• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 13

    Problema con Avast! 5.0 actualizado a 7.0

    Hola buenas a todos.. hace tiempo que no entro al foro xD... Bueno la cosa es así... resulta que estaba navegando de 10 y como siempre una actualización a través de Windows Update para el ...

    1. #1
      Usuario Avatar de Luchimodd
      Registrado
      may 2010
      Ubicación
      Melo
      Mensajes
      27

      Molesto Problema con Avast! 5.0 actualizado a 7.0

      Hola buenas a todos.. hace tiempo que no entro al foro xD...

      Bueno la cosa es así... resulta que estaba navegando de 10 y como siempre una actualización a través de Windows Update para el Windows Defender, la instalé y todo bien. En una de esas me detecta un archivo en la carpeta Temp como virus

      y le di a eliminar y todo bien... pero a eso de los 15 minutos derrepente se me cerró todo y la pc se reinició (no sé por qué) y cuando arrancó noté que el antivirus (Avast 7) tenía los escudos desactivados y le di al botón "Arreglar Ahora" pero ni caso hubo... he buscado en el foro y

      he probado con diferentes soluciones de desintalarlo, repararlo, usando la aplicación "aswclear.exe" (en Modo Seguro y Normal) y lo volvía a instalar y siempre me decía que tenía 7 escudos deshabilitados y por más que le diera al botón no pasaba nada... Aclaro como lo dije en el título... tenía la versión 5.0 pero actualizada a la 7.0 usando el mismo

      serial que el de la versión 5.0. Antes de hacer todo este procedimiento (y luego de haberse reiniciado la pc "SOLA") noté en el "Administrador de Dispositivos" un proceso que se llamaba "Syshost.exe" pero no decía que programa lo estaba usando y pensé que era un virus, y creo que así fué porque no lo podía terminar ni nada... Lo pude borrar gracias al MalwareBytes - AntiMalware y todo bien...

      Pero seguí sin poder solucionar el problema. Me bajé una versión del Avast! 7.0 con serial, pero cuando lo instalé... reinicié la PC y me instaló un driver para el teclado y éste último no respondía a nada. Lo volví a desintalar y pude volver a usarlo.

      Aclaro que ahora estoy bajando el Kaspersky 2013 para ver si sigo con ese mismo problema.

      Uds piensan que espero a poder instalar el Kaspersky o puede que exista una solución para volver a usar el Avast! en mi PC?

      Desde ya muchas gracias, espero no haber complicado mucho


      PD: También otra cosa que no té en el log del MBAM al eliminar el archivo Syshost.exe que tengo una carpeta dentro de la carpeta Usuarios llamada Updatususer que según leí es una carpeta creada por los drivers de Nvidia, es cierto eso?.


      Ahora si desde ya muchas gracias!

    2. #2
      Ex-Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.747

      Re: Problema con Avast! 5.0 actualizado a 7.0

      Hola Luchimodd :

      Lo que pasa es que tenes un rootkit bastante pesado.

      Trae el informe de Malwarebytes por favor.

      Descarga TDSSKiller.zip a tu escritorio.
      Desconecta tu ordenador de Internet (Desconecta el cable).
      • Descomprime el archivo tdsskiller.zip
      • Ejecuta el archivo TDSSKiller.exe Si usas Vista o 7 presiona clic derecho ejecutar como administrador.
      • Presiona clic sobre
      • Marca también las casillas:

      • Presiona clic sobre el botón

        .
      • TDSSKiller comenzara a analizar el equipo.
      • Si el equipo no está infectado:
      • Mostrara
      • No threats found.
      • Presiona clic sobre el botón "Close"
      • Si el equipo está infectado:
      • Mostrara:
      • Threats detected.
      • Select action for found objects:

      • Malware object, high risk. La acción predeterminada es "Cure" o "Delete".
      • Suspicious object, medium risk. Usa siempre la opción "Skip"
      • El programa selecciona de forma automática la acción a tomar.
      • Presiona clic sobre el botón "Continue"
      • Para desinfectar correctamente el Sistema, puede solicitarle reiniciar el equipo.
      • Presiona clic sobre el botón

      • Abre el reporte de TDSSKiller, ubicado en C:\TDSSKiller.x.xx.x_xx.xx.xxxx_xx.xx.xx_log.txt, donde "x.xx.x_xx.xx.xxxx_xx.xx.xx" son versión, fecha y hora.
      • Copia y pega su contenido en tu próxima respuesta.
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de Luchimodd
      Registrado
      may 2010
      Ubicación
      Melo
      Mensajes
      27

      Re: Problema con Avast! 5.0 actualizado a 7.0

      Bueno acá van los logs:

      MalwareBytes - AntiMalware:

      Malwarebytes' Anti-Malware 1.51.0.1200
      www.malwarebytes.org

      Versión de la Base de Datos: 6705

      Windows 6.1.7601 Service Pack 1
      Internet Explorer 9.0.8112.16421

      01/09/2012 0:43:43
      mbam-log-2012-09-01 (00-43-43).txt

      Tipos de Análisis: Análisis Rápido
      Objetos examinados: 168359
      Tiempo transcurrido: 2 minuto(s), 26 segundo(s)

      Procesos en Memoria Infectados: 0
      Módulos de Memoria Infectados: 0
      Claves del Registro Infectadas: 0
      Valores del Registro Infectados: 0
      Elementos de Datos del Registro Infectados: 0
      Carpetas Infectadas: 0
      Archivos Infectados: 7

      Procesos en Memoria Infectados:
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Infectados:
      (No se han detectado elementos maliciosos)

      Claves del Registro Infectadas:
      (No se han detectado elementos maliciosos)

      Valores del Registro Infectados:
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Infectados:
      (No se han detectado elementos maliciosos)

      Carpetas Infectadas:
      (No se han detectado elementos maliciosos)

      Archivos Infectados:
      c:\programdata\syshost.exe (Trojan.Agent.I) -> Quarantined and deleted successfully.
      c:\users\luciano\appdata\roaming\syshost.exe (Trojan.Agent.I) -> Quarantined and deleted successfully.
      c:\users\updatususer\appdata\roaming\syshost.exe (Trojan.Agent.I) -> Quarantined and deleted successfully.
      c:\windows\serviceprofiles\localservice\appdata\roaming\syshost.exe (Trojan.Agent.I) -> Quarantined and deleted successfully.
      c:\windows\serviceprofiles\networkservice\appdata\roaming\syshost.exe (Trojan.Agent.I) -> Quarantined and deleted successfully.
      c:\windows\system32\config\systemprofile\appdata\roaming\syshost.exe (Trojan.Agent.I) -> Quarantined and deleted successfully.
      c:\windows\syshost.exe (Trojan.Downloader) -> Quarantined and deleted successfully.

    4. #4
      Usuario Avatar de Luchimodd
      Registrado
      may 2010
      Ubicación
      Melo
      Mensajes
      27

      Re: Problema con Avast! 5.0 actualizado a 7.0

      Primer log de TDSSKiler (porque me generó 2 logs)

      16:41:09.0692 3180 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
      16:41:09.0702 3180 ============================================================
      16:41:09.0702 3180 Current date / time: 2012/09/01 16:41:09.0702
      16:41:09.0702 3180 SystemInfo:
      16:41:09.0702 3180
      16:41:09.0702 3180 OS Version: 6.1.7601 ServicePack: 1.0
      16:41:09.0702 3180 Product type: Workstation
      16:41:09.0702 3180 ComputerName: LUCIANO-PC
      16:41:09.0702 3180 UserName: Luciano
      16:41:09.0702 3180 Windows directory: C:\Windows
      16:41:09.0702 3180 System windows directory: C:\Windows
      16:41:09.0702 3180 Running under WOW64
      16:41:09.0702 3180 Processor architecture: Intel x64
      16:41:09.0702 3180 Number of processors: 6
      16:41:09.0702 3180 Page size: 0x1000
      16:41:09.0702 3180 Boot type: Normal boot
      16:41:09.0702 3180 ============================================================
      16:41:13.0672 3180 !crdlk
      16:41:13.0682 3180 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'A'
      16:41:13.0692 3180 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'A'
      16:41:13.0692 3180 ============================================================
      16:41:13.0692 3180 \Device\Harddisk0\DR0:
      16:41:13.0692 3180 MBR partitions:
      16:41:13.0692 3180 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4E1EDEC
      16:41:13.0712 3180 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x4E1EE6A, BlocksNum 0xDBF5D96
      16:41:13.0712 3180 \Device\Harddisk1\DR1:
      16:41:13.0712 3180 MBR partitions:
      16:41:13.0712 3180 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07800
      16:41:13.0712 3180 ============================================================
      16:41:13.0732 3180 C: <-> \Device\Harddisk0\DR0\Partition1
      16:41:13.0762 3180 D: <-> \Device\Harddisk0\DR0\Partition2
      16:41:13.0812 3180 H: <-> \Device\Harddisk1\DR1\Partition1
      16:41:13.0812 3180 ============================================================
      16:41:13.0812 3180 Initialize success
      16:41:13.0812 3180 ============================================================
      16:41:30.0532 3956 ============================================================
      16:41:30.0532 3956 Scan started
      16:41:30.0532 3956 Mode: Manual; SigCheck; TDLFS;
      16:41:30.0532 3956 ============================================================
      16:41:31.0092 3956 ================ Scan system memory ========================
      16:41:31.0092 3956 System memory - ok
      16:41:31.0092 3956 ================ Scan services =============================
      16:41:31.0272 3956 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
      16:41:31.0352 3956 1394ohci - ok
      16:41:31.0382 3956 Suspicious service (NoAccess): 39a8ae61940984c3
      16:41:31.0422 3956 [ F2BEAECBCCCF1FC453D71434223A08AE ] 39a8ae61940984c3 C:\Windows\System32\Drivers\39a8ae61940984c3.sys
      16:41:31.0422 3956 Suspicious file (NoAccess): C:\Windows\System32\Drivers\39a8ae61940984c3.sys. md5: F2BEAECBCCCF1FC453D71434223A08AE
      16:41:31.0482 3956 39a8ae61940984c3 ( Rootkit.Win32.Necurs.gen ) - infected
      16:41:31.0482 3956 39a8ae61940984c3 - detected Rootkit.Win32.Necurs.gen (0)
      16:41:31.0522 3956 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
      16:41:31.0562 3956 ACPI - ok
      16:41:31.0612 3956 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
      16:41:31.0702 3956 AcpiPmi - ok
      16:41:31.0772 3956 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
      16:41:31.0802 3956 adp94xx - ok
      16:41:31.0862 3956 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
      16:41:31.0902 3956 adpahci - ok
      16:41:31.0972 3956 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
      16:41:32.0002 3956 adpu320 - ok
      16:41:32.0052 3956 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      16:41:32.0202 3956 AeLookupSvc - ok
      16:41:32.0282 3956 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
      16:41:32.0332 3956 AFD - ok
      16:41:32.0382 3956 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
      16:41:32.0392 3956 agp440 - ok
      16:41:32.0432 3956 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
      16:41:32.0502 3956 ALG - ok
      16:41:32.0572 3956 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
      16:41:32.0592 3956 aliide - ok
      16:41:32.0702 3956 ALSysIO - ok
      16:41:32.0762 3956 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
      16:41:32.0772 3956 amdide - ok
      16:41:32.0822 3956 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
      16:41:32.0872 3956 AmdK8 - ok
      16:41:32.0912 3956 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
      16:41:32.0962 3956 AmdPPM - ok
      16:41:33.0022 3956 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
      16:41:33.0042 3956 amdsata - ok
      16:41:33.0102 3956 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
      16:41:33.0142 3956 amdsbs - ok
      16:41:33.0182 3956 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
      16:41:33.0202 3956 amdxata - ok
      16:41:33.0302 3956 [ 7F46BEE50E6FDB6473FBE172466A9EAD ] AODDriver4.2.0 C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys
      16:41:33.0332 3956 AODDriver4.2.0 - ok
      16:41:33.0392 3956 [ DCADAD156815B8D6F935377806A2CF95 ] AODService C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe
      16:41:33.0412 3956 AODService - ok
      16:41:33.0482 3956 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
      16:41:33.0572 3956 AppID - ok
      16:41:33.0632 3956 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
      16:41:33.0692 3956 AppIDSvc - ok
      16:41:33.0752 3956 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
      16:41:33.0802 3956 Appinfo - ok
      16:41:33.0852 3956 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
      16:41:33.0892 3956 AppMgmt - ok
      16:41:33.0942 3956 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
      16:41:33.0972 3956 arc - ok
      16:41:34.0002 3956 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
      16:41:34.0022 3956 arcsas - ok
      16:41:34.0052 3956 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      16:41:34.0112 3956 AsyncMac - ok
      16:41:34.0172 3956 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
      16:41:34.0192 3956 atapi - ok
      16:41:34.0272 3956 [ 7D89B0C443F6068E5B27AA3B972069FF ] athr C:\Windows\system32\DRIVERS\athrx.sys
      16:41:34.0332 3956 athr - ok
      16:41:34.0562 3956 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      16:41:34.0642 3956 AudioEndpointBuilder - ok
      16:41:34.0692 3956 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
      16:41:34.0722 3956 AudioSrv - ok
      16:41:34.0772 3956 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
      16:41:34.0802 3956 AxInstSV - ok
      16:41:34.0842 3956 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
      16:41:34.0902 3956 b06bdrv - ok
      16:41:34.0942 3956 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
      16:41:34.0992 3956 b57nd60a - ok
      16:41:35.0062 3956 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
      16:41:35.0092 3956 BDESVC - ok
      16:41:35.0132 3956 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
      16:41:35.0212 3956 Beep - ok
      16:41:35.0282 3956 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
      16:41:35.0322 3956 BFE - ok
      16:41:35.0382 3956 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
      16:41:35.0432 3956 BITS - ok
      16:41:35.0472 3956 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
      16:41:35.0482 3956 blbdrive - ok
      16:41:35.0532 3956 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      16:41:35.0582 3956 bowser - ok
      16:41:35.0632 3956 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
      16:41:35.0712 3956 BrFiltLo - ok
      16:41:35.0762 3956 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
      16:41:35.0792 3956 BrFiltUp - ok
      16:41:35.0862 3956 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
      16:41:35.0902 3956 Browser - ok
      16:41:35.0962 3956 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
      16:41:36.0012 3956 Brserid - ok
      16:41:36.0052 3956 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
      16:41:36.0092 3956 BrSerWdm - ok
      16:41:36.0132 3956 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
      16:41:36.0152 3956 BrUsbMdm - ok
      16:41:36.0192 3956 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
      16:41:36.0212 3956 BrUsbSer - ok
      16:41:36.0232 3956 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
      16:41:36.0262 3956 BTHMODEM - ok
      16:41:36.0312 3956 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
      16:41:36.0352 3956 bthserv - ok
      16:41:36.0392 3956 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      16:41:36.0422 3956 cdfs - ok
      16:41:36.0482 3956 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      16:41:36.0512 3956 cdrom - ok
      16:41:36.0562 3956 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
      16:41:36.0632 3956 CertPropSvc - ok
      16:41:36.0672 3956 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
      16:41:36.0692 3956 circlass - ok
      16:41:36.0742 3956 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
      16:41:36.0762 3956 CLFS - ok
      16:41:36.0852 3956 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      16:41:36.0882 3956 clr_optimization_v2.0.50727_32 - ok
      16:41:36.0972 3956 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      16:41:36.0992 3956 clr_optimization_v2.0.50727_64 - ok
      16:41:37.0092 3956 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      16:41:37.0102 3956 clr_optimization_v4.0.30319_32 - ok
      16:41:37.0192 3956 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      16:41:37.0212 3956 clr_optimization_v4.0.30319_64 - ok
      16:41:37.0262 3956 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
      16:41:37.0282 3956 CmBatt - ok
      16:41:37.0322 3956 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
      16:41:37.0332 3956 cmdide - ok
      16:41:37.0382 3956 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
      16:41:37.0432 3956 CNG - ok
      16:41:37.0472 3956 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
      16:41:37.0482 3956 Compbatt - ok
      16:41:37.0532 3956 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
      16:41:37.0572 3956 CompositeBus - ok
      16:41:37.0612 3956 COMSysApp - ok
      16:41:37.0672 3956 cpuz135 - ok
      16:41:37.0722 3956 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
      16:41:37.0732 3956 crcdisk - ok
      16:41:37.0802 3956 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
      16:41:37.0842 3956 CryptSvc - ok
      16:41:37.0912 3956 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
      16:41:37.0962 3956 CSC - ok
      16:41:38.0052 3956 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
      16:41:38.0112 3956 CscService - ok
      16:41:38.0212 3956 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
      16:41:38.0282 3956 DcomLaunch - ok
      16:41:38.0332 3956 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
      16:41:38.0382 3956 defragsvc - ok
      16:41:38.0452 3956 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      16:41:38.0512 3956 DfsC - ok
      16:41:38.0582 3956 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
      16:41:38.0672 3956 Dhcp - ok
      16:41:38.0712 3956 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
      16:41:38.0742 3956 discache - ok
      16:41:38.0802 3956 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
      16:41:38.0822 3956 Disk - ok
      16:41:38.0912 3956 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
      16:41:38.0972 3956 Dnscache - ok
      16:41:39.0032 3956 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
      16:41:39.0112 3956 dot3svc - ok
      16:41:39.0172 3956 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
      16:41:39.0222 3956 DPS - ok
      16:41:39.0262 3956 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      16:41:39.0282 3956 drmkaud - ok
      16:41:39.0362 3956 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      16:41:39.0402 3956 DXGKrnl - ok
      16:41:39.0452 3956 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
      16:41:39.0512 3956 EapHost - ok
      16:41:39.0702 3956 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
      16:41:39.0822 3956 ebdrv - ok
      16:41:39.0882 3956 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
      16:41:39.0932 3956 EFS - ok
      16:41:40.0022 3956 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
      16:41:40.0082 3956 ehRecvr - ok
      16:41:40.0132 3956 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
      16:41:40.0142 3956 ehSched - ok
      16:41:40.0192 3956 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
      16:41:40.0222 3956 elxstor - ok
      16:41:40.0292 3956 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
      16:41:40.0312 3956 ErrDev - ok
      16:41:40.0402 3956 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
      16:41:40.0482 3956 EventSystem - ok
      16:41:40.0522 3956 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
      16:41:40.0562 3956 exfat - ok
      16:41:40.0582 3956 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
      16:41:40.0622 3956 fastfat - ok
      16:41:40.0682 3956 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
      16:41:40.0732 3956 Fax - ok
      16:41:40.0772 3956 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
      16:41:40.0792 3956 fdc - ok
      16:41:40.0842 3956 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
      16:41:40.0882 3956 fdPHost - ok
      16:41:40.0902 3956 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
      16:41:40.0932 3956 FDResPub - ok
      16:41:40.0962 3956 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      16:41:40.0972 3956 FileInfo - ok
      16:41:41.0002 3956 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      16:41:41.0042 3956 Filetrace - ok
      16:41:41.0072 3956 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
      16:41:41.0082 3956 flpydisk - ok
      16:41:41.0132 3956 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      16:41:41.0152 3956 FltMgr - ok
      16:41:41.0232 3956 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
      16:41:41.0312 3956 FontCache - ok
      16:41:41.0382 3956 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      16:41:41.0392 3956 FontCache3.0.0.0 - ok
      16:41:41.0452 3956 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
      16:41:41.0452 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\FsDepends.sys. md5: D43703496149971890703B4B1B723EAC
      16:41:41.0482 3956 FsDepends ( LockedFile.Multi.Generic ) - warning
      16:41:41.0482 3956 FsDepends - detected LockedFile.Multi.Generic (1)
      16:41:41.0522 3956 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      16:41:41.0522 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\Fs_Rec.sys. md5: 6BD9295CC032DD3077C671FCCF579A7B
      16:41:41.0552 3956 Fs_Rec ( LockedFile.Multi.Generic ) - warning
      16:41:41.0552 3956 Fs_Rec - detected LockedFile.Multi.Generic (1)
      16:41:41.0642 3956 [ B02A5B784B9F5E3F230C7463562B3D6B ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
      16:41:41.0662 3956 Futuremark SystemInfo Service - ok
      16:41:41.0742 3956 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
      16:41:41.0742 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\fvevol.sys. md5: 1F7B25B858FA27015169FE95E54108ED
      16:41:41.0752 3956 fvevol ( LockedFile.Multi.Generic ) - warning
      16:41:41.0752 3956 fvevol - detected LockedFile.Multi.Generic (1)
      16:41:41.0782 3956 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
      16:41:41.0782 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\gagp30kx.sys. md5: 8C778D335C9D272CFD3298AB02ABE3B6
      16:41:41.0812 3956 gagp30kx ( LockedFile.Multi.Generic ) - warning
      16:41:41.0812 3956 gagp30kx - detected LockedFile.Multi.Generic (1)
      16:41:41.0892 3956 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
      16:41:42.0002 3956 gpsvc - ok
      16:41:42.0092 3956 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      16:41:42.0112 3956 gupdate - ok
      16:41:42.0172 3956 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      16:41:42.0182 3956 gupdatem - ok
      16:41:42.0222 3956 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
      16:41:42.0222 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\hcw85cir.sys. md5: F2523EF6460FC42405B12248338AB2F0
      16:41:42.0242 3956 hcw85cir ( LockedFile.Multi.Generic ) - warning
      16:41:42.0242 3956 hcw85cir - detected LockedFile.Multi.Generic (1)
      16:41:42.0292 3956 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      16:41:42.0292 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\HdAudio.sys. md5: 975761C778E33CD22498059B91E7373A
      16:41:42.0322 3956 HdAudAddService ( LockedFile.Multi.Generic ) - warning
      16:41:42.0322 3956 HdAudAddService - detected LockedFile.Multi.Generic (1)
      16:41:42.0342 3956 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
      16:41:42.0342 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\HDAudBus.sys. md5: 97BFED39B6B79EB12CDDBFEED51F56BB
      16:41:42.0372 3956 HDAudBus ( LockedFile.Multi.Generic ) - warning
      16:41:42.0372 3956 HDAudBus - detected LockedFile.Multi.Generic (1)
      16:41:42.0412 3956 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
      16:41:42.0412 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\HidBatt.sys. md5: 78E86380454A7B10A5EB255DC44A355F
      16:41:42.0432 3956 HidBatt ( LockedFile.Multi.Generic ) - warning
      16:41:42.0432 3956 HidBatt - detected LockedFile.Multi.Generic (1)
      16:41:42.0472 3956 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
      16:41:42.0472 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\hidbth.sys. md5: 7FD2A313F7AFE5C4DAB14798C48DD104
      16:41:42.0502 3956 HidBth ( LockedFile.Multi.Generic ) - warning
      16:41:42.0502 3956 HidBth - detected LockedFile.Multi.Generic (1)
      16:41:42.0552 3956 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
      16:41:42.0552 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\hidir.sys. md5: 0A77D29F311B88CFAE3B13F9C1A73825
      16:41:42.0592 3956 HidIr ( LockedFile.Multi.Generic ) - warning
      16:41:42.0592 3956 HidIr - detected LockedFile.Multi.Generic (1)
      16:41:42.0632 3956 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
      16:41:42.0692 3956 hidserv - ok
      16:41:42.0742 3956 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
      16:41:42.0742 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\hidusb.sys. md5: 9592090A7E2B61CD582B612B6DF70536
      16:41:42.0762 3956 HidUsb ( LockedFile.Multi.Generic ) - warning
      16:41:42.0762 3956 HidUsb - detected LockedFile.Multi.Generic (1)
      16:41:42.0812 3956 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
      16:41:42.0882 3956 hkmsvc - ok
      16:41:42.0942 3956 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      16:41:42.0982 3956 HomeGroupListener - ok
      16:41:43.0042 3956 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      16:41:43.0072 3956 HomeGroupProvider - ok
      16:41:43.0132 3956 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
      16:41:43.0132 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\HpSAMD.sys. md5: 39D2ABCD392F3D8A6DCE7B60AE7B8EFC
      16:41:43.0162 3956 HpSAMD ( LockedFile.Multi.Generic ) - warning
      16:41:43.0162 3956 HpSAMD - detected LockedFile.Multi.Generic (1)
      16:41:43.0232 3956 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      16:41:43.0232 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\HTTP.sys. md5: 0EA7DE1ACB728DD5A369FD742D6EEE28
      16:41:43.0282 3956 HTTP ( LockedFile.Multi.Generic ) - warning
      16:41:43.0282 3956 HTTP - detected LockedFile.Multi.Generic (1)
      16:41:43.0322 3956 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
      16:41:43.0322 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\hwpolicy.sys. md5: A5462BD6884960C9DC85ED49D34FF392
      16:41:43.0352 3956 hwpolicy ( LockedFile.Multi.Generic ) - warning
      16:41:43.0352 3956 hwpolicy - detected LockedFile.Multi.Generic (1)
      16:41:43.0382 3956 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
      16:41:43.0382 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\i8042prt.sys. md5: FA55C73D4AFFA7EE23AC4BE53B4592D3
      16:41:43.0412 3956 i8042prt ( LockedFile.Multi.Generic ) - warning
      16:41:43.0412 3956 i8042prt - detected LockedFile.Multi.Generic (1)
      16:41:43.0462 3956 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
      16:41:43.0462 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\iaStorV.sys. md5: AAAF44DB3BD0B9D1FB6969B23ECC8366
      16:41:43.0492 3956 iaStorV ( LockedFile.Multi.Generic ) - warning
      16:41:43.0492 3956 iaStorV - detected LockedFile.Multi.Generic (1)
      16:41:43.0552 3956 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      16:41:43.0612 3956 idsvc - ok
      16:41:43.0672 3956 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
      16:41:43.0682 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\iirsp.sys. md5: 5C18831C61933628F5BB0EA2675B9D21
      16:41:43.0712 3956 iirsp ( LockedFile.Multi.Generic ) - warning
      16:41:43.0712 3956 iirsp - detected LockedFile.Multi.Generic (1)
      16:41:43.0792 3956 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
      16:41:43.0852 3956 IKEEXT - ok
      16:41:43.0912 3956 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
      16:41:43.0912 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\intelide.sys. md5: F00F20E70C6EC3AA366910083A0518AA
      16:41:43.0932 3956 intelide ( LockedFile.Multi.Generic ) - warning
      16:41:43.0932 3956 intelide - detected LockedFile.Multi.Generic (1)
      16:41:43.0972 3956 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
      16:41:43.0972 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\intelppm.sys. md5: ADA036632C664CAA754079041CF1F8C1
      16:41:43.0992 3956 intelppm ( LockedFile.Multi.Generic ) - warning
      16:41:43.0992 3956 intelppm - detected LockedFile.Multi.Generic (1)
      16:41:44.0042 3956 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      16:41:44.0072 3956 IPBusEnum - ok
      16:41:44.0122 3956 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      16:41:44.0122 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ipfltdrv.sys. md5: C9F0E1BD74365A8771590E9008D22AB6
      16:41:44.0142 3956 IpFilterDriver ( LockedFile.Multi.Generic ) - warning
      16:41:44.0142 3956 IpFilterDriver - detected LockedFile.Multi.Generic (1)
      16:41:44.0202 3956 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
      16:41:44.0282 3956 iphlpsvc - ok
      16:41:44.0342 3956 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
      16:41:44.0342 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\IPMIDrv.sys. md5: 0FC1AEA580957AA8817B8F305D18CA3A
      16:41:44.0352 3956 IPMIDRV ( LockedFile.Multi.Generic ) - warning
      16:41:44.0352 3956 IPMIDRV - detected LockedFile.Multi.Generic (1)
      16:41:44.0402 3956 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
      16:41:44.0402 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\ipnat.sys. md5: AF9B39A7E7B6CAA203B3862582E9F2D0
      16:41:44.0432 3956 IPNAT ( LockedFile.Multi.Generic ) - warning
      16:41:44.0432 3956 IPNAT - detected LockedFile.Multi.Generic (1)
      16:41:44.0452 3956 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
      16:41:44.0452 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\irenum.sys. md5: 3ABF5E7213EB28966D55D58B515D5CE9
      16:41:44.0472 3956 IRENUM ( LockedFile.Multi.Generic ) - warning
      16:41:44.0472 3956 IRENUM - detected LockedFile.Multi.Generic (1)
      16:41:44.0522 3956 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
      16:41:44.0522 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\isapnp.sys. md5: 2F7B28DC3E1183E5EB418DF55C204F38
      16:41:44.0552 3956 isapnp ( LockedFile.Multi.Generic ) - warning
      16:41:44.0552 3956 isapnp - detected LockedFile.Multi.Generic (1)
      16:41:44.0602 3956 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
      16:41:44.0602 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\msiscsi.sys. md5: D931D7309DEB2317035B07C9F9E6B0BD
      16:41:44.0742 3956 iScsiPrt ( LockedFile.Multi.Generic ) - warning
      16:41:44.0742 3956 iScsiPrt - detected LockedFile.Multi.Generic (1)
      16:41:44.0812 3956 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
      16:41:44.0812 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\kbdclass.sys. md5: BC02336F1CBA7DCC7D1213BB588A68A5
      16:41:44.0842 3956 kbdclass ( LockedFile.Multi.Generic ) - warning
      16:41:44.0842 3956 kbdclass - detected LockedFile.Multi.Generic (1)
      16:41:44.0912 3956 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
      16:41:44.0912 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\kbdhid.sys. md5: 0705EFF5B42A9DB58548EEC3B26BB484
      16:41:44.0932 3956 kbdhid ( LockedFile.Multi.Generic ) - warning
      16:41:44.0932 3956 kbdhid - detected LockedFile.Multi.Generic (1)
      16:41:44.0972 3956 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
      16:41:44.0992 3956 KeyIso - ok
      16:41:45.0032 3956 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      16:41:45.0032 3956 Suspicious file (NoAccess): C:\Windows\system32\Drivers\ksecdd.sys. md5: 97A7070AEA4C058B6418519E869A63B4
      16:41:45.0052 3956 KSecDD ( LockedFile.Multi.Generic ) - warning
      16:41:45.0052 3956 KSecDD - detected LockedFile.Multi.Generic (1)
      16:41:45.0102 3956 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
      16:41:45.0102 3956 Suspicious file (NoAccess): C:\Windows\system32\Drivers\ksecpkg.sys. md5: 26C43A7C2862447EC59DEDA188D1DA07
      16:41:45.0132 3956 KSecPkg ( LockedFile.Multi.Generic ) - warning
      16:41:45.0132 3956 KSecPkg - detected LockedFile.Multi.Generic (1)
      16:41:45.0172 3956 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
      16:41:45.0172 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\ksthunk.sys. md5: 6869281E78CB31A43E969F06B57347C4
      16:41:45.0182 3956 ksthunk ( LockedFile.Multi.Generic ) - warning
      16:41:45.0182 3956 ksthunk - detected LockedFile.Multi.Generic (1)
      16:41:45.0242 3956 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
      16:41:45.0332 3956 KtmRm - ok
      16:41:45.0392 3956 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
      16:41:45.0432 3956 LanmanServer - ok
      16:41:45.0502 3956 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      16:41:45.0572 3956 LanmanWorkstation - ok
      16:41:45.0622 3956 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      16:41:45.0622 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\lltdio.sys. md5: 1538831CF8AD2979A04C423779465827
      16:41:45.0642 3956 lltdio ( LockedFile.Multi.Generic ) - warning
      16:41:45.0642 3956 lltdio - detected LockedFile.Multi.Generic (1)
      16:41:45.0692 3956 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
      16:41:45.0782 3956 lltdsvc - ok
      16:41:45.0832 3956 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
      16:41:45.0862 3956 lmhosts - ok
      16:41:45.0912 3956 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
      16:41:45.0912 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\lsi_fc.sys. md5: 1A93E54EB0ECE102495A51266DCDB6A6
      16:41:45.0942 3956 LSI_FC ( LockedFile.Multi.Generic ) - warning
      16:41:45.0942 3956 LSI_FC - detected LockedFile.Multi.Generic (1)
      16:41:45.0972 3956 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
      16:41:45.0972 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\lsi_sas.sys. md5: 1047184A9FDC8BDBFF857175875EE810
      16:41:46.0012 3956 LSI_SAS ( LockedFile.Multi.Generic ) - warning
      16:41:46.0012 3956 LSI_SAS - detected LockedFile.Multi.Generic (1)
      16:41:46.0042 3956 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
      16:41:46.0042 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\lsi_sas2.sys. md5: 30F5C0DE1EE8B5BC9306C1F0E4A75F93
      16:41:46.0072 3956 LSI_SAS2 ( LockedFile.Multi.Generic ) - warning
      16:41:46.0072 3956 LSI_SAS2 - detected LockedFile.Multi.Generic (1)
      16:41:46.0122 3956 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
      16:41:46.0122 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\lsi_scsi.sys. md5: 0504EACAFF0D3C8AED161C4B0D369D4A
      16:41:46.0162 3956 LSI_SCSI ( LockedFile.Multi.Generic ) - warning
      16:41:46.0162 3956 LSI_SCSI - detected LockedFile.Multi.Generic (1)
      16:41:46.0192 3956 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
      16:41:46.0192 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\luafv.sys. md5: 43D0F98E1D56CCDDB0D5254CFF7B356E
      16:41:46.0222 3956 luafv ( LockedFile.Multi.Generic ) - warning
      16:41:46.0222 3956 luafv - detected LockedFile.Multi.Generic (1)
      16:41:46.0272 3956 [ ED49FD1373DE93617A1F6D128D98FE4D ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
      16:41:46.0302 3956 MBAMProtector - ok
      16:41:46.0382 3956 [ EC60491A5FF57700F10FE0403F7DCAD4 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
      16:41:46.0402 3956 MBAMService - ok
      16:41:46.0462 3956 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
      16:41:46.0492 3956 Mcx2Svc - ok
      16:41:46.0542 3956 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
      16:41:46.0542 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\megasas.sys. md5: A55805F747C6EDB6A9080D7C633BD0F4
      16:41:46.0592 3956 megasas ( LockedFile.Multi.Generic ) - warning
      16:41:46.0592 3956 megasas - detected LockedFile.Multi.Generic (1)
      16:41:46.0642 3956 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
      16:41:46.0642 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\MegaSR.sys. md5: BAF74CE0072480C3B6B7C13B2A94D6B3
      16:41:46.0682 3956 MegaSR ( LockedFile.Multi.Generic ) - warning
      16:41:46.0682 3956 MegaSR - detected LockedFile.Multi.Generic (1)
      16:41:46.0742 3956 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
      16:41:46.0822 3956 MMCSS - ok
      16:41:46.0872 3956 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
      16:41:46.0872 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\modem.sys. md5: 800BA92F7010378B09F9ED9270F07137
      16:41:46.0892 3956 Modem ( LockedFile.Multi.Generic ) - warning
      16:41:46.0892 3956 Modem - detected LockedFile.Multi.Generic (1)
      16:41:46.0922 3956 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      16:41:46.0922 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\monitor.sys. md5: B03D591DC7DA45ECE20B3B467E6AADAA
      16:41:46.0952 3956 monitor ( LockedFile.Multi.Generic ) - warning
      16:41:46.0952 3956 monitor - detected LockedFile.Multi.Generic (1)
      16:41:46.0992 3956 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
      16:41:46.0992 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\mouclass.sys. md5: 7D27EA49F3C1F687D357E77A470AEA99
      16:41:47.0012 3956 mouclass ( LockedFile.Multi.Generic ) - warning
      16:41:47.0012 3956 mouclass - detected LockedFile.Multi.Generic (1)
      16:41:47.0052 3956 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
      16:41:47.0052 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mouhid.sys. md5: D3BF052C40B0C4166D9FD86A4288C1E6
      16:41:47.0082 3956 mouhid ( LockedFile.Multi.Generic ) - warning
      16:41:47.0082 3956 mouhid - detected LockedFile.Multi.Generic (1)
      16:41:47.0132 3956 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
      16:41:47.0132 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\mountmgr.sys. md5: 32E7A3D591D671A6DF2DB515A5CBE0FA
      16:41:47.0162 3956 mountmgr ( LockedFile.Multi.Generic ) - warning
      16:41:47.0162 3956 mountmgr - detected LockedFile.Multi.Generic (1)
      16:41:47.0212 3956 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
      16:41:47.0232 3956 MozillaMaintenance - ok
      16:41:47.0272 3956 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
      16:41:47.0272 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\mpio.sys. md5: A44B420D30BD56E145D6A2BC8768EC58
      16:41:47.0292 3956 mpio ( LockedFile.Multi.Generic ) - warning
      16:41:47.0292 3956 mpio - detected LockedFile.Multi.Generic (1)
      16:41:47.0322 3956 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      16:41:47.0322 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\mpsdrv.sys. md5: 6C38C9E45AE0EA2FA5E551F2ED5E978F
      16:41:47.0342 3956 mpsdrv ( LockedFile.Multi.Generic ) - warning
      16:41:47.0342 3956 mpsdrv - detected LockedFile.Multi.Generic (1)
      16:41:47.0402 3956 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
      16:41:47.0492 3956 MpsSvc - ok
      16:41:47.0552 3956 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      16:41:47.0552 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\mrxdav.sys. md5: DC722758B8261E1ABAFD31A3C0A66380
      16:41:47.0572 3956 MRxDAV ( LockedFile.Multi.Generic ) - warning
      16:41:47.0572 3956 MRxDAV - detected LockedFile.Multi.Generic (1)
      16:41:47.0622 3956 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      16:41:47.0622 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mrxsmb.sys. md5: A5D9106A73DC88564C825D317CAC68AC
      16:41:47.0642 3956 mrxsmb ( LockedFile.Multi.Generic ) - warning
      16:41:47.0642 3956 mrxsmb - detected LockedFile.Multi.Generic (1)
      16:41:47.0682 3956 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      16:41:47.0682 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mrxsmb10.sys. md5: D711B3C1D5F42C0C2415687BE09FC163
      16:41:47.0702 3956 mrxsmb10 ( LockedFile.Multi.Generic ) - warning
      16:41:47.0702 3956 mrxsmb10 - detected LockedFile.Multi.Generic (1)
      16:41:47.0752 3956 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      16:41:47.0752 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mrxsmb20.sys. md5: 9423E9D355C8D303E76B8CFBD8A5C30C
      16:41:47.0762 3956 mrxsmb20 ( LockedFile.Multi.Generic ) - warning
      16:41:47.0762 3956 mrxsmb20 - detected LockedFile.Multi.Generic (1)
      16:41:47.0812 3956 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
      16:41:47.0812 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\msahci.sys. md5: C25F0BAFA182CBCA2DD3C851C2E75796
      16:41:47.0842 3956 msahci ( LockedFile.Multi.Generic ) - warning
      16:41:47.0842 3956 msahci - detected LockedFile.Multi.Generic (1)
      16:41:47.0892 3956 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
      16:41:47.0892 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\msdsm.sys. md5: DB801A638D011B9633829EB6F663C900
      16:41:47.0922 3956 msdsm ( LockedFile.Multi.Generic ) - warning
      16:41:47.0922 3956 msdsm - detected LockedFile.Multi.Generic (1)
      16:41:47.0962 3956 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
      16:41:48.0002 3956 MSDTC - ok
      16:41:48.0072 3956 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
      16:41:48.0072 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\Msfs.sys. md5: AA3FB40E17CE1388FA1BEDAB50EA8F96
      16:41:48.0092 3956 Msfs ( LockedFile.Multi.Generic ) - warning
      16:41:48.0092 3956 Msfs - detected LockedFile.Multi.Generic (1)
      16:41:48.0122 3956 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
      16:41:48.0122 3956 Suspicious file (NoAccess): C:\Windows\System32\drivers\mshidkmdf.sys. md5: F9D215A46A8B9753F61767FA72A20326
      16:41:48.0142 3956 mshidkmdf ( LockedFile.Multi.Generic ) - warning
      16:41:48.0142 3956 mshidkmdf - detected LockedFile.Multi.Generic (1)
      16:41:48.0182 3956 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
      16:41:48.0182 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\msisadrv.sys. md5: D916874BBD4F8B07BFB7FA9B3CCAE29D
      16:41:48.0202 3956 msisadrv ( LockedFile.Multi.Generic ) - warning
      16:41:48.0202 3956 msisadrv - detected LockedFile.Multi.Generic (1)
      16:41:48.0262 3956 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      16:41:48.0332 3956 MSiSCSI - ok
      16:41:48.0362 3956 msiserver - ok
      16:41:48.0402 3956 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      16:41:48.0402 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSKSSRV.sys. md5: 49CCF2C4FEA34FFAD8B1B59D49439366
      16:41:48.0412 3956 MSKSSRV ( LockedFile.Multi.Generic ) - warning
      16:41:48.0412 3956 MSKSSRV - detected LockedFile.Multi.Generic (1)
      16:41:48.0432 3956 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      16:41:48.0432 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSPCLOCK.sys. md5: BDD71ACE35A232104DDD349EE70E1AB3
      16:41:48.0452 3956 MSPCLOCK ( LockedFile.Multi.Generic ) - warning
      16:41:48.0452 3956 MSPCLOCK - detected LockedFile.Multi.Generic (1)
      16:41:48.0482 3956 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      16:41:48.0482 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSPQM.sys. md5: 4ED981241DB27C3383D72092B618A1D0
      16:41:48.0492 3956 MSPQM ( LockedFile.Multi.Generic ) - warning
      16:41:48.0492 3956 MSPQM - detected LockedFile.Multi.Generic (1)
      16:41:48.0552 3956 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      16:41:48.0552 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\MsRPC.sys. md5: 759A9EEB0FA9ED79DA1FB7D4EF78866D
      16:41:48.0562 3956 MsRPC ( LockedFile.Multi.Generic ) - warning
      16:41:48.0562 3956 MsRPC - detected LockedFile.Multi.Generic (1)
      16:41:48.0612 3956 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
      16:41:48.0612 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\mssmbios.sys. md5: 0EED230E37515A0EAEE3C2E1BC97B288
      16:41:48.0632 3956 mssmbios ( LockedFile.Multi.Generic ) - warning
      16:41:48.0632 3956 mssmbios - detected LockedFile.Multi.Generic (1)
      16:41:48.0672 3956 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      16:41:48.0672 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSTEE.sys. md5: 2E66F9ECB30B4221A318C92AC2250779
      16:41:48.0682 3956 MSTEE ( LockedFile.Multi.Generic ) - warning
      16:41:48.0692 3956 MSTEE - detected LockedFile.Multi.Generic (1)
      16:41:48.0712 3956 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
      16:41:48.0712 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\MTConfig.sys. md5: 7EA404308934E675BFFDE8EDF0757BCD
      16:41:48.0732 3956 MTConfig ( LockedFile.Multi.Generic ) - warning
      16:41:48.0732 3956 MTConfig - detected LockedFile.Multi.Generic (1)
      16:41:48.0782 3956 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
      16:41:48.0782 3956 Suspicious file (NoAccess): C:\Windows\system32\Drivers\mup.sys. md5: F9A18612FD3526FE473C1BDA678D61C8
      16:41:48.0812 3956 Mup ( LockedFile.Multi.Generic ) - warning
      16:41:48.0812 3956 Mup - detected LockedFile.Multi.Generic (1)
      16:41:48.0882 3956 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
      16:41:48.0962 3956 napagent - ok
      16:41:49.0032 3956 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      16:41:49.0032 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\nwifi.sys. md5: 1EA3749C4114DB3E3161156FFFFA6B33
      16:41:49.0082 3956 NativeWifiP ( LockedFile.Multi.Generic ) - warning
      16:41:49.0082 3956 NativeWifiP - detected LockedFile.Multi.Generic (1)
      16:41:49.0162 3956 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
      16:41:49.0162 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\ndis.sys. md5: 79B47FD40D9A817E932F9D26FAC0A81C
      16:41:49.0212 3956 NDIS ( LockedFile.Multi.Generic ) - warning
      16:41:49.0212 3956 NDIS - detected LockedFile.Multi.Generic (1)
      16:41:49.0242 3956 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
      16:41:49.0242 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndiscap.sys. md5: 9F9A1F53AAD7DA4D6FEF5BB73AB811AC
      16:41:49.0272 3956 NdisCap ( LockedFile.Multi.Generic ) - warning
      16:41:49.0272 3956 NdisCap - detected LockedFile.Multi.Generic (1)
      16:41:49.0302 3956 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      16:41:49.0302 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndistapi.sys. md5: 30639C932D9FEF22B31268FE25A1B6E5
      16:41:49.0332 3956 NdisTapi ( LockedFile.Multi.Generic ) - warning
      16:41:49.0332 3956 NdisTapi - detected LockedFile.Multi.Generic (1)
      16:41:49.0382 3956 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      16:41:49.0382 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndisuio.sys. md5: 136185F9FB2CC61E573E676AA5402356
      16:41:49.0412 3956 Ndisuio ( LockedFile.Multi.Generic ) - warning
      16:41:49.0412 3956 Ndisuio - detected LockedFile.Multi.Generic (1)
      16:41:49.0452 3956 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      16:41:49.0452 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndiswan.sys. md5: 53F7305169863F0A2BDDC49E116C2E11
      16:41:49.0472 3956 NdisWan ( LockedFile.Multi.Generic ) - warning
      16:41:49.0472 3956 NdisWan - detected LockedFile.Multi.Generic (1)
      16:41:49.0522 3956 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      16:41:49.0522 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\NDProxy.sys. md5: 015C0D8E0E0421B4CFD48CFFE2825879
      16:41:49.0542 3956 NDProxy ( LockedFile.Multi.Generic ) - warning
      16:41:49.0542 3956 NDProxy - detected LockedFile.Multi.Generic (1)
      16:41:49.0592 3956 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      16:41:49.0592 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\netbios.sys. md5: 86743D9F5D2B1048062B14B1D84501C4
      16:41:49.0612 3956 NetBIOS ( LockedFile.Multi.Generic ) - warning
      16:41:49.0612 3956 NetBIOS - detected LockedFile.Multi.Generic (1)
      16:41:49.0672 3956 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
      16:41:49.0672 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\netbt.sys. md5: 09594D1089C523423B32A4229263F068
      16:41:49.0702 3956 NetBT ( LockedFile.Multi.Generic ) - warning
      16:41:49.0702 3956 NetBT - detected LockedFile.Multi.Generic (1)
      16:41:49.0752 3956 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
      16:41:49.0772 3956 Netlogon - ok
      16:41:49.0882 3956 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
      16:41:49.0962 3956 Netman - ok
      16:41:50.0032 3956 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
      16:41:50.0092 3956 netprofm - ok
      16:41:50.0152 3956 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
      16:41:50.0162 3956 NetTcpPortSharing - ok
      16:41:50.0212 3956 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
      16:41:50.0212 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\nfrd960.sys. md5: 77889813BE4D166CDAB78DDBA990DA92
      16:41:50.0242 3956 nfrd960 ( LockedFile.Multi.Generic ) - warning
      16:41:50.0242 3956 nfrd960 - detected LockedFile.Multi.Generic (1)
      16:41:50.0302 3956 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
      16:41:50.0372 3956 NlaSvc - ok
      16:41:50.0422 3956 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
      16:41:50.0422 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\Npfs.sys. md5: 1E4C4AB5C9B8DD13179BBDC75A2A01F7
      16:41:50.0442 3956 Npfs ( LockedFile.Multi.Generic ) - warning
      16:41:50.0442 3956 Npfs - detected LockedFile.Multi.Generic (1)
      16:41:50.0482 3956 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
      16:41:50.0542 3956 nsi - ok
      16:41:50.0562 3956 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      16:41:50.0562 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\nsiproxy.sys. md5: E7F5AE18AF4168178A642A9247C63001
      16:41:50.0582 3956 nsiproxy ( LockedFile.Multi.Generic ) - warning
      16:41:50.0582 3956 nsiproxy - detected LockedFile.Multi.Generic (1)
      16:41:50.0662 3956 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      16:41:50.0662 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\Ntfs.sys. md5: A2F74975097F52A00745F9637451FDD8
      16:41:50.0702 3956 Ntfs ( LockedFile.Multi.Generic ) - warning
      16:41:50.0702 3956 Ntfs - detected LockedFile.Multi.Generic (1)
      16:41:50.0752 3956 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
      16:41:50.0752 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\Null.sys. md5: 9899284589F75FA8724FF3D16AED75C1
      16:41:50.0782 3956 Null ( LockedFile.Multi.Generic ) - warning
      16:41:50.0782 3956 Null - detected LockedFile.Multi.Generic (1)
      16:41:51.0112 3956 [ BA0B4889C40380A01ECDF84C227A89C9 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
      16:41:51.0112 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\nvlddmkm.sys. md5: BA0B4889C40380A01ECDF84C227A89C9
      16:41:51.0202 3956 nvlddmkm ( LockedFile.Multi.Generic ) - warning
      16:41:51.0202 3956 nvlddmkm - detected LockedFile.Multi.Generic (1)
      16:41:51.0232 3956 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
      16:41:51.0232 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\nvraid.sys. md5: 0A92CB65770442ED0DC44834632F66AD
      16:41:51.0262 3956 nvraid ( LockedFile.Multi.Generic ) - warning
      16:41:51.0262 3956 nvraid - detected LockedFile.Multi.Generic (1)
      16:41:51.0312 3956 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
      16:41:51.0312 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\nvstor.sys. md5: DAB0E87525C10052BF65F06152F37E4A
      16:41:51.0352 3956 nvstor ( LockedFile.Multi.Generic ) - warning
      16:41:51.0352 3956 nvstor - detected LockedFile.Multi.Generic (1)
      16:41:51.0412 3956 [ 06633CF95BEA62164C3BFCA24BCE6B11 ] nvsvc C:\Windows\system32\nvvsvc.exe
      16:41:51.0462 3956 nvsvc - ok
      16:41:51.0552 3956 [ 53B629CE436B110C5689C2F6439E567B ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
      16:41:51.0582 3956 nvUpdatusService - ok
      16:41:51.0642 3956 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
      16:41:51.0642 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\nv_agp.sys. md5: 270D7CD42D6E3979F6DD0146650F0E05
      16:41:51.0672 3956 nv_agp ( LockedFile.Multi.Generic ) - warning
      16:41:51.0672 3956 nv_agp - detected LockedFile.Multi.Generic (1)
      16:41:51.0722 3956 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
      16:41:51.0722 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\ohci1394.sys. md5: 3589478E4B22CE21B41FA1BFC0B8B8A0
      16:41:51.0742 3956 ohci1394 ( LockedFile.Multi.Generic ) - warning
      16:41:51.0742 3956 ohci1394 - detected LockedFile.Multi.Generic (1)
      16:41:51.0802 3956 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      16:41:51.0812 3956 ose - ok
      16:41:51.0882 3956 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
      16:41:51.0952 3956 p2pimsvc - ok
      16:41:52.0022 3956 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
      16:41:52.0072 3956 p2psvc - ok
      16:41:52.0112 3956 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
      16:41:52.0112 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\parport.sys. md5: 0086431C29C35BE1DBC43F52CC273887
      16:41:52.0132 3956 Parport ( LockedFile.Multi.Generic ) - warning
      16:41:52.0132 3956 Parport - detected LockedFile.Multi.Generic (1)
      16:41:52.0172 3956 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
      16:41:52.0182 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\partmgr.sys. md5: E9766131EEADE40A27DC27D2D68FBA9C
      16:41:52.0212 3956 partmgr ( LockedFile.Multi.Generic ) - warning
      16:41:52.0212 3956 partmgr - detected LockedFile.Multi.Generic (1)
      16:41:52.0252 3956 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
      16:41:52.0292 3956 PcaSvc - ok
      16:41:52.0332 3956 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
      16:41:52.0332 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\pci.sys. md5: 94575C0571D1462A0F70BDE6BD6EE6B3
      16:41:52.0362 3956 pci ( LockedFile.Multi.Generic ) - warning
      16:41:52.0362 3956 pci - detected LockedFile.Multi.Generic (1)
      16:41:52.0402 3956 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
      16:41:52.0402 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\pciide.sys. md5: B5B8B5EF2E5CB34DF8DCF8831E3534FA
      16:41:52.0412 3956 pciide ( LockedFile.Multi.Generic ) - warning
      16:41:52.0412 3956 pciide - detected LockedFile.Multi.Generic (1)
      16:41:52.0462 3956 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
      16:41:52.0462 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\pcmcia.sys. md5: B2E81D4E87CE48589F98CB8C05B01F2F
      16:41:52.0482 3956 pcmcia ( LockedFile.Multi.Generic ) - warning
      16:41:52.0482 3956 pcmcia - detected LockedFile.Multi.Generic (1)
      16:41:52.0512 3956 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
      16:41:52.0512 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\pcw.sys. md5: D6B9C2E1A11A3A4B26A182FFEF18F603
      16:41:52.0532 3956 pcw ( LockedFile.Multi.Generic ) - warning
      16:41:52.0532 3956 pcw - detected LockedFile.Multi.Generic (1)
      16:41:52.0582 3956 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      16:41:52.0582 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\peauth.sys. md5: 68769C3356B3BE5D1C732C97B9A80D6E
      16:41:52.0602 3956 PEAUTH ( LockedFile.Multi.Generic ) - warning
      16:41:52.0602 3956 PEAUTH - detected LockedFile.Multi.Generic (1)
      16:41:52.0662 3956 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
      16:41:52.0722 3956 PeerDistSvc - ok
      16:41:52.0832 3956 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
      16:41:52.0872 3956 PerfHost - ok
      16:41:53.0012 3956 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
      16:41:53.0092 3956 pla - ok
      16:41:53.0162 3956 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      16:41:53.0202 3956 PlugPlay - ok
      16:41:53.0242 3956 PnkBstrA - ok
      16:41:53.0292 3956 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
      16:41:53.0332 3956 PNRPAutoReg - ok
      16:41:53.0382 3956 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
      16:41:53.0412 3956 PNRPsvc - ok
      16:41:53.0462 3956 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      16:41:53.0522 3956 PolicyAgent - ok
      16:41:53.0582 3956 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
      16:41:53.0632 3956 Power - ok
      16:41:53.0692 3956 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      16:41:53.0692 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\raspptp.sys. md5: F92A2C41117A11A00BE01CA01A7FCDE9
      16:41:53.0712 3956 PptpMiniport ( LockedFile.Multi.Generic ) - warning
      16:41:53.0712 3956 PptpMiniport - detected LockedFile.Multi.Generic (1)
      16:41:53.0752 3956 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
      16:41:53.0752 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\processr.sys. md5: 0D922E23C041EFB1C3FAC2A6F943C9BF
      16:41:53.0782 3956 Processor ( LockedFile.Multi.Generic ) - warning
      16:41:53.0782 3956 Processor - detected LockedFile.Multi.Generic (1)
      16:41:53.0822 3956 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
      16:41:53.0872 3956 ProfSvc - ok
      16:41:53.0912 3956 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
      16:41:53.0932 3956 ProtectedStorage - ok
      16:41:53.0982 3956 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
      16:41:53.0982 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\pacer.sys. md5: 0557CF5A2556BD58E26384169D72438D
      16:41:54.0012 3956 Psched ( LockedFile.Multi.Generic ) - warning
      16:41:54.0012 3956 Psched - detected LockedFile.Multi.Generic (1)
      16:41:54.0082 3956 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300

    5. #5
      Usuario Avatar de Luchimodd
      Registrado
      may 2010
      Ubicación
      Melo
      Mensajes
      27

      Re: Problema con Avast! 5.0 actualizado a 7.0

      Aquí la continuación del primer log:

      C:\Windows\system32\DRIVERS\ql2300.sys
      16:41:54.0082 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ql2300.sys. md5: A53A15A11EBFD21077463EE2C7AFEEF0
      16:41:54.0112 3956 ql2300 ( LockedFile.Multi.Generic ) - warning
      16:41:54.0112 3956 ql2300 - detected LockedFile.Multi.Generic (1)
      16:41:54.0142 3956 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
      16:41:54.0142 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ql40xx.sys. md5: 4F6D12B51DE1AAEFF7DC58C4D75423C8
      16:41:54.0172 3956 ql40xx ( LockedFile.Multi.Generic ) - warning
      16:41:54.0172 3956 ql40xx - detected LockedFile.Multi.Generic (1)
      16:41:54.0222 3956 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
      16:41:54.0262 3956 QWAVE - ok
      16:41:54.0282 3956 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      16:41:54.0292 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\qwavedrv.sys. md5: 76707BB36430888D9CE9D705398ADB6C
      16:41:54.0302 3956 QWAVEdrv ( LockedFile.Multi.Generic ) - warning
      16:41:54.0302 3956 QWAVEdrv - detected LockedFile.Multi.Generic (1)
      16:41:54.0342 3956 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      16:41:54.0342 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rasacd.sys. md5: 5A0DA8AD5762FA2D91678A8A01311704
      16:41:54.0362 3956 RasAcd ( LockedFile.Multi.Generic ) - warning
      16:41:54.0362 3956 RasAcd - detected LockedFile.Multi.Generic (1)
      16:41:54.0402 3956 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
      16:41:54.0402 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\AgileVpn.sys. md5: 7ECFF9B22276B73F43A99A15A6094E90
      16:41:54.0432 3956 RasAgileVpn ( LockedFile.Multi.Generic ) - warning
      16:41:54.0432 3956 RasAgileVpn - detected LockedFile.Multi.Generic (1)
      16:41:54.0472 3956 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
      16:41:54.0532 3956 RasAuto - ok
      16:41:54.0592 3956 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      16:41:54.0592 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rasl2tp.sys. md5: 471815800AE33E6F1C32FB1B97C490CA
      16:41:54.0612 3956 Rasl2tp ( LockedFile.Multi.Generic ) - warning
      16:41:54.0612 3956 Rasl2tp - detected LockedFile.Multi.Generic (1)
      16:41:54.0662 3956 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
      16:41:54.0742 3956 RasMan - ok
      16:41:54.0792 3956 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      16:41:54.0792 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\raspppoe.sys. md5: 855C9B1CD4756C5E9A2AA58A15F58C25
      16:41:54.0822 3956 RasPppoe ( LockedFile.Multi.Generic ) - warning
      16:41:54.0822 3956 RasPppoe - detected LockedFile.Multi.Generic (1)
      16:41:54.0852 3956 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      16:41:54.0862 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rassstp.sys. md5: E8B1E447B008D07FF47D016C2B0EEECB
      16:41:54.0882 3956 RasSstp ( LockedFile.Multi.Generic ) - warning
      16:41:54.0882 3956 RasSstp - detected LockedFile.Multi.Generic (1)
      16:41:54.0942 3956 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      16:41:54.0942 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rdbss.sys. md5: 77F665941019A1594D887A74F301FA2F
      16:41:54.0962 3956 rdbss ( LockedFile.Multi.Generic ) - warning
      16:41:54.0962 3956 rdbss - detected LockedFile.Multi.Generic (1)
      16:41:55.0022 3956 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
      16:41:55.0022 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rdpbus.sys. md5: 302DA2A0539F2CF54D7C6CC30C1F2D8D
      16:41:55.0202 3956 rdpbus ( LockedFile.Multi.Generic ) - warning
      16:41:55.0202 3956 rdpbus - detected LockedFile.Multi.Generic (1)
      16:41:55.0262 3956 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      16:41:55.0262 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\RDPCDD.sys. md5: CEA6CC257FC9B7715F1C2B4849286D24
      16:41:55.0282 3956 RDPCDD ( LockedFile.Multi.Generic ) - warning
      16:41:55.0282 3956 RDPCDD - detected LockedFile.Multi.Generic (1)
      16:41:55.0342 3956 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
      16:41:55.0342 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdpdr.sys. md5: 1B6163C503398B23FF8B939C67747683
      16:41:55.0352 3956 RDPDR ( LockedFile.Multi.Generic ) - warning
      16:41:55.0352 3956 RDPDR - detected LockedFile.Multi.Generic (1)
      16:41:55.0382 3956 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      16:41:55.0382 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdpencdd.sys. md5: BB5971A4F00659529A5C44831AF22365
      16:41:55.0392 3956 RDPENCDD ( LockedFile.Multi.Generic ) - warning
      16:41:55.0392 3956 RDPENCDD - detected LockedFile.Multi.Generic (1)
      16:41:55.0442 3956 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
      16:41:55.0442 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdprefmp.sys. md5: 216F3FA57533D98E1F74DED70113177A
      16:41:55.0462 3956 RDPREFMP ( LockedFile.Multi.Generic ) - warning
      16:41:55.0462 3956 RDPREFMP - detected LockedFile.Multi.Generic (1)
      16:41:55.0532 3956 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
      16:41:55.0532 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdpvideominiport.sys. md5: 70CBA1A0C98600A2AA1863479B35CB90
      16:41:55.0572 3956 RdpVideoMiniport ( LockedFile.Multi.Generic ) - warning
      16:41:55.0572 3956 RdpVideoMiniport - detected LockedFile.Multi.Generic (1)
      16:41:55.0612 3956 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      16:41:55.0612 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\RDPWD.sys. md5: E61608AA35E98999AF9AAEEEA6114B0A
      16:41:55.0632 3956 RDPWD ( LockedFile.Multi.Generic ) - warning
      16:41:55.0632 3956 RDPWD - detected LockedFile.Multi.Generic (1)
      16:41:55.0692 3956 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
      16:41:55.0692 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdyboost.sys. md5: 34ED295FA0121C241BFEF24764FC4520
      16:41:55.0732 3956 rdyboost ( LockedFile.Multi.Generic ) - warning
      16:41:55.0732 3956 rdyboost - detected LockedFile.Multi.Generic (1)
      16:41:55.0782 3956 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
      16:41:55.0832 3956 RemoteAccess - ok
      16:41:55.0902 3956 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      16:41:55.0962 3956 RemoteRegistry - ok
      16:41:56.0032 3956 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
      16:41:56.0092 3956 RpcEptMapper - ok
      16:41:56.0142 3956 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
      16:41:56.0172 3956 RpcLocator - ok
      16:41:56.0212 3956 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
      16:41:56.0252 3956 RpcSs - ok
      16:41:56.0292 3956 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      16:41:56.0292 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rspndr.sys. md5: DDC86E4F8E7456261E637E3552E804FF
      16:41:56.0342 3956 rspndr ( LockedFile.Multi.Generic ) - warning
      16:41:56.0342 3956 rspndr - detected LockedFile.Multi.Generic (1)
      16:41:56.0382 3956 [ D5E76D125D624F8025D534F49E3C4162 ] RTCore64 C:\Program Files (x86)\EVGA Precision\RTCore64.sys
      16:41:56.0382 3956 Suspicious file (NoAccess): C:\Program Files (x86)\EVGA Precision\RTCore64.sys. md5: D5E76D125D624F8025D534F49E3C4162
      16:41:56.0422 3956 RTCore64 ( LockedFile.Multi.Generic ) - warning
      16:41:56.0422 3956 RTCore64 - detected LockedFile.Multi.Generic (1)
      16:41:56.0472 3956 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
      16:41:56.0472 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\Rt64win7.sys. md5: EE082E06A82FF630351D1E0EBBD3D8D0
      16:41:56.0502 3956 RTL8167 ( LockedFile.Multi.Generic ) - warning
      16:41:56.0502 3956 RTL8167 - detected LockedFile.Multi.Generic (1)
      16:41:56.0542 3956 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
      16:41:56.0542 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\vms3cap.sys. md5: E60C0A09F997826C7627B244195AB581
      16:41:56.0552 3956 s3cap ( LockedFile.Multi.Generic ) - warning
      16:41:56.0552 3956 s3cap - detected LockedFile.Multi.Generic (1)
      16:41:56.0582 3956 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
      16:41:56.0592 3956 SamSs - ok
      16:41:56.0642 3956 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
      16:41:56.0642 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\sbp2port.sys. md5: AC03AF3329579FFFB455AA2DAABBE22B
      16:41:56.0672 3956 sbp2port ( LockedFile.Multi.Generic ) - warning
      16:41:56.0672 3956 sbp2port - detected LockedFile.Multi.Generic (1)
      16:41:56.0732 3956 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
      16:41:56.0822 3956 SCardSvr - ok
      16:41:56.0872 3956 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
      16:41:56.0872 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\scfilter.sys. md5: 253F38D0D7074C02FF8DEB9836C97D2B
      16:41:56.0902 3956 scfilter ( LockedFile.Multi.Generic ) - warning
      16:41:56.0902 3956 scfilter - detected LockedFile.Multi.Generic (1)
      16:41:56.0992 3956 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
      16:41:57.0102 3956 Schedule - ok
      16:41:57.0152 3956 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
      16:41:57.0192 3956 SCPolicySvc - ok
      16:41:57.0242 3956 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      16:41:57.0272 3956 SDRSVC - ok
      16:41:57.0322 3956 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      16:41:57.0322 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\secdrv.sys. md5: 3EA8A16169C26AFBEB544E0E48421186
      16:41:57.0352 3956 secdrv ( LockedFile.Multi.Generic ) - warning
      16:41:57.0352 3956 secdrv - detected LockedFile.Multi.Generic (1)
      16:41:57.0402 3956 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
      16:41:57.0452 3956 seclogon - ok
      16:41:57.0492 3956 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
      16:41:57.0532 3956 SENS - ok
      16:41:57.0562 3956 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
      16:41:57.0582 3956 SensrSvc - ok
      16:41:57.0632 3956 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
      16:41:57.0632 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\serenum.sys. md5: CB624C0035412AF0DEBEC78C41F5CA1B
      16:41:57.0642 3956 Serenum ( LockedFile.Multi.Generic ) - warning
      16:41:57.0642 3956 Serenum - detected LockedFile.Multi.Generic (1)
      16:41:57.0682 3956 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
      16:41:57.0682 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\serial.sys. md5: C1D8E28B2C2ADFAEC4BA89E9FDA69BD6
      16:41:57.0702 3956 Serial ( LockedFile.Multi.Generic ) - warning
      16:41:57.0702 3956 Serial - detected LockedFile.Multi.Generic (1)
      16:41:57.0752 3956 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
      16:41:57.0752 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\sermouse.sys. md5: 1C545A7D0691CC4A027396535691C3E3
      16:41:57.0782 3956 sermouse ( LockedFile.Multi.Generic ) - warning
      16:41:57.0782 3956 sermouse - detected LockedFile.Multi.Generic (1)
      16:41:57.0862 3956 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
      16:41:57.0922 3956 SessionEnv - ok
      16:41:57.0972 3956 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
      16:41:57.0972 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\sffdisk.sys. md5: A554811BCD09279536440C964AE35BBF
      16:41:57.0992 3956 sffdisk ( LockedFile.Multi.Generic ) - warning
      16:41:57.0992 3956 sffdisk - detected LockedFile.Multi.Generic (1)
      16:41:58.0002 3956 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
      16:41:58.0002 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\sffp_mmc.sys. md5: FF414F0BAEFEBA59BC6C04B3DB0B87BF
      16:41:58.0012 3956 sffp_mmc ( LockedFile.Multi.Generic ) - warning
      16:41:58.0012 3956 sffp_mmc - detected LockedFile.Multi.Generic (1)
      16:41:58.0022 3956 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
      16:41:58.0022 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\sffp_sd.sys. md5: DD85B78243A19B59F0637DCF284DA63C
      16:41:58.0032 3956 sffp_sd ( LockedFile.Multi.Generic ) - warning
      16:41:58.0032 3956 sffp_sd - detected LockedFile.Multi.Generic (1)
      16:41:58.0072 3956 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
      16:41:58.0072 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\sfloppy.sys. md5: A9D601643A1647211A1EE2EC4E433FF4
      16:41:58.0082 3956 sfloppy ( LockedFile.Multi.Generic ) - warning
      16:41:58.0082 3956 sfloppy - detected LockedFile.Multi.Generic (1)
      16:41:58.0142 3956 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
      16:41:58.0222 3956 SharedAccess - ok
      16:41:58.0282 3956 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      16:41:58.0332 3956 ShellHWDetection - ok
      16:41:58.0362 3956 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
      16:41:58.0362 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\SiSRaid2.sys. md5: 843CAF1E5FDE1FFD5FF768F23A51E2E1
      16:41:58.0392 3956 SiSRaid2 ( LockedFile.Multi.Generic ) - warning
      16:41:58.0392 3956 SiSRaid2 - detected LockedFile.Multi.Generic (1)
      16:41:58.0432 3956 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
      16:41:58.0432 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\sisraid4.sys. md5: 6A6C106D42E9FFFF8B9FCB4F754F6DA4
      16:41:58.0472 3956 SiSRaid4 ( LockedFile.Multi.Generic ) - warning
      16:41:58.0472 3956 SiSRaid4 - detected LockedFile.Multi.Generic (1)
      16:41:58.0502 3956 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
      16:41:58.0502 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\smb.sys. md5: 548260A7B8654E024DC30BF8A7C5BAA4
      16:41:58.0542 3956 Smb ( LockedFile.Multi.Generic ) - warning
      16:41:58.0542 3956 Smb - detected LockedFile.Multi.Generic (1)
      16:41:58.0592 3956 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      16:41:58.0612 3956 SNMPTRAP - ok
      16:41:58.0672 3956 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
      16:41:58.0672 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\spldr.sys. md5: B9E31E5CACDFE584F34F730A677803F9
      16:41:58.0702 3956 spldr ( LockedFile.Multi.Generic ) - warning
      16:41:58.0702 3956 spldr - detected LockedFile.Multi.Generic (1)
      16:41:58.0772 3956 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
      16:41:58.0832 3956 Spooler - ok
      16:41:58.0962 3956 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
      16:41:59.0102 3956 sppsvc - ok
      16:41:59.0172 3956 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
      16:41:59.0222 3956 sppuinotify - ok
      16:41:59.0302 3956 [ A15860E920B02C9A7CE8F3A6C2FF1E3A ] sptd C:\Windows\System32\Drivers\sptd.sys
      16:41:59.0302 3956 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: A15860E920B02C9A7CE8F3A6C2FF1E3A
      16:41:59.0332 3956 sptd ( LockedFile.Multi.Generic ) - warning
      16:41:59.0332 3956 sptd - detected LockedFile.Multi.Generic (1)
      16:41:59.0382 3956 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
      16:41:59.0382 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\srv.sys. md5: 441FBA48BFF01FDB9D5969EBC1838F0B
      16:41:59.0402 3956 srv ( LockedFile.Multi.Generic ) - warning
      16:41:59.0402 3956 srv - detected LockedFile.Multi.Generic (1)
      16:41:59.0432 3956 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      16:41:59.0432 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\srv2.sys. md5: B4ADEBBF5E3677CCE9651E0F01F7CC28
      16:41:59.0452 3956 srv2 ( LockedFile.Multi.Generic ) - warning
      16:41:59.0452 3956 srv2 - detected LockedFile.Multi.Generic (1)
      16:41:59.0502 3956 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      16:41:59.0502 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\srvnet.sys. md5: 27E461F0BE5BFF5FC737328F749538C3
      16:41:59.0532 3956 srvnet ( LockedFile.Multi.Generic ) - warning
      16:41:59.0532 3956 srvnet - detected LockedFile.Multi.Generic (1)
      16:41:59.0582 3956 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      16:41:59.0662 3956 SSDPSRV - ok
      16:41:59.0722 3956 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
      16:41:59.0772 3956 SstpSvc - ok
      16:41:59.0822 3956 Steam Client Service - ok
      16:41:59.0932 3956 [ C354621B6B94E10AE7F5CDBE745FEB86 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
      16:41:59.0962 3956 Stereo Service - ok
      16:42:00.0022 3956 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
      16:42:00.0022 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\stexstor.sys. md5: F3817967ED533D08327DC73BC4D5542A
      16:42:00.0042 3956 stexstor ( LockedFile.Multi.Generic ) - warning
      16:42:00.0042 3956 stexstor - detected LockedFile.Multi.Generic (1)
      16:42:00.0102 3956 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
      16:42:00.0182 3956 stisvc - ok
      16:42:00.0282 3956 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
      16:42:00.0282 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\vmstorfl.sys. md5: 7785DC213270D2FC066538DAF94087E7
      16:42:00.0292 3956 storflt ( LockedFile.Multi.Generic ) - warning
      16:42:00.0292 3956 storflt - detected LockedFile.Multi.Generic (1)
      16:42:00.0342 3956 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
      16:42:00.0342 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\storvsc.sys. md5: D34E4943D5AC096C8EDEEBFD80D76E23
      16:42:00.0362 3956 storvsc ( LockedFile.Multi.Generic ) - warning
      16:42:00.0362 3956 storvsc - detected LockedFile.Multi.Generic (1)
      16:42:00.0422 3956 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
      16:42:00.0422 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\swenum.sys. md5: D01EC09B6711A5F8E7E6564A4D0FBC90
      16:42:00.0452 3956 swenum ( LockedFile.Multi.Generic ) - warning
      16:42:00.0452 3956 swenum - detected LockedFile.Multi.Generic (1)
      16:42:00.0502 3956 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
      16:42:00.0572 3956 swprv - ok
      16:42:00.0612 3956 Synth3dVsc - ok
      16:42:00.0702 3956 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
      16:42:00.0792 3956 SysMain - ok
      16:42:00.0872 3956 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
      16:42:00.0912 3956 TabletInputService - ok
      16:42:00.0972 3956 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
      16:42:01.0052 3956 TapiSrv - ok
      16:42:01.0112 3956 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
      16:42:01.0142 3956 TBS - ok
      16:42:01.0252 3956 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      16:42:01.0252 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\tcpip.sys. md5: ACB82BDA8F46C84F465C1AFA517DC4B9
      16:42:01.0292 3956 Tcpip ( LockedFile.Multi.Generic ) - warning
      16:42:01.0292 3956 Tcpip - detected LockedFile.Multi.Generic (1)
      16:42:01.0362 3956 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
      16:42:01.0362 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tcpip.sys. md5: ACB82BDA8F46C84F465C1AFA517DC4B9
      16:42:01.0402 3956 TCPIP6 ( LockedFile.Multi.Generic ) - warning
      16:42:01.0402 3956 TCPIP6 - detected LockedFile.Multi.Generic (1)
      16:42:01.0452 3956 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      16:42:01.0452 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\tcpipreg.sys. md5: DF687E3D8836BFB04FCC0615BF15A519
      16:42:01.0472 3956 tcpipreg ( LockedFile.Multi.Generic ) - warning
      16:42:01.0472 3956 tcpipreg - detected LockedFile.Multi.Generic (1)
      16:42:01.0522 3956 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      16:42:01.0522 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\tdpipe.sys. md5: 3371D21011695B16333A3934340C4E7C
      16:42:01.0552 3956 TDPIPE ( LockedFile.Multi.Generic ) - warning
      16:42:01.0552 3956 TDPIPE - detected LockedFile.Multi.Generic (1)
      16:42:01.0582 3956 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      16:42:01.0582 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\tdtcp.sys. md5: 51C5ECEB1CDEE2468A1748BE550CFBC8
      16:42:01.0602 3956 TDTCP ( LockedFile.Multi.Generic ) - warning
      16:42:01.0602 3956 TDTCP - detected LockedFile.Multi.Generic (1)
      16:42:01.0652 3956 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      16:42:01.0652 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tdx.sys. md5: DDAD5A7AB24D8B65F8D724F5C20FD806
      16:42:01.0672 3956 tdx ( LockedFile.Multi.Generic ) - warning
      16:42:01.0672 3956 tdx - detected LockedFile.Multi.Generic (1)
      16:42:01.0722 3956 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
      16:42:01.0722 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\termdd.sys. md5: 561E7E1F06895D78DE991E01DD0FB6E5
      16:42:01.0752 3956 TermDD ( LockedFile.Multi.Generic ) - warning
      16:42:01.0752 3956 TermDD - detected LockedFile.Multi.Generic (1)
      16:42:01.0822 3956 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
      16:42:01.0912 3956 TermService - ok
      16:42:01.0982 3956 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
      16:42:02.0012 3956 Themes - ok
      16:42:02.0042 3956 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
      16:42:02.0062 3956 THREADORDER - ok
      16:42:02.0112 3956 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
      16:42:02.0152 3956 TrkWks - ok
      16:42:02.0232 3956 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      16:42:02.0312 3956 TrustedInstaller - ok
      16:42:02.0362 3956 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      16:42:02.0362 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tssecsrv.sys. md5: CE18B2CDFC837C99E5FAE9CA6CBA5D30
      16:42:02.0382 3956 tssecsrv ( LockedFile.Multi.Generic ) - warning
      16:42:02.0382 3956 tssecsrv - detected LockedFile.Multi.Generic (1)
      16:42:02.0432 3956 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
      16:42:02.0432 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\tsusbflt.sys. md5: D11C783E3EF9A3C52C0EBE83CC5000E9
      16:42:02.0472 3956 TsUsbFlt ( LockedFile.Multi.Generic ) - warning
      16:42:02.0472 3956 TsUsbFlt - detected LockedFile.Multi.Generic (1)
      16:42:02.0492 3956 tsusbhub - ok
      16:42:02.0532 3956 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      16:42:02.0532 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tunnel.sys. md5: 3566A8DAAFA27AF944F5D705EAA64894
      16:42:02.0572 3956 tunnel ( LockedFile.Multi.Generic ) - warning
      16:42:02.0572 3956 tunnel - detected LockedFile.Multi.Generic (1)
      16:42:02.0612 3956 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
      16:42:02.0612 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\uagp35.sys. md5: B4DD609BD7E282BFC683CEC7EAAAAD67
      16:42:02.0642 3956 uagp35 ( LockedFile.Multi.Generic ) - warning
      16:42:02.0642 3956 uagp35 - detected LockedFile.Multi.Generic (1)
      16:42:02.0692 3956 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      16:42:02.0692 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\udfs.sys. md5: FF4232A1A64012BAA1FD97C7B67DF593
      16:42:02.0722 3956 udfs ( LockedFile.Multi.Generic ) - warning
      16:42:02.0722 3956 udfs - detected LockedFile.Multi.Generic (1)
      16:42:02.0772 3956 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
      16:42:02.0812 3956 UI0Detect - ok
      16:42:02.0842 3956 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
      16:42:02.0842 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\uliagpkx.sys. md5: 4BFE1BC28391222894CBF1E7D0E42320
      16:42:02.0862 3956 uliagpkx ( LockedFile.Multi.Generic ) - warning
      16:42:02.0862 3956 uliagpkx - detected LockedFile.Multi.Generic (1)
      16:42:02.0892 3956 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
      16:42:02.0892 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\umbus.sys. md5: DC54A574663A895C8763AF0FA1FF7561
      16:42:02.0912 3956 umbus ( LockedFile.Multi.Generic ) - warning
      16:42:02.0912 3956 umbus - detected LockedFile.Multi.Generic (1)
      16:42:02.0962 3956 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
      16:42:02.0962 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\umpass.sys. md5: B2E8E8CB557B156DA5493BBDDCC1474D
      16:42:02.0992 3956 UmPass ( LockedFile.Multi.Generic ) - warning
      16:42:02.0992 3956 UmPass - detected LockedFile.Multi.Generic (1)
      16:42:03.0042 3956 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
      16:42:03.0082 3956 UmRdpService - ok
      16:42:03.0142 3956 [ B2AF2BA8A3205A8458B61F638FB431DD ] UnlockerDriver5 C:\Program Files (x86)\Unlocker\UnlockerDriver5.sys
      16:42:03.0162 3956 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - warning
      16:42:03.0162 3956 UnlockerDriver5 - detected UnsignedFile.Multi.Generic (1)
      16:42:03.0232 3956 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
      16:42:03.0302 3956 upnphost - ok
      16:42:03.0362 3956 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
      16:42:03.0362 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbccgp.sys. md5: 6F1A3157A1C89435352CEB543CDB359C
      16:42:03.0382 3956 usbccgp ( LockedFile.Multi.Generic ) - warning
      16:42:03.0382 3956 usbccgp - detected LockedFile.Multi.Generic (1)
      16:42:03.0442 3956 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
      16:42:03.0442 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbcir.sys. md5: AF0892A803FDDA7492F595368E3B68E7
      16:42:03.0472 3956 usbcir ( LockedFile.Multi.Generic ) - warning
      16:42:03.0472 3956 usbcir - detected LockedFile.Multi.Generic (1)
      16:42:03.0532 3956 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
      16:42:03.0532 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbehci.sys. md5: C025055FE7B87701EB042095DF1A2D7B
      16:42:03.0542 3956 usbehci ( LockedFile.Multi.Generic ) - warning
      16:42:03.0542 3956 usbehci - detected LockedFile.Multi.Generic (1)
      16:42:03.0582 3956 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      16:42:03.0582 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbhub.sys. md5: 287C6C9410B111B68B52CA298F7B8C24
      16:42:03.0622 3956 usbhub ( LockedFile.Multi.Generic ) - warning
      16:42:03.0622 3956 usbhub - detected LockedFile.Multi.Generic (1)
      16:42:03.0672 3956 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
      16:42:03.0672 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbohci.sys. md5: 9840FC418B4CBD632D3D0A667A725C31
      16:42:03.0702 3956 usbohci ( LockedFile.Multi.Generic ) - warning
      16:42:03.0702 3956 usbohci - detected LockedFile.Multi.Generic (1)
      16:42:03.0742 3956 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
      16:42:03.0742 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbprint.sys. md5: 73188F58FB384E75C4063D29413CEE3D
      16:42:03.0762 3956 usbprint ( LockedFile.Multi.Generic ) - warning
      16:42:03.0762 3956 usbprint - detected LockedFile.Multi.Generic (1)
      16:42:03.0792 3956 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      16:42:03.0792 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\USBSTOR.SYS. md5: FED648B01349A3C8395A5169DB5FB7D6
      16:42:03.0822 3956 USBSTOR ( LockedFile.Multi.Generic ) - warning
      16:42:03.0822 3956 USBSTOR - detected LockedFile.Multi.Generic (1)
      16:42:03.0872 3956 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
      16:42:03.0872 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbuhci.sys. md5: 62069A34518BCF9C1FD9E74B3F6DB7CD
      16:42:03.0892 3956 usbuhci ( LockedFile.Multi.Generic ) - warning
      16:42:03.0892 3956 usbuhci - detected LockedFile.Multi.Generic (1)
      16:42:03.0942 3956 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
      16:42:04.0022 3956 UxSms - ok
      16:42:04.0052 3956 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
      16:42:04.0062 3956 VaultSvc - ok
      16:42:04.0102 3956 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
      16:42:04.0102 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\vdrvroot.sys. md5: C5C876CCFC083FF3B128F933823E87BD
      16:42:04.0122 3956 vdrvroot ( LockedFile.Multi.Generic ) - warning
      16:42:04.0122 3956 vdrvroot - detected LockedFile.Multi.Generic (1)
      16:42:04.0192 3956 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
      16:42:04.0262 3956 vds - ok
      16:42:04.0322 3956 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      16:42:04.0322 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\vgapnp.sys. md5: DA4DA3F5E02943C2DC8C6ED875DE68DD
      16:42:04.0352 3956 vga ( LockedFile.Multi.Generic ) - warning
      16:42:04.0352 3956 vga - detected LockedFile.Multi.Generic (1)
      16:42:04.0382 3956 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
      16:42:04.0382 3956 Suspicious file (NoAccess): C:\Windows\System32\drivers\vga.sys. md5: 53E92A310193CB3C03BEA963DE7D9CFC
      16:42:04.0402 3956 VgaSave ( LockedFile.Multi.Generic ) - warning
      16:42:04.0402 3956 VgaSave - detected LockedFile.Multi.Generic (1)
      16:42:04.0422 3956 VGPU - ok
      16:42:04.0482 3956 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
      16:42:04.0482 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\vhdmp.sys. md5: 2CE2DF28C83AEAF30084E1B1EB253CBB
      16:42:04.0502 3956 vhdmp ( LockedFile.Multi.Generic ) - warning
      16:42:04.0502 3956 vhdmp - detected LockedFile.Multi.Generic (1)
      16:42:04.0602 3956 [ 0B3C3EFDC675873C0C026FB606BFE0DC ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
      16:42:04.0602 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\viahduaa.sys. md5: 0B3C3EFDC675873C0C026FB606BFE0DC
      16:42:04.0642 3956 VIAHdAudAddService ( LockedFile.Multi.Generic ) - warning
      16:42:04.0642 3956 VIAHdAudAddService - detected LockedFile.Multi.Generic (1)
      16:42:04.0692 3956 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
      16:42:04.0692 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\viaide.sys. md5: E5689D93FFE4E5D66C0178761240DD54
      16:42:04.0722 3956 viaide ( LockedFile.Multi.Generic ) - warning
      16:42:04.0722 3956 viaide - detected LockedFile.Multi.Generic (1)
      16:42:04.0762 3956 [ 84E37B3466C00239A95B30A696DEA867 ] VIAKaraokeService C:\Windows\system32\viakaraokesrv.exe
      16:42:04.0792 3956 VIAKaraokeService - ok
      16:42:04.0862 3956 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
      16:42:04.0862 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\vmbus.sys. md5: 86EA3E79AE350FEA5331A1303054005F
      16:42:04.0872 3956 vmbus ( LockedFile.Multi.Generic ) - warning
      16:42:04.0872 3956 vmbus - detected LockedFile.Multi.Generic (1)
      16:42:04.0922 3956 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
      16:42:04.0922 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\VMBusHID.sys. md5: 7DE90B48F210D29649380545DB45A187
      16:42:04.0932 3956 VMBusHID ( LockedFile.Multi.Generic ) - warning
      16:42:04.0932 3956 VMBusHID - detected LockedFile.Multi.Generic (1)
      16:42:04.0962 3956 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
      16:42:04.0972 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\volmgr.sys. md5: D2AAFD421940F640B407AEFAAEBD91B0
      16:42:04.0982 3956 volmgr ( LockedFile.Multi.Generic ) - warning
      16:42:04.0982 3956 volmgr - detected LockedFile.Multi.Generic (1)
      16:42:05.0042 3956 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      16:42:05.0042 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\volmgrx.sys. md5: A255814907C89BE58B79EF2F189B843B
      16:42:05.0072 3956 volmgrx ( LockedFile.Multi.Generic ) - warning
      16:42:05.0072 3956 volmgrx - detected LockedFile.Multi.Generic (1)
      16:42:05.0122 3956 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
      16:42:05.0122 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\volsnap.sys. md5: 0D08D2F3B3FF84E433346669B5E0F639
      16:42:05.0142 3956 volsnap ( LockedFile.Multi.Generic ) - warning
      16:42:05.0142 3956 volsnap - detected LockedFile.Multi.Generic (1)
      16:42:05.0182 3956 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
      16:42:05.0182 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\vsmraid.sys. md5: 5E2016EA6EBACA03C04FEAC5F330D997
      16:42:05.0242 3956 vsmraid ( LockedFile.Multi.Generic ) - warning
      16:42:05.0242 3956 vsmraid - detected LockedFile.Multi.Generic (1)
      16:42:05.0482 3956 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
      16:42:05.0572 3956 VSS - ok
      16:42:05.0612 3956 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
      16:42:05.0612 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\vwifibus.sys. md5: 36D4720B72B5C5D9CB2B9C29E9DF67A1
      16:42:05.0632 3956 vwifibus ( LockedFile.Multi.Generic ) - warning
      16:42:05.0632 3956 vwifibus - detected LockedFile.Multi.Generic (1)
      16:42:05.0672 3956 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
      16:42:05.0672 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\vwififlt.sys. md5: 6A3D66263414FF0D6FA754C646612F3F
      16:42:05.0692 3956 vwififlt ( LockedFile.Multi.Generic ) - warning
      16:42:05.0692 3956 vwififlt - detected LockedFile.Multi.Generic (1)
      16:42:05.0762 3956 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
      16:42:05.0822 3956 W32Time - ok
      16:42:05.0882 3956 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
      16:42:05.0882 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wacompen.sys. md5: 4E9440F4F152A7B944CB1663D3935A3E
      16:42:05.0892 3956 WacomPen ( LockedFile.Multi.Generic ) - warning
      16:42:05.0892 3956 WacomPen - detected LockedFile.Multi.Generic (1)
      16:42:05.0932 3956 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
      16:42:05.0932 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wanarp.sys. md5: 356AFD78A6ED4457169241AC3965230C
      16:42:05.0972 3956 WANARP ( LockedFile.Multi.Generic ) - warning
      16:42:05.0972 3956 WANARP - detected LockedFile.Multi.Generic (1)
      16:42:06.0002 3956 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      16:42:06.0002 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wanarp.sys. md5: 356AFD78A6ED4457169241AC3965230C
      16:42:06.0032 3956 Wanarpv6 ( LockedFile.Multi.Generic ) - warning
      16:42:06.0032 3956 Wanarpv6 - detected LockedFile.Multi.Generic (1)
      16:42:06.0132 3956 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
      16:42:06.0202 3956 WatAdminSvc - ok
      16:42:06.0292 3956 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
      16:42:06.0372 3956 wbengine - ok
      16:42:06.0442 3956 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
      16:42:06.0482 3956 WbioSrvc - ok
      16:42:06.0552 3956 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
      16:42:06.0582 3956 wcncsvc - ok
      16:42:06.0642 3956 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      16:42:06.0662 3956 WcsPlugInService - ok
      16:42:06.0702 3956 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
      16:42:06.0702 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wd.sys. md5: 72889E16FF12BA0F235467D6091B17DC
      16:42:06.0732 3956 Wd ( LockedFile.Multi.Generic ) - warning
      16:42:06.0732 3956 Wd - detected LockedFile.Multi.Generic (1)
      16:42:06.0772 3956 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      16:42:06.0772 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\Wdf01000.sys. md5: 441BD2D7B4F98134C3A4F9FA570FD250
      16:42:06.0782 3956 Wdf01000 ( LockedFile.Multi.Generic ) - warning
      16:42:06.0782 3956 Wdf01000 - detected LockedFile.Multi.Generic (1)
      16:42:06.0822 3956 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
      16:42:06.0912 3956 WdiServiceHost - ok
      16:42:06.0962 3956 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
      16:42:06.0982 3956 WdiSystemHost - ok
      16:42:07.0032 3956 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
      16:42:07.0092 3956 WebClient - ok
      16:42:07.0142 3956 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
      16:42:07.0192 3956 Wecsvc - ok
      16:42:07.0252 3956 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
      16:42:07.0292 3956 wercplsupport - ok
      16:42:07.0342 3956 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
      16:42:07.0412 3956 WerSvc - ok
      16:42:07.0462 3956 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
      16:42:07.0462 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wfplwf.sys. md5: 611B23304BF067451A9FDEE01FBDD725
      16:42:07.0482 3956 WfpLwf ( LockedFile.Multi.Generic ) - warning
      16:42:07.0482 3956 WfpLwf - detected LockedFile.Multi.Generic (1)
      16:42:07.0532 3956 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
      16:42:07.0532 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\wimmount.sys. md5: 05ECAEC3E4529A7153B3136CEB49F0EC
      16:42:07.0542 3956 WIMMount ( LockedFile.Multi.Generic ) - warning
      16:42:07.0542 3956 WIMMount - detected LockedFile.Multi.Generic (1)
      16:42:07.0582 3956 WinDefend - ok
      16:42:07.0612 3956 WinHttpAutoProxySvc - ok
      16:42:07.0682 3956 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      16:42:07.0742 3956 Winmgmt - ok
      16:42:07.0852 3956 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
      16:42:07.0982 3956 WinRM - ok
      16:42:08.0102 3956 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
      16:42:08.0102 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\WinUsb.sys. md5: FE88B288356E7B47B74B13372ADD906D
      16:42:08.0132 3956 WinUsb ( LockedFile.Multi.Generic ) - warning
      16:42:08.0132 3956 WinUsb - detected LockedFile.Multi.Generic (1)
      16:42:08.0202 3956 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
      16:42:08.0282 3956 Wlansvc - ok
      16:42:08.0432 3956 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      16:42:08.0512 3956 wlidsvc - ok
      16:42:08.0572 3956 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
      16:42:08.0582 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\wmiacpi.sys. md5: F6FF8944478594D0E414D3F048F0D778
      16:42:08.0612 3956 WmiAcpi ( LockedFile.Multi.Generic ) - warning
      16:42:08.0612 3956 WmiAcpi - detected LockedFile.Multi.Generic (1)
      16:42:08.0672 3956 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      16:42:08.0712 3956 wmiApSrv - ok
      16:42:08.0772 3956 WMPNetworkSvc - ok
      16:42:08.0812 3956 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
      16:42:08.0832 3956 WPCSvc - ok
      16:42:08.0882 3956 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      16:42:08.0902 3956 WPDBusEnum - ok
      16:42:08.0942 3956 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      16:42:08.0942 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\ws2ifsl.sys. md5: 6BCC1D7D2FD2453957C5479A32364E52
      16:42:08.0962 3956 ws2ifsl ( LockedFile.Multi.Generic ) - warning
      16:42:08.0962 3956 ws2ifsl - detected LockedFile.Multi.Generic (1)
      16:42:09.0012 3956 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
      16:42:09.0042 3956 wscsvc - ok
      16:42:09.0052 3956 WSearch - ok
      16:42:09.0172 3956 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
      16:42:09.0292 3956 wuauserv - ok
      16:42:09.0332 3956 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
      16:42:09.0332 3956 Suspicious file (NoAccess): C:\Windows\system32\drivers\WudfPf.sys. md5: D3381DC54C34D79B22CEE0D65BA91B7C
      16:42:09.0362 3956 WudfPf ( LockedFile.Multi.Generic ) - warning
      16:42:09.0362 3956 WudfPf - detected LockedFile.Multi.Generic (1)
      16:42:09.0412 3956 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      16:42:09.0412 3956 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\WUDFRd.sys. md5: CF8D590BE3373029D57AF80914190682
      16:42:09.0442 3956 WUDFRd ( LockedFile.Multi.Generic ) - warning
      16:42:09.0442 3956 WUDFRd - detected LockedFile.Multi.Generic (1)
      16:42:09.0492 3956 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      16:42:09.0532 3956 wudfsvc - ok
      16:42:09.0592 3956 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
      16:42:09.0622 3956 WwanSvc - ok
      16:42:09.0672 3956 ================ Scan global ===============================
      16:42:09.0712 3956 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      16:42:09.0742 3956 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
      16:42:09.0762 3956 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
      16:42:09.0782 3956 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      16:42:09.0812 3956 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
      16:42:09.0832 3956 [Global] - ok
      16:42:09.0832 3956 ================ Scan MBR ==================================
      16:42:09.0842 3956 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      16:42:10.0162 3956 \Device\Harddisk0\DR0 - ok
      16:42:10.0182 3956 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
      16:42:10.0592 3956 \Device\Harddisk1\DR1 - ok
      16:42:10.0592 3956 ================ Scan VBR ==================================
      16:42:10.0612 3956 [ 21A3E18438DE2B333CCF6BB231D5909D ] \Device\Harddisk0\DR0\Partition1
      16:42:10.0622 3956 \Device\Harddisk0\DR0\Partition1 - ok
      16:42:10.0632 3956 [ 56858E435C930E22321F35271AAEB2FE ] \Device\Harddisk0\DR0\Partition2
      16:42:10.0632 3956 \Device\Harddisk0\DR0\Partition2 - ok
      16:42:10.0642 3956 [ 5E82F56E10E7DFA8668D73BD856D19F4 ] \Device\Harddisk1\DR1\Partition1
      16:42:10.0642 3956 \Device\Harddisk1\DR1\Partition1 - ok
      16:42:10.0642 3956 ============================================================
      16:42:10.0642 3956 Scan finished
      16:42:10.0642 3956 ============================================================
      16:42:10.0652 4256 Detected object count: 185
      16:42:10.0652 4256 Actual detected object count: 185
      16:42:55.0126 4256 C:\Windows\System32\Drivers\39a8ae61940984c3.sys - copied to quarantine
      16:42:55.0163 4256 HKLM\SYSTEM\ControlSet001\services\39a8ae61940984c3 - will be deleted on reboot
      16:42:55.0239 4256 HKLM\SYSTEM\ControlSet002\services\39a8ae61940984c3 - will be deleted on reboot
      16:42:55.0991 4256 C:\Windows\System32\Drivers\39a8ae61940984c3.sys - will be deleted on reboot
      16:42:55.0991 4256 39a8ae61940984c3 ( Rootkit.Win32.Necurs.gen ) - User select action: Delete
      16:42:55.0995 4256 FsDepends ( LockedFile.Multi.Generic ) - skipped by user
      16:42:55.0995 4256 FsDepends ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:55.0998 4256 Fs_Rec ( LockedFile.Multi.Generic ) - skipped by user
      16:42:55.0998 4256 Fs_Rec ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0001 4256 fvevol ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0001 4256 fvevol ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0004 4256 gagp30kx ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0004 4256 gagp30kx ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0007 4256 hcw85cir ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0007 4256 hcw85cir ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0010 4256 HdAudAddService ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0010 4256 HdAudAddService ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0013 4256 HDAudBus ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0013 4256 HDAudBus ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0016 4256 HidBatt ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0016 4256 HidBatt ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0019 4256 HidBth ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0019 4256 HidBth ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0022 4256 HidIr ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0022 4256 HidIr ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0025 4256 HidUsb ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0025 4256 HidUsb ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0028 4256 HpSAMD ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0028 4256 HpSAMD ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0029 4256 HTTP ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0029 4256 HTTP ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0031 4256 hwpolicy ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0031 4256 hwpolicy ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0033 4256 i8042prt ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0033 4256 i8042prt ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0035 4256 iaStorV ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0035 4256 iaStorV ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0037 4256 iirsp ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0037 4256 iirsp ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0038 4256 intelide ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0039 4256 intelide ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0040 4256 intelppm ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0040 4256 intelppm ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0042 4256 IpFilterDriver ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0042 4256 IpFilterDriver ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0044 4256 IPMIDRV ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0044 4256 IPMIDRV ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0046 4256 IPNAT ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0046 4256 IPNAT ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0048 4256 IRENUM ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0048 4256 IRENUM ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0050 4256 isapnp ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0050 4256 isapnp ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0052 4256 iScsiPrt ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0052 4256 iScsiPrt ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0054 4256 kbdclass ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0054 4256 kbdclass ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0056 4256 kbdhid ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0056 4256 kbdhid ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0058 4256 KSecDD ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0058 4256 KSecDD ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0060 4256 KSecPkg ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0060 4256 KSecPkg ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0061 4256 ksthunk ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0061 4256 ksthunk ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0063 4256 lltdio ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0063 4256 lltdio ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0065 4256 LSI_FC ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0065 4256 LSI_FC ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0066 4256 LSI_SAS ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0066 4256 LSI_SAS ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0068 4256 LSI_SAS2 ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0068 4256 LSI_SAS2 ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0069 4256 LSI_SCSI ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0069 4256 LSI_SCSI ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0071 4256 luafv ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0071 4256 luafv ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0073 4256 megasas ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0073 4256 megasas ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0074 4256 MegaSR ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0075 4256 MegaSR ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0076 4256 Modem ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0076 4256 Modem ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0078 4256 monitor ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0078 4256 monitor ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0079 4256 mouclass ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0079 4256 mouclass ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0081 4256 mouhid ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0081 4256 mouhid ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0082 4256 mountmgr ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0082 4256 mountmgr ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0084 4256 mpio ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0084 4256 mpio ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0086 4256 mpsdrv ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0086 4256 mpsdrv ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0087 4256 MRxDAV ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0087 4256 MRxDAV ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0089 4256 mrxsmb ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0089 4256 mrxsmb ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0091 4256 mrxsmb10 ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0091 4256 mrxsmb10 ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0092 4256 mrxsmb20 ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0092 4256 mrxsmb20 ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0093 4256 msahci ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0094 4256 msahci ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0095 4256 msdsm ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0095 4256 msdsm ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0096 4256 Msfs ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0097 4256 Msfs ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0098 4256 mshidkmdf ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0098 4256 mshidkmdf ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0099 4256 msisadrv ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0099 4256 msisadrv ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0101 4256 MSKSSRV ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0101 4256 MSKSSRV ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0101 4256 MSPCLOCK ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0101 4256 MSPCLOCK ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0103 4256 MSPQM ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0103 4256 MSPQM ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0104 4256 MsRPC ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0104 4256 MsRPC ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0105 4256 mssmbios ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0105 4256 mssmbios ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0107 4256 MSTEE ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0107 4256 MSTEE ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0109 4256 MTConfig ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0109 4256 MTConfig ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0111 4256 Mup ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0111 4256 Mup ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0112 4256 NativeWifiP ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0112 4256 NativeWifiP ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0113 4256 NDIS ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0113 4256 NDIS ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0115 4256 NdisCap ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0115 4256 NdisCap ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0116 4256 NdisTapi ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0116 4256 NdisTapi ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0117 4256 Ndisuio ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0117 4256 Ndisuio ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0119 4256 NdisWan ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0119 4256 NdisWan ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0120 4256 NDProxy ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0120 4256 NDProxy ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0121 4256 NetBIOS ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0121 4256 NetBIOS ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0123 4256 NetBT ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0123 4256 NetBT ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0124 4256 nfrd960 ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0124 4256 nfrd960 ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0126 4256 Npfs ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0126 4256 Npfs ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0127 4256 nsiproxy ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0127 4256 nsiproxy ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0128 4256 Ntfs ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0128 4256 Ntfs ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0130 4256 Null ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0130 4256 Null ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0131 4256 nvlddmkm ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0131 4256 nvlddmkm ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0133 4256 nvraid ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0133 4256 nvraid ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0134 4256 nvstor ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0134 4256 nvstor ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0136 4256 nv_agp ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0136 4256 nv_agp ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0137 4256 ohci1394 ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0137 4256 ohci1394 ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0138 4256 Parport ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0138 4256 Parport ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0140 4256 partmgr ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0140 4256 partmgr ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0142 4256 pci ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0142 4256 pci ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0143 4256 pciide ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0143 4256 pciide ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0144 4256 pcmcia ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0144 4256 pcmcia ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0146 4256 pcw ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0146 4256 pcw ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0147 4256 PEAUTH ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0147 4256 PEAUTH ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0148 4256 PptpMiniport ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0148 4256 PptpMiniport ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0150 4256 Processor ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0150 4256 Processor ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0151 4256 Psched ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0151 4256 Psched ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0153 4256 ql2300 ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0153 4256 ql2300 ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0154 4256 ql40xx ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0154 4256 ql40xx ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0155 4256 QWAVEdrv ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0155 4256 QWAVEdrv ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0157 4256 RasAcd ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0157 4256 RasAcd ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0158 4256 RasAgileVpn ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0158 4256 RasAgileVpn ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0160 4256 Rasl2tp ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0160 4256 Rasl2tp ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0161 4256 RasPppoe ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0161 4256 RasPppoe ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0162 4256 RasSstp ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0162 4256 RasSstp ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0164 4256 rdbss ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0164 4256 rdbss ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0165 4256 rdpbus ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0165 4256 rdpbus ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0167 4256 RDPCDD ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0167 4256 RDPCDD ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0168 4256 RDPDR ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0168 4256 RDPDR ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0169 4256 RDPENCDD ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0169 4256 RDPENCDD ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0171 4256 RDPREFMP ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0171 4256 RDPREFMP ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0172 4256 RdpVideoMiniport ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0172 4256 RdpVideoMiniport ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0174 4256 RDPWD ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0174 4256 RDPWD ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0175 4256 rdyboost ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0175 4256 rdyboost ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0176 4256 rspndr ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0177 4256 rspndr ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0178 4256 RTCore64 ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0178 4256 RTCore64 ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0179 4256 RTL8167 ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0179 4256 RTL8167 ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0181 4256 s3cap ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0181 4256 s3cap ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0182 4256 sbp2port ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0182 4256 sbp2port ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0183 4256 scfilter ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0184 4256 scfilter ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0185 4256 secdrv ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0185 4256 secdrv ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0186 4256 Serenum ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0186 4256 Serenum ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0188 4256 Serial ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0188 4256 Serial ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0189 4256 sermouse ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0189 4256 sermouse ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0190 4256 sffdisk ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0190 4256 sffdisk ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0192 4256 sffp_mmc ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0192 4256 sffp_mmc ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0193 4256 sffp_sd ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0193 4256 sffp_sd ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0194 4256 sfloppy ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0195 4256 sfloppy ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0196 4256 SiSRaid2 ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0196 4256 SiSRaid2 ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0197 4256 SiSRaid4 ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0197 4256 SiSRaid4 ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0199 4256 Smb ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0199 4256 Smb ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0200 4256 spldr ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0200 4256 spldr ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0201 4256 sptd ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0201 4256 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0203 4256 srv ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0203 4256 srv ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0204 4256 srv2 ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0204 4256 srv2 ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0206 4256 srvnet ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0206 4256 srvnet ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0207 4256 stexstor ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0207 4256 stexstor ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0209 4256 storflt ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0209 4256 storflt ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0210 4256 storvsc ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0210 4256 storvsc ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0211 4256 swenum ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0212 4256 swenum ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0213 4256 Tcpip ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0213 4256 Tcpip ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0215 4256 TCPIP6 ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0215 4256 TCPIP6 ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0216 4256 tcpipreg ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0216 4256 tcpipreg ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0217 4256 TDPIPE ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0218 4256 TDPIPE ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0219 4256 TDTCP ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0219 4256 TDTCP ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0220 4256 tdx ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0220 4256 tdx ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0222 4256 TermDD ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0222 4256 TermDD ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0223 4256 tssecsrv ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0223 4256 tssecsrv ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0225 4256 TsUsbFlt ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0225 4256 TsUsbFlt ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0226 4256 tunnel ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0226 4256 tunnel ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0227 4256 uagp35 ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0228 4256 uagp35 ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0229 4256 udfs ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0229 4256 udfs ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0230 4256 uliagpkx ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0230 4256 uliagpkx ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0231 4256 umbus ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0231 4256 umbus ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0233 4256 UmPass ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0233 4256 UmPass ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0234 4256 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - skipped by user
      16:42:56.0234 4256 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0236 4256 usbccgp ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0236 4256 usbccgp ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0237 4256 usbcir ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0237 4256 usbcir ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0238 4256 usbehci ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0238 4256 usbehci ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0240 4256 usbhub ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0240 4256 usbhub ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0241 4256 usbohci ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0241 4256 usbohci ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0242 4256 usbprint ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0242 4256 usbprint ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0244 4256 USBSTOR ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0244 4256 USBSTOR ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0245 4256 usbuhci ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0245 4256 usbuhci ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0246 4256 vdrvroot ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0247 4256 vdrvroot ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0248 4256 vga ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0248 4256 vga ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0249 4256 VgaSave ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0249 4256 VgaSave ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0251 4256 vhdmp ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0251 4256 vhdmp ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0252 4256 VIAHdAudAddService ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0252 4256 VIAHdAudAddService ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0253 4256 viaide ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0253 4256 viaide ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0255 4256 vmbus ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0255 4256 vmbus ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0256 4256 VMBusHID ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0256 4256 VMBusHID ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0258 4256 volmgr ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0258 4256 volmgr ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0259 4256 volmgrx ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0259 4256 volmgrx ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0261 4256 volsnap ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0261 4256 volsnap ( LockedFile.Multi.Generic ) - User select action:

    6. #6
      Usuario Avatar de Luchimodd
      Registrado
      may 2010
      Ubicación
      Melo
      Mensajes
      27

      Re: Problema con Avast! 5.0 actualizado a 7.0

      Y la última parte del primer log:

      Skip
      16:42:56.0262 4256 vsmraid ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0262 4256 vsmraid ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0264 4256 vwifibus ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0264 4256 vwifibus ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0265 4256 vwififlt ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0265 4256 vwififlt ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0266 4256 WacomPen ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0266 4256 WacomPen ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0268 4256 WANARP ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0268 4256 WANARP ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0269 4256 Wanarpv6 ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0270 4256 Wanarpv6 ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0271 4256 Wd ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0271 4256 Wd ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0272 4256 Wdf01000 ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0272 4256 Wdf01000 ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0274 4256 WfpLwf ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0274 4256 WfpLwf ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0275 4256 WIMMount ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0275 4256 WIMMount ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0276 4256 WinUsb ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0276 4256 WinUsb ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0278 4256 WmiAcpi ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0278 4256 WmiAcpi ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0279 4256 ws2ifsl ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0279 4256 ws2ifsl ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0281 4256 WudfPf ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0281 4256 WudfPf ( LockedFile.Multi.Generic ) - User select action: Skip
      16:42:56.0282 4256 WUDFRd ( LockedFile.Multi.Generic ) - skipped by user
      16:42:56.0282 4256 WUDFRd ( LockedFile.Multi.Generic ) - User select action: Skip
      16:43:12.0329 2568 Deinitialize success
      Y el segundo log:

      16:44:59.0606 0144 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
      16:44:59.0637 0144 ============================================================
      16:44:59.0637 0144 Current date / time: 2012/09/01 16:44:59.0637
      16:44:59.0637 0144 SystemInfo:
      16:44:59.0637 0144
      16:44:59.0637 0144 OS Version: 6.1.7601 ServicePack: 1.0
      16:44:59.0637 0144 Product type: Workstation
      16:44:59.0637 0144 ComputerName: LUCIANO-PC
      16:44:59.0637 0144 UserName: Luciano
      16:44:59.0637 0144 Windows directory: C:\Windows
      16:44:59.0637 0144 System windows directory: C:\Windows
      16:44:59.0637 0144 Running under WOW64
      16:44:59.0637 0144 Processor architecture: Intel x64
      16:44:59.0637 0144 Number of processors: 6
      16:44:59.0637 0144 Page size: 0x1000
      16:44:59.0637 0144 Boot type: Normal boot
      16:44:59.0637 0144 ============================================================
      16:45:00.0589 0144 BG loaded
      16:45:00.0838 0144 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
      16:45:00.0838 0144 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
      16:45:00.0838 0144 ============================================================
      16:45:00.0838 0144 \Device\Harddisk0\DR0:
      16:45:00.0838 0144 MBR partitions:
      16:45:00.0838 0144 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4E1EDEC
      16:45:00.0854 0144 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x4E1EE6A, BlocksNum 0xDBF5D96
      16:45:00.0854 0144 \Device\Harddisk1\DR1:
      16:45:00.0854 0144 MBR partitions:
      16:45:00.0854 0144 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07800
      16:45:00.0854 0144 ============================================================
      16:45:00.0885 0144 C: <-> \Device\Harddisk0\DR0\Partition1
      16:45:01.0010 0144 D: <-> \Device\Harddisk0\DR0\Partition2
      16:45:01.0026 0144 H: <-> \Device\Harddisk1\DR1\Partition1
      16:45:01.0026 0144 ============================================================
      16:45:01.0026 0144 Initialize success
      16:45:01.0026 0144 ============================================================
      16:47:27.0853 2868 Deinitialize success

    7. #7
      Ex-Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.747

      Re: Problema con Avast! 5.0 actualizado a 7.0

      Hola ,

      Desistala Malwarebytes y realiza lo siguiente :

      Descarga,actualiza y realiza un escaneo completo con el malwarebytes:Manual de Malwarebytes Anti-Malware 2

      -Instala el programa con idioma español.
      -Vete a la pestaña actualizar y actualizas a la ultima version
      -Vete a la pestaña Escáner y realizas un Ánalisis completo.
      -Una vez finalizado, pulsa sobre "Mostrar los Resultados " y "Eliminar Seleccionadas" como se demuestra en esta foto
      -En el caso de que te pida reiniciar,reinicia.
      -Peganos el reporte del escaneo del malwarebytes despues de reiniciar,esta en la pestaña Registros.
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #8
      Usuario Avatar de Luchimodd
      Registrado
      may 2010
      Ubicación
      Melo
      Mensajes
      27

      Re: Problema con Avast! 5.0 actualizado a 7.0

      He aquí el log del MBAM

      Malwarebytes Anti-Malware (PRO) 1.62.0.1300
      www.malwarebytes.org

      Versión de la Base de Datos: v2012.09.02.06

      Windows 7 Service Pack 1 x64 NTFS
      Internet Explorer 9.0.8112.16421
      Luciano :: LUCIANO-PC [administrador]

      Protección: Personas de movilidad reducida

      02/09/2012 20:59:01
      mbam-log-2012-09-02 (20-59-01).txt

      Tipos de Análisis: Análisis Completo (C:\|D:\|H:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 719652
      Tiempo transcurrido: 1 hora(s), 43 minuto(s), 23 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 14
      C:\Users\Luciano\Desktop\Programas y Otros\Gadget Win 7\coretemp_1236.exe (PUP.BundleOffers.IIQ) -> No se tomaron medidas.
      C:\Users\Luciano\Desktop\Programas y Otros\DEAD RISING 2 V1.0 + 14 TRAINER.EXE (HackTool.GamesCheat) -> En cuarentena y eliminado con éxito.
      C:\Users\Luciano\Desktop\Programas y Otros\Phoenix\Phx_data\Res\EmuCfg.exe (Trojan.Agent) -> En cuarentena y eliminado con éxito.
      C:\Users\Luciano\Desktop\Programas y Otros\Phoenix\Phx_data\Res\GCFMgr.exe (Trojan.Agent) -> En cuarentena y eliminado con éxito.
      C:\Users\Luciano\Desktop\Programas y Otros\Phoenix\Phx_data\Res\RICO.exe (Backdoor.Bot) -> En cuarentena y eliminado con éxito.
      C:\Users\Luciano\Desktop\Programas y Otros\Phoenix\Phx_data\Res\ss.exe (Backdoor.Bot) -> En cuarentena y eliminado con éxito.
      D:\Archivos de programa\Electronic Arts\Battlefield Bad Company 2\rld-bbc2.exe (RiskWare.Tool.HCK) -> En cuarentena y eliminado con éxito.
      D:\Archivos de programa\Setool v1.11\setool2lt.exe (Malware.Packer.T) -> En cuarentena y eliminado con éxito.
      D:\Archivos de programa\Setool v1.11\PatchWise.bak\setool2lt.exe (Malware.Packer.T) -> En cuarentena y eliminado con éxito.
      H:\Archivos de programa\Valve\Left 4 Dead\left4dead\addons\Name_Enabler.dll (Malware.UPX.Mod) -> En cuarentena y eliminado con éxito.
      H:\Imágenes ISO\Anno 2070\Juego\SOLIDCORE32.DLL (Trojan.Krypt) -> En cuarentena y eliminado con éxito.
      H:\Imágenes ISO\Anno 2070\Juego\Crack\solidcore32.dll (Trojan.Krypt) -> En cuarentena y eliminado con éxito.
      H:\Imágenes ISO\Anno 2070\Update\ano270-up1\00010ccrk\solidcore32.dll (Trojan.Krypt) -> En cuarentena y eliminado con éxito.
      H:\LIMBO\TDU.exe (Packer.ModifiedUPX) -> En cuarentena y eliminado con éxito.

      fin)

    9. #9
      Ex-Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.747

      Re: Problema con Avast! 5.0 actualizado a 7.0

      Hola ,

      ¿Como va todo?
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    10. #10
      Usuario Avatar de Luchimodd
      Registrado
      may 2010
      Ubicación
      Melo
      Mensajes
      27

      Re: Problema con Avast! 5.0 actualizado a 7.0

      Pruebo instalar el avast!?

    Página 1 de 2 12 ÚltimoÚltimo