

Posted 01 July 2012 - 06:10 AM

We need advanced tools to remove this rootkit

Read the guide here on preparing logs

http://www.bleepingcomputer.com/forums/topic34773.html

and create a topic here

http://www.bleepingcomputer.com/forums/forum22.html

Good luck




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users