• Registrarse
  • Iniciar sesión


  • Página 2 de 2 PrimeroPrimero 12
    Resultados 11 al 20 de 20

    Limpieza ante posibles virus

    Holaaa Este es el reporte del TDSSKiller, en el siguiente mensaje te mando el del AT-Destroyer: 01:06:20.0172 8048 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48 01:06:20.0540 8048 ============================================================ 01:06:20.0540 8048 Current date / ...

    1. #11
      Usuario Avatar de AdriG
      Registrado
      ago 2012
      Ubicación
      España
      Mensajes
      47

      Re: Limpieza ante posibles virus

      Holaaa

      Este es el reporte del TDSSKiller, en el siguiente mensaje te mando el del AT-Destroyer:

      01:06:20.0172 8048 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
      01:06:20.0540 8048 ============================================================
      01:06:20.0540 8048 Current date / time: 2012/09/13 01:06:20.0540
      01:06:20.0540 8048 SystemInfo:
      01:06:20.0540 8048
      01:06:20.0541 8048 OS Version: 6.1.7600 ServicePack: 0.0
      01:06:20.0541 8048 Product type: Workstation
      01:06:20.0542 8048 ComputerName: ADRIANA-VAIO
      01:06:20.0542 8048 UserName: adriana
      01:06:20.0542 8048 Windows directory: C:\Windows
      01:06:20.0542 8048 System windows directory: C:\Windows
      01:06:20.0542 8048 Running under WOW64
      01:06:20.0542 8048 Processor architecture: Intel x64
      01:06:20.0542 8048 Number of processors: 4
      01:06:20.0542 8048 Page size: 0x1000
      01:06:20.0542 8048 Boot type: Normal boot
      01:06:20.0542 8048 ============================================================
      01:06:23.0100 8048 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
      01:06:23.0110 8048 ============================================================
      01:06:23.0110 8048 \Device\Harddisk0\DR0:
      01:06:23.0111 8048 MBR partitions:
      01:06:23.0111 8048 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A7E000, BlocksNum 0x32000
      01:06:23.0111 8048 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1AB0000, BlocksNum 0x388D5830
      01:06:23.0111 8048 ============================================================
      01:06:23.0203 8048 C: <-> \Device\Harddisk0\DR0\Partition2
      01:06:23.0203 8048 ============================================================
      01:06:23.0203 8048 Initialize success
      01:06:23.0203 8048 ============================================================
      01:07:20.0742 7688 ============================================================
      01:07:20.0742 7688 Scan started
      01:07:20.0742 7688 Mode: Manual; SigCheck; TDLFS;
      01:07:20.0742 7688 ============================================================
      01:07:23.0285 7688 ================ Scan services =============================
      01:07:23.0547 7688 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
      01:07:23.0971 7688 1394ohci - ok
      01:07:24.0077 7688 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
      01:07:24.0347 7688 ACDaemon - ok
      01:07:24.0414 7688 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\drivers\ACPI.sys
      01:07:24.0463 7688 ACPI - ok
      01:07:24.0524 7688 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
      01:07:24.0654 7688 AcpiPmi - ok
      01:07:24.0876 7688 [ 34400005DE52842C4D6D4EE978B4D7CE ] AdobeActiveFileMonitor8.0 C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
      01:07:25.0148 7688 AdobeActiveFileMonitor8.0 - ok
      01:07:25.0311 7688 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
      01:07:25.0431 7688 adp94xx - ok
      01:07:25.0557 7688 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
      01:07:25.0819 7688 adpahci - ok
      01:07:25.0943 7688 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
      01:07:26.0013 7688 adpu320 - ok
      01:07:26.0076 7688 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      01:07:26.0753 7688 AeLookupSvc - ok
      01:07:27.0297 7688 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
      01:07:27.0962 7688 AFD - ok
      01:07:28.0047 7688 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
      01:07:28.0106 7688 agp440 - ok
      01:07:28.0258 7688 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
      01:07:28.0618 7688 ALG - ok
      01:07:28.0826 7688 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
      01:07:28.0882 7688 aliide - ok
      01:07:28.0938 7688 [ 27429A457FCA8F50923863A965FE0C6C ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
      01:07:29.0095 7688 AMD External Events Utility - ok
      01:07:29.0170 7688 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
      01:07:29.0222 7688 amdide - ok
      01:07:29.0290 7688 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
      01:07:29.0365 7688 AmdK8 - ok
      01:07:29.0400 7688 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
      01:07:29.0525 7688 AmdPPM - ok
      01:07:29.0635 7688 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
      01:07:29.0796 7688 amdsata - ok
      01:07:29.0880 7688 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
      01:07:29.0947 7688 amdsbs - ok
      01:07:30.0156 7688 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
      01:07:30.0304 7688 amdxata - ok
      01:07:30.0918 7688 [ E769EAAF73737190CBB5F39E239046C6 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
      01:07:30.0961 7688 AntiVirSchedulerService - ok
      01:07:31.0123 7688 [ 3F21F1C910BDBD84EF355C22B9A618F9 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
      01:07:31.0152 7688 AntiVirService - ok
      01:07:31.0299 7688 [ B7E729AA884BCCF00B8782F57EF9D9BF ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
      01:07:31.0347 7688 AntiVirWebService - ok
      01:07:31.0414 7688 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
      01:07:31.0739 7688 AppID - ok
      01:07:31.0847 7688 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
      01:07:31.0977 7688 AppIDSvc - ok
      01:07:32.0050 7688 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
      01:07:32.0168 7688 Appinfo - ok
      01:07:32.0269 7688 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
      01:07:32.0336 7688 arc - ok
      01:07:32.0394 7688 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
      01:07:32.0458 7688 arcsas - ok
      01:07:32.0499 7688 [ C130BC4A51B1382B2BE8E44579EC4C0A ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
      01:07:32.0650 7688 ArcSoftKsUFilter - ok
      01:07:32.0754 7688 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      01:07:32.0915 7688 AsyncMac - ok
      01:07:32.0968 7688 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
      01:07:33.0040 7688 atapi - ok
      01:07:33.0316 7688 [ CCA705CDF038D5BC243203CE4416B345 ] athr C:\Windows\system32\DRIVERS\athrx.sys
      01:07:33.0729 7688 athr - ok
      01:07:34.0554 7688 [ EAEA2CE49DE0CCA80BEB9134107E5DD7 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
      01:07:35.0243 7688 atikmdag - ok
      01:07:35.0369 7688 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      01:07:35.0545 7688 AudioEndpointBuilder - ok
      01:07:35.0676 7688 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
      01:07:35.0901 7688 AudioSrv - ok
      01:07:35.0994 7688 [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
      01:07:36.0057 7688 avgntflt - ok
      01:07:36.0093 7688 [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
      01:07:36.0170 7688 avipbb - ok
      01:07:36.0195 7688 [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
      01:07:36.0248 7688 avkmgr - ok
      01:07:36.0375 7688 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
      01:07:36.0589 7688 AxInstSV - ok
      01:07:36.0667 7688 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
      01:07:36.0977 7688 b06bdrv - ok
      01:07:37.0051 7688 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
      01:07:37.0189 7688 b57nd60a - ok
      01:07:37.0236 7688 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
      01:07:37.0429 7688 BDESVC - ok
      01:07:37.0720 7688 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
      01:07:37.0962 7688 Beep - ok
      01:07:38.0413 7688 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
      01:07:38.0845 7688 BFE - ok
      01:07:38.0895 7688 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
      01:07:39.0019 7688 blbdrive - ok
      01:07:39.0097 7688 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      01:07:39.0419 7688 bowser - ok
      01:07:39.0482 7688 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
      01:07:39.0603 7688 BrFiltLo - ok
      01:07:39.0641 7688 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
      01:07:39.0782 7688 BrFiltUp - ok
      01:07:39.0852 7688 [ 94FBC06F294D58D02361918418F996E3 ] Browser C:\Windows\System32\browser.dll
      01:07:40.0042 7688 Browser - ok
      01:07:40.0077 7688 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
      01:07:40.0185 7688 Brserid - ok
      01:07:40.0217 7688 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
      01:07:40.0317 7688 BrSerWdm - ok
      01:07:40.0360 7688 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
      01:07:40.0438 7688 BrUsbMdm - ok
      01:07:40.0467 7688 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
      01:07:40.0526 7688 BrUsbSer - ok
      01:07:40.0586 7688 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
      01:07:40.0681 7688 BthEnum - ok
      01:07:40.0740 7688 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
      01:07:40.0906 7688 BTHMODEM - ok
      01:07:40.0958 7688 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
      01:07:41.0057 7688 BthPan - ok
      01:07:41.0151 7688 [ 21084CEB85280468C9ACA3C805C0F8CF ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
      01:07:41.0425 7688 BTHPORT - ok
      01:07:41.0492 7688 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
      01:07:41.0617 7688 bthserv - ok
      01:07:41.0717 7688 [ 8504842634DD144C075B6B0C982CCEC4 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
      01:07:41.0910 7688 BTHUSB - ok
      01:07:42.0057 7688 [ 59E3510784548C6939C1B3B985C232E3 ] btwampfl C:\Windows\system32\drivers\btwampfl.sys
      01:07:42.0923 7688 btwampfl - ok
      01:07:43.0017 7688 [ 1872074ED0A3FB22E3F1E3197B984BFA ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
      01:07:43.0226 7688 btwaudio - ok
      01:07:43.0365 7688 [ 691CF076C33AB1C3A5B2FD5450300733 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
      01:07:43.0577 7688 btwavdt - ok
      01:07:43.0906 7688 [ 8BA6E93A182126781952A7895EC1E4B2 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
      01:07:43.0962 7688 btwdins - ok
      01:07:44.0017 7688 [ 07096D2BC22CCB6CEA5A532DF0BE8A75 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
      01:07:44.0159 7688 btwl2cap - ok
      01:07:44.0192 7688 [ C9273B20DEC8CE38DBCE5D29DE63C907 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
      01:07:44.0387 7688 btwrchid - ok
      01:07:44.0435 7688 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      01:07:44.0657 7688 cdfs - ok
      01:07:44.0932 7688 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      01:07:45.0004 7688 cdrom - ok
      01:07:45.0118 7688 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
      01:07:45.0266 7688 CertPropSvc - ok
      01:07:45.0441 7688 [ E02C9CDB15F13DE4EB2FF67660E62317 ] cfwids C:\Windows\system32\drivers\cfwids.sys
      01:07:45.0475 7688 cfwids - ok
      01:07:45.0569 7688 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
      01:07:45.0705 7688 circlass - ok
      01:07:45.0780 7688 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
      01:07:45.0887 7688 CLFS - ok
      01:07:46.0142 7688 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      01:07:46.0257 7688 clr_optimization_v2.0.50727_32 - ok
      01:07:46.0606 7688 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      01:07:46.0663 7688 clr_optimization_v2.0.50727_64 - ok
      01:07:47.0456 7688 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      01:07:47.0675 7688 clr_optimization_v4.0.30319_32 - ok
      01:07:47.0996 7688 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      01:07:48.0086 7688 clr_optimization_v4.0.30319_64 - ok
      01:07:48.0249 7688 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
      01:07:48.0472 7688 CmBatt - ok
      01:07:48.0579 7688 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
      01:07:48.0634 7688 cmdide - ok
      01:07:49.0132 7688 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
      01:07:49.0353 7688 CNG - ok
      01:07:49.0444 7688 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
      01:07:49.0498 7688 Compbatt - ok
      01:07:49.0544 7688 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
      01:07:49.0651 7688 CompositeBus - ok
      01:07:49.0684 7688 COMSysApp - ok
      01:07:49.0710 7688 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
      01:07:49.0787 7688 crcdisk - ok
      01:07:49.0921 7688 [ F02786B66375292E58C8777082D4396D ] CryptSvc C:\Windows\system32\cryptsvc.dll
      01:07:50.0160 7688 CryptSvc - ok
      01:07:50.0647 7688 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
      01:07:50.0719 7688 cvhsvc - ok
      01:07:50.0838 7688 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
      01:07:51.0040 7688 DcomLaunch - ok
      01:07:51.0105 7688 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
      01:07:51.0307 7688 defragsvc - ok
      01:07:51.0353 7688 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      01:07:51.0581 7688 DfsC - ok
      01:07:51.0660 7688 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
      01:07:51.0829 7688 Dhcp - ok
      01:07:51.0884 7688 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
      01:07:52.0009 7688 discache - ok
      01:07:52.0076 7688 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
      01:07:52.0182 7688 Disk - ok
      01:07:52.0234 7688 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
      01:07:52.0302 7688 Dnscache - ok
      01:07:52.0447 7688 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
      01:07:52.0632 7688 dot3svc - ok
      01:07:52.0698 7688 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
      01:07:52.0848 7688 DPS - ok
      01:07:52.0943 7688 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      01:07:53.0099 7688 drmkaud - ok
      01:07:53.0207 7688 [ 24CE1ECF9D0AE0301775B07F5FEA175B ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      01:07:53.0477 7688 DXGKrnl - ok
      01:07:53.0544 7688 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
      01:07:53.0708 7688 EapHost - ok
      01:07:54.0145 7688 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
      01:07:54.0476 7688 ebdrv - ok
      01:07:54.0529 7688 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
      01:07:54.0637 7688 EFS - ok
      01:07:54.0845 7688 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
      01:07:55.0193 7688 ehRecvr - ok
      01:07:55.0238 7688 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
      01:07:55.0396 7688 ehSched - ok
      01:07:55.0537 7688 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
      01:07:56.0146 7688 elxstor - ok
      01:07:56.0190 7688 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
      01:07:56.0303 7688 ErrDev - ok
      01:07:56.0428 7688 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
      01:07:56.0557 7688 EventSystem - ok
      01:07:56.0602 7688 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
      01:07:56.0775 7688 exfat - ok
      01:07:56.0797 7688 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
      01:07:57.0008 7688 fastfat - ok
      01:07:57.0078 7688 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
      01:07:57.0194 7688 Fax - ok
      01:07:57.0232 7688 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
      01:07:57.0325 7688 fdc - ok
      01:07:57.0352 7688 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
      01:07:57.0478 7688 fdPHost - ok
      01:07:57.0512 7688 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
      01:07:57.0643 7688 FDResPub - ok
      01:07:57.0693 7688 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      01:07:57.0763 7688 FileInfo - ok
      01:07:57.0790 7688 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      01:07:57.0955 7688 Filetrace - ok
      01:07:58.0075 7688 [ ABEDFD48AC042C6AAAD32452E77217A1 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
      01:07:58.0558 7688 FLEXnet Licensing Service - ok
      01:07:58.0583 7688 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
      01:07:58.0680 7688 flpydisk - ok
      01:07:58.0754 7688 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      01:07:58.0879 7688 FltMgr - ok
      01:07:59.0195 7688 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
      01:07:59.0432 7688 FontCache - ok
      01:07:59.0506 7688 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      01:07:59.0582 7688 FontCache3.0.0.0 - ok
      01:07:59.0641 7688 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
      01:07:59.0701 7688 FsDepends - ok
      01:07:59.0761 7688 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      01:07:59.0905 7688 Fs_Rec - ok
      01:07:59.0992 7688 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
      01:08:00.0287 7688 fvevol - ok
      01:08:00.0377 7688 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
      01:08:00.0446 7688 gagp30kx - ok
      01:08:00.0516 7688 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
      01:08:00.0840 7688 gpsvc - ok
      01:08:00.0876 7688 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
      01:08:01.0030 7688 hcw85cir - ok
      01:08:01.0105 7688 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      01:08:01.0254 7688 HdAudAddService - ok
      01:08:01.0325 7688 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
      01:08:01.0404 7688 HDAudBus - ok
      01:08:01.0514 7688 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\drivers\HECIx64.sys
      01:08:01.0738 7688 HECIx64 - ok
      01:08:01.0860 7688 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
      01:08:01.0964 7688 HidBatt - ok
      01:08:02.0017 7688 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
      01:08:02.0135 7688 HidBth - ok
      01:08:02.0202 7688 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
      01:08:02.0316 7688 HidIr - ok
      01:08:02.0350 7688 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
      01:08:02.0543 7688 hidserv - ok
      01:08:02.0632 7688 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
      01:08:02.0682 7688 HidUsb - ok
      01:08:02.0750 7688 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
      01:08:02.0912 7688 hkmsvc - ok
      01:08:02.0995 7688 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      01:08:03.0151 7688 HomeGroupListener - ok
      01:08:03.0178 7688 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      01:08:03.0318 7688 HomeGroupProvider - ok
      01:08:03.0363 7688 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
      01:08:03.0404 7688 HpSAMD - ok
      01:08:03.0498 7688 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      01:08:03.0905 7688 HTTP - ok
      01:08:03.0920 7688 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
      01:08:03.0998 7688 hwpolicy - ok
      01:08:04.0044 7688 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
      01:08:04.0152 7688 i8042prt - ok
      01:08:04.0198 7688 [ ABBF174CB394F5C437410A788B7E404A ] iaStor C:\Windows\system32\drivers\iaStor.sys
      01:08:04.0274 7688 iaStor - ok
      01:08:04.0394 7688 [ 31A0E93CDF29007D6C6FFFB632F375ED ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
      01:08:04.0432 7688 IAStorDataMgrSvc - ok
      01:08:04.0507 7688 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
      01:08:04.0784 7688 iaStorV - ok
      01:08:04.0953 7688 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      01:08:05.0238 7688 idsvc - ok
      01:08:05.0993 7688 [ 2A22AB054F4630D2EF4BAB2853F6D5F6 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
      01:08:06.0726 7688 igfx ( UnsignedFile.Multi.Generic ) - warning
      01:08:06.0727 7688 igfx - detected UnsignedFile.Multi.Generic (1)
      01:08:06.0822 7688 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
      01:08:06.0867 7688 iirsp - ok
      01:08:06.0938 7688 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
      01:08:07.0068 7688 IKEEXT - ok
      01:08:07.0114 7688 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\drivers\Impcd.sys
      01:08:07.0303 7688 Impcd - ok
      01:08:07.0429 7688 [ 526E482AFB586CB1CDD687869DECF686 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
      01:08:07.0837 7688 IntcAzAudAddService - ok
      01:08:07.0949 7688 [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
      01:08:08.0091 7688 IntcDAud ( UnsignedFile.Multi.Generic ) - warning
      01:08:08.0091 7688 IntcDAud - detected UnsignedFile.Multi.Generic (1)
      01:08:08.0142 7688 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
      01:08:08.0187 7688 intelide - ok
      01:08:08.0233 7688 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
      01:08:08.0280 7688 intelppm - ok
      01:08:08.0333 7688 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      01:08:08.0466 7688 IPBusEnum - ok
      01:08:08.0614 7688 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      01:08:08.0775 7688 IpFilterDriver - ok
      01:08:08.0827 7688 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
      01:08:08.0899 7688 IPMIDRV - ok
      01:08:09.0081 7688 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
      01:08:09.0278 7688 IPNAT - ok
      01:08:09.0320 7688 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
      01:08:09.0390 7688 IRENUM - ok
      01:08:09.0421 7688 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
      01:08:09.0471 7688 isapnp - ok
      01:08:09.0510 7688 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
      01:08:09.0576 7688 iScsiPrt - ok
      01:08:09.0613 7688 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
      01:08:09.0671 7688 kbdclass - ok
      01:08:09.0767 7688 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
      01:08:09.0843 7688 kbdhid - ok
      01:08:09.0882 7688 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
      01:08:09.0923 7688 KeyIso - ok
      01:08:09.0990 7688 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      01:08:10.0133 7688 KSecDD - ok
      01:08:10.0217 7688 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
      01:08:10.0420 7688 KSecPkg - ok
      01:08:10.0493 7688 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
      01:08:10.0611 7688 ksthunk - ok
      01:08:10.0712 7688 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
      01:08:10.0903 7688 KtmRm - ok
      01:08:11.0020 7688 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
      01:08:11.0126 7688 LanmanServer - ok
      01:08:11.0214 7688 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      01:08:11.0336 7688 LanmanWorkstation - ok
      01:08:11.0384 7688 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      01:08:11.0592 7688 lltdio - ok
      01:08:11.0836 7688 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
      01:08:12.0132 7688 lltdsvc - ok
      01:08:12.0164 7688 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
      01:08:12.0278 7688 lmhosts - ok
      01:08:12.0392 7688 [ 3D23191672D83E90D1CF63927EE98136 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
      01:08:12.0431 7688 LMS - ok
      01:08:12.0535 7688 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
      01:08:12.0589 7688 LSI_FC - ok
      01:08:12.0633 7688 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
      01:08:12.0693 7688 LSI_SAS - ok
      01:08:12.0759 7688 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
      01:08:12.0805 7688 LSI_SAS2 - ok
      01:08:12.0835 7688 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
      01:08:12.0902 7688 LSI_SCSI - ok
      01:08:13.0007 7688 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
      01:08:13.0162 7688 luafv - ok
      01:08:13.0241 7688 [ DC8490812A3B72811AE534F423B4C206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
      01:08:13.0270 7688 MBAMProtector - ok
      01:08:13.0394 7688 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
      01:08:13.0440 7688 MBAMService - ok
      01:08:14.0253 7688 [ 458A013DF72EAAB91877FA03533E2C8B ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
      01:08:14.0288 7688 McAfee SiteAdvisor Service - ok
      01:08:14.0303 7688 [ 458A013DF72EAAB91877FA03533E2C8B ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
      01:08:14.0336 7688 McMPFSvc - ok
      01:08:14.0370 7688 [ 458A013DF72EAAB91877FA03533E2C8B ] mcmscsvc C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
      01:08:14.0406 7688 mcmscsvc - ok
      01:08:14.0428 7688 [ 458A013DF72EAAB91877FA03533E2C8B ] McNaiAnn C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
      01:08:14.0469 7688 McNaiAnn - ok
      01:08:14.0503 7688 [ 458A013DF72EAAB91877FA03533E2C8B ] McNASvc C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
      01:08:14.0541 7688 McNASvc - ok
      01:08:14.0807 7688 [ 3809B77EB1734CD5FB317425F188ABC1 ] McODS C:\Program Files\mcafee\VirusScan\mcods.exe
      01:08:14.0849 7688 McODS - ok
      01:08:14.0905 7688 [ 458A013DF72EAAB91877FA03533E2C8B ] McOobeSv C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
      01:08:14.0949 7688 McOobeSv - ok
      01:08:15.0015 7688 [ 458A013DF72EAAB91877FA03533E2C8B ] McProxy C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
      01:08:15.0060 7688 McProxy - ok
      01:08:15.0159 7688 [ 461EABB62F1827B965F508092160EDDC ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
      01:08:15.0205 7688 McShield - ok
      01:08:15.0288 7688 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
      01:08:15.0409 7688 Mcx2Svc - ok
      01:08:15.0473 7688 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
      01:08:15.0531 7688 megasas - ok
      01:08:15.0664 7688 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
      01:08:15.0736 7688 MegaSR - ok
      01:08:15.0854 7688 [ C1556CA9695FCD6BBD23D75D402FD43D ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
      01:08:15.0889 7688 mfeapfk - ok
      01:08:15.0918 7688 [ 8857EE8B49F3338FC1FAD476BFCCA146 ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
      01:08:16.0092 7688 mfeavfk - ok
      01:08:16.0127 7688 mfeavfk01 - ok
      01:08:16.0157 7688 [ DD92E94E265864306377F091B100D0D0 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
      01:08:16.0197 7688 mfefire - ok
      01:08:16.0265 7688 [ 19C44295F6BF085C83352D48397F7870 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
      01:08:16.0470 7688 mfefirek - ok
      01:08:16.0587 7688 [ 5F915E20AB56121C41C6BF9A91A83BDA ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
      01:08:16.0909 7688 mfehidk - ok
      01:08:16.0977 7688 [ 23AE332E32FF615CA5E5224C8D91AF11 ] mfenlfk C:\Windows\system32\DRIVERS\mfenlfk.sys
      01:08:17.0126 7688 mfenlfk - ok
      01:08:17.0168 7688 [ 9C7A9273E345F8D653394B5C542BF86A ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
      01:08:17.0333 7688 mferkdet - ok
      01:08:17.0418 7688 [ AECD0C9ABDFDC61BE31163B624C4170F ] mfevtp C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
      01:08:17.0453 7688 mfevtp - ok
      01:08:17.0495 7688 [ 3140B2C56D7119BA314F68FC785683F0 ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
      01:08:17.0678 7688 mfewfpk - ok
      01:08:17.0722 7688 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
      01:08:17.0875 7688 MMCSS - ok
      01:08:18.0090 7688 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
      01:08:18.0296 7688 Modem - ok
      01:08:18.0352 7688 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      01:08:18.0415 7688 monitor - ok
      01:08:18.0498 7688 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
      01:08:18.0559 7688 mouclass - ok
      01:08:18.0587 7688 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\drivers\mouhid.sys
      01:08:18.0659 7688 mouhid - ok
      01:08:18.0703 7688 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
      01:08:18.0770 7688 mountmgr - ok
      01:08:18.0813 7688 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\drivers\mpio.sys
      01:08:18.0871 7688 mpio - ok
      01:08:19.0001 7688 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      01:08:19.0153 7688 mpsdrv - ok
      01:08:19.0343 7688 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      01:08:19.0463 7688 MRxDAV - ok
      01:08:19.0505 7688 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      01:08:19.0740 7688 mrxsmb - ok
      01:08:19.0871 7688 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      01:08:20.0184 7688 mrxsmb10 - ok
      01:08:20.0245 7688 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      01:08:20.0529 7688 mrxsmb20 - ok
      01:08:20.0589 7688 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\drivers\msahci.sys
      01:08:20.0670 7688 msahci - ok
      01:08:20.0729 7688 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\drivers\msdsm.sys
      01:08:20.0811 7688 msdsm - ok
      01:08:20.0889 7688 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
      01:08:21.0001 7688 MSDTC - ok
      01:08:21.0137 7688 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
      01:08:21.0295 7688 Msfs - ok
      01:08:21.0373 7688 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
      01:08:21.0521 7688 mshidkmdf - ok
      01:08:21.0541 7688 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
      01:08:21.0589 7688 msisadrv - ok
      01:08:21.0670 7688 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      01:08:21.0810 7688 MSiSCSI - ok
      01:08:21.0818 7688 msiserver - ok
      01:08:21.0891 7688 [ 458A013DF72EAAB91877FA03533E2C8B ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
      01:08:21.0925 7688 MSK80Service - ok
      01:08:22.0007 7688 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      01:08:22.0179 7688 MSKSSRV - ok
      01:08:22.0251 7688 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      01:08:22.0374 7688 MSPCLOCK - ok
      01:08:22.0392 7688 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      01:08:22.0563 7688 MSPQM - ok
      01:08:22.0608 7688 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      01:08:22.0698 7688 MsRPC - ok
      01:08:22.0755 7688 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
      01:08:22.0786 7688 mssmbios - ok
      01:08:22.0964 7688 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      01:08:23.0135 7688 MSTEE - ok
      01:08:23.0178 7688 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
      01:08:23.0264 7688 MTConfig - ok
      01:08:23.0289 7688 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
      01:08:23.0338 7688 Mup - ok
      01:08:23.0457 7688 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
      01:08:23.0645 7688 napagent - ok
      01:08:23.0710 7688 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      01:08:23.0809 7688 NativeWifiP - ok
      01:08:23.0986 7688 [ 0A053F378B53E2A467A852119F91ABE1 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
      01:08:24.0039 7688 NAUpdate - ok
      01:08:24.0151 7688 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
      01:08:24.0260 7688 NDIS - ok
      01:08:24.0332 7688 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
      01:08:24.0551 7688 NdisCap - ok
      01:08:24.0581 7688 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      01:08:24.0770 7688 NdisTapi - ok
      01:08:24.0818 7688 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      01:08:24.0983 7688 Ndisuio - ok
      01:08:25.0037 7688 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      01:08:25.0173 7688 NdisWan - ok
      01:08:25.0228 7688 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      01:08:25.0364 7688 NDProxy - ok
      01:08:25.0427 7688 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      01:08:25.0547 7688 NetBIOS - ok
      01:08:25.0585 7688 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
      01:08:25.0781 7688 NetBT - ok
      01:08:25.0815 7688 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
      01:08:25.0846 7688 Netlogon - ok
      01:08:26.0000 7688 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
      01:08:26.0131 7688 Netman - ok
      01:08:26.0151 7688 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
      01:08:26.0264 7688 netprofm - ok
      01:08:26.0294 7688 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
      01:08:26.0413 7688 NetTcpPortSharing - ok
      01:08:26.0470 7688 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
      01:08:26.0515 7688 nfrd960 - ok
      01:08:26.0589 7688 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
      01:08:26.0695 7688 NlaSvc - ok
      01:08:27.0297 7688 [ 320B4E93D733FAC1AFE53F53A1A12354 ] NOBU C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
      01:08:27.0624 7688 NOBU - ok
      01:08:27.0688 7688 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
      01:08:27.0888 7688 Npfs - ok
      01:08:27.0926 7688 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
      01:08:28.0072 7688 nsi - ok
      01:08:28.0098 7688 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      01:08:28.0301 7688 nsiproxy - ok
      01:08:28.0492 7688 [ 378E0E0DFEA67D98AE6EA53ADBBD76BC ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      01:08:28.0979 7688 Ntfs - ok
      01:08:29.0088 7688 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
      01:08:29.0287 7688 Null - ok
      01:08:29.0388 7688 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
      01:08:29.0584 7688 nvraid - ok
      01:08:29.0626 7688 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
      01:08:29.0783 7688 nvstor - ok
      01:08:29.0830 7688 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
      01:08:29.0892 7688 nv_agp - ok
      01:08:29.0923 7688 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
      01:08:29.0977 7688 ohci1394 - ok
      01:08:30.0064 7688 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      01:08:30.0304 7688 ose - ok
      01:08:30.0583 7688 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
      01:08:31.0251 7688 osppsvc - ok
      01:08:31.0317 7688 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
      01:08:31.0396 7688 p2pimsvc - ok
      01:08:31.0558 7688 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
      01:08:31.0665 7688 p2psvc - ok
      01:08:31.0706 7688 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
      01:08:31.0770 7688 Parport - ok
      01:08:31.0822 7688 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
      01:08:31.0991 7688 partmgr - ok
      01:08:32.0046 7688 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
      01:08:32.0145 7688 PcaSvc - ok
      01:08:32.0200 7688 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\drivers\pci.sys
      01:08:32.0249 7688 pci - ok
      01:08:32.0302 7688 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
      01:08:32.0364 7688 pciide - ok
      01:08:32.0413 7688 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
      01:08:32.0536 7688 pcmcia - ok
      01:08:32.0568 7688 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
      01:08:32.0623 7688 pcw - ok
      01:08:32.0686 7688 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      01:08:32.0943 7688 PEAUTH - ok
      01:08:33.0948 7688 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
      01:08:34.0097 7688 PerfHost - ok
      01:08:34.0286 7688 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
      01:08:34.0646 7688 pla - ok
      01:08:34.0741 7688 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      01:08:34.0904 7688 PlugPlay - ok
      01:08:35.0316 7688 [ 80E85394D8CD7F84340B1C6F4B9D698F ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
      01:08:35.0382 7688 PMBDeviceInfoProvider - ok
      01:08:35.0411 7688 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
      01:08:35.0530 7688 PNRPAutoReg - ok
      01:08:35.0577 7688 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
      01:08:35.0628 7688 PNRPsvc - ok
      01:08:35.0695 7688 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      01:08:36.0124 7688 PolicyAgent - ok
      01:08:36.0276 7688 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
      01:08:36.0419 7688 Power - ok
      01:08:36.0504 7688 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      01:08:36.0678 7688 PptpMiniport - ok
      01:08:36.0821 7688 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
      01:08:37.0016 7688 Processor - ok
      01:08:37.0071 7688 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
      01:08:37.0146 7688 ProfSvc - ok
      01:08:37.0204 7688 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
      01:08:37.0245 7688 ProtectedStorage - ok
      01:08:37.0324 7688 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
      01:08:37.0452 7688 Psched - ok
      01:08:37.0494 7688 [ FBF4DB6D53585437E41A113300002A2B ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
      01:08:37.0643 7688 PxHlpa64 - ok
      01:08:37.0696 7688 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
      01:08:37.0880 7688 ql2300 - ok
      01:08:37.0929 7688 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
      01:08:38.0023 7688 ql40xx - ok
      01:08:38.0140 7688 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
      01:08:38.0285 7688 QWAVE - ok
      01:08:38.0325 7688 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      01:08:38.0459 7688 QWAVEdrv - ok
      01:08:38.0485 7688 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      01:08:38.0655 7688 RasAcd - ok
      01:08:38.0791 7688 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
      01:08:38.0930 7688 RasAgileVpn - ok
      01:08:38.0990 7688 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
      01:08:39.0185 7688 RasAuto - ok
      01:08:39.0267 7688 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      01:08:39.0468 7688 Rasl2tp - ok
      01:08:39.0531 7688 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
      01:08:39.0790 7688 RasMan - ok
      01:08:39.0828 7688 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      01:08:40.0032 7688 RasPppoe - ok
      01:08:40.0078 7688 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      01:08:40.0304 7688 RasSstp - ok
      01:08:40.0387 7688 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      01:08:40.0672 7688 rdbss - ok
      01:08:40.0712 7688 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
      01:08:40.0792 7688 rdpbus - ok
      01:08:40.0871 7688 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      01:08:41.0003 7688 RDPCDD - ok
      01:08:41.0068 7688 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      01:08:41.0186 7688 RDPENCDD - ok
      01:08:41.0255 7688 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
      01:08:41.0421 7688 RDPREFMP - ok
      01:08:41.0480 7688 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      01:08:41.0733 7688 RDPWD - ok
      01:08:41.0802 7688 [ E5DC9BA9E439D6DBDD79F8CAACB5BF01 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
      01:08:41.0999 7688 rdyboost - ok
      01:08:42.0146 7688 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
      01:08:42.0266 7688 RemoteAccess - ok
      01:08:42.0332 7688 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      01:08:42.0494 7688 RemoteRegistry - ok
      01:08:42.0570 7688 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
      01:08:42.0693 7688 RFCOMM - ok
      01:08:42.0790 7688 [ FA6ABC06B629DA29634D31F1FE0347BD ] rimspci C:\Windows\system32\drivers\rimssne64.sys
      01:08:42.0978 7688 rimspci - ok
      01:08:43.0033 7688 [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
      01:08:43.0201 7688 RimUsb - ok
      01:08:43.0286 7688 [ 8F8539A7F5C117D4407B2985995671F2 ] risdsnpe C:\Windows\system32\drivers\risdsne64.sys
      01:08:43.0466 7688 risdsnpe - ok
      01:08:43.0525 7688 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
      01:08:43.0648 7688 RpcEptMapper - ok
      01:08:43.0681 7688 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
      01:08:43.0761 7688 RpcLocator - ok
      01:08:43.0812 7688 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
      01:08:43.0907 7688 RpcSs - ok
      01:08:43.0977 7688 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      01:08:44.0088 7688 rspndr - ok
      01:08:44.0162 7688 [ D6D381B76056C668679723938F06F16C ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
      01:08:44.0295 7688 RTHDMIAzAudService - ok
      01:08:44.0347 7688 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
      01:08:44.0373 7688 SamSs - ok
      01:08:44.0433 7688 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
      01:08:44.0473 7688 sbp2port - ok
      01:08:44.0517 7688 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
      01:08:44.0618 7688 SCardSvr - ok
      01:08:44.0688 7688 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
      01:08:44.0895 7688 scfilter - ok
      01:08:45.0082 7688 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
      01:08:45.0281 7688 Schedule - ok
      01:08:45.0314 7688 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
      01:08:45.0374 7688 SCPolicySvc - ok
      01:08:45.0457 7688 [ 2C8D162EFAF73ABD36D8BCBB6340CAE7 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
      01:08:45.0582 7688 sdbus - ok
      01:08:45.0626 7688 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      01:08:45.0739 7688 SDRSVC - ok
      01:08:45.0759 7688 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      01:08:45.0889 7688 secdrv - ok
      01:08:45.0990 7688 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
      01:08:46.0116 7688 seclogon - ok
      01:08:46.0356 7688 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
      01:08:46.0486 7688 SENS - ok
      01:08:46.0617 7688 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
      01:08:46.0706 7688 SensrSvc - ok
      01:08:46.0782 7688 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
      01:08:46.0947 7688 Serenum - ok
      01:08:46.0970 7688 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
      01:08:47.0027 7688 Serial - ok
      01:08:47.0123 7688 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
      01:08:47.0210 7688 sermouse - ok
      01:08:47.0276 7688 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
      01:08:47.0421 7688 SessionEnv - ok
      01:08:47.0540 7688 [ 286D3889E6AB5589646FF8A63CB928AE ] SFEP C:\Windows\system32\drivers\SFEP.sys
      01:08:47.0918 7688 SFEP - ok
      01:08:47.0971 7688 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
      01:08:48.0055 7688 sffdisk - ok
      01:08:48.0104 7688 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
      01:08:48.0156 7688 sffp_mmc - ok
      01:08:48.0229 7688 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
      01:08:48.0465 7688 sffp_sd - ok
      01:08:48.0514 7688 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
      01:08:48.0585 7688 sfloppy - ok
      01:08:48.0699 7688 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
      01:08:48.0957 7688 Sftfs - ok
      01:08:49.0107 7688 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
      01:08:49.0165 7688 sftlist - ok
      01:08:49.0347 7688 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
      01:08:49.0574 7688 Sftplay - ok
      01:08:49.0629 7688 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
      01:08:49.0788 7688 Sftredir - ok
      01:08:49.0861 7688 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
      01:08:50.0016 7688 Sftvol - ok
      01:08:50.0098 7688 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
      01:08:50.0135 7688 sftvsa - ok
      01:08:50.0362 7688 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      01:08:50.0458 7688 ShellHWDetection - ok
      01:08:50.0531 7688 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
      01:08:50.0585 7688 SiSRaid2 - ok
      01:08:50.0686 7688 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
      01:08:50.0745 7688 SiSRaid4 - ok
      01:08:50.0866 7688 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
      01:08:51.0020 7688 Smb - ok
      01:08:51.0091 7688 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      01:08:51.0174 7688 SNMPTRAP - ok
      01:08:51.0274 7688 [ C3E69DB0A4E59564230E053232F39AC7 ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
      01:08:51.0315 7688 SOHCImp - ok
      01:08:51.0341 7688 [ 65CC4779A29C3E82B987BD4961790DFF ] SOHDms C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
      01:08:51.0388 7688 SOHDms - ok
      01:08:51.0444 7688 [ F47D75CEE1844EEF4A9EA6EE768828FB ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
      01:08:51.0479 7688 SOHDs - ok
      01:08:51.0569 7688 [ 5449FC97476F52E027409E703791E6A9 ] SpfService C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
      01:08:51.0616 7688 SpfService - ok
      01:08:51.0686 7688 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
      01:08:51.0743 7688 spldr - ok
      01:08:51.0853 7688 [ F8E1FA03CB70D54A9892AC88B91D1E7B ] Spooler C:\Windows\System32\spoolsv.exe
      01:08:51.0990 7688 Spooler - ok
      01:08:52.0166 7688 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
      01:08:52.0301 7688 sppsvc - ok
      01:08:52.0319 7688 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
      01:08:52.0465 7688 sppuinotify - ok
      01:08:52.0600 7688 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
      01:08:52.0827 7688 srv - ok
      01:08:52.0937 7688 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      01:08:53.0321 7688 srv2 - ok
      01:08:53.0400 7688 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      01:08:53.0657 7688 srvnet - ok
      01:08:53.0739 7688 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      01:08:53.0879 7688 SSDPSRV - ok
      01:08:53.0932 7688 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
      01:08:54.0074 7688 SstpSvc - ok
      01:08:54.0306 7688 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
      01:08:54.0369 7688 stexstor - ok
      01:08:54.0466 7688 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
      01:08:54.0711 7688 stisvc - ok
      01:08:54.0814 7688 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
      01:08:54.0875 7688 swenum - ok
      01:08:54.0953 7688 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
      01:08:55.0097 7688 swprv - ok
      01:08:55.0181 7688 [ 20F8F4C2ED3F492DA318D98E72F77209 ] SynTP C:\Windows\system32\drivers\SynTP.sys
      01:08:55.0382 7688 SynTP - ok
      01:08:55.0669 7688 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
      01:08:55.0833 7688 SysMain - ok
      01:08:55.0874 7688 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
      01:08:55.0979 7688 TabletInputService - ok
      01:08:56.0005 7688 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
      01:08:56.0170 7688 TapiSrv - ok
      01:08:56.0234 7688 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
      01:08:56.0341 7688 TBS - ok
      01:08:56.0646 7688 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      01:08:57.0091 7688 Tcpip - ok
      01:08:57.0179 7688 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
      01:08:57.0274 7688 TCPIP6 - ok
      01:08:57.0390 7688 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      01:08:57.0519 7688 tcpipreg - ok
      01:08:57.0588 7688 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      01:08:57.0669 7688 TDPIPE - ok
      01:08:57.0807 7688 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      01:08:58.0048 7688 TDTCP - ok
      01:08:58.0115 7688 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      01:08:58.0266 7688 tdx - ok
      01:08:58.0428 7688 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\drivers\termdd.sys
      01:08:58.0495 7688 TermDD - ok
      01:08:58.0556 7688 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
      01:08:58.0738 7688 TermService - ok
      01:08:58.0781 7688 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
      01:08:58.0979 7688 Themes - ok
      01:08:59.0024 7688 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
      01:08:59.0179 7688 THREADORDER - ok
      01:08:59.0275 7688 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
      01:08:59.0418 7688 TrkWks - ok
      01:08:59.0770 7688 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      01:08:59.0847 7688 TrustedInstaller - ok
      01:08:59.0956 7688 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      01:09:00.0110 7688 tssecsrv - ok
      01:09:00.0259 7688 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      01:09:00.0447 7688 tunnel - ok
      01:09:00.0623 7688 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
      01:09:00.0697 7688 uagp35 - ok
      01:09:00.0792 7688 [ 63F6D08C54D5B3C1B12A6172032055C7 ] uCamMonitor C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
      01:09:00.0828 7688 uCamMonitor - ok
      01:09:00.0878 7688 [ 0E5E962B5649D544BE54E8C90761EA2B ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      01:09:01.0103 7688 udfs - ok
      01:09:01.0206 7688 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
      01:09:01.0284 7688 UI0Detect - ok
      01:09:01.0357 7688 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
      01:09:01.0420 7688 uliagpkx - ok
      01:09:01.0621 7688 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
      01:09:01.0875 7688 umbus - ok
      01:09:02.0096 7688 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
      01:09:02.0174 7688 UmPass - ok
      01:09:02.0773 7688 [ 11A559E0F10CC5E788984023DF400A6F ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
      01:09:02.0881 7688 UNS - ok
      01:09:03.0522 7688 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
      01:09:03.0633 7688 upnphost - ok
      01:09:03.0704 7688 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
      01:09:03.0870 7688 usbccgp - ok
      01:09:03.0928 7688 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
      01:09:04.0008 7688 usbcir - ok
      01:09:04.0033 7688 [ 92969BA5AC44E229C55A332864F79677 ] usbehci C:\Windows\system32\drivers\usbehci.sys
      01:09:04.0176 7688 usbehci - ok
      01:09:04.0288 7688 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      01:09:04.0447 7688 usbhub - ok
      01:09:04.0463 7688 [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci C:\Windows\system32\drivers\usbohci.sys
      01:09:04.0635 7688 usbohci - ok
      01:09:04.0707 7688 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
      01:09:04.0774 7688 usbprint - ok
      01:09:04.0843 7688 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
      01:09:04.0911 7688 usbscan - ok
      01:09:04.0946 7688 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      01:09:05.0125 7688 USBSTOR - ok
      01:09:05.0188 7688 [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
      01:09:05.0303 7688 usbuhci - ok
      01:09:05.0348 7688 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
      01:09:05.0500 7688 usbvideo - ok
      01:09:05.0550 7688 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
      01:09:05.0633 7688 UxSms - ok
      01:09:05.0769 7688 [ A60605FC66552B421EE1F3D4EBB9A4E0 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
      01:09:05.0791 7688 VAIO Event Service - ok
      01:09:06.0036 7688 [ D469BE2723F79CF4B384680B1FDC577D ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
      01:09:06.0082 7688 VAIO Power Management - ok
      01:09:06.0138 7688 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
      01:09:06.0164 7688 VaultSvc - ok
      01:09:06.0274 7688 [ 96EFA2698D6B9E2931609A3EA73FC5DC ] VCFw C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
      01:09:06.0318 7688 VCFw - ok
      01:09:06.0389 7688 [ 7BEBF6A5285FFC03C34A7297A4E177CB ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
      01:09:06.0420 7688 VcmIAlzMgr - ok
      01:09:06.0542 7688 [ E005B04DFCA99F5880C5111933194CA9 ] VcmINSMgr C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
      01:09:06.0582 7688 VcmINSMgr - ok
      01:09:06.0733 7688 [ 829A32FD1334F72429CA0515760EB7A7 ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
      01:09:06.0861 7688 VcmXmlIfHelper - ok
      01:09:06.0922 7688 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
      01:09:06.0962 7688 vdrvroot - ok
      01:09:07.0051 7688 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
      01:09:07.0092 7688 vds - ok
      01:09:07.0129 7688 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      01:09:07.0172 7688 vga - ok
      01:09:07.0195 7688 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
      01:09:07.0337 7688 VgaSave - ok
      01:09:07.0378 7688 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
      01:09:07.0446 7688 vhdmp - ok
      01:09:07.0483 7688 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
      01:09:07.0521 7688 viaide - ok
      01:09:07.0573 7688 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\drivers\volmgr.sys
      01:09:07.0613 7688 volmgr - ok
      01:09:07.0672 7688 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      01:09:07.0735 7688 volmgrx - ok
      01:09:07.0772 7688 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\drivers\volsnap.sys
      01:09:07.0834 7688 volsnap - ok
      01:09:07.0923 7688 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
      01:09:07.0970 7688 vsmraid - ok
      01:09:08.0243 7688 [ A7EB62C664A03901165290A714BD48D0 ] VSNService C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
      01:09:08.0337 7688 VSNService ( UnsignedFile.Multi.Generic ) - warning
      01:09:08.0338 7688 VSNService - detected UnsignedFile.Multi.Generic (1)
      01:09:08.0405 7688 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
      01:09:08.0467 7688 VSS - ok
      01:09:08.0977 7688 [ E55A44D8F9F713D5F5D5BBAEF2BA0A34 ] VUAgent C:\Program Files\Sony\VAIO Update 5\VUAgent.exe
      01:09:09.0080 7688 VUAgent - ok
      01:09:09.0129 7688 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
      01:09:09.0218 7688 vwifibus - ok
      01:09:09.0255 7688 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
      01:09:09.0356 7688 vwififlt - ok
      01:09:09.0394 7688 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
      01:09:09.0473 7688 vwifimp - ok
      01:09:09.0629 7688 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
      01:09:09.0884 7688 W32Time - ok
      01:09:09.0955 7688 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
      01:09:10.0023 7688 WacomPen - ok
      01:09:10.0103 7688 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
      01:09:10.0252 7688 WANARP - ok
      01:09:10.0279 7688 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      01:09:10.0408 7688 Wanarpv6 - ok
      01:09:10.0604 7688 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
      01:09:10.0995 7688 WatAdminSvc - ok
      01:09:11.0089 7688 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
      01:09:11.0413 7688 wbengine - ok
      01:09:11.0464 7688 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
      01:09:11.0573 7688 WbioSrvc - ok
      01:09:11.0640 7688 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
      01:09:11.0732 7688 wcncsvc - ok
      01:09:11.0765 7688 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      01:09:11.0830 7688 WcsPlugInService - ok
      01:09:11.0861 7688 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
      01:09:11.0921 7688 Wd - ok
      01:09:12.0132 7688 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      01:09:12.0269 7688 Wdf01000 - ok
      01:09:12.0344 7688 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
      01:09:12.0422 7688 WdiServiceHost - ok
      01:09:12.0433 7688 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
      01:09:12.0494 7688 WdiSystemHost - ok
      01:09:12.0545 7688 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
      01:09:12.0737 7688 WebClient - ok
      01:09:12.0838 7688 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
      01:09:13.0028 7688 Wecsvc - ok
      01:09:13.0060 7688 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
      01:09:13.0181 7688 wercplsupport - ok
      01:09:13.0221 7688 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
      01:09:13.0346 7688 WerSvc - ok
      01:09:13.0400 7688 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
      01:09:13.0529 7688 WfpLwf - ok
      01:09:13.0579 7688 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
      01:09:13.0631 7688 WIMMount - ok
      01:09:13.0647 7688 WinHttpAutoProxySvc - ok
      01:09:13.0741 7688 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      01:09:13.0856 7688 Winmgmt - ok
      01:09:14.0392 7688 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
      01:09:14.0797 7688 WinRM - ok
      01:09:14.0905 7688 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
      01:09:14.0957 7688 WinUsb - ok
      01:09:15.0252 7688 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
      01:09:15.0384 7688 Wlansvc - ok
      01:09:15.0419 7688 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
      01:09:15.0459 7688 WmiAcpi - ok
      01:09:15.0590 7688 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      01:09:15.0654 7688 wmiApSrv - ok
      01:09:15.0700 7688 WMPNetworkSvc - ok
      01:09:15.0723 7688 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
      01:09:15.0786 7688 WPCSvc - ok
      01:09:15.0870 7688 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      01:09:15.0904 7688 WPDBusEnum - ok
      01:09:15.0965 7688 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      01:09:16.0049 7688 ws2ifsl - ok
      01:09:16.0058 7688 WSearch - ok
      01:09:16.0096 7688 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
      01:09:16.0270 7688 WudfPf - ok
      01:09:16.0318 7688 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      01:09:16.0434 7688 WUDFRd - ok
      01:09:16.0466 7688 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      01:09:16.0575 7688 wudfsvc - ok
      01:09:16.0609 7688 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
      01:09:16.0692 7688 WwanSvc - ok
      01:09:16.0809 7688 [ 5250193EF8E173AA7491250F00EB367F ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
      01:09:16.0841 7688 yukonw7 - ok
      01:09:16.0910 7688 ================ Scan global ===============================
      01:09:16.0947 7688 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      01:09:17.0021 7688 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
      01:09:17.0032 7688 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
      01:09:17.0161 7688 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      01:09:17.0211 7688 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
      01:09:17.0219 7688 [Global] - ok
      01:09:17.0220 7688 ================ Scan MBR ==================================
      01:09:17.0253 7688 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      01:09:19.0820 7688 \Device\Harddisk0\DR0 - ok
      01:09:19.0826 7688 ================ Scan VBR ==================================
      01:09:19.0864 7688 [ 8D4D2C4F59B99A0005D99AD451B0993E ] \Device\Harddisk0\DR0\Partition1
      01:09:19.0876 7688 \Device\Harddisk0\DR0\Partition1 - ok
      01:09:20.0035 7688 [ 76000D2E5E8895FCF73FB079C8958243 ] \Device\Harddisk0\DR0\Partition2
      01:09:20.0047 7688 \Device\Harddisk0\DR0\Partition2 - ok
      01:09:20.0052 7688 ============================================================
      01:09:20.0052 7688 Scan finished
      01:09:20.0052 7688 ============================================================
      01:09:20.0084 4708 Detected object count: 3
      01:09:20.0084 4708 Actual detected object count: 3
      01:11:29.0425 4708 igfx ( UnsignedFile.Multi.Generic ) - skipped by user
      01:11:29.0425 4708 igfx ( UnsignedFile.Multi.Generic ) - User select action: Skip
      01:11:29.0428 4708 IntcDAud ( UnsignedFile.Multi.Generic ) - skipped by user
      01:11:29.0428 4708 IntcDAud ( UnsignedFile.Multi.Generic ) - User select action: Skip
      01:11:29.0431 4708 VSNService ( UnsignedFile.Multi.Generic ) - skipped by user
      01:11:29.0431 4708 VSNService ( UnsignedFile.Multi.Generic ) - User select action: Skip
      01:12:10.0394 6076 Deinitialize success

    2. #12
      Usuario Avatar de AdriG
      Registrado
      ago 2012
      Ubicación
      España
      Mensajes
      47

      Re: Limpieza ante posibles virus

      Y aquí está el reporte del AT-Destroyer:

      #################################################### A/T-Destroyer by InfoSpyware ############

      A/T-Destroyer 1.0.7 By Infospyware
      www.infospyware.com
      Fecha iniciada en el analisis 13/09/2012
      Hora iniciada en el analisis 1:18:15,48
      Usuario Actual : [C:\Users\adriana]
      Sistema Operativo: Windows 7 Home Premium
      Arquitectura: Sistema operativo de 64 bits
      Versión Internet Explorer: 8.0.7600.16385
      Modo Actual: Modo Normal.
      Privilegios: [adriana-Administrador]
      Versión Google Chrome:
      Versión Mozilla Firefox:

      ====== Servicios Eliminados By A/T-Destroyer ======




      ====== Claves Eliminadas By A/T-Destroyer ======




      ====== Archivos/Carpetas Eliminados By A/T-Destroyer ======


      C:\Users\adriana\Appdata\Local\GDIPFONTCACHEV1.DAT


      ====== Información Extra ======


      -_-_-_-_-_-_-_-_ Configuraciones de internet Explorer -_-_-_-_-_-_-_-_
      "HKCU\Software\Microsoft\Internet Explorer\Main"
      Start Page == http://www.google.com
      Search Page == http://go.microsoft.com/fwlink/?LinkId=54896
      Local Page == C:\Windows\system32\blank.htm
      Default_Page_URL == http://www.google.com/ig/redirectdomain?brand=SVEE&bmod=SVEE

      "HKLM\Software\Microsoft\Internet Explorer\Main"
      Start Page == http://www.google.com
      Search Page == http://go.microsoft.com/fwlink/?LinkId=54896
      Local Page == C:\Windows\SysWOW64\blank.htm
      Default_Search_URL == http://go.microsoft.com/fwlink/?LinkId=54896
      Default_Page_URL == http://go.microsoft.com/fwlink/?LinkId=69157


      "HKEY_USERS\S-1-5-21-1663162650-546688446-3083132868-1000\Software\Microsoft\Internet Explorer\Main"
      Start Page == http://www.google.com
      Search Page == http://go.microsoft.com/fwlink/?LinkId=54896
      Local Page == C:\Windows\system32\blank.htm
      Default_Page_URL == http://www.google.com/ig/redirectdomain?brand=SVEE&bmod=SVEE


      -_-_-_-_-_-_-_-_ Configuraciones de Google Chrome-_-_-_-_-_-_-_-_
      "homepage": "http://www.google.com/",
      "homepage_changed": true,
      "homepage_is_newtabpage": false,
      -_-_-_-_-_-_-_-_ Configuraciones de Google Chrome-_-_-_-_-_-_-_-_
      "homepage": "http://www.google.com/",
      "homepage_changed": true,
      "homepage_is_newtabpage": false,






      ======= EOF =======

      Aún así, el antivirus me sigue alarmando :S

      Gracias!!

    3. #13
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.689

      Re: Limpieza ante posibles virus

      Buenas y con Permiso.

      Realiza estos pasos :

      - Descarga la herramienta ComboFix y guárdala en el escritorio. <--- Importante.

      Nota: Antes de ejecutar ComboFix asegurarse de :

      Cerrar todos los programas y ventanas abiertas.

      Desactivar temporalmente el Antivirus Cómo deshabilitar temporalmente su Antivirus

      Si está utilizando Windows Vista o Windows 7. Haga click derecho sobre el archivo ComboFix.exe y seleccionar Ejecutar como Administrador.

      PASO 1:

      • Ejecutar el archivo ComboFix.exe
      • Aceptar los términos de licencia.
      • Si ComboFix avisa que hay una versión nueva del programa deberás descargala.
      • Si ComboFix pide instalar la Consola de Recuperación (Recovery Console) hay que instalarla.

      PASO 2:

      • Copiar y pegar el reporte que ComboFix generó. Si no aparece lo encontraras en C:\ComboFix.txt.


      • Comentar cómo sigue su sistema, en relación al problema planteado.


      Importante :

      • Mientras esté trabajando ComboFix no ejecutar ningún software hasta que termine.
      • No reiniciar su PC, ComboFix lo hará de ser necesario.
      • Mientras ComboFix esté trabajando, no mover el mouse ya que pararía su proceso.

      Atención!! No use ComboFix a menos que se le haya indicado específicamente en su mensaje por un integrante de nuestro Staff. Es una herramienta de gran alcance destinada por su creador a ser usada bajo la orientación y supervisión de un experto, no para uso privado. El uso de ComboFix incorrectamente podría generar problemas en su sistema. Por favor, lea las "Negaciones de la Garantía" de ComboFix.
      NOTAS IMPORTANTES:

      ° Una vez Terminado el Trabajo de ComboFix, puedes activar Tu antivirus.

      ° No Pongas los Reportes Dentro de Etiquetas Code ni HTML.

      ° No vuelvas a ejecutar ningún otro programa antivirus hasta que vuelva con una respuesta.
      Saludos, Javier.

      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    4. #14
      Usuario Avatar de AdriG
      Registrado
      ago 2012
      Ubicación
      España
      Mensajes
      47

      Re: Limpieza ante posibles virus

      Hola,

      aquí está el informe de ComboFix:

      ComboFix 12-09-12.03 - adriana 13/09/2012 3:08.2.4 - x64
      Microsoft Windows 7 Home Premium 6.1.7600.0.1252.34.3082.18.3950.2316 [GMT 2:00]
      Running from: c:\users\adriana\Desktop\ComboFix.exe
      AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
      SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
      SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      c:\programdata\boost_interprocess\20120913022647.125599
      c:\programdata\boost_interprocess\20120913022647.125599\Nobu64AgentService
      c:\programdata\boost_interprocess\20120913022647.125599\Nobu64TrayIcon
      c:\users\adriana\AppData\Roaming\.#
      .
      .
      ((((((((((((((((((((((((( Files Created from 2012-08-13 to 2012-09-13 )))))))))))))))))))))))))))))))
      .
      .
      2012-09-13 01:17 . 2012-09-13 01:17 -------- d-----w- c:\users\Default\AppData\Local\temp
      2012-09-11 23:33 . 2012-03-12 21:27 11776 ----a-w- c:\windows\Colous.exe
      2012-09-11 23:33 . 2008-03-25 08:39 69660 ----a-w- c:\windows\Fart.exe
      2012-09-10 14:25 . 2012-09-10 14:25 -------- d-----w- C:\TDSSKiller_Quarantine
      2012-09-09 16:12 . 2012-09-09 16:12 -------- d-----w- c:\program files\CCleaner
      2012-09-09 04:07 . 2012-09-09 04:07 -------- d-----w- c:\users\adriana\AppData\Roaming\Malwarebytes
      2012-09-09 04:07 . 2012-09-09 04:07 -------- d-----w- c:\programdata\Malwarebytes
      2012-09-09 04:07 . 2012-09-09 04:07 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
      2012-09-09 04:07 . 2012-07-03 11:46 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
      2012-09-05 01:57 . 2012-09-05 01:57 -------- d-----w- c:\users\adriana\AppData\Roaming\Avira
      2012-09-05 01:50 . 2012-06-05 22:39 27760 ----a-w- c:\windows\system32\drivers\avkmgr.sys
      2012-09-05 01:50 . 2012-06-05 22:39 98848 ----a-w- c:\windows\system32\drivers\avgntflt.sys
      2012-09-05 01:50 . 2012-06-05 22:39 132832 ----a-w- c:\windows\system32\drivers\avipbb.sys
      2012-09-05 01:50 . 2012-09-05 01:51 -------- d-----w- c:\programdata\Avira
      2012-09-05 01:50 . 2012-09-05 01:50 -------- d-----w- c:\program files (x86)\Avira
      2012-09-04 03:49 . 2012-06-29 11:55 22528 ----a-w- c:\windows\AT-Uninstall.exe
      2012-09-01 02:10 . 2012-09-01 02:10 -------- d-----w- C:\_PoliFix
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-09-10 14:27 . 2009-07-13 23:19 328704 ----a-w- c:\windows\system32\services.exe
      2012-07-12 15:01 . 2012-07-12 15:01 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
      2012-07-12 15:01 . 2011-12-20 13:22 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
      2012-06-25 14:04 . 2012-06-25 14:04 1394248 ----a-w- c:\windows\SysWow64\msxml4.dll
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Elbserver"="c:\program files (x86)\Sony\Media Gallery\ElbServer.exe" [2010-06-22 81264]
      "VRLPHelper"="c:\program files (x86)\Sony\Media Gallery\VRLPHelper.exe" [2010-06-22 183152]
      "ares"="c:\program files (x86)\Ares\Ares.exe" [2012-02-02 3209216]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
      "IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-03-04 284696]
      "ISBMgr.exe"="c:\program files (x86)\Sony\ISB Utility\ISBMgr.exe" [2010-05-31 673136]
      "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-02-08 98304]
      "Norton Online Backup"="c:\program files (x86)\Symantec\Norton Online Backup\NOBuClient.exe" [2012-05-01 3151512]
      "PMBVolumeWatcher"="c:\program files (x86)\Sony\PMB\PMBVolumeWatcher.exe" [2010-06-01 600928]
      "SHTtray.exe"="c:\program files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe" [2010-06-20 99696]
      "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
      "NBAgent"="c:\program files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" [2010-04-03 1234216]
      "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-09-07 37296]
      "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
      "avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2012-07-02 348664]
      "Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-07-03 462920]
      .
      c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
      Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-6-8 1128224]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 5 (0x5)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableUIADesktopToggle"= 0 (0x0)
      "EnableLinkedConnections"= 1 (0x1)
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
      @=""
      .
      R2 AntiVirWebService;Avira Web Protection;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [2012-07-02 465360]
      R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
      R3 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;c:\program files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-09 169312]
      R3 btwampfl;Bluetooth AMP USB Filter;c:\windows\system32\drivers\btwampfl.sys [2010-06-23 342056]
      R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2010-06-23 39464]
      R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [2010-05-28 158976]
      R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-06-24 271872]
      R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
      R3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe [2010-06-09 101232]
      R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-01-15 1255736]
      S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2008-06-16 55024]
      S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2012-06-05 27760]
      S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
      S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-06-24 202752]
      S2 AntiVirSchedulerService;Avira Programador;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2012-07-02 86224]
      S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
      S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336]
      S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-07-03 655944]
      S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2011-03-04 584488]
      S2 NOBU;Norton Online Backup;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
      S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2010-06-01 367456]
      S2 rimspci;rimspci;c:\windows\system32\drivers\rimssne64.sys [2010-06-23 94208]
      S2 risdsnpe;risdsnpe;c:\windows\system32\drivers\risdsne64.sys [2010-06-23 78848]
      S2 SampleCollector;VAIO Care Performance Service;c:\program files\Sony\VAIO Care\VCPerfService.exe [2010-05-25 252416]
      S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
      S2 SOHCImp;VAIO Media plus Content Importer;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2010-06-20 108400]
      S2 SOHDms;VAIO Media plus Digital Media Server;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [2010-06-18 423280]
      S2 SOHDs;VAIO Media plus Device Searcher;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [2010-06-20 67952]
      S2 uCamMonitor;CamMonitor;c:\program files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2008-09-18 104960]
      S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-05-28 2320920]
      S2 VAIO Power Management;VAIO Power Management;c:\program files\Sony\VAIO Power Management\SPMService.exe [2010-06-21 575856]
      S2 VCFw;VAIO Content Folder Watcher;c:\program files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2010-06-17 851824]
      S2 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2010-06-09 537456]
      S2 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager;c:\program files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [2010-06-09 384880]
      S2 VSNService;VSNService;c:\program files\Sony\VAIO Smart Network\VSNService.exe [2010-06-08 836608]
      S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\DRIVERS\ArcSoftKsUFilter.sys [2009-05-26 19968]
      S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\drivers\HECIx64.sys [2010-05-28 56344]
      S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-07-03 24904]
      S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\drivers\SFEP.sys [2010-04-26 12032]
      S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
      S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
      S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
      S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
      S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
      S3 SpfService;VAIO Entertainment Common Service;c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe [2010-06-06 304496]
      S3 VUAgent;VUAgent;c:\program files\Sony\VAIO Update 5\VUAgent.exe [2010-05-31 1250160]
      S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
      S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2010-05-31 402720]
      .
      .
      .
      --------- X64 Entries -----------
      .
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-05-31 10775584]
      "RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2010-05-31 2040352]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
      "LoadAppInit_DLLs"=0x1
      .
      ------- Supplementary Scan -------
      .
      uLocal Page = c:\windows\system32\blank.htm
      uStart Page = hxxp://www.google.es/
      mStart Page = hxxp://www.google.com
      mLocal Page = c:\windows\SysWOW64\blank.htm
      uInternet Settings,ProxyOverride = <local>
      TCP: DhcpNameServer = 80.58.61.250 80.58.61.254
      .
      - - - - ORPHANS REMOVED - - - -
      .
      URLSearchHooks-{00000000-6E41-4FD3-8538-502F5495E5FC} - (no file)
      URLSearchHooks-{0974848a-b5bc-49f2-9778-307742b4a55d} - (no file)
      Toolbar-10 - (no file)
      SafeBoot-18889288.sys
      Toolbar-10 - (no file)
      WebBrowser-{0974848A-B5BC-49F2-9778-307742B4A55D} - (no file)
      WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
      WebBrowser-{30F9B915-B755-4826-820B-08FBA6BD249D} - (no file)
      HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
      AddRemove-{79A765E1-C399-405B-85AF-466F52E918B0} - c:\program files (x86)\Ask.com\Updater\Updater.exe
      .
      .
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SampleCollector]
      "ImagePath"="\"c:\program files\Sony\VAIO Care\VCPerfService.exe\" \"/service\" \"/sstates\" \"/sampleinterval=2000\" \"/procinterval=5\" \"/dllinterval=120\" \"/counter=\Processor(_Total)\% Processor Time:1/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:1\" \"/counter=\Network Interface(*)\Bytes Total/sec:1\" \"/expandcounter=\Processor Information(*)\Processor Frequency:1\" \"/expandcounter=\Processor(*)\% Idle Time:1\" \"/expandcounter=\Processor(*)\% C1 Time:1\" \"/expandcounter=\Processor(*)\% C2 Time:1\" \"/expandcounter=\Processor(*)\% C3 Time:1\" \"/expandcounter=\Processor(*)\% Processor Time:1\" \"/directory=inteldata\""
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_257_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_257_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Shockwave Flash Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
      @="0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
      @="ShockwaveFlash.ShockwaveFlash.11"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="ShockwaveFlash.ShockwaveFlash"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Macromedia Flash Factory Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
      @="FlashFactory.FlashFactory.1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="FlashFactory.FlashFactory"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker4"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      ------------------------ Other Running Processes ------------------------
      .
      c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
      c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
      c:\program files (x86)\Sony\VAIO Event Service\VESMgr.exe
      c:\windows\SysWOW64\DllHost.exe
      c:\program files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
      c:\program files\Sony\VAIO Care\VCSpt.exe
      c:\windows\SysWOW64\RunDll32.exe
      c:\program files\Sony\VAIO Care\listener.exe
      c:\program files\Sony\VAIO Personalization Manager\VpmIfPav.exe
      .
      **************************************************************************
      .
      Completion time: 2012-09-13 03:26:04 - machine was rebooted
      ComboFix-quarantined-files.txt 2012-09-13 01:26
      .
      Pre-Run: 362.011.992.064 bytes libres
      Post-Run: 361.806.159.872 bytes libres
      .
      - - End Of File - - D8590CDA4430613A1E05EF4D04EDCB6D

    5. #15
      Usuario Avatar de AdriG
      Registrado
      ago 2012
      Ubicación
      España
      Mensajes
      47

      Re: Limpieza ante posibles virus

      Hola,

      se me olvidó decir que una vez ejecutado ComboFix, no me deja activar el antivirus (avira) en el apartado - seguridad de internet, web protection-

    6. #16
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.689

      Re: Limpieza ante posibles virus

      Y los síntomas que tenias inicialmente están resueltos. ??

      El antivirus que tienes - Avira - de donde lo has descargado, es la versión Free. ??

      Saludos.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #17
      Usuario Avatar de AdriG
      Registrado
      ago 2012
      Ubicación
      España
      Mensajes
      47

      Re: Limpieza ante posibles virus

      Hola,

      si, mi antivirus es el Avira Free y lo cierto es que ya no me alarma sobre nuevos virus. ¿significa eso que ya no hay rastro de los que tenía en el ordenador?

      PD: para finalizar te quería preguntar una pregunta sobre word si no te importa

      Muchas gracias

    8. #18
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.689

      Re: Limpieza ante posibles virus

      Cita Originalmente publicado por AdriG Ver Mensaje
      si, mi antivirus es el Avira Free y lo cierto es que ya no me alarma sobre nuevos virus. ¿significa eso que ya no hay rastro de los que tenía en el ordenador?
      Aquí lo mejor es que reinstales, para verificar si no se ha dañado nada y ya puedes activar la protección "en el apartado - seguridad de internet, web protection- "

      PD: para finalizar te quería preguntar una pregunta sobre word si no te importa
      Tu pregunta otra cosa es que yo sepa responderte, pero lo intento.

      Saludos.
      Última edición por @Javier_HF fecha: 17/09/12 a las 19:14:03
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    9. #19
      Usuario Avatar de AdriG
      Registrado
      ago 2012
      Ubicación
      España
      Mensajes
      47

      Re: Limpieza ante posibles virus

      Holaa,

      Muchas gracias por tu ayuda porque ya no tengo ninguna duda. El problema es que cada vez que abría word no me dejaba utilizarlo porque me saltaba una ventana que ponía: winwordc.exe dejó de funcionar, pero ahora lo he abierto otra vez y esta todo bienn así que seguramente sería porque estaba infectado por algún virus.

      Perdona por la falta de mis conocimientos...pero para reinstalar avira que debo hacer? desinstalo el programa en el panel de control y me lo vuelvo a descargar??

      Saludos!

    10. #20
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.689

      Re: Limpieza ante posibles virus

      Buenas de nuevo, perdona el retraso en contestar, pero estuve con problemas personales.
      Cita Originalmente publicado por AdriG Ver Mensaje
      Muchas gracias por tu ayuda porque ya no tengo ninguna duda. El problema es que cada vez que abría word no me dejaba utilizarlo porque me saltaba una ventana que ponía: winwordc.exe dejó de funcionar, pero ahora lo he abierto otra vez y esta todo bienn así que seguramente sería porque estaba infectado por algún virus.
      Perfecto, un problema menos.


      Perdona por la falta de mis conocimientos...pero para reinstalar avira que debo hacer? desinstalo el programa en el panel de control y me lo vuelvo a descargar??
      Lo mejor es que primero te descargues una nueva versión desde aquí >> Avira Free Antivirus 2012 | InfoSpyware.

      Y haces una instalación que se supone debe actualizarse encima de la que tu ya tienes instalada, y así regrabara posibles ficheros y configuracones incorrectas.

      Saludos.

      Saludos.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    Página 2 de 2 PrimeroPrimero 12