• Registrarse
  • Iniciar sesión


  • Resultados 1 al 10 de 10

    Creo que tengo virus y muy raro.

    Un día me aparecio en el escritorio un archivo tipo bloc con una tuerca que ponía. Desktop.ini y debajo pone, opciones de configuracion. Lo eliminé, unos dias después fuí a la carpeta mi música y ...

    1. #1
      Usuario Avatar de Ismanlof
      Registrado
      jul 2012
      Ubicación
      España
      Mensajes
      66

      Creo que tengo virus y muy raro.

      Un día me aparecio en el escritorio un archivo tipo bloc con una tuerca que ponía. Desktop.ini y debajo pone, opciones de configuracion. Lo eliminé, unos dias después fuí a la carpeta mi música y en los varios a partados que tengo me sale el mismo archivo en cada uno. ME puse a uscar y en google drive tambien está, y en documentos también. Los mas extraño es que algunas carpetas me aparecen en ver del color amarillo fuerte en amarillo color flojo, no se si me entendeis, como que se ve las carpetas algo mas transparente.. Y son la de mis imágenes, mis videos, mi música, my pictures, y luego en esas carpetas hay un candado, que no nunca hice para que apareciese así. ¿Es un virus? ¿De qué tipo? ¿Que hago?

      Ahora reciente mente ne salió un aviso de windows que dice "Debe reiniciar windows para guardar los cambios" y yo no cambie nada :S

      ¿Alguien me puede echar una mano por favor? Pase el anti-malware, ati-spam, el avast! y el eset-on line y no me detecto nada :S

    2. #2
      Moderador
      Avatar de @JonathanM
      Registrado
      may 2006
      Ubicación
      Chile
      Mensajes
      11.675

      Re: Creo que tengo virus y muy raro.

      Hola...

      Si ya creaste un tema y aún no has recibido respuesta, evita responderte a ti mismo, ya que si no tu mensaje NO aparecerá con cero respuestas, lo que nos hará pensar que ya está siendo atendido por otro Moderador, con lo cual ese mensaje pasará desapercibido y puede que nunca recibas respuesta. Si quieres añadir algo a ese mensaje usa el botón "Editar" en lugar del botón "Responder"

      Realiza estos pasos


      Paso 1.-
      • Usa el Ccleaner para limpiar el sistema.
        • Primero utilizá la opción de "Limpiador" para borrar cookies, temporales de Internet y todos los archivos que este te muestre como obsoletos.
        • Luego usa su opción de "Registro" para limpiar todo el registro de Windows (haciendo copia de seguridad).



      Paso 2.-

      Paso 3.-
      • Descarga he instala Malwarebytes' Anti-Malware. (Selecciona idioma español)
      • Al finalizar la instalación te indicara que debes actualiza la herramienta antes de ejecutarla para trabajar con las últimas bases de datos del programa.
        • En caso de presentar algún problema a la hora de la actualización, debes acceder a tú Firewall y configurarlo para que le des permisos de acceso a Internet a la herramienta Malwarebyte's Anti-Malware.
      • Ejecuta MBAM
      • Realiza un escaneo completo del PC y elimina las infecciones que este detecte. El reporte queda guardado en la pestaña "Logs" o "Registros" en español, abres el reporte y copias el contenido para pegarlo en este tema.


      Salu2
      Recuerda volver y contarnos los resltados
      <¡D3vIL!>

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de Ismanlof
      Registrado
      jul 2012
      Ubicación
      España
      Mensajes
      66

      Re: Creo que tengo virus y muy raro.

      Vale gracias nolo sabía.

      Ya hice todos los pasos te pego el report de MBAM.

      nMalwarebytes Anti-Malware 1.62.0.1300
      www.malwarebytes.org

      Versión de la Base de Datos: v2012.08.26.02

      Windows 7 Service Pack 1 x64 NTFS
      Internet Explorer 9.0.8112.16421
      Ismael :: SR-91 [administrador]

      Protección: Habilitado

      27/08/2012 18:38:35
      mbam-log-2012-08-27 (18-38-35).txt

      Tipos de Análisis: Análisis Completo (C:\|D:\|E:\|F:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM | P2P
      Opciones de análisis desactivados:
      Objetos examinados: 410817
      Tiempo transcurrido: 41 minuto(s), 57 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 0
      (No se han detectado elementos maliciosos)

      fin)

      También pase el TDSSKILLER

      Reporte:

      13:32:42.0472 6328 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
      13:32:42.0485 6328 ============================================================
      13:32:42.0485 6328 Current date / time: 2012/08/26 13:32:42.0485
      13:32:42.0485 6328 SystemInfo:
      13:32:42.0485 6328
      13:32:42.0485 6328 OS Version: 6.1.7601 ServicePack: 1.0
      13:32:42.0485 6328 Product type: Workstation
      13:32:42.0485 6328 ComputerName: SR-91
      13:32:42.0485 6328 UserName: Ismael
      13:32:42.0485 6328 Windows directory: C:\Windows
      13:32:42.0485 6328 System windows directory: C:\Windows
      13:32:42.0485 6328 Running under WOW64
      13:32:42.0485 6328 Processor architecture: Intel x64
      13:32:42.0485 6328 Number of processors: 4
      13:32:42.0485 6328 Page size: 0x1000
      13:32:42.0485 6328 Boot type: Normal boot
      13:32:42.0485 6328 ============================================================
      13:32:43.0010 6328 Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
      13:32:43.0017 6328 ============================================================
      13:32:43.0017 6328 \Device\Harddisk0\DR0:
      13:32:43.0017 6328 MBR partitions:
      13:32:43.0017 6328 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
      13:32:43.0017 6328 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xE367A000
      13:32:43.0017 6328 ============================================================
      13:32:43.0029 6328 C: <-> \Device\Harddisk0\DR0\Partition1
      13:32:43.0029 6328 ============================================================
      13:32:43.0029 6328 Initialize success
      13:32:43.0029 6328 ============================================================
      13:32:47.0148 4184 ============================================================
      13:32:47.0148 4184 Scan started
      13:32:47.0148 4184 Mode: Manual; SigCheck; TDLFS;
      13:32:47.0148 4184 ============================================================
      13:32:48.0342 4184 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
      13:32:48.0400 4184 !SASCORE - ok
      13:32:48.0558 4184 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
      13:32:48.0599 4184 1394ohci - ok
      13:32:48.0629 4184 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
      13:32:48.0652 4184 ACPI - ok
      13:32:48.0669 4184 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
      13:32:48.0707 4184 AcpiPmi - ok
      13:32:48.0978 4184 AdobeARMservice (d19c4ee2ac7c47b8f5f84fff1a789d8a) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      13:32:48.0994 4184 AdobeARMservice - ok
      13:32:49.0116 4184 AdobeFlashPlayerUpdateSvc (a9d3b95e8466bd58eeb8a1154654e162) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      13:32:49.0132 4184 AdobeFlashPlayerUpdateSvc - ok
      13:32:49.0161 4184 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
      13:32:49.0178 4184 adp94xx - ok
      13:32:49.0230 4184 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
      13:32:49.0252 4184 adpahci - ok
      13:32:49.0267 4184 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
      13:32:49.0276 4184 adpu320 - ok
      13:32:49.0298 4184 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
      13:32:49.0320 4184 AeLookupSvc - ok
      13:32:49.0361 4184 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
      13:32:49.0384 4184 AFD - ok
      13:32:49.0400 4184 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
      13:32:49.0407 4184 agp440 - ok
      13:32:49.0429 4184 AiChargerPlus (8b6625d53c18774f0102f690e285b5e8) C:\Windows\system32\DRIVERS\AiChargerPlus.sys
      13:32:49.0453 4184 AiChargerPlus - ok
      13:32:49.0459 4184 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
      13:32:49.0482 4184 ALG - ok
      13:32:49.0493 4184 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
      13:32:49.0500 4184 aliide - ok
      13:32:49.0502 4184 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
      13:32:49.0509 4184 amdide - ok
      13:32:49.0520 4184 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
      13:32:49.0540 4184 AmdK8 - ok
      13:32:49.0556 4184 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
      13:32:49.0579 4184 AmdPPM - ok
      13:32:49.0611 4184 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
      13:32:49.0630 4184 amdsata - ok
      13:32:49.0647 4184 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
      13:32:49.0656 4184 amdsbs - ok
      13:32:49.0668 4184 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
      13:32:49.0675 4184 amdxata - ok
      13:32:49.0688 4184 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
      13:32:49.0719 4184 AppID - ok
      13:32:49.0729 4184 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
      13:32:49.0763 4184 AppIDSvc - ok
      13:32:49.0784 4184 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
      13:32:49.0823 4184 Appinfo - ok
      13:32:49.0836 4184 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
      13:32:49.0844 4184 arc - ok
      13:32:49.0855 4184 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
      13:32:49.0862 4184 arcsas - ok
      13:32:49.0984 4184 asComSvc (fb03a917c1294d3e6d671f24722e1ba3) C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe
      13:32:50.0021 4184 asComSvc - ok
      13:32:50.0089 4184 ASDR (4b720cc508b4fb999a7bf0e6d84f73e1) C:\Windows\SysWOW64\ASDR.exe
      13:32:50.0099 4184 ASDR ( UnsignedFile.Multi.Generic ) - warning
      13:32:50.0099 4184 ASDR - detected UnsignedFile.Multi.Generic (1)
      13:32:50.0153 4184 asHmComSvc (a63173897ea1a73a75d0e65036de5b15) C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
      13:32:50.0197 4184 asHmComSvc - ok
      13:32:50.0227 4184 AsIO (fef9dd9ea587f8886ade43c1befbdafe) C:\Windows\syswow64\drivers\AsIO.sys
      13:32:50.0248 4184 AsIO - ok
      13:32:50.0316 4184 asmthub3 (954950d11ada98ac1b7ee3c770e4622c) C:\Windows\system32\DRIVERS\asmthub3.sys
      13:32:50.0373 4184 asmthub3 - ok
      13:32:50.0400 4184 asmtxhci (01dbb05db1db95803e3c9f2b49afe79c) C:\Windows\system32\DRIVERS\asmtxhci.sys
      13:32:50.0475 4184 asmtxhci - ok
      13:32:50.0545 4184 AsSysCtrlService (5c31dfb196cb3a488a041881634d86d2) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
      13:32:50.0585 4184 AsSysCtrlService - ok
      13:32:50.0640 4184 AsUpIO (1392b92179b07b672720763d9b1028a5) C:\Windows\syswow64\drivers\AsUpIO.sys
      13:32:50.0661 4184 AsUpIO - ok
      13:32:50.0695 4184 asusgsb (a4398a8914c32f18ec2ab562cba3caaf) C:\Windows\system32\drivers\asusgsb.sys
      13:32:50.0710 4184 asusgsb - ok
      13:32:50.0729 4184 aswFsBlk (df59b8e8df0bd2e0e303778a3806a17d) C:\Windows\system32\drivers\aswFsBlk.sys
      13:32:50.0750 4184 aswFsBlk - ok
      13:32:50.0767 4184 aswKbd (316271cc32fdfffcdb30677684906d5e) C:\Windows\system32\drivers\aswKbd.sys
      13:32:50.0789 4184 aswKbd - ok
      13:32:50.0808 4184 aswMonFlt (f8e6ab4f876feff69250f2e0c29ef004) C:\Windows\system32\drivers\aswMonFlt.sys
      13:32:50.0829 4184 aswMonFlt - ok
      13:32:50.0845 4184 aswRdr (aa92bc4bcba40ca3aa3ffd1be24f0c09) C:\Windows\System32\Drivers\aswrdr2.sys
      13:32:50.0866 4184 aswRdr - ok
      13:32:50.0922 4184 aswSnx (f06e230e1e8ca9437a6474b7b551cd37) C:\Windows\system32\drivers\aswSnx.sys
      13:32:50.0956 4184 aswSnx - ok
      13:32:50.0978 4184 aswSP (3610ca74a69e380424f0452dec5c1317) C:\Windows\system32\drivers\aswSP.sys
      13:32:51.0001 4184 aswSP - ok
      13:32:51.0004 4184 aswTdi (87de3e31cb0091d22351349869324065) C:\Windows\system32\drivers\aswTdi.sys
      13:32:51.0026 4184 aswTdi - ok
      13:32:51.0040 4184 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
      13:32:51.0061 4184 AsyncMac - ok
      13:32:51.0063 4184 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
      13:32:51.0069 4184 atapi - ok
      13:32:51.0093 4184 atkdisplf (fb4187c282cb467e5e606913a1fa79a3) C:\Windows\system32\drivers\ATKDispLowFilter.sys
      13:32:51.0102 4184 atkdisplf - ok
      13:32:51.0120 4184 ATKFUSService (86d873fd396fa6708a99a1bdf104d120) C:\Windows\system32\ATKFUSService.exe
      13:32:51.0155 4184 ATKFUSService ( UnsignedFile.Multi.Generic ) - warning
      13:32:51.0155 4184 ATKFUSService - detected UnsignedFile.Multi.Generic (1)
      13:32:51.0215 4184 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
      13:32:51.0294 4184 AudioEndpointBuilder - ok
      13:32:51.0297 4184 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
      13:32:51.0320 4184 AudioSrv - ok
      13:32:51.0361 4184 avast! Antivirus (2f7c0f3e39c45e0127fb78b2f18a41f3) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
      13:32:51.0406 4184 avast! Antivirus - ok
      13:32:51.0437 4184 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
      13:32:51.0486 4184 AxInstSV - ok
      13:32:51.0518 4184 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
      13:32:51.0567 4184 b06bdrv - ok
      13:32:51.0620 4184 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
      13:32:51.0660 4184 b57nd60a - ok
      13:32:51.0716 4184 BBSvc (47480f4260dae9aa589bcaf924b3767a) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe
      13:32:51.0736 4184 BBSvc - ok
      13:32:51.0760 4184 BBUpdate (6bf743cbf3bcd09dab79245e60e1ae62) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe
      13:32:51.0768 4184 BBUpdate - ok
      13:32:51.0788 4184 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
      13:32:51.0799 4184 BDESVC - ok
      13:32:51.0811 4184 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
      13:32:51.0832 4184 Beep - ok
      13:32:51.0890 4184 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
      13:32:51.0935 4184 BFE - ok
      13:32:51.0995 4184 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
      13:32:52.0078 4184 BITS - ok
      13:32:52.0122 4184 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
      13:32:52.0132 4184 blbdrive - ok
      13:32:52.0156 4184 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
      13:32:52.0177 4184 bowser - ok
      13:32:52.0198 4184 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
      13:32:52.0223 4184 BrFiltLo - ok
      13:32:52.0242 4184 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
      13:32:52.0253 4184 BrFiltUp - ok
      13:32:52.0284 4184 Browser (05f5a0d14a2ee1d8255c2aa0e9e8e694) C:\Windows\System32\browser.dll
      13:32:52.0309 4184 Browser - ok
      13:32:52.0330 4184 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
      13:32:52.0342 4184 Brserid - ok
      13:32:52.0355 4184 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
      13:32:52.0377 4184 BrSerWdm - ok
      13:32:52.0389 4184 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
      13:32:52.0400 4184 BrUsbMdm - ok
      13:32:52.0402 4184 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
      13:32:52.0424 4184 BrUsbSer - ok
      13:32:52.0438 4184 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
      13:32:52.0466 4184 BTHMODEM - ok
      13:32:52.0486 4184 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
      13:32:52.0508 4184 bthserv - ok
      13:32:52.0519 4184 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
      13:32:52.0554 4184 cdfs - ok
      13:32:52.0583 4184 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
      13:32:52.0593 4184 cdrom - ok
      13:32:52.0601 4184 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
      13:32:52.0630 4184 CertPropSvc - ok
      13:32:52.0646 4184 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
      13:32:52.0657 4184 circlass - ok
      13:32:52.0679 4184 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
      13:32:52.0689 4184 CLFS - ok
      13:32:52.0735 4184 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      13:32:52.0752 4184 clr_optimization_v2.0.50727_32 - ok
      13:32:52.0784 4184 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      13:32:52.0791 4184 clr_optimization_v2.0.50727_64 - ok
      13:32:52.0852 4184 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      13:32:52.0869 4184 clr_optimization_v4.0.30319_32 - ok
      13:32:52.0896 4184 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      13:32:52.0903 4184 clr_optimization_v4.0.30319_64 - ok
      13:32:52.0905 4184 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
      13:32:52.0929 4184 CmBatt - ok
      13:32:52.0942 4184 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
      13:32:52.0949 4184 cmdide - ok
      13:32:52.0985 4184 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
      13:32:53.0000 4184 CNG - ok
      13:32:53.0002 4184 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
      13:32:53.0009 4184 Compbatt - ok
      13:32:53.0023 4184 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
      13:32:53.0044 4184 CompositeBus - ok
      13:32:53.0045 4184 COMSysApp - ok
      13:32:53.0060 4184 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
      13:32:53.0067 4184 crcdisk - ok
      13:32:53.0099 4184 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
      13:32:53.0111 4184 CryptSvc - ok
      13:32:53.0156 4184 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
      13:32:53.0214 4184 DcomLaunch - ok
      13:32:53.0238 4184 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
      13:32:53.0261 4184 defragsvc - ok
      13:32:53.0273 4184 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
      13:32:53.0294 4184 DfsC - ok
      13:32:53.0340 4184 dg_ssudbus (6060106ce00f32f63f1a73160e46e9d2) C:\Windows\system32\DRIVERS\ssudbus.sys
      13:32:53.0372 4184 dg_ssudbus - ok
      13:32:53.0404 4184 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
      13:32:53.0484 4184 Dhcp - ok
      13:32:53.0500 4184 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
      13:32:53.0531 4184 discache - ok
      13:32:53.0565 4184 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
      13:32:53.0572 4184 Disk - ok
      13:32:53.0603 4184 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
      13:32:53.0638 4184 Dnscache - ok
      13:32:53.0659 4184 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
      13:32:53.0703 4184 dot3svc - ok
      13:32:53.0759 4184 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
      13:32:53.0805 4184 Dot4 - ok
      13:32:53.0827 4184 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\DRIVERS\Dot4Prt.sys
      13:32:53.0838 4184 Dot4Print - ok
      13:32:53.0847 4184 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
      13:32:53.0875 4184 dot4usb - ok
      13:32:53.0895 4184 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
      13:32:53.0926 4184 DPS - ok
      13:32:54.0019 4184 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
      13:32:54.0057 4184 drmkaud - ok
      13:32:54.0129 4184 dtsoftbus01 (46571ed73ae84469dca53081d33cf3c8) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
      13:32:54.0174 4184 dtsoftbus01 - ok
      13:32:54.0218 4184 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
      13:32:54.0232 4184 DXGKrnl - ok
      13:32:54.0250 4184 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
      13:32:54.0280 4184 EapHost - ok
      13:32:54.0415 4184 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
      13:32:54.0479 4184 ebdrv - ok
      13:32:54.0566 4184 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
      13:32:54.0594 4184 EFS - ok
      13:32:54.0662 4184 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
      13:32:54.0710 4184 ehRecvr - ok
      13:32:54.0741 4184 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
      13:32:54.0775 4184 ehSched - ok
      13:32:54.0806 4184 EIO64 (343ada10d948db29251f2d9c809af204) C:\Windows\system32\DRIVERS\EIO64.sys
      13:32:54.0815 4184 EIO64 - ok
      13:32:54.0856 4184 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
      13:32:54.0872 4184 elxstor - ok
      13:32:54.0908 4184 epmntdrv (9eafb3b3b60b8ad958985152a9309aca) C:\Windows\system32\epmntdrv.sys
      13:32:54.0940 4184 epmntdrv ( UnsignedFile.Multi.Generic ) - warning
      13:32:54.0941 4184 epmntdrv - detected UnsignedFile.Multi.Generic (1)
      13:32:54.0958 4184 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
      13:32:54.0998 4184 ErrDev - ok
      13:32:55.0047 4184 EuGdiDrv (fb949ed2c93c878a189039f3d7730942) C:\Windows\system32\EuGdiDrv.sys
      13:32:55.0108 4184 EuGdiDrv ( UnsignedFile.Multi.Generic ) - warning
      13:32:55.0108 4184 EuGdiDrv - detected UnsignedFile.Multi.Generic (1)
      13:32:55.0137 4184 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
      13:32:55.0200 4184 EventSystem - ok
      13:32:55.0254 4184 EverestDriver - ok
      13:32:55.0280 4184 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
      13:32:55.0320 4184 exfat - ok
      13:32:55.0328 4184 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
      13:32:55.0351 4184 fastfat - ok
      13:32:55.0391 4184 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
      13:32:55.0430 4184 Fax - ok
      13:32:55.0444 4184 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
      13:32:55.0464 4184 fdc - ok
      13:32:55.0483 4184 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
      13:32:55.0504 4184 fdPHost - ok
      13:32:55.0510 4184 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
      13:32:55.0544 4184 FDResPub - ok
      13:32:55.0569 4184 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
      13:32:55.0576 4184 FileInfo - ok
      13:32:55.0590 4184 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
      13:32:55.0611 4184 Filetrace - ok
      13:32:55.0634 4184 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
      13:32:55.0649 4184 flpydisk - ok
      13:32:55.0676 4184 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
      13:32:55.0699 4184 FltMgr - ok
      13:32:55.0761 4184 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
      13:32:55.0807 4184 FontCache - ok
      13:32:55.0869 4184 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      13:32:55.0884 4184 FontCache3.0.0.0 - ok
      13:32:55.0910 4184 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
      13:32:55.0927 4184 FsDepends - ok
      13:32:55.0951 4184 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
      13:32:55.0958 4184 Fs_Rec - ok
      13:32:55.0971 4184 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
      13:32:55.0982 4184 fvevol - ok
      13:32:55.0990 4184 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
      13:32:55.0998 4184 gagp30kx - ok
      13:32:56.0048 4184 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
      13:32:56.0081 4184 gpsvc - ok
      13:32:56.0158 4184 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      13:32:56.0174 4184 gupdate - ok
      13:32:56.0185 4184 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      13:32:56.0191 4184 gupdatem - ok
      13:32:56.0201 4184 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
      13:32:56.0221 4184 hcw85cir - ok
      13:32:56.0262 4184 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
      13:32:56.0276 4184 HdAudAddService - ok
      13:32:56.0288 4184 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
      13:32:56.0316 4184 HDAudBus - ok
      13:32:56.0330 4184 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
      13:32:56.0353 4184 HidBatt - ok
      13:32:56.0367 4184 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
      13:32:56.0389 4184 HidBth - ok
      13:32:56.0402 4184 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
      13:32:56.0424 4184 HidIr - ok
      13:32:56.0442 4184 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
      13:32:56.0463 4184 hidserv - ok
      13:32:56.0496 4184 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
      13:32:56.0506 4184 HidUsb - ok
      13:32:56.0516 4184 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
      13:32:56.0575 4184 hkmsvc - ok
      13:32:56.0599 4184 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
      13:32:56.0612 4184 HomeGroupListener - ok
      13:32:56.0641 4184 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
      13:32:56.0663 4184 HomeGroupProvider - ok
      13:32:56.0748 4184 hpqcxs08 (0a3c6aa4a9fc38c20ba4eac2c3351c05) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
      13:32:56.0771 4184 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
      13:32:56.0771 4184 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
      13:32:56.0787 4184 hpqddsvc (f3f72a2a86c22610bca5439fa789dd52) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
      13:32:56.0815 4184 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
      13:32:56.0815 4184 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
      13:32:56.0837 4184 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
      13:32:56.0855 4184 HpSAMD - ok
      13:32:56.0911 4184 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
      13:32:56.0960 4184 HTTP - ok
      13:32:56.0970 4184 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
      13:32:56.0976 4184 hwpolicy - ok
      13:32:57.0015 4184 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
      13:32:57.0025 4184 i8042prt - ok
      13:32:57.0061 4184 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
      13:32:57.0072 4184 iaStorV - ok
      13:32:57.0109 4184 ICCWDT (c1010add3ddae1196ed21057af7b2aae) C:\Windows\system32\DRIVERS\ICCWDT.sys
      13:32:57.0145 4184 ICCWDT - ok
      13:32:57.0222 4184 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
      13:32:57.0245 4184 IDriverT ( UnsignedFile.Multi.Generic ) - warning
      13:32:57.0245 4184 IDriverT - detected UnsignedFile.Multi.Generic (1)
      13:32:57.0337 4184 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      13:32:57.0380 4184 idsvc - ok
      13:32:57.0392 4184 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
      13:32:57.0400 4184 iirsp - ok
      13:32:57.0457 4184 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
      13:32:57.0537 4184 IKEEXT - ok
      13:32:57.0663 4184 IntcAzAudAddService (589b94a9b73a0e819ff873743a480834) C:\Windows\system32\drivers\RTKVHD64.sys
      13:32:57.0703 4184 IntcAzAudAddService - ok
      13:32:57.0768 4184 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
      13:32:57.0785 4184 intelide - ok
      13:32:57.0802 4184 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
      13:32:57.0833 4184 intelppm - ok
      13:32:57.0886 4184 IOMap (a01c412699b6f21645b2885c2bae4454) C:\Windows\system32\drivers\IOMap64.sys
      13:32:57.0924 4184 IOMap - ok
      13:32:57.0935 4184 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
      13:32:57.0974 4184 IPBusEnum - ok
      13:32:57.0994 4184 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
      13:32:58.0015 4184 IpFilterDriver - ok
      13:32:58.0052 4184 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
      13:32:58.0094 4184 iphlpsvc - ok
      13:32:58.0112 4184 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
      13:32:58.0123 4184 IPMIDRV - ok
      13:32:58.0143 4184 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
      13:32:58.0176 4184 IPNAT - ok
      13:32:58.0188 4184 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
      13:32:58.0217 4184 IRENUM - ok
      13:32:58.0235 4184 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
      13:32:58.0242 4184 isapnp - ok
      13:32:58.0264 4184 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
      13:32:58.0273 4184 iScsiPrt - ok
      13:32:58.0338 4184 ISWKL (420b9729a7de07d4aaffaa7d9d13b452) C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys
      13:32:58.0376 4184 ISWKL - ok
      13:32:58.0420 4184 IswSvc (eedac170e922a4bd19fdb3d0d55786bb) C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
      13:32:58.0438 4184 IswSvc - ok
      13:32:58.0460 4184 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
      13:32:58.0467 4184 kbdclass - ok
      13:32:58.0484 4184 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
      13:32:58.0504 4184 kbdhid - ok
      13:32:58.0550 4184 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
      13:32:58.0574 4184 KeyIso - ok
      13:32:58.0603 4184 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
      13:32:58.0611 4184 KSecDD - ok
      13:32:58.0624 4184 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
      13:32:58.0632 4184 KSecPkg - ok
      13:32:58.0640 4184 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
      13:32:58.0680 4184 ksthunk - ok
      13:32:58.0709 4184 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
      13:32:58.0735 4184 KtmRm - ok
      13:32:58.0761 4184 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
      13:32:58.0793 4184 LanmanServer - ok
      13:32:58.0818 4184 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
      13:32:58.0842 4184 LanmanWorkstation - ok
      13:32:58.0863 4184 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
      13:32:58.0894 4184 lltdio - ok
      13:32:58.0916 4184 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
      13:32:58.0956 4184 lltdsvc - ok
      13:32:58.0976 4184 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
      13:32:59.0125 4184 lmhosts - ok
      13:32:59.0150 4184 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
      13:32:59.0158 4184 LSI_FC - ok
      13:32:59.0187 4184 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
      13:32:59.0195 4184 LSI_SAS - ok
      13:32:59.0211 4184 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
      13:32:59.0219 4184 LSI_SAS2 - ok
      13:32:59.0235 4184 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
      13:32:59.0244 4184 LSI_SCSI - ok
      13:32:59.0255 4184 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
      13:32:59.0288 4184 luafv - ok
      13:32:59.0328 4184 mbamchameleon (4a0489f1cce69bb7371f8ea66efe78ec) C:\Windows\system32\drivers\mbamchameleon.sys
      13:32:59.0366 4184 mbamchameleon - ok
      13:32:59.0400 4184 MBAMProtector (dc8490812a3b72811ae534f423b4c206) C:\Windows\system32\drivers\mbam.sys
      13:32:59.0444 4184 MBAMProtector - ok
      13:32:59.0528 4184 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
      13:32:59.0546 4184 MBAMService - ok
      13:32:59.0576 4184 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
      13:32:59.0586 4184 Mcx2Svc - ok
      13:32:59.0606 4184 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
      13:32:59.0613 4184 megasas - ok
      13:32:59.0630 4184 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
      13:32:59.0640 4184 MegaSR - ok
      13:32:59.0673 4184 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
      13:32:59.0694 4184 MEIx64 - ok
      13:32:59.0703 4184 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
      13:32:59.0741 4184 MMCSS - ok
      13:32:59.0762 4184 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
      13:32:59.0791 4184 Modem - ok
      13:32:59.0813 4184 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
      13:32:59.0833 4184 monitor - ok
      13:32:59.0867 4184 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
      13:32:59.0878 4184 mouclass - ok
      13:32:59.0896 4184 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
      13:32:59.0919 4184 mouhid - ok
      13:32:59.0958 4184 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
      13:32:59.0976 4184 mountmgr - ok
      13:33:00.0025 4184 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
      13:33:00.0042 4184 MozillaMaintenance - ok
      13:33:00.0065 4184 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
      13:33:00.0074 4184 mpio - ok
      13:33:00.0102 4184 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
      13:33:00.0123 4184 mpsdrv - ok
      13:33:00.0168 4184 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
      13:33:00.0200 4184 MpsSvc - ok
      13:33:00.0216 4184 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
      13:33:00.0245 4184 MRxDAV - ok
      13:33:00.0277 4184 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
      13:33:00.0305 4184 mrxsmb - ok
      13:33:00.0325 4184 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
      13:33:00.0353 4184 mrxsmb10 - ok
      13:33:00.0371 4184 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
      13:33:00.0381 4184 mrxsmb20 - ok
      13:33:00.0397 4184 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
      13:33:00.0403 4184 msahci - ok
      13:33:00.0421 4184 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
      13:33:00.0429 4184 msdsm - ok
      13:33:00.0452 4184 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
      13:33:00.0464 4184 MSDTC - ok
      13:33:00.0486 4184 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
      13:33:00.0507 4184 Msfs - ok
      13:33:00.0518 4184 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
      13:33:00.0556 4184 mshidkmdf - ok
      13:33:00.0574 4184 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
      13:33:00.0581 4184 msisadrv - ok
      13:33:00.0599 4184 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
      13:33:00.0623 4184 MSiSCSI - ok
      13:33:00.0624 4184 msiserver - ok
      13:33:00.0647 4184 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
      13:33:00.0684 4184 MSKSSRV - ok
      13:33:00.0703 4184 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
      13:33:00.0742 4184 MSPCLOCK - ok
      13:33:00.0758 4184 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
      13:33:00.0780 4184 MSPQM - ok
      13:33:00.0819 4184 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
      13:33:00.0829 4184 MsRPC - ok
      13:33:00.0848 4184 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
      13:33:00.0855 4184 mssmbios - ok
      13:33:00.0912 4184 MSSQL$SQLEXPRESS - ok
      13:33:00.0960 4184 MSSQLServerADHelper100 (f1761c8fb2b25a32c6d63e36bb88c3ae) c:\Program Files (x86)\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
      13:33:01.0010 4184 MSSQLServerADHelper100 - ok
      13:33:01.0014 4184 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
      13:33:01.0050 4184 MSTEE - ok
      13:33:01.0285 4184 msvsmon90 (cb4a082af58d1a0969f931816d5cfb05) C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe
      13:33:01.0367 4184 msvsmon90 - ok
      13:33:01.0422 4184 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
      13:33:01.0460 4184 MTConfig - ok
      13:33:01.0477 4184 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
      13:33:01.0494 4184 Mup - ok
      13:33:01.0544 4184 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
      13:33:01.0619 4184 napagent - ok
      13:33:01.0651 4184 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
      13:33:01.0666 4184 NativeWifiP - ok
      13:33:01.0729 4184 NAUpdate (1bbbf640bc0e0b750537baece8d66c18) C:\Program Files (x86)\Nero\Update\NASvc.exe
      13:33:01.0754 4184 NAUpdate - ok
      13:33:01.0804 4184 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
      13:33:01.0824 4184 NDIS - ok
      13:33:01.0854 4184 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
      13:33:01.0917 4184 NdisCap - ok
      13:33:01.0959 4184 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
      13:33:02.0008 4184 NdisTapi - ok
      13:33:02.0141 4184 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
      13:33:02.0245 4184 Ndisuio - ok
      13:33:02.0269 4184 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
      13:33:02.0298 4184 NdisWan - ok
      13:33:02.0315 4184 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
      13:33:02.0335 4184 NDProxy - ok
      13:33:02.0348 4184 Net Driver HPZ12 (2334dc48997ba203b794df3ee70521db) C:\Windows\system32\HPZinw12.dll
      13:33:02.0370 4184 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
      13:33:02.0370 4184 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
      13:33:02.0383 4184 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
      13:33:02.0405 4184 NetBIOS - ok
      13:33:02.0426 4184 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
      13:33:02.0447 4184 NetBT - ok
      13:33:02.0473 4184 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
      13:33:02.0483 4184 Netlogon - ok
      13:33:02.0526 4184 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
      13:33:02.0579 4184 Netman - ok
      13:33:02.0594 4184 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
      13:33:02.0628 4184 netprofm - ok
      13:33:02.0679 4184 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
      13:33:02.0695 4184 NetTcpPortSharing - ok
      13:33:02.0724 4184 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
      13:33:02.0742 4184 nfrd960 - ok
      13:33:02.0767 4184 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
      13:33:02.0819 4184 NlaSvc - ok
      13:33:02.0841 4184 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
      13:33:02.0862 4184 Npfs - ok
      13:33:02.0878 4184 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
      13:33:02.0900 4184 nsi - ok
      13:33:02.0915 4184 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
      13:33:02.0936 4184 nsiproxy - ok
      13:33:03.0073 4184 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
      13:33:03.0119 4184 Ntfs - ok
      13:33:03.0407 4184 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
      13:33:03.0451 4184 Null - ok
      13:33:03.0502 4184 NVHDA (f2662fdc20518ee8a8eed4f61ba42349) C:\Windows\system32\drivers\nvhda64v.sys
      13:33:03.0539 4184 NVHDA - ok
      13:33:03.0970 4184 nvlddmkm (9c1996dd3c0469bc8933321f15709f5a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
      13:33:04.0094 4184 nvlddmkm - ok
      13:33:04.0166 4184 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
      13:33:04.0175 4184 nvraid - ok
      13:33:04.0191 4184 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
      13:33:04.0200 4184 nvstor - ok
      13:33:04.0270 4184 NVSvc (e5afbe55415828ee6230f148425a30e4) C:\Windows\system32\nvvsvc.exe
      13:33:04.0305 4184 NVSvc - ok
      13:33:04.0343 4184 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
      13:33:04.0362 4184 nv_agp - ok
      13:33:04.0371 4184 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
      13:33:04.0382 4184 ohci1394 - ok
      13:33:04.0401 4184 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
      13:33:04.0426 4184 p2pimsvc - ok
      13:33:04.0456 4184 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
      13:33:04.0476 4184 p2psvc - ok
      13:33:04.0493 4184 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
      13:33:04.0503 4184 Parport - ok
      13:33:04.0535 4184 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
      13:33:04.0542 4184 partmgr - ok
      13:33:04.0559 4184 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
      13:33:04.0591 4184 PcaSvc - ok
      13:33:04.0609 4184 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
      13:33:04.0618 4184 pci - ok
      13:33:04.0628 4184 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
      13:33:04.0635 4184 pciide - ok
      13:33:04.0651 4184 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
      13:33:04.0660 4184 pcmcia - ok
      13:33:04.0711 4184 PCTFW-PacketFilter (bec2272ee5553a8d605051c5d3a1c1e6) C:\Windows\system32\drivers\pctNdis-PacketFilter64.sys
      13:33:04.0758 4184 PCTFW-PacketFilter - ok
      13:33:04.0800 4184 pctgntdi (24b8461b247824e0a8af9671e81a5553) C:\Windows\System32\drivers\pctgntdi64.sys
      13:33:04.0835 4184 pctgntdi - ok
      13:33:04.0868 4184 pctNdis (92c2ed950633bc69f16c577e5388b287) C:\Windows\system32\DRIVERS\pctNdis64.sys
      13:33:04.0890 4184 pctNdis - ok
      13:33:04.0904 4184 pctNdisMP (92c2ed950633bc69f16c577e5388b287) C:\Windows\system32\DRIVERS\pctNdis64.sys
      13:33:04.0925 4184 pctNdisMP - ok
      13:33:05.0016 4184 PCToolsFirewallPlus (86d511370a217b554916e3a45d091042) C:\Program Files (x86)\PC Tools Firewall Plus\FWService.exe
      13:33:05.0047 4184 PCToolsFirewallPlus - ok
      13:33:05.0060 4184 pctplfw (142c9fdbcff92e67afb58e3001119104) C:\Windows\System32\drivers\pctplfw64.sys
      13:33:05.0082 4184 pctplfw - ok
      13:33:05.0095 4184 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
      13:33:05.0102 4184 pcw - ok
      13:33:05.0139 4184 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
      13:33:05.0190 4184 PEAUTH - ok
      13:33:05.0260 4184 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
      13:33:05.0290 4184 PerfHost - ok
      13:33:05.0397 4184 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
      13:33:05.0442 4184 pla - ok
      13:33:05.0492 4184 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
      13:33:05.0533 4184 PlugPlay - ok
      13:33:05.0570 4184 Pml Driver HPZ12 (ac78df349f0e4cfb8b667c0cfff83cce) C:\Windows\system32\HPZipm12.dll
      13:33:05.0589 4184 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
      13:33:05.0589 4184 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
      13:33:05.0612 4184 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
      13:33:05.0651 4184 PNRPAutoReg - ok
      13:33:05.0686 4184 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
      13:33:05.0715 4184 PNRPsvc - ok
      13:33:05.0764 4184 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
      13:33:05.0847 4184 PolicyAgent - ok
      13:33:05.0865 4184 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
      13:33:05.0889 4184 Power - ok
      13:33:05.0907 4184 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
      13:33:05.0936 4184 PptpMiniport - ok
      13:33:05.0953 4184 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
      13:33:05.0963 4184 Processor - ok
      13:33:05.0997 4184 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
      13:33:06.0036 4184 ProfSvc - ok
      13:33:06.0075 4184 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
      13:33:06.0099 4184 ProtectedStorage - ok
      13:33:06.0114 4184 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
      13:33:06.0174 4184 Psched - ok
      13:33:06.0250 4184 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
      13:33:06.0296 4184 ql2300 - ok
      13:33:06.0379 4184 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
      13:33:06.0398 4184 ql40xx - ok
      13:33:06.0422 4184 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
      13:33:06.0438 4184 QWAVE - ok
      13:33:06.0454 4184 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
      13:33:06.0467 4184 QWAVEdrv - ok
      13:33:06.0478 4184 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
      13:33:06.0500 4184 RasAcd - ok
      13:33:06.0510 4184 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
      13:33:06.0531 4184 RasAgileVpn - ok
      13:33:06.0546 4184 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
      13:33:06.0569 4184 RasAuto - ok
      13:33:06.0589 4184 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
      13:33:06.0625 4184 Rasl2tp - ok
      13:33:06.0662 4184 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
      13:33:06.0687 4184 RasMan - ok
      13:33:06.0702 4184 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
      13:33:06.0733 4184 RasPppoe - ok
      13:33:06.0759 4184 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
      13:33:06.0781 4184 RasSstp - ok
      13:33:06.0801 4184 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
      13:33:06.0824 4184 rdbss - ok
      13:33:06.0836 4184 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
      13:33:06.0861 4184 rdpbus - ok
      13:33:06.0872 4184 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
      13:33:06.0893 4184 RDPCDD - ok
      13:33:06.0905 4184 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
      13:33:06.0926 4184 RDPENCDD - ok
      13:33:06.0947 4184 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
      13:33:06.0967 4184 RDPREFMP - ok
      13:33:07.0001 4184 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
      13:33:07.0012 4184 RDPWD - ok
      13:33:07.0034 4184 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
      13:33:07.0043 4184 rdyboost - ok
      13:33:07.0070 4184 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
      13:33:07.0110 4184 RemoteAccess - ok
      13:33:07.0135 4184 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
      13:33:07.0171 4184 RemoteRegistry - ok
      13:33:07.0194 4184 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
      13:33:07.0233 4184 RpcEptMapper - ok
      13:33:07.0288 4184 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
      13:33:07.0371 4184 RpcLocator - ok
      13:33:07.0436 4184 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
      13:33:07.0475 4184 RpcSs - ok
      13:33:07.0493 4184 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
      13:33:07.0514 4184 rspndr - ok
      13:33:07.0568 4184 RTL8167 (ee082e06a82ff630351d1e0ebbd3d8d0) C:\Windows\system32\DRIVERS\Rt64win7.sys
      13:33:07.0600 4184 RTL8167 - ok
      13:33:07.0621 4184 RtNdPt60 (e16b7c030a05ef649b18fab0a93d871f) C:\Windows\system32\DRIVERS\RtNdPt60.sys
      13:33:07.0627 4184 RtNdPt60 - ok
      13:33:07.0637 4184 RTTEAMPT (1de78f5008120cd79b34c12394dcd493) C:\Windows\system32\DRIVERS\RtTeam60.sys
      13:33:07.0643 4184 RTTEAMPT - ok
      13:33:07.0655 4184 RTVLANPT (b1018aa1b5735f5fa89fd4dadf4bea7a) C:\Windows\system32\DRIVERS\RtVlan60.sys
      13:33:07.0661 4184 RTVLANPT - ok
      13:33:07.0694 4184 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
      13:33:07.0704 4184 SamSs - ok
      13:33:07.0767 4184 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
      13:33:07.0801 4184 SASDIFSV - ok
      13:33:07.0822 4184 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
      13:33:07.0843 4184 SASKUTIL - ok
      13:33:07.0862 4184 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
      13:33:07.0870 4184 sbp2port - ok
      13:33:07.0883 4184 SBRE - ok
      13:33:07.0900 4184 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
      13:33:07.0925 4184 SCardSvr - ok
      13:33:07.0939 4184 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
      13:33:07.0960 4184 scfilter - ok
      13:33:08.0008 4184 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
      13:33:08.0061 4184 Schedule - ok
      13:33:08.0081 4184 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
      13:33:08.0101 4184 SCPolicySvc - ok
      13:33:08.0123 4184 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
      13:33:08.0150 4184 SDRSVC - ok
      13:33:08.0226 4184 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
      13:33:08.0296 4184 secdrv - ok
      13:33:08.0307 4184 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
      13:33:08.0342 4184 seclogon - ok
      13:33:08.0366 4184 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
      13:33:08.0399 4184 SENS - ok
      13:33:08.0418 4184 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
      13:33:08.0429 4184 SensrSvc - ok
      13:33:08.0439 4184 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
      13:33:08.0458 4184 Serenum - ok
      13:33:08.0475 4184 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
      13:33:08.0486 4184 Serial - ok
      13:33:08.0511 4184 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
      13:33:08.0521 4184 sermouse - ok
      13:33:08.0545 4184 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
      13:33:08.0582 4184 SessionEnv - ok
      13:33:08.0597 4184 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
      13:33:08.0608 4184 sffdisk - ok
      13:33:08.0610 4184 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
      13:33:08.0636 4184 sffp_mmc - ok
      13:33:08.0638 4184 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
      13:33:08.0658 4184 sffp_sd - ok
      13:33:08.0660 4184 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
      13:33:08.0670 4184 sfloppy - ok
      13:33:08.0706 4184 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
      13:33:08.0742 4184 SharedAccess - ok
      13:33:08.0776 4184 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
      13:33:08.0801 4184 ShellHWDetection - ok
      13:33:08.0809 4184 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
      13:33:08.0817 4184 SiSRaid2 - ok
      13:33:08.0834 4184 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
      13:33:08.0842 4184 SiSRaid4 - ok
      13:33:09.0060 4184 Skype C2C Service (753d254205e0a62100a050bd8b458d06) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
      13:33:09.0100 4184 Skype C2C Service - ok
      13:33:09.0181 4184 SkypeUpdate (f07af60b152221472fbdb2fecec4896d) C:\Program Files (x86)\Skype\Updater\Updater.exe
      13:33:09.0187 4184 SkypeUpdate - ok
      13:33:09.0250 4184 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
      13:33:09.0296 4184 Smb - ok
      13:33:09.0318 4184 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
      13:33:09.0341 4184 SNMPTRAP - ok
      13:33:09.0354 4184 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
      13:33:09.0361 4184 spldr - ok
      13:33:09.0409 4184 Spooler (85daa09a98c9286d4ea2ba8d0e644377) C:\Windows\System32\spoolsv.exe
      13:33:09.0423 4184 Spooler - ok
      13:33:09.0544 4184 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
      13:33:09.0584 4184 sppsvc - ok
      13:33:09.0626 4184 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
      13:33:09.0686 4184 sppuinotify - ok
      13:33:09.0809 4184 SQLAgent$SQLEXPRESS (a892134c28777978ecde8283dc57ac0f) c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
      13:33:09.0839 4184 SQLAgent$SQLEXPRESS - ok
      13:33:09.0895 4184 SQLBrowser (10d936dced9eacd1a1b3fcdda6d7a4eb) c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
      13:33:09.0915 4184 SQLBrowser - ok
      13:33:09.0988 4184 SQLWriter (f92e5f93be572b512da3c016b675ede0) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
      13:33:10.0005 4184 SQLWriter - ok
      13:33:10.0039 4184 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
      13:33:10.0050 4184 srv - ok
      13:33:10.0071 4184 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
      13:33:10.0097 4184 srv2 - ok
      13:33:10.0123 4184 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
      13:33:10.0134 4184 srvnet - ok
      13:33:10.0165 4184 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
      13:33:10.0203 4184 SSDPSRV - ok
      13:33:10.0220 4184 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
      13:33:10.0244 4184 SstpSvc - ok
      13:33:10.0288 4184 ssudmdm (855335bf5792e56164f98c012e3d92dd) C:\Windows\system32\DRIVERS\ssudmdm.sys
      13:33:10.0336 4184 ssudmdm - ok
      13:33:10.0378 4184 ssudobex (139fba0f9854f8098e0abf2a64b9d4b4) C:\Windows\system32\DRIVERS\ssudobex.sys
      13:33:10.0413 4184 ssudobex - ok
      13:33:10.0441 4184 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
      13:33:10.0449 4184 stexstor - ok
      13:33:10.0499 4184 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
      13:33:10.0560 4184 stisvc - ok
      13:33:10.0581 4184 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
      13:33:10.0597 4184 swenum - ok
      13:33:10.0631 4184 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
      13:33:10.0675 4184 swprv - ok
      13:33:10.0747 4184 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
      13:33:10.0782 4184 SysMain - ok
      13:33:10.0862 4184 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
      13:33:10.0914 4184 TabletInputService - ok
      13:33:10.0942 4184 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
      13:33:11.0007 4184 TapiSrv - ok
      13:33:11.0028 4184 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
      13:33:11.0050 4184 TBS - ok
      13:33:11.0161 4184 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
      13:33:11.0195 4184 Tcpip - ok
      13:33:11.0312 4184 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
      13:33:11.0343 4184 TCPIP6 - ok
      13:33:11.0373 4184 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
      13:33:11.0426 4184 tcpipreg - ok
      13:33:11.0436 4184 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
      13:33:11.0445 4184 TDPIPE - ok
      13:33:11.0471 4184 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
      13:33:11.0481 4184 TDTCP - ok
      13:33:11.0497 4184 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
      13:33:11.0518 4184 tdx - ok
      13:33:11.0548 4184 TEAM (1de78f5008120cd79b34c12394dcd493) C:\Windows\system32\DRIVERS\RtTeam60.sys
      13:33:11.0554 4184 TEAM - ok
      13:33:11.0712 4184 TeamViewer7 (a4d2ce94b028ef1e437cf4ac3d8ff26c) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
      13:33:11.0738 4184 TeamViewer7 - ok
      13:33:11.0780 4184 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
      13:33:11.0797 4184 TermDD - ok
      13:33:11.0840 4184 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
      13:33:11.0900 4184 TermService - ok
      13:33:11.0918 4184 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
      13:33:11.0948 4184 Themes - ok
      13:33:11.0967 4184 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
      13:33:11.0989 4184 THREADORDER - ok
      13:33:12.0009 4184 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
      13:33:12.0039 4184 TrkWks - ok
      13:33:12.0065 4184 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
      13:33:12.0087 4184 TrustedInstaller - ok
      13:33:12.0108 4184 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
      13:33:12.0147 4184 tssecsrv - ok
      13:33:12.0150 4184 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
      13:33:12.0169 4184 TsUsbFlt - ok
      13:33:12.0171 4184 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
      13:33:12.0199 4184 TsUsbGD - ok
      13:33:12.0226 4184 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
      13:33:12.0263 4184 tunnel - ok
      13:33:12.0266 4184 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
      13:33:12.0275 4184 uagp35 - ok
      13:33:12.0297 4184 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
      13:33:12.0336 4184 udfs - ok
      13:33:12.0356 4184 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
      13:33:12.0381 4184 UI0Detect - ok
      13:33:12.0399 4184 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
      13:33:12.0436 4184 uliagpkx - ok
      13:33:12.0461 4184 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
      13:33:12.0493 4184 umbus - ok
      13:33:12.0505 4184 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
      13:33:12.0528 4184 UmPass - ok
      13:33:12.0555 4184 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
      13:33:12.0627 4184 upnphost - ok
      13:33:12.0665 4184 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
      13:33:12.0674 4184 usbccgp - ok
      13:33:12.0694 4184 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
      13:33:12.0706 4184 usbcir - ok
      13:33:12.0725 4184 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
      13:33:12.0744 4184 usbehci - ok
      13:33:12.0777 4184 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
      13:33:12.0818 4184 usbhub - ok
      13:33:12.0850 4184 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
      13:33:12.0872 4184 usbohci - ok
      13:33:12.0891 4184 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
      13:33:12.0932 4184 usbprint - ok
      13:33:12.0975 4184 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
      13:33:13.0013 4184 usbscan - ok
      13:33:13.0036 4184 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
      13:33:13.0068 4184 USBSTOR - ok
      13:33:13.0092 4184 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
      13:33:13.0115 4184 usbuhci - ok
      13:33:13.0130 4184 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
      13:33:13.0185 4184 UxSms - ok
      13:33:13.0214 4184 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
      13:33:13.0223 4184 VaultSvc - ok
      13:33:13.0302 4184 VBoxDrv (ba20a718e25228b9d69d72e4f19edeb5) C:\Windows\system32\DRIVERS\VBoxDrv.sys
      13:33:13.0346 4184 VBoxDrv - ok
      13:33:13.0372 4184 VBoxNetAdp (48630b4530c80aaf3dde9633e4291d8c) C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
      13:33:13.0411 4184 VBoxNetAdp - ok
      13:33:13.0430 4184 VBoxNetFlt (8b86a00d13e2dcbfe320061f3435faff) C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
      13:33:13.0453 4184 VBoxNetFlt - ok
      13:33:13.0485 4184 VBoxUSB (075ea3a313446ee2bd760f20f00befd7) C:\Windows\system32\Drivers\VBoxUSB.sys
      13:33:13.0509 4184 VBoxUSB - ok
      13:33:13.0532 4184 VBoxUSBMon (cec73cea22b7258c0a8f2354dc49d25c) C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
      13:33:13.0555 4184 VBoxUSBMon - ok
      13:33:13.0575 4184 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
      13:33:13.0582 4184 vdrvroot - ok
      13:33:13.0618 4184 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
      13:33:13.0668 4184 vds - ok
      13:33:13.0695 4184 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
      13:33:13.0706 4184 vga - ok
      13:33:13.0720 4184 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
      13:33:13.0742 4184 VgaSave - ok
      13:33:13.0750 4184 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
      13:33:13.0759 4184 vhdmp - ok
      13:33:13.0774 4184 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
      13:33:13.0781 4184 viaide - ok
      13:33:13.0814 4184 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
      13:33:13.0822 4184 volmgr - ok
      13:33:13.0848 4184 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
      13:33:13.0859 4184 volmgrx - ok
      13:33:13.0878 4184 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
      13:33:13.0888 4184 volsnap - ok
      13:33:13.0926 4184 Vsdatant (239d8d72730226cd460bdc8ca0a23d43) C:\Windows\system32\DRIVERS\vsdatant.sys
      13:33:13.0950 4184 Vsdatant - ok
      13:33:13.0996 4184 vsmon - ok
      13:33:14.0029 4184 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
      13:33:14.0049 4184 vsmraid - ok
      13:33:14.0128 4184 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
      13:33:14.0203 4184 VSS - ok
      13:33:14.0262 4184 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
      13:33:14.0300 4184 vwifibus - ok
      13:33:14.0338 4184 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
      13:33:14.0377 4184 W32Time - ok
      13:33:14.0389 4184 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
      13:33:14.0399 4184 WacomPen - ok
      13:33:14.0419 4184 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
      13:33:14.0450 4184 WANARP - ok
      13:33:14.0452 4184 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
      13:33:14.0472 4184 Wanarpv6 - ok
      13:33:14.0560 4184 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
      13:33:14.0605 4184 WatAdminSvc - ok
      13:33:14.0670 4184 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
      13:33:14.0710 4184 wbengine - ok
      13:33:14.0753 4184 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
      13:33:14.0784 4184 WbioSrvc - ok
      13:33:14.0814 4184 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
      13:33:14.0874 4184 wcncsvc - ok
      13:33:14.0891 4184 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
      13:33:14.0918 4184 WcsPlugInService - ok
      13:33:14.0934 4184 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
      13:33:14.0952 4184 Wd - ok
      13:33:14.0992 4184 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
      13:33:15.0005 4184 Wdf01000 - ok
      13:33:15.0021 4184 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
      13:33:15.0052 4184 WdiServiceHost - ok
      13:33:15.0053 4184 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
      13:33:15.0067 4184 WdiSystemHost - ok
      13:33:15.0096 4184 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
      13:33:15.0112 4184 WebClient - ok
      13:33:15.0135 4184 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
      13:33:15.0177 4184 Wecsvc - ok
      13:33:15.0191 4184 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
      13:33:15.0214 4184 wercplsupport - ok
      13:33:15.0224 4184 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
      13:33:15.0248 4184 WerSvc - ok
      13:33:15.0262 4184 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
      13:33:15.0283 4184 WfpLwf - ok
      13:33:15.0285 4184 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
      13:33:15.0292 4184 WIMMount - ok
      13:33:15.0299 4184 WinDefend - ok
      13:33:15.0301 4184 WinHttpAutoProxySvc - ok
      13:33:15.0353 4184 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
      13:33:15.0392 4184 Winmgmt - ok
      13:33:15.0477 4184 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
      13:33:15.0528 4184 WinRM - ok
      13:33:15.0614 4184 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
      13:33:15.0642 4184 WinUsb - ok
      13:33:15.0696 4184 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
      13:33:15.0744 4184 Wlansvc - ok
      13:33:15.0894 4184 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      13:33:15.0917 4184 wlidsvc - ok
      13:33:15.0951 4184 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
      13:33:15.0961 4184 WmiAcpi - ok
      13:33:15.0983 4184 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
      13:33:16.0010 4184 wmiApSrv - ok
      13:33:16.0028 4184 WMPNetworkSvc - ok
      13:33:16.0034 4184 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
      13:33:16.0045 4184 WPCSvc - ok
      13:33:16.0062 4184 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
      13:33:16.0075 4184 WPDBusEnum - ok
      13:33:16.0086 4184 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
      13:33:16.0107 4184 ws2ifsl - ok
      13:33:16.0119 4184 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
      13:33:16.0146 4184 wscsvc - ok
      13:33:16.0147 4184 WSearch - ok
      13:33:16.0259 4184 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
      13:33:16.0304 4184 wuauserv - ok
      13:33:16.0340 4184 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
      13:33:16.0368 4184 WudfPf - ok
      13:33:16.0385 4184 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
      13:33:16.0414 4184 WUDFRd - ok
      13:33:16.0437 4184 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
      13:33:16.0460 4184 wudfsvc - ok
      13:33:16.0477 4184 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
      13:33:16.0510 4184 WwanSvc - ok
      13:33:16.0539 4184 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
      13:33:16.0761 4184 \Device\Harddisk0\DR0 - ok
      13:33:16.0764 4184 Boot (0x1200) (c2d959c66047557eafe4d72ec12d5c8a) \Device\Harddisk0\DR0\Partition0
      13:33:16.0765 4184 \Device\Harddisk0\DR0\Partition0 - ok
      13:33:16.0792 4184 Boot (0x1200) (fc6b5fe83aeb35ee1e48263eded55a53) \Device\Harddisk0\DR0\Partition1
      13:33:16.0794 4184 \Device\Harddisk0\DR0\Partition1 - ok
      13:33:16.0795 4184 ============================================================
      13:33:16.0795 4184 Scan finished
      13:33:16.0795 4184 ============================================================
      13:33:16.0805 3716 Detected object count: 9
      13:33:16.0805 3716 Actual detected object count: 9
      13:34:18.0988 3716 C:\Windows\SysWOW64\ASDR.exe - copied to quarantine
      13:34:19.0002 3716 ASDR ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
      13:34:19.0038 3716 C:\Windows\system32\ATKFUSService.exe - copied to quarantine
      13:34:19.0046 3716 ATKFUSService ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
      13:34:19.0068 3716 C:\Windows\system32\epmntdrv.sys - copied to quarantine
      13:34:19.0072 3716 epmntdrv ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
      13:34:19.0086 3716 C:\Windows\system32\EuGdiDrv.sys - copied to quarantine
      13:34:19.0090 3716 EuGdiDrv ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
      13:34:19.0205 3716 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll - copied to quarantine
      13:34:19.0217 3716 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
      13:34:19.0242 3716 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll - copied to quarantine
      13:34:19.0251 3716 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
      13:34:19.0318 3716 C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe - copied to quarantine
      13:34:19.0328 3716 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
      13:34:19.0358 3716 C:\Windows\system32\HPZinw12.dll - copied to quarantine
      13:34:19.0364 3716 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
      13:34:19.0387 3716 C:\Windows\system32\HPZipm12.dll - copied to quarantine
      13:34:19.0393 3716 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine

      El SUPERAntiSpyware no me detecto nada.

      Y el archivo ese parece que se va multiplicando y poniendo en nuevas carpetas que creo o cosas que descargo (música)

    4. #4
      Ex-Colaborador Avatar de Damianl_77
      Registrado
      ene 2008
      Ubicación
      Argentina
      Mensajes
      23.694

      Re: Creo que tengo virus y muy raro.

      Hola Ismanlof con el permiso de los presentes...

      En modo normal

      Descarga la herramienta ComboFix.exe y guárdala en el escritorio.

      • Desactiva temporalmente el Antivirus y/o Antispyware.
      • Cierra todas las ventanas abiertas.
      • Haz doble clic al archivo ComboFix.exe para continuar. Es Importante Importante instalar Recovery Console si es solicitado por ComboFix.
      • Cuando termine, generará un registro en C:\ComboFix.txt.
      • *Nota* Mientras CF este trabajando no mover el mouse ya que pararía su proceso.
      • *Nota* ComboFix puede reiniciar automáticamente el PC para completar el proceso de eliminación.

      Atención!! No use ComboFix a menos que se le haya indicado específicamente en su mensaje por un integrante de nuestro Staff. Es una herramienta de gran alcance destinada por su creador a ser usada bajo la orientación y supervisión de un experto, no para uso privado. El uso de ComboFix incorrectamente podría generar problemas en su sistema. Por favor, lea las "Negaciones de la Garantía" de ComboFix.
      • Reinicia y pega el reporte de C:\ComboFix.txt en este mismo mensaje.

      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis


      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de Ismanlof
      Registrado
      jul 2012
      Ubicación
      España
      Mensajes
      66

      Re: Creo que tengo virus y muy raro.

      Me genero el reporte pero no puedo iniciar ningun explorador, dice que. Intento de operacion ilegal en una clave del registro que estaba marcada para su eliminacion. que hago?

    6. #6
      Ex-Colaborador Avatar de Damianl_77
      Registrado
      ene 2008
      Ubicación
      Argentina
      Mensajes
      23.694

      Re: Creo que tengo virus y muy raro.

      Reinicia el sistema

      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis


      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #7
      Usuario Avatar de Ismanlof
      Registrado
      jul 2012
      Ubicación
      España
      Mensajes
      66

      Re: Creo que tengo virus y muy raro.

      Cierto me lo pusiste, creía que no hacia falta ya que el programa lo reinició. Fallo mio.

      Te pego el reporte:

      ComboFix 12-08-28.01 - Ismael 28/08/2012 18:32:52.1.4 - x64
      Microsoft Windows 7 Home Premium 6.1.7601.1.1252.34.3082.18.8172.6255 [GMT 2:00]
      Running from: c:\users\Ismael\Desktop\ComboFix.exe
      AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
      FW: PC Tools Firewall Plus *Disabled* {175D0B73-9F8F-2CA9-8BF1-62277A276DC9}
      FW: ZoneAlarm Free Firewall Firewall *Disabled* {E6380B7E-D4B2-19F1-083E-56486607704B}
      SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
      SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      c:\users\Ismael\AppData\Local\Temp\d6ebea43-a7f6-428d-ab33-ddb1ea1983ec\CliSecureRT.dll
      c:\windows\SysWow64\local.txt
      c:\windows\SysWow64\muzapp.exe
      .
      .
      ((((((((((((((((((((((((( Files Created from 2012-07-28 to 2012-08-28 )))))))))))))))))))))))))))))))
      .
      .
      2012-08-28 16:41 . 2012-08-28 16:41 -------- d-----w- c:\users\Invitado\AppData\Local\temp
      2012-08-28 16:41 . 2012-08-28 16:41 -------- d-----w- c:\users\Default\AppData\Local\temp
      2012-08-28 11:40 . 2012-08-01 22:58 9309624 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D6931939-012B-40D0-84E0-593F51D7D2CA}\mpengine.dll
      2012-08-26 19:05 . 2012-08-26 19:18 -------- d-----w- C:\android-sdk
      2012-08-26 19:03 . 2012-08-26 19:03 -------- d-----w- c:\users\Ismael\.android
      2012-08-26 12:02 . 2012-06-04 07:59 99384 ----a-w- c:\windows\system32\drivers\ssudbus.sys
      2012-08-26 12:02 . 2012-06-04 07:59 203320 ----a-w- c:\windows\system32\drivers\ssudmdm.sys
      2012-08-25 18:06 . 2012-08-25 18:06 -------- d-----w- c:\program files (x86)\uTorrent
      2012-08-25 18:05 . 2012-08-26 21:29 -------- d-----w- c:\users\Ismael\AppData\Roaming\uTorrent
      2012-08-23 12:56 . 2012-08-23 12:56 -------- d-----w- c:\program files\CPUID
      2012-08-19 15:29 . 2012-08-19 15:29 -------- d-----w- c:\users\Ismael\AppData\Local\Diagnostics
      2012-08-15 16:23 . 2012-05-05 08:36 503808 ----a-w- c:\windows\system32\srcore.dll
      2012-08-15 16:23 . 2012-05-05 07:46 43008 ----a-w- c:\windows\SysWow64\srclient.dll
      2012-08-15 16:22 . 2012-02-11 06:43 751104 ----a-w- c:\windows\system32\win32spl.dll
      2012-08-15 16:22 . 2012-07-04 22:16 73216 ----a-w- c:\windows\system32\netapi32.dll
      2012-08-15 16:22 . 2012-07-04 22:13 59392 ----a-w- c:\windows\system32\browcli.dll
      2012-08-15 16:22 . 2012-07-04 22:13 136704 ----a-w- c:\windows\system32\browser.dll
      2012-08-15 16:22 . 2012-07-04 21:14 41984 ----a-w- c:\windows\SysWow64\browcli.dll
      2012-08-15 16:22 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
      2012-08-15 16:22 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
      2012-08-15 16:22 . 2012-02-11 05:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
      2012-08-15 16:22 . 2012-07-18 18:15 3148800 ----a-w- c:\windows\system32\win32k.sys
      2012-08-15 16:22 . 2012-05-14 05:26 956928 ----a-w- c:\windows\system32\localspl.dll
      2012-08-09 20:14 . 2012-08-09 20:14 -------- d-----w- C:\Riot Games
      2012-08-07 23:31 . 2012-08-07 23:31 -------- d-----w- c:\users\Invitado\AppData\Local\VirtualStore
      2012-08-07 23:11 . 2012-08-07 23:11 -------- d-----w- C:\_PoliFix
      2012-08-06 12:07 . 2012-08-06 12:07 -------- d-----w- c:\users\Ismael\AppData\Local\Unity
      2012-08-05 20:25 . 2012-08-05 20:25 -------- d-----w- c:\users\Ismael\AppData\Roaming\LolClient
      2012-08-05 15:45 . 2012-08-05 15:45 -------- d-----w- c:\users\Ismael\AppData\Local\Macromedia
      2012-08-04 18:05 . 2012-08-04 18:05 -------- d-----w- c:\programdata\ASUS WebStorage
      2012-08-04 17:46 . 2012-08-04 18:07 -------- d-----w- C:\aws
      2012-08-04 17:46 . 2012-08-04 18:07 -------- d-----w- C:\ASUS WebStorage
      2012-08-04 14:34 . 2012-08-04 14:34 -------- d-----w- c:\program files (x86)\ESET
      2012-08-02 23:14 . 2008-07-12 06:18 467984 ----a-w- c:\windows\SysWow64\d3dx10_39.dll
      2012-08-02 23:14 . 2008-07-12 06:18 1493528 ----a-w- c:\windows\SysWow64\D3DCompiler_39.dll
      2012-08-02 23:14 . 2008-07-12 06:18 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll
      2012-08-02 22:48 . 2012-08-28 13:43 -------- d-----w- c:\users\Ismael\AppData\Local\PMB Files
      2012-08-02 22:48 . 2012-08-28 13:43 -------- d-----w- c:\programdata\PMB Files
      2012-08-02 22:48 . 2012-08-02 22:48 -------- d-----w- c:\program files (x86)\Pando Networks
      2012-08-02 22:25 . 2012-08-02 22:25 -------- d-----w- c:\windows\system32\Macromed
      2012-08-02 20:16 . 2012-08-02 20:16 -------- d-----w- c:\program files\SUPERAntiSpyware
      2012-08-01 17:12 . 2012-08-01 17:12 -------- d-----w- c:\programdata\PC Tools
      2012-08-01 17:12 . 2012-08-01 17:12 -------- d-----w- c:\users\Ismael\AppData\Roaming\TestApp
      2012-07-30 14:14 . 2012-07-30 14:14 -------- d-----w- c:\program files (x86)\Futuremark
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-08-15 19:34 . 2012-04-11 13:38 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
      2012-08-15 19:34 . 2012-04-11 13:38 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
      2012-08-15 17:42 . 2012-04-24 13:01 62134624 ----a-w- c:\windows\system32\MRT.exe
      2012-07-26 20:37 . 2012-07-26 20:37 36168 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
      2012-07-03 16:21 . 2012-03-23 20:15 355856 ----a-w- c:\windows\system32\drivers\aswSP.sys
      2012-07-03 16:21 . 2012-03-23 20:15 54072 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
      2012-07-03 16:21 . 2012-03-23 20:15 59728 ----a-w- c:\windows\system32\drivers\aswTdi.sys
      2012-07-03 16:21 . 2012-03-23 20:15 958400 ----a-w- c:\windows\system32\drivers\aswSnx.sys
      2012-07-03 16:21 . 2012-03-23 20:15 71064 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
      2012-07-03 16:21 . 2012-03-23 20:15 25232 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
      2012-07-03 16:21 . 2012-03-23 20:14 41224 ----a-w- c:\windows\avastSS.scr
      2012-07-03 16:21 . 2012-03-23 20:14 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
      2012-07-03 16:21 . 2012-03-23 20:15 285328 ----a-w- c:\windows\system32\aswBoot.exe
      2012-07-03 11:46 . 2012-07-24 13:40 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
      2012-06-26 07:02 . 2012-01-30 23:15 330240 ----a-w- c:\windows\MASetupCaller.dll
      2012-06-26 07:02 . 2012-01-30 23:15 45320 ----a-w- c:\windows\SysWow64\MAMACExtract.dll
      2012-06-09 05:43 . 2012-07-19 21:32 14172672 ----a-w- c:\windows\system32\shell32.dll
      2012-06-06 06:06 . 2012-07-19 21:33 2004480 ----a-w- c:\windows\system32\msxml6.dll
      2012-06-06 06:06 . 2012-07-19 21:32 1881600 ----a-w- c:\windows\system32\msxml3.dll
      2012-06-06 06:02 . 2012-07-19 21:32 1133568 ----a-w- c:\windows\system32\cdosys.dll
      2012-06-06 05:05 . 2012-07-19 21:33 1390080 ----a-w- c:\windows\SysWow64\msxml6.dll
      2012-06-06 05:05 . 2012-07-19 21:32 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll
      2012-06-06 05:03 . 2012-07-19 21:32 805376 ----a-w- c:\windows\SysWow64\cdosys.dll
      2012-06-02 22:19 . 2012-04-19 13:27 38424 ----a-w- c:\windows\system32\wups.dll
      2012-06-02 22:19 . 2012-04-19 13:27 2428952 ----a-w- c:\windows\system32\wuaueng.dll
      2012-06-02 22:19 . 2012-04-19 13:27 57880 ----a-w- c:\windows\system32\wuauclt.exe
      2012-06-02 22:19 . 2012-04-19 13:27 44056 ----a-w- c:\windows\system32\wups2.dll
      2012-06-02 22:19 . 2012-04-19 13:27 701976 ----a-w- c:\windows\system32\wuapi.dll
      2012-06-02 22:15 . 2012-04-19 13:27 2622464 ----a-w- c:\windows\system32\wucltux.dll
      2012-06-02 22:15 . 2012-04-19 13:27 99840 ----a-w- c:\windows\system32\wudriver.dll
      2012-06-02 13:19 . 2012-04-19 13:26 186752 ----a-w- c:\windows\system32\wuwebv.dll
      2012-06-02 13:15 . 2012-04-19 13:26 36864 ----a-w- c:\windows\system32\wuapp.exe
      2012-06-02 05:50 . 2012-07-19 21:32 458704 ----a-w- c:\windows\system32\drivers\cng.sys
      2012-06-02 05:48 . 2012-07-19 21:32 151920 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
      2012-06-02 05:48 . 2012-07-19 21:32 95600 ----a-w- c:\windows\system32\drivers\ksecdd.sys
      2012-06-02 05:45 . 2012-07-19 21:32 340992 ----a-w- c:\windows\system32\schannel.dll
      2012-06-02 05:44 . 2012-07-19 21:32 307200 ----a-w- c:\windows\system32\ncrypt.dll
      2012-06-02 04:40 . 2012-07-19 21:32 22016 ----a-w- c:\windows\SysWow64\secur32.dll
      2012-06-02 04:40 . 2012-07-19 21:32 225280 ----a-w- c:\windows\SysWow64\schannel.dll
      2012-06-02 04:39 . 2012-07-19 21:32 219136 ----a-w- c:\windows\SysWow64\ncrypt.dll
      2012-06-02 04:34 . 2012-07-19 21:32 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
      2012-05-31 10:25 . 2010-11-21 03:27 279656 ------w- c:\windows\system32\MpSigStub.exe
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
      "KiesPDLR"="c:\program files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2012-08-07 21432]
      "KiesPreload"="c:\program files (x86)\Samsung\Kies\Kies.exe" [2012-08-07 960440]
      "SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-07-09 5661056]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
      "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-07-03 4273976]
      "ASUS AiChargerPlus Execute"="c:\program files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe" [2010-11-08 465536]
      "HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2011-05-10 49208]
      "KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2012-08-07 3524536]
      "Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-07-03 462920]
      "00PCTFW"="c:\program files (x86)\PC Tools Firewall Plus\FirewallGUI.exe" [2011-04-07 2672600]
      "ZoneAlarm"="c:\program files (x86)\CheckPoint\ZoneAlarm\zatray.exe" [2012-07-11 73392]
      "ASUSWebStorage"="c:\program files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe" [2011-08-17 737104]
      "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
      .
      c:\users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
      OpenOffice.org 3.3.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2010-12-13 1198592]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 0 (0x0)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableUIADesktopToggle"= 0 (0x0)
      "PromptOnSecureDesktop"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
      "aux"=wdmaud.drv
      .
      [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
      BootExecute REG_MULTI_SZ autocheck autochk /r \??\G:\0autocheck autochk *
      .
      [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
      Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
      @=""
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
      "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
      "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
      .
      R1 SBRE;SBRE;c:\windows\system32\drivers\SBREdrv.sys [x]
      R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
      R2 gupdate;Servicio Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-03-23 136176]
      R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
      R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-15 250056]
      R3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [2012-02-13 240408]
      R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2012-06-04 99384]
      R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2011-07-29 16776]
      R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2011-07-29 9096]
      R3 EverestDriver;Lavalys EVEREST Kernel Driver;c:\users\Ismael\Desktop\everest\kerneld.amd64 [x]
      R3 gupdatem;Servicio de Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-03-23 136176]
      R3 mbamchameleon;mbamchameleon;c:\windows\system32\drivers\mbamchameleon.sys [2012-07-26 36168]
      R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-08-06 113120]
      R3 pctNdis;PC Tools Firewall Intermediate Filter Service;c:\windows\system32\DRIVERS\pctNdis64.sys [2010-07-08 79000]
      R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys [2010-01-14 48416]
      R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan60.sys [2010-01-14 29472]
      R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2012-06-04 203320]
      R3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys [2010-01-14 48416]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
      R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
      R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2012-05-22 147288]
      R3 VBoxUSB;VirtualBox USB;c:\windows\system32\Drivers\VBoxUSB.sys [2012-05-22 117080]
      R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-03-23 1255736]
      R4 MSSQLServerADHelper100;Servicio auxiliar de SQL Active Directory;c:\program files (x86)\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2008-07-10 47128]
      R4 SQLAgent$SQLEXPRESS;Agente SQL Server (SQLEXPRESS);c:\program files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2011-09-22 370024]
      S0 AiChargerPlus;ASUS Charger Plus Driver;c:\windows\system32\DRIVERS\AiChargerPlus.sys [2010-11-08 14464]
      S1 AsUpIO;AsUpIO;SysWow64\drivers\AsUpIO.sys [x]
      S1 aswKbd;aswKbd; [x]
      S1 aswSnx;aswSnx; [x]
      S1 aswSP;aswSP; [x]
      S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-05-29 283200]
      S1 EIO64;EIO Driver;c:\windows\system32\DRIVERS\EIO64.sys [2012-03-25 16384]
      S1 pctgntdi;pctgntdi;c:\windows\System32\drivers\pctgntdi64.sys [2011-01-17 334976]
      S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
      S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
      S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [2012-05-22 224088]
      S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [2012-05-22 130904]
      S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-11 140672]
      S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
      S2 asComSvc;ASUS Com Service;c:\program files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe [2010-11-03 918144]
      S2 asHmComSvc;ASUS HM Com Service;c:\program files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [2010-12-02 915584]
      S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2010-10-21 586880]
      S2 aswFsBlk;aswFsBlk; [x]
      S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-07-03 71064]
      S2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [2012-02-13 193816]
      S2 ISWKL;ZoneAlarm LTD Toolbar ISWKL;c:\program files\CheckPoint\ZAForceField\ISWKL.sys [2012-07-14 33712]
      S2 IswSvc;ZoneAlarm LTD Toolbar IswSvc;c:\program files\CheckPoint\ZAForceField\IswSvc.exe [2012-07-14 827560]
      S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-07-03 655944]
      S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2011-09-23 641832]
      S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys [2010-01-14 32544]
      S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-08-13 3064000]
      S2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-03-19 2666880]
      S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys [2011-02-24 126952]
      S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys [2011-02-24 389608]
      S3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);c:\windows\system32\DRIVERS\ICCWDT.sys [2011-05-16 26136]
      S3 IOMap;IOMap;c:\windows\system32\drivers\IOMap64.sys [2010-02-22 23680]
      S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-07-03 24904]
      S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
      S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2011-03-03 174184]
      S3 PCTFW-PacketFilter;PCTools Firewall - Packet filter driver;c:\windows\system32\drivers\pctNdis-PacketFilter64.sys [2011-01-12 119688]
      S3 pctNdisMP;PC Tools Driver;c:\windows\system32\DRIVERS\pctNdis64.sys [2010-07-08 79000]
      S3 pctplfw;pctplfw;c:\windows\System32\drivers\pctplfw64.sys [2011-01-17 179976]
      S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
      S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [2012-05-22 166232]
      .
      .
      --- Other Services/Drivers In Memory ---
      .
      *NewlyCreated* - WS2IFSL
      *Deregistered* - pctESPInject
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
      hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2012-08-28 c:\windows\Tasks\Adobe Flash Player Updater.job
      - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-11 19:34]
      .
      2012-08-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-03-23 15:55]
      .
      2012-08-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-03-23 15:55]
      .
      2012-08-27 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3592666786-580434935-2890234984-1000Core.job
      - c:\users\Ismael\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-02 22:19]
      .
      2012-08-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3592666786-580434935-2890234984-1000UA.job
      - c:\users\Ismael\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-02 22:19]
      .
      .
      --------- X64 Entries -----------
      .
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
      @="{472083B0-C522-11CF-8763-00608CC02F24}"
      [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
      2012-07-03 16:21 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
      @="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
      [HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
      2012-08-03 09:39 1506688 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.143.296\AsusWSShellExt64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
      @="{64174815-8D98-4CE6-8646-4C039977D808}"
      [HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
      2012-08-03 09:39 1506688 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.143.296\AsusWSShellExt64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_U]
      @="{1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D}"
      [HKEY_CLASSES_ROOT\CLSID\{1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D}]
      2012-08-03 09:39 1506688 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.143.296\AsusWSShellExt64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
      2012-07-20 13:17 755544 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
      2012-07-20 13:17 755544 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
      2012-07-20 13:17 755544 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
      2012-07-20 13:17 755544 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-11-19 11613288]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
      "LoadAppInit_DLLs"=0x1
      .
      ------- Supplementary Scan -------
      .
      uLocal Page = c:\windows\system32\blank.htm
      uStart Page = hxxp://google.es/
      mLocal Page = c:\windows\SysWOW64\blank.htm
      TCP: DhcpNameServer = 62.42.230.24 62.42.63.52
      TCP: Interfaces\{8B7C061E-4481-43F8-BBA0-905E24633A29}: NameServer = 208.67.222.222,208.67.220.220
      FF - ProfilePath - c:\users\Ismael\AppData\Roaming\Mozilla\Firefox\Profiles\s6kdal1h.default\
      .
      - - - - ORPHANS REMOVED - - - -
      .
      URLSearchHooks-{fd6d0d57-f67f-4e2d-a5f7-0c4c2c820470} - (no file)
      Toolbar-10 - (no file)
      Toolbar-10 - (no file)
      HKLM-Run-ISW - (no file)
      .
      .
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet001\services\EverestDriver]
      "ImagePath"="\??\c:\users\Ismael\Desktop\everest\kerneld.amd64"
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Shockwave Flash Object"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
      @="0"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
      @="ShockwaveFlash.ShockwaveFlash.11"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="ShockwaveFlash.ShockwaveFlash"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Macromedia Flash Factory Object"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
      @="FlashFactory.FlashFactory.1"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="FlashFactory.FlashFactory"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker4"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      ------------------------ Other Running Processes ------------------------
      .
      c:\program files\AVAST Software\Avast\AvastSvc.exe
      c:\windows\SysWOW64\ASDR.exe
      c:\program files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
      c:\program files (x86)\PC Tools Firewall Plus\FWService.exe
      c:\program files (x86)\ASUS\SmartDoctor\SmartDoctor.exe
      c:\program files (x86)\ASUS\AI Suite II\AsRoutineController.exe
      c:\program files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
      c:\program files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
      c:\program files (x86)\ASUS\AI Suite II\AI Suite II.exe
      c:\program files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
      .
      **************************************************************************
      .
      Completion time: 2012-08-28 19:07:52 - machine was rebooted
      ComboFix-quarantined-files.txt 2012-08-28 17:07
      .
      Pre-Run: 1.820.036.935.680 bytes libres
      Post-Run: 1.820.683.870.208 bytes libres
      .
      - - End Of File - - C6261B317E4E602BCC07C3DEB3493274

    8. #8
      Ex-Colaborador Avatar de Damianl_77
      Registrado
      ene 2008
      Ubicación
      Argentina
      Mensajes
      23.694

      Re: Creo que tengo virus y muy raro.

      Comentame como se encuentra funcionando el sistema en estos momentos

      Ahora me voy a trabajar, pero a la noche reviso bien el reporte, aunque así por arriba veo todo en orden

      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis


      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    9. #9
      Usuario Avatar de Ismanlof
      Registrado
      jul 2012
      Ubicación
      España
      Mensajes
      66

      Re: Creo que tengo virus y muy raro.

      El sistema esta bien, anda bien y de más. Lo unico que siguen esas cosas raras. Y vale cuadno puedas

      Te comento las cosas que me pasan:

      Tengo un archivo en formato bloc de notas y con una tuerca que se llama desktop.ini y lo tengo en imagánes, en mi música, en música pública, en mis videos, en videos públicos, en descargas, en una carpeta que ddescargue de música hace poco, en google drive... son uno o dos los archivos que me salen,depende del lugar. Lo curioso es que donde salen dos uno es de fecha del 2012 y otro del 2009 y el ordena no tiene ni 1 año.

      Luego en equipo me salen algunas carpetas como clonadas, es decir repetidas y con el icono de la carpeta como mas transparente y con un candado. Cosas que yo no ice. Las carpetas son: Archivos de programa, Documents and settings (no esta clonada) y System Volume Information (No tiene le candado, tampoco esta clonada pero si el icono esta como transparente. Y bueno si me pongo a buscar no se que mas encontraría.

    10. #10
      Ex-Colaborador Avatar de Damianl_77
      Registrado
      ene 2008
      Ubicación
      Argentina
      Mensajes
      23.694

      Re: Creo que tengo virus y muy raro.

      Sobre las carpetas extrañas realiza lo siguiente:

      Muestre los archivos ocultos de su equipo:

      (aunque ya deben de estar desocultados igual comprobalo)

      Ver archivos ocultos en todos los Windows

      Vaya a Inicio --> Todos los programas --> Accesorios. Hacemos clic derecho en Símbolo de sistema y Ejecutar como Administrador

      Se le abrirá la consola de comandos. En ella:

      attrib +R "%ProgramFiles(x86)%"

      Pulse Enter para devolver el nombre 'Archivos de programas (x86)', a la carpeta 'Program Files (x86)'

      Ocultar la carpeta 'Archivos de Programa' (con candado):

      Clic derecho en dicha carpeta --> Propiedades --> seleccionar la casilla Oculto --> presionar en Aplicar y luego en Aceptar

      Desocultar la carpeta 'Archivos de Programa' original:

      Clic derecho en dicha carpeta --> Propiedades --> deseleccionar la casilla Oculto --> presionar en Aplicar y luego en Aceptar

      Vuelva a ocultar los archivos siguiendo a la inversa Ver archivos ocultos en todos los Windows

      Lo que veo en el reporte de ComboFix es que tenes 2 firewalls
      PC Tools Firewall Plus
      ZoneAlarm Free Firewall



      Por lo cual te recomiendo que desinstales 1 firewall a tu elección

      Reiniciando la PC, me comentas si los problemas continúan o si fueron solucionados.

      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis


      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.