Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer problems


  • Please log in to reply
8 replies to this topic

#1 slikk24

slikk24

  • Members
  • 69 posts
  • OFFLINE
  •  
  • Local time:04:17 PM

Posted 26 November 2013 - 04:58 PM

I am using a Dell Windows 7 Pro and it is infected with a virus that malware bytes can't seem to get rid of.  What should I do?



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,924 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:17 PM

Posted 26 November 2013 - 09:13 PM

Hello slikk, what name does MBAM give this virus?

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 slikk24

slikk24
  • Topic Starter

  • Members
  • 69 posts
  • OFFLINE
  •  
  • Local time:04:17 PM

Posted 27 November 2013 - 05:58 PM

I believe one of the infections was pup.optional.searchprotect.a

 

 

MiniToolBox by Farbar Version: 13-07-2013
Ran by amwhite (ATTENTION: The logged in user is not administrator) on 27-11-2013 at 17:29:16
Running from "C:\Users\amwhite.CAD\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8UDV94I6"
Microsoft Windows 7 Professional (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Intel® 82578DM Gigabit Network Connection = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : AMWHITE
Primary Dns Suffix . . . . . . . : cad.local
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : cad.local

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : cad.local
Description . . . . . . . . . . . : Intel® 82578DM Gigabit Network Connection
Physical Address. . . . . . . . . : 78-2B-CB-96-7B-7D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::c1b4:5bd1:91d5:dee8%11(Preferred)
IPv4 Address. . . . . . . . . . . : 10.19.1.107(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, November 27, 2013 4:36:23 PM
Lease Expires . . . . . . . . . . : Friday, December 27, 2013 4:36:22 PM
Default Gateway . . . . . . . . . : 10.19.1.1
DHCP Server . . . . . . . . . . . : 10.19.1.210
DHCPv6 IAID . . . . . . . . . . . : 242756555
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-48-75-3C-78-2B-CB-96-7B-7D
DNS Servers . . . . . . . . . . . : 10.19.1.210
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.cad.local:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : cad.local
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 10.19.1.210

Name: google.com
Addresses: 2607:f8b0:4009:805::1008
173.194.46.68
173.194.46.69
173.194.46.70
173.194.46.71
173.194.46.72
173.194.46.73
173.194.46.78
173.194.46.64
173.194.46.65
173.194.46.66
173.194.46.67


Pinging google.com [173.194.46.69] with 32 bytes of data:
Reply from 173.194.46.69: bytes=32 time=46ms TTL=52
Reply from 173.194.46.69: bytes=32 time=52ms TTL=52

Ping statistics for 173.194.46.69:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 46ms, Maximum = 52ms, Average = 49ms
Server: UnKnown
Address: 10.19.1.210

Name: yahoo.com
Addresses: 98.139.183.24
206.190.36.45
98.138.253.109


Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=90ms TTL=43
Reply from 206.190.36.45: bytes=32 time=93ms TTL=43

Ping statistics for 206.190.36.45:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 90ms, Maximum = 93ms, Average = 91ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...78 2b cb 96 7b 7d ......Intel® 82578DM Gigabit Network Connection
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
13...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
20...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.19.1.1 10.19.1.107 10
10.19.1.0 255.255.255.0 On-link 10.19.1.107 266
10.19.1.107 255.255.255.255 On-link 10.19.1.107 266
10.19.1.255 255.255.255.255 On-link 10.19.1.107 266
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 10.19.1.107 266
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 10.19.1.107 266
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 266 fe80::/64 On-link
11 266 fe80::c1b4:5bd1:91d5:dee8/128
On-link
1 306 ff00::/8 On-link
11 266 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70144] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/27/2013 05:07:42 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (11/27/2013 05:07:37 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (11/27/2013 10:13:50 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (11/27/2013 09:26:33 AM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Tracking Cookies in File: Unavailable by: Manual scan. Action: Quarantine failed : Leave Alone failed. Action Description: The file was deleted successfully.

Error: (11/26/2013 02:58:22 PM) (Source: CltMngSvc) (User: )
Description: CltMngSvcServiceMain Version 2. (Error: 87)

Error: (11/26/2013 02:50:58 PM) (Source: CltMngSvc) (User: )
Description: CltMngSvcServiceMain Version 2. (Error: 87)

Error: (11/26/2013 02:44:20 PM) (Source: CltMngSvc) (User: )
Description: CltMngSvcServiceMain Version 2. (Error: 87)

Error: (11/26/2013 02:08:56 PM) (Source: CltMngSvc) (User: )
Description: CltMngSvcServiceMain Version 2. (Error: 87)

Error: (11/26/2013 10:59:31 AM) (Source: CltMngSvc) (User: )
Description: CltMngSvcServiceMain Version 2. (Error: 87)

Error: (11/26/2013 10:55:21 AM) (Source: CltMngSvc) (User: )
Description: CltMngSvcServiceMain Version 2. (Error: 87)


System errors:
=============
Error: (11/27/2013 04:36:07 PM) (Source: Microsoft-Windows-GroupPolicy) (User: CAD)
Description: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has succesfully processed. If you do not see a success message for several hours, then contact your administrator.

Error: (11/27/2013 04:35:57 PM) (Source: Microsoft-Windows-GroupPolicy) (User: NT AUTHORITY)
Description: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has succesfully processed. If you do not see a success message for several hours, then contact your administrator.

Error: (11/27/2013 04:35:54 PM) (Source: Service Control Manager) (User: )
Description: The NTRU TSS v1.2.1.34 TCS service depends on the TPM Base Services service which failed to start because of the following error:
%%0

Error: (11/27/2013 04:35:55 PM) (Source: NETLOGON) (User: )
Description: This computer was not able to set up a secure session with a domain
controller in domain CAD due to the following:
%%1311

This may lead to authentication problems. Make sure that this
computer is connected to the network. If the problem persists,
please contact your domain administrator.



ADDITIONAL INFO

If this computer is a domain controller for the specified domain, it
sets up the secure session to the primary domain controller emulator in the specified
domain. Otherwise, this computer sets up the secure session to any domain controller
in the specified domain.

Error: (11/27/2013 02:30:18 PM) (Source: Microsoft-Windows-GroupPolicy) (User: NT AUTHORITY)
Description: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has succesfully processed. If you do not see a success message for several hours, then contact your administrator.

Error: (11/27/2013 02:30:16 PM) (Source: Service Control Manager) (User: )
Description: The NTRU TSS v1.2.1.34 TCS service depends on the TPM Base Services service which failed to start because of the following error:
%%0

Error: (11/27/2013 02:30:16 PM) (Source: NETLOGON) (User: )
Description: This computer was not able to set up a secure session with a domain
controller in domain CAD due to the following:
%%1311

This may lead to authentication problems. Make sure that this
computer is connected to the network. If the problem persists,
please contact your domain administrator.



ADDITIONAL INFO

If this computer is a domain controller for the specified domain, it
sets up the secure session to the primary domain controller emulator in the specified
domain. Otherwise, this computer sets up the secure session to any domain controller
in the specified domain.

Error: (11/27/2013 02:30:09 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 2:29:12 PM on ?11/?27/?2013 was unexpected.

Error: (11/27/2013 02:14:36 PM) (Source: Service Control Manager) (User: )
Description: The Application Information service failed to start due to the following error:
%%1053

Error: (11/27/2013 02:14:36 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Appinfo service.


Microsoft Office Sessions:
=========================
Error: (11/27/2013 05:07:42 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\amwhite.CAD\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TA0GWSAK\esetsmartinstaller_enu.exe

Error: (11/27/2013 05:07:37 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\amwhite.CAD\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TA0GWSAK\esetsmartinstaller_enu.exe

Error: (11/27/2013 10:13:50 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\amwhite.CAD\Downloads\esetsmartinstaller_enu.exe

Error: (11/27/2013 09:26:33 AM) (Source: Symantec AntiVirus)(User: )
Description: Security Risk Found!Tracking Cookies in File: Unavailable by: Manual scan. Action: Quarantine failed : Leave Alone failed. Action Description: The file was deleted successfully.

Error: (11/26/2013 02:58:22 PM) (Source: CltMngSvc)(User: )
Description: CltMngSvcServiceMain Version 2. (Error: 87)

Error: (11/26/2013 02:50:58 PM) (Source: CltMngSvc)(User: )
Description: CltMngSvcServiceMain Version 2. (Error: 87)

Error: (11/26/2013 02:44:20 PM) (Source: CltMngSvc)(User: )
Description: CltMngSvcServiceMain Version 2. (Error: 87)

Error: (11/26/2013 02:08:56 PM) (Source: CltMngSvc)(User: )
Description: CltMngSvcServiceMain Version 2. (Error: 87)

Error: (11/26/2013 10:59:31 AM) (Source: CltMngSvc)(User: )
Description: CltMngSvcServiceMain Version 2. (Error: 87)

Error: (11/26/2013 10:55:21 AM) (Source: CltMngSvc)(User: )
Description: CltMngSvcServiceMain Version 2. (Error: 87)


=========================== Installed Programs ============================

Adobe Download Manager (Version: 1.6.2.102)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.117)
Adobe Reader X (10.1.8) (Version: 10.1.8)
AOL Toolbar
AOL Uninstaller (Choose which Products to Remove)
Apple Application Support (Version: 2.3)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
BioAPI Framework (Version: 1.0.2)
Bonjour (Version: 3.0.0.10)
Centurion 3.1 (Build OK20110206000000) (Version: 3.1 (Build OK20110206000000))
Custom (Version: 12.34.56.789)
CyberLink PowerDVD 9.5 (Version: 9.5.1.3225)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell Backup and Recovery Manager (Version: 1.3)
Dell Data Protection | Access (Version: 01.01.00.085)
Dell Data Protection | Access (Version: 2.0.00000.085)
Dell Data Protection | Access | Drivers (Version: 1.00.011)
Dell Data Protection | Access | Middleware (Version: 1.00.005)
Dell Edoc Viewer (Version: 1.0.0)
DellAccess (Version: 01.01.00.053)
DirectX 9 Runtime (Version: 1.00.0000)
Dropbox (Version: 2.0.22)
EMBASSY Security Center (Version: 04.03.00.067)
ESET Online Scanner v3
Gemalto (Version: 01.64.01.0010)
Google Chrome (Version: 31.0.1650.57)
Google Earth (Version: 7.1.1.1888)
Google Talk (remove only)
Google Update Helper (Version: 1.3.21.165)
Installl Converter Toolbar for IE (Version: 6.17.0.33)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2182)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Network Connections 15.2.89.0 (Version: 15.2.89.0)
Intel® Rapid Storage Technology (Version: 9.6.0.1014)
iTunes (Version: 10.7.0.21)
Java Auto Updater (Version: 2.0.5.1)
Java™ 6 Update 24 (64-bit) (Version: 6.0.240)
Java™ 6 Update 26 (Version: 6.0.260)
Junk Mail filter update (Version: 15.4.3502.0922)
Kyocera Product Library (Version: 2.0.0713)
LiveUpdate 3.3 (Symantec Corporation) (Version: 3.3.0.92)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access database engine 2007 (English) (Version: 12.0.4518.1031)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Home and Business 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Streets & Trips 2009 (Version: 16.0.18.1000)
Microsoft VC9 runtime libraries (Version: 1.0.0)
Microsoft VC9 runtime libraries (Version: 2.0.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Mozilla Firefox 5.0.1 (x86 en-US) (Version: 5.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NTRU TCG Software Stack (Version: 2.1.34)
PC-CCID (Version: 2.0.0)
PhotoShowExpress (Version: 2.0.063)
Preboot Manager (Version: 03.03.00.049)
Private Information Manager (Version: 07.01.00.007)
QuickTime (Version: 7.73.80.64)
RBVirtualFolder64Inst (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5876)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.3)
Roxio Burn (Version: 1.8)
Roxio Creator Starter (Version: 1.0.439)
Roxio Creator Starter (Version: 12.1.77.0)
Roxio Creator Starter (Version: 5.0.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
SPBA 5.9 (Version: 5.9.4.6686)
Symantec Endpoint Protection Small Business Edition (Version: 12.0.1001.95)
TOSHIBA e-STUDIO File Downloader (Version: 1.11.000)
TOSHIBA e-STUDIO Remote Scan driver (Version: 1.10.000)
TOSHIBA e-STUDIO TWAIN Driver (Version: 1.10.000)
Trusted Drive Manager (Version: 4.0.0.512)
UltraVnc (Version: 1.0.9.5)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition
Update for Microsoft Word 2010 (KB2827323) 32-Bit Edition
Upek Touchchip Fingerprint Reader (Version: 1.2.004)
Wave Infrastructure Installer (Version: 07.66.40.0008)
Wave Support Software Installer (Version: 05.13.00.014)
Windows Driver Package - Dell Inc. PBADRV System (09/11/2009 1.0.1.6) (Version: 09/11/2009 1.0.1.6)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)

========================= Memory info: ===================================

Percentage of memory in use: 47%
Total physical RAM: 3894.39 MB
Available physical RAM: 2056.26 MB
Total Pagefile: 7786.88 MB
Available Pagefile: 5752.77 MB
Total Virtual: 4095.88 MB
Available Virtual: 3960.88 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:221.09 GB) (Free:125.75 GB) NTFS
7 Drive i: (HP C310W) (Removable) (Total:3.81 GB) (Free:3.07 GB) FAT32
8 Drive p: (DATAPRT1) (Network) (Total:1676.96 GB) (Free:1429.41 GB) NTFS

========================= Users: ========================================

User accounts for \\AMWHITE

Administrator Amanda White Guest


**** End of log ****
17:31:21.0439 0x1564 TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
17:31:25.0619 0x1564 ============================================================
17:31:25.0619 0x1564 Current date / time: 2013/11/27 17:31:25.0619
17:31:25.0619 0x1564 SystemInfo:
17:31:25.0619 0x1564
17:31:25.0619 0x1564 OS Version: 6.1.7600 ServicePack: 0.0
17:31:25.0619 0x1564 Product type: Workstation
17:31:25.0619 0x1564 ComputerName: AMWHITE
17:31:25.0620 0x1564 UserName: rbailey
17:31:25.0620 0x1564 Windows directory: C:\Windows
17:31:25.0620 0x1564 System windows directory: C:\Windows
17:31:25.0620 0x1564 Running under WOW64
17:31:25.0620 0x1564 Processor architecture: Intel x64
17:31:25.0620 0x1564 Number of processors: 4
17:31:25.0620 0x1564 Page size: 0x1000
17:31:25.0620 0x1564 Boot type: Normal boot
17:31:25.0620 0x1564 ============================================================
17:31:26.0313 0x1564 KLMD registered as C:\Windows\system32\drivers\79565632.sys
17:31:26.0839 0x1564 System UUID: {4B05BA72-449D-B652-14A5-44E33BC0449A}
17:31:28.0104 0x1564 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:31:28.0123 0x1564 Drive \Device\Harddisk5\DR5 - Size: 0xF4B00000 (3.82 Gb), SectorSize: 0x200, Cylinders: 0x1F3, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:31:28.0127 0x1564 ============================================================
17:31:28.0127 0x1564 \Device\Harddisk0\DR0:
17:31:28.0130 0x1564 MBR partitions:
17:31:28.0130 0x1564 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1785000
17:31:28.0130 0x1564 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1799000, BlocksNum 0x1BA2C000
17:31:28.0130 0x1564 \Device\Harddisk5\DR5:
17:31:28.0132 0x1564 MBR partitions:
17:31:28.0132 0x1564 \Device\Harddisk5\DR5\Partition1: MBR, Type 0xB, StartLBA 0xAC8, BlocksNum 0x7A4D38
17:31:28.0132 0x1564 ============================================================
17:31:28.0157 0x1564 C: <-> \Device\Harddisk0\DR0\Partition2
17:31:28.0157 0x1564 ============================================================
17:31:28.0157 0x1564 Initialize success
17:31:28.0157 0x1564 ============================================================
17:31:35.0276 0x16d0 ============================================================
17:31:35.0276 0x16d0 Scan started
17:31:35.0276 0x16d0 Mode: Manual;
17:31:35.0276 0x16d0 ============================================================
17:31:35.0276 0x16d0 KSN ping started
17:31:38.0079 0x16d0 KSN ping finished: true
17:31:39.0547 0x16d0 ================ Scan system memory ========================
17:31:39.0547 0x16d0 System memory - ok
17:31:39.0548 0x16d0 ================ Scan services =============================
17:31:39.0717 0x16d0 [ 969C91060CBB5D17CB8440B5F78B4C51, 9B5754DDACA15B11DB4D22B0473360C72CFA854AD4AD57546AF3B3C63AAE7759 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
17:31:39.0758 0x16d0 1394ohci - ok
17:31:39.0849 0x16d0 [ 6F11E88748CDEFD2F76AA215F97DDFE5, BD0B3561EDCDE5EFD89372793CFD09DF879709BF469542F4A049705CBA9FD060 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
17:31:39.0865 0x16d0 ACPI - ok
17:31:39.0884 0x16d0 [ 63B05A0420CE4BF0E4AF6DCC7CADA254, 56BCC219D6B886FD42B7D335B4A7BBA3C9BC148220CBD99F8583FB505DAE63BF ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
17:31:39.0890 0x16d0 AcpiPmi - ok
17:31:40.0059 0x16d0 [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:31:40.0061 0x16d0 AdobeARMservice - ok
17:31:40.0219 0x16d0 [ A283108E14F3970432C21AF4C0CB1BCE, 1D3219EF916D54232838870EDE557296AACB714B456ED0AAE0DE3CE3822F4643 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:31:40.0224 0x16d0 AdobeFlashPlayerUpdateSvc - ok
17:31:40.0290 0x16d0 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:31:40.0318 0x16d0 adp94xx - ok
17:31:40.0360 0x16d0 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:31:40.0386 0x16d0 adpahci - ok
17:31:40.0396 0x16d0 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:31:40.0406 0x16d0 adpu320 - ok
17:31:40.0433 0x16d0 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:31:40.0435 0x16d0 AeLookupSvc - ok
17:31:40.0518 0x16d0 [ DB9D6C6B2CD95A9CA414D045B627422E, A4A0B2ACBFE311C20EF9F06A49DBE02CE90433C2364B292F6E8F78F6C274DF88 ] AFD C:\Windows\system32\drivers\afd.sys
17:31:40.0543 0x16d0 AFD - ok
17:31:40.0568 0x16d0 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
17:31:40.0577 0x16d0 agp440 - ok
17:31:40.0618 0x16d0 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
17:31:40.0627 0x16d0 ALG - ok
17:31:40.0646 0x16d0 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
17:31:40.0655 0x16d0 aliide - ok
17:31:40.0681 0x16d0 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\DRIVERS\amdide.sys
17:31:40.0688 0x16d0 amdide - ok
17:31:40.0711 0x16d0 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:31:40.0720 0x16d0 AmdK8 - ok
17:31:40.0725 0x16d0 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:31:40.0732 0x16d0 AmdPPM - ok
17:31:40.0774 0x16d0 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9, 786B30C86FA7FEC6BA2569FF818044AA0F7C134693304ED0FF7BD0541F9A755F ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:31:40.0783 0x16d0 amdsata - ok
17:31:40.0853 0x16d0 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:31:40.0863 0x16d0 amdsbs - ok
17:31:40.0877 0x16d0 [ DB27766102C7BF7E95140A2AA81D042E, 489F812B596EA06E53D891CD05047AA17CDF752854BBD553BA65D10799AF78DF ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:31:40.0888 0x16d0 amdxata - ok
17:31:41.0089 0x16d0 [ 85180CF88C5EBAD73B452A43A004CA51, 24D25495DC21293FC1F37EE7E7C2A4725E66D3D25BE05D7EDF4BB4F444C65526 ] AOL ACS C:\Program Files (x86)\Common Files\AOL\ACS\AOLAcsd.exe
17:31:41.0090 0x16d0 AOL ACS - ok
17:31:41.0176 0x16d0 [ 308A886677FB0BD87F495DC95ACD8C54, 340A97D9EFB915CD8E4DA307FFB6549B89F6191028451FCD215FF6A6C74F0D96 ] AppID C:\Windows\system32\drivers\appid.sys
17:31:41.0183 0x16d0 AppID - ok
17:31:41.0224 0x16d0 [ C0FA6F414410F70417016632DB6FEAF7, E0EDCAF538CAC3D6921649735937CCD9EB4FBB2B051F71AF91D918BA52DEB248 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:31:41.0237 0x16d0 AppIDSvc - ok
17:31:41.0341 0x16d0 [ D065BE66822847B7F127D1F90158376E, 20F911F390FF23C2C42361A449C4344DB59F1DC21EDD1E7EBC4E80914DEF7824 ] Appinfo C:\Windows\System32\appinfo.dll
17:31:41.0345 0x16d0 Appinfo - ok
17:31:41.0571 0x16d0 [ A5299D04ED225D64CF07A568A3E1BF8C, 6F7E73893127BADC8C9815E9BCC0EB5F6584E254D0D09A0B6A680704C71E0A90 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:31:41.0574 0x16d0 Apple Mobile Device - ok
17:31:41.0682 0x16d0 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
17:31:41.0852 0x16d0 AppMgmt - ok
17:31:41.0953 0x16d0 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
17:31:41.0961 0x16d0 arc - ok
17:31:42.0015 0x16d0 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:31:42.0030 0x16d0 arcsas - ok
17:31:42.0084 0x16d0 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:31:42.0096 0x16d0 AsyncMac - ok
17:31:42.0164 0x16d0 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\DRIVERS\atapi.sys
17:31:42.0172 0x16d0 atapi - ok
17:31:42.0262 0x16d0 [ E1FFD1F7B043AEF0ACC9E7593043FD4C, 0C5B9ED4484E4280AF884B4E14A514336E86B9F237627E7CA912D59DD8A30C2F ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:31:42.0306 0x16d0 AudioEndpointBuilder - ok
17:31:42.0327 0x16d0 [ E1FFD1F7B043AEF0ACC9E7593043FD4C, 0C5B9ED4484E4280AF884B4E14A514336E86B9F237627E7CA912D59DD8A30C2F ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:31:42.0337 0x16d0 AudioSrv - ok
17:31:42.0418 0x16d0 [ B20B5FA5CA050E9926E4D1DB81501B32, 91B9038349BA07E32DE809E6798167EE44087809EB1174B84EC16580040F1BE0 ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:31:42.0426 0x16d0 AxInstSV - ok
17:31:42.0469 0x16d0 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:31:42.0485 0x16d0 b06bdrv - ok
17:31:42.0513 0x16d0 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:31:42.0528 0x16d0 b57nd60a - ok
17:31:42.0548 0x16d0 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
17:31:42.0557 0x16d0 BDESVC - ok
17:31:42.0601 0x16d0 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
17:31:42.0614 0x16d0 Beep - ok
17:31:42.0655 0x16d0 [ 4992C609A6315671463E30F6512BC022, 3020034556EAC25CD90F41D3BFFDD0BB2C3D1C5BAC4359F4B71B84A9FC404495 ] BFE C:\Windows\System32\bfe.dll
17:31:42.0672 0x16d0 BFE - ok
17:31:42.0715 0x16d0 [ 7F0C323FE3DA28AA4AA1BDA3F575707F, 7FF09CBC16A9E5F357A76FF79A3F0DD047957D474031F51A6BB4916C7911F005 ] BITS C:\Windows\System32\qmgr.dll
17:31:42.0765 0x16d0 BITS - ok
17:31:42.0821 0x16d0 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:31:42.0828 0x16d0 blbdrive - ok
17:31:42.0915 0x16d0 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:31:42.0922 0x16d0 Bonjour Service - ok
17:31:42.0975 0x16d0 [ 19D20159708E152267E53B66677A4995, 6401FA5C3EFF26BED075FEC68F868CD8D0598FDB45EA9381810615F7252F7A9A ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:31:42.0995 0x16d0 bowser - ok
17:31:43.0019 0x16d0 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:31:43.0026 0x16d0 BrFiltLo - ok
17:31:43.0032 0x16d0 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:31:43.0037 0x16d0 BrFiltUp - ok
17:31:43.0088 0x16d0 [ 6B054C67AAA87843504E8E3C09102009, 284AA58625FBDBFECB851A35407331B40BAEC141F2DCEDB9F15733BAB22F5C81 ] Browser C:\Windows\System32\browser.dll
17:31:43.0091 0x16d0 Browser - ok
17:31:43.0115 0x16d0 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:31:43.0128 0x16d0 Brserid - ok
17:31:43.0144 0x16d0 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:31:43.0155 0x16d0 BrSerWdm - ok
17:31:43.0158 0x16d0 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:31:43.0189 0x16d0 BrUsbMdm - ok
17:31:43.0207 0x16d0 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:31:43.0213 0x16d0 BrUsbSer - ok
17:31:43.0229 0x16d0 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:31:43.0237 0x16d0 BTHMODEM - ok
17:31:43.0277 0x16d0 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
17:31:43.0285 0x16d0 bthserv - ok
17:31:43.0399 0x16d0 [ 27D036FB3D22CA8A6662FE960D1A937D, 46B09632C0628155B499F9A17D7A92642362EC7DF7F15C93E030658CC65A9D72 ] ccEvtMgr C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
17:31:43.0404 0x16d0 ccEvtMgr - ok
17:31:43.0431 0x16d0 [ 27D036FB3D22CA8A6662FE960D1A937D, 46B09632C0628155B499F9A17D7A92642362EC7DF7F15C93E030658CC65A9D72 ] ccSetMgr C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
17:31:43.0433 0x16d0 ccSetMgr - ok
17:31:43.0446 0x16d0 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:31:43.0453 0x16d0 cdfs - ok
17:31:43.0490 0x16d0 [ 83D2D75E1EFB81B3450C18131443F7DB, F2C686C980D818E797818E75B808E1E0B51B2045840A4BFC32D860B7DB4DFA22 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:31:43.0499 0x16d0 cdrom - ok
17:31:43.0531 0x16d0 [ 312E2F82AF11E79906898AC3E3D58A1F, F6CB7D8B204B94F749D5DBEFD552150AAB16A34D629F87F73823A7504465F106 ] CertPropSvc C:\Windows\System32\certprop.dll
17:31:43.0534 0x16d0 CertPropSvc - ok
17:31:43.0556 0x16d0 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:31:43.0563 0x16d0 circlass - ok
17:31:43.0587 0x16d0 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
17:31:43.0607 0x16d0 CLFS - ok
17:31:43.0704 0x16d0 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:31:43.0728 0x16d0 clr_optimization_v2.0.50727_32 - ok
17:31:43.0778 0x16d0 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:31:43.0790 0x16d0 clr_optimization_v2.0.50727_64 - ok
17:31:43.0901 0x16d0 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:31:43.0958 0x16d0 clr_optimization_v4.0.30319_32 - ok
17:31:44.0343 0x16d0 [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:31:44.0475 0x16d0 clr_optimization_v4.0.30319_64 - ok
17:31:44.0514 0x16d0 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:31:44.0522 0x16d0 CmBatt - ok
17:31:44.0536 0x16d0 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
17:31:44.0549 0x16d0 cmdide - ok
17:31:44.0622 0x16d0 [ CA7720B73446FDDEC5C69519C1174C98, F24796765587CC1D653A04783B1659564F42E600DA3AFA3DED724592B291D033 ] CNG C:\Windows\system32\Drivers\cng.sys
17:31:44.0640 0x16d0 CNG - ok
17:31:44.0672 0x16d0 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:31:44.0680 0x16d0 Compbatt - ok
17:31:44.0701 0x16d0 [ F26B3A86F6FA87CA360B879581AB4123, 723904362614FE47F6CC0EA0656BA1B47EA32D73BAFB61688A5E5CAE4340B1BF ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
17:31:44.0708 0x16d0 CompositeBus - ok
17:31:44.0712 0x16d0 COMSysApp - ok
17:31:44.0723 0x16d0 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:31:44.0732 0x16d0 crcdisk - ok
17:31:44.0786 0x16d0 [ BAF19B633933A9FB4883D27D66C39E9A, 2D8ABB5161736CCCADA67B3E6A8D70B0B5E1E3FE6084561891F394DA191B3439 ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:31:44.0794 0x16d0 CryptSvc - ok
17:31:44.0834 0x16d0 [ 4A6173C2279B498CD8F57CAE504564CB, FF3CD404FD91EDE38C21780362CE892BFBBC2526B146BEBD139C7413EB29A216 ] CSC C:\Windows\system32\drivers\csc.sys
17:31:44.0904 0x16d0 CSC - ok
17:31:44.0954 0x16d0 [ 873FBF927C06E5CEE04DEC617502F8FD, 8B452ED5D003337E66634EEC3D5C9FBA4D05FF5AE776239F3B769FAA505E729C ] CscService C:\Windows\System32\cscsvc.dll
17:31:44.0968 0x16d0 CscService - ok
17:31:45.0035 0x16d0 [ 7266972E86890E2B30C0C322E906B027, BFA30E85F5BD3AA933913BD7C6D2B5993DB7AFB0C98349B61A6BEF0BDC8A3680 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:31:45.0046 0x16d0 DcomLaunch - ok
17:31:45.0074 0x16d0 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
17:31:45.0079 0x16d0 defragsvc - ok
17:31:45.0110 0x16d0 [ 9C253CE7311CA60FC11C774692A13208, 23507138576DB75AA8B7415140F7B5D8A90CB2661796223870461C721A36AEBF ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:31:45.0120 0x16d0 DfsC - ok
17:31:45.0157 0x16d0 [ CE3B9562D997F69B330D181A8875960F, 6FEE6622859198C5C13545867EF7CFE8EDC991360E976F792313DAA9C82CC5C8 ] Dhcp C:\Windows\system32\dhcpcore.dll
17:31:45.0164 0x16d0 Dhcp - ok
17:31:45.0196 0x16d0 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
17:31:45.0203 0x16d0 discache - ok
17:31:45.0217 0x16d0 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:31:45.0225 0x16d0 Disk - ok
17:31:45.0276 0x16d0 [ 85CF424C74A1D5EC33533E1DBFF9920A, 882D5FA0D5EC053D76A0C46A6047A621D607651693CF94E5506219EECCC8D079 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:31:45.0280 0x16d0 Dnscache - ok
17:31:45.0308 0x16d0 [ 14452ACDB09B70964C8C21BF80A13ACB, DA0AAAC04626EFF4256D7095FF1DDA1F1B17676E26990C418BDF5090476F2AB4 ] dot3svc C:\Windows\System32\dot3svc.dll
17:31:45.0320 0x16d0 dot3svc - ok
17:31:45.0341 0x16d0 [ 8C2BA6BEA949EE6E68385F5692BAFB94, 1047F473DCE0FB56BEA5C1B7929752C1FBAB5983C8202ABB4EEA48FCD60A353A ] DPS C:\Windows\system32\dps.dll
17:31:45.0345 0x16d0 DPS - ok
17:31:45.0369 0x16d0 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:31:45.0375 0x16d0 drmkaud - ok
17:31:45.0425 0x16d0 [ 1633B9ABF52784A1331476397A48CBEF, 697780697C4C55FCCF5FB65C93FB37B3F5A43BF0C59FDBB9EF822D0E993E47BD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:31:45.0504 0x16d0 DXGKrnl - ok
17:31:45.0538 0x16d0 [ 60C5B36E07BE8B3AF3911C3D10303CFE, AD34AC7BD929AF1864768156E7C0FA2997E9EB44EB8DEAEB160EB55A082C2C5A ] e1kexpress C:\Windows\system32\DRIVERS\e1k62x64.sys
17:31:45.0544 0x16d0 e1kexpress - ok
17:31:45.0574 0x16d0 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
17:31:45.0582 0x16d0 EapHost - ok
17:31:45.0715 0x16d0 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:31:45.0862 0x16d0 ebdrv - ok
17:31:45.0949 0x16d0 [ 1B7AA375F711F66D5FF2B855F9EC987F, 151E3897A31F0E828D08EBBB9C10A60047B48534BB38349EF1C8D9245524CA58 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
17:31:45.0968 0x16d0 eeCtrl - ok
17:31:46.0003 0x16d0 [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] EFS C:\Windows\System32\lsass.exe
17:31:46.0006 0x16d0 EFS - ok
17:31:46.0062 0x16d0 [ 47C071994C3F649F23D9CD075AC9304A, B7AA2DD6AD14F18A19620F5FB79D50C630D3750E72DD67BF8D105CC4F5CE1D46 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:31:46.0161 0x16d0 ehRecvr - ok
17:31:46.0199 0x16d0 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
17:31:46.0208 0x16d0 ehSched - ok
17:31:46.0250 0x16d0 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:31:46.0295 0x16d0 elxstor - ok
17:31:46.0344 0x16d0 [ 7230C8B80DDE1F0524C353240B78CC0E, 15F73EBFB9152010E7736AFE518A47C209E17DDB347A40C4CDA0D9BBD26D1176 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
17:31:46.0353 0x16d0 EraserUtilRebootDrv - ok
17:31:46.0358 0x16d0 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
17:31:46.0363 0x16d0 ErrDev - ok
17:31:46.0486 0x16d0 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
17:31:46.0504 0x16d0 EventSystem - ok
17:31:46.0518 0x16d0 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
17:31:46.0528 0x16d0 exfat - ok
17:31:46.0549 0x16d0 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:31:46.0562 0x16d0 fastfat - ok
17:31:46.0618 0x16d0 [ D607B2F1BEE3992AA6C2C92C0A2F0855, E22301C8F01DBF0A38A85165959BB070647C996CB1BCD50FDFE3DDDCA427DF2A ] Fax C:\Windows\system32\fxssvc.exe
17:31:46.0672 0x16d0 Fax - ok
17:31:46.0685 0x16d0 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:31:46.0691 0x16d0 fdc - ok
17:31:46.0721 0x16d0 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
17:31:46.0778 0x16d0 fdPHost - ok
17:31:46.0805 0x16d0 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
17:31:46.0807 0x16d0 FDResPub - ok
17:31:46.0831 0x16d0 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:31:46.0839 0x16d0 FileInfo - ok
17:31:46.0856 0x16d0 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:31:46.0863 0x16d0 Filetrace - ok
17:31:46.0879 0x16d0 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:31:46.0886 0x16d0 flpydisk - ok
17:31:46.0946 0x16d0 [ F7866AF72ABBAF84B1FA5AA195378C59, 9D522044FE9C18FB3EC327E675737C01F2A8231DDE900421D3A431596946A7F8 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:31:46.0950 0x16d0 FltMgr - ok
17:31:47.0043 0x16d0 [ CB5E4B9C319E3C6BB363EB7E58A4A051, C9DCF2C2A6AFE0A0F3E23A265843D0C423C08B2E54702C5B389CF293D9A6BAC5 ] FontCache C:\Windows\system32\FntCache.dll
17:31:47.0074 0x16d0 FontCache - ok
17:31:47.0117 0x16d0 [ 8D89E3131C27FDD6932189CB785E1B7A, AC7DA4C5E6D2E41D1A1DE146E46F034FAF0FB11AD801F070F2D5CD08166E9EB7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:31:47.0126 0x16d0 FontCache3.0.0.0 - ok
17:31:47.0172 0x16d0 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:31:47.0179 0x16d0 FsDepends - ok
17:31:47.0225 0x16d0 [ D3E3F93D67821A2DB2B3D9FAC2DC2064, 727FAA7E15A20ED3A37668D294ABDE6EAF1C87C34EE283C99EE3303E85001404 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:31:47.0232 0x16d0 Fs_Rec - ok
17:31:47.0283 0x16d0 [ AE87BA80D0EC3B57126ED2CDC15B24ED, 7E0EA3CDB78054D9A4E3B5142305943F2914536D80B8FC363414C8838D51D56C ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:31:47.0296 0x16d0 fvevol - ok
17:31:47.0308 0x16d0 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:31:47.0316 0x16d0 gagp30kx - ok
17:31:47.0388 0x16d0 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:31:47.0408 0x16d0 GEARAspiWDM - ok
17:31:47.0461 0x16d0 [ FE5AB4525BC2EC68B9119A6E5D40128B, 088DE37982CEE78A0C1181389A3BFF1E352DF504074B3E8F3EA244DB271BF216 ] gpsvc C:\Windows\System32\gpsvc.dll
17:31:47.0485 0x16d0 gpsvc - ok
17:31:47.0568 0x16d0 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:31:47.0622 0x16d0 gupdate - ok
17:31:47.0645 0x16d0 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:31:47.0650 0x16d0 gupdatem - ok
17:31:47.0678 0x16d0 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:31:47.0685 0x16d0 hcw85cir - ok
17:31:47.0707 0x16d0 [ 0A49913402747A0B67DE940FB42CBDBB, 61A45DBDCEB4A2D5C3C28F6BC8C5ADC51D0240A7553DF44BCC4355FC06F72B83 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:31:47.0720 0x16d0 HDAudBus - ok
17:31:47.0753 0x16d0 [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
17:31:47.0754 0x16d0 HECIx64 - ok
17:31:47.0763 0x16d0 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:31:47.0774 0x16d0 HidBatt - ok
17:31:47.0779 0x16d0 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:31:47.0788 0x16d0 HidBth - ok
17:31:47.0792 0x16d0 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:31:47.0799 0x16d0 HidIr - ok
17:31:47.0824 0x16d0 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
17:31:47.0826 0x16d0 hidserv - ok
17:31:47.0868 0x16d0 [ B3BF6B5B50006DEF50B66306D99FCF6F, D39A1DEBE7C464922919826D15199ED25E263BF58633593DD412D78F98921417 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:31:47.0882 0x16d0 HidUsb - ok
17:31:47.0907 0x16d0 [ EFA58EDE58DD74388FFD04CB32681518, 76D81F9BC1A4D85A779B79DEC23B79F1568AA236CD49247414093CDC1FCC150F ] hkmsvc C:\Windows\system32\kmsvc.dll
17:31:47.0916 0x16d0 hkmsvc - ok
17:31:47.0934 0x16d0 [ 046B2673767CA626E2CFB7FDF735E9E8, 9C932DCC5DE9B1919AB38C01D76AD7BBAF491DE6D158662407974748BC0B4C6C ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:31:47.0991 0x16d0 HomeGroupListener - ok
17:31:48.0024 0x16d0 [ 06A7422224D9865A5613710A089987DF, EF604B4B6918D3FDC8E90ED9004E6E7340E0F399C214C65CCE3A7C8C576FA1C0 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:31:48.0029 0x16d0 HomeGroupProvider - ok
17:31:48.0087 0x16d0 [ 0886D440058F203EBA0E1825E4355914, BC49C4CEFE324A08C864A4BF4FEA9A70151FAB7CC30BDC28344F3FFD2F500070 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
17:31:48.0107 0x16d0 HpSAMD - ok
17:31:48.0152 0x16d0 [ CEE049CAC4EFA7F4E1E4AD014414A5D4, 433AE2D845850F1D7A48275BBD87B3F0E7DD48F2282C727C4B777ECD92CC331D ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:31:48.0285 0x16d0 HTTP - ok
17:31:48.0309 0x16d0 [ F17766A19145F111856378DF337A5D79, FC1633FB865A5324EBCBE5F97D297B899FABBDD965D862C2EFC743CD36F47E62 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:31:48.0317 0x16d0 hwpolicy - ok
17:31:48.0345 0x16d0 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:31:48.0361 0x16d0 i8042prt - ok
17:31:48.0394 0x16d0 [ ABBF174CB394F5C437410A788B7E404A, 95554F675329E7062F0936E4E902FEFF2456CAD95D6C9B60DCC213EF6E4C62D8 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
17:31:48.0402 0x16d0 iaStor - ok
17:31:48.0508 0x16d0 [ 31A0E93CDF29007D6C6FFFB632F375ED, CA464928E9868B9A09C324DBBC8DA41A01C5C486B43578FC695250D523DE555B ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
17:31:48.0510 0x16d0 IAStorDataMgrSvc - ok
17:31:48.0571 0x16d0 [ B75E45C564E944A2657167D197AB29DA, 622EA73F4D9CAE17628C18148FB241817A0AE6D80A74B099204ED27C1A750B24 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:31:48.0588 0x16d0 iaStorV - ok
17:31:48.0714 0x16d0 [ 2F2BE70D3E02B6FA877921AB9516D43C, E04255EE4BD95FC1539EB1EB9F702B039F65993D31A4531DA487274543EF5226 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:31:48.0746 0x16d0 idsvc - ok
17:31:49.0181 0x16d0 [ 31569A2E836C12014148BF7342716946, 07DAEF864AF41E8669A6F2546967014C58898BD42C4C2FA1961F32311D083565 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
17:31:49.0519 0x16d0 igfx - ok
17:31:49.0558 0x16d0 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:31:49.0565 0x16d0 iirsp - ok
17:31:49.0611 0x16d0 [ C5B4683680DF085B57BC53E5EF34861F, 9C06517DFCB3ED7BB1166F7EB6CCC8713E6B68283C75420C0EDC182094AA1B8F ] IKEEXT C:\Windows\System32\ikeext.dll
17:31:49.0668 0x16d0 IKEEXT - ok
17:31:49.0707 0x16d0 [ DD587A55390ED2295BCE6D36AD567DA9, AEB7DCB8EF89BEE8D9649A05FC482B1E4E3F44243D57A2577C862EB69166C48E ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
17:31:49.0749 0x16d0 Impcd - ok
17:31:49.0935 0x16d0 [ 9F61C293284A2435BADB78A4E287AE88, 7FDE58B0E1E40BE7C2795C422F41EA0087F5D6FA8206A82DB9D1524B9AB17C9E ] IntcAzAudAddService C:\Windows\system32\drivers\RTDVHD64.sys
17:31:50.0086 0x16d0 IntcAzAudAddService - ok
17:31:50.0125 0x16d0 [ 03C74719D48056A1078F3A51CEB76BAA, 34BCC73EE4D65E1F282208C243C54BBD8458DB50FA893DE3306E1A1E73D05B1A ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
17:31:50.0189 0x16d0 IntcDAud - ok
17:31:50.0206 0x16d0 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\DRIVERS\intelide.sys
17:31:50.0216 0x16d0 intelide - ok
17:31:50.0247 0x16d0 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:31:50.0254 0x16d0 intelppm - ok
17:31:50.0295 0x16d0 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:31:50.0319 0x16d0 IPBusEnum - ok
17:31:50.0342 0x16d0 [ 722DD294DF62483CECAAE6E094B4D695, 41ABB42EF969EA8A84B546908EBBDC2411D964DE101CE6DD3D7ECF109085E0C0 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:31:50.0350 0x16d0 IpFilterDriver - ok
17:31:50.0424 0x16d0 [ F8E058D17363EC580E4B7232778B6CB5, 02352919F349C57930A0B032FBDC45327FB473D310DE7AC721F4694FDE7D21FB ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:31:50.0440 0x16d0 iphlpsvc - ok
17:31:50.0489 0x16d0 [ E2B4A4494DB7CB9B89B55CA268C337C5, C59BC4AA03D10647641EC7533F78BC7E2EA6FC48B8B2CF1A49B5148EF40A90FB ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
17:31:50.0498 0x16d0 IPMIDRV - ok
17:31:50.0504 0x16d0 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:31:50.0513 0x16d0 IPNAT - ok
17:31:50.0652 0x16d0 [ 6E50CFA46527B39015B750AAD161C5CC, 93F99EF7771C56EBE41FBC0C668F686644FBDF94E31456D3F5A9A8AE2F70EAB6 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
17:31:50.0667 0x16d0 iPod Service - ok
17:31:50.0688 0x16d0 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:31:50.0695 0x16d0 IRENUM - ok
17:31:50.0710 0x16d0 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
17:31:50.0720 0x16d0 isapnp - ok
17:31:50.0742 0x16d0 [ FA4D2557DE56D45B0A346F93564BE6E1, 2827EC3582FF59FFD55BBD4A4F0DDFFEAD4F2537FA043B3A69904FE920B1619C ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
17:31:50.0754 0x16d0 iScsiPrt - ok
17:31:50.0765 0x16d0 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:31:50.0773 0x16d0 kbdclass - ok
17:31:50.0812 0x16d0 [ 6DEF98F8541E1B5DCEB2C822A11F7323, F6EE4A7A6A7A1F243D32CA9241CA4816C92EB7BF2AADDD09234968C2CAAE6C0D ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:31:50.0825 0x16d0 kbdhid - ok
17:31:50.0840 0x16d0 [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] KeyIso C:\Windows\system32\lsass.exe
17:31:50.0843 0x16d0 KeyIso - ok
17:31:50.0895 0x16d0 [ 4F4B5FDE429416877DE7143044582EB5, A28FFEA078DBD91F3CC28088810EEEB727107B3F0F48370B44D87DC8F8C55B99 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:31:50.0914 0x16d0 KSecDD - ok
17:31:50.0942 0x16d0 [ 6F40465A44ECDC1731BEFAFEC5BDD03C, 317334D414D0AF73CB4D9CA11EA80C641E786760B8800F2795D0CB38378DBB80 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:31:50.0952 0x16d0 KSecPkg - ok
17:31:50.0976 0x16d0 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:31:50.0985 0x16d0 ksthunk - ok
17:31:51.0020 0x16d0 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
17:31:51.0101 0x16d0 KtmRm - ok
17:31:51.0154 0x16d0 [ 81F1D04D4D0E433099365127375FD501, C2A81B5A482C974E8108806486EC28CB2D81400D42639682FE7B7A9BDF14BA9B ] LanmanServer C:\Windows\system32\srvsvc.dll
17:31:51.0160 0x16d0 LanmanServer - ok
17:31:51.0201 0x16d0 [ 27026EAC8818E8A6C00A1CAD2F11D29A, A12858CCB3B2419D66C667A46B106DA7A7BA97FFFA9634BFAE95DDF193C430D5 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:31:51.0208 0x16d0 LanmanWorkstation - ok
17:31:51.0377 0x16d0 [ E34152D03CAAAAA81DD66D803F392522, 9AE2F553D59E1267D64E4450F6A488370650A56B1BECD21B365F0034B639BF69 ] LiveUpdate C:\PROGRA~2\Symantec\LIVEUP~1\LUCOMS~1.EXE
17:31:51.0525 0x16d0 LiveUpdate - ok
17:31:51.0559 0x16d0 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:31:51.0570 0x16d0 lltdio - ok
17:31:51.0614 0x16d0 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:31:51.0627 0x16d0 lltdsvc - ok
17:31:51.0638 0x16d0 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:31:51.0640 0x16d0 lmhosts - ok
17:31:51.0786 0x16d0 [ E72805E48A6232CBE42DA75BA5ECB505, C1DC2AF8FAE5662373D663F60F7AB31518CB4B09796DBA8B3BF13750A91BE37B ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
17:31:51.0800 0x16d0 LMS - ok
17:31:51.0870 0x16d0 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:31:51.0889 0x16d0 LSI_FC - ok
17:31:51.0926 0x16d0 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:31:51.0939 0x16d0 LSI_SAS - ok
17:31:51.0956 0x16d0 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:31:51.0963 0x16d0 LSI_SAS2 - ok
17:31:51.0999 0x16d0 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:31:52.0009 0x16d0 LSI_SCSI - ok
17:31:52.0033 0x16d0 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
17:31:52.0041 0x16d0 luafv - ok
17:31:52.0059 0x16d0 [ F84C8F1000BC11E3B7B23CBD3BAFF111, BB4C4FFE3F6C9E5C16C06F6F666F177B94E1CF878397BCC0BDAF6EB3341AAED8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:31:52.0067 0x16d0 Mcx2Svc - ok
17:31:52.0085 0x16d0 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:31:52.0092 0x16d0 megasas - ok
17:31:52.0152 0x16d0 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:31:52.0214 0x16d0 MegaSR - ok
17:31:52.0236 0x16d0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
17:31:52.0238 0x16d0 MMCSS - ok
17:31:52.0251 0x16d0 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
17:31:52.0262 0x16d0 Modem - ok
17:31:52.0279 0x16d0 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:31:52.0287 0x16d0 monitor - ok
17:31:52.0323 0x16d0 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:31:52.0332 0x16d0 mouclass - ok
17:31:52.0349 0x16d0 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:31:52.0356 0x16d0 mouhid - ok
17:31:52.0419 0x16d0 [ 791AF66C4D0E7C90A3646066386FB571, BF67643099494AEADDDC85E4D97AFF1017806A1DF554F9BE6C864FFECC9EAF42 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:31:52.0429 0x16d0 mountmgr - ok
17:31:52.0470 0x16d0 [ 609D1D87649ECC19796F4D76D4C15CEA, 5369F4C83FBAE9C4CFB9ACD36F07479E3F3FD784D79B82AE8D95B818B9F9CE00 ] mpio C:\Windows\system32\DRIVERS\mpio.sys
17:31:52.0559 0x16d0 mpio - ok
17:31:52.0582 0x16d0 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:31:52.0593 0x16d0 mpsdrv - ok
17:31:52.0636 0x16d0 [ AECAB449567D1846DAD63ECE49E893E3, 7A67A16A3E04574B7CAD097632ABA9B361BBEFDD6B36B7B8E3A1996EC529C2DC ] MpsSvc C:\Windows\system32\mpssvc.dll
17:31:52.0678 0x16d0 MpsSvc - ok
17:31:52.0698 0x16d0 [ 30524261BB51D96D6FCBAC20C810183C, 19598A9CD0EAAE4ACBF1069E721AB2853452F33FCFB3B5113F023A88A90BF42D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:31:52.0707 0x16d0 MRxDAV - ok
17:31:52.0753 0x16d0 [ 040D62A9D8AD28922632137ACDD984F2, D9457BDA88C2E3AA4E716C0657B77A4A3E212328CDABD5C18279B6440E1C1594 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:31:52.0798 0x16d0 mrxsmb - ok
17:31:52.0852 0x16d0 [ F0067552F8F9B33D7C59403AB808A3CB, 698B63528E1943BB4253BF7578DC128AA824C71BD04FF0521277E68B20656C02 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:31:52.0950 0x16d0 mrxsmb10 - ok
17:31:52.0983 0x16d0 [ 3C142D31DE9F2F193218A53FE2632051, 026B3A932A95D5160B64E470FC414F3D388D429317D5EAEA2D476F715C4CAE75 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:31:52.0992 0x16d0 mrxsmb20 - ok
17:31:53.0005 0x16d0 [ BCCF16D5FB1109162380E3E28DC9E4E5, E27253A4AD6A82A2F47FD36EC849EEBFA30538C97E1A3FF39FEFB34D3F908C9D ] msahci C:\Windows\system32\DRIVERS\msahci.sys
17:31:53.0012 0x16d0 msahci - ok
17:31:53.0043 0x16d0 [ 8D27B597229AED79430FB9DB3BCBFBD0, 3D58E08B47E8AE419D405BF263929DFA6F2F5F0C2D79FD8D6F2CED6452F6F248 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
17:31:53.0053 0x16d0 msdsm - ok
17:31:53.0073 0x16d0 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
17:31:53.0103 0x16d0 MSDTC - ok
17:31:53.0132 0x16d0 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:31:53.0141 0x16d0 Msfs - ok
17:31:53.0159 0x16d0 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:31:53.0170 0x16d0 mshidkmdf - ok
17:31:53.0190 0x16d0 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
17:31:53.0196 0x16d0 msisadrv - ok
17:31:53.0240 0x16d0 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:31:53.0262 0x16d0 MSiSCSI - ok
17:31:53.0269 0x16d0 msiserver - ok
17:31:53.0303 0x16d0 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:31:53.0309 0x16d0 MSKSSRV - ok
17:31:53.0322 0x16d0 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:31:53.0328 0x16d0 MSPCLOCK - ok
17:31:53.0331 0x16d0 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:31:53.0337 0x16d0 MSPQM - ok
17:31:53.0357 0x16d0 [ 89CB141AA8616D8C6A4610FA26C60964, 76E72F6A0348EDC58A8E6F88C7F024B8B077670400BD5A833811DAFCF9F517CC ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:31:53.0372 0x16d0 MsRPC - ok
17:31:53.0411 0x16d0 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:31:53.0418 0x16d0 mssmbios - ok
17:31:53.0435 0x16d0 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:31:53.0441 0x16d0 MSTEE - ok
17:31:53.0452 0x16d0 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:31:53.0463 0x16d0 MTConfig - ok
17:31:53.0473 0x16d0 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
17:31:53.0485 0x16d0 Mup - ok
17:31:53.0525 0x16d0 [ 4987E079A4530FA737A128BE54B63B12, 27E51CC7D4D90DC4397575491DE7EFE15808709F097E2828E46AA73C771A47A4 ] napagent C:\Windows\system32\qagentRT.dll
17:31:53.0550 0x16d0 napagent - ok
17:31:53.0593 0x16d0 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:31:53.0609 0x16d0 NativeWifiP - ok
17:31:53.0833 0x16d0 [ 702E07EC32F96ACDB873E9A5465D4401, 2C6B1C8BA0BF4791AEA064062DCA3678AE4443DF19DB37D6CB55BA6297D8A238 ] NAVENG C:\PROGRA~3\Symantec\DEFINI~1\VIRUSD~1\20131125.020\ENG64.SYS
17:31:53.0846 0x16d0 NAVENG - ok
17:31:54.0023 0x16d0 [ 302EA314A1AF0D7CEF0A3D0195F79561, 046DBC2D9D028F2D2E8BAE745CA2ADEF42741689BFF743A13B81EA4228DDCDC6 ] NAVEX15 C:\PROGRA~3\Symantec\DEFINI~1\VIRUSD~1\20131125.020\EX64.SYS
17:31:54.0177 0x16d0 NAVEX15 - ok
17:31:54.0291 0x16d0 [ A3151B3463EEA7E47F618F115D0D142E, 6E5A573A76E95ADE831E815AB2C5B5EDB722BBD5AE699E94D597FA2B490139AB ] NDIS C:\Windows\system32\drivers\ndis.sys
17:31:54.0339 0x16d0 NDIS - ok
17:31:54.0380 0x16d0 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:31:54.0386 0x16d0 NdisCap - ok
17:31:54.0410 0x16d0 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:31:54.0421 0x16d0 NdisTapi - ok
17:31:54.0450 0x16d0 [ F105BA1E22BF1F2EE8F005D4305E4BEC, 723DA09E13D0F50634D9F114590B837D16F7B36AA0DA2AB8F8C2D9991624EA8F ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:31:54.0458 0x16d0 Ndisuio - ok
17:31:54.0494 0x16d0 [ 557DFAB9CA1FCB036AC77564C010DAD3, 8A21B342AFE5B498FB62EDDC81A3ADA9570677B7A382666090E0ABB1F85FEF29 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:31:54.0504 0x16d0 NdisWan - ok
17:31:54.0516 0x16d0 [ 659B74FB74B86228D6338D643CD3E3CF, 83D741B7A2A204A661A80C226212749F514800060D05E217FA6DC14D62F38F80 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:31:54.0707 0x16d0 NDProxy - ok
17:31:54.0868 0x16d0 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:31:54.0875 0x16d0 NetBIOS - ok
17:31:54.0887 0x16d0 [ 9162B273A44AB9DCE5B44362731D062A, 5A1BA6DBFEBB2618DC9D4CC55FA071C170A5D22FFB24CE62DD5B3210D8B45F39 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:31:54.0918 0x16d0 NetBT - ok
17:31:54.0935 0x16d0 [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] Netlogon C:\Windows\system32\lsass.exe
17:31:54.0938 0x16d0 Netlogon - ok
17:31:54.0969 0x16d0 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
17:31:54.0978 0x16d0 Netman - ok
17:31:55.0002 0x16d0 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
17:31:55.0011 0x16d0 netprofm - ok
17:31:55.0054 0x16d0 [ 3E5A36127E201DDF663176B66828FAFE, 5A08BA9EFB1A72DF1DD839BA5FA2B8994012BA62A515588FF62333B33B60045B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:31:55.0064 0x16d0 NetTcpPortSharing - ok
17:31:55.0092 0x16d0 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:31:55.0099 0x16d0 nfrd960 - ok
17:31:55.0122 0x16d0 [ D9A0CE66046D6EFA0C61BAA885CBA0A8, 06C3331C7F3EE0E0B95E8302CB80315E965587C4D6231785B8ACF3FAE4731FAF ] NlaSvc C:\Windows\System32\nlasvc.dll
17:31:55.0129 0x16d0 NlaSvc - ok
17:31:55.0247 0x16d0 [ 9865516D33BC66FDDAC9DB4087D4B6AA, 2FDB6852CB98B607DD30999E48F3AD6CF28A678C0EB92CB621C0EB65533C1EFC ] nosGetPlusHelper C:\Program Files (x86)\NOS\bin\getPlus_Helper_3004.dll
17:31:55.0258 0x16d0 nosGetPlusHelper - ok
17:31:55.0276 0x16d0 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:31:55.0318 0x16d0 Npfs - ok
17:31:55.0345 0x16d0 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
17:31:55.0347 0x16d0 nsi - ok
17:31:55.0357 0x16d0 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:31:55.0367 0x16d0 nsiproxy - ok
17:31:55.0479 0x16d0 [ 9A6089B056EA1B83B36424FC9D0A300E, EA60282C5A32B497921B568C1FE735F5BDB9D954DDC4E609F7F3CAE5ED823CEC ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:31:55.0534 0x16d0 Ntfs - ok
17:31:55.0567 0x16d0 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
17:31:55.0572 0x16d0 Null - ok
17:31:55.0591 0x16d0 [ A4D9C9A608A97F59307C2F2600EDC6A4, D786F4CA2D10BAC31CE14A338C442F7027D4BB2E955AB99BC44C2F241D383BBE ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:31:55.0601 0x16d0 nvraid - ok
17:31:55.0643 0x16d0 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9, 8D5337742A0F5B04D636C163CE77D4A9B3684CF81170026912A402513B44BA77 ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:31:55.0670 0x16d0 nvstor - ok
17:31:55.0708 0x16d0 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
17:31:55.0721 0x16d0 nv_agp - ok
17:31:55.0755 0x16d0 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
17:31:55.0762 0x16d0 ohci1394 - ok
17:31:55.0836 0x16d0 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:31:55.0882 0x16d0 ose - ok
17:31:56.0121 0x16d0 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:31:56.0193 0x16d0 osppsvc - ok
17:31:56.0253 0x16d0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:31:56.0267 0x16d0 p2pimsvc - ok
17:31:56.0315 0x16d0 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
17:31:56.0365 0x16d0 p2psvc - ok
17:31:56.0398 0x16d0 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:31:56.0407 0x16d0 Parport - ok
17:31:56.0444 0x16d0 [ 90061B1ACFE8CCAA5345750FFE08D8B8, 76309683FFDF380AF9C6E1D9A52E46B011A0BF1026D747181D01F3312B7541C7 ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:31:56.0452 0x16d0 partmgr - ok
17:31:56.0474 0x16d0 [ 363B3F857ABEE85767E01E3044C539CD, F6CB6C4B5B206E75BC8EB125363B1A095BA24FCC997A10605D59FCE44BA8651C ] PBADRV C:\Windows\system32\DRIVERS\PBADRV.sys
17:31:56.0480 0x16d0 PBADRV - ok
17:31:56.0539 0x16d0 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
17:31:56.0549 0x16d0 PcaSvc - ok
17:31:56.0577 0x16d0 [ F36F6504009F2FB0DFD1B17A116AD74B, 33A4C217F7DC5E5B7E1B6CF335327C8FE6CC5D6D048D420252965574CAD83918 ] pci C:\Windows\system32\DRIVERS\pci.sys
17:31:56.0588 0x16d0 pci - ok
17:31:56.0605 0x16d0 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\DRIVERS\pciide.sys
17:31:56.0618 0x16d0 pciide - ok
17:31:56.0633 0x16d0 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:31:56.0645 0x16d0 pcmcia - ok
17:31:56.0659 0x16d0 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
17:31:56.0673 0x16d0 pcw - ok
17:31:56.0698 0x16d0 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:31:56.0773 0x16d0 PEAUTH - ok
17:31:56.0861 0x16d0 [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
17:31:56.0953 0x16d0 PeerDistSvc - ok
17:31:57.0008 0x16d0 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:31:57.0020 0x16d0 PerfHost - ok
17:31:57.0126 0x16d0 [ 557E9A86F65F0DE18C9B6751DFE9D3F1, 630EE5A80335929517A22D130C75CBCE882B92978372A6F36C30B9D353C7BB07 ] pla C:\Windows\system32\pla.dll
17:31:57.0206 0x16d0 pla - ok
17:31:57.0253 0x16d0 [ 98B1721B8718164293B9701B98C52D77, 27F5F00D4AA394D4D8D0A0062EDC3F944B603E07CAAEDC5CC959BA1E8C208C2A ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:31:57.0261 0x16d0 PlugPlay - ok
17:31:57.0301 0x16d0 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:31:57.0311 0x16d0 PNRPAutoReg - ok
17:31:57.0383 0x16d0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:31:57.0389 0x16d0 PNRPsvc - ok
17:31:57.0441 0x16d0 [ 166EB40D1F5B47E615DE3D0FFFE5F243, E32BCCA0D25CD631C221986EBE9F6C54BF2F12DE1672D69CCC4E22AD07D0525A ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:31:57.0452 0x16d0 PolicyAgent - ok
17:31:57.0476 0x16d0 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
17:31:57.0480 0x16d0 Power - ok
17:31:57.0539 0x16d0 [ 27CC19E81BA5E3403C48302127BDA717, C580FC552DDF9C163FC325B38B05C06FFD696495E4C01514BCD6346CFE4F0B40 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:31:57.0549 0x16d0 PptpMiniport - ok
17:31:57.0566 0x16d0 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:31:57.0573 0x16d0 Processor - ok
17:31:57.0620 0x16d0 [ 97293447431311C06703368AD0F6C4BE, 302A3CA8F6961717D95469B20A8A71954D4ECFCDF4638238D3D44AAE5A8D9B8B ] ProfSvc C:\Windows\system32\profsvc.dll
17:31:57.0624 0x16d0 ProfSvc - ok
17:31:57.0641 0x16d0 [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:31:57.0642 0x16d0 ProtectedStorage - ok
17:31:57.0684 0x16d0 [ EE992183BD8EAEFD9973F352E587A299, 6B28930FAA0A54FAADDAF2231553D7F5D45C7227454C6D49A86DFC9EF6BC9043 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:31:57.0692 0x16d0 Psched - ok
17:31:57.0745 0x16d0 [ 87B04878A6D59D6C79251DC960C674C1, 3EB8DB0624E646F0A65D0381408D35CF9FDC5ABFC30DF6431F4070A8EB68447C ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
17:31:57.0752 0x16d0 PxHlpa64 - ok
17:31:57.0806 0x16d0 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:31:57.0888 0x16d0 ql2300 - ok
17:31:57.0897 0x16d0 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:31:57.0907 0x16d0 ql40xx - ok
17:31:57.0949 0x16d0 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
17:31:57.0961 0x16d0 QWAVE - ok
17:31:58.0002 0x16d0 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:31:58.0009 0x16d0 QWAVEdrv - ok
17:31:58.0013 0x16d0 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:31:58.0019 0x16d0 RasAcd - ok
17:31:58.0051 0x16d0 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:31:58.0060 0x16d0 RasAgileVpn - ok
17:31:58.0092 0x16d0 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
17:31:58.0100 0x16d0 RasAuto - ok
17:31:58.0118 0x16d0 [ 87A6E852A22991580D6D39ADC4790463, 0F757C6E5B57DFC239CE1BEC88EF16C07E7F1A40D629A9A6DF3CB6B88FB9E642 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:31:58.0128 0x16d0 Rasl2tp - ok
17:31:58.0153 0x16d0 [ 47394ED3D16D053F5906EFE5AB51CC83, FE5D1249788DB6D85C55769251B0AED738D3BBA04DF57124E03397D3C0599286 ] RasMan C:\Windows\System32\rasmans.dll
17:31:58.0168 0x16d0 RasMan - ok
17:31:58.0209 0x16d0 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:31:58.0224 0x16d0 RasPppoe - ok
17:31:58.0234 0x16d0 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:31:58.0242 0x16d0 RasSstp - ok
17:31:58.0262 0x16d0 [ 3BAC8142102C15D59A87757C1D41DCE5, C0C2C6887EA5A439E69221196348382ACE3E1942C9C6E0A970E153890F71724C ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:31:58.0297 0x16d0 rdbss - ok
17:31:58.0338 0x16d0 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:31:58.0357 0x16d0 rdpbus - ok
17:31:58.0374 0x16d0 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:31:58.0383 0x16d0 RDPCDD - ok
17:31:58.0432 0x16d0 [ 9706B84DBABFC4B4CA46C5A82B14DFA3, AFDC07C257BCB768861483A1842FFB647523946B16DA2812EFAE4FD3252BA303 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
17:31:58.0455 0x16d0 RDPDR - ok
17:31:58.0468 0x16d0 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:31:58.0474 0x16d0 RDPENCDD - ok
17:31:58.0505 0x16d0 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:31:58.0512 0x16d0 RDPREFMP - ok
17:31:58.0557 0x16d0 [ 447DE7E3DEA39D422C1504F245B668B1, C54D90D2F9405E011E490D3C2F0F64488B87B969C95E367C076BBFCFD8654909 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:31:58.0569 0x16d0 RDPWD - ok
17:31:58.0594 0x16d0 [ 634B9A2181D98F15941236886164EC8B, 15C55F05FD3CD751F619F18E2ADF91552AE82146501CD031402277F496A5B7D8 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:31:58.0605 0x16d0 rdyboost - ok
17:31:58.0627 0x16d0 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:31:58.0635 0x16d0 RemoteAccess - ok
17:31:58.0669 0x16d0 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:31:58.0701 0x16d0 RemoteRegistry - ok
17:31:58.0865 0x16d0 [ 3C957189B31C34D3AD21967B12B6AED7, 878FE6EA03F60592D6D557B905A5119E2CC836C2A6A86ED2867C3C9B0F0FDBA2 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
17:31:58.0974 0x16d0 RoxMediaDB12OEM - ok
17:31:59.0001 0x16d0 [ 2B73088CC2CA757A172B425C9398E5BC, 3D296B4D6F66F7729CC48FE54456E6E6D8207DBA7E31D66653566C128E53163B ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
17:31:59.0019 0x16d0 RoxWatch12 - ok
17:31:59.0041 0x16d0 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:31:59.0046 0x16d0 RpcEptMapper - ok
17:31:59.0080 0x16d0 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
17:31:59.0092 0x16d0 RpcLocator - ok
17:31:59.0121 0x16d0 [ 7266972E86890E2B30C0C322E906B027, BFA30E85F5BD3AA933913BD7C6D2B5993DB7AFB0C98349B61A6BEF0BDC8A3680 ] RpcSs C:\Windows\system32\rpcss.dll
17:31:59.0131 0x16d0 RpcSs - ok
17:31:59.0157 0x16d0 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:31:59.0166 0x16d0 rspndr - ok
17:31:59.0187 0x16d0 [ 88AF6E02AB19DF7FD07ECDF9C91E9AF6, C890DCCC875F957CAAD4655EBFF384E3C5998040CA2BA360E92C96A647D1C399 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
17:31:59.0196 0x16d0 s3cap - ok
17:31:59.0222 0x16d0 [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] SamSs C:\Windows\system32\lsass.exe
17:31:59.0224 0x16d0 SamSs - ok
17:31:59.0241 0x16d0 [ E3BBB89983DAF5622C1D50CF49F28227, 49370DC142D577D657BF5755AA9B8625C35D3DDAF1F9466B4888507FB8E6FF07 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
17:31:59.0251 0x16d0 sbp2port - ok
17:31:59.0282 0x16d0 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:31:59.0292 0x16d0 SCardSvr - ok
17:31:59.0316 0x16d0 [ C94DA20C7E3BA1DCA269BC8460D98387, E1A5629728A79233B62BA87B4354BC3A332A853CC36A60E77B34923F4BCA8A61 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:31:59.0322 0x16d0 scfilter - ok
17:31:59.0406 0x16d0 [ 624D0F5FF99428BB90A5B8A4123E918E, 90A43E6F09B56CB86A3E3851F8E5ABB74905AEB70296F4B87BEDBC3027E65E86 ] Schedule C:\Windows\system32\schedsvc.dll
17:31:59.0448 0x16d0 Schedule - ok
17:31:59.0473 0x16d0 [ 312E2F82AF11E79906898AC3E3D58A1F, F6CB7D8B204B94F749D5DBEFD552150AAB16A34D629F87F73823A7504465F106 ] SCPolicySvc C:\Windows\System32\certprop.dll
17:31:59.0476 0x16d0 SCPolicySvc - ok
17:31:59.0502 0x16d0 [ 765A27C3279CE11D14CB9E4F5869FCA5, B6C2EFFBA938828FEF7FE992A4C88B3154D053763C38762DCE13252FE9571FA1 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:31:59.0569 0x16d0 SDRSVC - ok
17:31:59.0618 0x16d0 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:31:59.0624 0x16d0 secdrv - ok
17:31:59.0639 0x16d0 [ 463B386EBC70F98DA5DFF85F7E654346, 8E27B18B04AF587719D1DAE75A042DB998E06CAE112BD68626EF046036D2DCDC ] seclogon C:\Windows\system32\seclogon.dll
17:31:59.0647 0x16d0 seclogon - ok
17:31:59.0773 0x16d0 [ F3D951071C624137430FE65A67541EF9, 13B4465F51F48A69BBF682ACC8E2E4D6837090A8DEACEF4B413D7D478C539253 ] SecureStorageService C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Secure Storage Manager\SecureStorageService.exe
17:31:59.0804 0x16d0 SecureStorageService - ok
17:31:59.0839 0x16d0 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
17:31:59.0841 0x16d0 SENS - ok
17:31:59.0850 0x16d0 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:31:59.0857 0x16d0 SensrSvc - ok
17:31:59.0879 0x16d0 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:31:59.0886 0x16d0 Serenum - ok
17:31:59.0906 0x16d0 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:31:59.0914 0x16d0 Serial - ok
17:31:59.0936 0x16d0 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:31:59.0944 0x16d0 sermouse - ok
17:31:59.0963 0x16d0 [ C3BC61CE47FF6F4E88AB8A3B429A36AF, 6CA53AD0CB7215BAE3467EC1FD490E3A18504BD6CD4F0FABF9BD37516AB9DFE0 ] SessionEnv C:\Windows\system32\sessenv.dll
17:31:59.0966 0x16d0 SessionEnv - ok
17:32:00.0010 0x16d0 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
17:32:00.0018 0x16d0 sffdisk - ok
17:32:00.0033 0x16d0 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
17:32:00.0064 0x16d0 sffp_mmc - ok
17:32:00.0082 0x16d0 [ 178298F767FE638C9FEDCBDEF58BB5E4, 053D12CFEE5C54EA7D06F9C9CAE93544FE258A4825CDE2A14090BC81A96E1CF7 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
17:32:00.0088 0x16d0 sffp_sd - ok
17:32:00.0103 0x16d0 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:32:00.0109 0x16d0 sfloppy - ok
17:32:00.0133 0x16d0 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:32:00.0150 0x16d0 SharedAccess - ok
17:32:00.0190 0x16d0 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF, 1C1D17301A4D37DBF906955CCABD2A3FDA47AFB24CBA978CF851123762249848 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:32:00.0198 0x16d0 ShellHWDetection - ok
17:32:00.0213 0x16d0 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:32:00.0221 0x16d0 SiSRaid2 - ok
17:32:00.0226 0x16d0 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:32:00.0235 0x16d0 SiSRaid4 - ok
17:32:00.0253 0x16d0 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:32:00.0261 0x16d0 Smb - ok
17:32:00.0426 0x16d0 [ 4B1DAFE4100555239354950AC537C98C, 0BA2615F6747E8E46AB404A67954344E1C33C3BFDF58A9D5028D9BBDB6336082 ] SmcService C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\Smc.exe
17:32:00.0531 0x16d0 SmcService - ok
17:32:00.0666 0x16d0 [ F2544BF1302EBFEFD006E32AC55703F4, 0C3F84FF542826F1DDF07D743CF4A749D433195023E435BF19966930A5F7D28F ] SNAC C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\SNAC64.EXE
17:32:00.0684 0x16d0 SNAC - ok
17:32:00.0717 0x16d0 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:32:00.0727 0x16d0 SNMPTRAP - ok
17:32:00.0739 0x16d0 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
17:32:00.0745 0x16d0 spldr - ok
17:32:00.0775 0x16d0 [ F8E1FA03CB70D54A9892AC88B91D1E7B, 55EECAAD4C7EC0868BE937F4ADDA026AFDFCC614E94DE4B3248BFF2BE7FF13E8 ] Spooler C:\Windows\System32\spoolsv.exe
17:32:00.0787 0x16d0 Spooler - ok
17:32:00.0931 0x16d0 [ 913D843498553A1BC8F8DBAD6358E49F, F8B931FDABF669D642CBDCD2FF31E07F8A5E2D5F72E11D4A8FF219CCFB5825E9 ] sppsvc C:\Windows\system32\sppsvc.exe
17:32:01.0024 0x16d0 sppsvc - ok
17:32:01.0044 0x16d0 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:32:01.0054 0x16d0 sppuinotify - ok
17:32:01.0155 0x16d0 [ 32900AC9CFDC578531279886CA16A4DF, DC9A35E7FB2566583CA4010ADCE3D387DC002DEA9C6813BFA124AE57FD614AD1 ] SRTSP C:\Windows\system32\Drivers\SRTSP64.SYS
17:32:01.0223 0x16d0 SRTSP - ok
17:32:01.0248 0x16d0 [ 8929566D1F14685FD78EAF25BEE3ECC7, AA59E99325FFCCA31E191A8A5CE5A395808AE7CCF0E5177DE3DAA2AFCC2A3A4E ] SRTSPL C:\Windows\system32\Drivers\SRTSPL64.SYS
17:32:01.0266 0x16d0 SRTSPL - ok
17:32:01.0290 0x16d0 [ CB2FDF47EE67F8CCA5362ED9B94FE955, 165D5ADADE19C21837A35789133CC8F254A4206A94E58BBE5125DBFF50D1634C ] SRTSPX C:\Windows\system32\Drivers\SRTSPX64.SYS
17:32:01.0306 0x16d0 SRTSPX - ok
17:32:01.0404 0x16d0 [ 2408C0366D96BCDF63E8F1C78E4A29C5, 66F646890695B5D80536E88B1566C8765D89CFE25954ED650F6D773EFF045016 ] srv C:\Windows\system32\DRIVERS\srv.sys
17:32:01.0429 0x16d0 srv - ok
17:32:01.0447 0x16d0 [ 76548F7B818881B47D8D1AE1BE9C11F8, 8F1356B07A6A55746FC71B6DB0322128941AE890850196F2B19BC01E6FC9B41C ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:32:01.0480 0x16d0 srv2 - ok
17:32:01.0518 0x16d0 [ 0AF6E19D39C70844C5CAA8FB0183C36E, 4494EEFDEA7198888D32E74727E5BC0AC628FFA70B1FE7EB59DBEEDC1A95D0DD ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:32:01.0534 0x16d0 srvnet - ok
17:32:01.0557 0x16d0 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:32:01.0562 0x16d0 SSDPSRV - ok
17:32:01.0578 0x16d0 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:32:01.0593 0x16d0 SstpSvc - ok
17:32:01.0612 0x16d0 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:32:01.0619 0x16d0 stexstor - ok
17:32:01.0688 0x16d0 [ 52D0E33B681BD0F33FDC08812FEE4F7D, BBEBC0773402F6697D2F14F63E5E4FDC2180466E7FDBD306E408535B10160249 ] stisvc C:\Windows\System32\wiaservc.dll
17:32:01.0745 0x16d0 stisvc - ok
17:32:01.0804 0x16d0 [ 7731F46EC0D687A931CBA063E8F90EF0, 5CF996A209756B901316C4406C7D3E52ECC9C15A1BDB0D4D9C77846AB29FD040 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
17:32:01.0815 0x16d0 stllssvr - ok
17:32:01.0837 0x16d0 [ FFD7A6F15B14234B5B0E5D49E7961895, 9553BDB65D021DA621BDFF1C180B9F4C6355FC748BAE854CE114D4B3EFF307B7 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
17:32:01.0844 0x16d0 storflt - ok
17:32:01.0872 0x16d0 [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\Windows\system32\storsvc.dll
17:32:01.0879 0x16d0 StorSvc - ok
17:32:01.0901 0x16d0 [ 8FCCBEFC5C440B3C23454656E551B09A, 392A38D0B18B7FD08ACBE3E56ADCB235FA49BDB99F81E0820434D57332FA8FF7 ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
17:32:01.0909 0x16d0 storvsc - ok
17:32:01.0937 0x16d0 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
17:32:01.0948 0x16d0 swenum - ok
17:32:01.0994 0x16d0 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
17:32:02.0067 0x16d0 swprv - ok
17:32:02.0214 0x16d0 [ B9B3B38A852F13D6F61ACB3994872EDA, 5E21E5F29C6859E693B1F4CE5C59C65D97EC5D94F7364E30E2C1E788C79A0825 ] Symantec AntiVirus C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\Rtvscan.exe
17:32:02.0288 0x16d0 Symantec AntiVirus - ok
17:32:02.0365 0x16d0 [ 7E4D281982E19ABD06728C7EE9AC40A8, A46F5A9B38F8D854C7EE55A75674F6A0FD2A98CB80BD7B8D6892597B3C1EBF6C ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
17:32:02.0387 0x16d0 SymEvent - ok
17:32:02.0477 0x16d0 [ 3C1284516A62078FB68F768DE4F1A7BE, 67ECD462335EF88773E4BAEAB230A68EC92A25F8CD8F115873F669205AE6A1A9 ] SysMain C:\Windows\system32\sysmain.dll
17:32:02.0525 0x16d0 SysMain - ok
17:32:02.0542 0x16d0 [ 238935C3CF2854886DC7CBB2A0E2CC66, BBF7A70BF218A544CC1A6FB81F75EAD29D418794162936BE197D6D61FE0DB1C4 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:32:02.0553 0x16d0 TabletInputService - ok
17:32:02.0577 0x16d0 [ 884264AC597B690C5707C89723BB8E7B, 9BF209A4128019421F7EC4AFF71103C5F411DB6CFB32AAC1633E789AD7A30708 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:32:02.0607 0x16d0 TapiSrv - ok
17:32:02.0626 0x16d0 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
17:32:02.0628 0x16d0 TBS - ok
17:32:02.0859 0x16d0 [ 5CFB7AB8F9524D1A1E14369DE63B83CC, BC22FC5714A6A8F8CF95D3D9656332D7B315FF7CFA50C0DEB7437A30651D10C7 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:32:02.0975 0x16d0 Tcpip - ok
17:32:03.0051 0x16d0 [ 5CFB7AB8F9524D1A1E14369DE63B83CC, BC22FC5714A6A8F8CF95D3D9656332D7B315FF7CFA50C0DEB7437A30651D10C7 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:32:03.0082 0x16d0 TCPIP6 - ok
17:32:03.0103 0x16d0 [ 76D078AF6F587B162D50210F761EB9ED, 3813171036B4036306CADC29F877ADAE44B241DDF65B3699C352B7CDA9EC68C9 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:32:03.0113 0x16d0 tcpipreg - ok
17:32:03.0218 0x16d0 [ E42D560E2163480E7B586B14ABEB3386, CA400CA4A9358740D811AAEEE016F3A162F8A9AC1EF2B718203C83945C234EF2 ] tcsd_win32.exe C:\Program Files (x86)\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
17:32:03.0334 0x16d0 tcsd_win32.exe - ok
17:32:03.0516 0x16d0 [ 347D6407C90C0B6AC82F8249EBA9A482, 4F94878A4E2D30D437274003B640CD62CCC165E222B82635523B88EB451888FF ] TdmService C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmService.exe
17:32:03.0567 0x16d0 TdmService - ok
17:32:03.0602 0x16d0 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:32:03.0608 0x16d0 TDPIPE - ok
17:32:03.0650 0x16d0 [ 7518F7BCFD4B308ABC9192BACAF6C970, CF08E547EF4059DA3F5A2FCBA98939E84092BB6E0E37F9BBCD1E4D9EBB8A58BB ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:32:03.0656 0x16d0 TDTCP - ok
17:32:03.0672 0x16d0 [ 079125C4B17B01FCAEEBCE0BCB290C0F, B2DF1F2317EF5DCF0A89327332E9F2770ED604005B3138C095FF01AA63B91437 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:32:03.0681 0x16d0 tdx - ok
17:32:03.0744 0x16d0 [ 13657DC475DE564247745BF4DA23207C, DF7413D7F2FB50863C0F2319D99569FB351F928FF5772C1689533A3D2FE42679 ] Teefer2 C:\Windows\system32\DRIVERS\teefer2.sys
17:32:03.0746 0x16d0 Teefer2 - ok
17:32:03.0754 0x16d0 [ C448651339196C0E869A355171875522, C12441CF21D7D47804952B968689D78E3BA0323A90C4C811B54A6B2E6260BAD4 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
17:32:03.0762 0x16d0 TermDD - ok
17:32:03.0807 0x16d0 [ 0F05EC2887BFE197AD82A13287D2F404, 78C8A8FE9B1101430CA79875DA34413C35B6D7A5EE1932E454C50731335437A6 ] TermService C:\Windows\System32\termsrv.dll
17:32:03.0832 0x16d0 TermService - ok
17:32:03.0852 0x16d0 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
17:32:03.0855 0x16d0 Themes - ok
17:32:03.0882 0x16d0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
17:32:03.0884 0x16d0 THREADORDER - ok
17:32:03.0900 0x16d0 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
17:32:03.0904 0x16d0 TrkWks - ok
17:32:03.0952 0x16d0 [ 840F7FB849F5887A49BA18C13B2DA920, A59C40A090E03C0136A865FC54508BA938E7B467C8198BC009FE263E6C275781 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:32:04.0018 0x16d0 TrustedInstaller - ok
17:32:04.0046 0x16d0 [ 61B96C26131E37B24E93327A0BD1FB95, 7C551B6FD0447258BC3FDED72D8D41A0E8B731562170C264295592D45F85D9FF ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:32:04.0052 0x16d0 tssecsrv - ok
17:32:04.0084 0x16d0 [ 3836171A2CDF3AF8EF10856DB9835A70, 74CD0A21B4E5B47E8D762CC28282CA8D512D424EC591D90099B9F8D034AA2FC2 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:32:04.0092 0x16d0 tunnel - ok
17:32:04.0107 0x16d0 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:32:04.0115 0x16d0 uagp35 - ok
17:32:04.0149 0x16d0 [ 31BA4A33AFAB6A69EA092B18017F737F, CD19290394D20CCCCD186C80A682000D3A1187ABCB292753402C88C6FB83AB7F ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:32:04.0190 0x16d0 udfs - ok
17:32:04.0221 0x16d0 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:32:04.0228 0x16d0 UI0Detect - ok
17:32:04.0272 0x16d0 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
17:32:04.0280 0x16d0 uliagpkx - ok
17:32:04.0297 0x16d0 [ EAB6C35E62B1B0DB0D1B48B671D3A117, E65034BF757AE4D21F69D7A91A7990E326A29A0CE9F871FD704B5E6CCC821FF0 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:32:04.0307 0x16d0 umbus - ok
17:32:04.0322 0x16d0 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:32:04.0328 0x16d0 UmPass - ok
17:32:04.0360 0x16d0 [ AF0AC98EE5077EB844413EB54287FDE3, 1586326510DE94E2735EFAD94A68D06DB5B7347B68055A9EA8B95E19D91A2E69 ] UmRdpService C:\Windows\System32\umrdp.dll
17:32:04.0364 0x16d0 UmRdpService - ok
17:32:04.0641 0x16d0 [ DF954A38BA35B84339078E1EA5C45F9E, 43E774E311C453B1019B076C70C955FD24B5CD55CA5DD0442C96A4007F6D33D0 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
17:32:04.0711 0x16d0 UNS - ok
17:32:04.0761 0x16d0 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
17:32:04.0829 0x16d0 upnphost - ok
17:32:05.0040 0x16d0 [ AF1B9474D67897D0C2CFF58E0ACEACCC, 5ED9836EC7BEEB6706C327EF199E9B674863ED8C83890DDE5E5A6554C2DA5288 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
17:32:05.0156 0x16d0 USBAAPL64 - ok
17:32:05.0203 0x16d0 [ 537A4E03D7103C12D42DFD8FFDB5BDC9, 4E6F43A27E629C9769FAEF305BDCD3D7EDBEE1A98B919AF95CF045407A4297D6 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:32:05.0211 0x16d0 usbccgp - ok
17:32:05.0252 0x16d0 [ AF0892A803FDDA7492F595368E3B68E7, F263346DEB4D742EB436CF578F187AC8521D84CED52E98475E6198EC52244F07 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
17:32:05.0260 0x16d0 usbcir - ok
17:32:05.0284 0x16d0 [ FBB21EBE49F6D560DB37AC25FBC68E66, 0F7B2F9BB4062FE24698FF6E5738E83B7FDA9E7FDE9206BEF18C8818627FF2CC ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:32:05.0290 0x16d0 usbehci - ok
17:32:05.0332 0x16d0 [ 6B7A8A99C4A459E73C286A6763EA24CC, 3A8D6AE1D970AAEC4E08B76DB1B2C06AC003AF4F50339416072973E89F660EE2 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:32:05.0349 0x16d0 usbhub - ok
17:32:05.0378 0x16d0 [ 8C88AA7617B4CBC2E4BED61D26B33A27, 4575F0DDFF68C5632CBB7BE93A66FFEDD85BD4D4AEE79C44B2EDA4F8642C6EBF ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:32:05.0384 0x16d0 usbohci - ok
17:32:05.0420 0x16d0 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:32:05.0433 0x16d0 usbprint - ok
17:32:05.0453 0x16d0 [ F39983647BC1F3E6100778DDFE9DCE29, 3BD36594F7C753680DB5A4354B1D6A33FC3011631D2D56DD4B2464AA99C85F7B ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:32:05.0461 0x16d0 USBSTOR - ok
17:32:05.0480 0x16d0 [ 0B5B3B2DF3FD1709618ACFA50B8392B0, 19F040A16C86C475DD33D935E6244593EC73FF9F8C872BC060DDD8AE4F3EDB55 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
17:32:05.0489 0x16d0 usbuhci - ok
17:32:05.0582 0x16d0 [ C77E369FCB8A75659035978E415E00A1, F7D380FE1107D8FCC825BAE0722DA16293AABAC259F49F1463FD8926BE6DD353 ] uvnc_service C:\Program Files (x86)\UltraVNC\winvnc.exe
17:32:05.0632 0x16d0 uvnc_service - ok
17:32:05.0663 0x16d0 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
17:32:05.0666 0x16d0 UxSms - ok
17:32:05.0691 0x16d0 [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] VaultSvc C:\Windows\system32\lsass.exe
17:32:05.0692 0x16d0 VaultSvc - ok
17:32:05.0734 0x16d0 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
17:32:05.0752 0x16d0 vdrvroot - ok
17:32:05.0811 0x16d0 [ 44D73E0BBC1D3C8981304BA15135C2F2, 2849387BBCFB0189AF5604D2F7A631BD5D6BBB2CA73AF6E870069AF382A74DED ] vds C:\Windows\System32\vds.exe
17:32:05.0875 0x16d0 vds - ok
17:32:05.0907 0x16d0 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:32:05.0914 0x16d0 vga - ok
17:32:05.0939 0x16d0 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
17:32:05.0952 0x16d0 VgaSave - ok
17:32:05.0978 0x16d0 [ C82E748660F62A242B2DFAC1442F22A4, 24AD6CAA918C5AB6F461D88825885C8637C224001AAD7A80BDC240368CDB0B7E ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
17:32:05.0990 0x16d0 vhdmp - ok
17:32:06.0006 0x16d0 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
17:32:06.0013 0x16d0 viaide - ok
17:32:06.0037 0x16d0 [ 1501699D7EDA984ABC4155A7DA5738D1, 448DFEFF565F1467F387E4EC9782DDD48B8FFDDF6B1EA46A790C2782C20BD952 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
17:32:06.0049 0x16d0 vmbus - ok
17:32:06.0059 0x16d0 [ AE10C35761889E65A6F7176937C5592C, 9DC27647B6149C9B2523799F85B18122CCE749264624FE2E5FE843FE00642BBE ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
17:32:06.0065 0x16d0 VMBusHID - ok
17:32:06.0109 0x16d0 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3, 91F2B935E1E88C5542650F7D679A75D0562F4A5812179D1EC146D4B6351361E2 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
17:32:06.0129 0x16d0 volmgr - ok
17:32:06.0154 0x16d0 [ 99B0CBB569CA79ACAED8C91461D765FB, 5BE394A39A941DE2AA1212E66B7068F90D423FA816238657CB9B2DA8BBE69B9B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:32:06.0171 0x16d0 volmgrx - ok
17:32:06.0222 0x16d0 [ 9E425AC5C9A5A973273D169F43B4F5E1, 64C9A9D4A39865E56F01B4FDE1B56034C4B2A2AEF2ABE15EC1C37911C59595B0 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:32:06.0236 0x16d0 volsnap - ok
17:32:06.0253 0x16d0 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:32:06.0265 0x16d0 vsmraid - ok
17:32:06.0348 0x16d0 [ 787898BF9FB6D7BD87A36E2D95C899BA, A6C0C7402B1A198E7B3D6D7D283FCB5815AC429DA68FC9B54C67707F3233CCB5 ] VSS C:\Windows\system32\vssvc.exe
17:32:06.0388 0x16d0 VSS - ok
17:32:06.0417 0x16d0 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
17:32:06.0425 0x16d0 vwifibus - ok
17:32:06.0457 0x16d0 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
17:32:06.0465 0x16d0 W32Time - ok
17:32:06.0489 0x16d0 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:32:06.0496 0x16d0 WacomPen - ok
17:32:06.0518 0x16d0 [ 47CA49400643EFFD3F1C9A27E1D69324, 7EFD3405282264F7987172B226882FCDD223F771959B9CEBEBF9ECEA317D85B0 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:32:06.0527 0x16d0 WANARP - ok
17:32:06.0540 0x16d0 [ 47CA49400643EFFD3F1C9A27E1D69324, 7EFD3405282264F7987172B226882FCDD223F771959B9CEBEBF9ECEA317D85B0 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:32:06.0541 0x16d0 Wanarpv6 - ok
17:32:06.0579 0x16d0 [ ECEB715BECE47E101DDEC06B11126066, 6BD577D6EABD48B1BA31955DB3DEEE68528EA54375CA64D233B723D161B45CBA ] wanatw C:\Windows\system32\DRIVERS\wanatw64.sys
17:32:06.0589 0x16d0 wanatw - ok
17:32:06.0669 0x16d0 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:32:06.0711 0x16d0 WatAdminSvc - ok
17:32:06.0789 0x16d0 [ 5AB1BB85BD8B5089CC5D64200DEDAE68, 28777D4F3CD07C8E3465B6DA0FCA994E0B93071A3A0D4D1D64C1DF633DD1C64F ] wbengine C:\Windows\system32\wbengine.exe
17:32:06.0872 0x16d0 wbengine - ok
17:32:06.0911 0x16d0 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:32:06.0927 0x16d0 WbioSrvc - ok
17:32:06.0977 0x16d0 [ DD1BAE8EBFC653824D29CCF8C9054D68, 81D6640222FE276D721168745F6BB905D4E756909A9B2C706AF25465D748772D ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:32:06.0992 0x16d0 wcncsvc - ok
17:32:07.0034 0x16d0 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:32:07.0043 0x16d0 WcsPlugInService - ok
17:32:07.0063 0x16d0 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:32:07.0069 0x16d0 Wd - ok
17:32:07.0100 0x16d0 [ 441BD2D7B4F98134C3A4F9FA570FD250, FF20815273014C5A27C2B75E2C70FE674809293627056199F502DFDF4CECFCA1 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:32:07.0154 0x16d0 Wdf01000 - ok
17:32:07.0179 0x16d0 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:32:07.0182 0x16d0 WdiServiceHost - ok
17:32:07.0185 0x16d0 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:32:07.0188 0x16d0 WdiSystemHost - ok
17:32:07.0223 0x16d0 [ 733006127F235BE7C35354EBEE7B9A7B, 2C7E7030D586C36261F33F29883337695493D48CEA415D6DBA7C5635845A5B32 ] WebClient C:\Windows\System32\webclnt.dll
17:32:07.0240 0x16d0 WebClient - ok
17:32:07.0261 0x16d0 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:32:07.0272 0x16d0 Wecsvc - ok
17:32:07.0296 0x16d0 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:32:07.0299 0x16d0 wercplsupport - ok
17:32:07.0313 0x16d0 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
17:32:07.0316 0x16d0 WerSvc - ok
17:32:07.0367 0x16d0 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:32:07.0374 0x16d0 WfpLwf - ok
17:32:07.0383 0x16d0 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:32:07.0399 0x16d0 WIMMount - ok
17:32:07.0407 0x16d0 WinDefend - ok
17:32:07.0411 0x16d0 WinHttpAutoProxySvc - ok
17:32:07.0461 0x16d0 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:32:07.0466 0x16d0 Winmgmt - ok
17:32:07.0551 0x16d0 [ 41FBB751936B387F9179E7F03A74FE29, 7A73D887BEC19DFC485ED42B4E6ABEBF824555139B81EA30731A00773E707464 ] WinRM C:\Windows\system32\WsmSvc.dll
17:32:07.0668 0x16d0 WinRM - ok
17:32:07.0750 0x16d0 [ 4D52C872018AF7E18D078978DCC3F6F2, 046A0E56091120950422F8A83C8126682AAF0BBA97CF18DF0D0D4D59D01A4F28 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:32:07.0756 0x16d0 WinUsb - ok
17:32:07.0810 0x16d0 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
17:32:07.0842 0x16d0 Wlansvc - ok
17:32:07.0907 0x16d0 [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
17:32:07.0908 0x16d0 wlcrasvc - ok
17:32:08.0072 0x16d0 [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:32:08.0106 0x16d0 wlidsvc - ok
17:32:08.0144 0x16d0 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
17:32:08.0151 0x16d0 WmiAcpi - ok
17:32:08.0222 0x16d0 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:32:08.0246 0x16d0 wmiApSrv - ok
17:32:08.0264 0x16d0 WMPNetworkSvc - ok
17:32:08.0282 0x16d0 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:32:08.0291 0x16d0 WPCSvc - ok
17:32:08.0306 0x16d0 [ 2E57DDF2880A7E52E76F41C7E96D327B, D24E19B6091C197D77D71BC044CE2E5A57BE0A2F00D1BB0732E380A398230E63 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:32:08.0310 0x16d0 WPDBusEnum - ok
17:32:08.0353 0x16d0 [ C69B8FBD21A386446CB795FB295E95D7, 92E8193EA8CDE36D04C7505846D65DFE9F3836EEA7522DF04A95D8C0EBACB297 ] WPS C:\Windows\system32\drivers\wpsdrvnt.sys
17:32:08.0354 0x16d0 WPS - ok
17:32:08.0402 0x16d0 [ 49B9FA407586503D27D17DBDEAEAC970, 50EC5AC0F8F6945A3A00D5435793340125BF4EF74D89CED04EC6D2F3395A19BC ] WpsHelper C:\Windows\system32\drivers\WpsHelper.sys
17:32:08.0408 0x16d0 WpsHelper - ok
17:32:08.0439 0x16d0 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:32:08.0448 0x16d0 ws2ifsl - ok
17:32:08.0470 0x16d0 [ 8F9F3969933C02DA96EB0F84576DB43E, C424D7B881A4DCC348433CF02044383013E32DB94CC66D1D20E1866CB3B0F952 ] wscsvc C:\Windows\System32\wscsvc.dll
17:32:08.0474 0x16d0 wscsvc - ok
17:32:08.0525 0x16d0 [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
17:32:08.0536 0x16d0 WSDPrintDevice - ok
17:32:08.0569 0x16d0 [ 4A2A5C50DD1A63577D3ACA94269FBC7F, F75C1906D431CF871AD954218DF32A0F206E45FF49332DEF9F13C0A36A407047 ] WSDScan C:\Windows\system32\DRIVERS\WSDScan.sys
17:32:08.0576 0x16d0 WSDScan - ok
17:32:08.0579 0x16d0 WSearch - ok
17:32:08.0692 0x16d0 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll
17:32:08.0759 0x16d0 wuauserv - ok
17:32:08.0791 0x16d0 [ C63907207B837A5C05CF6D1606AA0008, 48EA50875C40B8451F1D0A4961B6886448C4EEBBA4EE0C24D9EBB9B635CDB4DB ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:32:08.0799 0x16d0 WudfPf - ok
17:32:08.0874 0x16d0 [ D885A873D733020F8B9B9FF4B1666158, 57C0A8CC7F92E149EA42E2BA7CDAA84887AB3030EBDAB46D2D44BFA7CAD98678 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:32:08.0937 0x16d0 WUDFRd - ok
17:32:08.0948 0x16d0 [ 27B9BEE5AAC00139E3A3AF5D6227A0DC, 6287D44DDBA8481EFD785B4FB75FDE7639273BED4CAB433EA74B8C05F6E9B330 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:32:08.0951 0x16d0 wudfsvc - ok
17:32:08.0979 0x16d0 [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc C:\Windows\System32\wwansvc.dll
17:32:09.0022 0x16d0 WwanSvc - ok
17:32:09.0045 0x16d0 ================ Scan global ===============================
17:32:09.0070 0x16d0 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
17:32:09.0110 0x16d0 [ 3FB74FF230B5D240A57AE1C4A3D0459D, 7A4036CAC3BAAEC719E4152F2CAA9D9B69DACBDC7502147D7160D04AE70BC8DF ] C:\Windows\system32\winsrv.dll
17:32:09.0121 0x16d0 [ 3FB74FF230B5D240A57AE1C4A3D0459D, 7A4036CAC3BAAEC719E4152F2CAA9D9B69DACBDC7502147D7160D04AE70BC8DF ] C:\Windows\system32\winsrv.dll
17:32:09.0145 0x16d0 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
17:32:09.0192 0x16d0 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
17:32:09.0199 0x16d0 [ Global ] - ok
17:32:09.0199 0x16d0 ================ Scan MBR ==================================
17:32:09.0211 0x16d0 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
17:32:09.0387 0x16d0 \Device\Harddisk0\DR0 - ok
17:32:09.0393 0x16d0 [ 66D0B28C8B44E531D0C19F436252ABAA ] \Device\Harddisk5\DR5
17:32:09.0402 0x16d0 \Device\Harddisk5\DR5 - ok
17:32:09.0402 0x16d0 ================ Scan VBR ==================================
17:32:09.0405 0x16d0 [ 8E6E1348FC855A8A3BA85E1038325CC4 ] \Device\Harddisk0\DR0\Partition1
17:32:09.0406 0x16d0 \Device\Harddisk0\DR0\Partition1 - ok
17:32:09.0435 0x16d0 [ 8FAEB1F1819841B0013D3F0692F18D86 ] \Device\Harddisk0\DR0\Partition2
17:32:09.0440 0x16d0 \Device\Harddisk0\DR0\Partition2 - ok
17:32:09.0445 0x16d0 [ 1D2FC8210EC54051788CEBE775A6DBA3 ] \Device\Harddisk5\DR5\Partition1
17:32:09.0448 0x16d0 \Device\Harddisk5\DR5\Partition1 - ok
17:32:09.0452 0x16d0 Waiting for KSN requests completion. In queue: 63
17:32:10.0452 0x16d0 Waiting for KSN requests completion. In queue: 63
17:32:11.0453 0x16d0 Waiting for KSN requests completion. In queue: 63
17:32:12.0660 0x16d0 AV detected via SS2: Symantec Endpoint Protection, C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\WSCSavNotifier.exe ( 12.0.1001.93 ), 0x71000 ( enabled : updated )
17:32:12.0662 0x16d0 FW detected via SS2: Symantec Endpoint Protection, C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\Smc.exe ( 12.0.1001.84 ), 0x41010 ( enabled )
17:32:15.0275 0x16d0 ============================================================
17:32:15.0275 0x16d0 Scan finished
17:32:15.0275 0x16d0 ============================================================
17:32:15.0284 0x14b4 Detected object count: 0
17:32:15.0284 0x14b4 Actual detected object count: 0

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Professional x64
Ran by rbailey on Wed 11/27/2013 at 17:36:05.43
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 11/27/2013 at 17:36:06.42
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


Edited by slikk24, 27 November 2013 - 08:31 PM.


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,924 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:17 PM

Posted 27 November 2013 - 09:18 PM

Were you unable to run ADWcleaner?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 slikk24

slikk24
  • Topic Starter

  • Members
  • 69 posts
  • OFFLINE
  •  
  • Local time:04:17 PM

Posted 27 November 2013 - 10:18 PM

Yes but it never gave me the report after the reboot.  Also ESET online scanner didn't find anything


Edited by slikk24, 27 November 2013 - 10:21 PM.


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,924 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:17 PM

Posted 01 December 2013 - 07:10 PM

Try running ADW cleaner again and see if at least it removed what it finds.

These are outdated and exploitable

Java™ 6 Update 24 (64-bit) (Version: 6.0.240)
Java™ 6 Update 26 (Version: 6.0.260)

Uninstall them thru Control Panel. Reboot.
To install click Version 7 Update 45

 

 

Update and run MBAM again and see how it is.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 slikk24

slikk24
  • Topic Starter

  • Members
  • 69 posts
  • OFFLINE
  •  
  • Local time:04:17 PM

Posted 02 December 2013 - 04:19 PM

# AdwCleaner v3.014 - Report created 02/12/2013 at 15:17:08
# Updated 01/12/2013 by Xplode
# Operating System : Windows 7 Professional (64 bits)
# Username : rbailey - AMWHITE
# Running from : C:\Users\rbailey\AppData\Local\Temp\dlmAE96.tmp\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Found C:\ProgramData\Viewpoint

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16476


-\\ Google Chrome v31.0.1650.57

[ File : C:\Users\rbailey\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\amwhite.CAD\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [6150 octets] - [26/11/2013 15:31:36]
AdwCleaner[R1].txt - [973 octets] - [27/11/2013 08:55:13]
AdwCleaner[R2].txt - [1089 octets] - [27/11/2013 10:10:05]
AdwCleaner[R3].txt - [1217 octets] - [27/11/2013 17:04:55]
AdwCleaner[R4].txt - [2441 octets] - [02/12/2013 14:46:56]
AdwCleaner[R5].txt - [2501 octets] - [02/12/2013 14:59:34]
AdwCleaner[R6].txt - [2561 octets] - [02/12/2013 15:02:58]
AdwCleaner[R7].txt - [1272 octets] - [02/12/2013 15:17:08]
AdwCleaner[S0].txt - [6224 octets] - [26/11/2013 15:32:56]
AdwCleaner[S1].txt - [1033 octets] - [27/11/2013 08:56:18]
AdwCleaner[S2].txt - [2674 octets] - [02/12/2013 15:05:00]

########## EOF - \AdwCleaner\AdwCleaner[R7].txt - [1512 octets] ##########

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,924 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:17 PM

Posted 02 December 2013 - 07:58 PM

Update MBAM, rerun it and let me know..

When removal is completed, a log report will open in Notepad.
The log is automatically saved and can be viewed by clicking the Logs tab.
Copy and paste the contents of that report in your next reply.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 slikk24

slikk24
  • Topic Starter

  • Members
  • 69 posts
  • OFFLINE
  •  
  • Local time:04:17 PM

Posted 03 December 2013 - 09:45 AM

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.12.02.10

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
rbailey :: AMWHITE [administrator]

12/2/2013 3:29:05 PM
mbam-log-2013-12-02 (15-29-05).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 642629
Time elapsed: 1 hour(s), 48 minute(s), 13 second(s)

Memory Processes Detected: 2
C:\Program Files (x86)\Wajam\Updater\WajamUpdaterV3.exe (PUP.Optional.Wajam.A) -> 5576 -> Delete on reboot.
C:\Program Files (x86)\Deal Slider\FrameworkEngine.exe (PUP.Optional.Dealslider) -> 5476 -> Delete on reboot.

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 27
HKCR\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2} (PUP.Optional.Wajam) -> Quarantined and deleted successfully.
HKCR\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2} (PUP.Optional.Wajam) -> Quarantined and deleted successfully.
HKCR\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D} (PUP.Optional.Wajam) -> Quarantined and deleted successfully.
HKCR\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C} (PUP.Optional.Wajam) -> Quarantined and deleted successfully.
HKCR\wajam.WajamBHO.1 (PUP.Optional.Wajam) -> Quarantined and deleted successfully.
HKCR\wajam.WajamBHO (PUP.Optional.Wajam) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C} (PUP.Optional.Wajam) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C} (PUP.Optional.Wajam) -> Quarantined and deleted successfully.
HKCR\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634} (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
HKCR\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17} (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5} (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
HKCR\wajam.WajamDownloader.1 (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
HKCR\wajam.WajamDownloader (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{E4607B39-174A-44BA-AB08-8892366ECA13} (PUP.Optional.DealSlider) -> Quarantined and deleted successfully.
HKCR\CLSID\{E13BF069-886E-416B-B532-6B14242CC508} (PUP.Optional.DealSlider) -> Quarantined and deleted successfully.
HKCR\TypeLib\{83DC01E1-4880-45F2-BDD9-8A1EF461589D} (PUP.Optional.DealSlider) -> Quarantined and deleted successfully.
HKCR\Interface\{E120F057-8861-417F-B689-D014B72C3908} (PUP.Optional.DealSlider) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E4607B39-174A-44BA-AB08-8892366ECA13} (PUP.Optional.DealSlider) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{E4607B39-174A-44BA-AB08-8892366ECA13} (PUP.Optional.DealSlider) -> Quarantined and deleted successfully.
HKCR\AppID\priam_bho.DLL (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\WAJAM (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\WAJAM (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
HKLM\SYSTEM\CurrentControlSet\Services\WajamUpdaterV3 (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wajam (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Deal Slider (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
HKCR\TypeLib\{6A5C71FC-1618-4262-9A8B-D8C50A725B24} (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
HKCR\Interface\{D2AD566E-AC8C-4050-BEBF-1479FD318275} (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.

Registry Values Detected: 3
HKCU\Software\Wajam|affiliate_id (PUP.Optional.Wajam.A) -> Data: 5927 -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Wajam|red (PUP.Optional.Wajam.A) -> Data: 4 -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Deal Slider-repairJob (PUP.Optional.Dealslider) -> Data: wscript.exe "C:\Users\rbailey\AppData\Local\Deal Slider\repair.js" -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 34
C:\Program Files (x86)\Wajam (PUP.Optional.Wajam.A) -> Delete on reboot.
C:\Program Files (x86)\Wajam\IE (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Updater (PUP.Optional.Wajam.A) -> Delete on reboot.
C:\Users\rbailey\AppData\Local\Deal Slider (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\AppFramework (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\CanvasFramework (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework-ui (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\icons (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\includes (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\AppFramework (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\CanvasFramework (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\theme (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\theme\bubble (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\icons (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider (PUP.Optional.Dealslider) -> Delete on reboot.
C:\Program Files (x86)\Deal Slider\AppFramework (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\CanvasFramework (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\theme (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\theme\bubble (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\icons (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Bench\Updater (PUP.Optional.AdwarePlugin) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Bench\Updater\1.7.0.0 (PUP.Optional.AdwarePlugin) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Search (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Shopping (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Uninstall Wajam (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.

Files Detected: 269
C:\Program Files (x86)\Wajam\IE\priam_bho.dll (PUP.Optional.Wajam) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\FrameworkBHO.dll (PUP.Optional.DealSlider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\FrameworkBHO64.dll (PUP.Optional.DealSlider) -> Quarantined and deleted successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Installl_Converter\Installl_ConverterToolbarHelper.exe.vir (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\bin\CltMngSvc.exe.vir (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\bin\SPHook32.dll.vir (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\bin\SPHook64.dll.vir (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\bin\SPTool64.exe.vir (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\bin\uninstall.exe.vir (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\AdwCleaner\Quarantine\C\Users\mbrower\AppData\Local\Conduit\CT3299872\Installl_ConverterAutoUpdateHelper.exe.vir (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Bench\Updater\1.7.0.0\Updater.exe (PUP.Optional.Adwareplugin) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Updater\update.exe (PUP.Optional.Wajam) -> Quarantined and deleted successfully.
C:\Users\mbrower\AppData\Local\Temp\nsd3AEB.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Users\mbrower\AppData\Local\Temp\nst3492.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Users\mbrower\AppData\Local\Temp\nsx384.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Users\mbrower\AppData\Local\Temp\nsxD95.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Users\mbrower\AppData\Local\Temp\SPStub.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8B416SW8\wajam_install[1].exe (PUP.Optional.Wajam) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Updater\WajamUpdaterV3.exe (PUP.Optional.Wajam.A) -> Delete on reboot.
C:\Program Files (x86)\Wajam\uninstall.exe (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\IE\favicon.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\IE\wajamLogo.bmp (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\amazon.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\argos.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\ask.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\bestbuy.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\bing.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\ebay.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\etsy.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\facebook.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\favicon.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\google.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\homedepot.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\ikea.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\imdb.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\lowes.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\mercado.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\mysearchweb.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\myshopping.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\searchresult.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\sears.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\setting.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\settings.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\shopping.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\target.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\tesco.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\tripadvisor.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\twitter.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\wajam.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\walmart.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\wiki.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\yahoo.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Wajam\Logos\zalando.ico (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome_installer.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome_installer.json (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\common.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox_installer.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\ie_installer.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\installer.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\projectInstaller.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\repair.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\repairData.json (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\SoftwareDetector.exe (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\sqlite3.exe (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\Uninstall.exe (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\background.html (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\extension_info.json (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\manifest.json (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\webrequest.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\AppFramework\appAPI_bg.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\AppFramework\appAPI_browseraction.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\AppFramework\appAPI_common.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\AppFramework\appAPI_content.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\AppFramework\appAPI_webrequest.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\AppFramework\jquery.min.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\CanvasFramework\canvasscript_engine.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\CanvasFramework\canvas_bg.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\backgroundscript_engine.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\base.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\browser.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\console.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\framework.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\i18n.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\initialize.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\invoke_async.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\io.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\lang.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\legacy.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\message_target.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\messaging.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\storage.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\timer.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\userscript_client.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\userscript_engine.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\utils.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework\xhr.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework-ui\browser_button.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework-ui\context_menu.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework-ui\framework_api.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework-ui\notifications.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework-ui\options.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework-ui\remote_popup_host.html (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework-ui\remote_popup_host.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\framework-ui\ui_base.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\icons\button.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\icons\icon100.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\icons\icon128.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\icons\icon32.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\icons\icon48.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\chrome\includes\content.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\background.html (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\bootstrap.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\chrome.manifest (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\extension_info.json (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\install.rdf (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\webrequest.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\AppFramework\appAPI_bg.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\AppFramework\appAPI_browseraction.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\AppFramework\appAPI_common.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\AppFramework\appAPI_content.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\AppFramework\appAPI_webrequest.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\AppFramework\jquery.min.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\CanvasFramework\canvasscript_engine.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\CanvasFramework\canvas_bg.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\backgroundscript_engine.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\base.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\browser.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\chrome_windows.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\console.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\content_proxy.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\framework.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\i18n.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\invoke_async.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\io.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\lang.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\legacy.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\md5.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\message_target.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\messaging.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\registry.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\storage.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\timer.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\uninstall.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\userscript_client.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\userscript_engine.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\utils.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework\xhr.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\browser_button.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\contentNotification.tmpl (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\contentNotificationStyle.tmpl (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\content_notifications.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\context_menu.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\framework_api.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\notifications.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\options.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\popup.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\popup_window.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\popup_window.xul (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\ui_base.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\theme\bubble\bottom-left.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\theme\bubble\bottom-middle.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\theme\bubble\bottom-right.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\theme\bubble\middle-left.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\theme\bubble\middle-right.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\theme\bubble\style.css (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\theme\bubble\tail-bottom.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\theme\bubble\tail-left.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\theme\bubble\tail-right.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\theme\bubble\tail-top.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\theme\bubble\top-left.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\theme\bubble\top-middle.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\framework-ui\theme\bubble\top-right.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\icons\button.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\icons\icon100.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\icons\icon128.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\icons\icon32.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Local\Deal Slider\firefox\icons\icon48.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\background.html (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\config.xml (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\extension_info.json (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\FrameworkEngine.exe (PUP.Optional.Dealslider) -> Delete on reboot.
C:\Program Files (x86)\Deal Slider\icon.ico (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\webrequest.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\AppFramework\appAPI_bg.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\AppFramework\appAPI_browseraction.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\AppFramework\appAPI_common.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\AppFramework\appAPI_content.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\AppFramework\appAPI_webrequest.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\AppFramework\jquery.min.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\CanvasFramework\canvasscript_engine.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\CanvasFramework\canvas_bg.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\backgroundscript_engine.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\base.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\browser.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\console.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\framework.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\global.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\i18n.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\initialize.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\invoke_async.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\io.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\json2.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\lang.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\legacy.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\md5.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\message_target.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\messaging.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\registry.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\storage.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\timer.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\updater.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\userscript_client.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\userscript_engine.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\utils.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework\xhr.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\browser_button.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\context_menu.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\context_menu_item_handler.html (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\framework_api.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\notification.html (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\notifications.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\options.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\ui_base.js (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\theme\bubble\bottom-left.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\theme\bubble\bottom-middle.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\theme\bubble\bottom-right.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\theme\bubble\middle-left.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\theme\bubble\middle-right.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\theme\bubble\tail-bottom.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\theme\bubble\tail-left.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\theme\bubble\tail-right.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\theme\bubble\tail-top.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\theme\bubble\top-left.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\theme\bubble\top-middle.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\framework-ui\theme\bubble\top-right.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\icons\button.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\icons\icon100.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\icons\icon128.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\icons\icon32.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Deal Slider\icons\icon48.png (PUP.Optional.Dealslider) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Bench\Updater\products.xml (PUP.Optional.AdwarePlugin) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Bench\Updater\Updater.exe (PUP.Optional.AdwarePlugin) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Settings.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\SignIn with Facebook.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\SignIn with Twitter.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Wajam Website.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Search\Ask.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Search\Bing.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Search\Google.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Search\IMDb.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Search\Shopping.com.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Search\TripAdvisor.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Search\Wikipedia.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Search\Yahoo!.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Shopping\Amazon.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Shopping\Argos.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Shopping\Ebay.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Shopping\Etsy.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Shopping\HomeDepot.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Shopping\Ikea.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Shopping\Lowe's.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Shopping\Mercadolivre.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Shopping\MyShopping.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Shopping\Sears.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Shopping\Target.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Shopping\Tesco.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Shopping\Walmart.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Explore Social Shopping\Zalando.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.
C:\Users\rbailey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\Uninstall Wajam\uninstall.lnk (PUP.Optional.Wajam.A) -> Quarantined and deleted successfully.

(end)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users