• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 17

    Spyware, rootkit, sistema operativo, no se que me ataca

    Saludos... tiempo sin pasarme por este foro desde aquella vez que se bloqueo el user de administrador... a la final mis papás no aguantaron y se lo llevaron a un técnico... bueno ahora el dilema ...

    1. #1
      Usuario Avatar de darkerpl
      Registrado
      jul 2010
      Ubicación
      colombia
      Mensajes
      25

      Malware Spyware, rootkit, sistema operativo, no se que me ataca

      Saludos... tiempo sin pasarme por este foro desde aquella vez que se bloqueo el user de administrador... a la final mis papás no aguantaron y se lo llevaron a un técnico...

      bueno ahora el dilema con mi laptop es que la enciendo y cuando intento abrir algunas paginas de internet, se apaga. crei que el problema era tecnico, asi que le cambie la pasta refrigerante, el ventilador etc. pero despues de ello el pc siguio apagandose solo, lo que me lleva a pensar que sea un virus.

      en este momento tiene instalado el avast free, pero ese fichero no ha detectado virus, asi que le pase el malware antymalware desde una usb, y con este encontre 6 spyware y un trojano, despues de encontrarlos los iba a eliminar, pero el pc se apago lo reinicie y volví a hacer la búsqueda, pero esta vez encontró menos spyware.

      luego intente que el virus no se ejecutara, ingresando a msconfig en ejecutar, para desactivar los programas que se activan desde el inicio, pero apenas quite el programa que no reconocia se apago el pc y al intentar encenderlo, me escribio en pantalla negra "operating system not found", y esto me lleva a pensar que el virus esta alojado en el sistema operativo

      en estos momentos se que el virus todavia esta ahi porque intente instalar ayer 23 de agosto de 2012, el avast desde una usb nuevamente, pero cuando finalizó la instalación el antivirus no aparecio y cuando reinicie el equipo en modo seguro encontre el fichero del avast pero en la papelera de reciclaje y no donde lo habia guardado.

      tambien descargue el Malware ayer y se lo incorpore mediante usb para revisarlo pero esta vez no encontro amenazas, tambien descargue el trheat killer y lo introduje tambien por usb, para descartar que sea un root kit, pero lastimosamente no conozco la manera de crear script's para poder usarlo...

      asi que por favor, si es posible, espero me puedan colaborar en esta nueva batalla con ese virus... de antemano muchas gracias

    2. #2
      Moderador
      Avatar de @DavidG_EB
      Registrado
      jul 2009
      Ubicación
      Mexico
      Mensajes
      10.633

      Re: Spyware, rootkit, sistema operativo, no se que me ataca

      Hola darkerpl

      Porfavor peganos el reporte de TDSSKiller del disco duro C:\TDSSKiller.x.xx.x_xx.xx.xxxx_xx.xx.xx_log.txt donde "x.xx.x_xx.xx.xxxx_xx.xx.xx" son versión, fecha y hora

      Saludos
      ErdrickBass
      No importa lo fuerte que sea tu oponente. Lo importante es que estés de pie ante él

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de darkerpl
      Registrado
      jul 2010
      Ubicación
      colombia
      Mensajes
      25

      Re: Spyware, rootkit, sistema operativo, no se que me ataca

      TDSSKiller.2.8.8.0_24.08.2012_19.48.08_log



      19:48:08.0314 2964 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
      19:48:08.0876 2964 ============================================================
      19:48:08.0876 2964 Current date / time: 2012/08/24 19:48:08.0876
      19:48:08.0876 2964 SystemInfo:
      19:48:08.0876 2964
      19:48:08.0876 2964 OS Version: 6.1.7601 ServicePack: 1.0
      19:48:08.0876 2964 Product type: Workstation
      19:48:08.0876 2964 ComputerName: FAMILIA-PC
      19:48:08.0876 2964 UserName: FAMILIA
      19:48:08.0876 2964 Windows directory: C:\Windows
      19:48:08.0876 2964 System windows directory: C:\Windows
      19:48:08.0876 2964 Processor architecture: Intel x86
      19:48:08.0876 2964 Number of processors: 2
      19:48:08.0876 2964 Page size: 0x1000
      19:48:08.0876 2964 Boot type: Normal boot
      19:48:08.0876 2964 ============================================================
      19:48:11.0668 2964 Drive \Device\Harddisk0\DR0 - Size: 0x2E93E36000 (186.31 Gb), SectorSize: 0x200, Cylinders: 0x5F01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
      19:48:11.0746 2964 Drive \Device\Harddisk1\DR1 - Size: 0xEEA89000 (3.73 Gb), SectorSize: 0x200, Cylinders: 0x1E6, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
      19:48:11.0746 2964 ============================================================
      19:48:11.0746 2964 \Device\Harddisk0\DR0:
      19:48:11.0762 2964 MBR partitions:
      19:48:11.0762 2964 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
      19:48:11.0762 2964 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x8886000
      19:48:11.0762 2964 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x88B8800, BlocksNum 0x61A8000
      19:48:11.0762 2964 \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0xEA60800, BlocksNum 0x8A3E000
      19:48:11.0762 2964 \Device\Harddisk1\DR1:
      19:48:11.0762 2964 MBR partitions:
      19:48:11.0762 2964 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x7752E1
      19:48:11.0762 2964 ============================================================
      19:48:11.0824 2964 C: <-> \Device\Harddisk0\DR0\Partition2
      19:48:11.0886 2964 D: <-> \Device\Harddisk0\DR0\Partition3
      19:48:11.0964 2964 E: <-> \Device\Harddisk0\DR0\Partition4
      19:48:11.0964 2964 ============================================================
      19:48:11.0964 2964 Initialize success
      19:48:11.0964 2964 ============================================================
      19:49:11.0198 3444 ============================================================
      19:49:11.0198 3444 Scan started
      19:49:11.0198 3444 Mode: Manual;
      19:49:11.0198 3444 ============================================================
      19:49:18.0795 3444 ================ Scan system memory ========================
      19:49:18.0795 3444 System memory - ok
      19:49:18.0795 3444 ================ Scan services =============================
      19:49:18.0998 3444 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
      19:49:18.0998 3444 1394ohci - ok
      19:49:19.0076 3444 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
      19:49:19.0076 3444 ACPI - ok
      19:49:19.0107 3444 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
      19:49:19.0107 3444 AcpiPmi - ok
      19:49:19.0310 3444 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
      19:49:19.0325 3444 AdobeARMservice - ok
      19:49:19.0497 3444 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
      19:49:19.0559 3444 adp94xx - ok
      19:49:19.0591 3444 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
      19:49:19.0591 3444 adpahci - ok
      19:49:19.0622 3444 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
      19:49:19.0622 3444 adpu320 - ok
      19:49:19.0669 3444 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      19:49:19.0669 3444 AeLookupSvc - ok
      19:49:19.0747 3444 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
      19:49:19.0762 3444 AFD - ok
      19:49:19.0793 3444 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
      19:49:19.0793 3444 agp440 - ok
      19:49:19.0825 3444 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
      19:49:19.0840 3444 aic78xx - ok
      19:49:19.0856 3444 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
      19:49:19.0856 3444 ALG - ok
      19:49:19.0871 3444 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
      19:49:19.0871 3444 aliide - ok
      19:49:19.0887 3444 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
      19:49:19.0887 3444 amdagp - ok
      19:49:19.0903 3444 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
      19:49:19.0903 3444 amdide - ok
      19:49:19.0918 3444 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
      19:49:19.0934 3444 AmdK8 - ok
      19:49:19.0934 3444 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
      19:49:19.0934 3444 AmdPPM - ok
      19:49:19.0981 3444 [ E7F4D42D8076EC60E21715CD11743A0D ] amdsata C:\Windows\system32\drivers\amdsata.sys
      19:49:19.0981 3444 amdsata - ok
      19:49:20.0027 3444 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
      19:49:20.0027 3444 amdsbs - ok
      19:49:20.0074 3444 [ 146459D2B08BFDCBFA856D9947043C81 ] amdxata C:\Windows\system32\drivers\amdxata.sys
      19:49:20.0074 3444 amdxata - ok
      19:49:20.0152 3444 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
      19:49:20.0168 3444 AppID - ok
      19:49:20.0183 3444 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
      19:49:20.0215 3444 AppIDSvc - ok
      19:49:20.0246 3444 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
      19:49:20.0246 3444 Appinfo - ok
      19:49:20.0308 3444 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
      19:49:20.0308 3444 AppMgmt - ok
      19:49:20.0355 3444 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
      19:49:20.0355 3444 arc - ok
      19:49:20.0433 3444 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
      19:49:20.0433 3444 arcsas - ok
      19:49:20.0620 3444 [ 39CDCB109BF200CC8A05B9C7E6272D11 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
      19:49:20.0620 3444 aspnet_state - ok
      19:49:20.0729 3444 [ 1C1F3D6DDDC046C920C493A779649F66 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
      19:49:20.0729 3444 aswFsBlk - ok
      19:49:20.0948 3444 [ A48D8015AF2A0D8B4937613FFBFD28DE ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
      19:49:21.0073 3444 aswMonFlt - ok
      19:49:21.0166 3444 [ 4A951BEBA9E49410CDE478B6F6ABB252 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
      19:49:21.0166 3444 aswRdr - ok
      19:49:21.0494 3444 [ 73DBCF808E00580F2A47F93DD9B03876 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
      19:49:21.0556 3444 aswSnx - ok
      19:49:21.0603 3444 [ 6CBD7D3A33F498D09C831CDD732DA2E0 ] aswSP C:\Windows\system32\drivers\aswSP.sys
      19:49:21.0603 3444 aswSP - ok
      19:49:21.0665 3444 [ 7109A9AA551F37CD168C02368465957E ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
      19:49:21.0665 3444 aswTdi - ok
      19:49:21.0728 3444 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      19:49:21.0743 3444 AsyncMac - ok
      19:49:21.0790 3444 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
      19:49:21.0790 3444 atapi - ok
      19:49:21.0977 3444 [ 76BAB0C824E2D05B940C4DD40A9B08BF ] athr C:\Windows\system32\DRIVERS\athr.sys
      19:49:21.0993 3444 athr - ok
      19:49:22.0102 3444 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      19:49:22.0118 3444 AudioEndpointBuilder - ok
      19:49:22.0133 3444 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
      19:49:22.0149 3444 Audiosrv - ok
      19:49:22.0243 3444 [ 2F7C0F3E39C45E0127FB78B2F18A41F3 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
      19:49:22.0258 3444 avast! Antivirus - ok
      19:49:22.0305 3444 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
      19:49:22.0305 3444 AxInstSV - ok
      19:49:22.0367 3444 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
      19:49:22.0367 3444 b06bdrv - ok
      19:49:22.0399 3444 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
      19:49:22.0399 3444 b57nd60x - ok
      19:49:22.0445 3444 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
      19:49:22.0445 3444 BDESVC - ok
      19:49:22.0508 3444 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
      19:49:22.0508 3444 Beep - ok
      19:49:22.0586 3444 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
      19:49:22.0601 3444 BFE - ok
      19:49:22.0679 3444 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
      19:49:22.0695 3444 BITS - ok
      19:49:22.0835 3444 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
      19:49:22.0835 3444 blbdrive - ok
      19:49:22.0945 3444 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      19:49:22.0945 3444 bowser - ok
      19:49:22.0976 3444 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
      19:49:22.0976 3444 BrFiltLo - ok
      19:49:22.0991 3444 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
      19:49:22.0991 3444 BrFiltUp - ok
      19:49:23.0054 3444 [ 6E11F33D14D020F58D5E02E4D67DFA19 ] Browser C:\Windows\System32\browser.dll
      19:49:23.0069 3444 Browser - ok
      19:49:23.0101 3444 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
      19:49:23.0101 3444 Brserid - ok
      19:49:23.0132 3444 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
      19:49:23.0147 3444 BrSerWdm - ok
      19:49:23.0194 3444 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
      19:49:23.0194 3444 BrUsbMdm - ok
      19:49:23.0210 3444 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
      19:49:23.0210 3444 BrUsbSer - ok
      19:49:23.0272 3444 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
      19:49:23.0272 3444 BTHMODEM - ok
      19:49:23.0350 3444 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
      19:49:23.0350 3444 bthserv - ok
      19:49:23.0459 3444 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      19:49:23.0725 3444 cdfs - ok
      19:49:24.0099 3444 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      19:49:24.0224 3444 cdrom - ok
      19:49:24.0255 3444 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
      19:49:24.0271 3444 CertPropSvc - ok
      19:49:24.0349 3444 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
      19:49:24.0349 3444 circlass - ok
      19:49:24.0614 3444 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
      19:49:24.0629 3444 CLFS - ok
      19:49:24.0707 3444 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      19:49:24.0739 3444 clr_optimization_v2.0.50727_32 - ok
      19:49:24.0770 3444 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
      19:49:24.0770 3444 CmBatt - ok
      19:49:24.0801 3444 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
      19:49:24.0801 3444 cmdide - ok
      19:49:24.0848 3444 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
      19:49:24.0863 3444 CNG - ok
      19:49:25.0035 3444 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
      19:49:25.0035 3444 Compbatt - ok
      19:49:25.0082 3444 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
      19:49:25.0082 3444 CompositeBus - ok
      19:49:25.0082 3444 COMSysApp - ok
      19:49:25.0113 3444 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
      19:49:25.0113 3444 crcdisk - ok
      19:49:25.0175 3444 [ A585BEBF7D054BD9618EDA0922D5484A ] CryptSvc C:\Windows\system32\cryptsvc.dll
      19:49:25.0191 3444 CryptSvc - ok
      19:49:25.0238 3444 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
      19:49:25.0238 3444 CscService - ok
      19:49:25.0331 3444 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
      19:49:25.0347 3444 DcomLaunch - ok
      19:49:25.0425 3444 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
      19:49:25.0425 3444 defragsvc - ok
      19:49:25.0534 3444 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      19:49:25.0534 3444 DfsC - ok
      19:49:25.0628 3444 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
      19:49:25.0643 3444 Dhcp - ok
      19:49:25.0737 3444 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
      19:49:25.0737 3444 discache - ok
      19:49:25.0862 3444 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
      19:49:25.0862 3444 Disk - ok
      19:49:25.0924 3444 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
      19:49:25.0924 3444 Dnscache - ok
      19:49:25.0987 3444 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
      19:49:26.0002 3444 dot3svc - ok
      19:49:26.0049 3444 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
      19:49:26.0049 3444 DPS - ok
      19:49:26.0080 3444 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      19:49:26.0080 3444 drmkaud - ok
      19:49:26.0252 3444 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      19:49:26.0267 3444 DXGKrnl - ok
      19:49:26.0314 3444 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
      19:49:26.0314 3444 EapHost - ok
      19:49:26.0751 3444 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
      19:49:26.0954 3444 ebdrv - ok
      19:49:27.0032 3444 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
      19:49:27.0032 3444 EFS - ok
      19:49:27.0281 3444 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
      19:49:27.0313 3444 ehRecvr - ok
      19:49:27.0406 3444 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
      19:49:27.0406 3444 ehSched - ok
      19:49:27.0515 3444 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
      19:49:27.0531 3444 elxstor - ok
      19:49:27.0593 3444 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
      19:49:27.0593 3444 ErrDev - ok
      19:49:27.0687 3444 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
      19:49:27.0687 3444 EventSystem - ok
      19:49:27.0781 3444 [ 57C171EA22F0A7F068FCB0CAEDD1E8E7 ] ew_hwusbdev C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
      19:49:27.0781 3444 ew_hwusbdev - ok
      19:49:27.0812 3444 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
      19:49:27.0812 3444 exfat - ok
      19:49:27.0905 3444 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
      19:49:28.0077 3444 fastfat - ok
      19:49:28.0171 3444 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
      19:49:28.0186 3444 Fax - ok
      19:49:28.0217 3444 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
      19:49:28.0217 3444 fdc - ok
      19:49:28.0280 3444 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
      19:49:28.0280 3444 fdPHost - ok
      19:49:28.0342 3444 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
      19:49:28.0342 3444 FDResPub - ok
      19:49:28.0405 3444 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      19:49:28.0420 3444 FileInfo - ok
      19:49:28.0436 3444 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      19:49:28.0436 3444 Filetrace - ok
      19:49:28.0467 3444 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
      19:49:28.0467 3444 flpydisk - ok
      19:49:28.0545 3444 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      19:49:28.0545 3444 FltMgr - ok
      19:49:28.0654 3444 [ FA6C66E4364D7DA57AADE5DCC03BB999 ] FontCache C:\Windows\system32\FntCache.dll
      19:49:28.0670 3444 FontCache - ok
      19:49:28.0779 3444 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
      19:49:28.0795 3444 FontCache3.0.0.0 - ok
      19:49:28.0810 3444 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
      19:49:28.0810 3444 FsDepends - ok
      19:49:28.0888 3444 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      19:49:28.0888 3444 Fs_Rec - ok
      19:49:28.0997 3444 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
      19:49:29.0013 3444 fvevol - ok
      19:49:29.0060 3444 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
      19:49:29.0060 3444 gagp30kx - ok
      19:49:29.0138 3444 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
      19:49:29.0153 3444 gpsvc - ok
      19:49:29.0512 3444 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
      19:49:29.0512 3444 gupdate - ok
      19:49:29.0621 3444 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
      19:49:29.0621 3444 gupdatem - ok
      19:49:29.0653 3444 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
      19:49:29.0653 3444 hcw85cir - ok
      19:49:29.0746 3444 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      19:49:29.0762 3444 HdAudAddService - ok
      19:49:29.0809 3444 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
      19:49:29.0809 3444 HDAudBus - ok
      19:49:29.0855 3444 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
      19:49:29.0855 3444 HidBatt - ok
      19:49:29.0887 3444 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
      19:49:29.0902 3444 HidBth - ok
      19:49:29.0902 3444 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
      19:49:29.0918 3444 HidIr - ok
      19:49:29.0933 3444 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
      19:49:29.0949 3444 hidserv - ok
      19:49:30.0043 3444 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
      19:49:30.0043 3444 HidUsb - ok
      19:49:30.0121 3444 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
      19:49:30.0121 3444 hkmsvc - ok
      19:49:30.0152 3444 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      19:49:30.0183 3444 HomeGroupListener - ok
      19:49:30.0245 3444 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      19:49:30.0245 3444 HomeGroupProvider - ok
      19:49:30.0292 3444 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
      19:49:30.0292 3444 HpSAMD - ok
      19:49:30.0604 3444 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      19:49:30.0729 3444 HTTP - ok
      19:49:31.0025 3444 [ B93F069ECDF7449EAAC5B887D59A23D1 ] huawei_cdcacm C:\Windows\system32\DRIVERS\ew_jucdcacm.sys
      19:49:31.0041 3444 huawei_cdcacm - ok
      19:49:31.0369 3444 [ BED3A9F86A637CC6C2C5296CD82423D8 ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
      19:49:31.0369 3444 huawei_enumerator - ok
      19:49:31.0478 3444 HWDeviceService.exe - ok
      19:49:31.0540 3444 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
      19:49:31.0540 3444 hwpolicy - ok
      19:49:31.0587 3444 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
      19:49:31.0587 3444 i8042prt - ok
      19:49:31.0696 3444 [ A3CAE5D281DB4CFF7CFF8233507EE5AD ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
      19:49:31.0696 3444 iaStorV - ok
      19:49:31.0993 3444 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
      19:49:32.0071 3444 idsvc - ok
      19:49:32.0757 3444 [ 9467514EA189475A6E7FDC5D7BDE9D3F ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
      19:49:32.0882 3444 igfx - ok
      19:49:32.0944 3444 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
      19:49:32.0944 3444 iirsp - ok
      19:49:33.0069 3444 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
      19:49:33.0085 3444 IKEEXT - ok
      19:49:33.0163 3444 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
      19:49:33.0163 3444 intelide - ok
      19:49:33.0225 3444 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
      19:49:33.0225 3444 intelppm - ok
      19:49:33.0334 3444 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      19:49:33.0334 3444 IPBusEnum - ok
      19:49:33.0365 3444 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      19:49:33.0365 3444 IpFilterDriver - ok
      19:49:33.0428 3444 [ 4D65A07B795D6674312F879D09AA7663 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
      19:49:33.0428 3444 iphlpsvc - ok
      19:49:33.0475 3444 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
      19:49:33.0475 3444 IPMIDRV - ok
      19:49:33.0553 3444 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
      19:49:33.0568 3444 IPNAT - ok
      19:49:33.0584 3444 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
      19:49:33.0584 3444 IRENUM - ok
      19:49:33.0631 3444 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
      19:49:33.0631 3444 isapnp - ok
      19:49:33.0662 3444 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
      19:49:33.0677 3444 iScsiPrt - ok
      19:49:33.0740 3444 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
      19:49:33.0740 3444 kbdclass - ok
      19:49:33.0880 3444 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
      19:49:34.0021 3444 kbdhid - ok
      19:49:34.0052 3444 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
      19:49:34.0052 3444 KeyIso - ok
      19:49:34.0629 3444 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      19:49:34.0801 3444 KSecDD - ok
      19:49:35.0019 3444 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
      19:49:35.0035 3444 KSecPkg - ok
      19:49:35.0097 3444 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
      19:49:35.0113 3444 KtmRm - ok
      19:49:35.0331 3444 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
      19:49:35.0347 3444 LanmanServer - ok
      19:49:35.0425 3444 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      19:49:35.0440 3444 LanmanWorkstation - ok
      19:49:35.0612 3444 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      19:49:35.0612 3444 lltdio - ok
      19:49:35.0721 3444 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
      19:49:35.0721 3444 lltdsvc - ok
      19:49:35.0768 3444 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
      19:49:35.0783 3444 lmhosts - ok
      19:49:35.0815 3444 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
      19:49:35.0815 3444 LSI_FC - ok
      19:49:35.0924 3444 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
      19:49:35.0924 3444 LSI_SAS - ok
      19:49:35.0986 3444 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
      19:49:35.0986 3444 LSI_SAS2 - ok
      19:49:36.0033 3444 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
      19:49:36.0142 3444 LSI_SCSI - ok
      19:49:36.0298 3444 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
      19:49:36.0298 3444 luafv - ok
      19:49:36.0407 3444 [ 6DFE7F2E8E8A337263AA5C92A215F161 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
      19:49:36.0423 3444 MBAMProtector - ok
      19:49:36.0735 3444 [ 43683E970F008C93C9429EF428147A54 ] MBAMService D:\Malwarebytes' Anti-Malware\mbamservice.exe
      19:49:36.0735 3444 MBAMService - ok
      19:49:36.0844 3444 [ 0DB7527DB188C7D967A37BB51BBF3963 ] MBAMSwissArmy C:\Windows\system32\drivers\mbamswissarmy.sys
      19:49:36.0844 3444 MBAMSwissArmy - ok
      19:49:36.0875 3444 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
      19:49:36.0891 3444 Mcx2Svc - ok
      19:49:36.0922 3444 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
      19:49:36.0922 3444 megasas - ok
      19:49:36.0985 3444 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
      19:49:37.0000 3444 MegaSR - ok
      19:49:37.0125 3444 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
      19:49:37.0141 3444 MMCSS - ok
      19:49:37.0265 3444 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
      19:49:37.0265 3444 Modem - ok
      19:49:37.0359 3444 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      19:49:37.0359 3444 monitor - ok
      19:49:37.0390 3444 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\drivers\mouclass.sys
      19:49:37.0390 3444 mouclass - ok
      19:49:37.0468 3444 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
      19:49:37.0484 3444 mouhid - ok
      19:49:37.0562 3444 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
      19:49:37.0577 3444 mountmgr - ok
      19:49:37.0718 3444 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
      19:49:37.0718 3444 mpio - ok
      19:49:37.0765 3444 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      19:49:37.0765 3444 mpsdrv - ok
      19:49:37.0921 3444 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
      19:49:37.0936 3444 MpsSvc - ok
      19:49:37.0983 3444 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      19:49:37.0983 3444 MRxDAV - ok
      19:49:38.0061 3444 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      19:49:38.0077 3444 mrxsmb - ok
      19:49:38.0279 3444 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      19:49:38.0467 3444 mrxsmb10 - ok
      19:49:38.0607 3444 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      19:49:38.0669 3444 mrxsmb20 - ok
      19:49:38.0732 3444 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
      19:49:38.0747 3444 msahci - ok
      19:49:38.0794 3444 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
      19:49:38.0794 3444 msdsm - ok
      19:49:38.0841 3444 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
      19:49:38.0841 3444 MSDTC - ok
      19:49:38.0872 3444 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
      19:49:38.0888 3444 Msfs - ok
      19:49:38.0919 3444 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
      19:49:38.0919 3444 mshidkmdf - ok
      19:49:38.0981 3444 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
      19:49:38.0981 3444 msisadrv - ok
      19:49:39.0028 3444 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      19:49:39.0028 3444 MSiSCSI - ok
      19:49:39.0044 3444 msiserver - ok
      19:49:39.0122 3444 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      19:49:39.0137 3444 MSKSSRV - ok
      19:49:39.0169 3444 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      19:49:39.0169 3444 MSPCLOCK - ok
      19:49:39.0184 3444 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      19:49:39.0184 3444 MSPQM - ok
      19:49:39.0215 3444 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      19:49:39.0231 3444 MsRPC - ok
      19:49:39.0293 3444 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
      19:49:39.0293 3444 mssmbios - ok
      19:49:39.0356 3444 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      19:49:39.0356 3444 MSTEE - ok
      19:49:39.0371 3444 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
      19:49:39.0371 3444 MTConfig - ok
      19:49:39.0403 3444 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
      19:49:39.0403 3444 Mup - ok
      19:49:39.0512 3444 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
      19:49:39.0527 3444 napagent - ok
      19:49:39.0605 3444 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      19:49:39.0605 3444 NativeWifiP - ok
      19:49:39.0699 3444 [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS C:\Windows\system32\drivers\ndis.sys
      19:49:39.0715 3444 NDIS - ok
      19:49:39.0761 3444 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
      19:49:39.0761 3444 NdisCap - ok
      19:49:39.0777 3444 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      19:49:39.0793 3444 NdisTapi - ok
      19:49:39.0839 3444 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      19:49:39.0839 3444 Ndisuio - ok
      19:49:39.0902 3444 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      19:49:39.0917 3444 NdisWan - ok
      19:49:39.0933 3444 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      19:49:39.0949 3444 NDProxy - ok
      19:49:40.0339 3444 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      19:49:40.0541 3444 NetBIOS - ok
      19:49:40.0978 3444 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
      19:49:41.0025 3444 NetBT - ok
      19:49:41.0228 3444 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
      19:49:41.0353 3444 Netlogon - ok
      19:49:42.0304 3444 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
      19:49:42.0304 3444 Netman - ok
      19:49:42.0351 3444 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
      19:49:42.0367 3444 netprofm - ok
      19:49:42.0445 3444 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
      19:49:42.0445 3444 NetTcpPortSharing - ok
      19:49:42.0507 3444 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
      19:49:42.0507 3444 nfrd960 - ok
      19:49:42.0616 3444 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
      19:49:42.0616 3444 NlaSvc - ok
      19:49:42.0803 3444 [ F6C40E0A565EE3CE5AEEB325E10054F2 ] nmwcd C:\Windows\system32\drivers\ccdcmb.sys
      19:49:42.0803 3444 nmwcd - ok
      19:49:42.0897 3444 [ 2A394E9E1FA3565E4B2FEA470FFE4D6B ] nmwcdc C:\Windows\system32\drivers\ccdcmbo.sys
      19:49:42.0897 3444 nmwcdc - ok
      19:49:42.0944 3444 [ 99B224F8026CB534724AA3C408561E45 ] nmwcdnsu C:\Windows\system32\drivers\nmwcdnsu.sys
      19:49:42.0959 3444 nmwcdnsu - ok
      19:49:43.0006 3444 [ D23257682D349A5E2E4507ED33DECC16 ] nmwcdnsuc C:\Windows\system32\drivers\nmwcdnsuc.sys
      19:49:43.0006 3444 nmwcdnsuc - ok
      19:49:43.0037 3444 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
      19:49:43.0037 3444 Npfs - ok
      19:49:43.0100 3444 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
      19:49:43.0100 3444 nsi - ok
      19:49:43.0178 3444 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      19:49:43.0178 3444 nsiproxy - ok
      19:49:43.0568 3444 [ 33C3093D09017CFE2E219F2472BFF6EB ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      19:49:43.0630 3444 Ntfs - ok
      19:49:43.0739 3444 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
      19:49:43.0739 3444 Null - ok
      19:49:43.0786 3444 [ AF2EEC9580C1D32FB7EAF105D9784061 ] nvraid C:\Windows\system32\drivers\nvraid.sys
      19:49:43.0786 3444 nvraid - ok
      19:49:43.0864 3444 [ 9283C58EBAA2618F93482EB5DABCEC82 ] nvstor C:\Windows\system32\drivers\nvstor.sys
      19:49:43.0864 3444 nvstor - ok
      19:49:44.0129 3444 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
      19:49:44.0129 3444 nv_agp - ok
      19:49:44.0285 3444 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
      19:49:44.0285 3444 odserv - ok
      19:49:44.0317 3444 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
      19:49:44.0317 3444 ohci1394 - ok
      19:49:44.0410 3444 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      19:49:44.0410 3444 ose - ok
      19:49:44.0504 3444 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
      19:49:44.0519 3444 p2pimsvc - ok
      19:49:44.0566 3444 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
      19:49:44.0582 3444 p2psvc - ok
      19:49:44.0629 3444 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
      19:49:44.0629 3444 Parport - ok
      19:49:44.0738 3444 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
      19:49:44.0738 3444 partmgr - ok
      19:49:44.0769 3444 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
      19:49:44.0800 3444 Parvdm - ok
      19:49:44.0863 3444 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
      19:49:44.0878 3444 PcaSvc - ok
      19:49:45.0003 3444 [ FD2041E9BA03DB7764B2248F02475079 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfd.sys
      19:49:45.0003 3444 pccsmcfd - ok
      19:49:45.0065 3444 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
      19:49:45.0081 3444 pci - ok
      19:49:45.0112 3444 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
      19:49:45.0112 3444 pciide - ok
      19:49:45.0221 3444 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
      19:49:45.0221 3444 pcmcia - ok
      19:49:45.0284 3444 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
      19:49:45.0284 3444 pcw - ok
      19:49:45.0440 3444 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      19:49:45.0487 3444 PEAUTH - ok
      19:49:45.0596 3444 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
      19:49:45.0627 3444 PeerDistSvc - ok
      19:49:48.0373 3444 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
      19:49:48.0435 3444 pla - ok
      19:49:48.0575 3444 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      19:49:48.0591 3444 PlugPlay - ok
      19:49:48.0669 3444 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
      19:49:48.0669 3444 PNRPAutoReg - ok
      19:49:48.0731 3444 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
      19:49:48.0731 3444 PNRPsvc - ok
      19:49:48.0981 3444 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      19:49:48.0997 3444 PolicyAgent - ok
      19:49:49.0043 3444 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
      19:49:49.0059 3444 Power - ok
      19:49:49.0090 3444 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      19:49:49.0106 3444 PptpMiniport - ok
      19:49:49.0168 3444 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
      19:49:49.0168 3444 Processor - ok
      19:49:49.0231 3444 [ 43CA4CCC22D52FB58E8988F0198851D0 ] ProfSvc C:\Windows\system32\profsvc.dll
      19:49:49.0246 3444 ProfSvc - ok
      19:49:49.0277 3444 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
      19:49:49.0293 3444 ProtectedStorage - ok
      19:49:49.0387 3444 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
      19:49:49.0402 3444 Psched - ok
      19:49:49.0558 3444 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
      19:49:49.0589 3444 ql2300 - ok
      19:49:49.0621 3444 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
      19:49:49.0636 3444 ql40xx - ok
      19:49:49.0730 3444 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
      19:49:49.0745 3444 QWAVE - ok
      19:49:49.0808 3444 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      19:49:49.0808 3444 QWAVEdrv - ok
      19:49:49.0870 3444 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      19:49:49.0870 3444 RasAcd - ok
      19:49:50.0167 3444 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
      19:49:50.0167 3444 RasAgileVpn - ok
      19:49:50.0323 3444 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
      19:49:50.0323 3444 RasAuto - ok
      19:49:50.0354 3444 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      19:49:50.0354 3444 Rasl2tp - ok
      19:49:50.0479 3444 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
      19:49:50.0494 3444 RasMan - ok
      19:49:50.0525 3444 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      19:49:50.0541 3444 RasPppoe - ok
      19:49:50.0619 3444 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      19:49:50.0619 3444 RasSstp - ok
      19:49:50.0744 3444 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      19:49:50.0759 3444 rdbss - ok
      19:49:50.0806 3444 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
      19:49:50.0822 3444 rdpbus - ok
      19:49:50.0993 3444 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      19:49:51.0009 3444 RDPCDD - ok
      19:49:51.0461 3444 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
      19:49:51.0461 3444 RDPDR - ok
      19:49:51.0571 3444 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      19:49:51.0571 3444 RDPENCDD - ok
      19:49:51.0602 3444 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
      19:49:51.0602 3444 RDPREFMP - ok
      19:49:51.0773 3444 [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
      19:49:51.0789 3444 RdpVideoMiniport - ok
      19:49:51.0836 3444 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      19:49:51.0836 3444 RDPWD - ok
      19:49:52.0117 3444 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
      19:49:52.0117 3444 rdyboost - ok
      19:49:52.0195 3444 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
      19:49:52.0195 3444 RemoteAccess - ok
      19:49:52.0288 3444 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      19:49:52.0288 3444 RemoteRegistry - ok
      19:49:52.0366 3444 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
      19:49:52.0366 3444 RpcEptMapper - ok
      19:49:52.0413 3444 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
      19:49:52.0413 3444 RpcLocator - ok
      19:49:52.0538 3444 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
      19:49:52.0553 3444 RpcSs - ok
      19:49:52.0647 3444 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      19:49:52.0647 3444 rspndr - ok
      19:49:52.0756 3444 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
      19:49:52.0772 3444 s3cap - ok
      19:49:52.0787 3444 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
      19:49:52.0787 3444 SamSs - ok
      19:49:52.0819 3444 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
      19:49:52.0819 3444 sbp2port - ok
      19:49:52.0897 3444 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
      19:49:52.0912 3444 SCardSvr - ok
      19:49:52.0928 3444 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
      19:49:52.0928 3444 scfilter - ok
      19:49:53.0006 3444 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
      19:49:53.0021 3444 Schedule - ok
      19:49:53.0053 3444 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
      19:49:53.0053 3444 SCPolicySvc - ok
      19:49:53.0115 3444 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      19:49:53.0131 3444 SDRSVC - ok
      19:49:53.0209 3444 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      19:49:53.0209 3444 secdrv - ok
      19:49:53.0255 3444 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
      19:49:53.0255 3444 seclogon - ok
      19:49:53.0302 3444 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
      19:49:53.0302 3444 SENS - ok
      19:49:53.0333 3444 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
      19:49:53.0349 3444 SensrSvc - ok
      19:49:53.0380 3444 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
      19:49:53.0380 3444 Serenum - ok
      19:49:53.0380 3444 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
      19:49:53.0396 3444 Serial - ok
      19:49:53.0458 3444 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
      19:49:53.0458 3444 sermouse - ok
      19:49:53.0801 3444 [ F31E9531AF225CA25350D5E87E999B31 ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
      19:49:53.0801 3444 ServiceLayer - ok
      19:49:53.0895 3444 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
      19:49:53.0895 3444 SessionEnv - ok
      19:49:54.0098 3444 [ 8B7C1768D2CDE2E02E09A66563DDFD16 ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
      19:49:54.0098 3444 SFEP - ok
      19:49:54.0145 3444 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
      19:49:54.0145 3444 sffdisk - ok
      19:49:54.0223 3444 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
      19:49:54.0223 3444 sffp_mmc - ok
      19:49:54.0238 3444 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
      19:49:54.0254 3444 sffp_sd - ok
      19:49:54.0301 3444 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
      19:49:54.0301 3444 sfloppy - ok
      19:49:54.0410 3444 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
      19:49:54.0410 3444 SharedAccess - ok
      19:49:54.0472 3444 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      19:49:54.0488 3444 ShellHWDetection - ok
      19:49:54.0535 3444 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
      19:49:54.0535 3444 sisagp - ok
      19:49:54.0597 3444 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
      19:49:54.0613 3444 SiSRaid2 - ok
      19:49:54.0644 3444 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
      19:49:54.0659 3444 SiSRaid4 - ok
      19:49:54.0691 3444 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
      19:49:54.0691 3444 Smb - ok
      19:49:54.0737 3444 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      19:49:54.0753 3444 SNMPTRAP - ok
      19:49:54.0800 3444 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
      19:49:54.0800 3444 spldr - ok
      19:49:54.0956 3444 [ 866A43013535DC8587C258E43579C764 ] Spooler C:\Windows\System32\spoolsv.exe
      19:49:54.0971 3444 Spooler - ok
      19:49:55.0283 3444 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
      19:49:55.0455 3444 sppsvc - ok
      19:49:55.0502 3444 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
      19:49:55.0517 3444 sppuinotify - ok
      19:49:55.0580 3444 [ F42EFEFB765235F24B24E1D2B6F99F46 ] sptd C:\Windows\System32\Drivers\sptd.sys
      19:49:55.0580 3444 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: F42EFEFB765235F24B24E1D2B6F99F46
      19:49:55.0611 3444 sptd ( LockedFile.Multi.Generic ) - warning
      19:49:55.0611 3444 sptd - detected LockedFile.Multi.Generic (1)
      19:49:55.0658 3444 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
      19:49:55.0658 3444 srv - ok
      19:49:55.0736 3444 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      19:49:55.0751 3444 srv2 - ok
      19:49:55.0829 3444 [ E00FDFAFF025E94F9821153750C35A6D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS
      19:49:55.0845 3444 SrvHsfHDA - ok
      19:49:56.0048 3444 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS
      19:49:56.0063 3444 SrvHsfV92 - ok
      19:49:56.0110 3444 [ BC0C7EA89194C299F051C24119000E17 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
      19:49:56.0126 3444 SrvHsfWinac - ok
      19:49:56.0204 3444 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      19:49:56.0204 3444 srvnet - ok
      19:49:56.0282 3444 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      19:49:56.0282 3444 SSDPSRV - ok
      19:49:56.0313 3444 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
      19:49:56.0329 3444 SstpSvc - ok
      19:49:56.0375 3444 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
      19:49:56.0375 3444 stexstor - ok
      19:49:56.0438 3444 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
      19:49:56.0453 3444 StiSvc - ok
      19:49:56.0516 3444 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
      19:49:56.0516 3444 storflt - ok
      19:49:56.0594 3444 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
      19:49:56.0594 3444 storvsc - ok
      19:49:56.0672 3444 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
      19:49:56.0672 3444 swenum - ok
      19:49:56.0734 3444 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
      19:49:56.0734 3444 swprv - ok
      19:49:56.0765 3444 Synth3dVsc - ok
      19:49:57.0421 3444 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
      19:49:57.0499 3444 SysMain - ok
      19:49:57.0545 3444 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
      19:49:57.0545 3444 TabletInputService - ok
      19:49:57.0623 3444 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
      19:49:57.0639 3444 TapiSrv - ok
      19:49:57.0670 3444 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
      19:49:57.0670 3444 TBS - ok
      19:49:57.0889 3444 [ 7FA2E0F8B072BD04B77B421480B6CC22 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      19:49:58.0138 3444 Tcpip - ok
      19:49:58.0169 3444 [ 7FA2E0F8B072BD04B77B421480B6CC22 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
      19:49:58.0185 3444 TCPIP6 - ok
      19:49:58.0279 3444 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      19:49:58.0279 3444 tcpipreg - ok
      19:49:58.0528 3444 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      19:49:58.0559 3444 TDPIPE - ok
      19:49:58.0591 3444 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      19:49:58.0591 3444 TDTCP - ok
      19:49:58.0684 3444 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      19:49:58.0684 3444 tdx - ok
      19:49:58.0793 3444 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
      19:49:58.0793 3444 TermDD - ok
      19:49:58.0903 3444 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
      19:49:58.0918 3444 TermService - ok
      19:49:59.0012 3444 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
      19:49:59.0012 3444 Themes - ok
      19:49:59.0090 3444 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
      19:49:59.0090 3444 THREADORDER - ok
      19:49:59.0137 3444 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
      19:49:59.0137 3444 TrkWks - ok
      19:49:59.0215 3444 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      19:49:59.0230 3444 TrustedInstaller - ok
      19:49:59.0261 3444 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      19:49:59.0277 3444 tssecsrv - ok
      19:49:59.0339 3444 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
      19:49:59.0339 3444 TsUsbFlt - ok
      19:49:59.0371 3444 tsusbhub - ok
      19:49:59.0433 3444 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      19:49:59.0433 3444 tunnel - ok
      19:49:59.0480 3444 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
      19:49:59.0480 3444 uagp35 - ok
      19:49:59.0542 3444 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      19:49:59.0558 3444 udfs - ok
      19:49:59.0605 3444 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
      19:49:59.0620 3444 UI0Detect - ok
      19:49:59.0651 3444 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
      19:49:59.0651 3444 uliagpkx - ok
      19:49:59.0698 3444 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
      19:49:59.0698 3444 umbus - ok
      19:49:59.0761 3444 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
      19:49:59.0761 3444 UmPass - ok
      19:49:59.0792 3444 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
      19:49:59.0792 3444 UmRdpService - ok
      19:49:59.0839 3444 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
      19:49:59.0854 3444 upnphost - ok
      19:49:59.0917 3444 [ 47F5F9D837D80FFD5882A14DB9DA0A67 ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
      19:50:00.0041 3444 upperdev - ok
      19:50:00.0088 3444 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
      19:50:00.0088 3444 usbccgp - ok
      19:50:00.0135 3444 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
      19:50:00.0135 3444 usbcir - ok
      19:50:00.0244 3444 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
      19:50:00.0244 3444 usbehci - ok
      19:50:00.0338 3444 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      19:50:00.0338 3444 usbhub - ok
      19:50:00.0385 3444 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\drivers\usbohci.sys
      19:50:00.0385 3444 usbohci - ok
      19:50:00.0572 3444 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
      19:50:00.0587 3444 usbprint - ok
      19:50:00.0634 3444 [ 31181DE6190B39FC8007DFFD1A48FFD6 ] usbser C:\Windows\system32\drivers\usbser.sys
      19:50:00.0634 3444 usbser - ok
      19:50:00.0728 3444 [ E44F0D17BE0908B58DCC99CCB99C6C32 ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
      19:50:00.0728 3444 UsbserFilt - ok
      19:50:00.0806 3444 [ BF63EBFC6979FEFB2BC03DF7989A0C1A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      19:50:00.0806 3444 USBSTOR - ok
      19:50:00.0837 3444 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
      19:50:00.0837 3444 usbuhci - ok
      19:50:00.0884 3444 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
      19:50:00.0899 3444 UxSms - ok
      19:50:00.0915 3444 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
      19:50:00.0915 3444 VaultSvc - ok
      19:50:00.0962 3444 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
      19:50:00.0977 3444 vdrvroot - ok
      19:50:01.0289 3444 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
      19:50:01.0399 3444 vds - ok
      19:50:01.0461 3444 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      19:50:01.0461 3444 vga - ok
      19:50:01.0492 3444 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
      19:50:01.0508 3444 VgaSave - ok
      19:50:01.0523 3444 VGPU - ok
      19:50:01.0586 3444 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
      19:50:01.0586 3444 vhdmp - ok
      19:50:01.0617 3444 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
      19:50:01.0617 3444 viaagp - ok
      19:50:01.0679 3444 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
      19:50:01.0679 3444 ViaC7 - ok
      19:50:01.0726 3444 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
      19:50:01.0742 3444 viaide - ok
      19:50:01.0773 3444 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
      19:50:01.0789 3444 vmbus - ok
      19:50:01.0804 3444 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
      19:50:01.0820 3444 VMBusHID - ok
      19:50:01.0851 3444 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
      19:50:01.0851 3444 volmgr - ok
      19:50:02.0101 3444 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      19:50:02.0101 3444 volmgrx - ok
      19:50:02.0428 3444 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
      19:50:02.0537 3444 volsnap - ok
      19:50:02.0600 3444 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
      19:50:02.0600 3444 vsmraid - ok
      19:50:03.0271 3444 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
      19:50:03.0349 3444 VSS - ok
      19:50:03.0411 3444 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
      19:50:03.0411 3444 vwifibus - ok
      19:50:03.0458 3444 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
      19:50:03.0458 3444 vwififlt - ok
      19:50:03.0536 3444 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
      19:50:03.0536 3444 W32Time - ok
      19:50:03.0583 3444 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
      19:50:03.0598 3444 WacomPen - ok
      19:50:03.0723 3444 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
      19:50:03.0739 3444 WANARP - ok
      19:50:03.0848 3444 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      19:50:03.0848 3444 Wanarpv6 - ok
      19:50:04.0300 3444 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
      19:50:04.0441 3444 WatAdminSvc - ok
      19:50:04.0721 3444 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
      19:50:04.0831 3444 wbengine - ok
      19:50:04.0909 3444 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
      19:50:04.0940 3444 WbioSrvc - ok
      19:50:05.0018 3444 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
      19:50:05.0033 3444 wcncsvc - ok
      19:50:05.0049 3444 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      19:50:05.0111 3444 WcsPlugInService - ok
      19:50:05.0174 3444 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
      19:50:05.0252 3444 Wd - ok
      19:50:05.0299 3444 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      19:50:05.0314 3444 Wdf01000 - ok
      19:50:05.0345 3444 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
      19:50:05.0361 3444 WdiServiceHost - ok
      19:50:05.0361 3444 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
      19:50:05.0377 3444 WdiSystemHost - ok
      19:50:05.0486 3444 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
      19:50:05.0501 3444 WebClient - ok
      19:50:05.0579 3444 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
      19:50:05.0579 3444 Wecsvc - ok
      19:50:05.0611 3444 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
      19:50:05.0626 3444 wercplsupport - ok
      19:50:05.0642 3444 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
      19:50:05.0720 3444 WerSvc - ok
      19:50:05.0782 3444 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
      19:50:05.0782 3444 WfpLwf - ok
      19:50:05.0860 3444 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
      19:50:05.0860 3444 WIMMount - ok
      19:50:06.0281 3444 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
      19:50:06.0422 3444 WinDefend - ok
      19:50:06.0437 3444 WinHttpAutoProxySvc - ok
      19:50:06.0656 3444 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      19:50:06.0656 3444 Winmgmt - ok
      19:50:06.0983 3444 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
      19:50:07.0093 3444 WinRM - ok
      19:50:07.0233 3444 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
      19:50:07.0233 3444 WinUsb - ok
      19:50:07.0483 3444 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
      19:50:07.0529 3444 Wlansvc - ok
      19:50:07.0529 3444 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
      19:50:07.0545 3444 WmiAcpi - ok
      19:50:07.0639 3444 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      19:50:07.0639 3444 wmiApSrv - ok
      19:50:08.0294 3444 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
      19:50:08.0497 3444 WMPNetworkSvc - ok
      19:50:08.0606 3444 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
      19:50:08.0824 3444 WPCSvc - ok
      19:50:08.0855 3444 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      19:50:08.0965 3444 WPDBusEnum - ok
      19:50:09.0105 3444 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      19:50:09.0261 3444 ws2ifsl - ok
      19:50:09.0464 3444 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
      19:50:09.0479 3444 wscsvc - ok
      19:50:09.0479 3444 WSearch - ok
      19:50:09.0994 3444 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
      19:50:10.0072 3444 wuauserv - ok
      19:50:10.0119 3444 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
      19:50:10.0135 3444 WudfPf - ok
      19:50:10.0181 3444 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      19:50:10.0181 3444 WUDFRd - ok
      19:50:10.0244 3444 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      19:50:10.0244 3444 wudfsvc - ok
      19:50:10.0275 3444 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
      19:50:10.0291 3444 WwanSvc - ok
      19:50:10.0384 3444 [ B07C5B7EFDF936FF93D4F540938725BE ] yukonw7 C:\Windows\system32\DRIVERS\yk62x86.sys
      19:50:10.0384 3444 yukonw7 - ok
      19:50:10.0400 3444 ================ Scan global ===============================
      19:50:10.0493 3444 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
      19:50:10.0587 3444 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
      19:50:10.0603 3444 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
      19:50:10.0649 3444 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
      19:50:10.0681 3444 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
      19:50:10.0696 3444 [Global] - ok
      19:50:10.0696 3444 ================ Scan MBR ==================================
      19:50:10.0759 3444 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      19:50:11.0289 3444 \Device\Harddisk0\DR0 - ok
      19:50:11.0289 3444 [ DDAE9D649DB12F6AFF24483F2C298989 ] \Device\Harddisk1\DR1
      19:50:11.0305 3444 \Device\Harddisk1\DR1 - ok
      19:50:11.0305 3444 ================ Scan VBR ==================================
      19:50:11.0336 3444 [ F26AB32100BF475C8F200AF59F848A05 ] \Device\Harddisk0\DR0\Partition1
      19:50:11.0351 3444 \Device\Harddisk0\DR0\Partition1 - ok
      19:50:11.0367 3444 [ 58942107E46C5D49B8E3F6811A0DB2B3 ] \Device\Harddisk0\DR0\Partition2
      19:50:11.0367 3444 \Device\Harddisk0\DR0\Partition2 - ok
      19:50:11.0383 3444 [ 84F3AF4D295DE8D7182E4646629531C5 ] \Device\Harddisk0\DR0\Partition3
      19:50:11.0429 3444 \Device\Harddisk0\DR0\Partition3 - ok
      19:50:11.0570 3444 [ 34B47809F3AB2FE11254E4FBD710C65E ] \Device\Harddisk0\DR0\Partition4
      19:50:11.0570 3444 \Device\Harddisk0\DR0\Partition4 - ok
      19:50:11.0570 3444 [ E94EFF73327ECCB3687AB2B501B8115E ] \Device\Harddisk1\DR1\Partition1
      19:50:11.0570 3444 \Device\Harddisk1\DR1\Partition1 - ok
      19:50:11.0570 3444 ============================================================
      19:50:11.0570 3444 Scan finished
      19:50:11.0570 3444 ============================================================
      19:50:11.0585 2776 Detected object count: 1
      19:50:11.0585 2776 Actual detected object count: 1
      20:03:36.0640 2776 sptd ( LockedFile.Multi.Generic ) - skipped by user
      20:03:36.0640 2776 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
      20:03:41.0960 2840 Deinitialize success

      listo!! la primera parte es el nombre del reporte... despues viene lo que esta dentro del reporte...


      gracias por la colaboración

    4. #4
      Moderador
      Avatar de @DavidG_EB
      Registrado
      jul 2009
      Ubicación
      Mexico
      Mensajes
      10.633

      Re: Spyware, rootkit, sistema operativo, no se que me ataca

      Hola

      No te preocupes que se interpretar el reporte

      Bueno primero que nada realiza lo siguiente porfavor:
      Descarga y ejecuta Dr Web CureIt segun su manual y con estas especificaciones:
      • Cuando inicie el programa ejecutalo en su modo de proteccion mejorada preferentemente.
      • Al iniciarlo siguiendo el manual, comenzara un Escaneo rápido por defecto, lo detienes si es posible como se muestra en la imagen de abajo, si no espera a que termine:



      • Eliges la opción Escaneo completo y pulsas el botón de Play para iniciar.
      • Curas, Mueves y Eliminas, lo que encuentre según te de la opción y con ese orden de preferencia.
      • Si te detecta el archivo Hosts modificado pulsa en Si para restaurarlo.
      • Guarda un reporte al finalizar como lo indica la imagen
      Nos traerias el reporte de DrWeb ( de no poder guardarlo como se indica, un reporte se genera sobre %userprofile%\DoctorWeb\CureIt.log, de este traerias la parte final de estadisticas). Ademas nos comentas el estado del sistema.

      Saludos
      ErdrickBass
      No importa lo fuerte que sea tu oponente. Lo importante es que estés de pie ante él

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de darkerpl
      Registrado
      jul 2010
      Ubicación
      colombia
      Mensajes
      25

      Re: Spyware, rootkit, sistema operativo, no se que me ataca

      intento correr el programa, pero el pc se me apaga cuando comienza el analisis, intente modificar el nombre del fichero, pero cuando lo inicio el pc se apaga, ahi que recomendación me ofreces??

    6. #6
      Moderador
      Avatar de @DavidG_EB
      Registrado
      jul 2009
      Ubicación
      Mexico
      Mensajes
      10.633

      Re: Spyware, rootkit, sistema operativo, no se que me ataca

      Hola

      Una pregunta, antes de iniciar el escaneo ¿intentaste desconectar tu equipo primero de Internet?

      Saludos
      ErdrickBass
      No importa lo fuerte que sea tu oponente. Lo importante es que estés de pie ante él

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #7
      Usuario Avatar de darkerpl
      Registrado
      jul 2010
      Ubicación
      colombia
      Mensajes
      25

      Re: Spyware, rootkit, sistema operativo, no se que me ataca

      si... yo solo me conecto a internet a traves de un modem movil... y todos los pasos los he realizado sin conectar el modem... por eso es que no entiendo el porque se apaga...

    8. #8
      Moderador
      Avatar de @DavidG_EB
      Registrado
      jul 2009
      Ubicación
      Mexico
      Mensajes
      10.633

      Re: Spyware, rootkit, sistema operativo, no se que me ataca

      Hola

      Como tienes instalado Malwarebytes en ese ordenador (de no tenerlo descargalo e instalalo)

      Ejecuta Malwarebytes Anti-Malware - Chameleon y nos pegas el reporte que te genere, encuentre algo o no.

      Saludos
      ErdrickBass
      No importa lo fuerte que sea tu oponente. Lo importante es que estés de pie ante él

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    9. #9
      Usuario Avatar de darkerpl
      Registrado
      jul 2010
      Ubicación
      colombia
      Mensajes
      25

      Spyware, rootkit, sistema operativo, no se que me ataca

      si esta instalado... trate de iniciar lo del malware chameleon, la opcion primera abrio pero al intentar actualizar como no tenia el modem (no tenia internet) se bloqueo, despues de ello le inserte el modem para que pudiera actualizarse y se apago,

      despues le intente de nuevo sin modem, y despues de darle a la opcion chameleon hizo un pantallazo, se le quitaron todos los iconos del escritorio y se reinicio solo, y aparece toda la pantalla negra con unas letras que dicen "operating system not found"

      lo apague y trate de reiniciarlo en modo seguro "apretando f8" pero solo hace un sonido de pip y la pantalla queda negra...

      la pantalla negra se quedo un rato pero ahora se abrio la BIOSS y no se como le hice...

    10. #10
      Moderador
      Avatar de @DavidG_EB
      Registrado
      jul 2009
      Ubicación
      Mexico
      Mensajes
      10.633

      Re: Spyware, rootkit, sistema operativo, no se que me ataca

      Hola

      Bueno parece que la infeccion daño algo importante, es posible que para reparar el daño debas reparar, reinstalar o formatear el sistema con el disco de windows.

      Para las infecciones puedes probar uno de estos 2 cd, dvd o usb de rescate:
      Nos comentas.

      saludos
      ErdrickBass
      No importa lo fuerte que sea tu oponente. Lo importante es que estés de pie ante él

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    Página 1 de 2 12 ÚltimoÚltimo