Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Muniece.exe - Avast says virus but doesn't get rid of it


  • Please log in to reply
8 replies to this topic

#1 ktworek

ktworek

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:05:46 PM

Posted 31 January 2014 - 08:31 PM

I just installed Avast and it keeps popping up non stop that a threat has been detected but taken care of. It says: avast  webshield has blocked a harmful web page or file. The file is muniece.exe. I cannot find any information about this. But while on the internet it is almost impossible to do anything because of how slow it runs. The file is located here: C:\users\name\app data\roaming\hazaisbu.

 

Has anyone came across anything similar?

 

I am running Windows 7


Edited by ktworek, 31 January 2014 - 08:37 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:46 PM

Posted 31 January 2014 - 09:05 PM

Hello ktworek


I cannot get info on it either.

As the logs required for help in this area are not here, I moved this to the Am I Infected forum.

Let's run these and see if we get any Intel.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.
ADW Cleaner

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
    .
    .
    .
    .
    • Last run ESET.
      • Hold down Control and click on this link to open ESET OnlineScan in a new window.
      • Click the esetonlinebtn.png button.
      • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
      • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
      • Double click on the esetsmartinstaller_enu.png icon on your desktop.
      • Check "YES, I accept the Terms of Use."
      • Click the Start button.
      • Accept any security warnings from your browser.
      • Under scan settings, check "Scan Archives" and "Remove found threats"
      • Click Advanced settings and select the following:
      • Scan potentially unwanted applications
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth technology
      • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
      • When the scan completes, click List Threats
      • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
      • Click the Back button.
      • Click the Finish button.
      • NOTE:Sometimes if ESET finds no infections it will not create a log.

Edited by boopme, 31 January 2014 - 09:07 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 ktworek

ktworek
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:05:46 PM

Posted 31 January 2014 - 09:57 PM

MiniToolBox by Farbar  Version: 23-01-2014
Ran by chuck (administrator) on 31-01-2014 at 21:29:40
Running from "C:\Users\chuck\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
Qualcomm Atheros 802.11 a/b/g/n Dualband Wireless Network Module = Wireless Network Connection (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Chuck-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Broadcast
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : PK5001Z

Wireless LAN adapter Wireless Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Qualcomm Atheros 802.11 a/b/g/n Dualband Wireless Network Module
   Physical Address. . . . . . . . . : 00-21-00-E5-52-2D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : PK5001Z
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 00-26-18-7A-ED-73
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::8c4a:9d20:fbbd:b4d6%9(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.160(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Friday, January 31, 2014 8:14:09 PM
   Lease Expires . . . . . . . . . . : Saturday, February 01, 2014 8:14:07 PM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 251667596
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-25-72-C6-00-26-18-7A-ED-73
   DNS Servers . . . . . . . . . . . : 192.168.0.1
                                       205.171.2.226
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 13:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:45f:1789:3f57:ff5f(Preferred)
   Link-local IPv6 Address . . . . . : fe80::45f:1789:3f57:ff5f%17(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.PK5001Z:

   Connection-specific DNS Suffix  . : PK5001Z
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::5efe:192.168.0.160%20(Preferred)
   Default Gateway . . . . . . . . . :
   DNS Servers . . . . . . . . . . . : 192.168.0.1
                                       205.171.2.226
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{3D343A9E-4FF1-44F4-AFC6-3C56005A1D12}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  PK5001Z.PK5001Z
Address:  192.168.0.1

Name:    google.com
Addresses:  2607:f8b0:4009:807::1001
   173.194.46.101
   173.194.46.96
   173.194.46.104
   173.194.46.99
   173.194.46.103
   173.194.46.105
   173.194.46.102
   173.194.46.100
   173.194.46.98
   173.194.46.97
   173.194.46.110

Pinging google.com [74.125.225.66] with 32 bytes of data:
Reply from 74.125.225.66: bytes=32 time=131ms TTL=56
Reply from 74.125.225.66: bytes=32 time=99ms TTL=56

Ping statistics for 74.125.225.66:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 99ms, Maximum = 131ms, Average = 115ms
Server:  PK5001Z.PK5001Z
Address:  192.168.0.1

Name:    yahoo.com
Addresses:  206.190.36.45
   98.138.253.109
   98.139.183.24

Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=113ms TTL=52
Reply from 98.139.183.24: bytes=32 time=234ms TTL=50

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 113ms, Maximum = 234ms, Average = 173ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 10...00 21 00 e5 52 2d ......Qualcomm Atheros 802.11 a/b/g/n Dualband Wireless Network Module
  9...00 26 18 7a ed 73 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 17...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1    192.168.0.160     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link     192.168.0.160    276
    192.168.0.160  255.255.255.255         On-link     192.168.0.160    276
    192.168.0.255  255.255.255.255         On-link     192.168.0.160    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.0.160    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.0.160    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 17     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 17     58 2001::/32                On-link
 17    306 2001:0:9d38:6abd:45f:1789:3f57:ff5f/128
                                    On-link
  9    276 fe80::/64                On-link
 17    306 fe80::/64                On-link
 20    281 fe80::5efe:192.168.0.160/128
                                    On-link
 17    306 fe80::45f:1789:3f57:ff5f/128
                                    On-link
  9    276 fe80::8c4a:9d20:fbbd:b4d6/128
                                    On-link
  1    306 ff00::/8                 On-link
 17    306 ff00::/8                 On-link
  9    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/31/2014 08:15:30 PM) (Source: Application Error) (User: )
Description: Faulting application name: avgdiagex.exe, version: 14.0.0.4216, time stamp: 0x526edb16
Faulting module name: avgduix.dll, version: 14.0.0.4110, time stamp: 0x5213e598
Exception code: 0xc0000005
Fault offset: 0x000564f6
Faulting process id: 0x4a8
Faulting application start time: 0xavgdiagex.exe0
Faulting application path: avgdiagex.exe1
Faulting module path: avgdiagex.exe2
Report Id: avgdiagex.exe3

Error: (01/31/2014 08:15:30 PM) (Source: Application Error) (User: )
Description: Faulting application name: avgwdsvc.exe, version: 14.0.0.4204, time stamp: 0x5240cfb0
Faulting module name: avgwd.dll, version: 14.0.0.4259, time stamp: 0x528a807d
Exception code: 0xc0000005
Fault offset: 0x0008b465
Faulting process id: 0xad8
Faulting application start time: 0xavgwdsvc.exe0
Faulting application path: avgwdsvc.exe1
Faulting module path: avgwdsvc.exe2
Report Id: avgwdsvc.exe3

Error: (01/31/2014 08:15:07 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/31/2014 05:54:55 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/31/2014 05:53:51 PM) (Source: Application Error) (User: )
Description: Faulting application name: avgdiagex.exe, version: 14.0.0.4216, time stamp: 0x526edb16
Faulting module name: avgduix.dll, version: 14.0.0.4110, time stamp: 0x5213e598
Exception code: 0xc0000005
Fault offset: 0x000564f6
Faulting process id: 0xae4
Faulting application start time: 0xavgdiagex.exe0
Faulting application path: avgdiagex.exe1
Faulting module path: avgdiagex.exe2
Report Id: avgdiagex.exe3

Error: (01/31/2014 05:53:51 PM) (Source: Application Error) (User: )
Description: Faulting application name: avgwdsvc.exe, version: 14.0.0.4204, time stamp: 0x5240cfb0
Faulting module name: avgwd.dll, version: 14.0.0.4259, time stamp: 0x528a807d
Exception code: 0xc0000005
Fault offset: 0x0008b465
Faulting process id: 0x7e0
Faulting application start time: 0xavgwdsvc.exe0
Faulting application path: avgwdsvc.exe1
Faulting module path: avgwdsvc.exe2
Report Id: avgwdsvc.exe3

Error: (01/31/2014 05:45:57 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/31/2014 05:45:20 PM) (Source: Application Error) (User: )
Description: Faulting application name: avgdiagex.exe, version: 14.0.0.4216, time stamp: 0x526edb16
Faulting module name: avgduix.dll, version: 14.0.0.4110, time stamp: 0x5213e598
Exception code: 0xc0000005
Fault offset: 0x000564f6
Faulting process id: 0x618
Faulting application start time: 0xavgdiagex.exe0
Faulting application path: avgdiagex.exe1
Faulting module path: avgdiagex.exe2
Report Id: avgdiagex.exe3

Error: (01/31/2014 05:45:18 PM) (Source: Application Error) (User: )
Description: Faulting application name: avgwdsvc.exe, version: 14.0.0.4204, time stamp: 0x5240cfb0
Faulting module name: avgwd.dll, version: 14.0.0.4259, time stamp: 0x528a807d
Exception code: 0xc0000005
Fault offset: 0x0008b465
Faulting process id: 0xb68
Faulting application start time: 0xavgwdsvc.exe0
Faulting application path: avgwdsvc.exe1
Faulting module path: avgwdsvc.exe2
Report Id: avgwdsvc.exe3

Error: (01/31/2014 07:30:10 AM) (Source: Application Error) (User: )
Description: Faulting application name: muniece.exe, version: 0.2304.39922.5320, time stamp: 0x52e16c47
Faulting module name: Flash32_11_9_900_170.ocx, version: 11.9.900.170, time stamp: 0x529b7962
Exception code: 0xc0000005
Fault offset: 0x005a8b29
Faulting process id: 0x1390
Faulting application start time: 0xmuniece.exe0
Faulting application path: muniece.exe1
Faulting module path: muniece.exe2
Report Id: muniece.exe3

System errors:
=============
Error: (01/31/2014 08:22:31 PM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.

Error: (01/31/2014 08:16:32 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (01/31/2014 08:16:32 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (01/31/2014 08:16:32 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (01/31/2014 08:16:32 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (01/31/2014 08:16:32 PM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (01/31/2014 08:16:32 PM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (01/31/2014 08:16:23 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (01/31/2014 08:16:23 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (01/31/2014 08:16:23 PM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2014-01-29 09:28:09.816
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-01-29 09:28:09.738
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-16 21:17:46.528
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-16 21:17:46.434
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-06-01 12:00:15.829
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-06-01 12:00:15.751
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2009-12-06 14:14:16.845
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\SysWOW64\nvSCPAPI64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2009-12-06 14:11:26.530
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\SysWOW64\nvSCPAPI64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2009-10-24 16:39:46.498
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2009-10-24 16:39:46.451
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.

=========================== Installed Programs ============================

 Update for Microsoft Office 2007 (KB2508958)
Acrobat.com (Version: 2.0.0)
Acrobat.com (Version: 2.0.0.0)
Adobe AIR (Version: 1.5.2.8900)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.170)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170)
Adobe Photoshop CS6 (Version: 13.0)
Adobe Reader 9.5.5 (Version: 9.5.5)
Adobe Shockwave Player 11.5 (Version: 11.5.1.601)
Apple Application Support (Version: 3.0)
Apple Mobile Device Support (Version: 7.1.0.32)
Apple Software Update (Version: 2.1.3.127)
AutoCAD 2008 - English (Version: 17.1.51.0)
avast! Free Antivirus (Version: 9.0.2013)
Bonjour (Version: 3.0.0.10)
CCleaner (Version: 4.04)
CleanUp!
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
ContentManager (Version: 0.5)
CrimeCraft GangWars
Curse Client (Version: 4.0.1.286)
CyberLink DVD Suite Deluxe (Version: 6.0.2602)
dcmsvc 1.0
Default Manager (Version: 1.0.105.0)
DIRECTV Player (Version: 8.0)
DirectX for Managed Code Update (Summer 2004) (Version: 9.02.2904)
Dropbox (Version: 1.2.51)
Google Chrome (Version: 32.0.1700.102)
Google Earth Plug-in (Version: 7.1.2.2041)
Google Update Helper (Version: 1.3.22.3)
HP Odometer (Version: 2.10.0000)
HP Picasso Media Center Add-In (Version: 1.0.0)
HP Recovery Manager RSS (Version: 92.0.0.11)
HP Remote Software (Version: 1.0.5.0)
HP Support Information (Version: 10.1.0001)
Intel® Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
iTunes (Version: 11.1.4.62)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 23 (64-bit) (Version: 6.0.230)
Java™ 6 Update 29 (Version: 6.0.290)
Juniper Networks Setup Client (Version: 1.1.0.0)
Juniper Terminal Services Client (Version: 6.0.0.13319)
LabelPrint (Version: 2.5.1402)
LightScribe System Software (Version: 1.18.3.2)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft IntelliType Pro 8.2 (Version: 8.20.469.0)
Microsoft Live Search Toolbar (Version: 3.0.552.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Professional Plus 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Save as PDF Add-in for 2007 Microsoft Office programs (Version: 12.0.4518.1014)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Streets & Trips 2008 (Version: 15.0.21.2400)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Mozilla Firefox (3.6.20) (Version: 3.6.20 (en-US))
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
novaPDF Lite Desktop 7.5 printer
NVIDIA 3D Vision Controller Driver 314.07 (Version: 314.07)
NVIDIA 3D Vision Driver 331.65 (Version: 331.65)
NVIDIA Control Panel 331.65 (Version: 331.65)
NVIDIA Graphics Driver 331.65 (Version: 331.65)
NVIDIA Install Application (Version: 2.1002.133.889)
NVIDIA PhysX (Version: 9.12.1031)
NVIDIA PhysX System Software 9.12.1031 (Version: 9.12.1031)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.3165)
NVIDIA Update 1.15.2 (Version: 1.15.2)
NVIDIA Update Components (Version: 1.15.2)
OpenOffice.org 3.4.1 (Version: 3.41.9593)
Orca (Version: 3.1.3790.0000)
PDF Settings CS6 (Version: 11.0)
Power2Go (Version: 6.0.2602)
PowerDirector (Version: 7.0.2611)
PVSonyDll (Version: 1.00.0001)
Python 2.6 pywin32-212 (Version: 2.12)
Python 2.6.1 (Version: 2.6.1150)
QuickTime (Version: 7.74.80.86)
Realtek High Definition Audio Driver (Version: 6.0.1.5910)
SSA Benefit Calculator (Version: 1.10.0002)
TeamViewer 7 (Version: 7.0.17271)
TSSS v5 (Version: 5.0)
Unity Web Player (Version: )
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VBA (2627.01) (Version: 6.03.00.9402)
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
Visual Studio 2012 x64 Redistributables (Version: 14.0.0.1)
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)
VLC media player 2.0.2 (Version: 2.0.2)
Warner Bros. Digital Copy Manager (Version: 1.1)
World of Warcraft

========================= Memory info: ===================================

Percentage of memory in use: 30%
Total physical RAM: 8191.23 MB
Available physical RAM: 5692.38 MB
Total Pagefile: 16380.63 MB
Available Pagefile: 13521.66 MB
Total Virtual: 4095.88 MB
Available Virtual: 3966.81 MB

========================= Partitions: =====================================

1 Drive c: (HP) (Fixed) (Total:917.83 GB) (Free:555.47 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:13.68 GB) (Free:1.92 GB) NTFS

========================= Users: ========================================

User accounts for \\CHUCK-PC

Administrator            chuck                    Clayton                 
Guest                    Jada                     UpdatusUser             

**** End of log ****



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:46 PM

Posted 01 February 2014 - 11:50 AM

Hello,sorry if I wasn't clear to run all the tools .
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 ktworek

ktworek
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:05:46 PM

Posted 01 February 2014 - 01:55 PM

21:54:02.0694 5364  TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
21:54:06.0111 5364  ============================================================
21:54:06.0111 5364  Current date / time: 2014/01/31 21:54:06.0111
21:54:06.0111 5364  SystemInfo:
21:54:06.0111 5364 
21:54:06.0111 5364  OS Version: 6.1.7601 ServicePack: 1.0
21:54:06.0111 5364  Product type: Workstation
21:54:06.0111 5364  ComputerName: CHUCK-PC
21:54:06.0111 5364  UserName: chuck
21:54:06.0111 5364  Windows directory: C:\Windows
21:54:06.0111 5364  System windows directory: C:\Windows
21:54:06.0111 5364  Running under WOW64
21:54:06.0111 5364  Processor architecture: Intel x64
21:54:06.0111 5364  Number of processors: 4
21:54:06.0111 5364  Page size: 0x1000
21:54:06.0111 5364  Boot type: Normal boot
21:54:06.0111 5364  ============================================================
21:54:06.0516 5364  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:54:06.0548 5364  ============================================================
21:54:06.0548 5364  \Device\Harddisk0\DR0:
21:54:06.0548 5364  MBR partitions:
21:54:06.0548 5364  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x72BA8B08
21:54:06.0548 5364  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x72BA8B47, BlocksNum 0x1B5CE7A
21:54:06.0548 5364  ============================================================
21:54:06.0579 5364  C: <-> \Device\Harddisk0\DR0\Partition1
21:54:06.0641 5364  D: <-> \Device\Harddisk0\DR0\Partition2
21:54:06.0641 5364  ============================================================
21:54:06.0641 5364  Initialize success
21:54:06.0641 5364  ============================================================
21:54:09.0730 5460  ============================================================
21:54:09.0730 5460  Scan started
21:54:09.0730 5460  Mode: Manual;
21:54:09.0730 5460  ============================================================
21:54:09.0964 5460  ================ Scan system memory ========================
21:54:09.0964 5460  System memory - ok
21:54:09.0964 5460  ================ Scan services =============================
21:54:10.0136 5460  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
21:54:10.0151 5460  1394ohci - ok
21:54:10.0198 5460  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
21:54:10.0198 5460  ACPI - ok
21:54:10.0245 5460  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
21:54:10.0245 5460  AcpiPmi - ok
21:54:10.0401 5460  [ 1BA1AB4141A92EB34DA99F1249CA2D4D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:54:10.0401 5460  AdobeFlashPlayerUpdateSvc - ok
21:54:10.0494 5460  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
21:54:10.0494 5460  adp94xx - ok
21:54:10.0541 5460  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
21:54:10.0557 5460  adpahci - ok
21:54:10.0572 5460  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
21:54:10.0572 5460  adpu320 - ok
21:54:10.0619 5460  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
21:54:10.0619 5460  AeLookupSvc - ok
21:54:10.0682 5460  [ 79059559E89D06E8B80CE2944BE20228 ] AFD             C:\Windows\system32\drivers\afd.sys
21:54:10.0697 5460  AFD - ok
21:54:10.0744 5460  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
21:54:10.0744 5460  agp440 - ok
21:54:10.0791 5460  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
21:54:10.0806 5460  ALG - ok
21:54:10.0853 5460  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
21:54:10.0853 5460  aliide - ok
21:54:10.0869 5460  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
21:54:10.0869 5460  amdide - ok
21:54:10.0931 5460  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
21:54:10.0931 5460  AmdK8 - ok
21:54:10.0947 5460  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
21:54:10.0962 5460  AmdPPM - ok
21:54:10.0994 5460  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
21:54:10.0994 5460  amdsata - ok
21:54:11.0072 5460  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
21:54:11.0072 5460  amdsbs - ok
21:54:11.0103 5460  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
21:54:11.0103 5460  amdxata - ok
21:54:11.0165 5460  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
21:54:11.0165 5460  AppID - ok
21:54:11.0212 5460  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
21:54:11.0212 5460  AppIDSvc - ok
21:54:11.0274 5460  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
21:54:11.0274 5460  Appinfo - ok
21:54:11.0399 5460  [ F518545E5B7623AD49ABE7F8776EFA46 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:54:11.0399 5460  Apple Mobile Device - ok
21:54:11.0493 5460  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
21:54:11.0493 5460  arc - ok
21:54:11.0508 5460  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
21:54:11.0524 5460  arcsas - ok
21:54:11.0680 5460  [ 9A262EDD17F8473B91B333D6B031A901 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:54:11.0696 5460  aspnet_state - ok
21:54:11.0742 5460  [ 0ACC3F49015E628590CA4372322EB46B ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
21:54:11.0742 5460  aswMonFlt - ok
21:54:11.0789 5460  [ 679712B7A353EE665B9301592164A172 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
21:54:11.0789 5460  aswRdr - ok
21:54:11.0820 5460  [ C04F7B373881009D7994D9BF55D24AB4 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
21:54:11.0820 5460  aswRvrt - ok
21:54:11.0883 5460  [ 43599E630DFC30AD4E6A2B4B269EB1C0 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
21:54:11.0883 5460  aswSnx - ok
21:54:11.0961 5460  [ F22DE5F5BA8ADA0A861441B624B51EB5 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
21:54:11.0961 5460  aswSP - ok
21:54:11.0992 5460  [ FD3EA14ADF6216BDF4030DB2EFD43D96 ] aswStm          C:\Windows\system32\drivers\aswStm.sys
21:54:11.0992 5460  aswStm - ok
21:54:12.0039 5460  [ 90399625F341AB76BA4B85A5E860EB1F ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
21:54:12.0039 5460  aswVmm - ok
21:54:12.0070 5460  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
21:54:12.0070 5460  AsyncMac - ok
21:54:12.0132 5460  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
21:54:12.0132 5460  atapi - ok
21:54:12.0242 5460  [ B4421D8CDADC441F76BA39532A3E3414 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
21:54:12.0320 5460  athr - ok
21:54:12.0382 5460  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:54:12.0398 5460  AudioEndpointBuilder - ok
21:54:12.0413 5460  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
21:54:12.0413 5460  AudioSrv - ok
21:54:12.0522 5460  [ EA2D28BBE98256654397CD1F6EAEBDD8 ] Autodesk Licensing Service C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
21:54:12.0522 5460  Autodesk Licensing Service - ok
21:54:12.0694 5460  [ CC42F104172B4A62793083D380867317 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
21:54:12.0694 5460  avast! Antivirus - ok
21:54:12.0788 5460  [ 27CA53E91543B800E16129BCEC3247AD ] Avgdiska        C:\Windows\system32\DRIVERS\avgdiska.sys
21:54:12.0788 5460  Avgdiska - ok
21:54:12.0912 5460  [ F89B2DACE0FBE54CF65D12B7081C19C3 ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
21:54:12.0975 5460  AVGIDSAgent - ok
21:54:12.0990 5460  [ 57250DDDE2523115D0927DBBA745F9FA ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdrivera.sys
21:54:12.0990 5460  AVGIDSDriver - ok
21:54:13.0006 5460  [ 19AD820FC44AA71EDD1BC70B6E3F36B0 ] AVGIDSHA        C:\Windows\system32\DRIVERS\avgidsha.sys
21:54:13.0006 5460  AVGIDSHA - ok
21:54:13.0022 5460  [ 4BE8BB177B4C2BC3564845EF6D1073F1 ] Avgldx64        C:\Windows\system32\DRIVERS\avgldx64.sys
21:54:13.0022 5460  Avgldx64 - ok
21:54:13.0068 5460  [ D3772CC086FB81F76B5A82C85E1C7C8E ] Avgloga         C:\Windows\system32\DRIVERS\avgloga.sys
21:54:13.0068 5460  Avgloga - ok
21:54:13.0100 5460  [ A0BCE5DC2C1F1EE5C1CA19A33375AC23 ] Avgmfx64        C:\Windows\system32\DRIVERS\avgmfx64.sys
21:54:13.0100 5460  Avgmfx64 - ok
21:54:13.0131 5460  [ 12FAAF366975B2BF2E93F1866C0E480D ] Avgrkx64        C:\Windows\system32\DRIVERS\avgrkx64.sys
21:54:13.0131 5460  Avgrkx64 - ok
21:54:13.0146 5460  [ 4E364FABBD147F59E5D524C9EA86D772 ] Avgtdia         C:\Windows\system32\DRIVERS\avgtdia.sys
21:54:13.0146 5460  Avgtdia - ok
21:54:13.0193 5460  [ B747B6BB015E552F49C634BB19540F3D ] avgwd           C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
21:54:13.0209 5460  avgwd - ok
21:54:13.0271 5460  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
21:54:13.0271 5460  AxInstSV - ok
21:54:13.0349 5460  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
21:54:13.0365 5460  b06bdrv - ok
21:54:13.0443 5460  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
21:54:13.0443 5460  b57nd60a - ok
21:54:13.0505 5460  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
21:54:13.0505 5460  BDESVC - ok
21:54:13.0552 5460  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
21:54:13.0552 5460  Beep - ok
21:54:13.0661 5460  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
21:54:13.0677 5460  BFE - ok
21:54:13.0802 5460  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\system32\qmgr.dll
21:54:13.0817 5460  BITS - ok
21:54:13.0864 5460  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
21:54:13.0864 5460  blbdrive - ok
21:54:13.0942 5460  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:54:13.0942 5460  Bonjour Service - ok
21:54:13.0989 5460  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:54:13.0989 5460  bowser - ok
21:54:14.0036 5460  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:54:14.0036 5460  BrFiltLo - ok
21:54:14.0082 5460  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:54:14.0082 5460  BrFiltUp - ok
21:54:14.0114 5460  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
21:54:14.0114 5460  BridgeMP - ok
21:54:14.0160 5460  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
21:54:14.0160 5460  Browser - ok
21:54:14.0192 5460  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
21:54:14.0192 5460  Brserid - ok
21:54:14.0223 5460  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
21:54:14.0223 5460  BrSerWdm - ok
21:54:14.0238 5460  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
21:54:14.0238 5460  BrUsbMdm - ok
21:54:14.0254 5460  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
21:54:14.0254 5460  BrUsbSer - ok
21:54:14.0285 5460  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
21:54:14.0285 5460  BTHMODEM - ok
21:54:14.0348 5460  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
21:54:14.0348 5460  bthserv - ok
21:54:14.0379 5460  catchme - ok
21:54:14.0394 5460  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:54:14.0394 5460  cdfs - ok
21:54:14.0426 5460  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
21:54:14.0441 5460  cdrom - ok
21:54:14.0504 5460  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
21:54:14.0504 5460  CertPropSvc - ok
21:54:14.0550 5460  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
21:54:14.0550 5460  circlass - ok
21:54:14.0597 5460  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
21:54:14.0597 5460  CLFS - ok
21:54:14.0691 5460  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:54:14.0691 5460  clr_optimization_v2.0.50727_32 - ok
21:54:14.0769 5460  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:54:14.0769 5460  clr_optimization_v2.0.50727_64 - ok
21:54:14.0862 5460  [ E87213F37A13E2B54391E40934F071D0 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:54:14.0862 5460  clr_optimization_v4.0.30319_32 - ok
21:54:14.0909 5460  [ 4AEDAB50F83580D0B4D6CF78191F92AA ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:54:14.0909 5460  clr_optimization_v4.0.30319_64 - ok
21:54:14.0925 5460  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
21:54:14.0925 5460  CmBatt - ok
21:54:14.0972 5460  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
21:54:14.0972 5460  cmdide - ok
21:54:15.0034 5460  [ EBF28856F69CF094A902F884CF989706 ] CNG             C:\Windows\system32\Drivers\cng.sys
21:54:15.0034 5460  CNG - ok
21:54:15.0050 5460  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
21:54:15.0050 5460  Compbatt - ok
21:54:15.0096 5460  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
21:54:15.0096 5460  CompositeBus - ok
21:54:15.0112 5460  COMSysApp - ok
21:54:15.0128 5460  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
21:54:15.0128 5460  crcdisk - ok
21:54:15.0190 5460  [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:54:15.0206 5460  CryptSvc - ok
21:54:15.0268 5460  [ 7AF9DAC504FBD047CBC3E64AE52C92BF ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
21:54:15.0268 5460  dc3d - ok
21:54:15.0330 5460  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:54:15.0346 5460  DcomLaunch - ok
21:54:15.0393 5460  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
21:54:15.0393 5460  defragsvc - ok
21:54:15.0455 5460  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
21:54:15.0471 5460  DfsC - ok
21:54:15.0533 5460  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
21:54:15.0533 5460  Dhcp - ok
21:54:15.0564 5460  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
21:54:15.0564 5460  discache - ok
21:54:15.0596 5460  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
21:54:15.0611 5460  Disk - ok
21:54:15.0642 5460  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:54:15.0642 5460  Dnscache - ok
21:54:15.0689 5460  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
21:54:15.0689 5460  dot3svc - ok
21:54:15.0752 5460  [ B42ED0320C6E41102FDE0005154849BB ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
21:54:15.0752 5460  Dot4 - ok
21:54:15.0798 5460  [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print       C:\Windows\system32\drivers\Dot4Prt.sys
21:54:15.0798 5460  Dot4Print - ok
21:54:15.0845 5460  [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
21:54:15.0845 5460  dot4usb - ok
21:54:15.0876 5460  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
21:54:15.0892 5460  DPS - ok
21:54:15.0939 5460  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
21:54:15.0954 5460  drmkaud - ok
21:54:16.0001 5460  [ 88612F1CE3BF42256913BF6E61C70D52 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
21:54:16.0001 5460  DXGKrnl - ok
21:54:16.0048 5460  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
21:54:16.0048 5460  EapHost - ok
21:54:16.0126 5460  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
21:54:16.0188 5460  ebdrv - ok
21:54:16.0235 5460  [ 4D71227301DD8D09097B9E4CC6527E5A ] EFS             C:\Windows\System32\lsass.exe
21:54:16.0235 5460  EFS - ok
21:54:16.0329 5460  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
21:54:16.0344 5460  ehRecvr - ok
21:54:16.0407 5460  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
21:54:16.0407 5460  ehSched - ok
21:54:16.0454 5460  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
21:54:16.0454 5460  elxstor - ok
21:54:16.0500 5460  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
21:54:16.0500 5460  ErrDev - ok
21:54:16.0532 5460  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
21:54:16.0532 5460  EventSystem - ok
21:54:16.0578 5460  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
21:54:16.0578 5460  exfat - ok
21:54:16.0610 5460  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
21:54:16.0610 5460  fastfat - ok
21:54:16.0672 5460  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
21:54:16.0688 5460  Fax - ok
21:54:16.0719 5460  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
21:54:16.0719 5460  fdc - ok
21:54:16.0734 5460  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
21:54:16.0734 5460  fdPHost - ok
21:54:16.0781 5460  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:54:16.0781 5460  FDResPub - ok
21:54:16.0797 5460  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:54:16.0797 5460  FileInfo - ok
21:54:16.0812 5460  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
21:54:16.0812 5460  Filetrace - ok
21:54:16.0844 5460  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
21:54:16.0844 5460  flpydisk - ok
21:54:16.0906 5460  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:54:16.0906 5460  FltMgr - ok
21:54:16.0968 5460  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
21:54:16.0984 5460  FontCache - ok
21:54:17.0078 5460  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:54:17.0078 5460  FontCache3.0.0.0 - ok
21:54:17.0140 5460  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
21:54:17.0140 5460  FsDepends - ok
21:54:17.0171 5460  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:54:17.0171 5460  Fs_Rec - ok
21:54:17.0249 5460  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
21:54:17.0249 5460  fvevol - ok
21:54:17.0280 5460  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
21:54:17.0280 5460  gagp30kx - ok
21:54:17.0327 5460  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:54:17.0327 5460  GEARAspiWDM - ok
21:54:17.0390 5460  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
21:54:17.0390 5460  gpsvc - ok
21:54:17.0499 5460  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:54:17.0499 5460  gupdate - ok
21:54:17.0514 5460  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:54:17.0514 5460  gupdatem - ok
21:54:17.0530 5460  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
21:54:17.0530 5460  hcw85cir - ok
21:54:17.0577 5460  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:54:17.0592 5460  HdAudAddService - ok
21:54:17.0624 5460  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
21:54:17.0624 5460  HDAudBus - ok
21:54:17.0655 5460  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
21:54:17.0655 5460  HidBatt - ok
21:54:17.0670 5460  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
21:54:17.0670 5460  HidBth - ok
21:54:17.0670 5460  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
21:54:17.0686 5460  HidIr - ok
21:54:17.0717 5460  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
21:54:17.0717 5460  hidserv - ok
21:54:17.0780 5460  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
21:54:17.0780 5460  HidUsb - ok
21:54:17.0811 5460  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:54:17.0811 5460  hkmsvc - ok
21:54:17.0858 5460  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:54:17.0858 5460  HomeGroupListener - ok
21:54:17.0904 5460  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:54:17.0904 5460  HomeGroupProvider - ok
21:54:17.0967 5460  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
21:54:17.0967 5460  HpSAMD - ok
21:54:18.0029 5460  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:54:18.0045 5460  HTTP - ok
21:54:18.0092 5460  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
21:54:18.0092 5460  hwpolicy - ok
21:54:18.0138 5460  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
21:54:18.0138 5460  i8042prt - ok
21:54:18.0216 5460  [ F79525634B192F5A18DE503568F94EF3 ] IAANTMON        C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
21:54:18.0232 5460  IAANTMON - ok
21:54:18.0263 5460  [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
21:54:18.0263 5460  iaStor - ok
21:54:18.0310 5460  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
21:54:18.0310 5460  iaStorV - ok
21:54:18.0435 5460  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:54:18.0435 5460  IDriverT - ok
21:54:18.0482 5460  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:54:18.0497 5460  idsvc - ok
21:54:18.0528 5460  IEEtwCollectorService - ok
21:54:18.0575 5460  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
21:54:18.0575 5460  iirsp - ok
21:54:18.0622 5460  [ 344789398EC3EE5A4E00C52B31847946 ] IKEEXT          C:\Windows\System32\ikeext.dll
21:54:18.0638 5460  IKEEXT - ok
21:54:18.0747 5460  [ BFBABCB231628A4551DBB10D0EA25D62 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
21:54:18.0747 5460  IntcAzAudAddService - ok
21:54:18.0794 5460  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
21:54:18.0794 5460  intelide - ok
21:54:18.0825 5460  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
21:54:18.0825 5460  intelppm - ok
21:54:18.0872 5460  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
21:54:18.0872 5460  IPBusEnum - ok
21:54:18.0918 5460  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:54:18.0918 5460  IpFilterDriver - ok
21:54:19.0012 5460  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
21:54:19.0028 5460  iphlpsvc - ok
21:54:19.0059 5460  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
21:54:19.0059 5460  IPMIDRV - ok
21:54:19.0090 5460  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
21:54:19.0090 5460  IPNAT - ok
21:54:19.0152 5460  [ F7ED08D4BC89D7AC6135C1556A89157F ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
21:54:19.0152 5460  iPod Service - ok
21:54:19.0199 5460  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:54:19.0199 5460  IRENUM - ok
21:54:19.0230 5460  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:54:19.0230 5460  isapnp - ok
21:54:19.0262 5460  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
21:54:19.0277 5460  iScsiPrt - ok
21:54:19.0293 5460  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
21:54:19.0293 5460  kbdclass - ok
21:54:19.0324 5460  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
21:54:19.0340 5460  kbdhid - ok
21:54:19.0355 5460  [ 4D71227301DD8D09097B9E4CC6527E5A ] KeyIso          C:\Windows\system32\lsass.exe
21:54:19.0355 5460  KeyIso - ok
21:54:19.0402 5460  [ 8F489706472F7E9A06BAAA198703FA64 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:54:19.0402 5460  KSecDD - ok
21:54:19.0433 5460  [ 868A2CAAB12EFC7A021682BCA0EEC54C ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
21:54:19.0433 5460  KSecPkg - ok
21:54:19.0464 5460  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
21:54:19.0464 5460  ksthunk - ok
21:54:19.0527 5460  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
21:54:19.0527 5460  KtmRm - ok
21:54:19.0574 5460  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
21:54:19.0589 5460  LanmanServer - ok
21:54:19.0636 5460  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:54:19.0636 5460  LanmanWorkstation - ok
21:54:19.0714 5460  [ DFEFF67508D3A9AEB1A85D7B0F513B24 ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
21:54:19.0714 5460  LightScribeService - ok
21:54:19.0761 5460  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:54:19.0761 5460  lltdio - ok
21:54:19.0808 5460  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
21:54:19.0808 5460  lltdsvc - ok
21:54:19.0823 5460  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
21:54:19.0823 5460  lmhosts - ok
21:54:19.0870 5460  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
21:54:19.0870 5460  LSI_FC - ok
21:54:19.0886 5460  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
21:54:19.0886 5460  LSI_SAS - ok
21:54:19.0901 5460  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:54:19.0901 5460  LSI_SAS2 - ok
21:54:19.0917 5460  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:54:19.0917 5460  LSI_SCSI - ok
21:54:19.0964 5460  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
21:54:19.0964 5460  luafv - ok
21:54:19.0995 5460  [ 5C3FF68267A5D242EE79EE01B993D6CE ] LVUSBS64        C:\Windows\system32\DRIVERS\LVUSBS64.sys
21:54:19.0995 5460  LVUSBS64 - ok
21:54:20.0042 5460  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
21:54:20.0042 5460  Mcx2Svc - ok
21:54:20.0073 5460  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
21:54:20.0073 5460  megasas - ok
21:54:20.0088 5460  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
21:54:20.0088 5460  MegaSR - ok
21:54:20.0151 5460  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
21:54:20.0151 5460  MMCSS - ok
21:54:20.0166 5460  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
21:54:20.0166 5460  Modem - ok
21:54:20.0198 5460  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
21:54:20.0213 5460  monitor - ok
21:54:20.0260 5460  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
21:54:20.0260 5460  mouclass - ok
21:54:20.0260 5460  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
21:54:20.0260 5460  mouhid - ok
21:54:20.0322 5460  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
21:54:20.0322 5460  mountmgr - ok
21:54:20.0354 5460  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
21:54:20.0369 5460  mpio - ok
21:54:20.0400 5460  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:54:20.0400 5460  mpsdrv - ok
21:54:20.0478 5460  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:54:20.0494 5460  MpsSvc - ok
21:54:20.0556 5460  [ 1A4F75E63C9FB84B85DFFC6B63FD5404 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:54:20.0556 5460  MRxDAV - ok
21:54:20.0588 5460  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:54:20.0588 5460  mrxsmb - ok
21:54:20.0619 5460  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:54:20.0634 5460  mrxsmb10 - ok
21:54:20.0634 5460  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:54:20.0634 5460  mrxsmb20 - ok
21:54:20.0681 5460  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
21:54:20.0681 5460  msahci - ok
21:54:20.0712 5460  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
21:54:20.0712 5460  msdsm - ok
21:54:20.0744 5460  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
21:54:20.0744 5460  MSDTC - ok
21:54:20.0790 5460  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:54:20.0790 5460  Msfs - ok
21:54:20.0790 5460  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
21:54:20.0806 5460  mshidkmdf - ok
21:54:20.0822 5460  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:54:20.0822 5460  msisadrv - ok
21:54:20.0868 5460  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
21:54:20.0868 5460  MSiSCSI - ok
21:54:20.0868 5460  msiserver - ok
21:54:20.0900 5460  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
21:54:20.0900 5460  MSKSSRV - ok
21:54:20.0946 5460  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:54:20.0946 5460  MSPCLOCK - ok
21:54:20.0978 5460  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
21:54:20.0978 5460  MSPQM - ok
21:54:21.0024 5460  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
21:54:21.0024 5460  MsRPC - ok
21:54:21.0056 5460  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
21:54:21.0056 5460  mssmbios - ok
21:54:21.0071 5460  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
21:54:21.0071 5460  MSTEE - ok
21:54:21.0087 5460  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
21:54:21.0087 5460  MTConfig - ok
21:54:21.0118 5460  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
21:54:21.0118 5460  Mup - ok
21:54:21.0180 5460  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
21:54:21.0180 5460  napagent - ok
21:54:21.0258 5460  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
21:54:21.0258 5460  NativeWifiP - ok
21:54:21.0321 5460  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:54:21.0321 5460  NDIS - ok
21:54:21.0368 5460  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
21:54:21.0368 5460  NdisCap - ok
21:54:21.0399 5460  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:54:21.0399 5460  NdisTapi - ok
21:54:21.0461 5460  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
21:54:21.0461 5460  Ndisuio - ok
21:54:21.0492 5460  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
21:54:21.0508 5460  NdisWan - ok
21:54:21.0539 5460  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
21:54:21.0539 5460  NDProxy - ok
21:54:21.0586 5460  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
21:54:21.0586 5460  NetBIOS - ok
21:54:21.0633 5460  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
21:54:21.0633 5460  NetBT - ok
21:54:21.0648 5460  [ 4D71227301DD8D09097B9E4CC6527E5A ] Netlogon        C:\Windows\system32\lsass.exe
21:54:21.0648 5460  Netlogon - ok
21:54:21.0711 5460  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
21:54:21.0726 5460  Netman - ok
21:54:21.0789 5460  [ 21318671BCAD3ACF16638F98D4D00973 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:54:21.0789 5460  NetMsmqActivator - ok
21:54:21.0804 5460  [ 21318671BCAD3ACF16638F98D4D00973 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:54:21.0804 5460  NetPipeActivator - ok
21:54:21.0820 5460  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
21:54:21.0836 5460  netprofm - ok
21:54:21.0867 5460  [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:54:21.0867 5460  NetTcpActivator - ok
21:54:21.0867 5460  [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:54:21.0882 5460  NetTcpPortSharing - ok
21:54:21.0914 5460  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
21:54:21.0914 5460  nfrd960 - ok
21:54:21.0976 5460  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:54:21.0976 5460  NlaSvc - ok
21:54:22.0007 5460  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:54:22.0007 5460  Npfs - ok
21:54:22.0054 5460  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
21:54:22.0054 5460  nsi - ok
21:54:22.0070 5460  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:54:22.0070 5460  nsiproxy - ok
21:54:22.0148 5460  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:54:22.0163 5460  Ntfs - ok
21:54:22.0210 5460  [ 317020D31F1696334679B9D0416EB62E ] NuidFltr        C:\Windows\system32\DRIVERS\NuidFltr.sys
21:54:22.0210 5460  NuidFltr - ok
21:54:22.0226 5460  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
21:54:22.0241 5460  Null - ok
21:54:22.0272 5460  [ 554964B900AE2954B8B589B6287034AC ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
21:54:22.0272 5460  NVHDA - ok
21:54:22.0538 5460  [ E71E299FF15390E585BACF2C18F55078 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:54:22.0600 5460  nvlddmkm - ok
21:54:22.0662 5460  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:54:22.0662 5460  nvraid - ok
21:54:22.0694 5460  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:54:22.0709 5460  nvstor - ok
21:54:22.0772 5460  [ 415695F5A54E91E869EEBFEA261361A6 ] nvsvc           C:\Windows\system32\nvvsvc.exe
21:54:22.0787 5460  nvsvc - ok
21:54:22.0928 5460  [ AA130938A27BB80A8B6438EF83232275 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:54:22.0928 5460  nvUpdatusService - ok
21:54:22.0974 5460  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:54:22.0974 5460  nv_agp - ok
21:54:23.0068 5460  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:54:23.0068 5460  odserv - ok
21:54:23.0130 5460  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
21:54:23.0130 5460  ohci1394 - ok
21:54:23.0177 5460  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:54:23.0177 5460  ose - ok
21:54:23.0224 5460  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
21:54:23.0224 5460  p2pimsvc - ok
21:54:23.0302 5460  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
21:54:23.0302 5460  p2psvc - ok
21:54:23.0349 5460  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
21:54:23.0364 5460  Parport - ok
21:54:23.0396 5460  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
21:54:23.0396 5460  partmgr - ok
21:54:23.0411 5460  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:54:23.0411 5460  PcaSvc - ok
21:54:23.0427 5460  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
21:54:23.0427 5460  pci - ok
21:54:23.0474 5460  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
21:54:23.0474 5460  pciide - ok
21:54:23.0505 5460  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
21:54:23.0505 5460  pcmcia - ok
21:54:23.0520 5460  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
21:54:23.0520 5460  pcw - ok
21:54:23.0536 5460  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:54:23.0552 5460  PEAUTH - ok
21:54:23.0661 5460  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
21:54:23.0661 5460  PerfHost - ok
21:54:23.0754 5460  [ 087A343DFC337F37723DD7912DE6B6CD ] PID_PEPI        C:\Windows\system32\DRIVERS\LV302V64.SYS
21:54:23.0801 5460  PID_PEPI - ok
21:54:23.0879 5460  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
21:54:23.0895 5460  pla - ok
21:54:23.0942 5460  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:54:23.0942 5460  PlugPlay - ok
21:54:23.0957 5460  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
21:54:23.0957 5460  PNRPAutoReg - ok
21:54:23.0973 5460  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
21:54:23.0973 5460  PNRPsvc - ok
21:54:24.0004 5460  [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64         C:\Windows\system32\DRIVERS\point64.sys
21:54:24.0004 5460  Point64 - ok
21:54:24.0051 5460  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
21:54:24.0066 5460  PolicyAgent - ok
21:54:24.0098 5460  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
21:54:24.0113 5460  Power - ok
21:54:24.0176 5460  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
21:54:24.0176 5460  PptpMiniport - ok
21:54:24.0191 5460  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
21:54:24.0191 5460  Processor - ok
21:54:24.0238 5460  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
21:54:24.0254 5460  ProfSvc - ok
21:54:24.0269 5460  [ 4D71227301DD8D09097B9E4CC6527E5A ] ProtectedStorage C:\Windows\system32\lsass.exe
21:54:24.0269 5460  ProtectedStorage - ok
21:54:24.0332 5460  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
21:54:24.0347 5460  Psched - ok
21:54:24.0425 5460  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
21:54:24.0441 5460  ql2300 - ok
21:54:24.0472 5460  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
21:54:24.0472 5460  ql40xx - ok
21:54:24.0519 5460  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
21:54:24.0519 5460  QWAVE - ok
21:54:24.0534 5460  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:54:24.0534 5460  QWAVEdrv - ok
21:54:24.0550 5460  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:54:24.0550 5460  RasAcd - ok
21:54:24.0612 5460  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
21:54:24.0612 5460  RasAgileVpn - ok
21:54:24.0628 5460  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
21:54:24.0628 5460  RasAuto - ok
21:54:24.0675 5460  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
21:54:24.0675 5460  Rasl2tp - ok
21:54:24.0706 5460  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
21:54:24.0722 5460  RasMan - ok
21:54:24.0737 5460  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:54:24.0737 5460  RasPppoe - ok
21:54:24.0768 5460  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
21:54:24.0768 5460  RasSstp - ok
21:54:24.0784 5460  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
21:54:24.0784 5460  rdbss - ok
21:54:24.0800 5460  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
21:54:24.0800 5460  rdpbus - ok
21:54:24.0815 5460  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
21:54:24.0815 5460  RDPCDD - ok
21:54:24.0831 5460  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
21:54:24.0846 5460  RDPENCDD - ok
21:54:24.0862 5460  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
21:54:24.0862 5460  RDPREFMP - ok
21:54:24.0940 5460  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
21:54:24.0940 5460  RdpVideoMiniport - ok
21:54:24.0987 5460  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
21:54:24.0987 5460  RDPWD - ok
21:54:25.0034 5460  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
21:54:25.0034 5460  rdyboost - ok
21:54:25.0112 5460  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:54:25.0112 5460  RemoteAccess - ok
21:54:25.0112 5460  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:54:25.0127 5460  RemoteRegistry - ok
21:54:25.0143 5460  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
21:54:25.0158 5460  RpcEptMapper - ok
21:54:25.0190 5460  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
21:54:25.0190 5460  RpcLocator - ok
21:54:25.0236 5460  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
21:54:25.0236 5460  RpcSs - ok
21:54:25.0268 5460  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:54:25.0268 5460  rspndr - ok
21:54:25.0314 5460  [ 3B01789EE4EAEE97F5EB46B711387D5E ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
21:54:25.0314 5460  RTL8167 - ok
21:54:25.0361 5460  [ D53C84EC99AB4D78A90001E5CE5386EC ] RTL8169         C:\Windows\system32\DRIVERS\Rtlh64.sys
21:54:25.0361 5460  RTL8169 - ok
21:54:25.0377 5460  [ 4D71227301DD8D09097B9E4CC6527E5A ] SamSs           C:\Windows\system32\lsass.exe
21:54:25.0377 5460  SamSs - ok
21:54:25.0408 5460  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:54:25.0408 5460  sbp2port - ok
21:54:25.0424 5460  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:54:25.0424 5460  SCardSvr - ok
21:54:25.0470 5460  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
21:54:25.0470 5460  scfilter - ok
21:54:25.0533 5460  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
21:54:25.0548 5460  Schedule - ok
21:54:25.0580 5460  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
21:54:25.0580 5460  SCPolicySvc - ok
21:54:25.0626 5460  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
21:54:25.0642 5460  SDRSVC - ok
21:54:25.0658 5460  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:54:25.0658 5460  secdrv - ok
21:54:25.0689 5460  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
21:54:25.0689 5460  seclogon - ok
21:54:25.0704 5460  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
21:54:25.0704 5460  SENS - ok
21:54:25.0704 5460  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
21:54:25.0720 5460  SensrSvc - ok
21:54:25.0767 5460  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
21:54:25.0767 5460  Serenum - ok
21:54:25.0814 5460  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
21:54:25.0814 5460  Serial - ok
21:54:25.0845 5460  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
21:54:25.0845 5460  sermouse - ok
21:54:25.0892 5460  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
21:54:25.0907 5460  SessionEnv - ok
21:54:25.0938 5460  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
21:54:25.0938 5460  sffdisk - ok
21:54:25.0970 5460  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
21:54:25.0970 5460  sffp_mmc - ok
21:54:26.0001 5460  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
21:54:26.0001 5460  sffp_sd - ok
21:54:26.0016 5460  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
21:54:26.0016 5460  sfloppy - ok
21:54:26.0110 5460  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:54:26.0110 5460  SharedAccess - ok
21:54:26.0172 5460  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:54:26.0188 5460  ShellHWDetection - ok
21:54:26.0219 5460  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:54:26.0219 5460  SiSRaid2 - ok
21:54:26.0235 5460  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
21:54:26.0235 5460  SiSRaid4 - ok
21:54:26.0250 5460  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
21:54:26.0266 5460  Smb - ok
21:54:26.0297 5460  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:54:26.0297 5460  SNMPTRAP - ok
21:54:26.0328 5460  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
21:54:26.0328 5460  spldr - ok
21:54:26.0375 5460  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
21:54:26.0391 5460  Spooler - ok
21:54:26.0484 5460  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
21:54:26.0562 5460  sppsvc - ok
21:54:26.0594 5460  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
21:54:26.0594 5460  sppuinotify - ok
21:54:26.0640 5460  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
21:54:26.0640 5460  srv - ok
21:54:26.0703 5460  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:54:26.0703 5460  srv2 - ok
21:54:26.0718 5460  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:54:26.0718 5460  srvnet - ok
21:54:26.0750 5460  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
21:54:26.0750 5460  SSDPSRV - ok
21:54:26.0796 5460  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
21:54:26.0796 5460  SstpSvc - ok
21:54:26.0921 5460  [ A9D26626BEADF5A0641BF6B5095EF309 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:54:26.0921 5460  Stereo Service - ok
21:54:26.0937 5460  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
21:54:26.0937 5460  stexstor - ok
21:54:27.0015 5460  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
21:54:27.0030 5460  stisvc - ok
21:54:27.0046 5460  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
21:54:27.0046 5460  swenum - ok
21:54:27.0171 5460  [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
21:54:27.0171 5460  SwitchBoard - ok
21:54:27.0218 5460  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
21:54:27.0233 5460  swprv - ok
21:54:27.0296 5460  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
21:54:27.0327 5460  SysMain - ok
21:54:27.0374 5460  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:54:27.0389 5460  TabletInputService - ok
21:54:27.0405 5460  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
21:54:27.0405 5460  TapiSrv - ok
21:54:27.0420 5460  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
21:54:27.0420 5460  TBS - ok
21:54:27.0514 5460  [ 40AF23633D197905F03AB5628C558C51 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
21:54:27.0530 5460  Tcpip - ok
21:54:27.0561 5460  [ 40AF23633D197905F03AB5628C558C51 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
21:54:27.0576 5460  TCPIP6 - ok
21:54:27.0623 5460  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:54:27.0623 5460  tcpipreg - ok
21:54:27.0654 5460  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
21:54:27.0670 5460  TDPIPE - ok
21:54:27.0686 5460  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
21:54:27.0686 5460  TDTCP - ok
21:54:27.0732 5460  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
21:54:27.0732 5460  tdx - ok
21:54:27.0888 5460  [ B1B546EA1D908A8F90EBEB02E5878AA0 ] TeamViewer7     C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
21:54:27.0951 5460  TeamViewer7 - ok
21:54:27.0982 5460  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
21:54:27.0982 5460  TermDD - ok
21:54:28.0029 5460  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
21:54:28.0044 5460  TermService - ok
21:54:28.0060 5460  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
21:54:28.0060 5460  Themes - ok
21:54:28.0107 5460  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
21:54:28.0107 5460  THREADORDER - ok
21:54:28.0107 5460  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
21:54:28.0122 5460  TrkWks - ok
21:54:28.0185 5460  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:54:28.0200 5460  TrustedInstaller - ok
21:54:28.0232 5460  [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
21:54:28.0232 5460  tssecsrv - ok
21:54:28.0294 5460  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
21:54:28.0294 5460  TsUsbFlt - ok
21:54:28.0356 5460  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:54:28.0356 5460  tunnel - ok
21:54:28.0388 5460  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
21:54:28.0388 5460  uagp35 - ok
21:54:28.0434 5460  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:54:28.0434 5460  udfs - ok
21:54:28.0450 5460  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
21:54:28.0466 5460  UI0Detect - ok
21:54:28.0481 5460  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:54:28.0481 5460  uliagpkx - ok
21:54:28.0512 5460  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
21:54:28.0512 5460  umbus - ok
21:54:28.0528 5460  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
21:54:28.0528 5460  UmPass - ok
21:54:28.0544 5460  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
21:54:28.0559 5460  upnphost - ok
21:54:28.0606 5460  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
21:54:28.0622 5460  USBAAPL64 - ok
21:54:28.0684 5460  [ B0435098C81D04CAFFF80DDB746CD3A2 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
21:54:28.0684 5460  usbaudio - ok
21:54:28.0746 5460  [ DCA68B0943D6FA415F0C56C92158A83A ] usbccgp         C:\Windows\system32\drivers\usbccgp.sys
21:54:28.0746 5460  usbccgp - ok
21:54:28.0793 5460  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
21:54:28.0793 5460  usbcir - ok
21:54:28.0840 5460  [ 18A85013A3E0F7E1755365D287443965 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
21:54:28.0840 5460  usbehci - ok
21:54:28.0871 5460  [ 8D1196CFBB223621F2C67D45710F25BA ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
21:54:28.0871 5460  usbhub - ok
21:54:28.0918 5460  [ 765A92D428A8DB88B960DA5A8D6089DC ] usbohci         C:\Windows\system32\drivers\usbohci.sys
21:54:28.0918 5460  usbohci - ok
21:54:28.0949 5460  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
21:54:28.0949 5460  usbprint - ok
21:54:28.0996 5460  [ 9661DA76B4531B2DA272ECCE25A8AF24 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
21:54:28.0996 5460  usbscan - ok
21:54:29.0012 5460  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:54:29.0012 5460  USBSTOR - ok
21:54:29.0027 5460  [ DD253AFC3BC6CBA412342DE60C3647F3 ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
21:54:29.0043 5460  usbuhci - ok
21:54:29.0058 5460  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
21:54:29.0058 5460  UxSms - ok
21:54:29.0074 5460  [ 4D71227301DD8D09097B9E4CC6527E5A ] VaultSvc        C:\Windows\system32\lsass.exe
21:54:29.0090 5460  VaultSvc - ok
21:54:29.0105 5460  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
21:54:29.0105 5460  vdrvroot - ok
21:54:29.0168 5460  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
21:54:29.0183 5460  vds - ok
21:54:29.0199 5460  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
21:54:29.0199 5460  vga - ok
21:54:29.0230 5460  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
21:54:29.0230 5460  VgaSave - ok
21:54:29.0261 5460  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
21:54:29.0277 5460  vhdmp - ok
21:54:29.0308 5460  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
21:54:29.0308 5460  viaide - ok
21:54:29.0324 5460  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:54:29.0339 5460  volmgr - ok
21:54:29.0370 5460  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
21:54:29.0370 5460  volmgrx - ok
21:54:29.0386 5460  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
21:54:29.0402 5460  volsnap - ok
21:54:29.0417 5460  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
21:54:29.0417 5460  vsmraid - ok
21:54:29.0495 5460  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
21:54:29.0526 5460  VSS - ok
21:54:29.0542 5460  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
21:54:29.0542 5460  vwifibus - ok
21:54:29.0558 5460  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
21:54:29.0558 5460  vwififlt - ok
21:54:29.0589 5460  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
21:54:29.0589 5460  W32Time - ok
21:54:29.0604 5460  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
21:54:29.0620 5460  WacomPen - ok
21:54:29.0651 5460  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
21:54:29.0651 5460  WANARP - ok
21:54:29.0667 5460  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
21:54:29.0667 5460  Wanarpv6 - ok
21:54:29.0760 5460  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
21:54:29.0776 5460  WatAdminSvc - ok
21:54:29.0838 5460  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
21:54:29.0854 5460  wbengine - ok
21:54:29.0901 5460  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
21:54:29.0901 5460  WbioSrvc - ok
21:54:29.0948 5460  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
21:54:29.0963 5460  wcncsvc - ok
21:54:29.0963 5460  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:54:29.0963 5460  WcsPlugInService - ok
21:54:29.0994 5460  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
21:54:29.0994 5460  Wd - ok
21:54:30.0041 5460  [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:54:30.0057 5460  Wdf01000 - ok
21:54:30.0072 5460  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:54:30.0088 5460  WdiServiceHost - ok
21:54:30.0088 5460  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
21:54:30.0088 5460  WdiSystemHost - ok
21:54:30.0119 5460  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D ] WebClient       C:\Windows\System32\webclnt.dll
21:54:30.0119 5460  WebClient - ok
21:54:30.0135 5460  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:54:30.0150 5460  Wecsvc - ok
21:54:30.0150 5460  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
21:54:30.0166 5460  wercplsupport - ok
21:54:30.0166 5460  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
21:54:30.0166 5460  WerSvc - ok
21:54:30.0182 5460  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
21:54:30.0182 5460  WfpLwf - ok
21:54:30.0197 5460  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
21:54:30.0197 5460  WIMMount - ok
21:54:30.0260 5460  WinDefend - ok
21:54:30.0291 5460  WinHttpAutoProxySvc - ok
21:54:30.0338 5460  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
21:54:30.0338 5460  Winmgmt - ok
21:54:30.0431 5460  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
21:54:30.0478 5460  WinRM - ok
21:54:30.0525 5460  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
21:54:30.0540 5460  WinUsb - ok
21:54:30.0556 5460  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
21:54:30.0572 5460  Wlansvc - ok
21:54:30.0603 5460  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
21:54:30.0603 5460  WmiAcpi - ok
21:54:30.0618 5460  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:54:30.0634 5460  wmiApSrv - ok
21:54:30.0665 5460  WMPNetworkSvc - ok
21:54:30.0681 5460  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:54:30.0681 5460  WPCSvc - ok
21:54:30.0728 5460  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:54:30.0728 5460  WPDBusEnum - ok
21:54:30.0774 5460  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
21:54:30.0774 5460  ws2ifsl - ok
21:54:30.0837 5460  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
21:54:30.0837 5460  wscsvc - ok
21:54:30.0852 5460  WSearch - ok
21:54:30.0930 5460  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
21:54:30.0993 5460  wuauserv - ok
21:54:31.0040 5460  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
21:54:31.0040 5460  WudfPf - ok
21:54:31.0071 5460  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
21:54:31.0071 5460  WUDFRd - ok
21:54:31.0102 5460  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
21:54:31.0118 5460  wudfsvc - ok
21:54:31.0133 5460  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
21:54:31.0149 5460  WwanSvc - ok
21:54:31.0164 5460  ================ Scan global ===============================
21:54:31.0196 5460  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:54:31.0258 5460  [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
21:54:31.0258 5460  [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
21:54:31.0274 5460  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:54:31.0289 5460  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:54:31.0305 5460  [Global] - ok
21:54:31.0305 5460  ================ Scan MBR ==================================
21:54:31.0320 5460  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:54:31.0523 5460  \Device\Harddisk0\DR0 - ok
21:54:31.0523 5460  ================ Scan VBR ==================================
21:54:31.0523 5460  [ E37E2D629A64938CC9C7F79391EB8C20 ] \Device\Harddisk0\DR0\Partition1
21:54:31.0523 5460  \Device\Harddisk0\DR0\Partition1 - ok
21:54:31.0570 5460  [ DCBDBE4EAAB2D16580D08571EC4262DB ] \Device\Harddisk0\DR0\Partition2
21:54:31.0586 5460  \Device\Harddisk0\DR0\Partition2 - ok
21:54:31.0586 5460  ============================================================
21:54:31.0586 5460  Scan finished
21:54:31.0586 5460  ============================================================
21:54:31.0586 5468  Detected object count: 0
21:54:31.0586 5468  Actual detected object count: 0

 

 

# AdwCleaner v3.018 - Report created 31/01/2014 at 21:58:32
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : chuck - CHUCK-PC
# Running from : C:\Users\chuck\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428

-\\ Mozilla Firefox v3.6.20 (en-US)

[ File : C:\Users\chuck\AppData\Roaming\Mozilla\Firefox\Profiles\2dr7ufkd.default\prefs.js ]

[ File : C:\Users\Clayton\AppData\Roaming\Mozilla\Firefox\Profiles\wiihck6v.default\prefs.js ]

-\\ Google Chrome v32.0.1700.102

[ File : C:\Users\chuck\AppData\Local\Google\Chrome\User Data\Default\preferences ]

[ File : C:\Users\Jada\AppData\Local\Google\Chrome\User Data\Default\preferences ]

[ File : C:\Users\Clayton\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [31658 octets] - [16/12/2013 20:42:21]
AdwCleaner[R1].txt - [1301 octets] - [31/01/2014 17:41:16]
AdwCleaner[R2].txt - [1361 octets] - [31/01/2014 17:42:27]
AdwCleaner[R3].txt - [1481 octets] - [31/01/2014 21:57:38]
AdwCleaner[S0].txt - [32253 octets] - [16/12/2013 20:47:58]
AdwCleaner[S1].txt - [1422 octets] - [31/01/2014 17:43:12]
AdwCleaner[S2].txt - [1402 octets] - [31/01/2014 21:58:32]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1462 octets] ##########

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 7 Home Premium x64
Ran by chuck on Fri 01/31/2014 at 22:03:37.49
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

 

~~~ Registry Keys

 

~~~ Files

 

~~~ Folders

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Fri 01/31/2014 at 22:11:42.97
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

 

C:\Users\All Users\7s97Un37\serv.bat BAT/KillAV.NDV trojan 
C:\Users\All Users\Microsoft\Windows\DRM\21CB.tmp.dat a variant of Win32/Kryptik.AVCB trojan 
C:\Users\All Users\Microsoft\Windows\DRM\FE90.tmp.dat a variant of Win32/Kryptik.AWYD trojan 
C:\ProgramData\7s97Un37\serv.bat BAT/KillAV.NDV trojan cleaned by deleting - quarantined
C:\ProgramData\Microsoft\Windows\DRM\21CB.tmp.dat a variant of Win32/Kryptik.AVCB trojan cleaned by deleting - quarantined
C:\ProgramData\Microsoft\Windows\DRM\FE90.tmp.dat a variant of Win32/Kryptik.AWYD trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\chuck\AppData\Local\Diagnostics\Google\hnhdmlkbbj.dll.vir Win32/TrojanDownloader.Tracur.V trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\chuck\AppData\Roaming\Hazaisbu\muniece.exe.vir a variant of Win32/Kryptik.BTXF trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\21.10.2012_16.17.04\mbr0000\tdlfs0000\tsk0000.dta.vir a variant of Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\21.10.2012_16.17.04\mbr0000\tdlfs0000\tsk0001.dta.vir Win64/Olmarik.AM trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\21.10.2012_16.17.04\mbr0000\tdlfs0000\tsk0003.dta.vir Win64/Olmarik.AN trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\21.10.2012_16.17.04\mbr0000\tdlfs0000\tsk0007.dta.vir Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\21.10.2012_16.17.04\mbr0000\tdlfs0000\tsk0008.dta.vir Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\21.10.2012_16.17.04\tdlfs0000\tsk0000.dta.vir a variant of Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\21.10.2012_16.17.04\tdlfs0000\tsk0001.dta.vir Win64/Olmarik.AM trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\21.10.2012_16.17.04\tdlfs0000\tsk0003.dta.vir Win64/Olmarik.AN trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\21.10.2012_16.17.04\tdlfs0000\tsk0007.dta.vir Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\21.10.2012_16.17.04\tdlfs0000\tsk0008.dta.vir Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\Users\chuck\AppData\Local\Google\Chrome\User Data\Default\mehjnhbelbcnbnjijjaoagfcnjdaidpa\5.0.7\background.js Win32/Boaxxe.BE trojan cleaned by deleting - quarantined
C:\Users\chuck\AppData\Local\YpPack\nPadobj16.dll a variant of Win32/Sefnit.CW trojan cleaned by deleting (after the next restart) - quarantined
C:\Users\chuck\AppData\Roaming\Mozilla\Firefox\Profiles\2dr7ufkd.default\extensions\{14D779C4-2DB1-981D-990E-0652D93083F0}\components\MediaFoundationDShow.js Win32/Boaxxe.BE trojan cleaned by deleting - quarantined
C:\Users\chuck\Desktop\ccsetup404.exe Win32/Bundled.Toolbar.Google.D application cleaned by deleting - quarantined
C:\Users\Jada\AppData\Local\Apple Computer\Adobe\cgvrj.dll.vir Win32/TrojanDownloader.Tracur.V trojan cleaned by deleting - quarantined
C:\Users\Jada\AppData\Local\Google\Chrome\User Data\Default\Default\aagdgddcdhdggcgfdbgfgddbdaddgedh\background.js Win32/TrojanDownloader.Tracur.V trojan cleaned by deleting - quarantined
C:\Users\Jada\AppData\Local\Google\Chrome\User Data\Default\Default\aagdgddcdhdggcgfdbgfgddbdaddgedh\ContentScript.js Win32/TrojanDownloader.Tracur.AD trojan cleaned by deleting - quarantined
C:\Users\Jada\AppData\Local\Google\Chrome\User Data\Default\Users\clngodeedjmmeojddiejecaimcnkcmem\background.js Win32/TrojanDownloader.Tracur.V trojan cleaned by deleting - quarantined
C:\Users\Jada\AppData\Local\Google\Chrome\User Data\Default\Users\clngodeedjmmeojddiejecaimcnkcmem\cs.js Win32/TrojanDownloader.Tracur.V trojan cleaned by deleting - quarantined
C:\Users\Jada\AppData\Local\Zcqimedia\rw32core.dll Win32/Boaxxe.G trojan cleaned by deleting - quarantined
Operating memory a variant of Win32/Sefnit.CW trojan contained infected files
 

 

 



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:46 PM

Posted 01 February 2014 - 05:29 PM

Hello again
Two things .. we would like to get a sample of the " hazaisbu " malware file in  C:\users\name\app data\roaming\hazaisbu

 

Please click here to send it

http://www.bleepingcomputer.com/submit-malware.php

 

Link to topic where this file was requested:  is this

http://www.bleepingcomputer.com/forums/t/522792/munieceexe-avast-says-virus-but-doesnt-get-rid-of-it/#entry3276286

 

 

How is it running now?


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 ktworek

ktworek
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:05:46 PM

Posted 01 February 2014 - 05:35 PM

Seems to be running ok right now.  I haven't been on it very much since all the programs ran. Thanks for your help.



#8 ktworek

ktworek
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:05:46 PM

Posted 01 February 2014 - 05:37 PM

Also the hazaisbu folder is not empty. I will check it each day to see if the .exe file reappears and then submit it.



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:46 PM

Posted 01 February 2014 - 05:50 PM

Ok, we would like it if you see it as it is new and we can analyze it.

Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.
You're welcome!
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users