Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Babylon, Yontoo, Wajam


  • Please log in to reply
41 replies to this topic

#1 Belle114

Belle114

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:23 PM

Posted 12 January 2013 - 06:18 PM

Hi My name is Cori. Today after using my computer all day long, I realized something didn't look right. I have a new toolbar on my PC. I am running Windows 8 on this new laptop. It is an HP 2000 notebook. On the toolbar, it has a green radio button, and also has red flashing box saying PC is running poor. I went into my control panel and saw there were 5 programs installed. As this is the first time I have ever had this happen, and thought my son downloaded some games or something, I started to uninstall them. 4 of the 5 were named...Wajam, Yontoo, Babylon Chrome, and Babylon toolbar. I cannot remember the last one. I tried uninstalling the Yontoo, and a box came up saying ...Are you looking to disable an app from Yontoo, and that it is a shared program. It said the only way to disable them is to uncheck them. Then another box that said to completely remove Yontoo from your system ....i highlighted that option. However, this is where i am now. I haven't done anything else, but when i open Internet Explorer i am still getting the Babylon.search redirect. Please help!i contacted my cousin who is better at this stuff than I am, and he referred me to BleepingComputer. I need to get this Virus/malware/adware/spyware off my PC. Thank you so much for all your help!!!

BC AdBot (Login to Remove)

 


#2 Belle114

Belle114
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:23 PM

Posted 12 January 2013 - 06:28 PM

Also, i am not sure how much this helps, but I am sure these are more than likely coming from Wizard101. My son has been playing this, and I just got this new PC and have not yet figured out how to setup blocked sites/downloads. This is all so very new to me.

#3 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:23 PM

Posted 12 January 2013 - 06:49 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#4 Belle114

Belle114
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:23 PM

Posted 12 January 2013 - 07:08 PM

16:04:28.0507 3304 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
16:04:28.0507 3304 UEFI system
16:04:29.0231 3304 ============================================================
16:04:29.0231 3304 Current date / time: 2013/01/12 16:04:29.0231
16:04:29.0232 3304 SystemInfo:
16:04:29.0232 3304
16:04:29.0232 3304 OS Version: 6.2.9200 ServicePack: 0.0
16:04:29.0232 3304 Product type: Workstation
16:04:29.0232 3304 ComputerName: HOME
16:04:29.0232 3304 UserName: Cori
16:04:29.0232 3304 Windows directory: C:\Windows
16:04:29.0232 3304 System windows directory: C:\Windows
16:04:29.0232 3304 Running under WOW64
16:04:29.0232 3304 Processor architecture: Intel x64
16:04:29.0233 3304 Number of processors: 2
16:04:29.0233 3304 Page size: 0x1000
16:04:29.0233 3304 Boot type: Normal boot
16:04:29.0233 3304 ============================================================
16:04:31.0558 3304 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:04:31.0569 3304 ============================================================
16:04:31.0569 3304 \Device\Harddisk0\DR0:
16:04:31.0570 3304 GPT partitions:
16:04:31.0571 3304 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {CC822665-057E-473D-B130-273691269612}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xC8000
16:04:31.0571 3304 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {1B135A96-ADE6-46DB-9EC7-531D7FD045F6}, Name: EFI system partition, StartLBA 0xC8800, BlocksNum 0x82000
16:04:31.0571 3304 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {43D3715A-F6BB-43A0-88C8-FABAEDDD7C33}, Name: Microsoft reserved partition, StartLBA 0x14A800, BlocksNum 0x40000
16:04:31.0571 3304 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {E1BA2478-2E1D-4ABE-8AD7-1E8D49EA13E7}, Name: Basic data partition, StartLBA 0x18A800, BlocksNum 0x2299A800
16:04:31.0571 3304 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {193F7FB7-1104-4C44-B175-E75FD21554C1}, Name: Basic data partition, StartLBA 0x22B25000, BlocksNum 0x2909800
16:04:31.0571 3304 MBR partitions:
16:04:31.0571 3304 ============================================================
16:04:31.0586 3304 C: <-> \Device\Harddisk0\DR0\Partition4
16:04:31.0629 3304 D: <-> \Device\Harddisk0\DR0\Partition5
16:04:31.0629 3304 ============================================================
16:04:31.0630 3304 Initialize success
16:04:31.0630 3304 ============================================================
16:05:31.0914 3404 ============================================================
16:05:31.0914 3404 Scan started
16:05:31.0915 3404 Mode: Manual; TDLFS;
16:05:31.0915 3404 ============================================================
16:05:32.0566 3404 ================ Scan system memory ========================
16:05:32.0566 3404 System memory - ok
16:05:32.0568 3404 ================ Scan services =============================
16:05:33.0126 3404 [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci C:\Windows\System32\drivers\1394ohci.sys
16:05:33.0134 3404 1394ohci - ok
16:05:33.0161 3404 [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware C:\Windows\system32\drivers\3ware.sys
16:05:33.0166 3404 3ware - ok
16:05:33.0232 3404 [ 975AABEB243B800C23626D6B652C5A9C ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:05:33.0244 3404 ACPI - ok
16:05:33.0273 3404 [ DC968C37822117E576B933F34A2D130C ] acpiex C:\Windows\system32\Drivers\acpiex.sys
16:05:33.0277 3404 acpiex - ok
16:05:33.0300 3404 [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr C:\Windows\System32\drivers\acpipagr.sys
16:05:33.0302 3404 acpipagr - ok
16:05:33.0316 3404 [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi C:\Windows\System32\drivers\acpipmi.sys
16:05:33.0318 3404 AcpiPmi - ok
16:05:33.0340 3404 [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime C:\Windows\System32\drivers\acpitime.sys
16:05:33.0343 3404 acpitime - ok
16:05:33.0375 3404 [ 93C6388592B99925C1D1576E465BC80F ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
16:05:33.0385 3404 adp94xx - ok
16:05:33.0411 3404 [ D27763E0247292654E7F7D16444C7C72 ] adpahci C:\Windows\system32\drivers\adpahci.sys
16:05:33.0418 3404 adpahci - ok
16:05:33.0445 3404 [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
16:05:33.0450 3404 adpu320 - ok
16:05:33.0504 3404 [ 974AE60BF5B90E31412D93596C968E5B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:05:33.0507 3404 AeLookupSvc - ok
16:05:33.0565 3404 [ 36D6A3201721558A8AFBCC09C2DA4C2C ] AFD C:\Windows\system32\drivers\afd.sys
16:05:33.0599 3404 AFD - ok
16:05:33.0631 3404 [ 01590377A5AB19E792528C628A2A68F9 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:05:33.0634 3404 agp440 - ok
16:05:33.0666 3404 [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG C:\Windows\System32\alg.exe
16:05:33.0669 3404 ALG - ok
16:05:33.0692 3404 [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll
16:05:33.0696 3404 AllUserInstallAgent - ok
16:05:33.0724 3404 [ 1F500945F87AA517BD2F049256B304DD ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:05:33.0730 3404 AMD External Events Utility - ok
16:05:33.0790 3404 AMD FUEL Service - ok
16:05:33.0848 3404 [ 5A81054B824004B1ECC04F0034A1CDF9 ] AmdK8 C:\Windows\System32\drivers\amdk8.sys
16:05:33.0853 3404 AmdK8 - ok
16:05:34.0315 3404 [ 2A831A7F9031B5BBA6EF189381D65228 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
16:05:34.0556 3404 amdkmdag - ok
16:05:34.0619 3404 [ B9ACB2AA40709E060CDC34F13F1C9C8F ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
16:05:34.0632 3404 amdkmdap - ok
16:05:34.0670 3404 [ B849D453E644FAB9BC8EF6DC8CA9C4C6 ] AmdPPM C:\Windows\System32\drivers\amdppm.sys
16:05:34.0673 3404 AmdPPM - ok
16:05:34.0708 3404 [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:05:34.0711 3404 amdsata - ok
16:05:34.0742 3404 [ 00452671904F5EE94B50BF0219C97164 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
16:05:34.0748 3404 amdsbs - ok
16:05:34.0767 3404 [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:05:34.0770 3404 amdxata - ok
16:05:34.0810 3404 [ A2EFE3869B976296E097DEF368280F95 ] amd_sata C:\Windows\system32\drivers\amd_sata.sys
16:05:34.0812 3404 amd_sata - ok
16:05:34.0837 3404 [ 625396421C29FB305C6C6235D01130B8 ] amd_xata C:\Windows\system32\drivers\amd_xata.sys
16:05:34.0839 3404 amd_xata - ok
16:05:34.0959 3404 [ 823F34D1DEF120A657BB7529ABF4461F ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
16:05:34.0961 3404 AppHostSvc - ok
16:05:35.0009 3404 [ 83B3682CE922FB0F415734B26D9D6233 ] AppID C:\Windows\system32\drivers\appid.sys
16:05:35.0012 3404 AppID - ok
16:05:35.0042 3404 [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:05:35.0046 3404 AppIDSvc - ok
16:05:35.0072 3404 [ D64C4AFEE8277F35EF729A2B924666B0 ] Appinfo C:\Windows\System32\appinfo.dll
16:05:35.0075 3404 Appinfo - ok
16:05:35.0096 3404 [ E933401B392387F4BE34DE8BAF1722A7 ] arc C:\Windows\system32\drivers\arc.sys
16:05:35.0111 3404 arc - ok
16:05:35.0157 3404 [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas C:\Windows\system32\drivers\arcsas.sys
16:05:35.0161 3404 arcsas - ok
16:05:35.0331 3404 [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:05:35.0356 3404 aspnet_state - ok
16:05:35.0389 3404 [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:05:35.0395 3404 AsyncMac - ok
16:05:35.0434 3404 [ A721FF570C2387E383BDDEA9632863C9 ] atapi C:\Windows\system32\drivers\atapi.sys
16:05:35.0438 3404 atapi - ok
16:05:35.0489 3404 [ 810ED88782952228AF9C0985FB7D259E ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
16:05:35.0494 3404 AudioEndpointBuilder - ok
16:05:35.0537 3404 [ 25CA8B87479A374919563B3EE7136F32 ] Audiosrv C:\Windows\System32\Audiosrv.dll
16:05:35.0560 3404 Audiosrv - ok
16:05:35.0596 3404 [ 89491EF71D5EA011127832C588002853 ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:05:35.0599 3404 AxInstSV - ok
16:05:35.0650 3404 [ 87AB5BB072A3F128541D5B815F82FFDD ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
16:05:35.0673 3404 b06bdrv - ok
16:05:35.0706 3404 [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay C:\Windows\System32\drivers\BasicDisplay.sys
16:05:35.0709 3404 BasicDisplay - ok
16:05:35.0733 3404 [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender C:\Windows\System32\drivers\BasicRender.sys
16:05:35.0735 3404 BasicRender - ok
16:05:35.0793 3404 [ 89143A7BA7850F5C7E61B43BB44B6418 ] BDESVC C:\Windows\System32\bdesvc.dll
16:05:35.0804 3404 BDESVC - ok
16:05:35.0830 3404 [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep C:\Windows\system32\drivers\Beep.sys
16:05:35.0832 3404 Beep - ok
16:05:35.0912 3404 [ 9E6A544F465C582AB42444A217CF04DC ] BFE C:\Windows\System32\bfe.dll
16:05:35.0936 3404 BFE - ok
16:05:36.0168 3404 [ ED97ADAF00A61F57A2CCBBB1CE58C600 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20130107.001\BHDrvx64.sys
16:05:36.0207 3404 BHDrvx64 - ok
16:05:36.0265 3404 [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS C:\Windows\System32\qmgr.dll
16:05:36.0286 3404 BITS - ok
16:05:36.0331 3404 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:05:36.0340 3404 Bonjour Service - ok
16:05:36.0367 3404 [ B17AC10B47C7FCB44D22A1F06415840E ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:05:36.0370 3404 bowser - ok
16:05:36.0413 3404 [ 975398A3D2C1FEA73FC93931978DF354 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
16:05:36.0418 3404 BrokerInfrastructure - ok
16:05:36.0442 3404 [ 310068BDA80B1D55C36580FD8A873FAF ] Browser C:\Windows\System32\browser.dll
16:05:36.0446 3404 Browser - ok
16:05:36.0490 3404 [ 3AA4309EBD9491E516F13FE3DC752FEE ] BthAvrcpTg C:\Windows\System32\drivers\BthAvrcpTg.sys
16:05:36.0506 3404 BthAvrcpTg - ok
16:05:36.0607 3404 [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum C:\Windows\System32\drivers\bthhfenum.sys
16:05:36.0619 3404 BthHFEnum - ok
16:05:36.0665 3404 [ DCB4EBD928A6FB368BE6CAE522412DE1 ] bthhfhid C:\Windows\System32\drivers\BthHFHid.sys
16:05:36.0667 3404 bthhfhid - ok
16:05:36.0693 3404 [ 033916CE8784A848B9A3D686B7F66D97 ] BTHMODEM C:\Windows\System32\drivers\bthmodem.sys
16:05:36.0697 3404 BTHMODEM - ok
16:05:36.0736 3404 [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv C:\Windows\system32\bthserv.dll
16:05:36.0743 3404 bthserv - ok
16:05:36.0838 3404 [ 248C952C82DF1E23775432774CBB20F1 ] ccSet_NIS C:\Windows\system32\drivers\NISx64\1402000.013\ccSetx64.sys
16:05:36.0844 3404 ccSet_NIS - ok
16:05:36.0899 3404 [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:05:36.0911 3404 cdfs - ok
16:05:36.0938 3404 [ 339BFF85D788268752DA8C9644B188EE ] cdrom C:\Windows\System32\drivers\cdrom.sys
16:05:36.0944 3404 cdrom - ok
16:05:36.0980 3404 [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc C:\Windows\System32\certprop.dll
16:05:36.0984 3404 CertPropSvc - ok
16:05:37.0013 3404 [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass C:\Windows\System32\drivers\circlass.sys
16:05:37.0016 3404 circlass - ok
16:05:37.0051 3404 [ 9905168708DB68849B879B5548F68AB3 ] CLFS C:\Windows\system32\drivers\CLFS.sys
16:05:37.0060 3404 CLFS - ok
16:05:37.0135 3404 [ 075CCE75090786F124573A788C8656E6 ] CLVirtualDrive C:\Windows\system32\DRIVERS\CLVirtualDrive.sys
16:05:37.0140 3404 CLVirtualDrive - ok
16:05:37.0164 3404 [ 2DC8538A2260647484A6C921CA837313 ] CmBatt C:\Windows\System32\drivers\CmBatt.sys
16:05:37.0167 3404 CmBatt - ok
16:05:37.0221 3404 [ E708BFF0473EC6B271EA46B65B16CA56 ] CNG C:\Windows\system32\Drivers\cng.sys
16:05:37.0232 3404 CNG - ok
16:05:37.0268 3404 [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus C:\Windows\System32\drivers\CompositeBus.sys
16:05:37.0270 3404 CompositeBus - ok
16:05:37.0286 3404 COMSysApp - ok
16:05:37.0308 3404 [ D9CB0782AF819548072AA45B70F8B22D ] condrv C:\Windows\system32\drivers\condrv.sys
16:05:37.0310 3404 condrv - ok
16:05:37.0351 3404 [ F0E78B119D12BA81F163D48C0FF30B9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:05:37.0354 3404 CryptSvc - ok
16:05:37.0398 3404 [ C4D01BD86D6B207275FC143EEA951D75 ] dam C:\Windows\system32\drivers\dam.sys
16:05:37.0400 3404 dam - ok
16:05:37.0451 3404 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch C:\Windows\system32\rpcss.dll
16:05:37.0485 3404 DcomLaunch - ok
16:05:37.0534 3404 [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc C:\Windows\System32\defragsvc.dll
16:05:37.0548 3404 defragsvc - ok
16:05:37.0589 3404 [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\Windows\system32\das.dll
16:05:37.0597 3404 DeviceAssociationService - ok
16:05:37.0645 3404 [ 799BE46D45D486704CE0F37CA5385262 ] DeviceInstall C:\Windows\system32\umpnpmgr.dll
16:05:37.0658 3404 DeviceInstall - ok
16:05:37.0698 3404 [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc C:\Windows\system32\Drivers\dfsc.sys
16:05:37.0702 3404 Dfsc - ok
16:05:37.0753 3404 [ 9E0E72222264745ADEB0E5AC680B0ED6 ] Dhcp C:\Windows\system32\dhcpcore.dll
16:05:37.0762 3404 Dhcp - ok
16:05:37.0785 3404 [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache C:\Windows\system32\drivers\discache.sys
16:05:37.0788 3404 discache - ok
16:05:37.0812 3404 [ 560495FF4CA22E1D9B1972FA18F43B6F ] disk C:\Windows\system32\drivers\disk.sys
16:05:37.0815 3404 disk - ok
16:05:37.0841 3404 [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc C:\Windows\System32\drivers\dmvsc.sys
16:05:37.0844 3404 dmvsc - ok
16:05:37.0906 3404 [ 066B9710B36AB550E01EEFCA52155968 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:05:37.0922 3404 Dnscache - ok
16:05:37.0955 3404 [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc C:\Windows\System32\dot3svc.dll
16:05:37.0962 3404 dot3svc - ok
16:05:37.0998 3404 [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS C:\Windows\system32\dps.dll
16:05:38.0003 3404 DPS - ok
16:05:38.0046 3404 [ 9C7C183F937951AE17C5B8B3259CF3FF ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:05:38.0048 3404 drmkaud - ok
16:05:38.0084 3404 [ BF48F32EE248C3D371DA5DC93BBEADA7 ] DsmSvc C:\Windows\System32\DeviceSetupManager.dll
16:05:38.0090 3404 DsmSvc - ok
16:05:38.0186 3404 [ 898BF1647BBF012B38EF45C7F9F7A67E ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:05:38.0226 3404 DXGKrnl - ok
16:05:38.0296 3404 [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost C:\Windows\System32\eapsvc.dll
16:05:38.0308 3404 Eaphost - ok
16:05:38.0434 3404 [ 5AB97B3282D7D6114949D1EB5C8598E4 ] ebdrv C:\Windows\system32\drivers\evbda.sys
16:05:38.0506 3404 ebdrv - ok
16:05:38.0637 3404 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
16:05:38.0650 3404 eeCtrl - ok
16:05:38.0693 3404 [ F702AB6181513303AB0FC8D59E52708B ] EFS C:\Windows\System32\lsass.exe
16:05:38.0697 3404 EFS - ok
16:05:38.0745 3404 [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass C:\Windows\system32\drivers\EhStorClass.sys
16:05:38.0752 3404 EhStorClass - ok
16:05:38.0770 3404 [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv C:\Windows\system32\drivers\EhStorTcgDrv.sys
16:05:38.0774 3404 EhStorTcgDrv - ok
16:05:38.0813 3404 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
16:05:38.0818 3404 EraserUtilRebootDrv - ok
16:05:38.0841 3404 [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev C:\Windows\System32\drivers\errdev.sys
16:05:38.0843 3404 ErrDev - ok
16:05:38.0913 3404 [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem C:\Windows\system32\es.dll
16:05:38.0923 3404 EventSystem - ok
16:05:38.0966 3404 [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat C:\Windows\system32\drivers\exfat.sys
16:05:38.0975 3404 exfat - ok
16:05:38.0998 3404 [ 60996602A7111FD2D086E803F33E4282 ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:05:39.0004 3404 fastfat - ok
16:05:39.0044 3404 [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax C:\Windows\system32\fxssvc.exe
16:05:39.0067 3404 Fax - ok
16:05:39.0099 3404 [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc C:\Windows\System32\drivers\fdc.sys
16:05:39.0101 3404 fdc - ok
16:05:39.0141 3404 [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost C:\Windows\system32\fdPHost.dll
16:05:39.0145 3404 fdPHost - ok
16:05:39.0162 3404 [ 872506AAB591E8908DF4461475AF92DF ] FDResPub C:\Windows\system32\fdrespub.dll
16:05:39.0166 3404 FDResPub - ok
16:05:39.0211 3404 [ 0588950D93A426F97C7AAADB1A9B0458 ] fhsvc C:\Windows\system32\fhsvc.dll
16:05:39.0227 3404 fhsvc - ok
16:05:39.0258 3404 [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:05:39.0261 3404 FileInfo - ok
16:05:39.0305 3404 [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:05:39.0308 3404 Filetrace - ok
16:05:39.0337 3404 [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk C:\Windows\System32\drivers\flpydisk.sys
16:05:39.0340 3404 flpydisk - ok
16:05:39.0374 3404 [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:05:39.0382 3404 FltMgr - ok
16:05:39.0467 3404 [ 0BCDC0FF11B984162B0CF0FF6E9E0146 ] FontCache C:\Windows\system32\FntCache.dll
16:05:39.0507 3404 FontCache - ok
16:05:39.0576 3404 [ 0B56259F5611787222A04A8F254E51D4 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:05:39.0583 3404 FontCache3.0.0.0 - ok
16:05:39.0610 3404 [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:05:39.0613 3404 FsDepends - ok
16:05:39.0634 3404 [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:05:39.0636 3404 Fs_Rec - ok
16:05:39.0680 3404 [ FA228F4BB10DC7ED7E7D131C034E2331 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:05:39.0699 3404 fvevol - ok
16:05:39.0759 3404 [ A969D92973DFA895E7776B4BFE36DBB2 ] FxPPM C:\Windows\System32\drivers\fxppm.sys
16:05:39.0762 3404 FxPPM - ok
16:05:39.0790 3404 [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
16:05:39.0793 3404 gagp30kx - ok
16:05:39.0863 3404 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
16:05:39.0869 3404 GamesAppService - ok
16:05:39.0914 3404 [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter C:\Windows\System32\drivers\vmgencounter.sys
16:05:39.0916 3404 gencounter - ok
16:05:39.0982 3404 [ CA18ECFCFFDD638ECE80799A9056B238 ] GPIOClx0101 C:\Windows\system32\Drivers\msgpioclx.sys
16:05:39.0987 3404 GPIOClx0101 - ok
16:05:40.0048 3404 [ 5358678C6370F2ADC5291849F6503262 ] gpsvc C:\Windows\System32\gpsvc.dll
16:05:40.0101 3404 gpsvc - ok
16:05:40.0238 3404 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:05:40.0261 3404 gupdate - ok
16:05:40.0276 3404 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:05:40.0280 3404 gupdatem - ok
16:05:40.0327 3404 [ 9FC1F11D4D19F61DFE5CC878B4557D3A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:05:40.0341 3404 HdAudAddService - ok
16:05:40.0375 3404 [ 7D87B5B6C7188D553E11B59DC7F0B111 ] HDAudBus C:\Windows\System32\drivers\HDAudBus.sys
16:05:40.0377 3404 HDAudBus - ok
16:05:40.0401 3404 [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt C:\Windows\System32\drivers\HidBatt.sys
16:05:40.0404 3404 HidBatt - ok
16:05:40.0430 3404 [ A25BAE8C1F2830C8E5625EC7E4E968BE ] HidBth C:\Windows\System32\drivers\hidbth.sys
16:05:40.0433 3404 HidBth - ok
16:05:40.0472 3404 [ CC4A07E51D89575CAB6F4EB590D87CD4 ] hidi2c C:\Windows\System32\drivers\hidi2c.sys
16:05:40.0475 3404 hidi2c - ok
16:05:40.0498 3404 [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr C:\Windows\System32\drivers\hidir.sys
16:05:40.0502 3404 HidIr - ok
16:05:40.0532 3404 [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv C:\Windows\system32\hidserv.dll
16:05:40.0539 3404 hidserv - ok
16:05:40.0568 3404 [ 590B6F71BCDA4368B4BF7D8DF22B60F7 ] HidUsb C:\Windows\System32\drivers\hidusb.sys
16:05:40.0573 3404 HidUsb - ok
16:05:40.0611 3404 [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:05:40.0616 3404 hkmsvc - ok
16:05:40.0659 3404 [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:05:40.0667 3404 HomeGroupListener - ok
16:05:40.0709 3404 [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:05:40.0724 3404 HomeGroupProvider - ok
16:05:40.0854 3404 [ 6515296E8F9D81BB6C4588C4878A9AC1 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
16:05:40.0867 3404 HP Support Assistant Service - ok
16:05:40.0958 3404 [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
16:05:41.0006 3404 hpqwmiex - ok
16:05:41.0032 3404 [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:05:41.0036 3404 HpSAMD - ok
16:05:41.0087 3404 [ F50912B0A861ED396F6062E79C37A4A7 ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
16:05:41.0094 3404 HPWMISVC - ok
16:05:41.0151 3404 [ 29CB98187BB5711F7759540976D295FC ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:05:41.0198 3404 HTTP - ok
16:05:41.0239 3404 [ 2A98301068801700906C06649860FE94 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:05:41.0241 3404 hwpolicy - ok
16:05:41.0266 3404 [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd C:\Windows\System32\drivers\hyperkbd.sys
16:05:41.0269 3404 hyperkbd - ok
16:05:41.0284 3404 [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo C:\Windows\system32\DRIVERS\HyperVideo.sys
16:05:41.0287 3404 HyperVideo - ok
16:05:41.0306 3404 [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt C:\Windows\System32\drivers\i8042prt.sys
16:05:41.0310 3404 i8042prt - ok
16:05:41.0340 3404 [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:05:41.0349 3404 iaStorV - ok
16:05:41.0473 3404 [ ABEFA4BD23329FD9BD47496BF2E58774 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
16:05:41.0511 3404 IconMan_R - ok
16:05:41.0649 3404 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20130111.002\IDSvia64.sys
16:05:41.0695 3404 IDSVia64 - ok
16:05:42.0042 3404 [ 83915E05E168AB63B48302F7DC5D8E00 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
16:05:42.0272 3404 igfx - ok
16:05:42.0314 3404 [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp C:\Windows\system32\drivers\iirsp.sys
16:05:42.0317 3404 iirsp - ok
16:05:42.0394 3404 [ 531B5A98145DA689741A0AC18F14EA94 ] IKEEXT C:\Windows\System32\ikeext.dll
16:05:42.0429 3404 IKEEXT - ok
16:05:42.0468 3404 [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide C:\Windows\system32\drivers\intelide.sys
16:05:42.0475 3404 intelide - ok
16:05:42.0518 3404 [ E15CDF68DD73423F15D4AC404793AF0D ] intelppm C:\Windows\System32\drivers\intelppm.sys
16:05:42.0521 3404 intelppm - ok
16:05:42.0557 3404 [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:05:42.0561 3404 IpFilterDriver - ok
16:05:42.0611 3404 [ CAC5202757EF68C4849B0DFFA75F6D3C ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:05:42.0657 3404 iphlpsvc - ok
16:05:42.0682 3404 [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV C:\Windows\System32\drivers\IPMIDrv.sys
16:05:42.0686 3404 IPMIDRV - ok
16:05:42.0707 3404 [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:05:42.0712 3404 IPNAT - ok
16:05:42.0729 3404 [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:05:42.0731 3404 IRENUM - ok
16:05:42.0745 3404 [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:05:42.0748 3404 isapnp - ok
16:05:42.0795 3404 [ 69C8BF0BC2B0EA10F130F4D3104DC2EF ] iScsiPrt C:\Windows\System32\drivers\msiscsi.sys
16:05:42.0804 3404 iScsiPrt - ok
16:05:42.0850 3404 [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass C:\Windows\System32\drivers\kbdclass.sys
16:05:42.0854 3404 kbdclass - ok
16:05:42.0875 3404 [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid C:\Windows\System32\drivers\kbdhid.sys
16:05:42.0877 3404 kbdhid - ok
16:05:42.0901 3404 [ FB6C185092E18011EF49989425C2AA87 ] kdnic C:\Windows\system32\DRIVERS\kdnic.sys
16:05:42.0903 3404 kdnic - ok
16:05:42.0927 3404 [ F702AB6181513303AB0FC8D59E52708B ] KeyIso C:\Windows\system32\lsass.exe
16:05:42.0930 3404 KeyIso - ok
16:05:42.0970 3404 [ DFA480F6DED551464F3A5B959F437800 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:05:42.0981 3404 KSecDD - ok
16:05:43.0020 3404 [ 127FB0AAD232BAAD2C9BBACD374F4FC5 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:05:43.0024 3404 KSecPkg - ok
16:05:43.0056 3404 [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:05:43.0058 3404 ksthunk - ok
16:05:43.0102 3404 [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm C:\Windows\system32\msdtckrm.dll
16:05:43.0112 3404 KtmRm - ok
16:05:43.0151 3404 [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer C:\Windows\system32\srvsvc.dll
16:05:43.0172 3404 LanmanServer - ok
16:05:43.0221 3404 [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:05:43.0234 3404 LanmanWorkstation - ok
16:05:43.0270 3404 [ CEEFD29FC551F289810B0B9381B321DC ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:05:43.0273 3404 lltdio - ok
16:05:43.0309 3404 [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:05:43.0318 3404 lltdsvc - ok
16:05:43.0349 3404 [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:05:43.0353 3404 lmhosts - ok
16:05:43.0386 3404 [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
16:05:43.0389 3404 LSI_SAS - ok
16:05:43.0414 3404 [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
16:05:43.0418 3404 LSI_SAS2 - ok
16:05:43.0435 3404 [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
16:05:43.0438 3404 LSI_SCSI - ok
16:05:43.0461 3404 [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS C:\Windows\system32\drivers\lsi_sss.sys
16:05:43.0464 3404 LSI_SSS - ok
16:05:43.0511 3404 [ 8FEFDCEE40B75FD23B4BC60DA6576113 ] LSM C:\Windows\System32\lsm.dll
16:05:43.0528 3404 LSM - ok
16:05:43.0555 3404 [ 2BDC5D711FA61307CE6190D47C956368 ] luafv C:\Windows\system32\drivers\luafv.sys
16:05:43.0558 3404 luafv - ok
16:05:43.0586 3404 [ 814E5E9452CD5FC4A693C7E80E8A9B23 ] massfilter_brcm C:\Windows\system32\drivers\massfilter_brcm.sys
16:05:43.0588 3404 massfilter_brcm - ok
16:05:43.0621 3404 [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas C:\Windows\system32\drivers\megasas.sys
16:05:43.0624 3404 megasas - ok
16:05:43.0655 3404 [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
16:05:43.0663 3404 MegaSR - ok
16:05:43.0706 3404 [ EEE908BE7143FCA48CF0CB87214E2AB8 ] MMCSS C:\Windows\system32\mmcss.dll
16:05:43.0713 3404 MMCSS - ok
16:05:43.0728 3404 [ 780098AD5DA8A4822E2563984C85EF7B ] Modem C:\Windows\system32\drivers\modem.sys
16:05:43.0732 3404 Modem - ok
16:05:43.0753 3404 [ 83EB0BF7E6EBD5B1AAC97F9DBD5EB935 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:05:43.0755 3404 monitor - ok
16:05:43.0792 3404 [ 618446B98C79776654340CE27C73485E ] mouclass C:\Windows\System32\drivers\mouclass.sys
16:05:43.0795 3404 mouclass - ok
16:05:43.0817 3404 [ CB2527B8B87D83E56FBF3944BBB6F606 ] mouhid C:\Windows\System32\drivers\mouhid.sys
16:05:43.0820 3404 mouhid - ok
16:05:43.0848 3404 [ 89D263DBF08119CE16273991C120D6DD ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:05:43.0852 3404 mountmgr - ok
16:05:43.0891 3404 [ 0D1609DD82C7440F5D5BF21A9D4D5C0C ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:05:43.0894 3404 mpsdrv - ok
16:05:43.0950 3404 [ 3031573A739DBEE8923851929D0AF423 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:05:43.0985 3404 MpsSvc - ok
16:05:44.0007 3404 [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:05:44.0011 3404 MRxDAV - ok
16:05:44.0063 3404 [ 877D60D6E4156EC4A2E0B6871D41BED9 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:05:44.0079 3404 mrxsmb - ok
16:05:44.0121 3404 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:05:44.0128 3404 mrxsmb10 - ok
16:05:44.0149 3404 [ E078446D4B8622AA6030C7B8A1A08962 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:05:44.0155 3404 mrxsmb20 - ok
16:05:44.0194 3404 [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge C:\Windows\system32\DRIVERS\bridge.sys
16:05:44.0198 3404 MsBridge - ok
16:05:44.0236 3404 [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC C:\Windows\System32\msdtc.exe
16:05:44.0243 3404 MSDTC - ok
16:05:44.0281 3404 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:05:44.0284 3404 Msfs - ok
16:05:44.0321 3404 [ C9BFB0353099B071E70299549C18C8AE ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys
16:05:44.0324 3404 msgpiowin32 - ok
16:05:44.0348 3404 [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:05:44.0351 3404 mshidkmdf - ok
16:05:44.0366 3404 [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys
16:05:44.0368 3404 mshidumdf - ok
16:05:44.0395 3404 [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:05:44.0398 3404 msisadrv - ok
16:05:44.0459 3404 [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:05:44.0466 3404 MSiSCSI - ok
16:05:44.0481 3404 msiserver - ok
16:05:44.0510 3404 [ 509809566E49F4411055864EA8D437CD ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:05:44.0513 3404 MSKSSRV - ok
16:05:44.0531 3404 [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp C:\Windows\system32\DRIVERS\mslldp.sys
16:05:44.0535 3404 MsLldp - ok
16:05:44.0558 3404 [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:05:44.0560 3404 MSPCLOCK - ok
16:05:44.0584 3404 [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:05:44.0587 3404 MSPQM - ok
16:05:44.0618 3404 [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:05:44.0626 3404 MsRPC - ok
16:05:44.0657 3404 [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios C:\Windows\System32\drivers\mssmbios.sys
16:05:44.0660 3404 mssmbios - ok
16:05:44.0692 3404 [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:05:44.0695 3404 MSTEE - ok
16:05:44.0727 3404 [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig C:\Windows\System32\drivers\MTConfig.sys
16:05:44.0729 3404 MTConfig - ok
16:05:44.0753 3404 [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup C:\Windows\system32\Drivers\mup.sys
16:05:44.0756 3404 Mup - ok
16:05:44.0780 3404 [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis C:\Windows\system32\drivers\mvumis.sys
16:05:44.0783 3404 mvumis - ok
16:05:44.0829 3404 [ 4B18840511D720BA118D3017E8165875 ] napagent C:\Windows\system32\qagentRT.dll
16:05:44.0850 3404 napagent - ok
16:05:44.0897 3404 [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:05:44.0908 3404 NativeWifiP - ok
16:05:44.0998 3404 [ C58D8A669D6551F616D90244BD2C2D4F ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130111.037\ENG64.SYS
16:05:45.0013 3404 NAVENG - ok
16:05:45.0087 3404 [ A3DBDB412ADFA5882DD6843B11FE0828 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130111.037\EX64.SYS
16:05:45.0146 3404 NAVEX15 - ok
16:05:45.0190 3404 [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc C:\Windows\System32\ncasvc.dll
16:05:45.0214 3404 NcaSvc - ok
16:05:45.0240 3404 [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup C:\Windows\System32\NcdAutoSetup.dll
16:05:45.0245 3404 NcdAutoSetup - ok
16:05:45.0314 3404 [ 0F89AE618DBA5D8AB7A2DFCC375F4159 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:05:45.0349 3404 NDIS - ok
16:05:45.0426 3404 [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:05:45.0438 3404 NdisCap - ok
16:05:45.0485 3404 [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform C:\Windows\system32\DRIVERS\NdisImPlatform.sys
16:05:45.0491 3404 NdisImPlatform - ok
16:05:45.0541 3404 [ 7A6F8A6D0E01432EBA294EF29CDD0FA7 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:05:45.0544 3404 NdisTapi - ok
16:05:45.0567 3404 [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:05:45.0570 3404 Ndisuio - ok
16:05:45.0600 3404 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:05:45.0605 3404 NdisWan - ok
16:05:45.0617 3404 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY C:\Windows\system32\DRIVERS\ndiswan.sys
16:05:45.0620 3404 NDISWANLEGACY - ok
16:05:45.0644 3404 [ CE6EBC0AD38CC6482D8FBB744FF15CE2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:05:45.0648 3404 NDProxy - ok
16:05:45.0667 3404 [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] Ndu C:\Windows\system32\drivers\Ndu.sys
16:05:45.0670 3404 Ndu - ok
16:05:45.0704 3404 [ 7C203A76394F9AE68F69EEE5F9612C4A ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:05:45.0708 3404 NetBIOS - ok
16:05:45.0735 3404 [ 7CEC25C682D319D484630B3952C31A11 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:05:45.0744 3404 NetBT - ok
16:05:45.0771 3404 [ F702AB6181513303AB0FC8D59E52708B ] Netlogon C:\Windows\system32\lsass.exe
16:05:45.0776 3404 Netlogon - ok
16:05:45.0811 3404 [ 89519D29CBEC2121CA65CC29C4D345E0 ] Netman C:\Windows\System32\netman.dll
16:05:45.0827 3404 Netman - ok
16:05:45.0857 3404 [ 20F6FD63E6D456114BC8056D62792786 ] netprofm C:\Windows\System32\netprofmsvc.dll
16:05:45.0886 3404 netprofm - ok
16:05:45.0958 3404 [ 06C59F7859970C445F09E233D607FA4C ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
16:05:46.0026 3404 netr28x - ok
16:05:46.0099 3404 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:05:46.0137 3404 NetTcpPortSharing - ok
16:05:46.0195 3404 [ 12DD2800E4EEA37DC9AE256AD62423B4 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
16:05:46.0198 3404 nfrd960 - ok
16:05:46.0285 3404 [ 4A9258B9597A31DB68EC9740F3A8A70B ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\20.2.0.19\ccSvcHst.exe
16:05:46.0288 3404 NIS - ok
16:05:46.0351 3404 [ 80ABCD4C2DE9FD832477303AE0CA3BE5 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:05:46.0373 3404 NlaSvc - ok
16:05:46.0400 3404 [ 17E19A742FB30C002F8B43575451DBE1 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:05:46.0403 3404 Npfs - ok
16:05:46.0426 3404 [ 8ED299C30792544264E558BEA79F0947 ] npsvctrig C:\Windows\System32\drivers\npsvctrig.sys
16:05:46.0429 3404 npsvctrig - ok
16:05:46.0467 3404 [ 832B5FDF0B5577713FD7F2465FCD0ACE ] nsi C:\Windows\system32\nsisvc.dll
16:05:46.0476 3404 nsi - ok
16:05:46.0503 3404 [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:05:46.0506 3404 nsiproxy - ok
16:05:46.0618 3404 [ 4A7EEA9C4AD5CBFDA3C0E5B821C99CAD ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:05:46.0687 3404 Ntfs - ok
16:05:46.0711 3404 [ 4163ADE07DB51843AE31F65B94F5398D ] Null C:\Windows\system32\drivers\Null.sys
16:05:46.0714 3404 Null - ok
16:05:46.0737 3404 [ D6D34118263412D3AAA8348A9572B7F2 ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:05:46.0741 3404 nvraid - ok
16:05:46.0765 3404 [ 27AFC428D1D32ABD04A86763A4EDDEA9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:05:46.0770 3404 nvstor - ok
16:05:46.0801 3404 [ 051CFB5107BAAE510419BDC41F8C4036 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:05:46.0806 3404 nv_agp - ok
16:05:46.0846 3404 [ AB76700D764A342D7475FB8F47CAB18C ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:05:46.0867 3404 p2pimsvc - ok
16:05:47.0149 3404 [ 4319FD931DCD796435ECB5DB4A04FBA5 ] p2psvc C:\Windows\system32\p2psvc.dll
16:05:47.0165 3404 p2psvc - ok
16:05:47.0199 3404 [ 4563DAF8C6A740AD7F501E219BD10766 ] Parport C:\Windows\System32\drivers\parport.sys
16:05:47.0203 3404 Parport - ok
16:05:47.0234 3404 [ C1D7BA7F0DE487DFEEB51BF8D3EC5562 ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:05:47.0237 3404 partmgr - ok
16:05:47.0286 3404 [ 4811D9EC53649105A5A8BEA661B0F936 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:05:47.0303 3404 PcaSvc - ok
16:05:47.0345 3404 [ 4A003E8F718C1E6A2050CA98CD53E3E2 ] pci C:\Windows\system32\drivers\pci.sys
16:05:47.0351 3404 pci - ok
16:05:47.0381 3404 [ F9908D274D458220F91E89B54D78D837 ] pciide C:\Windows\system32\drivers\pciide.sys
16:05:47.0394 3404 pciide - ok
16:05:47.0424 3404 [ 84D19CB6102627932DCB5DFDF89FE269 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
16:05:47.0430 3404 pcmcia - ok
16:05:47.0458 3404 [ CEBBAD5391C2644560C55628A40BFD27 ] pcw C:\Windows\system32\drivers\pcw.sys
16:05:47.0461 3404 pcw - ok
16:05:47.0513 3404 [ EF9B4F3136B4C45F421ADE6871659FB6 ] pdc C:\Windows\system32\drivers\pdc.sys
16:05:47.0529 3404 pdc - ok
16:05:47.0571 3404 [ 70DBB6A8B52B3830922F1C5789E1BEEB ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:05:47.0595 3404 PEAUTH - ok
16:05:47.0777 3404 [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:05:47.0796 3404 PerfHost - ok
16:05:48.0153 3404 [ 6E84BFF58F7643499277F29DFA2F8C8D ] pla C:\Windows\system32\pla.dll
16:05:48.0193 3404 pla - ok
16:05:48.0246 3404 [ 799BE46D45D486704CE0F37CA5385262 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:05:48.0256 3404 PlugPlay - ok
16:05:48.0287 3404 [ 8E2414E818C26C4A9C70CB2B8567F04F ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:05:48.0314 3404 PNRPAutoReg - ok
16:05:48.0347 3404 [ AB76700D764A342D7475FB8F47CAB18C ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:05:48.0359 3404 PNRPsvc - ok
16:05:48.0402 3404 [ 0108C8E5176D590F242701EF5A62CC26 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:05:48.0414 3404 PolicyAgent - ok
16:05:48.0475 3404 [ F1E067F56373F11EA4B785CAE823740A ] Power C:\Windows\system32\umpo.dll
16:05:48.0536 3404 Power - ok
16:05:48.0687 3404 [ 362D47E5B4D67270DE4B8606036F4ADD ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:05:48.0690 3404 PptpMiniport - ok
16:05:48.0888 3404 [ C2D3B3D0060619D5E03E696BD56FF59F ] PrintNotify C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
16:05:48.0973 3404 PrintNotify - ok
16:05:49.0045 3404 [ DD979EB6A7212F60E4AFBE96EDC7AE6D ] Processor C:\Windows\System32\drivers\processr.sys
16:05:49.0063 3404 Processor - ok
16:05:49.0123 3404 [ 429E8502AD2227CF88F8840FC5BD590D ] ProfSvc C:\Windows\system32\profsvc.dll
16:05:49.0136 3404 ProfSvc - ok
16:05:49.0242 3404 [ EB8034147D4820CD31BFCB11A2A652DF ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:05:49.0271 3404 Psched - ok
16:05:49.0319 3404 [ 0AFBF333B6F87A2F598EAB379AF100B8 ] QWAVE C:\Windows\system32\qwave.dll
16:05:49.0335 3404 QWAVE - ok
16:05:49.0359 3404 [ 13D47BB0CCA2FC51BD15F8E85C6A078E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:05:49.0362 3404 QWAVEdrv - ok
16:05:49.0392 3404 [ 873C60F8178100557740A832FCE10B5F ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:05:49.0395 3404 RasAcd - ok
16:05:49.0426 3404 [ 69B93F623B130976243ECA3D84CC99CA ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:05:49.0429 3404 RasAgileVpn - ok
16:05:49.0472 3404 [ 005F6E54C4A2DA4EBF68FB0392CE8BB0 ] RasAuto C:\Windows\System32\rasauto.dll
16:05:49.0500 3404 RasAuto - ok
16:05:49.0530 3404 [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:05:49.0534 3404 Rasl2tp - ok
16:05:49.0563 3404 [ C923C785A2DE0B396AD6D13ACAFF2DE9 ] RasMan C:\Windows\System32\rasmans.dll
16:05:49.0578 3404 RasMan - ok
16:05:49.0602 3404 [ 00695B9C2DB6111064499C529E90C042 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:05:49.0605 3404 RasPppoe - ok
16:05:49.0631 3404 [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:05:49.0634 3404 RasSstp - ok
16:05:49.0667 3404 [ B72C33DBD5326B3864CF2091AF8B906B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:05:49.0676 3404 rdbss - ok
16:05:49.0715 3404 [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] rdpbus C:\Windows\System32\drivers\rdpbus.sys
16:05:49.0718 3404 rdpbus - ok
16:05:49.0741 3404 [ B2A3AD74FF2E2FFA73AF2567108231B3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
16:05:49.0747 3404 RDPDR - ok
16:05:49.0801 3404 [ 57F4787E4602A3FCA719C0A33137C6DA ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:05:49.0810 3404 RdpVideoMiniport - ok
16:05:49.0840 3404 [ B3CB0721E81E30419CE7D837EF4EA151 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:05:49.0845 3404 RDPWD - ok
16:05:49.0878 3404 [ 62C1F8A0685FE07E998AA296C4F697C4 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:05:49.0883 3404 rdyboost - ok
16:05:49.0951 3404 [ A0FF419B61AE47E26ADF3BB15DB4F2FE ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
16:05:50.0015 3404 RealNetworks Downloader Resolver Service - ok
16:05:50.0063 3404 [ 3663CCF243EE0C04E9F6F91ED1737273 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:05:50.0069 3404 RemoteAccess - ok
16:05:50.0108 3404 [ E80DD61E52EDFFF9DA1ED7260A68855B ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:05:50.0120 3404 RemoteRegistry - ok
16:05:50.0158 3404 [ 73F2E030B5C24E4E41401B5F0D59E6FD ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:05:50.0181 3404 RpcEptMapper - ok
16:05:50.0208 3404 [ 10B21284B3D964AB3DC45490E57D422E ] RpcLocator C:\Windows\system32\locator.exe
16:05:50.0213 3404 RpcLocator - ok
16:05:50.0262 3404 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] RpcSs C:\Windows\system32\rpcss.dll
16:05:50.0280 3404 RpcSs - ok
16:05:50.0320 3404 [ 7BFDFD1D2244B444D7BBC55087426518 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
16:05:50.0328 3404 RSPCIESTOR - ok
16:05:50.0364 3404 [ E04E770DD198B9399640717145E79EBF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:05:50.0367 3404 rspndr - ok
16:05:50.0420 3404 [ 7D9DA8EC6784A9EE213C676709D46BE6 ] RTL8168 C:\Windows\system32\DRIVERS\Rt630x64.sys
16:05:50.0504 3404 RTL8168 - ok
16:05:50.0543 3404 [ 752EC7DCD2F96871A3857EEE6AFE965A ] s3cap C:\Windows\System32\drivers\vms3cap.sys
16:05:50.0546 3404 s3cap - ok
16:05:50.0583 3404 [ F702AB6181513303AB0FC8D59E52708B ] SamSs C:\Windows\system32\lsass.exe
16:05:50.0587 3404 SamSs - ok
16:05:50.0666 3404 [ 9C7B28CE0D136DB226E24DB3BC817F92 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:05:50.0738 3404 sbp2port - ok
16:05:50.0798 3404 [ 14316954FCE79C9DE5A0AFF9D42C83AA ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:05:50.0815 3404 SCardSvr - ok
16:05:50.0842 3404 [ 5D7733A12756B267FCA021672B26BC9E ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:05:50.0845 3404 scfilter - ok
16:05:50.0905 3404 [ EDCDF4DB82EF825B94B190D544C8C58B ] Schedule C:\Windows\system32\schedsvc.dll
16:05:50.0971 3404 Schedule - ok
16:05:51.0148 3404 [ BAF8F0F55BC300E5F882E521F054E345 ] SCPolicySvc C:\Windows\System32\certprop.dll
16:05:51.0153 3404 SCPolicySvc - ok
16:05:51.0227 3404 [ 66E29CADF9FF6C8325C356BDD617F7EA ] sdbus C:\Windows\System32\drivers\sdbus.sys
16:05:51.0238 3404 sdbus - ok
16:05:51.0288 3404 [ 92968277ED491E4B3DDA361E3952361E ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:05:51.0304 3404 SDRSVC - ok
16:05:51.0363 3404 [ BB107AA9980B0DA4E19A3A90C3BD4460 ] sdstor C:\Windows\System32\drivers\sdstor.sys
16:05:51.0381 3404 sdstor - ok
16:05:51.0484 3404 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:05:51.0492 3404 secdrv - ok
16:05:51.0552 3404 [ CD282626738B6BC92B6E7CD0AAE95B63 ] seclogon C:\Windows\system32\seclogon.dll
16:05:51.0567 3404 seclogon - ok
16:05:51.0619 3404 [ 9C51620998F0763039DFA6BF68E475ED ] SENS C:\Windows\System32\sens.dll
16:05:51.0638 3404 SENS - ok
16:05:51.0685 3404 [ 0D50B4B860DAB65241628D04CD33ACAE ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:05:51.0701 3404 SensrSvc - ok
16:05:51.0754 3404 [ 87C46B239A7EEF30FDFDD5E9BD46130C ] SerCx C:\Windows\system32\drivers\SerCx.sys
16:05:51.0805 3404 SerCx - ok
16:05:51.0858 3404 [ 7A1F9347C85FD55E39B8A76B3A25C5AD ] Serenum C:\Windows\System32\drivers\serenum.sys
16:05:51.0868 3404 Serenum - ok
16:05:51.0908 3404 [ F640A0A218BBF857F1D04A15D7D939F6 ] Serial C:\Windows\System32\drivers\serial.sys
16:05:51.0911 3404 Serial - ok
16:05:51.0936 3404 [ F1A5F56B2620B862CC28FF96A0A6DAAB ] sermouse C:\Windows\System32\drivers\sermouse.sys
16:05:51.0942 3404 sermouse - ok
16:05:52.0016 3404 [ CB60A60340788C8D6DE2A269D28086AB ] SessionEnv C:\Windows\system32\sessenv.dll
16:05:52.0074 3404 SessionEnv - ok
16:05:52.0087 3404 [ 7EE65419B29302C795714FF8073969A1 ] sfloppy C:\Windows\System32\drivers\sfloppy.sys
16:05:52.0092 3404 sfloppy - ok
16:05:52.0143 3404 [ 090AE16F79C8EAD04E6031F863DA85F3 ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:05:52.0168 3404 SharedAccess - ok
16:05:52.0246 3404 [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:05:52.0291 3404 ShellHWDetection - ok
16:05:52.0334 3404 [ 2560721D6F16D5B611C36A3A9D28C1B2 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
16:05:52.0337 3404 SiSRaid2 - ok
16:05:52.0362 3404 [ 3AA8FDE1DBF65BB8B88B053529554A0D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
16:05:52.0366 3404 SiSRaid4 - ok
16:05:52.0401 3404 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:05:52.0405 3404 SkypeUpdate - ok
16:05:52.0449 3404 [ DEF12DFFABC141DE93A01487FC5C5215 ] SmbDrv C:\Windows\System32\drivers\Smb_driver_AMDASF.sys
16:05:52.0452 3404 SmbDrv - ok
16:05:52.0482 3404 [ B7332D40EE0B52CE18D321DF8AB01008 ] SmbDrvI C:\Windows\System32\drivers\Smb_driver_Intel.sys
16:05:52.0484 3404 SmbDrvI - ok
16:05:52.0540 3404 [ E660156A4588A84305CB772FD2C0DB21 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:05:52.0559 3404 SNMPTRAP - ok
16:05:52.0606 3404 [ 465F3C355CE5ED2779B8F460F14C5A78 ] spaceport C:\Windows\system32\drivers\spaceport.sys
16:05:52.0620 3404 spaceport - ok
16:05:52.0643 3404 [ 3D8679C8DF52EB26EB7583A4E0A29202 ] SpbCx C:\Windows\system32\drivers\SpbCx.sys
16:05:52.0654 3404 SpbCx - ok
16:05:52.0709 3404 [ 3F215BF2D4D8D6756298B25B579772C2 ] Spooler C:\Windows\System32\spoolsv.exe
16:05:52.0729 3404 Spooler - ok
16:05:52.0897 3404 [ EC84D961501054F87A6878EC5D53388F ] sppsvc C:\Windows\system32\sppsvc.exe
16:05:53.0068 3404 sppsvc - ok
16:05:53.0200 3404 [ 3510E7021D2637A67FBCB5105EAE945D ] SRTSP C:\Windows\System32\Drivers\NISx64\1402000.013\SRTSP64.SYS
16:05:53.0245 3404 SRTSP - ok
16:05:53.0289 3404 [ 1B884D876E87EABF5A3356BBD7321412 ] SRTSPX C:\Windows\system32\drivers\NISx64\1402000.013\SRTSPX64.SYS
16:05:53.0296 3404 SRTSPX - ok
16:05:53.0348 3404 [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] srv C:\Windows\system32\DRIVERS\srv.sys
16:05:53.0364 3404 srv - ok
16:05:53.0419 3404 [ C2106BB710AA34A046126AED7BCA6964 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:05:53.0454 3404 srv2 - ok
16:05:53.0527 3404 [ 9400C71F5A1A380B494B6922F007D485 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:05:53.0553 3404 srvnet - ok
16:05:53.0612 3404 [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:05:53.0629 3404 SSDPSRV - ok
16:05:53.0663 3404 [ D233B16999A8E626F6004BD7814C57EC ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:05:53.0675 3404 SstpSvc - ok
16:05:54.0006 3404 [ F452B51D895D894BF5487057E11D44CF ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
16:05:54.0014 3404 STacSV - ok
16:05:54.0054 3404 [ 4E85355B94CFCB67C135F6521A4895A7 ] stexstor C:\Windows\system32\drivers\stexstor.sys
16:05:54.0078 3404 stexstor - ok
16:05:54.0123 3404 [ B05AEC4014FFDC1793B5CCB6D9BD28D1 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
16:05:54.0157 3404 STHDA - ok
16:05:54.0221 3404 [ BAC8A721736AECC55A4F71523AEAB65F ] stisvc C:\Windows\System32\wiaservc.dll
16:05:54.0255 3404 stisvc - ok
16:05:54.0294 3404 [ C588BBD37B432CE3204E5765B459E6B2 ] storahci C:\Windows\system32\drivers\storahci.sys
16:05:54.0298 3404 storahci - ok
16:05:54.0346 3404 [ F74DBC95A57B1EE866D3732EB5F79BE2 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
16:05:54.0349 3404 storflt - ok
16:05:54.0398 3404 [ 5337E138B49ED1F44CCBA4073BC35C20 ] StorSvc C:\Windows\system32\storsvc.dll
16:05:54.0447 3404 StorSvc - ok
16:05:54.0497 3404 [ 543CD3CC0E05B8D8815E0D4F040B6F59 ] storvsc C:\Windows\system32\drivers\storvsc.sys
16:05:54.0501 3404 storvsc - ok
16:05:54.0529 3404 [ 8BC1C1ED6EF9C985A3FAA6A72F41679A ] svsvc C:\Windows\system32\svsvc.dll
16:05:54.0538 3404 svsvc - ok
16:05:54.0558 3404 [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] swenum C:\Windows\System32\drivers\swenum.sys
16:05:54.0560 3404 swenum - ok
16:05:54.0610 3404 [ 502F9488540051F3E6C39889ECFA76BB ] swprv C:\Windows\System32\swprv.dll
16:05:54.0629 3404 swprv - ok
16:05:54.0683 3404 [ 777217682DA76337E8E6EC8AC4412B9B ] SymDS C:\Windows\system32\drivers\NISx64\1402000.013\SYMDS64.SYS
16:05:54.0693 3404 SymDS - ok
16:05:54.0739 3404 [ 64D1AF3D04E70A681154FFF1893848F6 ] SymEFA C:\Windows\system32\drivers\NISx64\1402000.013\SYMEFA64.SYS
16:05:54.0774 3404 SymEFA - ok
16:05:54.0796 3404 [ 42947647F71E9EF2167B42B372F1DDB7 ] SymELAM C:\Windows\system32\drivers\NISx64\1402000.013\SymELAM.sys
16:05:54.0798 3404 SymELAM - ok
16:05:54.0841 3404 [ F5D6D3B7468C46EA2DDC1D19D2A6DA0F ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
16:05:54.0846 3404 SymEvent - ok
16:05:54.0892 3404 [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON C:\Windows\system32\drivers\NISx64\1402000.013\Ironx64.SYS
16:05:54.0898 3404 SymIRON - ok
16:05:54.0931 3404 [ 1605EBD8CB86AFC4430116065995279A ] SymNetS C:\Windows\System32\Drivers\NISx64\1402000.013\SYMNETS.SYS
16:05:54.0941 3404 SymNetS - ok
16:05:54.0985 3404 [ 3F45C3FE208CA5E68832B65C597A35A6 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
16:05:54.0994 3404 SynTP - ok
16:05:55.0054 3404 [ DC21E1F06343773D7E24362DCEF7944B ] SysMain C:\Windows\system32\sysmain.dll
16:05:55.0096 3404 SysMain - ok
16:05:55.0144 3404 [ E219BF7BCCFE4881B0C053C7E0B47ECC ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
16:05:55.0155 3404 SystemEventsBroker - ok
16:05:55.0193 3404 [ A6C06C45C44AD06C70AF8899AEC15BDC ] TabletInputService C:\Windows\System32\TabSvc.dll
16:05:55.0203 3404 TabletInputService - ok
16:05:55.0233 3404 [ 88B7721AB551C4325036B25A34A2BF7B ] TapiSrv C:\Windows\System32\tapisrv.dll
16:05:55.0248 3404 TapiSrv - ok
16:05:55.0368 3404 [ 1D644E2D0FC395A055AB1C23C3B43631 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:05:55.0426 3404 Tcpip - ok
16:05:55.0524 3404 [ 1D644E2D0FC395A055AB1C23C3B43631 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:05:55.0549 3404 TCPIP6 - ok
16:05:55.0598 3404 [ 8F2A13A5DF99D72FDDE87F502A66F989 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:05:55.0607 3404 tcpipreg - ok
16:05:55.0641 3404 [ 73DC722CE5DF26D7638CE2446F2655C7 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:05:55.0645 3404 tdx - ok
16:05:55.0674 3404 [ F7C8AB5D8AFFAA318D6A21093D139BF4 ] terminpt C:\Windows\System32\drivers\terminpt.sys
16:05:55.0677 3404 terminpt - ok
16:05:55.0739 3404 [ 541EE228D0DEF392F7B2DFD885DD021B ] TermService C:\Windows\System32\termsrv.dll
16:05:55.0770 3404 TermService - ok
16:05:55.0797 3404 [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] Themes C:\Windows\system32\themeservice.dll
16:05:55.0807 3404 Themes - ok
16:05:55.0852 3404 [ EEE908BE7143FCA48CF0CB87214E2AB8 ] THREADORDER C:\Windows\system32\mmcss.dll
16:05:55.0856 3404 THREADORDER - ok
16:05:55.0915 3404 [ FF4135424A79DCC2998276D8E39C9B4D ] TimeBroker C:\Windows\System32\TimeBrokerServer.dll
16:05:55.0926 3404 TimeBroker - ok
16:05:55.0970 3404 [ B44EFE254C0B3719E4037088D24FE4B5 ] TPM C:\Windows\system32\drivers\tpm.sys
16:05:55.0975 3404 TPM - ok
16:05:56.0009 3404 [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] TrkWks C:\Windows\System32\trkwks.dll
16:05:56.0021 3404 TrkWks - ok
16:05:56.0075 3404 [ 8D516AEF3C1DF980664CF17BB1FF6093 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:05:56.0086 3404 TrustedInstaller - ok
16:05:56.0128 3404 [ 4E7C5FB10A50435523DE0CAA37DE2BD3 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
16:05:56.0141 3404 TsUsbFlt - ok
16:05:56.0154 3404 [ 16D684A820872EE54F6370703AC0B513 ] TsUsbGD C:\Windows\System32\drivers\TsUsbGD.sys
16:05:56.0157 3404 TsUsbGD - ok
16:05:56.0180 3404 [ 78C9EE193AC2B4CBDBC48B620314D740 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:05:56.0185 3404 tunnel - ok
16:05:56.0211 3404 [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A ] uagp35 C:\Windows\system32\drivers\uagp35.sys
16:05:56.0214 3404 uagp35 - ok
16:05:56.0232 3404 [ 6FD6D03B7752C78712E5CFF29A305026 ] UASPStor C:\Windows\System32\drivers\uaspstor.sys
16:05:56.0236 3404 UASPStor - ok
16:05:56.0277 3404 [ 1ED222DFE6C13DA50FE081ABF90CAFE1 ] UCX01000 C:\Windows\System32\drivers\ucx01000.sys
16:05:56.0282 3404 UCX01000 - ok
16:05:56.0318 3404 [ DC5A461591C71AF7F19DC048A81E3F88 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:05:56.0325 3404 udfs - ok
16:05:56.0372 3404 [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:05:56.0385 3404 UI0Detect - ok
16:05:56.0408 3404 [ 07FEBCDF24FABA0D47B635D85A0FFB7A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:05:56.0411 3404 uliagpkx - ok
16:05:56.0437 3404 [ 02CEB3FE6152668A7BA420B93B664860 ] umbus C:\Windows\System32\drivers\umbus.sys
16:05:56.0440 3404 umbus - ok
16:05:56.0470 3404 [ 991EE6B5FC41EAEF99C8AF5B92F2CA09 ] UmPass C:\Windows\System32\drivers\umpass.sys
16:05:56.0472 3404 UmPass - ok
16:05:56.0499 3404 [ 43FEFB040A0CC30F795FBF544169594D ] UmRdpService C:\Windows\System32\umrdp.dll
16:05:56.0513 3404 UmRdpService - ok
16:05:56.0552 3404 [ 14D22C411854AA2560AFC94CD2D5E61F ] upnphost C:\Windows\System32\upnphost.dll
16:05:56.0569 3404 upnphost - ok
16:05:56.0595 3404 [ 2AF9F0E16D75B8F783A1ACE74EF51C9B ] usbccgp C:\Windows\System32\drivers\usbccgp.sys
16:05:56.0599 3404 usbccgp - ok
16:05:56.0628 3404 [ B395B62B62F28106218FA6FB17F4C797 ] usbcir C:\Windows\System32\drivers\usbcir.sys
16:05:56.0631 3404 usbcir - ok
16:05:56.0670 3404 [ 52F267AEE8CA5AA5CEB88C6A71EE1E86 ] usbehci C:\Windows\System32\drivers\usbehci.sys
16:05:56.0673 3404 usbehci - ok
16:05:56.0712 3404 [ 4875DC63E548812C75D4FDEF84970C89 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
16:05:56.0715 3404 usbfilter - ok
16:05:56.0766 3404 [ FBB6794E3BBAD92D66D59D206C1F849F ] usbhub C:\Windows\System32\drivers\usbhub.sys
16:05:56.0776 3404 usbhub - ok
16:05:56.0822 3404 [ B7A948501424805571BF562BB0BFE31D ] USBHUB3 C:\Windows\System32\drivers\UsbHub3.sys
16:05:56.0832 3404 USBHUB3 - ok
16:05:56.0852 3404 [ 325F6179009B5A7F6118951A5BA422AB ] usbohci C:\Windows\System32\drivers\usbohci.sys
16:05:56.0854 3404 usbohci - ok
16:05:56.0888 3404 [ BA3ABE0CD1C14B3295BAD0F076B84CAC ] usbprint C:\Windows\System32\drivers\usbprint.sys
16:05:56.0891 3404 usbprint - ok
16:05:56.0918 3404 [ F77177F6C95B2116EE7AD23B5EF57007 ] USBSTOR C:\Windows\System32\drivers\USBSTOR.SYS
16:05:56.0922 3404 USBSTOR - ok
16:05:56.0967 3404 [ D25EF4A6EC244C5DE85D88A05B7C149D ] usbuhci C:\Windows\System32\drivers\usbuhci.sys
16:05:56.0970 3404 usbuhci - ok
16:05:57.0002 3404 [ 09799E701B4327097E9F63D3FE221083 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
16:05:57.0007 3404 usbvideo - ok
16:05:57.0059 3404 [ 9CD4259AD15F84DE27B94A956C978D6C ] USBXHCI C:\Windows\System32\drivers\USBXHCI.SYS
16:05:57.0076 3404 USBXHCI - ok
16:05:57.0105 3404 [ F702AB6181513303AB0FC8D59E52708B ] VaultSvc C:\Windows\system32\lsass.exe
16:05:57.0109 3404 VaultSvc - ok
16:05:57.0145 3404 [ BACECBFF9C97F7627A60B0E0F1FE7EE8 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
16:05:57.0147 3404 vdrvroot - ok
16:05:57.0200 3404 [ 8A8CDA9E3CF2E0B4C6CC19FBC6FB9A71 ] vds C:\Windows\System32\vds.exe
16:05:57.0246 3404 vds - ok
16:05:57.0275 3404 [ 74FA2D4368DE6F6CE14393EDF1F342BE ] VerifierExt C:\Windows\system32\drivers\VerifierExt.sys
16:05:57.0279 3404 VerifierExt - ok
16:05:57.0317 3404 [ 8628FA679F0EC4B709CCD1F6B6A3233B ] vhdmp C:\Windows\System32\drivers\vhdmp.sys
16:05:57.0327 3404 vhdmp - ok
16:05:57.0344 3404 [ F5B4A14B00E89250C50982AC762DDD1D ] viaide C:\Windows\system32\drivers\viaide.sys
16:05:57.0346 3404 viaide - ok
16:05:57.0369 3404 [ 78DB50F7329F6D1311658DABFFFC8BE0 ] vmbus C:\Windows\system32\drivers\vmbus.sys
16:05:57.0374 3404 vmbus - ok
16:05:57.0399 3404 [ ECFEE2F2BA3932C7880D1A8F67D68F91 ] VMBusHID C:\Windows\System32\drivers\VMBusHID.sys
16:05:57.0403 3404 VMBusHID - ok
16:05:57.0441 3404 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicheartbeat C:\Windows\System32\ICSvc.dll
16:05:57.0450 3404 vmicheartbeat - ok
16:05:57.0464 3404 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
16:05:57.0471 3404 vmickvpexchange - ok
16:05:57.0485 3404 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicrdv C:\Windows\System32\ICSvc.dll
16:05:57.0492 3404 vmicrdv - ok
16:05:57.0513 3404 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicshutdown C:\Windows\System32\ICSvc.dll
16:05:57.0520 3404 vmicshutdown - ok
16:05:57.0534 3404 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmictimesync C:\Windows\System32\ICSvc.dll
16:05:57.0540 3404 vmictimesync - ok
16:05:57.0554 3404 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss C:\Windows\System32\ICSvc.dll
16:05:57.0560 3404 vmicvss - ok
16:05:57.0590 3404 [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:05:57.0593 3404 volmgr - ok
16:05:57.0628 3404 [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:05:57.0636 3404 volmgrx - ok
16:05:57.0655 3404 [ 2FB3CDFD5EAF4CD9D4AFAF96877D13AE ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:05:57.0663 3404 volsnap - ok
16:05:57.0686 3404 [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci C:\Windows\System32\drivers\vpci.sys
16:05:57.0689 3404 vpci - ok
16:05:57.0711 3404 [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
16:05:57.0715 3404 vsmraid - ok
16:05:57.0804 3404 [ EA658570314042C914964FC72AB50E6B ] VSS C:\Windows\system32\vssvc.exe
16:05:57.0851 3404 VSS - ok
16:05:57.0887 3404 [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID C:\Windows\system32\drivers\vstxraid.sys
16:05:57.0894 3404 VSTXRAID - ok
16:05:57.0932 3404 [ 62460A45435A26A334907E3F2EA45611 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
16:05:57.0935 3404 vwifibus - ok
16:05:57.0959 3404 [ 095E943D27025E4D588AF0A72CC2318F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
16:05:57.0962 3404 vwififlt - ok
16:05:57.0989 3404 [ 73FA1A41A97A5C34ADC03B3577FF1A86 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
16:05:57.0990 3404 vwifimp - ok
16:05:58.0048 3404 [ F690B6EEAA94576727B24376D7ED3601 ] W32Time C:\Windows\system32\w32time.dll
16:05:58.0064 3404 W32Time - ok
16:05:58.0099 3404 [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen C:\Windows\System32\drivers\wacompen.sys
16:05:58.0102 3404 WacomPen - ok
16:05:58.0147 3404 [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
16:05:58.0150 3404 Wanarp - ok
16:05:58.0160 3404 [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:05:58.0162 3404 Wanarpv6 - ok
16:05:58.0234 3404 [ 901CC968412F8155B08D7ABE0171166A ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
16:05:58.0243 3404 WAS - ok
16:05:58.0321 3404 [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine C:\Windows\system32\wbengine.exe
16:05:58.0368 3404 wbengine - ok
16:05:58.0406 3404 [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:05:58.0423 3404 WbioSrvc - ok
16:05:58.0451 3404 [ D9C1E82651BF19C6FF69CEC6FD400124 ] Wcmsvc C:\Windows\System32\wcmsvc.dll
16:05:58.0466 3404 Wcmsvc - ok
16:05:58.0508 3404 [ 5B5FEAB51172F5513C2CF7B39CFA6A01 ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:05:58.0531 3404 wcncsvc - ok
16:05:58.0561 3404 [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:05:58.0572 3404 WcsPlugInService - ok
16:05:58.0607 3404 [ B3A4D918DAB90505B6BC7B70632913CB ] Wd C:\Windows\system32\drivers\wd.sys
16:05:58.0609 3404 Wd - ok
16:05:58.0632 3404 [ 260F8DFC4D5748F4CCB9B19CFB0E58EA ] WdBoot C:\Windows\system32\drivers\WdBoot.sys
16:05:58.0635 3404 WdBoot - ok
16:05:58.0679 3404 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:05:58.0703 3404 Wdf01000 - ok
16:05:58.0723 3404 [ 880FFFC4D5BBBB4187B6B04AB2E8C32A ] WdFilter C:\Windows\system32\drivers\WdFilter.sys
16:05:58.0729 3404 WdFilter - ok
16:05:58.0767 3404 [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:05:58.0778 3404 WdiServiceHost - ok
16:05:58.0788 3404 [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:05:58.0800 3404 WdiSystemHost - ok
16:05:58.0832 3404 [ F2002DA5E6B78C15B2CD48CFF8F0FBB6 ] WebClient C:\Windows\System32\webclnt.dll
16:05:58.0846 3404 WebClient - ok
16:05:58.0873 3404 [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:05:58.0901 3404 Wecsvc - ok
16:05:58.0928 3404 [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:05:58.0939 3404 wercplsupport - ok
16:05:58.0966 3404 [ 8E2426162ED6749A127B35D235F21E11 ] WerSvc C:\Windows\System32\WerSvc.dll
16:05:58.0977 3404 WerSvc - ok
16:05:59.0035 3404 [ FE762D3498719C3A23471BBA62F747B4 ] WFPLWFS C:\Windows\system32\DRIVERS\wfplwfs.sys
16:05:59.0050 3404 WFPLWFS - ok
16:05:59.0082 3404 [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc C:\Windows\System32\wiarpc.dll
16:05:59.0093 3404 WiaRpc - ok
16:05:59.0112 3404 [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:05:59.0116 3404 WIMMount - ok
16:05:59.0135 3404 WinDefend - ok
16:05:59.0218 3404 [ 7911470B6018059A880469A63B65700A ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
16:05:59.0302 3404 WinHttpAutoProxySvc - ok
16:05:59.0503 3404 [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:05:59.0527 3404 Winmgmt - ok
16:05:59.0696 3404 [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM C:\Windows\system32\WsmSvc.dll
16:05:59.0789 3404 WinRM - ok
16:05:59.0850 3404 [ DAF801153E8F33E13AB278332250D78A ] WirelessButtonDriver C:\Windows\System32\drivers\WirelessButtonDriver64.sys
16:05:59.0854 3404 WirelessButtonDriver - ok
16:05:59.0921 3404 [ 6351724B8FA0255C2DBD970297F00B93 ] WlanSvc C:\Windows\System32\wlansvc.dll
16:05:59.0968 3404 WlanSvc - ok
16:06:00.0044 3404 [ 08EFA13A2234C8C3B8A99E4B88BE7E9B ] wlidsvc C:\Windows\system32\wlidsvc.dll
16:06:00.0187 3404 wlidsvc - ok
16:06:00.0292 3404 [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi C:\Windows\System32\drivers\wmiacpi.sys
16:06:00.0294 3404 WmiAcpi - ok
16:06:00.0397 3404 [ D113499052C5E541906B727779F0F959 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:06:00.0439 3404 wmiApSrv - ok
16:06:00.0544 3404 WMPNetworkSvc - ok
16:06:00.0623 3404 [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr C:\Windows\system32\DRIVERS\wpcfltr.sys
16:06:00.0626 3404 wpcfltr - ok
16:06:00.0694 3404 [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:06:00.0712 3404 WPCSvc - ok
16:06:00.0755 3404 [ 94AA5150E35B3ABB7191FE641E3C2473 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:06:00.0782 3404 WPDBusEnum - ok
16:06:00.0808 3404 [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr C:\Windows\system32\drivers\WpdUpFltr.sys
16:06:00.0810 3404 WpdUpFltr - ok
16:06:00.0876 3404 [ BC8B5CB336E63BB25EAD1CE8EDD34B81 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:06:00.0890 3404 ws2ifsl - ok
16:06:00.0922 3404 [ FB0C1B7F94FA08E72F19F6F2CE7210E1 ] wscsvc C:\Windows\System32\wscsvc.dll
16:06:00.0949 3404 wscsvc - ok
16:06:00.0960 3404 WSearch - ok
16:06:01.0097 3404 [ C10BFFEE7E0D7A1366E84F251796C51D ] WSService C:\Windows\System32\WSService.dll
16:06:01.0184 3404 WSService - ok
16:06:01.0421 3404 [ A8484C0CB54DB48180FB7CA00F1C3F8F ] wuauserv C:\Windows\system32\wuaueng.dll
16:06:01.0541 3404 wuauserv - ok
16:06:01.0576 3404 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:06:01.0590 3404 WudfPf - ok
16:06:01.0615 3404 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\System32\drivers\WUDFRd.sys
16:06:01.0627 3404 WUDFRd - ok
16:06:01.0643 3404 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFSensorLP C:\Windows\system32\DRIVERS\WUDFRd.sys
16:06:01.0648 3404 WUDFSensorLP - ok
16:06:01.0709 3404 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:06:01.0724 3404 wudfsvc - ok
16:06:01.0748 3404 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs C:\Windows\system32\DRIVERS\WUDFRd.sys
16:06:01.0752 3404 WUDFWpdFs - ok
16:06:01.0850 3404 [ F9D8D2E6ECE08B278621D5BF3A7240A6 ] WwanSvc C:\Windows\System32\wwansvc.dll
16:06:01.0907 3404 WwanSvc - ok
16:06:01.0969 3404 ================ Scan global ===============================
16:06:02.0071 3404 [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\Windows\system32\basesrv.dll
16:06:02.0129 3404 [ E9343076AE704D20BB0D01F3AF3EFFEF ] C:\Windows\system32\winsrv.dll
16:06:02.0210 3404 [ BD7C6949984D19AAA609896B675E7357 ] C:\Windows\system32\sxssrv.dll
16:06:02.0283 3404 [ 8F226143046435C75C033B0C52E90FFE ] C:\Windows\system32\services.exe
16:06:02.0297 3404 [Global] - ok
16:06:02.0299 3404 ================ Scan MBR ==================================
16:06:02.0365 3404 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
16:06:04.0105 3404 \Device\Harddisk0\DR0 - ok
16:06:04.0107 3404 ================ Scan VBR ==================================
16:06:04.0140 3404 [ 9AFF8853AA144D1D76D5778A1D8CD70C ] \Device\Harddisk0\DR0\Partition1
16:06:04.0162 3404 \Device\Harddisk0\DR0\Partition1 - ok
16:06:04.0181 3404 [ 3514E8C45BA76961EAE9DFF5C58E6ACC ] \Device\Harddisk0\DR0\Partition2
16:06:04.0183 3404 \Device\Harddisk0\DR0\Partition2 - ok
16:06:04.0202 3404 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
16:06:04.0203 3404 \Device\Harddisk0\DR0\Partition3 - ok
16:06:04.0219 3404 [ D93534BA19B470BC5D91458684A8F963 ] \Device\Harddisk0\DR0\Partition4
16:06:04.0223 3404 \Device\Harddisk0\DR0\Partition4 - ok
16:06:04.0253 3404 [ 8EA254B4B199E68E0F5BF9AD8EA7B380 ] \Device\Harddisk0\DR0\Partition5
16:06:04.0257 3404 \Device\Harddisk0\DR0\Partition5 - ok
16:06:04.0259 3404 ============================================================
16:06:04.0259 3404 Scan finished
16:06:04.0259 3404 ============================================================
16:06:04.0294 4724 Detected object count: 0
16:06:04.0294 4724 Actual detected object count: 0

#5 Belle114

Belle114
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:23 PM

Posted 12 January 2013 - 07:23 PM

When I try downloading the aswMBR
at the end of the download it says download complete. I hit "run" then it says it has either been deleted or moved.

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:23 PM

Posted 12 January 2013 - 09:11 PM

Try to run it in safemode with networking

#7 Belle114

Belle114
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:23 PM

Posted 12 January 2013 - 10:35 PM

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-01-12 19:26:08
-----------------------------
19:26:08.837 OS Version: Windows x64 6.2.9200
19:26:08.837 Number of processors: 2 586 0x200
19:26:08.837 ComputerName: HOME UserName: Cori
19:26:08.931 Initialze error 1
19:30:37.512 AVAST engine defs: 13011201
19:31:34.096 The log file has been saved successfully to "C:\Users\Cori\Desktop\aswMBR - Log.txt"

#8 DonutSpanker

DonutSpanker

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Ohio, United States
  • Local time:07:23 PM

Posted 12 January 2013 - 11:54 PM

From previous experience TDSSKiller will take care of those easily.

#9 Belle114

Belle114
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:23 PM

Posted 13 January 2013 - 12:41 AM

Oh, I sure hope so spanker! This has been a nightmare for me today, until I talked to my cousin who knows his stuff, and pointed me here. So far I am 2 hours into the ESET scan, and 2 threats found in Yontoo. I don't know anything about this nasty crap, but I do know this site is amzing, and I am just amazed at the knowledge and helpfulness!

#10 Belle114

Belle114
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:23 PM

Posted 13 January 2013 - 12:45 AM

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-01-12 19:26:08
-----------------------------
19:26:08.837 OS Version: Windows x64 6.2.9200
19:26:08.837 Number of processors: 2 586 0x200
19:26:08.837 ComputerName: HOME UserName: Cori
19:26:08.931 Initialze error 1
19:30:37.512 AVAST engine defs: 13011201
19:31:34.096 The log file has been saved successfully to "C:\Users\Cori\Desktop\aswMBR - Log.txt"

#11 Belle114

Belle114
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:23 PM

Posted 13 January 2013 - 01:55 AM

C:\Users\All Users\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application unable to clean
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application cleaned by deleting - quarantined
C:\Users\Cori\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BUEZ9YQ3\yontoosetup[1].exe multiple threats cleaned by deleting - quarantined
C:\Users\Cori\AppData\Local\Temp\is1275519350\yontoo-c4.exe multiple threats cleaned by deleting - quarantined

#12 Belle114

Belle114
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:23 PM

Posted 13 January 2013 - 09:25 AM

My PC is running verrrrrry slow as well.

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:23 PM

Posted 13 January 2013 - 11:03 AM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#14 Belle114

Belle114
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:23 PM

Posted 13 January 2013 - 01:28 PM

Where I am at right now: The Malwarebytes scan is complete. I had a popup that said something to the effect of "No malicious threats found." I do not remember the exact words. That was the popup right when it completed. SO I closed it, and I am not seeing anywhere the other steps show results, select all and remove them. There is a tab "Logs" with 2 logs in it, one scanner and one protection. I saved both of those logs to my desktop. Can you please advise me what to do from here? Thank you soooo much!

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:23 PM

Posted 13 January 2013 - 01:42 PM

Continue with other steps




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users