• Registrarse
  • Iniciar sesión


  • Resultados 1 al 10 de 10

    Avira desactivó la Realtime Protection y no puedo volver a habilitarla

    Resumen del tema: Avira desactivó la Realtime Protection y no puedo volver a habilitarla - Hola Forospyware, nuevamente recurro a ustedes para tratar de buscarle la solución a un problema en mi pc, y en este caso el problema es bastante importante ya que refiere al antivirus que tengo instalado ...

      
    1. #1
      Usuario Avatar de GuST7
      Registrado
      ene 2009
      Ubicación
      Argentina
      Mensajes
      16

      Avira desactivó la Realtime Protection y no puedo volver a habilitarla

      Hola Forospyware, nuevamente recurro a ustedes para tratar de buscarle la solución a un problema en mi pc, y en este caso el problema es bastante importante ya que refiere al antivirus que tengo instalado en mi sistema.

      Tal como indica el titulo, la Realtime Protection de Avira se me desactivó (en la barra de inicio me figura el icono del paraguas cerrado), y cuando quiero activarlo, abro la ventana principal de Avira y me encuentro con el mensaje en la parte superior que dice "Your computer is not secure", "A service is not working correctly". Hay un botón de "Fix problem" al lado, pero no ha dado efecto, la Realtime Protection no puede activarse nuevamente.

      Estuve buscando en los procesos activos de windows y entre ellos me encuentro con uno de nombre "vikyrefwaqis.exe", bastante sospechoso, que coincide con un .exe que tengo alojado en mi carpeta de usuario (tengo W7 Professional x64), el cual no puedo borrar.

      Por favor, solicito asistencia con este problema ya que es bastante preocupante que el antivirus no pueda ejecutar su protección, sabiendo que puede ser peligroso para que otros potenciales virus o malwares ingresen al sistema.

      Desde ya, muchas gracias.

    2. #2
      Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.539

      Re: Avira desactivó la Realtime Protection y no puedo volver a habilitarla

      Hola GuST7 un gusto ayudarte:


      Descarga TDSSKiller.zip a tu escritorio.
      Desconecta tu ordenador de Internet (Desconecta el cable).
      • Descomprime el archivo tdsskiller.zip
      • Ejecuta el archivo TDSSKiller.exe Si usas Vista o 7 presiona clic derecho ejecutar como administrador.
      • Presiona clic sobre
      • Marca también las casillas:

      • Presiona clic sobre el botón

        .
      • TDSSKiller comenzara a analizar el equipo.
      • Si el equipo no está infectado:
      • Mostrara
      • No threats found.
      • Presiona clic sobre el botón "Close"
      • Si el equipo está infectado:
      • Mostrara:
      • Threats detected.
      • Select action for found objects:

      • Malware object, high risk. La acción predeterminada es "Cure" o "Delete".
      • Suspicious object, medium risk. Usa siempre la opción "Skip"
      • El programa selecciona de forma automática la acción a tomar.
      • Presiona clic sobre el botón "Continue"
      • Para desinfectar correctamente el Sistema, puede solicitarle reiniciar el equipo.
      • Presiona clic sobre el botón

      • Abre el reporte de TDSSKiller, ubicado en C:\TDSSKiller.x.xx.x_xx.xx.xxxx_xx.xx.xx_log.txt, donde "x.xx.x_xx.xx.xxxx_xx.xx.xx" son versión, fecha y hora.
      • Copia y pega su contenido en tu próxima respuesta.
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de GuST7
      Registrado
      ene 2009
      Ubicación
      Argentina
      Mensajes
      16

      Re: Avira desactivó la Realtime Protection y no puedo volver a habilitarla

      Hola Superlucas, muchas gracias por tu respuesta. Seguí los pasos que me indicaste, y te adjunto a continuación el log de TDSSKiller.

      Si te sirve como aclaración, cuando lo abrí me apareció un cartel del programa diciendo "Can't load driver". ¿Es normal esto? De todas formas, me dejo utilizar el programa y hacer el escaneo.

      Adjunto el log en varias respuestas porque es bastante largo.

      20:25:50.0596 5104 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
      20:25:50.0604 5104 ============================================================
      20:25:50.0604 5104 Current date / time: 2012/08/08 20:25:50.0604
      20:25:50.0604 5104 SystemInfo:
      20:25:50.0604 5104
      20:25:50.0604 5104 OS Version: 6.1.7601 ServicePack: 1.0
      20:25:50.0604 5104 Product type: Workstation
      20:25:50.0604 5104 ComputerName: GUSTAVO
      20:25:50.0604 5104 UserName: Administrador
      20:25:50.0604 5104 Windows directory: C:\Windows
      20:25:50.0604 5104 System windows directory: C:\Windows
      20:25:50.0604 5104 Running under WOW64
      20:25:50.0604 5104 Processor architecture: Intel x64
      20:25:50.0604 5104 Number of processors: 2
      20:25:50.0604 5104 Page size: 0x1000
      20:25:50.0604 5104 Boot type: Normal boot
      20:25:50.0604 5104 ============================================================
      20:26:31.0842 5104 !crdlk
      20:26:31.0845 5104 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0x7E2CB, SectorsPerTrack: 0xE, TracksPerCylinder: 0x87, Type 'A'
      20:26:31.0858 5104 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'A'
      20:26:31.0866 5104 ============================================================
      20:26:31.0866 5104 \Device\Harddisk0\DR0:
      20:26:31.0866 5104 MBR partitions:
      20:26:31.0866 5104 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
      20:26:31.0866 5104 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
      20:26:31.0866 5104 \Device\Harddisk1\DR1:
      20:26:31.0866 5104 MBR partitions:
      20:26:31.0866 5104 ============================================================
      20:26:31.0880 5104 C: <-> \Device\Harddisk0\DR0\Partition1
      20:26:31.0880 5104 ============================================================
      20:26:31.0880 5104 Initialize success
      20:26:31.0880 5104 ============================================================
      20:26:53.0291 4908 ============================================================
      20:26:53.0291 4908 Scan started
      20:26:53.0291 4908 Mode: Manual; SigCheck; TDLFS;
      20:26:53.0291 4908 ============================================================
      20:26:54.0298 4908 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
      20:26:54.0333 4908 !SASCORE - ok
      20:26:54.0497 4908 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
      20:26:54.0555 4908 1394ohci - ok
      20:26:54.0559 4908 Suspicious service (NoAccess): 41e20f329c42e5f1
      20:26:54.0600 4908 41e20f329c42e5f1 (83527bc288885bba3e8afce5fc0cc7ee) C:\Windows\System32\Drivers\41e20f329c42e5f1.sys
      20:26:54.0600 4908 Suspicious file (NoAccess): C:\Windows\System32\Drivers\41e20f329c42e5f1.sys. md5: 83527bc288885bba3e8afce5fc0cc7ee
      20:26:54.0603 4908 41e20f329c42e5f1 ( LockedService.Multi.Generic ) - warning
      20:26:54.0603 4908 41e20f329c42e5f1 - detected LockedService.Multi.Generic (1)
      20:26:54.0655 4908 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
      20:26:54.0669 4908 ACPI - ok
      20:26:54.0690 4908 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
      20:26:54.0738 4908 AcpiPmi - ok
      20:26:54.0781 4908 adfs (2f0683fd2df1d92e891caca14b45a8c1) C:\Windows\system32\drivers\adfs.sys
      20:26:54.0799 4908 adfs - ok
      20:26:54.0883 4908 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      20:26:54.0891 4908 AdobeARMservice - ok
      20:26:54.0997 4908 AdobeFlashPlayerUpdateSvc (6c40d5ed8951ab7b90d08af655224ee4) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      20:26:55.0016 4908 AdobeFlashPlayerUpdateSvc - ok
      20:26:55.0087 4908 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
      20:26:55.0113 4908 adp94xx - ok
      20:26:55.0158 4908 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
      20:26:55.0178 4908 adpahci - ok
      20:26:55.0203 4908 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
      20:26:55.0225 4908 adpu320 - ok
      20:26:55.0263 4908 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
      20:26:55.0368 4908 AeLookupSvc - ok
      20:26:55.0426 4908 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
      20:26:55.0461 4908 AFD - ok
      20:26:55.0510 4908 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
      20:26:55.0520 4908 agp440 - ok
      20:26:55.0548 4908 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
      20:26:55.0573 4908 ALG - ok
      20:26:55.0590 4908 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
      20:26:55.0600 4908 aliide - ok
      20:26:55.0639 4908 AMD External Events Utility (e20dddfbd0dbe7d8ead4d7a51d654367) C:\Windows\system32\atiesrxx.exe
      20:26:55.0666 4908 AMD External Events Utility - ok
      20:26:55.0687 4908 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
      20:26:55.0696 4908 amdide - ok
      20:26:55.0732 4908 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
      20:26:55.0765 4908 AmdK8 - ok
      20:26:56.0226 4908 amdkmdag (4284fb1240537a33e6ec417efd87d40f) C:\Windows\system32\DRIVERS\atikmdag.sys
      20:26:56.0343 4908 amdkmdag - ok
      20:26:56.0449 4908 amdkmdap (6c25c497e05efd0cb6033a0444fc9b51) C:\Windows\system32\DRIVERS\atikmpag.sys
      20:26:56.0470 4908 amdkmdap - ok
      20:26:56.0516 4908 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
      20:26:56.0539 4908 AmdPPM - ok
      20:26:56.0586 4908 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
      20:26:56.0597 4908 amdsata - ok
      20:26:56.0623 4908 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
      20:26:56.0645 4908 amdsbs - ok
      20:26:56.0664 4908 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
      20:26:56.0674 4908 amdxata - ok
      20:26:56.0724 4908 AntiVirSchedulerService (0a1cc583e8147004e4ad4625d7fbf88c) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
      20:26:56.0733 4908 AntiVirSchedulerService - ok
      20:26:56.0755 4908 AntiVirService (c9a36ef935aced86aedf93e97e606911) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
      20:26:56.0763 4908 AntiVirService - ok
      20:26:56.0798 4908 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
      20:26:56.0928 4908 AppID - ok
      20:26:56.0967 4908 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
      20:26:57.0007 4908 AppIDSvc - ok
      20:26:57.0047 4908 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
      20:26:57.0078 4908 Appinfo - ok
      20:26:57.0132 4908 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      20:26:57.0140 4908 Apple Mobile Device - ok
      20:26:57.0190 4908 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
      20:26:57.0224 4908 AppMgmt - ok
      20:26:57.0262 4908 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
      20:26:57.0273 4908 arc - ok
      20:26:57.0296 4908 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
      20:26:57.0307 4908 arcsas - ok
      20:26:57.0395 4908 AsIO (a82c01606dc27d05d9d3bfb6bb807e32) C:\Windows\syswow64\drivers\AsIO.sys
      20:26:57.0404 4908 AsIO - ok
      20:26:57.0494 4908 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
      20:26:57.0503 4908 aspnet_state - ok
      20:26:57.0528 4908 AsUpIO (26d66e32e78d3059715b3a17bc679cd9) C:\Windows\syswow64\drivers\AsUpIO.sys
      20:26:57.0538 4908 AsUpIO - ok
      20:26:57.0561 4908 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
      20:26:57.0561 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\asyncmac.sys. md5: 769765ce2cc62867468cea93969b2242
      20:26:57.0579 4908 AsyncMac ( LockedFile.Multi.Generic ) - warning
      20:26:57.0579 4908 AsyncMac - detected LockedFile.Multi.Generic (1)
      20:26:57.0614 4908 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
      20:26:57.0614 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\atapi.sys. md5: 02062c0b390b7729edc9e69c680a6f3c
      20:26:57.0617 4908 atapi ( LockedFile.Multi.Generic ) - warning
      20:26:57.0617 4908 atapi - detected LockedFile.Multi.Generic (1)
      20:26:57.0651 4908 AtiHDAudioService (24464b908e143d2561e9e452fee97309) C:\Windows\system32\drivers\AtihdW76.sys
      20:26:57.0652 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\AtihdW76.sys. md5: 24464b908e143d2561e9e452fee97309
      20:26:57.0655 4908 AtiHDAudioService ( LockedFile.Multi.Generic ) - warning
      20:26:57.0655 4908 AtiHDAudioService - detected LockedFile.Multi.Generic (1)
      20:26:58.0122 4908 atikmdag (4284fb1240537a33e6ec417efd87d40f) C:\Windows\system32\DRIVERS\atikmdag.sys
      20:26:58.0122 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\atikmdag.sys. md5: 4284fb1240537a33e6ec417efd87d40f
      20:26:58.0151 4908 atikmdag ( LockedFile.Multi.Generic ) - warning
      20:26:58.0151 4908 atikmdag - detected LockedFile.Multi.Generic (1)
      20:26:58.0276 4908 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
      20:26:58.0331 4908 AudioEndpointBuilder - ok
      20:26:58.0348 4908 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
      20:26:58.0378 4908 AudioSrv - ok
      20:26:58.0450 4908 Autodesk Licensing Service (ead65493edba0ebea2192d46b938298e) C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
      20:26:58.0473 4908 Autodesk Licensing Service ( UnsignedFile.Multi.Generic ) - warning
      20:26:58.0473 4908 Autodesk Licensing Service - detected UnsignedFile.Multi.Generic (1)
      20:26:58.0506 4908 avgntflt (26e38b5a58c6c55fafbc563eeddb0867) C:\Windows\system32\DRIVERS\avgntflt.sys
      20:26:58.0517 4908 avgntflt - ok
      20:26:58.0540 4908 avipbb (9d1f00beff84cbbf46d7f052bc7e0565) C:\Windows\system32\DRIVERS\avipbb.sys
      20:26:58.0540 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\avipbb.sys. md5: 9d1f00beff84cbbf46d7f052bc7e0565
      20:26:58.0547 4908 avipbb ( LockedFile.Multi.Generic ) - warning
      20:26:58.0547 4908 avipbb - detected LockedFile.Multi.Generic (1)
      20:26:58.0568 4908 avkmgr (248db59fc86de44d2779f4c7fb1a567d) C:\Windows\system32\DRIVERS\avkmgr.sys
      20:26:58.0578 4908 avkmgr - ok
      20:26:58.0624 4908 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
      20:26:58.0662 4908 AxInstSV - ok
      20:26:58.0711 4908 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
      20:26:58.0753 4908 b06bdrv - ok
      20:26:58.0793 4908 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
      20:26:58.0793 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\b57nd60a.sys. md5: b5ace6968304a3900eeb1ebfd9622df2
      20:26:58.0798 4908 b57nd60a ( LockedFile.Multi.Generic ) - warning
      20:26:58.0798 4908 b57nd60a - detected LockedFile.Multi.Generic (1)
      20:26:58.0849 4908 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
      20:26:58.0879 4908 BDESVC - ok
      20:26:58.0897 4908 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
      20:26:58.0897 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\Beep.sys. md5: 16a47ce2decc9b099349a5f840654746
      20:26:58.0900 4908 Beep ( LockedFile.Multi.Generic ) - warning
      20:26:58.0900 4908 Beep - detected LockedFile.Multi.Generic (1)
      20:26:58.0969 4908 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
      20:26:59.0018 4908 BITS - ok
      20:26:59.0052 4908 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
      20:26:59.0052 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\blbdrive.sys. md5: 61583ee3c3a17003c4acd0475646b4d3
      20:26:59.0055 4908 blbdrive ( LockedFile.Multi.Generic ) - warning
      20:26:59.0055 4908 blbdrive - detected LockedFile.Multi.Generic (1)
      20:26:59.0141 4908 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
      20:26:59.0153 4908 Bonjour Service - ok
      20:26:59.0239 4908 Boonty Games (37b2c72827ae953ea03e94d763bb9ac0) C:\Program Files (x86)\Common Files\BOONTY Shared\Service\Boonty.exe
      20:26:59.0249 4908 Boonty Games ( UnsignedFile.Multi.Generic ) - warning
      20:26:59.0249 4908 Boonty Games - detected UnsignedFile.Multi.Generic (1)
      20:26:59.0289 4908 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
      20:26:59.0289 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\bowser.sys. md5: 6c02a83164f5cc0a262f4199f0871cf5
      20:26:59.0292 4908 bowser ( LockedFile.Multi.Generic ) - warning
      20:26:59.0292 4908 bowser - detected LockedFile.Multi.Generic (1)
      20:26:59.0324 4908 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
      20:26:59.0324 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\BrFiltLo.sys. md5: f09eee9edc320b5e1501f749fde686c8
      20:26:59.0328 4908 BrFiltLo ( LockedFile.Multi.Generic ) - warning
      20:26:59.0329 4908 BrFiltLo - detected LockedFile.Multi.Generic (1)
      20:26:59.0345 4908 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
      20:26:59.0346 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\BrFiltUp.sys. md5: b114d3098e9bdb8bea8b053685831be6
      20:26:59.0349 4908 BrFiltUp ( LockedFile.Multi.Generic ) - warning
      20:26:59.0349 4908 BrFiltUp - detected LockedFile.Multi.Generic (1)
      20:26:59.0398 4908 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
      20:26:59.0438 4908 Browser - ok
      20:26:59.0467 4908 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
      20:26:59.0467 4908 Suspicious file (NoAccess): C:\Windows\System32\Drivers\Brserid.sys. md5: 43bea8d483bf1870f018e2d02e06a5bd
      20:26:59.0470 4908 Brserid ( LockedFile.Multi.Generic ) - warning
      20:26:59.0470 4908 Brserid - detected LockedFile.Multi.Generic (1)
      20:26:59.0492 4908 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
      20:26:59.0492 4908 Suspicious file (NoAccess): C:\Windows\System32\Drivers\BrSerWdm.sys. md5: a6eca2151b08a09caceca35c07f05b42
      20:26:59.0495 4908 BrSerWdm ( LockedFile.Multi.Generic ) - warning
      20:26:59.0495 4908 BrSerWdm - detected LockedFile.Multi.Generic (1)
      20:26:59.0515 4908 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
      20:26:59.0516 4908 Suspicious file (NoAccess): C:\Windows\System32\Drivers\BrUsbMdm.sys. md5: b79968002c277e869cf38bd22cd61524
      20:26:59.0518 4908 BrUsbMdm ( LockedFile.Multi.Generic ) - warning
      20:26:59.0518 4908 BrUsbMdm - detected LockedFile.Multi.Generic (1)
      20:26:59.0539 4908 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
      20:26:59.0539 4908 Suspicious file (NoAccess): C:\Windows\System32\Drivers\BrUsbSer.sys. md5: a87528880231c54e75ea7a44943b38bf
      20:26:59.0543 4908 BrUsbSer ( LockedFile.Multi.Generic ) - warning
      20:26:59.0543 4908 BrUsbSer - detected LockedFile.Multi.Generic (1)
      20:26:59.0593 4908 BTCFilterService (ff7c57973eead140062238c5a0b7d455) C:\Windows\system32\DRIVERS\motfilt.sys
      20:26:59.0593 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\motfilt.sys. md5: ff7c57973eead140062238c5a0b7d455
      20:26:59.0597 4908 BTCFilterService ( LockedFile.Multi.Generic ) - warning
      20:26:59.0597 4908 BTCFilterService - detected LockedFile.Multi.Generic (1)
      20:26:59.0621 4908 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
      20:26:59.0622 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\bthmodem.sys. md5: 9da669f11d1f894ab4eb69bf546a42e8
      20:26:59.0624 4908 BTHMODEM ( LockedFile.Multi.Generic ) - warning
      20:26:59.0624 4908 BTHMODEM - detected LockedFile.Multi.Generic (1)
      20:26:59.0673 4908 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
      20:26:59.0701 4908 bthserv - ok
      20:26:59.0722 4908 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
      20:26:59.0722 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\cdfs.sys. md5: b8bd2bb284668c84865658c77574381a
      20:26:59.0725 4908 cdfs ( LockedFile.Multi.Generic ) - warning
      20:26:59.0725 4908 cdfs - detected LockedFile.Multi.Generic (1)
      20:26:59.0768 4908 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
      20:26:59.0768 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\cdrom.sys. md5: f036ce71586e93d94dab220d7bdf4416
      20:26:59.0772 4908 cdrom ( LockedFile.Multi.Generic ) - warning
      20:26:59.0772 4908 cdrom - detected LockedFile.Multi.Generic (1)
      20:26:59.0803 4908 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
      20:26:59.0840 4908 CertPropSvc - ok
      20:26:59.0860 4908 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
      20:26:59.0860 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\circlass.sys. md5: d7cd5c4e1b71fa62050515314cfb52cf
      20:26:59.0865 4908 circlass ( LockedFile.Multi.Generic ) - warning
      20:26:59.0865 4908 circlass - detected LockedFile.Multi.Generic (1)
      20:26:59.0905 4908 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
      20:26:59.0905 4908 Suspicious file (NoAccess): C:\Windows\system32\CLFS.sys. md5: fe1ec06f2253f691fe36217c592a0206
      20:26:59.0922 4908 CLFS ( LockedFile.Multi.Generic ) - warning
      20:26:59.0922 4908 CLFS - detected LockedFile.Multi.Generic (1)
      20:26:59.0985 4908 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      20:26:59.0994 4908 clr_optimization_v2.0.50727_32 - ok
      20:27:00.0033 4908 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      20:27:00.0043 4908 clr_optimization_v2.0.50727_64 - ok
      20:27:00.0111 4908 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      20:27:00.0120 4908 clr_optimization_v4.0.30319_32 - ok
      20:27:00.0158 4908 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      20:27:00.0167 4908 clr_optimization_v4.0.30319_64 - ok
      20:27:00.0204 4908 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
      20:27:00.0204 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\CmBatt.sys. md5: 0840155d0bddf1190f84a663c284bd33
      20:27:00.0207 4908 CmBatt ( LockedFile.Multi.Generic ) - warning
      20:27:00.0207 4908 CmBatt - detected LockedFile.Multi.Generic (1)
      20:27:00.0238 4908 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
      20:27:00.0238 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\cmdide.sys. md5: e19d3f095812725d88f9001985b94edd
      20:27:00.0241 4908 cmdide ( LockedFile.Multi.Generic ) - warning
      20:27:00.0241 4908 cmdide - detected LockedFile.Multi.Generic (1)
      20:27:00.0280 4908 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
      20:27:00.0280 4908 Suspicious file (NoAccess): C:\Windows\system32\Drivers\cng.sys. md5: 9ac4f97c2d3e93367e2148ea940cd2cd
      20:27:00.0284 4908 CNG ( LockedFile.Multi.Generic ) - warning
      20:27:00.0284 4908 CNG - detected LockedFile.Multi.Generic (1)
      20:27:00.0307 4908 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
      20:27:00.0307 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\compbatt.sys. md5: 102de219c3f61415f964c88e9085ad14
      20:27:00.0310 4908 Compbatt ( LockedFile.Multi.Generic ) - warning
      20:27:00.0310 4908 Compbatt - detected LockedFile.Multi.Generic (1)
      20:27:00.0347 4908 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
      20:27:00.0347 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\CompositeBus.sys. md5: 03edb043586cceba243d689bdda370a8
      20:27:00.0350 4908 CompositeBus ( LockedFile.Multi.Generic ) - warning
      20:27:00.0350 4908 CompositeBus - detected LockedFile.Multi.Generic (1)
      20:27:00.0363 4908 COMSysApp - ok
      20:27:00.0442 4908 cpuz134 - ok
      20:27:00.0461 4908 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
      20:27:00.0461 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\crcdisk.sys. md5: 1c827878a998c18847245fe1f34ee597
      20:27:00.0464 4908 crcdisk ( LockedFile.Multi.Generic ) - warning
      20:27:00.0464 4908 crcdisk - detected LockedFile.Multi.Generic (1)
      20:27:00.0520 4908 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
      20:27:00.0564 4908 CryptSvc - ok
      20:27:00.0628 4908 CrystalSysInfo (5228b7a738dc90a06ae4f4a7412cb1e9) C:\Program Files\MediaCoder\SysInfoX64.sys
      20:27:00.0642 4908 CrystalSysInfo - ok
      20:27:00.0697 4908 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
      20:27:00.0697 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\csc.sys. md5: 54da3dfd29ed9f1619b6f53f3ce55e49
      20:27:00.0701 4908 CSC ( LockedFile.Multi.Generic ) - warning
      20:27:00.0701 4908 CSC - detected LockedFile.Multi.Generic (1)
      20:27:00.0771 4908 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
      20:27:00.0808 4908 CscService - ok
      20:27:00.0864 4908 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
      20:27:00.0905 4908 DcomLaunch - ok
      20:27:00.0944 4908 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
      20:27:00.0986 4908 defragsvc - ok
      20:27:01.0037 4908 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
      20:27:01.0037 4908 Suspicious file (NoAccess): C:\Windows\system32\Drivers\dfsc.sys. md5: 9bb2ef44eaa163b29c4a4587887a0fe4
      20:27:01.0040 4908 DfsC ( LockedFile.Multi.Generic ) - warning
      20:27:01.0040 4908 DfsC - detected LockedFile.Multi.Generic (1)
      20:27:01.0086 4908 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
      20:27:01.0131 4908 Dhcp - ok
      20:27:01.0164 4908 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
      20:27:01.0164 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\discache.sys. md5: 13096b05847ec78f0977f2c0f79e9ab3
      20:27:01.0167 4908 discache ( LockedFile.Multi.Generic ) - warning
      20:27:01.0167 4908 discache - detected LockedFile.Multi.Generic (1)
      20:27:01.0207 4908 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
      20:27:01.0208 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\disk.sys. md5: 9819eee8b5ea3784ec4af3b137a5244c
      20:27:01.0212 4908 Disk ( LockedFile.Multi.Generic ) - warning
      20:27:01.0212 4908 Disk - detected LockedFile.Multi.Generic (1)
      20:27:01.0259 4908 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
      20:27:01.0288 4908 Dnscache - ok
      20:27:01.0334 4908 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
      20:27:01.0380 4908 dot3svc - ok
      20:27:01.0421 4908 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
      20:27:01.0421 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\Dot4.sys. md5: b42ed0320c6e41102fde0005154849bb
      20:27:01.0423 4908 Dot4 ( LockedFile.Multi.Generic ) - warning
      20:27:01.0423 4908 Dot4 - detected LockedFile.Multi.Generic (1)
      20:27:01.0458 4908 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\DRIVERS\Dot4Prt.sys
      20:27:01.0458 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\Dot4Prt.sys. md5: e9f5969233c5d89f3c35e3a66a52a361
      20:27:01.0460 4908 Dot4Print ( LockedFile.Multi.Generic ) - warning
      20:27:01.0460 4908 Dot4Print - detected LockedFile.Multi.Generic (1)
      20:27:01.0476 4908 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
      20:27:01.0476 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\dot4usb.sys. md5: fd05a02b0370bc3000f402e543ca5814
      20:27:01.0479 4908 dot4usb ( LockedFile.Multi.Generic ) - warning
      20:27:01.0479 4908 dot4usb - detected LockedFile.Multi.Generic (1)
      20:27:01.0520 4908 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
      20:27:01.0565 4908 DPS - ok
      20:27:01.0600 4908 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
      20:27:01.0600 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\drmkaud.sys. md5: 9b19f34400d24df84c858a421c205754
      20:27:01.0603 4908 drmkaud ( LockedFile.Multi.Generic ) - warning
      20:27:01.0603 4908 drmkaud - detected LockedFile.Multi.Generic (1)
      20:27:01.0668 4908 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
      20:27:01.0668 4908 Suspicious file (NoAccess): C:\Windows\System32\drivers\dxgkrnl.sys. md5: f5bee30450e18e6b83a5012c100616fd
      20:27:01.0672 4908 DXGKrnl ( LockedFile.Multi.Generic ) - warning
      20:27:01.0672 4908 DXGKrnl - detected LockedFile.Multi.Generic (1)
      20:27:01.0699 4908 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
      20:27:01.0739 4908 EapHost - ok
      20:27:01.0867 4908 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
      20:27:01.0867 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\evbda.sys. md5: dc5d737f51be844d8c82c695eb17372f
      20:27:01.0874 4908 ebdrv ( LockedFile.Multi.Generic ) - warning
      20:27:01.0874 4908 ebdrv - detected LockedFile.Multi.Generic (1)
      20:27:01.0966 4908 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
      20:27:01.0986 4908 EFS - ok
      20:27:02.0076 4908 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
      20:27:02.0103 4908 ehRecvr - ok
      20:27:02.0142 4908 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
      20:27:02.0167 4908 ehSched - ok
      20:27:02.0235 4908 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
      20:27:02.0235 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\elxstor.sys. md5: 0e5da5369a0fcaea12456dd852545184
      20:27:02.0248 4908 elxstor ( LockedFile.Multi.Generic ) - warning
      20:27:02.0248 4908 elxstor - detected LockedFile.Multi.Generic (1)
      20:27:02.0279 4908 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
      20:27:02.0279 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\errdev.sys. md5: 34a3c54752046e79a126e15c51db409b
      20:27:02.0282 4908 ErrDev ( LockedFile.Multi.Generic ) - warning
      20:27:02.0282 4908 ErrDev - detected LockedFile.Multi.Generic (1)
      20:27:02.0359 4908 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
      20:27:02.0406 4908 EventSystem - ok
      20:27:02.0454 4908 EverestDriver - ok
      20:27:02.0495 4908 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
      20:27:02.0496 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\exfat.sys. md5: a510c654ec00c1e9bdd91eeb3a59823b
      20:27:02.0498 4908 exfat ( LockedFile.Multi.Generic ) - warning
      20:27:02.0498 4908 exfat - detected LockedFile.Multi.Generic (1)
      20:27:02.0528 4908 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
      20:27:02.0528 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\fastfat.sys. md5: 0adc83218b66a6db380c330836f3e36d
      20:27:02.0530 4908 fastfat ( LockedFile.Multi.Generic ) - warning
      20:27:02.0530 4908 fastfat - detected LockedFile.Multi.Generic (1)
      20:27:02.0583 4908 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
      20:27:02.0620 4908 Fax - ok
      20:27:02.0651 4908 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
      20:27:02.0651 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\fdc.sys. md5: d765d19cd8ef61f650c384f62fac00ab
      20:27:02.0654 4908 fdc ( LockedFile.Multi.Generic ) - warning
      20:27:02.0654 4908 fdc - detected LockedFile.Multi.Generic (1)
      20:27:02.0676 4908 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
      20:27:02.0714 4908 fdPHost - ok
      20:27:02.0738 4908 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
      20:27:02.0766 4908 FDResPub - ok
      20:27:02.0785 4908 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
      20:27:02.0786 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\fileinfo.sys. md5: 655661be46b5f5f3fd454e2c3095b930
      20:27:02.0791 4908 FileInfo ( LockedFile.Multi.Generic ) - warning
      20:27:02.0791 4908 FileInfo - detected LockedFile.Multi.Generic (1)
      20:27:02.0819 4908 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
      20:27:02.0819 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\filetrace.sys. md5: 5f671ab5bc87eea04ec38a6cd5962a47
      20:27:02.0823 4908 Filetrace ( LockedFile.Multi.Generic ) - warning
      20:27:02.0823 4908 Filetrace - detected LockedFile.Multi.Generic (1)
      20:27:02.0843 4908 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
      20:27:02.0843 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\flpydisk.sys. md5: c172a0f53008eaeb8ea33fe10e177af5
      20:27:02.0846 4908 flpydisk ( LockedFile.Multi.Generic ) - warning
      20:27:02.0846 4908 flpydisk - detected LockedFile.Multi.Generic (1)
      20:27:02.0887 4908 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
      20:27:02.0887 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\fltmgr.sys. md5: da6b67270fd9db3697b20fce94950741
      20:27:02.0889 4908 FltMgr ( LockedFile.Multi.Generic ) - warning
      20:27:02.0889 4908 FltMgr - detected LockedFile.Multi.Generic (1)
      20:27:02.0978 4908 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
      20:27:03.0017 4908 FontCache - ok
      20:27:03.0080 4908 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      20:27:03.0087 4908 FontCache3.0.0.0 - ok
      20:27:03.0115 4908 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
      20:27:03.0116 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\FsDepends.sys. md5: d43703496149971890703b4b1b723eac
      20:27:03.0121 4908 FsDepends ( LockedFile.Multi.Generic ) - warning
      20:27:03.0121 4908 FsDepends - detected LockedFile.Multi.Generic (1)
      20:27:03.0146 4908 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
      20:27:03.0146 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\Fs_Rec.sys. md5: 6bd9295cc032dd3077c671fccf579a7b
      20:27:03.0149 4908 Fs_Rec ( LockedFile.Multi.Generic ) - warning
      20:27:03.0149 4908 Fs_Rec - detected LockedFile.Multi.Generic (1)
      20:27:03.0184 4908 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
      20:27:03.0184 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\fvevol.sys. md5: 1f7b25b858fa27015169fe95e54108ed
      20:27:03.0187 4908 fvevol ( LockedFile.Multi.Generic ) - warning
      20:27:03.0187 4908 fvevol - detected LockedFile.Multi.Generic (1)
      20:27:03.0224 4908 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
      20:27:03.0224 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\gagp30kx.sys. md5: 8c778d335c9d272cfd3298ab02abe3b6
      20:27:03.0228 4908 gagp30kx ( LockedFile.Multi.Generic ) - warning
      20:27:03.0228 4908 gagp30kx - detected LockedFile.Multi.Generic (1)
      20:27:03.0259 4908 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
      20:27:03.0260 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\GEARAspiWDM.sys. md5: e403aacf8c7bb11375122d2464560311
      20:27:03.0263 4908 GEARAspiWDM ( LockedFile.Multi.Generic ) - warning
      20:27:03.0264 4908 GEARAspiWDM - detected LockedFile.Multi.Generic (1)
      20:27:03.0327 4908 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
      20:27:03.0371 4908 gpsvc - ok
      20:27:03.0392 4908 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
      20:27:03.0393 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\hcw85cir.sys. md5: f2523ef6460fc42405b12248338ab2f0
      20:27:03.0397 4908 hcw85cir ( LockedFile.Multi.Generic ) - warning
      20:27:03.0397 4908 hcw85cir - detected LockedFile.Multi.Generic (1)
      20:27:03.0453 4908 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
      20:27:03.0454 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\HdAudio.sys. md5: 975761c778e33cd22498059b91e7373a
      20:27:03.0456 4908 HdAudAddService ( LockedFile.Multi.Generic ) - warning
      20:27:03.0457 4908 HdAudAddService - detected LockedFile.Multi.Generic (1)
      20:27:03.0497 4908 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
      20:27:03.0498 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\HDAudBus.sys. md5: 97bfed39b6b79eb12cddbfeed51f56bb
      20:27:03.0500 4908 HDAudBus ( LockedFile.Multi.Generic ) - warning
      20:27:03.0500 4908 HDAudBus - detected LockedFile.Multi.Generic (1)
      20:27:03.0530 4908 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
      20:27:03.0530 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\HidBatt.sys. md5: 78e86380454a7b10a5eb255dc44a355f
      20:27:03.0533 4908 HidBatt ( LockedFile.Multi.Generic ) - warning
      20:27:03.0533 4908 HidBatt - detected LockedFile.Multi.Generic (1)
      20:27:03.0556 4908 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
      20:27:03.0556 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\hidbth.sys. md5: 7fd2a313f7afe5c4dab14798c48dd104
      20:27:03.0559 4908 HidBth ( LockedFile.Multi.Generic ) - warning
      20:27:03.0559 4908 HidBth - detected LockedFile.Multi.Generic (1)
      20:27:03.0585 4908 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
      20:27:03.0585 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\hidir.sys. md5: 0a77d29f311b88cfae3b13f9c1a73825
      20:27:03.0591 4908 HidIr ( LockedFile.Multi.Generic ) - warning
      20:27:03.0591 4908 HidIr - detected LockedFile.Multi.Generic (1)
      20:27:03.0628 4908 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
      20:27:03.0667 4908 hidserv - ok
      20:27:03.0697 4908 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
      20:27:03.0697 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\hidusb.sys. md5: 9592090a7e2b61cd582b612b6df70536
      20:27:03.0700 4908 HidUsb ( LockedFile.Multi.Generic ) - warning
      20:27:03.0700 4908 HidUsb - detected LockedFile.Multi.Generic (1)
      20:27:03.0741 4908 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
      20:27:03.0775 4908 hkmsvc - ok
      20:27:03.0814 4908 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
      20:27:03.0841 4908 HomeGroupListener - ok
      20:27:03.0879 4908 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
      20:27:03.0898 4908 HomeGroupProvider - ok
      20:27:03.0985 4908 hpqcxs08 (1dae5c46d42b02a6d5862e1482efb390) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
      20:27:03.0995 4908 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
      20:27:03.0995 4908 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
      20:27:04.0027 4908 hpqddsvc (99e8eef42fe2f4af29b08c3355dd7685) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
      20:27:04.0031 4908 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
      20:27:04.0031 4908 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
      20:27:04.0068 4908 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
      20:27:04.0069 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\HpSAMD.sys. md5: 39d2abcd392f3d8a6dce7b60ae7b8efc
      20:27:04.0081 4908 HpSAMD ( LockedFile.Multi.Generic ) - warning
      20:27:04.0081 4908 HpSAMD - detected LockedFile.Multi.Generic (1)
      20:27:04.0158 4908 HPSLPSVC (f37882f128efacefe353e0bae2766909) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
      20:27:04.0184 4908 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
      20:27:04.0184 4908 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
      20:27:04.0213 4908 HssDrv (a60c877e1cd3aa2e4e5ccd8af305c0f1) C:\Windows\system32\DRIVERS\HssDrv.sys
      20:27:04.0213 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\HssDrv.sys. md5: a60c877e1cd3aa2e4e5ccd8af305c0f1
      20:27:04.0232 4908 HssDrv ( LockedFile.Multi.Generic ) - warning
      20:27:04.0232 4908 HssDrv - detected LockedFile.Multi.Generic (1)
      20:27:04.0310 4908 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
      20:27:04.0310 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\HTTP.sys. md5: 0ea7de1acb728dd5a369fd742d6eee28
      20:27:04.0316 4908 HTTP ( LockedFile.Multi.Generic ) - warning
      20:27:04.0316 4908 HTTP - detected LockedFile.Multi.Generic (1)
      20:27:04.0353 4908 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
      20:27:04.0353 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\hwpolicy.sys. md5: a5462bd6884960c9dc85ed49d34ff392
      20:27:04.0356 4908 hwpolicy ( LockedFile.Multi.Generic ) - warning
      20:27:04.0356 4908 hwpolicy - detected LockedFile.Multi.Generic (1)
      20:27:04.0397 4908 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
      20:27:04.0397 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\i8042prt.sys. md5: fa55c73d4affa7ee23ac4be53b4592d3
      20:27:04.0402 4908 i8042prt ( LockedFile.Multi.Generic ) - warning
      20:27:04.0402 4908 i8042prt - detected LockedFile.Multi.Generic (1)
      20:27:04.0454 4908 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
      20:27:04.0454 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\iaStorV.sys. md5: aaaf44db3bd0b9d1fb6969b23ecc8366
      20:27:04.0458 4908 iaStorV ( LockedFile.Multi.Generic ) - warning
      20:27:04.0458 4908 iaStorV - detected LockedFile.Multi.Generic (1)
      20:27:04.0541 4908 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      20:27:04.0572 4908 idsvc - ok
      20:27:04.0608 4908 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
      20:27:04.0608 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\iirsp.sys. md5: 5c18831c61933628f5bb0ea2675b9d21
      20:27:04.0612 4908 iirsp ( LockedFile.Multi.Generic ) - warning
      20:27:04.0613 4908 iirsp - detected LockedFile.Multi.Generic (1)
      20:27:04.0677 4908 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
      20:27:04.0734 4908 IKEEXT - ok
      20:27:04.0866 4908 IntcAzAudAddService (589b94a9b73a0e819ff873743a480834) C:\Windows\system32\drivers\RTKVHD64.sys
      20:27:04.0866 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\RTKVHD64.sys. md5: 589b94a9b73a0e819ff873743a480834
      20:27:04.0871 4908 IntcAzAudAddService ( LockedFile.Multi.Generic ) - warning
      20:27:04.0871 4908 IntcAzAudAddService - detected LockedFile.Multi.Generic (1)
      20:27:04.0961 4908 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
      20:27:04.0961 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\intelide.sys. md5: f00f20e70c6ec3aa366910083a0518aa
      20:27:04.0964 4908 intelide ( LockedFile.Multi.Generic ) - warning
      20:27:04.0964 4908 intelide - detected LockedFile.Multi.Generic (1)
      20:27:05.0007 4908 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
      20:27:05.0008 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\intelppm.sys. md5: ada036632c664caa754079041cf1f8c1
      20:27:05.0011 4908 intelppm ( LockedFile.Multi.Generic ) - warning
      20:27:05.0011 4908 intelppm - detected LockedFile.Multi.Generic (1)
      20:27:05.0051 4908 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
      20:27:05.0086 4908 IPBusEnum - ok
      20:27:05.0125 4908 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
      20:27:05.0125 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ipfltdrv.sys. md5: c9f0e1bd74365a8771590e9008d22ab6
      20:27:05.0128 4908 IpFilterDriver ( LockedFile.Multi.Generic ) - warning
      20:27:05.0128 4908 IpFilterDriver - detected LockedFile.Multi.Generic (1)
      20:27:05.0161 4908 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
      20:27:05.0161 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\IPMIDrv.sys. md5: 0fc1aea580957aa8817b8f305d18ca3a
      20:27:05.0164 4908 IPMIDRV ( LockedFile.Multi.Generic ) - warning
      20:27:05.0164 4908 IPMIDRV - detected LockedFile.Multi.Generic (1)
      20:27:05.0192 4908 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
      20:27:05.0192 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\ipnat.sys. md5: af9b39a7e7b6caa203b3862582e9f2d0
      20:27:05.0195 4908 IPNAT ( LockedFile.Multi.Generic ) - warning
      20:27:05.0195 4908 IPNAT - detected LockedFile.Multi.Generic (1)
      20:27:05.0281 4908 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
      20:27:05.0309 4908 iPod Service - ok
      20:27:05.0329 4908 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
      20:27:05.0329 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\irenum.sys. md5: 3abf5e7213eb28966d55d58b515d5ce9
      20:27:05.0332 4908 IRENUM ( LockedFile.Multi.Generic ) - warning
      20:27:05.0332 4908 IRENUM - detected LockedFile.Multi.Generic (1)
      20:27:05.0367 4908 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
      20:27:05.0367 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\isapnp.sys. md5: 2f7b28dc3e1183e5eb418df55c204f38
      20:27:05.0370 4908 isapnp ( LockedFile.Multi.Generic ) - warning
      20:27:05.0370 4908 isapnp - detected LockedFile.Multi.Generic (1)
      20:27:05.0403 4908 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
      20:27:05.0403 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\msiscsi.sys. md5: d931d7309deb2317035b07c9f9e6b0bd
      20:27:05.0407 4908 iScsiPrt ( LockedFile.Multi.Generic ) - warning
      20:27:05.0407 4908 iScsiPrt - detected LockedFile.Multi.Generic (1)
      20:27:05.0439 4908 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
      20:27:05.0439 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\kbdclass.sys. md5: bc02336f1cba7dcc7d1213bb588a68a5
      20:27:05.0444 4908 kbdclass ( LockedFile.Multi.Generic ) - warning
      20:27:05.0444 4908 kbdclass - detected LockedFile.Multi.Generic (1)
      20:27:05.0475 4908 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
      20:27:05.0475 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\kbdhid.sys. md5: 0705eff5b42a9db58548eec3b26bb484
      20:27:05.0479 4908 kbdhid ( LockedFile.Multi.Generic ) - warning
      20:27:05.0479 4908 kbdhid - detected LockedFile.Multi.Generic (1)
      20:27:05.0515 4908 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
      20:27:05.0525 4908 KeyIso - ok
      20:27:05.0538 4908 KMService - ok
      20:27:05.0577 4908 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
      20:27:05.0577 4908 Suspicious file (NoAccess): C:\Windows\system32\Drivers\ksecdd.sys. md5: 97a7070aea4c058b6418519e869a63b4
      20:27:05.0580 4908 KSecDD ( LockedFile.Multi.Generic ) - warning
      20:27:05.0580 4908 KSecDD - detected LockedFile.Multi.Generic (1)
      20:27:05.0604 4908 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
      20:27:05.0604 4908 Suspicious file (NoAccess): C:\Windows\system32\Drivers\ksecpkg.sys. md5: 26c43a7c2862447ec59deda188d1da07
      20:27:05.0607 4908 KSecPkg ( LockedFile.Multi.Generic ) - warning
      20:27:05.0607 4908 KSecPkg - detected LockedFile.Multi.Generic (1)
      20:27:05.0632 4908 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
      20:27:05.0632 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\ksthunk.sys. md5: 6869281e78cb31a43e969f06b57347c4
      20:27:05.0635 4908 ksthunk ( LockedFile.Multi.Generic ) - warning
      20:27:05.0635 4908 ksthunk - detected LockedFile.Multi.Generic (1)
      20:27:05.0678 4908 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
      20:27:05.0723 4908 KtmRm - ok
      20:27:05.0763 4908 L1C (32980b4e711d2ef7128c44dc2cf85706) C:\Windows\system32\DRIVERS\L1C62x64.sys
      20:27:05.0764 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\L1C62x64.sys. md5: 32980b4e711d2ef7128c44dc2cf85706
      20:27:05.0766 4908 L1C ( LockedFile.Multi.Generic ) - warning
      20:27:05.0766 4908 L1C - detected LockedFile.Multi.Generic (1)
      20:27:05.0818 4908 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
      20:27:05.0862 4908 LanmanServer - ok
      20:27:05.0901 4908 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
      20:27:05.0940 4908 LanmanWorkstation - ok
      20:27:05.0981 4908 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
      20:27:05.0982 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\lltdio.sys. md5: 1538831cf8ad2979a04c423779465827
      20:27:05.0986 4908 lltdio ( LockedFile.Multi.Generic ) - warning
      20:27:05.0986 4908 lltdio - detected LockedFile.Multi.Generic (1)
      20:27:06.0030 4908 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
      20:27:06.0076 4908 lltdsvc - ok
      20:27:06.0104 4908 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
      20:27:06.0144 4908 lmhosts - ok
      20:27:06.0197 4908 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
      20:27:06.0197 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\lsi_fc.sys. md5: 1a93e54eb0ece102495a51266dcdb6a6
      20:27:06.0201 4908 LSI_FC ( LockedFile.Multi.Generic ) - warning
      20:27:06.0201 4908 LSI_FC - detected LockedFile.Multi.Generic (1)
      20:27:06.0227 4908 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
      20:27:06.0227 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\lsi_sas.sys. md5: 1047184a9fdc8bdbff857175875ee810
      20:27:06.0231 4908 LSI_SAS ( LockedFile.Multi.Generic ) - warning
      20:27:06.0231 4908 LSI_SAS - detected LockedFile.Multi.Generic (1)
      20:27:06.0256 4908 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
      20:27:06.0256 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\lsi_sas2.sys. md5: 30f5c0de1ee8b5bc9306c1f0e4a75f93
      20:27:06.0260 4908 LSI_SAS2 ( LockedFile.Multi.Generic ) - warning
      20:27:06.0260 4908 LSI_SAS2 - detected LockedFile.Multi.Generic (1)
      20:27:06.0287 4908 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
      20:27:06.0287 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\lsi_scsi.sys. md5: 0504eacaff0d3c8aed161c4b0d369d4a
      20:27:06.0292 4908 LSI_SCSI ( LockedFile.Multi.Generic ) - warning
      20:27:06.0292 4908 LSI_SCSI - detected LockedFile.Multi.Generic (1)
      20:27:06.0326 4908 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
      20:27:06.0326 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\luafv.sys. md5: 43d0f98e1d56ccddb0d5254cff7b356e
      20:27:06.0331 4908 luafv ( LockedFile.Multi.Generic ) - warning
      20:27:06.0331 4908 luafv - detected LockedFile.Multi.Generic (1)
      20:27:06.0374 4908 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
      20:27:06.0386 4908 MBAMProtector - ok
      20:27:06.0472 4908 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
      20:27:06.0492 4908 MBAMService - ok
      20:27:06.0559 4908 McciCMService (f8b823414a22dbf3bec10dcaa5f93cd8) C:\Program Files (x86)\Common Files\Motive\McciCMService.exe
      20:27:06.0571 4908 McciCMService ( UnsignedFile.Multi.Generic ) - warning
      20:27:06.0572 4908 McciCMService - detected UnsignedFile.Multi.Generic (1)
      20:27:06.0622 4908 mcdbus (79d51e7f5926e8ce1b3ebecebae28cff) C:\Windows\system32\DRIVERS\mcdbus.sys
      20:27:06.0622 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mcdbus.sys. md5: 79d51e7f5926e8ce1b3ebecebae28cff
      20:27:06.0626 4908 mcdbus ( LockedFile.Multi.Generic ) - warning
      20:27:06.0626 4908 mcdbus - detected LockedFile.Multi.Generic (1)
      20:27:06.0666 4908 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
      20:27:06.0679 4908 Mcx2Svc - ok
      20:27:06.0713 4908 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
      20:27:06.0713 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\megasas.sys. md5: a55805f747c6edb6a9080d7c633bd0f4
      20:27:06.0717 4908 megasas ( LockedFile.Multi.Generic ) - warning
      20:27:06.0717 4908 megasas - detected LockedFile.Multi.Generic (1)
      20:27:06.0768 4908 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
      20:27:06.0768 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\MegaSR.sys. md5: baf74ce0072480c3b6b7c13b2a94d6b3
      20:27:06.0771 4908 MegaSR ( LockedFile.Multi.Generic ) - warning
      20:27:06.0771 4908 MegaSR - detected LockedFile.Multi.Generic (1)
      20:27:06.0847 4908 mi-raysat_3dsMax2009_32 (aa0c4a2c33ce075df2c272d678734991) C:\Program Files (x86)\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_32server.exe
      20:27:06.0864 4908 mi-raysat_3dsMax2009_32 ( UnsignedFile.Multi.Generic ) - warning
      20:27:06.0864 4908 mi-raysat_3dsMax2009_32 - detected UnsignedFile.Multi.Generic (1)
      20:27:06.0938 4908 mi-raysat_3dsMax2009_64 (aa0c4a2c33ce075df2c272d678734991) C:\Program Files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_64server.exe
      20:27:06.0942 4908 mi-raysat_3dsMax2009_64 ( UnsignedFile.Multi.Generic ) - warning
      20:27:06.0942 4908 mi-raysat_3dsMax2009_64 - detected UnsignedFile.Multi.Generic (1)
      20:27:06.0997 4908 Microsoft SharePoint Workspace Audit Service - ok
      20:27:07.0036 4908 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
      20:27:07.0076 4908 MMCSS - ok
      20:27:07.0106 4908 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
      20:27:07.0106 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\modem.sys. md5: 800ba92f7010378b09f9ed9270f07137
      20:27:07.0114 4908 Modem ( LockedFile.Multi.Generic ) - warning
      20:27:07.0114 4908 Modem - detected LockedFile.Multi.Generic (1)
      20:27:07.0146 4908 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
      20:27:07.0146 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\monitor.sys. md5: b03d591dc7da45ece20b3b467e6aadaa
      20:27:07.0151 4908 monitor ( LockedFile.Multi.Generic ) - warning
      20:27:07.0151 4908 monitor - detected LockedFile.Multi.Generic (1)
      20:27:07.0200 4908 motccgp (c94a2ea3fdfa5d650884926b710b7db1) C:\Windows\system32\DRIVERS\motccgp.sys
      20:27:07.0201 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\motccgp.sys. md5: c94a2ea3fdfa5d650884926b710b7db1
      20:27:07.0215 4908 motccgp ( LockedFile.Multi.Generic ) - warning
      20:27:07.0215 4908 motccgp - detected LockedFile.Multi.Generic (1)
      20:27:07.0237 4908 motccgpfl (d51e009baeda07ebc107d49d224c2414) C:\Windows\system32\DRIVERS\motccgpfl.sys
      20:27:07.0237 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\motccgpfl.sys. md5: d51e009baeda07ebc107d49d224c2414
      20:27:07.0241 4908 motccgpfl ( LockedFile.Multi.Generic ) - warning
      20:27:07.0241 4908 motccgpfl - detected LockedFile.Multi.Generic (1)
      20:27:07.0272 4908 motmodem (060f0ef84f430802df3788f3dcfd009c) C:\Windows\system32\DRIVERS\motmodem.sys
      20:27:07.0273 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\motmodem.sys. md5: 060f0ef84f430802df3788f3dcfd009c
      20:27:07.0277 4908 motmodem ( LockedFile.Multi.Generic ) - warning
      20:27:07.0277 4908 motmodem - detected LockedFile.Multi.Generic (1)
      20:27:07.0349 4908 MotoHelper (3bbc6c2402242401f791548aaebf3d39) C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
      20:27:07.0359 4908 MotoHelper - ok
      20:27:07.0383 4908 MotoSwitchService (ebd05f60cafc5bba2602b8d7101082d3) C:\Windows\system32\DRIVERS\motswch.sys
      20:27:07.0383 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\motswch.sys. md5: ebd05f60cafc5bba2602b8d7101082d3
      20:27:07.0387 4908 MotoSwitchService ( LockedFile.Multi.Generic ) - warning
      20:27:07.0387 4908 MotoSwitchService - detected LockedFile.Multi.Generic (1)
      20:27:07.0412 4908 Motousbnet (87701078c3f720ac7a028e937994cc49) C:\Windows\system32\DRIVERS\Motousbnet.sys
      20:27:07.0412 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\Motousbnet.sys. md5: 87701078c3f720ac7a028e937994cc49
      20:27:07.0417 4908 Motousbnet ( LockedFile.Multi.Generic ) - warning
      20:27:07.0417 4908 Motousbnet - detected LockedFile.Multi.Generic (1)
      20:27:07.0453 4908 motusbdevice (4244e427cda5f6485e74461b5b48a7b6) C:\Windows\system32\DRIVERS\motusbdevice.sys
      20:27:07.0453 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\motusbdevice.sys. md5: 4244e427cda5f6485e74461b5b48a7b6
      20:27:07.0457 4908 motusbdevice ( LockedFile.Multi.Generic ) - warning
      20:27:07.0457 4908 motusbdevice - detected LockedFile.Multi.Generic (1)
      20:27:07.0496 4908 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
      20:27:07.0496 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mouclass.sys. md5: 7d27ea49f3c1f687d357e77a470aea99
      20:27:07.0499 4908 mouclass ( LockedFile.Multi.Generic ) - warning
      20:27:07.0499 4908 mouclass - detected LockedFile.Multi.Generic (1)
      20:27:07.0534 4908 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
      20:27:07.0534 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mouhid.sys. md5: d3bf052c40b0c4166d9fd86a4288c1e6
      20:27:07.0539 4908 mouhid ( LockedFile.Multi.Generic ) - warning
      20:27:07.0539 4908 mouhid - detected LockedFile.Multi.Generic (1)
      20:27:07.0584 4908 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
      20:27:07.0584 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\mountmgr.sys. md5: 32e7a3d591d671a6df2db515a5cbe0fa
      20:27:07.0587 4908 mountmgr ( LockedFile.Multi.Generic ) - warning
      20:27:07.0588 4908 mountmgr - detected LockedFile.Multi.Generic (1)
      20:27:07.0652 4908 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
      20:27:07.0661 4908 MozillaMaintenance - ok
      20:27:07.0694 4908 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
      20:27:07.0694 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\mpio.sys. md5: a44b420d30bd56e145d6a2bc8768ec58
      20:27:07.0697 4908 mpio ( LockedFile.Multi.Generic ) - warning
      20:27:07.0697 4908 mpio - detected LockedFile.Multi.Generic (1)
      20:27:07.0719 4908 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
      20:27:07.0719 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\mpsdrv.sys. md5: 6c38c9e45ae0ea2fa5e551f2ed5e978f
      20:27:07.0722 4908 mpsdrv ( LockedFile.Multi.Generic ) - warning
      20:27:07.0722 4908 mpsdrv - detected LockedFile.Multi.Generic (1)
      20:27:07.0770 4908 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
      20:27:07.0770 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\mrxdav.sys. md5: dc722758b8261e1abafd31a3c0a66380
      20:27:07.0775 4908 MRxDAV ( LockedFile.Multi.Generic ) - warning
      20:27:07.0775 4908 MRxDAV - detected LockedFile.Multi.Generic (1)
      20:27:07.0804 4908 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
      20:27:07.0804 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mrxsmb.sys. md5: a5d9106a73dc88564c825d317cac68ac
      20:27:07.0807 4908 mrxsmb ( LockedFile.Multi.Generic ) - warning
      20:27:07.0807 4908 mrxsmb - detected LockedFile.Multi.Generic (1)
      20:27:07.0842 4908 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
      20:27:07.0842 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mrxsmb10.sys. md5: d711b3c1d5f42c0c2415687be09fc163
      20:27:07.0845 4908 mrxsmb10 ( LockedFile.Multi.Generic ) - warning
      20:27:07.0845 4908 mrxsmb10 - detected LockedFile.Multi.Generic (1)
      20:27:07.0864 4908 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
      20:27:07.0864 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mrxsmb20.sys. md5: 9423e9d355c8d303e76b8cfbd8a5c30c
      20:27:07.0866 4908 mrxsmb20 ( LockedFile.Multi.Generic ) - warning
      20:27:07.0867 4908 mrxsmb20 - detected LockedFile.Multi.Generic (1)
      20:27:07.0898 4908 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
      20:27:07.0898 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\msahci.sys. md5: c25f0bafa182cbca2dd3c851c2e75796
      20:27:07.0901 4908 msahci ( LockedFile.Multi.Generic ) - warning
      20:27:07.0901 4908 msahci - detected LockedFile.Multi.Generic (1)
      20:27:07.0932 4908 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
      20:27:07.0932 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\msdsm.sys. md5: db801a638d011b9633829eb6f663c900
      20:27:07.0936 4908 msdsm ( LockedFile.Multi.Generic ) - warning
      20:27:07.0936 4908 msdsm - detected LockedFile.Multi.Generic (1)
      20:27:07.0976 4908 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
      20:27:08.0000 4908 MSDTC - ok
      20:27:08.0024 4908 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
      20:27:08.0024 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\Msfs.sys. md5: aa3fb40e17ce1388fa1bedab50ea8f96
      20:27:08.0026 4908 Msfs ( LockedFile.Multi.Generic ) - warning
      20:27:08.0027 4908 Msfs - detected LockedFile.Multi.Generic (1)
      20:27:08.0052 4908 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
      20:27:08.0052 4908 Suspicious file (NoAccess): C:\Windows\System32\drivers\mshidkmdf.sys. md5: f9d215a46a8b9753f61767fa72a20326
      20:27:08.0055 4908 mshidkmdf ( LockedFile.Multi.Generic ) - warning
      20:27:08.0055 4908 mshidkmdf - detected LockedFile.Multi.Generic (1)
      20:27:08.0069 4908 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
      20:27:08.0069 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\msisadrv.sys. md5: d916874bbd4f8b07bfb7fa9b3ccae29d
      20:27:08.0072 4908 msisadrv ( LockedFile.Multi.Generic ) - warning
      20:27:08.0072 4908 msisadrv - detected LockedFile.Multi.Generic (1)
      20:27:08.0110 4908 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
      20:27:08.0139 4908 MSiSCSI - ok
      20:27:08.0154 4908 msiserver - ok
      20:27:08.0191 4908 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
      20:27:08.0191 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSKSSRV.sys. md5: 49ccf2c4fea34ffad8b1b59d49439366
      20:27:08.0194 4908 MSKSSRV ( LockedFile.Multi.Generic ) - warning
      20:27:08.0194 4908 MSKSSRV - detected LockedFile.Multi.Generic (1)
      20:27:08.0231 4908 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
      20:27:08.0231 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSPCLOCK.sys. md5: bdd71ace35a232104ddd349ee70e1ab3
      20:27:08.0234 4908 MSPCLOCK ( LockedFile.Multi.Generic ) - warning
      20:27:08.0234 4908 MSPCLOCK - detected LockedFile.Multi.Generic (1)
      20:27:08.0257 4908 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
      20:27:08.0257 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSPQM.sys. md5: 4ed981241db27c3383d72092b618a1d0
      20:27:08.0260 4908 MSPQM ( LockedFile.Multi.Generic ) - warning
      20:27:08.0260 4908 MSPQM - detected LockedFile.Multi.Generic (1)
      20:27:08.0310 4908 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
      20:27:08.0310 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\MsRPC.sys. md5: 759a9eeb0fa9ed79da1fb7d4ef78866d
      20:27:08.0314 4908 MsRPC ( LockedFile.Multi.Generic ) - warning
      20:27:08.0314 4908 MsRPC - detected LockedFile.Multi.Generic (1)
      20:27:08.0338 4908 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
      20:27:08.0338 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\mssmbios.sys. md5: 0eed230e37515a0eaee3c2e1bc97b288
      20:27:08.0341 4908 mssmbios ( LockedFile.Multi.Generic ) - warning
      20:27:08.0341 4908 mssmbios - detected LockedFile.Multi.Generic (1)
      20:27:08.0361 4908 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
      20:27:08.0361 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSTEE.sys. md5: 2e66f9ecb30b4221a318c92ac2250779
      20:27:08.0364 4908 MSTEE ( LockedFile.Multi.Generic ) - warning
      20:27:08.0364 4908 MSTEE - detected LockedFile.Multi.Generic (1)
      20:27:08.0387 4908 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
      20:27:08.0387 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\MTConfig.sys. md5: 7ea404308934e675bffde8edf0757bcd
      20:27:08.0390 4908 MTConfig ( LockedFile.Multi.Generic ) - warning
      20:27:08.0390 4908 MTConfig - detected LockedFile.Multi.Generic (1)
      20:27:08.0427 4908 MTsensor (19b006b181e3875fd254f7b67acf1e7c) C:\Windows\system32\DRIVERS\ASACPI.sys
      20:27:08.0427 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ASACPI.sys. md5: 19b006b181e3875fd254f7b67acf1e7c
      20:27:08.0430 4908 MTsensor ( LockedFile.Multi.Generic ) - warning
      20:27:08.0430 4908 MTsensor - detected LockedFile.Multi.Generic (1)
      20:27:08.0452 4908 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
      20:27:08.0452 4908 Suspicious file (NoAccess): C:\Windows\system32\Drivers\mup.sys. md5: f9a18612fd3526fe473c1bda678d61c8
      20:27:08.0456 4908 Mup ( LockedFile.Multi.Generic ) - warning
      20:27:08.0456 4908 Mup - detected LockedFile.Multi.Generic (1)
      20:27:08.0502 4908 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
      20:27:08.0553 4908 napagent - ok
      20:27:08.0591 4908 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
      20:27:08.0591 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\nwifi.sys. md5: 1ea3749c4114db3e3161156ffffa6b33
      20:27:08.0594 4908 NativeWifiP ( LockedFile.Multi.Generic ) - warning
      20:27:08.0594 4908 NativeWifiP - detected LockedFile.Multi.Generic (1)
      20:27:08.0725 4908 NBService (6d8fcdd5bb3b676ef58fa234073492c6) C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
      20:27:08.0749 4908 NBService - ok
      20:27:08.0825 4908 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
      20:27:08.0825 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\ndis.sys. md5: 79b47fd40d9a817e932f9d26fac0a81c
      20:27:08.0831 4908 NDIS ( LockedFile.Multi.Generic ) - warning
      20:27:08.0831 4908 NDIS - detected LockedFile.Multi.Generic (1)
      20:27:08.0853 4908 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
      20:27:08.0853 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndiscap.sys. md5: 9f9a1f53aad7da4d6fef5bb73ab811ac
      20:27:08.0860 4908 NdisCap ( LockedFile.Multi.Generic ) - warning
      20:27:08.0860 4908 NdisCap - detected LockedFile.Multi.Generic (1)
      20:27:08.0882 4908 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
      20:27:08.0882 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndistapi.sys. md5: 30639c932d9fef22b31268fe25a1b6e5
      20:27:08.0887 4908 NdisTapi ( LockedFile.Multi.Generic ) - warning
      20:27:08.0887 4908 NdisTapi - detected LockedFile.Multi.Generic (1)
      20:27:08.0923 4908 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
      20:27:08.0924 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndisuio.sys. md5: 136185f9fb2cc61e573e676aa5402356
      20:27:08.0928 4908 Ndisuio ( LockedFile.Multi.Generic ) - warning
      20:27:08.0928 4908 Ndisuio - detected LockedFile.Multi.Generic (1)
      20:27:08.0956 4908 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
      20:27:08.0957 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndiswan.sys. md5: 53f7305169863f0a2bddc49e116c2e11
      20:27:08.0961 4908 NdisWan ( LockedFile.Multi.Generic ) - warning
      20:27:08.0961 4908 NdisWan - detected LockedFile.Multi.Generic (1)
      20:27:08.0995 4908 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
      20:27:08.0995 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\NDProxy.sys. md5: 015c0d8e0e0421b4cfd48cffe2825879
      20:27:08.0998 4908 NDProxy ( LockedFile.Multi.Generic ) - warning
      20:27:08.0998 4908 NDProxy - detected LockedFile.Multi.Generic (1)
      20:27:09.0056 4908 Net Driver HPZ12 (2334dc48997ba203b794df3ee70521db) C:\Windows\system32\HPZinw12.dll
      20:27:09.0072 4908 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
      20:27:09.0072 4908 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
      20:27:09.0087 4908 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
      20:27:09.0087 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\netbios.sys. md5: 86743d9f5d2b1048062b14b1d84501c4
      20:27:09.0092 4908 NetBIOS ( LockedFile.Multi.Generic ) - warning
      20:27:09.0092 4908 NetBIOS - detected LockedFile.Multi.Generic (1)
      20:27:09.0131 4908 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
      20:27:09.0132 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\netbt.sys. md5: 09594d1089c523423b32a4229263f068
      20:27:09.0156 4908 NetBT ( LockedFile.Multi.Generic ) - warning
      20:27:09.0156 4908 NetBT - detected LockedFile.Multi.Generic (1)
      20:27:09.0182 4908 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
      20:27:09.0192 4908 Netlogon - ok
      20:27:09.0237 4908 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
      20:27:09.0280 4908 Netman - ok
      20:27:09.0364 4908 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      20:27:09.0374 4908 NetMsmqActivator - ok
      20:27:09.0386 4908 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      20:27:09.0395 4908 NetPipeActivator - ok
      20:27:09.0441 4908 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
      20:27:09.0484 4908 netprofm - ok
      20:27:09.0497 4908 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      20:27:09.0505 4908 NetTcpActivator - ok
      20:27:09.0519 4908 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      20:27:09.0528 4908 NetTcpPortSharing - ok
      20:27:09.0584 4908 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
      20:27:09.0584 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\nfrd960.sys. md5: 77889813be4d166cdab78ddba990da92
      20:27:09.0589 4908 nfrd960 ( LockedFile.Multi.Generic ) - warning
      20:27:09.0589 4908 nfrd960 - detected LockedFile.Multi.Generic (1)
      20:27:09.0635 4908 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
      20:27:09.0679 4908 NlaSvc - ok
      20:27:09.0767 4908 NMIndexingService (e584d6668e6a3923ff32e026a5ed2a03) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
      20:27:09.0785 4908 NMIndexingService - ok
      20:27:09.0825 4908 nmwcd (5fe6f8c05f0769bbb74afac11453b182) C:\Windows\system32\drivers\ccdcmbx64.sys
      20:27:09.0825 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\ccdcmbx64.sys. md5: 5fe6f8c05f0769bbb74afac11453b182
      20:27:09.0837 4908 nmwcd ( LockedFile.Multi.Generic ) - warning
      20:27:09.0837 4908 nmwcd - detected LockedFile.Multi.Generic (1)
      20:27:09.0875 4908 nmwcdc (73c929945c0850b8d1fe2fea05fdf05d) C:\Windows\system32\drivers\ccdcmbox64.sys
      20:27:09.0875 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\ccdcmbox64.sys. md5: 73c929945c0850b8d1fe2fea05fdf05d
      20:27:09.0878 4908 nmwcdc ( LockedFile.Multi.Generic ) - warning
      20:27:09.0878 4908 nmwcdc - detected LockedFile.Multi.Generic (1)
      20:27:09.0915 4908 nmwcdnsucx64 (697ca586209e022d15dd0c838b235d6a) C:\Windows\system32\drivers\nmwcdnsucx64.sys
      20:27:09.0915 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\nmwcdnsucx64.sys. md5: 697ca586209e022d15dd0c838b235d6a
      20:27:09.0918 4908 nmwcdnsucx64 ( LockedFile.Multi.Generic ) - warning
      20:27:09.0918 4908 nmwcdnsucx64 - detected LockedFile.Multi.Generic (1)
      20:27:09.0956 4908 nmwcdnsux64 (292ddf13f91f2cb2482b57aacd6aeb9b) C:\Windows\system32\drivers\nmwcdnsux64.sys
      20:27:09.0956 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\nmwcdnsux64.sys. md5: 292ddf13f91f2cb2482b57aacd6aeb9b
      20:27:09.0959 4908 nmwcdnsux64 ( LockedFile.Multi.Generic ) - warning
      20:27:09.0959 4908 nmwcdnsux64 - detected LockedFile.Multi.Generic (1)
      20:27:10.0005 4908 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
      20:27:10.0005 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\Npfs.sys. md5: 1e4c4ab5c9b8dd13179bbdc75a2a01f7
      20:27:10.0009 4908 Npfs ( LockedFile.Multi.Generic ) - warning
      20:27:10.0010 4908 Npfs - detected LockedFile.Multi.Generic (1)
      20:27:10.0047 4908 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
      20:27:10.0077 4908 nsi - ok
      20:27:10.0096 4908 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
      20:27:10.0096 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\nsiproxy.sys. md5: e7f5ae18af4168178a642a9247c63001
      20:27:10.0099 4908 nsiproxy ( LockedFile.Multi.Generic ) - warning
      20:27:10.0099 4908 nsiproxy - detected LockedFile.Multi.Generic (1)
      20:27:10.0206 4908 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
      20:27:10.0206 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\Ntfs.sys. md5: a2f74975097f52a00745f9637451fdd8
      20:27:10.0211 4908 Ntfs ( LockedFile.Multi.Generic ) - warning
      20:27:10.0211 4908 Ntfs - detected LockedFile.Multi.Generic (1)
      20:27:10.0289 4908 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
      20:27:10.0289 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\Null.sys. md5: 9899284589f75fa8724ff3d16aed75c1
      20:27:10.0292 4908 Null ( LockedFile.Multi.Generic ) - warning
      20:27:10.0292 4908 Null - detected LockedFile.Multi.Generic (1)
      20:27:10.0341 4908 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
      20:27:10.0341 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\nvraid.sys. md5: 0a92cb65770442ed0dc44834632f66ad
      20:27:10.0344 4908 nvraid ( LockedFile.Multi.Generic ) - warning
      20:27:10.0344 4908 nvraid - detected LockedFile.Multi.Generic (1)
      20:27:10.0368 4908 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
      20:27:10.0368 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\nvstor.sys. md5: dab0e87525c10052bf65f06152f37e4a
      20:27:10.0372 4908 nvstor ( LockedFile.Multi.Generic ) - warning
      20:27:10.0372 4908 nvstor - detected LockedFile.Multi.Generic (1)
      20:27:10.0406 4908 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
      20:27:10.0406 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\nv_agp.sys. md5: 270d7cd42d6e3979f6dd0146650f0e05
      20:27:10.0409 4908 nv_agp ( LockedFile.Multi.Generic ) - warning
      20:27:10.0409 4908 nv_agp - detected LockedFile.Multi.Generic (1)
      20:27:10.0444 4908 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
      20:27:10.0444 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\ohci1394.sys. md5: 3589478e4b22ce21b41fa1bfc0b8b8a0
      20:27:10.0447 4908 ohci1394 ( LockedFile.Multi.Generic ) - warning

    4. #4
      Usuario Avatar de GuST7
      Registrado
      ene 2009
      Ubicación
      Argentina
      Mensajes
      16

      Re: Avira desactivó la Realtime Protection y no puedo volver a habilitarla

      Continua el log:

      20:27:10.0447 4908 ohci1394 - detected LockedFile.Multi.Generic (1)
      20:27:10.0493 4908 ose64 (4965b005492cba7719e82b71e3245495) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      20:27:10.0506 4908 ose64 - ok
      20:27:10.0723 4908 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
      20:27:10.0820 4908 osppsvc - ok
      20:27:10.0936 4908 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
      20:27:10.0967 4908 p2pimsvc - ok
      20:27:11.0012 4908 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
      20:27:11.0036 4908 p2psvc - ok
      20:27:11.0107 4908 PAC207 (38ad35233751366dc35e0a7d0a21673f) C:\Windows\system32\DRIVERS\PFC027.SYS
      20:27:11.0107 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\PFC027.SYS. md5: 38ad35233751366dc35e0a7d0a21673f
      20:27:11.0111 4908 PAC207 ( LockedFile.Multi.Generic ) - warning
      20:27:11.0111 4908 PAC207 - detected LockedFile.Multi.Generic (1)
      20:27:11.0142 4908 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
      20:27:11.0142 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\parport.sys. md5: 0086431c29c35be1dbc43f52cc273887
      20:27:11.0145 4908 Parport ( LockedFile.Multi.Generic ) - warning
      20:27:11.0145 4908 Parport - detected LockedFile.Multi.Generic (1)
      20:27:11.0190 4908 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
      20:27:11.0190 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\partmgr.sys. md5: e9766131eeade40a27dc27d2d68fba9c
      20:27:11.0194 4908 partmgr ( LockedFile.Multi.Generic ) - warning
      20:27:11.0194 4908 partmgr - detected LockedFile.Multi.Generic (1)
      20:27:11.0222 4908 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
      20:27:11.0252 4908 PcaSvc - ok
      20:27:11.0303 4908 pccsmcfd (bc0018c2d29f655188a0ed3fa94fdb24) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
      20:27:11.0303 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\pccsmcfdx64.sys. md5: bc0018c2d29f655188a0ed3fa94fdb24
      20:27:11.0307 4908 pccsmcfd ( LockedFile.Multi.Generic ) - warning
      20:27:11.0307 4908 pccsmcfd - detected LockedFile.Multi.Generic (1)
      20:27:11.0361 4908 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
      20:27:11.0361 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\pci.sys. md5: 94575c0571d1462a0f70bde6bd6ee6b3
      20:27:11.0364 4908 pci ( LockedFile.Multi.Generic ) - warning
      20:27:11.0364 4908 pci - detected LockedFile.Multi.Generic (1)
      20:27:11.0384 4908 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
      20:27:11.0384 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\pciide.sys. md5: b5b8b5ef2e5cb34df8dcf8831e3534fa
      20:27:11.0387 4908 pciide ( LockedFile.Multi.Generic ) - warning
      20:27:11.0387 4908 pciide - detected LockedFile.Multi.Generic (1)
      20:27:11.0415 4908 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
      20:27:11.0415 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\pcmcia.sys. md5: b2e81d4e87ce48589f98cb8c05b01f2f
      20:27:11.0418 4908 pcmcia ( LockedFile.Multi.Generic ) - warning
      20:27:11.0418 4908 pcmcia - detected LockedFile.Multi.Generic (1)
      20:27:11.0435 4908 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
      20:27:11.0435 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\pcw.sys. md5: d6b9c2e1a11a3a4b26a182ffef18f603
      20:27:11.0437 4908 pcw ( LockedFile.Multi.Generic ) - warning
      20:27:11.0437 4908 pcw - detected LockedFile.Multi.Generic (1)
      20:27:11.0481 4908 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
      20:27:11.0482 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\peauth.sys. md5: 68769c3356b3be5d1c732c97b9a80d6e
      20:27:11.0486 4908 PEAUTH ( LockedFile.Multi.Generic ) - warning
      20:27:11.0486 4908 PEAUTH - detected LockedFile.Multi.Generic (1)
      20:27:11.0574 4908 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
      20:27:11.0614 4908 PeerDistSvc - ok
      20:27:11.0699 4908 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
      20:27:11.0720 4908 PerfHost - ok
      20:27:11.0855 4908 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
      20:27:11.0914 4908 pla - ok
      20:27:11.0974 4908 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
      20:27:11.0998 4908 PlugPlay - ok
      20:27:12.0064 4908 Pml Driver HPZ12 (ac78df349f0e4cfb8b667c0cfff83cce) C:\Windows\system32\HPZipm12.dll
      20:27:12.0079 4908 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
      20:27:12.0079 4908 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
      20:27:12.0115 4908 PnkBstrA - ok
      20:27:12.0155 4908 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
      20:27:12.0172 4908 PNRPAutoReg - ok
      20:27:12.0211 4908 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
      20:27:12.0224 4908 PNRPsvc - ok
      20:27:12.0293 4908 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
      20:27:12.0294 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\point64.sys. md5: 4f0878fd62d5f7444c5f1c4c66d9d293
      20:27:12.0305 4908 Point64 ( LockedFile.Multi.Generic ) - warning
      20:27:12.0305 4908 Point64 - detected LockedFile.Multi.Generic (1)
      20:27:12.0357 4908 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
      20:27:12.0406 4908 PolicyAgent - ok
      20:27:12.0457 4908 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
      20:27:12.0506 4908 Power - ok
      20:27:12.0547 4908 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
      20:27:12.0548 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\raspptp.sys. md5: f92a2c41117a11a00be01ca01a7fcde9
      20:27:12.0553 4908 PptpMiniport ( LockedFile.Multi.Generic ) - warning
      20:27:12.0553 4908 PptpMiniport - detected LockedFile.Multi.Generic (1)
      20:27:12.0590 4908 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
      20:27:12.0590 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\processr.sys. md5: 0d922e23c041efb1c3fac2a6f943c9bf
      20:27:12.0593 4908 Processor ( LockedFile.Multi.Generic ) - warning
      20:27:12.0593 4908 Processor - detected LockedFile.Multi.Generic (1)
      20:27:12.0635 4908 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
      20:27:12.0665 4908 ProfSvc - ok
      20:27:12.0690 4908 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
      20:27:12.0700 4908 ProtectedStorage - ok
      20:27:12.0779 4908 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
      20:27:12.0780 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\pacer.sys. md5: 0557cf5a2556bd58e26384169d72438d
      20:27:12.0783 4908 Psched ( LockedFile.Multi.Generic ) - warning
      20:27:12.0784 4908 Psched - detected LockedFile.Multi.Generic (1)
      20:27:12.0850 4908 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
      20:27:12.0850 4908 Suspicious file (NoAccess): C:\Windows\system32\Drivers\PxHlpa64.sys. md5: 87b04878a6d59d6c79251dc960c674c1
      20:27:12.0853 4908 PxHlpa64 ( LockedFile.Multi.Generic ) - warning
      20:27:12.0853 4908 PxHlpa64 - detected LockedFile.Multi.Generic (1)
      20:27:12.0926 4908 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
      20:27:12.0927 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ql2300.sys. md5: a53a15a11ebfd21077463ee2c7afeef0
      20:27:12.0932 4908 ql2300 ( LockedFile.Multi.Generic ) - warning
      20:27:12.0932 4908 ql2300 - detected LockedFile.Multi.Generic (1)
      20:27:13.0024 4908 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
      20:27:13.0024 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ql40xx.sys. md5: 4f6d12b51de1aaeff7dc58c4d75423c8
      20:27:13.0028 4908 ql40xx ( LockedFile.Multi.Generic ) - warning
      20:27:13.0028 4908 ql40xx - detected LockedFile.Multi.Generic (1)
      20:27:13.0073 4908 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
      20:27:13.0097 4908 QWAVE - ok
      20:27:13.0122 4908 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
      20:27:13.0122 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\qwavedrv.sys. md5: 76707bb36430888d9ce9d705398adb6c
      20:27:13.0127 4908 QWAVEdrv ( LockedFile.Multi.Generic ) - warning
      20:27:13.0127 4908 QWAVEdrv - detected LockedFile.Multi.Generic (1)
      20:27:13.0147 4908 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
      20:27:13.0147 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rasacd.sys. md5: 5a0da8ad5762fa2d91678a8a01311704
      20:27:13.0153 4908 RasAcd ( LockedFile.Multi.Generic ) - warning
      20:27:13.0153 4908 RasAcd - detected LockedFile.Multi.Generic (1)
      20:27:13.0198 4908 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
      20:27:13.0198 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\AgileVpn.sys. md5: 7ecff9b22276b73f43a99a15a6094e90
      20:27:13.0201 4908 RasAgileVpn ( LockedFile.Multi.Generic ) - warning
      20:27:13.0201 4908 RasAgileVpn - detected LockedFile.Multi.Generic (1)
      20:27:13.0237 4908 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
      20:27:13.0276 4908 RasAuto - ok
      20:27:13.0299 4908 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
      20:27:13.0302 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rasl2tp.sys. md5: 471815800ae33e6f1c32fb1b97c490ca
      20:27:13.0305 4908 Rasl2tp ( LockedFile.Multi.Generic ) - warning
      20:27:13.0305 4908 Rasl2tp - detected LockedFile.Multi.Generic (1)
      20:27:13.0354 4908 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
      20:27:13.0402 4908 RasMan - ok
      20:27:13.0418 4908 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
      20:27:13.0418 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\raspppoe.sys. md5: 855c9b1cd4756c5e9a2aa58a15f58c25
      20:27:13.0422 4908 RasPppoe ( LockedFile.Multi.Generic ) - warning
      20:27:13.0422 4908 RasPppoe - detected LockedFile.Multi.Generic (1)
      20:27:13.0443 4908 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
      20:27:13.0444 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rassstp.sys. md5: e8b1e447b008d07ff47d016c2b0eeecb
      20:27:13.0446 4908 RasSstp ( LockedFile.Multi.Generic ) - warning
      20:27:13.0446 4908 RasSstp - detected LockedFile.Multi.Generic (1)
      20:27:13.0477 4908 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
      20:27:13.0477 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rdbss.sys. md5: 77f665941019a1594d887a74f301fa2f
      20:27:13.0480 4908 rdbss ( LockedFile.Multi.Generic ) - warning
      20:27:13.0480 4908 rdbss - detected LockedFile.Multi.Generic (1)
      20:27:13.0503 4908 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
      20:27:13.0504 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rdpbus.sys. md5: 302da2a0539f2cf54d7c6cc30c1f2d8d
      20:27:13.0507 4908 rdpbus ( LockedFile.Multi.Generic ) - warning
      20:27:13.0507 4908 rdpbus - detected LockedFile.Multi.Generic (1)
      20:27:13.0524 4908 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
      20:27:13.0524 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\RDPCDD.sys. md5: cea6cc257fc9b7715f1c2b4849286d24
      20:27:13.0529 4908 RDPCDD ( LockedFile.Multi.Generic ) - warning
      20:27:13.0529 4908 RDPCDD - detected LockedFile.Multi.Generic (1)
      20:27:13.0575 4908 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
      20:27:13.0575 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdpdr.sys. md5: 1b6163c503398b23ff8b939c67747683
      20:27:13.0578 4908 RDPDR ( LockedFile.Multi.Generic ) - warning
      20:27:13.0578 4908 RDPDR - detected LockedFile.Multi.Generic (1)
      20:27:13.0593 4908 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
      20:27:13.0593 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdpencdd.sys. md5: bb5971a4f00659529a5c44831af22365
      20:27:13.0598 4908 RDPENCDD ( LockedFile.Multi.Generic ) - warning
      20:27:13.0598 4908 RDPENCDD - detected LockedFile.Multi.Generic (1)
      20:27:13.0620 4908 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
      20:27:13.0621 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdprefmp.sys. md5: 216f3fa57533d98e1f74ded70113177a
      20:27:13.0625 4908 RDPREFMP ( LockedFile.Multi.Generic ) - warning
      20:27:13.0625 4908 RDPREFMP - detected LockedFile.Multi.Generic (1)
      20:27:13.0665 4908 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
      20:27:13.0665 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\RDPWD.sys. md5: e61608aa35e98999af9aaeeea6114b0a
      20:27:13.0668 4908 RDPWD ( LockedFile.Multi.Generic ) - warning
      20:27:13.0668 4908 RDPWD - detected LockedFile.Multi.Generic (1)
      20:27:13.0706 4908 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
      20:27:13.0706 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdyboost.sys. md5: 34ed295fa0121c241bfef24764fc4520
      20:27:13.0717 4908 rdyboost ( LockedFile.Multi.Generic ) - warning
      20:27:13.0717 4908 rdyboost - detected LockedFile.Multi.Generic (1)
      20:27:13.0756 4908 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
      20:27:13.0819 4908 RemoteAccess - ok
      20:27:13.0865 4908 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
      20:27:13.0930 4908 RemoteRegistry - ok
      20:27:13.0961 4908 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
      20:27:14.0015 4908 RpcEptMapper - ok
      20:27:14.0053 4908 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
      20:27:14.0134 4908 RpcLocator - ok
      20:27:14.0188 4908 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
      20:27:14.0222 4908 RpcSs - ok
      20:27:14.0254 4908 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
      20:27:14.0254 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rspndr.sys. md5: ddc86e4f8e7456261e637e3552e804ff
      20:27:14.0258 4908 rspndr ( LockedFile.Multi.Generic ) - warning
      20:27:14.0258 4908 rspndr - detected LockedFile.Multi.Generic (1)
      20:27:14.0294 4908 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
      20:27:14.0294 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\vms3cap.sys. md5: e60c0a09f997826c7627b244195ab581
      20:27:14.0298 4908 s3cap ( LockedFile.Multi.Generic ) - warning
      20:27:14.0298 4908 s3cap - detected LockedFile.Multi.Generic (1)
      20:27:14.0340 4908 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
      20:27:14.0350 4908 SamSs - ok
      20:27:14.0415 4908 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
      20:27:14.0415 4908 Suspicious file (NoAccess): C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS. md5: 3289766038db2cb14d07dc84392138d5
      20:27:14.0419 4908 SASDIFSV ( LockedFile.Multi.Generic ) - warning
      20:27:14.0419 4908 SASDIFSV - detected LockedFile.Multi.Generic (1)
      20:27:14.0453 4908 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
      20:27:14.0453 4908 Suspicious file (NoAccess): C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS. md5: 58a38e75f3316a83c23df6173d41f2b5
      20:27:14.0456 4908 SASKUTIL ( LockedFile.Multi.Generic ) - warning
      20:27:14.0456 4908 SASKUTIL - detected LockedFile.Multi.Generic (1)
      20:27:14.0493 4908 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
      20:27:14.0494 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\sbp2port.sys. md5: ac03af3329579fffb455aa2daabbe22b
      20:27:14.0497 4908 sbp2port ( LockedFile.Multi.Generic ) - warning
      20:27:14.0497 4908 sbp2port - detected LockedFile.Multi.Generic (1)
      20:27:14.0544 4908 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
      20:27:14.0583 4908 SCardSvr - ok
      20:27:14.0611 4908 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
      20:27:14.0612 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\scfilter.sys. md5: 253f38d0d7074c02ff8deb9836c97d2b
      20:27:14.0617 4908 scfilter ( LockedFile.Multi.Generic ) - warning
      20:27:14.0617 4908 scfilter - detected LockedFile.Multi.Generic (1)
      20:27:14.0689 4908 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
      20:27:14.0740 4908 Schedule - ok
      20:27:14.0769 4908 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
      20:27:14.0796 4908 SCPolicySvc - ok
      20:27:14.0834 4908 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
      20:27:14.0863 4908 SDRSVC - ok
      20:27:14.0933 4908 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
      20:27:14.0934 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\secdrv.sys. md5: 3ea8a16169c26afbeb544e0e48421186
      20:27:14.0938 4908 secdrv ( LockedFile.Multi.Generic ) - warning
      20:27:14.0938 4908 secdrv - detected LockedFile.Multi.Generic (1)
      20:27:14.0973 4908 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
      20:27:15.0018 4908 seclogon - ok
      20:27:15.0057 4908 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
      20:27:15.0095 4908 SENS - ok
      20:27:15.0119 4908 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
      20:27:15.0138 4908 SensrSvc - ok
      20:27:15.0170 4908 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
      20:27:15.0170 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\serenum.sys. md5: cb624c0035412af0debec78c41f5ca1b
      20:27:15.0173 4908 Serenum ( LockedFile.Multi.Generic ) - warning
      20:27:15.0173 4908 Serenum - detected LockedFile.Multi.Generic (1)
      20:27:15.0205 4908 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
      20:27:15.0205 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\serial.sys. md5: c1d8e28b2c2adfaec4ba89e9fda69bd6
      20:27:15.0208 4908 Serial ( LockedFile.Multi.Generic ) - warning
      20:27:15.0208 4908 Serial - detected LockedFile.Multi.Generic (1)
      20:27:15.0246 4908 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
      20:27:15.0247 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\sermouse.sys. md5: 1c545a7d0691cc4a027396535691c3e3
      20:27:15.0249 4908 sermouse ( LockedFile.Multi.Generic ) - warning
      20:27:15.0249 4908 sermouse - detected LockedFile.Multi.Generic (1)
      20:27:15.0357 4908 ServiceLayer (c15b813f2fdb44f87f23312472c6e790) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
      20:27:15.0372 4908 ServiceLayer - ok
      20:27:15.0433 4908 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
      20:27:15.0461 4908 SessionEnv - ok
      20:27:15.0499 4908 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
      20:27:15.0499 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\sffdisk.sys. md5: a554811bcd09279536440c964ae35bbf
      20:27:15.0502 4908 sffdisk ( LockedFile.Multi.Generic ) - warning
      20:27:15.0502 4908 sffdisk - detected LockedFile.Multi.Generic (1)
      20:27:15.0516 4908 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
      20:27:15.0516 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\sffp_mmc.sys. md5: ff414f0baefeba59bc6c04b3db0b87bf
      20:27:15.0520 4908 sffp_mmc ( LockedFile.Multi.Generic ) - warning
      20:27:15.0520 4908 sffp_mmc - detected LockedFile.Multi.Generic (1)
      20:27:15.0533 4908 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
      20:27:15.0533 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\sffp_sd.sys. md5: dd85b78243a19b59f0637dcf284da63c
      20:27:15.0537 4908 sffp_sd ( LockedFile.Multi.Generic ) - warning
      20:27:15.0537 4908 sffp_sd - detected LockedFile.Multi.Generic (1)
      20:27:15.0559 4908 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
      20:27:15.0560 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\sfloppy.sys. md5: a9d601643a1647211a1ee2ec4e433ff4
      20:27:15.0563 4908 sfloppy ( LockedFile.Multi.Generic ) - warning
      20:27:15.0563 4908 sfloppy - detected LockedFile.Multi.Generic (1)
      20:27:15.0608 4908 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
      20:27:15.0651 4908 SharedAccess - ok
      20:27:15.0697 4908 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
      20:27:15.0743 4908 ShellHWDetection - ok
      20:27:15.0775 4908 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
      20:27:15.0775 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\SiSRaid2.sys. md5: 843caf1e5fde1ffd5ff768f23a51e2e1
      20:27:15.0780 4908 SiSRaid2 ( LockedFile.Multi.Generic ) - warning
      20:27:15.0780 4908 SiSRaid2 - detected LockedFile.Multi.Generic (1)
      20:27:15.0805 4908 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
      20:27:15.0805 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\sisraid4.sys. md5: 6a6c106d42e9ffff8b9fcb4f754f6da4
      20:27:15.0810 4908 SiSRaid4 ( LockedFile.Multi.Generic ) - warning
      20:27:15.0810 4908 SiSRaid4 - detected LockedFile.Multi.Generic (1)
      20:27:15.0843 4908 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
      20:27:15.0844 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\smb.sys. md5: 548260a7b8654e024dc30bf8a7c5baa4
      20:27:15.0848 4908 Smb ( LockedFile.Multi.Generic ) - warning
      20:27:15.0848 4908 Smb - detected LockedFile.Multi.Generic (1)
      20:27:15.0897 4908 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
      20:27:15.0917 4908 SNMPTRAP - ok
      20:27:15.0951 4908 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
      20:27:15.0951 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\spldr.sys. md5: b9e31e5cacdfe584f34f730a677803f9
      20:27:15.0954 4908 spldr ( LockedFile.Multi.Generic ) - warning
      20:27:15.0954 4908 spldr - detected LockedFile.Multi.Generic (1)
      20:27:15.0999 4908 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
      20:27:16.0031 4908 Spooler - ok
      20:27:16.0193 4908 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
      20:27:16.0275 4908 sppsvc - ok
      20:27:16.0381 4908 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
      20:27:16.0425 4908 sppuinotify - ok
      20:27:16.0466 4908 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
      20:27:16.0466 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\srv.sys. md5: 441fba48bff01fdb9d5969ebc1838f0b
      20:27:16.0489 4908 srv ( LockedFile.Multi.Generic ) - warning
      20:27:16.0489 4908 srv - detected LockedFile.Multi.Generic (1)
      20:27:16.0536 4908 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
      20:27:16.0536 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\srv2.sys. md5: b4adebbf5e3677cce9651e0f01f7cc28
      20:27:16.0539 4908 srv2 ( LockedFile.Multi.Generic ) - warning
      20:27:16.0539 4908 srv2 - detected LockedFile.Multi.Generic (1)
      20:27:16.0560 4908 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
      20:27:16.0560 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\srvnet.sys. md5: 27e461f0be5bff5fc737328f749538c3
      20:27:16.0563 4908 srvnet ( LockedFile.Multi.Generic ) - warning
      20:27:16.0563 4908 srvnet - detected LockedFile.Multi.Generic (1)
      20:27:16.0598 4908 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
      20:27:16.0648 4908 SSDPSRV - ok
      20:27:16.0680 4908 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
      20:27:16.0709 4908 SstpSvc - ok
      20:27:16.0750 4908 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
      20:27:16.0750 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\stexstor.sys. md5: f3817967ed533d08327dc73bc4d5542a
      20:27:16.0755 4908 stexstor ( LockedFile.Multi.Generic ) - warning
      20:27:16.0755 4908 stexstor - detected LockedFile.Multi.Generic (1)
      20:27:16.0812 4908 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
      20:27:16.0838 4908 stisvc - ok
      20:27:16.0858 4908 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
      20:27:16.0859 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\vmstorfl.sys. md5: 7785dc213270d2fc066538daf94087e7
      20:27:16.0862 4908 storflt ( LockedFile.Multi.Generic ) - warning
      20:27:16.0862 4908 storflt - detected LockedFile.Multi.Generic (1)
      20:27:16.0881 4908 StorSvc (c40841817ef57d491f22eb103da587cc) C:\Windows\system32\storsvc.dll
      20:27:16.0896 4908 StorSvc - ok
      20:27:16.0923 4908 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
      20:27:16.0923 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\storvsc.sys. md5: d34e4943d5ac096c8edeebfd80d76e23
      20:27:16.0926 4908 storvsc ( LockedFile.Multi.Generic ) - warning
      20:27:16.0926 4908 storvsc - detected LockedFile.Multi.Generic (1)
      20:27:16.0958 4908 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
      20:27:16.0958 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\swenum.sys. md5: d01ec09b6711a5f8e7e6564a4d0fbc90
      20:27:16.0962 4908 swenum ( LockedFile.Multi.Generic ) - warning
      20:27:16.0962 4908 swenum - detected LockedFile.Multi.Generic (1)
      20:27:17.0030 4908 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
      20:27:17.0053 4908 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
      20:27:17.0053 4908 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
      20:27:17.0099 4908 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
      20:27:17.0149 4908 swprv - ok
      20:27:17.0246 4908 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
      20:27:17.0298 4908 SysMain - ok
      20:27:17.0383 4908 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
      20:27:17.0404 4908 TabletInputService - ok
      20:27:17.0617 4908 TabletServicePen (c4c20cfa4f42e9b7454e895c5c47bcd3) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
      20:27:17.0770 4908 TabletServicePen - ok
      20:27:17.0837 4908 taphss (f33fdc72298df4bf9813a55d21f4eb31) C:\Windows\system32\DRIVERS\taphss.sys
      20:27:17.0838 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\taphss.sys. md5: f33fdc72298df4bf9813a55d21f4eb31
      20:27:17.0848 4908 taphss ( LockedFile.Multi.Generic ) - warning
      20:27:17.0848 4908 taphss - detected LockedFile.Multi.Generic (1)
      20:27:17.0905 4908 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
      20:27:17.0948 4908 TapiSrv - ok
      20:27:17.0995 4908 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
      20:27:18.0024 4908 TBS - ok
      20:27:18.0134 4908 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
      20:27:18.0134 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\tcpip.sys. md5: acb82bda8f46c84f465c1afa517dc4b9
      20:27:18.0152 4908 Tcpip ( LockedFile.Multi.Generic ) - warning
      20:27:18.0152 4908 Tcpip - detected LockedFile.Multi.Generic (1)
      20:27:18.0306 4908 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
      20:27:18.0306 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tcpip.sys. md5: acb82bda8f46c84f465c1afa517dc4b9
      20:27:18.0324 4908 TCPIP6 ( LockedFile.Multi.Generic ) - warning
      20:27:18.0324 4908 TCPIP6 - detected LockedFile.Multi.Generic (1)
      20:27:18.0382 4908 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
      20:27:18.0383 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\tcpipreg.sys. md5: df687e3d8836bfb04fcc0615bf15a519
      20:27:18.0385 4908 tcpipreg ( LockedFile.Multi.Generic ) - warning
      20:27:18.0386 4908 tcpipreg - detected LockedFile.Multi.Generic (1)
      20:27:18.0428 4908 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
      20:27:18.0428 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\tdpipe.sys. md5: 3371d21011695b16333a3934340c4e7c
      20:27:18.0431 4908 TDPIPE ( LockedFile.Multi.Generic ) - warning
      20:27:18.0431 4908 TDPIPE - detected LockedFile.Multi.Generic (1)
      20:27:18.0466 4908 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
      20:27:18.0466 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\tdtcp.sys. md5: 51c5eceb1cdee2468a1748be550cfbc8
      20:27:18.0469 4908 TDTCP ( LockedFile.Multi.Generic ) - warning
      20:27:18.0469 4908 TDTCP - detected LockedFile.Multi.Generic (1)
      20:27:18.0504 4908 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
      20:27:18.0505 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tdx.sys. md5: ddad5a7ab24d8b65f8d724f5c20fd806
      20:27:18.0507 4908 tdx ( LockedFile.Multi.Generic ) - warning
      20:27:18.0507 4908 tdx - detected LockedFile.Multi.Generic (1)
      20:27:18.0671 4908 TeamViewer7 (2bbb318ea9f34fdc508cea4aab98d770) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
      20:27:18.0708 4908 TeamViewer7 - ok
      20:27:18.0972 4908 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
      20:27:18.0972 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\termdd.sys. md5: 561e7e1f06895d78de991e01dd0fb6e5
      20:27:18.0980 4908 TermDD ( LockedFile.Multi.Generic ) - warning
      20:27:18.0980 4908 TermDD - detected LockedFile.Multi.Generic (1)
      20:27:19.0037 4908 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
      20:27:19.0095 4908 TermService - ok
      20:27:19.0141 4908 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
      20:27:19.0163 4908 Themes - ok
      20:27:19.0194 4908 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
      20:27:19.0222 4908 THREADORDER - ok
      20:27:19.0304 4908 TouchServicePen (7625dcf246e488e523dc1f64c38abda2) C:\Program Files\Tablet\Pen\Pen_TouchService.exe
      20:27:19.0324 4908 TouchServicePen - ok
      20:27:19.0365 4908 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
      20:27:19.0401 4908 TrkWks - ok
      20:27:19.0458 4908 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
      20:27:19.0495 4908 TrustedInstaller - ok
      20:27:19.0536 4908 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
      20:27:19.0536 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tssecsrv.sys. md5: ce18b2cdfc837c99e5fae9ca6cba5d30
      20:27:19.0556 4908 tssecsrv ( LockedFile.Multi.Generic ) - warning
      20:27:19.0556 4908 tssecsrv - detected LockedFile.Multi.Generic (1)
      20:27:19.0605 4908 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
      20:27:19.0605 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\tsusbflt.sys. md5: d11c783e3ef9a3c52c0ebe83cc5000e9
      20:27:19.0608 4908 TsUsbFlt ( LockedFile.Multi.Generic ) - warning
      20:27:19.0608 4908 TsUsbFlt - detected LockedFile.Multi.Generic (1)
      20:27:19.0735 4908 TuneUp.UtilitiesSvc (19f752cb14805929782cb0e6ba6866cb) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
      20:27:19.0774 4908 TuneUp.UtilitiesSvc - ok
      20:27:19.0826 4908 TuneUpUtilitiesDrv (dcc94c51d27c7ec0dadeca8f64c94fcf) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys
      20:27:19.0827 4908 Suspicious file (NoAccess): C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys. md5: dcc94c51d27c7ec0dadeca8f64c94fcf
      20:27:19.0830 4908 TuneUpUtilitiesDrv ( LockedFile.Multi.Generic ) - warning
      20:27:19.0830 4908 TuneUpUtilitiesDrv - detected LockedFile.Multi.Generic (1)
      20:27:19.0916 4908 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
      20:27:19.0917 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tunnel.sys. md5: 3566a8daafa27af944f5d705eaa64894
      20:27:19.0919 4908 tunnel ( LockedFile.Multi.Generic ) - warning
      20:27:19.0919 4908 tunnel - detected LockedFile.Multi.Generic (1)
      20:27:19.0964 4908 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
      20:27:19.0964 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\uagp35.sys. md5: b4dd609bd7e282bfc683cec7eaaaad67
      20:27:19.0968 4908 uagp35 ( LockedFile.Multi.Generic ) - warning
      20:27:19.0968 4908 uagp35 - detected LockedFile.Multi.Generic (1)
      20:27:20.0018 4908 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
      20:27:20.0018 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\udfs.sys. md5: ff4232a1a64012baa1fd97c7b67df593
      20:27:20.0021 4908 udfs ( LockedFile.Multi.Generic ) - warning
      20:27:20.0021 4908 udfs - detected LockedFile.Multi.Generic (1)
      20:27:20.0067 4908 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
      20:27:20.0084 4908 UI0Detect - ok
      20:27:20.0116 4908 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
      20:27:20.0116 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\uliagpkx.sys. md5: 4bfe1bc28391222894cbf1e7d0e42320
      20:27:20.0119 4908 uliagpkx ( LockedFile.Multi.Generic ) - warning
      20:27:20.0119 4908 uliagpkx - detected LockedFile.Multi.Generic (1)
      20:27:20.0146 4908 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
      20:27:20.0147 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\umbus.sys. md5: dc54a574663a895c8763af0fa1ff7561
      20:27:20.0149 4908 umbus ( LockedFile.Multi.Generic ) - warning
      20:27:20.0149 4908 umbus - detected LockedFile.Multi.Generic (1)
      20:27:20.0170 4908 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
      20:27:20.0170 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\umpass.sys. md5: b2e8e8cb557b156da5493bbddcc1474d
      20:27:20.0173 4908 UmPass ( LockedFile.Multi.Generic ) - warning
      20:27:20.0173 4908 UmPass - detected LockedFile.Multi.Generic (1)
      20:27:20.0212 4908 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
      20:27:20.0240 4908 UmRdpService - ok
      20:27:20.0287 4908 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
      20:27:20.0330 4908 upnphost - ok
      20:27:20.0374 4908 upperdev (34afb83c7bba370e404e52cc2290350c) C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
      20:27:20.0374 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys. md5: 34afb83c7bba370e404e52cc2290350c
      20:27:20.0377 4908 upperdev ( LockedFile.Multi.Generic ) - warning
      20:27:20.0377 4908 upperdev - detected LockedFile.Multi.Generic (1)
      20:27:20.0411 4908 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
      20:27:20.0412 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbaudio.sys. md5: 82e8f44688e6fac57b5b7c6fc7adbc2a
      20:27:20.0414 4908 usbaudio ( LockedFile.Multi.Generic ) - warning
      20:27:20.0414 4908 usbaudio - detected LockedFile.Multi.Generic (1)
      20:27:20.0441 4908 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
      20:27:20.0442 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbccgp.sys. md5: 6f1a3157a1c89435352ceb543cdb359c
      20:27:20.0444 4908 usbccgp ( LockedFile.Multi.Generic ) - warning
      20:27:20.0444 4908 usbccgp - detected LockedFile.Multi.Generic (1)
      20:27:20.0470 4908 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
      20:27:20.0470 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbcir.sys. md5: af0892a803fdda7492f595368e3b68e7
      20:27:20.0478 4908 usbcir ( LockedFile.Multi.Generic ) - warning
      20:27:20.0478 4908 usbcir - detected LockedFile.Multi.Generic (1)
      20:27:20.0511 4908 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
      20:27:20.0512 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbehci.sys. md5: c025055fe7b87701eb042095df1a2d7b
      20:27:20.0514 4908 usbehci ( LockedFile.Multi.Generic ) - warning
      20:27:20.0515 4908 usbehci - detected LockedFile.Multi.Generic (1)
      20:27:20.0559 4908 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
      20:27:20.0559 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbhub.sys. md5: 287c6c9410b111b68b52ca298f7b8c24
      20:27:20.0565 4908 usbhub ( LockedFile.Multi.Generic ) - warning
      20:27:20.0565 4908 usbhub - detected LockedFile.Multi.Generic (1)
      20:27:20.0590 4908 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
      20:27:20.0590 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbohci.sys. md5: 9840fc418b4cbd632d3d0a667a725c31
      20:27:20.0593 4908 usbohci ( LockedFile.Multi.Generic ) - warning
      20:27:20.0593 4908 usbohci - detected LockedFile.Multi.Generic (1)
      20:27:20.0635 4908 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
      20:27:20.0635 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbprint.sys. md5: 73188f58fb384e75c4063d29413cee3d
      20:27:20.0639 4908 usbprint ( LockedFile.Multi.Generic ) - warning
      20:27:20.0639 4908 usbprint - detected LockedFile.Multi.Generic (1)
      20:27:20.0671 4908 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
      20:27:20.0671 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbscan.sys. md5: aaa2513c8aed8b54b189fd0c6b1634c0
      20:27:20.0675 4908 usbscan ( LockedFile.Multi.Generic ) - warning
      20:27:20.0675 4908 usbscan - detected LockedFile.Multi.Generic (1)
      20:27:20.0727 4908 usbser (4acee387fa8fd39f83564fcd2fc234f2) C:\Windows\system32\drivers\usbser.sys
      20:27:20.0727 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbser.sys. md5: 4acee387fa8fd39f83564fcd2fc234f2
      20:27:20.0730 4908 usbser ( LockedFile.Multi.Generic ) - warning
      20:27:20.0730 4908 usbser - detected LockedFile.Multi.Generic (1)
      20:27:20.0770 4908 UsbserFilt (aa75e1efbee7186b4cbaaacf1f15e6ca) C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
      20:27:20.0770 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys. md5: aa75e1efbee7186b4cbaaacf1f15e6ca
      20:27:20.0773 4908 UsbserFilt ( LockedFile.Multi.Generic ) - warning
      20:27:20.0773 4908 UsbserFilt - detected LockedFile.Multi.Generic (1)
      20:27:20.0797 4908 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
      20:27:20.0797 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\USBSTOR.SYS. md5: fed648b01349a3c8395a5169db5fb7d6
      20:27:20.0800 4908 USBSTOR ( LockedFile.Multi.Generic ) - warning
      20:27:20.0800 4908 USBSTOR - detected LockedFile.Multi.Generic (1)
      20:27:20.0820 4908 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
      20:27:20.0820 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbuhci.sys. md5: 62069a34518bcf9c1fd9e74b3f6db7cd
      20:27:20.0823 4908 usbuhci ( LockedFile.Multi.Generic ) - warning
      20:27:20.0823 4908 usbuhci - detected LockedFile.Multi.Generic (1)
      20:27:20.0870 4908 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
      20:27:20.0870 4908 Suspicious file (NoAccess): C:\Windows\system32\Drivers\usbvideo.sys. md5: 454800c2bc7f3927ce030141ee4f4c50
      20:27:20.0873 4908 usbvideo ( LockedFile.Multi.Generic ) - warning
      20:27:20.0873 4908 usbvideo - detected LockedFile.Multi.Generic (1)
      20:27:20.0908 4908 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
      20:27:20.0946 4908 UxSms - ok
      20:27:20.0991 4908 UxTuneUp (0bfc218c804c9b4ce4487079829d3d13) C:\Windows\System32\uxtuneup.dll
      20:27:20.0999 4908 UxTuneUp - ok
      20:27:21.0032 4908 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
      20:27:21.0042 4908 VaultSvc - ok
      20:27:21.0066 4908 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
      20:27:21.0066 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\vdrvroot.sys. md5: c5c876ccfc083ff3b128f933823e87bd
      20:27:21.0069 4908 vdrvroot ( LockedFile.Multi.Generic ) - warning
      20:27:21.0069 4908 vdrvroot - detected LockedFile.Multi.Generic (1)
      20:27:21.0121 4908 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
      20:27:21.0167 4908 vds - ok
      20:27:21.0205 4908 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
      20:27:21.0205 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\vgapnp.sys. md5: da4da3f5e02943c2dc8c6ed875de68dd
      20:27:21.0220 4908 vga ( LockedFile.Multi.Generic ) - warning
      20:27:21.0220 4908 vga - detected LockedFile.Multi.Generic (1)
      20:27:21.0240 4908 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
      20:27:21.0240 4908 Suspicious file (NoAccess): C:\Windows\System32\drivers\vga.sys. md5: 53e92a310193cb3c03bea963de7d9cfc
      20:27:21.0246 4908 VgaSave ( LockedFile.Multi.Generic ) - warning
      20:27:21.0246 4908 VgaSave - detected LockedFile.Multi.Generic (1)
      20:27:21.0294 4908 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
      20:27:21.0294 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\vhdmp.sys. md5: 2ce2df28c83aeaf30084e1b1eb253cbb
      20:27:21.0297 4908 vhdmp ( LockedFile.Multi.Generic ) - warning
      20:27:21.0298 4908 vhdmp - detected LockedFile.Multi.Generic (1)
      20:27:21.0328 4908 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
      20:27:21.0329 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\viaide.sys. md5: e5689d93ffe4e5d66c0178761240dd54
      20:27:21.0332 4908 viaide ( LockedFile.Multi.Generic ) - warning
      20:27:21.0332 4908 viaide - detected LockedFile.Multi.Generic (1)
      20:27:21.0351 4908 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
      20:27:21.0351 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\vmbus.sys. md5: 86ea3e79ae350fea5331a1303054005f
      20:27:21.0354 4908 vmbus ( LockedFile.Multi.Generic ) - warning
      20:27:21.0354 4908 vmbus - detected LockedFile.Multi.Generic (1)
      20:27:21.0371 4908 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
      20:27:21.0371 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\VMBusHID.sys. md5: 7de90b48f210d29649380545db45a187
      20:27:21.0374 4908 VMBusHID ( LockedFile.Multi.Generic ) - warning
      20:27:21.0374 4908 VMBusHID - detected LockedFile.Multi.Generic (1)
      20:27:21.0390 4908 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
      20:27:21.0390 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\volmgr.sys. md5: d2aafd421940f640b407aefaaebd91b0
      20:27:21.0392 4908 volmgr ( LockedFile.Multi.Generic ) - warning
      20:27:21.0392 4908 volmgr - detected LockedFile.Multi.Generic (1)
      20:27:21.0440 4908 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
      20:27:21.0441 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\volmgrx.sys. md5: a255814907c89be58b79ef2f189b843b
      20:27:21.0444 4908 volmgrx ( LockedFile.Multi.Generic ) - warning
      20:27:21.0444 4908 volmgrx - detected LockedFile.Multi.Generic (1)
      20:27:21.0467 4908 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
      20:27:21.0467 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\volsnap.sys. md5: 0d08d2f3b3ff84e433346669b5e0f639
      20:27:21.0470 4908 volsnap ( LockedFile.Multi.Generic ) - warning
      20:27:21.0470 4908 volsnap - detected LockedFile.Multi.Generic (1)
      20:27:21.0502 4908 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
      20:27:21.0503 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\vsmraid.sys. md5: 5e2016ea6ebaca03c04feac5f330d997
      20:27:21.0506 4908 vsmraid ( LockedFile.Multi.Generic ) - warning
      20:27:21.0506 4908 vsmraid - detected LockedFile.Multi.Generic (1)
      20:27:21.0613 4908 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
      20:27:21.0679 4908 VSS - ok
      20:27:21.0739 4908 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
      20:27:21.0739 4908 Suspicious file (NoAccess): C:\Windows\System32\drivers\vwifibus.sys. md5: 36d4720b72b5c5d9cb2b9c29e9df67a1
      20:27:21.0742 4908 vwifibus ( LockedFile.Multi.Generic ) - warning
      20:27:21.0742 4908 vwifibus - detected LockedFile.Multi.Generic (1)
      20:27:21.0800 4908 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
      20:27:21.0837 4908 W32Time - ok
      20:27:21.0884 4908 wacommousefilter (e04d43c7d1641e95d35cae6086c7e350) C:\Windows\system32\DRIVERS\wacommousefilter.sys
      20:27:21.0884 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wacommousefilter.sys. md5: e04d43c7d1641e95d35cae6086c7e350
      20:27:21.0887 4908 wacommousefilter ( LockedFile.Multi.Generic ) - warning
      20:27:21.0887 4908 wacommousefilter - detected LockedFile.Multi.Generic (1)
      20:27:21.0918 4908 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
      20:27:21.0918 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wacompen.sys. md5: 4e9440f4f152a7b944cb1663d3935a3e
      20:27:21.0921 4908 WacomPen ( LockedFile.Multi.Generic ) - warning
      20:27:21.0921 4908 WacomPen - detected LockedFile.Multi.Generic (1)
      20:27:21.0954 4908 wacomvhid (ec1ceb237e365330c1fcfc4876aa0ac0) C:\Windows\system32\DRIVERS\wacomvhid.sys
      20:27:21.0954 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wacomvhid.sys. md5: ec1ceb237e365330c1fcfc4876aa0ac0
      20:27:21.0958 4908 wacomvhid ( LockedFile.Multi.Generic ) - warning
      20:27:21.0958 4908 wacomvhid - detected LockedFile.Multi.Generic (1)
      20:27:22.0045 4908 wampapache (5cf6e9a685199445fee02fe8c191c9ba) c:\wamp\bin\apache\apache2.2.21\bin\httpd.exe
      20:27:22.0058 4908 wampapache ( UnsignedFile.Multi.Generic ) - warning
      20:27:22.0058 4908 wampapache - detected UnsignedFile.Multi.Generic (1)
      20:27:22.0098 4908 wampmysqld - ok
      20:27:22.0147 4908 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
      20:27:22.0147 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wanarp.sys. md5: 356afd78a6ed4457169241ac3965230c
      20:27:22.0162 4908 WANARP ( LockedFile.Multi.Generic ) - warning
      20:27:22.0162 4908 WANARP - detected LockedFile.Multi.Generic (1)
      20:27:22.0174 4908 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
      20:27:22.0174 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wanarp.sys. md5: 356afd78a6ed4457169241ac3965230c
      20:27:22.0179 4908 Wanarpv6 ( LockedFile.Multi.Generic ) - warning
      20:27:22.0179 4908 Wanarpv6 - detected LockedFile.Multi.Generic (1)
      20:27:22.0249 4908 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
      20:27:22.0282 4908 WatAdminSvc - ok
      20:27:22.0378 4908 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
      20:27:22.0427 4908 wbengine - ok
      20:27:22.0553 4908 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
      20:27:22.0579 4908 WbioSrvc - ok
      20:27:22.0623 4908 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
      20:27:22.0646 4908 wcncsvc - ok
      20:27:22.0672 4908 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
      20:27:22.0696 4908 WcsPlugInService - ok
      20:27:22.0735 4908 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
      20:27:22.0736 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wd.sys. md5: 72889e16ff12ba0f235467d6091b17dc
      20:27:22.0746 4908 Wd ( LockedFile.Multi.Generic ) - warning
      20:27:22.0746 4908 Wd - detected LockedFile.Multi.Generic (1)
      20:27:22.0795 4908 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
      20:27:22.0796 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\Wdf01000.sys. md5: 441bd2d7b4f98134c3a4f9fa570fd250
      20:27:22.0798 4908 Wdf01000 ( LockedFile.Multi.Generic ) - warning
      20:27:22.0799 4908 Wdf01000 - detected LockedFile.Multi.Generic (1)
      20:27:22.0825 4908 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
      20:27:22.0854 4908 WdiServiceHost - ok
      20:27:22.0869 4908 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
      20:27:22.0885 4908 WdiSystemHost - ok
      20:27:22.0928 4908 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
      20:27:22.0952 4908 WebClient - ok
      20:27:22.0992 4908 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
      20:27:23.0038 4908 Wecsvc - ok
      20:27:23.0065 4908 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
      20:27:23.0106 4908 wercplsupport - ok
      20:27:23.0129 4908 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
      20:27:23.0164 4908 WerSvc - ok
      20:27:23.0199 4908 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
      20:27:23.0200 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wfplwf.sys. md5: 611b23304bf067451a9fdee01fbdd725
      20:27:23.0204 4908 WfpLwf ( LockedFile.Multi.Generic ) - warning
      20:27:23.0204 4908 WfpLwf - detected LockedFile.Multi.Generic (1)
      20:27:23.0227 4908 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
      20:27:23.0227 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\wimmount.sys. md5: 05ecaec3e4529a7153b3136ceb49f0ec
      20:27:23.0231 4908 WIMMount ( LockedFile.Multi.Generic ) - warning
      20:27:23.0231 4908 WIMMount - detected LockedFile.Multi.Generic (1)
      20:27:23.0310 4908 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
      20:27:23.0346 4908 Winmgmt - ok
      20:27:23.0457 4908 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
      20:27:23.0543 4908 WinRM - ok
      20:27:23.0679 4908 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
      20:27:23.0679 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\WinUsb.sys. md5: fe88b288356e7b47b74b13372add906d
      20:27:23.0688 4908 WinUsb ( LockedFile.Multi.Generic ) - warning
      20:27:23.0688 4908 WinUsb - detected LockedFile.Multi.Generic (1)
      20:27:23.0759 4908 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
      20:27:23.0805 4908 Wlansvc - ok
      20:27:23.0845 4908 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
      20:27:23.0846 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\wmiacpi.sys. md5: f6ff8944478594d0e414d3f048f0d778
      20:27:23.0848 4908 WmiAcpi ( LockedFile.Multi.Generic ) - warning
      20:27:23.0848 4908 WmiAcpi - detected LockedFile.Multi.Generic (1)
      20:27:24.0032 4908 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
      20:27:24.0062 4908 wmiApSrv - ok
      20:27:24.0096 4908 WMPNetworkSvc - ok
      20:27:24.0114 4908 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
      20:27:24.0125 4908 WPCSvc - ok
      20:27:24.0168 4908 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
      20:27:24.0181 4908 WPDBusEnum - ok
      20:27:24.0216 4908 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
      20:27:24.0216 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\ws2ifsl.sys. md5: 6bcc1d7d2fd2453957c5479a32364e52
      20:27:24.0220 4908 ws2ifsl ( LockedFile.Multi.Generic ) - warning
      20:27:24.0220 4908 ws2ifsl - detected LockedFile.Multi.Generic (1)
      20:27:24.0234 4908 WSearch - ok
      20:27:24.0382 4908 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
      20:27:24.0436 4908 wuauserv - ok
      20:27:24.0536 4908 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
      20:27:24.0536 4908 Suspicious file (NoAccess): C:\Windows\system32\drivers\WudfPf.sys. md5: d3381dc54c34d79b22cee0d65ba91b7c
      20:27:24.0539 4908 WudfPf ( LockedFile.Multi.Generic ) - warning
      20:27:24.0539 4908 WudfPf - detected LockedFile.Multi.Generic (1)
      20:27:24.0582 4908 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
      20:27:24.0583 4908 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\WUDFRd.sys. md5: cf8d590be3373029d57af80914190682
      20:27:24.0585 4908 WUDFRd ( LockedFile.Multi.Generic ) - warning
      20:27:24.0585 4908 WUDFRd - detected LockedFile.Multi.Generic (1)
      20:27:24.0620 4908 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
      20:27:24.0647 4908 wudfsvc - ok
      20:27:24.0688 4908 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
      20:27:24.0712 4908 WwanSvc - ok
      20:27:24.0756 4908 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
      20:27:24.0974 4908 \Device\Harddisk0\DR0 - ok
      20:27:24.0979 4908 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
      20:27:25.0040 4908 \Device\Harddisk1\DR1 - ok
      20:27:25.0045 4908 Boot (0x1200) (a3a39b09bcd19dc37a6a3330c38d9a5d) \Device\Harddisk0\DR0\Partition0
      20:27:25.0046 4908 \Device\Harddisk0\DR0\Partition0 - ok
      20:27:25.0081 4908 Boot (0x1200) (e607ee2334ce5e53fc2bf218e7e4f5aa) \Device\Harddisk0\DR0\Partition1
      20:27:25.0082 4908 \Device\Harddisk0\DR0\Partition1 - ok
      20:27:25.0084 4908 ============================================================
      20:27:25.0084 4908 Scan finished
      20:27:25.0084 4908 ============================================================
      20:27:25.0093 1876 Detected object count: 267
      20:27:25.0093 1876 Actual detected object count: 267
      20:29:30.0891 1876 41e20f329c42e5f1 ( LockedService.Multi.Generic ) - skipped by user
      20:29:30.0891 1876 41e20f329c42e5f1 ( LockedService.Multi.Generic ) - User select action: Skip
      20:29:30.0891 1876 AsyncMac ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0892 1876 AsyncMac ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0893 1876 atapi ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0893 1876 atapi ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0894 1876 AtiHDAudioService ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0894 1876 AtiHDAudioService ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0895 1876 atikmdag ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0895 1876 atikmdag ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0896 1876 Autodesk Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
      20:29:30.0896 1876 Autodesk Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0897 1876 avipbb ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0897 1876 avipbb ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0898 1876 b57nd60a ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0898 1876 b57nd60a ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0899 1876 Beep ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0899 1876 Beep ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0900 1876 blbdrive ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0900 1876 blbdrive ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0901 1876 Boonty Games ( UnsignedFile.Multi.Generic ) - skipped by user
      20:29:30.0901 1876 Boonty Games ( UnsignedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0902 1876 bowser ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0902 1876 bowser ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0903 1876 BrFiltLo ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0903 1876 BrFiltLo ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0904 1876 BrFiltUp ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0904 1876 BrFiltUp ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0905 1876 Brserid ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0905 1876 Brserid ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0906 1876 BrSerWdm ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0906 1876 BrSerWdm ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0907 1876 BrUsbMdm ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0907 1876 BrUsbMdm ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0908 1876 BrUsbSer ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0908 1876 BrUsbSer ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0909 1876 BTCFilterService ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0909 1876 BTCFilterService ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0910 1876 BTHMODEM ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0910 1876 BTHMODEM ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0911 1876 cdfs ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0911 1876 cdfs ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0912 1876 cdrom ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0912 1876 cdrom ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0913 1876 circlass ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0913 1876 circlass ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0914 1876 CLFS ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0914 1876 CLFS ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0915 1876 CmBatt ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0915 1876 CmBatt ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0916 1876 cmdide ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0916 1876 cmdide ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0917 1876 CNG ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0917 1876 CNG ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0919 1876 Compbatt ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0919 1876 Compbatt ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0920 1876 CompositeBus ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0920 1876 CompositeBus ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0921 1876 crcdisk ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0921 1876 crcdisk ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0922 1876 CSC ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0922 1876 CSC ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0923 1876 DfsC ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0923 1876 DfsC ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0924 1876 discache ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0924 1876 discache ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0925 1876 Disk ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0925 1876 Disk ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0926 1876 Dot4 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0926 1876 Dot4 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0927 1876 Dot4Print ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0927 1876 Dot4Print ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0928 1876 dot4usb ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0928 1876 dot4usb ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0929 1876 drmkaud ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0929 1876 drmkaud ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0930 1876 DXGKrnl ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0930 1876 DXGKrnl ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0931 1876 ebdrv ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0931 1876 ebdrv ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0932 1876 elxstor ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0932 1876 elxstor ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0933 1876 ErrDev ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0933 1876 ErrDev ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0934 1876 exfat ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0934 1876 exfat ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0935 1876 fastfat ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0935 1876 fastfat ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0936 1876 fdc ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0936 1876 fdc ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0937 1876 FileInfo ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0937 1876 FileInfo ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0938 1876 Filetrace ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0938 1876 Filetrace ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0939 1876 flpydisk ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0939 1876 flpydisk ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0940 1876 FltMgr ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0940 1876 FltMgr ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0941 1876 FsDepends ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0941 1876 FsDepends ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0942 1876 Fs_Rec ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0942 1876 Fs_Rec ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0943 1876 fvevol ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0943 1876 fvevol ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0944 1876 gagp30kx ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0944 1876 gagp30kx ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0945 1876 GEARAspiWDM ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0945 1876 GEARAspiWDM ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0946 1876 hcw85cir ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0946 1876 hcw85cir ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0947 1876 HdAudAddService ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0947 1876 HdAudAddService ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0948 1876 HDAudBus ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0948 1876 HDAudBus ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0949 1876 HidBatt ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0949 1876 HidBatt ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0950 1876 HidBth ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0950 1876 HidBth ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0951 1876 HidIr ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0951 1876 HidIr ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0952 1876 HidUsb ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0952 1876 HidUsb ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0953 1876 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
      20:29:30.0953 1876 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0954 1876 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
      20:29:30.0954 1876 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0955 1876 HpSAMD ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0955 1876 HpSAMD ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0956 1876 HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user
      20:29:30.0956 1876 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0957 1876 HssDrv ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0957 1876 HssDrv ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0958 1876 HTTP ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0958 1876 HTTP ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0959 1876 hwpolicy ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0959 1876 hwpolicy ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0960 1876 i8042prt ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0960 1876 i8042prt ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0961 1876 iaStorV ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0961 1876 iaStorV ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0962 1876 iirsp ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0962 1876 iirsp ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0963 1876 IntcAzAudAddService ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0963 1876 IntcAzAudAddService ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0964 1876 intelide ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0964 1876 intelide ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0965 1876 intelppm ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0965 1876 intelppm ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0966 1876 IpFilterDriver ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0966 1876 IpFilterDriver ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0967 1876 IPMIDRV ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0968 1876 IPMIDRV ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0969 1876 IPNAT ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0969 1876 IPNAT ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0970 1876 IRENUM ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0970 1876 IRENUM ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0971 1876 isapnp ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0971 1876 isapnp ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0972 1876 iScsiPrt ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0972 1876 iScsiPrt ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0973 1876 kbdclass ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0973 1876 kbdclass ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0974 1876 kbdhid ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0974 1876 kbdhid ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0975 1876 KSecDD ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0975 1876 KSecDD ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0976 1876 KSecPkg ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0976 1876 KSecPkg ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0977 1876 ksthunk ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0977 1876 ksthunk ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0978 1876 L1C ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0978 1876 L1C ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0979 1876 lltdio ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0979 1876 lltdio ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0980 1876 LSI_FC ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0980 1876 LSI_FC ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0981 1876 LSI_SAS ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0981 1876 LSI_SAS ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0982 1876 LSI_SAS2 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0982 1876 LSI_SAS2 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0983 1876 LSI_SCSI ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0983 1876 LSI_SCSI ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0984 1876 luafv ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0984 1876 luafv ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0985 1876 McciCMService ( UnsignedFile.Multi.Generic ) - skipped by user
      20:29:30.0985 1876 McciCMService ( UnsignedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0986 1876 mcdbus ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0986 1876 mcdbus ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0987 1876 megasas ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0987 1876 megasas ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0988 1876 MegaSR ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0988 1876 MegaSR ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0989 1876 mi-raysat_3dsMax2009_32 ( UnsignedFile.Multi.Generic ) - skipped by user
      20:29:30.0989 1876 mi-raysat_3dsMax2009_32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0990 1876 mi-raysat_3dsMax2009_64 ( UnsignedFile.Multi.Generic ) - skipped by user
      20:29:30.0990 1876 mi-raysat_3dsMax2009_64 ( UnsignedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0991 1876 Modem ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0991 1876 Modem ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0992 1876 monitor ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0992 1876 monitor ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0993 1876 motccgp ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0993 1876 motccgp ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0994 1876 motccgpfl ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0994 1876 motccgpfl ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0995 1876 motmodem ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0995 1876 motmodem ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0996 1876 MotoSwitchService ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0996 1876 MotoSwitchService ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0997 1876 Motousbnet ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0997 1876 Motousbnet ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0998 1876 motusbdevice ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0998 1876 motusbdevice ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:30.0999 1876 mouclass ( LockedFile.Multi.Generic ) - skipped by user
      20:29:30.0999 1876 mouclass ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0000 1876 mouhid ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0000 1876 mouhid ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0001 1876 mountmgr ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0001 1876 mountmgr ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0002 1876 mpio ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0002 1876 mpio ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0003 1876 mpsdrv ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0003 1876 mpsdrv ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0004 1876 MRxDAV ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0004 1876 MRxDAV ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0005 1876 mrxsmb ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0005 1876 mrxsmb ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0006 1876 mrxsmb10 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0006 1876 mrxsmb10 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0007 1876 mrxsmb20 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0007 1876 mrxsmb20 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0008 1876 msahci ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0008 1876 msahci ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0009 1876 msdsm ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0009 1876 msdsm ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0010 1876 Msfs ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0010 1876 Msfs ( LockedFile.Multi.Generic ) - User select action: Skip

    5. #5
      Usuario Avatar de GuST7
      Registrado
      ene 2009
      Ubicación
      Argentina
      Mensajes
      16

      Re: Avira desactivó la Realtime Protection y no puedo volver a habilitarla

      Ultima parte. No se si sea normal que el log sea tan largo, pero nunca use este programa.

      Espero tu respuesta, y desde ya, muchas gracias!

      20:29:31.0011 1876 mshidkmdf ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0011 1876 mshidkmdf ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0012 1876 msisadrv ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0012 1876 msisadrv ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0013 1876 MSKSSRV ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0013 1876 MSKSSRV ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0014 1876 MSPCLOCK ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0014 1876 MSPCLOCK ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0015 1876 MSPQM ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0015 1876 MSPQM ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0016 1876 MsRPC ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0016 1876 MsRPC ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0017 1876 mssmbios ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0017 1876 mssmbios ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0019 1876 MSTEE ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0019 1876 MSTEE ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0020 1876 MTConfig ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0020 1876 MTConfig ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0021 1876 MTsensor ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0021 1876 MTsensor ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0022 1876 Mup ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0022 1876 Mup ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0023 1876 NativeWifiP ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0023 1876 NativeWifiP ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0024 1876 NDIS ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0024 1876 NDIS ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0025 1876 NdisCap ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0025 1876 NdisCap ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0026 1876 NdisTapi ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0026 1876 NdisTapi ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0027 1876 Ndisuio ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0027 1876 Ndisuio ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0028 1876 NdisWan ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0028 1876 NdisWan ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0029 1876 NDProxy ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0029 1876 NDProxy ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0030 1876 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
      20:29:31.0030 1876 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0031 1876 NetBIOS ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0031 1876 NetBIOS ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0032 1876 NetBT ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0032 1876 NetBT ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0033 1876 nfrd960 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0033 1876 nfrd960 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0034 1876 nmwcd ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0034 1876 nmwcd ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0035 1876 nmwcdc ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0035 1876 nmwcdc ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0036 1876 nmwcdnsucx64 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0036 1876 nmwcdnsucx64 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0037 1876 nmwcdnsux64 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0037 1876 nmwcdnsux64 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0038 1876 Npfs ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0038 1876 Npfs ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0039 1876 nsiproxy ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0039 1876 nsiproxy ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0040 1876 Ntfs ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0040 1876 Ntfs ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0041 1876 Null ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0041 1876 Null ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0042 1876 nvraid ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0042 1876 nvraid ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0048 1876 nvstor ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0048 1876 nvstor ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0050 1876 nv_agp ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0050 1876 nv_agp ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0050 1876 ohci1394 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0050 1876 ohci1394 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0053 1876 PAC207 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0053 1876 PAC207 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0054 1876 Parport ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0054 1876 Parport ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0056 1876 partmgr ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0056 1876 partmgr ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0056 1876 pccsmcfd ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0056 1876 pccsmcfd ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0058 1876 pci ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0058 1876 pci ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0060 1876 pciide ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0060 1876 pciide ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0060 1876 pcmcia ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0060 1876 pcmcia ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0062 1876 pcw ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0062 1876 pcw ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0064 1876 PEAUTH ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0064 1876 PEAUTH ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0066 1876 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
      20:29:31.0066 1876 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0067 1876 Point64 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0067 1876 Point64 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0069 1876 PptpMiniport ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0069 1876 PptpMiniport ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0071 1876 Processor ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0071 1876 Processor ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0072 1876 Psched ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0072 1876 Psched ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0074 1876 PxHlpa64 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0074 1876 PxHlpa64 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0076 1876 ql2300 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0076 1876 ql2300 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0077 1876 ql40xx ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0077 1876 ql40xx ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0078 1876 QWAVEdrv ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0078 1876 QWAVEdrv ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0080 1876 RasAcd ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0080 1876 RasAcd ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0080 1876 RasAgileVpn ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0080 1876 RasAgileVpn ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0082 1876 Rasl2tp ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0082 1876 Rasl2tp ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0084 1876 RasPppoe ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0084 1876 RasPppoe ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0086 1876 RasSstp ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0086 1876 RasSstp ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0087 1876 rdbss ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0087 1876 rdbss ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0089 1876 rdpbus ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0089 1876 rdpbus ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0089 1876 RDPCDD ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0089 1876 RDPCDD ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0091 1876 RDPDR ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0091 1876 RDPDR ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0092 1876 RDPENCDD ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0092 1876 RDPENCDD ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0094 1876 RDPREFMP ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0094 1876 RDPREFMP ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0095 1876 RDPWD ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0095 1876 RDPWD ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0096 1876 rdyboost ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0096 1876 rdyboost ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0098 1876 rspndr ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0098 1876 rspndr ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0100 1876 s3cap ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0100 1876 s3cap ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0101 1876 SASDIFSV ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0101 1876 SASDIFSV ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0103 1876 SASKUTIL ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0103 1876 SASKUTIL ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0105 1876 sbp2port ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0105 1876 sbp2port ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0106 1876 scfilter ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0106 1876 scfilter ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0108 1876 secdrv ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0108 1876 secdrv ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0109 1876 Serenum ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0109 1876 Serenum ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0111 1876 Serial ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0111 1876 Serial ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0112 1876 sermouse ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0112 1876 sermouse ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0114 1876 sffdisk ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0114 1876 sffdisk ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0115 1876 sffp_mmc ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0115 1876 sffp_mmc ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0116 1876 sffp_sd ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0116 1876 sffp_sd ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0118 1876 sfloppy ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0118 1876 sfloppy ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0120 1876 SiSRaid2 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0120 1876 SiSRaid2 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0120 1876 SiSRaid4 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0120 1876 SiSRaid4 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0122 1876 Smb ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0122 1876 Smb ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0124 1876 spldr ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0124 1876 spldr ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0124 1876 srv ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0125 1876 srv ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0126 1876 srv2 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0126 1876 srv2 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0127 1876 srvnet ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0127 1876 srvnet ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0129 1876 stexstor ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0129 1876 stexstor ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0130 1876 storflt ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0130 1876 storflt ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0131 1876 storvsc ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0131 1876 storvsc ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0133 1876 swenum ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0133 1876 swenum ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0134 1876 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
      20:29:31.0134 1876 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0136 1876 taphss ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0136 1876 taphss ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0138 1876 Tcpip ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0138 1876 Tcpip ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0138 1876 TCPIP6 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0138 1876 TCPIP6 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0139 1876 tcpipreg ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0139 1876 tcpipreg ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0140 1876 TDPIPE ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0140 1876 TDPIPE ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0141 1876 TDTCP ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0141 1876 TDTCP ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0142 1876 tdx ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0142 1876 tdx ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0143 1876 TermDD ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0143 1876 TermDD ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0144 1876 tssecsrv ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0144 1876 tssecsrv ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0145 1876 TsUsbFlt ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0145 1876 TsUsbFlt ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0147 1876 TuneUpUtilitiesDrv ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0147 1876 TuneUpUtilitiesDrv ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0148 1876 tunnel ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0148 1876 tunnel ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0149 1876 uagp35 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0149 1876 uagp35 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0150 1876 udfs ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0150 1876 udfs ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0152 1876 uliagpkx ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0152 1876 uliagpkx ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0153 1876 umbus ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0153 1876 umbus ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0154 1876 UmPass ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0154 1876 UmPass ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0155 1876 upperdev ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0155 1876 upperdev ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0156 1876 usbaudio ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0156 1876 usbaudio ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0157 1876 usbccgp ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0157 1876 usbccgp ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0158 1876 usbcir ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0158 1876 usbcir ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0159 1876 usbehci ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0159 1876 usbehci ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0159 1876 usbhub ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0159 1876 usbhub ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0160 1876 usbohci ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0161 1876 usbohci ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0162 1876 usbprint ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0162 1876 usbprint ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0162 1876 usbscan ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0163 1876 usbscan ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0167 1876 usbser ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0167 1876 usbser ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0168 1876 UsbserFilt ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0168 1876 UsbserFilt ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0169 1876 USBSTOR ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0169 1876 USBSTOR ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0171 1876 usbuhci ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0171 1876 usbuhci ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0172 1876 usbvideo ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0172 1876 usbvideo ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0173 1876 vdrvroot ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0173 1876 vdrvroot ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0174 1876 vga ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0174 1876 vga ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0175 1876 VgaSave ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0175 1876 VgaSave ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0176 1876 vhdmp ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0176 1876 vhdmp ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0177 1876 viaide ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0177 1876 viaide ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0178 1876 vmbus ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0178 1876 vmbus ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0179 1876 VMBusHID ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0179 1876 VMBusHID ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0180 1876 volmgr ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0180 1876 volmgr ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0181 1876 volmgrx ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0181 1876 volmgrx ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0182 1876 volsnap ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0182 1876 volsnap ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0183 1876 vsmraid ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0183 1876 vsmraid ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0184 1876 vwifibus ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0184 1876 vwifibus ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0191 1876 wacommousefilter ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0191 1876 wacommousefilter ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0192 1876 WacomPen ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0192 1876 WacomPen ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0193 1876 wacomvhid ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0193 1876 wacomvhid ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0194 1876 wampapache ( UnsignedFile.Multi.Generic ) - skipped by user
      20:29:31.0194 1876 wampapache ( UnsignedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0195 1876 WANARP ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0195 1876 WANARP ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0196 1876 Wanarpv6 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0196 1876 Wanarpv6 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0197 1876 Wd ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0197 1876 Wd ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0198 1876 Wdf01000 ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0198 1876 Wdf01000 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0199 1876 WfpLwf ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0199 1876 WfpLwf ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0200 1876 WIMMount ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0200 1876 WIMMount ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0201 1876 WinUsb ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0201 1876 WinUsb ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0203 1876 WmiAcpi ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0203 1876 WmiAcpi ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0204 1876 ws2ifsl ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0204 1876 ws2ifsl ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0205 1876 WudfPf ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0205 1876 WudfPf ( LockedFile.Multi.Generic ) - User select action: Skip
      20:29:31.0206 1876 WUDFRd ( LockedFile.Multi.Generic ) - skipped by user
      20:29:31.0206 1876 WUDFRd ( LockedFile.Multi.Generic ) - User select action: Skip
      20:31:07.0018 0660 ============================================================
      20:31:07.0018 0660 Scan started
      20:31:07.0018 0660 Mode: Manual; SigCheck; TDLFS;
      20:31:07.0018 0660 ============================================================
      20:31:07.0152 0660 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
      20:31:07.0165 0660 !SASCORE - ok
      20:31:07.0266 0660 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
      20:31:07.0267 0660 Suspicious file (NoAccess): C:\Windows\system32\drivers\1394ohci.sys. md5: a87d604aea360176311474c87a63bb88
      20:31:07.0269 0660 1394ohci ( LockedFile.Multi.Generic ) - warning
      20:31:07.0269 0660 1394ohci - detected LockedFile.Multi.Generic (1)
      20:31:07.0274 0660 Suspicious service (NoAccess): 41e20f329c42e5f1
      20:31:07.0311 0660 41e20f329c42e5f1 (83527bc288885bba3e8afce5fc0cc7ee) C:\Windows\System32\Drivers\41e20f329c42e5f1.sys
      20:31:07.0311 0660 Suspicious file (NoAccess): C:\Windows\System32\Drivers\41e20f329c42e5f1.sys. md5: 83527bc288885bba3e8afce5fc0cc7ee
      20:31:07.0314 0660 41e20f329c42e5f1 ( LockedService.Multi.Generic ) - warning
      20:31:07.0314 0660 41e20f329c42e5f1 - detected LockedService.Multi.Generic (1)
      20:31:07.0359 0660 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
      20:31:07.0359 0660 Suspicious file (NoAccess): C:\Windows\system32\drivers\ACPI.sys. md5: d81d9e70b8a6dd14d42d7b4efa65d5f2
      20:31:07.0362 0660 ACPI ( LockedFile.Multi.Generic ) - warning
      20:31:07.0362 0660 ACPI - detected LockedFile.Multi.Generic (1)
      20:31:07.0385 0660 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
      20:31:07.0385 0660 Suspicious file (NoAccess): C:\Windows\system32\drivers\acpipmi.sys. md5: 99f8e788246d495ce3794d7e7821d2ca
      20:31:07.0389 0660 AcpiPmi ( LockedFile.Multi.Generic ) - warning
      20:31:07.0389 0660 AcpiPmi - detected LockedFile.Multi.Generic (1)
      20:31:07.0435 0660 adfs (2f0683fd2df1d92e891caca14b45a8c1) C:\Windows\system32\drivers\adfs.sys
      20:31:07.0435 0660 Suspicious file (NoAccess): C:\Windows\system32\drivers\adfs.sys. md5: 2f0683fd2df1d92e891caca14b45a8c1
      20:31:07.0438 0660 adfs ( LockedFile.Multi.Generic ) - warning
      20:31:07.0438 0660 adfs - detected LockedFile.Multi.Generic (1)
      20:31:07.0504 0660 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      20:31:07.0513 0660 AdobeARMservice - ok
      20:31:07.0634 0660 AdobeFlashPlayerUpdateSvc (6c40d5ed8951ab7b90d08af655224ee4) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      20:31:07.0644 0660 AdobeFlashPlayerUpdateSvc - ok
      20:31:07.0691 0660 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
      20:31:07.0691 0660 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\adp94xx.sys. md5: 2f6b34b83843f0c5118b63ac634f5bf4
      20:31:07.0697 0660 adp94xx ( LockedFile.Multi.Generic ) - warning
      20:31:07.0697 0660 adp94xx - detected LockedFile.Multi.Generic (1)
      20:31:07.0745 0660 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
      20:31:07.0745 0660 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\adpahci.sys. md5: 597f78224ee9224ea1a13d6350ced962
      20:31:07.0749 0660 adpahci ( LockedFile.Multi.Generic ) - warning
      20:31:07.0749 0660 adpahci - detected LockedFile.Multi.Generic (1)
      20:31:07.0774 0660 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
      20:31:07.0774 0660 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\adpu320.sys. md5: e109549c90f62fb570b9540c4b148e54
      20:31:07.0778 0660 adpu320 ( LockedFile.Multi.Generic ) - warning
      20:31:07.0778 0660 adpu320 - detected LockedFile.Multi.Generic (1)
      20:31:07.0817 0660 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
      20:31:07.0846 0660 AeLookupSvc - ok
      20:31:07.0896 0660 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
      20:31:07.0896 0660 Suspicious file (NoAccess): C:\Windows\system32\drivers\afd.sys. md5: 1c7857b62de5994a75b054a9fd4c3825
      20:31:07.0900 0660 AFD ( LockedFile.Multi.Generic ) - warning
      20:31:07.0900 0660 AFD - detected LockedFile.Multi.Generic (1)
      20:31:07.0947 0660 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
      20:31:07.0947 0660 Suspicious file (NoAccess): C:\Windows\system32\drivers\agp440.sys. md5: 608c14dba7299d8cb6ed035a68a15799
      20:31:07.0949 0660 agp440 ( LockedFile.Multi.Generic ) - warning
      20:31:07.0949 0660 agp440 - detected LockedFile.Multi.Generic (1)
      20:31:07.0976 0660 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
      20:31:07.0986 0660 ALG - ok
      20:31:08.0011 0660 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
      20:31:08.0011 0660 Suspicious file (NoAccess): C:\Windows\system32\drivers\aliide.sys. md5: 5812713a477a3ad7363c7438ca2ee038
      20:31:08.0011 0660 aliide ( LockedFile.Multi.Generic ) - warning
      20:31:08.0011 0660 aliide - detected LockedFile.Multi.Generic (1)
      20:31:08.0051 0660 AMD External Events Utility (e20dddfbd0dbe7d8ead4d7a51d654367) C:\Windows\system32\atiesrxx.exe
      20:31:08.0060 0660 AMD External Events Utility - ok
      20:31:08.0082 0660 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
      20:31:08.0082 0660 Suspicious file (NoAccess): C:\Windows\system32\drivers\amdide.sys. md5: 1ff8b4431c353ce385c875f194924c0c
      20:31:08.0085 0660 amdide ( LockedFile.Multi.Generic ) - warning
      20:31:08.0085 0660 amdide - detected LockedFile.Multi.Generic (1)
      20:31:08.0102 0660 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
      20:31:08.0102 0660 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\amdk8.sys. md5: 7024f087cff1833a806193ef9d22cda9
      20:31:08.0105 0660 AmdK8 ( LockedFile.Multi.Generic ) - warning
      20:31:08.0105 0660 AmdK8 - detected LockedFile.Multi.Generic (1)
      20:31:08.0554 0660 amdkmdag (4284fb1240537a33e6ec417efd87d40f) C:\Windows\system32\DRIVERS\atikmdag.sys
      20:31:08.0554 0660 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\atikmdag.sys. md5: 4284fb1240537a33e6ec417efd87d40f
      20:31:08.0586 0660 amdkmdag ( LockedFile.Multi.Generic ) - warning
      20:31:08.0586 0660 amdkmdag - detected LockedFile.Multi.Generic (1)
      20:31:08.0694 0660 amdkmdap (6c25c497e05efd0cb6033a0444fc9b51) C:\Windows\system32\DRIVERS\atikmpag.sys
      20:31:08.0695 0660 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\atikmpag.sys. md5: 6c25c497e05efd0cb6033a0444fc9b51
      20:31:08.0702 0660 amdkmdap ( LockedFile.Multi.Generic ) - warning
      20:31:08.0702 0660 amdkmdap - detected LockedFile.Multi.Generic (1)
      20:31:08.0745 0660 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
      20:31:08.0745 0660 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\amdppm.sys. md5: 1e56388b3fe0d031c44144eb8c4d6217
      20:31:08.0748 0660 AmdPPM ( LockedFile.Multi.Generic ) - warning
      20:31:08.0748 0660 AmdPPM - detected LockedFile.Multi.Generic (1)
      20:31:08.0790 0660 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
      20:31:08.0790 0660 Suspicious file (NoAccess): C:\Windows\system32\drivers\amdsata.sys. md5: d4121ae6d0c0e7e13aa221aa57ef2d49
      20:31:08.0794 0660 amdsata ( LockedFile.Multi.Generic ) - warning
      20:31:08.0794 0660 amdsata - detected LockedFile.Multi.Generic (1)
      20:31:08.0819 0660 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
      20:31:08.0819 0660 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\amdsbs.sys. md5: f67f933e79241ed32ff46a4f29b5120b
      20:31:08.0823 0660 amdsbs ( LockedFile.Multi.Generic ) - warning
      20:31:08.0823 0660 amdsbs - detected LockedFile.Multi.Generic (1)
      20:31:08.0843 0660 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
      20:31:08.0843 0660 Suspicious file (NoAccess): C:\Windows\system32\drivers\amdxata.sys. md5: 540daf1cea6094886d72126fd7c33048
      20:31:08.0846 0660 amdxata ( LockedFile.Multi.Generic ) - warning
      20:31:08.0846 0660 amdxata - detected LockedFile.Multi.Generic (1)
      20:31:08.0855 0660 Scan interrupted by user!
      20:31:08.0855 0660 Scan interrupted by user!
      20:31:08.0855 0660 Scan interrupted by user!
      20:31:08.0855 0660 ============================================================
      20:31:08.0855 0660 Scan finished
      20:31:08.0855 0660 ============================================================
      20:31:08.0861 4256 Detected object count: 19
      20:31:08.0861 4256 Actual detected object count: 19
      20:31:11.0975 4256 1394ohci ( LockedFile.Multi.Generic ) - skipped by user
      20:31:11.0975 4256 1394ohci ( LockedFile.Multi.Generic ) - User select action: Skip
      20:31:11.0975 4256 41e20f329c42e5f1 ( LockedService.Multi.Generic ) - skipped by user
      20:31:11.0975 4256 41e20f329c42e5f1 ( LockedService.Multi.Generic ) - User select action: Skip
      20:31:11.0976 4256 ACPI ( LockedFile.Multi.Generic ) - skipped by user
      20:31:11.0976 4256 ACPI ( LockedFile.Multi.Generic ) - User select action: Skip
      20:31:11.0977 4256 AcpiPmi ( LockedFile.Multi.Generic ) - skipped by user
      20:31:11.0977 4256 AcpiPmi ( LockedFile.Multi.Generic ) - User select action: Skip
      20:31:11.0978 4256 adfs ( LockedFile.Multi.Generic ) - skipped by user
      20:31:11.0978 4256 adfs ( LockedFile.Multi.Generic ) - User select action: Skip
      20:31:11.0980 4256 adp94xx ( LockedFile.Multi.Generic ) - skipped by user
      20:31:11.0980 4256 adp94xx ( LockedFile.Multi.Generic ) - User select action: Skip
      20:31:11.0981 4256 adpahci ( LockedFile.Multi.Generic ) - skipped by user
      20:31:11.0981 4256 adpahci ( LockedFile.Multi.Generic ) - User select action: Skip
      20:31:11.0982 4256 adpu320 ( LockedFile.Multi.Generic ) - skipped by user
      20:31:11.0982 4256 adpu320 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:31:11.0983 4256 AFD ( LockedFile.Multi.Generic ) - skipped by user
      20:31:11.0983 4256 AFD ( LockedFile.Multi.Generic ) - User select action: Skip
      20:31:11.0984 4256 agp440 ( LockedFile.Multi.Generic ) - skipped by user
      20:31:11.0984 4256 agp440 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:31:11.0985 4256 aliide ( LockedFile.Multi.Generic ) - skipped by user
      20:31:11.0985 4256 aliide ( LockedFile.Multi.Generic ) - User select action: Skip
      20:31:11.0986 4256 amdide ( LockedFile.Multi.Generic ) - skipped by user
      20:31:11.0986 4256 amdide ( LockedFile.Multi.Generic ) - User select action: Skip
      20:31:11.0987 4256 AmdK8 ( LockedFile.Multi.Generic ) - skipped by user
      20:31:11.0987 4256 AmdK8 ( LockedFile.Multi.Generic ) - User select action: Skip
      20:31:11.0988 4256 amdkmdag ( LockedFile.Multi.Generic ) - skipped by user
      20:31:11.0988 4256 amdkmdag ( LockedFile.Multi.Generic ) - User select action: Skip
      20:31:11.0989 4256 amdkmdap ( LockedFile.Multi.Generic ) - skipped by user
      20:31:11.0989 4256 amdkmdap ( LockedFile.Multi.Generic ) - User select action: Skip
      20:31:11.0990 4256 AmdPPM ( LockedFile.Multi.Generic ) - skipped by user
      20:31:11.0990 4256 AmdPPM ( LockedFile.Multi.Generic ) - User select action: Skip
      20:31:11.0991 4256 amdsata ( LockedFile.Multi.Generic ) - skipped by user
      20:31:11.0991 4256 amdsata ( LockedFile.Multi.Generic ) - User select action: Skip
      20:31:11.0992 4256 amdsbs ( LockedFile.Multi.Generic ) - skipped by user
      20:31:11.0992 4256 amdsbs ( LockedFile.Multi.Generic ) - User select action: Skip
      20:31:11.0993 4256 amdxata ( LockedFile.Multi.Generic ) - skipped by user
      20:31:11.0993 4256 amdxata ( LockedFile.Multi.Generic ) - User select action: Skip

    6. #6
      Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.539

      Re: Avira desactivó la Realtime Protection y no puedo volver a habilitarla

      Hola ,

      Porque detuviste el análisis ?

      Ejecuta nuevamente Tdsskiller y dale a Delete al siguiente driver:

      20:31:11.0975 4256 41e20f329c42e5f1 ( LockedService.Multi.Generic )


      Descarga,actualiza y realiza un escaneo completo con el malwarebytes:Manual de Malwarebytes Anti-Malware 2.0

      -Instala el programa con idioma español.
      -Vete a la pestaña actualizar y actualizas a la ultima version
      -Vete a la pestaña Escáner y realizas un Ánalisis completo.
      -Una vez finalizado, pulsa sobre "Mostrar los Resultados " y "Eliminar Seleccionadas" como se demuestra en esta foto
      -En el caso de que te pida reiniciar,reinicia.
      -Peganos el reporte del escaneo del malwarebytes despues de reiniciar,esta en la pestaña Registros.




      Descarga Ccleaner:Manual de CCleaner

      Ejecutar CCleaner usando primero su opción de "Limpiador" para borrar cookies y temporales de Internet
      Usa su opción de "Registro" para limpiar todo el registro de Windows creando antes una copia de seguridad


      Realiza un análisis completo con Eset Nod32 online

      1- Lo ejecutas.

      2-Marcas las casillas de Eliminar las amenazas detectadas y analizar archivos.

      3- Haces clic en Configuración adicional y ahi marcas las casillas:

      - Analizar en busca de aplicaciones potencialmente indeseables.

      - Analizar en busca de aplicaciones potencialmente peligrosas.

      - Activar la tecnolgía Anti-Stealth.



      4- Pulsas en Iniciar para que empiece a descargar la base firmas de virus y posteriormente empiece a analizar tu sistema.

      Cuando acabe haz clic en Finalizar

      5- Localizar el reporte en C:\Archivos de programa\ESET\ESET Online Scanner\log
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #7
      Usuario Avatar de GuST7
      Registrado
      ene 2009
      Ubicación
      Argentina
      Mensajes
      16

      Re: Avira desactivó la Realtime Protection y no puedo volver a habilitarla

      No detuve el analisis, puede ser que se haya interrumpido automáticamente? Desconecté el cable de internet antes de abrir el TDSSKiller.

      Sigo con los pasos que me indicas y en cuanto termine de analizar el Nod32 online te adjunto el log.

      Muchas gracias de antemano!

    8. #8
      Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.539

      Re: Avira desactivó la Realtime Protection y no puedo volver a habilitarla

      Hola ,

      Quedo a la espera
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    9. #9
      Usuario Avatar de GuST7
      Registrado
      ene 2009
      Ubicación
      Argentina
      Mensajes
      16

      Re: Avira desactivó la Realtime Protection y no puedo volver a habilitarla

      Adjunto los informes que me pediste:

      El de Malwarebytes:

      Malwarebytes Anti-Malware (Versión de Prueba) 1.61.0.1400
      www.malwarebytes.org

      Versión de la Base de Datos: v2012.04.20.07

      Windows 7 Service Pack 1 x64 NTFS (modo seguro)
      Internet Explorer 9.0.8112.16421
      Administrador :: GUSTAVO [administrador]

      Protección: Personas de movilidad reducida

      20/04/2012 09:34:38 p.m.
      mbam-log-2012-04-20 (21-34-38).txt

      Tipos de Análisis: Análisis Completo
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 601800
      Tiempo transcurrido: 47 minuto(s), 54 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 22
      C:\Users\Administrador\Downloads\SoftonicDownloader_para_windows-live-messenger-2009.exe (PUP.ToolbarDownloader) -> No se tomaron medidas.
      C:\Users\Administrador\Downloads\Winamp\Winamp\Winamp 5.x KeyGen.exe (RiskWare.Tool.CK) -> No se tomaron medidas.
      F:\Pendrive\Plugins y Particulas AE\Red Giant Software\Enhancement Products\Magic Bullet Instant HD 1.1\Crack\keygen.exe (Trojan.Downloader) -> No se tomaron medidas.
      F:\Pendrive\Plugins y Particulas AE\Red Giant Software\Enhancement Products\Magic Bullet Instant HD Advanced 1.0\Crack\keygen_advanced.exe (Trojan.Downloader) -> No se tomaron medidas.
      F:\Pendrive\Plugins y Particulas AE\Red Giant Software\Enhancement Products\Magic Bullet Steady 1.1\Crack\keygen.exe (Trojan.Downloader) -> No se tomaron medidas.
      F:\Pendrive\Plugins y Particulas AE\Red Giant Software\Motion Graphics Products\Warp 1.0\Crack\keygen.exe (Trojan.Downloader) -> No se tomaron medidas.
      F:\Pendrive\Stuff\Windows 7 Ultimate (32 Bit)\Activation\Windows 7 Activation (Reccomended)\Windows 7 Activation (Reccomended).exe (RiskWare.Tool.CK) -> No se tomaron medidas.
      F:\Pendrive\Stuff\Windows 7 Ultimate (32 Bit)\Extra Activation Programs\Remove Windows Activation Technologies 2.2.6.exe (HackTool.Wpakill) -> No se tomaron medidas.
      F:\Pendrive\Stuff\Windows 7 Ultimate (32 Bit)\Extra Activation Programs\Se7en Activator v3.exe (RiskWare.Tool.CK) -> No se tomaron medidas.
      F:\Pendrive\Stuff\Windows 7 Ultimate (32 Bit)\Extra Activation Programs\Windows Loader 1.9.5 (Reccomended)\Windows Loader 1.9.5 (Reccomended).exe (RiskWare.Tool.CK) -> No se tomaron medidas.
      F:\Pendrive\Stuff\Windows 7 Ultimate (32 Bit)\Extra Unique Programs\Remove Windows Genuine Advantage Notifications.exe (PUP.RemoveWGA) -> No se tomaron medidas.
      F:\Pendrive\Stuff\Windows 7 Ultimate (32 Bit)\Extra Unique Programs\Windows 7 Ultimate Keygen 1.0.exe (Trojan.Dropper) -> No se tomaron medidas.
      F:\Programas\AcrobatPro_10---by-danilo1981\keygen.exe (Trojan.Agent.CK) -> No se tomaron medidas.
      F:\Programas\Aida64 Extreme\KEYGEN\keygen.exe (Backdoor.RBot) -> No se tomaron medidas.
      F:\Programas\Red Giant Software\Enhancement Products\Magic Bullet Instant HD 1.1\Crack\keygen.exe (Trojan.Downloader) -> No se tomaron medidas.
      F:\Programas\Red Giant Software\Enhancement Products\Magic Bullet Instant HD Advanced 1.0\Crack\keygen_advanced.exe (Trojan.Downloader) -> No se tomaron medidas.
      F:\Programas\Red Giant Software\Enhancement Products\Magic Bullet Steady 1.1\Crack\keygen.exe (Trojan.Downloader) -> No se tomaron medidas.
      F:\Programas\Red Giant Software\Motion Graphics Products\Warp 1.0\Crack\keygen.exe (Trojan.Downloader) -> No se tomaron medidas.
      C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0003d4 (Affiliate.Downloader) -> En cuarentena y eliminado con éxito.
      C:\Windows\KMService.exe (RiskWare.Tool.CK) -> En cuarentena y eliminado con éxito.
      F:\$RECYCLE.BIN\S-1-5-21-1084260422-805901186-1035001202-1001\$RAG6WZD\CORE10k.EXE (Dont.Steal.Our.Software) -> En cuarentena y eliminado con éxito.
      F:\Programas\NOD32\MiNODLogin v3.9.9.10\MiNODLogin3.9.9.10\MNL3.9.9.10.exe (Riskware.KG) -> En cuarentena y eliminado con éxito.

      fin)
      El de ESET Online Scanner:

      ESETSmartInstaller@High as downloader log:
      all ok
      # version=7
      # OnlineScannerApp.exe=1.0.0.1
      # OnlineScanner.ocx=1.0.0.6583
      # api_version=3.0.2
      # EOSSerial=f7db0c944ef6c24b994a390c3870ff1a
      # end=stopped
      # remove_checked=true
      # archives_checked=true
      # unwanted_checked=true
      # unsafe_checked=true
      # antistealth_checked=true
      # utc_time=2012-08-09 03:37:55
      # local_time=2012-08-09 12:37:55 (-0300, Hora estándar de Argentina)
      # country="Argentina"
      # lang=3082
      # osver=6.1.7601 NT Service Pack 1
      # compatibility_mode=1792 16777215 100 0 19893133 19893133 0 0
      # compatibility_mode=5893 16776574 66 94 29752396 96022793 0 0
      # compatibility_mode=8192 67108863 100 0 0 0 0 0
      # scanned=246837
      # found=6
      # cleaned=6
      # scan_time=4144
      C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.5 una variante de Win32/Toolbar.Widgi aplicación (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 2012\rld.dll una variante de Win32/Packed.VMProtect.AAH Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Programas\Setup-MsgPlus-502.exe una variante de Win32/MessengerPlus.A aplicación (eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Programas\Adobe CS4 Master Collection\Activation Disabler.cmd BAT/HostsChanger.A aplicación (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Users\Administrador\Downloads\app.apk una variante de Android/Adware.Leadbolt.B aplicación (eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Users\Administrador\Downloads\flstudio_10.0.exe Win32/OpenCandy aplicación (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      Mientras hacia esta limpieza, el Avira volvió a activar la Realtime Protection y me señaló varios virus que estaban alojados en la pc, ahora esta funcionando nuevamente, pero al abrirlo, me indica en la pantalla principal el mensaje "Your computer is not secure" "A service reports an alert". EDIT: Al actualizar Avira dejó de aparecer el mensaje en la pantalla principal. Ahora me dice que la pc está segura.

      Otra señal de que el problema esta camino a solucionarse es que otra cosa que sucedia en la pc dejo de pasar: Al iniciar windows, se abría regedit.exe. Y había un proceso extraño funcionando en el sistema llamado vikyrefwaqis.exe, que ya no aparece (Era una de las detecciones que hizo el Avira cuando recupero su estado normal).

      Supongo que podemos dar el problema por solucionado, a menos que me indiques que haya que hacer algun otro paso más de limpieza para chequear que está todo ok.

      Desde ya, muchísimas gracias por tu ayuda!

    10. #10
      Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.539

      Re: Avira desactivó la Realtime Protection y no puedo volver a habilitarla

      Hola ,

      Hace un nuevo análisis con Mbam y seleccionas todo y dale a eliminar seleccionados.

      Saludos
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.